Gitiles
Code Review Sign In
git01.mediatek.com / haproxy / bf60f6b8033deddc86de5357d6099c7593fe44cc
commitbf60f6b8033deddc86de5357d6099c7593fe44cc[log] [tgz]
authorYann Cézard <ycezard@viareport.com>Thu Apr 25 14:30:23 2019 +0200
committerChristopher Faulet <cfaulet@haproxy.com>Mon Apr 29 16:26:05 2019 +0200
tree07cef095a522975518cca4404e6f7c5799942e03
parent494ddbff478d880e48de490f2689607addac70bc [diff]
BUG/MEDIUM: contrib/modsecurity: If host header is NULL, don't try to strdup it

I discovered this bug when running OWASP regression tests against HAProxy +
modsecurity-spoa (it's a POC to evaluate how it is working).  I found out that
modsecurity spoa will crash when the request doesn't have any Host header.

See the pull request #86 on github for details.

This patch must be backported to 1.9 and 1.8.
1 file changed
tree: 07cef095a522975518cca4404e6f7c5799942e03
  1. .github/
  2. contrib/
  3. doc/
  4. ebtree/
  5. examples/
  6. include/
  7. reg-tests/
  8. scripts/
  9. src/
  10. tests/
  11. .gitignore
  12. .travis.yml
  13. CHANGELOG
  14. CONTRIBUTING
  15. INSTALL
  16. LICENSE
  17. MAINTAINERS
  18. Makefile
  19. README
  20. ROADMAP
  21. SUBVERS
  22. VERDATE
  23. VERSION