[asterisk-commits] dvossel: tag 1.6.0.10 r199207 - /tags/1.6.0.10/channels/chan_iax2.c

SVN commits to the Asterisk project asterisk-commits at lists.digium.com
Thu Jun 4 14:40:23 CDT 2009


Author: dvossel
Date: Thu Jun  4 14:40:20 2009
New Revision: 199207

URL: http://svn.asterisk.org/svn-view/asterisk?view=rev&rev=199207
Log:
Additional updates for AST-2009-001

Modified:
    tags/1.6.0.10/channels/chan_iax2.c

Modified: tags/1.6.0.10/channels/chan_iax2.c
URL: http://svn.asterisk.org/svn-view/asterisk/tags/1.6.0.10/channels/chan_iax2.c?view=diff&rev=199207&r1=199206&r2=199207
==============================================================================
--- tags/1.6.0.10/channels/chan_iax2.c (original)
+++ tags/1.6.0.10/channels/chan_iax2.c Thu Jun  4 14:40:20 2009
@@ -581,7 +581,8 @@
 		/*! received OSP token */
 		AST_STRING_FIELD(osptoken);
 	);
-	
+	/*! AUTHREJ all AUTHREP frames */
+	int authrej;
 	/*! permitted authentication methods */
 	int authmethods;
 	/*! permitted encryption methods */
@@ -6164,6 +6165,18 @@
 			ast_string_field_set(iaxs[callno], secret, user->secret);
 		res = 0;
 		user = user_unref(user);
+	} else {
+		 /* user was not found, but we should still fake an AUTHREQ.
+		  * Set authmethods to the last known authmethod used by the system
+		  * Set a fake secret, it's not looked at, just required to attempt authentication.
+		  * Set authrej so the AUTHREP is rejected without even looking at its contents */
+		iaxs[callno]->authmethods = last_authmethod ? last_authmethod : (IAX_AUTH_MD5 | IAX_AUTH_PLAINTEXT);
+		ast_string_field_set(iaxs[callno], secret, "badsecret");
+		iaxs[callno]->authrej = 1;
+		if (!ast_strlen_zero(iaxs[callno]->username)) {
+			/* only send the AUTHREQ if a username was specified. */
+			res = 0;
+		}
 	}
 	ast_set2_flag(iaxs[callno], iax2_getpeertrunk(*sin), IAX_TRUNK);	
 	return res;
@@ -6272,6 +6285,9 @@
 		.name = p->username,	
 	};
 
+	if (p->authrej) {
+		return res;
+	}
 	user = ao2_find(users, &tmp_user, OBJ_POINTER);
 	if (user) {
 		if (ast_test_flag(p, IAX_MAXAUTHREQ)) {




More information about the asterisk-commits mailing list