Skip to content

Commit

Permalink
Don't allow null bytes in hosts of host permissions.
Browse files Browse the repository at this point in the history 
BUG=390624
TEST=Load the sample manifest from the bug, comment #9. It should fail to load.

Review URL: https://codereview.chromium.org/416263002

git-svn-id: svn://svn.chromium.org/chrome/trunk/src@285492 0039d316-1c4b-4281-b951-d872f2087c98
  • Loading branch information
yoz@chromium.org committed Jul 25, 2014
1 parent 93ef5ea commit 80d5aa4
Show file tree
Hide file tree
Showing 3 changed files with 16 additions and 0 deletions.
6 changes: 6 additions & 0 deletions extensions/common/url_pattern.cc
View file
Expand Up @@ -54,6 +54,7 @@ const char kParseErrorEmptyHost[] = "Host can not be empty.";
const char kParseErrorInvalidHostWildcard[] = "Invalid host wildcard.";
const char kParseErrorEmptyPath[] = "Empty path.";
const char kParseErrorInvalidPort[] = "Invalid port.";
const char kParseErrorInvalidHost[] = "Invalid host.";

// Message explaining each URLPattern::ParseResult.
const char* const kParseResultMessages[] = {
Expand All @@ -65,6 +66,7 @@ const char* const kParseResultMessages[] = {
kParseErrorInvalidHostWildcard,
kParseErrorEmptyPath,
kParseErrorInvalidPort,
kParseErrorInvalidHost,
};

COMPILE_ASSERT(URLPattern::NUM_PARSE_RESULTS == arraysize(kParseResultMessages),
Expand Down Expand Up @@ -266,6 +268,10 @@ URLPattern::ParseResult URLPattern::Parse(const std::string& pattern) {
if (host_.find('*') != std::string::npos)
return PARSE_ERROR_INVALID_HOST_WILDCARD;

// Null characters are not allowed in hosts.
if (host_.find('\0') != std::string::npos)
return PARSE_ERROR_INVALID_HOST;

return PARSE_SUCCESS;
}

Expand Down
1 change: 1 addition & 0 deletions extensions/common/url_pattern.h
View file
Expand Up @@ -73,6 +73,7 @@ class URLPattern {
PARSE_ERROR_INVALID_HOST_WILDCARD,
PARSE_ERROR_EMPTY_PATH,
PARSE_ERROR_INVALID_PORT,
PARSE_ERROR_INVALID_HOST,
NUM_PARSE_RESULTS
};

Expand Down
9 changes: 9 additions & 0 deletions extensions/common/url_pattern_unittest.cc
View file
Expand Up @@ -45,6 +45,15 @@ TEST(ExtensionURLPatternTest, ParseInvalid) {
pattern.Parse(kInvalidPatterns[i].pattern))
<< kInvalidPatterns[i].pattern;
}

{
// Cannot use a C string, because this contains a null byte.
std::string null_host("http://\0www/", 12);
URLPattern pattern(URLPattern::SCHEME_ALL);
EXPECT_EQ(URLPattern::PARSE_ERROR_INVALID_HOST,
pattern.Parse(null_host))
<< null_host;
}
};

TEST(ExtensionURLPatternTest, Ports) {
Expand Down

0 comments on commit 80d5aa4

Please sign in to comment.