server: abort request handling on bad requests

A request to a hostname that hasn't been registered with the server currently results in a nil pointer deref panic in server.go:215 as request handling continues even if ReadRequest() returns an error. This change changes all if-else error handling in Server.respond() to a WriteStatus-call and early return. This makes it clear when request handling is aborted (and actually aborts when ReadRequest() fails).
2021-01-05 20:16:33 +01:00 · 2021-01-05 20:16:33 +01:00 · efef44c2f9
commit efef44c2f9
parent c8626bae17
1 changed files with 16 additions and 14 deletions
--- a/server.go
+++ b/server.go
@ -188,27 +188,29 @@ func (s *Server) respond(conn net.Conn) {
 	req, err := ReadRequest(conn)
 	if err != nil {
 		w.WriteStatus(StatusBadRequest)
-	} else {
+		return
-		// Store information about the TLS connection
+	}
-		if tlsConn, ok := conn.(*tls.Conn); ok {
+
-			req.TLS = tlsConn.ConnectionState()
+	// Store information about the TLS connection
-			if len(req.TLS.PeerCertificates) > 0 {
+	if tlsConn, ok := conn.(*tls.Conn); ok {
-				peerCert := req.TLS.PeerCertificates[0]
+		req.TLS = tlsConn.ConnectionState()
-				// Store the TLS certificate
+		if len(req.TLS.PeerCertificates) > 0 {
-				req.Certificate = &tls.Certificate{
+			peerCert := req.TLS.PeerCertificates[0]
-					Certificate: [][]byte{peerCert.Raw},
+			// Store the TLS certificate
-					Leaf:        peerCert,
+			req.Certificate = &tls.Certificate{
-				}
+				Certificate: [][]byte{peerCert.Raw},
 				Leaf:        peerCert,
 			}
 		}
 	}
 	resp := s.responder(req)
-	if resp != nil {
+	if resp == nil {
 		resp.Respond(w, req)
 	} else {
 		w.WriteStatus(StatusNotFound)
 		return
 	}
 	resp.Respond(w, req)
 }
 func (s *Server) responder(r *Request) Responder {