git.ipfire.org Git - thirdparty/suricata-update.git/log

Jason Ish [Mon, 20 Nov 2017 21:15:54 +0000 (15:15 -0600)]

rule parsing: fix infinite loop on missing ;

If the last rule option was missing a ";" the parser would
enter an infinite loop. Instead error out with an exception
that can be logged.

Test case added.

From an reported on the idstools rule parser.

commit | commitdiff | tree

Jason Ish [Mon, 20 Nov 2017 21:11:20 +0000 (15:11 -0600)]

tests: remove BSD license.

All code has been assigned to the OISF under the GPLv2.

commit | commitdiff | tree

Breaker [Fri, 3 Nov 2017 03:29:14 +0000 (11:29 +0800)]

change --post-hook to --reload-command

commit | commitdiff | tree

Jason Ish [Tue, 14 Nov 2017 11:04:51 +0000 (12:04 +0100)]

doc: --cache-dir command line argument removed

commit | commitdiff | tree

Jason Ish [Tue, 14 Nov 2017 10:57:29 +0000 (11:57 +0100)]

Ingore cache directory when backing up rules.

commit | commitdiff | tree

Jason Ish [Tue, 14 Nov 2017 10:42:21 +0000 (11:42 +0100)]

Put cache directory under the rules directory.

One less directory to manage permissions on.

commit | commitdiff | tree

Jason Ish [Mon, 13 Nov 2017 08:57:23 +0000 (09:57 +0100)]

fix restoration permission issue after update fail

First attempt to just copy back the data of the files. Then
attempt to copy the mode, as the mode may fail if the user
running suricata-update doesn't own the files, but has permissions
to write to them with group permissions.

commit | commitdiff | tree

Jason Ish [Mon, 6 Nov 2017 04:27:01 +0000 (22:27 -0600)]

fix ET Open by default logic...

Somewhere along the line the behaviour of loading ET Open
if no other URLs were present was lost. Re-add this default
behaviour.

Loading ET-Open by default will happen if:
- no --urls passed on the command line
- no sources provided in the configuration
- no etpro code given

commit | commitdiff | tree

Victor Julien [Fri, 3 Nov 2017 14:19:11 +0000 (15:19 +0100)]

github/codeowners: add OISF/core-team

Add core team so all PRs get a reviewer assigned. When it's @jasonish
it will be just OISF/core-team, otherwise it'll be both. Then
@jasonish can approve in name of core-team as well.

commit | commitdiff | tree

Jason Ish [Fri, 3 Nov 2017 13:36:14 +0000 (07:36 -0600)]

rule parsing: don't warn if no msg present

commit | commitdiff | tree

Jason Ish [Fri, 3 Nov 2017 13:34:51 +0000 (07:34 -0600)]

issue 2261: don't fail on empty "local"

If local existed, but was empty, YAML would make it a None
value instead of the default empty list.

For local and sources, make sure they are an empty list after
loading instead of None.

commit | commitdiff | tree

Victor Julien [Thu, 2 Nov 2017 14:20:26 +0000 (15:20 +0100)]

rule testing: don't fail because of ASAN leak warnings

commit | commitdiff | tree

Jason Ish [Thu, 2 Nov 2017 13:46:07 +0000 (07:46 -0600)]

Fix Oinkmaster modifysid with group name.

Make the group name matcher the last matcher to be parsed,
and accept the match spec if it ends with .rules and not
prefixed with group.

This was broken while fixing up other issues in group name
parsing to make it more predictable.

commit | commitdiff | tree

Jason Ish [Thu, 2 Nov 2017 13:03:16 +0000 (07:03 -0600)]

Initial import of Suricata-Update.

Suricata-Update is a tool for updating Suricata rules. Based
on idstools-rulecat, but relicensed under the GPL and contributed
to the OISF.

Mirror of https://github.com/OISF/suricata-update.git

RSS Atom