Fix possible http module panic

#327
zmap · Oct 12, 2021 · c9a9ac1 · c9a9ac1
1 parent 00fe9ca
commit c9a9ac1
Showing 1 changed file with 6 additions and 0 deletions.
diff --git a/modules/http/scanner.go b/modules/http/scanner.go
@@ -550,6 +550,12 @@ func (scan *scan) Grab() *zgrab2.ScanError {
 		if readLen < sliceLen {
 			sliceLen = readLen
 		}
+
+		bodyTextLen := int64(len(bodyText))
+		if bodyTextLen < sliceLen {
+			sliceLen = bodyTextLen
+		}
+
 		sliceBuf := bodyText[:sliceLen]
 		if strings.Contains(sliceBuf, "The plain HTTP request was sent to HTTPS port") ||
 			strings.Contains(sliceBuf, "You're speaking plain HTTP") ||