Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

stream-tcp-reassemble: fix reassembly direction for FIN packets #6686

Closed
wants to merge 1 commit into from
Closed

stream-tcp-reassemble: fix reassembly direction for FIN packets #6686

wants to merge 1 commit into from

Conversation

amirabell
Copy link
Contributor

Suricata invokes the stream reassembly logic only for the current packet
direction if the packet contains a FIN flag. However, this does not
handle the case in which the packet ACKs data from the opposing direction.
This patch forces the invocation of the stream reassembly logic
on both direction when Suricata sees a FIN packet.

Make sure these boxes are signed before submitting your Pull Request -- thank you.

Link to redmine ticket:
https://redmine.openinfosecfoundation.org/issues/4877

Describe changes:
-Set direction to UPDATE_DIR_BOTH FIN-ACK packets

#suricata-verify-pr:OISF/suricata-verify#599
#suricata-verify-repo:
#suricata-verify-branch:
#suricata-update-pr:
#suricata-update-repo:
#suricata-update-branch:
#libhtp-pr:
#libhtp-repo:
#libhtp-branch:

Previous PR: #6685

stream-tcp-reassemble: fix reassembly direction for FIN packets
0f265fb 
Suricata invokes the stream reassembly logic only for the current packet
direction if the packet contains a FIN flag. However, this does not
handle the case in which the packet ACKs data from the opposing direction.
This patch forces the invocation of the stream reassembly logic
on both direction when Suricata sees a FIN packet.
@amirabell amirabell requested a review from a team as a code owner December 8, 2021 10:22
@amirabell amirabell mentioned this pull request Dec 8, 2021
Closed
inashivb
inashivb reviewed Dec 9, 2021
View reviewed changes
src/stream-tcp-reassemble.c
dir = UPDATE_DIR_BOTH;
} else {
dir = UPDATE_DIR_PACKET;
}
Copy link
Member

@inashivb inashivb Dec 9, 2021
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Hi @amirabell ! Thank you for your work! :)
formatting seems to be off here. Could you please check?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I am sorry, I didn't notice. Opened a new PR: #6693

@amirabell amirabell mentioned this pull request Dec 9, 2021
Closed
@amirabell amirabell closed this Dec 9, 2021
lukashino added a commit to lukashino/suricata that referenced this pull request Jan 16, 2024
@lukashino
doc: port user install and build instruction from master-6.0.x
9c2d8f6 
Ticket: OISF#6686
lukashino pushed a commit to lukashino/suricata that referenced this pull request Jan 16, 2024
@lukashino
doc: port user install and build instruction from master-6.0.x
4954fa1 
Ticket: OISF#6686
lukashino pushed a commit to lukashino/suricata that referenced this pull request Mar 2, 2024
@lukashino
doc: port user install and build instruction from master-6.0.x
5c13ec7 
Ticket: OISF#6686
lukashino pushed a commit to lukashino/suricata that referenced this pull request Mar 11, 2024
@lukashino
doc: port user install and build instruction from master-6.0.x
bd869e6 
Ticket: OISF#6686
@amirabell amirabell deleted the fix-stream-reassembly-update-on-fin-v3 branch March 27, 2024 06:45
lukashino pushed a commit to lukashino/suricata that referenced this pull request Apr 9, 2024
@lukashino
doc: port user install and build instruction from master-6.0.x
879e929 
Ticket: OISF#6686
lukashino pushed a commit to lukashino/suricata that referenced this pull request Apr 11, 2024
@lukashino
doc: port user install and build instruction from master-6.0.x
435a1e0 
Ticket: OISF#6686
lukashino pushed a commit to lukashino/suricata that referenced this pull request Apr 11, 2024
@lukashino
doc: port user install and build instruction from master-6.0.x
0f15432 
Ticket: OISF#6686
lukashino pushed a commit to lukashino/suricata that referenced this pull request Apr 14, 2024
@lukashino
doc: port user install and build instruction from master-6.0.x
b230f9c 
Ticket: OISF#6686
lukashino pushed a commit to lukashino/suricata that referenced this pull request Apr 14, 2024
@lukashino
doc: port user install and build instruction from master-6.0.x
1194a14 
Ticket: OISF#6686
lukashino pushed a commit to lukashino/suricata that referenced this pull request Apr 14, 2024
@lukashino
doc: port user install and build instruction from master-6.0.x
892290d 
Ticket: OISF#6686
lukashino pushed a commit to lukashino/suricata that referenced this pull request Apr 14, 2024
@lukashino
doc: port user install and build instruction from master-6.0.x
e568e48 
Ticket: OISF#6686
lukashino pushed a commit to lukashino/suricata that referenced this pull request Apr 14, 2024
@lukashino
doc: port user install and build instruction from master-6.0.x
5bd4596 
Ticket: OISF#6686
lukashino pushed a commit to lukashino/suricata that referenced this pull request May 28, 2024
@lukashino
doc: port user install and build instruction from master-6.0.x
0673b10 
Ticket: OISF#6686
lukashino pushed a commit to lukashino/suricata that referenced this pull request May 28, 2024
@lukashino
doc: port user install and build instruction from master-6.0.x
dbd8f10 
Ticket: OISF#6686
lukashino pushed a commit to lukashino/suricata that referenced this pull request May 28, 2024
@lukashino
doc: port user install and build instruction from master-6.0.x
9bc4260 
Ticket: OISF#6686
lukashino pushed a commit to lukashino/suricata that referenced this pull request May 29, 2024
@lukashino
doc: port user install and build instruction from master-6.0.x
1c2fb25 
Ticket: OISF#6686
lukashino pushed a commit to lukashino/suricata that referenced this pull request May 30, 2024
@lukashino
doc: port user install and build instruction from master-6.0.x
bcbffe0 
Ticket: OISF#6686
lukashino pushed a commit to lukashino/suricata that referenced this pull request Jun 3, 2024
@lukashino
doc: port user install and build instruction from master-6.0.x
d246ddb 
Ticket: OISF#6686
lukashino pushed a commit to lukashino/suricata that referenced this pull request Jun 8, 2024
@lukashino
doc: port user install and build instruction from master-6.0.x
93f8c7e 
Ticket: OISF#6686
lukashino pushed a commit to lukashino/suricata that referenced this pull request Jun 8, 2024
@lukashino
doc: port user install and build instruction from master-6.0.x
dff00bf 
Ticket: OISF#6686
lukashino pushed a commit to lukashino/suricata that referenced this pull request Jun 8, 2024
@lukashino
doc: port user install and build instruction from master-6.0.x
71940d8 
Ticket: OISF#6686
lukashino pushed a commit to lukashino/suricata that referenced this pull request Jun 8, 2024
@lukashino
doc: port user install and build instruction from master-6.0.x
61198cf 
Ticket: OISF#6686
victorjulien pushed a commit to victorjulien/suricata that referenced this pull request Jun 15, 2024
@victorjulien
doc: port user install and build instruction from master-6.0.x
bd96087 
Ticket: OISF#6686
lukashino pushed a commit to lukashino/suricata that referenced this pull request Jun 18, 2024
@lukashino
doc: port user install and build instruction from master-6.0.x
2b5d658 
Ticket: OISF#6686
(cherry picked from commit 61198cf)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@inashivb inashivb inashivb left review comments

Assignees
No one assigned
Labels
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@amirabell @inashivb