[asterisk-commits] dvossel: tag 1.6.0.10 r199207 - /tags/1.6.0.10/channels/chan_iax2.c
SVN commits to the Asterisk project
asterisk-commits at lists.digium.com
Thu Jun 4 14:40:23 CDT 2009
Author: dvossel
Date: Thu Jun 4 14:40:20 2009
New Revision: 199207
URL: http://svn.asterisk.org/svn-view/asterisk?view=rev&rev=199207
Log:
Additional updates for AST-2009-001
Modified:
tags/1.6.0.10/channels/chan_iax2.c
Modified: tags/1.6.0.10/channels/chan_iax2.c
URL: http://svn.asterisk.org/svn-view/asterisk/tags/1.6.0.10/channels/chan_iax2.c?view=diff&rev=199207&r1=199206&r2=199207
==============================================================================
--- tags/1.6.0.10/channels/chan_iax2.c (original)
+++ tags/1.6.0.10/channels/chan_iax2.c Thu Jun 4 14:40:20 2009
@@ -581,7 +581,8 @@
/*! received OSP token */
AST_STRING_FIELD(osptoken);
);
-
+ /*! AUTHREJ all AUTHREP frames */
+ int authrej;
/*! permitted authentication methods */
int authmethods;
/*! permitted encryption methods */
@@ -6164,6 +6165,18 @@
ast_string_field_set(iaxs[callno], secret, user->secret);
res = 0;
user = user_unref(user);
+ } else {
+ /* user was not found, but we should still fake an AUTHREQ.
+ * Set authmethods to the last known authmethod used by the system
+ * Set a fake secret, it's not looked at, just required to attempt authentication.
+ * Set authrej so the AUTHREP is rejected without even looking at its contents */
+ iaxs[callno]->authmethods = last_authmethod ? last_authmethod : (IAX_AUTH_MD5 | IAX_AUTH_PLAINTEXT);
+ ast_string_field_set(iaxs[callno], secret, "badsecret");
+ iaxs[callno]->authrej = 1;
+ if (!ast_strlen_zero(iaxs[callno]->username)) {
+ /* only send the AUTHREQ if a username was specified. */
+ res = 0;
+ }
}
ast_set2_flag(iaxs[callno], iax2_getpeertrunk(*sin), IAX_TRUNK);
return res;
@@ -6272,6 +6285,9 @@
.name = p->username,
};
+ if (p->authrej) {
+ return res;
+ }
user = ao2_find(users, &tmp_user, OBJ_POINTER);
if (user) {
if (ast_test_flag(p, IAX_MAXAUTHREQ)) {
More information about the asterisk-commits
mailing list