Actions
Bug #5457
closedCounters are not initialized in all places.
Description
counter_alerts_overflow and counter_alerts_suppressed are only initialized in DetectEngineThreadCtxInit in detect-engine.c, but not in DetectEngineThreadCtxInitForReload.
i.e. once suricata rules are reload, these 2 counters would become invalid and writes to incorrect structure in StatsAddUI64. In fact, if one turns on debugging, the BUG_ON should trigger in StatsAddUI64.
Updated by Juliana Fajardini Reichow over 1 year ago
- Assignee changed from OISF Dev to Juliana Fajardini Reichow
Updated by Juliana Fajardini Reichow over 1 year ago
- Target version changed from TBD to 6.0.7
Updated by Juliana Fajardini Reichow over 1 year ago
- Target version changed from 6.0.7 to 7.0.0-beta1
- Affected Versions 5.0.9 added
- Label Needs backport to 5.0, Needs backport to 6.0 added
Updated by Juliana Fajardini Reichow over 1 year ago
- Copied to Bug #5459: Counters are not initialized in all places. (6.0.x backport) added
Updated by Juliana Fajardini Reichow over 1 year ago
- Affected Versions 5.0.10 added
- Affected Versions deleted (
5.0.9) - Label deleted (
Needs backport to 5.0)
Updated by Juliana Fajardini Reichow over 1 year ago
- Status changed from New to In Review
PR for review: https://github.com/OISF/suricata/pull/7641
Updated by Victor Julien over 1 year ago
- Status changed from In Review to Closed
Actions