mirror of
https://github.com/nginx/nginx.git
synced 2024-12-24 08:00:14 -06:00
Disabled requests with both Content-Length and Transfer-Encoding.
HTTP clients are not allowed to generate such requests since Transfer-Encoding introduction in RFC 2068, and they are not expected to appear in practice except in attempts to perform a request smuggling attack. While handling of such requests is strictly defined, the most secure approach seems to reject them.
This commit is contained in:
parent
5f85bb3714
commit
a6c109fea5
@ -1985,8 +1985,15 @@ ngx_http_process_request_header(ngx_http_request_t *r)
|
||||
&& ngx_strncasecmp(r->headers_in.transfer_encoding->value.data,
|
||||
(u_char *) "chunked", 7) == 0)
|
||||
{
|
||||
r->headers_in.content_length = NULL;
|
||||
r->headers_in.content_length_n = -1;
|
||||
if (r->headers_in.content_length) {
|
||||
ngx_log_error(NGX_LOG_INFO, r->connection->log, 0,
|
||||
"client sent \"Content-Length\" and "
|
||||
"\"Transfer-Encoding\" headers "
|
||||
"at the same time");
|
||||
ngx_http_finalize_request(r, NGX_HTTP_BAD_REQUEST);
|
||||
return NGX_ERROR;
|
||||
}
|
||||
|
||||
r->headers_in.chunked = 1;
|
||||
|
||||
} else {
|
||||
|
Loading…
Reference in New Issue
Block a user