fix openldap crash when checkRDN=1 and username contains dash #16

ltb-project · Aug 20, 2019 · ff79469 · ff79469
1 parent eb43ab5
commit ff79469
Show file tree

Hide file tree

Showing 2 changed files with 14 additions and 8 deletions.
diff --git a/ppm.c b/ppm.c
@@ -298,23 +298,28 @@ containsRDN(char* passwd, char* DN)
     {
       if (strlen(token) > 2)
       {
+        ppm_log(LOG_NOTICE, "ppm: Checking if %s part of RDN matches the password", token);
         // Compile regular expression
         reti = regcomp(&regex, token, REG_ICASE);
         if (reti) {
           ppm_log(LOG_ERR, "ppm: Cannot compile regex: %s", token);
           exit(EXIT_FAILURE);
         }
-      }
 
-      // Execute regular expression
-      reti = regexec(&regex, passwd, 0, NULL, 0);
-      if (!reti)
-      {
+        // Execute regular expression
+        reti = regexec(&regex, passwd, 0, NULL, 0);
+        if (!reti)
+        {
+          regfree(&regex);
+          return 1;
+        }
+
         regfree(&regex);
-        return 1;
       }
-
-      regfree(&regex);
+      else
+      {
+        ppm_log(LOG_NOTICE, "ppm: %s part of RDN is too short to be checked", token);
+      }
       token = strtok(NULL, TOKENS_DELIMITERS);
     }
 

diff --git a/unit_tests.sh b/unit_tests.sh
@@ -109,6 +109,7 @@ launch_test "ppm2.conf" "uid=test,ou=users,dc=my-domain,dc=com" "AAaaaBBBBaaa01A
 # password in RDN
 launch_test "ppm3.conf" "uid=User_Password10-test,ou=users,dc=my-domain,dc=com" "Password10" "FAIL"
 launch_test "ppm3.conf" "uid=User_Passw0rd-test,ou=users,dc=my-domain,dc=com" "Password10" "PASS"
+launch_test "ppm3.conf" "uid=User-Pw-Test,ou=users,dc=my-domain,dc=com" "Password10" "PASS"
 
 
 echo "${RESULT} error(s) encountered"