urlapi: verify the IPv6 numerical address

It needs to parse correctly. Otherwise it could be tricked into letting through a-f using host names that libcurl would then resolve. Like '[ab.be]'. Reported-by: Thomas Vegas Closes #4315
author: Daniel Stenberg <daniel@haxx.se> 2019-09-04 23:49:30 +0200
committer: Daniel Stenberg <daniel@haxx.se> 2019-09-10 11:32:12 +0200
commit: eab3c580f955c571253ab0ebd062b5f8c8d2b82f (patch)
tree: a8466faeca6eb03aa0e7707e001afee962b81c7f /tests
parent: ffe34b7b59e842fc37f2d19418dc2d7a5075e7ca (diff)
download: gnurl-eab3c580f955c571253ab0ebd062b5f8c8d2b82f.tar.gz
gnurl-eab3c580f955c571253ab0ebd062b5f8c8d2b82f.tar.bz2
gnurl-eab3c580f955c571253ab0ebd062b5f8c8d2b82f.zip
1 files changed, 4 insertions, 0 deletions
diff --git a/tests/libtest/lib1560.c b/tests/libtest/lib1560.c
index 1185096d8..85884474e 100644
--- a/tests/libtest/lib1560.c
+++ b/tests/libtest/lib1560.c
@@ -140,6 +140,10 @@ static struct testcase get_parts_list[] ={
    "file | [11] | [12] | [13] | [14] | [15] | C:\\programs\\foo | [16] | [17]",
    CURLU_DEFAULT_SCHEME, 0, CURLUE_OK},
 #endif
+  {"http://[ab.be:1]/x", "",
+   CURLU_DEFAULT_SCHEME, 0, CURLUE_MALFORMED_INPUT},
+  {"http://[ab.be]/x", "",
+   CURLU_DEFAULT_SCHEME, 0, CURLUE_MALFORMED_INPUT},
   /* URL without host name */
   {"http://a:b@/x", "",
    CURLU_DEFAULT_SCHEME, 0, CURLUE_NO_HOST},
author	Daniel Stenberg <daniel@haxx.se>	2019-09-04 23:49:30 +0200
committer	Daniel Stenberg <daniel@haxx.se>	2019-09-10 11:32:12 +0200
commit	eab3c580f955c571253ab0ebd062b5f8c8d2b82f (patch)
tree	a8466faeca6eb03aa0e7707e001afee962b81c7f /tests
parent	ffe34b7b59e842fc37f2d19418dc2d7a5075e7ca (diff)
download	gnurl-eab3c580f955c571253ab0ebd062b5f8c8d2b82f.tar.gz gnurl-eab3c580f955c571253ab0ebd062b5f8c8d2b82f.tar.bz2 gnurl-eab3c580f955c571253ab0ebd062b5f8c8d2b82f.zip