[OpenSIPS-Devel] [OpenSIPS/opensips] e386c1: event_route: Fix off-by-one error in some $param w...
Liviu Chircu
noreply at github.com
Mon Apr 10 14:44:27 UTC 2023
Branch: refs/heads/3.2
Home: https://github.com/OpenSIPS/opensips
Commit: e386c10fdcc681bd184dfdc7a6954fabf9789869
https://github.com/OpenSIPS/opensips/commit/e386c10fdcc681bd184dfdc7a6954fabf9789869
Author: Liviu Chircu <liviu at opensips.org>
Date: 2023-04-10 (Mon, 10 Apr 2023)
Changed paths:
M modules/event_route/event_route.c
Log Message:
-----------
event_route: Fix off-by-one error in some $param warning log
(cherry picked from commit d4b03b7d0b828c0f7ecd6061cda882a560d6a216)
Commit: a1903b1c1913e25f65ef9df187b32197fd68d7b7
https://github.com/OpenSIPS/opensips/commit/a1903b1c1913e25f65ef9df187b32197fd68d7b7
Author: Liviu Chircu <liviu at opensips.org>
Date: 2023-04-10 (Mon, 10 Apr 2023)
Changed paths:
M lib/digest_auth/dauth_nonce.c
M lib/digest_auth/dauth_nonce.h
M modules/auth/auth_mod.c
Log Message:
-----------
auth: Avoid abort() if len(secret) is not 32 bytes
Before OpenSIPS 3.2, the "secret" modparam supported random-length
strings, to be hashed into an MD5 computation when generating the nonce.
Starting with 3.2 and the new AES-CBC based nonce generation algorithm,
the "secret" has been restricted to 32-bytes only, however OpenSIPS
would assert() -> abort() on startup without displaying any helper error
if the user supplied a different-length secret.
Many thanks to @thuroc for an accurate report on the assert() issue!
Fixes #3043
(cherry picked from commit 00a19ede805577c29ae8b65af8a0cb81fc583209)
Compare: https://github.com/OpenSIPS/opensips/compare/0680e263cf2a...a1903b1c1913
More information about the Devel
mailing list