aniani/elinks
1
0
Fork 0
mirror of https://github.com/rkd77/elinks.git synced 2024-12-04 14:46:47 -05:00
Code

As a stop gap measure avoid using NULL entry->nonce and realms

Browse Source 
Reported by xmath. Obviously needs to be looked into.
This commit is contained in:
Jonas Fonseca 2006-01-10 15:35:15 +01:00 committed by Jonas Fonseca
parent 3d837406d6
commit b673e64e10
1 changed files with 6 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
src/protocol/auth/digest.c
View File

@ -110,7 +110,8 @@ init_response_digest(md5_digest_hex_T response, struct auth_entry *entry,
MD5_Init(&MD5Ctx); MD5_Init(&MD5Ctx);
MD5_Update(&MD5Ctx, ha1, sizeof(ha1)); MD5_Update(&MD5Ctx, ha1, sizeof(ha1));
MD5_Update(&MD5Ctx, ":", 1); MD5_Update(&MD5Ctx, ":", 1);
MD5_Update(&MD5Ctx, entry->nonce, strlen(entry->nonce)); if (entry->nonce)
MD5_Update(&MD5Ctx, entry->nonce, strlen(entry->nonce));
MD5_Update(&MD5Ctx, ":", 1); MD5_Update(&MD5Ctx, ":", 1);
MD5_Update(&MD5Ctx, "00000001", 8); MD5_Update(&MD5Ctx, "00000001", 8);
MD5_Update(&MD5Ctx, ":", 1); MD5_Update(&MD5Ctx, ":", 1);
@ -142,10 +143,12 @@ get_http_auth_digest_response(struct auth_entry *entry, struct uri *uri)
add_to_string(&string, entry->user); add_to_string(&string, entry->user);
add_to_string(&string, "\", "); add_to_string(&string, "\", ");
add_to_string(&string, "realm=\""); add_to_string(&string, "realm=\"");
add_to_string(&string, entry->realm); if (entry->realm)
add_to_string(&string, entry->realm);
add_to_string(&string, "\", "); add_to_string(&string, "\", ");
add_to_string(&string, "nonce=\""); add_to_string(&string, "nonce=\"");
add_to_string(&string, entry->nonce); if (entry->nonce)
add_to_string(&string, entry->nonce);
add_to_string(&string, "\", "); add_to_string(&string, "\", ");
add_to_string(&string, "uri=\"/"); add_to_string(&string, "uri=\"/");
add_bytes_to_string(&string, uri->data, uri->datalen); add_bytes_to_string(&string, uri->data, uri->datalen);