]>
git.ipfire.org Git - thirdparty/snort3.git/log
Shravan Rangarajuvenkata (shrarang) [Tue, 2 Jun 2020 00:27:44 +0000 (00:27 +0000)]
Merge pull request #2235 in SNORT/snort3 from ~SATHIRKA/snort3:snort_protocol_id to master
Squashed commit of the following:
commit
1ca8cfa087c34307a1fb84a8a1e16000026a0fab
Author: Sreeja Athirkandathil Narayanan <sathirka@cisco.com>
Date: Thu May 28 17:52:58 2020 -0400
appid: Set snort protocol id on the flow and remove ssl squelch code
Steve Chew (stechew) [Mon, 1 Jun 2020 18:33:07 +0000 (18:33 +0000)]
Merge pull request #2225 in SNORT/snort3 from ~SBAIGAL/snort3:coverity_fix2 to master
Squashed commit of the following:
commit
0d0ea620abf03e13f68e3ce714eefa26b2cb310b
Author: Steven Baigal (sbaigal) <sbaigal@cisco.com>
Date: Thu May 14 10:09:44 2020 -0400
coverity: fix issued found by Coverity scans
Bhagya Tholpady (bbantwal) [Thu, 28 May 2020 22:00:02 +0000 (22:00 +0000)]
Merge pull request #2210 in SNORT/snort3 from ~SELYSENK/snort3:trace_filtering to master
Squashed commit of the following:
commit
543e3edb95a0aaa87afa695efeec80bd41e92c7a
Author: Serhii Lysenko <selysenk@cisco.com>
Date: Thu Apr 23 07:09:54 2020 -0400
trace: filter traces by packet constraints
trace_print/trace_printf now take a pointer to the Packet.
Packet's state is lazily evaluated against packet constraints.
packet_tracer uses packet constraints from framework instead of
implementing its own.
Shravan Rangarajuvenkata (shrarang) [Wed, 20 May 2020 18:29:25 +0000 (18:29 +0000)]
Merge pull request #2207 in SNORT/snort3 from ~SHRARANG/snort3:avc_http2 to master
Squashed commit of the following:
commit
48e8c835b254ee3a0b3bb8bd986e204d4b6a1534
Author: Shravan Rangaraju <shrarang@cisco.com>
Date: Tue May 12 00:51:08 2020 -0400
appid: add api to check if appid needs inspection
Mike Stepanek (mstepane) [Wed, 20 May 2020 14:29:30 +0000 (14:29 +0000)]
Merge pull request #2222 in SNORT/snort3 from ~MSTEPANE/snort3:3_0_1_build_4 to master
Squashed commit of the following:
commit
238dfa82de8dd72a79574d83fad0e2f9deda3dc2
Author: Mike Stepanek <mstepane@cisco.com>
Date: Wed May 20 07:55:59 2020 -0400
generate and tag 3.0.1 build 4
Masud Hasan (mashasan) [Tue, 19 May 2020 21:43:18 +0000 (21:43 +0000)]
Merge pull request #2218 in SNORT/snort3 from ~MASHASAN/snort3:coverity_fixes_2 to master
Squashed commit of the following:
commit
a9c8c023afbbc552331e94306dacac3697069058
Author: Masud Hasan <mashasan@cisco.com>
Date: Tue May 19 14:05:52 2020 -0400
network_inspectors: Fixing a few minor issues reported by Coverity
Bhagya Tholpady (bbantwal) [Tue, 19 May 2020 16:35:23 +0000 (16:35 +0000)]
Merge pull request #2214 in SNORT/snort3 from ~OKHOMIAK/snort3:print_rules_enabled_per_policy to master
Squashed commit of the following:
commit
c717346b95fb84e010e4256f5c05365c24ecb2e4
Author: Oleksii Khomiakovskyi <okhomiak@cisco.com>
Date: Wed May 13 10:09:31 2020 +0300
parser: print enabled rules for each ips policy
Bhagya Tholpady (bbantwal) [Tue, 19 May 2020 13:47:42 +0000 (13:47 +0000)]
Merge pull request #2216 in SNORT/snort3 from ~BBANTWAL/snort3:sort_ilist_by_type to master
Squashed commit of the following:
commit
8439e633309782e799d1adbf410c12cff413c0ba
Author: Bhagya Tholpady <bbantwal@cisco.com>
Date: Mon May 18 22:24:24 2020 -0400
managers: print alphabetically sorted verbose inspector config output within an inspection policy
commit
5a085e5a729027f8f85cafb90970fa9d024651f5
Author: Bhagya Tholpady <bbantwal@cisco.com>
Date: Mon May 18 22:18:34 2020 -0400
Revert "Merge pull request #2185 in SNORT/snort3 from ~BBANTWAL/snort3:sort_inspectors to master"
This reverts commit
f19685fd2b8b3443369f1181ca8f0f98c85df49d .
Russ Combs (rucombs) [Tue, 19 May 2020 12:26:26 +0000 (12:26 +0000)]
Merge pull request #2213 in SNORT/snort3 from ~RUCOMBS/snort3:snort_conf to master
Squashed commit of the following:
commit
7107ad5aa179c81bcf297198c9565dbf7c1af453
Author: russ <rucombs@cisco.com>
Date: Mon May 11 17:33:04 2020 -0400
build: fix cppcheck warnings and typos
commit
514844215a86e5e683649392f7eb3317c667f678
Author: russ <rucombs@cisco.com>
Date: Mon May 11 09:27:16 2020 -0400
snort_config: constify Inspector::show and remove unnecessary logger args
commit
4f61396efb898de6054dd3068bd2784f313bdf06
Author: russ <rucombs@cisco.com>
Date: Sun May 10 12:33:07 2020 -0400
search_tool: refactor initialization
commit
c24ff7a06b405b18b85c1317d4c42438ffcd8676
Author: russ <rucombs@cisco.com>
Date: Sun May 10 11:28:29 2020 -0400
mpse: constify snort config args
commit
cff5647c6f32eb1321964b729aac16fcfedaee2d
Author: russ <rucombs@cisco.com>
Date: Sat May 9 11:22:32 2020 -0400
snort_config: minimize thread local access to snort_config
commit
48a6e0db8b675c3283befb04b13b6468c98ce570
Author: russ <rucombs@cisco.com>
Date: Fri May 8 16:59:31 2020 -0400
snort_config: use provided conf
commit
d1329377a0c1a4fa5b333182c568da38c3b6b9a2
Author: russ <rucombs@cisco.com>
Date: Tue Apr 28 15:01:35 2020 -0400
snort_config: make const for packet threads
commit
c47aabc1d11ff6208b5cb1a970a7c7f49033625d
Author: russ <rucombs@cisco.com>
Date: Sun Apr 26 10:54:15 2020 -0400
snort_config: pseudo packet initialization
commit
bf4ac2a8d1910452c170577f62fa23c6856d81c0
Author: russ <rucombs@cisco.com>
Date: Sun Apr 26 09:54:45 2020 -0400
snort_config: refactor access methods
Michael Altizer (mialtize) [Mon, 18 May 2020 22:00:24 +0000 (22:00 +0000)]
Merge pull request #2211 in SNORT/snort3 from ~SMINUT/snort3:hpq_timeout_config to master
Squashed commit of the following:
commit
2fc74253788d479c939aa17354fdc44c24c4540f
Author: Silviu Minut <sminut@cisco.com>
Date: Tue May 12 11:57:14 2020 -0400
stream: move held packet timeout to Stream and support changing it on reload
Russ Combs (rucombs) [Fri, 15 May 2020 21:40:47 +0000 (21:40 +0000)]
Merge pull request #2189 in SNORT/snort3 from ~DAVMCPHE/snort3:fallback to master
Squashed commit of the following:
commit
0031d861c9c23b1a08e27a77d10d8ee68f4f7fb4
Author: davis mcpherson <davmcphe@cisco.com>
Date: Fri May 1 13:23:54 2020 -0400
dce_rpc: code style cleanups
commit
5a9614634d99202a0202494b6021116edea1d7e4
Author: davis mcpherson <davmcphe@cisco.com>
Date: Wed Apr 29 11:24:49 2020 -0400
dce_rpc: generate alert when dce splitter aborts due to invalid fragment length
commit
75e56ee0f0a6e875c13de32963b58f15e3c43c7f
Author: davis mcpherson <davmcphe@cisco.com>
Date: Fri May 8 17:16:47 2020 -0400
stream_tcp: call splitter->finish() before reassemble() when flushing when PAF aborts due to gap in queued data
commit
39336beb1c4421ebb2124a2beb20ae1c8a5ae9b1
Author: russ <rucombs@cisco.com>
Date: Tue Apr 21 14:20:50 2020 -0400
stream_tcp: clear gadget from Flow object once fallback has happened in both directions
stream_tcp: when paf aborts due to gap in data set splitter state to ABORT
stream_tcp: only clear gadget after both splitters have aborted
loggers: when logging alert only use inspector buffers and name when the inspector's paf splitter is assigned for the direction of the alert"
Steve Chew (stechew) [Fri, 15 May 2020 19:53:20 +0000 (19:53 +0000)]
Merge pull request #2209 in SNORT/snort3 from ~SBAIGAL/snort3:coverity_fix to master
Squashed commit of the following:
commit
2496431615a57a9656134448372bd54765f22693
Author: Steven Baigal (sbaigal) <sbaigal@cisco.com>
Date: Wed May 6 16:46:36 2020 -0400
coverity: fixed issues discovered by Coverity tool
Michael Altizer (mialtize) [Thu, 14 May 2020 15:31:28 +0000 (15:31 +0000)]
Merge pull request #2205 in SNORT/snort3 from ~MIALTIZE/snort3:instance_id to master
Squashed commit of the following:
commit
1cdd68e4ecc5e72b50472b258af6a31e4137497f
Author: Michael Altizer <mialtize@cisco.com>
Date: Mon May 11 16:56:07 2020 -0400
daq: Configure DAQ instances with total instances and instance IDs
The DAQ instances will only be explicitly configured with this
information when Snort is running in multi-instance mode (-z >1).
Steve Chew (stechew) [Thu, 14 May 2020 12:58:51 +0000 (12:58 +0000)]
Merge pull request #2197 in SNORT/snort3 from ~STECHEW/snort3:block_retry_no_flow to master
Squashed commit of the following:
commit
f8e17fe8506a9787e26d19b613c3b1fdc37f0b0c
Author: Steve Chew <stechew@cisco.com>
Date: Fri May 1 17:26:58 2020 -0400
flow: If a retry packet does not belong to a flow, block it.
Shravan Rangarajuvenkata (shrarang) [Wed, 13 May 2020 19:10:46 +0000 (19:10 +0000)]
Merge pull request #2212 in SNORT/snort3 from ~SATHIRKA/snort3:dns_session_alloc to master
Squashed commit of the following:
commit
cc4a642b171b30b844f78f3c50ea5bccb6fb42ea
Author: Sreeja Athirkandathil Narayanan <sathirka@cisco.com>
Date: Tue May 12 15:08:28 2020 -0400
appid: Do not allocate DNS session for non-DNS flows and update memory tracker for HTTP sessions
Masud Hasan (mashasan) [Tue, 12 May 2020 20:29:23 +0000 (20:29 +0000)]
Merge pull request #2208 in SNORT/snort3 from ~MASHASAN/snort3:coverity_fixes to master
Squashed commit of the following:
commit
5847f19f97b1ffbc82f969af25f09402a723fba6
Author: Masud Hasan <mashasan@cisco.com>
Date: Mon May 11 19:42:35 2020 -0400
main: Fixing some issues reported by Coverity
Michael Altizer (mialtize) [Mon, 11 May 2020 16:03:51 +0000 (16:03 +0000)]
Merge pull request #2204 in SNORT/snort3 from ~SMINUT/snort3:hpq_daq_verdict to master
Squashed commit of the following:
commit
006990ce86bed6fd6710ee2f868d4672887fa1eb
Author: Silviu Minut <sminut@cisco.com>
Date: Thu May 7 16:31:26 2020 -0400
stream_tcp: change the DAQ verdict from drop to blacklist for held packets that timed out
George Koikara (gkoikara) [Mon, 11 May 2020 08:26:56 +0000 (08:26 +0000)]
Merge pull request #2124 in SNORT/snort3 from ~APOORAJ/snort3:race_condition_ftp to master
Squashed commit of the following:
commit
af8985bba3de4f461d1471cc2bfac4c586cce0fe
Author: Apoorv Raj <apooraj@cisco.com>
Date: Mon Mar 30 15:15:35 2020 -0400
ftp_data: fix race condition
Shravan Rangarajuvenkata (shrarang) [Fri, 8 May 2020 22:42:41 +0000 (22:42 +0000)]
Merge pull request #2200 in SNORT/snort3 from ~SATHIRKA/snort3:appid_core_fix to master
Squashed commit of the following:
commit
08c9f1bf6bc7847d7ee85f7785af0e03deb77ecf
Author: Sreeja Athirkandathil Narayanan <sathirka@cisco.com>
Date: Tue May 5 14:32:29 2020 -0400
appid: Get inspector for the current snort config during reload
Michael Altizer (mialtize) [Fri, 8 May 2020 17:31:11 +0000 (17:31 +0000)]
Merge pull request #2165 in SNORT/snort3 from ~SVLASIUK/snort3:trace_module to master
Squashed commit of the following:
commit
64ec8e2b940ab8815d8061f9a50ee6e82de3c435
Author: Serhii Vlasiuk <svlasiuk@cisco.com>
Date: Thu Apr 2 13:10:17 2020 +0300
trace: move module trace configuration into the trace module.
Instead of trace configuration being distributed amongst the individual module configurations,
all module trace topic and level configuration is now centralized within the trace module.
Mike Stepanek (mstepane) [Fri, 8 May 2020 14:28:04 +0000 (14:28 +0000)]
Merge pull request #2203 in SNORT/snort3 from ~MDAGON/snort3:h2i_fix to master
Squashed commit of the following:
commit
d042400ce1e3cba30ec905ce603580d27fe60392
Author: mdagon <mdagon@cisco.com>
Date: Tue May 5 12:14:49 2020 -0400
http2_inspect: change partial flush handling
Bhagya Tholpady (bbantwal) [Thu, 7 May 2020 18:56:51 +0000 (18:56 +0000)]
Merge pull request #2184 in SNORT/snort3 from ~OKHOMIAK/snort3:verbose_output_for_binders to master
Squashed commit of the following:
commit
2fd410c112d41467fc950fb45b61da97b784198e
Author: Oleksii Shumeiko <oshumeik@cisco.com>
Date: Fri Apr 24 12:54:58 2020 +0300
log: do not truncate config option names in ConfigLogger
commit
e5486fbe6016f443dd3f41f7021c2db3b69c10d0
Author: Oleksii Khomiakovskyi <okhomiak@cisco.com>
Date: Thu Apr 23 11:38:53 2020 +0300
binder: print configured bindings in show() method
Michael Altizer (mialtize) [Thu, 7 May 2020 17:21:20 +0000 (17:21 +0000)]
Merge pull request #2163 in SNORT/snort3 from ~SMINUT/snort3:stream_detained_list2 to master
Squashed commit of the following:
commit
cc9777d3e2ae3aa4bf744f35ea5c218b3cbd3516
Author: Silviu Minut <sminut@cisco.com>
Date: Tue Apr 14 19:40:15 2020 -0400
stream: add a configurable timeout for held packets
If a held packet has been detained for a certain amount of time,
flush it.
Michael Altizer (mialtize) [Wed, 6 May 2020 17:17:48 +0000 (17:17 +0000)]
Merge pull request #2201 in SNORT/snort3 from ~MIALTIZE/snort3:3_0_1_build_3 to master
Squashed commit of the following:
commit
0d7f7cbababa6687b1484ac28802dd3c9ece31a1
Author: Michael Altizer <mialtize@cisco.com>
Date: Wed May 6 12:14:19 2020 -0400
build: generate and tag 3.0.1 build 3
Shravan Rangarajuvenkata (shrarang) [Tue, 5 May 2020 17:37:19 +0000 (17:37 +0000)]
Merge pull request #2174 in SNORT/snort3 from ~AGIURGIU/snort3:appid_http2_ms_detect to master
Squashed commit of the following:
commit
3b0b9e7dbc443903f9f19def32648bc57bafb4da
Author: Shravan Rangaraju <shrarang@cisco.com>
Date: Thu Apr 30 01:23:44 2020 -0400
appid: support for multi-stream http2 session
commit
c55b5718ef6877bbf16f4d1a3fde16f16117a2d3
Author: Shravan Rangaraju <shrarang@cisco.com>
Date: Thu Apr 23 02:27:23 2020 -0400
appid: store appids for http traffic in http session
commit
8a78d00add4080c77538196d0ae98ffa74db1dfa
Author: Kanimozhi Murthi <kamurthi@cisco.com>
Date: Tue Apr 7 23:43:51 2020 -0400
appid: remove old http2 support
Masud Hasan (mashasan) [Tue, 5 May 2020 14:55:22 +0000 (14:55 +0000)]
Merge pull request #2194 in SNORT/snort3 from ~MASHASAN/snort3:rna_dev_notes to master
Squashed commit of the following:
commit
aadb6c6119ca49b6eae17cad91650078c7f5413a
Author: Masud Hasan <mashasan@cisco.com>
Date: Thu Apr 30 13:54:42 2020 -0400
rna: Updating dev notes to describe usage
Mike Stepanek (mstepane) [Tue, 5 May 2020 13:47:52 +0000 (13:47 +0000)]
Merge pull request #2192 in SNORT/snort3 from ~KATHARVE/snort3:h2i_concurrent_files to master
Squashed commit of the following:
commit
fa388955bae45e95f80034a69f010a7fa9b5a84b
Author: Katura Harvey <katharve@cisco.com>
Date: Thu Apr 30 09:21:22 2020 -0400
file_api: mark processing of file complete after type detection if signature not enabled
commit
2aff0ce2b10432111d836a82537187e2676be998
Author: Katura Harvey <katharve@cisco.com>
Date: Thu Apr 30 09:20:06 2020 -0400
http2_inspect: add peg count to track max concurrent http2 file transfers
Mike Stepanek (mstepane) [Tue, 5 May 2020 13:32:34 +0000 (13:32 +0000)]
Merge pull request #2196 in SNORT/snort3 from ~KATHARVE/snort3:hpack_fix to master
Squashed commit of the following:
commit
1d7269ff9265e9f562ce980fed45b19afbed394f
Author: Katura Harvey <katharve@cisco.com>
Date: Fri May 1 10:25:37 2020 -0400
http2_inspect: protect against unexpected eval calls
Shravan Rangarajuvenkata (shrarang) [Mon, 4 May 2020 02:17:18 +0000 (02:17 +0000)]
Merge pull request #2195 in SNORT/snort3 from ~SATHIRKA/snort3:tunneled_session_metadata to master
Squashed commit of the following:
commit
dce8ec78a6c30495e0233a8622c200b236ceb3fe
Author: Sreeja Athirkandathil Narayanan <sathirka@cisco.com>
Date: Tue Apr 28 14:43:16 2020 -0400
appid: Extract metadata for tunneled HTTP session
Masud Hasan (mashasan) [Fri, 1 May 2020 19:40:14 +0000 (19:40 +0000)]
Merge pull request #2186 in SNORT/snort3 from ~RUTIAN/snort3:stash_captive_portal to master
Squashed commit of the following:
commit
3be74831ae44aba42fbe37601511fc501d456ddc
Author: Ruiqi Tian <rutian@cisco.com>
Date: Tue Apr 28 21:11:02 2020 -0400
memory: expose memory_cap.h to plugins
Steve Chew (stechew) [Fri, 1 May 2020 13:05:34 +0000 (13:05 +0000)]
Merge pull request #2182 in SNORT/snort3 from ~STECHEW/snort3:retry_in_appid to master
Squashed commit of the following:
commit
2051a456ec98881eb3f9c4bf72c8d208700e804e
Author: Steve Chew <stechew@cisco.com>
Date: Wed Apr 29 23:19:24 2020 -0400
appid: Make unit tests multithread safe.
commit
b11c6c8c20b671e2645adbf9c1ac779223927e97
Author: Steve Chew <stechew@cisco.com>
Date: Fri Apr 24 18:35:12 2020 -0400
appid: On API call store new values and publish an event for them immediately.
commit
5d5fdc18224e6e0b927080ebdf9c8761139b9e20
Author: Steve Chew <stechew@cisco.com>
Date: Wed Apr 22 17:10:15 2020 -0400
appid: Do not process retry packets but continue processing future packets in AppId.
Mike Stepanek (mstepane) [Thu, 30 Apr 2020 20:49:57 +0000 (20:49 +0000)]
Merge pull request #2193 in SNORT/snort3 from ~MDAGON/snort3:leftover_wpadding to master
Squashed commit of the following:
commit
0fde3b3bea2241a9b0d76d03ffee08ac606b8be4
Author: mdagon <mdagon@cisco.com>
Date: Wed Apr 29 14:54:52 2020 -0400
http2_inspect: fix handling leftover data with padding
Shravan Rangarajuvenkata (shrarang) [Thu, 30 Apr 2020 15:45:42 +0000 (15:45 +0000)]
Merge pull request #2188 in SNORT/snort3 from ~SATHIRKA/snort3:tls_decryption to master
Squashed commit of the following:
commit
ea235de539cf4d7a36d07983133e1137e8fcccd1
Author: Sreeja Athirkandathil Narayanan <sathirka@cisco.com>
Date: Wed Apr 29 11:39:52 2020 -0400
appid: Update miscellaneous appid on first decrypted packet
Bhagya Tholpady (bbantwal) [Wed, 29 Apr 2020 14:04:03 +0000 (14:04 +0000)]
Merge pull request #2185 in SNORT/snort3 from ~BBANTWAL/snort3:sort_inspectors to master
Squashed commit of the following:
commit
5ab5610b9202d21193722a4a3957d84e851a3fa5
Author: Bhagya Tholpady <bbantwal@cisco.com>
Date: Mon Apr 27 18:49:47 2020 -0400
managers: sort the inspector list in inspection policy using the instance name
sort the inspector instances in inspection policy by name rather
than type to obtain an alphabetically sorted verbose inspector
config output.
Michael Altizer (mialtize) [Tue, 28 Apr 2020 16:18:26 +0000 (16:18 +0000)]
Merge pull request #2160 in SNORT/snort3 from ~SELYSENK/snort3:ccache to master
Squashed commit of the following:
commit
3b028188e6ee898c891f27ab7950251db147e94d
Author: Serhii Lysenko <selysenk@cisco.com>
Date: Tue Apr 14 05:37:57 2020 -0400
build: add support for ccache
Russ Combs (rucombs) [Tue, 28 Apr 2020 14:52:46 +0000 (14:52 +0000)]
Merge pull request #2181 in SNORT/snort3 from ~RUCOMBS/snort3:more_meta to master
Squashed commit of the following:
commit
aac87fdd266361917e23a8f4490eaadbdd4a72b7
Author: russ <rucombs@cisco.com>
Date: Sat Apr 25 12:20:02 2020 -0400
so rules: allow #fragments in references in so rule stubs
Disallow # comments within so rule stub options since #frags in
references were interpreted as comments. Need to refactor the main
parser to support this case.
commit
41e61ea2f0639ff68fd85e4989d4e5b83b40dc60
Author: russ <rucombs@cisco.com>
Date: Fri Apr 24 17:28:52 2020 -0400
parameter: reject reals assigned to ints
commit
f7b6c8b83ec5609f92d4b270a3d4c53db064cd6b
Author: russ <rucombs@cisco.com>
Date: Wed Apr 22 16:46:38 2020 -0400
snort: convert --dump-rule-{meta,state,deps} to json format
commit
113228ee427c78785959445c2e56eb376c0e5478
Author: russ <rucombs@cisco.com>
Date: Thu Apr 23 09:46:12 2020 -0400
json: add stream formatter helper
commit
5a47d3ea423fe3dccdd7045b603fbfae01a09250
Author: russ <rucombs@cisco.com>
Date: Wed Apr 22 13:06:31 2020 -0400
snort: add classtype, priority, and references to --dump-rule-meta output
George Koikara (gkoikara) [Tue, 28 Apr 2020 04:57:13 +0000 (04:57 +0000)]
Merge pull request #2159 in SNORT/snort3 from ~PSREENAT/snort3:CSCvs97794 to master
Squashed commit of the following:
commit
ea62e068b25994685594f58da709c4589064500d
Author: Prajwal Srinivas Sreenath <psreenat@cisco.com>
Date: Tue Apr 14 05:00:22 2020 -0400
stream: Fix for stream pegs dumping zero values into perf_monitor_base.csv
Mike Stepanek (mstepane) [Mon, 27 Apr 2020 20:31:26 +0000 (20:31 +0000)]
Merge pull request #2175 in SNORT/snort3 from ~MDAGON/snort3:multi to master
Squashed commit of the following:
commit
5f3627d7056532a4388cf8a957a2785d28a789ea
Author: mdagon <mdagon@cisco.com>
Date: Fri Apr 10 13:53:59 2020 -0400
http2_inspect: support stream multiplexing
Mike Stepanek (mstepane) [Mon, 27 Apr 2020 19:27:36 +0000 (19:27 +0000)]
Merge pull request #2180 in SNORT/snort3 from ~DERAMADA/snort3:h2i_clear_padding_flag to master
Squashed commit of the following:
commit
f513b97ed307fbc72dd0b31d6bfa70dba0e06b7e
Author: deramada <deramada@cisco.com>
Date: Thu Apr 23 15:49:22 2020 -0400
http2_inspect: update padding check only for header and data frames
Mike Stepanek (mstepane) [Mon, 27 Apr 2020 19:24:19 +0000 (19:24 +0000)]
Merge pull request #2176 in SNORT/snort3 from ~KATHARVE/snort3:h2i_file to master
Squashed commit of the following:
commit
411b5c0939961bb2a96f45f988bc920c25c8f104
Author: Katura Harvey <katharve@cisco.com>
Date: Mon Apr 20 13:55:27 2020 -0400
http_inspect: add support for http2 file processing
George Koikara (gkoikara) [Mon, 27 Apr 2020 04:12:24 +0000 (04:12 +0000)]
Merge pull request #2173 in SNORT/snort3 from ~DIPANDIT/snort3:stat_issue to master
Squashed commit of the following:
commit
5d96d28c82120cb6ee2e9babdc844c3f4bb3cacd
Author: Dipto Pandit <dipandit@cisco.com>
Date: Mon Apr 20 02:28:45 2020 -0400
file_api: fixing file stats
file stats were changing each time dump_stats called, as it was never
reset. clearing the stats when dumping is done.
Michael Altizer (mialtize) [Thu, 23 Apr 2020 16:12:51 +0000 (16:12 +0000)]
Merge pull request #2179 in SNORT/snort3 from ~MIALTIZE/snort3:3_0_1_build_2 to master
Squashed commit of the following:
commit
0e72d23267ca0d938d9bcb94273cf92e8cf93fac
Author: Michael Altizer <mialtize@cisco.com>
Date: Thu Apr 23 11:44:18 2020 -0400
build: generate and tag 3.0.1 build 2
Michael Altizer (mialtize) [Thu, 23 Apr 2020 15:13:12 +0000 (15:13 +0000)]
Merge pull request #2140 in SNORT/snort3 from ~DAVMCPHE/snort3:reload_attribute_table to master
Squashed commit of the following:
commit
ffb923e26e17961fac352b54357f9fd2707e0b73
Author: davis mcpherson <davmcphe@cisco.com>
Date: Wed Apr 8 11:11:59 2020 -0400
target_based: refactor to load host attribute table from file
target_based: refactor host attribute table logic into a c++ class, eliminate dead code
target_based: refactor to improve design of the host attribute classes
Shravan Rangarajuvenkata (shrarang) [Thu, 23 Apr 2020 02:02:56 +0000 (02:02 +0000)]
Merge pull request #2177 in SNORT/snort3 from ~KAMURTHI/snort3:http2-tp-processing to master
Squashed commit of the following:
commit
94fa65fd1b7138aae115e72945de1b3623bc7665
Author: Kanimozhi Murthi <kamurthi@cisco.com>
Date: Wed Apr 22 09:34:51 2020 -0400
appid: remove thirdparty processing for http2 traffic
Bhagya Tholpady (bbantwal) [Tue, 21 Apr 2020 17:30:41 +0000 (17:30 +0000)]
Merge pull request #2129 in SNORT/snort3 from ~SELYSENK/snort3:verbose_output to master
Squashed commit of the following:
commit
d09df74ea4a243e502ba15b7b246ad1c53eeb185
Author: Serhii Lysenko <selysenk@cisco.com>
Date: Mon Apr 13 09:38:56 2020 -0400
managers: print inspectors' config output for every inspection policy configured
For each inspection policy print lua file name and policy id and dump
inspectors' config within that policy.
Steve Chew (stechew) [Tue, 21 Apr 2020 14:25:53 +0000 (14:25 +0000)]
Merge pull request #2155 in SNORT/snort3 from ~SBAIGAL/snort3:show_plugins to master
Squashed commit of the following:
commit
1b3e79195b4c3ea23bd24b3177a71a2ded085e64
Author: Steven Baigal (sbaigal) <sbaigal@cisco.com>
Date: Mon Apr 13 11:55:20 2020 -0400
plugin_manager: make sure --show-plugins option picks up SO plugins
Steve Chew (stechew) [Tue, 21 Apr 2020 14:07:23 +0000 (14:07 +0000)]
Merge pull request #2157 in SNORT/snort3 from ~BBANTWAL/snort3:latency_fixes to master
Squashed commit of the following:
commit
58ed84f405600b31ff40e34e584b83ba425a5c80
Author: Bhagya Tholpady <bbantwal@cisco.com>
Date: Wed Apr 15 10:57:44 2020 -0400
latency: use test_timeout config option to deterministically trigger latency events for ifdef REG_TEST
commit
f88468caba4dacb779eb722f0a2f706f0a9de5da
Author: Bhagya Tholpady <bbantwal@cisco.com>
Date: Mon Apr 13 08:28:26 2020 -0400
latency: check if ip header is present before deferring it
Shravan Rangarajuvenkata (shrarang) [Mon, 20 Apr 2020 22:29:04 +0000 (22:29 +0000)]
Merge pull request #2156 in SNORT/snort3 from ~KAMURTHI/snort3:http2_multi_stream to master
Squashed commit of the following:
commit
af68aa5f7982ddeaa6d628dd21f9df6fd05192d6
Author: Kanimozhi Murthi <kamurthi@cisco.com>
Date: Mon Apr 20 00:14:50 2020 -0400
appid: Changing sessionAPI to accomodate stream_index
Shravan Rangarajuvenkata (shrarang) [Mon, 20 Apr 2020 15:09:29 +0000 (15:09 +0000)]
Merge pull request #2171 in SNORT/snort3 from ~SATHIRKA/snort3:cert_viz_api to master
Squashed commit of the following:
commit
223fb2d6095510a409ad14361e40d9b96adabb8d
Author: Sreeja Athirkandathil Narayanan <sathirka@cisco.com>
Date: Wed Apr 1 17:45:26 2020 -0400
appid: Support org unit in SSL lookup API and do not overwrite the API provided data
Shravan Rangarajuvenkata (shrarang) [Mon, 20 Apr 2020 01:28:21 +0000 (01:28 +0000)]
Merge pull request #2133 in SNORT/snort3 from ~CLJUDGE/snort3:mark_service_unknown_if_only_client_sends_data to master
Squashed commit of the following:
commit
d28c407da03e2a6e9ad3d6becddae6cbf3140d00
Author: Cliff Judge <cljudge@cisco.com>
Date: Tue Apr 14 22:58:44 2020 -0400
appid: setting up packet counters to make sure flows with one-way data don't pend forever
Mike Stepanek (mstepane) [Fri, 17 Apr 2020 20:32:25 +0000 (20:32 +0000)]
Merge pull request #2161 in SNORT/snort3 from ~DERAMADA/snort3:h2i_discard_split_preface to master
Squashed commit of the following:
commit
f8545189f4980ad464cc7acbae782de0fe393c77
Author: deramada <deramada@cisco.com>
Date: Tue Apr 14 10:54:50 2020 -0400
http2_inspect: discard split connection preface
Ron Dempster (rdempste) [Fri, 17 Apr 2020 20:31:53 +0000 (20:31 +0000)]
Merge pull request #2169 in SNORT/snort3 from ~RDEMPSTE/snort3:remove_qos_from_firewall to master
Squashed commit of the following:
commit
40b91128051a27ef58af8b2963927cd550ab9227
Author: rdempste <rdempste@cisco.com>
Date: Thu Apr 16 16:20:23 2020 -0400
snort2lua: make qos configuration values deleted from firewall
Mike Stepanek (mstepane) [Fri, 17 Apr 2020 19:53:32 +0000 (19:53 +0000)]
Merge pull request #2172 in SNORT/snort3 from ~DERAMADA/snort3:log_daq_batch_size to master
Squashed commit of the following:
commit
d9d85d283835bccfa0d0b0b3dcb93136e27c9950
Author: deramada <deramada@cisco.com>
Date: Fri Apr 17 11:43:31 2020 -0400
packet_io: log daq batch size
Shravan Rangarajuvenkata (shrarang) [Fri, 17 Apr 2020 17:25:40 +0000 (17:25 +0000)]
Merge pull request #2167 in SNORT/snort3 from ~SATHIRKA/snort3:quic_url to master
Squashed commit of the following:
commit
e860159967cce1faafd932e2684fc88f8d9fabe1
Author: Sreeja Athirkandathil Narayanan <sathirka@cisco.com>
Date: Wed Aug 28 10:35:10 2019 -0400
appid: Populate url for QUIC sessions by extracting QUIC SNI metadata from third-party
Masud Hasan (mashasan) [Fri, 17 Apr 2020 16:48:17 +0000 (16:48 +0000)]
Merge pull request #2152 in SNORT/snort3 from ~MMATIRKO/snort3:flowalloc to master
Squashed commit of the following:
commit
c23b6251fdf1c653781ef3088cca5108fc0b2684
Author: Michael Matirko <mmatirko@cisco.com>
Date: Thu Apr 9 15:26:00 2020 -0400
flow: track allocations for each flow, update cap_weights
Russ Combs (rucombs) [Fri, 17 Apr 2020 02:51:15 +0000 (02:51 +0000)]
Merge pull request #2164 in SNORT/snort3 from ~RUCOMBS/snort3:avc_only to master
Squashed commit of the following:
commit
de9579872286a2c44b89e8f1ebd4dc3b0c0593d2
Author: russ <rucombs@cisco.com>
Date: Sat Apr 11 21:06:42 2020 -0400
ftp_data: fix ids flushing at EOF
commit
22804f385fd0fc2eaf200fd69d7560b404700e07
Author: russ <rucombs@cisco.com>
Date: Sat Apr 11 02:14:33 2020 -0400
style: fix nits
commit
3248176e5aaf8132121290d791b1788db4c58469
Author: russ <rucombs@cisco.com>
Date: Sun Apr 12 19:33:27 2020 -0400
inspectors: designate service inspectors for start tls
This applies to pop, imap, and smtp wich can do start tls as well as to
ftp which can do auth tls.
commit
66a13456a5817ac628c3457365ba065f04f6b03e
Author: russ <rucombs@cisco.com>
Date: Sat Apr 11 00:35:01 2020 -0400
inspectors: designate service inspectors for file carving
This applies to dce_smb, ftp_data, http_inspect, http2_inspect, imap,
pop, and smtp which process files.
commit
3700b32c0d3e596bdea00beb321edb4a992533b4
Author: russ <rucombs@cisco.com>
Date: Sat Apr 11 00:33:39 2020 -0400
inspectors: designate service inspectors control channels for avc only
This applies to cip, ftp_server, and sip inspectors which support other
flows.
commit
0749035648aaee49de05e77100b268a23b89b484
Author: russ <rucombs@cisco.com>
Date: Sat Apr 11 00:18:26 2020 -0400
ips_context: add support to fallback to avc only
Mike Stepanek (mstepane) [Wed, 15 Apr 2020 14:27:07 +0000 (14:27 +0000)]
Merge pull request #2147 in SNORT/snort3 from ~KATHARVE/snort3:connect2 to master
Squashed commit of the following:
commit
d885bee3d44fc6276c2df089b071a7425208ea09
Author: Katura Harvey <katharve@cisco.com>
Date: Tue Apr 7 13:35:33 2020 -0400
http_inspect: cut over to wizard on successful CONNECT response
Mike Stepanek (mstepane) [Wed, 15 Apr 2020 12:59:01 +0000 (12:59 +0000)]
Merge pull request #2158 in SNORT/snort3 from ~KATHARVE/snort3:script_case to master
Squashed commit of the following:
commit
9993a5e575b71d330a93f0d99e2a9fc60f19890e
Author: Katura Harvey <katharve@cisco.com>
Date: Mon Apr 13 13:12:32 2020 -0400
http_inspect: make script tag check case insensitive
George Koikara (gkoikara) [Wed, 15 Apr 2020 03:53:19 +0000 (03:53 +0000)]
Merge pull request #2096 in SNORT/snort3 from ~APOORAJ/snort3:verdict_reason_support to master
Squashed commit of the following:
commit
673f015c0db9553d35377c8dc4792d34218c5b43
Author: Apoorv Raj <apooraj@cisco.com>
Date: Mon Mar 23 01:59:10 2020 -0400
ftp: whitelisting reason support
Shravan Rangarajuvenkata (shrarang) [Tue, 14 Apr 2020 13:41:01 +0000 (13:41 +0000)]
Merge pull request #2137 in SNORT/snort3 from ~AGIURGIU/snort3:file_category to master
Squashed commit of the following:
commit
663d16d880d21d4c772eb8c5451efcd374a41b3a
Author: agiurgiu <agiurgiu@cisco.com>
Date: Tue Apr 7 14:25:42 2020 +0300
file_magic: Update category for HWP and MSOLE2
Bhagya Tholpady (bbantwal) [Tue, 14 Apr 2020 12:11:32 +0000 (12:11 +0000)]
Merge pull request #2154 in SNORT/snort3 from ~OSHUMEIK/snort3:ffix to master
Squashed commit of the following:
commit
883564c8dbd5be8ad0b1da80074915177f317b39
Author: Oleksii Shumeiko <oshumeik@cisco.com>
Date: Mon Apr 13 11:12:01 2020 +0300
http_inspect: fix duplicated detained_inspection print in show()
Shravan Rangarajuvenkata (shrarang) [Sat, 11 Apr 2020 23:59:13 +0000 (23:59 +0000)]
Merge pull request #2144 in SNORT/snort3 from ~SHRARANG/snort3:appid_remove_unused_code to master
Squashed commit of the following:
commit
08f71fa3082ed8e77f15403f1b0d2553f85c08de
Author: Shravan Rangaraju <shrarang@cisco.com>
Date: Thu Apr 9 12:29:40 2020 -0400
appid: remove unused code
Michael Altizer (mialtize) [Sat, 11 Apr 2020 18:09:43 +0000 (18:09 +0000)]
Merge pull request #2151 in SNORT/snort3 from ~OSERHIIE/snort3:fix_func_proto_warn to master
Squashed commit of the following:
commit
98ce3667e72552416a0f1ef154a6eea4ff8b5a0a
Author: Oleksandr Serhiienko <oserhiie@cisco.com>
Date: Sat Apr 11 13:22:39 2020 +0300
main: Make test_log() static in snort_debug.cc
Shravan Rangarajuvenkata (shrarang) [Sat, 11 Apr 2020 11:05:13 +0000 (11:05 +0000)]
Merge pull request #2149 in SNORT/snort3 from ~SATHIRKA/snort3:tsan_appid to master
Squashed commit of the following:
commit
9b719e481c49f208ce7997edd841194d7010fc1e
Author: Sreeja Athirkandathil Narayanan <sathirka@cisco.com>
Date: Thu Mar 26 17:27:58 2020 -0400
appid: Fixing thread-safety issues in appid
Michael Altizer (mialtize) [Fri, 10 Apr 2020 23:27:02 +0000 (23:27 +0000)]
Merge pull request #2113 in SNORT/snort3 from ~OSERHIIE/snort3:trace_logger to master
Squashed commit of the following:
commit
5ae02e42ad00e7b23dea2ca7432f54f06c7debf5
Author: Oleksandr Serhiienko <oserhiie@cisco.com>
Date: Fri Mar 13 17:05:30 2020 +0200
trace: refactor stdout/syslog logging of trace into logger framework
Michael Altizer (mialtize) [Fri, 10 Apr 2020 21:40:13 +0000 (21:40 +0000)]
Merge pull request #2150 in SNORT/snort3 from ~MIALTIZE/snort3:kill_inspectordata to master
Squashed commit of the following:
commit
55c887b65e3e21401ec64eb80b647ea5dfb6b4f5
Author: Michael Altizer <mialtize@cisco.com>
Date: Fri Apr 10 12:56:52 2020 -0400
framework: Remove unused InspectorData template
Reimplement the only prior user (FtpClient) without the template.
Mike Stepanek (mstepane) [Fri, 10 Apr 2020 19:35:59 +0000 (19:35 +0000)]
Merge pull request #2145 in SNORT/snort3 from ~DERAMADA/snort3:hi_http_uri_fragment to master
Squashed commit of the following:
commit
54f33541eeb50c01b81671321e32f03551d9f19b
Author: deramada <deramada@cisco.com>
Date: Fri Apr 10 09:17:24 2020 -0400
http_inspect: add fragment to http_uri
Mike Stepanek (mstepane) [Thu, 9 Apr 2020 20:21:52 +0000 (20:21 +0000)]
Merge pull request #2143 in SNORT/snort3 from ~MDAGON/snort3:0len to master
Squashed commit of the following:
commit
1692fd54db389cb3094ed99c499236550d3e2ef1
Author: mdagon <mdagon@cisco.com>
Date: Thu Apr 2 15:07:35 2020 -0400
http2_inspect: support 0 length data frames
Bhagya Tholpady (bbantwal) [Thu, 9 Apr 2020 16:41:25 +0000 (16:41 +0000)]
Merge pull request #2127 in SNORT/snort3 from ~OKHOMIAK/snort3:standardize_all_inspectors_config_output to master
Squashed commit of the following:
commit
cb70afb884f256e88504a45217c28783cc70b083
Author: Oleksii Khomiakovskyi <okhomiak@cisco.com>
Date: Tue Apr 7 21:44:31 2020 +0300
appid: remove unused config options and rename "debug" option
changes include:
* instance_id, dump_ports, app_stats_rollover_time options removed
* debug option renamed to list_odp_detectors
* snort2lua updated according to config option changes mentioned above
commit
cd58c49f50c9c22a1504405d449c137b9e743375
Author: Oleksii Khomiakovskyi <okhomiak@cisco.com>
Date: Thu Mar 26 10:49:03 2020 +0200
inspectors: update verbose config output in show() method to a new format
Add ConfigLogger class containing standard print functions
Michael Altizer (mialtize) [Thu, 9 Apr 2020 14:35:52 +0000 (14:35 +0000)]
Merge pull request #2142 in SNORT/snort3 from ~ANTOROZC/snort3:expose_packet_gettimeofday to master
Squashed commit of the following:
commit
72ab3f58822fcf6c56fdb46fa9a121cf4dfc6e94
Author: Brian Morris <bmorris2@cisco.com>
Date: Wed Apr 8 14:43:39 2020 -0500
time: make packet_gettimeofday public
Russ Combs (rucombs) [Thu, 9 Apr 2020 03:43:45 +0000 (03:43 +0000)]
Merge pull request #2086 in SNORT/snort3 from ~PUNEETKU/snort3:pm_shell_cmd to master
Squashed commit of the following:
commit
2b6c7588e78aac9e3a0a31b0b1571095b25c80ad
Author: Puneeth Kumar C V <puneetku@cisco.com>
Date: Sun Mar 15 22:52:53 2020 -0400
perf_monitor: Enable or disable flow-ip-profiling using shell commands
Mike Stepanek (mstepane) [Wed, 8 Apr 2020 20:10:23 +0000 (20:10 +0000)]
Merge pull request #2139 in SNORT/snort3 from ~DERAMADA/snort3:hi_fix_reload_extradata_reg to master
Squashed commit of the following:
commit
20bc030a4319888448db93d56abd040b5a3f624e
Author: deramada <deramada@cisco.com>
Date: Mon Apr 6 10:25:37 2020 -0400
http_inspect: register extra-data callbacks in constructor
Russ Combs (rucombs) [Wed, 8 Apr 2020 18:08:06 +0000 (18:08 +0000)]
Merge pull request #2141 in SNORT/snort3 from ~RUCOMBS/snort3:flowbits_fixups to master
Squashed commit of the following:
commit
6a0647dc39ea3806b2cbb51cd19833a25b6b1d51
Author: russ <rucombs@cisco.com>
Date: Wed Apr 8 10:00:16 2020 -0400
flowbits: fix build warnings from latest cleanup
Mike Stepanek (mstepane) [Tue, 7 Apr 2020 20:54:41 +0000 (20:54 +0000)]
Merge pull request #2126 in SNORT/snort3 from ~KATHARVE/snort3:connect_pt1 to master
Squashed commit of the following:
commit
e76efdd1ed2708467d1ffe895f238e986d5414b9
Author: Katura Harvey <katharve@cisco.com>
Date: Mon Mar 30 14:58:36 2020 -0400
http_inspect: enhance processing of connect messages
Mike Stepanek (mstepane) [Tue, 7 Apr 2020 15:59:30 +0000 (15:59 +0000)]
Merge pull request #2138 in SNORT/snort3 from ~MDAGON/snort3:frame_hdr_wobody to master
Squashed commit of the following:
commit
880bf5d85b633eb7b49e9b9587bfc3323502a8ea
Author: mdagon <mdagon@cisco.com>
Date: Mon Apr 6 16:36:19 2020 -0400
http2_inspect: handle the case of leftover header only (no body)
Russ Combs (rucombs) [Tue, 7 Apr 2020 13:11:54 +0000 (13:11 +0000)]
Merge pull request #2115 in SNORT/snort3 from ~RUCOMBS/snort3:rule_meta to master
Squashed commit of the following:
commit
9f06fc29f374152d9258636b16e37f966753f6f6
Author: russ <rucombs@cisco.com>
Date: Sun Apr 5 11:25:48 2020 -0400
flowbits: relocate bitop.h to helpers
commit
28c62396337cab09d8762e2299043fc0dd75a60f
Author: russ <rucombs@cisco.com>
Date: Sun Apr 5 00:13:29 2020 -0400
flowbits: fix reload mapping
commit
6637ad94652470fbff956e90a33760d92f56937e
Author: russ <rucombs@cisco.com>
Date: Sun Mar 29 20:54:58 2020 -0400
ips: fix rule state mapping and policy lookup
commit
b12fae905f4d3e2fa845572cf9d51da42b21fde8
Author: russ <rucombs@cisco.com>
Date: Sun Mar 29 15:12:52 2020 -0400
src: remove extraneous trailing spaces
commit
bcab016e2dafb240316bfccaf728bb36dfb291e6
Author: russ <rucombs@cisco.com>
Date: Sun Mar 29 10:31:55 2020 -0400
so rules: allow stub gid:sid:rev to override so
commit
6e8e8a7e39df9030c0b679aaec1688eb602b1325
Author: russ <rucombs@cisco.com>
Date: Sat Mar 28 17:23:49 2020 -0400
metadata-filter: apply to so rule stubs
commit
2ba460819894571742f16166286b597963d08652
Author: russ <rucombs@cisco.com>
Date: Sat Mar 28 16:04:57 2020 -0400
so rules: allow stub header to override so header
commit
9a40462e5b02191f2bd44abd98d40876d87af233
Author: russ <rucombs@cisco.com>
Date: Sat Mar 28 10:40:41 2020 -0400
snort: add --dump-rule-state
commit
7aa13768693d7037a0525d90bef053866203bad8
Author: russ <rucombs@cisco.com>
Date: Sat Mar 28 09:47:31 2020 -0400
snort: add --dump-rule-deps
commit
3975f00f8476bccacb4047cd4488555d513d3b22
Author: russ <rucombs@cisco.com>
Date: Sat Mar 28 09:11:08 2020 -0400
snort: add rule text to --dump-rule-meta
commit
17eff18a925a8fc728fbe1821f2c390b05fac49b
Author: russ <rucombs@cisco.com>
Date: Mon Mar 23 22:15:30 2020 -0400
snort: enable --dump-rule-meta to work without a conf
commit
634dc34e894e0e6dd05568eb6a1184312da5011a
Author: russ <rucombs@cisco.com>
Date: Sat Mar 14 22:11:23 2020 -0400
snort: add flowbits set and checked to --dump-rule-meta
commit
dfecdf639ac3027e6fdb0ee9945f59c01490b166
Author: russ <rucombs@cisco.com>
Date: Fri Mar 13 19:45:35 2020 -0400
snort: initial implementation of --dump-rule-meta
commit
b969f1b1b19c9ecdf546828bfd73d80d02d01813
Author: russ <rucombs@cisco.com>
Date: Thu Mar 26 11:26:39 2020 -0400
stream_tcp: remove unused session printing cruft
commit
c9c7b527debe3c6689ffce4e4be5d1caa7b476e2
Author: russ <rucombs@cisco.com>
Date: Thu Mar 26 11:15:48 2020 -0400
hyperscan: simplify scratch memory initialization
commit
3be58eed3d48ede7c5bd6ae949c25d9f8825e9b2
Author: russ <rucombs@cisco.com>
Date: Tue Mar 24 08:49:17 2020 -0400
output: allow error messages in quiet mode
commit
c63c2cee10e3e924b27719770776b67e31339ad5
Author: russ <rucombs@cisco.com>
Date: Mon Mar 23 08:29:27 2020 -0400
session: remove unused IPS option
commit
d52b37a58007a4e1f8e9f191c96a48529a3aa8d0
Author: russ <rucombs@cisco.com>
Date: Sun Mar 22 20:44:10 2020 -0400
snort: remove unused --pcap-reload option
commit
616ac76d41aade222a16cf19a7f4634e6f92be9a
Author: russ <rucombs@cisco.com>
Date: Sun Mar 22 20:22:12 2020 -0400
snort: remove inappropriate fatal errors
commit
57ab3b040ba3735eb2f62f442641f49b6ee31ee1
Author: russ <rucombs@cisco.com>
Date: Sat Mar 14 12:10:39 2020 -0400
flowbits: refactor implementation
... and 4 more commits
Mike Stepanek (mstepane) [Tue, 7 Apr 2020 11:29:37 +0000 (11:29 +0000)]
Merge pull request #2134 in SNORT/snort3 from ~DERAMADA/snort3:fix_active_hold to master
Squashed commit of the following:
commit
a6ab217cd37c03e92fd8815de32e0453dca72fd4
Author: deramada <deramada@cisco.com>
Date: Mon Apr 6 09:45:41 2020 -0400
packet_io: revert hold_packet to bool
Mike Stepanek (mstepane) [Mon, 6 Apr 2020 12:46:05 +0000 (12:46 +0000)]
Merge pull request #2123 in SNORT/snort3 from ~MDAGON/snort3:pt5 to master
Squashed commit of the following:
commit
8bd4bd1239e961dba3287e9ec05fff34990ceb8c
Author: mdagon <mdagon@cisco.com>
Date: Wed Mar 25 16:19:22 2020 -0400
http2_inspect: flush pending data when a non-data frame is received
Steve Chew (stechew) [Sat, 4 Apr 2020 18:35:27 +0000 (18:35 +0000)]
Merge pull request #2131 in SNORT/snort3 from ~SBAIGAL/snort3:safe_erase_plug_map to master
Squashed commit of the following:
commit
16a5ac013e9100ebdf301bfb77d739fab41c9be0
Author: Steven Baigal (sbaigal) <sbaigal@cisco.com>
Date: Fri Apr 3 21:06:48 2020 -0400
plugin_manager: make erase from plug_map safer
Michael Altizer (mialtize) [Fri, 3 Apr 2020 20:05:50 +0000 (20:05 +0000)]
Merge pull request #2130 in SNORT/snort3 from ~MIALTIZE/snort3:template_viz to master
Squashed commit of the following:
commit
fc8fe9813154aff1cfa2891d1803681012a3f337
Author: Michael Altizer <mialtize@cisco.com>
Date: Fri Apr 3 12:16:19 2020 -0400
host_tracker: Move all HostCacheAlloc template implementions to the header
Mike Stepanek (mstepane) [Fri, 3 Apr 2020 19:11:40 +0000 (19:11 +0000)]
Merge pull request #2117 in SNORT/snort3 from ~DERAMADA/snort3:log_daq_pool_size to master
Squashed commit of the following:
commit
f6bad88e3d04736dc28e96f74299306ebcf89c4d
Author: deramada <deramada@cisco.com>
Date: Mon Mar 30 12:25:28 2020 -0400
packet_io: log daq pool size
Michael Altizer (mialtize) [Fri, 3 Apr 2020 18:55:21 +0000 (18:55 +0000)]
Merge pull request #2128 in SNORT/snort3 from ~MASHASAN/snort3:wrap_enable_shell to master
Squashed commit of the following:
commit
9ccb24f001e6699d02a40b5198108773f3a5dcb1
Author: Masud Hasan <mashasan@cisco.com>
Date: Fri Apr 3 07:18:43 2020 -0400
control: Disable request unit-test in cmake if shell is disabled
Mike Stepanek (mstepane) [Fri, 3 Apr 2020 16:23:13 +0000 (16:23 +0000)]
Merge pull request #2077 in SNORT/snort3 from ~DERAMADA/snort3:gre_encode to master
Squashed commit of the following:
commit
14d1ebcee5a9b038c75e7c7ef2b5889dbe1e512f
Author: deramada <deramada@cisco.com>
Date: Thu Mar 12 16:50:17 2020 -0400
codecs: Update GRE flags and offset for injected packets
commit
2c99419277fa13e61819e54db9848c5fa523bf34
Author: Katura Harvey <katharve@cisco.com>
Date: Thu Feb 20 13:24:39 2020 -0500
codecs: GRE checksum updated for injected and rewritten packets
Russ Combs (rucombs) [Fri, 3 Apr 2020 00:15:21 +0000 (00:15 +0000)]
Merge pull request #2122 in SNORT/snort3 from ~DAVMCPHE/snort3:consistent_reloaderror_messages to master
Squashed commit of the following:
commit
57247262ea9e7a32905c0e066fff83da239defb6
Author: davis mcpherson <davmcphe@cisco.com>
Date: Wed Apr 1 09:17:48 2020 -0400
reload: update ReloadError response messages to use consistent wording across all messages
Mike Stepanek (mstepane) [Thu, 2 Apr 2020 18:29:05 +0000 (18:29 +0000)]
Merge pull request #2125 in SNORT/snort3 from ~MASHASAN/snort3:fix_shell_disabled to master
Squashed commit of the following:
commit
efb8ab4ca48af09be2c6b3f91a89c78b75c79c2c
Author: Masud Hasan <mashasan@cisco.com>
Date: Thu Apr 2 12:54:33 2020 -0400
control: Run unit-test only if shell is enabled
Shravan Rangarajuvenkata (shrarang) [Thu, 2 Apr 2020 15:41:52 +0000 (15:41 +0000)]
Merge pull request #2121 in SNORT/snort3 from ~SATHIRKA/snort3:ftp_data_smtp_whitelist to master
Squashed commit of the following:
commit
344a0e0c70ac76761a2ec02af9af893152a053dc
Author: Sreeja Athirkandathil Narayanan <sathirka@cisco.com>
Date: Tue Mar 31 11:39:00 2020 -0400
appid: mark third-party inspection as done for expected flows
Michael Altizer (mialtize) [Wed, 1 Apr 2020 21:08:11 +0000 (21:08 +0000)]
Merge pull request #2112 in SNORT/snort3 from ~MIALTIZE/snort3:cmd to master
Squashed commit of the following:
commit
629a62312051ee2a5a01debab91ffa0166113dcb
Author: Michael Altizer <mialtize@cisco.com>
Date: Thu Mar 26 17:14:42 2020 -0400
loggers: Add SGT field to CSV and JSON loggers
commit
54211092635b918760eee6e9eea24f35a42aac2e
Author: Michael Altizer <mialtize@cisco.com>
Date: Thu Mar 26 17:14:42 2020 -0400
codecs: Clean up CiscoMetaData implementation
Mike Stepanek (mstepane) [Wed, 1 Apr 2020 16:52:05 +0000 (16:52 +0000)]
Merge pull request #2116 in SNORT/snort3 from ~MASHASAN/snort3:request_race to master
Squashed commit of the following:
commit
3b0c7cc38f58f0f8fcbf864b5690cc4eb4cf6019
Author: Masud Hasan <mashasan@cisco.com>
Date: Fri Mar 27 20:16:40 2020 -0400
control: Fixing data races in request read and response
Shravan Rangarajuvenkata (shrarang) [Wed, 1 Apr 2020 15:36:11 +0000 (15:36 +0000)]
Merge pull request #2110 in SNORT/snort3 from ~OZAIKA/snort3:http2_get_header to master
Squashed commit of the following:
commit
42d9ee1fa66cbfd4eda0f057b83a3b09fb3c3115
Author: Oleksii Zaika <ozaika@cisco.com>
Date: Thu Mar 26 08:25:11 2020 -0400
appid: detect payload for first http2 stream
George Koikara (gkoikara) [Wed, 1 Apr 2020 14:55:27 +0000 (14:55 +0000)]
Merge pull request #2024 in SNORT/snort3 from ~GSAMBYAL/snort3:snort_6_7_port to master
Squashed commit of the following:
commit
e76a979bbd75892f5fc88ccd958c0a6410aceb96
Author: Garima Singh Sambyal <gsambyal@cisco.com>
Date: Wed Feb 19 01:51:28 2020 -0500
sip: Support pinhole for sip early media
George Koikara (gkoikara) [Wed, 1 Apr 2020 14:51:41 +0000 (14:51 +0000)]
Merge pull request #2103 in SNORT/snort3 from ~NEHASH4/snort3:CSCvt32429 to master
Squashed commit of the following:
commit
fc824674b7f4d878f4dfa7ed54bb4702f6a1aae5
Author: neha sharma <nehash4@cisco.com>
Date: Sun Mar 22 05:05:20 2020 -0400
file: apply cached verdict on already seen file
Michael Altizer (mialtize) [Tue, 31 Mar 2020 15:35:19 +0000 (15:35 +0000)]
Merge pull request #2119 in SNORT/snort3 from ~MIALTIZE/snort3:3.0.1_build_1 to master
Squashed commit of the following:
commit
fea387971db1f4f7552af4f7a402a5b032efb218
Author: Michael Altizer <mialtize@cisco.com>
Date: Tue Mar 31 09:59:58 2020 -0400
build: generate and tag 3.0.1 build 1
Steve Chew (stechew) [Tue, 31 Mar 2020 14:41:57 +0000 (14:41 +0000)]
Merge pull request #2102 in SNORT/snort3 from ~STECHEW/snort3:detained_packet_with_ssl to master
Squashed commit of the following:
commit
403c0de29a90c3a101730357a9bd5ba9caabf243
Author: Steve Chew <stechew@cisco.com>
Date: Mon Mar 23 20:48:52 2020 -0400
analyzer: Send detained packet event when a packet is held.
commit
43ecbb9b1cdb32a532342e29be6162ada75e2ecf
Author: Steve Chew <stechew@cisco.com>
Date: Thu Mar 26 12:01:35 2020 -0400
dce_rpc: Fixed missing space in string.
Michael Altizer (mialtize) [Mon, 30 Mar 2020 22:50:53 +0000 (22:50 +0000)]
Merge pull request #2078 in SNORT/snort3 from ~MIALTIZE/snort3:version_3_0_1 to master
Squashed commit of the following:
commit
017bead76ae7609494c26cf0a5756a3e07f73995
Author: Michael Altizer <mialtize@cisco.com>
Date: Fri Mar 13 13:16:37 2020 -0400
build: Increment version to 3.0.1
Steve Chew (stechew) [Mon, 30 Mar 2020 21:36:02 +0000 (21:36 +0000)]
Merge pull request #2107 in SNORT/snort3 from ~BBANTWAL/snort3:latency_updates to master
Squashed commit of the following:
commit
99e8356b5e645aebb676d58acc22462948cab5b8
Author: Bhagya Tholpady <bbantwal@cisco.com>
Date: Wed Mar 25 10:01:54 2020 -0400
latency: remove action config option and convert the log handler to trace_log message
commit
d9ce00ad8447b8f376077b249f1a03c7f0c2acbc
Author: Bhagya Tholpady <bbantwal@cisco.com>
Date: Wed Mar 25 09:05:41 2020 -0400
snort2lua: remove conversion of deprecated options pkt-log and rule-log
Mike Stepanek (mstepane) [Mon, 30 Mar 2020 15:36:59 +0000 (15:36 +0000)]
Merge pull request #2111 in SNORT/snort3 from ~KATHARVE/snort3:h2_headers to master
Squashed commit of the following:
commit
b076d151ec56be77b27a72904e68c9eae18e887b
Author: Katura Harvey <katharve@cisco.com>
Date: Wed Mar 25 19:06:59 2020 -0400
http2_inspect: handle Cl and TE headers, and end_stream flags set on headers frames
Mike Stepanek (mstepane) [Mon, 30 Mar 2020 11:54:35 +0000 (11:54 +0000)]
Merge pull request #2114 in SNORT/snort3 from ~THOPETER/snort3:nhttp138 to master
Squashed commit of the following:
commit
cdbf6e7e9e313444606b38d2afcea79954cca108
Author: Tom Peters <thopeter@cisco.com>
Date: Fri Mar 27 11:47:19 2020 -0400
http_inspect: added FIXIT for thread safety
Russ Combs (rucombs) [Sat, 28 Mar 2020 00:10:29 +0000 (00:10 +0000)]
Merge pull request #2095 in SNORT/snort3 from ~RUCOMBS/snort3:fixit_h to master
Squashed commit of the following:
commit
0ebc66453a734219078df3fd286d01dd63fa8474
Author: Russ Combs <rucombs@cisco.com>
Date: Sun Mar 22 13:22:33 2020 -0400
doc: add FIXIT-E description
commit
fb12eb5b0cbdc6976de6a27bb13866085969a0e2
Author: Russ Combs <rucombs@cisco.com>
Date: Sun Mar 22 13:04:12 2020 -0400
src: udpate high priority "to be fixed" comments (FIXIT-H)
Mike Stepanek (mstepane) [Fri, 27 Mar 2020 19:32:59 +0000 (19:32 +0000)]
Merge pull request #2101 in SNORT/snort3 from ~MDAGON/snort3:h2i_pt4 to master
Squashed commit of the following:
commit
9942a2e7ebd578c2c0715646e09f3357026083a7
Author: mdagon <mdagon@cisco.com>
Date: Tue Mar 17 10:36:25 2020 -0400
http2_inspect: multiple data frames support
Russ Combs (rucombs) [Thu, 26 Mar 2020 22:53:55 +0000 (22:53 +0000)]
Merge pull request #2083 in SNORT/snort3 from ~SBAIGAL/snort3:so_proxy to master
Squashed commit of the following:
commit
f19ea58fa5e667524c554164ab956346e1abe04a
Author: Steven Baigal (sbaigal) <sbaigal@cisco.com>
Date: Tue Mar 10 18:11:14 2020 -0400
so_rule: fix reload of shared object rules that use flow data
add tracking SO rule flow data with so_proxy inspector
projects / thirdparty / snort3.git / log
