github
/
consul
mirror of https://github.com/hashicorp/consul
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Wraps HTTP mux to ban all non-printable characters from paths.

pull/3762/head
James Phillips 2017-12-20 15:47:53 -08:00
parent 88d475595a
commit 7a46d9c1e3
No known key found for this signature in database
GPG Key ID: 77183E682AC5FC11
2 changed files with 33 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

20
agent/http.go
View File

@ -15,6 +15,7 @@ import (
"github.com/armon/go-metrics" "github.com/armon/go-metrics"
"github.com/hashicorp/consul/acl" "github.com/hashicorp/consul/acl"
"github.com/hashicorp/consul/agent/structs" "github.com/hashicorp/consul/agent/structs"
"github.com/hashicorp/go-cleanhttp"
"github.com/mitchellh/mapstructure" "github.com/mitchellh/mapstructure"
) )
@ -62,6 +63,17 @@ func registerEndpoint(pattern string, fn unboundEndpoint) {
endpoints[pattern] = fn endpoints[pattern] = fn
} }
// wrappedMux hangs on to the underlying mux for unit tests.
type wrappedMux struct {
mux *http.ServeMux
handler http.Handler
}
// ServeHTTP implements the http.Handler interface.
func (w *wrappedMux) ServeHTTP(resp http.ResponseWriter, req *http.Request) {
w.handler.ServeHTTP(resp, req)
}
// handler is used to attach our handlers to the mux // handler is used to attach our handlers to the mux
func (s *HTTPServer) handler(enableDebug bool) http.Handler { func (s *HTTPServer) handler(enableDebug bool) http.Handler {
mux := http.NewServeMux() mux := http.NewServeMux()
@ -118,7 +130,13 @@ func (s *HTTPServer) handler(enableDebug bool) http.Handler {
} else if s.agent.config.EnableUI { } else if s.agent.config.EnableUI {
mux.Handle("/ui/", http.StripPrefix("/ui/", http.FileServer(assetFS()))) mux.Handle("/ui/", http.StripPrefix("/ui/", http.FileServer(assetFS())))
} }
return mux
// Wrap the whole mux with a handler that bans URLs with non-printable
// characters.
return &wrappedMux{
mux: mux,
handler: cleanhttp.PrintablePathCheckHandler(mux, nil),
}
} }
// aclEndpointRE is used to find old ACL endpoints that take tokens in the URL // aclEndpointRE is used to find old ACL endpoints that take tokens in the URL

16
agent/http_test.go
View File

@ -165,11 +165,11 @@ func TestHTTPServer_H2(t *testing.T) {
resp.WriteHeader(http.StatusOK) resp.WriteHeader(http.StatusOK)
fmt.Fprint(resp, req.Proto) fmt.Fprint(resp, req.Proto)
} }
mux, ok := a.srv.Handler.(*http.ServeMux) w, ok := a.srv.Handler.(*wrappedMux)
if !ok { if !ok {
t.Fatalf("handler is not expected type") t.Fatalf("handler is not expected type")
} }
mux.HandleFunc("/echo", handler) w.mux.HandleFunc("/echo", handler)
// Call it and make sure we see HTTP/2. // Call it and make sure we see HTTP/2.
url := fmt.Sprintf("https://%s/echo", a.srv.ln.Addr().String()) url := fmt.Sprintf("https://%s/echo", a.srv.ln.Addr().String())
@ -315,6 +315,18 @@ func TestHTTPAPI_BlockEndpoints(t *testing.T) {
} }
} }
func TestHTTPAPI_Ban_Nonprintable_Characters(t *testing.T) {
a := NewTestAgent(t.Name(), "")
defer a.Shutdown()
req, _ := http.NewRequest("GET", "/v1/kv/bad\x00ness", nil)
resp := httptest.NewRecorder()
a.srv.Handler.ServeHTTP(resp, req)
if got, want := resp.Code, http.StatusBadRequest; got != want {
t.Fatalf("bad response code got %d want %d", got, want)
}
}
func TestHTTPAPI_TranslateAddrHeader(t *testing.T) { func TestHTTPAPI_TranslateAddrHeader(t *testing.T) {
t.Parallel() t.Parallel()
// Header should not be present if address translation is off. // Header should not be present if address translation is off.