suricata icon indicating copy to clipboard operation
suricata copied to clipboard

Published 20 hours ago verified publisher icon OISF

Dns feature 7011 v3

Open scrivs86 opened this issue 3 weeks ago • 3 comments

  • [x] I have read the contributing guide lines at https://docs.suricata.io/en/latest/devguide/contributing/contribution-process.html
  • [x] I have signed the Open Information Security Foundation contribution agreement at https://suricata.io/about/contribution-agreement/ (note: this is only required once)
  • [ ] I have updated the user guide (in doc/userguide/) to reflect the changes made (if applicable)
  • [x] I have created a ticket at https://redmine.openinfosecfoundation.org/projects/suricata/issues (if applicable)

Link to ticket: https://redmine.openinfosecfoundation.org/issues/7011

Describe changes:

  • Extend DNS parsing to include "additional" section.
  • Add logging of DNS additional section.
  • Modify dns schema to support additional section.
  • Add DNSRData type for additional sections of type "OPT". Extend parsing to populate struct.
  • Address feedback from previous PR.

Replaces: https://github.com/OISF/suricata/pull/11166

Provide values to any of the below to override the defaults.

SV_BRANCH=https://github.com/OISF/suricata-verify/pull/1895

scrivs86 avatar Jun 06 '24 15:06 scrivs86