Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

next/704/20250128/v1 #12499

Merged
merged 4 commits into from
Jan 29, 2025
Merged

next/704/20250128/v1 #12499

merged 4 commits into from
Jan 29, 2025

Conversation

victorjulien
Copy link
Member

regit and others added 4 commits January 28, 2025 22:34
@regit @victorjulien
util/debug: increase max length of message
8230cb5 
When a signature is incorrect, its full content is logged in a
message with some other information such as rules file name. As
a result, the log message must be longer than a maximum signature
length which is 8192.

Ticket: 7419
@victorjulien
detect/iponly: use flow first flags
3f39645 
Instead of ip-only specific flags, reuse the FLOW_PKT_TOSERVER_FIRST and
FLOW_PKT_TOCLIENT_FIRST flags.

Fixes false positives on one sided streams that trigger a opposing flow
timeout packet at the flow's end. That pseudo packet would trigger a
match even though it shouldn't.

Ticket: OISF#7521.
@jlucovsky @victorjulien
detect/csum: rm interaction btw stream setting/csum
758da98 
Issue: 7467

Stream checksum validation no longer has a side effect of setting
PKT_IGNORE_CHECKSUM and thus, no longer affects csum keyword checks.
@jlucovsky @victorjulien
doc/csum: Stream checksum validation change
cfbf8fd 
Describe the change of behavior between the stream.checksum-validation
setting and checksum-based rule keywords.
jasonish
jasonish approved these changes Jan 29, 2025
View reviewed changes
Copy link
Member

@jasonish jasonish left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Staging looks OK.

@codecov Codecov
Copy link

codecov bot commented Jan 29, 2025
edited
Loading

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 80.56%. Comparing base (a2905ae) to head (cfbf8fd).
Report is 4 commits behind head on master.

Additional details and impacted files 
@@            Coverage Diff             @@
##           master   #12499      +/-   ##
==========================================
- Coverage   80.58%   80.56%   -0.02%     
==========================================
  Files         925      925              
  Lines      259313   259292      -21     
==========================================
- Hits       208955   208906      -49     
- Misses      50358    50386      +28
Flag Coverage Δ
fuzzcorpus 56.14% <38.46%> (+<0.01%) ⬆️
livemode 19.39% <30.76%> (-0.01%) ⬇️
pcap 44.19% <38.46%> (-0.05%) ⬇️
suricata-verify 63.39% <100.00%> (+<0.01%) ⬆️
unittests 58.44% <40.00%> (-0.01%) ⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

@suricata-qa
Copy link

Information: QA ran without warnings.

Pipeline 24416

@victorjulien victorjulien merged commit cfbf8fd into OISF:master Jan 29, 2025
60 checks passed
This was referenced Jan 29, 2025
Closed
Closed
Closed
@victorjulien victorjulien deleted the next/704/20250128/v1 branch January 29, 2025 05:48
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jasonish jasonish jasonish approved these changes

@jufajardini jufajardini Awaiting requested review from jufajardini jufajardini is a code owner

Assignees
No one assigned
Labels
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@victorjulien @suricata-qa @jasonish @regit @jlucovsky