Skip Menu |

This queue is for tickets about the libwww-perl CPAN distribution.

Report information
The Basics
Id: 43354
Status: resolved
Priority: 0/
Queue: libwww-perl
People
Owner: Nobody in particular
Requestors: mijkenator [...] gmail.com
Cc:
AdminCc:
Bug Information
Severity: Important
Broken in: (no value)
Fixed in: 6.08

History Show all quoted text
  Tue Feb 17 08:16:24 2009 mijkenator [...] gmail.com - Ticket created
Subject: Error in Authentication Digest Implementation()
LWP send auth request Proxy-Authorization: Digest ....... nc="00000001", ..... but RFC 2617 required for attribute nc following syntax: nonce-count = "nc" "=" nc-value nc-value = 8LHEX (unquoted-string) error in LWP::Authen::Digest : for (@order) { next unless defined $resp{$_}; push(@pairs, "$_=" . qq("$resp{$_}")) } change it to for (@order) { next unless defined $resp{$_}; if($_ eq 'nc'){ push(@pairs, "$_=" .qq($resp{$_})) }else{ push(@pairs, "$_=" . qq("$resp{$_}")) } }
  Fri May 20 07:28:17 2011 chiborator [...] gmail.com - Correspondence added
From: chiborator [...] gmail.com
Hi, the bug is still present in the current version of the library - 6.02. It effectively prevents GET requests to resources protected with Digest authentication using LWP::UserAgent. A possible fix is: (the diff is for libwww 5.837) LWP/Authen/Digest.pm @@ -58,7 +58,7 @@ my @pairs; for (@order) { next unless defined $resp{$_}; - push(@pairs, "$_=" . qq("$resp{$_}")); + push(@pairs, "$_=" . ($_ eq 'nc' ? $resp{$_} : qq("$resp{$_}"))); } my $auth_value = "Digest " . join(", ", @pairs); Thank you for the efforts! Stoian
  Fri May 20 07:28:18 2011 The RT System itself - Status changed from 'new' to 'open'
  Mon Dec 22 11:02:31 2014 JORISD [...] cpan.org - Correspondence added
On Fri May 20 07:28:17 2011, chiborator wrote: Show quoted text
> Hi, > the bug is still present in the current version of the library - 6.02. > It effectively prevents GET requests to resources protected with Digest > authentication using LWP::UserAgent. > > A possible fix is: > (the diff is for libwww 5.837) > > LWP/Authen/Digest.pm > > @@ -58,7 +58,7 @@ > my @pairs; > for (@order) { > next unless defined $resp{$_}; > - push(@pairs, "$_=" . qq("$resp{$_}")); > + push(@pairs, "$_=" . ($_ eq 'nc' ? $resp{$_} : qq("$resp{$_}"))); > } > > my $auth_value = "Digest " . join(", ", @pairs); > > > > Thank you for the efforts! > > Stoian
Hi, The bug is fixed in LWP 6.08
  Mon Dec 22 11:02:38 2014 JORISD [...] cpan.org - Fixed in 6.08 added
  Thu Mar 02 22:31:11 2017 olaf [...] wundersolutions.com - Correspondence added
On Mon Dec 22 11:02:31 2014, JORISD wrote: Show quoted text
> On Fri May 20 07:28:17 2011, chiborator wrote:
> > Hi, > > the bug is still present in the current version of the library - 6.02. > > It effectively prevents GET requests to resources protected with Digest > > authentication using LWP::UserAgent. > > > > A possible fix is: > > (the diff is for libwww 5.837) > > > > LWP/Authen/Digest.pm > > > > @@ -58,7 +58,7 @@ > > my @pairs; > > for (@order) { > > next unless defined $resp{$_}; > > - push(@pairs, "$_=" . qq("$resp{$_}")); > > + push(@pairs, "$_=" . ($_ eq 'nc' ? $resp{$_} : qq("$resp{$_}"))); > > } > > > > my $auth_value = "Digest " . join(", ", @pairs); > > > > > > > > Thank you for the efforts! > > > > Stoian
> > Hi, > > The bug is fixed in LWP 6.08
Thanks!
  Thu Mar 02 22:31:12 2017 olaf [...] wundersolutions.com - Status changed from 'open' to 'resolved'