Skip to content

Smtp frames/v22#11229

Closed
victorjulien wants to merge 12 commits intoOISF:masterfrom
victorjulien:smtp-frames/v22
Closed

Smtp frames/v22#11229
victorjulien wants to merge 12 commits intoOISF:masterfrom
victorjulien:smtp-frames/v22

Conversation

@victorjulien
Copy link
Member

@victorjulien victorjulien commented Jun 4, 2024
edited
Loading

victorjulien added 12 commits June 4, 2024 11:48
@victorjulien
app-layer: minor code clarification
3148c1a 
'dir' was too generic, so indicate it's about the app-layer update direction.
@victorjulien
stream: minor code clarification
3f290ec 
'dir' was too generic, so indicate it's about the app-layer update direction.
@victorjulien
frames: fix bounds check
875cb7c
@victorjulien
frames: add FrameGetLastOpenByType
c117a95 
Getter for the most recent frame with unknown length (-1).
@victorjulien
app-layer/frames: add by type getter
3265fbe 
AppLayerFrameGetLastOpenByType: Returns the most recent frame with a type
with unknown length (-1).

Check if type is globally enabled first.
@victorjulien
detect/frames: avoid IPS rescanning
65fc145 
Make sure to only scan the data when the app layer has been updated
as well.

Ticket: OISF#6718.
@victorjulien
app-layer: flag flow for next packet in other dir
24a9ae2 
Add new flags to trigger FLOW_TS_APP_UPDATED/FLOW_TC_APP_UPDATED flags
to be set for the next packet in the relevant direction.

This allows for app relevant work to be done in the next packet in our
direction.
@victorjulien
detect/frames: inspect frames only in correct direction
777b414 
Inspect frames in the correct direction after they have been created.
@victorjulien
stream: process ASYNC in packet dir
fcb062e 
There will generally not be an opposing direction to handle
the app update.
@victorjulien
flow-worker: debug output about updates
f19ba62
@victorjulien
smtp/frames: initial frame support
3b65e05 
Adds the following frames:

  command_line
  data
  response_line

The *_line frames are per line, so in multi-line responses each line
will have it's own frame.

Ticket: OISF#4905.
@victorjulien
doc/userguide: add documentation for SMTP frames
fb0074f
@victorjulien victorjulien requested a review from jufajardini as a code owner June 4, 2024 10:32
@victorjulien victorjulien mentioned this pull request Jun 4, 2024
Closed
@codecov
Copy link

codecov bot commented Jun 4, 2024
edited
Loading

Codecov Report

Attention: Patch coverage is 97.91667% with 3 lines in your changes missing coverage. Please review.

Project coverage is 82.98%. Comparing base (a10c1f1) to head (fb0074f).

Additional details and impacted files 
@@            Coverage Diff             @@
##           master   #11229      +/-   ##
==========================================
+ Coverage   82.96%   82.98%   +0.01%     
==========================================
  Files         942      942              
  Lines      249246   249358     +112     
==========================================
+ Hits       206789   206921     +132     
+ Misses      42457    42437      -20
Flag Coverage Δ
fuzzcorpus 61.10% <69.44%> (+<0.01%) ⬆️
livemode 18.79% <7.69%> (-0.01%) ⬇️
pcap 44.32% <74.12%> (+0.03%) ⬆️
suricata-verify 61.66% <97.20%> (+0.03%) ⬆️
unittests 60.50% <41.66%> (-0.02%) ⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

jasonish
jasonish approved these changes Jun 4, 2024
View reviewed changes
Copy link
Member

@jasonish jasonish left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Doc updates look good.

@victorjulien victorjulien added this to the 8.0 milestone Jun 4, 2024
@victorjulien victorjulien mentioned this pull request Jun 4, 2024
Merged
@victorjulien
Copy link
Member Author

victorjulien commented Jun 5, 2024

Merged in #11236, thanks!

@victorjulien victorjulien deleted the smtp-frames/v22 branch June 8, 2024 07:30
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jasonish jasonish jasonish approved these changes

@jufajardini jufajardini Awaiting requested review from jufajardini

Assignees

No one assigned

Labels

None yet

Milestone

8.0

Development

Successfully merging this pull request may close these issues.

2 participants

@victorjulien @jasonish