login to google talk with wrong username/password leads to segmentation fault
Bug #460499 reported by
buzzdee
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Coccinella |
Fix Released
|
Medium
|
Unassigned |
Bug Description
On OpenBSD, using Coccinella source from SVN I run into a segfault when trying to connect to google talk with the default google talk account. It seems a "forbidden" is sent, instead of "bad-auth" or "not-authorized".
appended patch fixes the problem for me.
Changed in coccinella: | |
status: | Fix Committed → Fix Released |
To post a comment you must log in.
According to http:// xmpp.org/ rfcs/rfc3920. html#sasl (section 6.4), the correct server response would be "<not-authorize d/>". "<forbidden/>" is no valid response. As it is important that anyone can create a full-featured XMPP client by only using the official open protocols, it is *forbidden* to apply this patch to Coccinella.
Of course, Coccinella should not segfault (it doesn't do this on Linux btw). So, instead, I would suggest to rewrite the code to use a switch command. If the value is not found, this following string should be showed:
"Invalid error. Bug in server software: error <%s/> not defined in section 6.4 SASL Errors of RFC 3920. Please consider reporting this bug to your server administrator."