From: Jan Sievers <sievers@zedat.fu-berlin.de>
Date: Tue, 10 Sep 2013 11:28:13 +0000 (-0600)
Subject: Regression Bug 3077: off-by-one error in Digest header decoding
X-Git-Tag: SQUID_3_3_10~36
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=c0988a04533959046f86023b4cb4568e0eac8cd0;p=thirdparty%2Fsquid.git

Regression Bug 3077: off-by-one error in Digest header decoding

This is a regression in the 3.2 and later version of the original bug
fix patch.

The effect is that all attributes are treated as quoted-string values
with unescaping performed. This ends with credentials wrongly being
rejected as invalid.
---

diff --git a/src/auth/digest/auth_digest.cc b/src/auth/digest/auth_digest.cc
index 0c1a9fa6bb..a47a7c63ac 100644
--- a/src/auth/digest/auth_digest.cc
+++ b/src/auth/digest/auth_digest.cc
@@ -817,7 +817,7 @@ Auth::Digest::Config::decode(char const *proxy_auth)
             vlen = 0;
         }
 
-        StringArea keyName(item, nlen-1);
+        StringArea keyName(item, nlen);
         String value;
 
         if (vlen > 0) {