Bug in CUI generation? Is this a known issue?

stefan.paetow at diamond.ac.uk stefan.paetow at diamond.ac.uk
Fri May 10 14:29:28 CEST 2013


Thank you :-)

Regards

Stefan


-----Original Message-----
From: freeradius-users-bounces+stefan.paetow=diamond.ac.uk at lists.freeradius.org [mailto:freeradius-users-bounces+stefan.paetow=diamond.ac.uk at lists.freeradius.org] On Behalf Of Matthew Newton
Sent: 10 May 2013 12:13
To: FreeRadius users mailing list
Subject: Re: Bug in CUI generation? Is this a known issue?

Hi,

On Fri, May 10, 2013 at 09:49:14AM +0000, stefan.paetow at diamond.ac.uk wrote:
> As you can see, the expand: bit shows an empty value. Then I changed 
> my cui_hash_key to "01234567890abcdef01234567890abcdef"
> and it did the same. However, when I set cui_hash_key to a hex string 
> that was not 32 characters in length ("abcdef" as an example), or a 
> non-hex string of any length, it works ok. So I'm guessing here that 
> if the cui_hash_key  happens to be a string that is a potentially 
> valid MD5 hash, the md5 operator in the CUI generation statement does 
> nothing or barfs.

Bug. src/main/xlat.c:1077 has:

   if (isdigit(l[1])) break;

which stops looking for a module_name (e.g. "md5" if the first character after the : is a digit.

Fixed in 3.0 (see 4fd62ce9 22 August 2012).

Matthew


--
Matthew Newton, Ph.D. <mcn4 at le.ac.uk>

Systems Specialist, Infrastructure Services, I.T. Services, University of Leicester, Leicester LE1 7RH, United Kingdom

For IT help contact helpdesk extn. 2253, <ithelp at le.ac.uk>
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

-- 
This e-mail and any attachments may contain confidential, copyright and or privileged material, and are for the use of the intended addressee only. If you are not the intended addressee or an authorised recipient of the addressee please notify us of receipt by returning the e-mail and do not use, copy, retain, distribute or disclose the information in or attached to the e-mail.
Any opinions expressed within this e-mail are those of the individual and not necessarily of Diamond Light Source Ltd. 
Diamond Light Source Ltd. cannot guarantee that this e-mail or any attachments are free from viruses and we cannot accept liability for any damage which you may sustain as a result of software viruses which may be transmitted in or with the message.
Diamond Light Source Limited (company no. 4375679). Registered in England and Wales with its registered office at Diamond House, Harwell Science and Innovation Campus, Didcot, Oxfordshire, OX11 0DE, United Kingdom
 





More information about the Freeradius-Users mailing list