diff options
| author | Nick Mathewson <nickm@torproject.org> | 2007-08-02 01:28:40 +0000 |
|---|---|---|
| committer | Nick Mathewson <nickm@torproject.org> | 2007-08-02 01:28:40 +0000 |
| commit | 322b6f7e65d1f923130bf2eed09fcc2af6bdcae7 (patch) | |
| tree | 49bf910696ec23dbf43891a06c734d272496bd05 /src | |
| parent | a4e7dffc948bcbdcb8e3484f13f328afec281424 (diff) | |
| download | tor-322b6f7e65d1f923130bf2eed09fcc2af6bdcae7.tar tor-322b6f7e65d1f923130bf2eed09fcc2af6bdcae7.tar.gz | |
r13892@Kushana: nickm | 2007-08-01 18:27:13 -0700
Close immediately after anything but a successful authentication attempt on the control port. Backport candidate.
svn:r11016
Diffstat (limited to 'src')
| -rw-r--r-- | src/or/control.c | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/src/or/control.c b/src/or/control.c index 94fd90fd7..2a95234b5 100644 --- a/src/or/control.c +++ b/src/or/control.c @@ -971,6 +971,7 @@ handle_control_authenticate(control_connection_t *conn, uint32_t len, "551 Invalid hexadecimal encoding. Maybe you tried a plain text " "password? If so, the standard requires that you put it in " "double quotes.\r\n", conn); + connection_mark_for_close(TO_CONN(conn)); tor_free(password); return 0; } @@ -981,6 +982,7 @@ handle_control_authenticate(control_connection_t *conn, uint32_t len, if (!get_escaped_string(body, len, &password, &password_len)) { connection_write_str_to_buf("551 Invalid quoted string. You need " "to put the password in double quotes.\r\n", conn); + connection_mark_for_close(TO_CONN(conn)); return 0; } used_quoted_string = 1; @@ -1032,6 +1034,7 @@ handle_control_authenticate(control_connection_t *conn, uint32_t len, errstr = "Unknown reason."; connection_printf_to_buf(conn, "515 Authentication failed: %s\r\n", errstr); + connection_mark_for_close(TO_CONN(conn)); return 0; ok: log_info(LD_CONTROL, "Authenticated control connection (%d)", conn->_base.s); @@ -2439,6 +2442,7 @@ connection_control_process_inbuf(control_connection_t *conn) if (conn->_base.state == CONTROL_CONN_STATE_NEEDAUTH && strcasecmp(conn->incoming_cmd, "AUTHENTICATE")) { connection_write_str_to_buf("514 Authentication required.\r\n", conn); + connection_mark_for_close(TO_CONN(conn)); conn->incoming_cmd_cur_len = 0; goto again; } |