Check whether secrets are empty and mark them all as sensitive

nicolas-grekas · nicolas-grekas · commit aa9865cafee4 · 2023-11-06T18:20:05.000+01:00
diff --git a/Transport/Smtp/Auth/CramMd5Authenticator.php b/Transport/Smtp/Auth/CramMd5Authenticator.php
@@ -11,6 +11,7 @@
 
 namespace Symfony\Component\Mailer\Transport\Smtp\Auth;
 
+use Symfony\Component\Mailer\Exception\InvalidArgumentException;
 use Symfony\Component\Mailer\Transport\Smtp\EsmtpTransport;
 
 /**
@@ -41,6 +42,10 @@ public function authenticate(EsmtpTransport $client): void
      */
     private function getResponse(#[\SensitiveParameter] string $secret, string $challenge): string
     {
+        if (!$secret) {
+            throw new InvalidArgumentException('A non-empty secret is required.');
+        }
+
         if (\strlen($secret) > 64) {
             $secret = pack('H32', md5($secret));
         }
