mirrors/haproxy
1
0
Fork 0
mirror of https://git.haproxy.org/git/haproxy.git/ synced 2025-08-06 15:17:01 +02:00
Code Issues Projects Releases Wiki Activity

MINOR: http: add new function http_path_has_forbidden_char()

Browse Source 
As its name implies, this function checks if a path component has any
forbidden headers starting at the designated location. The goal is to
seek from the result of a successful ist_find_range() for more precise
chars. Here we're focusing on 0x00-0x1F, 0x20 and 0x23 to make sure
we're not too strict at this point.
This commit is contained in:
Willy Tarreau 2023-08-08 15:24:54 +02:00
parent 197668de97
commit 30f58f4217
1 changed files with 19 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

19
include/haproxy/http.h
View File

@ -190,6 +190,25 @@ static inline int http_header_has_forbidden_char(const struct ist ist, const cha
return 0;
}
/* Looks into <ist> for forbidden characters for :path values (0x00..0x1F,
* 0x20, 0x23), starting at pointer <start> which must be within <ist>.
* Returns non-zero if such a character is found, 0 otherwise. When run on
* unlikely header match, it's recommended to first check for the presence
* of control chars using ist_find_ctl().
*/
static inline int http_path_has_forbidden_char(const struct ist ist, const char *start)
{
do {
if ((uint8_t)*start <= 0x23) {
if ((uint8_t)*start < 0x20)
return 1;
if ((1U << ((uint8_t)*start & 0x1F)) & ((1<<3) | (1<<0)))
return 1;
}
start++;
} while (start < istend(ist));
return 0;
}
#endif /* _HAPROXY_HTTP_H */