[sr-dev] Bug in www_authorize/challenge functions

7 Oct 2010


      I seem to be able to crash Kamailio v3.1 by doing this when handling a 
REGISTER:
if(!www_authorize("$td", "subscriber")) {
       # $rc is -1 - "invalid user"
www_challenge("$td", "1");
       exit;
    }
In other words, it cannot find the user, but I call www_challenge() 
anyway, and get a segfault.  Can anyone reproduce, before I attempt to 
obtain a backtrace?
-- 
Alex Balashov - Principal
Evariste Systems LLC
1170 Peachtree Street
12th Floor, Suite 1200
Atlanta, GA 30309
Tel: +1-678-954-0670
Fax: +1-404-961-1892
Web: http://www.evaristesys.com/

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

[sr-dev] Bug in www_authorize/challenge functions