Skip to content

app-layer: check ipproto enabled setting first#14878

Open
inashivb wants to merge 1 commit intoOISF:mainfrom
inashivb:appproto-enabling/v9
Open

app-layer: check ipproto enabled setting first#14878
inashivb wants to merge 1 commit intoOISF:mainfrom
inashivb:appproto-enabling/v9

Conversation

@inashivb
Copy link
Member

@inashivb inashivb commented Feb 23, 2026

Previous PR: #14802

Link to ticket: https://redmine.openinfosecfoundation.org/issues/8205

Changes since v8:

  • change subsystem affected in commit message
  • rebased on top of latest main

SV_BRANCH=OISF/suricata-verify#2912

@inashivb
app-layer: check ipproto enabled setting first
e9077c0 
If the key `app-layer.protocols.PROTO.enabled` is present, the protocol
is enabled for all carrier protocols. This is not ideal.
Only if the key `app-layer.protocols.PROTO.enabled` is missing, an
attempt is made to look for a setting specific to the ipproto passed
at the time of registration e.g.
`app-layer.protocols.PROTO.udp.enabled`.

By default, check for carrier proto specific setting. If it is not
found, then fall back to the generic setting.
Issue a warning in case an inconsistent combination of global and
ipproto specific setting is found.

Bug 8205
@suricata-qa
Copy link

suricata-qa commented Feb 23, 2026

Information: QA ran without warnings.

Pipeline = 29829

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jufajardini jufajardini Awaiting requested review from jufajardini jufajardini is a code owner

@victorjulien victorjulien Awaiting requested review from victorjulien victorjulien is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@inashivb @suricata-qa