Regression Bug 3077: off-by-one error in Digest header decoding

This is a regression in the 3.2 and later version of the original bug
fix patch.

The effect is that all attributes are treated as quoted-string values
with unescaping performed. This ends with credentials wrongly being
rejected as invalid.

diff --git a/src/auth/digest/auth_digest.cc b/src/auth/digest/auth_digest.cc
index 0c1a9fa6bb513da0d68f42cbd7220d4f2e2c1851..a47a7c63acbd5dc062de91dca8c9c5eab0b6e309 100644 (file)
--- a/src/auth/digest/auth_digest.cc
+++ b/src/auth/digest/auth_digest.cc
@@ -817,7 +817,7 @@ Auth::Digest::Config::decode(char const *proxy_auth)
             vlen = 0;
         }
 
-        StringArea keyName(item, nlen-1);
+        StringArea keyName(item, nlen);
         String value;
 
         if (vlen > 0) {