output: skip files logging for ICMP packets

Ticket: OISF#5408 (cherry picked from commit f8bf581)
jasonish · Jul 7, 2022 · 2c7c7cf · 2c7c7cf
1 parent a71a474
commit 2c7c7cf
Showing 1 changed file with 4 additions and 0 deletions.
diff --git a/src/output-filedata.c b/src/output-filedata.c
@@ -238,6 +238,10 @@ static TmEcode OutputFiledataLog(ThreadVars *tv, Packet *p, void *thread_data)
     if (f == NULL || f->alstate == NULL) {
         SCReturnInt(TM_ECODE_OK);
     }
+    /* do not log for ICMP packets related to a TCP/UDP flow */
+    if (p->proto != IPPROTO_TCP && p->proto != IPPROTO_UDP) {
+        SCReturnInt(TM_ECODE_OK);
+    }
 
     const bool file_trunc = StreamTcpReassembleDepthReached(p);
     if (p->flowflags & FLOW_PKT_TOSERVER) {