diff options
author | Shreyas Kalyan <shreyas.kalyan@10gen.com> | 2020-07-08 15:02:05 -0700 |
---|---|---|
committer | Evergreen Agent <no-reply@evergreen.mongodb.com> | 2020-07-09 21:53:43 +0000 |
commit | af43724d0602075993a181955b96f7854dc4f698 (patch) | |
tree | 1e045a263b3b7f077f2b87abb8a54c87d81788ce | |
parent | 79177a84f8f176a7ce94b6506efbee22590aa2cc (diff) | |
download | mongo-af43724d0602075993a181955b96f7854dc4f698.tar.gz |
SERVER-49383 Assert that Host header is present in OCSP responder
-rw-r--r-- | src/third_party/mock_ocsp_responder/mock_ocsp_responder.py | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/src/third_party/mock_ocsp_responder/mock_ocsp_responder.py b/src/third_party/mock_ocsp_responder/mock_ocsp_responder.py index 6274e97ac86..0c64ff2a56b 100644 --- a/src/third_party/mock_ocsp_responder/mock_ocsp_responder.py +++ b/src/third_party/mock_ocsp_responder/mock_ocsp_responder.py @@ -599,6 +599,8 @@ def _handle_get(u_path): An OCSP GET request contains the DER-in-base64 encoded OCSP request in the HTTP request URL. """ + if "Host" not in request.headers: + raise ValueError ("Required 'Host' header not present") der = base64.b64decode(u_path) ocsp_request = responder.parse_ocsp_request(der) return responder.build_http_response(ocsp_request) @@ -610,5 +612,7 @@ def _handle_post(): An OCSP POST request contains the DER encoded OCSP request in the HTTP request body. """ + if "Host" not in request.headers: + raise ValueError ("Required 'Host' header not present") ocsp_request = responder.parse_ocsp_request(request.data) return responder.build_http_response(ocsp_request) |