]> git.ipfire.org Git - thirdparty/FORT-validator.git/commit
projects / thirdparty / FORT-validator.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 958f3e4) | patch
Reject HTTP redirects to different origins draft-spaghetti-sidrops-rrdp-same-origin
authorAlberto Leiva Popper <ydahhrk@gmail.com>
Mon, 11 Mar 2024 20:22:38 +0000 (14:22 -0600)
committerAlberto Leiva Popper <ydahhrk@gmail.com>
Mon, 11 Mar 2024 20:22:38 +0000 (14:22 -0600)
commitf29f9e6421feb9f57e74f408af797b38013b84be
tree8836fe80dd7153920e854bd17bb2b88c0224ec73tree
parent958f3e4d50364e887b0a605113c9cce78cfa5cbbcommit | diff
Reject HTTP redirects to different origins

Prevents malicious RRDP servers from wasting other servers' bandwidth.

Second half of draft-spaghetti-sidrops-rrdp-same-origin-00.

Thanks to Job Snijders for reporting this.
src/http/http.c diff | blob | blame | history
src/types/uri.c diff | blob | blame | history
src/types/uri.h diff | blob | blame | history
test/types/uri_test.c diff | blob | blame | history
Mirror of https://github.com/NICMx/FORT-validator.git