| commit | b0dfea6e0b716188799a44706784a8c57d87c8c4 | |
| author | Stefan Becker <stefan.becker@nokia.com> | |
| Mon, 22 Feb 2010 15:36:30 +0000 (22 17:36 +0200) | ||
| committer | Stefan Becker <stefan.becker@nokia.com> | |
| Mon, 22 Feb 2010 15:36:30 +0000 (22 17:36 +0200) | ||
| tree | 56a24d45b558363769f9f06b87ee88c1a9ebef12 | treesnapshot (tar.gz zip) |
| parent | 928bd5dd9eb0bca365f232e6bb873200e8a59554 | commitdiff |
Fix for #2956465: don't use uninitialized security contexts
This completes what commit 030aec9f50395eb6e2e6a02a21af2de3443478b9 actually
was supposed to fix. But unfortunately the failure to initialize the security
context wasn't propagated and therefore an uninitialized context was used in
HTTP authentication.
Added error check to http_conn_process_input_message().
Propagate error condition in sip_sec_create_context().
Protect against NULL context in sip_sec_init_context_step().
This completes what commit 030aec9f50395eb6e2e6a02a21af2de3443478b9 actually
was supposed to fix. But unfortunately the failure to initialize the security
context wasn't propagated and therefore an uninitialized context was used in
HTTP authentication.
Added error check to http_conn_process_input_message().
Propagate error condition in sip_sec_create_context().
Protect against NULL context in sip_sec_init_context_step().
| src/core/http-conn.c | diffblobblamehistory | |
| src/core/sip-sec.c | diffblobblamehistory |