From 00a9e13920081bfc4138e72d24bd06cd55955417 Mon Sep 17 00:00:00 2001
From: neil_a_wilson <neil_a_wilson@localhost>
Date: Thu, 09 Nov 2006 20:26:58 +0000
Subject: [PATCH] Update the CRAM-MD5 SASL mechanism handler to properly set a valid result code for the case in which an authentication attempt fails because the client sent a request with a digest having the correct length but that did not contain only hexadecimal characters.

---
 opends/src/server/org/opends/server/extensions/CRAMMD5SASLMechanismHandler.java |    2 ++
 1 files changed, 2 insertions(+), 0 deletions(-)

diff --git a/opends/src/server/org/opends/server/extensions/CRAMMD5SASLMechanismHandler.java b/opends/src/server/org/opends/server/extensions/CRAMMD5SASLMechanismHandler.java
index 5d1e990..f07dc7b 100644
--- a/opends/src/server/org/opends/server/extensions/CRAMMD5SASLMechanismHandler.java
+++ b/opends/src/server/org/opends/server/extensions/CRAMMD5SASLMechanismHandler.java
@@ -372,6 +372,8 @@
     {
       assert debugException(CLASS_NAME, "processSASLBind", pe);
 
+      bindOperation.setResultCode(ResultCode.INVALID_CREDENTIALS);
+
       int    msgID   = MSGID_SASLCRAMMD5_INVALID_DIGEST_CONTENT;
       String message = getMessage(msgID, pe.getMessage());
       bindOperation.setAuthFailureReason(msgID, message);

--
Gitblit v1.10.0