]> git.ipfire.org Git - thirdparty/suricata.git/commit
projects / thirdparty / suricata.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 805ac10) | patch
http2: forbid data on stream 0
authorPhilippe Antoine <pantoine@oisf.net>
Tue, 15 Apr 2025 10:34:37 +0000 (12:34 +0200)
committerPhilippe Antoine <pantoine@oisf.net>
Mon, 7 Jul 2025 07:03:20 +0000 (09:03 +0200)
commit97eee2cadacf3423a1ebcdd1943a7a7917f5cc56
tree6dd040263b740db90325fe3c259547f11a0876c3tree
parent805ac10fad7325d2cbb325f6212dd1c4b8becdd8commit | diff
http2: forbid data on stream 0

Ticket: 7658

Suricata will not handle well if we open a file for this tx,
do not close it, but set the transaction state to completed.

RFC 9113 section 6.1 states:

If a DATA frame is received whose Stream Identifier field is 0x00,
the recipient MUST respond with a connection error (Section 5.4.1)
 of type PROTOCOL_ERROR.

(cherry picked from commit 1d6d331752e933c46aca0ae7a9679b27462246e3)
rules/http2-events.rules diff | blob | blame | history
rust/src/http2/http2.rs diff | blob | blame | history
Mirror of https://github.com/OISF/suricata.git