Build result summary

Details

	Commit	Message	Commit date
Guus der Kinderen	d9f966f1ade13034d2328eb10dfe0b76a9fe304e	OF-3257 (code review): Updated reference to JIRA issue in comment.	05 May 2026
Guus der Kinderen	55f400f4b1e48da9a26bf0b033be8a5932653817	OF-3257: Use constant-time comparison for channel binding data in SCRAM-SHA-1(-PLUS) SASL server Previously, the comparison of the expected and received channel binding payloads in ScramSha1SaslServer used Arrays.equals, which is not guaranteed to operate in constant time. This could potentially leak information about the channel binding data through timing side-channels. This change replaces Arrays.equals with MessageDigest.isEqual, ensuring that the comparison is performed in constant time. This strengthens the implementation against timing attacks, aligns with secure coding best practices, and provides defense-in-depth for sensitive authentication operations.	05 May 2026
Guus der Kinderen	d8481eb175564f69727192ee303e49fb58a34bbd	OF-3257/OF-3258 (code review): Spelling: 'nonexisting' -> 'nonexistent'	05 May 2026
Guus der Kinderen	7325e1f3f14d5e2ee8ddc23b02265c23c306dbe4	OF-3257/OF-3258 (code review): Prevent order-dependent failures by resetting the property after each test.	05 May 2026
Guus der Kinderen	38b2549c1a8753fffcc25dc54300ec0417d94c9b	OF-3257 (code review): Remove unused imports	05 May 2026

Issue		Description	Status
Unknown Issue Type	OF-3257	Could not obtain issue details from Jira
Unknown Issue Type	OF-3258	Could not obtain issue details from Jira

Artifact	File size
.deb files	68 MB