Update ngx_http_auth_digest_module.h #34
Open
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
We discovered a bug with IPv6 authentication: the ngx_memcpy() in the function ngx_http_auth_digest_evasion_tracking() causes a segmentation fault because node.src_addr is defined as struct sockaddr, that is too small to contain a struct sockaddr_in6. It must be defined as struct sockaddr_storage.
erikdubbelboer
requested changes
Nov 11, 2019
There was a problem hiding this comment.
Thanks for the pull request!
But I'm afraid only changing the storage type isn't enough. src_addr is passed to ngx_http_auth_digest_srcaddr_cmp as argument which now fails to compile:
../nginx-http-auth-digest/ngx_http_auth_digest_module.c: In function ‘ngx_http_auth_digest_ev_rbtree_cmp’:
../nginx-http-auth-digest/ngx_http_auth_digest_module.c:1047:9: error: passing argument 1 of ‘ngx_http_auth_digest_srcaddr_cmp’ from incompatible pointer type [-Werror]
evright->src_addrlen);
^
In file included from ../nginx-http-auth-digest/ngx_http_auth_digest_module.c:13:0:
../nginx-http-auth-digest/ngx_http_auth_digest_module.h:125:12: note: expected ‘struct sockaddr *’ but argument is of type ‘struct sockaddr_storage *’
static int ngx_http_auth_digest_srcaddr_cmp(struct sockaddr *sa1,
^
../nginx-http-auth-digest/ngx_http_auth_digest_module.c:1047:9: error: passing argument 3 of ‘ngx_http_auth_digest_srcaddr_cmp’ from incompatible pointer type [-Werror]
evright->src_addrlen);
^
In file included from ../nginx-http-auth-digest/ngx_http_auth_digest_module.c:13:0:
../nginx-http-auth-digest/ngx_http_auth_digest_module.h:125:12: note: expected ‘struct sockaddr *’ but argument is of type ‘struct sockaddr_storage *’
static int ngx_http_auth_digest_srcaddr_cmp(struct sockaddr *sa1,
^
Please fix this error.
Open
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
We discovered a bug with IPv6 authentication: the ngx_memcpy() in the function ngx_http_auth_digest_evasion_tracking() causes a segmentation fault because node.src_addr is defined as struct sockaddr, that is too small to contain a struct sockaddr_in6.
It must be defined as struct sockaddr_storage.