Re: JSON-RPC password

Bitcoin Talk

Quote from: lachesis on July 25, 2010, 19:52:35
I found what appears to be a bug: with a long enough username and password combination, the base64 encoder in bitcoind produces authorization headers that look like this:
Code:

...
Authorization: Basic YWJiYWJiYWFiYmE6aGVsbG93b3JsZGhlbGxvd29ybGRoZWxsb3dvcmxkaGVsbG93
b3JsZGhlbGxvd29ybGRoZWxsb3dvcmxk

It inserts a newline every 64 characters, which obviously breaks the Authorization header, so commands like “bitcoin getinfo” fail. The server still works fine with properly behaving clients.

This can be solved by removing the newlines (and maybe ‘\r’s) from result at the end of the Base64Encode function:
Code:

result.erase(std::remove(result.begin(), result.end(), '\n'), result.end());
result.erase(std::remove(result.begin(), result.end(), '\r'), result.end());

+1 to you for having such a long password that you found this bug.

Uploaded to SVN as rev 110.

10,589 total views, 2 views today

Related posts:

  1. JSON-RPC password I uploaded to SVN my changes to add a password...
  2. Re: JSON-RPC password Quote from: lachesis on July 23, 2010, 18:22:08 The password...
  3. Re: JSON-RPC password The Transmission BitTorrent client does authenticated JSON-RPC; see “Remote Control”...
  4. Re: JSON-RPC password If you’re using another JSON-RPC client that you wrote you...
  5. Re: JSON-RPC password I’ve updated the RPC wiki page for how the password...
  6. Re: JSON-RPC password Quote from: gavinandresen on July 22, 2010, 01:11:26 TODO: dialog...
https://bitcointalk.org/index.php?topic=461.msg5767#msg5767