libhtp
libhtp copied to clipboard
OISF
LibHTP is a security-aware parser for the HTTP protocol and the related bits and pieces.
For example, in a TCP session with HTTP request and response packets: Request 1 => GET /test.js Response 1 => Response for /test.js Request 2 => POST /api/v1/test Response 2...
In function htp_ch_multipart_callback_request_body_data at htp_content_handlers.c, if an error occurs while adding newly allocated params to tx->request_params, the func just returns without setting tx->request_mpartp->gave_up_data, thus there's a risk of double-free in...
#418 with SV passing for `http-sticky-server` : do not pop out of the list when removing a tx, as the list size is used for tx count
The response was emitting partial body data depending on how you fed the parser with inbound and outbound data chunks. It seems the intended behavior is to not emit body...
