[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[or-cvs] Be a bit more verbose in our AUTHENTICATE error messages in...

To: or-cvs@xxxxxxxxxxxxx
Subject: [or-cvs] Be a bit more verbose in our AUTHENTICATE error messages in...
From: weasel@xxxxxxxx (Peter Palfrader)
Date: Wed, 12 Oct 2005 15:45:37 -0400 (EDT)
Delivered-to: archiver@seul.org
Delivered-to: or-cvs-outgoing@seul.org
Delivered-to: or-cvs@seul.org
Delivery-date: Wed, 12 Oct 2005 15:45:51 -0400
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-cvs@xxxxxxxxxxxxx

Update of /home/or/cvsroot/tor/src/or
In directory moria:/tmp/cvs-serv31403/src/or

Modified Files:
	control.c 
Log Message:
Be a bit more verbose in our AUTHENTICATE error messages in the control protocol so the next guy doesn't blame Nick again

Index: control.c
===================================================================
RCS file: /home/or/cvsroot/tor/src/or/control.c,v
retrieving revision 1.139
retrieving revision 1.140
diff -u -d -r1.139 -r1.140
--- control.c	12 Oct 2005 04:31:44 -0000	1.139
+++ control.c	12 Oct 2005 19:45:35 -0000	1.140
@@ -946,6 +946,7 @@
 static int
 handle_control_authenticate(connection_t *conn, uint32_t len, const char *body)
 {
+  int used_quoted_string = 0;
   or_options_t *options = get_options();
   char *password;
   size_t password_len;
@@ -959,7 +960,7 @@
         ++i;
       password = tor_malloc(i/2 + 1);
       if (base16_decode(password, i/2+1, body, i)<0) {
-        connection_write_str_to_buf("551 Invalid hexadecimal encoding\r\n", conn);
+        connection_write_str_to_buf("551 Invalid hexadecimal encoding.  Maybe you tried a plain text password?  If so, the standard requires you put it in double quotes.\r\n", conn);
         tor_free(password);
         return 0;
       }
@@ -969,9 +970,10 @@
       password_len = 0;
     } else {
       if (!get_escaped_string(body, len, &password, &password_len)) {
-        connection_write_str_to_buf("551 Invalid quoted string\r\n", conn);
+        connection_write_str_to_buf("551 Invalid quoted string.  You need to put the password in double quotes.\r\n", conn);
         return 0;
       }
+      used_quoted_string = 1;
     }
   }
   if (options->CookieAuthentication) {
@@ -983,7 +985,7 @@
     char expected[S2K_SPECIFIER_LEN+DIGEST_LEN];
     char received[DIGEST_LEN];
     if (decode_hashed_password(expected, options->HashedControlPassword)<0) {
-      log_fn(LOG_WARN,"Couldn't decode HashedControlPassword: invalid base64");
+      log_fn(LOG_WARN,"Couldn't decode HashedControlPassword: invalid base16");
       goto err;
     }
     secret_to_key(received,DIGEST_LEN,password,password_len,expected);
@@ -1001,7 +1003,10 @@
     send_control0_error(conn,ERR_REJECTED_AUTHENTICATION,"Authentication failed");
   else {
     tor_free(password);
-    connection_write_str_to_buf("515 Authentication failed\r\n", conn);
+    if (used_quoted_string)
+      connection_write_str_to_buf("515 Authentication failed\r\n", conn);
+    else
+      connection_write_str_to_buf("515 Authentication failed.  Maybe you tried a plain text password?  If so, the standard requires you put it in double quotes.\r\n", conn);
   }
   return 0;
  ok:

Prev by Author: [or-cvs] Remove 08_add_newlines_between_serverdescriptors.dpatch
Next by Author: [or-cvs] Check if our IP address has changed every 5 minutes. If it...
Previous by thread: [or-cvs] When no descriptors changed, do not send a NEWDESC event.
Next by thread: [or-cvs] Check if our IP address has changed every 5 minutes. If it...
Index(es):
- Author
- Thread