Project

General

Profile

Actions
Copy link

Optimization #7430

open

dns: parse more than 255 name segments to find end of name

Added by Jason Ish 8 months ago. Updated 4 months ago.

Status:
Assigned
Priority:
Normal
Assignee:
Jason Ish
Target version:
9.0.0-beta1
Effort:
Difficulty:
Label:

Description

Currently if the DNS parser hits the 255 label limit with no pointer reached, and not end of name indicator, parsing will fail, as we don't yet know the end of the data. Per @Philippe Antoine we should just keep on parsing if not loop condition is hit - this will get us to the end of data.

Related issues 1 (0 open1 closed)

Blocked by Suricata - Security #7280: dns: quadratic complexity in logging and invalid json as outputClosedJason IshActions
Actions
Copy link
 #1

Updated by Jason Ish 8 months ago

  • Blocked by Security #7280: dns: quadratic complexity in logging and invalid json as output added
Actions
Copy link
 #2

Updated by Jason Ish 8 months ago

  • Subject changed from dns: keep parsing pass current iteration limit if not pointer has been reached to dns: parse more than 255 name segments to find end of name
Actions
Copy link
 #3

Updated by Jason Ish 7 months ago

  • Status changed from New to Assigned
  • Assignee changed from OISF Dev to Jason Ish
Actions
Copy link
 #4

Updated by Victor Julien 4 months ago

  • Target version changed from 8.0.0-beta1 to 9.0.0-beta1
Actions
Copy link

Also available in: Atom PDF