Invalid parsing of Forwarded header (RFC7239)
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Ubuntu Cloud Archive |
Fix Released
|
High
|
Unassigned | ||
Ocata |
Fix Released
|
High
|
Unassigned | ||
Pike |
Fix Released
|
High
|
Unassigned | ||
oslo.middleware |
Fix Released
|
Undecided
|
Adam Kijak | ||
python-oslo.middleware (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Zesty |
Fix Committed
|
Undecided
|
Unassigned | ||
Artful |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
>>> from oslo_middleware
>>> HTTPProxyToWSGI
[{'for': '192.0.2.60', 'proto': 'http'}, {' for': '192.0.2.60', 'by': '203.0.113.43'}]
>>>
>>> HTTPProxyToWSGI
[{' proto': 'http', 'for': '192.0.2.60'}, {' for': '192.0.2.60', ' by': '203.0.113.43'}]
According to some sources:
https:/
https:/
using space after semicolon in Forwarded header is valid, but _parse_
This affects e.g. Heat when using a proxy+SSL.
tags: | added: proxy wsgi |
Changed in oslo.middleware: | |
assignee: | nobody → Adam Kijak (adam-kijak) |
status: | New → In Progress |
Changed in python-oslo.middleware (Ubuntu Zesty): | |
status: | New → Triaged |
Changed in python-oslo.middleware (Ubuntu Artful): | |
status: | New → Triaged |
Reviewed: https:/ /review. openstack. org/495172 /git.openstack. org/cgit/ openstack/ oslo.middleware /commit/ ?id=480d60ac856 937e1a48c1ed6df 3b7d2e59a974dc
Committed: https:/
Submitter: Jenkins
Branch: master
commit 480d60ac856937e 1a48c1ed6df3b7d 2e59a974dc
Author: Adam Kijak <email address hidden>
Date: Fri Aug 18 13:23:10 2017 +0200
Invalid parsing of Forwarded header fixed
_parse_ rfc7239_ header( ) did not parse properly
a Forwarded header with additional spaces
Closes-Bug: #1711573 40005b17d249b1c 8f0f66dae8a
Change-Id: Ic8b7f9698d7b34