Project

General

Profile

Actions
Copy link

Bug #5072

closed
VJ JL

detect/ip_proto: inconsistent behavior when specifying protocol by string

Bug #5072: detect/ip_proto: inconsistent behavior when specifying protocol by string

Added by Victor Julien about 4 years ago. Updated about 4 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Jeff Lucovsky
Target version:
TBD
Affected Versions:
Effort:
Difficulty:
Label:
Needs backport to 5.0, Needs backport to 6.0

Description

ip_proto:TCP will use getprotobyname, which may not work depending on the OS. E.g. in a docker Alpine it fails. We should probably just use a built-in table.

Related issues 3 (0 open3 closed)

Related to Suricata - Bug #4267: output: don't use /etc/protocolsClosedJeff LucovskyActions
Copied to Suricata - Bug #5114: detect/ip_proto: inconsistent behavior when specifying protocol by stringClosedShivani BhardwajActions
Copied to Suricata - Bug #5115: detect/ip_proto: inconsistent behavior when specifying protocol by stringClosedJeff LucovskyActions

JL Updated by Jeff Lucovsky about 4 years ago Actions
Copy link
 #1

  • Status changed from New to Assigned
  • Assignee changed from OISF Dev to Jeff Lucovsky

JL Updated by Jeff Lucovsky about 4 years ago Actions
Copy link
 #2

  • Related to Bug #4267: output: don't use /etc/protocols added

JL Updated by Jeff Lucovsky about 4 years ago Actions
Copy link
 #3

  • Status changed from Assigned to In Review

JL Updated by Jeff Lucovsky about 4 years ago Actions
Copy link
 #4

  • Copied to Bug #5114: detect/ip_proto: inconsistent behavior when specifying protocol by string added

JL Updated by Jeff Lucovsky about 4 years ago Actions
Copy link
 #5

  • Copied to Bug #5115: detect/ip_proto: inconsistent behavior when specifying protocol by string added

JL Updated by Jeff Lucovsky about 4 years ago Actions
Copy link
 #6

  • Status changed from In Review to Closed
Actions
Copy link

Also available in: PDF Atom