Fix for multiple proxy bugs - review please:

#10722 Reverse proxying cookies #15207 Proxy passing canonicalised URIs to backend #16812 Case-insensitivity of proxypassreverse #19317 Canonicalised URI causing infinite loop #20372 AllowEncodedSlashes May also fix 13577 (untested) This is really two fixes: 10722 and 15207; the others are trivial consequences. To make review easier, the simpler fix (#15207) is entirely contained in #ifdef FIX_15207 (new code) and #ifndef FIX_15207 (removed code) git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@104070 13f79535-47bb-0310-9956-ffa450edef68
2025-08-07 04:02:58 +03:00 · 2004-06-29 06:37:21 +00:00
parent 46ff3a2fdc
commit b6e89d86f7
4 changed files with 351 additions and 153 deletions
--- a/modules/proxy/proxy_util.c
+++ b/modules/proxy/proxy_util.c
@@ -352,112 +352,6 @@ PROXY_DECLARE(request_rec *)ap_proxy_make_fake_req(conn_rec *c, request_rec *r)
    return rp;
 }

-/*
- * Reads headers from a buffer and returns an array of headers.
- * Returns NULL on file error
- * This routine tries to deal with too long lines and continuation lines.
- *
- * Note: Currently the headers are passed through unmerged. This has to be
- * done so that headers which react badly to merging (such as Set-Cookie
- * headers, which contain commas within the date field) do not get stuffed
- * up.
- */
-PROXY_DECLARE(apr_table_t *)ap_proxy_read_headers(request_rec *r, request_rec *rr, char *buffer, int size, conn_rec *c)
-{
-    apr_table_t *headers_out;
-    int len;
-    char *value, *end;
-    char field[MAX_STRING_LEN];
-    int saw_headers = 0;
-    void *sconf = r->server->module_config;
-    proxy_server_conf *psc;
-
-    psc = (proxy_server_conf *) ap_get_module_config(sconf, &proxy_module);
-
-    headers_out = apr_table_make(r->pool, 20);
-
-    /*
-     * Read header lines until we get the empty separator line, a read error,
-     * the connection closes (EOF), or we timeout.
-     */
-    while ((len = ap_getline(buffer, size, rr, 1)) > 0) {
-
-	if (!(value = strchr(buffer, ':'))) {     /* Find the colon separator */
-
-	    /* We may encounter invalid headers, usually from buggy
-	     * MS IIS servers, so we need to determine just how to handle
-	     * them. We can either ignore them, assume that they mark the
-	     * start-of-body (eg: a missing CRLF) or (the default) mark
-	     * the headers as totally bogus and return a 500. The sole
-	     * exception is an extra "HTTP/1.0 200, OK" line sprinkled
-	     * in between the usual MIME headers, which is a favorite
-	     * IIS bug.
-	     */
-	     /* XXX: The mask check is buggy if we ever see an HTTP/1.10 */
-
-	    if (!apr_date_checkmask(buffer, "HTTP/#.# ###*")) {
-		if (psc->badopt == bad_error) {
-		    /* Nope, it wasn't even an extra HTTP header. Give up. */
-		    return NULL;
-		}
-		else if (psc->badopt == bad_body) {
-		    /* if we've already started loading headers_out, then
-		     * return what we've accumulated so far, in the hopes
-		     * that they are useful. Otherwise, we completely bail.
-		     */
-		    /* FIXME: We've already scarfed the supposed 1st line of
-		     * the body, so the actual content may end up being bogus
-		     * as well. If the content is HTML, we may be lucky.
-		     */
-		    if (saw_headers) {
-			ap_log_error(APLOG_MARK, APLOG_WARNING, 0, r->server,
-			 "proxy: Starting body due to bogus non-header in headers "
-			 "returned by %s (%s)", r->uri, r->method);
-			return headers_out;
-		    } else {
-			 ap_log_error(APLOG_MARK, APLOG_WARNING, 0, r->server,
-			 "proxy: No HTTP headers "
-			 "returned by %s (%s)", r->uri, r->method);
-			return NULL;
-		    }
-		}
-	    }
-	    /* this is the psc->badopt == bad_ignore case */
-	    ap_log_error(APLOG_MARK, APLOG_WARNING, 0, r->server,
-			 "proxy: Ignoring bogus HTTP header "
-			 "returned by %s (%s)", r->uri, r->method);
-	    continue;
-	}
-
-        *value = '\0';
-        ++value;
-	/* XXX: RFC2068 defines only SP and HT as whitespace, this test is
-	 * wrong... and so are many others probably.
-	 */
-        while (apr_isspace(*value))
-            ++value;            /* Skip to start of value   */
-
-	/* should strip trailing whitespace as well */
-	for (end = &value[strlen(value)-1]; end > value && apr_isspace(*end); --end)
-	    *end = '\0';
-
-        /* make sure we add so as not to destroy duplicated headers */
-        apr_table_add(headers_out, buffer, value);
-        saw_headers = 1;
-
-	/* the header was too long; at the least we should skip extra data */
-	if (len >= size - 1) { 
-	    while ((len = ap_getline(field, MAX_STRING_LEN, rr, 1))
-		    >= MAX_STRING_LEN - 1) {
-		/* soak up the extra data */
-	    }
-	    if (len == 0) /* time to exit the larger loop as well */
-		break;
-	}
-    }
-    return headers_out;
-}
-

 /*
 * list is a comma-separated list of case-insensitive tokens, with