Check port safety for AltSvc

author: wolfbeast <mcwerewolf@wolfbeast.com> 2019-07-20 13:59:45 +0200
committer: wolfbeast <mcwerewolf@wolfbeast.com> 2019-07-20 13:59:45 +0200
commit: 1c40d51b7214f92f6ea2d0aa89b53310ecb3b74c (patch)
tree: 5bbf3a9fe7b75d73d69e3020f47523e8f61b6333 /netwerk
parent: 186e9d08d3ed6f625c204e79a2f44abb27b25e9f (diff)
download: uxp-1c40d51b7214f92f6ea2d0aa89b53310ecb3b74c.tar.gz
1 files changed, 5 insertions, 0 deletions
diff --git a/netwerk/protocol/http/AlternateServices.cpp b/netwerk/protocol/http/AlternateServices.cpp
index ee2fa9331c..10bd619289 100644
--- a/netwerk/protocol/http/AlternateServices.cpp
+++ b/netwerk/protocol/http/AlternateServices.cpp
@@ -121,6 +121,11 @@ AltSvcMapping::ProcessHeader(const nsCString &buf, const nsCString &originScheme
       continue;
     }
 
+    if (NS_FAILED(NS_CheckPortSafety(portno, originScheme.get()))) {
+      LOG(("Alt Svc does not allow port %d, ignoring request", portno));
+      continue;
+    }
+
     // unescape modifies a c string in place, so afterwards
     // update nsCString length
     nsUnescape(npnToken.BeginWriting());
author	wolfbeast <mcwerewolf@wolfbeast.com>	2019-07-20 13:59:45 +0200
committer	wolfbeast <mcwerewolf@wolfbeast.com>	2019-07-20 13:59:45 +0200
commit	1c40d51b7214f92f6ea2d0aa89b53310ecb3b74c (patch)
tree	5bbf3a9fe7b75d73d69e3020f47523e8f61b6333 /netwerk
parent	186e9d08d3ed6f625c204e79a2f44abb27b25e9f (diff)
download	uxp-1c40d51b7214f92f6ea2d0aa89b53310ecb3b74c.tar.gz