Mirrored_Repos/obs-websocket
1
0
Fork 0
mirror of https://github.com/Palakis/obs-websocket.git synced 2024-08-30 18:12:16 +00:00
Code Issues Packages Projects Releases Wiki Activity

Fixes #1

Browse Source
This commit is contained in:
Stéphane Lepin
2016-11-18 01:54:32 +01:00
parent 7dd3cf0a57
commit 24c8473524
1 changed files with 5 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
Config.cpp
View File

@ -96,17 +96,16 @@ void Config::SetPassword(const char *password) {
bool Config::CheckAuth(const char *response) { bool Config::CheckAuth(const char *response) {
size_t challengeLength = strlen(this->Challenge); size_t challengeLength = strlen(this->Challenge);
size_t responseLength = strlen(response);
// Concatenate challenge and auth response // Concatenate challenge with itself
char *challengeAndResponse = (char*)bzalloc(challengeLength + responseLength); char *challengeAndResponse = (char*)bzalloc(challengeLength * 2);
memcpy(challengeAndResponse, this->Challenge, challengeLength); memcpy(challengeAndResponse, this->Challenge, challengeLength);
memcpy(challengeAndResponse + challengeLength, response, responseLength); memcpy(challengeAndResponse + challengeLength, this->Challenge, challengeLength);
challengeAndResponse[challengeLength + responseLength] = 0; // Null-terminate the string challengeAndResponse[challengeLength * 2] = 0; // Null-terminate the string
// Generate a SHA256 hash of challengeAndResponse // Generate a SHA256 hash of challengeAndResponse
unsigned char *hash = (unsigned char*)bzalloc(32); unsigned char *hash = (unsigned char*)bzalloc(32);
mbedtls_sha256((unsigned char*)challengeAndResponse, challengeLength + responseLength, hash, 0); mbedtls_sha256((unsigned char*)challengeAndResponse, challengeLength * 2, hash, 0);
// Encode the SHA256 hash to Base64 // Encode the SHA256 hash to Base64
unsigned char *expected_response = (unsigned char*)bzalloc(64); unsigned char *expected_response = (unsigned char*)bzalloc(64);