]>
git.ipfire.org Git - thirdparty/snort3.git/log
Michael Altizer (mialtize) [Tue, 29 May 2018 16:27:23 +0000 (12:27 -0400)]
Merge pull request #1240 in SNORT/snort3 from deploy_fix to master
Squashed commit of the following:
commit
6eeba268a7d70a97daa438f7eea12d526f7eae1f
Author: Carter Waxman <cwaxman@cisco.com>
Date: Fri May 25 11:52:36 2018 -0400
snort2lua: fixed nap ip parsing
Tom Peters (thopeter) [Fri, 25 May 2018 18:56:56 +0000 (14:56 -0400)]
Merge pull request #1239 in SNORT/snort3 from unit_fix to master
Squashed commit of the following:
commit
1b2a5a61f54118524a5a86a3ae83d55a1239c7d8
Author: Tom Peters <thopeter@cisco.com>
Date: Thu May 24 14:16:36 2018 -0400
tcp_connector_test: fixed version-sensitive build problem
Mike Stepanek (mstepane) [Thu, 24 May 2018 17:11:05 +0000 (13:11 -0400)]
Merge pull request #1238 in SNORT/snort3 from appid_reinspect to master
Squashed commit of the following:
commit
28c121dd6a20db3d8c31d888815b98d0d6cec4a7
Author: Shravan Rangaraju <shrarang@cisco.com>
Date: Thu May 24 18:46:03 2018 -0400
appid: clean only HTTP data on HTTP reinspect
Russ Combs (rucombs) [Wed, 23 May 2018 16:35:18 +0000 (12:35 -0400)]
Merge pull request #1237 in SNORT/snort3 from 245 to master
Squashed commit of the following:
commit
451b9ec52a96fefed5948c4b2d4f79173cd70496
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Wed May 23 09:06:15 2018 -0400
file_id: claim gid 146 to avoid legacy issues
commit
1fb59288145a0e883da710f5309ca5e475ca022f
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Wed May 23 08:59:40 2018 -0400
events: rename some gid and sid defines for consistency and clarity
commit
1c2156f4cbc7dc50556610b0c01a27b1efe3e662
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Wed May 23 02:16:33 2018 -0400
parser: gid value does not indicate rule type
commit
94f77577256b13b1d5edbf0fc21c7613d501f3b3
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Wed May 23 02:07:07 2018 -0400
parser: warn about text rules w/o detection options
commit
92969aba5c224525b877c69397b02956fbc7c708
Author: Russ Combs <rucombs@cisco.com>
Date: Mon May 21 10:25:03 2018 -0400
build 245
Mike Stepanek (mstepane) [Tue, 22 May 2018 19:50:20 +0000 (15:50 -0400)]
Merge pull request #1236 in SNORT/snort3 from appid_null_referer to master
Squashed commit of the following:
commit
6b32a70e6296eef35610e0789ba026e06d362f6c
Author: Shravan Rangaraju <shrarang@cisco.com>
Date: Tue May 22 19:31:32 2018 -0400
appid: create referer object only for non-null string
Tom Peters (thopeter) [Tue, 22 May 2018 16:26:48 +0000 (12:26 -0400)]
Merge pull request #1235 in SNORT/snort3 from nhttp104 to master
Squashed commit of the following:
commit
44c803bf62cf1138968a11e232dc4c9e854f4438
Author: Tom Peters <thopeter@cisco.com>
Date: Mon May 14 16:58:25 2018 -0400
http_inspect: performance enhancements for file processing beyond detection depth
Mike Stepanek (mstepane) [Mon, 21 May 2018 21:22:36 +0000 (17:22 -0400)]
Merge pull request #1226 in SNORT/snort3 from dev_appid_navl to master
Squashed commit of the following:
commit
9fb9da9f0f9cedf4db316c343141d5a569eb984b
Author: Devendra Dahiphale <ddahipha@cisco.com>
Date: Mon May 21 17:19:37 2018 -0400
appid: clean-up code for performance and implement is_tp_processing_done()
Mike Stepanek (mstepane) [Mon, 21 May 2018 20:54:09 +0000 (16:54 -0400)]
Merge pull request #1229 in SNORT/snort3 from appid_ooo to master
Squashed commit of the following:
commit
da9049260a50d2a5e08b7e024c7d05f53f18d609
Author: Shravan Rangaraju <shrarang@cisco.com>
Date: Tue May 15 09:54:57 2018 -0400
appid: do not inspect out-of-order flows, ignore zero-payload packets for client/service discovery
Tom Peters (thopeter) [Mon, 21 May 2018 20:41:14 +0000 (16:41 -0400)]
Merge pull request #1234 in SNORT/snort3 from add_trace to master
Squashed commit of the following:
commit
10d579e68a74a54c9f9ee56c2d772d8360e47e87
Author: mdagon <mdagon@cisco.com>
Date: Wed May 16 15:49:03 2018 -0400
trace: add traces for deleted debug messages
Russ Combs (rucombs) [Sat, 19 May 2018 12:53:16 +0000 (08:53 -0400)]
Merge pull request #1233 in SNORT/snort3 from crc_rulez to master
Squashed commit of the following:
commit
45bfbf7501f6c3e25e48dca9738f78707534ae92
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Fri May 18 02:40:32 2018 -0400
stream: assume gid 135 so those rules are handled as standard builtins
commit
6d676b7cea425f9593f9475afcdbede959cdb8e4
Author: Russ Combs <rucombs@cisco.com>
Date: Wed Apr 18 15:59:57 2018 -0400
parser: allow arbitrary rule gids
Michael Altizer (mialtize) [Fri, 18 May 2018 18:23:47 +0000 (14:23 -0400)]
Merge pull request #1227 in SNORT/snort3 from split_extra to master
Squashed commit of the following:
commit
eb04d43aaca0739edfac87d48bebcc5d2e94db05
Author: Steven Baigal (sbaigal) <sbaigal@cisco.com>
Date: Wed May 16 16:04:29 2018 -0400
extra: splitted extra out to snort3_extra repo
Mike Stepanek (mstepane) [Fri, 18 May 2018 18:05:21 +0000 (14:05 -0400)]
Merge pull request #1232 in SNORT/snort3 from tp_string to master
Squashed commit of the following:
commit
d67139c8ecec99df3709d8ebac14fe52dc63921e
Author: Silviu Minut <sminut@cisco.com>
Date: Fri May 18 12:51:52 2018 -0400
appid: fix tabs and indentation
commit
3325d54ba6e18978bd16920b4e9ff0b55e9d51ad
Author: Silviu Minut <sminut@cisco.com>
Date: Fri May 18 09:51:30 2018 -0400
appid: fix segfault due to dereferencing null host pointer.
commit
eec54e0b5ba244156fbed75aa3952eb5b2a23605
Author: Silviu Minut <sminut@cisco.com>
Date: Thu May 17 15:11:21 2018 -0400
appid: make tp_attribute_data more localized, so we only allocate/deallocate it if needed.
commit
3c426a26644146e5aa36216399b24e7ee8f2f1d0
Author: Silviu Minut <sminut@cisco.com>
Date: Thu May 17 11:40:14 2018 -0400
appid: fix memory leak in appid_http_event_test and warning in appid_http_session.cc
commit
ad2c55c8c6bcfc70fc3d32242803b40895070fcf
Author: Silviu Minut <sminut@cisco.com>
Date: Thu May 17 09:53:26 2018 -0400
appid: change metadata buffers from std::string to pointers, to avoid extra copying
Russ Combs (rucombs) [Thu, 17 May 2018 21:58:05 +0000 (17:58 -0400)]
Merge pull request #1230 in SNORT/snort3 from crc_tweaks to master
Squashed commit of the following:
commit
f06542a789e143090650d50ece49592473b234de
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Wed May 16 19:53:56 2018 -0400
tcp codec: count bad ip6 checksums correctly; thanks to j.mcdowell@titan-ic.com for reporting the issue
commit
b77ce8358d2516b52169f26520596a02f1d47b10
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Wed May 16 19:50:38 2018 -0400
snort: -r- will read packets from stdin
Michael Altizer (mialtize) [Wed, 16 May 2018 19:53:05 +0000 (15:53 -0400)]
Merge pull request #1228 in SNORT/snort3 from move_json_usock to master
Squashed commit of the following:
commit
5673495422fa4f6069b782fe7db46e186d98822d
Author: Steven Baigal (sbaigal) <sbaigal@cisco.com>
Date: Wed May 16 14:48:55 2018 -0400
alert: moved alert json. unixsock out from extra to snort3
Michael Altizer (mialtize) [Tue, 15 May 2018 23:29:45 +0000 (19:29 -0400)]
Merge pull request #1225 in SNORT/snort3 from perf3_edm to master
Squashed commit of the following:
commit
aa397e563a5b295d13dd6066f5b3ad77c356ad5b
Author: davis mcpherson <davmcphe.cisco.com>
Date: Tue May 15 14:30:53 2018 -0400
build: add cmake configure switches for NO_PROFILER, NO_MEM_MGR and DEEP_PROFILING
commit
ddd1d15bee1d9b8f3365b21a441a99384f37a612
Author: davis mcpherson <davmcphe.cisco.com>
Date: Fri May 11 16:07:45 2018 -0400
time: initialize Stopwatch::start_time member variable to 0 ticks when TSC clock is enabled
commit
c5ba39de5479567d034491625bfd5223d7cd7744
Author: davis mcpherson <davmcphe.cisco.com>
Date: Thu May 10 16:24:51 2018 -0400
build: propogate snort3 tsc build option to the extra build system
commit
9998d4b5c89c152600e9604e65948fbe0bc872aa
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Mon May 7 09:23:36 2018 -0400
codecs: add config option to detection to enable check and alert for address anomalies
commit
bf4f53352cfce206bf684c94f58bbe4f5d3de25b
Author: davis mcpherson <davmcphe.cisco.com>
Date: Wed May 9 16:27:31 2018 -0400
profiler: add deep profiler option
commit
8181046b436d9a5fd53c460d712a2c012cca9a40
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Mon May 7 19:45:18 2018 -0400
clock: use uint64_t with tsc clock instead of std::chrono for performance
Tom Peters (thopeter) [Tue, 15 May 2018 18:28:26 +0000 (14:28 -0400)]
Merge pull request #1224 in SNORT/snort3 from doc_trace to master
Squashed commit of the following:
commit
ebf90a7526091f3aae85bea6a62b757fa325160f
Author: mdagon <mdagon@cisco.com>
Date: Fri May 11 14:25:20 2018 -0400
doc: add doc for module trace
Hui Cao (huica) [Fri, 11 May 2018 15:24:04 +0000 (11:24 -0400)]
Merge pull request #1223 in SNORT/snort3 from fw_reject to master
Squashed commit of the following:
commit
96349ffb3568aafada99c26e8d2362f1eae26ae2
Author: huica <huica@cisco.com>
Date: Thu May 10 12:14:32 2018 -0400
snort2lua: enable reject action when firewall is enabled
Michael Altizer (mialtize) [Thu, 10 May 2018 16:29:31 +0000 (12:29 -0400)]
Merge pull request #1219 in SNORT/snort3 from add_capture_support to master
Squashed commit of the following:
commit
a5e4304b0fa51fb13d40af0f802ee8059d529edd
Author: shaslad <shaslad@cisco.com>
Date: Thu May 3 22:12:04 2018 -0400
packet_capture: adding analyzer command to initialize dump file
Michael Altizer (mialtize) [Thu, 10 May 2018 15:50:26 +0000 (11:50 -0400)]
Merge pull request #1222 in SNORT/snort3 from tcmalloc to master
Squashed commit of the following:
commit
0c6e8c28eefd2e9148562d5153288ee6b400d367
Author: Michael Altizer <mialtize@cisco.com>
Date: Wed May 9 17:48:58 2018 -0400
cmake: Add support for building with tcmalloc
Mike Stepanek (mstepane) [Tue, 8 May 2018 16:35:08 +0000 (12:35 -0400)]
Merge pull request #1216 in SNORT/snort3 from appid_tp_done to master
Squashed commit of the following:
commit
fbcbd2a12c8819ddd188da1a231d00d1d3fd668a
Author: Shravan Rangaraju <shrarang@cisco.com>
Date: Sun May 6 15:28:42 2018 -0400
appid: report when third party appid is done inspecting
Michael Altizer (mialtize) [Tue, 8 May 2018 15:07:54 +0000 (11:07 -0400)]
Merge pull request #1220 in SNORT/snort3 from snort_flags to master
Squashed commit of the following:
commit
0a24fb7ce8064554e70371c0b3553306700e0a55
Author: Cristian <candrone@cisco.com>
Date: Tue May 8 02:17:01 2018 -0400
ips_flags: remove dead code
Hui Cao (huica) [Mon, 7 May 2018 13:07:50 +0000 (09:07 -0400)]
Merge pull request #1206 in SNORT/snort3 from file_type_strings1 to master
Squashed commit of the following:
commit
a7e1439ed447f31a501cf3342b4d8f6ce67e70b0
Author: Steve Chew <stechew@cisco.com>
Date: Fri Apr 27 17:07:43 2018 -0400
file_type: Require strings instead of integers for types. Handle versions.
Hui Cao (huica) [Fri, 4 May 2018 20:46:13 +0000 (16:46 -0400)]
Merge pull request #1213 in SNORT/snort3 from rep_zone2 to master
Squashed commit of the following:
commit
86acc8a1a6e79cac222ca191ea6cb8fc4b796248
Author: huica <huica@cisco.com>
Date: Tue May 1 12:45:31 2018 -0400
repuation: remove the limit for zone id
Tom Peters (thopeter) [Fri, 4 May 2018 19:37:11 +0000 (15:37 -0400)]
Merge pull request #1159 in SNORT/snort3 from ~BRASTULT/snort3:dce_rpc_fix to master
Squashed commit of the following:
commit
59acba7355b3c521339e3ad4fff99c3117d3ce23
Author: Brandon Stultz <brastult@cisco.com>
Date: Mon Mar 26 18:29:32 2018 -0400
dce_rpc: pass frag_ptr by reference
commit
e3f33a7becfdf6da90f6bedc4371c8c597d34864
Author: Brandon Stultz <brastult@cisco.com>
Date: Fri Mar 23 15:50:22 2018 -0400
dce_rpc: fix parsing of dce/rpc ctx items
dce_co_process_ctx_id needs to update its caller's (DCE2_CoCtxReq)
frag_ptr as it is called in a loop in order to parse each dce/rpc
ctx item, otherwise it ends up parsing the same ctx item over
and over.
Tom Peters (thopeter) [Fri, 4 May 2018 19:34:46 +0000 (15:34 -0400)]
Merge pull request #1209 in SNORT/snort3 from gid120 to master
Squashed commit of the following:
commit
a3cda55bc04bd2bdb0a0724d1bbf77003cc96a9b
Author: mdagon <mdagon@cisco.com>
Date: Fri Apr 27 15:14:43 2018 -0400
snort2lua: conversion of gid 120 to 119
Tom Peters (thopeter) [Fri, 4 May 2018 19:30:54 +0000 (15:30 -0400)]
Merge pull request #1217 in SNORT/snort3 from debug_cleanup to master
Squashed commit of the following:
commit
04c562979db2c3f3f9ca25ddc649f0ba2a13419f
Author: Nihal Desai <nihdesai@cisco.com>
Date: Mon Apr 30 11:10:43 2018 -0400
Debug: Final debug messages cleanup, removal of macros from snort_debug
Mike Stepanek (mstepane) [Fri, 4 May 2018 16:24:13 +0000 (12:24 -0400)]
Merge pull request #1210 in SNORT/snort3 from navl_detect to master
Squashed commit of the following:
commit
33c2120c16de475e43fc35c8a537e26997b68ad8
Author: Devendra Dahiphale <ddahipha@cisco.com>
Date: Thu May 3 12:01:01 2018 -0400
appid: Fix bug where Service and Application ID's set to port number instead of service appid
commit
fa0a06c99fb6f9c7838a021db0e6a705672168ab
Author: Neha Neha <neneha@cisco.com>
Date: Tue May 1 10:25:35 2018 -0400
appid: Enable Third-Party Code for Packet Processing
Hui Cao (huica) [Fri, 4 May 2018 15:24:40 +0000 (11:24 -0400)]
Merge pull request #1211 in SNORT/snort3 from proto_ref_test to master
Squashed commit of the following:
commit
f13afb877073cc8851a9847bce9185a931c62bd5
Author: Victor Roemer <viroemer@cisco.com>
Date: Tue May 1 11:40:52 2018 -0400
target_based: 100% coverage on snort_protocols.cc
Mike Stepanek (mstepane) [Thu, 3 May 2018 22:53:27 +0000 (18:53 -0400)]
Merge pull request #1215 in SNORT/snort3 from appid_header_fix to master
Squashed commit of the following:
commit
1185586735fc9e4c516cf8beed416aad47e92f39
Author: deramada <deramada@cisco.com>
Date: Thu May 3 16:38:28 2018 -0400
appid: moved HttpFieldIds to appid_http_session
Tom Peters (thopeter) [Thu, 3 May 2018 17:53:13 +0000 (13:53 -0400)]
Merge pull request #1214 in SNORT/snort3 from nhttp102 to master
Squashed commit of the following:
commit
1c2f2fb934bf4dcd3005cda1321db866b1ce2c8f
Author: Tom Peters <thopeter@cisco.com>
Date: Mon Apr 16 16:15:12 2018 -0400
http_inspect: performance improvements
Mike Stepanek (mstepane) [Thu, 3 May 2018 17:28:20 +0000 (13:28 -0400)]
Merge pull request #1212 in SNORT/snort3 from appid_fixes to master
Squashed commit of the following:
commit
c983b7acc7ef641faa3a9d5e9ef255511b736f47
Author: deramada <deramada@cisco.com>
Date: Wed May 2 11:06:18 2018 -0400
appid: appid session unit test changes
commit
aa89c65543a5fb16db9c692a38778138fb5d901b
Author: deramada <deramada@cisco.com>
Date: Tue May 1 20:27:33 2018 -0400
appid: fixed http fields, referer payload and appid debug
Tom Peters (thopeter) [Wed, 2 May 2018 16:44:36 +0000 (12:44 -0400)]
Merge pull request #1199 in SNORT/snort3 from build_doc to master
Squashed commit of the following:
commit
be3d6e1db59c639ea26fb2ef0bd1f5f9afe1dd68
Author: mdagon <mdagon@cisco.com>
Date: Thu Apr 19 12:24:13 2018 -0400
build: add disable-docs to disable doc build
Mike Stepanek (mstepane) [Fri, 27 Apr 2018 19:55:23 +0000 (15:55 -0400)]
Merge pull request #1200 in SNORT/snort3 from navl_integration to master
Squashed commit of the following:
commit
1ce3e5786af7a18a4f23af459fa65ca4f14c0298
Author: Shravan Rangaraju <shrarang@cisco.com>
Date: Tue Apr 10 13:22:37 2018 -0400
appid: Third party integration support
Hui Cao (huica) [Fri, 27 Apr 2018 15:50:14 +0000 (11:50 -0400)]
Merge pull request #1203 in SNORT/snort3 from ProtocolReference_UT to master
Squashed commit of the following:
commit
346ade396bba9a3212e4e28e5d58bf8eab1bc735
Author: Victor Roemer <viroemer@cisco.com>
Date: Mon Apr 23 15:18:37 2018 -0400
target_based: unit tests for ProtocolReference class
Michael Altizer (mialtize) [Fri, 27 Apr 2018 15:14:38 +0000 (11:14 -0400)]
Merge pull request #1204 in SNORT/snort3 from navl_integration_configure_cmake to master
Squashed commit of the following:
commit
b1b3a387107cafc1958b70d4617cdc4d9fe5c8cd
Author: Silviu Minut <sminut@cisco.com>
Date: Fri Apr 27 10:55:11 2018 -0400
cmake: Add --enable-appid-third-party to configure_cmake.sh
Michael Altizer (mialtize) [Fri, 27 Apr 2018 14:11:19 +0000 (10:11 -0400)]
Merge pull request #1202 in SNORT/snort3 from freebsd_unit_test_fixes to master
Squashed commit of the following:
commit
f8b702f6deb629b05dd9c8c330a907d4cec57b9b
Author: shaslad <shaslad@cisco.com>
Date: Mon Apr 23 16:27:16 2018 -0400
build: Fix building unit tests on FreeBSD
Russ Combs (rucombs) [Wed, 25 Apr 2018 10:42:18 +0000 (06:42 -0400)]
Merge pull request #1201 in SNORT/snort3 from fixed_ip4_id to master
Squashed commit of the following:
commit
67252ea2a66b113a98f2c2c3239ef21d0713d30c
Author: Steven Baigal (sbaigal) <sbaigal@cisco.com>
Date: Tue Apr 24 14:41:38 2018 -0400
ip: replaced REG_TEST with -H option for ipv4 codec fixed seed
Hui Cao (huica) [Tue, 24 Apr 2018 17:56:52 +0000 (13:56 -0400)]
Merge pull request #1196 in SNORT/snort3 from reputation_zone to master
Squashed commit of the following:
commit
d4a3ca924d6fe39b3d3746d5c260a40a442a58ee
Author: huica <huica@cisco.com>
Date: Tue Apr 17 14:39:11 2018 -0400
reputation: add zone support
Michael Altizer (mialtize) [Tue, 24 Apr 2018 17:36:30 +0000 (13:36 -0400)]
Merge pull request #1180 in SNORT/snort3 from pkt_trace_command to master
Squashed commit of the following:
commit
4517f65d5f7c91db3200bce544d74f5de1673821
Author: shaslad <shaslad@cisco.com>
Date: Thu Mar 29 16:31:29 2018 -0400
packet_tracer: Modularize and add constraint-based shell enablement
ihacku [Mon, 23 Apr 2018 12:15:35 +0000 (20:15 +0800)]
Fix hyperscan doc link (#47)
Hui Cao (huica) [Fri, 20 Apr 2018 15:16:53 +0000 (11:16 -0400)]
Merge pull request #1190 in SNORT/snort3 from ftp_config_crash1 to master
Squashed commit of the following:
commit
f57b799a15eaad14dc512edc17cbb5da2a062209
Author: Steve Chew <stechew@cisco.com>
Date: Fri Apr 13 15:17:54 2018 -0400
Removed #if 0 and cleaned up string.
commit
cddc9d3760a7ac4ddfdccc44a5a8fb76121ed929
Author: Steve Chew <stechew@cisco.com>
Date: Fri Apr 13 14:10:33 2018 -0400
FtpServer: ftp_server requires that ftp_client and ftp_data be configured.
Tom Peters (thopeter) [Fri, 20 Apr 2018 15:04:47 +0000 (11:04 -0400)]
Merge pull request #1195 in SNORT/snort3 from debug_specific_dir to master
Squashed commit of the following:
commit
b7b5a6b70aaaa42cbaece10e785d2887d8ae2cd3
Author: Nihal Desai <nihdesai@cisco.com>
Date: Wed Apr 18 10:47:53 2018 -0400
debug: Remove debug messages from stream
Russ Combs (rucombs) [Wed, 18 Apr 2018 20:50:10 +0000 (16:50 -0400)]
Merge pull request #1198 in SNORT/snort3 from new_linux to master
Squashed commit of the following:
commit
93a6a410cd28d7b699c6d361c0b9482d1e694734
Author: Russ Combs <rucombs@cisco.com>
Date: Wed Apr 18 16:02:14 2018 -0400
steam_tcp: change singleton names from linux to new_linux to avoid spurious collisions with defines
Tom Peters (thopeter) [Wed, 18 Apr 2018 14:49:12 +0000 (10:49 -0400)]
Merge pull request #1194 in SNORT/snort3 from iconv_update to master
Squashed commit of the following:
commit
3fde28b58644da73423bc39563129f0cf8e6937f
Author: mdagon <mdagon@cisco.com>
Date: Tue Apr 17 15:13:30 2018 -0400
cmake: update for iconv
Tom Peters (thopeter) [Tue, 17 Apr 2018 19:41:05 +0000 (15:41 -0400)]
Merge pull request #1193 in SNORT/snort3 from nhttp101 to master
Squashed commit of the following:
commit
1e832db96b33cdc4cfe07c608faef6363262c590
Author: Tom Peters <thopeter@cisco.com>
Date: Tue Apr 17 14:04:48 2018 -0400
http_inspect: broken chunk performance improvement
Tom Peters (thopeter) [Tue, 17 Apr 2018 15:09:27 +0000 (11:09 -0400)]
Merge pull request #1188 in SNORT/snort3 from debug_specific_dir to master
Squashed commit of the following:
commit
4a9b44279dfa69da6c982b6101678224d5ea9216
Author: Nihal Desai <nihdesai@cisco.com>
Date: Wed Apr 11 16:33:56 2018 -0400
debug: Remove debug messages from detection and ips_options
Russ Combs (rucombs) [Tue, 17 Apr 2018 15:06:22 +0000 (11:06 -0400)]
Merge pull request #1189 in SNORT/snort3 from more_perf to master
Squashed commit of the following:
commit
ec308cd55b2e2e32ae4db3eb969b5fd38e7bb63f
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Mon Apr 16 16:49:26 2018 -0400
stream_tcp: switch to splitter max
commit
783c405bb721e48352db0a9e00946722c037231a
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Sat Apr 14 07:46:20 2018 -0400
spell check: fix memeory and indicies typos
commit
9aa84591ec853873196ca1bb5dc85fddd043081a
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Fri Apr 13 21:41:02 2018 -0400
build: fix various warnings:
file_decomp_pdf.cc: unreachable code return
decompress/file_decomp_pdf.cc: implicit fallthrough
stream.cc: warning: potential memory leaks
memory_manager.cc: dangling references
commit
f07b179baae636ec9be6307fe3bbb0295aeba387
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Thu Apr 12 09:27:50 2018 -0400
stream: be selective about flow creation for scans
commit
cdf528691f7aaeebb40a0b686ae46b7ff4651579
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Wed Apr 11 21:25:31 2018 -0400
http_inspect: patch around regression failures until a permanent solution is implemented
commit
7f57541f3e4d1c1aaf44807c358b858f9ede043c
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Fri Apr 6 17:17:56 2018 -0400
stream_tcp: tweak seglist cursor handling
commit
417992054439d839d3651fc5adf1b08d836cd1d4
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Wed Apr 11 07:41:35 2018 -0400
port_scan: include open ports with alerts instead of separate
commit
cf2e7d2ac36b3cf70ee8c7a55f932029755ddccb
Author: Russ Combs <rucombs@cisco.com>
Date: Sat Mar 31 12:41:53 2018 -0400
stream: remove usused ignore_any_rules from tcp and udp
commit
f5843c4d2ad6a439003afde1830c41900bc492bf
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Thu Apr 5 17:00:27 2018 -0400
stream: respect tcp require_3whs
commit
c9bb1eb11d3060515bc26e8a393a1c963f47ae9c
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Thu Apr 5 11:44:15 2018 -0400
stream: refactor flow control for new PktTypes
commit
c9c5d239de87e9aa45925fde906d842f3ad2c33d
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Tue Apr 10 11:12:06 2018 -0400
search_engine: revert default detect_raw_tcp to false
commit
f0556f01cf98bfd8fef7494177ae6b33fde52b38
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Thu Apr 5 09:57:27 2018 -0400
framework: remove bogus PktType for ARP and just use proto bits instead
commit
f84ee2cb693c94e243180b2f3a715cc564d2d329
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Thu Apr 5 09:31:53 2018 -0400
framework: align PktType and proto bits
commit
f1f54c0fd3188460b1cb2e203cfb3c4789ed8e8a
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Mon Apr 2 06:14:05 2018 -0400
memory: disable with -DNO_MEM_MGR
commit
6d070a4e8f17ae96f519cb833e356aaa7c3e6145
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Mon Apr 2 06:13:42 2018 -0400
profile: disable with -DNO_PROFILER
commit
a7ddf1395e9c9e69eb2b5d72077c40cb5e7aac19
Author: Russ Combs <rucombs@cisco.com>
Date: Sat Mar 31 13:04:24 2018 -0400
zhash: cleanup cruftiness
Russ Combs (rucombs) [Fri, 13 Apr 2018 15:42:18 +0000 (11:42 -0400)]
Merge pull request #1187 in SNORT/snort3 from stream_perf_optimization to master
Squashed commit of the following:
commit
aba95f74f79e56d0752ceab71a6da315596d0aad
Author: Russ Combs <rucombs@cisco.com>
Date: Fri Mar 30 17:09:05 2018 -0400
stream_tcp: refactor tcp normalizer and reassembler to eliminate dynamic heap allocations per flow
Mike Stepanek (mstepane) [Thu, 12 Apr 2018 18:01:15 +0000 (14:01 -0400)]
Merge pull request #1186 in SNORT/snort3 from service_disco_state to master
Squashed commit of the following:
commit
3719339c89b9ba9cfd56393da18a8895a3e6c290
Author: Masud Hasan <mashasan@cisco.com>
Date: Sat Apr 7 12:00:47 2018 -0400
appid: Fixing service discovery states
Tom Peters (thopeter) [Tue, 10 Apr 2018 17:22:37 +0000 (13:22 -0400)]
Merge pull request #1183 in SNORT/snort3 from appid_pegs to master
Squashed commit of the following:
commit
24afa26ce1178c47b2cd2f77c326d1a24babe00b
Author: mdagon <mdagon@cisco.com>
Date: Thu Apr 5 13:49:49 2018 -0400
appid: peg count / dynamic peg count update.
Split peg counts into the ones known at compile time and dynamic ones.
Update stats , module manager and module to support dumping dynamic stats.
Hui Cao (huica) [Tue, 10 Apr 2018 14:56:18 +0000 (10:56 -0400)]
Merge pull request #1185 in SNORT/snort3 from snort2lua_ftp_data3 to master
Squashed commit of the following:
commit
f1b8fe018aba47bc898ffbc1560eccad2fcec361
Author: Steve Chew <stechew@cisco.com>
Date: Tue Apr 10 09:39:16 2018 -0400
Snort2lua: Add ftp_data to multiple files when needed, once per file.
Hui Cao (huica) [Tue, 10 Apr 2018 12:59:19 +0000 (08:59 -0400)]
Merge pull request #1181 in SNORT/snort3 from send_reset_on_pdu3 to master
Squashed commit of the following:
commit
8c7e839b8c0f2b9abb85cc45b8ec0ce86b1759e0
Author: Steve Chew <stechew@cisco.com>
Date: Thu Apr 5 14:50:47 2018 -0400
Reset: Always queue reject and test packet type in RejectAction::exec.
Michael Altizer (mialtize) [Mon, 9 Apr 2018 21:20:56 +0000 (17:20 -0400)]
Merge pull request #1179 in SNORT/snort3 from snort2lua_ftp_data to master
Squashed commit of the following:
commit
01e173c6ecc9756cde2ec63f078d769c4e9ff772
Author: Steve Chew <stechew@cisco.com>
Date: Wed Apr 4 01:56:22 2018 -0400
Snort2lua: Translate ftp_server relative to default configurations.
Tom Peters (thopeter) [Fri, 6 Apr 2018 19:09:30 +0000 (15:09 -0400)]
Merge pull request #1174 in SNORT/snort3 from debug_network_inspectors to master
Squashed commit of the following:
commit
78f5d5bf7d36f4da2a9382c7db6bc65210a7a41f
Author: Nihal Desai <nihdesai@cisco.com>
Date: Mon Apr 2 16:59:22 2018 -0400
debug: Remove debug messages from appid, arp_spoof, and perf_monitor
Tom Peters (thopeter) [Fri, 6 Apr 2018 19:05:42 +0000 (15:05 -0400)]
Merge pull request #1178 in SNORT/snort3 from reload_ips_actions to master
Squashed commit of the following:
commit
6d659feda07dd5071cb3035d55ad61136d2faea8
Author: Steven Baigal <sbaigal@cisco.com>
Date: Fri Mar 30 11:27:47 2018 -0400
reload: enabled reloading ips_actions
added parse error check for reloading
Tom Peters (thopeter) [Wed, 4 Apr 2018 17:02:31 +0000 (13:02 -0400)]
Merge pull request #1168 in SNORT/snort3 from email1 to master
Squashed commit of the following:
commit
ffcfd89514fbc2d2bddfec4a4777829bcc1ef790
Author: Tom Peters <thopeter@cisco.com>
Date: Thu Mar 15 17:33:35 2018 -0400
pop, imap, and smtp: changes to MIME configuration parameters
Tom Peters (thopeter) [Wed, 4 Apr 2018 17:01:19 +0000 (13:01 -0400)]
Merge pull request #1176 in SNORT/snort3 from nhttp100 to master
Squashed commit of the following:
commit
c8d2432a201502c7c477b3106ce617a0a5d2f4c3
Author: Tom Peters <thopeter@cisco.com>
Date: Tue Apr 3 13:58:03 2018 -0400
http_inspect: know more Content-Encodings by name
Hui Cao (huica) [Mon, 2 Apr 2018 20:51:09 +0000 (16:51 -0400)]
Merge pull request #1154 in SNORT/snort3 from ftp_file_malware to master
Squashed commit of the following:
commit
4bbf6bee5c063d0747721f3af9da651814749d08
Author: Steve Chew <stechew@cisco.com>
Date: Wed Mar 28 13:14:08 2018 -0400
Added accessors to Stream so TcpStreamSession can be private.
commit
5efb3d5a8684fd0060062205a35c82a9c86dbde5
Author: Steve Chew <stechew@cisco.com>
Date: Tue Mar 27 18:53:55 2018 -0400
Added Flow::set_service and fixed FtpDataFlowData::handled_expected.
commit
abd6f5bf2090b128d7fc2d1545971dcb721dca1c
Author: Steve Chew <stechew@cisco.com>
Date: Mon Mar 26 16:30:49 2018 -0400
Provide FLOW_SERVICE_CHANGE pub/sub event.
commit
41440f6c32995de40700f89ada68b6e6ea2b22e0
Author: Steve Chew <stechew@cisco.com>
Date: Thu Mar 22 13:34:25 2018 -0400
FtpDataSplitter: Added ability get TCP options length from TcpStreamSession.
commit
beb656a5266ff7603a218aef177f78c5ffffb7fa
Author: Steve Chew <stechew@cisco.com>
Date: Wed Mar 21 17:25:10 2018 -0400
FtpDataSplitter: Base last_seg_size off of MSS.
Michael Altizer (mialtize) [Mon, 2 Apr 2018 19:23:34 +0000 (15:23 -0400)]
Merge pull request #1173 in SNORT/snort3 from goodbye_sfbpf to master
Squashed commit of the following:
commit
2035f870bb488b62736f1ebfde1121f018baff81
Author: Michael Altizer <mialtize@cisco.com>
Date: Mon Apr 2 12:38:48 2018 -0400
packet_tracer: Fix compiler warning when compiling with NDEBUG
commit
ddb9bc841c1bad6106f2df43f164703b832528aa
Author: Michael Altizer <mialtize@cisco.com>
Date: Mon Apr 2 12:35:57 2018 -0400
daq_hext: Make IpAddr() static to fix compiler warning
commit
2186276c5ceff4fc7011f70b232ee60cfb8762f9
Author: Michael Altizer <mialtize@cisco.com>
Date: Mon Apr 2 12:21:24 2018 -0400
file_connector: Fix address-of-packed-member compiler warnings
commit
74b692aa80c0d15f9344a2424eb7ff4da25be9bc
Author: Michael Altizer <mialtize@cisco.com>
Date: Mon Apr 2 11:54:04 2018 -0400
build: Clean up CMake string APPENDing for configure options
commit
2fde019218be0b10182a7c1815a5d0e8f91a46b2
Author: Michael Altizer <mialtize@cisco.com>
Date: Mon Apr 2 11:25:30 2018 -0400
build: Define NDEBUG if debugging is not enabled
commit
b21625c8676af54d47bf4033c551b5ebb5d7d557
Author: Michael Altizer <mialtize@cisco.com>
Date: Sun Mar 11 20:14:04 2018 -0400
packet_capture, cmake: Remove SFBPF dependencies
commit
8e7e552aba8f6584ab8836eed38b4bccd9e11167
Author: Michael Altizer <mialtize@cisco.com>
Date: Sun Mar 11 20:12:20 2018 -0400
cmake: Rework FindPCAP logic and ignore SFBPF
Tom Peters (thopeter) [Mon, 2 Apr 2018 19:11:31 +0000 (15:11 -0400)]
Merge pull request #1172 in SNORT/snort3 from nhttp99 to master
Squashed commit of the following:
commit
c368a000d0bc4b4844c9b4716675d00dee49bd77
Author: Tom Peters <thopeter@cisco.com>
Date: Fri Mar 30 15:12:07 2018 -0400
http_inspect: bugfix and new alert for gzip underrun
Russ Combs (rucombs) [Fri, 30 Mar 2018 15:17:49 +0000 (11:17 -0400)]
Merge pull request #1171 in SNORT/snort3 from byte_ops to master
Squashed commit of the following:
commit
1a3f22486d2e1d4c1fad38cab4b0fdbf3f785248
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Wed Mar 28 19:43:03 2018 -0400
byte_math: allow rvalue == 0 except for division
commit
9767e7c269510c7be9bd57a1c87fecdbbc7a8cda
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Wed Mar 28 19:42:34 2018 -0400
byte_jump: fix from_beginning
commit
355e31af2644bc060a2b4734e7138f5a61f8c704
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Wed Mar 28 19:42:03 2018 -0400
byte_extract: fix cursor update
Tom Peters (thopeter) [Fri, 30 Mar 2018 15:01:12 +0000 (11:01 -0400)]
Merge pull request #1170 in SNORT/snort3 from debug_network_inspectors to master
Squashed commit of the following:
commit
3ef1153be9fa332495bdb63df8146b2a77d77dc0
Author: Nihal Desai <nihdesai@cisco.com>
Date: Thu Mar 29 12:46:00 2018 -0400
Removing debug messages from reputation
Michael Altizer (mialtize) [Wed, 28 Mar 2018 21:10:15 +0000 (17:10 -0400)]
Merge pull request #1167 in SNORT/snort3 from daq_pegs_2 to master
Squashed commit of the following:
commit
8cb952da7685672423ebd4744b5a7a49e6d10706
Author: Carter Waxman <cwaxman@cisco.com>
Date: Tue Mar 27 10:35:41 2018 -0400
SFDAQModule: moved daq stats here. fixed stats not being output from perfmon.
Michael Altizer (mialtize) [Wed, 28 Mar 2018 20:52:12 +0000 (16:52 -0400)]
Merge pull request #1162 in SNORT/snort3 from osx_compatible_sfip to master
Squashed commit of the following:
commit
f4beb63e9c398bde7cff48899db6522e6457deea
Author: Masud Hasan <mashasan@cisco.com>
Date: Fri Mar 23 21:28:03 2018 -0400
appid: Refactor debug command, use SfIp, and fix non-Linux compilation
Michael Altizer (mialtize) [Wed, 28 Mar 2018 18:30:53 +0000 (14:30 -0400)]
Merge pull request #1169 in SNORT/snort3 from memrchr to master
Squashed commit of the following:
commit
10832f0a0ead6f9ca20012ece2322bc8f6087905
Author: Carter Waxman <cwaxman@cisco.com>
Date: Wed Mar 28 14:10:39 2018 -0400
cmake: fixed checks for functions
Russ Combs (rucombs) [Wed, 28 Mar 2018 13:14:32 +0000 (09:14 -0400)]
Merge pull request #1166 in SNORT/snort3 from thread_local_move to master
Squashed commit of the following:
commit
4c20483a6cdab22db78fcca39f7778edbeef9f70
Author: Bhagya Tholpady <bbantwal@cisco.com>
Date: Tue Mar 27 00:01:10 2018 -0400
detect: moving thread locals identified to ips context
Michael Altizer (mialtize) [Tue, 27 Mar 2018 22:34:23 +0000 (18:34 -0400)]
Merge pull request #1144 in SNORT/snort3 from metapacket to master
Squashed commit of the following:
commit
e6660bd853546dd1de7a708a9bc84f2bf922765d
Author: Victor Roemer (viroemer) <viroemer@cisco.com>
Date: Tue Mar 27 16:29:28 2018 -0400
fix
commit
2dc5713408cb250ba89e74298e99437063b1509d
Author: Victor Roemer (viroemer) <viroemer@cisco.com>
Date: Fri Mar 16 14:44:14 2018 -0400
sfip: A version of set() which automatically determines the family
commit
2386b17110b3ae536cde1f9481414510a3e7173d
Author: Victor Roemer (viroemer) <viroemer@cisco.com>
Date: Tue Mar 13 15:59:27 2018 -0400
flow: SO_PUBLIC FlowKey
Michael Altizer (mialtize) [Tue, 27 Mar 2018 19:38:52 +0000 (15:38 -0400)]
Merge pull request #1152 in SNORT/snort3 from thread_locals to master
Squashed commit of the following:
commit
6fd127316644edddab9f03949a49a0e88ecde837
Author: Carter Waxman <cwaxman@cisco.com>
Date: Mon Mar 19 14:26:22 2018 -0400
sfip: removed ntoa. use ntop(SfIpString) instead.
commit
bd42f67b12a43aea0793c75c4ac0ee38b36fb33a
Author: Carter Waxman <cwaxman@cisco.com>
Date: Mon Mar 19 13:18:12 2018 -0400
stream ip: refactored to use MemoryManager allocators
commit
818c7a25505ae6e151790db3e76027252cb854e0
Author: Carter Waxman <cwaxman@cisco.com>
Date: Fri Mar 16 14:06:08 2018 -0400
jsnorm: moved decode buffer to stack
commit
7c91b75afa0ab2a95791c93b0e3e59a55b332f04
Author: Carter Waxman <cwaxman@cisco.com>
Date: Tue Mar 20 15:53:32 2018 -0400
Buffer: fixed off-by-one error in underlying buffer handling
commit
dc54e219cc30033dac1cb93915508a7a945695e2
Author: Carter Waxman <cwaxman@cisco.com>
Date: Fri Mar 16 13:14:29 2018 -0400
PacketManager: moved encode storage to heap
commit
7604a81d30a022ff3b50f4116fddd38246057f54
Author: Carter Waxman <cwaxman@cisco.com>
Date: Fri Mar 16 12:57:37 2018 -0400
CodecManager: removed unused code
commit
18b6d223d5bba03483b5ea02563328b784990009
Author: Carter Waxman <cwaxman@cisco.com>
Date: Fri Mar 16 12:47:50 2018 -0400
Snort: moved s_data to heap
commit
c04fd730a33ed86cd68e4a1e2739157d5eaf73a0
Author: Carter Waxman <cwaxman@cisco.com>
Date: Fri Mar 16 09:48:26 2018 -0400
appid sip: moved pattern thread local to class instance
commit
46c886725f8b69cfeb36c9b5580970dfbeabc703
Author: Carter Waxman <cwaxman@cisco.com>
Date: Thu Mar 15 14:47:22 2018 -0400
Base64DecodeOption: moved buffer storage to regular heap
Tom Peters (thopeter) [Mon, 26 Mar 2018 19:20:01 +0000 (15:20 -0400)]
Merge pull request #1161 in SNORT/snort3 from nhttp98 to master
Squashed commit of the following:
commit
8327dad829a8c31f1c61c319480fb4498cd54c10
Author: Tom Peters <thopeter@cisco.com>
Date: Fri Mar 23 16:11:55 2018 -0400
http_inspect: embedded white space in Content-Length
Tom Peters (thopeter) [Mon, 26 Mar 2018 17:57:06 +0000 (13:57 -0400)]
Merge pull request #1164 in SNORT/snort3 from dbg_cleanup2 to master
Squashed commit of the following:
commit
e256a082394c1977bb24f33d843c5993539efb44
Author: snorty <mdagon@cisco.com>
Date: Tue Mar 20 10:38:42 2018 -0400
service inspectors: debug cleanup
Tom Peters (thopeter) [Mon, 26 Mar 2018 14:36:17 +0000 (10:36 -0400)]
Merge pull request #1157 in SNORT/snort3 from stream_tcp_bad_ack to master
Squashed commit of the following:
commit
2265c3ef6dca3e1cc6584effb29dae447d7f41d0
Author: Steven Baigal <sbaigal@cisco.com>
Date: Thu Mar 22 14:30:59 2018 -0400
tcp: allow data handlding for packet with invalid ack
Russ Combs (rucombs) [Mon, 26 Mar 2018 12:05:06 +0000 (08:05 -0400)]
Merge pull request #1163 in SNORT/snort3 from tidy_catch to master
Squashed commit of the following:
commit
e17dedf666af4553655d0d08dc83ef679b6f3f1c
Author: Michael Altizer <mialtize@cisco.com>
Date: Mon Mar 26 00:07:00 2018 -0400
build: Clean up HAVE_* definition checks
commit
aa8ee8f3c9aa4ed7736bad8692d5ac5767073326
Author: Michael Altizer <mialtize@cisco.com>
Date: Sun Mar 25 14:22:18 2018 -0400
build: Modernize code with =default for special member functions
Generated automatically with run-clang-tidy.py -header-filter=$(realpath ..)
-checks='-*,modernize-use-equals-default' -fix.
commit
8efb3c0b04500b685b02d950ef26b69420794ab2
Author: Michael Altizer <mialtize@cisco.com>
Date: Sun Mar 25 14:17:23 2018 -0400
build: Modernize code with virtual/override/final cleanups
Generated automatically with run-clang-tidy.py -header-filter=$(realpath ..)
-checks='-*,modernize-use-override' -fix.
commit
adc85e1b6040f9d22fb230270de172420084487b
Author: Michael Altizer <mialtize@cisco.com>
Date: Sun Mar 25 14:14:24 2018 -0400
catch: Update to Catch v2.2.1
Hui Cao (huica) [Fri, 23 Mar 2018 21:16:23 +0000 (17:16 -0400)]
Merge pull request #1160 in SNORT/snort3 from active_response to master
Squashed commit of the following:
commit
5b5c6a1211f482e2b2db490e1a88e937be1a9240
Author: huica <huica@cisco.com>
Date: Fri Mar 23 16:38:06 2018 -0400
Disable the check for max_response
Russ Combs (rucombs) [Fri, 23 Mar 2018 19:11:34 +0000 (15:11 -0400)]
Merge pull request #1158 in SNORT/snort3 from const_cast to master
Squashed commit of the following:
commit
14b0e97fa6060bf9dd88db1f3e10aa59aeea4523
Author: Russ Combs <rucombs@cisco.com>
Date: Fri Mar 23 10:25:16 2018 -0400
build: fix various drops const qualifier cases
Mike Stepanek (mstepane) [Fri, 23 Mar 2018 12:00:52 +0000 (08:00 -0400)]
Merge pull request #1151 in SNORT/snort3 from appid_debug_command to master
Squashed commit of the following:
commit
94ab5291fa5240c58116e0614e826204ee78bb88
Author: Masud Hasan <mashasan@cisco.com>
Date: Fri Mar 16 11:17:58 2018 -0400
appid: Refactor debug command
commit
ae917cc0c9194d3b538c008017bbfa6f1bcb30b7
Author: Mike Stepanek <mstepane@cisco.com>
Date: Wed Mar 7 16:28:41 2018 -0500
appid: Add AppID debug command
Windham Wong [Fri, 23 Mar 2018 00:40:50 +0000 (08:40 +0800)]
Fixing fast_pattern syntax in doc/differences.txt (#43)
Jonathan McDowell [Fri, 23 Mar 2018 00:35:52 +0000 (00:35 +0000)]
Allow use of ARM64 CNTVCT_EL0 register for timing (#46)
Hui Cao (huica) [Thu, 22 Mar 2018 20:22:35 +0000 (16:22 -0400)]
Merge pull request #1156 in SNORT/snort3 from active_reset to master
Squashed commit of the following:
commit
65428423fd6ccd4a67493276437fb780b4f3c55f
Author: huica <huica@cisco.com>
Date: Thu Mar 22 13:04:15 2018 -0400
Add reject action when active responses is enabled
commit
ac060b64caec2597930f7197b8a39a59f24d4151
Author: huica <huica@cisco.com>
Date: Thu Mar 22 10:58:40 2018 -0400
Enable active when max_responses is enabled
Tom Peters (thopeter) [Thu, 22 Mar 2018 20:02:47 +0000 (16:02 -0400)]
Merge pull request #1147 in SNORT/snort3 from dbg_cleanup to master
Squashed commit of the following:
commit
e21086ce7aef8b7324ca12cc32aea20a94b60b59
Author: snorty <mdagon@cisco.com>
Date: Mon Mar 19 11:15:09 2018 -0400
Debug messages: cleanup for service inspectors.
Removal of Debug messages from imap, pop, ssl, rpc_decode and dce_tcp.
Conversion to trace for some of the dce_smb and dce_udp debugs.
New traces for detection, stream.
Michael Altizer (mialtize) [Thu, 22 Mar 2018 01:31:48 +0000 (21:31 -0400)]
Merge pull request #1153 in SNORT/snort3 from ubsan to master
Squashed commit of the following:
commit
1c7cfc051275c991b96878fdfde0b8851be789eb
Author: Michael Altizer <mialtize@cisco.com>
Date: Tue Mar 20 18:16:47 2018 -0400
ips_byte_math: Fix UBSAN left shift of negative value runtime error
commit
849a83586f85a85c8192e7e48aac07cf09e330b5
Author: Michael Altizer <mialtize@cisco.com>
Date: Tue Mar 20 18:16:26 2018 -0400
ips_byte_jump: Fix UBSAN left shift of negative value runtime error
commit
51f5501044cd978079c4e41d45cce5e522e3063e
Author: Michael Altizer <mialtize@cisco.com>
Date: Tue Mar 20 17:49:14 2018 -0400
hashfcn: Fix UBSAN left shift of negative value runtime error
commit
a5cbf457bcdfcdbb532bc36aa353c6baea8241bb
Author: Michael Altizer <mialtize@cisco.com>
Date: Tue Mar 20 17:07:20 2018 -0400
parameter: Fix UBSAN shift exponent is too large for 32-bit type runtime error
commit
015abe650696b0be1e18a429e62efc096d228976
Author: Michael Altizer <mialtize@cisco.com>
Date: Tue Mar 20 16:49:10 2018 -0400
binder: Fix UBSAN invalid value type runtime error
commit
e80d3ffca94a8b508a4e608bc2d90df7a18258cb
Author: Michael Altizer <mialtize@cisco.com>
Date: Tue Mar 20 16:34:34 2018 -0400
wizard: Fix UBSAN out-of-bounds access runtime error
commit
540a3cd4973db76f08e12e316727ea2d63d71aad
Author: Michael Altizer <mialtize@cisco.com>
Date: Tue Mar 20 16:33:35 2018 -0400
hashfcn: Fix UBSAN integer overflow runtime error
commit
470dc447d63533a784dbfa85e64a39227faffaba
Author: Michael Altizer <mialtize@cisco.com>
Date: Tue Mar 20 19:22:16 2018 -0400
extra: Port some CMake options from Snort prime
commit
2dbd95924b68d78104302ec6b62d8ee3e0178760
Author: Michael Altizer <mialtize@cisco.com>
Date: Tue Mar 20 15:13:50 2018 -0400
build: Add --enable-ub-sanitizer option for undefined behavior sanitizer
Michael Altizer (mialtize) [Wed, 21 Mar 2018 21:55:40 +0000 (17:55 -0400)]
Merge pull request #1139 in SNORT/snort3 from thread_local_ipv4 to master
Squashed commit of the following:
commit
a5b3cee7caa0d4ff30db8f68c0bca4d959ee2dd4
Author: Carter Waxman <cwaxman@cisco.com>
Date: Thu Mar 15 13:10:40 2018 -0400
Ipv4Codec: removed random ip id pool and replaced randoms on demand
Michael Altizer (mialtize) [Wed, 21 Mar 2018 19:52:36 +0000 (15:52 -0400)]
Merge pull request #1150 in SNORT/snort3 from bashisms to master
Squashed commit of the following:
commit
d6c0de7817c1fcded62d9edeb3843a6050fe0068
Author: Michael Altizer <mialtize@cisco.com>
Date: Mon Mar 12 13:33:31 2018 -0400
build: Add some header includes for FreeBSD
commit
6e04230b31d4a8ab6c79c2e8db24c02a6dbb72c8
Author: Michael Altizer <mialtize@cisco.com>
Date: Mon Mar 19 21:18:12 2018 -0400
build: Remove bashisms from most shell scripts
Hui Cao (huica) [Wed, 21 Mar 2018 16:26:04 +0000 (12:26 -0400)]
Merge pull request #1149 in SNORT/snort3 from smtp_pending to master
Squashed commit of the following:
commit
64ee34a53ba68281c11c6728fa5ba15160080610
Author: Michael Altizer (mialtize) <mialtize@cisco.com>
Date: Tue Mar 13 18:30:44 2018 -0400
file_api: combine file cache for file resume and partial file processing
Michael Altizer (mialtize) [Tue, 20 Mar 2018 16:20:34 +0000 (12:20 -0400)]
Merge pull request #1138 in SNORT/snort3 from offload_crash to master
Squashed commit of the following:
commit
391fafa2b7a5e3678d582bea4223d887ba96f4e8
Author: Carter Waxman <cwaxman@cisco.com>
Date: Wed Mar 14 15:27:42 2018 -0400
detection: fixed uninitialized MpseStash
Michael Altizer (mialtize) [Tue, 20 Mar 2018 14:14:27 +0000 (10:14 -0400)]
Merge pull request #1148 in SNORT/snort3 from data_bus_leak to master
Squashed commit of the following:
commit
52d96033fbb424ba968de16a4628f5974d4d5d73
Author: Carter Waxman <cwaxman@cisco.com>
Date: Mon Mar 19 15:09:18 2018 -0400
DataBus: fixed creating DataHandler when one doesn't exist
Michael Altizer (mialtize) [Mon, 19 Mar 2018 16:23:45 +0000 (12:23 -0400)]
Merge pull request #1146 in SNORT/snort3 from appid_pegcounts_gone_wild to master
Squashed commit of the following:
commit
177c974fc84fbd32e4119767cdb62400fc6c46ba
Author: Michael Altizer <mialtize@cisco.com>
Date: Mon Mar 19 11:26:38 2018 -0400
appid: Only import dynamic detector pegcounts once
Tom Peters (thopeter) [Mon, 19 Mar 2018 15:42:08 +0000 (11:42 -0400)]
Merge pull request #1145 in SNORT/snort3 from nhttp97 to master
Squashed commit of the following:
commit
65e2d678acbf482c66abb5e869a40478c9696c33
Author: Tom Peters <thopeter@cisco.com>
Date: Mon Mar 12 17:32:30 2018 -0400
http_inspect: handling of run-to-connection-close bodies beyond depth
Hui Cao (huica) [Fri, 16 Mar 2018 20:11:12 +0000 (16:11 -0400)]
Merge pull request #1140 in SNORT/snort3 from proto_ref2 to master
Squashed commit of the following:
commit
eac8b70f9a764d9834c66603f0ea818284c531eb
Author: Steve Chew <stechew@cisco.com>
Date: Thu Mar 15 14:17:33 2018 -0400
ProtoRef: Converge on single name for SnortProtocolId. Fix threading problems.
Michael Altizer (mialtize) [Fri, 16 Mar 2018 14:10:35 +0000 (10:10 -0400)]
Merge pull request #1137 in SNORT/snort3 from flow_ip_dbus to master
Squashed commit of the following:
commit
b5e1c30b818ac76d56f7242cb908d844b33d3feb
Author: Carter Waxman <cwaxman@cisco.com>
Date: Wed Mar 14 13:21:00 2018 -0400
PerfMonitor: fixed subscribing to flow events multiple times
Russ Combs (rucombs) [Fri, 16 Mar 2018 01:58:25 +0000 (21:58 -0400)]
Squashed commit of the following:
commit
e0280a2f1db56d28b522ec82309d43636eb1ff46
Author: Russ Combs <rucombs@cisco.com>
Date: Thu Mar 15 19:19:15 2018 -0400
build: 244
Michael Altizer (mialtize) [Tue, 13 Mar 2018 22:30:44 +0000 (18:30 -0400)]
Merge pull request #1131 in SNORT/snort3 from perf_files to master
Squashed commit of the following:
commit
e6f3785c7af8aa67856fce0c9618165352fbda01
Author: Carter Waxman <cwaxman@cisco.com>
Date: Tue Mar 13 10:26:08 2018 -0400
PluginManager: enforce all IT_PROBE Inspectors present GLOBAL Modules
commit
e7470a81c44ecb506f8cb89cc77a72e95d3b65ba
Author: Carter Waxman <cwaxman@cisco.com>
Date: Tue Mar 13 09:50:15 2018 -0400
ModuleManager: globals only load on default policy
commit
50edf8306b1127f1ff150ee9fb699ddbe65a4b6a
Author: Carter Waxman <cwaxman@cisco.com>
Date: Fri Mar 9 08:24:31 2018 -0500
DataBus: added ability to unsubscribe to prevent dangling references
commit
d60232178001c911176ed0272181f80a913bbe62
Author: Carter Waxman <cwaxman@cisco.com>
Date: Thu Mar 8 12:05:21 2018 -0500
perf_monitor: fixed flow_ip outputting erroneous values
commit
e003750bf325ed99a6b1186b839f1f40e569d21c
Author: Carter Waxman <cwaxman@cisco.com>
Date: Mon Feb 19 16:08:54 2018 -0500
InspectorManager: probes run regardless of active policy
commit
3749d1380583fb2d3b475b76c741fd63bb28f061
Author: Carter Waxman <cwaxman@cisco.com>
Date: Mon Feb 19 15:30:12 2018 -0500
perf_monitor: query modules for stats only after they have all loaded
commit
dddb7fdd814513d4f195f501d6cff2f6b6dd6760
Author: Carter Waxman <cwaxman@cisco.com>
Date: Wed Feb 14 16:17:08 2018 -0500
perf_monitor: decoupled from other modules. now builds dynamically.
Tom Peters (thopeter) [Tue, 13 Mar 2018 22:19:51 +0000 (18:19 -0400)]
Merge pull request #1136 in SNORT/snort3 from union_break to master
Squashed commit of the following:
commit
672c117af90d935d65248f2b648b8d955afbc885
Author: Tom Peters <thopeter@cisco.com>
Date: Tue Mar 13 17:49:01 2018 -0400
libtcp: build error fix
Michael Altizer (mialtize) [Tue, 13 Mar 2018 22:08:01 +0000 (18:08 -0400)]
Merge pull request #1110 in SNORT/snort3 from packet_trace to master
Squashed commit of the following:
commit
63889018db28b62c15e7376e4f278e3275d59fa4
Author: Carter Waxman <cwaxman@cisco.com>
Date: Tue Mar 13 16:15:16 2018 -0400
PacketTracer: added to the snort namespace
commit
d0d916320e7b59b09ff3c776fb2347ccd4ba9995
Author: Carter Waxman <cwaxman@cisco.com>
Date: Thu Mar 8 14:33:41 2018 -0500
packet trace: made verdict reasons registerable
commit
dc5d48340c610b40e7ab8f9194b84d05ec5a9a8a
Author: Carter Waxman <cwaxman@cisco.com>
Date: Tue Feb 13 16:27:13 2018 -0500
packet tracer: added ability to direct logging to file
commit
b8ae23501922734b0d54a87cde0488165ed7e98a
Author: Carter Waxman <cwaxman@cisco.com>
Date: Tue Feb 13 11:09:11 2018 -0500
packet tracer: fixed function visibility in dynamic modules
commit
e4314fc0f8e7f2d5736da7d1c942d86df8063e09
Author: Carter Waxman <cwaxman@cisco.com>
Date: Mon Feb 12 17:28:25 2018 -0500
appid: added mute to packet trace
commit
df249f0c5650fb138fd9f764f81beafe03160b79
Author: Carter Waxman <cwaxman@cisco.com>
Date: Mon Feb 12 17:19:26 2018 -0500
packet tracer: unit tested verbosity
commit
c23843038f4c92f066ffc16b56f4f57895f68e4e
Author: Carter Waxman <cwaxman@cisco.com>
Date: Mon Feb 12 16:41:28 2018 -0500
sfdaq, packet tracer: implemented verdict reason delivery
commit
82e78ff2b189a3463282b7441766c71c7317f9b1
Author: Carter Waxman <cwaxman@cisco.com>
Date: Mon Feb 5 15:39:17 2018 -0500
packet tracer: refactored for clarity and simpler use. added pause/unpause.
commit
4049ab28c459b1a9f43eddad2227e806832b5c0b
Author: Carter Waxman <cwaxman@cisco.com>
Date: Mon Feb 5 14:42:42 2018 -0500
packet tracer: refactored unit tests to keep config.h dependencies out of headers
commit
98f2b9e9d3e1488c8c07b75b9838bd18e626e309
Author: Carter Waxman <cwaxman@cisco.com>
Date: Mon Feb 5 13:04:48 2018 -0500
packet tracer: removed unnecessary macro. write logs via LogMessage instead of printf.
commit
4ec381cfaa1f537e413a0a07d74b570cdaaa20bc
Author: Carter Waxman <cwaxman@cisco.com>
Date: Fri Feb 2 12:20:59 2018 -0500
packet tracer: added mute groups to prevent spamming
commit
3a64876c904c04febbfc2eaa614a582d500b8d40
Author: Carter Waxman <cwaxman@cisco.com>
Date: Thu Feb 1 14:49:07 2018 -0500
packet tracer: refactored for better integration with external plugins
commit
6e9ee483a6f99dc8d00520aabe481f52074c1dff
Author: Carter Waxman <cwaxman@cisco.com>
Date: Fri Feb 2 13:14:19 2018 -0500
packet tracer: fixed CMakeLists.txt not installing header
Tom Peters (thopeter) [Tue, 13 Mar 2018 18:11:49 +0000 (14:11 -0400)]
Merge pull request #1133 in SNORT/snort3 from snort_namespace to master
Squashed commit of the following:
commit
4ec0021598a62a6aa193ea9d1d7159e62a5123a6
Author: davis mcpherson <davmcphe.cisco.com>
Date: Mon Mar 5 14:53:32 2018 -0500
snort: wrap snort SO_PUBLIC APIs (classes, functions exported public from snort) in the 'snort' namespace
Tom Peters (thopeter) [Tue, 13 Mar 2018 16:58:13 +0000 (12:58 -0400)]
Merge pull request #1130 in SNORT/snort3 from post_offset_var to master
Squashed commit of the following:
commit
b42ac1bc7c328de387da92b93889613156ad988f
Author: Steven Baigal <sbaigal@cisco.com>
Date: Tue Mar 6 13:03:15 2018 -0500
byte_jump: updated byte_jump post_offset option to support variable
Tom Peters (thopeter) [Tue, 13 Mar 2018 16:24:44 +0000 (12:24 -0400)]
Merge pull request #1135 in SNORT/snort3 from doc_fix_link to master
Squashed commit of the following:
commit
dc396e2d1bf0d175a1c9babf61e2fa9022d5652d
Author: snorty <mdagon@cisco.com>
Date: Mon Mar 12 22:06:00 2018 -0400
doc: update ftp time format link
Michael Altizer (mialtize) [Mon, 12 Mar 2018 20:56:01 +0000 (16:56 -0400)]
Merge pull request #1132 in SNORT/snort3 from reload_hosts_fix to master
Squashed commit of the following:
commit
16f4f9ca6b73b5bee41ff8700001c4bece5ec880
Author: Bhagya Tholpady <bbantwal@cisco.com>
Date: Wed Mar 7 13:43:16 2018 -0500
main: reload hosts while reloading config
Hui Cao (huica) [Fri, 9 Mar 2018 18:10:21 +0000 (13:10 -0500)]
Merge pull request #1121 in SNORT/snort3 from metapacket to master
Squashed commit of the following:
commit
17ed457318ec49f4651facab5fe1e011e4cb2537
Author: Victor Roemer (viroemer) <viroemer@cisco.com>
Date: Wed Mar 7 17:07:55 2018 -0500
build: Address compiler warnings, spell check and static analyzer
issues.
commit
bd12628fa806d57c47808c0f0881072124c7ede8
Author: Victor Roemer (viroemer) <viroemer@cisco.com>
Date: Tue Mar 6 15:58:03 2018 -0500
snort: allow colon separated directories for --daq-dir
commit
eebe151789c381d8628d3fa409cd1752fbee3715
Author: Victor Roemer (viroemer) <viroemer@cisco.com>
Date: Fri Feb 23 09:08:24 2018 -0500
DataBus: Pump DAQ Meta Packets through DataBus
daqs: Hext DAQ can generate Start of Flow and End of Flow meta events.
loggers: Update Hext Logger to subscribe and log DAQ Meta Packets
Michael Altizer (mialtize) [Fri, 9 Mar 2018 15:50:59 +0000 (10:50 -0500)]
Merge pull request #1129 in SNORT/snort3 from goodbye_autotools to master
Squashed commit of the following:
commit
82659ae2d7864dda3cb124ad16f3fbc6e23fb069
Author: Michael Altizer <mialtize@cisco.com>
Date: Thu Mar 8 20:34:20 2018 -0500
build: Fix few const-related compiler warnings
commit
9e6059c85793c13d4127cf1a9a2d26c0cecabd5d
Author: Michael Altizer <mialtize@cisco.com>
Date: Thu Mar 8 18:18:53 2018 -0500
build: Extirpate autotools usage
commit
a5d3096b0ffa828a749ca55ca6245357e71fc923
Author: Michael Altizer <mialtize@cisco.com>
Date: Thu Mar 8 17:25:43 2018 -0500
doc: Fix including config_changes.txt when ruby is not present
Tom Peters (thopeter) [Fri, 9 Mar 2018 15:31:19 +0000 (10:31 -0500)]
Merge pull request #1126 in SNORT/snort3 from doc_ftp_telnet to master
Squashed commit of the following:
commit
167988558ab1b3dd5da4fbfb4439b819194a9779
Author: snorty <mdagon@cisco.com>
Date: Thu Mar 1 16:41:03 2018 -0500
Doc: add documentation for ftp telnet
projects / thirdparty / snort3.git / log
