fluidB
/
webdiss
1
0
Fork 0
Code Pull Requests Activity

Reject unauthorized commands after SUBSCRIBE

Browse Source 
Redis docs mention that a subscribed client cannot send a
non-subscription-related command.
master
Jessie Murray 3 years ago
parent 67490fb825
commit b65c05a985
No known key found for this signature in database
GPG Key ID: E7E4D57EDDA744C5
5 changed files with 44 additions and 14 deletions
Show Stats Download Patch File Download Diff File

30
src/cmd.c
Unescape Escape View File

@ -375,13 +375,31 @@ cmd_select_format(struct http_client *client, struct cmd *cmd,
int int
cmd_is_subscribe(struct cmd *cmd) { cmd_is_subscribe(struct cmd *cmd) {
if(cmd->pub_sub_client) { /* persistent command */ if(cmd->pub_sub_client || /* persistent command */
return 1; cmd_is_subscribe_args(cmd)) { /* checked with args */
}
if(cmd->count >= 1 && cmd->argv[0] &&
(strncasecmp(cmd->argv[0], "SUBSCRIBE", cmd->argv_len[0]) == 0 ||
strncasecmp(cmd->argv[0], "PSUBSCRIBE", cmd->argv_len[0]) == 0)) {
return 1; return 1;
} }
return 0; return 0;
} }
int
cmd_is_subscribe_args(struct cmd *cmd) {
if(cmd->count >= 2 &&
((cmd->argv_len[0] == 9 && strncasecmp(cmd->argv[0], "subscribe", 9) == 0) ||
(cmd->argv_len[0] == 10 && strncasecmp(cmd->argv[0], "psubscribe", 10) == 0))) {
return 1;
}
return 0;
}
int
cmd_is_unsubscribe_args(struct cmd *cmd) {
if(cmd->count >= 2 &&
((cmd->argv_len[0] == 11 && strncasecmp(cmd->argv[0], "unsubscribe", 11) == 0) ||
(cmd->argv_len[0] == 12 && strncasecmp(cmd->argv[0], "punsubscribe", 12) == 0))) {
return 1;
}
return 0;
}

6
src/cmd.h
Unescape Escape View File

@ -72,6 +72,12 @@ int
cmd_select_format(struct http_client *client, struct cmd *cmd, cmd_select_format(struct http_client *client, struct cmd *cmd,
const char *uri, size_t uri_len, formatting_fun *f_format); const char *uri, size_t uri_len, formatting_fun *f_format);
int
cmd_is_subscribe_args(struct cmd *cmd);
int
cmd_is_unsubscribe_args(struct cmd *cmd);
int int
cmd_is_subscribe(struct cmd *cmd); cmd_is_subscribe(struct cmd *cmd);

14
src/websocket.c
Unescape Escape View File

@ -310,9 +310,17 @@ ws_execute(struct ws_client *ws, struct ws_msg *msg) {
cmd->pub_sub_client = c; cmd->pub_sub_client = c;
} }
/* log and execute */ int is_subscribe = cmd_is_subscribe_args(cmd);
ws_log_cmd(ws, cmd); int is_unsubscribe = cmd_is_unsubscribe_args(cmd);
cmd_send(cmd, fun_reply);
if(ws->ran_subscribe && !is_subscribe && !is_unsubscribe) { /* disallow non-subscribe commands after a subscribe */
char error_msg[] = "Command not allowed after subscribe";
ws_frame_and_send_response(ws, WS_BINARY_FRAME, error_msg, sizeof(error_msg)-1);
} else { /* log and execute */
ws_log_cmd(ws, cmd);
cmd_send(cmd, fun_reply);
ws->ran_subscribe = is_subscribe;
}
return 0; return 0;
} }

1
src/websocket.h
Unescape Escape View File

@ -40,6 +40,7 @@ struct ws_client {
/* indicates that we'll close once we've flushed all /* indicates that we'll close once we've flushed all
buffered data and read what we planned to read */ buffered data and read what we planned to read */
int close_after_events; int close_after_events;
int ran_subscribe; /* set if we've run a (p)subscribe command */
}; };
struct ws_client * struct ws_client *

7
src/worker.c
Unescape Escape View File

@ -108,11 +108,8 @@ worker_can_read(int fd, short event, void *p) {
close(c->fd); close(c->fd);
} }
http_client_free(c); http_client_free(c);
} else { } else { /* start monitoring input again */
/* start monitoring input again */ if(!c->is_websocket) { /* all communication handled by WS code from now on */
if(c->is_websocket) { /* all communication handled by WS code from now on */
// ws_monitor_input(c->ws);
} else {
worker_monitor_input(c); worker_monitor_input(c);
} }
} }

Write Preview
Loading…
Cancel
Save