Check length of ascend secrets

author Alan T. DeKok <aland@freeradius.org>

Sun, 17 Feb 2013 20:35:22 +0000 (15:35 -0500)

committer Alan T. DeKok <aland@freeradius.org>

Sun, 17 Feb 2013 20:35:22 +0000 (15:35 -0500)
author Alan T. DeKok <aland@freeradius.org>
Sun, 17 Feb 2013 20:35:22 +0000 (15:35 -0500)
committer Alan T. DeKok <aland@freeradius.org>
Sun, 17 Feb 2013 20:35:22 +0000 (15:35 -0500)
diff --git a/src/lib/radius.c b/src/lib/radius.c

index ac638ce..1797a17 100644 (file)
--- a/src/lib/radius.c
+++ b/src/lib/radius.c
@@ -1003,6 +1003,7 @@ static ssize_t vp2data_any(const RADIUS_PACKET *packet,
                  *      always fits.
                  */
         case FLAG_ENCRYPT_ASCEND_SECRET:
+               if (len != 16) return 0;
                 make_secret(ptr, packet->vector, secret, data);
                 len = AUTH_VECTOR_LEN;
                 break;
author	Alan T. DeKok <aland@freeradius.org>
	Sun, 17 Feb 2013 20:35:22 +0000 (15:35 -0500)
committer	Alan T. DeKok <aland@freeradius.org>
	Sun, 17 Feb 2013 20:35:22 +0000 (15:35 -0500)