[squid-dev] [PATCH] Handling syntactically valid requests with higher-than-supported HTTP versions
Eduard Bagdasaryan
eduard.bagdasaryan at measurement-factory.com
Tue Oct 4 13:34:48 UTC 2016
2016-09-26 1:23 GMT+03:00 Amos Jeffries <squid3 at treenet.co.nz>:
> Okay finally got to this. Sorry for the delay.
>
> I think what confused me was the handling of the !multiDigits cases.
>
> For the RequestParser::parseVersionField() the relevant bits are:
>
> If a version label matches the "HTTP/" 1*DIGIT "." 1*DIGIT pattern from
> RFC 2616 it should not be handled as 0.9 syntax. All unacceptible
> versions that begin with "HTTP/" should get a 505.
>
> To be compliant with RFC 7230:
>
> - versions 1.2 thru 1.9 accept and handle normally. That is a SHOULD
> requirement in section 2.6 final paragraph (bottom of page 15).
>
> - other single-digit versions should get the 505 error.
>
> - versions with multiple digits should get the 505 error.
Adjusted the code accordingly and reattached the patch and testing results.
Eduard.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: SQUID-168-requests-higher-than-supported-http-versions-t3.patch
Type: text/x-patch
Size: 4550 bytes
Desc: not available
URL: <http://lists.squid-cache.org/pipermail/squid-dev/attachments/20161004/c60d7910/attachment-0001.bin>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-dev/attachments/20161004/c60d7910/attachment-0001.html>
More information about the squid-dev
mailing list