From c4ad2121ddecde3ecec7dac8ec6828ac37d412dd Mon Sep 17 00:00:00 2001 From: gregw Date: Wed, 29 Nov 2023 08:55:54 +1100 Subject: [PATCH] Fix null host when checking virtual host #10922 Use the `Request.getServerName` static and check for null host. --- .../jetty/server/handler/ContextHandler.java | 64 ++++++++++--------- 1 file changed, 35 insertions(+), 29 deletions(-) diff --git a/jetty-core/jetty-server/src/main/java/org/eclipse/jetty/server/handler/ContextHandler.java b/jetty-core/jetty-server/src/main/java/org/eclipse/jetty/server/handler/ContextHandler.java index e4059b460547..dbfe81f74984 100644 --- a/jetty-core/jetty-server/src/main/java/org/eclipse/jetty/server/handler/ContextHandler.java +++ b/jetty-core/jetty-server/src/main/java/org/eclipse/jetty/server/handler/ContextHandler.java @@ -699,39 +699,13 @@ public boolean checkVirtualHost(Request request) if (_vhosts.isEmpty()) return true; - // TODO check why normalizeVirtualHostname is necessary to pass ContextHandlerCollectionTest - // specifically is it valid for a request hostname to end with '.' - String host = normalizeVirtualHostname(Request.getServerName(request)); + String host = Request.getServerName(request); String connectorName = request.getConnectionMetaData().getConnector().getName(); for (VHost vhost : _vhosts) { - String contextVhost = vhost._vHost; - String contextVConnector = vhost._vConnector; - - if (contextVConnector != null) - { - if (!contextVConnector.equalsIgnoreCase(connectorName)) - continue; - - if (contextVhost == null) - return true; - } - - if (contextVhost != null && host != null) - { - if (vhost._wild) - { - // wildcard only at the beginning, and only for one additional subdomain level - int index = host.indexOf("."); - if (index >= 0 && host.substring(index).equalsIgnoreCase(contextVhost)) - return true; - } - else if (host.equalsIgnoreCase(contextVhost)) - { - return true; - } - } + if (vhost.matches(connectorName, host)) + return true; } return false; } @@ -1087,6 +1061,7 @@ private static String normalizeVirtualHostname(String host) { if (host == null) return null; + // names with trailing "." are absolute and not searched for in any local resolv.conf domain if (host.endsWith(".")) host = host.substring(0, host.length() - 1); return host; @@ -1327,6 +1302,37 @@ else if (vhost.startsWith("*.")) _vConnector = connector; } + public boolean matches(String connectorName, String host) + { + // Do we have a connector name to match + if (_vConnector != null) + { + // then it must match + if (!_vConnector.equalsIgnoreCase(connectorName)) + return false; + + // if we don't also have a vhost then we are match, otherwise check the vhost as well + if (_vHost == null) + return true; + } + + // if we have a vhost + if (_vHost != null && host != null) + { + // vHost pattern must be last or next to last if the host ends with '.' (indicates absolute DNS name) + int offset = host.length() - _vHost.length() - (host.charAt(host.length() - 1) == '.' ? 1 : 0); + if (host.regionMatches(true, offset, _vHost, 0, _vHost.length())) + { + // if wild then we only match one level, so check for no more dots + if (_wild) + return host.lastIndexOf('.', offset - 1) < 0; + // otherwise the offset must be 0 for a complete match + return offset == 0; + } + } + return false; + } + String getVHost() { return _vHost;