Filter out escape sequences and any other unusual characters when writing all messages to the console.

This should protect against all attacks where the server sends back a malicious message.
author: Joey Hess <joeyh@joeyh.name> 2016-09-27 20:22:53 -0400
committer: Joey Hess <joeyh@joeyh.name> 2016-09-27 20:24:31 -0400
commit: 758965d177d75f529bb88e24564a0bdb5e406fc6 (patch)
tree: 8632125811610fb7444784d10caf6441dcf792e7 /CHANGELOG
parent: 40ef6d76d4d50c48f103c2b94cd45c7647a25dbc (diff)
download: keysafe-758965d177d75f529bb88e24564a0bdb5e406fc6.tar.gz
1 files changed, 2 insertions, 0 deletions
diff --git a/CHANGELOG b/CHANGELOG
index bd3f179..f61d4d5 100644
--- a/CHANGELOG
+++ b/CHANGELOG
@@ -16,6 +16,8 @@ keysafe (0.20160923) UNRELEASED; urgency=medium
     to see what servers keysafe knows about, and as a cron job.
   * Server: Round number of objects down to the nearest thousand, to avoid
     leaking too much data about when objects are uploaded to servers.
+  * Filter out escape sequences and any other unusual characters when
+    writing all messages to the console.
 
  -- Joey Hess <id@joeyh.name>  Fri, 23 Sep 2016 10:40:55 -0400
author	Joey Hess <joeyh@joeyh.name>	2016-09-27 20:22:53 -0400
committer	Joey Hess <joeyh@joeyh.name>	2016-09-27 20:24:31 -0400
commit	758965d177d75f529bb88e24564a0bdb5e406fc6 (patch)
tree	8632125811610fb7444784d10caf6441dcf792e7 /CHANGELOG
parent	40ef6d76d4d50c48f103c2b94cd45c7647a25dbc (diff)
download	keysafe-758965d177d75f529bb88e24564a0bdb5e406fc6.tar.gz