[Fix] Do not allow garbadge when checking url domain

author: Vsevolod Stakhov <vsevolod@highsecure.ru> 2017-09-29 19:24:55 +0100
committer: Andrew Lewis <nerf@judo.za.org> 2017-10-18 00:26:15 +0200
commit: 9f6036dbf1852abde0daf5c4b4417e8126d15401 (patch)
tree: 9b17fa11297f52a63c3b1a6816c2ad20cb22d53a /src/libserver
parent: d903f1d46bf521ca90641998b2c143085fa41895 (diff)
download: rspamd-9f6036dbf1852abde0daf5c4b4417e8126d15401.tar.gz
rspamd-9f6036dbf1852abde0daf5c4b4417e8126d15401.zip
1 files changed, 9 insertions, 1 deletions
diff --git a/src/libserver/url.c b/src/libserver/url.c
index 824c0dff8..f7a73ac5a 100644
--- a/src/libserver/url.c
+++ b/src/libserver/url.c
@@ -965,9 +965,17 @@ rspamd_web_parse (struct http_parser_url *u, const gchar *str, gsize len,
 
 							p = p + i;
 						}
-						else {
+						else if (is_urlsafe (*p)) {
 							p ++;
 						}
+						else {
+							if (strict) {
+								goto out;
+							}
+							else {
+								goto set;
+							}
+						}
 					}
 					else {
 						p++;
author	Vsevolod Stakhov <vsevolod@highsecure.ru>	2017-09-29 19:24:55 +0100
committer	Andrew Lewis <nerf@judo.za.org>	2017-10-18 00:26:15 +0200
commit	9f6036dbf1852abde0daf5c4b4417e8126d15401 (patch)
tree	9b17fa11297f52a63c3b1a6816c2ad20cb22d53a /src/libserver
parent	d903f1d46bf521ca90641998b2c143085fa41895 (diff)
download	rspamd-9f6036dbf1852abde0daf5c4b4417e8126d15401.tar.gz rspamd-9f6036dbf1852abde0daf5c4b4417e8126d15401.zip