ntlm_wb: Fixed buffer size not being large enough for NTLMv2 sessions (aaaf9e50) · Commits · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP curl

lib/curl_ntlm_wb.c

+5 −3

Original line number	Diff line number	Diff line
		@@ -5,7 +5,7 @@
		* \| (__\| \|_\| \| _ <\| \|___
		* \___\|\___/\|_\| \_\_____\|
		*
		* Copyright (C) 1998 - 2012, Daniel Stenberg, <daniel@haxx.se>, et al.
		* Copyright (C) 1998 - 2014, Daniel Stenberg, <daniel@haxx.se>, et al.
		*
		* This software is licensed as described in the file COPYING, which
		* you should have received as part of this distribution. The terms
		@@ -43,6 +43,7 @@
		#include "urldata.h"
		#include "sendf.h"
		#include "select.h"
		#include "curl_ntlm_msgs.h"
		#include "curl_ntlm_wb.h"
		#include "url.h"
		#include "strerror.h"
		@@ -227,9 +228,10 @@ static CURLcode ntlm_wb_response(struct connectdata *conn,
		const char *input, curlntlm state)
		{
		ssize_t size;
		char buf[200]; /* enough, type 1, 3 message length is less then 200 */
		char buf[NTLM_BUFSIZE];
		char *tmpbuf = buf;
		size_t len_in = strlen(input), len_out = sizeof(buf);
		size_t len_in = strlen(input);
		size_t len_out = sizeof(buf);

		while(len_in > 0) {
		ssize_t written = swrite(conn->ntlm_auth_hlpr_socket, input, len_in);