189 	int alen, len;
208 	len = (h->in[POS_LENGTH] << 8) | h->in[POS_LENGTH + 1];
209 	if (len < POS_ATTRS || len > h->in_len)
216 	MD5Update(&ctx, &h->in[POS_ATTRS], len - POS_ATTRS);
233 		while (pos < len - 2) {
237 				if (len - pos < MD5_DIGEST_LENGTH + 2)
278 	int alen, len;
291 	len = (h->in[POS_LENGTH] << 8) | h->in[POS_LENGTH + 1];
292 	if (len < POS_ATTRS || len > h->in_len)
301 		MD5Update(&ctx, &h->in[POS_ATTRS], len - POS_ATTRS);
311 	while (pos < len - 2) {
316 			if (len - pos < MD5_DIGEST_LENGTH + 2)
346 put_password_attr(struct rad_handle *h, int type, const void *value, size_t len)
355 	if (len > PASSSIZE)
356 		len = PASSSIZE;
357 	padded_len = len == 0 ? 16 : (len+15) & ~0xf;
358 	pad_len = padded_len - len;
369 	memcpy(h->pass, value, len);
370 	h->pass_len = len;
371 	memset(h->pass + len, 0, pad_len);
376 put_raw_attr(struct rad_handle *h, int type, const void *value, size_t len)
378 	if (len > 253) {
382 	if (h->out_len + 2 + len > MSGSIZE) {
387 	h->out[h->out_len++] = len + 2;
388 	memcpy(&h->out[h->out_len], value, len);
389 	h->out_len += len;
499 		int len;
521 		len = strlen(buf);
522 		/* We know len > 0, else fgets would have returned NULL. */
523 		if (buf[len - 1] != '\n') {
524 			if (len == sizeof buf - 1)
533 		buf[len - 1] = '\0';
923 rad_cvt_string(const void *data, size_t len)
927 	s = malloc(len + 1);
929 		memcpy(s, data, len);
930 		s[len] = '\0';
942 	int len, type;
951 	len = h->in[h->in_pos++];
952 	if (len < 2) {
956 	len -= 2;
957 	if (h->in_pos + len > h->in_len) {
961 	*lenp = len;
963 	h->in_pos += len;
1130 rad_put_attr(struct rad_handle *h, int type, const void *value, size_t len)
1158 		result = put_password_attr(h, type, value, len);
1162 		result = put_raw_attr(h, type, value, len);
1351 rad_get_vendor_attr(u_int32_t *vendor, const void **data, size_t *len)
1358 	*len = attr->attrib_len - 2;
1382     const void *value, size_t len)
1393 	if ((attr = malloc(len + 6)) == NULL) {
1394 		generr(h, "malloc failure (%zu bytes)", len + 6);
1400 	attr->attrib_len = len + 2;
1401 	memcpy(attr->attrib_data, value, len);
1403 	res = put_raw_attr(h, RAD_VENDOR_SPECIFIC, attr, len + 6);
1430 rad_request_authenticator(struct rad_handle *h, char *buf, size_t len)
1432 	if (len < LEN_AUTH)
1435 	if (len > LEN_AUTH)
1496     size_t mlen, size_t *len)
1552 	*len = *P;
1553 	if (*len > mlen - 1) {
1555 		    *len, mlen-1);
1559 	if (*len > MPPE_KEY_LEN * 2) {
1561 		    *len, MPPE_KEY_LEN * 2);
1564 	demangled = malloc(*len);
1568 	memcpy(demangled, P + 1, *len);

Indexes created Sat Jun 08 03:50:41 MDT 2024