AUTH_FILE option uses incorrect line ending in HTTP request
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
corkscrew (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
Background:
Using the AUTH_FILE option reads the provided file and uses it to add the "Proxy-
corkscrew.c:231
if ((argc == 6) || (argc == 7)) {
}
This uses an invalid newline for an HTTP request. \n is used, should be \r\n.
What happens:
When used with apache as a forward proxy, for example, this causes a 400 error to be returned from the server. Using nc and crafting a request to use \r\n instead, this works.
What I expect to happen:
The proxy request takes place.
Environment:
Description: Ubuntu 16.04.2 LTS
Release: 16.04
ii corkscrew 2.0-10 amd64 tunnel TCP connections through HTTP proxies
Status changed to 'Confirmed' because the bug affects multiple users.