1
0
mirror of https://github.com/yarrick/iodine.git synced 2024-11-22 04:56:07 +03:00
iodine/tests
Erik Ekman b715be5cf3 Fix authentication bypass bug
The client could bypass the password check by continuing after getting error
from the server and guessing the network parameters. The server would still
accept the rest of the setup and also network traffic.

Add checks for normal and raw mode that user has authenticated before allowing
any other communication.

Problem found by Oscar Reparaz.
2014-06-16 21:43:22 +02:00
..
base32.c Remove trailing whitespace 2014-06-01 08:46:54 +02:00
base64.c Update copyright 2014-06-01 08:46:54 +02:00
common.c Move error message generation into topdomain check method 2014-05-31 10:07:36 +02:00
dns.c Update copyright 2014-06-01 08:46:54 +02:00
encoding.c Remove trailing whitespace 2014-06-01 08:46:54 +02:00
fw_query.c Remove trailing whitespace 2014-06-01 08:46:54 +02:00
login.c Update copyright 2014-06-01 08:46:54 +02:00
Makefile Remove trailing whitespace 2014-06-01 08:46:54 +02:00
read.c Change readshort() to work with unsigned values 2014-06-09 19:47:44 +02:00
test.c Update copyright 2014-06-01 08:46:54 +02:00
test.h Remove trailing whitespace 2014-06-01 08:46:54 +02:00
user.c Fix authentication bypass bug 2014-06-16 21:43:22 +02:00