User names embedded in proxy URLs without a password were parsed

incorrectly--the host name is treated as part of the user name and the port number becomes the password. This can be observed in test 279 (was KNOWN_ISSUE #54).
author: Dan Fandrich <dan@coneharvesters.com> 2008-08-01 02:09:08 +0000
committer: Dan Fandrich <dan@coneharvesters.com> 2008-08-01 02:09:08 +0000
commit: 9251dd7b2412214d3b25da666f7755a7ab207d39 (patch)
tree: 4247f5d6e31cc0a930872dd385d58ba67a9c0ac3 /lib/url.c
parent: 3615063fbcb17d04e3fa798187c7c7b8b035b6dd (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/lib/url.c b/lib/url.c
index b53cc5053..c77850794 100644
--- a/lib/url.c
+++ b/lib/url.c
@@ -3396,7 +3396,7 @@ static CURLcode parse_proxy(struct SessionHandle *data,
     proxypasswd[0] = 0;
 
     if(1 <= sscanf(proxyptr,
-                   "%" MAX_CURL_USER_LENGTH_TXT"[^:]:"
+                   "%" MAX_CURL_USER_LENGTH_TXT"[^:@]:"
                    "%" MAX_CURL_PASSWORD_LENGTH_TXT "[^@]",
                    proxyuser, proxypasswd)) {
       CURLcode res = CURLE_OK;
author	Dan Fandrich <dan@coneharvesters.com>	2008-08-01 02:09:08 +0000
committer	Dan Fandrich <dan@coneharvesters.com>	2008-08-01 02:09:08 +0000
commit	9251dd7b2412214d3b25da666f7755a7ab207d39 (patch)
tree	4247f5d6e31cc0a930872dd385d58ba67a9c0ac3 /lib/url.c
parent	3615063fbcb17d04e3fa798187c7c7b8b035b6dd (diff)