Use equals-sign in zero-length SASL success elements

Also don't use it in challenges. RFC 6120 § 6.4.3. does not mention the equals-sign logic. However the success case (§ 6.4.6) explicitly does.

Use equals-sign in zero-length SASL success elements
Also don't use it in challenges. RFC 6120 § 6.4.3. does not mention the equals-sign logic. However the success case (§ 6.4.6) explicitly does.
cd0b4e69 · Christian Schudt · 0b0dc85e · cd0b4e69
Commit cd0b4e69 authored Sep 09, 2016 by Christian Schudt
Hide whitespace changes
Inline Side-by-side

Showing with 3 additions and 3 deletions

SASLAuthentication.java ...ava/org/jivesoftware/openfire/net/SASLAuthentication.java +3 -3

No files found.
--- a/src/java/org/jivesoftware/openfire/net/SASLAuthentication.java
+++ b/src/java/org/jivesoftware/openfire/net/SASLAuthentication.java
@@ -410,9 +410,6 @@ public class SASLAuthentication {
            challenge = new byte[0];
        }
        String challenge_b64 = StringUtils.encodeBase64(challenge).trim();
-        if ("".equals(challenge_b64)) {
-            challenge_b64 = "="; // Must be padded if null
-        }
        reply.append(
                "<challenge xmlns=\"urn:ietf:params:xml:ns:xmpp-sasl\">");
        reply.append(challenge_b64);
@@ -432,6 +429,9 @@ public class SASLAuthentication {
        reply.append("<success xmlns=\"urn:ietf:params:xml:ns:xmpp-sasl\"");
        if (successData != null) {
            String successData_b64 = StringUtils.encodeBase64(successData).trim();
+            if ("".equals(successData_b64)) {
+                successData_b64 = "="; // Must be padded if null
+            }
            reply.append('>').append(successData_b64).append("</success>");
        }
        else {