aiden
/
suricata
mirror of https://github.com/OISF/suricata
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Set the ethernet header pointer. Without this, alert-unified-log will add an extra ethernet header to every alert logged.

Browse Source
remotes/origin/master-1.0.x
Jason Ish 15 years ago committed by Victor Julien
parent 565eab1f54
commit cc28284598
1 changed files with 5 additions and 5 deletions
Show Stats Download Patch File Download Diff File

10
src/decode-ethernet.c
Unescape Escape View File

@ -17,13 +17,13 @@ void DecodeEthernet(ThreadVars *tv, DecodeThreadVars *dtv, Packet *p, uint8_t *p
return;
}
EthernetHdr *ethh = (EthernetHdr *)pkt;
if (ethh == NULL)
p->ethh = (EthernetHdr *)pkt;
if (p->ethh == NULL)
return;
SCLogDebug("p %p pkt %p ether type %04x", p, pkt, ntohs(ethh->eth_type));
SCLogDebug("p %p pkt %p ether type %04x", p, pkt, ntohs(p->ethh->eth_type));
switch (ntohs(ethh->eth_type)) {
switch (ntohs(p->ethh->eth_type)) {
case ETHERNET_TYPE_IP:
//printf("DecodeEthernet ip4\n");
DecodeIPV4(tv, dtv, p, pkt + ETHERNET_HEADER_LEN,
@ -46,7 +46,7 @@ void DecodeEthernet(ThreadVars *tv, DecodeThreadVars *dtv, Packet *p, uint8_t *p
break;
default:
SCLogDebug("p %p pkt %p ether type %04x not supported", p,
pkt, ntohs(ethh->eth_type));
pkt, ntohs(p->ethh->eth_type));
}
return;

Write Preview
Loading…
Cancel
Save