Revert "Switch to Signature Canonicalization version 2"

This reverts commit 14bf169.

lib/https.c

@@ -666,18 +666,14 @@ https_send(struct https_request *req, const char *method, const char *uri,
     BIO *b64;
     HMAC_CTX *hmac;
     unsigned char MD[SHA512_DIGEST_LENGTH];
-    char *qs, *p, date[128];
+    char *qs, *p;
     int i, n, is_get;
-    time_t t;
 
     req->done = 0;
 
-    t = time(NULL);
-    strftime(date, sizeof date, "%a, %d %b %Y %T %z", localtime(&t));
-
     /* Generate query string and canonical request to sign */
     if ((qs = _argv_to_qs(argc, argv)) == NULL ||
-        (asprintf(&p, "%s\n%s\n%s\n%s\n%s", date, method, req->host, uri, qs)) < 0) {
+        (asprintf(&p, "%s\n%s\n%s\n%s", method, req->host, uri, qs)) < 0) {
         free(qs);
         ctx.errstr = strerror(errno);
         return (HTTPS_ERR_LIB);
@@ -698,7 +694,6 @@ https_send(struct https_request *req, const char *method, const char *uri,
                "User-Agent: %s\r\n",
                useragent);
     /* Add signature */
-    BIO_printf(req->cbio, "X-Duo-Date: %s\r\n", date);
     BIO_puts(req->cbio, "Authorization: Basic ");
 
     if ((hmac = HMAC_CTX_new()) == NULL) {

tests/mockduo.py

@@ -66,13 +66,7 @@ def _verify_sig(self):
         if ikey != IKEY:
             return False
 
-        # first look for x-duo-date header
-        datestring = self.headers.get("x-duo-date")
-        if datestring is None:
-            # if it doesn't exist, try looking for Date header
-            datestring = self.headers.get("Date")
-
-        canon = [datestring, self.method, self.headers["Host"].split(":")[0].lower(), self.path]
+        canon = [self.method, self.headers["Host"].split(":")[0].lower(), self.path]
         l = []
         for k in sorted(self.args.keys()):
             l.append(