suricata

Commit Graph

Author	SHA1	Message	Date
Jason Ish	b8ce7f2885	mpls: check buffer length before peeking at next header Check that we have enough bytes before peaking into the MPLS packet payload. Redmine issue: https://redmine.openinfosecfoundation.org/issues/2884	6 years ago
Jason Ish	164fb71898	mpls: fix misaligned read Instead of casting the packet buffer to a uint32, memcpy it to avoid misaligned read error, as caught by the undefined behavior detector (ubsan). Redmine issue: https://redmine.openinfosecfoundation.org/issues/2903	6 years ago
Maurizio Abba	55b14f3721	decode: set pktlen of decode handler to uint32 Change the decode handler signature to increase the size of its decode handler, from uint16 to uint32. This is necessary to let suricata use interfaces with mtu > 65535 (ex: lo interface has default size 65536). It's necessary to change several primitive for Packet manipulation, to unify the parameter "packet length" whenever we are before IP decoding. Add tests before calling DecodeIPVX function to avoid a possible integer overflow over the len parameter.	7 years ago
Victor Julien	11be9bd971	mingw: add SCNtohl and SCNtohs macro's On MinGW the result of ntohl needs to be casted to uint32_t and the result of ntohs to uint16_t. To avoid doing this everywhere add SCNtohl and SCNtohs macros.	7 years ago
Jason Ish	796dd5223b	tests: no longer necessary to provide successful return code 1 pass, 0 is fail.	9 years ago
Victor Julien	1c0b4ee0ae	counters: s/SCPerfCounterIncr/StatsIncr/g	10 years ago
Victor Julien	e9b067c1eb	counters: make increment call take threadvars This hides the implementation from the caller.	10 years ago
Victor Julien	9a8bff7d96	counters: threadvars s/sc_perf_pca/perf_private_ctx/g	10 years ago
Jason Ish	2d12209194	Use ENGINE_SET_INVALID_EVENT when the packet is too small for an MPLS header, and when the payload type can not be determined.	11 years ago
Jason Ish	65f40cbeaa	Don't default to ethernet, ethernet should be preceded by a pseudowire. If the payload type can't be determined, raise an alert.	11 years ago
Jason Ish	348b0e0e9f	Set decoder events for labels that shouldn't be seen on the wire. Add unit tests to test for mpls decoder events.	11 years ago
Jason Ish	66a321ca2d	Handle encapsulated ethernet without a PW by defaulting to ethernet if a fall back.	11 years ago
Jason Ish	025342dc6c	Handle explicitly IPv6 and IPv6 labels as well as encapsulated ethernet.	11 years ago
Jason Ish	3e3ab2dc9f	Add MPLS counter. Check length before decoding each label.	11 years ago
Jason Ish	7642489874	Basic MPLS decoder.	11 years ago

15 Commits (8692aac97ff73ee4aca29fa620ef667b16361504)