Skip to content

stats_over_http: fix incorrect use of C string functions. #12634

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

stats_over_http: fix incorrect use of C string functions. #12634

wants to merge 1 commit into from

Conversation

@vuori
Copy link
Contributor

@vuori vuori commented Nov 3, 2025
edited
Loading

Handling of the Accept-Encoding field in the stats_over_http plugin used strstr() on the result of TSMimeHdrFieldValueStringGet leading to read of uninitialized memory. As a workaround, make a null-terminated copy of the header string.

As a matter of opinion, I think the compression support in stats_over_http should be completely removed as it significantly complicates the code for questionable benefit. Ideally users who care about this could stack the compress plugin, though I'm not clear on whether this works with intercept?

@vuori
stats_over_http: fix incorrect use of C string functions.
172e339 
Handling of the Accept-Encoding field used strstr() on the result
of TSMimeHdrFieldValueStringGet leading to read of uninitialized
memory. As a workaround, make a null-terminated copy of the
returned string.
cmcfarlen
cmcfarlen reviewed Nov 3, 2025
View reviewed changes
plugins/stats_over_http/stats_over_http.cc

// Ensure str is null-terminated for strstr()
if (len > 0) {
str = TSstrndup(mime_str, len);
Copy link
Contributor

@cmcfarlen cmcfarlen Nov 3, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Instead of this, could you create a std::string_view from {mime_str, Len} and use std::string_view::find to search for the string?

Copy link
Contributor Author

@vuori vuori Nov 3, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

ugghhh I'll think about it. Not very enthusiastic at all about all this code that just duplicates compress, the only reason I'm touching this is to make a thing that insists on sending Accept-Encoding: identity work reliably.

Copy link
Contributor

@bneradt bneradt Nov 5, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I like the std::string_view suggestion too. It would be nice to avoid the cost of the allocation and the need to free.

Thank you for working on this.

@bryancall bryancall added this to the 10.2.0 milestone Nov 3, 2025
@bryancall bryancall added the Bug label Nov 3, 2025
@ezelkow1
Copy link
Member

ezelkow1 commented Nov 3, 2025

[approve ci]

@cmcfarlen cmcfarlen self-requested a review November 10, 2025 23:09
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@bneradt bneradt bneradt left review comments

@cmcfarlen cmcfarlen Awaiting requested review from cmcfarlen

At least 1 approving review is required to merge this pull request.

Assignees

@vuori vuori

Labels

Bug

Projects

None yet

Milestone

10.2.0

Development

Successfully merging this pull request may close these issues.

5 participants

@vuori @ezelkow1 @cmcfarlen @bneradt @bryancall