socks: SOCKS5 proxy with empty password should be allowed

The behavior is accepted widely, and I found no reason to deny it. Fixes #57285
golang · Dec 13, 2022 · b00ecb1 · b00ecb1
1 parent e1ec361
commit b00ecb1
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/internal/socks/socks.go b/internal/socks/socks.go
@@ -289,7 +289,7 @@ func (up *UsernamePassword) Authenticate(ctx context.Context, rw io.ReadWriter,
 	case AuthMethodNotRequired:
 		return nil
 	case AuthMethodUsernamePassword:
-		if len(up.Username) == 0 || len(up.Username) > 255 || len(up.Password) == 0 || len(up.Password) > 255 {
+		if len(up.Username) == 0 || len(up.Username) > 255 || len(up.Password) > 255 {
 			return errors.New("invalid username/password")
 		}
 		b := []byte{authUsernamePasswordVersion}