router: disallow host header removal. #4751

htuch · 2018-10-16T21:57:02Z

This is a followup to #4576. It turns out that we have both the ability to refer to the host header
via "host" and ":authority" in HeaderMapImpl, see

Line 276 in 6ac936f

// Special case where we map a legacy host header to :authority.

.

Risk Level: Low
Testing: Modified existing unit test and corpus entry added.

Signed-off-by: Harvey Tuch htuch@google.com

This is a followup to envoyproxy#4576. It turns out that we have both the ability to refer to the host header via "host" and ":authority" in HeaderMapImpl, see https://github.com/envoyproxy/envoy/blob/6ac936f2750c39a8b4fb232d6ddc4802f4e6aeee/source/common/http/header_map_impl.cc#L276. Fixes oss-fuzz issue https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=10771. Risk Level: Low Testing: Modified existing unit test and corpus entry added. Signed-off-by: Harvey Tuch <htuch@google.com>

This is a followup to envoyproxy#4576. It turns out that we have both the ability to refer to the host header via "host" and ":authority" in HeaderMapImpl, see https://github.com/envoyproxy/envoy/blob/6ac936f2750c39a8b4fb232d6ddc4802f4e6aeee/source/common/http/header_map_impl.cc#L276. Fixes oss-fuzz issue https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=10771. Risk Level: Low Testing: Modified existing unit test and corpus entry added. Signed-off-by: Harvey Tuch <htuch@google.com> Signed-off-by: Yang Song <yasong@yasong00.cam.corp.google.com>

zuercher approved these changes Oct 17, 2018

View reviewed changes

htuch merged commit 818fc0c into envoyproxy:master Oct 17, 2018

htuch deleted the segfault-router-fuzz branch October 17, 2018 00:07

Provide feedback