Issue Details (XML | Word | Printable)

Key: JM-1109
Type: Bug Bug
Status: Closed Closed
Resolution: Fixed
Priority: Major Major
Assignee: Gaston Dombiak
Reporter: Jay
Votes: 1
Watchers: 3
Operations

If you were logged in you would be able to see more operations.
Openfire (ARCHIVED)

Imporper SASL DIGEST-MD5 handeling

Created: 09/05/07 04:27 PM   Updated: 05/29/09 08:53 PM
Component/s: Core
Affects Version/s: None
Fix Version/s: 3.4.0

Time Tracking:
Not Specified

Resolution Date: 05/29/09 08:53 PM
Acceptance Test - Add?: No


 Description  « Hide
When using the DIGEST-MD5 mechanism, a client may choose to attempt a "subsequent authentication" by using previous authentication information as a shortcut. Java's SASL implementation does not support this, and when a client supplies an initial token an exception is thrown. This violates RFC 2831, since the server needs to respond with a challenge not an error in this case.

 All   Comments   Work Log   Change History   FishEye      Sort Order: Ascending order - Click to sort in descending order
[ Permalink | « Hide ]
Jay added a comment - 09/05/07 04:30 PM
r9056 should fix this issue in trunk. If we can get a few people to verify this with gaim/pidgin its easy enough to backport to other branches/versions if needed.

[ Permalink | « Hide ]
Guus der Kinderen added a comment - 11/19/07 03:00 PM
Two of my users (one using Adium, the other using Pidgin itself) are reporting that this fix works for them.


Powered by a free Atlassian JIRA open source license for igniterealtime.org. Try JIRA - bug tracking software for your team.
Atlassian JIRA the Professional Issue Tracker. (Enterprise Edition, Version: 3.13.4-#354) - Bug/feature request - Atlassian news - Contact Administrators