Skip to content

Reject requests that contain both Content-Length and Transfer-Encoding#318

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
WyriHaximus merged 1 commit into from
Apr 9, 2018
Merged

Reject requests that contain both Content-Length and Transfer-Encoding #318

WyriHaximus merged 1 commit into from
Apr 9, 2018

Conversation

@clue
Copy link
Member

@clueclue commented Apr 9, 2018

A request message that contains both a Content-Length and Transfer-Encoding header should not happen in practice. As per https://tools.ietf.org/html/rfc7230#section-3.3.3 this ought to be handled as an error.

If a message is received with both a Transfer-Encoding and a
Content-Length header field, the Transfer-Encoding overrides the
Content-Length. Such a message might indicate an attempt to
perform request smuggling (Section 9.5) or response splitting
(Section 9.4) and ought to be handled as an error."

Refs #137
Build on top of #316

@clueclue added this to the v0.8.3 milestone Apr 9, 2018
jsor
jsor approved these changes Apr 9, 2018
View reviewed changes
@WyriHaximusWyriHaximus merged commit cabdec6 into reactphp:masterApr 9, 2018
@clueclue deleted the smuggle branch April 9, 2018 12:24
@clueclue mentioned this pull request Jul 16, 2018
Merged
Sign up for freeto join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jsorjsorjsor approved these changes

@WyriHaximusWyriHaximusWyriHaximus approved these changes

Assignees

No one assigned

Labels

HTTP/1.0HTTP/1.1new feature

Projects

None yet

Milestone

v0.8.3

Development

Successfully merging this pull request may close these issues.

3 participants

@clue@jsor@WyriHaximus