git.ipfire.org Git - thirdparty/suricata.git/commit

]> git.ipfire.org Git - thirdparty/suricata.git/commit

projects / thirdparty / suricata.git / commit

author	Victor Julien <vjulien@oisf.net>
	Thu, 13 Feb 2025 13:30:39 +0000 (14:30 +0100)
committer	Victor Julien <victor@inliniac.net>
	Mon, 17 Feb 2025 06:31:27 +0000 (07:31 +0100)
commit	471bde442680cd22f4ca9493da7a824dfb8f8197
tree	641b7c103f0ba7b312cd6cf708990146a4ec990a	tree
parent	c861685e2865a2e7e577fc4bb55d067144e613bc	commit \| diff

tls: more permissive empty data eof check

If not all data is ACK'd during the FIN session shutdown, the last calls
to the parser can be with a non-NULL data pointer, but a input length of
0. This wasn't considered by the EOF check, which then lead to it being
seen as an error. No event was raised, but the tls error stats were
incremented.

Bug: #7554.

src/app-layer-ssl.c

diff | blob | blame | history

Mirror of https://github.com/OISF/suricata.git

RSS Atom