summaryrefslogtreecommitdiffstats
path: root/plugins
diff options
context:
space:
mode:
authorHolger Weiss <hweiss@users.sourceforge.net>2007-06-15 18:37:13 (GMT)
committerHolger Weiss <hweiss@users.sourceforge.net>2007-06-15 18:37:13 (GMT)
commitba3112f4c9e6521901ee2ad6e4268e1f06740b5a (patch)
tree0182b8a607fe5876159b39277b04c5351ab3adce /plugins
parent0dc4801791d956c3d4d2059b6fcdd249fe152df5 (diff)
downloadmonitoring-plugins-ba3112f4c9e6521901ee2ad6e4268e1f06740b5a.tar.gz
When following redirects, the plugin supported 'Location:' header fields
which spanned multiple lines. However, it was not checked whether extra lines are preceeded with white space, which could lead to the following header field name being interpreted as the value of the 'Location:' field if the latter was empty for some reason. git-svn-id: https://nagiosplug.svn.sourceforge.net/svnroot/nagiosplug/nagiosplug/trunk@1741 f882894a-f735-0410-b71e-b25c423dba1c
Diffstat (limited to 'plugins')
-rw-r--r--plugins/check_http.c14
1 files changed, 13 insertions, 1 deletions
diff --git a/plugins/check_http.c b/plugins/check_http.c
index f2f7a18..6773e65 100644
--- a/plugins/check_http.c
+++ b/plugins/check_http.c
@@ -1099,7 +1099,19 @@ redir (char *pos, char *status_line)
1099 } 1099 }
1100 1100
1101 pos += i; 1101 pos += i;
1102 pos += strspn (pos, " \t\r\n"); 1102 pos += strspn (pos, " \t");
1103
1104 /*
1105 * RFC 2616 (4.2): ``Header fields can be extended over multiple lines by
1106 * preceding each extra line with at least one SP or HT.''
1107 */
1108 for (; (i = strspn (pos, "\r\n")); pos += i) {
1109 pos += i;
1110 if (!(i = strspn (pos, " \t"))) {
1111 die (STATE_UNKNOWN, _("HTTP UNKNOWN - Empty redirect location%s\n"),
1112 display_html ? "</A>" : "");
1113 }
1114 }
1103 1115
1104 url = realloc (url, strcspn (pos, "\r\n") + 1); 1116 url = realloc (url, strcspn (pos, "\r\n") + 1);
1105 if (url == NULL) 1117 if (url == NULL)