BUG/MINOR: http_fetch: make hdr_ip() resistant to empty fields The fix in commit 7b0e00d94 ("BUG/MINOR: http_fetch: make hdr_ip() reject trailing characters") made hdr_ip() more sensitive to empty fields, for example if a trusted proxy incorrectly sends the header with an empty value, we could return 0.0.0.0 which is not correct. Let's make sure we only assign an IPv4 type here when a non-empty address was found. This should be backported to all branches where the fix above was backported.

commit: 645dc08533531416b91ca74ff5aa03154dc0ee50 [log] [tgz]
author: Willy Tarreau <w@1wt.eu> Wed Mar 31 11:41:36 2021 +0200
committer: Willy Tarreau <w@1wt.eu> Wed Mar 31 11:45:42 2021 +0200
tree: 0c211d6d202075708f7c88484b99cb3760d123cb
parent: 4bfc6630baaac8a23b0b7fb9b1d4b8e02e0e2a91 [diff] [blame]
diff --git a/src/http_fetch.c b/src/http_fetch.c
index a416945..6c569a7 100644
--- a/src/http_fetch.c
+++ b/src/http_fetch.c

@@ -1004,7 +1004,7 @@
 			       smp->data.u.str.data);
 			temp->area[smp->data.u.str.data] = '\0';
 			len = url2ipv4((char *) temp->area, &smp->data.u.ipv4);
-			if (len == smp->data.u.str.data) {
+			if (len > 0 && len == smp->data.u.str.data) {
 				/* plain IPv4 address */
 				smp->data.type = SMP_T_IPV4;
 				break;
commit	645dc08533531416b91ca74ff5aa03154dc0ee50	[log] [tgz]
author	Willy Tarreau <w@1wt.eu>	Wed Mar 31 11:41:36 2021 +0200
committer	Willy Tarreau <w@1wt.eu>	Wed Mar 31 11:45:42 2021 +0200
tree	0c211d6d202075708f7c88484b99cb3760d123cb
parent	4bfc6630baaac8a23b0b7fb9b1d4b8e02e0e2a91 [diff] [blame]