Skip to content

fix dotnet#43523 HttpSys Content-Length and Transfer-Encoding conflicts #44144

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
Tratcher merged 10 commits into from
Oct 5, 2022
Merged

fix dotnet#43523 HttpSys Content-Length and Transfer-Encoding conflicts #44144

Changes from 2 commits
Commits
Show all changes
10 commits
Select commit Hold shift + click to select a range
fe31070
fix dotnet#43523 HttpSys Content-Length and Transfer-Encoding conflicts
FatTigerWang Sep 23, 2022
978623a
fix compile
FatTigerWang Sep 23, 2022
82377c0
check last transfer-encoding
FatTigerWang Sep 23, 2022
5cd42a7
detect TransferEncoding in constructor
FatTigerWang Sep 26, 2022
349d02b
Merge branch 'dotnet:main' into main
FatTigerWang Sep 27, 2022
ff20e90
add unit test
FatTigerWang Sep 27, 2022
2f74631
fix IIS Content-Length and Transfer-Encoding conflicts
FatTigerWang Oct 1, 2022
19f05cf
fix using style
FatTigerWang Oct 1, 2022
d1a1c18
Update src/Servers/HttpSys/test/FunctionalTests/RequestHeaderTests.cs
FatTigerWang Oct 5, 2022
006ee16
add IIS Content-Length and Transfer-Encoding headers unit test
FatTigerWang Oct 5, 2022
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
24 changes: 23 additions & 1 deletion src/Servers/HttpSys/src/RequestProcessing/Request.cs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -8,8 +8,10 @@
using System.Security.Cryptography;
using System.Security.Cryptography.X509Certificates;
using System.Security.Principal;
using Microsoft.AspNetCore.Http;
using Microsoft.AspNetCore.HttpSys.Internal;
using Microsoft.Extensions.Logging;
using Microsoft.Extensions.Primitives;
using Microsoft.Net.Http.Headers;

namespace Microsoft.AspNetCore.Server.HttpSys;
Expand Down Expand Up @@ -134,9 +136,29 @@ public long? ContentLength
{
// Note Http.Sys adds the Transfer-Encoding: chunked header to HTTP/2 requests with bodies for back compat.
var transferEncoding = Headers[HeaderNames.TransferEncoding].ToString();
if (string.Equals("chunked", transferEncoding.Trim(), StringComparison.OrdinalIgnoreCase))
if (transferEncoding != null && string.Equals("chunked", transferEncoding.Split(',')[0].Trim(), StringComparison.OrdinalIgnoreCase))
{
_contentBoundaryType = BoundaryType.Chunked;

// https://datatracker.ietf.org/doc/html/rfc7230#section-3.3.2
// A sender MUST NOT send a Content-Length header field in any message
// that contains a Transfer-Encoding header field.
// https://datatracker.ietf.org/doc/html/rfc7230#section-3.3.3
// If a message is received with both a Transfer-Encoding and a
// Content-Length header field, the Transfer-Encoding overrides the
// Content-Length. Such a message might indicate an attempt to
// perform request smuggling (Section 9.5) or response splitting
// (Section 9.4) and ought to be handled as an error. A sender MUST
// remove the received Content-Length field prior to forwarding such
// a message downstream.
// We should remove the Content-Length request header in this case, for compatibility
// reasons, include X-Content-Length so that the original Content-Length is still available.
if (!StringValues.IsNullOrEmpty(Headers.ContentLength))
{
IHeaderDictionary headerDictionary = Headers;
headerDictionary.Add("X-Content-Length", headerDictionary[HeaderNames.ContentLength]);
Headers.ContentLength = StringValues.Empty;
}
}
else
{
Expand Down