[issue39603] [security] http.client: HTTP Header Injection in the HTTP method
Amir Mohamadi
report at bugs.python.org
Wed Feb 12 02:09:21 EST 2020
Amir Mohamadi <amiremohamadi at yahoo.com> added the comment:
@vstinner sorry to bother you, I have a quick question.
the request(...) method is like this:
def request(self, method, url, body=None, headers={}, *,
encode_chunked=False):
"""Send a complete request to the server."""
self._send_request(method, url, body, headers, encode_chunked)
'request' calls '_send_request' method and '_send_request' calls 'putrequest' inside itself.
So is it good if I encode 'method' parameter to ASCII inside 'putrequest'??!
----------
_______________________________________
Python tracker <report at bugs.python.org>
<https://bugs.python.org/issue39603>
_______________________________________
More information about the Python-bugs-list
mailing list