bypass: really bypass udp flow from first packet

author Philippe Antoine <pantoine@oisf.net>

Thu, 30 May 2024 07:56:43 +0000 (09:56 +0200)

committer Victor Julien <victor@inliniac.net>

Sun, 7 Jul 2024 05:10:41 +0000 (07:10 +0200)
author Philippe Antoine <pantoine@oisf.net>
Thu, 30 May 2024 07:56:43 +0000 (09:56 +0200)
committer Victor Julien <victor@inliniac.net>
Sun, 7 Jul 2024 05:10:41 +0000 (07:10 +0200)
diff --git a/src/flow.c b/src/flow.c

index b61823efd0ee07e129fa46a7d38e7bde50506677..9e910c4f05f920225de3080d47ee51ef41c2d836 100644 (file)
--- a/src/flow.c
+++ b/src/flow.c
@@ -507,7 +507,13 @@ void FlowHandlePacketUpdate(Flow *f, Packet *p, ThreadVars *tv, DecodeThreadVars
          SCLogDebug("pkt %p FLOW_PKT_ESTABLISHED", p);
          p->flowflags |= FLOW_PKT_ESTABLISHED;
  
-        FlowUpdateState(f, FLOW_STATE_ESTABLISHED);
+        if (
+#ifdef CAPTURE_OFFLOAD
+                (f->flow_state != FLOW_STATE_CAPTURE_BYPASSED) &&
+#endif
+                (f->flow_state != FLOW_STATE_LOCAL_BYPASSED)) {
+            FlowUpdateState(f, FLOW_STATE_ESTABLISHED);
+        }
      }
  
      if (f->flags & FLOW_ACTION_DROP) {
author	Philippe Antoine <pantoine@oisf.net>
	Thu, 30 May 2024 07:56:43 +0000 (09:56 +0200)
committer	Victor Julien <victor@inliniac.net>
	Sun, 7 Jul 2024 05:10:41 +0000 (07:10 +0200)