[HttpClient] Reject 3xx pushed responses

nicolas-grekas · nicolas-grekas · commit 738bc9da0e6a · 2025-11-03T09:42:57.000+01:00
diff --git a/CurlHttpClient.php b/CurlHttpClient.php
@@ -378,7 +378,9 @@ private static function acceptPushForRequest(string $method, array $options, Pus
             }
         }
 
-        return true;
+        $statusCode = $pushedResponse->response->getInfo('http_code') ?: 200;
+
+        return $statusCode < 300 || 400 <= $statusCode;
     }
 
     /**
diff --git a/Response/CurlResponse.php b/Response/CurlResponse.php
@@ -396,7 +396,7 @@ private static function parseHeaderLine($ch, string $data, array &$info, array &
                 $info['peer_certificate_chain'] = array_map('openssl_x509_read', array_column($certinfo, 'Cert'));
             }
 
-            if (300 <= $info['http_code'] && $info['http_code'] < 400) {
+            if (300 <= $info['http_code'] && $info['http_code'] < 400 && null !== $options) {
                 if (curl_getinfo($ch, \CURLINFO_REDIRECT_COUNT) === $options['max_redirects']) {
                     curl_setopt($ch, \CURLOPT_FOLLOWLOCATION, false);
                 } elseif (303 === $info['http_code'] || ('POST' === $info['http_method'] && \in_array($info['http_code'], [301, 302], true))) {
@@ -418,7 +418,7 @@ private static function parseHeaderLine($ch, string $data, array &$info, array &
 
         $info['redirect_url'] = null;
 
-        if (300 <= $statusCode && $statusCode < 400 && null !== $location) {
+        if (300 <= $statusCode && $statusCode < 400 && null !== $location && null !== $options) {
             if ($noContent = 303 === $statusCode || ('POST' === $info['http_method'] && \in_array($statusCode, [301, 302], true))) {
                 $info['http_method'] = 'HEAD' === $info['http_method'] ? 'HEAD' : 'GET';
                 curl_setopt($ch, \CURLOPT_CUSTOMREQUEST, $info['http_method']);
@@ -433,7 +433,7 @@ private static function parseHeaderLine($ch, string $data, array &$info, array &
 
         if (401 === $statusCode && isset($options['auth_ntlm']) && 0 === strncasecmp($headers['www-authenticate'][0] ?? '', 'NTLM ', 5)) {
             // Continue with NTLM auth
-        } elseif ($statusCode < 300 || 400 <= $statusCode || null === $location || curl_getinfo($ch, \CURLINFO_REDIRECT_COUNT) === $options['max_redirects']) {
+        } elseif ($statusCode < 300 || 400 <= $statusCode || null === $location || null === $options || curl_getinfo($ch, \CURLINFO_REDIRECT_COUNT) === $options['max_redirects']) {
             // Headers and redirects completed, time to get the response's content
             $multi->handlesActivity[$id][] = new FirstChunk();
 

Original file line number	Diff line number	Diff line change
`@@ -378,7 +378,9 @@ private static function acceptPushForRequest(string $method, array $options, Pus`
`378`	`378`	`}`
`379`	`379`	`}`
`380`	`380`
`381`		`- return true;`
	`381`	`+ $statusCode = $pushedResponse->response->getInfo('http_code') ?: 200;`
	`382`	`+`
	`383`	`+ return $statusCode < 300 \|\| 400 <= $statusCode;`
`382`	`384`	`}`
`383`	`385`
`384`	`386`	`/**`