httpauth: http digest challenge request using RFC 7616 #919
Conversation
|
It is the first of my PR regarding HTTP digest auth. The upcoming one will handle the response creation and the verification steps. |
|
Unsure why there is a segfault for mingw now (the stack trace looks broken after this): 13: test_httpauth_digest_request (\home\runner\work\re\re\baresip-win32\re\test\httpauth.c:446) Nothing obvious to me, at first look. |
|
Currently i'm setting up the mingw on my local machine to run the tests. |
src/httpauth/digest.c
Outdated
| * | ||
| * @return 0 if success, otherwise errorcode | ||
| */ | ||
| int httpauth_digest_chall_request(struct httpauth_digest_chall_req **preq, |
There was a problem hiding this comment.
I suggest to call this function:
httpauth_digest_chall_request_full()
and the short form
httpauth_digest_chall_request().
Don't forget to update the doxygen!
cHuberCoffee
force-pushed
the
httpauth_digest_requests
branch
from
c396cec
to
7292059
Compare
+ definition of a request struct allowing to handle necessary
data used for the digest challenge
+ adding data fields to challenge struct to support the new
data fields
cHuberCoffee
force-pushed
the
httpauth_digest_requests
branch
2 times, most recently
from
4aadc08
to
a9856fc
Compare
src/httpauth/digest.c
Outdated
| { | ||
| struct mbuf *mb = NULL; | ||
| char *nonce = NULL; | ||
| uint8_t *hash = NULL; |
There was a problem hiding this comment.
Maybe simply use uint8_t hash[SHA256_DIGEST_LENGTH]; I see no need for heap usage here.
There was a problem hiding this comment.
The hashlen variable was the problematic piece. Using the hashlen variable in mbuf_printf(mb, "%w", hash, hashlen) produced a wrong behavior inside the printing function re_vhprintf. Changing the hashlen variable to size_t (required by %w) it works fine. Also the cast of time_t is now a fixed size integer type uint64_t with its corresponding PRIxx macro.
I can't tell why this phenomena is only observed if it was cross-compiled in the workflow. I cross-compiled it on my local machine and executed the binary on an windows machine without this behavior. In case i downloaded the binary from the workflow, i got the same result as the workflow itself.
There was a problem hiding this comment.
Nice, but there is no need for hash heap usage, you can use a stack hash array variable for better performance, since its only 32 bytes (no need for mem_zalloc). So you can use simply sizeof(hash) instead of hashlen.
cHuberCoffee
force-pushed
the
httpauth_digest_requests
branch
from
3d02946
to
af14517
Compare
cHuberCoffee
force-pushed
the
httpauth_digest_requests
branch
from
68c2ee3
to
8eda482
Compare
sreimers
changed the title
No description provided.