Package: libapache2-mod-auth-tkt Version: 2.1.0-6 Severity: normal Tags: patch upstream
AT&T apparently has a lovely proxy that strips whitespace from Cookie headers http://forums.att.com/t5/Data-Messaging-Features-Internet/3G-proxy-wnsnet-attws-com-strips-HTTP-response-headers/td-p/3294533 We have had some users behind AT&T who were unable to log in, so we applied the attatched patch to our mod-auth-tkt. Upstream seems fairly slow these days, so I thought I'd bounce it here too. SR
Description: patch for cookie header with whitespace stripped Some badly behaved proxy/cache servers strip whitespace from headers, which results in a failure to parse the cookie correctly. This will allow for that. Author: Bearnard Hibbins <bearn...@gmail.com> Origin: https://github.com/yola/mod_auth_tkt/commit/eecfce3ddff154f804d377d0bdabe8bebdce62a6 Origin: https://github.com/yola/mod_auth_tkt/commit/ed457d9abe2aaba1c81ae21886cdbcc0f9fc3a22 Forwarded: https://github.com/gavincarr/mod_auth_tkt/pull/9 --- a/src/mod_auth_tkt.c +++ b/src/mod_auth_tkt.c @@ -610,8 +609,8 @@ value = (char*) cookie; while ((value = strstr(value, cookie_name))) { - /* cookie_name must be preceded by a space or be at the very beginning */ - if (value > cookie && *(value-1) != ' ') { + /* cookie_name must be preceded by a space or a semicolon or be at the very beginning */ + if (value > cookie && (*(value-1) != ' ' && *(value-1) != ';')) { value++; continue; }
