2469

Ran 23 Jan 2017 09:07PM UTC

Jobs 1

Files 84

Run time 4s

Badge

Embed ▾

pending completion

Build # 2469

Build Type

push

travis-ci

Committed by

seanmonstar

Commit Message

fix(header): security fix for header values that include newlines

Newlines in header values will now be replaced with spaces when being
written to strings or to sockets. This prevents headers that are built
from user data to smuggle unintended headers or requests/responses.

Thanks to @skylerberg for the responsible reporting of this issue, and
helping to keep us all safe!

BREAKING CHANGE: This technically will cause code that a calls
  `SetCookie.fmt_header` to panic, as it is no longer to properly write
  that method. Most people should not be doing this at all, and all
  other ways of printing headers should work just fine.

  The breaking change must occur in a patch version because of the
  security nature of the fix.

Run Details

3710 of 4338 relevant lines covered (85.52%)

1.92 hits per line

Jobs

ID	Job ID	Ran	Files	Coverage
3	2469.3	23 Jan 2017 09:07PM UTC	0	85.52	Travis Job 2469.3

Source Files on build 2469

Detailed source file information is not available for this build.

hyperium / hyper / 2469

README BADGES
x

Markdown

Textile

RDoc

HTML

Rst

Jobs

Source Files on build 2469

hyperium / hyper / 2469

README BADGES x

Markdown

Textile

RDoc

HTML

Rst

Jobs

Source Files on build 2469

README BADGES
x