protocol-http1 0.35.0 → 0.35.2

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 500ff3e2663d7ee34b6ed02dfd6caf64c99f408ac7acd65661234e26017e3241
-  data.tar.gz: de10d389495f6c4fe89ef1c38e0bb317add069b97b8812aac5575940434ae669
+  metadata.gz: 4bf3ffc440b97d40277fdf64e1962d31edb93d808fc6a3059234af3b8be6e9c0
+  data.tar.gz: 9495d1bf263831872363193cbe2dab89775c57d503eacbb74bd83dffe7863f8e
 SHA512:
-  metadata.gz: 22d49079e478fe57d97c5f8a6f3002e14f9f77a7257731b7fb71af72c9faee4e15ea0415612d4d7fe78efcb0f287a6fb35f6776dda874cf0165d70991a7b73db
-  data.tar.gz: 67cb62c06915622f623194bd43ec0944dc707feb98ac27fdf1ac98010a8f5e11fe5be05ea87b294226fccba0af97dc80a9183c2c7b9664f937c95fd2cfb8e431
+  metadata.gz: 549410520376936764b4c55653bcc2bc30fd770fa63c3befeb634d6e909be02ce94dd8a11c0823a46a9de106fb6d3fce03eeacc03066e0a100aa797328641f80
+  data.tar.gz: f0d72eb0d29c2e9d97fe725e53da409c5dbd0352df6575d44a27bab6a4d55fef929eb8a72adc0d484cb471479b383f425541881996c229f31ab2703b055ebb94

data/lib/protocol/http1/connection.rb

@@ -350,17 +350,25 @@ module Protocol
 			# Read a line from the connection.
 			#
 			# @returns [String | Nil] the line read, or nil if the connection is closed.
-			# @raises [EOFError] if the connection is closed.
 			# @raises [LineLengthError] if the line is too long.
+			# @raises [ProtocolError] if the line is not terminated properly.
 			def read_line?
 				if line = @stream.gets(CRLF, @maximum_line_length)
 					unless line.chomp!(CRLF)
-						# This basically means that the request line, response line, header, or chunked length line is too long.
-						raise LineLengthError, "Line too long!"
+						if line.bytesize == @maximum_line_length
+							# This basically means that the request line, response line, header, or chunked length line is too long:
+							raise LineLengthError, "Line too long!"
+						else
+							# This means the line was not terminated properly, which is a protocol violation:
+							raise ProtocolError, "Line not terminated properly!"
+						end
 					end
 				end
 				
 				return line
+			# If a connection is shut down abruptly, we treat it as EOF, but only specifically in `read_line?`.
+			rescue Errno::ECONNRESET
+				return nil
 			end
 			
 			# Read a line from the connection.

data/lib/protocol/http1/version.rb

@@ -5,6 +5,6 @@
 
 module Protocol
 	module HTTP1
-		VERSION = "0.35.0"
+		VERSION = "0.35.2"
 	end
 end

data/readme.md

@@ -30,6 +30,11 @@ Please see the [project documentation](https://socketry.github.io/protocol-http1
 
 Please see the [project releases](https://socketry.github.io/protocol-http1/releases/index) for all releases.
 
+### v0.35.2
+
+  - Tidy up implementation of `read_line?` to handle line length errors and protocol violations more clearly.
+  - Improve error handling for unexpected connection closures (`Errno::ECONNRESET`) in `read_line?`.
+
 ### v0.35.0
 
   - Add traces provider for `Protocol::HTTP1::Connection`.
@@ -68,10 +73,6 @@ Please see the [project releases](https://socketry.github.io/protocol-http1/rele
 
   - Fix handling of `nil` lines in HTTP parsing.
 
-### v0.28.0
-
-  - Add configurable maximum line length to prevent denial of service attacks.
-
 ## Contributing
 
 We welcome contributions to this project.

data/releases.md

@@ -1,5 +1,10 @@
 # Releases
 
+## v0.35.2
+
+  - Tidy up implementation of `read_line?` to handle line length errors and protocol violations more clearly.
+  - Improve error handling for unexpected connection closures (`Errno::ECONNRESET`) in `read_line?`.
+
 ## v0.35.0
 
   - Add traces provider for `Protocol::HTTP1::Connection`.

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: protocol-http1
 version: !ruby/object:Gem::Version
-  version: 0.35.0
+  version: 0.35.2
 platform: ruby
 authors:
 - Samuel Williams