git.ipfire.org Git - thirdparty/suricata.git/commit

]> git.ipfire.org Git - thirdparty/suricata.git/commit

projects / thirdparty / suricata.git / commit

author	Victor Julien <vjulien@oisf.net>
	Thu, 13 Feb 2025 13:30:39 +0000 (14:30 +0100)
committer	Victor Julien <vjulien@oisf.net>
	Mon, 17 Feb 2025 19:55:04 +0000 (20:55 +0100)
commit	9516f0a408e5ae37605cb54e73580c83035667ec
tree	d0bd119a805380c83128196cb739d7678d5f00cb	tree
parent	0bc09ea2a35f846703da4c7222309f0648a0278b	commit \| diff

tls: more permissive empty data eof check

If not all data is ACK'd during the FIN session shutdown, the last calls
to the parser can be with a non-NULL data pointer, but a input length of
0. This wasn't considered by the EOF check, which then lead to it being
seen as an error. No event was raised, but the tls error stats were
incremented.

Bug: #7554.
(cherry picked from commit 471bde442680cd22f4ca9493da7a824dfb8f8197)

src/app-layer-ssl.c

diff | blob | blame | history

Mirror of https://github.com/OISF/suricata.git

RSS Atom