Bug in radclient when parsing long value from file (FreeRADIUS 1.1.3)

Geoffroy Arnoud garnoud at yahoo.co.uk
Fri Jan 12 14:44:11 CET 2007

Hi all,

There a bug in radclient when reading a valuepair from
a file, when the value is to long to be read, when
written in hexadecimal.
Actually, when a value can be at most 253 bytes (on
the network), when expressed in hexadecimal, it
requires 253x2 + 2 (0x) characters.

Here is a sample request that shows the issue.

NAS-IP-Address =
Framed-IP-Address =
Event-Timestamp = "Dec 18 2006 08:42:08 CET"
Acct-Status-Type = Stop
WISPr-Location-Name = "Something"
Acct-Output-Octets = 32411
Acct-Terminate-Cause = Session-Timeout
Acct-Session-Id = "00000743"
NAS-Identifier = "SomethingNAS"
Acct-Output-Gigawords = 0
NAS-Port-Type = Virtual
User-Name = "user at company"
Acct-Session-Time = 600
Acct-Input-Gigawords = 0
Class =
Acct-Input-Octets = 324352

The bug is located in file src/lib/valuepair.c in
function pairread.

A patch is attached that increases the size of the
"value" buffer to 512 bytes. Does anyone see side

Best regards,


Découvrez une nouvelle façon d'obtenir des réponses à toutes vos questions ! 
Profitez des connaissances, des opinions et des expériences des internautes sur Yahoo! Questions/Réponses 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 113_SCR6.diff
Type: application/octet-stream
Size: 590 bytes
Desc: 1781945399-113_SCR6.diff
URL: <http://lists.freeradius.org/pipermail/freeradius-devel/attachments/20070112/2c74f1e8/attachment.obj>

More information about the Freeradius-Devel mailing list