git.ipfire.org Git - thirdparty/snort3.git/log

Merge pull request #770 in SNORT/snort3 from modern_zlib to master

Squashed commit of the following:

commit 152f75000bddbafd0180352d4208cb4eae1c3d70
Author: Michael Altizer <mialtize@cisco.com>
Date:   Mon Jan 9 21:38:56 2017 -0500

    http_server: Do not copy zlib z_stream object after initialization

    More recent versions of zlib now include a backreference from the
    stream state to the stream object for sanity checking, which becomes
    invalid if the z_stream object is copied by value.  Future functions
    called using the copied object will fail due to the sanity checks.

    http_server was doing this for no obvious reason, so this patch fixes it.

commit 25eef766344d6c24f096f3f0ecc175b244a8ef41
Author: Michael Altizer <mialtize@cisco.com>
Date:   Mon Jan 9 21:31:29 2017 -0500

    so_manager: Use the lowest legal value for windowBits in deflateInit2()

    The current value of -8 is not legal due to a bug in deflate with
    windowBits == 8 (256-byte window).  Newer versions of zlib are
    actively enforcing this restriction when headers are being excluded as
    Snort does and cause deflateInit2() to fail.  It used to silently change
    the windowBits to 9, so now do so explicitly.

    See also:
    https://github.com/madler/zlib/commit/049578f0a1849f502834167e233f4c1d52ddcbcc
    as well as the zlib manual (http://www.zlib.net/manual.html)

Merge pull request #769 in SNORT/snort3 from smb2_fix to master

Squashed commit of the following:

commit 9db2679579295da3f7a76eec8a9dea0bfcfc84a3
Author: huica <huica@cisco.com>
Date: Mon Jan 9 13:15:17 2017 -0500

disable smb2 processing when file service is disabled

Merge pull request #768 in SNORT/snort3 from expected_leak to master

Squashed commit of the following:

commit bc95f17209177c4d6e1417bb5a80ba47ae831ac9
Author: Michael Altizer <mialtize@cisco.com>
Date:   Mon Jan 9 14:16:31 2017 -0500

    expected: Fix expected flow leak when expiring nodes during lookup

    If expected cache nodes are expired during lookup, their associated
    unconsumed flows are leaked, eventually leading to a segfault when the
    pool of expected flows are exhausted.  This fix releases the expected
    flows when expiring the expected node.

    Thanks to João Soares <joaosoares11@hotmail.com> for reporting the
    issue.

Merge pull request #767 in SNORT/snort3 from header_fixes to master

Squashed commit of the following:

commit 844d73f41f407756e05b7784530f7690285903f8
Author: Michael Altizer <mialtize@cisco.com>
Date:   Fri Jan 6 11:14:12 2017 -0500

    autoconf: Add piglet plugin iface headers and unit_test_main.h to sources lists

commit 36ab75006d396f62642ab37f5bae14d78559d9e9
Author: Michael Altizer <mialtize@cisco.com>
Date:   Fri Jan 6 11:13:23 2017 -0500

    sfrt: Finish removal of sfrt_trie.h

commit eff74954c55abbfeb95af6865c37f06023a6d161
Author: Michael Altizer <mialtize@cisco.com>
Date:   Fri Jan 6 11:13:51 2017 -0500

    http_inspect: Restore stdexcept header inclusion for old compilers

Merge pull request #766 in SNORT/snort3 from expected_leak to master

Squashed commit of the following:

commit 0e6b4ac3791d30c26b164f9abd64c3f87fc27886
Author: Michael Altizer <mialtize@cisco.com>
Date: Thu Jan 5 18:55:35 2017 -0500

expected: Fix expected flow leak when pruning nodes

Merge pull request #765 in SNORT/snort3 from pcre_cflags to master

Squashed commit of the following:

commit 32ce7a4397b8219563c1a099ce789045046226dd
Author: Michael Altizer <mialtize@cisco.com>
Date: Wed Jan 4 15:10:22 2017 -0500

autoconf: Fix retrieving PCRE cppflags from pkg-config

Merge pull request #764 in SNORT/snort3 from header_cleanup to master

Squashed commit of the following:

commit d2b780ecee5d8c14a52df5f443594ef88c2d0d2b
Author: Michael Altizer <mialtize@cisco.com>
Date:   Thu Jan 5 12:57:47 2017 -0500

    doc: Update style guide with header inclusion instructions

commit 3c1979ca35f3cd3ddae7de83beab8dfb6d0508ac
Author: Michael Altizer <mialtize@cisco.com>
Date:   Thu Dec 22 15:50:14 2016 -0500

    install: Prune the set of installed headers

commit fc995ce4218462561a9e86ae8288a458e2d95add
Author: Michael Altizer <mialtize@cisco.com>
Date:   Thu Dec 22 15:56:38 2016 -0500

    build: The big header cleanup

Merge pull request #763 in SNORT/snort3 from fix-osx to master

Squashed commit of the following:

commit 1cf8d99a6467a6c5f446ffa5953fca9ecfa45d2b
Author: Victor Roemer <viroemer@cisco.com>
Date: Wed Jan 4 13:55:48 2017 -0500

alert_sf_socket is not supported on OSX

Merge pull request #751 in SNORT/snort3 from doc_sdf2x3x to master

Squashed commit of the following:

commit 042b8ad6e168b42e4fd46de8ebd5a10f46a86284
Author: Victor Roemer <viroemer@cisco.com>
Date: Thu Dec 15 12:08:55 2016 -0500

SDF 2.x vs 3.x

Merge pull request #759 in SNORT/snort3 from pkg_conf to master

Squashed commit of the following:

commit 5ffeafc229b253e2e0b3cdd4da94e57f9c50272d
Author: Carter Waxman <cwaxman@cisco.com>
Date: Tue Dec 13 14:13:54 2016 -0500

Added CPP flags used to build Snort to snort.pc for extras and other plugins to use

Merge pull request #762 in SNORT/snort3 from userssn to master

Squashed commit of the following:

commit 78d6818621bb12500c440b79fd07f36eebaabd5f
Author: Russ Combs <rucombs@cisco.com>
Date:   Thu Dec 22 10:27:09 2016 -0500

    convert debug prints to proper traces

commit c6deeed10fa6fc82f164d54a6562616a18d0b3ce
Author: Russ Combs <rucombs@cisco.com>
Date:   Thu Dec 22 07:10:34 2016 -0500

    fix user session reassembly

build 223

refactor plugin loading so that builtins are loaded
with the same lists as dynamic plugins.

Merge pull request #761 in SNORT/snort3 from nhttp62 to master

Squashed commit of the following:

commit ad012fd47facac9599f369baac37ae33b292af13
Author: Tom Peters <thopeter@cisco.com>
Date: Wed Dec 14 11:18:29 2016 -0500

Improve NHI Field class

Merge pull request #760 in SNORT/snort3 from file_reload to master

Squashed commit of the following:

commit 758044e06f1da69e4984fd3a5c7bf8ff46d73794
Author: huica <huica@cisco.com>
Date: Fri Dec 16 10:13:26 2016 -0500

Add file inspector to avoid reload issues

fix daemonization

Merge pull request #755 in SNORT/snort3 from smb_active_response to master

Squashed commit of the following:

commit 1382167838c9b098ce5ff7a65560f599b741b579
Author: Bhagya Tholpady <bbantwal@cisco.com>
Date: Mon Dec 19 04:18:15 2016 -0500

smb active response updates

Merge pull request #753 in SNORT/snort3 from appid_docs1 to master

Squashed commit of the following:

commit 38e9cfcf5c392c75e40a0ec0718479f9a0599326
Author: Steve Chew <stechew@cisco.com>
Date: Thu Dec 15 16:04:35 2016 -0500

Added AppId to Features section of doc. Removed RNA code.

Merge pull request #758 in SNORT/snort3 from tsc_fix to master

Squashed commit of the following:

commit 7752bae1299569b97989ed65f4867d64172620b5
Author: Russ Combs <rucombs@cisco.com>
Date:   Mon Dec 19 18:53:55 2016 -0500

    do not build tsc clock scaling if not enabled
        (don't break non-x86 builds)

Merge pull request #757 in SNORT/snort3 from failed_init to master

Squashed commit of the following:

commit 2f5ecada66689fc0abcb05bafc402c66ff6cbad2
Author: Michael Altizer <mialtize@cisco.com>
Date: Mon Dec 19 13:29:31 2016 -0500

Fix thread termination segfaults after DAQ module initialization fails

Merge pull request #756 in SNORT/snort3 from flush_fix2 to master

Squashed commit of the following:

commit 73fb00538580fac0a17963837190863bb3f8b603
Author: Russ Combs <rucombs@cisco.com>
Date:   Mon Dec 19 11:12:09 2016 -0500

    fix splitter checks to make analyzer happy

commit e50e7b418f3ac7f4a9dc79fcf79fd9be2d3c7d2e
Author: Russ Combs <rucombs@cisco.com>
Date:   Mon Dec 19 07:29:27 2016 -0500

    fallback from paf to atom splitter if flushing past gap

fix paf-type flushing of single segments
thanks to joaosoares11@hotmail.com for reporting the issue

also fixes double counting of reassembled buffers
minor refactor of flush loop for clarity

fix appid service dispatch handling issue
thanks to João Soares <joaosoares11@hotmail.com> for reporting the issue

build 222

Merge pull request #752 in SNORT/snort3 from appid_service_plugin_fail_bug to master

Squashed commit of the following:

commit e96d17d582906a36eacaad7ba4b8afea3c56fb11
Author: davis mcpherson <davmcphe.cisco.com>
Date: Thu Dec 15 14:30:12 2016 -0500

this fixes the service plugin dispatch bug when a service failed and was deleted from the candidate list

adjust builtin rule text for consistent formatting

Merge pull request #754 in SNORT/snort3 from crc_s2l to master

Squashed commit of the following:

commit e5ffd64ddf366e1243ad75892fd3e8b3f2bd684b
Author: Russ Combs <rucombs@cisco.com>
Date:   Thu Dec 15 15:39:39 2016 -0500

    fix modbus_data handling to not skip options
    thanks to FabianMalte.Kopp@b-tu.de for reporting the issue

revert s2l const change to fix borked clang build

clean up help text

Merge pull request #750 in SNORT/snort3 from crc_const to master

Squashed commit of the following:

commit f638ff4cb5039a6b52dbc5e8d94c0aee060909a6
Author: Russ Combs <rucombs@cisco.com>
Date: Wed Dec 14 13:20:05 2016 -0500

const -> static const

Merge pull request #744 in SNORT/snort3 from nhttp58 to master

Squashed commit of the following:

commit 4150d37b3afef6615b88e8350d273976290d145c
Author: allewi <allewi@cisco.com>
Date: Mon Nov 28 20:57:00 2016 -0500

JavaScript Normalization

Merge pull request #748 in SNORT/snort3 from doc_sdftyop to master

Squashed commit of the following:

commit e646c080bfd765b3c42830b4a9b3eb8343bf58d4
Author: Victor Roemer <viroemer@cisco.com>
Date:   Wed Dec 14 11:09:40 2016 -0500

    Fix alert msg output

commit 565a89b76108f9058e898213cbd04c5b96020945
Author: Victor Roemer <viroemer@cisco.com>
Date:   Tue Dec 13 14:35:47 2016 -0500

    Fix typos

commit 0170073da41b6310a9b2e9e9464cfe32ac367fa0
Author: Victor Roemer <viroemer@cisco.com>
Date:   Thu Dec 8 16:23:48 2016 -0500

    Update example alert output to match latest behavior.

commit 7f8f8bb4b3cdfc7c9acefb6ea149267e66d34e4c
Author: Victor Roemer <viroemer@cisco.com>
Date:   Thu Dec 8 15:38:15 2016 -0500

    Fix typo

Merge pull request #749 in SNORT/snort3 from doc_concepts to master

Squashed commit of the following:

commit c0d4565a4996ded8816750e5637b4d0eb82f7594
Author: Russ Combs <rucombs@cisco.com>
Date: Wed Dec 14 11:50:34 2016 -0500

doc: update concepts

Merge pull request #747 in SNORT/snort3 from doc_umentation to master

Squashed commit of the following:

commit 1871bd514dce2bfaa7d28ccf4df25d2d5f48b00d
Author: Russ Combs <rucombs@cisco.com>
Date:   Tue Dec 13 07:55:26 2016 -0500

    more reorganization for clarity

commit 6db3bc35d92ae7ccc2bf9079d94b2aa5c5c7ae2d
Author: Russ Combs <rucombs@cisco.com>
Date:   Tue Dec 13 06:17:12 2016 -0500

    use Snort 2 and Snort 3 throughout

commit ea75de13ba40bd1acb479c5380fb898d024ab997
Author: Russ Combs <rucombs@cisco.com>
Date:   Fri Dec 9 11:45:49 2016 -0500

    doc: refactor user manual to start with overview, getting started,
    concepts, and features sections.

Merge pull request #746 in SNORT/snort3 from opensolaris_cppcheck to master

Squashed commit of the following:

commit c5ee2095e28b19c4fa99b4236041fc77a979e9dc
Author: Michael Altizer <mialtize@cisco.com>
Date:   Fri Dec 9 18:40:33 2016 -0500

    build: Address some cppcheck concerns

commit 9e89b0f57dd5e0a43d1c9600a54ac6fca8a155cf
Author: Michael Altizer <mialtize@cisco.com>
Date:   Thu Dec 8 19:10:33 2016 -0500

    build: Illumos build fixes

Merge pull request #745 in SNORT/snort3 from cppchk2 to master

Squashed commit of the following:

commit fae5565f41fb7db83287999210d7dda6457b5685
Author: Russ Combs <rucombs@cisco.com>
Date:   Fri Dec 9 16:27:32 2016 -0500

    fix cppcheck warning in ftp params

commit f41129dd4622688af4899c1faf9e45b33d90162a
Author: Russ Combs <rucombs@cisco.com>
Date:   Fri Dec 9 15:12:15 2016 -0500

    convert stream u2 maps arg to reference

commit 3347756cf56413da5a5fdd4210918bb7257a2f86
Author: Russ Combs <rucombs@cisco.com>
Date:   Fri Dec 9 12:53:28 2016 -0500

    fix int vs size_t format issue

commit 01ab793e28c8971e2d1094a4b1ea44bf7f68d943
Author: Russ Combs <rucombs@cisco.com>
Date:   Fri Dec 9 12:34:51 2016 -0500

    remove vestigial extra stream debug foo

build 221

cppcheck cleanup

doc/style: Fix macro name typo

Merge pull request #742 in SNORT/snort3 from macros_doc to master

Squashed commit of the following:

commit 8d2d0b87dd0dfe416fa7991f6c7c8b3e1501d8af
Author: Michael Altizer <mialtize@cisco.com>
Date: Thu Dec 8 13:15:13 2016 -0500

utils: License and document CPP padding guard macros.

Merge pull request #740 in SNORT/snort3 from thread_local2 to master

Squashed commit of the following:

commit 0e098bc439fea33fe8dafd4c07c6767630370441
Author: Carter Waxman <cwaxman@cisco.com>
Date: Wed Dec 7 12:50:51 2016 -0500

fixed dynamic build issues by forcing cross-unit THREAD_LOCAL access through functions

Merge pull request #741 in SNORT/snort3 from macros to master

Squashed commit of the following:

commit dd8de11b48dd18c5dbbd8d0d093b40028771b296
Author: Michael Altizer <mialtize@cisco.com>
Date: Wed Dec 7 16:44:33 2016 -0500

build: Rework key structure padding guard macros

Merge pull request #739 in SNORT/snort3 from cppcheck_fixes to master

Squashed commit of the following:

commit 0842be13d69f74dee314966e11ceb742d451da17
Author: Bhagya Tholpady <bbantwal@cisco.com>
Date: Mon Dec 5 12:51:39 2016 -0500

cppcheck error fixes

Merge pull request #731 in SNORT/snort3 from sfip to master

Squashed commit of the following:

commit 7d6beaa500576fd94654482baea2841c626094ea
Author: Michael Altizer <mialtize@cisco.com>
Date:   Mon Oct 17 21:39:28 2016 -0400

    sfip: Refactoring and split from SfCidr

commit 0910494ac22e82569b8faf2b041828b31708f5d7
Author: Michael Altizer <mialtize@cisco.com>
Date:   Thu Oct 20 13:16:00 2016 -0400

    sf_vartable: Initial conversion to Catch unit tests

commit 17c20f297605fbe954c26e0d2061fa258af7bf49
Author: Michael Altizer <mialtize@cisco.com>
Date:   Wed Nov 30 14:07:25 2016 -0500

    main: Mark main_read() as static

commit 30c7b6fd9413f0f338cd22f37dc37e79657054b5
Author: Michael Altizer <mialtize@cisco.com>
Date:   Wed Nov 23 12:04:42 2016 -0500

    appid: Remove unused API HTTP field functions

Merge pull request #737 in SNORT/snort3 from doc_dce to master

Squashed commit of the following:

commit 8f2a3e91369b4692dd4638067d4b493950c85b82
Author: huica <huica@cisco.com>
Date: Mon Dec 5 12:48:26 2016 -0500

Add manual for dcerpc

Merge pull request #735 in SNORT/snort3 from sip_strings to master

Squashed commit of the following:

commit fa7daec1f2e0064bc4cd14cafe028bfedf0d8c9e
Author: Carter Waxman <cwaxman@cisco.com>
Date:   Mon Dec 5 14:28:22 2016 -0500

    added copies to sip detector so strings are valid after the current packet disappears

commit 35bb540e26ed79d50a0f00299b9d993dde1cbc7d
Author: Carter Waxman <cwaxman@cisco.com>
Date:   Fri Dec 2 16:04:17 2016 -0500

    all SipEvent strings now handled wih char arrays

Merge pull request #738 in SNORT/snort3 from curse_uaf to master

Squashed commit of the following:

commit 11760bf923bbbe087b21330f6319d279908c8a6f
Author: Michael Altizer <mialtize@cisco.com>
Date: Mon Dec 5 19:24:51 2016 -0500

wizard: Refactor curses to prevent use-after-free of service name

Merge pull request #736 in SNORT/snort3 from exec_swap to master

Squashed commit of the following:

commit 8d68ca38e3e0a8bf7d66b1bb7805c1cbf0329ea7
Author: Russ Combs <rucombs@cisco.com>
Date: Fri Dec 2 13:40:28 2016 -0500

issue asynchronous swaps

build 220

Merge pull request #734 in SNORT/snort3 from doc_manual to master

Squashed commit of the following:

commit 89ac929f14c99e3aa3f2a3f072b83b8385992146
Author: Russ Combs <rucombs@cisco.com>
Date: Wed Nov 30 21:09:27 2016 -0500

refactor overview and features sections

Merge pull request #733 in SNORT/snort3 from appid_spaces to master

Squashed commit of the following:

commit 173463dad3d45eb063097764374f396aa07f5356
Author: Carter Waxman <cwaxman@cisco.com>
Date:   Thu Dec 1 12:04:25 2016 -0500

    removed underscores from all pegs outside of appid

commit d696ac7ee5ac0d1b4be029e610f344b04ef3568b
Author: Carter Waxman <cwaxman@cisco.com>
Date:   Wed Nov 23 15:25:44 2016 -0500

    removed '_' from appid pegs

Merge pull request #730 in SNORT/snort3 from sdf-doc to master

Squashed commit of the following:

commit 8944a32cad0a92c79c3b7ff2a546c8b55880316c
Author: Victor Roemer <viroemer@cisco.com>
Date: Wed Nov 30 10:50:26 2016 -0500

SDF-Doc take 2

Merge pull request #728 in SNORT/snort3 from alert_135_2 to master

Squashed commit of the following:

commit bbd04a472f5eb899ee3d2a90e967032948ec1c54
Author: huica <huica@cisco.com>
Date: Mon Nov 28 16:24:53 2016 -0500

Alert 135:2 when a 3-way handshake is completed

Merge pull request #732 in SNORT/snort3 from lockfix1 to master

Squashed commit of the following:

commit 45aa613f821d70b0e8e7cfb1d884c8047bd385c8
Author: Steve Chew <stechew@cisco.com>
Date: Wed Nov 30 19:40:19 2016 -0500

Removed unneeded lock.

Merge pull request #729 in SNORT/snort3 from appid_x509_memleak to master

Squashed commit of the following:

commit 1d47856b2d2f0f69c3d53550e3a9cff236ffdbed
Author: davis mcpherson <davmcphe.cisco.com>
Date:   Mon Nov 28 15:37:18 2016 -0500

    cleanup openssl resources when snort exits to eliminate memory leaks

    only call openssl cleanup functions required to clean crypto* api usage, move cleanup to plugin terminate api function, improve service ssl code style

Merge pull request #726 in SNORT/snort3 from appid_ptypes_scan_patch to master

Squashed commit of the following:

commit cfbad0aea0e04b034f7bcd70d07de6fcfc36dc73
Author: davis mcpherson <davmcphe.cisco.com>
Date:   Mon Nov 28 10:50:23 2016 -0500

    delete auto ptr used to point to member variable of the AppIdSession class, just use the member variable directly.  Some coding style improvements

commit 616baeb1eae80e6d4954c0a1e85db4d34085a13e
Author: davis mcpherson <davmcphe.cisco.com>
Date:   Mon Nov 28 15:06:26 2016 -0500

    make ptype_scan_counts a field of the httpSession struct

commit fef9bdf71276aa9b8966609c49743f6df3136bcd
Author: davis mcpherson <davmcphe.cisco.com>
Date:   Mon Nov 28 14:41:55 2016 -0500

    Add mutex lock around calls into crypto lib for X509 cert processing, crypto lib not thread safe so calls into this lib from multiple packet threads appear to be causing random failures

Merge pull request #724 in SNORT/snort3 from gtp_duplicates to master

Squashed commit of the following:

commit abde9b0d9432302fc1ad7dc1a776d92525116564
Author: allewi <allewi@cisco.com>
Date: Sun Nov 27 13:08:38 2016 -0500

added line to prevent duplicate gtp configurations from being printed

Merge pull request #725 in SNORT/snort3 from modbus_duplicates to master

Squashed commit of the following:

commit 6f6e45378a305b45648ebcaf052660a9d7ad79b3
Author: allewi <allewi@cisco.com>
Date: Sun Nov 27 13:27:40 2016 -0500

adding change to prevent duplicate modbus configurations

Merge pull request #721 in SNORT/snort3 from double_lua to master

Squashed commit of the following:

commit b5229dc110c61a58eb586c2a6ef681001dcfacc1
Author: Carter Waxman <cwaxman@cisco.com>
Date: Mon Nov 21 15:05:39 2016 -0500

added multiple passes to lua so variables are always set before used

Merge pull request #722 in SNORT/snort3 from appid_stl_thread_safety to master

Squashed commit of the following:

commit 991eb29ae7f85b1e9e1b72f334eb96536c568b10
Author: davis mcpherson <davmcphe.cisco.com>
Date:   Wed Nov 23 14:09:00 2016 -0500

    use std::lock_guard to manage life cycle of mutex ownership when accessing app info tables.

commit a09a573489bf2b69930b6aa58006699fd3ab0681
Author: davis mcpherson <davmcphe.cisco.com>
Date:   Wed Nov 23 10:33:49 2016 -0500

    add lock around read accesses to app info tables.  there is a single lock that is global to all app info tables, more granular locking on a per table basis may be implemented in the future to improve performance

    remove caching AppIdServiceIDState object pointers in the AppIdSession object.  The service state object may get deleted without the knowledge of appid sessions that have cached the pointer.  For now a get using the ip/port/protocol tuple of the destination is used to get the service state object.  This is short term solution until a move to the host cache can be implemented.

Merge pull request #719 in SNORT/snort3 from ecb_alt_fast_pattern to master

Squashed commit of the following:

commit b89eb774fcc4a5ac076304db6dab6dd31f5ddf99
Author: mdagon <mdagon@cisco.com>
Date:   Fri Nov 18 13:28:03 2016 -0500

    alternate pattern for dce_udp iface rule option

    Code review fixes

    Remove an extra 'using namespace std'

    Refactoring

Merge pull request #720 in SNORT/snort3 from cut_down to master

Squashed commit of the following:

commit f3bb19f43167cdda20698247fa21ba25f77b6dc5
Author: Russ Combs <rucombs@cisco.com>
Date:   Tue Nov 22 14:29:52 2016 -0500

    refactor dce_smb.cc

commit d61f30962fd70cfbb2ec66c0cbe017760f5a42a9
Author: Russ Combs <rucombs@cisco.com>
Date:   Tue Nov 22 12:54:31 2016 -0500

    refactor smb message definitions

commit 806617d70753418e348724443d0b655bc63d91b8
Author: Russ Combs <rucombs@cisco.com>
Date:   Tue Nov 22 11:50:24 2016 -0500

    split hi_client.cc init methods into separate file

Merge pull request #718 in SNORT/snort3 from sdf_documenation to master

Squashed commit of the following:

commit 3cfa955237b9a1e87ca3cd08a9f8c8d2d7c81a8d
Author: Victor Roemer <viroemer@cisco.com>
Date: Tue Nov 15 14:50:01 2016 -0500

sd_pattern user documentation

Merge pull request #717 in SNORT/snort3 from file_reg to master

Squashed commit of the following:

commit 692030b8b6e8bee8ed0ca083cb74c2f5faa10dbd
Author: huica <huica@cisco.com>
Date:   Mon Nov 21 15:30:07 2016 -0500

    Fixed uu and qp decode issue
    Fixed file signature calculation for ftp
    Fixed file resume blocking

Merge pull request #715 in SNORT/snort3 from appid_fflow3 to master

Squashed commit of the following:

commit a9e3e7de8612efb242df0f21d32d0654e647d90c
Merge: 31d0bf7 61a685b
Author: Steve Chew <stechew@cisco.com>
Date:   Mon Nov 21 23:50:53 2016 -0500

    Merge branch 'appid_fflow3' of ssh://bitbucket-eng-rtp1.cisco.com:7999/snort/snort3 into appid_fflow3

    Conflicts:
     src/network_inspectors/appid/detector_plugins/detector_http.cc

commit 31d0bf78b51445976b335f705e25be0b0f744794
Author: Steve Chew <stechew@cisco.com>
Date:   Mon Nov 21 22:52:16 2016 -0500

    Remove future flow appid feature for http since there is no known use
    case.

commit 61a685bfd603fe098c64589162acbe2f838d2629
Author: Steve Chew <stechew@cisco.com>
Date:   Mon Nov 21 22:52:16 2016 -0500

    Remove future flow appid feature for http since there is no known use
    case.

fixd snort_defaults.lua: No such file or directory

snort_defaults.lua and file_magic.lua are located in $DIR/etc/snort.

build 219

Merge pull request #711 in SNORT/snort3 from appid_bug_fix_lua to master

Squashed commit of the following:

commit f4a91423f22ff5e3104ae0f67e7f7ebf38c6b5f9
Author: shaslad <shaslad@cisco.com>
Date:   Thu Nov 17 18:40:31 2016 -0500

    Fixing Index issue for few more Client Headers
    Changed code based on review comment

Merge pull request #709 in SNORT/snort3 from appid_service_ssl_mem_leak to master

Squashed commit of the following:

commit b3d4cd751ea4eebccaad578bbe6b7fb11349e47d
Author: davis mcpherson <davmcphe.cisco.com>
Date:   Mon Nov 21 11:12:22 2016 -0500

    check length field for ptr fields in SIPMsg struct and only access pointer if length > 0

commit 66fdd94c199fe4bb7e34eeaf105e831b9e87dc6e
Author: davis mcpherson <davmcphe.cisco.com>
Date:   Thu Nov 17 10:38:34 2016 -0500

    initialize service element objects when instantiated to ensure no access of uninitialized memory
    make detector types an enum, set detector type properly for pattern & port service elements
    use memcpy instead of strndup to copy http header from event message
    initialize tcp/udp port service vectors to APP_ID_NONE, use c++11 member variable initialization syntax

Merge pull request #713 in SNORT/snort3 from analyzerz to master

Squashed commit of the following:

commit 0ec1cd2494157cd82d01fe8420ab4fc349cd922e
Author: Russ Combs <rucombs@cisco.com>
Date:   Mon Nov 21 14:40:44 2016 -0500

    review updates

commit 5b3912d83b783255fd6089491bdbffc43cbc30d4
Author: Russ Combs <rucombs@cisco.com>
Date:   Sun Nov 20 09:52:33 2016 -0500

    fix analyzer command races

commit d182530ec55a53bd91ddaad01b160dd964c7db06
Author: Russ Combs <rucombs@cisco.com>
Date:   Sun Nov 20 07:44:44 2016 -0500

    unset signal handlers at shutdown

commit 73e31038dbf7e01351810c4f2efb95df642f55f0
Author: Russ Combs <rucombs@cisco.com>
Date:   Fri Nov 18 05:58:18 2016 -0500

    convert to event driven main loop

Merge pull request #714 in SNORT/snort3 from catch_tests to master

Squashed commit of the following:

commit a7190df88455d404405a9b7a2b92ce0e7e018946
Author: Michael Altizer <mialtize@cisco.com>
Date:   Mon Nov 21 15:01:27 2016 -0500

    catch: Support compiling catch tests in standalone source files

commit 6223f5aea12c005c39d3760d449a47f7e72503d9
Author: Michael Altizer <mialtize@cisco.com>
Date:   Mon Nov 21 14:01:00 2016 -0500

    wizard: Make DCE curses static

Merge pull request #710 in SNORT/snort3 from more_misc_fixes to master

Squashed commit of the following:

commit a0941af98b9d31cbed6dde9eb1cad27404ce76d4
Author: Russ Combs <rucombs@cisco.com>
Date:   Fri Nov 18 13:21:57 2016 -0500

    fix race with multiple packet threads

commit 53d440735a497d58a5ae7c7bbdd9f7443d61d158
Author: Russ Combs <rucombs@cisco.com>
Date:   Fri Nov 18 08:10:21 2016 -0500

    create pid file after dropping privs

commit f4e784f86cd395ef70710eec17c32726d7047b62
Author: Russ Combs <rucombs@cisco.com>
Date:   Fri Nov 18 08:08:19 2016 -0500

    proper cleanup of port objects in failure cases

commit a6b45aa3d2ddc6ca5de9d1df8fde5148f8b2fdd6
Author: Russ Combs <rucombs@cisco.com>
Date:   Fri Nov 18 07:14:05 2016 -0500

    only print file stats banner if stats available

Merge pull request #712 in SNORT/snort3 from cmake_cpputest to master

Squashed commit of the following:

commit fb4c001b0b8709a3505bb044705be8a2cedd84d8
Author: Michael Altizer <mialtize@cisco.com>
Date:   Fri Nov 18 11:50:08 2016 -0500

    cmake: Correct package name used in HS and HWLOC so that REQUIRED works.

commit 3a543585194bf2c30993cca4247bfd7f6ef88027
Author: Michael Altizer <mialtize@cisco.com>
Date:   Fri Nov 18 11:48:20 2016 -0500

    cmake: Improve detection and use of CppUTest in non-standard locations

Merge pull request #708 in SNORT/snort3 from obfucator_warning_fix to master

Squashed commit of the following:

commit 85dc8a679a7e181b24bad1cd4207d59b4772db29
Author: Bhagya Tholpady <bbantwal@cisco.com>
Date: Thu Nov 17 14:00:57 2016 -0500

obfuscator warning fix

Merge pull request #705 in SNORT/snort3 from sdf_out_mask to master

Squashed commit of the following:

commit 969cf8b3badde3bd15c7c58613fff279a76bb690
Author: Bhagya Tholpady <bbantwal@cisco.com>
Date: Mon Nov 14 12:14:59 2016 -0500

sdf changes

Merge pull request #707 in SNORT/snort3 from misc_fixes to master

Squashed commit of the following:

commit d796882a69f686aeb582f70a1ff6b94a44bf05ad
Author: Russ Combs <rucombs@cisco.com>
Date:   Wed Nov 16 09:38:56 2016 -0500

    revert to dumping 16 bytes per line by default

commit ae16bba4a86d6cdab6af1c38556cb3718fa1ee24
Author: Russ Combs <rucombs@cisco.com>
Date:   Wed Nov 16 09:03:20 2016 -0500

    fix out-of-tree doc builds
    fix image sizes to fit page; thanks to wyatuestc for reporting the issue
    change -L to -K in README and manual; thanks to jncornett for reporting the issue

commit fc11b8819ee95214023d973e0bd376ef0f630dba
Author: Russ Combs <rucombs@cisco.com>
Date:   Tue Nov 15 07:34:09 2016 -0500

    fix fast pattern selection when multiple designated
    thanks to j.mcdowell@titanicsystems.com for reporting the issue

Merge pull request #706 in SNORT/snort3 from appid_fix_valgrind_issues to master

Squashed commit of the following:

commit 73e7820760537fa576ec07ce0afdd9d953e93eed
Author: davis mcpherson <davmcphe.cisco.com>
Date:   Wed Nov 16 12:33:42 2016 -0500

    check validity of protocol value in lua api against IpProtocol::RESERVED

commit 7b5c1bb0dededa56807e38b25bdecf953f41c624
Author: davis mcpherson <davmcphe.cisco.com>
Date:   Wed Nov 16 10:25:31 2016 -0500

    memory leak fix where service match objects not deleted when id_state deleted

commit c1fa8a6c82c7e1ad86e47eba6b15b0ea73581b3d
Author: davis mcpherson <davmcphe.cisco.com>
Date:   Wed Nov 16 08:04:51 2016 -0500

    delete host/port and service state maps packet processing thread exits

commit 75caec57317e1a7af368d3cb79539204bdef84f0
Author: davis mcpherson <davis.mcpherson@gmail.com>
Date:   Tue Nov 15 18:05:37 2016 -0500

    refactor service state tables to use std::map

commit f0aab847fcd4fa6f5ac2962da14c92d98fd650a4
Author: davis mcpherson <davis.mcpherson@gmail.com>
Date:   Tue Nov 15 16:06:34 2016 -0500

    refactor host port cache to use std::map

    init session logging id name to null

commit e5bf29005716f4c950247b52021ee9de582fb6d4
Author: davis mcpherson <davmcphe.cisco.com>
Date:   Tue Nov 15 09:28:59 2016 -0500

    when an appid session is deleted ensure all possible allocated resources are checked for and freed

commit f576528b528fa82a905c02f8eaf4d9542e8cccfe
Author: davis mcpherson <davmcphe.cisco.com>
Date:   Thu Nov 10 15:12:33 2016 -0500

    fix memory leaks in appid due to flow data structs not being freed
    fix memory leak due to flow data struct allocated for expected channel not being freed

    fixes for some invalid memory access issues:
     - init all fields in httpSession struct
     - don't scan past end of buffer identifying htpp client
     - insure struct fields and auto vars are initialized

    fixes for some memory access errors due to unitialized variables

Merge pull request #703 in SNORT/snort3 from autodetect to master

Squashed commit of the following:

commit 2c97fdb0fe074450a90770565c9441cb6dd84623
Author: mdagon <mdagon@cisco.com>
Date: Wed Nov 2 08:04:19 2016 -0400

dce wizard

Merge pull request #704 in SNORT/snort3 from threadz to master

Squashed commit of the following:

commit cbdc3439b7140d2368fb2b8b68cd07ed19d31f23
Author: Russ Combs <rucombs@cisco.com>
Date:   Mon Nov 14 12:52:48 2016 -0500

    convert file capture stats to module based thread locals

commit 2883836a3381d3ba47ebe852b129bb8124b6371d
Author: Russ Combs <rucombs@cisco.com>
Date:   Mon Nov 14 07:55:24 2016 -0500

    convert file stats to module based thread locals

commit 67be0d6fb4e795731559682df0d8cac6aa406a98
Author: Russ Combs <rucombs@cisco.com>
Date:   Sun Nov 13 08:19:46 2016 -0500

    fix most reload race conditions

commit fe87e6793ae4d05f1be925762973949a4788590e
Author: Russ Combs <rucombs@cisco.com>
Date:   Fri Nov 11 17:44:28 2016 -0500

    comment on atomic switching
    comment on test scope

commit 728f5faa707c0f02c860f94774d7a80947c8335f
Author: Russ Combs <rucombs@cisco.com>
Date:   Fri Nov 11 10:47:22 2016 -0500

    fix dynamic builds and unit tests

commit ad834007ff90c420bb2ab1be7e4c59473210ca5f
Author: Russ Combs <rucombs@cisco.com>
Date:   Fri Nov 11 08:15:57 2016 -0500

    move file trace flags into file config

commit 705a36bc7beebd00eea5869f1f1da1bf896bb44b
Author: Russ Combs <rucombs@cisco.com>
Date:   Fri Nov 11 07:31:02 2016 -0500

    fix stats races

commit ac9dbfb785111836aeb634bede4f3362d247704c
Author: Russ Combs <rucombs@cisco.com>
Date:   Thu Nov 10 11:14:15 2016 -0500

    fix most stats races

commit 3b3412632f8c82f3e968be99d0b9b02fa238a6ec
Author: Russ Combs <rucombs@cisco.com>
Date:   Thu Nov 10 07:18:29 2016 -0500

    fix max_pdu race cond

commit abf9b805082cc2916eff49b8c823ef3fb0645d18
Author: Russ Combs <rucombs@cisco.com>
Date:   Thu Nov 10 06:57:33 2016 -0500

    fix data race with swap pointer

commit d2449a2c48237405030ef06c829c7eec29f6c1d0
Author: Russ Combs <rucombs@cisco.com>
Date:   Wed Nov 9 21:14:33 2016 -0500

    fix thread sanitizer issues with legacy protocol reference table

commit 64a66d296174d104e6163ebcd7edc116223d1c3a
Author: Russ Combs <rucombs@cisco.com>
Date:   Wed Nov 9 07:31:52 2016 -0500

    fix ownership of stream module config

commit d3e27d8afe04e126dc2caec3350f8b1a27a3ad1a
Author: Russ Combs <rucombs@cisco.com>
Date:   Wed Nov 9 07:30:28 2016 -0500

    fix packet thread startup data races

Merge pull request #702 in SNORT/snort3 from ooofin to master

Squashed commit of the following:

commit 295c5f1b4c1936e3758dce727d3f2f4097d8a193
Author: Bhagya Tholpady <bbantwal@cisco.com>
Date: Mon Sep 12 16:24:08 2016 -0400

ooofin changes

Merge pull request #699 in SNORT/snort3 from nhttp57 to master

Squashed commit of the following:

commit 654554489f6827965f1052c224bf498d7c36b8ce
Author: Tom Peters <thopeter@cisco.com>
Date: Mon Oct 31 11:22:18 2016 -0400

NHI MIME file processing integration

Merge pull request #698 in SNORT/snort3 from perfmon_docs to master

Squashed commit of the following:

commit b8807c17407e8b6b1d65a1ed8d00635eade1f966
Author: Carter Waxman <cwaxman@cisco.com>
Date: Mon Nov 7 10:09:57 2016 -0500

added perfmon docs

Merge pull request #701 in SNORT/snort3 from appid_cleanup_reg_tests to master

Squashed commit of the following:

commit 4d63e4974dba68a76a568c402e34466b23d6a188
Author: davis mcpherson <davis.mcpherson@gmail.com>
Date: Tue Nov 8 16:18:43 2016 -0500

remove function that logged debug info that was no longer useful

Merge pull request #691 in SNORT/snort3 from file_doc to master

Squashed commit of the following:

commit 1327789b4e878c623c40669680ccad42d2a0a85d
Author: huica <huica@cisco.com>
Date: Tue Nov 1 14:06:57 2016 -0400

file processing document update

Merge pull request #694 in SNORT/snort3 from appid_no_so_wild to master

Squashed commit of the following:

commit e5ae9e59f829351580d1b880a0077090c7b6cb5f
Author: davis mcpherson <davmcphe.cisco.com>
Date:   Fri Nov 4 11:34:51 2016 -0400

    updates from code review comments and a few generall coding style fixups

commit 1c6e1c075a61c8237090c42b18da97f8bb0dec62
Author: davis mcpherson <davmcphe.cisco.com>
Date:   Wed Nov 2 15:28:32 2016 -0400

    fix memory leak in service_rpc, list of rpc program nodes were dynamically allocated but never freed

    enable appid in default snort.lua configuration

    report parse errors with ParseWarning, functionality may be reduced but appid will still work

commit a0a9c28afccfc93f550369d9f60d3e47f8c1c916
Author: davis mcpherson <davmcphe.cisco.com>
Date:   Wed Nov 2 10:26:40 2016 -0400

    refactor NetworkSet utility functions into a proper class

commit cabb0a02458a3f3ff3c8eec9de7b36b5f992515e
Author: davis mcpherson <davmcphe.cisco.com>
Date:   Wed Nov 2 08:54:12 2016 -0400

    consolidate utility functions to single utilities file or file where the function is used, eliminate duplicated types for custom config elements, delete deprecated files

commit 10e5cac96c626f8dbc6cd5322b612cb0969545c4
Author: davis mcpherson <davmcphe.cisco.com>
Date:   Wed Nov 2 07:48:07 2016 -0400

    reduce appid chatiness - changed LogMessage to DebugMessage where appropriate, move more functions to appropriate source file and delete files no longer useful, ensure all Debug* logging for AppId is controlled by the DEBUG_APPID flag

commit 8913c81160ae3ed00361b6946a369eb48856fa9e
Author: davis mcpherson <davmcphe.cisco.com>
Date:   Wed Nov 2 06:48:16 2016 -0400

    refactoring to move functions and data defs to appropriate source file and delete source files no longer useful

Merge pull request #696 in SNORT/snort3 from http_more_tests to master

Squashed commit of the following:

commit dcd43e7d538a2f5ebc06eae3877b239c64f43cfb
Author: shaslad <shaslad@cisco.com>
Date:   Sat Oct 29 01:42:07 2016 -0400

    minor modification related to logs

    Added missing opera client header pattern and related variables

Merge pull request #697 in SNORT/snort3 from tcp_sm_fix to master

Squashed commit of the following:

commit 529f3a9783c2f504b3be340b00b8ed35161adc85
Author: Bhagya Tholpady <bbantwal@cisco.com>
Date: Wed Oct 12 16:56:13 2016 -0400

Tcp State Machine fixes

Merge pull request #695 in SNORT/snort3 from 218 to master

Squashed commit of the following:

commit 3b7c746f92338501ef2c88656b841d867e982a3d
Author: Russ Combs <rucombs@cisco.com>
Date: Fri Nov 4 10:28:04 2016 -0400

build 218

Merge pull request #692 in SNORT/snort3 from statics to master

Squashed commit of the following:

commit 16bb37ec5884dce78e34640b69536e4e32d4a16b
Author: Russ Combs <rucombs@cisco.com>
Date:   Thu Nov 3 18:35:46 2016 -0400

    fix dynamic build for recent appid / http_inspect / sip changes

commit ba9d0ab0df042323ffb308b1a28088cc2acbfa50
Author: Russ Combs <rucombs@cisco.com>
Date:   Tue Nov 1 14:30:44 2016 -0400

    ensure static appid and http_inspect and their rule options are loaded

Merge pull request #689 in SNORT/snort3 from perf-mon-breaks-counts to master

Squashed commit of the following:

commit 5b402fa8461b9ec22e43b618559797c2aa8a794d
Author: Victor Roemer <viroemer@cisco.com>
Date: Tue Oct 25 14:29:35 2016 -0400

Fix shutdown stats, break perf_mon interval stats

Merge pull request #683 in SNORT/snort3 from appid_sip to master

Squashed commit of the following:

commit e3763a9177b370e6de5e00a315b22a40321048ec
Author: Carter Waxman <cwaxman@cisco.com>
Date:   Wed Nov 2 11:05:16 2016 -0400

    Updated build dependency fix

commit f9a3162c78f4472b29928f981d1c1cfc0d3ea4c6
Author: Carter Waxman <cwaxman@cisco.com>
Date:   Fri Oct 28 17:56:08 2016 -0400

    fixed expect cache session data insertion

commit e3c70ad588df032b1d0dc89bdcfc6090e88ffe58
Author: Carter Waxman <cwaxman@cisco.com>
Date:   Fri Oct 21 11:06:48 2016 -0400

    Encapsulated dialog

commit cc96d7f938375a78519543f4fc68d735f7cac9eb
Author: Carter Waxman <cwaxman@cisco.com>
Date:   Wed Oct 19 12:03:03 2016 -0400

    Encapsulated sipMsg

commit c79a09e1f82b3698c1808ecb51f84e648687c5d5
Author: Carter Waxman <cwaxman@cisco.com>
Date:   Fri Oct 14 14:58:13 2016 -0400

    Implemented SipEventHandler

Merge pull request #690 in SNORT/snort3 from appid_optimize_loading_lua_detectors to master

Squashed commit of the following:

commit 4d37633587be6fa260a82741062e911ed9c219b2
Author: davis mcpherson <davmcphe.cisco.com>
Date:   Tue Nov 1 17:14:36 2016 -0400

    create standalone structs for client and server detector state information

commit 50f73fe4a2db39a857cce8720194399d9c5663a7
Author: davis mcpherson <davmcphe.cisco.com>
Date:   Tue Nov 1 13:01:26 2016 -0400

    restore lua api string names for functions that were unintentially changed during refactoring

commit 71f4f995442b8d99d1daf15c7b735801c89b7f2d
Author: davis mcpherson <davmcphe.cisco.com>
Date:   Fri Oct 28 15:56:05 2016 -0400

    lua detectors must be reloaded when there is a config reload.  this patch adds support so the currently loaded lua detectors remain valid until the appid Inspector they belong to is deleted.  The appid Inspector create for the new config will create its own instance of the LuaDetectorManager and load its set of lua detectors.  some miscellaneous improvements to function prototypes and the procedure for loading the lua detectors are also in this commit

commit b0581f1470eddad797f9a059ef07ba9bfeef3168
Author: davis mcpherson <davmcphe.cisco.com>
Date:   Fri Oct 28 11:50:54 2016 -0400

    rename functions to conform to coding style, move functions only referenced from 1 file static in the file that uses them

commit 481e0b4fd8ce53d45734f392b5f2db6c1203b15a
Author: davis mcpherson <davmcphe.cisco.com>
Date:   Thu Oct 27 10:01:40 2016 -0400

    load lua detectors with luaL_loadfile

Merge pull request #688 in SNORT/snort3 from appid_detector_server_packet_fix to master

Squashed commit of the following:

commit 984af329150fad81b371336891202176ef9543cb
Author: davis mcpherson <davis.mcpherson@gmail.com>
Date: Tue Oct 25 16:34:18 2016 -0400

modify 'client gets server packets' processing to clear this flag when a packet is seen by the service side validate function. if it sees one it will see them all so need need for client side to process server side packets in this case

build 217

Merge pull request #684 in SNORT/snort3 from appid_port2x_deltas to master

Squashed commit of the following:

commit f0cfd6beb8a5fdc2a9f97e997eed31ee5eb8e08e
Author: davis mcpherson <davmcphe.cisco.com>
Date:   Wed Oct 26 16:26:38 2016 -0400

    use 'free' to free hsession ptrs

commit b7fa07525538c46fff16c2f3ba97bc9f6ffe8216
Author: davis mcpherson <davmcphe.cisco.com>
Date:   Wed Oct 26 14:29:28 2016 -0400

    patch to support initializing appid http header ptrs and lengths via pub/sub interface with nhttp inspector

commit a007538457b691e3644eecc389755b65a0d06de9
Author: davis mcpherson <davmcphe.cisco.com>
Date:   Mon Oct 24 08:15:04 2016 -0400

    move stmp detector tests for clients from client_plugins dir to detector_plugins dir

commit 1915d11be99da837f6703a7574d696f8753032d5
Author: davis mcpherson <davmcphe.cisco.com>
Date:   Fri Oct 21 17:09:49 2016 -0400

    port changes for lua detector chp http pattern management

commit aaaa8490e52a7c5537a5034dce9ac23f7206d6f5
Author: davis mcpherson <davmcphe.cisco.com>
Date:   Fri Oct 21 12:50:28 2016 -0400

    port appid 2.x changes that converted smtp to detector model from separate client/service plugins

    removed deprecated client/service source files for smtp detectors

commit c76a8ec0d2911841b3f00801e038486ce3d06319
Author: davis mcpherson <davmcphe.cisco.com>
Date:   Thu Oct 20 16:21:37 2016 -0400

    port of appid deltas from 2.x to the third party module support code

commit 34886ef8ed672dfc43f7c4d4a72a1f8af007185b
Author: davis mcpherson <davmcphe.cisco.com>
Date:   Thu Oct 20 12:06:42 2016 -0400

    port 2.x changes to logic that syncs ids used by appid and snort for various protocols

commit 444e20cd2414b27ea1d0dd5a4283cb750b88e3c5
Author: davis mcpherson <davmcphe.cisco.com>
Date:   Thu Oct 20 11:20:54 2016 -0400

    port of appid changes since initial snapshot that are related to adding regex matching for http fields, application id updates, and changes to appid api methods

Merge pull request #686 in SNORT/snort3 from appid_config_errors to master

Squashed commit of the following:

commit 775bbff15e3e5ce8dc73d51c561d9d3f2b05356e
Author: Ed Borgoyn <eborgoyn@cisco.com>
Date: Mon Oct 24 15:48:09 2016 -0400

Change missing mapping files to a ParseError.

Merge pull request #682 in SNORT/snort3 from appid_http3 to master

Squashed commit of the following:

commit 7a1b322bb866ec5d5eeb0b91e8419a1722d4028e
Author: Steve Chew <stechew@cisco.com>
Date:   Wed Oct 19 12:21:28 2016 -0400

    Added subscribe/publish communication between HTTP inspector and AppId.

    Make http_inspect and appid always build statically for now to avoid
    dependency problem.

Merge pull request #687 in SNORT/snort3 from fix_129_4_fp to master

Squashed commit of the following:

commit 2e77716a5729b9cb060140fc871e582eb8ccc036
Author: Bhagya Tholpady <bbantwal@cisco.com>
Date: Mon Oct 24 13:19:39 2016 -0400

setup the trackers after the clearing of session due to expired session

Merge pull request #685 in SNORT/snort3 from bugfix_block to master

Squashed commit of the following:

commit b38a7ac35e05c658250f88e6341a99f0b5c2f511
Author: mdagon <mdagon@cisco.com>
Date: Thu Oct 20 16:21:52 2016 -0400

In case of blocked packet, delay clearing flow till the end of inspection

Merge pull request #680 in SNORT/snort3 from fix_129_16_fp to master

Squashed commit of the following:

commit 9f67e124c98a576e3920765abe9f721485f9e653
Author: Bhagya Tholpady <bbantwal@cisco.com>
Date: Wed Oct 12 16:56:13 2016 -0400

Fix bad fin false positive