From 54f3e183c87fa3694a25b3116c724222fc95676b Mon Sep 17 00:00:00 2001 From: Christopher Faulet Date: Wed, 29 Jul 2020 12:00:23 +0200 Subject: [PATCH] BUG/MINOR: tcp-rules: Set the inspect-delay when a tcp-response action yields On a tcp-response content ruleset evaluation, the inspect-delay is engaged when rule's conditions are not validated but not when the rule's action yields. This patch must be backported to all supported versions. --- src/tcp_rules.c | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/src/tcp_rules.c b/src/tcp_rules.c index 4db7dec28..d80c27ccf 100644 --- a/src/tcp_rules.c +++ b/src/tcp_rules.c @@ -366,7 +366,9 @@ resume_execution: missing_data: channel_dont_close(rep); - s->current_rule = rule; + /* just set the analyser timeout once at the beginning of the response */ + if (!tick_isset(rep->analyse_exp) && s->be->tcp_rep.inspect_delay) + rep->analyse_exp = tick_add(now_ms, s->be->tcp_rep.inspect_delay); DBG_TRACE_DEVEL("waiting for more data", STRM_EV_STRM_ANA|STRM_EV_TCP_ANA, s); return 0;