doc: add upgrade section for 8

author Giuseppe Longo <giuseppe@glongo.it>

Fri, 24 Nov 2023 08:54:53 +0000 (09:54 +0100)

committer Victor Julien <victor@inliniac.net>

Wed, 28 Feb 2024 06:00:43 +0000 (07:00 +0100)
author Giuseppe Longo <giuseppe@glongo.it>
Fri, 24 Nov 2023 08:54:53 +0000 (09:54 +0100)
committer Victor Julien <victor@inliniac.net>
Wed, 28 Feb 2024 06:00:43 +0000 (07:00 +0100)
diff --git a/doc/userguide/upgrade.rst b/doc/userguide/upgrade.rst

index fd6e2750104701b1003b4133d0252a90d3f72e2e..345087fe55b3aea282cb6eb10d7ee3b338101fd7 100644 (file)
--- a/doc/userguide/upgrade.rst
+++ b/doc/userguide/upgrade.rst
@@ -38,6 +38,19 @@ Upgrading 7.0 to 8.0
  --------------------
  .. note:: ``stats.whitelist`` has been renamed to ``stats.score`` in ``eve.json``
  
+Major changes
+~~~~~~~~~~~~~
+- SIP parser has been updated to inspect traffic carried by TCP as well.
+  SIP keywords can still match on their respective fields in addition
+  to these improvements.
+  Transactions are logged with the same schema regardless of which
+  transport protocol is carrying the payload.
+  Also, SIP protocol is detected using pattern matching and not only
+  probing parser.
+- ``SIP_PORTS`` variable has been introduced in suricata.yaml
+- Application layer's ``sip`` counter has been split into ``sip_tcp`` and ``sip_udp``
+  for the ``stats`` event.
+
  Upgrading 6.0 to 7.0
  --------------------
author	Giuseppe Longo <giuseppe@glongo.it>
	Fri, 24 Nov 2023 08:54:53 +0000 (09:54 +0100)
committer	Victor Julien <victor@inliniac.net>
	Wed, 28 Feb 2024 06:00:43 +0000 (07:00 +0100)