src/net/http · c1fed8482d312d5c1bf0b92f22b4217580fc1f8a · go / golang

net/http: set nosniff header when serving Error · 32166319

Andrew Gerrand authored Jun 02, 2015

The Error function is a potential XSS vector if a user can control the
error message.

For example, an http.FileServer when given a request for this path
	/<script>alert("xss!")</script>
may return a response with a body like this
	open <script>alert("xss!")</script>: no such file or directory
Browsers that sniff the content may interpret this as HTML and execute
the script. The nosniff header added by this CL should help, but we
should also try santizing the output entirely.

Change-Id: I447f701531329a2fc8ffee2df2f8fa69d546f893
Reviewed-on: https://go-review.googlesource.com/10640Reviewed-by: Brad Fitzpatrick <bradfitz@golang.org>

32166319

Name	Last commit	Last update
..
cgi		Loading commit data...
cookiejar		Loading commit data...
fcgi		Loading commit data...
httptest		Loading commit data...
httputil		Loading commit data...
internal		Loading commit data...
pprof		Loading commit data...
testdata		Loading commit data...
client.go		Loading commit data...
client_test.go		Loading commit data...
cookie.go		Loading commit data...
cookie_test.go		Loading commit data...
doc.go		Loading commit data...
example_test.go		Loading commit data...
export_test.go		Loading commit data...
filetransport.go		Loading commit data...
filetransport_test.go		Loading commit data...
fs.go		Loading commit data...
fs_test.go		Loading commit data...
header.go		Loading commit data...
header_test.go		Loading commit data...
http_test.go		Loading commit data...
jar.go		Loading commit data...
lex.go		Loading commit data...
lex_test.go		Loading commit data...
main_test.go		Loading commit data...
npn_test.go		Loading commit data...
proxy_test.go		Loading commit data...
race.go		Loading commit data...
range_test.go		Loading commit data...
readrequest_test.go		Loading commit data...
request.go		Loading commit data...
request_test.go		Loading commit data...
requestwrite_test.go		Loading commit data...
response.go		Loading commit data...
response_test.go		Loading commit data...
responsewrite_test.go		Loading commit data...
serve_test.go		Loading commit data...
server.go		Loading commit data...
sniff.go		Loading commit data...
sniff_test.go		Loading commit data...
status.go		Loading commit data...
transfer.go		Loading commit data...
transfer_test.go		Loading commit data...
transport.go		Loading commit data...
transport_test.go		Loading commit data...
triv.go		Loading commit data...