diff options
author | Tomas Popela <tpopela@redhat.com> | 2016-03-01 15:56:34 +0100 |
---|---|---|
committer | Tomas Popela <tpopela@redhat.com> | 2016-03-01 15:56:34 +0100 |
commit | bc7d459261a28a0d3f0d2608f4fdfbca42accc7a (patch) | |
tree | 721b345acf9ea75fefcf9a214bddad5d7c82faab | |
parent | 5492b36c925f1e1ba1541a39e3b9aa05d397b20c (diff) | |
download | libsoup-bc7d459261a28a0d3f0d2608f4fdfbca42accc7a.tar.gz |
soup-auth-negotiate: Don't print auth headers value if we fail to parse them
It could be a potential security information leak.
-rw-r--r-- | libsoup/soup-auth-negotiate.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/libsoup/soup-auth-negotiate.c b/libsoup/soup-auth-negotiate.c index 2fbc0089..5dc67a38 100644 --- a/libsoup/soup-auth-negotiate.c +++ b/libsoup/soup-auth-negotiate.c @@ -311,7 +311,7 @@ check_server_response (SoupMessage *msg, gpointer auth) auth_headers = soup_message_headers_get_one (msg->response_headers, "WWW-Authenticate"); if (!auth_headers || g_ascii_strncasecmp (auth_headers, "Negotiate ", 10) != 0) { - g_warning ("Failed to parse auth header %s", auth_headers); + g_warning ("Failed to parse auth header"); conn->state = SOUP_NEGOTIATE_FAILED; goto out; } |