Closed Bug 168988 Opened 22 years ago Closed 22 years ago

HTTP should reject URLs that lack a hostname.

Categories

(Core :: Networking: HTTP, defect, P3)

Product:
Core
Component:
Networking: HTTP
Type:
defect

Tracking

()

Status:
VERIFIED FIXED
Milestone:
mozilla1.2beta

People

(Reporter: darin.moz, Assigned: darin.moz)

References

(
URL
)

Details

(Keywords: topembed+)

Attachments

(1 file)

v1 patch
612 bytes, patch
dougt
: review+
rpotts
: superreview+
Details | Diff | Splinter Review 
HTTP should reject URLs that lack a hostname.  Currently, if loading an URL via
a proxy server, the HTTP code will try to load URLs like "http:///" even though
we could easily determine that there is no hope that loading such an URL would
result in anything meaningful.
Keywords: topembed+
Status: NEW → ASSIGNED
Keywords: mozilla1.0.2, mozilla1.2, nsbeta1
Priority: -- → P3
Target Milestone: --- → mozilla1.2beta
As far as a proxy goes, I have to disagree. How the proxy resolves a URL
is up to the proxy. It's a black box. The client cannot acquire any
knowledge of what will happen.
tenthumbs: huh?  http:/// is a meaningless URL.  anyways, we're violating the
HTTP/1.1 protocol by not sending a Host: header, which cannot be sent in this
case.  i see no reason to send such a lame request to a proxy server.  as for
non-http requests, you could perhaps argue that blah:/// could mean something. 
i'm not sure if that is ok, because we'd still have the problem of what Host:
header to send.
I'm reasonably sure that even the very-contradictory uri spec requires a
hostname here...
Attached patch v1 patchSplinter Review 

    
    

    
  
this patch verifies that the URL is not empty before generating the Host header
inside nsHttpChannel::Init.  so, there is very little cost to this check.  one
negative is that there is no user feedback for this error.  but that's
docshell's problem.

    
  
Keywords: patch

    
    

    
  
i of course meant:

this patch verifies that the _hostname_ is not empty before...

    
    

    
  
Comment on attachment 100685 [details] [diff] [review]
v1 patch

r=dougt

        Attachment #100685 -
        Flags: review+

    
    

    
  
fixed-on-trunk
Status: ASSIGNED → RESOLVED
Closed: 22 years ago
Resolution: --- → FIXED

    
    

    
  
verified:  10/01/02 trunk, winNT4, linux rh6, mac osX
Status: RESOLVED → VERIFIED

    
    

    
  
So, you don't meant that "HTTP should reject URLs that lack a hostname" like 
this "http://129.21.2.233" as oppose to "http://www.rit.edu"?

    
    

    
  
nope, this check just avoids sending out a request for http:/// to a proxy server.

          You need to log in
          before you can comment on or make changes to this bug.
        






  

    
  







  

    

      
Attachment

      

      
      
      
      
    

    

      

        

          

            
General

            

              Creator: 



            

            
Created: 

            
Updated: 

            
Size: