Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

detect: use direction-based tx for app-layer logging #10891

Closed
wants to merge 1 commit into from
Closed

detect: use direction-based tx for app-layer logging #10891

wants to merge 1 commit into from

Conversation

catenacyber
Copy link
Contributor

Link to redmine ticket:
https://redmine.openinfosecfoundation.org/issues/6846

Describe changes:

@catenacyber
detect: use direction-based tx for app-layer logging
a1219e4 
When we only have stream matches.

Ticket: 6846

This solves the case where another transaction was created
by parsing data in the other direction, before running the
detection.

Like
1. get data in direction 1
2. acked data: parse it, but do not run detection in dir 1
3. other data in direction 2
4. other data acked : parse it and create new tx,
then run detection for direction 1 with data from first packet
@catenacyber catenacyber mentioned this pull request Apr 18, 2024
Closed
@codecov Codecov
Copy link

codecov bot commented Apr 18, 2024

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 82.84%. Comparing base (2b4e102) to head (a1219e4).

Additional details and impacted files 
@@            Coverage Diff             @@
##           master   #10891      +/-   ##
==========================================
+ Coverage   77.64%   82.84%   +5.19%     
==========================================
  Files         922      922              
  Lines      247806   247838      +32     
==========================================
+ Hits       192400   205309   +12909     
+ Misses      55406    42529   -12877
Flag Coverage Δ
fuzzcorpus 64.28% <100.00%> (?)
suricata-verify 62.41% <100.00%> (-0.02%) ⬇️
unittests 62.20% <0.00%> (-0.01%) ⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

@victorjulien victorjulien added this to the 8.0 milestone Apr 18, 2024
@victorjulien victorjulien mentioned this pull request Apr 18, 2024
Closed
@catenacyber catenacyber mentioned this pull request Apr 19, 2024
Closed
@victorjulien victorjulien mentioned this pull request Apr 19, 2024
Merged
@victorjulien
Copy link
Member

Merged in #10921, thanks!

@catenacyber catenacyber mentioned this pull request May 15, 2024
Closed
@catenacyber catenacyber mentioned this pull request May 23, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@victorjulien victorjulien victorjulien approved these changes

Assignees
No one assigned
Labels
None yet
Milestone
8.0
2 participants
@catenacyber @victorjulien