git.ipfire.org Git - thirdparty/snort3.git/log

Merge pull request #1537 in SNORT/snort3 from ~MDAGON/snort3:shellcmd_timing to master

Squashed commit of the following:

commit efd46b7749884108429e761d8573260ec1788854
Author: Maya Dagon <mdagon@cisco.com>
Date: Thu Feb 28 15:50:48 2019 -0500

main: shell commands and signals executed only after snort finish startup

Merge pull request #1535 in SNORT/snort3 from ~SHRARANG/snort3:set_priv_ptr_for_pdu to master

Squashed commit of the following:

commit e1328ce2b3775008806e4bc2a845c965c3633df4
Author: Shravan Rangaraju <shrarang@cisco.com>
Date: Tue Mar 5 09:29:10 2019 -0500

stream_tcp: initialize priv_ptr for pdus

Merge pull request #1530 in SNORT/snort3 from ~BRASTULT/snort3:file_decomp_zip to master

Squashed commit of the following:

commit 57dc105bf414ec66d623de5cbadc31af7c0fdc4b
Author: Brandon Stultz <brastult@cisco.com>
Date: Wed Feb 27 19:28:08 2019 -0500

decompress: add zip file decompression

Merge pull request #1533 in SNORT/snort3 from ~BBANTWAL/snort3:gid_147 to master

Squashed commit of the following:

commit 56bc9bf95cf604a1dad62e9681c3393a0ee3569c
Author: Bhagya Tholpady <bbantwal@cisco.com>
Date: Mon Mar 4 10:31:24 2019 -0500

snort2lua: comment gid 147 file rules

Merge pull request #1527 in SNORT/snort3 from ~RUCOMBS/snort3:yapp to master

Squashed commit of the following:

commit 90aa0b535a627830d720a62059900d432527fdb5
Author: russ <rucombs@cisco.com>
Date:   Sun Mar 3 15:42:12 2019 -0500

    ips_context: minimize iterations to clear data

commit e8ca4969e34c8c5144e805369217cb3ae721d0da
Author: russ <rucombs@cisco.com>
Date:   Sun Mar 3 12:11:20 2019 -0500

    rules: do not preallocate actions

commit 8ef5ef5261bdc7792644e62033406857526efe93
Author: russ <rucombs@cisco.com>
Date:   Sat Mar 2 13:03:23 2019 -0500

    stream_tcp: simplify paf init

commit c510c5321ba4f50a5e5dab3f496268791ad7a45f
Author: russ <rucombs@cisco.com>
Date:   Sat Mar 2 11:07:20 2019 -0500

    stream_tcp: remove seglist node cruft

commit f3cae6509281e130609866f52851d9cb86012890
Author: russ <rucombs@cisco.com>
Date:   Sat Mar 2 11:06:51 2019 -0500

    http_inspect: disable reg test assertion until interface with stream_tcp is updated

commit f2a909e15d848c7d6bac091ec17e9d15eaaf1286
Author: russ <rucombs@cisco.com>
Date:   Fri Mar 1 12:26:45 2019 -0500

    stream_tcp: tweak PAF scanning

commit 84c1ca1e052cc31bfd42d443fa864ae98e6bcbe7
Author: russ <rucombs@cisco.com>
Date:   Mon Feb 25 12:49:30 2019 -0500

    stream_tcp: tweak ips mode flushing

commit a957e579cae4ab8bded2b37035d434459c558f7c
Author: russ <rucombs@cisco.com>
Date:   Mon Feb 25 07:37:16 2019 -0500

    stream_tcp: support unidirectional flushing similar to Snort 2

commit faa804399754ea7a31306c1cb2630287166ac195
Author: russ <rucombs@cisco.com>
Date:   Tue Feb 26 17:57:27 2019 -0500

    cd_tcp: some light refactoring

commit 1e353e1a79ef6644d48bb8bc14802579ea3be23b
Author: russ <rucombs@cisco.com>
Date:   Wed Feb 27 19:25:49 2019 -0500

    stream_tcp: disambiguate seglist trace

commit 388c879743562846ed6cb8a306ceb10c2e4d985c
Author: russ <rucombs@cisco.com>
Date:   Wed Feb 27 19:24:31 2019 -0500

    stream_tcp: do not purge partially acked segment

commit 473d2091365777319a72714e5f7e0864bd3c9b94
Author: russ <rucombs@cisco.com>
Date:   Sun Feb 24 22:51:01 2019 -0500

    profile: convert remaining layer 2 or greater profile scopes to the deep, dark underbelly

commit dd80a3393aac3e74496df7f02d9bd09be5746f23
Author: russ <rucombs@cisco.com>
Date:   Sun Feb 24 22:47:53 2019 -0500

    rule eval: ensure leaf children are properly counted

Merge pull request #1525 in SNORT/snort3 from ~SBAIGAL/snort3:file_capture to master

Squashed commit of the following:

commit 5d33a2096b9e5122c9f5612136b90dbe0f886bca
Author: Steven Baigal (sbaigal) <sbaigal@cisco.com>
Date: Thu Feb 14 15:32:12 2019 -0500

file_capture: sync with firewall changes

Merge pull request #1526 in SNORT/snort3 from ~SHASLAD/snort3:fix_endless_floodig to master

Squashed commit of the following:

commit c3e00d5732bb8c5a12bb24e1130fdfcf22dbed1a
Author: shaslad <shaslad@cisco.com>
Date: Sat Feb 23 00:09:30 2019 -0500

flow_control: remove unused session flag

Merge pull request #1522 in SNORT/snort3 from ~SMINUT/snort3:appid_service_cache to master

Squashed commit of the following:

commit 85be96aa1e48c63b2782c61f6d28bb15b11542c6
Author: Silviu Minut <sminut@cisco.com>
Date:   Fri Feb 15 17:15:41 2019 -0500

    appid: implement service discovery state queue to honor memcap.

    appid: the service queue should be of type AppIdServiceStateKey.

    appid: change the service queue to store map iterators rather than the actual keys, as (a) map iterators are stable and (b) sizeof(map::iterator)=8 while sizeof(key)=28.

    appid: compute the size of the memory used for a service cache entry only once, as it is constant, and make it global.

    appid: implement service cache touch(). Must figure out where to call it from.

    appid: fix double free in service_state_queue and address reviewers comments.

    appid: introduce min memcap of 1024 with a default of 1Mb and refactor AppIdServiceState::remove() to accept a ServiceCache_t::iterator rather than ip, proto, port and decrypted.

    appid: put the service_state_cache and the service_state_queue into a class in its own right and refactor the code.

    appid: unit test for service cache and call the touch function.

    appid: untabify service_state.h and test/service_state_test.cc.

    appid: remove forgotten WhereMacro.

    appid: introduce the do_touch flag to the add/get functions and call those functions with the appropriate flag.

    appid: update unit test file.

Merge pull request #1514 in SNORT/snort3 from ~SMINUT/snort3:appid_client_detection to master

Squashed commit of the following:

commit a152575f7f8d071989fd2724601d0be77f27a989
Author: Silviu Minut <sminut@cisco.com>
Date:   Thu Feb 14 10:37:49 2019 -0500

    appid: fix client discovery to only check on the first data packet.

    appid: return void in ClientDiscovery::exec_client_detectors() and set client_disco_state to FINISHED in all cases except when the client validate returns APPID_INPROCESS.

    appid: fix comment in client_discovery.cc.

Merge pull request #1519 in SNORT/snort3 from ~MDAGON/snort3:reload_completed to master

Squashed commit of the following:

commit 50fb4edcab02ba6571435fbdaec5f029da9540ec
Author: Maya Dagon <mdagon@cisco.com>
Date: Thu Feb 7 13:55:29 2019 -0500

reload: send reload completed message to control channel instead of logging it

Merge pull request #1524 in SNORT/snort3 from ~PSHINDE2/snort3:memory_tracker_simplified to master

Squashed commit of the following:

commit 81eeda054e60e4dd3b56a90f1eba947f1d8816da
Author: Pratik Shinde <pshinde2@cisco.com>
Date: Tue Feb 19 13:16:05 2019 -0500

memory: Use only one variable to keep track of allocated and deallocated memory

doc: update version

Merge pull request #1521 in SNORT/snort3 from ~RUCOMBS/snort3:rxp_next to master

Squashed commit of the following:

commit 2557b2399f4bf28852585f513c74ca639e5f237b
Author: russ <rucombs@cisco.com>
Date:   Mon Feb 18 16:21:32 2019 -0500

    cppcheck: fix some basic warnings

commit 17be370de205506baec9d37d828090e9c3e61dd6
Author: russ <rucombs@cisco.com>
Date:   Mon Feb 11 16:34:13 2019 -0500

    RegexOffload: refactor into mode-specific subclasses

commit 5f8adc6efd1029b98076d90d6864f8a2d248b499
Author: russ <rucombs@cisco.com>
Date:   Mon Feb 11 14:04:47 2019 -0500

    MpseBatch: refactor into separate files

commit d3ae7cebbacc7524276dd6aa2d11a7c67d9b72e8
Author: William Cochrane <w.cochrane@titan-ic.com>
Date:   Fri Oct 19 14:12:33 2018 +0100

    Addition and use of offload search method/engine

    We are providing the user the ability to configure alongsides the
    (normal) fast pattern search method an offload search method. As a
    result 2 search engines may be created for each search engine group.
    Because the capability of each search engine may differ (e.g. one search
    engine may support regex and the other may not) the detection option
    tree that gets created cannot be shared amongst the normal and offload
    search engines but will be created unique for each search engine. To
    avoid duplication of search engines an offload search engine will only
    be instantiated if the offload search method is different to that of the
    normal search method.

    Offload search requests will now use the offload search method if it is
    configured and different to the normal search method, otherwise the
    normal search method will be used. If a request to the offload search
    engine fails this search is retried by sending it to the (normal) search
    engine. Also if a search tool request exceeds the offload limit and the
    offload search method is configured then a synchronous search using the
    offload search engine is attempted and if it fails this search will be
    retried to the (normal) search engine

commit c9b69c52a8db4dc83833cc0c4059a7120a8daebd
Author: Jonathan McDowell <j.mcdowell@titan-ic.com>
Date:   Wed Jan 9 15:04:35 2019 +0000

    Enable asyncronous searching using RegexOffload

    Turn RegexOffload into a more basic MPSE offloader, only executing
    searches in the offload thread rather than a full packet evaluation.
    Additionally allow for the option that the MPSE supports asynchronous
    operation and does not require separate threads to achieve this.

Merge pull request #1512 in SNORT/snort3 from ~BBANTWAL/snort3:empty_policy to master

Squashed commit of the following:

commit 2c7bf69cb63eb054cde8895e62a11e40628c6868
Author: Bhagya Tholpady <bbantwal@cisco.com>
Date: Mon Feb 11 12:15:13 2019 -0500

policy: allow an empty policy be set by firewall when ac rule does not have a ips policy assigned to it.

Merge pull request #1510 in SNORT/snort3 from ~BBANTWAL/snort3:sip_options_fix to master

Squashed commit of the following:

commit e64363d8a95e244218c87ae618ebf4632b44b8ad
Author: Bhagya Tholpady <bbantwal@cisco.com>
Date: Mon Feb 11 09:33:29 2019 -0500

sip: update sip options to use has_tcp_data instead of is_tcp

Merge pull request #1513 in SNORT/snort3 from ~MIALTIZE/snort3:rebinder to master

Squashed commit of the following:

commit e3e96a2b0650eb5a9c1970d4f7cbfcfe2709bca3
Author: Michael Altizer <mialtize@cisco.com>
Date: Mon Feb 11 15:55:24 2019 -0500

binder: Reset flow gadget and protocol ID on failed rebinding

Merge pull request #1433 in SNORT/snort3 from ~KBHANDAN/snort3:smb_msg_compounding to master

Squashed commit of the following:

commit 2c91067830867b5d0e54b0ffd713d9aca79def11
Author: Kaushal Bhandankar <kbhandan@cisco.com>
Date: Wed Nov 14 00:32:17 2018 -0500

dce_rpc: Added support to handle smb header compounding

Merge pull request #1511 in SNORT/snort3 from ~SHRARANG/snort3:appid_suppress_detector_warning to master

Squashed commit of the following:

commit c77afdcab87783dbd803f461fa12d36abdf2fefb
Author: Shravan Rangaraju <shrarang@cisco.com>
Date: Mon Feb 11 23:21:43 2019 -0500

appid: skip empty detectors

Merge pull request #1504 in SNORT/snort3 from ~SHASLAD/snort3:new_binder_ports_type to master

Squashed commit of the following:

commit 65994e4ea71a5918cbca8216a911b88e287a7d8f
Author: shaslad <shaslad@cisco.com>
Date: Fri Feb 8 00:24:30 2019 -0500

snort2lua: adding when.role for specific inspectors

Merge pull request #1509 in SNORT/snort3 from ~DDAHIPHA/snort3:app_stats_period_test to master

Squashed commit of the following:

commit 30a653574446dbe2742331f7f1903a3b35cc3469
Author: Devendra Dahiphale <ddahipha@cisco.com>
Date: Sun Feb 10 21:01:22 2019 -0500

appid: set a range for app_stats_period parameter

Merge pull request #1507 in SNORT/snort3 from ~SATHIRKA/snort3:multiline_ftp to master

Squashed commit of the following:

commit 9b042eec8a747df5e1587045df144aab781e5c4f
Author: Sreeja Athirkandathil Narayanan <sathirka@cisco.com>
Date: Wed Feb 6 13:43:09 2019 -0500

appid: Fix for FTP detection with multiline server response split across multiple packets

Merge pull request #1508 in SNORT/snort3 from ~MIREDDEN/snort3:convert_file_config to master

Squashed commit of the following:

commit 58cdd89496b6038ba3aae3e3805b237f5eb7b782
Author: Mike Redden <miredden@cisco.com>
Date: Thu Feb 7 16:23:16 2019 -0500

snort2lua: convert file_capture config options

Merge pull request #1492 in SNORT/snort3 from ~BRASTULT/snort3:talos_logger to master

Squashed commit of the following:

commit 3219d7e23f37c8a36b1603aa1891518cce9f7bc0
Author: Brandon Stultz <brastult@cisco.com>
Date:   Sat Feb 9 01:11:05 2019 -0500

    loggers: alert_talos: fix copyright, warnings

commit af79e3104b64985339760317b88dd276e7bee0e6
Author: Brandon Stultz <brastult@cisco.com>
Date:   Fri Feb 8 15:30:20 2019 -0500

    loggers: alert_talos: fix include order

commit c0fa5704c52d94190f56420bd6b1e2385555a211
Author: Brandon Stultz <brastult@cisco.com>
Date:   Thu Feb 7 21:01:02 2019 -0500

    loggers: alert_talos: fix cppcheck error

commit 6ae83d3b266de5aedf0fd7a688973909ab79435a
Author: Brandon Stultz <brastult@cisco.com>
Date:   Thu Feb 7 16:55:38 2019 -0500

    loggers: alert_talos: fix copyright, author, unneeded check

commit 1ebfbd0ebf38b4141308eacfabfcf4e8d5e70460
Merge: 7b17578d2a 7a4dd7ac12
Author: Brandon Stultz <brastult@cisco.com>
Date:   Thu Feb 7 13:15:44 2019 -0500

    Merge branch 'master' into talos_logger

commit 7b17578d2ae062d3efc369a042aa8ef223b0763c
Author: Brandon Stultz <brastult@cisco.com>
Date:   Mon Feb 4 17:41:22 2019 -0500

    loggers: alert_talos: fix memory leak

commit 9519e233898511d8fb4efa3d41fbaf63d76f467b
Author: Brandon Stultz <brastult@cisco.com>
Date:   Tue Jan 22 17:07:46 2019 -0500

    loggers: add alert_talos, use in talos tweak

Merge pull request #1502 in SNORT/snort3 from ~RUCOMBS/snort3:2019 to master

Squashed commit of the following:

commit 795b696608d0d349658f3af21cd497038686f1be
Author: Russ Combs <rucombs@cisco.com>
Date: Fri Feb 1 18:26:22 2019 -0500

copyright: update year to 2019

Merge pull request #1496 in SNORT/snort3 from ~STECHEW/snort3:splitter_scan to master

Squashed commit of the following:

commit 891499867ff983216f15e6d96b972046aba69c92
Author: Steve Chew <stechew@cisco.com>
Date:   Wed Jan 30 21:52:24 2019 +0530

    stream: Pass Packet in flush_pdu_* -> paf_eval -> paf_callback chain.

commit f1b109aff3032302542e33b3c3c4213d254a4f9e
Author: Steve Chew <stechew@cisco.com>
Date:   Tue Jan 29 02:13:40 2019 +0530

    stream: Change StreamSplitter::scan to take a Packet instead of a Flow.

Merge pull request #1506 in SNORT/snort3 from ~MIREDDEN/snort3:port_scan_memcap_reload to master

Squashed commit of the following:

commit ceccbcae1fc77038787c320f7e422607960ec0c4
Author: Mike Redden <miredden@cisco.com>
Date: Tue Feb 5 13:07:44 2019 -0500

port_scan: Fail reload if memcap changed

Merge pull request #1505 in SNORT/snort3 from ~MDAGON/snort3:clean to master

Squashed commit of the following:

commit defc62939f9af82d37f3460815bb1d61a5c25dfa
Author: Maya Dagon <mdagon@cisco.com>
Date: Tue Jan 29 15:21:48 2019 -0500

reload: differentiate between restart required and bad config

Merge pull request #1483 in SNORT/snort3 from ~BBANTWAL/snort3:batching to master

Squashed commit of the following:

commit ecb607e1f70f760b545101a4dfa687f184aa2c36
Author: Jonathan McDowell <j.mcdowell@titan-ic.com>
Date:   Wed Jan 9 14:36:35 2019 +0000

    detection: Add search batching infrastructure

    Batch jobs for submission in fp_detect, allowing for a single
    submission of related buffers in the MPSE. Add a generic search_batch()
    which just calls search() for each MPSE instance, and a
    receive_responses() to provide initial infrastructure for asynchronous
    operation.

Merge pull request #1497 in SNORT/snort3 from ~MIREDDEN/snort3:fix_sticky_buffer_duplicates to master

Squashed commit of the following:

commit 91637b20ce8f365061a607e9233b1a239629fc72
Author: Mike Redden <miredden@cisco.com>
Date: Mon Jan 28 17:10:32 2019 -0500

snort2lua: fix sticky buffer duplication

Merge pull request #1494 in SNORT/snort3 from ~MDAGON/snort3:cppcheck_dce to master

Squashed commit of the following:

commit eea8e7ac7f6a630838ee3968f6f91c5569821152
Author: Maya Dagon <mdagon@cisco.com>
Date: Wed Dec 19 13:58:54 2018 -0500

dce_rpc: fix cppcheck warnings

Merge pull request #1493 in SNORT/snort3 from ~SMINUT/snort3:ips_file_type to master

Squashed commit of the following:

commit 6c2e6330bb957da3783c47a1406ecebb479af7cf
Author: Silviu Minut <sminut@cisco.com>
Date:   Wed Jan 23 09:25:26 2019 -0500

    ips_options: implement FileTypeOption::hash() and FileTypeOption::operator==(), inherited from IpsOption, using the types bitset array, in order to distinguish between different file type options.

    ips_options: change strncmp to plain strcmp per reviewers' comments.

Merge pull request #1491 in SNORT/snort3 from ~MASHASAN/snort3:dce_alert_once to master

Squashed commit of the following:

commit a8c8665b06181ab0dad9979787d2455d2e1b1731
Author: Masud Hasan <mashasan@cisco.com>
Date: Thu Jan 17 15:31:35 2019 -0500

dce_rpc: Limiting each signature alert to once per session using 'limit_alerts' config

Merge pull request #1495 in SNORT/snort3 from ~CWAXMAN/snort3:snort2lua_dups to master

Squashed commit of the following:

commit 23c4095f92f55477ca250c1c458893c77ca7e739
Author: Carter Waxman <cwaxman@cisco.com>
Date: Thu Jan 24 12:30:33 2019 -0500

snort2lua: fixed duplication of split_any_any from config: detection

Merge pull request #1488 in SNORT/snort3 from ~KETJEN/snort3:lru_cache_changes to master

Squashed commit of the following:

commit a46e75f30321724c22d3cb9d47e362664c60c029
Author: ketjen <ketjen@cisco.com>
Date:   Fri Jan 11 18:58:32 2019 -0800

    hash: Added lru_cache_shared.h to HASH_INCLUDES

commit 5fbf496e9ecffd0e4b5d8d6e511b2c210f6b3e74
Author: ketjen <ketjen@cisco.com>
Date:   Fri Jan 11 18:58:00 2019 -0800

    hash: Moved list_iter assignment inside to avoid improper memory access
    in LruCacheShared

Merge pull request #1490 in SNORT/snort3 from ~NIHDESAI/snort3:ips_react to master

Squashed commit of the following:

commit c546889b75822e38c68016f430fd66e4bdb92356
Author: Nihal Desai <nihdesai@cisco.com>
Date: Wed Jan 16 12:27:18 2019 -0500

react: sending reset to server only

Merge pull request #1487 in SNORT/snort3 from ~MDAGON/snort3:packet_thread_start to master

Squashed commit of the following:

commit 1e58687aaa264f82289d73c5bbc69f9c14aeccbc
Author: Maya Dagon <mdagon@cisco.com>
Date: Wed Jan 9 16:13:18 2019 -0500

main: log message when all pthreads started (REG_TEST only)

Merge pull request #1478 in SNORT/snort3 from ~SMINUT/snort3:sd_obfuscate to master

Squashed commit of the following:

commit 06ea21618014ce4b352ace310b1efeeabbc16129
Author: Silviu Minut <sminut@cisco.com>
Date:   Mon Jan 7 00:11:48 2019 -0500

    main: move obfuscate_pii from OutputModule to IpsModule.

    main: move the obfuscate parameter from IpsModule back to OutputModule, per reviewers' comments.

    snort2lua: move obfuscate_pii to the ips table from the output table.

Merge pull request #1485 in SNORT/snort3 from ~SMINUT/snort3:rate_filter to master

Squashed commit of the following:

commit 53bd9d1b460654243172c7e253eec8ca422f262a
Author: Silviu Minut <sminut@cisco.com>
Date: Thu Jan 10 17:17:14 2019 -0500

filters: call get_ips_policy instead of get_network_policy when building the key for rate filter.

Merge pull request #1484 in SNORT/snort3 from ~SBAIGAL/snort3:ignore_flow_fix to master

Squashed commit of the following:

commit b8a616d3813c26199ca5e216678498e71b31dba8
Author: Steven Baigal (sbaigal) <sbaigal@cisco.com>
Date: Thu Jan 10 14:47:37 2019 -0500

stream: fixed ignore_flow segfault bug caused by allocating generic flow data instead of inspector specific flow data

Merge pull request #1470 in SNORT/snort3 from ~PSHINDE2/snort3:lua_detector_crash to master

Squashed commit of the following:

commit 5ec05000ce2d077cf9482ef8f5ff3c32ff72d3b7
Author: Devendra Dahiphale <ddahipha@cisco.com>
Date: Thu Jan 10 13:15:10 2019 -0500

config: Use basename_r() function for FreeBSD versions < 12.0.0

Merge pull request #1479 in SNORT/snort3 from ~MASHASAN/snort3:socket_crash to master

Squashed commit of the following:

commit ebcfc6b5298aeb1af5dac7570412fa95feeed1a0
Author: Masud Hasan <mashasan@cisco.com>
Date: Tue Jan 8 10:16:36 2019 -0500

control: Avoid deleting objects on write failures so that they get deleted from main thread during read polling

Merge pull request #1481 in SNORT/snort3 from ~MDAGON/snort3:doc_reload_stream to master

Squashed commit of the following:

commit 75e07665a066acdda1ee6301f7b37a6b35a228df
Author: Maya Dagon <mdagon@cisco.com>
Date: Fri Jan 4 12:29:52 2019 -0500

doc: update reload limitations - adding/removing stream_*

Merge pull request #1482 in SNORT/snort3 from ~CWAXMAN/snort3:file_race to master

Squashed commit of the following:

commit d9fe7ab30e1daf7033821ff9993c1227bbe1fb9d
Author: Carter Waxman <cwaxman@cisco.com>
Date: Tue Jan 8 16:35:07 2019 -0500

file: fixed data race at shutdown

Merge pull request #1480 in SNORT/snort3 from ~MDAGON/snort3:reload_stream_inspectors to master

Squashed commit of the following:

commit cf95a4564e84c4da975a2e9643271678efb91afa
Author: Maya Dagon <mdagon@cisco.com>
Date: Mon Dec 10 19:17:00 2018 -0500

reload: fail reload if stream is in the original config and stream_* is added/removed

Merge pull request #1477 in SNORT/snort3 from ~CWAXMAN/snort3:offload_split_fp to master

Squashed commit of the following:

commit 5643bda661db5ac1ae064f3f5f2315dc6b6ec1ac
Author: Carter Waxman <cwaxman@cisco.com>
Date:   Thu Jan 3 13:49:51 2019 -0500

    detection: only swap offload configs when they change

commit 812fda4789424abd6682f3e9d1db49a888509856
Author: Carter Waxman <cwaxman@cisco.com>
Date:   Thu Dec 20 09:12:47 2018 -0500

    detection: split fast pattern processing when using context suspension

Merge pull request #1475 in SNORT/snort3 from ~SBAIGAL/snort3:designated_warnings to master

Squashed commit of the following:

commit 5ec8c4ccbeb006d2975459c1b19c6eb9dee0f881
Author: Steven Baigal (sbaigal) <sbaigal@cisco.com>
Date: Tue Dec 18 13:45:52 2018 -0500

misc: fixed warnings generated from latest gcc

Merge pull request #1476 in SNORT/snort3 from ~MDAGON/snort3:cppcheck_3 to master

Squashed commit of the following:

commit de59e7f90507b91e9c129bb17b38f276e5f0a83c
Author: Maya Dagon <mdagon@cisco.com>
Date:   Thu Dec 20 12:01:48 2018 -0500

    piglet_plugins: fix cppcheck warnings

commit 494e5fb32b00187bb2b85530223f3c52a10c0580
Author: Maya Dagon <mdagon@cisco.com>
Date:   Thu Dec 20 11:45:06 2018 -0500

    snort2lua: fix cppcheck warning

commit 25e3f25d215c8d85821dfd8260c19f6f2224d0ce
Author: Maya Dagon <mdagon@cisco.com>
Date:   Wed Dec 19 16:25:50 2018 -0500

    ports: fix cppcheck warning

    Fix local variable po_print_buf shadows outer variable

commit 971e72fc949aad1377b1a2b5a2bda5da88ee938c
Author: Maya Dagon <mdagon@cisco.com>
Date:   Wed Dec 19 16:17:52 2018 -0500

    stream: fix for non-boolean value returned

commit ff8c2f913d49f43e78b2a4c4ad6f30593feec895
Author: Maya Dagon <mdagon@cisco.com>
Date:   Wed Dec 19 16:14:07 2018 -0500

    tcp_connector: fix cppcheck warning

    Fix Local variable tcp_connector shadows outer variable

commit 6581af2400c71ac6dc60b4848c2006809bf47014
Author: Maya Dagon <mdagon@cisco.com>
Date:   Wed Dec 19 16:09:41 2018 -0500

    file_connector: fix cppcheck warning

    Fix for local variable file_connector shadows outer variable

build: Alpine Integration -clear segfault in cpputest on musl/Alpine (#71)

* build: Alpine Integration -clear segfault in cpputest on musl/Alpine

Merge pull request #1474 in SNORT/snort3 from ~MIALTIZE/snort3:libiconv to master

Squashed commit of the following:

commit a8eb059f7fff6a3c91c5741dcc40a9404af864cd
Author: Michael Altizer <mialtize@cisco.com>
Date: Thu Dec 20 11:53:23 2018 -0500

build: Add better support for libiconv on systems with iconv-providing libc

Merge pull request #1469 in SNORT/snort3 from ~DDAHIPHA/snort3:flow_for_first_packet to master

Squashed commit of the following:

commit a1cbb6c73750dd9b9f3225fae17d4c34018a1fdf
Author: Devendra Dahiphale <ddahipha@cisco.com>
Date: Fri Dec 14 18:31:19 2018 -0500

snort_config: Add a setter for setting run_flags and set it to TRACK_ON_SYN for hs_timeout config

Merge pull request #1472 in SNORT/snort3 from ~MDAGON/snort3:cppcheck_fix to master

Squashed commit of the following:

commit 2833fb3255ead1286dd8d4966d5990ef028c12ce
Author: Maya Dagon <mdagon@cisco.com>
Date:   Tue Dec 18 11:44:10 2018 -0500

    dce_rpc: fix style warning non-boolean returned

commit a2a70a56988806fa47749fff1258c153f3528f3f
Author: Maya Dagon <mdagon@cisco.com>
Date:   Tue Dec 18 11:19:19 2018 -0500

    protocols: fix style warning non-boolean value returned

Merge pull request #1465 in SNORT/snort3 from ~CWAXMAN/snort3:offload_context_deps to master

Squashed commit of the following:

commit e8c4313927cb73dbca52471a461c129c18460ac2
Author: Carter Waxman <cwaxman@cisco.com>
Date:   Fri Dec 7 07:29:50 2018 -0500

    Mpse: fixed build warning about constness of get_pattern_count

commit 4d3aa71ec4fc7130073aad4ed143407b7c656f6a
Author: Carter Waxman <cwaxman@cisco.com>
Date:   Thu Dec 6 16:29:02 2018 -0500

    Flow: is_offloaded is now is_suspended

commit c8fddc2d61843ad1ff41e1ea721dea890007ff0b
Author: Carter Waxman <cwaxman@cisco.com>
Date:   Thu Dec 6 09:12:27 2018 -0500

    IpsContext: removed useless SUSPENDED_OFFLOAD state

commit ec47d206b928baa3f9c97364980cf99a06f804c1
Author: Carter Waxman <cwaxman@cisco.com>
Date:   Wed Dec 5 15:07:33 2018 -0500

    Packet: fixed thread safety in onload flag checks

commit 8e6969234e2f1ba4d62522938342c1909b21c810
Author: Carter Waxman <cwaxman@cisco.com>
Date:   Wed Dec 5 15:30:11 2018 -0500

    RegexOffload: onload whatever is ready

commit 59618c74d8a449128c82d4bddb0b2399ea77630b
Author: Carter Waxman <cwaxman@cisco.com>
Date:   Thu Dec 6 16:52:37 2018 -0500

    DetectionEngine: make onload safe for reentrance

commit fe186cabc5d0632af8c0555bed88f33529f7fa45
Author: Carter Waxman <cwaxman@cisco.com>
Date:   Thu Dec 6 10:52:25 2018 -0500

    DetectionEngine: stall when out of contexts

commit 3250b20edbe279daa5d22c50381fbe6fbeaaefc0
Author: Carter Waxman <cwaxman@cisco.com>
Date:   Wed Dec 5 16:52:59 2018 -0500

    fp_detect: suspend instead of onload if fp_local can't occur yet

commit dbee8b9c10be69e771d0206944f485cab2077cb7
Author: Carter Waxman <cwaxman@cisco.com>
Date:   Thu Nov 29 13:26:14 2018 -0500

    detection: allow suspension of entire chains of contexts

Merge pull request #1468 in SNORT/snort3 from ~SMINUT/snort3:http_malware to master

Squashed commit of the following:

commit 4078b6ab63ded28e096cf582027f9829b6d01de1
Author: Silviu Minut <sminut@cisco.com>
Date: Wed Dec 12 15:30:04 2018 -0500

file_api: call FileContext::set_file_name() from FileFlows::set_file_name with fname = nullptr, in order to generate file event.

Merge pull request #1471 in SNORT/snort3 from ~MIREDDEN/snort3:fix_pcre_option_issues to master

Squashed commit of the following:

commit d38bac13658a876f43dda17e1164eae506ec3cd0
Author: Mike Redden <miredden@cisco.com>
Date: Tue Dec 18 08:56:50 2018 -0500

snort2lua: fix pcre option issues

Merge pull request #1467 in SNORT/snort3 from ~MIREDDEN/snort3:snort2lua_dev_notes2 to master

Squashed commit of the following:

commit 93214fa1456a19a10e06747b67a0fbb37a1988d9
Author: Mike Redden <miredden@cisco.com>
Date: Fri Dec 14 16:05:44 2018 -0500

snort2lua: Create dev_notes.txt for sticky buffers

Merge pull request #1462 in SNORT/snort3 from ~SBAIGAL/snort3:stream_cache_reload to master

Squashed commit of the following:

commit 8187840a9cb93c782451c6dab1662e352226e3bc
Author: Steven Baigal (sbaigal) <sbaigal@cisco.com>
Date: Mon Dec 10 10:40:12 2018 -0500

reload: prompt reload failure and require restart when stream cache were changed

Merge pull request #1463 in SNORT/snort3 from ~CWAXMAN/snort3:offload_actions to master

Squashed commit of the following:

commit 7647547294400c2572f0eef9d6f9f98e8fff5ef3
Author: Carter Waxman <cwaxman@cisco.com>
Date: Wed Dec 12 09:11:36 2018 -0500

ActionManager: actions are tracked per packet for accurate packet suspension

Merge pull request #1460 in SNORT/snort3 from ~MDAGON/snort3:file_reload to master

Squashed commit of the following:

commit 9af61b0b8f0f41516123d018d94cb21f710f2944
Author: mdagon <mdagon@cisco.com>
Date: Wed Oct 31 15:38:00 2018 -0400

file_api: fail the reload if max_files_cache is changed or if capture was initially enabled and capture_memcap or capture_block_size change

Merge pull request #1461 in SNORT/snort3 from ~DERAMADA/snort3:ips_binder to master

Squashed commit of the following:

commit 4b6aed33ddd66eb0283cae99872b200b019971fe
Author: deramada <deramada@cisco.com>
Date: Mon Dec 10 15:29:41 2018 -0500

binder: store user set ips policy id from lua

Merge pull request #1457 in SNORT/snort3 from ~MDAGON/snort3:doc_reload to master

Squashed commit of the following:

commit 5989f0abb312c7ec72db512945f6bc4635963013
Author: Maya Dagon <mdagon@cisco.com>
Date: Fri Nov 30 16:20:04 2018 -0500

doc: add a section for reload limitations

Merge pull request #1459 in SNORT/snort3 from ~MASHASAN/snort3:file_nullptr_check to master

Squashed commit of the following:

commit 5e8dbe1f9b5b74ddb6a4991790a533f16c22c953
Author: Masud Hasan <mashasan@cisco.com>
Date: Fri Dec 7 15:10:13 2018 -0500

file_api: Added nullptr checking to prevent segfaults when file mempool is not configured

build: Generate and tag build 250

perf_monitor: Actually allow building perf_monitor as a dynamic plugin

Merge pull request #1455 in SNORT/snort3 from ~VIROEMER/snort3:fix-appid-detector-builder-install to master

Squashed commit of the following:

commit 394acabaa5efff66a8cea0e4d3d833b4e143d0b9
Author: Victor Roemer (viroemer) <viroemer@cisco.com>
Date:   Wed Dec 5 18:54:07 2018 -0500

    tools: Install appid-detector-builder.sh with the other tools.

    appid-detector-builder.sh was being installed to the temporary CMake
    working directory and this is caught by bitbake which errors.

Merge pull request #1452 in SNORT/snort3 from ~RUCOMBS/snort3:int_types to master

Squashed commit of the following:

commit 927335a9d770afd3f976c5d433dfbf59c358f1d3
Author: russ <rucombs@cisco.com>
Date:   Sat Dec 1 09:08:48 2018 -0500

    build: clean up additional warnings

commit 237dc040cedf560fa2e10127c5db9cf6b313fd8c
Author: russ <rucombs@cisco.com>
Date:   Fri Nov 30 14:54:58 2018 -0500

    build: fix some int format specifiers

commit bd1b6a63ed81d99dcec9404bdf08a886d04acf48
Author: russ <rucombs@cisco.com>
Date:   Fri Nov 30 14:22:37 2018 -0500

    build: fix some int type conversion warnings

commit 489e5ce892199bef55974bbd1b85281fd1e1c453
Author: russ <rucombs@cisco.com>
Date:   Fri Nov 30 08:17:16 2018 -0500

    parameter: remove arbitrary one day limit on timers

commit dadfae41cc9e2cc73809688de593f93b9d4e6a20
Author: russ <rucombs@cisco.com>
Date:   Thu Nov 29 08:46:55 2018 -0500

    snort: add --help-limits to output max* values

commit 8886dbaec359e974b016d5f33e50fd75a62722ef
Author: russ <rucombs@cisco.com>
Date:   Thu Nov 29 07:50:07 2018 -0500

    parameter: add maxSZ upper bound for int sizes

commit 4d29c63de0c65315f3cfb7c30d63604366369095
Author: russ <rucombs@cisco.com>
Date:   Wed Nov 28 13:39:16 2018 -0500

    parameter: add max31, max32, and max53 for int upper bounds

commit 25c837adb622de44ea746d8081498b4a3c3e3d7a
Author: russ <rucombs@cisco.com>
Date:   Tue Nov 27 08:27:05 2018 -0500

    spelling: fix typo, disable checks on test data

commit acca70d032f3de0ca5e3ca0ef4e80dbd2199d743
Author: russ <rucombs@cisco.com>
Date:   Mon Nov 26 22:46:47 2018 -0500

    parameter: clean up some signed/unsigned mismatches

commit f0d5e1a033ccf16a57af6551f098bb43adf19fdd
Author: russ <rucombs@cisco.com>
Date:   Mon Nov 26 17:37:52 2018 -0500

    parameter: remove ineffective -1 from pcre_match_limit*

commit f52729f59324519be52a0058fbe3c104bb056783
Author: russ <rucombs@cisco.com>
Date:   Mon Nov 26 12:03:55 2018 -0500

    parameter: use bool instead of int for bools

commit c845621d7900f97da697a966b4b2fe8af9008614
Author: russ <rucombs@cisco.com>
Date:   Mon Nov 26 11:44:57 2018 -0500

    parameter: use consistent default port ranges

commit ab3be3c2121bb9a2f89f65ed3712eb5f5f68046b
Author: russ <rucombs@cisco.com>
Date:   Mon Nov 26 08:32:20 2018 -0500

    parameter: clean up upper bounds

commit 78aaf9fc08d6b05e8949426eace6a83e06f731ea
Author: russ <rucombs@cisco.com>
Date:   Fri Nov 23 10:52:57 2018 -0500

    parameter: build out validation unit tests

commit ed4235ab439d1966e645378f97fd079672329091
Author: russ <rucombs@cisco.com>
Date:   Fri Nov 23 09:16:35 2018 -0500

    perf_monitor: fix benign parameter errors

commit bfcbb47e5c01608532df3308cf2e684c5e06b6dc
Author: russ <rucombs@cisco.com>
Date:   Fri Nov 23 09:14:57 2018 -0500

    parameter: reorgranize for unit tests

Merge pull request #1451 in SNORT/snort3 from ~MASHASAN/snort3:si_blacklist_event to master

Squashed commit of the following:

commit e4e65594c38b3c1aec8e530037a89b1d1a2b896a
Author: Masud Hasan <mashasan@cisco.com>
Date: Wed Nov 28 22:07:18 2018 -0500

reputation: Fix iterations of layers for different nested_ip configs and show the blacklisted IP in events

Merge pull request #1454 in SNORT/snort3 from ~MIALTIZE/snort3:preng to master

Squashed commit of the following:

commit 05e0b65ebfc22ce68aada07f94e98442de5e6867
Author: Michael Altizer <mialtize@cisco.com>
Date:   Tue Oct 9 18:36:25 2018 -0400

    snort: Default to a snaplen of 1518

commit d4e70b104c72b6768dc328fda396d251171707c9
Author: Michael Altizer <mialtize@cisco.com>
Date:   Sat Nov 3 15:03:46 2018 -0400

    module_manager: Fix configuring module parameter defaults when modules have list parameters

commit 9166086ae089c4296be087bb91d02dd761b8b9e0
Author: Michael Altizer <mialtize@cisco.com>
Date:   Mon Oct 29 10:36:47 2018 -0400

    snort2lua: Fix compiler warning for catching exceptions by value

commit 8ae596426cccfab0c898013e881dfc39f16eba84
Author: Michael Altizer <mialtize@cisco.com>
Date:   Wed Oct 3 14:41:34 2018 -0400

    thread: No more breaks for pigs (union busting)

commit 8cdf8b414bcc153797024c1406369e8389137098
Author: Michael Altizer <mialtize@cisco.com>
Date:   Fri Aug 31 13:31:11 2018 -0400

    appid: Don't build unit test components without ENABLE_UNIT_TESTS

Merge pull request #1453 in SNORT/snort3 from ~MDAGON/snort3:reload_config to master

Squashed commit of the following:

commit 13980e232f10ab4f289c4ffde26df4170a865ce5
Author: Maya Dagon <mdagon@cisco.com>
Date: Fri Nov 16 15:10:19 2018 -0500

file_api: choose whether to get file config from current config or staged one

Merge pull request #1446 in SNORT/snort3 from ~SBAIGAL/snort3:reload_ips_action to master

Squashed commit of the following:

commit 074dfc4ae15200a97300469818c3adc166a9b2ee
Author: Steven Baigal <sbaigal@cisco.com>
Date: Tue Nov 27 14:00:50 2018 -0500

reload action: updated action manager to support reload

Merge pull request #1448 in SNORT/snort3 from ~MDAGON/snort3:reload_capture to master

Squashed commit of the following:

commit 1cceb6ad77ec09c409f958aee2535f68ea91f66b
Author: mdagon <mdagon@cisco.com>
Date: Wed Oct 31 15:38:00 2018 -0400

file: fail the reload if capture is enabled for the first time

Merge pull request #1447 in SNORT/snort3 from ~DDAHIPHA/snort3:heap_overflow_fix to master

Squashed commit of the following:

commit baa221ddec90f0f3153bfb64bb62c9f5e27fbc02
Author: Devendra Dahiphale <ddahipha@cisco.com>
Date: Mon Dec 3 09:26:19 2018 -0500

appid: Fix heap overflow issue for a fuzzed pcap

Merge pull request #1444 in SNORT/snort3 from ~PSHINDE2/snort3:sip_buffer_overflow to master

Squashed commit of the following:

commit 8ff1664addda5eb674ed2cf6db492d3f19feea56
Author: Pratik Shinde <pshinde2@cisco.com>
Date: Tue Nov 27 16:48:39 2018 -0500

sip: Added sanity check for buffer boundary while parsing a sip message

Merge pull request #1443 in SNORT/snort3 from ~MIREDDEN/snort3:snort2lua_fix_pcre_PH_options_for_sip to master

Squashed commit of the following:

commit 68ae2da5c5ff36675a6aba8f2710ce8327103e15
Author: Mike Redden <miredden@cisco.com>
Date: Mon Nov 26 14:04:07 2018 -0500

snort2lua: Fix pcre H and P option conversions for sip

Merge pull request #1442 in SNORT/snort3 from ~CWAXMAN/snort3:offload_kill_stream to master

Squashed commit of the following:

commit 30faa7bb1f3f83b020ce7e5dd8d8c97b5d43f0e2
Author: Carter Waxman <cwaxman@cisco.com>
Date:   Tue Nov 27 14:13:12 2018 -0500

    regex worker: removed assert that didn't handle locks cleanly

commit 2a72bde15e444742d268a04253ae017c40a6eae6
Author: Carter Waxman <cwaxman@cisco.com>
Date:   Mon Nov 26 17:25:46 2018 -0500

    detection, stream: fixed assuming packets were offloaded when previous packets on flow have been offloaded

commit 5a03c7594249291950283c9a05e2a6e85a23dc95
Author: Carter Waxman <cwaxman@cisco.com>
Date:   Wed Nov 21 14:11:02 2018 -0500

    stream tcp: fixed sequence overlap handling when working with empty seglist

commit 30c258f980faef8382623efac34aa44c6e1ff235
Author: Carter Waxman <cwaxman@cisco.com>
Date:   Wed Nov 21 07:35:53 2018 -0500

    stream tcp: fixed applying post-inspection operations to wrong rebuilt packet

Merge pull request #1439 in SNORT/snort3 from ~RUCOMBS/snort3:rule_stubs to master

Squashed commit of the following:

commit bc201990e97b748a9a023687640150b0c1d7274d
Author: russ <rucombs@cisco.com>
Date: Sat Nov 17 09:32:47 2018 -0500

so rules: add robust stub parsing

Merge pull request #1445 in SNORT/snort3 from ~RUCOMBS/snort3:extra_issues to master

Squashed commit of the following:

commit fccab4fbc431abbc1857efffe6fa9affb9101100
Author: russ <rucombs@cisco.com>
Date:   Tue Nov 27 18:08:58 2018 -0500

    build: fix come cppcheck warnings:
    Comparison of a boolean expression with an integer other than 0 or 1

commit cac975509d4c9eed8feb212baf7b97d44ffcb767
Author: russ <rucombs@cisco.com>
Date:   Tue Nov 27 18:08:15 2018 -0500

    build: reduce variable scope to address warnings

Merge pull request #1441 in SNORT/snort3 from ~RUCOMBS/snort3:misc_cleanup to master

Squashed commit of the following:

commit e6da3affd41e11f616a61fd8f899f17122d898da
Author: russ <rucombs@cisco.com>
Date:   Wed Nov 21 16:06:27 2018 -0500

    snort: terminate gracefully upon DAQ start failure
    thanks to Jaime González <jaimeglz1952@gmail.com> for reporting the issue

commit 7a53539c715464c6e78f4594332bf55008757058
Author: russ <rucombs@cisco.com>
Date:   Wed Nov 21 15:54:10 2018 -0500

    snort: remove obsolete and inadequate -W option
    thanks to Jaime González <jaimeglz1952@gmail.com> for reporting the issue

commit 9f479de6d021ef49fc456d20dc511525c6cc20e5
Author: russ <rucombs@cisco.com>
Date:   Wed Nov 21 14:12:50 2018 -0500

    snort: fix command line parameters to support setting in Lua
    thanks to  Meridoff <oagvozd@gmail.com> for reporting the issue

file_api: Fix unused variable warning

actions: Fix merge conflict between action objectification and reject action update

Merge pull request #1436 in SNORT/snort3 from ~CWAXMAN/snort3:_offload_context_active to master

Squashed commit of the following:

commit e8de483008ea240e3bc7095c11d552aee1fcd467
Author: Carter Waxman <cwaxman@cisco.com>
Date:   Mon Nov 12 11:01:38 2018 -0500

    active: added peg count for injects

commit 489561ea2fa79a178ea26cf696377741bf7895b0
Author: Carter Waxman <cwaxman@cisco.com>
Date:   Fri Oct 26 09:02:16 2018 -0400

    active, detection: active state is tied to specific packet, not thread

Merge pull request #1440 in SNORT/snort3 from ~SMINUT/snort3:reject_forward_option to master

Squashed commit of the following:

commit 49f47f3950be7b6f9952be1866639a388508e9ec
Author: Silviu Minut <sminut@cisco.com>
Date:   Fri Nov 16 15:36:45 2018 -0500

    snort2lua: add code to output control = forward under the reject module.

commit bb5bf4702dc9b7b1673d352700b4b79ad66d5af6
Author: Masud Hasan <mashasan@cisco.com>
Date:   Fri Nov 16 11:48:42 2018 -0500

    actions: Fixing incorrect order of IPS reject unreachable codes and adding forward option

Merge pull request #1423 in SNORT/snort3 from ~SMINUT/snort3:fuzz_segfault to master

Squashed commit of the following:

commit 680fd0e03fb815f05bcc3862d7486dcb7c88a9a8
Author: Silviu Minut <sminut@cisco.com>
Date:   Fri Nov 2 16:19:05 2018 -0400

    protocols: add vlan_idx field to Packet struct and handle multiple vlan type ids. Thanks to ymansour for reporting this issue.

    protocols: change int8 to unit8 for vlan_idx type.

Merge pull request #1430 in SNORT/snort3 from ~BBANTWAL/snort3:offload_non_pdu to master

Squashed commit of the following:

commit 096d510332e2e0b10e46a1668c61e274ce389f35
Author: Bhagya Tholpady <bbantwal@cisco.com>
Date:   Fri Nov 9 13:01:12 2018 -0500

    add check to see if flow is present

commit eaaf991705740d9b3e5a6babd5c1c5bd0c68015e
Author: Bhagya Tholpady <bbantwal@cisco.com>
Date:   Mon Nov 5 13:33:43 2018 -0500

    remove check to see if offload

commit eac33b77422c841034644f9ea2874c01a94b4840
Author: Bhagya Tholpady <bbantwal@cisco.com>
Date:   Mon Nov 5 11:31:51 2018 -0500

    clear context data for raw packets

commit 5fa3d614fcaf1849e7caa0fd0be7d7765c1ee1a7
Author: russ <rucombs@cisco.com>
Date:   Sun Oct 21 10:53:21 2018 -0400

    detection: enable offloading non-pdu packets

Merge pull request #1434 in SNORT/snort3 from ~RUCOMBS/snort3:spelling_nits to master

Squashed commit of the following:

commit bdfd068163c98b1c71436f7df06731197371c6e2
Author: Russ Combs <rucombs@cisco.com>
Date: Wed Nov 14 08:46:41 2018 -0500

style: clean up comment to reduce spelling exceptions

Merge pull request #1437 in SNORT/snort3 from ~CWAXMAN/snort3:fbs_units to master

Squashed commit of the following:

commit 4dc89f3fe85516316744c1cdebb7ffa9179b4ebe
Author: Carter Waxman <cwaxman@cisco.com>
Date: Thu Nov 15 08:56:00 2018 -0500

perfmonitor: fixed fbs schema generation when not building with DEBUG

Merge pull request #1431 in SNORT/snort3 from ~PSHINDE2/snort3:thread_safe_strerror to master

Squashed commit of the following:

commit 577090feb8bd6b33e5031b9c3dfaffd7857e1d84
Author: Pratik Shinde <pshinde2@cisco.com>
Date: Mon Nov 12 11:13:05 2018 -0500

loggers: Use thread safe strerror_r() instead of strerror()

Merge pull request #1427 in SNORT/snort3 from ~MDAGON/snort3:resume_for_n_2 to master

Squashed commit of the following:

commit 43a577aefa680521ac85217168d9174061bdfe3b
Author: mdagon <mdagon@cisco.com>
Date:   Fri Nov 2 15:57:48 2018 -0400

    main: support resume(n) command

    resume() expanded to support an optional packet number argument.
    When provided, Snort will resume, process n packets and pause.
    In addition pause-after-n updated to support multi packet threads.

Merge pull request #1426 in SNORT/snort3 from ~SBAIGAL/snort3:stream_peg to master

Squashed commit of the following:

commit 596cb6a1f4c2ca9a90869206806b7869003b69fb
Author: Steven Baigal (sbaigal) <sbaigal@cisco.com>
Date: Fri Nov 9 13:17:42 2018 -0500

stream: fixed stream_base flow peg count sum_stats bug

Merge pull request #1425 in SNORT/snort3 from ~MASHASAN/snort3:databus_clone to master

Squashed commit of the following:

commit 8ba948e060cad592234fc4b0786a0942fec30dde
Author: Masud Hasan <mashasan@cisco.com>
Date: Thu Nov 1 00:02:28 2018 -0400

framework: Cloning databus to new config during module reload

Merge pull request #1424 in SNORT/snort3 from ~CWAXMAN/snort3:cmake_generator to master

Squashed commit of the following:

commit f3dd4f7fee75001763a057c9621a918d7c87f9c9
Author: Carter Waxman <cwaxman@cisco.com>
Date: Thu Nov 8 11:07:17 2018 -0500

configure_cmake: accept generator names with spaces

Merge pull request #1422 in SNORT/snort3 from ~MSTEPANE/snort3:build_249 to master

Squashed commit of the following:

commit f2e69f3d00b67095834902aebbe3914fe88ef89a
Author: Mike Stepanek <mstepane@cisco.com>
Date: Wed Nov 7 09:32:23 2018 -0500

Build 249

Merge pull request #1414 in SNORT/snort3 from perfmon_n_option to master

Squashed commit of the following:

commit 017f98d36281e61b38107fe850a2b148f63c4cc0
Author: Nihal Desai <nihdesai@cisco.com>
Date: Tue Oct 30 15:42:31 2018 -0400

perfmon: fix issue for report correct stats after passing -n pkts

Merge pull request #1409 in SNORT/snort3 from reload_fname to master

Squashed commit of the following:

commit a105a63d69690ef36649c21b977a1dab62f14774
Author: mdagon <mdagon@cisco.com>
Date: Wed Aug 29 18:07:04 2018 -0400

parser: bad filename during reload is not a fatal error

Merge pull request #1420 in SNORT/snort3 from ~RUCOMBS/snort3:rule_path to master

Squashed commit of the following:

commit 67eff43ab875aeaf441a187c4e5d3c5f4ab3f71e
Author: russ <rucombs@cisco.com>
Date: Sun Nov 4 09:36:59 2018 -0500

snort: add --rule-path to load rules from all files under given dir

Merge pull request #1421 in SNORT/snort3 from offload_no_onloads to master

Squashed commit of the following:

commit 08c92b8e71cef3840a11930cb3728ac20d3ac1c3
Author: Carter Waxman <cwaxman@cisco.com>
Date: Tue Sep 11 14:04:10 2018 -0400

stream, detection, flow: don't force onloads between pdus unless absolutey necessary

Merge pull request #1417 in SNORT/snort3 from http2gid to master

Squashed commit of the following:

commit 73f557410d0e828718194046dabca9a520739f09
Author: Mike Redden <miredden@cisco.com>
Date: Thu Nov 1 14:24:37 2018 -0400

http2_inspect: Change http2 GID from 219 to 121

Merge pull request #1363 in SNORT/snort3 from offload_flow_data to master

Squashed commit of the following:

commit add380fa46f0b167524e656050c279507350f787
Author: Carter Waxman <cwaxman@cisco.com>
Date: Wed Oct 3 13:12:37 2018 -0400

stream tcp: don't delete flow data on rst, let session close handle it

Merge pull request #1410 in SNORT/snort3 from invalid_lua_crash to master

Squashed commit of the following:

commit cfc5b686c672418318d44760ea8fdff2a9298e40
Author: Pratik Shinde <pshinde2@cisco.com>
Date: Mon Oct 29 12:27:12 2018 -0400

appid: Remove detector flows from the list for faulty lua detectors

Merge pull request #1408 in SNORT/snort3 from reload_reputation to master

Squashed commit of the following:

commit d467f58db0d2eb6a8618050bcdf2e48c027c83a9
Author: Silviu Minut <sminut@cisco.com>
Date:   Fri Oct 26 14:25:20 2018 -0400

    framework: set the reload_type flags to RELOAD_TYPE_NONE at the end of reload, in anticipation of future reloads.

    reputation: delete old conf before allocating a new one in ReputationModule::begin() if conf not null

    framework: replace the newly introduced loop to reset the reload_type flags with the existing Inspector::update_policy function

Merge pull request #1413 in SNORT/snort3 from bool_emplace to master

Squashed commit of the following:

commit 0bed4caf5b28d7e0a78af7bd4467dad6776632b5
Author: Carter Waxman <cwaxman@cisco.com>
Date: Tue Oct 30 15:13:37 2018 -0400

packet_tracer: can't emplace vector<bool> until c++14