[CONJ-1252] GSSAPI error when exchanges from server starts with 0x01 byte - Jira

XML

Word

Printable

Details

Type: Bug
Status: Closed (View Workflow)
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 3.5.4
Component/s: Other
Labels:
None

Description

Authentication Plugin Data Prefixing Protocol Behavior

When exchanging authentication plugin data, the server adds a protective prefix mechanism to prevent potential misinterpretation of certain byte sequences:

The server adds an extra 0x01 byte prefix to any authentication data that begins with 0x00,0xff, 0xfe, or 0x01
This safeguard prevents authentication data from being incorrectly interpreted as Error packets, Ok packet or Authentication Switch Request packets

Currently, the Java connector does not handle this protocol specification correctly. In practice, this limitation primarily affects GSSAPI authentication, as other supported authentication methods produce data that cannot begin with the 0x01 byte.

Attachments

Activity

People

Assignee:: Diego Dupin

Reporter:: Diego Dupin

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 2025-05-19 16:01

Updated:: 2025-05-19 16:35

Resolved:: 2025-05-19 16:35

Git Integration

Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.