]> git.ipfire.org Git - thirdparty/haproxy.git/commit
projects / thirdparty / haproxy.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b9aaf3c) | patch
BUG/MEDIUM: h1: limit status codes to 3 digits by default
authorWilly Tarreau <w@1wt.eu>
Sun, 24 May 2026 17:58:52 +0000 (19:58 +0200)
committerWilly Tarreau <w@1wt.eu>
Tue, 26 May 2026 11:13:24 +0000 (13:13 +0200)
commit8bdcc55163c41a390df4f9c85ab5e0d27c9c656a
tree1ccd9342d817bce535787f36e66e3dd7a1b970a0tree | snapshot
parentb9aaf3c18a2e0e3d50d12470d1cd5a2b5f6a5aa5commit | diff
BUG/MEDIUM: h1: limit status codes to 3 digits by default

By default, HTTP/1 status codes are not limited in the parser. However,
the value is stored in a 16-bit field, meaning that it may be truncated
if too large. Let's just restrict to 3-digits by default, and permit to
relax the check when accept-unsafe-violations is set, provided that the
value still fits in 16 bits.

This could be backported to latest LTS release.
doc/configuration.txt diff | blob | blame | history
src/h1.c diff | blob | blame | history
Mirror of https://github.com/haproxy/haproxy.git