Anope Bug Tracker

View Issue Details Jump to Notes ] Issue History ] Print ]
IDProjectCategoryView StatusDate SubmittedLast Update
0001482Anope Development (1.9.x series)Otherpublic2013-02-16 09:322013-02-19 06:22
Reporternenolod 
Assigned ToDukePyrolator 
PrioritynormalSeverityminorReproducibilityalways
StatusresolvedResolutionfixed 
PlatformOSOS Version
Product Version 
Target VersionFixed in Version1.9.x-GIT 
Summary0001482: SASL support should authfail if the requested mechanism isn't implemented
DescriptionRequesting mechanisms like DH-BLOWFISH or ECDSA-NIST256P-CHALLENGE which are unsupported presently in Anope are instead interpreted to be the same as PLAIN.

They should, instead, authfail so that the client may properly fallback to PLAIN.
TagsNo tags attached.
Attached Filespatch file icon anope-sasl-authfail.patch [^] (1,710 bytes) 2013-02-16 23:42 [Show Content]

- Relationships

-  Notes
(0006384)
DukePyrolator (administrator)
2013-02-19 06:22

fixed in https://github.com/anope/anope/commit/d0e1f3b66a9bbee91bade0b57c3335908704c2e5 [^]
(0006383)
nenolod (reporter)
2013-02-18 02:29

hello,

i typoed the patch, and it worked simply as a side effect of most SASL stacks not understanding the input given back by services.

the "C F" should be changed to "D F" to indicate "done" verb instead of "continue" verb. this will trigger a server-side abort instead of client-side abort.
(0006379)
DukePyrolator (administrator)
2013-02-17 13:30

thanks for reporting :)

fixed in https://github.com/anope/anope/commit/bcf99d599862d8a7a6741b5f805c593fe7bf4aea0 [^]
(0006378)
nenolod (reporter)
2013-02-16 23:43

Attached patch adds a check to ensure that the requested mechanism is PLAIN and fails the authentication request if it is not.

- Issue History
Date Modified Username Field Change
2013-02-16 09:32 nenolod New Issue
2013-02-16 23:42 nenolod File Added: anope-sasl-authfail.patch
2013-02-16 23:43 nenolod Note Added: 0006378
2013-02-17 13:27 DukePyrolator Assigned To => DukePyrolator
2013-02-17 13:27 DukePyrolator Status new => assigned
2013-02-17 13:30 DukePyrolator Note Added: 0006379
2013-02-17 13:30 DukePyrolator Status assigned => resolved
2013-02-17 13:30 DukePyrolator Fixed in Version => 1.9.x-GIT
2013-02-17 13:30 DukePyrolator Resolution open => fixed
2013-02-18 02:29 nenolod Note Added: 0006383
2013-02-18 02:29 nenolod Status resolved => feedback
2013-02-18 02:29 nenolod Resolution fixed => reopened
2013-02-19 06:22 DukePyrolator Note Added: 0006384
2013-02-19 06:22 DukePyrolator Status feedback => resolved
2013-02-19 06:22 DukePyrolator Resolution reopened => fixed


Copyright © 2000 - 2019 MantisBT Team
Powered by Mantis Bugtracker