netty5

History

Trustin Lee 1d061bbb27 Hide password in exception messages of SocksAuthRequest Related: #3504 Motivation: There are two places in the SocksAuthRequest constructor where an IllegalArgumentException is thrown with a password as part of the exception message. This constitutes mishandling of confidential information, which can compromise user privacy and is flagged as critical by security scanners. Modifications: Mask the password in the exception messages Result: No unexpected password leak	2015-03-17 17:25:09 +09:00
..
main/java/io/netty/handler/codec	Hide password in exception messages of SocksAuthRequest	2015-03-17 17:25:09 +09:00
test/java/io/netty/handler/codec	Fixed buffer leaks in DefaultSocks5CommandResponseTest	2015-02-20 16:54:26 +09:00

Trustin Lee 1d061bbb27 Hide password in exception messages of SocksAuthRequest

Related: #3504

Motivation:

There are two places in the SocksAuthRequest constructor where an
IllegalArgumentException is thrown with a password as part of the
exception message.

This constitutes mishandling of confidential information, which can
compromise user privacy and is flagged as critical by security scanners.

Modifications:

Mask the password in the exception messages

Result:

No unexpected password leak

2015-03-17 17:25:09 +09:00

main/java/io/netty/handler/codec

Hide password in exception messages of SocksAuthRequest

2015-03-17 17:25:09 +09:00

test/java/io/netty/handler/codec

Fixed buffer leaks in DefaultSocks5CommandResponseTest

2015-02-20 16:54:26 +09:00