From: Christoph M. Becker <cmbecker69@gmx.de>
Date: Mon, 16 Sep 2019 13:32:58 +0000 (+0200)
Subject: http2: relax verification of :authority in push promise requests
X-Git-Tag: curl-7_67_0~186
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=7c596f5dea586c1ba99dfbe7f3ce1996d82f7de0;p=thirdparty%2Fcurl.git

http2: relax verification of :authority in push promise requests

If the :authority pseudo header field doesn't contain an explicit port,
we assume it is valid for the default port, instead of rejecting the
request for all ports.

Ref: https://curl.haxx.se/mail/lib-2019-09/0041.html

Closes #4365
---

diff --git a/lib/http2.c b/lib/http2.c
index 31d2d698ad..47583265d4 100644
--- a/lib/http2.c
+++ b/lib/http2.c
@@ -967,7 +967,9 @@ static int on_header(nghttp2_session *session, const nghttp2_frame *frame,
       if(!check)
         /* no memory */
         return NGHTTP2_ERR_CALLBACK_FAILURE;
-      if(!Curl_strcasecompare(check, (const char *)value)) {
+      if(!Curl_strcasecompare(check, (const char *)value) &&
+         ((conn->remote_port != conn->given->defport) ||
+          !Curl_strcasecompare(conn->host.name, (const char *)value))) {
         /* This is push is not for the same authority that was asked for in
          * the URL. RFC 7540 section 8.2 says: "A client MUST treat a
          * PUSH_PROMISE for which the server is not authoritative as a stream