mirror of https://github.com/OISF/suricata
cybersecurityidsintrusion-detection-systemintrusion-prevention-systemipsnetwork-monitornetwork-monitoringnsmsecuritysuricatathreat-hunting
You cannot select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
9f52bdd1e5
The flow timeout mechanism called both from the flow manager at run time and at shutdown creates pseudo packets. For this it has it's own packet pool, which can be depleted if the timeout logic is faster than the packet processing threads. In this case the flow timeout would enter a wait loop. The problem however, is that this wait loop would happen while keeping a flow locked. This could lead to a race condition when the packet thread(s) are waiting for the lock that the flow manager has. This patch introduces a new packet pool call 'PacketPoolWaitForN', meant to make sure that the thread's packet pool has at least N available packets. The flow timeout paths use this to make sure enough packets are available *before* grabbing the flow lock. If there aren't enough packets available yet, the wait happens before the lock as well. This still means the wait can happen while the flow hash row is locked, so we do make sure some more packets are available when entering that. But perhaps in the future we need a more precise logic there as well. |
10 years ago | |
|---|---|---|
| benches | ||
| contrib | 10 years ago | |
| doc | 11 years ago | |
| lua | 11 years ago | |
| m4 | ||
| qa | 10 years ago | |
| rules | 10 years ago | |
| scripts | 10 years ago | |
| src | 10 years ago | |
| .gitignore | 12 years ago | |
| .travis.yml | 11 years ago | |
| COPYING | ||
| ChangeLog | 10 years ago | |
| LICENSE | ||
| Makefile.am | 11 years ago | |
| Makefile.cvs | ||
| acsite.m4 | ||
| autogen.sh | ||
| classification.config | ||
| config.rpath | ||
| configure.ac | 10 years ago | |
| doxygen.cfg | 11 years ago | |
| reference.config | 11 years ago | |
| suricata.yaml.in | 10 years ago | |
| threshold.config | ||