[asterisk-bugs] [JIRA] (ASTERISK-29397) pjsip: Asterisk isn't tolerant of RFC8760 UASs
Stanislav Abramenkov (JIRA)
noreply at issues.asterisk.org
Thu Apr 22 01:26:09 CDT 2021
[ https://issues.asterisk.org/jira/browse/ASTERISK-29397?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=254674#comment-254674 ]
Stanislav Abramenkov commented on ASTERISK-29397:
-------------------------------------------------
Patch (https://github.com/pjsip/pjproject/commit/bdbeb7c4b2b11efc2e59f5dee7aa4360a2bc9fff) was merged in the master branch.
> pjsip: Asterisk isn't tolerant of RFC8760 UASs
> ----------------------------------------------
>
> Key: ASTERISK-29397
> URL: https://issues.asterisk.org/jira/browse/ASTERISK-29397
> Project: Asterisk
> Issue Type: Bug
> Security Level: None
> Components: Resources/res_pjsip_outbound_authenticator_digest
> Affects Versions: 16.17.0, 18.3.0
> Reporter: George Joseph
> Assignee: George Joseph
> Severity: Major
>
> We are not currently tolerant of RFC8760 compliant UASs that send us multiple WWW-Authenticate headers. If they send us one using SHA-256 and a second one using MD5, we fail when we see SHA-256 and don't continue to look for more WWW-Authenticate headers. I have a patch that at least makes us tolerant.
--
This message was sent by Atlassian JIRA
(v6.2#6252)
More information about the asterisk-bugs
mailing list