technocloud-public/nginx-unit
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity

HTTP parser: relaxed checking of fields values.

Browse Source 
Allowing characters up to 0xFF doesn't conflict with RFC 7230.
Particularly, this make it possible to pass unencoded UTF-8 data
through HTTP headers, which can be useful.
This commit is contained in:
Valentin Bartenev
2018-07-03 15:18:16 +03:00
parent 0366bfad6d
commit 11cecce114
2 changed files with 2 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
src/nxt_http_parse.c
View File

@@ -699,8 +699,7 @@ nxt_http_lookup_field_end(u_char *p, u_char *end)
#define nxt_field_end_test_char(ch) \ #define nxt_field_end_test_char(ch) \
\ \
/* Values below 0x20 become more than 0xDF. */ \ if (nxt_slow_path((ch) < 0x20)) { \
if (nxt_slow_path((u_char) ((ch) - 0x20) > 0x5E)) { \
return &(ch); \ return &(ch); \
} }

2
src/test/nxt_http_parse_test.c
View File

@@ -301,7 +301,7 @@ static nxt_http_parse_test_case_t nxt_http_test_cases[] = {
{ {
nxt_string("GET / HTTP/1.1\r\n" nxt_string("GET / HTTP/1.1\r\n"
"Host: пример.испытание\r\n\r\n"), "Host: пример.испытание\r\n\r\n"),
NXT_HTTP_PARSE_INVALID, NXT_DONE,
NULL, { NULL } NULL, { NULL }
}, },
{ {