Multiple "Skipping impossibly large" errors when working with http_body data #80
Description
I want to analyze the body of HTTP responses; however, I am seeing errors which say Skipping impossibly large 26003-byte #1 chunk, at offset 6/21013.
I can reproduce these errors when processing the http_get_reply_iframes.json.bz2 file provided in the samples directory using the following command:
bzcat http_get_reply_iframes.json.bz2 | dap json + select ip data + transform data=base64decode + decode_http_reply data + remove data data.http_raw_body + select ip + json
I am running DAP in Docker and mounting the samples directory. My Dockerfile is a duplicate of this repo's Dockerfile, but I removed the installation of MaxMind as it was throwing an error which I think is due to a licensing change...
How should I structure the DAP query to avoid the skipping?