Pull request #3771: build: generate and tag 3.1.56.0

Merge in SNORT/snort3 from ~PRBG/snort3:build_3.1.56.0 to master

Squashed commit of the following:

commit 42baa9b03a8293dac46f75195a512c52ceffa0bc
Author: Priyanka Gurudev <prbg@cisco.com>
Date:   Wed Feb 22 20:18:39 2023 -0500

    build: generate and tag 3.1.56.0

diff --git a/CMakeLists.txt b/CMakeLists.txt
index 787a17069303b58be274423ba478b2207395d3b8..f8322fe2b59de6a572eff58895aeea3633e98b0b 100644 (file)
--- a/CMakeLists.txt
+++ b/CMakeLists.txt
@@ -3,7 +3,7 @@ project (snort CXX C)
 
 set (VERSION_MAJOR 3)
 set (VERSION_MINOR 1)
-set (VERSION_PATCH 55)
+set (VERSION_PATCH 56)
 set (VERSION_SUBLEVEL 0)
 set (VERSION "${VERSION_MAJOR}.${VERSION_MINOR}.${VERSION_PATCH}.${VERSION_SUBLEVEL}")
 

diff --git a/ChangeLog.md b/ChangeLog.md
index 0d3eeaf3c70c2302c5bab69b369b80cde2fc3954..798ddb01bda82b94bd75ba3e8e420f75f29ef799 100644 (file)
--- a/ChangeLog.md
+++ b/ChangeLog.md
@@ -1,3 +1,12 @@
+2023-02-22: 3.1.56.0
+
+* appid: add validation for rpcbind universal address
+* appid: merge cname pattern matchers with ssl pattern matchers
+* configure: fix typo in jemalloc with tcmalloc error message
+* copyright: update for year 2023
+* doc: update sd_pattern docs after obfuscation changes
+* sd_pattern: keep obfuscation blocks per buffer
+
 2023-02-08: 3.1.55.0
 
 * appid: first packet detector creation support in appid detector builder script

diff --git a/doc/reference/snort_reference.text b/doc/reference/snort_reference.text
index e6e6e6d7daf869c40e9a7c603db427f78d0c1534..27db95f72d605517306e749782f3ca8d0b4fe76a 100644 (file)
--- a/doc/reference/snort_reference.text
+++ b/doc/reference/snort_reference.text
@@ -8,7 +8,7 @@ Snort 3 Reference Manual
 The Snort Team
 
 Revision History
-Revision 3.1.55.0 2023-02-08 15:37:08 EST TST
+Revision 3.1.56.0 2023-02-22 17:01:46 EST TST
 
 ---------------------------------------------------------------------
 

diff --git a/doc/upgrade/snort_upgrade.text b/doc/upgrade/snort_upgrade.text
index b802a824e1f97bee28c7070b817d32f4a970d522..1bd43b6ca2776a02a80a1d43649386c5e83ec4ab 100644 (file)
--- a/doc/upgrade/snort_upgrade.text
+++ b/doc/upgrade/snort_upgrade.text
@@ -8,7 +8,7 @@ Snort 3 Upgrade Manual
 The Snort Team
 
 Revision History
-Revision 3.1.55.0 2023-02-08 15:38:13 EST TST
+Revision 3.1.56.0 2023-02-22 17:02:53 EST TST
 
 ---------------------------------------------------------------------
 

diff --git a/doc/user/snort_user.text b/doc/user/snort_user.text
index 83d8158100c7a2d5198c1ea7ef82a408c4b3fec7..b0e74676014337e117e3340419fc3687ddb0c79e 100644 (file)
--- a/doc/user/snort_user.text
+++ b/doc/user/snort_user.text
@@ -8,7 +8,7 @@ Snort 3 User Manual
 The Snort Team
 
 Revision History
-Revision 3.1.55.0 2023-02-08 15:37:29 EST TST
+Revision 3.1.56.0 2023-02-22 17:02:08 EST TST
 
 ---------------------------------------------------------------------
 
@@ -5831,13 +5831,15 @@ alert tcp (sid: 7; sd_pattern:"\b\w+@ourdomain\.com\b", threshold 2; msg: "Custo
  1. sd_pattern implementation relies on Hyperscan, regardless of the
     search engine specified in the config. So, Snort must be built
     and run with Hyperscan to have sd_pattern IPS option available.
- 2. Log obfuscation is only applicable to CMG and Unified2 logging
-    formats.
- 3. Log obfuscation doesn’t support user defined PII patterns. It is
+ 2. Log obfuscation is only applicable to the buffer that the pattern
+    was found in.
+ 3. Log obfuscation is only applicable to CMG and Unified2 logging
+    formats. Unified2 logger only supports obfuscation of http extra
+    data.
+ 4. Log obfuscation doesn’t support user defined PII patterns. It is
     currently only supported for the built-in patterns for Credit
-    Cards and U.S. Social Security numbers.
- 4. Log obfuscation doesn’t work with stream rebuilt packet payloads.
-    (This is a known bug).
+    Cards and U.S. Social Security numbers, emails and U.S. phone
+    numbers.
 
 
 5.19. SMTP