Project

General

Profile

Actions
Copy link

Feature #5826

open
JI VJ

Feature #4174: tracking: app-layer frame inspection support

Feature #4988: frames: logging improvements

frames: logging of events set on frames

Feature #5826: frames: logging of events set on frames

Added by Jason Ish about 3 years ago. Updated 6 months ago.

Status:
Assigned
Priority:
Normal
Assignee:
Victor Julien
Target version:
9.0.0-beta1
Effort:
Difficulty:
Label:

Description

Suricata 7.0.0 added frame support with the ability to set events on frames, which is useful for app-layer events when no transaction has been created. However the events are not logged even though the API is seeing some use (for example: https://github.com/OISF/suricata/blob/suricata-7.0.0-beta1/rust/src/smb/smb.rs#L1420),

VJ Updated by Victor Julien about 3 years ago Actions
Copy link
 #1

  • Parent task set to #4988

JF Updated by Juliana Fajardini Reichow over 2 years ago Actions
Copy link
 #3

Also mentioned at https://github.com/OISF/suricata/pull/9404#discussion_r1311764591
- to remember we should take care of this for PGSQL, when adding frame support.

JF Updated by Juliana Fajardini Reichow over 2 years ago Actions
Copy link
 #4

  • Target version changed from TBD to 8.0.0-beta1

Setting a version so it won't fall off our radar.

VJ Updated by Victor Julien almost 2 years ago Actions
Copy link
 #5

  • Assignee changed from OISF Dev to Victor Julien

VJ Updated by Victor Julien about 1 year ago Actions
Copy link
 #6

  • Target version changed from 8.0.0-beta1 to 9.0.0-beta1

VJ Updated by Victor Julien 6 months ago Actions
Copy link
 #7

  • Status changed from New to Assigned
Actions
Copy link

Also available in: PDF Atom