projects / transitory.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch (parent: 300dc30)
Security fix: For auth, give same stacktrace for all cases of LOGIN_FAILED
authorLebbeous Fogle-Weekley <lebbeous@esilibrary.com>
Tue, 12 Jun 2012 21:26:39 +0000 (17:26 -0400)
committerLebbeous Fogle-Weekley <lebbeous@esilibrary.com>
Wed, 13 Jun 2012 15:29:09 +0000 (11:29 -0400)
Signed-off-by: Lebbeous Fogle-Weekley <lebbeous@esilibrary.com>
Signed-off-by: Bill Erickson <berick@esilibrary.com>

Open-ILS/src/c-apps/oils_auth.c patch | blob | history

diff --git a/Open-ILS/src/c-apps/oils_auth.c b/Open-ILS/src/c-apps/oils_auth.c
index f19015c..2c7086a 100644 (file)
--- a/Open-ILS/src/c-apps/oils_auth.c
+++ b/Open-ILS/src/c-apps/oils_auth.c
@@ -589,6 +589,12 @@ int oilsAuthComplete( osrfMethodContext* ctx ) {
 
        const char* ws = (workstation) ? workstation : "";
 
+       /* Use __FILE__, harmless_line_number for creating
+        * OILS_EVENT_AUTH_FAILED events (instead of OSRF_LOG_MARK) to avoid
+        * giving away information about why an authentication attempt failed.
+        */
+       int harmless_line_number = __LINE__;
+
        if( !type )
                 type = OILS_AUTH_STAFF;
 
@@ -656,7 +662,7 @@ int oilsAuthComplete( osrfMethodContext* ctx ) {
        }
 
        if(!userObj || barred || deleted) {
-               response = oilsNewEvent( OSRF_LOG_MARK, OILS_EVENT_AUTH_FAILED );
+               response = oilsNewEvent( __FILE__, harmless_line_number, OILS_EVENT_AUTH_FAILED );
                osrfLogInfo(OSRF_LOG_MARK,  "failed login: username=%s, barcode=%s, workstation=%s",
                                uname, (barcode ? barcode : "(none)"), ws );
                osrfAppRespondComplete( ctx, oilsEventToJSON(response) );
@@ -683,7 +689,7 @@ int oilsAuthComplete( osrfMethodContext* ctx ) {
                if( passOK )
                        response = oilsNewEvent( OSRF_LOG_MARK, "PATRON_INACTIVE" );
                else
-                       response = oilsNewEvent( OSRF_LOG_MARK, OILS_EVENT_AUTH_FAILED );
+                       response = oilsNewEvent( __FILE__, harmless_line_number, OILS_EVENT_AUTH_FAILED );
 
                osrfAppRespondComplete( ctx, oilsEventToJSON(response) );
                oilsEventFree(response);
@@ -753,7 +759,7 @@ int oilsAuthComplete( osrfMethodContext* ctx ) {
                );
 
        } else {
-               response = oilsNewEvent( OSRF_LOG_MARK, OILS_EVENT_AUTH_FAILED );
+               response = oilsNewEvent( __FILE__, harmless_line_number, OILS_EVENT_AUTH_FAILED );
                osrfLogInfo(OSRF_LOG_MARK,  "failed login: username=%s, barcode=%s, workstation=%s",
                                uname, (barcode ? barcode : "(none)"), ws );
        }
Miscellaneous, temporary stuff