Update DTLS error handling

DTLS now only outputs protocol violations once it saw something that looked like a DTLS connection (at least a client hello). Before the danger that it misinterprets something is too high. It has a configurable number of invalid packets that it can skip over (because other protocols might be interleaved with the connection) and a maximum amount of Protocol violations that it outputs because of wrong packet versions.
2025-10-12 19:48:20 +00:00 · 2019-04-04 12:27:42 -07:00 · 2019-04-04 12:27:42 -07:00 · 7c48aad582
commit 7c48aad582
parent 99c89d55d6
11 changed files with 74 additions and 14 deletions
--- a/testing/btest/Baseline/coverage.bare-load-baseline/canonified_loaded_scripts.log
+++ b/testing/btest/Baseline/coverage.bare-load-baseline/canonified_loaded_scripts.log
@ -3,7 +3,7 @@
 #empty_field	(empty)
 #unset_field	-
 #path	loaded_scripts
-#open	2018-06-08-16-37-15
+#open	2019-04-04-19-22-03
 #fields	name
 #types	string
 scripts/base/init-bare.bro
@ -149,6 +149,7 @@ scripts/base/init-frameworks-and-bifs.bro
    build/scripts/base/bif/plugins/Bro_SSL.types.bif.bro
    build/scripts/base/bif/plugins/Bro_SSL.events.bif.bro
    build/scripts/base/bif/plugins/Bro_SSL.functions.bif.bro
+    build/scripts/base/bif/plugins/Bro_SSL.consts.bif.bro
    build/scripts/base/bif/plugins/Bro_SteppingStone.events.bif.bro
    build/scripts/base/bif/plugins/Bro_Syslog.events.bif.bro
    build/scripts/base/bif/plugins/Bro_TCP.events.bif.bro
@ -179,4 +180,4 @@ scripts/base/init-frameworks-and-bifs.bro
    build/scripts/base/bif/plugins/Bro_SQLiteWriter.sqlite.bif.bro
 scripts/policy/misc/loaded-scripts.bro
  scripts/base/utils/paths.bro
-#close	2018-06-08-16-37-15
+#close	2019-04-04-19-22-03