suricata
suricata copied to clipboard
Published
20 hours ago •
OISF
OISF
Xdp tunnel 7674 v6.4
Link to ticket: https://redmine.openinfosecfoundation.org/issues/ https://redmine.openinfosecfoundation.org/issues/7674
Describe changes:
- on top of https://github.com/OISF/suricata/pull/13302
- introduces configurable tunnel_id to distinguish same-looking (same 5-tuple) flows encapsulated in different tunnels
- adds a config option to "skip" the packets that are not part of a tunnel
- handle xdp bypass of these encapsulated flows
- use this new tunnel_id as a multi-tenant selector
Provide values to any of the below to override the defaults.
SV_BRANCH=https://github.com/OISF/suricata-verify/pull/2522
https://github.com/OISF/suricata/pull/13323 with needed rebase and nits from review fixed
Codecov Report
Attention: Patch coverage is 58.47176% with 125 lines in your changes missing coverage. Please review.
Project coverage is 83.24%. Comparing base (
278a9c3) to head (29bfadd). Report is 213 commits behind head on master.
Additional details and impacted files
@@ Coverage Diff @@
## master #13352 +/- ##
==========================================
- Coverage 83.42% 83.24% -0.18%
==========================================
Files 1004 1005 +1
Lines 273246 275703 +2457
==========================================
+ Hits 227952 229511 +1559
- Misses 45294 46192 +898
| Flag | Coverage Δ | |
|---|---|---|
| fuzzcorpus | 62.00% <30.76%> (-0.03%) |
:arrow_down: |
| livemode | 18.72% <10.70%> (-0.26%) |
:arrow_down: |
| pcap | 45.08% <31.10%> (+0.14%) |
:arrow_up: |
| suricata-verify | 65.04% <56.72%> (-0.01%) |
:arrow_down: |
| unittests | 58.69% <18.24%> (-0.53%) |
:arrow_down: |
Flags with carried forward coverage won't be shown. Click here to find out more.
:rocket: New features to boost your workflow:
- :snowflake: Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
![codecov[bot] avatar](https://avatars.githubusercontent.com/in/254?v=4 "Published by a pub.dev verified publisher"){kind=small}
