Snort mailing list archives
[PATCH]: Count discards in DecodeTCP (src/decode.c)
From: <Joshua.Kinard () us-cert gov>
Date: Fri, 12 Aug 2011 20:00:56 -0500
Hi snort-devel, In DecodeUDP, there is a check for Teredo/ESP, and if found, the UDP header is set to NULL and the 'discards' and 'udisc' counts are incremented in 'pc' (via a call to PopUdp()). In DecodeTCP, in the same check for Teredo/ESP, the TCP header is set to NULL, but neither 'discards' nor 'tdisc' are incremented. The attached patch fixes this. Cheers!, --J
Attachment:
snort-tcp-count-discards.patch
Description: snort-tcp-count-discards.patch
------------------------------------------------------------------------------ FREE DOWNLOAD - uberSVN with Social Coding for Subversion. Subversion made easy with a complete admin console. Easy to use, easy to manage, easy to install, easy to extend. Get a Free download of the new open ALM Subversion platform now. http://p.sf.net/sfu/wandisco-dev2dev
_______________________________________________ Snort-devel mailing list Snort-devel () lists sourceforge net https://lists.sourceforge.net/lists/listinfo/snort-devel
Current thread:
- [PATCH]: Count discards in DecodeTCP (src/decode.c) Joshua.Kinard (Aug 12)
- Re: [PATCH]: Count discards in DecodeTCP (src/decode.c) Russ Combs (Aug 15)
- Re: [PATCH]: Count discards in DecodeTCP (src/decode.c) Joshua.Kinard (Aug 15)
- Re: [PATCH]: Count discards in DecodeTCP (src/decode.c) Russ Combs (Aug 15)