coolaj86
/
greenlock.js
mirror of https://github.com/therootcompany/greenlock.js
1
0
Fork 0
Code Projects Releases Wiki Activity
Browse Source

https://git.coolaj86.com/coolaj86/greenlock-express.js/issues/24 lightly sanitize sni

v2
AJ ONeal 6 years ago
parent
9e06859f62
commit
f2d989ffed
1 changed files with 12 additions and 1 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 13
      index.js

13
index.js
View File

@ -389,7 +389,7 @@ Greenlock.create = function (gl) {
console.error("");
cb(e);
}
);;
);
}
else {
log(gl.debug, 'gl getting from disk or registering new');
@ -416,6 +416,17 @@ Greenlock.create = function (gl) {
gl.sni = gl.sni.create(gl);
}
gl.tlsOptions.SNICallback = function (domain, cb) {
// format and (lightly) sanitize sni so that users can be naive
// and not have to worry about SQL injection or fs discovery
domain = (domain||'').toLowerCase();
// hostname labels allow a-z, 0-9, -, and are separated by dots
// _ is sometimes allowed
if (!/^[a-z0-9_\.\-]+$/i.test(domain) || -1 !== domain.indexOf('..')) {
log(gl.debug, "invalid sni '" + domain + "'");
cb(new Error("invalid SNI"));
return;
}
try {
gl.sni.sniCallback(domain, cb);
} catch(e) {

Write Preview
Loading…
Cancel
Save