diff --git a/src/lib/protocols/http.c b/src/lib/protocols/http.c index 9f1dd9cf5c8..f3085757738 100644 --- a/src/lib/protocols/http.c +++ b/src/lib/protocols/http.c @@ -979,7 +979,7 @@ static void ndpi_check_http_header(struct ndpi_detection_module_struct *ndpi_str if(is_a_suspicious_header(suspicious_http_header_keys_A, packet->line[i])) { char str[64]; - snprintf(str, sizeof(str), "Found %s", packet->line[i].ptr); + snprintf(str, sizeof(str), "Found %.*s", packet->line[i].len, packet->line[i].ptr); ndpi_set_risk(ndpi_struct, flow, NDPI_HTTP_SUSPICIOUS_HEADER, str); return; } @@ -988,7 +988,7 @@ static void ndpi_check_http_header(struct ndpi_detection_module_struct *ndpi_str if(is_a_suspicious_header(suspicious_http_header_keys_C, packet->line[i])) { char str[64]; - snprintf(str, sizeof(str), "Found %s", packet->line[i].ptr); + snprintf(str, sizeof(str), "Found %.*s", packet->line[i].len, packet->line[i].ptr); ndpi_set_risk(ndpi_struct, flow, NDPI_HTTP_SUSPICIOUS_HEADER, str); return; } @@ -997,7 +997,7 @@ static void ndpi_check_http_header(struct ndpi_detection_module_struct *ndpi_str if(is_a_suspicious_header(suspicious_http_header_keys_M, packet->line[i])) { char str[64]; - snprintf(str, sizeof(str), "Found %s", packet->line[i].ptr); + snprintf(str, sizeof(str), "Found %.*s", packet->line[i].len, packet->line[i].ptr); ndpi_set_risk(ndpi_struct, flow, NDPI_HTTP_SUSPICIOUS_HEADER, str); return; } @@ -1006,7 +1006,7 @@ static void ndpi_check_http_header(struct ndpi_detection_module_struct *ndpi_str if(is_a_suspicious_header(suspicious_http_header_keys_O, packet->line[i])) { char str[64]; - snprintf(str, sizeof(str), "Found %s", packet->line[i].ptr); + snprintf(str, sizeof(str), "Found %.*s", packet->line[i].len, packet->line[i].ptr); ndpi_set_risk(ndpi_struct, flow, NDPI_HTTP_SUSPICIOUS_HEADER, str); return; } @@ -1015,7 +1015,7 @@ static void ndpi_check_http_header(struct ndpi_detection_module_struct *ndpi_str if(is_a_suspicious_header(suspicious_http_header_keys_R, packet->line[i])) { char str[64]; - snprintf(str, sizeof(str), "Found %s", packet->line[i].ptr); + snprintf(str, sizeof(str), "Found %.*s", packet->line[i].len, packet->line[i].ptr); ndpi_set_risk(ndpi_struct, flow, NDPI_HTTP_SUSPICIOUS_HEADER, str); return; } @@ -1024,7 +1024,7 @@ static void ndpi_check_http_header(struct ndpi_detection_module_struct *ndpi_str if(is_a_suspicious_header(suspicious_http_header_keys_S, packet->line[i])) { char str[64]; - snprintf(str, sizeof(str), "Found %s", packet->line[i].ptr); + snprintf(str, sizeof(str), "Found %.*s", packet->line[i].len, packet->line[i].ptr); ndpi_set_risk(ndpi_struct, flow, NDPI_HTTP_SUSPICIOUS_HEADER, str); return; } @@ -1033,7 +1033,7 @@ static void ndpi_check_http_header(struct ndpi_detection_module_struct *ndpi_str if(is_a_suspicious_header(suspicious_http_header_keys_T, packet->line[i])) { char str[64]; - snprintf(str, sizeof(str), "Found %s", packet->line[i].ptr); + snprintf(str, sizeof(str), "Found %.*s", packet->line[i].len, packet->line[i].ptr); ndpi_set_risk(ndpi_struct, flow, NDPI_HTTP_SUSPICIOUS_HEADER, str); return; } @@ -1042,7 +1042,7 @@ static void ndpi_check_http_header(struct ndpi_detection_module_struct *ndpi_str if(is_a_suspicious_header(suspicious_http_header_keys_U, packet->line[i])) { char str[64]; - snprintf(str, sizeof(str), "Found %s", packet->line[i].ptr); + snprintf(str, sizeof(str), "Found %.*s", packet->line[i].len, packet->line[i].ptr); ndpi_set_risk(ndpi_struct, flow, NDPI_HTTP_SUSPICIOUS_HEADER, str); return; } @@ -1051,7 +1051,7 @@ static void ndpi_check_http_header(struct ndpi_detection_module_struct *ndpi_str if(is_a_suspicious_header(suspicious_http_header_keys_X, packet->line[i])) { char str[64]; - snprintf(str, sizeof(str), "Found %s", packet->line[i].ptr); + snprintf(str, sizeof(str), "Found %.*s", packet->line[i].len, packet->line[i].ptr); ndpi_set_risk(ndpi_struct, flow, NDPI_HTTP_SUSPICIOUS_HEADER, str); return; }