projects / fwknop.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 60083cc) | patch
[libfko] bug fix to check b64_decode() return value
authorMichael Rash <mbr@cipherdyne.org>
Fri, 26 Oct 2012 19:36:08 +0000 (15:36 -0400)
committerMichael Rash <mbr@cipherdyne.org>
Fri, 26 Oct 2012 19:36:08 +0000 (15:36 -0400)
commitac38f8d9938146775bb336f5a8b7680492b81102
tree7100b60ffe862be80dd67c458732c099e33e9b98tree | snapshot
parent60083cc272d05db77303971845b013aa59eb0ed2commit | diff
[libfko] bug fix to check b64_decode() return value

Bug fix to check b64_decode() return value to ensure that
non-base64 encoded data is never used.  Even though other validation
routines checked decoded results, it is important to discard invalid
data as early as possible.  Note too that such invalid data would only
be provided to b64_decode() after proper decryption, so the client must
provide authentic SPA data.
ChangeLog diff | blob | history
lib/fko_decode.c diff | blob | history
lib/fko_encryption.c diff | blob | history
fwknop: Single Packet Authorization and Port Knocking