Canonical Juju

apiserver: Digest SHA header is incorrectly formed

Bug #1503992 reported by Roger Peppe on 2015-10-08

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	Canonical Juju	Fix Released	High	Ian Booth	Canonical Juju 2.0-beta5

Bug Description

The DigestAlgorithm type specifies a constant "SHA" (which according
to RFC 3230 means the SHA1 algorithm), but then images.go
in apiserver sets an SHA-256 checksum associated with this
which is hexadecimal not base64-encoded as required by the standard.

As Juju itself ignores the Digest header entirely on the client side,
this is not a problem in itself, but it should be fixed to correctly
adhere to the standard that the code refers to.

Tags:

Curtis Hovey (sinzui) on 2015-10-08

Changed in juju-core:
status:	New → Triaged
importance:	Undecided → High
milestone:	none → 1.26-alpha1
tags:	added: api

Curtis Hovey (sinzui) on 2015-11-03

Changed in juju-core:
milestone:	1.26-alpha1 → 1.26-alpha2

Cheryl Jennings (cherylj) on 2015-11-19

Changed in juju-core:
milestone:	1.26-alpha2 → 1.26-beta1

Cheryl Jennings (cherylj) on 2015-12-07

Changed in juju-core:
milestone:	1.26-beta1 → 2.0-alpha2

Cheryl Jennings (cherylj) on 2016-01-25

Changed in juju-core:
milestone:	2.0-alpha2 → 2.0-alpha3

Cheryl Jennings (cherylj) on 2016-02-29

Changed in juju-core:
milestone:	2.0-alpha3 → 2.0-beta4

Revision history for this message

Anastasia (anastasia-macmood) wrote on 2016-04-04:

DigestAlgorithm constant should reflect that we are using sha256 and be "SHA-256" (rfc5843). This will affect the protocol.

Anastasia (anastasia-macmood) on 2016-04-04

Changed in juju-core:
assignee:	nobody → Anastasia (anastasia-macmood)
status:	Triaged → In Progress

Anastasia (anastasia-macmood) on 2016-04-12

Changed in juju-core:
assignee:	Anastasia (anastasia-macmood) → nobody
status:	In Progress → Triaged
milestone:	2.0-beta4 → 2.0-rc1

Ian Booth (wallyworld) on 2016-04-14

Changed in juju-core:
assignee:	nobody → Ian Booth (wallyworld)
status:	Triaged → In Progress

Ian Booth (wallyworld) on 2016-04-15

Changed in juju-core:
status:	In Progress → Fix Committed

Curtis Hovey (sinzui) on 2016-04-20

Changed in juju-core:
status:	Fix Committed → Fix Released

Canonical Juju QA Bot (juju-qa-bot) on 2016-08-23

affects:	juju-core → juju
Changed in juju:
milestone:	2.0-beta5 → none
milestone:	none → 2.0-beta5

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.