Paths

Table of Contentst

Differential D12170

Censor response bodies from Mercurial error messages
ClosedPublic
Actions

Authored by epriestley on Mar 26 2015, 4:50 PM.

Details

Reviewers

btrahan

Maniphest Tasks

T6755: Allow more granular configuration of `security.allow-outbound-http`

Commits

Restricted Diffusion Commit
rPa4bfed8415c7: Censor response bodies from Mercurial error messages

Summary

Ref T6755. In Git and Subversion, running git clone http://google.com/ or svn checkout http://google.com/ does not echo the response body.

In Mercurial, it does. Censor it from the output of hg pull and hg clone. This prevents an attacker from:

Creating a Mercurial remote repository with URI http://10.0.0.1/secrets/; and
reading the secrets out of the error message after the clone fails.

Test Plan

Set a Mercurial remote URI to a non-Mercurial repository, ran repository update, saw censored error message.

Diff Detail

Repository

rP Phabricator

Lint

Automatic diff as part of commit; lint not applicable.

Unit

Automatic diff as part of commit; unit tests not applicable.

Event Timeline

epriestley updated this revision to Diff 29244.Mar 26 2015, 4:50 PM

epriestley retitled this revision from to Censor response bodies from Mercurial error messages.

epriestley updated this object.

epriestley edited the test plan for this revision. (Show Details)

epriestley added a reviewer: btrahan.

epriestley added a task: T6755: Allow more granular configuration of `security.allow-outbound-http`.

Herald added a subscriber: epriestley. · View Herald TranscriptMar 26 2015, 4:50 PM

epriestley mentioned this in T6755: Allow more granular configuration of `security.allow-outbound-http`.Mar 26 2015, 5:08 PM

epriestley updated this object.Mar 26 2015, 5:16 PM

btrahan accepted this revision.Mar 26 2015, 6:12 PM

btrahan edited edge metadata.

This revision is now accepted and ready to land.Mar 26 2015, 6:12 PM

Closed by commit rPa4bfed8415c7: Censor response bodies from Mercurial error messages (authored by epriestley). · Explain WhyMar 26 2015, 6:13 PM

This revision was automatically updated to reflect the committed changes.

epriestley mentioned this in T6848: It should be possible to view a repository's policies without necessarily being able to edit it.Mar 8 2016, 12:31 AM

Revision Contents
Changeset List

Path

Size

src/

applications/

repository/

engine/

PhabricatorRepositoryPullEngine.php

42 lines

Diff 29253

View Options

src/applications/repository/engine/PhabricatorRepositoryPullEngine.php

Censor response bodies from Mercurial error messagesClosedPublicActions