{
  "entrypoint_kind": "tcp_peer",
  "entrypoint_detail": "HTTP/2 client sends malicious HEADERS/DATA frames to varnishd; backend receives the smuggled HTTP/1 request",
  "service_started": true,
  "healthcheck_passed": true,
  "target_path_reached": true,
  "runtime_stack": [
    "varnishd",
    "vinyltest/varnishtest",
    "tcp_peer",
    "http2"
  ],
  "proof_artifacts": [
    "artifacts/vulnsmuggle.log",
    "artifacts/fixedsmuggle.log",
    "artifacts/summary.txt"
  ],
  "notes": "Vulnerable source dc27a2dce662015cf79bbda5ff193b6bb74ba2d1, fixed source 0a625649cd40af4b6c10be5e58a2e89a5e275baa. Vulnerable run: smuggled /smuggled received. Fixed run: RST_STREAM PROTOCOL_ERROR."
}