node: relax websocket connection header check (#21646)

This makes it accept the "upgrade,keep-alive" header value, which apparently is a thing.

node: relax websocket connection header check (#21646)
This makes it accept the "upgrade,keep-alive" header value, which apparently is a thing.
015e7892 · Felix Lange · GitHub · 716864de · 015e7892 · 015e7892
Unverified Commit 015e7892 authored Oct 07, 2020 by Felix Lange Committed by GitHub Oct 07, 2020
Hide whitespace changes
Inline Side-by-side

Showing with 16 additions and 1 deletion

rpcstack.go node/rpcstack.go +1 -1

rpcstack_test.go node/rpcstack_test.go +15 -0

No files found.
--- a/node/rpcstack.go
+++ b/node/rpcstack.go
@@ -313,7 +313,7 @@ func (h *httpServer) wsAllowed() bool {
 // isWebsocket checks the header of an http request for a websocket upgrade request.
 func isWebsocket(r *http.Request) bool {
 	return strings.ToLower(r.Header.Get("Upgrade")) == "websocket" &&
-		strings.ToLower(r.Header.Get("Connection")) == "upgrade"
+		strings.Contains(strings.ToLower(r.Header.Get("Connection")), "upgrade")
 }
 // NewHTTPHandlerStack returns wrapped http-related handlers

--- a/node/rpcstack_test.go
+++ b/node/rpcstack_test.go
@@ -73,6 +73,21 @@ func TestWebsocketOrigins(t *testing.T) {
 	assert.Error(t, err)
 }
+// TestIsWebsocket tests if an incoming websocket upgrade request is handled properly.
+func TestIsWebsocket(t *testing.T) {
+	r, _ := http.NewRequest("GET", "/", nil)
+	assert.False(t, isWebsocket(r))
+	r.Header.Set("upgrade", "websocket")
+	assert.False(t, isWebsocket(r))
+	r.Header.Set("connection", "upgrade")
+	assert.True(t, isWebsocket(r))
+	r.Header.Set("connection", "upgrade,keep-alive")
+	assert.True(t, isWebsocket(r))
+	r.Header.Set("connection", " UPGRADE,keep-alive")
+	assert.True(t, isWebsocket(r))
+}
 func createAndStartServer(t *testing.T, conf httpConfig, ws bool, wsConf wsConfig) *httpServer {
 	t.Helper()