internal/socks: permit authenticating with an empty password

iseki0 · gopherbot · commit 3d5a8ee7d3fe · 2023-04-07T18:10:19.000Z
The behavior is accepted widely, and I found no reason to deny it. Fixes golang/go#57285 Change-Id: I39b07295cc89481ea0d6b70b71f2aa57f1a01407 GitHub-Last-Rev: b00ecb1 GitHub-Pull-Request: #157 Reviewed-on: https://go-review.googlesource.com/c/net/+/457355 Run-TryBot: Damien Neil <dneil@google.com> Auto-Submit: Damien Neil <dneil@google.com> TryBot-Result: Gopher Robot <gobot@golang.org> Reviewed-by: Than McIntosh <thanm@google.com> Reviewed-by: Damien Neil <dneil@google.com> Auto-Submit: Ian Lance Taylor <iant@google.com> Run-TryBot: Ian Lance Taylor <iant@google.com> Reviewed-by: Ian Lance Taylor <iant@google.com>
diff --git a/internal/socks/socks.go b/internal/socks/socks.go
@@ -289,7 +289,7 @@ func (up *UsernamePassword) Authenticate(ctx context.Context, rw io.ReadWriter,
 	case AuthMethodNotRequired:
 		return nil
 	case AuthMethodUsernamePassword:
-		if len(up.Username) == 0 || len(up.Username) > 255 || len(up.Password) == 0 || len(up.Password) > 255 {
+		if len(up.Username) == 0 || len(up.Username) > 255 || len(up.Password) > 255 {
 			return errors.New("invalid username/password")
 		}
 		b := []byte{authUsernamePasswordVersion}

Original file line number	Diff line number	Diff line change
`@@ -289,7 +289,7 @@ func (up *UsernamePassword) Authenticate(ctx context.Context, rw io.ReadWriter,`
`289`	`289`	`case AuthMethodNotRequired:`
`290`	`290`	`return nil`
`291`	`291`	`case AuthMethodUsernamePassword:`
`292`		`- if len(up.Username) == 0 \|\| len(up.Username) > 255 \|\| len(up.Password) == 0 \|\| len(up.Password) > 255 {`
	`292`	`+ if len(up.Username) == 0 \|\| len(up.Username) > 255 \|\| len(up.Password) > 255 {`
`293`	`293`	`return errors.New("invalid username/password")`
`294`	`294`	`}`
`295`	`295`	`b := []byte{authUsernamePasswordVersion}`