projects / platform / upstream / openconnect.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 8fce056) | patch
Refuse to redirect to a non-https URL
authorDavid Woodhouse <David.Woodhouse@intel.com>
Sun, 13 May 2012 17:31:33 +0000 (10:31 -0700)
committerDavid Woodhouse <David.Woodhouse@intel.com>
Sun, 13 May 2012 17:31:47 +0000 (10:31 -0700)
commit176100f69e73c1f3f5b77d7cc127850e24d355fd
tree8498b5462fbfed14ddc701e9b6a79916288f0221tree | snapshot
parent8fce056a92cafc2ea6fa69b7e53c40fb471f2d84commit | diff
Refuse to redirect to a non-https URL

Not good:
$ ./openconnect www.cam.ac.uk
Attempting to connect to 131.111.8.46:443
SSL negotiation with www.cam.ac.uk
Connected to HTTPS on www.cam.ac.uk
GET https://www.cam.ac.uk/
Got HTTP response: HTTP/1.1 301 Moved Permanently
GET https://www.cam.ac.uk/http://www.cam.ac.uk:80/
Got HTTP response: HTTP/1.1 301 Moved Permanently
GET https://www.cam.ac.uk/http://www.cam.ac.uk:80/http://www.cam.ac.uk:80/
Got HTTP response: HTTP/1.1 301 Moved Permanently
GET https://www.cam.ac.uk/http://www.cam.ac.uk:80/http://www.cam.ac.uk:80/http://www.cam.ac.uk:80/

OK, I asked it to do a stupid thing, but a polite refusal is much better.

Signed-off-by: David Woodhouse <David.Woodhouse@intel.com>
http.c diff | blob | history
Domain: Network & Connectivity / Data Network; Licenses: LGPL-2.1+;