[ejabberd] cyrsasl_digest and gsasl
alexey at sevcom.net
Thu Aug 11 03:36:19 MSD 2005
On Wed, 10 Aug 2005 19:15:09 +0000 (UTC), you said:
MP> Hi, I'm working on an XMPP application that uses libgsasl
MP> (http://josefsson.org/gsasl) for SASL authentication. Using the DIGEST-MD5
MP> mechanism, the library produces responses that have a number of "empty"
MP> fields, for example
MP> username="martin", , nonce="2874065148",
MP> cnonce="N41ZoPnBdq61JnqkP0r/LQ==", nc=00000001, qop=auth,
MP> digest-uri="xmpp/localhost", response=f9b98eab077439243b70e0be68ce4296, ,
MP> charset=utf-8, , authzid="martin"
MP> While something of a wart in libgsasl, this seems to be a valid response
MP> (which is the claim in a comment in the libgsasl source
Well, according to RFC2831 that string should match this ABNF rule, which
doesn't allow things like ", ,":
( *LWS element *( *LWS "," *LWS element ))
I just committed your patch with a few changes, so now ejabberd will process
that string without a error.
More information about the ejabberd