Request header invalid 6415 v1 #407

catenacyber · 2023-11-07T09:46:20Z

https://redmine.openinfosecfoundation.org/issues/6415

So that following headers and response still get processed Ticket: #6415

For instance, the following header may be considered as valid: Transfer-Encoding: chunked, chunked Ticket: #6415

victorjulien · 2023-11-21T11:05:15Z

htp/htp_transaction.c

@@ -405,7 +405,7 @@ static htp_status_t htp_tx_process_request_headers(htp_tx_t *tx) {
        //      (2.2.22 on Ubuntu 12.04 LTS) instead errors out with "Unknown Transfer-Encoding: identity".
        //      And it behaves strangely, too, sending a 501 and proceeding to process the request
        //      (e.g., PHP is run), but without the body. It then closes the connection.
-        if (bstr_cmp_c_nocase(te->value, "chunked") != 0) {
+        if (bstr_index_of_c_nocasenorzero(te->value, "chunked") == -1) {


should we tokenize value first? This will also match notchunked or chunkeditisnot?

Indeed, it will get more complex

catenacyber · 2023-11-23T10:21:31Z

Replaced by #409

catenacyber added 2 commits November 6, 2023 17:22

request: continue processing even with invalid headers

935a9f8

So that following headers and response still get processed Ticket: #6415

request: be more liberal about transfer-encoding value

6963345

For instance, the following header may be considered as valid: Transfer-Encoding: chunked, chunked Ticket: #6415

catenacyber mentioned this pull request Nov 7, 2023

Request header invalid 6415 v1 cccs-rtmorti/libhtp-rs#11

Merged

victorjulien reviewed Nov 21, 2023

View reviewed changes

catenacyber mentioned this pull request Nov 23, 2023

Request header invalid 6415 v2 #409

Closed

catenacyber closed this Nov 23, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Request header invalid 6415 v1 #407

Request header invalid 6415 v1 #407

catenacyber commented Nov 7, 2023

victorjulien Nov 21, 2023

catenacyber Nov 23, 2023

catenacyber commented Nov 23, 2023

Request header invalid 6415 v1 #407

Request header invalid 6415 v1 #407

Conversation

catenacyber commented Nov 7, 2023

victorjulien Nov 21, 2023

Choose a reason for hiding this comment

catenacyber Nov 23, 2023

Choose a reason for hiding this comment

catenacyber commented Nov 23, 2023