]> git.ipfire.org Git - thirdparty/suricata.git/commit
projects / thirdparty / suricata.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: f3b2e96) | patch
eve: revert ethernet addresses when needed 11217/head
authorEric Leblond <el@stamus-networks.com>
Sun, 15 Oct 2023 13:39:40 +0000 (15:39 +0200)
committerPhilippe Antoine <pantoine@oisf.net>
Sun, 2 Jun 2024 19:54:33 +0000 (21:54 +0200)
commite58f3185c5b14fec93cf85e439fa15a2526ea0b0
tree2872500dfb2ea34ce71e96370039c744a78163cdtree
parentf3b2e9618d81147909d9815d7503ba6f33babcc0commit | diff
eve: revert ethernet addresses when needed

EVE logging has a direction parameter that can cause the logging
of an application layer to be done in a direction that is not linked
to the packet. As a result the source IP addres could be assigned the
MAC address of the destination IP and reverse.

This patch addresses this by propagating the direction to the ethernet
logging function and using it there to define the correct mapping.

Issue #6405

(cherry picked from commit 21916b974304998d38cfcafe543ee7b94e268daf)
src/output-json-flow.c diff | blob | blame | history
src/output-json-netflow.c diff | blob | blame | history
src/output-json.c diff | blob | blame | history
src/output-json.h diff | blob | blame | history
Mirror of https://github.com/OISF/suricata.git