SERVER-49383 Assert that Host header is present in OCSP responder

author: Shreyas Kalyan <shreyas.kalyan@10gen.com> 2020-07-08 15:02:05 -0700
committer: Evergreen Agent <no-reply@evergreen.mongodb.com> 2020-07-09 21:53:43 +0000
commit: af43724d0602075993a181955b96f7854dc4f698 (patch)
tree: 1e045a263b3b7f077f2b87abb8a54c87d81788ce
parent: 79177a84f8f176a7ce94b6506efbee22590aa2cc (diff)
download: mongo-af43724d0602075993a181955b96f7854dc4f698.tar.gz
1 files changed, 4 insertions, 0 deletions
diff --git a/src/third_party/mock_ocsp_responder/mock_ocsp_responder.py b/src/third_party/mock_ocsp_responder/mock_ocsp_responder.py
index 6274e97ac86..0c64ff2a56b 100644
--- a/src/third_party/mock_ocsp_responder/mock_ocsp_responder.py
+++ b/src/third_party/mock_ocsp_responder/mock_ocsp_responder.py
@@ -599,6 +599,8 @@ def _handle_get(u_path):
     An OCSP GET request contains the DER-in-base64 encoded OCSP request in the
     HTTP request URL.
     """
+    if "Host" not in request.headers:
+        raise ValueError ("Required 'Host' header not present")
     der = base64.b64decode(u_path)
     ocsp_request = responder.parse_ocsp_request(der)
     return responder.build_http_response(ocsp_request)
@@ -610,5 +612,7 @@ def _handle_post():
     An OCSP POST request contains the DER encoded OCSP request in the HTTP
     request body.
     """
+    if "Host" not in request.headers:
+        raise ValueError ("Required 'Host' header not present")
     ocsp_request = responder.parse_ocsp_request(request.data)
     return responder.build_http_response(ocsp_request)
author	Shreyas Kalyan <shreyas.kalyan@10gen.com>	2020-07-08 15:02:05 -0700
committer	Evergreen Agent <no-reply@evergreen.mongodb.com>	2020-07-09 21:53:43 +0000
commit	af43724d0602075993a181955b96f7854dc4f698 (patch)
tree	1e045a263b3b7f077f2b87abb8a54c87d81788ce
parent	79177a84f8f176a7ce94b6506efbee22590aa2cc (diff)
download	mongo-af43724d0602075993a181955b96f7854dc4f698.tar.gz