Sanitize the hostname and port number returned via DNS

schwern · Jul 6, 2011 · 14b0c613f434d2513f8f4609a17aff4fe31c17ea · 14b0c61
1 parent 93d2c52
commit 14b0c613f434d2513f8f4609a17aff4fe31c17ea
Unified Split

Showing with 14 additions and 1 deletion.

+14 −1 lib/Libravatar/URL.pm
diff --git a/lib/Libravatar/URL.pm b/lib/Libravatar/URL.pm
@@ -197,6 +197,19 @@ sub build_url {
    return $url;
 }

+sub sanitize_target {
+    my ( $target, $port ) = @_;
+
+    unless ( $target =~ m/^[0-9a-zA-Z\-.]+$/ ) {
+        return ( undef, undef );
+    }
+    unless ( $port =~ m/^[0-9]{1,5}$/ ) {
+        return ( undef, undef );
+    }
+
+    return ( $target, $port )
+}
+
 sub federated_url {
    my %args = @_;

@@ -215,7 +228,7 @@ sub federated_url {
    my $packet = $fast_resolver->query($srv_prefix . '._tcp.' . $domain, 'SRV');

    if ( $packet and $packet->answer ) {
-        my ( $target, $port ) = srv_hostname($packet->answer);
+        my ( $target, $port ) = sanitize_target(srv_hostname($packet->answer));
        return build_url($target, $port, $args{https});
    }
    return undef;