diff options
| author | Patrick Griffis <pgriffis@igalia.com> | 2021-07-22 13:51:00 -0500 |
|---|---|---|
| committer | Patrick Griffis <pgriffis@igalia.com> | 2021-07-24 13:52:55 -0500 |
| commit | fe8491d86f3c99997126818f9af614964f0a50a0 (patch) | |
| tree | 012309a80e53fd43017f888d5338a1c188445d81 /tests/misc-test.c | |
| parent | 64b82f0042c259266eb4135c896d47f8dca207d8 (diff) | |
| download | libsoup-fe8491d86f3c99997126818f9af614964f0a50a0.tar.gz | |
headers: Ensure untrusted header values are UTF-8
Our API uses `char *` for all headers throughout.
This means that GObject-Introspection assumes it it is valid UTF-8,
so languages assume it is valid UTF-8.
Applications using the C API assume it is valid UTF-8.
Passing along unverified bytes is unsafe and will cause issues.
Diffstat (limited to 'tests/misc-test.c')
| -rw-r--r-- | tests/misc-test.c | 39 |
1 files changed, 39 insertions, 0 deletions
diff --git a/tests/misc-test.c b/tests/misc-test.c index 593b4f8f..3ab8fcab 100644 --- a/tests/misc-test.c +++ b/tests/misc-test.c @@ -6,6 +6,7 @@ #include "test-utils.h" #include "soup-connection.h" #include "soup-session-private.h" +#include "soup-message-headers-private.h" SoupServer *server; GUri *base_uri; @@ -55,6 +56,15 @@ server_callback (SoupServer *server, g_source_unref (timeout); } + if (!strcmp (path, "/invalid_utf8_headers")) { + SoupMessageHeaders *headers = soup_server_message_get_response_headers (msg); + const char *invalid_utf8_value = "\xe2\x82\xa0gh\xe2\xffjl"; + + /* Purposefully insert invalid utf8 data */ + g_assert_false (g_utf8_validate (invalid_utf8_value, -1, NULL)); + soup_message_headers_append (headers, "InvalidValue", invalid_utf8_value); + } + soup_server_message_set_status (msg, SOUP_STATUS_OK, NULL); if (!strcmp (g_uri_get_host (uri), "foo")) { soup_server_message_set_response (msg, "text/plain", @@ -933,6 +943,34 @@ do_response_informational_content_length_test (void) soup_test_server_quit_unref (server); } +static void +do_invalid_utf8_headers_test (void) +{ + SoupSession *session; + SoupMessage *msg; + GUri *uri; + SoupMessageHeaders *headers; + guint status; + const char *header_value; + + session = soup_test_session_new (NULL); + + uri = g_uri_parse_relative (base_uri, "/invalid_utf8_headers", SOUP_HTTP_URI_FLAGS, NULL); + msg = soup_message_new_from_uri ("GET", uri); + + status = soup_test_session_send_message (session, msg); + g_assert_cmpuint (status, ==, SOUP_STATUS_OK); + + headers = soup_message_get_response_headers (msg); + header_value = soup_message_headers_get_one (headers, "InvalidValue"); + g_assert_nonnull (header_value); + g_assert_true (g_utf8_validate (header_value, -1, NULL)); + + g_object_unref (msg); + g_uri_unref (uri); + soup_test_session_abort_unref (session); +} + int main (int argc, char **argv) { @@ -969,6 +1007,7 @@ main (int argc, char **argv) g_test_add_func ("/misc/remote-address", do_remote_address_test); g_test_add_func ("/misc/new-request-on-redirect", do_new_request_on_redirect_test); g_test_add_func ("/misc/response/informational/content-length", do_response_informational_content_length_test); + g_test_add_func ("/misc/invalid-utf8-headers", do_invalid_utf8_headers_test); ret = g_test_run (); |