rlm_pap: show the request password on mismatch, not the "known good" one

author Matthew Newton <matthew-git@newtoncomputing.co.uk>

Wed, 27 Jul 2016 11:47:26 +0000 (12:47 +0100)

committer Alan T. DeKok <aland@freeradius.org>

Thu, 28 Jul 2016 11:36:46 +0000 (07:36 -0400)
author Matthew Newton <matthew-git@newtoncomputing.co.uk>
Wed, 27 Jul 2016 11:47:26 +0000 (12:47 +0100)
committer Alan T. DeKok <aland@freeradius.org>
Thu, 28 Jul 2016 11:36:46 +0000 (07:36 -0400)
diff --git a/src/modules/rlm_pap/rlm_pap.c b/src/modules/rlm_pap/rlm_pap.c

index 478d4d6..be50257 100644 (file)
--- a/src/modules/rlm_pap/rlm_pap.c
+++ b/src/modules/rlm_pap/rlm_pap.c
@@ -540,7 +540,7 @@ static rlm_rcode_t CC_HINT(nonnull) pap_auth_clear(UNUSED rlm_pap_t *inst, REQUE
                             request->password->vp_octets,
                             vp->vp_length) != 0)) {
                 REDEBUG("Cleartext password \"%s\" does not match \"known good\" password",
-                       vp->vp_strvalue);
+                       request->password->vp_strvalue);
                 return RLM_MODULE_REJECT;
         }
         return RLM_MODULE_OK;
author	Matthew Newton <matthew-git@newtoncomputing.co.uk>
	Wed, 27 Jul 2016 11:47:26 +0000 (12:47 +0100)
committer	Alan T. DeKok <aland@freeradius.org>
	Thu, 28 Jul 2016 11:36:46 +0000 (07:36 -0400)