[dovecot-cvs] dovecot/src/pop3-login client-authenticate.c, 1.49.2.7, 1.49.2.8

tss at dovecot.org tss at dovecot.org
Tue Mar 27 01:20:03 EEST 2007


Update of /var/lib/cvs/dovecot/src/pop3-login
In directory talvi:/tmp/cvs-serv16809/pop3-login

Modified Files:
      Tag: branch_1_0
	client-authenticate.c 
Log Message:
Potential crashfix



Index: client-authenticate.c
===================================================================
RCS file: /var/lib/cvs/dovecot/src/pop3-login/client-authenticate.c,v
retrieving revision 1.49.2.7
retrieving revision 1.49.2.8
diff -u -d -r1.49.2.7 -r1.49.2.8
--- client-authenticate.c	20 Feb 2007 11:51:07 -0000	1.49.2.7
+++ client-authenticate.c	26 Mar 2007 22:20:01 -0000	1.49.2.8
@@ -72,19 +72,16 @@
 	if (strcmp(line, "*") == 0) {
 		sasl_server_auth_client_error(&client->common,
 					      "Authentication aborted");
-		return;
-	}
-
-	if (client->common.waiting_auth_reply) {
+	} else if (client->common.waiting_auth_reply) {
 		sasl_server_auth_client_error(&client->common,
 					      "Don't send unrequested data");
 	} else {
 		auth_client_request_continue(client->common.auth_request, line);
 		client->common.waiting_auth_reply = TRUE;
-	}
 
-	/* clear sensitive data */
-	safe_memset(line, 0, strlen(line));
+		/* clear sensitive data */
+		safe_memset(line, 0, strlen(line));
+	}
 }
 
 static bool client_handle_args(struct pop3_client *client,



More information about the dovecot-cvs mailing list