Uploaded image for project: 'Undertow'
  1. Undertow
  2. UNDERTOW-816

Check for minimal and maximal occurence of required HTTP2 request pseudo-headers

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Minor Minor
    • 2.0.0.Beta1, 1.4.1.Final
    • 1.4.0.Final
    • Core
    • None

      In current implementation there is not sufficient check for pseudo-headers presense in HTTP2 request from client.

      According to the specification https://tools.ietf.org/html/rfc7540#section-8.1.2.3:

      All HTTP/2 requests MUST include exactly one valid value for the
      ":method", ":scheme", and ":path" pseudo-header fields, unless it is
      a CONNECT request (Section 8.3). An HTTP request that omits
      mandatory pseudo-header fields is malformed (Section 8.1.2.6).

              sdouglas1@redhat.com Stuart Douglas (Inactive)
              jstourac@redhat.com Jan Stourac
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Created:
                Updated:
                Resolved: