From: Daniel Stenberg <daniel@haxx.se>
Date: Mon, 15 Aug 2022 07:17:24 +0000 (+0200)
Subject: url: reject URLs with hostnames longer than 65535 bytes
X-Git-Tag: curl-7_85_0~58
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=657101ec0cb52ff6cd6acb8964d0d4715cf0f309;p=thirdparty%2Fcurl.git

url: reject URLs with hostnames longer than 65535 bytes

It *probably* causes other problems too since DNS can't resolve such
long names, but the SNI field in TLS is limited to 16 bits length.

Closes #9317
---

diff --git a/lib/url.c b/lib/url.c
index 14a9200787..359e20a7cd 100644
--- a/lib/url.c
+++ b/lib/url.c
@@ -2025,6 +2025,10 @@ static CURLcode parseurlandfillconn(struct Curl_easy *data,
     if(!strcasecompare("file", data->state.up.scheme))
       return CURLE_OUT_OF_MEMORY;
   }
+  else if(strlen(data->state.up.hostname) > 0xffff) {
+    failf(data, "Too long host name");
+    return CURLE_URL_MALFORMAT;
+  }
 
 #ifndef CURL_DISABLE_HSTS
   if(data->hsts && strcasecompare("http", data->state.up.scheme)) {