]> Cypherpunks repositories - gostls13.git/commit
projects / gostls13.git / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: 7929a0d) | patch
net/http: revert overly-strict part of earlier smuggling defense
authorBrad Fitzpatrick <bradfitz@golang.org>
Tue, 7 Jul 2015 19:19:44 +0000 (13:19 -0600)
committerBrad Fitzpatrick <bradfitz@golang.org>
Tue, 7 Jul 2015 21:33:06 +0000 (21:33 +0000)
commit143822585e32449860e624cace9d2e521deee62e
tree7374e0184becab6a1307e0be500ff92edaeb05fftree
parent7929a0ddfae27d66a6feb4d6fe069359fad613f1commit | diff
net/http: revert overly-strict part of earlier smuggling defense

The recent https://golang.org/cl/11810 is reportedly a bit too
aggressive.

Apparently some HTTP requests in the wild do contain both a
Transfer-Encoding along with a bogus Content-Length. Instead of
returning a 400 Bad Request error, we should just ignore the
Content-Length like we did before.

Change-Id: I0001be90d09f8293a34f04691f608342875ff5c4
Reviewed-on: https://go-review.googlesource.com/11962
Reviewed-by: Andrew Gerrand <adg@golang.org>
Run-TryBot: Brad Fitzpatrick <bradfitz@golang.org>
TryBot-Result: Gobot Gobot <gobot@golang.org>
src/net/http/readrequest_test.go diff | blob | history
src/net/http/transfer.go diff | blob | history
Go GOST TLS 1.3