dotnet
diff --git a/‎src/Servers/Kestrel/Core/src/Internal/Http/Http1Connection.cs
Lines changed: 8 additions & 6 deletions b/‎src/Servers/Kestrel/Core/src/Internal/Http/Http1Connection.cs
Lines changed: 8 additions & 6 deletions
diff --git a/‎src/Servers/Kestrel/Core/src/Internal/Http/HttpParser.cs
Lines changed: 5 additions & 1 deletion b/‎src/Servers/Kestrel/Core/src/Internal/Http/HttpParser.cs
Lines changed: 5 additions & 1 deletion
diff --git a/‎src/Servers/Kestrel/Core/src/Internal/Http/PathNormalizer.cs
Lines changed: 1 addition & 1 deletion b/‎src/Servers/Kestrel/Core/src/Internal/Http/PathNormalizer.cs
Lines changed: 1 addition & 1 deletion
diff --git a/‎src/Servers/Kestrel/Core/src/Internal/Infrastructure/HttpUtilities.cs
Lines changed: 34 additions & 10 deletions b/‎src/Servers/Kestrel/Core/src/Internal/Infrastructure/HttpUtilities.cs
Lines changed: 34 additions & 10 deletions
diff --git a/‎src/Servers/Kestrel/Core/test/AsciiDecoding.cs
Lines changed: 8 additions & 9 deletions b/‎src/Servers/Kestrel/Core/test/AsciiDecoding.cs
Lines changed: 8 additions & 9 deletions
diff --git a/‎src/Servers/Kestrel/Core/test/Http1/Http1ConnectionTests.cs
Lines changed: 6 additions & 3 deletions b/‎src/Servers/Kestrel/Core/test/Http1/Http1ConnectionTests.cs
Lines changed: 6 additions & 3 deletions
diff --git a/‎src/Servers/Kestrel/Core/test/HttpParserTests.cs
Lines changed: 26 additions & 11 deletions b/‎src/Servers/Kestrel/Core/test/HttpParserTests.cs
Lines changed: 26 additions & 11 deletions
diff --git a/‎src/Servers/Kestrel/perf/Microbenchmarks/BytesToStringBenchmark.cs
Lines changed: 1 addition & 1 deletion b/‎src/Servers/Kestrel/perf/Microbenchmarks/BytesToStringBenchmark.cs
Lines changed: 1 addition & 1 deletion
diff --git a/‎src/Servers/Kestrel/shared/test/Http3/Http3InMemory.cs
Lines changed: 4 additions & 4 deletions b/‎src/Servers/Kestrel/shared/test/Http3/Http3InMemory.cs
Lines changed: 4 additions & 4 deletions
@@ -290,6 +290,8 @@ bool TrimAndTakeMessageHeaders(ref SequenceReader<byte> reader, bool trailers)
 
     public void OnStartLine(HttpVersionAndMethod versionAndMethod, TargetOffsetPathLength targetPath, Span<byte> startLine)
     {
+        Debug.Assert(startLine.IndexOf((byte)0) == -1);
+
         var targetStart = targetPath.Offset;
         // Slice out target
         var target = startLine[targetStart..];
@@ -322,7 +324,7 @@ public void OnStartLine(HttpVersionAndMethod versionAndMethod, TargetOffsetPathL
         Method = method;
         if (method == HttpMethod.Custom)
         {
-            _methodText = startLine[..versionAndMethod.MethodEnd].GetAsciiStringNonNullCharacters();
+            _methodText = startLine[..versionAndMethod.MethodEnd].GetAsciiString();
         }
 
         _httpVersion = versionAndMethod.Version;
@@ -386,7 +388,7 @@ private void ParseTarget(TargetOffsetPathLength targetPath, Span<byte> target)
         {
             // The previous string does not match what the bytes would convert to,
             // so we will need to generate a new string.
-            RawTarget = _parsedRawTarget = target.GetAsciiStringNonNullCharacters();
+            RawTarget = _parsedRawTarget = target.GetAsciiString();
 
             var queryLength = 0;
             if (target.Length == targetPath.Length)
@@ -436,7 +438,7 @@ private int ParseQuery(TargetOffsetPathLength targetPath, Span<byte> target)
         {
             // The previous string does not match what the bytes would convert to,
             // so we will need to generate a new string.
-            QueryString = _parsedQueryString = query.GetAsciiStringNonNullCharacters();
+            QueryString = _parsedQueryString = query.GetAsciiString();
         }
         else
         {
@@ -482,7 +484,7 @@ private void OnAuthorityFormTarget(HttpMethod method, Span<byte> target)
         {
             // The previous string does not match what the bytes would convert to,
             // so we will need to generate a new string.
-            RawTarget = _parsedRawTarget = target.GetAsciiStringNonNullCharacters();
+            RawTarget = _parsedRawTarget = target.GetAsciiString();
         }
         else
         {
@@ -542,7 +544,7 @@ private void OnAbsoluteFormTarget(TargetOffsetPathLength targetPath, Span<byte>
             {
                 // The previous string does not match what the bytes would convert to,
                 // so we will need to generate a new string.
-                RawTarget = _parsedRawTarget = target.GetAsciiStringNonNullCharacters();
+                RawTarget = _parsedRawTarget = target.GetAsciiString();
             }
             catch (InvalidOperationException)
             {
@@ -572,7 +574,7 @@ private void OnAbsoluteFormTarget(TargetOffsetPathLength targetPath, Span<byte>
             {
                 // The previous string does not match what the bytes would convert to,
                 // so we will need to generate a new string.
-                QueryString = _parsedQueryString = query.GetAsciiStringNonNullCharacters();
+                QueryString = _parsedQueryString = query.GetAsciiString();
             }
             else
             {
 
@@ -69,10 +69,14 @@ public bool ParseRequestLine(TRequestHandler handler, ref SequenceReader<byte> r
         }
 
         // Consume the delimiter.
-        bool foundDelimiter = reader.TryRead(out var next);
+        var foundDelimiter = reader.TryRead(out var next);
         Debug.Assert(foundDelimiter);
         if (next == 0 || requestLine.Length == 0)
         {
+            reader.Rewind(requestLine.Length + 1);
+            var readResult = reader.TryReadExact(requestLine.Length + 1, out var requestLineSequence);
+            Debug.Assert(readResult);
+            requestLine = requestLineSequence.IsSingleSegment ? requestLineSequence.FirstSpan : requestLineSequence.ToArray();
             RejectRequestLine(requestLine);
         }
 
 
@@ -47,7 +47,7 @@ public static string DecodePath(Span<byte> path, bool pathEncoded, string rawTar
             return rawTarget;
         }
 
-        return path.Slice(0, pathLength).GetAsciiStringNonNullCharacters();
+        return path.Slice(0, pathLength).GetAsciiString();
     }
 
     // In-place implementation of the algorithm from https://tools.ietf.org/html/rfc3986#section-5.2.4
 
@@ -86,37 +86,61 @@ private static ulong GetMaskAsLong(ReadOnlySpan<byte> bytes)
     [MethodImpl(MethodImplOptions.AggressiveInlining)]
     public static unsafe string GetHeaderName(this ReadOnlySpan<byte> span)
     {
-        return string.Create(span.Length, (IntPtr)(&span), (destination, spanPtr) =>
+        if (span.IsEmpty)
+        {
+            return string.Empty;
+        }
+
+        var str = string.Create(span.Length, (IntPtr)(&span), (destination, spanPtr) =>
         {
             if (Ascii.ToUtf16(*(ReadOnlySpan<byte>*)spanPtr, destination, out _) != OperationStatus.Done)
             {
                 KestrelBadHttpRequestException.Throw(RequestRejectionReason.InvalidCharactersInHeaderName);
             }
         });
+
+        if (str.Contains('\0'))
+        {
+            KestrelBadHttpRequestException.Throw(RequestRejectionReason.InvalidCharactersInHeaderName);
+        }
+        return str;
     }
 
-    public static string GetAsciiStringNonNullCharacters(this Span<byte> span)
-        => StringUtilities.GetAsciiStringNonNullCharacters(span);
+    // Null checks must be done independently of this method (if required)
+    public static string GetAsciiString(this Span<byte> span)
+        => StringUtilities.GetAsciiString(span);
 
-    public static string GetAsciiOrUTF8StringNonNullCharacters(this ReadOnlySpan<byte> span)
-        => StringUtilities.GetAsciiOrUTF8StringNonNullCharacters(span, DefaultRequestHeaderEncoding);
+    public static string GetAsciiOrUTF8String(this ReadOnlySpan<byte> span)
+        => StringUtilities.GetAsciiOrUTF8String(span, DefaultRequestHeaderEncoding);
 
     public static string GetRequestHeaderString(this ReadOnlySpan<byte> span, string name, Func<string, Encoding?> encodingSelector, bool checkForNewlineChars)
     {
         string result;
         if (ReferenceEquals(KestrelServerOptions.DefaultHeaderEncodingSelector, encodingSelector))
         {
-            result = span.GetAsciiOrUTF8StringNonNullCharacters(DefaultRequestHeaderEncoding);
+            result = span.GetAsciiOrUTF8String(DefaultRequestHeaderEncoding);
         }
         else
         {
             result = span.GetRequestHeaderStringWithoutDefaultEncodingCore(name, encodingSelector);
         }
 
         // New Line characters (CR, LF) are considered invalid at this point.
-        if (checkForNewlineChars && ((ReadOnlySpan<char>)result).IndexOfAny('\r', '\n') >= 0)
+        // Null characters are also not allowed.
+        var invalidCharIndex = checkForNewlineChars ?
+            ((ReadOnlySpan<char>)result).IndexOfAny('\r', '\n', '\0')
+            : ((ReadOnlySpan<char>)result).IndexOf('\0');
+
+        if (invalidCharIndex >= 0)
         {
-            throw new InvalidOperationException("Newline characters (CR/LF) are not allowed in request headers.");
+            if (result[invalidCharIndex] == 0)
+            {
+                throw new InvalidOperationException("Null characters are not allowed in request headers.");
+            }
+            else
+            {
+                throw new InvalidOperationException("Newline characters (CR/LF) are not allowed in request headers.");
+            }
         }
 
         return result;
@@ -128,11 +152,11 @@ private static string GetRequestHeaderStringWithoutDefaultEncodingCore(this Read
 
         if (encoding is null)
         {
-            return span.GetAsciiOrUTF8StringNonNullCharacters(DefaultRequestHeaderEncoding);
+            return span.GetAsciiOrUTF8String(DefaultRequestHeaderEncoding);
         }
         if (ReferenceEquals(encoding, Encoding.Latin1))
         {
-            return span.GetLatin1StringNonNullCharacters();
+            return span.GetLatin1String();
         }
         try
         {
 
@@ -35,7 +35,7 @@ private void FullAsciiRangeSupported()
 
         static void Test(Span<byte> asciiBytes)
         {
-            var s = asciiBytes.GetAsciiStringNonNullCharacters();
+            var s = asciiBytes.GetAsciiString();
 
             Assert.True(StringUtilities.BytesOrdinalEqualsStringAndAscii(s, asciiBytes));
             Assert.Equal(s.Length, asciiBytes.Length);
@@ -50,19 +50,18 @@ static void Test(Span<byte> asciiBytes)
         }
     }
 
-    [Theory]
-    [InlineData(0x00)]
-    [InlineData(0x80)]
-    private void ExceptionThrownForZeroOrNonAscii(byte b)
+    [Fact]
+    private void ExceptionThrownForNonAscii()
     {
+        byte b = 0x80;
         for (var length = 1; length < Vector<sbyte>.Count * 4; length++)
         {
             for (var position = 0; position < length; position++)
             {
                 var byteRange = Enumerable.Range(1, length).Select(x => (byte)x).ToArray();
                 byteRange[position] = b;
 
-                Assert.Throws<InvalidOperationException>(() => new Span<byte>(byteRange).GetAsciiStringNonNullCharacters());
+                Assert.Throws<InvalidOperationException>(() => new Span<byte>(byteRange).GetAsciiString());
             }
         }
     }
@@ -74,7 +73,7 @@ private void LargeAllocationProducesCorrectResults()
         var expectedByteRange = byteRange.Concat(byteRange).ToArray();
 
         var span = new Span<byte>(expectedByteRange);
-        var s = span.GetAsciiStringNonNullCharacters();
+        var s = span.GetAsciiString();
 
         Assert.Equal(expectedByteRange.Length, s.Length);
 
@@ -96,7 +95,7 @@ private void DifferentLengthsAreNotEqual()
         for (var i = 1; i < byteRange.Length; i++)
         {
             var span = new Span<byte>(expectedByteRange);
-            var s = span.GetAsciiStringNonNullCharacters();
+            var s = span.GetAsciiString();
 
             Assert.True(StringUtilities.BytesOrdinalEqualsStringAndAscii(s, span));
 
@@ -133,7 +132,7 @@ private void AsciiBytesEqualAsciiStrings()
 
         static void Test(Span<byte> asciiBytes)
         {
-            var s = asciiBytes.GetAsciiStringNonNullCharacters();
+            var s = asciiBytes.GetAsciiString();
 
             // Should start as equal
             Assert.True(StringUtilities.BytesOrdinalEqualsStringAndAscii(s, asciiBytes));
 
@@ -494,7 +494,8 @@ public async Task TakeStartLineThrowsOnNullCharInTarget(string target)
         TakeStartLine(readableBuffer, out _consumed, out _examined));
         _transport.Input.AdvanceTo(_consumed, _examined);
 
-        Assert.Equal(CoreStrings.FormatBadRequest_InvalidRequestTarget_Detail(target.EscapeNonPrintable()), exception.Message);
+        var partialTarget = target.AsSpan(0, target.IndexOf('\0') + 1).ToString();
+        Assert.Equal(CoreStrings.FormatBadRequest_InvalidRequestLine_Detail($"GET {partialTarget.EscapeNonPrintable()}"), exception.Message);
     }
 
     [Theory]
@@ -510,7 +511,8 @@ public async Task TakeStartLineThrowsOnNullCharInMethod(string method)
         TakeStartLine(readableBuffer, out _consumed, out _examined));
         _transport.Input.AdvanceTo(_consumed, _examined);
 
-        Assert.Equal(CoreStrings.FormatBadRequest_InvalidRequestLine_Detail(requestLine[..^1].EscapeNonPrintable()), exception.Message);
+        var partialRequestLine = requestLine.AsSpan(0, requestLine.IndexOf('\0') + 1).ToString();
+        Assert.Equal(CoreStrings.FormatBadRequest_InvalidRequestLine_Detail(partialRequestLine.EscapeNonPrintable()), exception.Message);
     }
 
     [Theory]
@@ -526,7 +528,8 @@ public async Task TakeStartLineThrowsOnNullCharInQueryString(string queryString)
          TakeStartLine(readableBuffer, out _consumed, out _examined));
         _transport.Input.AdvanceTo(_consumed, _examined);
 
-        Assert.Equal(CoreStrings.FormatBadRequest_InvalidRequestTarget_Detail(target.EscapeNonPrintable()), exception.Message);
+        var partialTarget = target.AsSpan(0, target.IndexOf('\0') + 1).ToString();
+        Assert.Equal(CoreStrings.FormatBadRequest_InvalidRequestLine_Detail($"GET {partialTarget.EscapeNonPrintable()}"), exception.Message);
     }
 
     [Theory]
 
@@ -87,7 +87,13 @@ public void ParseRequestLineThrowsOnInvalidRequestLine(string requestLine)
 #pragma warning restore CS0618 // Type or member is obsolete
         ParseRequestLine(parser, requestHandler, buffer, out var consumed, out var examined));
 
-        Assert.Equal(CoreStrings.FormatBadRequest_InvalidRequestLine_Detail(requestLine[..^1].EscapeNonPrintable()), exception.Message);
+        var line = requestLine;
+        var nullIndex = line.IndexOf('\0');
+        if (nullIndex >= 0)
+        {
+            line = line.AsSpan().Slice(0, nullIndex + 2).ToString();
+        }
+        Assert.Equal(CoreStrings.FormatBadRequest_InvalidRequestLine_Detail(line[..^1].EscapeNonPrintable()), exception.Message);
         Assert.Equal(StatusCodes.Status400BadRequest, exception.StatusCode);
     }
 
@@ -134,7 +140,16 @@ public void ParseRequestLineThrowsOnNonTokenCharsInCustomMethod(string method)
 #pragma warning restore CS0618 // Type or member is obsolete
             ParseRequestLine(parser, requestHandler, buffer, out var consumed, out var examined));
 
-        Assert.Equal(CoreStrings.FormatBadRequest_InvalidRequestLine_Detail(method.EscapeNonPrintable() + @" / HTTP/1.1\x0D"), exception.Message);
+        var nullIndex = method.IndexOf('\0');
+        if (nullIndex >= 0)
+        {
+            var line = method.AsSpan().Slice(0, nullIndex + 1).ToString();
+            Assert.Equal(CoreStrings.FormatBadRequest_InvalidRequestLine_Detail(line.EscapeNonPrintable()), exception.Message);
+        }
+        else
+        {
+            Assert.Equal(CoreStrings.FormatBadRequest_InvalidRequestLine_Detail(method.EscapeNonPrintable() + @" / HTTP/1.1\x0D"), exception.Message);
+        }
         Assert.Equal(StatusCodes.Status400BadRequest, exception.StatusCode);
     }
 
@@ -871,18 +886,18 @@ private class RequestHandler : IHttpRequestLineHandler, IHttpHeadersHandler
 
         public void OnHeader(ReadOnlySpan<byte> name, ReadOnlySpan<byte> value)
         {
-            Headers[name.GetAsciiStringNonNullCharacters()] = value.GetAsciiStringNonNullCharacters();
+            Headers[name.GetAsciiString()] = value.GetAsciiString();
         }
 
         void IHttpHeadersHandler.OnHeadersComplete(bool endStream) { }
 
         public void OnStartLine(HttpMethod method, HttpVersion version, Span<byte> target, Span<byte> path, Span<byte> query, Span<byte> customMethod, bool pathEncoded)
         {
-            Method = method != HttpMethod.Custom ? HttpUtilities.MethodToString(method) : customMethod.GetAsciiStringNonNullCharacters();
+            Method = method != HttpMethod.Custom ? HttpUtilities.MethodToString(method) : customMethod.GetAsciiString();
             Version = HttpUtilities.VersionToString(version);
-            RawTarget = target.GetAsciiStringNonNullCharacters();
-            RawPath = path.GetAsciiStringNonNullCharacters();
-            Query = query.GetAsciiStringNonNullCharacters();
+            RawTarget = target.GetAsciiString();
+            RawPath = path.GetAsciiString();
+            Query = query.GetAsciiString();
             PathEncoded = pathEncoded;
         }
 
@@ -896,11 +911,11 @@ public void OnStartLine(HttpVersionAndMethod versionAndMethod, TargetOffsetPathL
             var path = target[..targetPath.Length];
             var query = target[targetPath.Length..];
 
-            Method = method != HttpMethod.Custom ? HttpUtilities.MethodToString(method) : customMethod.GetAsciiStringNonNullCharacters();
+            Method = method != HttpMethod.Custom ? HttpUtilities.MethodToString(method) : customMethod.GetAsciiString();
             Version = HttpUtilities.VersionToString(version);
-            RawTarget = target.GetAsciiStringNonNullCharacters();
-            RawPath = path.GetAsciiStringNonNullCharacters();
-            Query = query.GetAsciiStringNonNullCharacters();
+            RawTarget = target.GetAsciiString();
+            RawPath = path.GetAsciiString();
+            Query = query.GetAsciiString();
             PathEncoded = targetPath.IsEncoded;
         }
 
 
@@ -65,7 +65,7 @@ public void AsciiBytesToString()
     {
         for (uint i = 0; i < Iterations; i++)
         {
-            HttpUtilities.GetAsciiStringNonNullCharacters(_asciiBytes);
+            HttpUtilities.GetAsciiString(_asciiBytes);
         }
     }
 
 
@@ -771,7 +771,7 @@ internal async Task ExpectReceiveEndOfStream()
 
     public void OnHeader(ReadOnlySpan<byte> name, ReadOnlySpan<byte> value)
     {
-        _headerHandler.DecodedHeaders[name.GetAsciiStringNonNullCharacters()] = value.GetAsciiOrUTF8StringNonNullCharacters();
+        _headerHandler.DecodedHeaders[name.GetAsciiString()] = value.GetAsciiOrUTF8String();
     }
 
     public void OnHeadersComplete(bool endHeaders)
@@ -781,12 +781,12 @@ public void OnHeadersComplete(bool endHeaders)
     public void OnStaticIndexedHeader(int index)
     {
         var knownHeader = H3StaticTable.Get(index);
-        _headerHandler.DecodedHeaders[((Span<byte>)knownHeader.Name).GetAsciiStringNonNullCharacters()] = HttpUtilities.GetAsciiOrUTF8StringNonNullCharacters((ReadOnlySpan<byte>)knownHeader.Value);
+        _headerHandler.DecodedHeaders[((Span<byte>)knownHeader.Name).GetAsciiString()] = HttpUtilities.GetAsciiOrUTF8String((ReadOnlySpan<byte>)knownHeader.Value);
     }
 
     public void OnStaticIndexedHeader(int index, ReadOnlySpan<byte> value)
     {
-        _headerHandler.DecodedHeaders[((Span<byte>)H3StaticTable.Get(index).Name).GetAsciiStringNonNullCharacters()] = value.GetAsciiOrUTF8StringNonNullCharacters();
+        _headerHandler.DecodedHeaders[((Span<byte>)H3StaticTable.Get(index).Name).GetAsciiString()] = value.GetAsciiOrUTF8String();
     }
 
     public void Complete()
@@ -796,7 +796,7 @@ public void Complete()
 
     public void OnDynamicIndexedHeader(int? index, ReadOnlySpan<byte> name, ReadOnlySpan<byte> value)
     {
-        _headerHandler.DecodedHeaders[name.GetAsciiStringNonNullCharacters()] = value.GetAsciiOrUTF8StringNonNullCharacters();
+        _headerHandler.DecodedHeaders[name.GetAsciiString()] = value.GetAsciiOrUTF8String();
     }
 }
Original file line number	Diff line number	Diff line change
`@@ -290,6 +290,8 @@ bool TrimAndTakeMessageHeaders(ref SequenceReader<byte> reader, bool trailers)`
`290`	`290`
`291`	`291`	`public void OnStartLine(HttpVersionAndMethod versionAndMethod, TargetOffsetPathLength targetPath, Span<byte> startLine)`
`292`	`292`	`{`
	`293`	`+ Debug.Assert(startLine.IndexOf((byte)0) == -1);`
	`294`	`+`
`293`	`295`	`var targetStart = targetPath.Offset;`
`294`	`296`	`// Slice out target`
`295`	`297`	`var target = startLine[targetStart..];`
`@@ -322,7 +324,7 @@ public void OnStartLine(HttpVersionAndMethod versionAndMethod, TargetOffsetPathL`
`322`	`324`	`Method = method;`
`323`	`325`	`if (method == HttpMethod.Custom)`
`324`	`326`	`{`
`325`		`- _methodText = startLine[..versionAndMethod.MethodEnd].GetAsciiStringNonNullCharacters();`
	`327`	`+ _methodText = startLine[..versionAndMethod.MethodEnd].GetAsciiString();`
`326`	`328`	`}`
`327`	`329`
`328`	`330`	`_httpVersion = versionAndMethod.Version;`
`@@ -386,7 +388,7 @@ private void ParseTarget(TargetOffsetPathLength targetPath, Span<byte> target)`
`386`	`388`	`{`
`387`	`389`	`// The previous string does not match what the bytes would convert to,`
`388`	`390`	`// so we will need to generate a new string.`
`389`		`- RawTarget = _parsedRawTarget = target.GetAsciiStringNonNullCharacters();`
	`391`	`+ RawTarget = _parsedRawTarget = target.GetAsciiString();`
`390`	`392`
`391`	`393`	`var queryLength = 0;`
`392`	`394`	`if (target.Length == targetPath.Length)`
`@@ -436,7 +438,7 @@ private int ParseQuery(TargetOffsetPathLength targetPath, Span<byte> target)`
`436`	`438`	`{`
`437`	`439`	`// The previous string does not match what the bytes would convert to,`
`438`	`440`	`// so we will need to generate a new string.`
`439`		`- QueryString = _parsedQueryString = query.GetAsciiStringNonNullCharacters();`
	`441`	`+ QueryString = _parsedQueryString = query.GetAsciiString();`
`440`	`442`	`}`
`441`	`443`	`else`
`442`	`444`	`{`
`@@ -482,7 +484,7 @@ private void OnAuthorityFormTarget(HttpMethod method, Span<byte> target)`
`482`	`484`	`{`
`483`	`485`	`// The previous string does not match what the bytes would convert to,`
`484`	`486`	`// so we will need to generate a new string.`
`485`		`- RawTarget = _parsedRawTarget = target.GetAsciiStringNonNullCharacters();`
	`487`	`+ RawTarget = _parsedRawTarget = target.GetAsciiString();`
`486`	`488`	`}`
`487`	`489`	`else`
`488`	`490`	`{`
`@@ -542,7 +544,7 @@ private void OnAbsoluteFormTarget(TargetOffsetPathLength targetPath, Span<byte>`
`542`	`544`	`{`
`543`	`545`	`// The previous string does not match what the bytes would convert to,`
`544`	`546`	`// so we will need to generate a new string.`
`545`		`- RawTarget = _parsedRawTarget = target.GetAsciiStringNonNullCharacters();`
	`547`	`+ RawTarget = _parsedRawTarget = target.GetAsciiString();`
`546`	`548`	`}`
`547`	`549`	`catch (InvalidOperationException)`
`548`	`550`	`{`
`@@ -572,7 +574,7 @@ private void OnAbsoluteFormTarget(TargetOffsetPathLength targetPath, Span<byte>`
`572`	`574`	`{`
`573`	`575`	`// The previous string does not match what the bytes would convert to,`
`574`	`576`	`// so we will need to generate a new string.`
`575`		`- QueryString = _parsedQueryString = query.GetAsciiStringNonNullCharacters();`
	`577`	`+ QueryString = _parsedQueryString = query.GetAsciiString();`
`576`	`578`	`}`
`577`	`579`	`else`
`578`	`580`	`{`
Original file line number	Diff line number	Diff line change
`@@ -69,10 +69,14 @@ public bool ParseRequestLine(TRequestHandler handler, ref SequenceReader<byte> r`
`69`	`69`	`}`
`70`	`70`
`71`	`71`	`// Consume the delimiter.`
`72`		`- bool foundDelimiter = reader.TryRead(out var next);`
	`72`	`+ var foundDelimiter = reader.TryRead(out var next);`
`73`	`73`	`Debug.Assert(foundDelimiter);`
`74`	`74`	`if (next == 0 \|\| requestLine.Length == 0)`
`75`	`75`	`{`
	`76`	`+ reader.Rewind(requestLine.Length + 1);`
	`77`	`+ var readResult = reader.TryReadExact(requestLine.Length + 1, out var requestLineSequence);`
	`78`	`+ Debug.Assert(readResult);`
	`79`	`+ requestLine = requestLineSequence.IsSingleSegment ? requestLineSequence.FirstSpan : requestLineSequence.ToArray();`
`76`	`80`	`RejectRequestLine(requestLine);`
`77`	`81`	`}`
`78`	`82`
Original file line number	Diff line number	Diff line change
`@@ -47,7 +47,7 @@ public static string DecodePath(Span<byte> path, bool pathEncoded, string rawTar`
`47`	`47`	`return rawTarget;`
`48`	`48`	`}`
`49`	`49`
`50`		`- return path.Slice(0, pathLength).GetAsciiStringNonNullCharacters();`
	`50`	`+ return path.Slice(0, pathLength).GetAsciiString();`
`51`	`51`	`}`
`52`	`52`
`53`	`53`	`// In-place implementation of the algorithm from https://tools.ietf.org/html/rfc3986#section-5.2.4`
Original file line number	Diff line number	Diff line change
`@@ -86,37 +86,61 @@ private static ulong GetMaskAsLong(ReadOnlySpan<byte> bytes)`
`86`	`86`	`[MethodImpl(MethodImplOptions.AggressiveInlining)]`
`87`	`87`	`public static unsafe string GetHeaderName(this ReadOnlySpan<byte> span)`
`88`	`88`	`{`
`89`		`- return string.Create(span.Length, (IntPtr)(&span), (destination, spanPtr) =>`
	`89`	`+ if (span.IsEmpty)`
	`90`	`+ {`
	`91`	`+ return string.Empty;`
	`92`	`+ }`
	`93`	`+`
	`94`	`+ var str = string.Create(span.Length, (IntPtr)(&span), (destination, spanPtr) =>`
`90`	`95`	`{`
`91`	`96`	`if (Ascii.ToUtf16((ReadOnlySpan<byte>)spanPtr, destination, out _) != OperationStatus.Done)`
`92`	`97`	`{`
`93`	`98`	`KestrelBadHttpRequestException.Throw(RequestRejectionReason.InvalidCharactersInHeaderName);`
`94`	`99`	`}`
`95`	`100`	`});`
	`101`	`+`
	`102`	`+ if (str.Contains('\0'))`
	`103`	`+ {`
	`104`	`+ KestrelBadHttpRequestException.Throw(RequestRejectionReason.InvalidCharactersInHeaderName);`
	`105`	`+ }`
	`106`	`+ return str;`
`96`	`107`	`}`
`97`	`108`
`98`		`- public static string GetAsciiStringNonNullCharacters(this Span<byte> span)`
`99`		`- => StringUtilities.GetAsciiStringNonNullCharacters(span);`
	`109`	`+ // Null checks must be done independently of this method (if required)`
	`110`	`+ public static string GetAsciiString(this Span<byte> span)`
	`111`	`+ => StringUtilities.GetAsciiString(span);`
`100`	`112`
`101`		`- public static string GetAsciiOrUTF8StringNonNullCharacters(this ReadOnlySpan<byte> span)`
`102`		`- => StringUtilities.GetAsciiOrUTF8StringNonNullCharacters(span, DefaultRequestHeaderEncoding);`
	`113`	`+ public static string GetAsciiOrUTF8String(this ReadOnlySpan<byte> span)`
	`114`	`+ => StringUtilities.GetAsciiOrUTF8String(span, DefaultRequestHeaderEncoding);`
`103`	`115`
`104`	`116`	`public static string GetRequestHeaderString(this ReadOnlySpan<byte> span, string name, Func<string, Encoding?> encodingSelector, bool checkForNewlineChars)`
`105`	`117`	`{`
`106`	`118`	`string result;`
`107`	`119`	`if (ReferenceEquals(KestrelServerOptions.DefaultHeaderEncodingSelector, encodingSelector))`
`108`	`120`	`{`
`109`		`- result = span.GetAsciiOrUTF8StringNonNullCharacters(DefaultRequestHeaderEncoding);`
	`121`	`+ result = span.GetAsciiOrUTF8String(DefaultRequestHeaderEncoding);`
`110`	`122`	`}`
`111`	`123`	`else`
`112`	`124`	`{`
`113`	`125`	`result = span.GetRequestHeaderStringWithoutDefaultEncodingCore(name, encodingSelector);`
`114`	`126`	`}`
`115`	`127`
`116`	`128`	`// New Line characters (CR, LF) are considered invalid at this point.`
`117`		`- if (checkForNewlineChars && ((ReadOnlySpan<char>)result).IndexOfAny('\r', '\n') >= 0)`
	`129`	`+ // Null characters are also not allowed.`
	`130`	`+ var invalidCharIndex = checkForNewlineChars ?`
	`131`	`+ ((ReadOnlySpan<char>)result).IndexOfAny('\r', '\n', '\0')`
	`132`	`+ : ((ReadOnlySpan<char>)result).IndexOf('\0');`
	`133`	`+`
	`134`	`+ if (invalidCharIndex >= 0)`
`118`	`135`	`{`
`119`		`- throw new InvalidOperationException("Newline characters (CR/LF) are not allowed in request headers.");`
	`136`	`+ if (result[invalidCharIndex] == 0)`
	`137`	`+ {`
	`138`	`+ throw new InvalidOperationException("Null characters are not allowed in request headers.");`
	`139`	`+ }`
	`140`	`+ else`
	`141`	`+ {`
	`142`	`+ throw new InvalidOperationException("Newline characters (CR/LF) are not allowed in request headers.");`
	`143`	`+ }`
`120`	`144`	`}`
`121`	`145`
`122`	`146`	`return result;`
`@@ -128,11 +152,11 @@ private static string GetRequestHeaderStringWithoutDefaultEncodingCore(this Read`
`128`	`152`
`129`	`153`	`if (encoding is null)`
`130`	`154`	`{`
`131`		`- return span.GetAsciiOrUTF8StringNonNullCharacters(DefaultRequestHeaderEncoding);`
	`155`	`+ return span.GetAsciiOrUTF8String(DefaultRequestHeaderEncoding);`
`132`	`156`	`}`
`133`	`157`	`if (ReferenceEquals(encoding, Encoding.Latin1))`
`134`	`158`	`{`
`135`		`- return span.GetLatin1StringNonNullCharacters();`
	`159`	`+ return span.GetLatin1String();`
`136`	`160`	`}`
`137`	`161`	`try`
`138`	`162`	`{`
Original file line number	Diff line number	Diff line change
`@@ -35,7 +35,7 @@ private void FullAsciiRangeSupported()`
`35`	`35`
`36`	`36`	`static void Test(Span<byte> asciiBytes)`
`37`	`37`	`{`
`38`		`- var s = asciiBytes.GetAsciiStringNonNullCharacters();`
	`38`	`+ var s = asciiBytes.GetAsciiString();`
`39`	`39`
`40`	`40`	`Assert.True(StringUtilities.BytesOrdinalEqualsStringAndAscii(s, asciiBytes));`
`41`	`41`	`Assert.Equal(s.Length, asciiBytes.Length);`
`@@ -50,19 +50,18 @@ static void Test(Span<byte> asciiBytes)`
`50`	`50`	`}`
`51`	`51`	`}`
`52`	`52`
`53`		`- [Theory]`
`54`		`- [InlineData(0x00)]`
`55`		`- [InlineData(0x80)]`
`56`		`- private void ExceptionThrownForZeroOrNonAscii(byte b)`
	`53`	`+ [Fact]`
	`54`	`+ private void ExceptionThrownForNonAscii()`
`57`	`55`	`{`
	`56`	`+ byte b = 0x80;`
`58`	`57`	`for (var length = 1; length < Vector<sbyte>.Count * 4; length++)`
`59`	`58`	`{`
`60`	`59`	`for (var position = 0; position < length; position++)`
`61`	`60`	`{`
`62`	`61`	`var byteRange = Enumerable.Range(1, length).Select(x => (byte)x).ToArray();`
`63`	`62`	`byteRange[position] = b;`
`64`	`63`
`65`		`- Assert.Throws<InvalidOperationException>(() => new Span<byte>(byteRange).GetAsciiStringNonNullCharacters());`
	`64`	`+ Assert.Throws<InvalidOperationException>(() => new Span<byte>(byteRange).GetAsciiString());`
`66`	`65`	`}`
`67`	`66`	`}`
`68`	`67`	`}`
`@@ -74,7 +73,7 @@ private void LargeAllocationProducesCorrectResults()`
`74`	`73`	`var expectedByteRange = byteRange.Concat(byteRange).ToArray();`
`75`	`74`
`76`	`75`	`var span = new Span<byte>(expectedByteRange);`
`77`		`- var s = span.GetAsciiStringNonNullCharacters();`
	`76`	`+ var s = span.GetAsciiString();`
`78`	`77`
`79`	`78`	`Assert.Equal(expectedByteRange.Length, s.Length);`
`80`	`79`
`@@ -96,7 +95,7 @@ private void DifferentLengthsAreNotEqual()`
`96`	`95`	`for (var i = 1; i < byteRange.Length; i++)`
`97`	`96`	`{`
`98`	`97`	`var span = new Span<byte>(expectedByteRange);`
`99`		`- var s = span.GetAsciiStringNonNullCharacters();`
	`98`	`+ var s = span.GetAsciiString();`
`100`	`99`
`101`	`100`	`Assert.True(StringUtilities.BytesOrdinalEqualsStringAndAscii(s, span));`
`102`	`101`
`@@ -133,7 +132,7 @@ private void AsciiBytesEqualAsciiStrings()`
`133`	`132`
`134`	`133`	`static void Test(Span<byte> asciiBytes)`
`135`	`134`	`{`
`136`		`- var s = asciiBytes.GetAsciiStringNonNullCharacters();`
	`135`	`+ var s = asciiBytes.GetAsciiString();`
`137`	`136`
`138`	`137`	`// Should start as equal`
`139`	`138`	`Assert.True(StringUtilities.BytesOrdinalEqualsStringAndAscii(s, asciiBytes));`
Original file line number	Diff line number	Diff line change
`@@ -65,7 +65,7 @@ public void AsciiBytesToString()`
`65`	`65`	`{`
`66`	`66`	`for (uint i = 0; i < Iterations; i++)`
`67`	`67`	`{`
`68`		`- HttpUtilities.GetAsciiStringNonNullCharacters(_asciiBytes);`
	`68`	`+ HttpUtilities.GetAsciiString(_asciiBytes);`
`69`	`69`	`}`
`70`	`70`	`}`
`71`	`71`
Original file line number	Diff line number	Diff line change
`@@ -771,7 +771,7 @@ internal async Task ExpectReceiveEndOfStream()`
`771`	`771`
`772`	`772`	`public void OnHeader(ReadOnlySpan<byte> name, ReadOnlySpan<byte> value)`
`773`	`773`	`{`
`774`		`- _headerHandler.DecodedHeaders[name.GetAsciiStringNonNullCharacters()] = value.GetAsciiOrUTF8StringNonNullCharacters();`
	`774`	`+ _headerHandler.DecodedHeaders[name.GetAsciiString()] = value.GetAsciiOrUTF8String();`
`775`	`775`	`}`
`776`	`776`
`777`	`777`	`public void OnHeadersComplete(bool endHeaders)`
`@@ -781,12 +781,12 @@ public void OnHeadersComplete(bool endHeaders)`
`781`	`781`	`public void OnStaticIndexedHeader(int index)`
`782`	`782`	`{`
`783`	`783`	`var knownHeader = H3StaticTable.Get(index);`
`784`		`- _headerHandler.DecodedHeaders[((Span<byte>)knownHeader.Name).GetAsciiStringNonNullCharacters()] = HttpUtilities.GetAsciiOrUTF8StringNonNullCharacters((ReadOnlySpan<byte>)knownHeader.Value);`
	`784`	`+ _headerHandler.DecodedHeaders[((Span<byte>)knownHeader.Name).GetAsciiString()] = HttpUtilities.GetAsciiOrUTF8String((ReadOnlySpan<byte>)knownHeader.Value);`
`785`	`785`	`}`
`786`	`786`
`787`	`787`	`public void OnStaticIndexedHeader(int index, ReadOnlySpan<byte> value)`
`788`	`788`	`{`
`789`		`- _headerHandler.DecodedHeaders[((Span<byte>)H3StaticTable.Get(index).Name).GetAsciiStringNonNullCharacters()] = value.GetAsciiOrUTF8StringNonNullCharacters();`
	`789`	`+ _headerHandler.DecodedHeaders[((Span<byte>)H3StaticTable.Get(index).Name).GetAsciiString()] = value.GetAsciiOrUTF8String();`
`790`	`790`	`}`
`791`	`791`
`792`	`792`	`public void Complete()`
`@@ -796,7 +796,7 @@ public void Complete()`
`796`	`796`
`797`	`797`	`public void OnDynamicIndexedHeader(int? index, ReadOnlySpan<byte> name, ReadOnlySpan<byte> value)`
`798`	`798`	`{`
`799`		`- _headerHandler.DecodedHeaders[name.GetAsciiStringNonNullCharacters()] = value.GetAsciiOrUTF8StringNonNullCharacters();`
	`799`	`+ _headerHandler.DecodedHeaders[name.GetAsciiString()] = value.GetAsciiOrUTF8String();`
`800`	`800`	`}`
`801`	`801`	`}`
`802`	`802`