git.ipfire.org Git - thirdparty/suricata.git/commit

author	Juliana Fajardini <jufajardini@oisf.net>
	Wed, 17 Aug 2022 14:39:33 +0000 (11:39 -0300)
committer	Juliana Fajardini <jufajardini@oisf.net>
	Tue, 30 Aug 2022 02:13:45 +0000 (23:13 -0300)
commit	aa5bb2c329aff59b7811b43258ffd4d95fe7364f
tree	3c6845d12c2d84593df623feb8b7803c7b677ffc	tree
parent	242b8f7d65498f7b7b33cf852a79206484c269b1	commit \| diff

stream: add exception policy for midstream flows

This allows to set a midstream-policy that can:
- fail closed (stream.midstream-policy=drop-flow)
- fail open (stream.midstream-policy=pass-flow)
- bypass stream (stream.midstream-policy=bypass)
- do nothing (default behavior)

Usage and behavior:

If stream.midstream-policy is set then if Suricata identifies a midstream flow
it will apply the corresponding action associated with the policy.

No setting means Suricata will not apply such policies, either inspecting the
flow (if stream.midstream=true) or ignoring it stream.midstream=false.

Task #5468

src/decode.c		diff \| blob \| blame \| history
src/decode.h		diff \| blob \| blame \| history
src/stream-tcp.c		diff \| blob \| blame \| history
src/stream-tcp.h		diff \| blob \| blame \| history