dotnet
diff --git a/‎src/Servers/Kestrel/Core/src/Internal/Http/Http1Connection.cs‎
Lines changed: 9 additions & 6 deletions b/‎src/Servers/Kestrel/Core/src/Internal/Http/Http1Connection.cs‎
Lines changed: 9 additions & 6 deletions
diff --git a/‎src/Servers/Kestrel/Core/src/Internal/Http/HttpHeaders.Generated.cs‎
Lines changed: 12 additions & 12 deletions b/‎src/Servers/Kestrel/Core/src/Internal/Http/HttpHeaders.Generated.cs‎
Lines changed: 12 additions & 12 deletions
diff --git a/‎src/Servers/Kestrel/Core/src/Internal/Http/HttpParser.cs‎
Lines changed: 19 additions & 7 deletions b/‎src/Servers/Kestrel/Core/src/Internal/Http/HttpParser.cs‎
Lines changed: 19 additions & 7 deletions
diff --git a/‎src/Servers/Kestrel/Core/src/Internal/Http/HttpRequestHeaders.cs‎
Lines changed: 1 addition & 1 deletion b/‎src/Servers/Kestrel/Core/src/Internal/Http/HttpRequestHeaders.cs‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎src/Servers/Kestrel/Core/src/Internal/Http/PathDecoder.cs‎
Lines changed: 1 addition & 1 deletion b/‎src/Servers/Kestrel/Core/src/Internal/Http/PathDecoder.cs‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎src/Servers/Kestrel/Core/src/Internal/Infrastructure/HttpUtilities.cs‎
Lines changed: 41 additions & 25 deletions b/‎src/Servers/Kestrel/Core/src/Internal/Infrastructure/HttpUtilities.cs‎
Lines changed: 41 additions & 25 deletions
@@ -290,6 +290,9 @@ bool TrimAndTakeMessageHeaders(ref SequenceReader<byte> reader, bool trailers)
 
     public void OnStartLine(HttpVersionAndMethod versionAndMethod, TargetOffsetPathLength targetPath, Span<byte> startLine)
     {
+        // Null characters are not allowed and should have been checked by HttpParser before calling this method
+        Debug.Assert(startLine.IndexOf((byte)0) == -1);
+
         var targetStart = targetPath.Offset;
         // Slice out target
         var target = startLine[targetStart..];
@@ -322,7 +325,7 @@ public void OnStartLine(HttpVersionAndMethod versionAndMethod, TargetOffsetPathL
         Method = method;
         if (method == HttpMethod.Custom)
         {
-            _methodText = startLine[..versionAndMethod.MethodEnd].GetAsciiStringNonNullCharacters();
+            _methodText = startLine[..versionAndMethod.MethodEnd].GetAsciiString();
         }
 
         _httpVersion = versionAndMethod.Version;
@@ -386,7 +389,7 @@ private void ParseTarget(TargetOffsetPathLength targetPath, Span<byte> target)
         {
             // The previous string does not match what the bytes would convert to,
             // so we will need to generate a new string.
-            RawTarget = _parsedRawTarget = target.GetAsciiStringNonNullCharacters();
+            RawTarget = _parsedRawTarget = target.GetAsciiString();
 
             var queryLength = 0;
             if (target.Length == targetPath.Length)
@@ -436,7 +439,7 @@ private int ParseQuery(TargetOffsetPathLength targetPath, Span<byte> target)
         {
             // The previous string does not match what the bytes would convert to,
             // so we will need to generate a new string.
-            QueryString = _parsedQueryString = query.GetAsciiStringNonNullCharacters();
+            QueryString = _parsedQueryString = query.GetAsciiString();
         }
         else
         {
@@ -482,7 +485,7 @@ private void OnAuthorityFormTarget(HttpMethod method, Span<byte> target)
         {
             // The previous string does not match what the bytes would convert to,
             // so we will need to generate a new string.
-            RawTarget = _parsedRawTarget = target.GetAsciiStringNonNullCharacters();
+            RawTarget = _parsedRawTarget = target.GetAsciiString();
         }
         else
         {
@@ -542,7 +545,7 @@ private void OnAbsoluteFormTarget(TargetOffsetPathLength targetPath, Span<byte>
             {
                 // The previous string does not match what the bytes would convert to,
                 // so we will need to generate a new string.
-                RawTarget = _parsedRawTarget = target.GetAsciiStringNonNullCharacters();
+                RawTarget = _parsedRawTarget = target.GetAsciiString();
             }
             catch (InvalidOperationException)
             {
@@ -572,7 +575,7 @@ private void OnAbsoluteFormTarget(TargetOffsetPathLength targetPath, Span<byte>
             {
                 // The previous string does not match what the bytes would convert to,
                 // so we will need to generate a new string.
-                QueryString = _parsedQueryString = query.GetAsciiStringNonNullCharacters();
+                QueryString = _parsedQueryString = query.GetAsciiString();
             }
             else
             {
 
@@ -7481,7 +7481,7 @@ internal void ClearPseudoRequestHeaders()
         }
 
         [MethodImpl(MethodImplOptions.AggressiveInlining)]
-        internal static unsafe ushort ReadUnalignedLittleEndian_ushort(ref byte source)
+        internal static ushort ReadUnalignedLittleEndian_ushort(ref byte source)
         {
             ushort result = Unsafe.ReadUnaligned<ushort>(ref source);
             if (!BitConverter.IsLittleEndian)
@@ -7491,7 +7491,7 @@ internal static unsafe ushort ReadUnalignedLittleEndian_ushort(ref byte source)
             return result;
         }
         [MethodImpl(MethodImplOptions.AggressiveInlining)]
-        internal static unsafe uint ReadUnalignedLittleEndian_uint(ref byte source)
+        internal static uint ReadUnalignedLittleEndian_uint(ref byte source)
         {
             uint result = Unsafe.ReadUnaligned<uint>(ref source);
             if (!BitConverter.IsLittleEndian)
@@ -7501,7 +7501,7 @@ internal static unsafe uint ReadUnalignedLittleEndian_uint(ref byte source)
             return result;
         }
         [MethodImpl(MethodImplOptions.AggressiveInlining)]
-        internal static unsafe ulong ReadUnalignedLittleEndian_ulong(ref byte source)
+        internal static ulong ReadUnalignedLittleEndian_ulong(ref byte source)
         {
             ulong result = Unsafe.ReadUnaligned<ulong>(ref source);
             if (!BitConverter.IsLittleEndian)
@@ -7511,11 +7511,11 @@ internal static unsafe ulong ReadUnalignedLittleEndian_ulong(ref byte source)
             return result;
         }
         [MethodImpl(MethodImplOptions.AggressiveOptimization)]
-        public unsafe void Append(ReadOnlySpan<byte> name, ReadOnlySpan<byte> value, bool checkForNewlineChars)
+        public void Append(ReadOnlySpan<byte> name, ReadOnlySpan<byte> value, bool checkForNewlineChars)
         {
             ref byte nameStart = ref MemoryMarshal.GetReference(name);
             var nameStr = string.Empty;
-            ref StringValues values = ref Unsafe.AsRef<StringValues>(null);
+            ref StringValues values = ref Unsafe.NullRef<StringValues>();
             var flag = 0L;
 
             // Does the name match any "known" headers
@@ -7924,9 +7924,9 @@ public unsafe void Append(ReadOnlySpan<byte> name, ReadOnlySpan<byte> value, boo
         }
 
         [MethodImpl(MethodImplOptions.AggressiveOptimization)]
-        public unsafe bool TryHPackAppend(int index, ReadOnlySpan<byte> value, bool checkForNewlineChars)
+        public bool TryHPackAppend(int index, ReadOnlySpan<byte> value, bool checkForNewlineChars)
         {
-            ref StringValues values = ref Unsafe.AsRef<StringValues>(null);
+            ref StringValues values = ref Unsafe.NullRef<StringValues>();
             var nameStr = string.Empty;
             var flag = 0L;
 
@@ -8136,9 +8136,9 @@ public unsafe bool TryHPackAppend(int index, ReadOnlySpan<byte> value, bool chec
         }
 
         [MethodImpl(MethodImplOptions.AggressiveOptimization)]
-        public unsafe bool TryQPackAppend(int index, ReadOnlySpan<byte> value, bool checkForNewlineChars)
+        public bool TryQPackAppend(int index, ReadOnlySpan<byte> value, bool checkForNewlineChars)
         {
-            ref StringValues values = ref Unsafe.AsRef<StringValues>(null);
+            ref StringValues values = ref Unsafe.NullRef<StringValues>();
             var nameStr = string.Empty;
             var flag = 0L;
 
@@ -14806,7 +14806,7 @@ internal void ClearInvalidH2H3Headers()
         {
             _bits &= ~13161725953;
         }
-        internal unsafe void CopyToFast(ref BufferWriter<PipeWriter> output)
+        internal void CopyToFast(ref BufferWriter<PipeWriter> output)
         {
             var tempBits = (ulong)_bits;
             // Set exact next
@@ -14823,7 +14823,7 @@ internal unsafe void CopyToFast(ref BufferWriter<PipeWriter> output)
                 return;
             }
 
-            ref readonly StringValues values = ref Unsafe.AsRef<StringValues>(null);
+            ref readonly StringValues values = ref Unsafe.NullRef<StringValues>();
             do
             {
                 int keyStart;
@@ -17629,4 +17629,4 @@ public bool MoveNext()
             }
         }
     }
-}
+}
@@ -54,24 +54,34 @@ internal HttpParser(bool showErrorDetails, bool disableHttp1LineFeedTerminators)
     private const byte ByteQuestionMark = (byte)'?';
     private const byte BytePercentage = (byte)'%';
     private const int MinTlsRequestSize = 1; // We need at least 1 byte to check for a proper TLS request line
+    private static ReadOnlySpan<byte> RequestLineDelimiters => [ByteLF, 0];
 
     /// <summary>
     /// This API supports framework infrastructure and is not intended to be used
     /// directly from application code.
     /// </summary>
     public bool ParseRequestLine(TRequestHandler handler, ref SequenceReader<byte> reader)
     {
-        if (reader.TryReadTo(out ReadOnlySpan<byte> requestLine, ByteLF, advancePastDelimiter: true))
+        // Find the next delimiter.
+        if (!reader.TryReadToAny(out ReadOnlySpan<byte> requestLine, RequestLineDelimiters, advancePastDelimiter: false))
         {
-            ParseRequestLine(handler, requestLine);
-            return true;
+            return false;
         }
 
-        return false;
-    }
+        // Consume the delimiter.
+        var foundDelimiter = reader.TryRead(out var next);
+        Debug.Assert(foundDelimiter);
+        // If null character found, or request line is empty
+        if (next == 0 || requestLine.Length == 0)
+        {
+            // Rewind and re-read to format error message correctly
+            reader.Rewind(requestLine.Length + 1);
+            var readResult = reader.TryReadExact(requestLine.Length + 1, out var requestLineSequence);
+            Debug.Assert(readResult);
+            requestLine = requestLineSequence.IsSingleSegment ? requestLineSequence.FirstSpan : requestLineSequence.ToArray();
+            RejectRequestLine(requestLine);
+        }
 
-    private void ParseRequestLine(TRequestHandler handler, ReadOnlySpan<byte> requestLine)
-    {
         // Get Method and set the offset
         var method = requestLine.GetKnownMethod(out var methodEnd);
         if (method == HttpMethod.Custom)
@@ -175,6 +185,8 @@ private void ParseRequestLine(TRequestHandler handler, ReadOnlySpan<byte> reques
         // in-place normalization and decoding to transform into a canonical path
         var startLine = MemoryMarshal.CreateSpan(ref MemoryMarshal.GetReference(requestLine), queryEnd);
         handler.OnStartLine(versionAndMethod, path, startLine);
+
+        return true;
     }
 
     /// <summary>
 
@@ -147,7 +147,7 @@ private bool AddValueUnknown(string key, StringValues value)
     }
 
     [MethodImpl(MethodImplOptions.NoInlining)]
-    private unsafe void AppendUnknownHeaders(string name, string valueString)
+    private void AppendUnknownHeaders(string name, string valueString)
     {
         name = GetInternedHeaderName(name);
         Unknown.TryGetValue(name, out var existing);
 
@@ -42,6 +42,6 @@ public static string DecodePath(Span<byte> path, bool pathEncoded, string rawTar
             return rawTarget;
         }
 
-        return path.Slice(0, pathLength).GetAsciiStringNonNullCharacters();
+        return path.Slice(0, pathLength).GetAsciiString();
     }
 }
@@ -28,7 +28,6 @@ internal static partial class HttpUtilities
     private const ulong _http11VersionLong = 3543824036068086856; // GetAsciiStringAsLong("HTTP/1.1"); const results in better codegen
 
     private static readonly UTF8Encoding DefaultRequestHeaderEncoding = new UTF8Encoding(encoderShouldEmitUTF8Identifier: false, throwOnInvalidBytes: true);
-    private static readonly SpanAction<char, IntPtr> s_getHeaderName = GetHeaderName;
 
     [MethodImpl(MethodImplOptions.AggressiveInlining)]
     private static void SetKnownMethod(ulong mask, ulong knownMethodUlong, HttpMethod knownMethod, int length)
@@ -81,72 +80,89 @@ private static ulong GetMaskAsLong(ReadOnlySpan<byte> bytes)
         return BinaryPrimitives.ReadUInt64LittleEndian(bytes);
     }
 
-    // The same as GetAsciiStringNonNullCharacters but throws BadRequest
+    // The same as GetAsciiString but throws BadRequest for null character
     [MethodImpl(MethodImplOptions.AggressiveInlining)]
-    public static unsafe string GetHeaderName(this ReadOnlySpan<byte> span)
+    public static string GetHeaderName(this ReadOnlySpan<byte> span)
     {
         if (span.IsEmpty)
         {
             return string.Empty;
         }
 
-        fixed (byte* source = &MemoryMarshal.GetReference(span))
+        var str = string.Create(span.Length, span, static (destination, source) =>
         {
-            return string.Create(span.Length, new IntPtr(source), s_getHeaderName);
-        }
-    }
-
-    private static unsafe void GetHeaderName(Span<char> buffer, IntPtr state)
-    {
-        fixed (char* output = &MemoryMarshal.GetReference(buffer))
-        {
-            // This version of AsciiUtilities returns null if there are any null (0 byte) characters
-            // in the string
-            if (!StringUtilities.TryGetAsciiString((byte*)state.ToPointer(), output, buffer.Length))
+            if (source.Contains((byte)0)
+                || Ascii.ToUtf16(source, destination, out var written) != OperationStatus.Done)
             {
                 KestrelBadHttpRequestException.Throw(RequestRejectionReason.InvalidCharactersInHeaderName);
             }
-        }
+            else
+            {
+                Debug.Assert(written == destination.Length);
+            }
+        });
+
+        return str;
     }
 
-    public static string GetAsciiStringNonNullCharacters(this Span<byte> span)
-        => StringUtilities.GetAsciiStringNonNullCharacters(span);
+    // Null checks must be done independently of this method (if required)
+    public static string GetAsciiString(this Span<byte> span)
+        => StringUtilities.GetAsciiString(span);
 
-    public static string GetAsciiOrUTF8StringNonNullCharacters(this ReadOnlySpan<byte> span)
-        => StringUtilities.GetAsciiOrUTF8StringNonNullCharacters(span, DefaultRequestHeaderEncoding);
+    // Null checks must be done independently of this method (if required)
+    public static string GetAsciiOrUTF8String(this ReadOnlySpan<byte> span)
+        => StringUtilities.GetAsciiOrUTF8String(span, DefaultRequestHeaderEncoding);
 
     public static string GetRequestHeaderString(this ReadOnlySpan<byte> span, string name, Func<string, Encoding?> encodingSelector, bool checkForNewlineChars)
     {
         string result;
         if (ReferenceEquals(KestrelServerOptions.DefaultHeaderEncodingSelector, encodingSelector))
         {
-            result = span.GetAsciiOrUTF8StringNonNullCharacters(DefaultRequestHeaderEncoding);
+            result = span.GetAsciiOrUTF8String(DefaultRequestHeaderEncoding);
         }
         else
         {
             result = span.GetRequestHeaderStringWithoutDefaultEncodingCore(name, encodingSelector);
         }
 
         // New Line characters (CR, LF) are considered invalid at this point.
-        if (checkForNewlineChars && ((ReadOnlySpan<char>)result).IndexOfAny('\r', '\n') >= 0)
+        // Null characters are also not allowed.
+        var hasInvalidChar = checkForNewlineChars ?
+            ((ReadOnlySpan<char>)result).ContainsAny('\r', '\n', '\0')
+            : ((ReadOnlySpan<char>)result).Contains('\0');
+
+        if (hasInvalidChar)
         {
-            throw new InvalidOperationException("Newline characters (CR/LF) are not allowed in request headers.");
+            ThrowForInvalidCharacter(checkForNewlineChars);
         }
 
         return result;
     }
 
+    [MethodImpl(MethodImplOptions.NoInlining)]
+    private static void ThrowForInvalidCharacter(bool checkForNewlines)
+    {
+        if (checkForNewlines)
+        {
+            throw new InvalidOperationException("Newline characters (CR/LF) or Null are not allowed in request headers.");
+        }
+        else
+        {
+            throw new InvalidOperationException("Null characters are not allowed in request headers.");
+        }
+    }
+
     private static string GetRequestHeaderStringWithoutDefaultEncodingCore(this ReadOnlySpan<byte> span, string name, Func<string, Encoding?> encodingSelector)
     {
         var encoding = encodingSelector(name);
 
         if (encoding is null)
         {
-            return span.GetAsciiOrUTF8StringNonNullCharacters(DefaultRequestHeaderEncoding);
+            return span.GetAsciiOrUTF8String(DefaultRequestHeaderEncoding);
         }
         if (ReferenceEquals(encoding, Encoding.Latin1))
         {
-            return span.GetLatin1StringNonNullCharacters();
+            return span.GetLatin1String();
         }
         try
         {
Original file line number	Diff line number	Diff line change
`@@ -290,6 +290,9 @@ bool TrimAndTakeMessageHeaders(ref SequenceReader<byte> reader, bool trailers)`
`290`	`290`
`291`	`291`	`public void OnStartLine(HttpVersionAndMethod versionAndMethod, TargetOffsetPathLength targetPath, Span<byte> startLine)`
`292`	`292`	`{`
	`293`	`+ // Null characters are not allowed and should have been checked by HttpParser before calling this method`
	`294`	`+ Debug.Assert(startLine.IndexOf((byte)0) == -1);`
	`295`	`+`
`293`	`296`	`var targetStart = targetPath.Offset;`
`294`	`297`	`// Slice out target`
`295`	`298`	`var target = startLine[targetStart..];`
`@@ -322,7 +325,7 @@ public void OnStartLine(HttpVersionAndMethod versionAndMethod, TargetOffsetPathL`
`322`	`325`	`Method = method;`
`323`	`326`	`if (method == HttpMethod.Custom)`
`324`	`327`	`{`
`325`		`- _methodText = startLine[..versionAndMethod.MethodEnd].GetAsciiStringNonNullCharacters();`
	`328`	`+ _methodText = startLine[..versionAndMethod.MethodEnd].GetAsciiString();`
`326`	`329`	`}`
`327`	`330`
`328`	`331`	`_httpVersion = versionAndMethod.Version;`
`@@ -386,7 +389,7 @@ private void ParseTarget(TargetOffsetPathLength targetPath, Span<byte> target)`
`386`	`389`	`{`
`387`	`390`	`// The previous string does not match what the bytes would convert to,`
`388`	`391`	`// so we will need to generate a new string.`
`389`		`- RawTarget = _parsedRawTarget = target.GetAsciiStringNonNullCharacters();`
	`392`	`+ RawTarget = _parsedRawTarget = target.GetAsciiString();`
`390`	`393`
`391`	`394`	`var queryLength = 0;`
`392`	`395`	`if (target.Length == targetPath.Length)`
`@@ -436,7 +439,7 @@ private int ParseQuery(TargetOffsetPathLength targetPath, Span<byte> target)`
`436`	`439`	`{`
`437`	`440`	`// The previous string does not match what the bytes would convert to,`
`438`	`441`	`// so we will need to generate a new string.`
`439`		`- QueryString = _parsedQueryString = query.GetAsciiStringNonNullCharacters();`
	`442`	`+ QueryString = _parsedQueryString = query.GetAsciiString();`
`440`	`443`	`}`
`441`	`444`	`else`
`442`	`445`	`{`
`@@ -482,7 +485,7 @@ private void OnAuthorityFormTarget(HttpMethod method, Span<byte> target)`
`482`	`485`	`{`
`483`	`486`	`// The previous string does not match what the bytes would convert to,`
`484`	`487`	`// so we will need to generate a new string.`
`485`		`- RawTarget = _parsedRawTarget = target.GetAsciiStringNonNullCharacters();`
	`488`	`+ RawTarget = _parsedRawTarget = target.GetAsciiString();`
`486`	`489`	`}`
`487`	`490`	`else`
`488`	`491`	`{`
`@@ -542,7 +545,7 @@ private void OnAbsoluteFormTarget(TargetOffsetPathLength targetPath, Span<byte>`
`542`	`545`	`{`
`543`	`546`	`// The previous string does not match what the bytes would convert to,`
`544`	`547`	`// so we will need to generate a new string.`
`545`		`- RawTarget = _parsedRawTarget = target.GetAsciiStringNonNullCharacters();`
	`548`	`+ RawTarget = _parsedRawTarget = target.GetAsciiString();`
`546`	`549`	`}`
`547`	`550`	`catch (InvalidOperationException)`
`548`	`551`	`{`
`@@ -572,7 +575,7 @@ private void OnAbsoluteFormTarget(TargetOffsetPathLength targetPath, Span<byte>`
`572`	`575`	`{`
`573`	`576`	`// The previous string does not match what the bytes would convert to,`
`574`	`577`	`// so we will need to generate a new string.`
`575`		`- QueryString = _parsedQueryString = query.GetAsciiStringNonNullCharacters();`
	`578`	`+ QueryString = _parsedQueryString = query.GetAsciiString();`
`576`	`579`	`}`
`577`	`580`	`else`
`578`	`581`	`{`
Original file line number	Diff line number	Diff line change
`@@ -7481,7 +7481,7 @@ internal void ClearPseudoRequestHeaders()`
`7481`	`7481`	`}`
`7482`	`7482`
`7483`	`7483`	`[MethodImpl(MethodImplOptions.AggressiveInlining)]`
`7484`		`- internal static unsafe ushort ReadUnalignedLittleEndian_ushort(ref byte source)`
	`7484`	`+ internal static ushort ReadUnalignedLittleEndian_ushort(ref byte source)`
`7485`	`7485`	`{`
`7486`	`7486`	`ushort result = Unsafe.ReadUnaligned<ushort>(ref source);`
`7487`	`7487`	`if (!BitConverter.IsLittleEndian)`
`@@ -7491,7 +7491,7 @@ internal static unsafe ushort ReadUnalignedLittleEndian_ushort(ref byte source)`
`7491`	`7491`	`return result;`
`7492`	`7492`	`}`
`7493`	`7493`	`[MethodImpl(MethodImplOptions.AggressiveInlining)]`
`7494`		`- internal static unsafe uint ReadUnalignedLittleEndian_uint(ref byte source)`
	`7494`	`+ internal static uint ReadUnalignedLittleEndian_uint(ref byte source)`
`7495`	`7495`	`{`
`7496`	`7496`	`uint result = Unsafe.ReadUnaligned<uint>(ref source);`
`7497`	`7497`	`if (!BitConverter.IsLittleEndian)`
`@@ -7501,7 +7501,7 @@ internal static unsafe uint ReadUnalignedLittleEndian_uint(ref byte source)`
`7501`	`7501`	`return result;`
`7502`	`7502`	`}`
`7503`	`7503`	`[MethodImpl(MethodImplOptions.AggressiveInlining)]`
`7504`		`- internal static unsafe ulong ReadUnalignedLittleEndian_ulong(ref byte source)`
	`7504`	`+ internal static ulong ReadUnalignedLittleEndian_ulong(ref byte source)`
`7505`	`7505`	`{`
`7506`	`7506`	`ulong result = Unsafe.ReadUnaligned<ulong>(ref source);`
`7507`	`7507`	`if (!BitConverter.IsLittleEndian)`
`@@ -7511,11 +7511,11 @@ internal static unsafe ulong ReadUnalignedLittleEndian_ulong(ref byte source)`
`7511`	`7511`	`return result;`
`7512`	`7512`	`}`
`7513`	`7513`	`[MethodImpl(MethodImplOptions.AggressiveOptimization)]`
`7514`		`- public unsafe void Append(ReadOnlySpan<byte> name, ReadOnlySpan<byte> value, bool checkForNewlineChars)`
	`7514`	`+ public void Append(ReadOnlySpan<byte> name, ReadOnlySpan<byte> value, bool checkForNewlineChars)`
`7515`	`7515`	`{`
`7516`	`7516`	`ref byte nameStart = ref MemoryMarshal.GetReference(name);`
`7517`	`7517`	`var nameStr = string.Empty;`
`7518`		`- ref StringValues values = ref Unsafe.AsRef<StringValues>(null);`
	`7518`	`+ ref StringValues values = ref Unsafe.NullRef<StringValues>();`
`7519`	`7519`	`var flag = 0L;`
`7520`	`7520`
`7521`	`7521`	`// Does the name match any "known" headers`
`@@ -7924,9 +7924,9 @@ public unsafe void Append(ReadOnlySpan<byte> name, ReadOnlySpan<byte> value, boo`
`7924`	`7924`	`}`
`7925`	`7925`
`7926`	`7926`	`[MethodImpl(MethodImplOptions.AggressiveOptimization)]`
`7927`		`- public unsafe bool TryHPackAppend(int index, ReadOnlySpan<byte> value, bool checkForNewlineChars)`
	`7927`	`+ public bool TryHPackAppend(int index, ReadOnlySpan<byte> value, bool checkForNewlineChars)`
`7928`	`7928`	`{`
`7929`		`- ref StringValues values = ref Unsafe.AsRef<StringValues>(null);`
	`7929`	`+ ref StringValues values = ref Unsafe.NullRef<StringValues>();`
`7930`	`7930`	`var nameStr = string.Empty;`
`7931`	`7931`	`var flag = 0L;`
`7932`	`7932`
`@@ -8136,9 +8136,9 @@ public unsafe bool TryHPackAppend(int index, ReadOnlySpan<byte> value, bool chec`
`8136`	`8136`	`}`
`8137`	`8137`
`8138`	`8138`	`[MethodImpl(MethodImplOptions.AggressiveOptimization)]`
`8139`		`- public unsafe bool TryQPackAppend(int index, ReadOnlySpan<byte> value, bool checkForNewlineChars)`
	`8139`	`+ public bool TryQPackAppend(int index, ReadOnlySpan<byte> value, bool checkForNewlineChars)`
`8140`	`8140`	`{`
`8141`		`- ref StringValues values = ref Unsafe.AsRef<StringValues>(null);`
	`8141`	`+ ref StringValues values = ref Unsafe.NullRef<StringValues>();`
`8142`	`8142`	`var nameStr = string.Empty;`
`8143`	`8143`	`var flag = 0L;`
`8144`	`8144`
`@@ -14806,7 +14806,7 @@ internal void ClearInvalidH2H3Headers()`
`14806`	`14806`	`{`
`14807`	`14807`	`_bits &= ~13161725953;`
`14808`	`14808`	`}`
`14809`		`- internal unsafe void CopyToFast(ref BufferWriter<PipeWriter> output)`
	`14809`	`+ internal void CopyToFast(ref BufferWriter<PipeWriter> output)`
`14810`	`14810`	`{`
`14811`	`14811`	`var tempBits = (ulong)_bits;`
`14812`	`14812`	`// Set exact next`
`@@ -14823,7 +14823,7 @@ internal unsafe void CopyToFast(ref BufferWriter<PipeWriter> output)`
`14823`	`14823`	`return;`
`14824`	`14824`	`}`
`14825`	`14825`
`14826`		`- ref readonly StringValues values = ref Unsafe.AsRef<StringValues>(null);`
	`14826`	`+ ref readonly StringValues values = ref Unsafe.NullRef<StringValues>();`
`14827`	`14827`	`do`
`14828`	`14828`	`{`
`14829`	`14829`	`int keyStart;`
`@@ -17629,4 +17629,4 @@ public bool MoveNext()`
`17629`	`17629`	`}`
`17630`	`17630`	`}`
`17631`	`17631`	`}`
`17632`		`-}`
	`17632`	`+}`
Original file line number	Diff line number	Diff line change
`@@ -147,7 +147,7 @@ private bool AddValueUnknown(string key, StringValues value)`
`147`	`147`	`}`
`148`	`148`
`149`	`149`	`[MethodImpl(MethodImplOptions.NoInlining)]`
`150`		`- private unsafe void AppendUnknownHeaders(string name, string valueString)`
	`150`	`+ private void AppendUnknownHeaders(string name, string valueString)`
`151`	`151`	`{`
`152`	`152`	`name = GetInternedHeaderName(name);`
`153`	`153`	`Unknown.TryGetValue(name, out var existing);`
Original file line number	Diff line number	Diff line change
`@@ -42,6 +42,6 @@ public static string DecodePath(Span<byte> path, bool pathEncoded, string rawTar`
`42`	`42`	`return rawTarget;`
`43`	`43`	`}`
`44`	`44`
`45`		`- return path.Slice(0, pathLength).GetAsciiStringNonNullCharacters();`
	`45`	`+ return path.Slice(0, pathLength).GetAsciiString();`
`46`	`46`	`}`
`47`	`47`	`}`
Original file line number	Diff line number	Diff line change
`@@ -28,7 +28,6 @@ internal static partial class HttpUtilities`
`28`	`28`	`private const ulong _http11VersionLong = 3543824036068086856; // GetAsciiStringAsLong("HTTP/1.1"); const results in better codegen`
`29`	`29`
`30`	`30`	`private static readonly UTF8Encoding DefaultRequestHeaderEncoding = new UTF8Encoding(encoderShouldEmitUTF8Identifier: false, throwOnInvalidBytes: true);`
`31`		`- private static readonly SpanAction<char, IntPtr> s_getHeaderName = GetHeaderName;`
`32`	`31`
`33`	`32`	`[MethodImpl(MethodImplOptions.AggressiveInlining)]`
`34`	`33`	`private static void SetKnownMethod(ulong mask, ulong knownMethodUlong, HttpMethod knownMethod, int length)`
`@@ -81,72 +80,89 @@ private static ulong GetMaskAsLong(ReadOnlySpan<byte> bytes)`
`81`	`80`	`return BinaryPrimitives.ReadUInt64LittleEndian(bytes);`
`82`	`81`	`}`
`83`	`82`
`84`		`- // The same as GetAsciiStringNonNullCharacters but throws BadRequest`
	`83`	`+ // The same as GetAsciiString but throws BadRequest for null character`
`85`	`84`	`[MethodImpl(MethodImplOptions.AggressiveInlining)]`
`86`		`- public static unsafe string GetHeaderName(this ReadOnlySpan<byte> span)`
	`85`	`+ public static string GetHeaderName(this ReadOnlySpan<byte> span)`
`87`	`86`	`{`
`88`	`87`	`if (span.IsEmpty)`
`89`	`88`	`{`
`90`	`89`	`return string.Empty;`
`91`	`90`	`}`
`92`	`91`
`93`		`- fixed (byte* source = &MemoryMarshal.GetReference(span))`
	`92`	`+ var str = string.Create(span.Length, span, static (destination, source) =>`
`94`	`93`	`{`
`95`		`- return string.Create(span.Length, new IntPtr(source), s_getHeaderName);`
`96`		`- }`
`97`		`- }`
`98`		`-`
`99`		`- private static unsafe void GetHeaderName(Span<char> buffer, IntPtr state)`
`100`		`- {`
`101`		`- fixed (char* output = &MemoryMarshal.GetReference(buffer))`
`102`		`- {`
`103`		`- // This version of AsciiUtilities returns null if there are any null (0 byte) characters`
`104`		`- // in the string`
`105`		`- if (!StringUtilities.TryGetAsciiString((byte*)state.ToPointer(), output, buffer.Length))`
	`94`	`+ if (source.Contains((byte)0)`
	`95`	`+ \|\| Ascii.ToUtf16(source, destination, out var written) != OperationStatus.Done)`
`106`	`96`	`{`
`107`	`97`	`KestrelBadHttpRequestException.Throw(RequestRejectionReason.InvalidCharactersInHeaderName);`
`108`	`98`	`}`
`109`		`- }`
	`99`	`+ else`
	`100`	`+ {`
	`101`	`+ Debug.Assert(written == destination.Length);`
	`102`	`+ }`
	`103`	`+ });`
	`104`	`+`
	`105`	`+ return str;`
`110`	`106`	`}`
`111`	`107`
`112`		`- public static string GetAsciiStringNonNullCharacters(this Span<byte> span)`
`113`		`- => StringUtilities.GetAsciiStringNonNullCharacters(span);`
	`108`	`+ // Null checks must be done independently of this method (if required)`
	`109`	`+ public static string GetAsciiString(this Span<byte> span)`
	`110`	`+ => StringUtilities.GetAsciiString(span);`
`114`	`111`
`115`		`- public static string GetAsciiOrUTF8StringNonNullCharacters(this ReadOnlySpan<byte> span)`
`116`		`- => StringUtilities.GetAsciiOrUTF8StringNonNullCharacters(span, DefaultRequestHeaderEncoding);`
	`112`	`+ // Null checks must be done independently of this method (if required)`
	`113`	`+ public static string GetAsciiOrUTF8String(this ReadOnlySpan<byte> span)`
	`114`	`+ => StringUtilities.GetAsciiOrUTF8String(span, DefaultRequestHeaderEncoding);`
`117`	`115`
`118`	`116`	`public static string GetRequestHeaderString(this ReadOnlySpan<byte> span, string name, Func<string, Encoding?> encodingSelector, bool checkForNewlineChars)`
`119`	`117`	`{`
`120`	`118`	`string result;`
`121`	`119`	`if (ReferenceEquals(KestrelServerOptions.DefaultHeaderEncodingSelector, encodingSelector))`
`122`	`120`	`{`
`123`		`- result = span.GetAsciiOrUTF8StringNonNullCharacters(DefaultRequestHeaderEncoding);`
	`121`	`+ result = span.GetAsciiOrUTF8String(DefaultRequestHeaderEncoding);`
`124`	`122`	`}`
`125`	`123`	`else`
`126`	`124`	`{`
`127`	`125`	`result = span.GetRequestHeaderStringWithoutDefaultEncodingCore(name, encodingSelector);`
`128`	`126`	`}`
`129`	`127`
`130`	`128`	`// New Line characters (CR, LF) are considered invalid at this point.`
`131`		`- if (checkForNewlineChars && ((ReadOnlySpan<char>)result).IndexOfAny('\r', '\n') >= 0)`
	`129`	`+ // Null characters are also not allowed.`
	`130`	`+ var hasInvalidChar = checkForNewlineChars ?`
	`131`	`+ ((ReadOnlySpan<char>)result).ContainsAny('\r', '\n', '\0')`
	`132`	`+ : ((ReadOnlySpan<char>)result).Contains('\0');`
	`133`	`+`
	`134`	`+ if (hasInvalidChar)`
`132`	`135`	`{`
`133`		`- throw new InvalidOperationException("Newline characters (CR/LF) are not allowed in request headers.");`
	`136`	`+ ThrowForInvalidCharacter(checkForNewlineChars);`
`134`	`137`	`}`
`135`	`138`
`136`	`139`	`return result;`
`137`	`140`	`}`
`138`	`141`
	`142`	`+ [MethodImpl(MethodImplOptions.NoInlining)]`
	`143`	`+ private static void ThrowForInvalidCharacter(bool checkForNewlines)`
	`144`	`+ {`
	`145`	`+ if (checkForNewlines)`
	`146`	`+ {`
	`147`	`+ throw new InvalidOperationException("Newline characters (CR/LF) or Null are not allowed in request headers.");`
	`148`	`+ }`
	`149`	`+ else`
	`150`	`+ {`
	`151`	`+ throw new InvalidOperationException("Null characters are not allowed in request headers.");`
	`152`	`+ }`
	`153`	`+ }`
	`154`	`+`
`139`	`155`	`private static string GetRequestHeaderStringWithoutDefaultEncodingCore(this ReadOnlySpan<byte> span, string name, Func<string, Encoding?> encodingSelector)`
`140`	`156`	`{`
`141`	`157`	`var encoding = encodingSelector(name);`
`142`	`158`
`143`	`159`	`if (encoding is null)`
`144`	`160`	`{`
`145`		`- return span.GetAsciiOrUTF8StringNonNullCharacters(DefaultRequestHeaderEncoding);`
	`161`	`+ return span.GetAsciiOrUTF8String(DefaultRequestHeaderEncoding);`
`146`	`162`	`}`
`147`	`163`	`if (ReferenceEquals(encoding, Encoding.Latin1))`
`148`	`164`	`{`
`149`		`- return span.GetLatin1StringNonNullCharacters();`
	`165`	`+ return span.GetLatin1String();`
`150`	`166`	`}`
`151`	`167`	`try`
`152`	`168`	`{`