output: skip files logging for ICMP packets

Ticket: OISF#5408
benignbala · Nov 12, 2022 · d8dfa40 · d8dfa40
1 parent 1d352ba
commit d8dfa40
Showing 1 changed file with 4 additions and 0 deletions.
diff --git a/src/output-filedata.c b/src/output-filedata.c
@@ -229,6 +229,10 @@ static TmEcode OutputFiledataLog(ThreadVars *tv, Packet *p, void *thread_data)
     if (f == NULL || f->alstate == NULL) {
         SCReturnInt(TM_ECODE_OK);
     }
+    /* do not log for ICMP packets related to a TCP/UDP flow */
+    if (p->proto != IPPROTO_TCP && p->proto != IPPROTO_UDP) {
+        SCReturnInt(TM_ECODE_OK);
+    }
 
     const bool file_trunc = StreamTcpReassembleDepthReached(p);
     if (p->flowflags & FLOW_PKT_TOSERVER) {