security-and-privacy/gnupg
security-and-privacy/gnupg
1
0
Fork 0
mirror of git://git.gnupg.org/gnupg.git synced 2025-03-28 22:49:59 +01:00
Code Activity

dirmngr: Add CSRF protection exception for protonmail.

Browse Source 
* dirmngr/http.c (same_host_p): Add exception table.
--

Please: Adding entries to this table shall be an exception and not the
rule.

Signed-off-by: Werner Koch <wk@gnupg.org>
(cherry picked from commit 134c3c16523b1a267ebdd2df6339240fd9e1e3b3)
This commit is contained in:
Werner Koch 2019-03-07 11:34:03 +01:00
parent 5d73c231e4
commit 557c721e78
No known key found for this signature in database
GPG Key ID: E3FDFF218E45B72B
1 changed files with 40 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

45
dirmngr/http.c
View File

@ -3514,16 +3514,51 @@ uri_query_lookup (parsed_uri_t uri, const char *key)
} }
/* Return true if both URI point to the same host. */ /* Return true if both URI point to the same host for the purpose of
* redirection check. A is the original host and B the host given in
* the Location header. As a temporary workaround a fixed list of
* exceptions is also consulted. */
static int static int
same_host_p (parsed_uri_t a, parsed_uri_t b) same_host_p (parsed_uri_t a, parsed_uri_t b)
{ {
return a->host && b->host && !ascii_strcasecmp (a->host, b->host); static struct
{
const char *from; /* NULL uses the last entry from the table. */
const char *to;
} allow[] =
{
{ "protonmail.com", "api.protonmail.com" },
{ NULL, "api.protonmail.ch" },
{ "protonmail.ch", "api.protonmail.com" },
{ NULL, "api.protonmail.ch" }
};
int i;
const char *from;
if (!a->host || !b->host)
return 0;
if (!ascii_strcasecmp (a->host, b->host))
return 1;
from = NULL;
for (i=0; i < DIM (allow); i++)
{
if (allow[i].from)
from = allow[i].from;
if (!from)
continue;
if (!ascii_strcasecmp (from, a->host)
&& !ascii_strcasecmp (allow[i].to, b->host))
return 1;
}
return 0;
} }
/* Prepare a new URL for a HTTP redirect. INFO has flags controlling /* Prepare a new URL for a HTTP redirect. INFO has flags controlling
* the operaion, STATUS_CODE is used for diagnostics, LOCATION is the * the operation, STATUS_CODE is used for diagnostics, LOCATION is the
* value of the "Location" header, and R_URL reveives the new URL on * value of the "Location" header, and R_URL reveives the new URL on
* success or NULL or error. Note that INFO->ORIG_URL is * success or NULL or error. Note that INFO->ORIG_URL is
* required. */ * required. */
@ -3594,8 +3629,8 @@ http_prepare_redirect (http_redir_info_t *info, unsigned int status_code,
} }
else if (same_host_p (origuri, locuri)) else if (same_host_p (origuri, locuri))
{ {
/* The host is the same and thus we can take the location /* The host is the same or on an exception list and thus we can
* verbatim. */ * take the location verbatim. */
http_release_parsed_uri (origuri); http_release_parsed_uri (origuri);
http_release_parsed_uri (locuri); http_release_parsed_uri (locuri);
newurl = xtrystrdup (location); newurl = xtrystrdup (location);