From 9f1852c7638c1bccecd0120a570ae3f3bfd518af Mon Sep 17 00:00:00 2001
From: Matthew Wild <mwild1@gmail.com>
Date: Sat, 28 Nov 2009 15:12:43 +0000
Subject: util.sasl.plain: Fail gracefully on empty <auth/> tag

---
 util/sasl/plain.lua | 14 +++++++++-----
 1 file changed, 9 insertions(+), 5 deletions(-)

(limited to 'util/sasl')

diff --git a/util/sasl/plain.lua b/util/sasl/plain.lua
index 46a86bb9..9ebfa15d 100644
--- a/util/sasl/plain.lua
+++ b/util/sasl/plain.lua
@@ -21,10 +21,14 @@ module "plain"
 --SASL PLAIN according to RFC 4616
 local function plain(self, message)
 	local response = message
-	local authorization = s_match(response, "([^%z]+)")
-	local authentication = s_match(response, "%z([^%z]+)%z")
-	local password = s_match(response, "%z[^%z]+%z([^%z]+)")
-
+	
+	local authorization, authentication, password;
+	if response then
+		authorization = s_match(response, "([^%z]+)")
+		authentication = s_match(response, "%z([^%z]+)%z")
+		password = s_match(response, "%z[^%z]+%z([^%z]+)")
+	end
+	
 	if authentication == nil or password == nil then
 		return "failure", "malformed-request";
 	end
@@ -63,4 +67,4 @@ function init(registerMechanism)
 	registerMechanism("PLAIN", {"plain", "plain_test"}, plain);
 end
 
-return _M;
\ No newline at end of file
+return _M;
-- 
cgit v1.2.3