diff options
| author | Steve Holme <steve_holme@hotmail.com> | 2014-07-12 14:56:47 +0100 |
|---|---|---|
| committer | Steve Holme <steve_holme@hotmail.com> | 2014-07-12 14:56:47 +0100 |
| commit | aaaf9e50ec8aec5144bcb5204b6ea80ec13384a6 (patch) | |
| tree | 8f103899d5e90f46b036f8c38b5eeea817b5c449 | |
| parent | 8a120710cc1906dc5145db7ab5f97e1ef23f07c0 (diff) | |
| download | gnurl-aaaf9e50ec8aec5144bcb5204b6ea80ec13384a6.tar.gz gnurl-aaaf9e50ec8aec5144bcb5204b6ea80ec13384a6.tar.bz2 gnurl-aaaf9e50ec8aec5144bcb5204b6ea80ec13384a6.zip | |
ntlm_wb: Fixed buffer size not being large enough for NTLMv2 sessions
Bug: http://curl.haxx.se/mail/lib-2014-07/0103.html
Reported-by: David Woodhouse
| -rw-r--r-- | lib/curl_ntlm_wb.c | 8 |
1 files changed, 5 insertions, 3 deletions
diff --git a/lib/curl_ntlm_wb.c b/lib/curl_ntlm_wb.c index 0a221e069..57f714205 100644 --- a/lib/curl_ntlm_wb.c +++ b/lib/curl_ntlm_wb.c @@ -5,7 +5,7 @@ * | (__| |_| | _ <| |___ * \___|\___/|_| \_\_____| * - * Copyright (C) 1998 - 2012, Daniel Stenberg, <daniel@haxx.se>, et al. + * Copyright (C) 1998 - 2014, Daniel Stenberg, <daniel@haxx.se>, et al. * * This software is licensed as described in the file COPYING, which * you should have received as part of this distribution. The terms @@ -43,6 +43,7 @@ #include "urldata.h" #include "sendf.h" #include "select.h" +#include "curl_ntlm_msgs.h" #include "curl_ntlm_wb.h" #include "url.h" #include "strerror.h" @@ -227,9 +228,10 @@ static CURLcode ntlm_wb_response(struct connectdata *conn, const char *input, curlntlm state) { ssize_t size; - char buf[200]; /* enough, type 1, 3 message length is less then 200 */ + char buf[NTLM_BUFSIZE]; char *tmpbuf = buf; - size_t len_in = strlen(input), len_out = sizeof(buf); + size_t len_in = strlen(input); + size_t len_out = sizeof(buf); while(len_in > 0) { ssize_t written = swrite(conn->ntlm_auth_hlpr_socket, input, len_in); |