Check port safety for AltSvc

author: wolfbeast <mcwerewolf@wolfbeast.com> 2019-07-20 13:59:45 +0200
committer: wolfbeast <mcwerewolf@wolfbeast.com> 2019-07-20 13:59:45 +0200
commit: aae0bfd5b8e4ac85d97cdce4a0fcd405f3160cd7 (patch)
tree: 5bbf3a9fe7b75d73d69e3020f47523e8f61b6333 /netwerk
parent: 3f9e299b6ee9ec68eb41694703b939dab35e43a3 (diff)
download: uxp-aae0bfd5b8e4ac85d97cdce4a0fcd405f3160cd7.tar.gz
1 files changed, 5 insertions, 0 deletions
diff --git a/netwerk/protocol/http/AlternateServices.cpp b/netwerk/protocol/http/AlternateServices.cpp
index ee2fa9331c..10bd619289 100644
--- a/netwerk/protocol/http/AlternateServices.cpp
+++ b/netwerk/protocol/http/AlternateServices.cpp
@@ -121,6 +121,11 @@ AltSvcMapping::ProcessHeader(const nsCString &buf, const nsCString &originScheme
       continue;
     }
 
+    if (NS_FAILED(NS_CheckPortSafety(portno, originScheme.get()))) {
+      LOG(("Alt Svc does not allow port %d, ignoring request", portno));
+      continue;
+    }
+
     // unescape modifies a c string in place, so afterwards
     // update nsCString length
     nsUnescape(npnToken.BeginWriting());
author	wolfbeast <mcwerewolf@wolfbeast.com>	2019-07-20 13:59:45 +0200
committer	wolfbeast <mcwerewolf@wolfbeast.com>	2019-07-20 13:59:45 +0200
commit	aae0bfd5b8e4ac85d97cdce4a0fcd405f3160cd7 (patch)
tree	5bbf3a9fe7b75d73d69e3020f47523e8f61b6333 /netwerk
parent	3f9e299b6ee9ec68eb41694703b939dab35e43a3 (diff)
download	uxp-aae0bfd5b8e4ac85d97cdce4a0fcd405f3160cd7.tar.gz