Use ASCII case folding in same origin test

ddollar · garyburd · commit b648f206c26b · 2017-11-27T16:10:45.000-08:00
diff --git a/server.go b/server.go
@@ -76,7 +76,7 @@ func checkSameOrigin(r *http.Request) bool {
 	if err != nil {
 		return false
 	}
-	return u.Host == r.Host
+	return equalASCIIFold(u.Host, r.Host)
 }
 
 func (u *Upgrader) selectSubprotocol(r *http.Request, responseHeader http.Header) string {
diff --git a/server_test.go b/server_test.go
@@ -49,3 +49,21 @@ func TestIsWebSocketUpgrade(t *testing.T) {
 		}
 	}
 }
+
+var checkSameOriginTests = []struct {
+	ok bool
+	r  *http.Request
+}{
+	{false, &http.Request{Host: "example.org", Header: map[string][]string{"Origin": []string{"https://other.org"}}}},
+	{true, &http.Request{Host: "example.org", Header: map[string][]string{"Origin": []string{"https://example.org"}}}},
+	{true, &http.Request{Host: "Example.org", Header: map[string][]string{"Origin": []string{"https://example.org"}}}},
+}
+
+func TestCheckSameOrigin(t *testing.T) {
+	for _, tt := range checkSameOriginTests {
+		ok := checkSameOrigin(tt.r)
+		if tt.ok != ok {
+			t.Errorf("checkSameOrigin(%+v) returned %v, want %v", tt.r, ok, tt.ok)
+		}
+	}
+}

Original file line number	Diff line number	Diff line change
`@@ -76,7 +76,7 @@ func checkSameOrigin(r *http.Request) bool {`
`76`	`76`	`if err != nil {`
`77`	`77`	`return false`
`78`	`78`	`}`
`79`		`- return u.Host == r.Host`
	`79`	`+ return equalASCIIFold(u.Host, r.Host)`
`80`	`80`	`}`
`81`	`81`
`82`	`82`	`func (u Upgrader) selectSubprotocol(r http.Request, responseHeader http.Header) string {`