[svn-commits] dvossel: tag 1.6.1.1 r199209 - /tags/1.6.1.1/channels/chan_iax2.c
SVN commits to the Digium repositories
svn-commits at lists.digium.com
Thu Jun 4 14:48:48 CDT 2009
Author: dvossel
Date: Thu Jun 4 14:48:44 2009
New Revision: 199209
URL: http://svn.asterisk.org/svn-view/asterisk?view=rev&rev=199209
Log:
Additional updates to AST-2009-001
Modified:
tags/1.6.1.1/channels/chan_iax2.c
Modified: tags/1.6.1.1/channels/chan_iax2.c
URL: http://svn.asterisk.org/svn-view/asterisk/tags/1.6.1.1/channels/chan_iax2.c?view=diff&rev=199209&r1=199208&r2=199209
==============================================================================
--- tags/1.6.1.1/channels/chan_iax2.c (original)
+++ tags/1.6.1.1/channels/chan_iax2.c Thu Jun 4 14:48:44 2009
@@ -602,7 +602,8 @@
/*! Default parkinglot */
AST_STRING_FIELD(parkinglot);
);
-
+ /*! AUTHREJ all AUTHREP frames */
+ int authrej;
/*! permitted authentication methods */
int authmethods;
/*! permitted encryption methods */
@@ -6218,6 +6219,18 @@
ast_string_field_set(iaxs[callno], secret, user->secret);
res = 0;
user = user_unref(user);
+ } else {
+ /* user was not found, but we should still fake an AUTHREQ.
+ * Set authmethods to the last known authmethod used by the system
+ * Set a fake secret, it's not looked at, just required to attempt authentication.
+ * Set authrej so the AUTHREP is rejected without even looking at its contents */
+ iaxs[callno]->authmethods = last_authmethod ? last_authmethod : (IAX_AUTH_MD5 | IAX_AUTH_PLAINTEXT);
+ ast_string_field_set(iaxs[callno], secret, "badsecret");
+ iaxs[callno]->authrej = 1;
+ if (!ast_strlen_zero(iaxs[callno]->username)) {
+ /* only send the AUTHREQ if a username was specified. */
+ res = 0;
+ }
}
ast_set2_flag(iaxs[callno], iax2_getpeertrunk(*sin), IAX_TRUNK);
return res;
@@ -6328,6 +6341,9 @@
.name = p->username,
};
+ if (p->authrej) {
+ return res;
+ }
user = ao2_find(users, &tmp_user, OBJ_POINTER);
if (user) {
if (ast_test_flag(p, IAX_MAXAUTHREQ)) {
More information about the svn-commits
mailing list