[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: [neon] Re: "Authorization failed" with windows server and solaris client

From: Joe Orton <joe_at_manyfish.co.uk>
Date: 2002-09-30 23:03:27 CEST

On Mon, Sep 30, 2002 at 03:04:06PM -0500, Florin Iucha wrote:
> On Mon, Sep 30, 2002 at 08:35:34PM +0100, Joe Orton wrote:
> > I can't reproduce any problems using long passwords over basic auth with
> > neon here - bear in mind that 'x'es in the neon debug output includes
> > the "Basic " string and the base64 encoded text includes the username
> > and a colon.
>
> I have created "testuser" with "longpasswordsarecool".
>
> $ cat | base64-encode
> testuser:longpasswordsarecool
> dGVzdHVzZXI6bG9uZ3Bhc3N3b3Jkc2FyZWNvb2wK
> $ grep dGVzdHVzZXI6bG9u err_long
> Authorization: Basic dGVzdHVzZXI6bG9uZ3Bhc3M=
>
> Correct: dGVzdHVzZXI6bG9uZ3Bhc3N3b3Jkc2FyZWNvb2wK
> Neon : dGVzdHVzZXI6bG9uZ3Bhc3M=

The password has been truncated to 8 characters, and I'm guessing this
happens before it gets to neon. Google tells me that the Solaris
getpass() implementation, which is used by APR, will do this.

Can you try commenting out the

#define HAVE_GETPASS 1

line in apr/include/arch/unix/apr_private.h, or adding an

#undef HAVE_GETPASS

in an appropriate place in passwd/apr_getpass.c so that the replacement
getpass() implementation is used in APR?

Regards,

joe

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Mon Sep 30 23:04:06 2002

This is an archived mail posted to the Subversion Dev mailing list.