You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@subversion.apache.org by ph...@apache.org on 2014/03/19 00:00:36 UTC

svn commit: r1579080 - /subversion/trunk/subversion/svnserve/cyrus_auth.c

Author: philip
Date: Tue Mar 18 23:00:35 2014
New Revision: 1579080

URL: http://svn.apache.org/r1579080
Log:
Fix svnserve SEGV when SASL is enabled.

* subversion/svnserve/cyrus_auth.c
  (try_auth): Initial token is optional.

Modified:
    subversion/trunk/subversion/svnserve/cyrus_auth.c

Modified: subversion/trunk/subversion/svnserve/cyrus_auth.c
URL: http://svn.apache.org/viewvc/subversion/trunk/subversion/svnserve/cyrus_auth.c?rev=1579080&r1=1579079&r2=1579080&view=diff
==============================================================================
--- subversion/trunk/subversion/svnserve/cyrus_auth.c (original)
+++ subversion/trunk/subversion/svnserve/cyrus_auth.c Tue Mar 18 23:00:35 2014
@@ -186,7 +186,7 @@ static svn_error_t *try_auth(svn_ra_svn_
 
   /* sasl uses unsigned int for the length of strings, we use apr_size_t
    * which may not be the same size.  Deal with potential integer overflow */
-  if (in->len > UINT_MAX)
+  if (in && in->len > UINT_MAX)
     return svn_error_createf(SVN_ERR_RA_NOT_AUTHORIZED, NULL,
                              _("Initial token is too long"));