Skip to content

Comments

Enip rust 3958 v14#10377

Closed
catenacyber wants to merge 4 commits intoOISF:masterfrom
catenacyber:enip-rust-3958-v14
Closed

Enip rust 3958 v14#10377
catenacyber wants to merge 4 commits intoOISF:masterfrom
catenacyber:enip-rust-3958-v14

Conversation

@catenacyber
Copy link
Contributor

@catenacyber catenacyber commented Feb 12, 2024

Link to redmine ticket:
https://redmine.openinfosecfoundation.org/issues/3958

Describe changes:

Alon the way, also

  • transactions are now bidirectional
  • there is a enip logger
  • gap support is improved with probing for resync
  • frames
  • events
  • enip_command keyword accepts now string enumeration as values.
  • more keywords

#10186 with needed rebase

SV_BRANCH=pr/1585

OISF/suricata-verify#1585

@catenacyber catenacyber mentioned this pull request Feb 12, 2024
Closed
@catenacyber
enip: convert to rust
f83aeda 
Ticket: 3958

- transactions are now bidirectional
- there is a logger
- gap support is improved with probing for resync
- frames support
- app-layer events
- enip_command keyword accepts now string enumeration as values.
- add enip.status keyword
- add keywords :
    enip.product_name, enip.protocol_version, enip.revision,
    enip.identity_status, enip.state, enip.serial, enip.product_code,
    enip.device_type, enip.vendor_id, enip.capabilities,
    enip.cip_attribute, enip.cip_class, enip.cip_instance,
    enip.cip_status, enip.cip_extendedstatus
@suricata-qa
Copy link

suricata-qa commented Feb 12, 2024

Information:

ERROR: QA failed on SURI_TLPW2_autofp_suri_time.

ERROR: QA failed on SURI_TLPR1_alerts_cmp.

field baseline test %
SURI_TLPW2_autofp_stats_chk
.uptime 101 112 110.89%
SURI_TLPR1_stats_chk
.app_layer.flow.ftp 33163 35522 107.11%
.memcap_pressure_max 61 86 140.98%
.http.memuse 336824 234256 69.55%

Pipeline 18384

@codecov
Copy link

codecov bot commented Feb 12, 2024

Codecov Report

Attention: 1963 lines in your changes are missing coverage. Please review.

Comparison is base (9fe00ff) 82.52% compared to head (f83aeda) 82.04%.
Report is 1 commits behind head on master.

Additional details and impacted files 
@@            Coverage Diff             @@
##           master   #10377      +/-   ##
==========================================
- Coverage   82.52%   82.04%   -0.49%     
==========================================
  Files         978      985       +7     
  Lines      272148   273987    +1839     
==========================================
+ Hits       224595   224780     +185     
- Misses      47553    49207    +1654
Flag Coverage Δ
fuzzcorpus 62.83% <35.20%> (-0.76%) ⬇️
suricata-verify 61.39% <41.97%> (-0.50%) ⬇️
unittests 62.41% <12.34%> (-0.43%) ⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

@catenacyber catenacyber mentioned this pull request Feb 14, 2024
Closed
@catenacyber
Copy link
Contributor Author

catenacyber commented Feb 14, 2024

Rebased in #10417

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jasonish jasonish Awaiting requested review from jasonish

@jufajardini jufajardini Awaiting requested review from jufajardini

@victorjulien victorjulien Awaiting requested review from victorjulien

Assignees

No one assigned

Labels

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@catenacyber @suricata-qa