Merge in SNORT/snort3 from ~STECHEW/snort3:build_3.1.81.0 to master
Squashed commit of the following:
commit
4c29bf2c082140b028cb2becc4a7c665a77c0221
Author: Steve Chew <stechew@cisco.com>
Date: Fri Feb 16 17:46:23 2024 -0500
build: generate and tag 3.1.81.0
set (VERSION_MAJOR 3)
set (VERSION_MINOR 1)
-set (VERSION_PATCH 80)
+set (VERSION_PATCH 81)
set (VERSION_SUBLEVEL 0)
set (VERSION "${VERSION_MAJOR}.${VERSION_MINOR}.${VERSION_PATCH}.${VERSION_SUBLEVEL}")
+2024-02-20: 3.1.81.0
+
+* appid: check tenant_match() if required
+* appid: log error message instead of fatal error if appid stats logfile is not accessible
+* appid: Lowering max packet count before service fail
+* control: Adds counting to ctrlcon blocked to allow for nested commands
+* detection: add c'tors, use new instead of snort_calloc
+* detection: copy ip var name in dup_rtn
+* flow: added ips event suppression flags
+* host_cache: fixed update_stats to remove race_condition
+* http_inspect: recreate JSNorm if reload takes place inside transaction
+* ips_context: add lazy-allocation of alt buffer
+* kaizen: provide an option to enable Kaizen's mock
+* kaizen: remove redundant semicolon and add explicit cast
+* kaizen: rename modules
+* lua: improve spell of wizard for HTTP
+* memory: prevent data race between main and packet threads
+* service_inspectors: add check for JSNorm config actuality
+* stream_tcp: add alerts for exceeding thresholds for max queued bytes or segments
+* stream_tcp: add check to verify seglist head is not nullptr and only initialize PAF when it is not
+* utils: add macro for setting thread name
+
2024-02-01: 3.1.79.0
* appid: add tenants filter for appid debug
The Snort Team
Revision History
-Revision 3.1.80.0 2024-02-05 23:22:00 UTC TST
+Revision 3.1.81.0 2024-02-16 22:51:25 UTC TST
---------------------------------------------------------------------
* 129:18 (stream_tcp) data sent on stream after TCP reset received
* 129:19 (stream_tcp) TCP window closed before receiving data
* 129:20 (stream_tcp) TCP session without 3-way handshake
- * 129:21 (stream_tcp) TCP max queued reassembly bytes exceeded threshold
- * 129:22 (stream_tcp) TCP max queued reassembly segments exceeded threshold
+ * 129:21 (stream_tcp) TCP max queued reassembly bytes exceeded
+ threshold
+ * 129:22 (stream_tcp) TCP max queued reassembly segments exceeded
+ threshold
Peg counts:
The TCP 3-way handshake was not seen for this TCP session.
-129:21 (stream_tcp) TCP maximum bytes queued limit exceeded
-
-The maximum bytes allowed to be queued for reassembly for an
-endpoint has been exceeded.
-
-129:22 (stream_tcp) TCP maximum segments queued limit exceeded
-
-The maximum number of segments allowed to be queued for reassembly
-for an endpoint has been exceeded.
-
131:1 (dns) obsolete DNS RR types
DNS Response Resource Record Type is Obsolete.
The Snort Team
Revision History
-Revision 3.1.80.0 2024-02-05 23:21:48 UTC TST
+Revision 3.1.81.0 2024-02-16 22:51:13 UTC TST
---------------------------------------------------------------------
The Snort Team
Revision History
-Revision 3.1.80.0 2024-02-05 23:21:48 UTC TST
+Revision 3.1.81.0 2024-02-16 22:51:13 UTC TST
---------------------------------------------------------------------
projects / thirdparty / snort3.git / commitdiff
