Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Protodetect probing mask32 7437 v3 #12403

Open
wants to merge 2 commits into
base: master
Choose a base branch
from

Conversation

catenacyber
Copy link
Contributor

Link to ticket: https://redmine.openinfosecfoundation.org/issues/
https://redmine.openinfosecfoundation.org/issues/7495
https://redmine.openinfosecfoundation.org/issues/7469

(blocking https://redmine.openinfosecfoundation.org/issues/7437 )

Describe changes:

  • protocol detection: finish probing parser asap
  • smtp: improve probing parser in case of TLS first from client

SV_BRANCH=OISF/suricata-verify#2200

#12307 with simpler change that will be backported

This will require a QA baseline update as highlighted by the SV test

Ticket: 7495

We want to finish also if we tested all the expected protocols
in mask, or if we tested even more.

There can be one more protocol coming from pe0, which can be
the protocol already found in the other direction.
@catenacyber catenacyber added the needs baseline update QA will need a new base line label Jan 16, 2025
Copy link

codecov bot commented Jan 16, 2025

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 80.63%. Comparing base (078c646) to head (389eb49).

Additional details and impacted files
@@            Coverage Diff             @@
##           master   #12403      +/-   ##
==========================================
- Coverage   80.63%   80.63%   -0.01%     
==========================================
  Files         917      917              
  Lines      258687   258687              
==========================================
- Hits       208601   208590      -11     
- Misses      50086    50097      +11     
Flag Coverage Δ
fuzzcorpus 56.81% <100.00%> (+<0.01%) ⬆️
livemode 19.39% <0.00%> (ø)
pcap 44.26% <100.00%> (-0.01%) ⬇️
suricata-verify 63.25% <100.00%> (+0.02%) ⬆️
unittests 58.51% <50.00%> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

@suricata-qa
Copy link

WARNING:

field baseline test %
SURI_TLPW1_stats_chk
.app_layer.error.tls.parser 1153 1204 104.42%
SURI_TLPR1_stats_chk
.uptime 638 666 104.39%
.app_layer.tx.ftp 95972 102928 107.25%
.ftp.memuse 3102 10647 343.23%

Pipeline 24246

@victorjulien victorjulien added this to the 8.0 milestone Jan 21, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
needs baseline update QA will need a new base line
Development

Successfully merging this pull request may close these issues.

3 participants