fix(mitm): clean invalid response characters

blakebyrnes · blakebyrnes · commit 5d859217d7cf · 2021-11-23T11:40:04.000-05:00
diff --git a/mitm/handlers/HeadersHandler.ts b/mitm/handlers/HeadersHandler.ts
@@ -96,9 +96,10 @@ export default class HeadersHandler {
         if (singleValueHttp2Headers.has(lowerHeaderName)) {
           headers[canonizedKey] = value[0];
         } else {
-          headers[canonizedKey] = [...value];
+          headers[canonizedKey] = [...value].filter(x => !checkInvalidHeaderChar(x));
         }
       } else {
+        if (checkInvalidHeaderChar(value)) continue;
         headers[canonizedKey] = value;
       }
     }
@@ -206,6 +207,17 @@ export default class HeadersHandler {
   }
 }
 
+const headerCharRegex = /[^\t\x20-\x7e\x80-\xff]/;
+/**
+ * True if val contains an invalid field-vchar
+ *  field-value    = *( field-content / obs-fold )
+ *  field-content  = field-vchar [ 1*( SP / HTAB ) field-vchar ]
+ *  field-vchar    = VCHAR / obs-text
+ */
+function checkInvalidHeaderChar(val): boolean {
+  return headerCharRegex.test(val);
+}
+
 const lowerCaseMap = new Map<string, string>();
 
 function toLowerCase(header: string): string {
diff --git a/mitm/handlers/HttpRequestHandler.ts b/mitm/handlers/HttpRequestHandler.ts
@@ -202,12 +202,21 @@ export default class HttpRequestHandler extends BaseHttpHandler {
 
   private writeResponseHead(): void {
     const context = this.context;
-    const { serverToProxyResponse, proxyToClientResponse } = context;
+    const { serverToProxyResponse, proxyToClientResponse, requestSession } = context;
 
     proxyToClientResponse.statusCode = context.status;
     // write individually so we properly write header-lists
     for (const [key, value] of Object.entries(context.responseHeaders)) {
-      proxyToClientResponse.setHeader(key, value);
+      try {
+        proxyToClientResponse.setHeader(key, value);
+      } catch (error) {
+        log.info(`MitmHttpRequest.writeResponseHeadError`, {
+          sessionId: requestSession.sessionId,
+          request: `${context.method}: ${context.url.href}`,
+          error,
+          header: [key, value],
+        });
+      }
     }
 
     serverToProxyResponse.once('trailers', headers => {

Original file line number	Diff line number	Diff line change
`@@ -96,9 +96,10 @@ export default class HeadersHandler {`
`96`	`96`	`if (singleValueHttp2Headers.has(lowerHeaderName)) {`
`97`	`97`	`headers[canonizedKey] = value[0];`
`98`	`98`	`} else {`
`99`		`- headers[canonizedKey] = [...value];`
	`99`	`+ headers[canonizedKey] = [...value].filter(x => !checkInvalidHeaderChar(x));`
`100`	`100`	`}`
`101`	`101`	`} else {`
	`102`	`+ if (checkInvalidHeaderChar(value)) continue;`
`102`	`103`	`headers[canonizedKey] = value;`
`103`	`104`	`}`
`104`	`105`	`}`
`@@ -206,6 +207,17 @@ export default class HeadersHandler {`
`206`	`207`	`}`
`207`	`208`	`}`
`208`	`209`
	`210`	`+const headerCharRegex = /[^\t\x20-\x7e\x80-\xff]/;`
	`211`	`+/**`
	`212`	`+ * True if val contains an invalid field-vchar`
	`213`	`+ * field-value = *( field-content / obs-fold )`
	`214`	`+ * field-content = field-vchar [ 1*( SP / HTAB ) field-vchar ]`
	`215`	`+ * field-vchar = VCHAR / obs-text`
	`216`	`+ */`
	`217`	`+function checkInvalidHeaderChar(val): boolean {`
	`218`	`+ return headerCharRegex.test(val);`
	`219`	`+}`
	`220`	`+`
`209`	`221`	`const lowerCaseMap = new Map<string, string>();`
`210`	`222`
`211`	`223`	`function toLowerCase(header: string): string {`