login-common: Consistently truncate client SASL input at first NUL

The input is supposed to be base64-encoded, so there's no need to support actual NUL characters. The previous code truncated at NULs, but could have kept appending more data to the value. This could have produced somewhat random results.
dovecot · Aug 30, 2018 · d1e71fa · d1e71fa
1 parent 217c2c0
commit d1e71fa
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/src/login-common/client-common-auth.c b/src/login-common/client-common-auth.c
@@ -617,7 +617,7 @@ int client_auth_read_line(struct client *client)
 		client_destroy(client, "Authentication response too large");
 		return -1;
 	}
-	str_append_n(client->auth_response, data, i);
+	str_append_data(client->auth_response, data, i);
 	i_stream_skip(client->input, i == size ? size : i+1);
 
 	/* drop trailing \r */