Merge pull request #206 from clue-labs/parse-requests

WyriHaximus · web-flow · commit 7108b38d0eca · 2017-07-04T14:11:19.000+02:00
Stricter check for invalid request-line in HTTP requests
diff --git a/src/RequestHeaderParser.php b/src/RequestHeaderParser.php
@@ -46,23 +46,30 @@ public function feed($data)
 
         if (false !== $endOfHeader) {
             try {
-                $this->parseAndEmitRequest();
+                $this->parseAndEmitRequest($endOfHeader);
             } catch (Exception $exception) {
                 $this->emit('error', array($exception));
             }
             $this->removeAllListeners();
         }
     }
 
-    private function parseAndEmitRequest()
+    private function parseAndEmitRequest($endOfHeader)
     {
-        list($request, $bodyBuffer) = $this->parseRequest($this->buffer);
+        $request = $this->parseRequest((string)substr($this->buffer, 0, $endOfHeader));
+        $bodyBuffer = isset($this->buffer[$endOfHeader + 4]) ? substr($this->buffer, $endOfHeader + 4) : '';
         $this->emit('headers', array($request, $bodyBuffer));
     }
 
-    private function parseRequest($data)
+    private function parseRequest($headers)
     {
-        list($headers, $bodyBuffer) = explode("\r\n\r\n", $data, 2);
+        // additional, stricter safe-guard for request line
+        // because request parser doesn't properly cope with invalid ones
+        if (!preg_match('#^[^ ]+ [^ ]+ HTTP/\d\.\d#m', $headers)) {
+            throw new \InvalidArgumentException('Unable to parse invalid request-line');
+        }
+
+        $lines = explode("\r\n", $headers);
 
         // parser does not support asterisk-form and authority-form
         // remember original target and temporarily replace and re-apply below
@@ -213,6 +220,6 @@ private function parseRequest($data)
         // always sanitize Host header because it contains critical routing information
         $request = $request->withUri($request->getUri()->withUserInfo('u')->withUserInfo(''));
 
-        return array($request, $bodyBuffer);
+        return $request;
     }
 }
diff --git a/tests/RequestHeaderParserTest.php b/tests/RequestHeaderParserTest.php
@@ -176,7 +176,7 @@ public function testHeaderOverflowShouldNotEmitErrorWhenDataExceedsMaxHeaderSize
         $this->assertSame($body, $bodyBuffer);
     }
 
-    public function testGuzzleRequestParseException()
+    public function testInvalidEmptyRequestHeadersParseException()
     {
         $error = null;
 
@@ -192,7 +192,28 @@ public function testGuzzleRequestParseException()
         $parser->feed("\r\n\r\n");
 
         $this->assertInstanceOf('InvalidArgumentException', $error);
-        $this->assertSame('Invalid message', $error->getMessage());
+        $this->assertSame('Unable to parse invalid request-line', $error->getMessage());
+        $this->assertSame(0, count($parser->listeners('headers')));
+        $this->assertSame(0, count($parser->listeners('error')));
+    }
+
+    public function testInvalidMalformedRequestLineParseException()
+    {
+        $error = null;
+
+        $parser = new RequestHeaderParser();
+        $parser->on('headers', $this->expectCallableNever());
+        $parser->on('error', function ($message) use (&$error) {
+            $error = $message;
+        });
+
+        $this->assertSame(1, count($parser->listeners('headers')));
+        $this->assertSame(1, count($parser->listeners('error')));
+
+        $parser->feed("GET /\r\n\r\n");
+
+        $this->assertInstanceOf('InvalidArgumentException', $error);
+        $this->assertSame('Unable to parse invalid request-line', $error->getMessage());
         $this->assertSame(0, count($parser->listeners('headers')));
         $this->assertSame(0, count($parser->listeners('error')));
     }

Original file line number	Diff line number	Diff line change
`@@ -46,23 +46,30 @@ public function feed($data)`
`46`	`46`
`47`	`47`	`if (false !== $endOfHeader) {`
`48`	`48`	`try {`
`49`		`- $this->parseAndEmitRequest();`
	`49`	`+ $this->parseAndEmitRequest($endOfHeader);`
`50`	`50`	`} catch (Exception $exception) {`
`51`	`51`	`$this->emit('error', array($exception));`
`52`	`52`	`}`
`53`	`53`	`$this->removeAllListeners();`
`54`	`54`	`}`
`55`	`55`	`}`
`56`	`56`
`57`		`- private function parseAndEmitRequest()`
	`57`	`+ private function parseAndEmitRequest($endOfHeader)`
`58`	`58`	`{`
`59`		`- list($request, $bodyBuffer) = $this->parseRequest($this->buffer);`
	`59`	`+ $request = $this->parseRequest((string)substr($this->buffer, 0, $endOfHeader));`
	`60`	`+ $bodyBuffer = isset($this->buffer[$endOfHeader + 4]) ? substr($this->buffer, $endOfHeader + 4) : '';`
`60`	`61`	`$this->emit('headers', array($request, $bodyBuffer));`
`61`	`62`	`}`
`62`	`63`
`63`		`- private function parseRequest($data)`
	`64`	`+ private function parseRequest($headers)`
`64`	`65`	`{`
`65`		`- list($headers, $bodyBuffer) = explode("\r\n\r\n", $data, 2);`
	`66`	`+ // additional, stricter safe-guard for request line`
	`67`	`+ // because request parser doesn't properly cope with invalid ones`
	`68`	`+ if (!preg_match('#^[^ ]+ [^ ]+ HTTP/\d\.\d#m', $headers)) {`
	`69`	`+ throw new \InvalidArgumentException('Unable to parse invalid request-line');`
	`70`	`+ }`
	`71`	`+`
	`72`	`+ $lines = explode("\r\n", $headers);`
`66`	`73`
`67`	`74`	`// parser does not support asterisk-form and authority-form`
`68`	`75`	`// remember original target and temporarily replace and re-apply below`
`@@ -213,6 +220,6 @@ private function parseRequest($data)`
`213`	`220`	`// always sanitize Host header because it contains critical routing information`
`214`	`221`	`$request = $request->withUri($request->getUri()->withUserInfo('u')->withUserInfo(''));`
`215`	`222`
`216`		`- return array($request, $bodyBuffer);`
	`223`	`+ return $request;`
`217`	`224`	`}`
`218`	`225`	`}`