[OISF/outreachy] Claim new issue

[Shivani Bhardwaj]

On Wed, Oct 14, 2020 at 7:45 PM Shivani Bhardwaj
<sbhardwaj at openinfosecfoundation.org> wrote:
>
> On Wed, Oct 14, 2020 at 4:59 PM Sumera Priyadarsini
> <sylphrenadin at gmail.com> wrote:
> >
> >
> >
> > On Wed, Oct 14, 2020 at 12:27 PM Shivani Bhardwaj <sbhardwaj at openinfosecfoundation.org> wrote:
> >>
> >> On Wed, Oct 14, 2020 at 12:23 PM Sumera Priyadarsini via Outreachy
> >> <outreachy at lists.openinfosecfoundation.org> wrote:
> >> >
> >> > Hi all,
> >> >
> >> > Can I claim issue #2795(https://redmine.openinfosecfoundation.org/issues/2795) ?
> >> >
> >> Yes, please. Please make sure to assign it to yourself on redmine.
> >>
> >> > Regards,
> >> > Sumera
> >> >
> >> >
> >> > _______________________________________________
> >> > Outreachy mailing list
> >> > Outreachy at lists.openinfosecfoundation.org
> >> > https://lists.openinfosecfoundation.org/listinfo/outreachy
> >>
> >>
> > Hi,
> >
> > I tried reproducing the bug but I am getting a few errors with setting somethings up.
> >
> > How do I install suricata-asan and generate pcap files ? If it is okay, could you direct me to some
> > resources that would help me to get more context for this issue?
> >
> You'll have to install libasan as per your distro and enable it for
> Suricata by doing
>
> ./configure CFLAGS="-fsanitize=address"
>
You'd also need to export the following two variables:

export ac_cv_func_malloc_0_nonnull=yes
export ac_cv_func_realloc_0_nonnull=yes

else you would probably see errors while doing make.

> This would make a simple setup with ASAN enabled.
>
> It seems like this issue is about processing an empty pcap so you just
> need an empty file to try it out.
> touch any.pcap
> suricata -c <path of conf> -r any.pcap
>
> But, for future reference, if you want to test with *any* valid pcap,
> you can use one from suricata-verify tests. If you want to generate a
> pcap on your own (which does not seem to happen very often), you can
> do it using Wireshark. You'll have to generate the traffic on your own
> for this. For most of the cases though, you'd look for real world
> network traffic pcaps from any online sources.
>
> Let me know if you have any other questions about this issue.
>
> > Also, can I mark the previous issue I was working on as resolved in redmine, or should I wait till the PR is merged?
> >
> No. Please let it be. Someone from the team shall close it once your
> PR is merged into master.
>
>
> > Regards,
> > Sumera
> >>
> >>
> >> --
> >> Shivani
> >> Junior Developer, OISF
>
>
>
> --
> Shivani
> Junior Developer, OISF



-- 
Shivani
Junior Developer, OISF