[james-project] branch 3.6.x updated (90ec73f -> fad40c4)

btellier Thu, 26 Aug 2021 18:55:16 -0700

This is an automated email from the ASF dual-hosted git repository.

btellier pushed a change to branch 3.6.x
in repository https://gitbox.apache.org/repos/asf/james-project.git.



    from 90ec73f  JAMES-3635 Upgrade PrefixedRegex to RE2J
     add 02a7ed4  JAMES-1862 Generalize STARTTLS sanitizing fix
     add 82f3c18  JAMES-1862 Prevent Session fixation via STARTTLS
     new fad40c4  Merge pull request #596 JAMES-1862 Generalize STARTTLS 
sanitizing fix [BACKPORT]

The 1 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails.  The revisions
listed as "add" were already present in the repository and have only
been added to this reference.


Summary of changes:
 .../james/mpt/smtp/SmtpStarttlsCommandTest.java    |  7 ++++
 .../smtp/scripts/starttls_session_fixation.test    | 26 +++++++++++++
 .../protocols/api/CommandDetectionSession.java     | 12 +++---
 .../james/protocols/api/ProtocolSession.java       |  3 +-
 .../james/protocols/api/ProtocolSessionImpl.java   | 17 ++++++++
 .../apache/james/imap/api/process/ImapSession.java |  3 +-
 .../apache/james/imap/encode/FakeImapSession.java  | 15 ++++++++
 .../imap/processor/AbstractAuthProcessor.java      |  1 +
 .../james/imap/processor/AppendProcessor.java      |  2 +
 .../imap/processor/AuthenticateProcessor.java      |  1 +
 .../AllButStartTlsLineBasedChannelHandler.java     | 25 ++++++------
 .../AllButStartTlsLineChannelHandlerFactory.java   | 10 ++---
 .../netty}/CommandInjectionDetectedException.java  |  2 +-
 .../apache/james/protocols/smtp/SMTPSession.java   |  6 ---
 .../james/protocols/smtp/SMTPSessionImpl.java      | 14 -------
 .../smtp/core/esmtp/StartTlsCmdHandler.java        |  6 +++
 .../smtp/netty/NettyStartTlsSMTPServerTest.java    |  8 ++--
 .../protocols/smtp/utils/BaseFakeSMTPSession.java  |  2 +-
 .../james/imapserver/netty/NettyImapSession.java   | 17 ++++++++
 .../netty/SwitchableLineBasedFrameDecoder.java     | 45 +++++++++++++++++++---
 .../SwitchableLineBasedFrameDecoderFactory.java    |  2 +-
 .../managesieveserver/netty/ManageSieveServer.java |  5 ++-
 .../james/pop3server/core/PassCmdHandler.java      |  1 +
 .../apache/james/pop3server/netty/POP3Server.java  |  4 +-
 .../apache/james/smtpserver/netty/SMTPServer.java  |  4 +-
 25 files changed, 174 insertions(+), 64 deletions(-)
 create mode 100644 
mpt/impl/smtp/core/src/main/resources/org/apache/james/smtp/scripts/starttls_session_fixation.test
 copy 
backends-common/cassandra/src/main/java/org/apache/james/backends/cassandra/versions/table/CassandraSchemaVersionTable.java
 => 
protocols/api/src/main/java/org/apache/james/protocols/api/CommandDetectionSession.java
 (82%)
 rename protocols/{smtp/src/main/java/org/apache/james/protocols/smtp => 
netty/src/main/java/org/apache/james/protocols/netty}/AllButStartTlsLineBasedChannelHandler.java
 (78%)
 rename protocols/{smtp/src/main/java/org/apache/james/protocols/smtp => 
netty/src/main/java/org/apache/james/protocols/netty}/AllButStartTlsLineChannelHandlerFactory.java
 (87%)
 rename protocols/{smtp/src/main/java/org/apache/james/protocols/smtp => 
netty/src/main/java/org/apache/james/protocols/netty}/CommandInjectionDetectedException.java
 (96%)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

[james-project] branch 3.6.x updated (90ec73f -> fad40c4)

Reply via email to