net/http/http_auth_handler_digest.cc - Issue 4825001: auth-int qop is ignored for Digest authentication

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: net/http/http_auth_handler_digest.cc

Issue 4825001: auth-int qop is ignored for Digest authentication (Closed) Base URL: svn://svn.chromium.org/chrome/trunk/src/

Patch Set: Remove extra LOG(ERROR) Created 10 years, 1 month ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: net/http/http_auth_handler_digest.cc

===================================================================

--- net/http/http_auth_handler_digest.cc (revision 63735)

+++ net/http/http_auth_handler_digest.cc (working copy)

@@ -18,8 +18,6 @@

#include "net/http/http_request_info.h"

#include "net/http/http_util.h"

-// TODO(eroman): support qop=auth-int

namespace net {

// Digest authentication is specified in RFC 2617.

@@ -66,13 +64,13 @@

// static

std::string HttpAuthHandlerDigest::QopToString(int qop) {

eroman 2010/11/11 23:02:58 I think this function should be changed to either

- switch (qop) {

- case QOP_AUTH:

- return "auth";

- case QOP_AUTH_INT:

- return "auth-int";

- default:

- return "";

+ // qop is a bitmask, so report highest priority one first.

+ if (qop & QOP_AUTH_INT) {

+ return "auth-int";

+ } else if (qop & QOP_AUTH) {

eroman 2010/11/11 23:02:58 style: we avoid "else" when using returns. As in:

+ return "auth";

+ } else {

+ return "";

}

@@ -309,13 +307,20 @@

} else if (LowerCaseEqualsASCII(name, "qop")) {

// Parse the comma separated list of qops.

HttpUtil::ValuesIterator qop_values(value.begin(), value.end(), ',');

+ int qop = QOP_UNSPECIFIED;

while (qop_values.GetNext()) {

if (LowerCaseEqualsASCII(qop_values.value(), "auth")) {

- qop_ |= QOP_AUTH;

+ qop |= QOP_AUTH;

} else if (LowerCaseEqualsASCII(qop_values.value(), "auth-int")) {

- qop_ |= QOP_AUTH_INT;

+ qop |= QOP_AUTH_INT;

}

+ // TODO(cbentzel): Since auth-int isn't currently supported, fail

+ // parsing if it is the only qop option available.

+ // http://crbug.com/45194

+ if (qop == QOP_AUTH_INT)

+ return false;

eroman 2010/11/11 23:02:58 I suggest outputting some sort of warning or log m

+ qop_ = (qop & ~QOP_AUTH_INT);

} else {

DVLOG(1) << "Skipping unrecognized digest property";

// TODO(eroman): perhaps we should fail instead of silently skipping?

« no previous file with comments | « no previous file | net/http/http_auth_handler_digest_unittest.cc » ('j') | net/http/http_auth_handler_digest_unittest.cc » ('J')