log_events(p);
Active::apply_delayed_action(p);
+ p->context->post_detection();
// clear closed sessions here after inspection since non-stream
// inspectors may depend on flow information
const IpsContext* c = Snort::get_switcher()->get_next();
c->packet->release_helpers();
- p->context->post_detection();
Snort::get_switcher()->complete();
}
#define STREAM_STATE_NO_PICKUP 0x2000
#define STREAM_STATE_BLOCK_PENDING 0x4000
-#define FLOW_IS_OFFLOADED 0x01
-#define FLOW_WAS_OFFLOADED 0x02 // FIXIT-L debug only
-
class BitOp;
class FlowHAState;
class Session;
{ return disable_inspect; }
bool is_offloaded() const
- { return flow_flags & FLOW_IS_OFFLOADED; }
+ { return offloads_pending; }
void set_offloaded()
- { flow_flags |= (FLOW_IS_OFFLOADED|FLOW_WAS_OFFLOADED); }
+ {
+ assert(offloads_pending < 0xFF);
+
+ offloads_pending++;
+ }
void clear_offloaded()
- { flow_flags &= ~FLOW_IS_OFFLOADED; }
+ {
+ assert(offloads_pending);
+
+ offloads_pending--;
+ }
public: // FIXIT-M privatize if possible
// fields are organized by initialization and size to minimize
PktType pkt_type; // ^^
// these fields are always set; not zeroed
- uint64_t flow_flags; // FIXIT-H required to ensure atomic?
Flow* prev, * next;
Inspector* ssn_client;
Inspector* ssn_server;
uint8_t outer_client_ttl, outer_server_ttl;
uint8_t response_count;
- bool disable_inspect;
private:
+ uint8_t offloads_pending;
+ bool disable_inspect;
+
void clean();
};
if (flow->session_state & STREAM_STATE_CLOSED)
{
assert(flow_con);
- flow_con->delete_flow(flow, PruneReason::NONE);
+
+ // this will get called on each onload
+ // eventually all onloads will occur and delete will be called
+ if ( not flow->is_offloaded() )
+ flow_con->delete_flow(flow, PruneReason::NONE);
+
p->flow = nullptr;
}
else if (flow->session_state & STREAM_STATE_BLOCK_PENDING)
projects / thirdparty / snort3.git / commitdiff
