curl / Mailing Lists / curl-library / Single Mail

curl-library

Does curl validate the ":authority" header of HTTP/2 PUSH_PROMISE frames?

From: Nicolas Grekas via curl-library <curl-library_at_cool.haxx.se>
Date: Wed, 13 Feb 2019 23:13:23 +0100

Does curl validate the ":authority" header of HTTP/2 PUSH_PROMISE frames or
is this left as an "exercise" to implementers?
The RFC says it MUST be validated, so maybe that's already done by default?
Does anyone know?

Thanks for the help,
Nicolas

-------------------------------------------------------------------
Unsubscribe: https://cool.haxx.se/list/listinfo/curl-library
Etiquette: https://curl.haxx.se/mail/etiquette.html
Received on 2019-02-14

This message: [ Message body ]
Next message: Daniel Stenberg via curl-library: "Re: Libcurl server-sent events (SSE) write callback notification"
Previous message: Chris Dolfin via curl-library: "Libcurl server-sent events (SSE) write callback notification"
Next in thread: Daniel Stenberg via curl-library: "Re: Does curl validate the ":authority" header of HTTP/2 PUSH_PROMISE frames?"
Reply: Daniel Stenberg via curl-library: "Re: Does curl validate the ":authority" header of HTTP/2 PUSH_PROMISE frames?"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]