Comments (4)
It seems this is a Burp issue. I retried the request with curl
:
curl -i -v -k --http2 -H 'Content-Length: 9' -X POST --data 'abcd=dgdfGET /n HTTP/1.1\r\nHost: 02.rs?x.netflix.com\r\nFoo: bar' https://tempesta-tech.com
and I got
HTTP/2 400
date: Sat, 18 May 2024 21:56:15 GMT
content-length: 0
server: Tempesta FW/0.8.0
with Warning: Request parsing inconsistency: 192.168.100.1
in log.
from tempesta.
OK, it seems we're good and do not pass any of the attack samples (I was playing with Burp and curl for the whole evening), but it's still worth checking our test suite for the attack samples and implement them in case of further regressions.
I'd be cool if you could break our protection against request smuggling attack.
Also please investigate the issue with Burp: maybe it was just a misuse on my side or the tool or Tempesta have some framing (I suppose) bug. If so then, the bug should be revealed and reported.
from tempesta.
On this screenshot Burp hangs in waiting for a response. Maybe there is a problem with the showing HTTP/2 as HTTP/1 feature...
from tempesta.
tfw_h2_parse_body() function does print Content-Length for debugging, but does not validate it against the actual DATA length. I played with varying the data length, but didn't succeed on request smuggling.
Looks like END_STREAM was not received. When END_STREAM is received tfw_h2_parse_req_finish()
validates Content-Length against actual body length(total size of DATA frames), while END_STREAM not received Tempesta just waits next frame.
from tempesta.
Related Issues (20)
- Server failover configuration saving error. HOT 3
- Memory leak on test run HOT 1
- Rework the work queue from MPMC to MPSC
- Migrate to Ubuntu 24 LTS
- Headers processing optimization
- Move tls encryption from kernel code to Tempesta FW source code and adjuct TCP window, when we push skb to socket write queue for HTTP1 tls also HOT 2
- Zero 'sent bytes' in access log for non-empty responses HOT 1
- Integrate `checkpatch.pl` to our build/commit pipeline HOT 2
- Crash on malformed server response.
- Edge Side Application Callbacks
- Memory leak found in ping flood
- Kernel BUG in hpack. HOT 1
- Make socket callbacks `sk_fill_write_queue` and `sk_write_xmit` reentable or close connection in case of -ENOMEM HOT 2
- No `POST` processing and subsequent crash HOT 6
- New Let's Encrypt certificate with SHA384 parsing error HOT 2
- BUG at /root/tempesta/tls/x509_crt.c:874 HOT 1
- Hang with use-after-free in tfw_tls_conn_send+0x66 HOT 4
- Installer unable to operate with github
- `SETTINGS_NO_RFC7540_PRIORITIES` and RFC 9218 streams prioritization
- BUG at /root/tempesta/fw/cache.c:2027
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from tempesta.