]>
git.ipfire.org Git - thirdparty/snort3.git/log
Hui Cao (huica) [Thu, 27 Oct 2016 16:27:53 +0000 (12:27 -0400)]
Merge pull request #684 in SNORT/snort3 from appid_port2x_deltas to master
Squashed commit of the following:
commit
f0cfd6beb8a5fdc2a9f97e997eed31ee5eb8e08e
Author: davis mcpherson <davmcphe.cisco.com>
Date: Wed Oct 26 16:26:38 2016 -0400
use 'free' to free hsession ptrs
commit
b7fa07525538c46fff16c2f3ba97bc9f6ffe8216
Author: davis mcpherson <davmcphe.cisco.com>
Date: Wed Oct 26 14:29:28 2016 -0400
patch to support initializing appid http header ptrs and lengths via pub/sub interface with nhttp inspector
commit
a007538457b691e3644eecc389755b65a0d06de9
Author: davis mcpherson <davmcphe.cisco.com>
Date: Mon Oct 24 08:15:04 2016 -0400
move stmp detector tests for clients from client_plugins dir to detector_plugins dir
commit
1915d11be99da837f6703a7574d696f8753032d5
Author: davis mcpherson <davmcphe.cisco.com>
Date: Fri Oct 21 17:09:49 2016 -0400
port changes for lua detector chp http pattern management
commit
aaaa8490e52a7c5537a5034dce9ac23f7206d6f5
Author: davis mcpherson <davmcphe.cisco.com>
Date: Fri Oct 21 12:50:28 2016 -0400
port appid 2.x changes that converted smtp to detector model from separate client/service plugins
removed deprecated client/service source files for smtp detectors
commit
c76a8ec0d2911841b3f00801e038486ce3d06319
Author: davis mcpherson <davmcphe.cisco.com>
Date: Thu Oct 20 16:21:37 2016 -0400
port of appid deltas from 2.x to the third party module support code
commit
34886ef8ed672dfc43f7c4d4a72a1f8af007185b
Author: davis mcpherson <davmcphe.cisco.com>
Date: Thu Oct 20 12:06:42 2016 -0400
port 2.x changes to logic that syncs ids used by appid and snort for various protocols
commit
444e20cd2414b27ea1d0dd5a4283cb750b88e3c5
Author: davis mcpherson <davmcphe.cisco.com>
Date: Thu Oct 20 11:20:54 2016 -0400
port of appid changes since initial snapshot that are related to adding regex matching for http fields, application id updates, and changes to appid api methods
Russ Combs (rucombs) [Tue, 25 Oct 2016 20:49:47 +0000 (16:49 -0400)]
Merge pull request #686 in SNORT/snort3 from appid_config_errors to master
Squashed commit of the following:
commit
775bbff15e3e5ce8dc73d51c561d9d3f2b05356e
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Mon Oct 24 15:48:09 2016 -0400
Change missing mapping files to a ParseError.
Russ Combs (rucombs) [Tue, 25 Oct 2016 20:45:02 +0000 (16:45 -0400)]
Merge pull request #682 in SNORT/snort3 from appid_http3 to master
Squashed commit of the following:
commit
7a1b322bb866ec5d5eeb0b91e8419a1722d4028e
Author: Steve Chew <stechew@cisco.com>
Date: Wed Oct 19 12:21:28 2016 -0400
Added subscribe/publish communication between HTTP inspector and AppId.
Make http_inspect and appid always build statically for now to avoid
dependency problem.
Shawn Turner (shaturne) [Tue, 25 Oct 2016 19:09:39 +0000 (15:09 -0400)]
Merge pull request #687 in SNORT/snort3 from fix_129_4_fp to master
Squashed commit of the following:
commit
2e77716a5729b9cb060140fc871e582eb8ccc036
Author: Bhagya Tholpady <bbantwal@cisco.com>
Date: Mon Oct 24 13:19:39 2016 -0400
setup the trackers after the clearing of session due to expired session
Michael Altizer (mialtize) [Mon, 24 Oct 2016 20:00:28 +0000 (16:00 -0400)]
Merge pull request #685 in SNORT/snort3 from bugfix_block to master
Squashed commit of the following:
commit
b38a7ac35e05c658250f88e6341a99f0b5c2f511
Author: mdagon <mdagon@cisco.com>
Date: Thu Oct 20 16:21:52 2016 -0400
In case of blocked packet, delay clearing flow till the end of inspection
Russ Combs (rucombs) [Fri, 21 Oct 2016 13:03:56 +0000 (09:03 -0400)]
Merge pull request #680 in SNORT/snort3 from fix_129_16_fp to master
Squashed commit of the following:
commit
9f67e124c98a576e3920765abe9f721485f9e653
Author: Bhagya Tholpady <bbantwal@cisco.com>
Date: Wed Oct 12 16:56:13 2016 -0400
Fix bad fin false positive
Russ Combs [Fri, 21 Oct 2016 08:38:19 +0000 (04:38 -0400)]
build 216
Michael Altizer (mialtize) [Wed, 19 Oct 2016 13:47:05 +0000 (09:47 -0400)]
Merge pull request #679 in SNORT/snort3 from dce_udp_fragments to master
Squashed commit of the following:
commit
a4a4bcc9fbc0048aa05c5c7b304b3a7155f452da
Author: mdagon <mdagon@cisco.com>
Date: Wed Oct 12 09:57:54 2016 -0400
dce_udp fragments
Hui Cao (huica) [Wed, 19 Oct 2016 13:24:37 +0000 (09:24 -0400)]
Merge pull request #681 in SNORT/snort3 from appid_alert_fix to master
Squashed commit of the following:
commit
5c4902226c4c49c2f0c3939dad2ef3c04d742e2b
Author: shaslad <shaslad@cisco.com>
Date: Tue Oct 18 18:12:55 2016 -0400
Fix related to appid name with space and SSL position
Michael Altizer (mialtize) [Mon, 17 Oct 2016 17:46:28 +0000 (13:46 -0400)]
Merge pull request #678 in SNORT/snort3 from icc to master
Squashed commit of the following:
commit
ad8de2fe4d3121d81c923ec94a4b73c696c6cf59
Author: Michael Altizer <mialtize@cisco.com>
Date: Mon Oct 17 12:02:45 2016 -0400
build: Clean up some ICC warnings
Russ Combs (rucombs) [Mon, 17 Oct 2016 14:29:06 +0000 (10:29 -0400)]
Merge pull request #677 in SNORT/snort3 from tsan to master
Squashed commit of the following:
commit
41f296afebaf7a455a4affeae8459820aeb868aa
Author: Russ Combs <rucombs@cisco.com>
Date: Sun Oct 16 19:08:16 2016 -0400
fix -Wmaybe-uninitialized issues
commit
83ad8eb66ddee47247452fb0c00cb9ab03dda8bd
Author: Russ Combs <rucombs@cisco.com>
Date: Fri Oct 14 06:08:51 2016 -0400
add build configuration for thread sanitizer
Russ Combs (rucombs) [Fri, 14 Oct 2016 17:31:44 +0000 (13:31 -0400)]
Merge pull request #676 in SNORT/snort3 from catch to master
Squashed commit of the following:
commit
c91b18f82800a36a2369528a5b5df019696da0cd
Author: Russ Combs <rucombs@cisco.com>
Date: Fri Oct 14 12:09:27 2016 -0400
fix trace catch test new[]/delete mismatch
commit
f6b4a07bf30bb1c93a3c301999d83232d9185582
Author: Russ Combs <rucombs@cisco.com>
Date: Fri Oct 14 11:55:13 2016 -0400
fix SFDAQModule catch test leaks
commit
e61d1f8f4e724ff7cc0bfe72184f56ee8859cb3b
Author: Russ Combs <rucombs@cisco.com>
Date: Fri Oct 14 10:15:11 2016 -0400
fix sfrf and sfthd catch test policy issues
commit
cf018e1603636903f9e6f53aad3e306905ade18c
Author: Russ Combs <rucombs@cisco.com>
Date: Fri Oct 14 09:36:47 2016 -0400
fix sfrf catch test leaks
commit
ea3c46be4719f291da1998e12863989531e2ceeb
Author: Russ Combs <rucombs@cisco.com>
Date: Fri Oct 14 09:15:59 2016 -0400
fix vars catch test leaks
commit
2d08ef2e1cddd1c549d4700a16ffbbcb32739d95
Author: Russ Combs <rucombs@cisco.com>
Date: Fri Oct 14 08:52:38 2016 -0400
fix ThreadConfig catch test leaks
commit
5ce152f0468a878fb2156c20cdb5cc18b7a8af18
Author: Russ Combs <rucombs@cisco.com>
Date: Fri Oct 14 08:44:07 2016 -0400
fix sfthd catch test leaks
commit
ecad5dcafe699c9379b92c97cc90c24fc7cfbd76
Author: Russ Combs <rucombs@cisco.com>
Date: Fri Oct 14 07:53:38 2016 -0400
fix ips_stream_reassemble catch test leaks
commit
e8d34f1a04318097f0704b1ba8102854666ca1f1
Author: Russ Combs <rucombs@cisco.com>
Date: Fri Oct 14 07:51:39 2016 -0400
fix file_decomp catch test leaks
Russ Combs [Fri, 14 Oct 2016 01:20:52 +0000 (21:20 -0400)]
build 215
Russ Combs (rucombs) [Fri, 14 Oct 2016 00:41:29 +0000 (20:41 -0400)]
Merge pull request #619 in SNORT/snort3 from standard_opt to master
Squashed commit of the following:
commit
48c221dffad83fe29c8426f4d8d3be21dc774de1
Author: Carter Waxman <cwaxman@cisco.com>
Date: Tue Aug 30 13:58:04 2016 -0400
Added standard options to Module class. Added trace debugging. Implemented trace in stream ip
Russ Combs (rucombs) [Thu, 13 Oct 2016 20:01:01 +0000 (16:01 -0400)]
Merge pull request #668 in SNORT/snort3 from appid_triage_fixits to master
Squashed commit of the following:
commit
d52f891ae706f2ab5ea303a9b204e2589bfedb4c
Author: davis mcpherson <davmcphe.cisco.com>
Date: Tue Sep 27 16:26:08 2016 -0400
only log unknow appid if it is non-zero
fix snort2lua to output 'log_stats true' for appid 'app_stats_filename' option'
init static thread local variable for client app config
fix issues from code review comments, u_int8_t->uint8_t, type/var/field renames to conform to coding style
fix coding style naming issue
refactor function/var names to meet snort3 coding style
change smOrderList to be std::vector to eliminate calloc/realloc logic for dynamic array
convert chp match tally to use std::vector
convert app info tables to std::map container
improve implementation of lua detector manager, add custom lua detectors
fix threading issues with add snort protocol references
workaround for bogus ASAN mem leak detected
updates from PR review comments
test dir is old deprecated code for the most part, deleting to reduce appid cruft!
'session' has a specific meaning in snort3 so change vars named 'session' to 'asd' (appid session data)
update unit test to conform with change to assert if args parameter is null
restore correct snort_manual.html document
Russ Combs (rucombs) [Thu, 13 Oct 2016 19:13:23 +0000 (15:13 -0400)]
Merge pull request #675 in SNORT/snort3 from fp2 to master
Squashed commit of the following:
commit
07080ae448c2b753c2f4eaff4a5667677ab58cac
Author: Russ Combs <rucombs@cisco.com>
Date: Tue Oct 11 14:25:26 2016 -0400
update snort2lua
commit
740f8a84e44b8b97ca9e81de015337351450d206
Author: Russ Combs <rucombs@cisco.com>
Date: Mon Oct 10 20:33:53 2016 -0400
fix fp selection bug
commit
4a44c5b15948f3c5bdcd501392e15efbda3fc4ad
Author: Russ Combs <rucombs@cisco.com>
Date: Mon Oct 10 19:08:27 2016 -0400
establish baseline unit tests
commit
510ab5e00a2a92f02635259eba942d118a91389d
Author: Russ Combs <rucombs@cisco.com>
Date: Mon Oct 10 14:56:21 2016 -0400
replace broken nfp counts with warnings; prepare to update fp selection
commit
c208ae14acbc421c48b520d9fb58e4fe7881f109
Author: Russ Combs <rucombs@cisco.com>
Date: Sun Oct 9 11:49:38 2016 -0400
change search_engine.debug_print_fast_pattern to show_fast_patterns and cleanup
commit
41355c5e489906752d2f128989cbe426575870f6
Author: Russ Combs <rucombs@cisco.com>
Date: Sat Oct 8 21:21:57 2016 -0400
remove cruft and broken match counts
commit
151f310c2088a87c1f25b19858d289c1435da62f
Author: Russ Combs <rucombs@cisco.com>
Date: Sat Oct 8 20:19:29 2016 -0400
refactor / clean up
Hui Cao (huica) [Wed, 12 Oct 2016 20:12:51 +0000 (16:12 -0400)]
Merge pull request #672 in SNORT/snort3 from smb2_reg to master
Squashed commit of the following:
commit
22586ce0622cef8b4d1cf292fd2ebec071e1bb18
Author: huica <huica@cisco.com>
Date: Tue Oct 11 14:27:32 2016 -0400
Fixed file hash prune issue
Hui Cao (huica) [Wed, 12 Oct 2016 17:29:53 +0000 (13:29 -0400)]
Merge pull request #674 in SNORT/snort3 from appid_stateVariable_fix to master
Squashed commit of the following:
commit
26d0620068bff59c165585dcc2fd387b74f1cfb8
Author: shaslad <shaslad@cisco.com>
Date: Wed Oct 12 11:05:00 2016 -0400
Adding fix for pattern and added app stat variable for few app
Russ Combs (rucombs) [Wed, 12 Oct 2016 17:28:29 +0000 (13:28 -0400)]
Merge pull request #673 in SNORT/snort3 from rate_filter to master
Squashed commit of the following:
commit
13dfca8d4b9d15ca5671150f181f3c603581524b
Author: Russ Combs <rucombs@cisco.com>
Date: Wed Oct 12 09:21:27 2016 -0400
convert rate_filter as list of tables
commit
4a8b78d83e61811d308ed3b4d828876c18b8408b
Author: Russ Combs <rucombs@cisco.com>
Date: Tue Oct 11 20:11:39 2016 -0400
fix rate_filter action config and apply_to clean up
Shawn Turner (shaturne) [Tue, 11 Oct 2016 20:33:29 +0000 (16:33 -0400)]
Merge pull request #670 in SNORT/snort3 from ftp_rest to master
Squashed commit of the following:
commit
e7fb9d66288afccd02342014e572987f8f9149a5
Author: Bhagya Tholpady <bbantwal@cisco.com>
Date: Mon Oct 10 12:56:47 2016 -0400
block malware over ftp for clients/servers that support REST command
Michael Altizer (mialtize) [Tue, 11 Oct 2016 16:43:23 +0000 (12:43 -0400)]
Merge pull request #664 in SNORT/snort3 from dce_udp_processing to master
Squashed commit of the following:
commit
83de4f6329512279a3c41924ce6260cf0e903c5a
Author: mdagon <mdagon@cisco.com>
Date: Tue Oct 11 08:30:04 2016 -0400
Code review comments
commit
945cab36b195269ff5eebd7f6ea9cbbd8de0d99b
Author: mdagon <mdagon@cisco.com>
Date: Fri Sep 30 15:42:39 2016 -0400
dce_udp packet processing
Russ Combs [Fri, 7 Oct 2016 22:02:53 +0000 (18:02 -0400)]
build 214
Russ Combs (rucombs) [Fri, 7 Oct 2016 21:54:35 +0000 (17:54 -0400)]
Merge pull request #667 in SNORT/snort3 from os-fixups to master
Squashed commit of the following:
commit
d7283265f940cf51d95d472fc674fbd8753027aa
Author: Michael Altizer <mialtize@cisco.com>
Date: Fri Oct 7 16:43:14 2016 -0400
cd_eth: Depend on LibSFBPF's DLT definitions
commit
4302574a641bd85ebbd96d70e3881ed94b566a34
Author: Michael Altizer <mialtize@cisco.com>
Date: Fri Oct 7 16:38:13 2016 -0400
extra: Make all codecs depend on LibSFBPF's DLT definitions
commit
f1b9c436deb19d441262c6f6cf25b02ab7d8df3f
Author: Michael Altizer <mialtize@cisco.com>
Date: Fri Oct 7 16:37:44 2016 -0400
extra: Kill off i4l_rawip decoder
This DLT doesn't actually exist anywhere and the decoder was a NOP.
commit
ec9dd64ebe5d69fd0f39fe3dbae27851610be372
Author: Michael Altizer <mialtize@cisco.com>
Date: Fri Oct 7 15:23:13 2016 -0400
build: OpenSolaris build fixes
Russ Combs (rucombs) [Fri, 7 Oct 2016 21:16:01 +0000 (17:16 -0400)]
Merge pull request #666 in SNORT/snort3 from doc_fix to master
Squashed commit of the following:
commit
11c831971210984a04e2b0721724b36f6d739f8b
Author: Russ Combs <rucombs@cisco.com>
Date: Fri Oct 7 15:34:09 2016 -0400
do not delete default manuals when cleaning in tree
Michael Altizer (mialtize) [Fri, 7 Oct 2016 18:33:18 +0000 (14:33 -0400)]
Merge pull request #665 in SNORT/snort3 from version to master
Squashed commit of the following:
commit
21e605f778e6716318853656f4d60ca2a45d2e7e
Author: Michael Altizer <mialtize@cisco.com>
Date: Tue Oct 4 19:39:32 2016 -0400
utils: Add LibDAQ version to snort -V output
commit
c5f46884c20d855c7d045a3d1025dc59124facc1
Author: Michael Altizer <mialtize@cisco.com>
Date: Wed Oct 5 15:50:35 2016 -0400
appid: (Re-)Fix printf format specifier warnings for peg counts
commit
17e27d89cdb4da7b88f176c1d7f3aee7430fb4b2
Author: Michael Altizer <mialtize@cisco.com>
Date: Tue Oct 4 19:22:49 2016 -0400
utils: Minimize utils.h includes and handle the fallout
Russ Combs (rucombs) [Fri, 7 Oct 2016 16:39:02 +0000 (12:39 -0400)]
Merge pull request #663 in SNORT/snort3 from crc_bugs to master
Squashed commit of the following:
commit
5f852b4ab82e2c8f2783e43afb49fcbaaca8e636
Author: Russ Combs <rucombs@cisco.com>
Date: Fri Oct 7 06:30:12 2016 -0400
add FIXIT-W, reserver -A for analyzer bugs
commit
df1419ec974d20dd8c8060535b0bae826115ece2
Author: Russ Combs <rucombs@cisco.com>
Date: Fri Oct 7 05:11:56 2016 -0400
fix analyzer race condition
commit
270b6ff812708d4f9074bb54d6c2f3fe668f9fd4
Author: Russ Combs <rucombs@cisco.com>
Date: Wed Oct 5 09:06:06 2016 -0400
rename default_snort_manual.* to snort_manual.*
commit
8e608cc319a4a0f0a5056c3e860269d2ba5dbf9c
Author: Russ Combs <rucombs@cisco.com>
Date: Sun Oct 2 22:00:26 2016 -0400
build docs only by explicit target
commit
2ee02bc1dea3e624ee96c33901ada15a2197946c
Author: Russ Combs <rucombs@cisco.com>
Date: Fri Sep 30 07:49:08 2016 -0400
update default manuals to build 213
commit
dc8e1220040396e16c4fdae3e16fb94fd11f1643
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Tue Oct 4 21:35:05 2016 -0400
fix stream_tcp left overlap on hpux, solaris
commit
25ebd0f84c9db3053fed8211ef37dcd1cfd64351
Author: Russ Combs <rucombs@cisco.com>
Date: Sat Oct 1 21:43:29 2016 -0400
shrink size of segment nodes
commit
b33b15025ba15fce8816b1234dc88c6a21c7cf46
Author: Russ Combs <rucombs@cisco.com>
Date: Sat Oct 1 21:09:50 2016 -0400
remove broken 129:5 events
commit
7b12b52ffe2ec5308e42413e8871abf3cdd04fef
Author: Russ Combs <rucombs@cisco.com>
Date: Sat Oct 1 21:19:55 2016 -0400
remove obsolete debug code
commit
8c631644be2eed9aa2551d56f7162ad7db78feb1
Author: Russ Combs <rucombs@cisco.com>
Date: Sat Oct 1 20:52:18 2016 -0400
do not include debug routine in production build
commit
70018fd5438c086c43cfd0e346b6fe2b253e67b2
Author: Russ Combs <rucombs@cisco.com>
Date: Fri Sep 30 07:39:12 2016 -0400
change sfvar_ip_in() to return bool
commit
88bf7ddf99b3cebb63aeb4d8a3d3ad6679dc526a
Author: Russ Combs <rucombs@cisco.com>
Date: Fri Sep 30 07:10:44 2016 -0400
tolerate more spaces in ip lists
commit
eafd38a934cbdcf0ddaa7c6668e72650507066c5
Author: Russ Combs <rucombs@cisco.com>
Date: Fri Sep 30 08:10:34 2016 -0400
add rev to rule latency logs
commit
cb32c1675732a1adb22c5b72cedb81905332b2f1
Author: Russ Combs <rucombs@cisco.com>
Date: Fri Sep 30 07:37:11 2016 -0400
change default latency actions to none
Russ Combs (rucombs) [Thu, 6 Oct 2016 22:29:13 +0000 (18:29 -0400)]
Merge pull request #662 in SNORT/snort3 from fixit_a to master
Squashed commit of the following:
commit
80dd0e30955432821d0f81f673951ee238b5c303
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Thu Oct 6 18:04:27 2016 -0400
add FIXIT-A for unresolved static analysis issues
Russ Combs (rucombs) [Thu, 6 Oct 2016 20:58:19 +0000 (16:58 -0400)]
Merge pull request #659 in SNORT/snort3 from dce_anal to master
Squashed commit of the following:
commit
381c2b9c9dd4ff87dd99c373e3fbc7d55a3f85f8
Author: Russ Combs <rucombs@cisco.com>
Date: Thu Oct 6 15:11:39 2016 -0400
fix static analysis issues
Russ Combs (rucombs) [Thu, 6 Oct 2016 20:58:12 +0000 (16:58 -0400)]
Merge pull request #658 in SNORT/snort3 from sip_war to master
Squashed commit of the following:
commit
0fc3a2e2090c98bb59dc9b807ad67c1cb71d70ab
Author: huica <huica@cisco.com>
Date: Thu Oct 6 13:46:24 2016 -0400
Fix warnings from analysis
Russ Combs (rucombs) [Thu, 6 Oct 2016 20:57:40 +0000 (16:57 -0400)]
Merge pull request #660 in SNORT/snort3 from smb_fix to master
Squashed commit of the following:
commit
dc06d7b27c01eb1e9bcba68f57a8fe81059b121b
Author: mdagon <mdagon@cisco.com>
Date: Thu Oct 6 15:10:53 2016 -0400
dce_common.h analysis fix
Hui Cao (huica) [Wed, 5 Oct 2016 18:54:33 +0000 (14:54 -0400)]
Merge pull request #656 in SNORT/snort3 from file_work to master
Squashed commit of the following:
commit
6209eecf88de7423e8f3bb70a62b6d02c13d9b4e
Author: huica <huica@cisco.com>
Date: Tue Oct 4 16:56:44 2016 -0400
Update comments for http upload
Michael Altizer (mialtize) [Wed, 5 Oct 2016 15:51:43 +0000 (11:51 -0400)]
Merge pull request #655 in SNORT/snort3 from crc_broke to master
Squashed commit of the following:
commit
3e08a91b4236cd8ad7c4cae72110aac2269dbdfd
Author: Russ Combs <rucombs@cisco.com>
Date: Wed Oct 5 10:15:39 2016 -0400
fix several static analysis issues
Russ Combs (rucombs) [Tue, 4 Oct 2016 21:48:24 +0000 (17:48 -0400)]
Merge pull request #654 in SNORT/snort3 from global_obfuscation_pii-fix to master
Squashed commit of the following:
commit
66c56b73c340a05cea0b32525357220c5159cbba
Author: Victor Roemer <viroemer@cisco.com>
Date: Tue Oct 4 15:37:48 2016 -0400
Fix explicit disable not working
Hui Cao (huica) [Tue, 4 Oct 2016 16:22:04 +0000 (12:22 -0400)]
Merge pull request #652 in SNORT/snort3 from file_mime to master
Squashed commit of the following:
commit
908af0c0d4393fdc06032f3abf9e8a38b9f61c80
Author: huica <huica@cisco.com>
Date: Fri Sep 30 15:09:11 2016 -0400
Support http file upload processing and process decode/detection depths
Michael Altizer (mialtize) [Mon, 3 Oct 2016 19:28:06 +0000 (15:28 -0400)]
Merge pull request #653 in SNORT/snort3 from ~MIALTIZE/snort3:ftp-data-fix to master
Squashed commit of the following:
commit
37521bfa269bcdb9d89cc08729ddd9f3714576a1
Author: Michael Altizer <mialtize@cisco.com>
Date: Mon Oct 3 15:22:33 2016 -0400
ftp_data: Gracefully handle cleared flow data
Michael Altizer (mialtize) [Mon, 3 Oct 2016 17:23:18 +0000 (13:23 -0400)]
Merge pull request #650 in SNORT/snort3 from ips_options_lua to master
Squashed commit of the following:
commit
889f544e06894eb2e91b4511482dd2f36d46a217
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Fri Sep 30 15:50:53 2016 -0400
Make a copy of the ips_option name to handle static and dynamic strings.
Change delete -> delete[].
Change delete[] -> snort_free().
Changed to have the LuaJitOption perform snort_strdup() and maintain a copy of the name string.
Fix a nit typo.
Shawn Turner (shaturne) [Mon, 3 Oct 2016 17:13:18 +0000 (13:13 -0400)]
Merge pull request #644 in SNORT/snort3 from sip_callid to master
Squashed commit of the following:
commit
d9e16c7bc50521a41d7f5df96f51b7323e5297e7
Author: Bhagya Tholpady <bbantwal@cisco.com>
Date: Wed Sep 28 12:43:02 2016 -0400
sip changes to avoid using NAT ip when calculating callid
Michael Altizer (mialtize) [Mon, 3 Oct 2016 15:03:21 +0000 (11:03 -0400)]
Merge pull request #651 in SNORT/snort3 from static_analysis_fixes to master
Squashed commit of the following:
commit
3add74c4db289a86987f766f2d3e25a14607c64a
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Mon Oct 3 10:53:39 2016 -0400
Add FIXIT-A to style guide to indicate a static analysis issue.
commit
69b060b5b54f6b32601bc02ddd65e3d2d94db785
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Mon Oct 3 09:16:08 2016 -0400
Added FIXIT-A for two clang static analysis False Positive findings.
Hui Cao (huica) [Mon, 3 Oct 2016 14:05:46 +0000 (10:05 -0400)]
Merge pull request #642 in SNORT/snort3 from appid_log_file_bug to master
Squashed commit of the following:
commit
d75835a1383c4d93e68a8f32d135b693dbfe3d9a
Author: davis mcpherson <davmcphe.cisco.com>
Date: Tue Sep 27 16:26:08 2016 -0400
only log unknow appid if it is non-zero
fix snort2lua to output 'log_stats true' for appid 'app_stats_filename' option'
init static thread local variable for client app config
fix issues from code review comments, u_int8_t->uint8_t, type/var/field renames to conform to coding style
fix coding style naming issue
Michael Altizer (mialtize) [Fri, 30 Sep 2016 18:32:18 +0000 (14:32 -0400)]
Merge pull request #649 in SNORT/snort3 from dce_includes to master
Squashed commit of the following:
commit
5bf0a396155c01562d168fad34b7cff4f54e76f8
Author: Michael Altizer <mialtize@cisco.com>
Date: Fri Sep 30 14:01:39 2016 -0400
dce_rpc: Clean up header inclusions
Michael Altizer (mialtize) [Fri, 30 Sep 2016 16:14:22 +0000 (12:14 -0400)]
Merge pull request #627 in SNORT/snort3 from ~MIALTIZE/snort3:expected_flows to master
Squashed commit of the following:
commit
91133a83eca85bc05e403bce6973af2099e5159e
Author: Michael Altizer <mialtize@cisco.com>
Date: Mon Sep 26 16:36:45 2016 -0400
file_mempool: Fix initializing total pool size
commit
61ae01ad22a6a4f4093c749304023b5a25045633
Author: Michael Altizer <mialtize@cisco.com>
Date: Mon Sep 26 13:40:23 2016 -0400
expected: Push expected flow information through the DAQ module
commit
08aa5f9a79a724a61274854fcc37f05a0fc3d1da
Author: Michael Altizer <mialtize@cisco.com>
Date: Mon Sep 26 12:22:04 2016 -0400
sfdaq: Add SFDAQInstance::add_expected() call
commit
218769cb579189f0600b53c7c6abde063d34627f
Author: Michael Altizer <mialtize@cisco.com>
Date: Mon Sep 26 13:34:57 2016 -0400
expected: Expected cache revamp and related bugfixes
- Change expected cache to use FlowKeys instead of ExpectKeys
- Support expected flows where the full N-tuple is known
- Fix SIP (ignored) expected flow creation logic
- Fix AppID expected flow creation regarding IP proto/PktType
- Add FTP data channel expected flow with type TCP rather than PDU
- Many expected cache bugfixes
commit
686ff5e39c79b81472c794a18548e77146638348
Author: Michael Altizer <mialtize@cisco.com>
Date: Mon Sep 26 12:34:51 2016 -0400
ftp_data: Add expected data consumption to set service name and fix bugs
- Set the parent flow key type from the flow rather than the packet when
creating FTP-DATA flow data.
- Correctly retrieve FTP-DATA flow data instead of FTP flow data when
inspecting with FTP-DATA.
commit
2931ce2677e0a4c20454430f361d92f65c99a2f5
Author: Michael Altizer <mialtize@cisco.com>
Date: Mon Sep 26 12:31:31 2016 -0400
stream: Fix NPD in get_flow_data() when flow doesn't exist
commit
b06e59efa081db48229bc098f89f1b906b993fd4
Author: Michael Altizer <mialtize@cisco.com>
Date: Mon Sep 26 12:27:15 2016 -0400
flow_key: Add address/port reversal reporting to init()
commit
994b52c89ffedd64ee69395707227589c913be1b
Author: Michael Altizer <mialtize@cisco.com>
Date: Mon Sep 26 12:25:08 2016 -0400
zhash: Add new node insertion reporting to get()
commit
60af08a53b8711d72aebbd8fc14690bbc493ddc5
Author: Michael Altizer <mialtize@cisco.com>
Date: Mon Sep 26 12:23:34 2016 -0400
ftp: Fix marking file get commands
commit
90aaa06a5f47b28e8c4d48c522944c0204c6ac9e
Author: Michael Altizer <mialtize@cisco.com>
Date: Mon Sep 26 12:19:33 2016 -0400
build: Remove lingering LibDAQ #ifdefs
commit
9c6f5d9e74d0a7a7deeb5dd702298c43b05ae2fd
Author: Michael Altizer <mialtize@cisco.com>
Date: Mon Sep 26 12:16:48 2016 -0400
defaults: Update FTP default config based on Snort2's hardcoded one
Michael Altizer (mialtize) [Fri, 30 Sep 2016 16:13:18 +0000 (12:13 -0400)]
Merge pull request #648 in SNORT/snort3 from nhttp56 to master
Squashed commit of the following:
commit
7119b31cd1d0f3e8623d63d605ce12d3c37888b5
Author: Tom Peters <thopeter@cisco.com>
Date: Thu Sep 29 11:54:58 2016 -0400
NHI event 119/66 fix
Hui Cao (huica) [Thu, 29 Sep 2016 20:29:57 +0000 (16:29 -0400)]
Merge pull request #647 in SNORT/snort3 from obfuscation_updates to master
Squashed commit of the following:
commit
95db4800e1963f5f20d7a7493e850070561379f4
Author: Victor Roemer <viroemer@cisco.com>
Date: Thu Sep 29 12:06:23 2016 -0400
Fix mysteriously disabling obfuscation and offset.
Michael Altizer (mialtize) [Thu, 29 Sep 2016 18:31:53 +0000 (14:31 -0400)]
Merge pull request #643 in SNORT/snort3 from dce_udp_autodetect to master
Squashed commit of the following:
commit
75280120e229d16a4137908587d900b34ff14c15
Author: mdagon <mdagon@cisco.com>
Date: Thu Sep 29 13:17:45 2016 -0400
Code review
commit
378da827dc3aa45f2367b47b61fd9f176370d260
Author: mdagon <mdagon@cisco.com>
Date: Tue Sep 27 15:25:47 2016 -0400
dce_udp autodetect and session creation
Michael Altizer (mialtize) [Thu, 29 Sep 2016 18:26:43 +0000 (14:26 -0400)]
Merge pull request #646 in SNORT/snort3 from static_analysis_fixes to master
Squashed commit of the following:
commit
9828dcff1ed69362b71da63b25a3adff33287452
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Thu Sep 29 08:08:47 2016 -0400
Two assert()'s to overcome static analysis errors.
Russ Combs (rucombs) [Thu, 29 Sep 2016 17:42:16 +0000 (13:42 -0400)]
Merge pull request #645 in SNORT/snort3 from late to master
Squashed commit of the following:
commit
a797535dfab7af50483a891e95d37a5fd22ca00c
Author: Russ Combs <rucombs@cisco.com>
Date: Wed Sep 28 21:42:23 2016 -0400
fix ac_full initialization performance
commit
a4edbc38a49e7d54e19dae65a29257db9c99129a
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Wed Sep 28 06:07:36 2016 -0400
latency log tweaks
Russ Combs [Tue, 27 Sep 2016 21:45:39 +0000 (17:45 -0400)]
build 213
Russ Combs (rucombs) [Tue, 27 Sep 2016 21:42:13 +0000 (17:42 -0400)]
Merge pull request #640 in SNORT/snort3 from sd_pattern_from to master
Squashed commit of the following:
commit
8c9f3f7e17accb55731074226ba7325f8ad717cc
Author: Victor Roemer <viroemer@cisco.com>
Date: Tue Sep 27 12:33:33 2016 -0400
Slide validation input data to the start of match.
Hui Cao (huica) [Tue, 27 Sep 2016 20:45:56 +0000 (16:45 -0400)]
Merge pull request #641 in SNORT/snort3 from file_smb2 to master
Remove extra byte for file name
Avoiding checking policy for each packet.
Squashed commit of the following:
commit
791af2b871275d159f4421239628b45406a6e9e7
Author: huica <huica@cisco.com>
Date: Tue Sep 27 15:21:10 2016 -0400
correct file name size
Shawn Turner (shaturne) [Tue, 27 Sep 2016 17:47:26 +0000 (13:47 -0400)]
Merge pull request #638 in SNORT/snort3 from full_retransmit to master
Squashed commit of the following:
commit
8801fc1c994927d371735109f88ed08d667b0c15
Author: Bhagya Tholpady <bbantwal@cisco.com>
Date: Mon Sep 26 16:08:57 2016 -0400
porting full retransmit changes from snort 2.8.3
Russ Combs (rucombs) [Tue, 27 Sep 2016 13:22:56 +0000 (09:22 -0400)]
Merge pull request #639 in SNORT/snort3 from hs_tl to master
Squashed commit of the following:
commit
4f4f7fb4d5ced30a2de94186c93add9d66996d3a
Author: Russ Combs <rucombs@cisco.com>
Date: Mon Sep 26 20:32:03 2016 -0400
fix multithread hyperscan mpse
Russ Combs [Sat, 24 Sep 2016 20:43:15 +0000 (16:43 -0400)]
build 212
Russ Combs (rucombs) [Fri, 23 Sep 2016 21:35:57 +0000 (17:35 -0400)]
Merge pull request #636 in SNORT/snort3 from crc_timeouts to master
Squashed commit of the following:
commit
2797249af796d70c7b0eb9759d056bca3572e229
Author: Russ Combs <rucombs@cisco.com>
Date: Fri Sep 23 14:43:19 2016 -0400
separate idle timeouts from session timeouts counts
close tcp on rst in close wait, closing, fin wait 1, and fin wait 2
Russ Combs (rucombs) [Fri, 23 Sep 2016 20:48:52 +0000 (16:48 -0400)]
Merge pull request #635 in SNORT/snort3 from ~MIALTIZE/snort3:os-cleanup to master
Squashed commit of the following:
commit
c9776312bc8fe2b0320f2e79a068bef2e30d9dae
Author: Michael Altizer <mialtize@cisco.com>
Date: Fri Sep 23 16:02:19 2016 -0400
doc: Update style guide for 'using' statements and underscores
commit
f8a541ce2ca3c349976f6f03d28ebed3d4e723fc
Author: Michael Altizer <mialtize@cisco.com>
Date: Fri Sep 23 13:08:24 2016 -0400
build: Fix 32-bit compiler warnings
commit
c3692c6d4c2cafead8a65235b7eb37cb31790ae9
Author: Michael Altizer <mialtize@cisco.com>
Date: Fri Sep 23 12:33:25 2016 -0400
build: Fix illumos/OpenSolaris build and remove SOLARIS/SUNOS defines
commit
6315aaf73aeda470b3e698f994282762f2774652
Author: Michael Altizer <mialtize@cisco.com>
Date: Fri Sep 23 11:21:56 2016 -0400
packet_capture: Include top-level pcap.h for backward compatibility
commit
e2446819cb97c0c3ea5ad38d4c1fdb77a5aa0c16
Author: Michael Altizer <mialtize@cisco.com>
Date: Fri Sep 23 11:15:58 2016 -0400
lua: Fix conflict with _L macro from ctype.h on OpenBSD
commit
1c4ac1695457446de11d8d2ad09e5b838514d7b1
Author: Michael Altizer <mialtize@cisco.com>
Date: Fri Sep 23 02:41:38 2016 -0400
cmake: Clean dead variables out of config.cmake.h
commit
d0ff9dc6e9733e430f207f90ff289053837510fb
Author: Michael Altizer <mialtize@cisco.com>
Date: Fri Sep 23 02:33:35 2016 -0400
build: Remove superfluous LINUX and MACOS definitions
They were only used in C/C++ code and can be replaced with the
standard C preprocessor macros defined by platform compilers.
commit
368f216086edb97866d3e73939e18cc7c9af86a5
Author: Michael Altizer <mialtize@cisco.com>
Date: Fri Sep 23 01:54:08 2016 -0400
build: Remove superfluous OPENBSD and FREEBSD definitions
They were only used in C/C++ code and can be replaced with the standard
C preprocessor macros defined by platform compilers.
commit
7f2d77cebcb660f2d515f2fbd963049f838ced28
Author: Michael Altizer <mialtize@cisco.com>
Date: Fri Sep 23 01:44:36 2016 -0400
build: Entering 'std' namespace should be after all headers are included
Otherwise, things get weird. Especially on illumos.
commit
b6265ea5a8af4bd9a8c1dbfa9f8a316b068fd848
Author: Michael Altizer <mialtize@cisco.com>
Date: Fri Sep 23 01:21:44 2016 -0400
build: Clean up u_int*_t usage
commit
b82a09c460d5c27fd3c827ea65ce32a296d7a0b6
Author: Michael Altizer <mialtize@cisco.com>
Date: Fri Sep 23 01:10:57 2016 -0400
build: Remove SPARC support
Sorry, but it probably didn't work anyway and we have nothing to test it
on. If anyone really wants it, they are free to test it and add it
again.
commit
33d61442742c136b7c644e55d96aa875adb87dd4
Author: Michael Altizer <mialtize@cisco.com>
Date: Mon Sep 12 15:39:18 2016 -0400
main: Remove unused -w commandline option
commit
cdf3b6f62e1cce4816fb7ac5ff6148eeb77d80df
Author: Michael Altizer <mialtize@cisco.com>
Date: Mon Sep 12 13:50:39 2016 -0400
Clean up some DAQ header inclusion creep.
Michael Altizer (mialtize) [Fri, 23 Sep 2016 20:10:18 +0000 (16:10 -0400)]
Merge pull request #632 in SNORT/snort3 from dce_udp_snort2lua to master
Squashed commit of the following:
commit
ee86fa251e30c1fdaddb21774244ed608a71c327
Author: mdagon <mdagon@cisco.com>
Date: Thu Sep 22 18:30:54 2016 -0400
Code review
commit
90b8e627ae34ed8124c9d31207cc99dc2d915345
Author: mdagon <mdagon@cisco.com>
Date: Mon Sep 19 08:59:48 2016 -0400
Dce udp snort2lua
huica [Fri, 23 Sep 2016 16:40:38 +0000 (12:40 -0400)]
Merge branch 'master' of
Russ Combs (rucombs) [Fri, 23 Sep 2016 16:31:01 +0000 (12:31 -0400)]
Merge pull request #634 in SNORT/snort3 from cmake-appid-unit-tests to master
Squashed commit of the following:
commit
d2c849d8fc628237be8f0e291213433cb23b3556
Author: Victor Roemer <viroemer@cisco.com>
Date: Thu Sep 22 14:57:38 2016 -0400
Fix another case of CPPUTest header order issues
huica [Fri, 23 Sep 2016 16:21:00 +0000 (12:21 -0400)]
Detect files when they are transferred in segments in SMB2
Russ Combs [Fri, 23 Sep 2016 00:39:56 +0000 (20:39 -0400)]
build 211
Russ Combs (rucombs) [Thu, 22 Sep 2016 21:02:30 +0000 (17:02 -0400)]
Merge pull request #633 in SNORT/snort3 from hs to master
Squashed commit of the following:
commit
55c5043898a1cc1856d055d576e1518112cd97ff
Author: Russ Combs <rucombs@cisco.com>
Date: Thu Sep 22 14:25:23 2016 -0400
fix hyperscan with nocase
Russ Combs (rucombs) [Thu, 22 Sep 2016 15:07:28 +0000 (11:07 -0400)]
Merge pull request #631 in SNORT/snort3 from stream to master
Squashed commit of the following:
commit
ae3452ee7aa1acfbd370e1385046986d0553da83
Author: Russ Combs <rucombs@cisco.com>
Date: Wed Sep 21 21:04:38 2016 -0400
move flow purge at shutdown ahead of plugin termination
fix --dirty-pig
refactor use of flow_con for better encapsulation
make all Stream methods static and hide stream implementation
Russ Combs (rucombs) [Wed, 21 Sep 2016 10:54:09 +0000 (06:54 -0400)]
Merge pull request #629 in SNORT/snort3 from ~MIALTIZE/snort3:freebsd-fix to master
Squashed commit of the following:
commit
f14956bfe743fb068fbdc6298952b3dae85927eb
Author: Michael Altizer <mialtize@cisco.com>
Date: Wed Sep 21 00:14:24 2016 -0400
service_rpc: Fix FreeBSD build
Russ Combs [Tue, 20 Sep 2016 22:42:14 +0000 (18:42 -0400)]
build 210
Russ Combs (rucombs) [Tue, 20 Sep 2016 20:46:36 +0000 (16:46 -0400)]
Merge pull request #628 in SNORT/snort3 from misc_perf to master
Squashed commit of the following:
commit
7b11ea83413f1af8f0f5a847a0177637deca1d45
Author: Russ Combs <rucombs@cisco.com>
Date: Fri Sep 16 17:32:17 2016 -0400
Refactored BitOp related. Only instantiate on demand. Move accessor out of stream_api
for better encapsulation in ips_flowbits. Eliminate useless methods.
Added stream.ip_frags_only so we can avoid processing non-ICMP-TCP-UDP-frags where not
needed. This avoids creating flows etc. Beware - appID wants flows for everything
at the moment.
Fixed double counting of ip session timeouts and prunes as well as
double counting of udp session timeouts.
Changed stale pruning to prune 1 at a time to resolve excessive latency caused
by pruning. Timeouts are pruned one at a time too, although it remains to be
seen if this is adequate for idle timeouts where connection events are concerned.
Changed default cache sizes to match 2.X.
FlowControl::max_flows() and FlowControl::prune_flows() no longer used; deleted.
Shutdown purging was being counted as prunes in stream_tcp. This is fixed but
still need to fix stream.user prunes which includes shutdown stuff.
Added a crude total and max to packet latency stats to calculate average packet time
a la 2.X. Still only totals about half of runtime so needs to be revisited. It is not
supposed to include stuff like decode so it may be ok.
Fixed stream_tcp to close a scan session immediately (was timing out). So a SYN
that gets a RST results in closed and getting cleared.
Fixed some annoying legacy naming issues. So inspector data on a flow is now
flow_data instead of application_data. Also C-style functions like
get_x_from_y() are now simply C++-style get_x().
Cleanup default conf.
Michael Altizer (mialtize) [Mon, 19 Sep 2016 18:49:46 +0000 (14:49 -0400)]
Merge pull request #626 in SNORT/snort3 from dce_udp to master
Squashed commit of the following:
commit
38110ede8614168bdd50be25d1f0457ae61cbbb4
Author: mdagon <mdagon@cisco.com>
Date: Mon Sep 19 07:37:40 2016 -0400
Fix typo
commit
f3e67082bf7b6389d624d17577a151814b81e4c3
Author: mdagon <mdagon@cisco.com>
Date: Mon Sep 19 02:35:07 2016 -0400
Dce udp skeleton
Michael Altizer (mialtize) [Mon, 19 Sep 2016 16:00:15 +0000 (12:00 -0400)]
Merge pull request #624 in SNORT/snort3 from stream-ha-dev_notes to master
Squashed commit of the following:
commit
0684abf3822d39fa63b64d2a3fc82ee5806d9653
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Fri Sep 16 08:57:56 2016 -0400
Add HA details to the stream/* dev_notes.
Michael Altizer (mialtize) [Mon, 19 Sep 2016 15:53:57 +0000 (11:53 -0400)]
Merge pull request #625 in SNORT/snort3 from fix_binder_make to master
Squashed commit of the following:
commit
6fbad6a322f0e2f0ba5e77fb1bcf2e59da2e3192
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Mon Sep 19 11:06:56 2016 -0400
Fixed binder make files to include binder.h
Michael Altizer (mialtize) [Thu, 15 Sep 2016 15:03:54 +0000 (11:03 -0400)]
Merge pull request #623 in SNORT/snort3 from tcp_connector_UT_osx to master
Squashed commit of the following:
commit
a64e28d02f5d75c75528d61936e99a3052254f20
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Thu Sep 15 09:42:45 2016 -0400
Fix tcp_connector_test for OSX build.
Russ Combs [Thu, 15 Sep 2016 00:06:57 +0000 (20:06 -0400)]
build 209
Russ Combs [Wed, 14 Sep 2016 21:27:40 +0000 (17:27 -0400)]
disable cpputest leak checks with hyperscan unit tests to avoid crashes or hangs in cpputest
Hui Cao (huica) [Wed, 14 Sep 2016 16:48:46 +0000 (12:48 -0400)]
Merge pull request #622 in SNORT/snort3 from tsc_update to master
Squashed commit of the following:
commit
2cbdfa72cd6f09b8189465341e64ae7e2f1088df
Author: Russ Combs <rucombs@cisco.com>
Date: Wed Sep 14 11:19:43 2016 -0400
add missing usec conversions
add hyperscan single match flag for optimization
Russ Combs (rucombs) [Wed, 14 Sep 2016 00:01:41 +0000 (20:01 -0400)]
Merge pull request #621 in SNORT/snort3 from det_filt to master
Squashed commit of the following:
commit
0aaf1bda7810d19035d6ada0c5b8be54ded81903
Author: Russ Combs <rucombs@cisco.com>
Date: Tue Sep 13 16:20:19 2016 -0400
fix inverted detection_filter logic
Michael Altizer (mialtize) [Tue, 13 Sep 2016 21:06:30 +0000 (17:06 -0400)]
Merge pull request #620 in SNORT/snort3 from tsc_clock to master
Squashed commit of the following:
commit
e2bd893a5333968fe1899d2e67b19b98e2a65668
Author: Russ Combs <rucombs@cisco.com>
Date: Tue Sep 13 16:00:05 2016 -0400
add cmake support for --enable-tsc-clock
commit
170d01c6bbf086b2ea08dc26c96619a18a5eaf4b
Author: Russ Combs <rucombs@cisco.com>
Date: Mon Sep 12 22:40:10 2016 -0400
add --enable-tsc-clock to build/use TSC register
tweak link order so time methods are found
clean up some fp_detect cruft
update latency to use ticks during runtime
fix stream profile stats parents
remove unused cpuclock.h
Michael Altizer (mialtize) [Tue, 13 Sep 2016 18:38:53 +0000 (14:38 -0400)]
Merge pull request #618 in SNORT/snort3 from dce_fast_pattern to master
Squashed commit of the following:
commit
1be83a6aa6114539d25f00941bce219b2d5bafab
Author: mdagon <mdagon@cisco.com>
Date: Tue Sep 13 12:18:04 2016 -0400
Code review
commit
30ad3f627238c4917920b1e4699331e391235edb
Author: mdagon <mdagon@cisco.com>
Date: Mon Sep 12 03:01:28 2016 -0400
Dce iface fast pattern for tcp
Shawn Turner (shaturne) [Tue, 13 Sep 2016 13:33:51 +0000 (09:33 -0400)]
Merge pull request #616 in SNORT/snort3 from crc_flush to master
Squashed commit of the following:
commit
f7e5fd34e3bee33e92ce677181408374f019f27e
Author: Russ Combs <rucombs@cisco.com>
Date: Tue Sep 6 21:41:54 2016 -0400
fully cut over to use stream splitter reassembly buffer and size / max
squelch bogus gap counts
Michael Altizer (mialtize) [Fri, 9 Sep 2016 14:15:03 +0000 (10:15 -0400)]
Merge pull request #617 in SNORT/snort3 from tcp_connector-UT_fix to master
Squashed commit of the following:
commit
ccaa495c1ba7f4c2c803f01450d10637a75a7168
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Thu Sep 8 15:31:48 2016 -0400
Fix UT to NOT attempt to stub-out the ReceiveRing.
Russ Combs [Fri, 9 Sep 2016 11:53:42 +0000 (07:53 -0400)]
build 208
Michael Altizer (mialtize) [Thu, 8 Sep 2016 19:33:14 +0000 (15:33 -0400)]
Merge pull request #615 in SNORT/snort3 from ha-tcp-stream to master
Squashed commit of the following:
commit
8ed6a1c5d87cafdf9fd3319a8ae41b65378207d5
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Wed Sep 7 13:10:29 2016 -0400
Needed additional calls to *HAManager::process_deletion()
commit
8d921b570018695ce9db9b308c8d730d18133afe
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Fri Sep 2 12:58:05 2016 -0400
Updates got TCP flow HA.
Michael Altizer (mialtize) [Thu, 8 Sep 2016 17:46:12 +0000 (13:46 -0400)]
Merge pull request #614 in SNORT/snort3 from crc_lzma to master
Squashed commit of the following:
commit
733e5c3c4f5fd7c5eab4b079db98fb36f1d0216a
Author: Russ Combs <rucombs@cisco.com>
Date: Tue Sep 6 18:37:28 2016 -0400
refactor file_decomp.h so that pdf and swf headers aren't required
ensure consistent fd_session_t regardless of lzma support for snort and extras
reorganize fd_session_t to reduce void space
don't install internal swf and pdf headers
Shawn Turner (shaturne) [Wed, 7 Sep 2016 17:13:21 +0000 (13:13 -0400)]
Merge pull request #613 in SNORT/snort3 from appid_client_smtp5 to master
Squashed commit of the following:
commit
244930cb9245e978861f61ee0387c726fc1974e5
Author: Steve Chew <stechew@cisco.com>
Date: Tue Sep 6 11:50:55 2016 -0400
Added smtp client counters and unit tests.
Michael Altizer (mialtize) [Wed, 7 Sep 2016 17:02:57 +0000 (13:02 -0400)]
Merge pull request #609 in SNORT/snort3 from smbv2 to master
Squashed commit of the following:
commit
a35102052f7c311bf47ac68f74fad952c3f79121
Author: mdagon <mdagon@cisco.com>
Date: Tue Aug 30 14:37:28 2016 -0400
Smbv2
Michael Altizer (mialtize) [Fri, 2 Sep 2016 21:01:23 +0000 (17:01 -0400)]
Merge pull request #612 in SNORT/snort3 from ftp_print_remove to master
Squashed commit of the following:
commit
07e889b0cc3417a2d6a4033cd2617e28a6136c91
Author: Tom Peters <thopeter@cisco.com>
Date: Fri Sep 2 11:27:59 2016 -0400
Commented out code related to ftp_config::show()
Michael Altizer (mialtize) [Fri, 2 Sep 2016 18:20:34 +0000 (14:20 -0400)]
Merge pull request #611 in SNORT/snort3 from ~MIALTIZE/snort3:warnings to master
Squashed commit of the following:
commit
155ad1dfe538abfa6b51a644926c018d40740d33
Author: Michael Altizer <mialtize@cisco.com>
Date: Fri Sep 2 10:50:45 2016 -0400
Clean up compiler warnings.
Shawn Turner (shaturne) [Fri, 2 Sep 2016 18:03:28 +0000 (14:03 -0400)]
Merge pull request #608 in SNORT/snort3 from mpls_encode to master
Squashed commit of the following:
commit
42ccbfaa13ee35556dfde13671aebb74b99ac014
Author: Bhagya Tholpady <bbantwal@cisco.com>
Date: Tue Aug 30 01:13:12 2016 -0400
porting mpls encode changes from 2.x
Russ Combs [Fri, 2 Sep 2016 15:11:32 +0000 (11:11 -0400)]
build 207
Russ Combs (rucombs) [Thu, 1 Sep 2016 17:37:40 +0000 (13:37 -0400)]
Merge pull request #607 in SNORT/snort3 from ha-binder to master
Squashed commit of the following:
commit
34a3a1b3cdadf388af53e94c6e12bcc95660d257
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Wed Aug 24 19:57:54 2016 -0400
Changes to binder.cc for HA
Add Binder::eval(Flow*) to initialize Flow's created via received HA messages.
Fix a failing UT and eliminate build warnings.
Add the missing cmake binder UT support..
Removed the Binder::eval(Flow*) and replaced by overloading the Binder::exec() method.
Create binder.h to house a new enum for the Binder::exec() options.
Refactor the exec() method into three functions,
Russ Combs (rucombs) [Wed, 31 Aug 2016 19:19:36 +0000 (15:19 -0400)]
Merge pull request #606 in SNORT/snort3 from appid_session_refactor to master
Squashed commit of the following:
commit
6569f68ab27d55e78022d9064a573e89037cdde2
Author: davis mcpherson <davis.mcpherson@gmail.com>
Date: Tue Aug 30 18:18:12 2016 -0400
remove extra func ptrs in ServiceApi instance
commit
b9e6eff6d24b74bf75388a1f0dcc5ead5e696024
Author: davis mcpherson <davis.mcpherson@gmail.com>
Date: Tue Aug 30 17:55:34 2016 -0400
fix compile warnings for unused function parameters, dump config options in debug mode
commit
7ca20ec40cada6e9a980e4b6130c7931006eb7c6
Author: davis mcpherson <davis.mcpherson@gmail.com>
Date: Tue Aug 9 09:56:51 2016 -0400
minor source formatting nits
fixes for memory management bugs in lua detectors
don't fatal error is lua package server init function is missing
fix stack buffer overflow due to invalid conversion of ip address string
fixes for memory leaks in appid lua detector management
more memory leak fixes
disable assert for now on lua detectors with no init
use sfip_t for ip addr variables
remove assert that checks for memory allocation that can never fail
disable assert for now on lua detectors with no init
remove assert that checks for memory allocation that can never fail
review/fix/catergorize FIXITs
add allocated DetectorFlow object to the allocatedFlowList when created in Detector_getFlow
add count for total lua detectors, remove bogus log statement
add () around logic expression in if statement
refactoring app id into reasonable classes...
first step toward creating proper appid session object
remove deprecated refs to streamAPI
cleaning up FIXITs, make some const params const
rename util directory to appid_utils
delete references to deprecated #def's
allocate tmp session object with new
updates from code review comments
fix compile errors in unit test due to AppIdSession rename
match up snort_calloc with snort_free for memory allocated for port exclusion lists
code review updates, unused code commented out, function names changed to fit coding style, future sessions create no longer requires session
fix compile warnings for unused function parameters, dump config options in debug mode
Tom Peters (thopeter) [Fri, 26 Aug 2016 18:54:50 +0000 (14:54 -0400)]
Merge pull request #604 in SNORT/snort3 from nhttp53 to master
Squashed commit of the following:
commit
acd74c3b9944b52d1cb1264b32a1f3de2a8d6b83
Author: Tom Peters <thopeter@cisco.com>
Date: Mon Aug 22 17:39:50 2016 -0400
NHI becomes OHI part 2
Tom Peters (thopeter) [Fri, 26 Aug 2016 15:29:20 +0000 (11:29 -0400)]
Merge pull request #605 in SNORT/snort3 from file to master
Squashed commit of the following:
commit
221b3697a6b686189041442fc22e002e5482870f
Author: huica <huica@cisco.com>
Date: Fri Aug 26 10:52:57 2016 -0400
Update dev notes
Tom Peters (thopeter) [Thu, 25 Aug 2016 16:52:05 +0000 (12:52 -0400)]
Merge pull request #603 in SNORT/snort3 from appid_rsync1 to master
Squashed commit of the following:
commit
d9f8bd1751d2deb3e9682a648b0b22c7bfb6c583
Merge:
011b8de 1c9b2e3
Author: Steve Chew <stechew@cisco.com>
Date: Wed Aug 24 12:34:30 2016 -0400
Merge branch 'appid_rsync1' of ssh://bitbucket-eng-rtp1.cisco.com:7999/snort/snort3 into appid_rsync1
commit
011b8de0c61fea1413025d9b8a74c0c9ad823fb3
Author: Steve Chew <stechew@cisco.com>
Date: Wed Aug 24 12:22:31 2016 -0400
Fixed Cmake test build.
commit
e25092d29345716ea5ce491232ee79251ea1727e
Author: Steve Chew <stechew@cisco.com>
Date: Tue Aug 23 09:50:02 2016 -0400
include service_rsync.cc file in tests so we can access private data.
commit
2703075fd0440ceb71c01be91d2ea3a28ba0f0fe
Author: Steve Chew <stechew@cisco.com>
Date: Fri Aug 19 16:36:50 2016 -0400
Added rsync flow counter and rsync_validate unit tests.
commit
1c9b2e3b28f68a488e264b26ea10f5fe23e5073b
Author: Steve Chew <stechew@cisco.com>
Date: Tue Aug 23 09:50:02 2016 -0400
include service_rsync.cc file in tests so we can access private data.
commit
0257acc0f2432d05684f28c4f3efc9b721a84eb2
Author: Steve Chew <stechew@cisco.com>
Date: Fri Aug 19 16:36:50 2016 -0400
Added rsync flow counter and rsync_validate unit tests.
Tom Peters (thopeter) [Tue, 23 Aug 2016 21:18:44 +0000 (17:18 -0400)]
Merge pull request #601 in SNORT/snort3 from appid_lua_modules to master
Squashed commit of the following:
commit
60777e8a0b9fd95648ef1c13d6691515dd19c271
Author: davis mcpherson <davis.mcpherson@gmail.com>
Date: Tue Aug 9 09:56:51 2016 -0400
minor source formatting nits
fixes for memory management bugs in lua detectors
don't fatal error is lua package server init function is missing
fix stack buffer overflow due to invalid conversion of ip address string
fixes for memory leaks in appid lua detector management
more memory leak fixes
disable assert for now on lua detectors with no init
use sfip_t for ip addr variables
remove assert that checks for memory allocation that can never fail
disable assert for now on lua detectors with no init
remove assert that checks for memory allocation that can never fail
review/fix/catergorize FIXITs
add allocated DetectorFlow object to the allocatedFlowList when created in Detector_getFlow
add count for total lua detectors, remove bogus log statement
add () around logic expression in if statement
fix formatting issues from code review comments
Tom Peters (thopeter) [Tue, 23 Aug 2016 17:31:17 +0000 (13:31 -0400)]
Merge pull request #578 in SNORT/snort3 from ha-sc-tcp to master
Squashed commit of the following:
commit
0652444c0ea2a17935c5d82cc2d934e73f19d742
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Fri Aug 19 07:08:28 2016 -0400
Removed reference to POLLRDHUP.
commit
fb39de92698a0162923315b7d314504b64c672fa
Merge:
6bca045 6255c61
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Fri Aug 19 06:49:14 2016 -0400
Merge branch 'ha-sc-tcp' of https://bitbucket-eng-rtp1.cisco.com/bitbucket/scm/snort/snort3 into ha-sc-tcp
commit
6bca045aa2aa55a184bc8f77efeb81ec61f6c402
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Tue Aug 16 19:38:02 2016 -0400
Update target code and UT's to disable receive thread for testing.
commit
248c51ed08280b21dcca61212747f99195633c63
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Mon Aug 15 16:15:17 2016 -0400
UT update.
commit
56bdab304cbf99e5a56337da853f8c50406e54ed
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Mon Aug 15 15:46:29 2016 -0400
Updates from code review.
commit
62b2ab8387c8b395bc2a72cab386070c5a6f9620
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Thu Aug 11 16:41:00 2016 -0400
Disable memory leak detection in CppUtest as it sometimes indicates a false positive under ASAN.
commit
6b7dcac104018dd4643ddde1b1c66cf32a6e573b
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Thu Aug 11 15:29:19 2016 -0400
Additional tcp_connector UT's
commit
9e0c8e9017ab8527d620faf3488215b8cca7c3d9
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Thu Aug 11 08:12:48 2016 -0400
Restore some mods that were reverted, but shouldn't have been..
commit
ad105545bda657e12b6df3af98a6317b45439730
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Wed Aug 10 07:34:26 2016 -0400
Revert "Additional UT's. Fix one memory leak scenario in tcp_connector.cc"
This reverts commit
e590395e2e5e12dc024d860285056ad31ad7c3c8 .
commit
56e5c6fa3463a886a312860c0374e7750ec4990a
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Wed Aug 10 07:34:02 2016 -0400
Revert "Fix an ASAN finding in UT."
This reverts commit
bc8b83c44f9307eba521bb4694d078f88cf9e50e .
commit
373986e3ecae80345d52780344766473e2a190ce
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Wed Aug 10 07:19:16 2016 -0400
Fix an ASAN finding in UT.
commit
03d7bd67e852c2dda9748651f8cf564af085289c
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Wed Aug 10 06:46:45 2016 -0400
Additional UT's. Fix one memory leak scenario in tcp_connector.cc
commit
68f3435ba9025bc210a008c424d379925df6584a
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Fri Aug 5 16:18:29 2016 -0400
Additional UT's
commit
beb32f995e766ff640beb7f47d40c0eef0375398
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Thu Aug 4 14:49:19 2016 -0400
Changed from ConcurrentQueue<> to Ring<> for the TcpConnector receiver.
commit
ca343728fb6f86eeddfb140466bf51054a549cb5
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Thu Aug 4 07:06:31 2016 -0400
Fix error in cmake build.
commit
423f603c0418d845320dfffc9f046ac51fa3a3e6
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Wed Aug 3 17:10:47 2016 -0400
Remove a few remnants of legacy code.
commit
549c4568e04078259a31e73a5f2deaff532730ac
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Wed Aug 3 17:05:56 2016 -0400
Fix a printf format warning ieeue.
commit
c0649eab8e858a1f8a52650e6d1060671207a016
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Tue Aug 2 14:56:37 2016 -0400
Fix memory leak with thread object.
commit
fdf2577b7efd40c0796d3758b6e7bad1f39c36d4
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Tue Aug 2 12:04:04 2016 -0400
Fix a thread shutdown issue.
commit
34b29a0fb66b3802ace70bfa218ab32e7b9a9b34
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Tue Jul 5 10:00:42 2016 -0400
tcp_connector.
Updates for TCP HA. Fixes for functional tests. Refactoring for work on tcp_connector.
Memory leak fix.
Updates for TCP HA. Fixes for functional tests. Refactoring for work on tcp_connector.
tcp_connector
commit
2fb93265418a749fe284d4820a7a3f6e91fcc746
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Tue Jul 5 10:00:42 2016 -0400
Updates for TCP HA. Fixes for functional tests. Refactoring for work on tcp_connector.
Memory leak fix.
commit
6085ac02479156030c8d7921e8a2d00b4f642790
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Tue Jul 5 10:00:42 2016 -0400
Updates for TCP HA. Fixes for functional tests. Refactoring for work on tcp_connector.
commit
6255c610cad1dc554bf36a47711f6ab47e393b6c
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Tue Aug 16 19:38:02 2016 -0400
Update target code and UT's to disable receive thread for testing.
commit
876493c83b38442ed91346bb2ebb46611a727844
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Mon Aug 15 16:15:17 2016 -0400
UT update.
commit
0c7025514146f4d6ece7da1dc94c02da6a50190d
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Mon Aug 15 15:46:29 2016 -0400
Updates from code review.
commit
b4359b6dc39498241faebcd586b5783f90c9b6c3
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Thu Aug 11 16:41:00 2016 -0400
Disable memory leak detection in CppUtest as it sometimes indicates a false positive under ASAN.
commit
dd2b2b4971766d4779d28aefba1403f627f37fb7
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Thu Aug 11 15:29:19 2016 -0400
Additional tcp_connector UT's
commit
2c13c0c3ab1bc369cea2e5632f0d1dd42bf49f79
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Thu Aug 11 08:12:48 2016 -0400
Restore some mods that were reverted, but shouldn't have been..
commit
92b440ff76eddc35352e87f341275671c81ddccf
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Wed Aug 10 07:34:26 2016 -0400
Revert "Additional UT's. Fix one memory leak scenario in tcp_connector.cc"
This reverts commit
e590395e2e5e12dc024d860285056ad31ad7c3c8 .
commit
919da30a29b855159be36967e7aa88ec2c24d997
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Wed Aug 10 07:34:02 2016 -0400
Revert "Fix an ASAN finding in UT."
This reverts commit
bc8b83c44f9307eba521bb4694d078f88cf9e50e .
commit
bc8b83c44f9307eba521bb4694d078f88cf9e50e
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Wed Aug 10 07:19:16 2016 -0400
Fix an ASAN finding in UT.
commit
e590395e2e5e12dc024d860285056ad31ad7c3c8
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Wed Aug 10 06:46:45 2016 -0400
Additional UT's. Fix one memory leak scenario in tcp_connector.cc
commit
1c8e424562402734dc7fa6a28ccdaece6f1c587a
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Fri Aug 5 16:18:29 2016 -0400
Additional UT's
commit
8bd056e9a0890b63a3c4cfc0922259970235c186
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Thu Aug 4 14:49:19 2016 -0400
Changed from ConcurrentQueue<> to Ring<> for the TcpConnector receiver.
commit
14788fdb755badf13bc2f7334ce2643b7e1b19ae
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Thu Aug 4 07:06:31 2016 -0400
Fix error in cmake build.
commit
e811e6f268a6a9c6538ed9cc29ca3f960c6c11d2
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Wed Aug 3 17:10:47 2016 -0400
Remove a few remnants of legacy code.
commit
46e335cacad11e6a96c8e3ec93eb356735b565d3
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Wed Aug 3 17:05:56 2016 -0400
Fix a printf format warning ieeue.
commit
0a7c43c4cfe06ae042c8399208bea915fb274096
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Tue Aug 2 14:56:37 2016 -0400
Fix memory leak with thread object.
commit
71899da94897aff8c25ed49567d0542842178ee7
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Tue Aug 2 12:04:04 2016 -0400
Fix a thread shutdown issue.
commit
56cc2f720c4e77fbb42d9be00c9ccaa7bd118b0a
Merge:
571bc99 4d80af3
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Tue Aug 2 08:58:47 2016 -0400
Merge branch 'ha-sc-tcp' of https://bitbucket-eng-rtp1.cisco.com/bitbucket/scm/snort/snort3 into ha-sc-tcp
commit
571bc99914d0fa3002990a2f58820f6c3f05950f
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Tue Jul 5 10:00:42 2016 -0400
tcp_connector.
Updates for TCP HA. Fixes for functional tests. Refactoring for work on tcp_connector.
Memory leak fix.
Updates for TCP HA. Fixes for functional tests. Refactoring for work on tcp_connector.
tcp_connector
commit
4d80af36f33a30360a5e0ea506feb5e30e61ea8b
Merge:
f61f12c 0f6c19d
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Thu Jul 7 07:35:38 2016 -0400
Merge branch 'ha-sc-tcp' of https://bitbucket-eng-rtp1.cisco.com/bitbucket/scm/snort/snort3 into ha-sc-tcp
commit
f61f12c51c806dc9097ccf4b1afb831a51e6792c
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Tue Jul 5 10:00:42 2016 -0400
Updates for TCP HA. Fixes for functional tests. Refactoring for work on tcp_connector.
Memory leak fix.
commit
0f6c19d80d40de163c4a5c8460c140db836df386
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Tue Jul 5 10:00:42 2016 -0400
Updates for TCP HA. Fixes for functional tests. Refactoring for work on tcp_connector.
Tom Peters (thopeter) [Tue, 23 Aug 2016 14:45:21 +0000 (10:45 -0400)]
Merge pull request #602 in SNORT/snort3 from ips_fragbits_edit to master
Squashed commit of the following:
commit
9571d405e2dc4b54d2cd97e1106a2cf13f33d591
Author: alewis <albert.l.lewis@gmail.com>
Date: Mon Aug 22 21:19:52 2016 -0400
removed has_*_mode() functions as the logic was changed from if/else ladder to use a switch statement
Tom Peters (thopeter) [Mon, 22 Aug 2016 21:28:26 +0000 (17:28 -0400)]
Merge pull request #600 in SNORT/snort3 from nhttp52 to master
Squashed commit of the following:
commit
af9dc1d130087276d06e6a0083ba1e23ec3a75c7
Author: Tom Peters <thopeter@cisco.com>
Date: Fri Aug 19 12:57:57 2016 -0400
Conversion from NHI to HI
Tom Peters (thopeter) [Mon, 22 Aug 2016 20:58:27 +0000 (16:58 -0400)]
Merge pull request #599 in SNORT/snort3 from ips_fragbits to master
Squashed commit of the following:
commit
60190f6f0526808c8179610ce66e8e81e29cd796
Author: alewis <albert.l.lewis@gmail.com>
Date: Sat Aug 20 16:38:21 2016 -0400
removed empty line
commit
debb157e5077fb43acd1e7b17b5c4aa7c0bee825
Author: alewis <albert.l.lewis@gmail.com>
Date: Sat Aug 20 16:30:43 2016 -0400
updated file added enums and replace if/else ladder
commit
9dd73493258e9687bcd10ce09bd492cc3483e966
Author: alewis <albert.l.lewis@gmail.com>
Date: Sat Aug 20 12:33:37 2016 -0400
changed const values to enum
commit
e1f477039b0d934e629654f2dc7b8bd99511e91e
Author: alewis <albert.l.lewis@gmail.com>
Date: Fri Aug 19 11:19:22 2016 -0400
updated ips_fragbits
Tom Peters (thopeter) [Fri, 19 Aug 2016 18:46:57 +0000 (14:46 -0400)]
Merge pull request #598 in SNORT/snort3 from nhttp51 to master
Squashed commit of the following:
commit
bf01ba0dba8b94d874cd2cb8036efde9a51646f0
Author: Tom Peters <thopeter@cisco.com>
Date: Thu Aug 11 15:25:53 2016 -0400
NHI alerts for Transfer-Encoding and Content-Encoding abuse.
Tom Peters (thopeter) [Wed, 17 Aug 2016 21:51:49 +0000 (17:51 -0400)]
Merge pull request #596 in SNORT/snort3 from ciscometadata to master
Squashed commit of the following:
commit
4133a11225fb77f59c0dba3ffb854dfeea012160
Author: Bhagya Tholpady <bbantwal@cisco.com>
Date: Tue Aug 16 03:09:55 2016 -0400
Porting the ciscometadata codec
Porting the ciscometadata codec
Porting the ciscometadata codec
Porting the ciscometadata codec
updating per review comments
Russ Combs (rucombs) [Wed, 17 Aug 2016 18:38:41 +0000 (14:38 -0400)]
Merge pull request #597 in SNORT/snort3 from double_vlan to master
Squashed commit of the following:
commit
9801a96ba004a74c0424d7eece759f9a4c217d62
Author: Bhagya Tholpady <bbantwal@cisco.com>
Date: Wed Aug 17 13:29:44 2016 -0400
Porting the Double and triple vlan tagging changes
Russ Combs (rucombs) [Tue, 16 Aug 2016 18:18:40 +0000 (14:18 -0400)]
Merge pull request #595 in SNORT/snort3 from regex_fp_fix to master
Squashed commit of the following:
commit
4084e9329da46be546e2d8b2b0fa924d3626663f
Author: Russ Combs <rucombs@cisco.com>
Date: Mon Aug 15 21:36:32 2016 -0400
fix regex as fast pattern with hyperscan mpse
Russ Combs (rucombs) [Mon, 15 Aug 2016 17:47:23 +0000 (13:47 -0400)]
Merge pull request #593 in SNORT/snort3 from ips_rpc_warnings to master
Squashed commit of the following:
commit
7e46c2d9a52823a017f494a6faacc65cf968bc85
Author: alewis <albert.l.lewis@gmail.com>
Date: Mon Aug 15 13:41:33 2016 -0400
changed increment to packet_data +=4
commit
1a6c5588f578fca01ea8952688eca3f7b7d5fb3f
Author: alewis <albert.l.lewis@gmail.com>
Date: Mon Aug 15 12:54:55 2016 -0400
cleaned up blank spaces
commit
a518988789186fb6af679bfd727f9e1951b67fa9
Author: alewis <albert.l.lewis@gmail.com>
Date: Mon Aug 15 12:20:13 2016 -0400
changes to fix variable warnings
projects / thirdparty / snort3.git / log
