Fix a couple of problems with signature matching.

- IPv4 CIDR specifications didn't work with dst-ip/src-ip. - The "payload-size" condition was unreliable with UDP traffic.
2025-10-09 18:18:19 +00:00 · 2016-10-19 13:48:17 -07:00 · 2016-10-19 13:48:17 -07:00 · 5cf2320fbc
commit 5cf2320fbc
parent bd0a374c87
9 changed files with 63 additions and 6 deletions
--- a/src/RuleCondition.cc
+++ b/src/RuleCondition.cc
@ -89,6 +89,10 @@ bool RuleConditionPayloadSize::DoMatch(Rule* rule, RuleEndpointState* state,
 		// on the pure rules now.
 		return false;

+	if ( state->PayloadSize() == 0 )
+		// We are interested in the first non-empty chunk.
+		return false;
+
 	uint32 payload_size = uint32(state->PayloadSize());

 	switch ( comp ) {