respect rfc6120 §6.5 properly in sasl_error

Any unknown condition should be considered as a <not-authorized/> one.
2017-04-01 14:36:55 +01:00 · 2017-04-01 14:36:55 +01:00 · f8c76ac1e8
commit f8c76ac1e8
parent 9d57e1a63b
1 changed files with 10 additions and 0 deletions
--- a/src/components/sasl_error.rs
+++ b/src/components/sasl_error.rs
@ -70,6 +70,16 @@ impl FromElement for SaslError {
        else if element.has_child("temporary-auth-failure", ns::SASL) {
            err.condition = Condition::TemporaryAuthFailure;
        }
+        else {
+            /* RFC 6120 section 6.5:
+             *
+             * However, because additional error conditions might be defined in
+             * the future, if an entity receives a SASL error condition that it
+             * does not understand then it MUST treat the unknown condition as
+             * a generic authentication failure, i.e., as equivalent to
+             * <not-authorized/> (Section 6.5.10). */
+            err.condition = Condition::NotAuthorized;
+        }
        Ok(err)
    }
 }