fix(reporter/http): read response body #2108

MaineK00n · 2025-01-17T04:02:31Z

If this Pull Request is work in progress, Add a prefix of “[WIP]” in the title.

What did you implement:

In the current implementation, the response body is not completely read, which can result in the connection being cut off while the Response Writer is still writing. This PR will fix this so that the entire response body is read.

Type of change

Bug fix (non-breaking change which fixes an issue)

How Has This Been Tested?

$ cat config.toml
...
[http]
url = "http://localhost:5515/vuls"
...

$ vuls server -listen localhost:5515
$ vuls report -to-http

before

$ vuls server -listen localhost:5515
...
[Jan 17 10:45:50]  INFO [localhost] vagrant: 0 CVEs are detected with OVAL
[Jan 17 10:45:50]  INFO [localhost] vagrant: 0 unfixed CVEs are detected with gost
[Jan 17 10:45:50]  INFO [localhost] Fill CVE detailed with gost
[Jan 17 10:45:50]  INFO [localhost] Fill CVE detailed with CVE-DB
[Jan 17 10:45:50]  INFO [localhost] vagrant: 0 PoC detected
[Jan 17 10:45:51]  INFO [localhost] vagrant: 0 exploits are detected
[Jan 17 10:45:51]  INFO [localhost] vagrant: Known Exploited Vulnerabilities are detected for 0 CVEs
[Jan 17 10:45:51]  INFO [localhost] vagrant: Cyber Threat Intelligences are detected for 0 CVEs
[Jan 17 10:45:51]  INFO [localhost] vagrant: total 2217 CVEs detected
[Jan 17 10:45:51]  INFO [localhost] vagrant: 0 CVEs filtered by --confidence-over=80
[Jan 17 10:47:04] ERROR [localhost] Failed to report. err: write tcp 127.0.0.1:5515->127.0.0.1:46836: write: connection reset by peer

after

$ vuls server -listen localhost:5515
...
[Jan 17 12:53:59]  INFO [localhost] vagrant: 0 CVEs are detected with OVAL
[Jan 17 12:53:59]  INFO [localhost] vagrant: 0 unfixed CVEs are detected with gost
[Jan 17 12:53:59]  INFO [localhost] Fill CVE detailed with gost
[Jan 17 12:53:59]  INFO [localhost] Fill CVE detailed with CVE-DB
[Jan 17 12:54:00]  INFO [localhost] vagrant: 0 PoC detected
[Jan 17 12:54:00]  INFO [localhost] vagrant: 0 exploits are detected
[Jan 17 12:54:00]  INFO [localhost] vagrant: Known Exploited Vulnerabilities are detected for 0 CVEs
[Jan 17 12:54:00]  INFO [localhost] vagrant: Cyber Threat Intelligences are detected for 0 CVEs
[Jan 17 12:54:00]  INFO [localhost] vagrant: total 2217 CVEs detected
[Jan 17 12:54:00]  INFO [localhost] vagrant: 0 CVEs filtered by --confidence-over=80

Checklist:

You don't have to satisfy all of the following.

Write tests
Write documentation
Check that there aren't other open pull requests for the same issue/feature
Format your source code by make fmt
Pass the test by make test
Provide verification config / commands
Enable "Allow edits from maintainers" for this PR
Update the messages below

Is this ready for review?: YES

Reference

shino

Nice fix!!

fix(reporter/http): read response body

9462053

MaineK00n self-assigned this Jan 17, 2025

MaineK00n requested a review from shino January 17, 2025 04:02

shino approved these changes Jan 17, 2025

View reviewed changes

MaineK00n merged commit 40e36cc into master Jan 17, 2025
7 checks passed

MaineK00n deleted the MaineK00n/patch-2 branch January 17, 2025 08:07

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

fix(reporter/http): read response body #2108

fix(reporter/http): read response body #2108

MaineK00n commented Jan 17, 2025

shino left a comment

fix(reporter/http): read response body #2108

fix(reporter/http): read response body #2108

Conversation

MaineK00n commented Jan 17, 2025

What did you implement:

Type of change

How Has This Been Tested?

before

after

Checklist:

Reference

shino left a comment

Choose a reason for hiding this comment