[6.0] Skip empty lines between requests (#43229)

* [6.0] Skip empty lines between requests.

* Add test case.

Author: adityamandaleeka

src/Servers/Kestrel/Core/src/Internal/Http/Http1Connection.cs

@@ -16,6 +16,8 @@ namespace Microsoft.AspNetCore.Server.Kestrel.Core.Internal.Http
 {
     internal partial class Http1Connection : HttpProtocol, IRequestProcessor, IHttpOutputAborter
     {
+        private const byte ByteCR = (byte)'\r';
+        private const byte ByteLF = (byte)'\n';
         private const byte ByteAsterisk = (byte)'*';
         private const byte ByteForwardSlash = (byte)'/';
         private const string Asterisk = "*";
@@ -146,6 +148,13 @@ public bool ParseRequest(ref SequenceReader<byte> reader)
             switch (_requestProcessingStatus)
             {
                 case RequestProcessingStatus.RequestPending:
+                    // Skip any empty lines (\r or \n) between requests.
+                    // Peek first as a minor performance optimization; it's a quick inlined check.
+                    if (reader.TryPeek(out byte b) && (b == ByteCR || b == ByteLF))
+                    {
+                        reader.AdvancePastAny(ByteCR, ByteLF);
+                    }
+
                     if (reader.End)
                     {
                         break;

src/Servers/Kestrel/Core/src/Internal/Http/HttpParser.cs

@@ -52,14 +52,6 @@ private static bool CheckAllowSpaceAfterRequestLine()
 
         public bool ParseRequestLine(TRequestHandler handler, ref SequenceReader<byte> reader)
         {
-            // Skip any leading \r or \n on the request line. This is not technically allowed,
-            // but apparently there are enough clients relying on this that it's worth allowing.
-            // Peek first as a minor performance optimization; it's a quick inlined check.
-            if (reader.TryPeek(out byte b) && (b == ByteCR || b == ByteLF))
-            {
-                reader.AdvancePastAny(ByteCR, ByteLF);
-            }
-
             if (reader.TryReadTo(out ReadOnlySpan<byte> requestLine, ByteLF, advancePastDelimiter: true))
             {
                 if (_allowSpaceAfterRequestLine)

src/Servers/Kestrel/Core/test/StartLineTests.cs

@@ -517,55 +517,6 @@ public void AuthorityForms(string rawTarget, string path, string query)
             DifferentFormsWorkTogether();
         }
 
-        public static IEnumerable<object[]> GetCrLfAndMethodCombinations()
-        {
-            // HTTP methods to test
-            var methods = new string[] {
-                HttpMethods.Connect,
-                HttpMethods.Delete,
-                HttpMethods.Get,
-                HttpMethods.Head,
-                HttpMethods.Options,
-                HttpMethods.Patch,
-                HttpMethods.Post,
-                HttpMethods.Put,
-                HttpMethods.Trace
-            };
-
-            // Prefixes to test
-            var crLfPrefixes = new string[] {
-                "\r",
-                "\n",
-                "\r\r\r\r\r",
-                "\r\n",
-                "\n\r"
-            };
-
-            foreach (var method in methods)
-            {
-                foreach (var prefix in crLfPrefixes)
-                {
-                    yield return new object[] { prefix, method };
-                }
-            }
-        }
-
-        [Theory]
-        [MemberData(nameof(GetCrLfAndMethodCombinations))]
-        public void LeadingCrLfAreAllowed(string startOfRequestLine, string httpMethod)
-        {
-            var rawTarget = "http://localhost/path1?q=123&w=xyzw";
-            Http1Connection.Reset();
-            // RawTarget, Path, QueryString are null after reset
-            Assert.Null(Http1Connection.RawTarget);
-            Assert.Null(Http1Connection.Path);
-            Assert.Null(Http1Connection.QueryString);
-
-            var ros = new ReadOnlySequence<byte>(Encoding.ASCII.GetBytes($"{startOfRequestLine}{httpMethod} {rawTarget} HTTP/1.1\r\n"));
-            var reader = new SequenceReader<byte>(ros);
-            Assert.True(Parser.ParseRequestLine(ParsingHandler, ref reader));
-        }
-
         public StartLineTests()
         {
             MemoryPool = PinnedBlockMemoryPoolFactory.Create();

src/Servers/Kestrel/test/InMemory.FunctionalTests/BadHttpRequestTests.cs

@@ -7,10 +7,10 @@
 using Microsoft.AspNetCore.Server.Kestrel.Core.Internal.Infrastructure;
 using Microsoft.AspNetCore.Server.Kestrel.InMemory.FunctionalTests.TestTransport;
 using Microsoft.AspNetCore.Testing;
+using Microsoft.AspNetCore.WebUtilities;
 using Microsoft.Extensions.Logging;
 using Microsoft.Extensions.Primitives;
 using Moq;
-using Xunit;
 using BadHttpRequestException = Microsoft.AspNetCore.Http.BadHttpRequestException;
 
 namespace Microsoft.AspNetCore.Server.Kestrel.InMemory.FunctionalTests
@@ -323,6 +323,191 @@ private async Task TestBadRequest(string request, string expectedResponseStatusC
             Assert.Contains(expectedExceptionMessage, exceptionString);
         }
 
+        [Theory]
+        [InlineData("\r")]
+        [InlineData("\n")]
+        [InlineData("\r\n")]
+        [InlineData("\n\r")]
+        [InlineData("\r\n\r\n")]
+        [InlineData("\r\r\r\r\r")]
+        public async Task ExtraLinesBetweenRequestsIgnored(string extraLines)
+        {
+            BadHttpRequestException loggedException = null;
+
+            TestSink.MessageLogged += context =>
+            {
+                if (context.EventId.Name == "ConnectionBadRequest" && context.Exception is BadHttpRequestException ex)
+                {
+                    loggedException = ex;
+                }
+            };
+
+            // Set up a listener to catch the BadRequest event
+            var diagListener = new DiagnosticListener("NotBadRequestTestsDiagListener");
+            var badRequestEventListener = new BadRequestEventListener(diagListener, (pair) => { });
+
+            await using (var server = new TestServer(context => context.Request.Body.DrainAsync(default), new TestServiceContext(LoggerFactory) { DiagnosticSource = diagListener }))
+            {
+                using (var connection = server.CreateConnection())
+                {
+                    await connection.SendAll(
+                        "POST / HTTP/1.1",
+                        "Host:",
+                        "Content-Length: 5",
+                        "",
+                        "funny",
+                        extraLines);
+
+                    await connection.Receive(
+                        "HTTP/1.1 200 OK",
+                        "Content-Length: 0",
+                        $"Date: {server.Context.DateHeaderValue}",
+                        "",
+                        "");
+
+                    await connection.SendAll(
+                        "POST / HTTP/1.1",
+                        "Host:",
+                        "Content-Length: 5",
+                        "",
+                        "funny");
+
+                    await connection.Receive(
+                        "HTTP/1.1 200 OK",
+                        "Content-Length: 0",
+                        $"Date: {server.Context.DateHeaderValue}",
+                        "",
+                        "");
+
+                    connection.ShutdownSend();
+
+                    await connection.ReceiveEnd();
+                }
+            }
+
+            Assert.Null(loggedException);
+            // Verify DiagnosticSource event for bad request
+            Assert.False(badRequestEventListener.EventFired);
+        }
+
+        [Fact]
+        public async Task ExtraLinesIgnoredBetweenAdjacentRequests()
+        {
+            BadHttpRequestException loggedException = null;
+
+            TestSink.MessageLogged += context =>
+            {
+                if (context.EventId.Name == "ConnectionBadRequest" && context.Exception is BadHttpRequestException ex)
+                {
+                    loggedException = ex;
+                }
+            };
+
+            // Set up a listener to catch the BadRequest event
+            var diagListener = new DiagnosticListener("NotBadRequestTestsDiagListener");
+            var badRequestEventListener = new BadRequestEventListener(diagListener, (pair) => { });
+
+            await using (var server = new TestServer(context => context.Request.Body.DrainAsync(default), new TestServiceContext(LoggerFactory) { DiagnosticSource = diagListener }))
+            {
+                using (var connection = server.CreateConnection())
+                {
+                    await connection.SendAll(
+                        "POST / HTTP/1.1",
+                        "Host:",
+                        "Content-Length: 5",
+                        "",
+                        "funny",
+                        "",
+                        "",
+                        "",
+                        "POST /"); // Split the request line
+
+                    await connection.Receive(
+                        "HTTP/1.1 200 OK",
+                        "Content-Length: 0",
+                        $"Date: {server.Context.DateHeaderValue}",
+                        "",
+                        "");
+
+                    await connection.SendAll(
+                        " HTTP/1.1",
+                        "Host:",
+                        "Content-Length: 5",
+                        "",
+                        "funny");
+
+                    await connection.Receive(
+                        "HTTP/1.1 200 OK",
+                        "Content-Length: 0",
+                        $"Date: {server.Context.DateHeaderValue}",
+                        "",
+                        "");
+
+                    connection.ShutdownSend();
+
+                    await connection.ReceiveEnd();
+                }
+            }
+
+            Assert.Null(loggedException);
+            // Verify DiagnosticSource event for bad request
+            Assert.False(badRequestEventListener.EventFired);
+        }
+
+        [Theory]
+        [InlineData("\r")]
+        [InlineData("\n")]
+        [InlineData("\r\n")]
+        [InlineData("\n\r")]
+        [InlineData("\n\n")]
+        [InlineData("\r\n\r\n")]
+        [InlineData("\r\r\r\r\r")]
+        public async Task ExtraLinesAtEndOfConnectionIgnored(string extraLines)
+        {
+            BadHttpRequestException loggedException = null;
+
+            TestSink.MessageLogged += context =>
+            {
+                if (context.EventId.Name == "ConnectionBadRequest" && context.Exception is BadHttpRequestException ex)
+                {
+                    loggedException = ex;
+                }
+            };
+
+            // Set up a listener to catch the BadRequest event
+            var diagListener = new DiagnosticListener("NotBadRequestTestsDiagListener");
+            var badRequestEventListener = new BadRequestEventListener(diagListener, (pair) => { });
+
+            await using (var server = new TestServer(context => context.Request.Body.DrainAsync(default), new TestServiceContext(LoggerFactory) { DiagnosticSource = diagListener }))
+            {
+                using (var connection = server.CreateConnection())
+                {
+                    await connection.SendAll(
+                        "POST / HTTP/1.1",
+                        "Host:",
+                        "Content-Length: 5",
+                        "",
+                        "funny",
+                        extraLines);
+
+                    await connection.Receive(
+                        "HTTP/1.1 200 OK",
+                        "Content-Length: 0",
+                        $"Date: {server.Context.DateHeaderValue}",
+                        "",
+                        "");
+
+                    connection.ShutdownSend();
+
+                    await connection.ReceiveEnd();
+                }
+            }
+
+            Assert.Null(loggedException);
+            // Verify DiagnosticSource event for bad request
+            Assert.False(badRequestEventListener.EventFired);
+        }
+
         private async Task ReceiveBadRequestResponse(InMemoryConnection connection, string expectedResponseStatusCode, string expectedDateHeaderValue, string expectedAllowHeader = null)
         {
             var lines = new[]