]>
git.ipfire.org Git - thirdparty/snort3.git/log
Michael Altizer (mialtize) [Fri, 29 Jun 2018 14:41:00 +0000 (10:41 -0400)]
Merge pull request #1297 in SNORT/snort3 from reload_crash to master
Squashed commit of the following:
commit
9b2fad5be6056526525edab816181c3bbea7582c
Author: Carter Waxman <cwaxman@cisco.com>
Date: Fri Jun 29 09:21:27 2018 -0400
FrameworkPolicy: fixed adding probe to wrong SnortConfig
Mike Stepanek (mstepane) [Thu, 28 Jun 2018 15:38:41 +0000 (11:38 -0400)]
Merge pull request #1291 in SNORT/snort3 from appid_leaks to master
Squashed commit of the following:
commit
9b47b3bc433e235ab0d9360452fc7abc7ddb961f
Author: deramada <deramada@cisco.com>
Date: Tue Jun 26 09:29:42 2018 -0400
appid: release plugins
Michael Altizer (mialtize) [Thu, 28 Jun 2018 15:23:35 +0000 (11:23 -0400)]
Merge pull request #1293 in SNORT/snort3 from catch_update to master
Squashed commit of the following:
commit
025cf39430ea5caff83a9b2bf8277994d81cf843
Author: Michael Altizer <mialtize@cisco.com>
Date: Tue Jun 26 13:05:55 2018 -0400
catch: Update to Catch v2.2.3
Mike Stepanek (mstepane) [Tue, 26 Jun 2018 20:27:15 +0000 (16:27 -0400)]
Merge pull request #1287 in SNORT/snort3 from apple_core_media to master
Squashed commit of the following:
commit
615946c0d6235eeea84e52f31951737fd07f0336
Author: Masud Hasan <mashasan@cisco.com>
Date: Mon Jun 25 13:19:55 2018 -0400
appid: Fix identify_user_agent's default case
Russ Combs (rucombs) [Tue, 26 Jun 2018 14:53:37 +0000 (10:53 -0400)]
Merge pull request #1275 in SNORT/snort3 from talos_conf to master
Squashed commit of the following:
commit
fb96f212ab995ed352d499e0b50ca21e3095ef8e
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Sat Jun 16 17:50:53 2018 -0400
snort.lua: add inline tweaks
commit
924af489c14a713a617538489c36c5777de0cd16
Author: Russ Combs <rucombs@cisco.com>
Date: Sat Jun 2 13:33:24 2018 -0400
snort.lua: add talos defaults
Mike Stepanek (mstepane) [Tue, 26 Jun 2018 14:44:21 +0000 (10:44 -0400)]
Merge pull request #1284 in SNORT/snort3 from appid_setTPAppIdData to master
Squashed commit of the following:
commit
103a5b755efc0a480045422fdceb1dd5ddee5e1d
Author: Silviu Minut <sminut@cisco.com>
Date: Fri Jun 22 14:30:46 2018 -0400
appid: fix http tunnel handling in do_tp_discovery()
appid: add else if clause to set tp_app_id to APP_ID_SSL in do_tp_discovery(), as per user comments. Move asd.get_http_session() inside the if(APPID_SESSION_HTTP_SESSION) block.
Mike Stepanek (mstepane) [Tue, 26 Jun 2018 14:41:01 +0000 (10:41 -0400)]
Merge pull request #1290 in SNORT/snort3 from lua_dev_notes to master
Squashed commit of the following:
commit
295f9e3f3471f0c92b655cc66ccb8023feec1ad9
Author: deramada <deramada@cisco.com>
Date: Tue Jun 26 08:54:58 2018 -0400
bad grammer
commit
cc6f41f602fe450be66d1e62678e4ba156f59051
Author: deramada <deramada@cisco.com>
Date: Tue Jun 26 08:42:11 2018 -0400
fixup! appid: dev notes on lua detectors
commit
c1d71ec9ed4d5f4ad9ae24495893ac7d44a34071
Author: deramada <deramada@cisco.com>
Date: Mon Jun 25 17:01:34 2018 -0400
appid: dev notes on lua detectors
Tom Peters (thopeter) [Tue, 26 Jun 2018 14:16:07 +0000 (10:16 -0400)]
Merge pull request #1281 in SNORT/snort3 from renumber_nhi_events to master
Squashed commit of the following:
commit
4f78e1e7c2f916dde64313328ce6c68bc8daceef
Author: Nihal Desai <nihdesai@cisco.com>
Date: Wed Jun 20 06:27:41 2018 -0400
nhi: renumbered events to avoid current and future conflicts with Snort 2.X
Jonathan McDowell [Tue, 26 Jun 2018 13:20:11 +0000 (14:20 +0100)]
Set default paths to Lua includes and Snort config (#51)
Mike Stepanek (mstepane) [Mon, 25 Jun 2018 15:00:46 +0000 (11:00 -0400)]
Merge pull request #1282 in SNORT/snort3 from lua_file_error to master
Squashed commit of the following:
commit
d3732c18982e8976319e3093181f85733bc788d6
Author: Masud Hasan <mashasan@cisco.com>
Date: Thu Jun 21 13:19:56 2018 -0400
appid: Avoid snort crash upon lua file errors
Hui Cao (huica) [Fri, 22 Jun 2018 13:20:34 +0000 (09:20 -0400)]
Merge pull request #1280 in SNORT/snort3 from reputation_default to master
Squashed commit of the following:
commit
6cd7800ea3c44ab9b8850dd002ea62675b4a9fbd
Author: huica <huica@cisco.com>
Date: Wed Jun 20 13:56:44 2018 -0400
Reputation: make sure reputation inspector is called in default policy
Michael Altizer (mialtize) [Wed, 20 Jun 2018 20:26:09 +0000 (16:26 -0400)]
Merge pull request #1279 in SNORT/snort3 from snort2lua_nap_merge to master
Squashed commit of the following:
commit
116a11685c1ba81921f808abf0a6af8fe5e4a48b
Author: Carter Waxman <cwaxman@cisco.com>
Date: Wed Jun 13 16:39:17 2018 -0400
snort2lua: merge multiple nap rules with the same id
Michael Altizer (mialtize) [Wed, 20 Jun 2018 13:49:18 +0000 (09:49 -0400)]
Merge pull request #1257 in SNORT/snort3 from passive_binder to master
Squashed commit of the following:
commit
3b7b3e7d59a842b64e7d338be21225f0d89d2594
Author: Michael Altizer <mialtize@cisco.com>
Date: Tue Jun 5 19:56:37 2018 -0400
binder: Refactor binder as a passive, event-driven inspector
Mike Stepanek (mstepane) [Tue, 19 Jun 2018 21:23:45 +0000 (17:23 -0400)]
Merge pull request #1277 in SNORT/snort3 from appid_httpMasterArrayUTest to master
Squashed commit of the following:
commit
e6f5071f76ae3c37f0f677bac2f6796f494a15d0
Author: Silviu Minut <sminut@cisco.com>
Date: Tue Jun 19 13:05:06 2018 -0400
appid: add appid_http_session_test to check that the order of the HttpFieldIds does not change.
Tom Peters (thopeter) [Tue, 19 Jun 2018 20:33:21 +0000 (16:33 -0400)]
Merge pull request #1278 in SNORT/snort3 from doc_appid_dev_notes to master
Squashed commit of the following:
commit
730a43286863944fab9e018298460b26f8a66efd
Author: davis mcpherson <davmcphe.cisco.com>
Date: Tue Jun 19 10:15:40 2018 -0400
appid: create developer notes document
Michael Altizer (mialtize) [Tue, 19 Jun 2018 20:31:13 +0000 (16:31 -0400)]
Merge pull request #1273 in SNORT/snort3 from snort2lua_missing to master
Squashed commit of the following:
commit
2e9ad79321cb410c9f5a04009aa7b678943086c8
Author: Carter Waxman <cwaxman@cisco.com>
Date: Thu Jun 14 13:01:06 2018 -0400
snort2lua: added missing keyword to nap parsing
Mike Stepanek (mstepane) [Tue, 19 Jun 2018 19:54:24 +0000 (15:54 -0400)]
Merge pull request #1264 in SNORT/snort3 from refactor_detector_init to master
Squashed commit of the following:
commit
8a59f6a1231548b5b614aebf2947dc87856b5564
Author: deramada <deramada@cisco.com>
Date: Mon May 28 21:21:11 2018 -0400
appid: refactor detector initialization
Mike Stepanek (mstepane) [Tue, 19 Jun 2018 12:04:26 +0000 (08:04 -0400)]
Merge pull request #1274 in SNORT/snort3 from appid_perf_api to master
Squashed commit of the following:
commit
59ecfc23ea247feb5e22bf84138dac8ac68a8573
Author: Shravan Rangaraju <shrarang@cisco.com>
Date: Wed Jun 13 23:34:05 2018 -0400
appid: Modify AppId APIs to improve firewall performance
Tom Peters (thopeter) [Mon, 18 Jun 2018 19:37:21 +0000 (15:37 -0400)]
Merge pull request #1271 in SNORT/snort3 from binder_vars to master
Squashed commit of the following:
commit
7700bfd78c912c84f00f420e8a38f2cf483ebc42
Author: mdagon <mdagon@cisco.com>
Date: Wed Jun 13 09:39:07 2018 -0400
sfip: if ips_policy doesn't exist, allow for ipvar parsing without vartable
The use case: binder using targets in inspection_policy
Mike Stepanek (mstepane) [Mon, 18 Jun 2018 18:40:04 +0000 (14:40 -0400)]
Merge pull request #1272 in SNORT/snort3 from appid_httpMetaArray to master
Squashed commit of the following:
commit
8cf36b098955d12fed86df29ff29c654be8249f9
Author: Silviu Minut <sminut@cisco.com>
Date: Wed Jun 13 18:33:15 2018 -0400
appid: consolidate http metadata by removing the string pointers and keeping an array of pointers and offsets.
appid: add convenience get_cfield function returning a char* rather than string*
appid: add back get_xff_addr(), which was mistakenly removed.
appid: use the convenince get_cfield function
appid: code clean-up
appid: reduce the size of the meta_offset array and add comments to the HttpFieldIds enum.
appid: nit pick fixes and temporary static friend function inside the AppIdHttpSession class.
appid: revert the static friend experiment and make the meta_offset array protected in AppIdHttpSession, with public set/get functions.
appid: uncrustify
appid: provide separate get/set functions for offsets, do away with MAX_PATTERN_TYPE and rename MAX_HTTP_FIELD_ID to NUM_HTTP_FIELDS
appid: uncrustify appid_http_session.h
commit
ef1aedfc90c2e25db192f5ead615f9d36f6c9757
Author: Silviu Minut <sminut@cisco.com>
Date: Fri Jun 8 23:04:48 2018 -0400
appid: remove http_fields array from AppIdHttpSession
appid: consolidate http metadata in appid by removing the http_fields array from http session. Needs clean-up.
appid: code clean-up for removing duplicate http metadata and unit test fix.
appid: clean-up after rebase to master
appid: remove commented out http_fields array
appid: do not delete metadata string pointers in AppIdHttpSession::process_http_packet
Mike Stepanek (mstepane) [Mon, 18 Jun 2018 16:20:50 +0000 (12:20 -0400)]
Merge pull request #1268 in SNORT/snort3 from cryptolib_appid_perf to master
Squashed commit of the following:
commit
05d313f13af0cb4c42de32f2367f0f660dda4811
Author: Devendra Dahiphale <ddahipha@cisco.com>
Date: Tue Jun 12 10:40:58 2018 -0400
appid: remove crypto_lib_mutex while parsing ssl certificate
Tom Peters (thopeter) [Tue, 12 Jun 2018 18:29:39 +0000 (14:29 -0400)]
Merge pull request #1260 in SNORT/snort3 from snort_namespace_sweep to master
Squashed commit of the following:
commit
dbcef856c2243ded126485e50515f964c2d61b48
Author: davis mcpherson <davmcphe.cisco.com>
Date: Fri Mar 16 06:55:42 2018 -0400
snort: wrap snort SO_PUBLIC symbols in the snort namespace
Tom Peters (thopeter) [Tue, 12 Jun 2018 17:47:47 +0000 (13:47 -0400)]
Merge pull request #1269 in SNORT/snort3 from doc_perfmon_dev to master
Squashed commit of the following:
commit
06564da5e68b0d8f495ade6692ef400ade61fe00
Author: Tom Peters <thopeter@cisco.com>
Date: Tue Jun 12 11:58:49 2018 -0400
perf_monitor: format error in dev_notes
Hui Cao (huica) [Tue, 12 Jun 2018 17:38:01 +0000 (13:38 -0400)]
Merge pull request #1261 in SNORT/snort3 from snort2lua-file_type to master
Squashed commit of the following:
commit
0c59049b4f003255aaaccda7177b3916c65574dc
Author: Victor Roemer (viroemer) <viroemer@cisco.com>
Date: Wed Jun 6 14:18:49 2018 -0400
snort2lua: translate file_type rule option
Mike Stepanek (mstepane) [Tue, 12 Jun 2018 17:18:38 +0000 (13:18 -0400)]
Merge pull request #1262 in SNORT/snort3 from decrypted_flow_debug to master
Squashed commit of the following:
commit
aa433636da1c056cc3ba6f8993304d54b67441f9
Author: Masud Hasan <mashasan@cisco.com>
Date: Fri Jun 8 12:31:40 2018 -0400
appid: Support for restart app detection for decrypted flow
Hui Cao (huica) [Tue, 12 Jun 2018 15:24:02 +0000 (11:24 -0400)]
Merge pull request #1266 in SNORT/snort3 from lua_reputation to master
Squashed commit of the following:
commit
00322d2d9412d59a146c3ec64ad81c9d2fb9fcee
Author: huica <huica@cisco.com>
Date: Mon Jun 11 09:42:13 2018 -0400
snort2lua: add conversion for shared memory
Tom Peters (thopeter) [Tue, 12 Jun 2018 14:42:38 +0000 (10:42 -0400)]
Merge pull request #1267 in SNORT/snort3 from doc_nhttp108 to master
Squashed commit of the following:
commit
09e07931f05d139f269ec4a39cc65e98762cbbdf
Author: Tom Peters <thopeter@cisco.com>
Date: Mon Jun 11 15:24:03 2018 -0400
http_inspect: URI normalization added to dev_notes
Tom Peters (thopeter) [Mon, 11 Jun 2018 18:58:04 +0000 (14:58 -0400)]
Merge pull request #1265 in SNORT/snort3 from nhttp107 to master
Squashed commit of the following:
commit
f75afd52d4ec9c58c50f08e3cee88fb70f92f94c
Author: Tom Peters <thopeter@cisco.com>
Date: Mon Jun 11 12:09:15 2018 -0400
http_inspect: bug fix and cleanup
Tom Peters (thopeter) [Mon, 11 Jun 2018 15:35:24 +0000 (11:35 -0400)]
Merge pull request #1263 in SNORT/snort3 from doc_restore to master
Squashed commit of the following:
commit
c8b73a78db1102536cddbf797e5ff4e73131c9a8
Author: Tom Peters <thopeter@cisco.com>
Date: Mon Jun 11 10:54:11 2018 -0400
Snort Manual: corrections to tutorial section
Mike Stepanek (mstepane) [Fri, 8 Jun 2018 14:52:02 +0000 (10:52 -0400)]
Merge pull request #1254 in SNORT/snort3 from appid_unknown3 to master
Squashed commit of the following:
commit
544e89030053a04dabdda61e1450eb3b45e8fbf0
Author: Silviu Minut <sminut@cisco.com>
Date: Fri Jun 8 00:06:18 2018 -0400
appid: fix broken appid_api_test.cc
commit
ed4b625f846006702c31afc768fd4892ad75dbbb
Author: Silviu Minut <sminut@cisco.com>
Date: Thu May 31 15:46:37 2018 -0400
appid: port appid unknown fixes from snort2
appid: attempt to fix bug when payload is set to UNKNOWN too early, even though navl would get it on the next packet.
appid: make the code compatible with the latest version of snort2.
Mike Stepanek (mstepane) [Thu, 7 Jun 2018 20:46:16 +0000 (16:46 -0400)]
Merge pull request #1251 in SNORT/snort3 from dev_appid_perf to master
Squashed commit of the following:
commit
23503725b7cce2d898cb558cfdce1bb6e5651b42
Author: Devendra Dahiphale <ddahipha@cisco.com>
Date: Thu Jun 7 13:17:08 2018 -0400
appid: performance - get app info flags only when app_id is changed & add getter/setter for tp_appid's
Mike Stepanek (mstepane) [Thu, 7 Jun 2018 18:53:46 +0000 (14:53 -0400)]
Merge pull request #1258 in SNORT/snort3 from remove_navl to master
Squashed commit of the following:
commit
b001641cf69e2e8ab728c6f8569d454b7e7f9d80
Author: Silviu Minut <sminut@cisco.com>
Date: Thu Jun 7 10:14:47 2018 -0400
appid: change some third party nomenclature.
Russ Combs (rucombs) [Wed, 6 Jun 2018 21:08:17 +0000 (17:08 -0400)]
Merge pull request #1256 in SNORT/snort3 from nhi_revert to master
Squashed commit of the following:
commit
c02aea0d16cf5721c43a144d8292273d54062ee3
Author: Tom Peters <thopeter@cisco.com>
Date: Tue Jun 5 18:11:04 2018 -0400
Revert "Merge pull request #1214 in SNORT/snort3 from nhttp102 to master"
This reverts commit
edbbf8836d4a1f62eccaec434f47d9264c4c2a19 .
commit
dd7f03f72b2e1a4c550626e11654e0563f73740d
Author: Tom Peters <thopeter@cisco.com>
Date: Tue Jun 5 18:09:36 2018 -0400
Revert "Merge pull request #1235 in SNORT/snort3 from nhttp104 to master"
This reverts commit
28e371878c3d1b03c6a71f652c1a1e4112e4121d .
Tom Peters (thopeter) [Tue, 5 Jun 2018 19:21:17 +0000 (15:21 -0400)]
Merge pull request #1255 in SNORT/snort3 from doc_known_problems to master
Squashed commit of the following:
commit
4b570699a3e28b3f61ca5efadfd93d5561e9a590
Author: Tom Peters <thopeter@cisco.com>
Date: Mon Jun 4 12:46:55 2018 -0400
snort_manual: known problems
Michael Altizer (mialtize) [Tue, 5 Jun 2018 16:36:09 +0000 (12:36 -0400)]
Merge pull request #1245 in SNORT/snort3 from policy_binder to master
Squashed commit of the following:
commit
15692b642c595cbe3f2e91b331223c48e122b80b
Author: Michael Altizer <mialtize@cisco.com>
Date: Fri Jun 1 12:44:01 2018 -0400
inspector: Rename ::update() to ::remove_inspector_binding() to better reflect what it does
commit
ee640980e85427fe26cc87ecd2da804d93f7c1e7
Author: Michael Altizer <mialtize@cisco.com>
Date: Tue May 22 16:02:39 2018 -0400
ips: Remove unused IPS module stats
commit
a87aa0b7ded6c2b3eab621884ab450477d5abeb9
Author: Michael Altizer <mialtize@cisco.com>
Date: Tue May 22 15:13:57 2018 -0400
appid: Fix format specifier warning
commit
7dbbc1cd3399b8bd233261e326b08e03ca15b8f1
Author: Michael Altizer <mialtize@cisco.com>
Date: Tue May 22 15:13:21 2018 -0400
policy: Export querying policies by user ID and setting runtime policies
commit
b3b61cb7148b80b5b96d4a5d6e60c3bd90e89021
Author: Michael Altizer <mialtize@cisco.com>
Date: Mon May 21 11:33:39 2018 -0400
packet_tracer: Report user policy IDs and add network policy
commit
5ca3c3f4f0f75db35a2d5145efff115894a4b160
Author: Michael Altizer <mialtize@cisco.com>
Date: Mon May 21 11:32:44 2018 -0400
policy: Add the ability to set network policy based on user-specified ID
commit
3143add070f30009d0b607bc8028030dc54acd83
Author: Michael Altizer <mialtize@cisco.com>
Date: Wed May 16 15:20:12 2018 -0400
binder: Make two passes at binder rules - one for policy IDs and then everything else
commit
5d9e9ada1e18636a06bc9c1598997b174b4e4121
Author: Michael Altizer <mialtize@cisco.com>
Date: Sat Apr 28 22:25:23 2018 -0400
profiler: Don't clobber max entry count when recursing
Mike Stepanek (mstepane) [Mon, 4 Jun 2018 20:44:55 +0000 (16:44 -0400)]
Merge pull request #1253 in SNORT/snort3 from appid_hi_disable to master
Squashed commit of the following:
commit
6eaf6c76a313da43797647ce7da186b9149bf427
Author: Shravan Rangaraju <shrarang@cisco.com>
Date: Mon Jun 4 18:36:28 2018 -0400
appid: fix unit test
commit
d694ad138044a70cf1bee66a3f264a0a9e004554
Author: Shravan Rangaraju <shrarang@cisco.com>
Date: Mon Jun 4 18:22:34 2018 -0400
appid: do not subscribe to HTTP inspector events if third party AppId is enabled
Mike Stepanek (mstepane) [Mon, 4 Jun 2018 17:23:23 +0000 (13:23 -0400)]
Merge pull request #1252 in SNORT/snort3 from single_lua_state to master
Squashed commit of the following:
commit
362352dfbed54bd82759ba661573705781e6ad3b
Author: Masud Hasan <mashasan@cisco.com>
Date: Wed May 30 14:11:13 2018 -0400
appid: Single lua-state per thread
Jonathan McDowell [Mon, 4 Jun 2018 14:41:41 +0000 (15:41 +0100)]
Scratch handlers for SnortState (#48)
Tom Peters (thopeter) [Fri, 1 Jun 2018 18:33:17 +0000 (14:33 -0400)]
Merge pull request #1247 in SNORT/snort3 from byte_test to master
Squashed commit of the following:
commit
f71ba02bd722320c4384a31b6a5215669327fab2
Author: mdagon <mdagon@cisco.com>
Date: Tue May 29 14:02:48 2018 -0400
byte_test: update operator parsing, remove dead code
Russ Combs (rucombs) [Fri, 1 Jun 2018 16:45:51 +0000 (12:45 -0400)]
Merge pull request #1249 in SNORT/snort3 from perf_tcp_checksum to master
Squashed commit of the following:
commit
d5fe88236b17cf464a65f68e5bad5b9451c43060
Author: davis mcpherson <davmcphe.cisco.com>
Date: Fri May 25 09:11:56 2018 -0400
decode: alternate checksum calculation to improve runtime performance
Michael Altizer (mialtize) [Wed, 30 May 2018 17:19:10 +0000 (13:19 -0400)]
Merge pull request #1243 in SNORT/snort3 from snort_fragbits to master
Squashed commit of the following:
commit
05748ac5ea77776efe6f84928ed7ba3a6bd710b9
Author: Cristian <candrone@cisco.com>
Date: Tue May 29 04:52:35 2018 -0400
ips_fragbits: Removed dead code
Tom Peters (thopeter) [Wed, 30 May 2018 16:24:20 +0000 (12:24 -0400)]
Merge pull request #1246 in SNORT/snort3 from doc_active to master
Squashed commit of the following:
commit
8515dd29d06c82042ac8756c9c0583c150952924
Author: Steven Baigal (sbaigal) <sbaigal@cisco.com>
Date: Tue May 29 13:53:38 2018 -0400
doc: added active response section to user manual
Michael Altizer (mialtize) [Wed, 30 May 2018 15:57:24 +0000 (11:57 -0400)]
Merge pull request #1241 in SNORT/snort3 from fix_snort2lua_crash to master
Squashed commit of the following:
commit
a28c2bb97c2431484abfc120dcabc03b7e8b1ebe
Author: Carter Waxman <cwaxman@cisco.com>
Date: Fri May 25 14:45:15 2018 -0400
snort2lua: don't try to index into empty lines
Mike Stepanek (mstepane) [Wed, 30 May 2018 00:21:10 +0000 (20:21 -0400)]
Merge pull request #1242 in SNORT/snort3 from TPLibHandler_Reload to master
Squashed commit of the following:
commit
4081128f8c8bae834226f42212d4a8442cafff3d
Author: Silviu Minut <sminut@cisco.com>
Date: Fri May 25 18:34:55 2018 -0400
appid: make TPLibHandler survive reloads without memory leaks.
Russ Combs (rucombs) [Tue, 29 May 2018 17:05:14 +0000 (13:05 -0400)]
Merge pull request #1244 in SNORT/snort3 from frag_grind to master
Squashed commit of the following:
commit
21b77fe121a66fa5cfe03e60800570b01889e512
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Tue May 29 05:24:01 2018 -0400
appid: signed/unsigned comparison
commit
badac208ccbc31ad5d9c3c82405f4dd77784e4ee
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Tue May 29 05:20:52 2018 -0400
file_id: fix uninitialized
commit
6815bd6d4c078c4031f4c41d26a1fc63bca92474
Author: Russ Combs <rucombs@cisco.com>
Date: Mon May 28 22:26:35 2018 -0400
snort: match delete[] with new[]
commit
4334a50c82232753e780354a2735961f0243a82f
Author: Russ Combs <rucombs@cisco.com>
Date: Mon May 28 22:25:26 2018 -0400
stream_ip: match delete[] with new[]; don't create zero length trackers
Michael Altizer (mialtize) [Tue, 29 May 2018 16:27:23 +0000 (12:27 -0400)]
Merge pull request #1240 in SNORT/snort3 from deploy_fix to master
Squashed commit of the following:
commit
6eeba268a7d70a97daa438f7eea12d526f7eae1f
Author: Carter Waxman <cwaxman@cisco.com>
Date: Fri May 25 11:52:36 2018 -0400
snort2lua: fixed nap ip parsing
Tom Peters (thopeter) [Fri, 25 May 2018 18:56:56 +0000 (14:56 -0400)]
Merge pull request #1239 in SNORT/snort3 from unit_fix to master
Squashed commit of the following:
commit
1b2a5a61f54118524a5a86a3ae83d55a1239c7d8
Author: Tom Peters <thopeter@cisco.com>
Date: Thu May 24 14:16:36 2018 -0400
tcp_connector_test: fixed version-sensitive build problem
Mike Stepanek (mstepane) [Thu, 24 May 2018 17:11:05 +0000 (13:11 -0400)]
Merge pull request #1238 in SNORT/snort3 from appid_reinspect to master
Squashed commit of the following:
commit
28c121dd6a20db3d8c31d888815b98d0d6cec4a7
Author: Shravan Rangaraju <shrarang@cisco.com>
Date: Thu May 24 18:46:03 2018 -0400
appid: clean only HTTP data on HTTP reinspect
Russ Combs (rucombs) [Wed, 23 May 2018 16:35:18 +0000 (12:35 -0400)]
Merge pull request #1237 in SNORT/snort3 from 245 to master
Squashed commit of the following:
commit
451b9ec52a96fefed5948c4b2d4f79173cd70496
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Wed May 23 09:06:15 2018 -0400
file_id: claim gid 146 to avoid legacy issues
commit
1fb59288145a0e883da710f5309ca5e475ca022f
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Wed May 23 08:59:40 2018 -0400
events: rename some gid and sid defines for consistency and clarity
commit
1c2156f4cbc7dc50556610b0c01a27b1efe3e662
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Wed May 23 02:16:33 2018 -0400
parser: gid value does not indicate rule type
commit
94f77577256b13b1d5edbf0fc21c7613d501f3b3
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Wed May 23 02:07:07 2018 -0400
parser: warn about text rules w/o detection options
commit
92969aba5c224525b877c69397b02956fbc7c708
Author: Russ Combs <rucombs@cisco.com>
Date: Mon May 21 10:25:03 2018 -0400
build 245
Mike Stepanek (mstepane) [Tue, 22 May 2018 19:50:20 +0000 (15:50 -0400)]
Merge pull request #1236 in SNORT/snort3 from appid_null_referer to master
Squashed commit of the following:
commit
6b32a70e6296eef35610e0789ba026e06d362f6c
Author: Shravan Rangaraju <shrarang@cisco.com>
Date: Tue May 22 19:31:32 2018 -0400
appid: create referer object only for non-null string
Tom Peters (thopeter) [Tue, 22 May 2018 16:26:48 +0000 (12:26 -0400)]
Merge pull request #1235 in SNORT/snort3 from nhttp104 to master
Squashed commit of the following:
commit
44c803bf62cf1138968a11e232dc4c9e854f4438
Author: Tom Peters <thopeter@cisco.com>
Date: Mon May 14 16:58:25 2018 -0400
http_inspect: performance enhancements for file processing beyond detection depth
Mike Stepanek (mstepane) [Mon, 21 May 2018 21:22:36 +0000 (17:22 -0400)]
Merge pull request #1226 in SNORT/snort3 from dev_appid_navl to master
Squashed commit of the following:
commit
9fb9da9f0f9cedf4db316c343141d5a569eb984b
Author: Devendra Dahiphale <ddahipha@cisco.com>
Date: Mon May 21 17:19:37 2018 -0400
appid: clean-up code for performance and implement is_tp_processing_done()
Mike Stepanek (mstepane) [Mon, 21 May 2018 20:54:09 +0000 (16:54 -0400)]
Merge pull request #1229 in SNORT/snort3 from appid_ooo to master
Squashed commit of the following:
commit
da9049260a50d2a5e08b7e024c7d05f53f18d609
Author: Shravan Rangaraju <shrarang@cisco.com>
Date: Tue May 15 09:54:57 2018 -0400
appid: do not inspect out-of-order flows, ignore zero-payload packets for client/service discovery
Tom Peters (thopeter) [Mon, 21 May 2018 20:41:14 +0000 (16:41 -0400)]
Merge pull request #1234 in SNORT/snort3 from add_trace to master
Squashed commit of the following:
commit
10d579e68a74a54c9f9ee56c2d772d8360e47e87
Author: mdagon <mdagon@cisco.com>
Date: Wed May 16 15:49:03 2018 -0400
trace: add traces for deleted debug messages
Russ Combs (rucombs) [Sat, 19 May 2018 12:53:16 +0000 (08:53 -0400)]
Merge pull request #1233 in SNORT/snort3 from crc_rulez to master
Squashed commit of the following:
commit
45bfbf7501f6c3e25e48dca9738f78707534ae92
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Fri May 18 02:40:32 2018 -0400
stream: assume gid 135 so those rules are handled as standard builtins
commit
6d676b7cea425f9593f9475afcdbede959cdb8e4
Author: Russ Combs <rucombs@cisco.com>
Date: Wed Apr 18 15:59:57 2018 -0400
parser: allow arbitrary rule gids
Michael Altizer (mialtize) [Fri, 18 May 2018 18:23:47 +0000 (14:23 -0400)]
Merge pull request #1227 in SNORT/snort3 from split_extra to master
Squashed commit of the following:
commit
eb04d43aaca0739edfac87d48bebcc5d2e94db05
Author: Steven Baigal (sbaigal) <sbaigal@cisco.com>
Date: Wed May 16 16:04:29 2018 -0400
extra: splitted extra out to snort3_extra repo
Mike Stepanek (mstepane) [Fri, 18 May 2018 18:05:21 +0000 (14:05 -0400)]
Merge pull request #1232 in SNORT/snort3 from tp_string to master
Squashed commit of the following:
commit
d67139c8ecec99df3709d8ebac14fe52dc63921e
Author: Silviu Minut <sminut@cisco.com>
Date: Fri May 18 12:51:52 2018 -0400
appid: fix tabs and indentation
commit
3325d54ba6e18978bd16920b4e9ff0b55e9d51ad
Author: Silviu Minut <sminut@cisco.com>
Date: Fri May 18 09:51:30 2018 -0400
appid: fix segfault due to dereferencing null host pointer.
commit
eec54e0b5ba244156fbed75aa3952eb5b2a23605
Author: Silviu Minut <sminut@cisco.com>
Date: Thu May 17 15:11:21 2018 -0400
appid: make tp_attribute_data more localized, so we only allocate/deallocate it if needed.
commit
3c426a26644146e5aa36216399b24e7ee8f2f1d0
Author: Silviu Minut <sminut@cisco.com>
Date: Thu May 17 11:40:14 2018 -0400
appid: fix memory leak in appid_http_event_test and warning in appid_http_session.cc
commit
ad2c55c8c6bcfc70fc3d32242803b40895070fcf
Author: Silviu Minut <sminut@cisco.com>
Date: Thu May 17 09:53:26 2018 -0400
appid: change metadata buffers from std::string to pointers, to avoid extra copying
Russ Combs (rucombs) [Thu, 17 May 2018 21:58:05 +0000 (17:58 -0400)]
Merge pull request #1230 in SNORT/snort3 from crc_tweaks to master
Squashed commit of the following:
commit
f06542a789e143090650d50ece49592473b234de
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Wed May 16 19:53:56 2018 -0400
tcp codec: count bad ip6 checksums correctly; thanks to j.mcdowell@titan-ic.com for reporting the issue
commit
b77ce8358d2516b52169f26520596a02f1d47b10
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Wed May 16 19:50:38 2018 -0400
snort: -r- will read packets from stdin
Michael Altizer (mialtize) [Wed, 16 May 2018 19:53:05 +0000 (15:53 -0400)]
Merge pull request #1228 in SNORT/snort3 from move_json_usock to master
Squashed commit of the following:
commit
5673495422fa4f6069b782fe7db46e186d98822d
Author: Steven Baigal (sbaigal) <sbaigal@cisco.com>
Date: Wed May 16 14:48:55 2018 -0400
alert: moved alert json. unixsock out from extra to snort3
Michael Altizer (mialtize) [Tue, 15 May 2018 23:29:45 +0000 (19:29 -0400)]
Merge pull request #1225 in SNORT/snort3 from perf3_edm to master
Squashed commit of the following:
commit
aa397e563a5b295d13dd6066f5b3ad77c356ad5b
Author: davis mcpherson <davmcphe.cisco.com>
Date: Tue May 15 14:30:53 2018 -0400
build: add cmake configure switches for NO_PROFILER, NO_MEM_MGR and DEEP_PROFILING
commit
ddd1d15bee1d9b8f3365b21a441a99384f37a612
Author: davis mcpherson <davmcphe.cisco.com>
Date: Fri May 11 16:07:45 2018 -0400
time: initialize Stopwatch::start_time member variable to 0 ticks when TSC clock is enabled
commit
c5ba39de5479567d034491625bfd5223d7cd7744
Author: davis mcpherson <davmcphe.cisco.com>
Date: Thu May 10 16:24:51 2018 -0400
build: propogate snort3 tsc build option to the extra build system
commit
9998d4b5c89c152600e9604e65948fbe0bc872aa
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Mon May 7 09:23:36 2018 -0400
codecs: add config option to detection to enable check and alert for address anomalies
commit
bf4f53352cfce206bf684c94f58bbe4f5d3de25b
Author: davis mcpherson <davmcphe.cisco.com>
Date: Wed May 9 16:27:31 2018 -0400
profiler: add deep profiler option
commit
8181046b436d9a5fd53c460d712a2c012cca9a40
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Mon May 7 19:45:18 2018 -0400
clock: use uint64_t with tsc clock instead of std::chrono for performance
Tom Peters (thopeter) [Tue, 15 May 2018 18:28:26 +0000 (14:28 -0400)]
Merge pull request #1224 in SNORT/snort3 from doc_trace to master
Squashed commit of the following:
commit
ebf90a7526091f3aae85bea6a62b757fa325160f
Author: mdagon <mdagon@cisco.com>
Date: Fri May 11 14:25:20 2018 -0400
doc: add doc for module trace
Hui Cao (huica) [Fri, 11 May 2018 15:24:04 +0000 (11:24 -0400)]
Merge pull request #1223 in SNORT/snort3 from fw_reject to master
Squashed commit of the following:
commit
96349ffb3568aafada99c26e8d2362f1eae26ae2
Author: huica <huica@cisco.com>
Date: Thu May 10 12:14:32 2018 -0400
snort2lua: enable reject action when firewall is enabled
Michael Altizer (mialtize) [Thu, 10 May 2018 16:29:31 +0000 (12:29 -0400)]
Merge pull request #1219 in SNORT/snort3 from add_capture_support to master
Squashed commit of the following:
commit
a5e4304b0fa51fb13d40af0f802ee8059d529edd
Author: shaslad <shaslad@cisco.com>
Date: Thu May 3 22:12:04 2018 -0400
packet_capture: adding analyzer command to initialize dump file
Michael Altizer (mialtize) [Thu, 10 May 2018 15:50:26 +0000 (11:50 -0400)]
Merge pull request #1222 in SNORT/snort3 from tcmalloc to master
Squashed commit of the following:
commit
0c6e8c28eefd2e9148562d5153288ee6b400d367
Author: Michael Altizer <mialtize@cisco.com>
Date: Wed May 9 17:48:58 2018 -0400
cmake: Add support for building with tcmalloc
Mike Stepanek (mstepane) [Tue, 8 May 2018 16:35:08 +0000 (12:35 -0400)]
Merge pull request #1216 in SNORT/snort3 from appid_tp_done to master
Squashed commit of the following:
commit
fbcbd2a12c8819ddd188da1a231d00d1d3fd668a
Author: Shravan Rangaraju <shrarang@cisco.com>
Date: Sun May 6 15:28:42 2018 -0400
appid: report when third party appid is done inspecting
Michael Altizer (mialtize) [Tue, 8 May 2018 15:07:54 +0000 (11:07 -0400)]
Merge pull request #1220 in SNORT/snort3 from snort_flags to master
Squashed commit of the following:
commit
0a24fb7ce8064554e70371c0b3553306700e0a55
Author: Cristian <candrone@cisco.com>
Date: Tue May 8 02:17:01 2018 -0400
ips_flags: remove dead code
Hui Cao (huica) [Mon, 7 May 2018 13:07:50 +0000 (09:07 -0400)]
Merge pull request #1206 in SNORT/snort3 from file_type_strings1 to master
Squashed commit of the following:
commit
a7e1439ed447f31a501cf3342b4d8f6ce67e70b0
Author: Steve Chew <stechew@cisco.com>
Date: Fri Apr 27 17:07:43 2018 -0400
file_type: Require strings instead of integers for types. Handle versions.
Hui Cao (huica) [Fri, 4 May 2018 20:46:13 +0000 (16:46 -0400)]
Merge pull request #1213 in SNORT/snort3 from rep_zone2 to master
Squashed commit of the following:
commit
86acc8a1a6e79cac222ca191ea6cb8fc4b796248
Author: huica <huica@cisco.com>
Date: Tue May 1 12:45:31 2018 -0400
repuation: remove the limit for zone id
Tom Peters (thopeter) [Fri, 4 May 2018 19:37:11 +0000 (15:37 -0400)]
Merge pull request #1159 in SNORT/snort3 from ~BRASTULT/snort3:dce_rpc_fix to master
Squashed commit of the following:
commit
59acba7355b3c521339e3ad4fff99c3117d3ce23
Author: Brandon Stultz <brastult@cisco.com>
Date: Mon Mar 26 18:29:32 2018 -0400
dce_rpc: pass frag_ptr by reference
commit
e3f33a7becfdf6da90f6bedc4371c8c597d34864
Author: Brandon Stultz <brastult@cisco.com>
Date: Fri Mar 23 15:50:22 2018 -0400
dce_rpc: fix parsing of dce/rpc ctx items
dce_co_process_ctx_id needs to update its caller's (DCE2_CoCtxReq)
frag_ptr as it is called in a loop in order to parse each dce/rpc
ctx item, otherwise it ends up parsing the same ctx item over
and over.
Tom Peters (thopeter) [Fri, 4 May 2018 19:34:46 +0000 (15:34 -0400)]
Merge pull request #1209 in SNORT/snort3 from gid120 to master
Squashed commit of the following:
commit
a3cda55bc04bd2bdb0a0724d1bbf77003cc96a9b
Author: mdagon <mdagon@cisco.com>
Date: Fri Apr 27 15:14:43 2018 -0400
snort2lua: conversion of gid 120 to 119
Tom Peters (thopeter) [Fri, 4 May 2018 19:30:54 +0000 (15:30 -0400)]
Merge pull request #1217 in SNORT/snort3 from debug_cleanup to master
Squashed commit of the following:
commit
04c562979db2c3f3f9ca25ddc649f0ba2a13419f
Author: Nihal Desai <nihdesai@cisco.com>
Date: Mon Apr 30 11:10:43 2018 -0400
Debug: Final debug messages cleanup, removal of macros from snort_debug
Mike Stepanek (mstepane) [Fri, 4 May 2018 16:24:13 +0000 (12:24 -0400)]
Merge pull request #1210 in SNORT/snort3 from navl_detect to master
Squashed commit of the following:
commit
33c2120c16de475e43fc35c8a537e26997b68ad8
Author: Devendra Dahiphale <ddahipha@cisco.com>
Date: Thu May 3 12:01:01 2018 -0400
appid: Fix bug where Service and Application ID's set to port number instead of service appid
commit
fa0a06c99fb6f9c7838a021db0e6a705672168ab
Author: Neha Neha <neneha@cisco.com>
Date: Tue May 1 10:25:35 2018 -0400
appid: Enable Third-Party Code for Packet Processing
Hui Cao (huica) [Fri, 4 May 2018 15:24:40 +0000 (11:24 -0400)]
Merge pull request #1211 in SNORT/snort3 from proto_ref_test to master
Squashed commit of the following:
commit
f13afb877073cc8851a9847bce9185a931c62bd5
Author: Victor Roemer <viroemer@cisco.com>
Date: Tue May 1 11:40:52 2018 -0400
target_based: 100% coverage on snort_protocols.cc
Mike Stepanek (mstepane) [Thu, 3 May 2018 22:53:27 +0000 (18:53 -0400)]
Merge pull request #1215 in SNORT/snort3 from appid_header_fix to master
Squashed commit of the following:
commit
1185586735fc9e4c516cf8beed416aad47e92f39
Author: deramada <deramada@cisco.com>
Date: Thu May 3 16:38:28 2018 -0400
appid: moved HttpFieldIds to appid_http_session
Tom Peters (thopeter) [Thu, 3 May 2018 17:53:13 +0000 (13:53 -0400)]
Merge pull request #1214 in SNORT/snort3 from nhttp102 to master
Squashed commit of the following:
commit
1c2f2fb934bf4dcd3005cda1321db866b1ce2c8f
Author: Tom Peters <thopeter@cisco.com>
Date: Mon Apr 16 16:15:12 2018 -0400
http_inspect: performance improvements
Mike Stepanek (mstepane) [Thu, 3 May 2018 17:28:20 +0000 (13:28 -0400)]
Merge pull request #1212 in SNORT/snort3 from appid_fixes to master
Squashed commit of the following:
commit
c983b7acc7ef641faa3a9d5e9ef255511b736f47
Author: deramada <deramada@cisco.com>
Date: Wed May 2 11:06:18 2018 -0400
appid: appid session unit test changes
commit
aa89c65543a5fb16db9c692a38778138fb5d901b
Author: deramada <deramada@cisco.com>
Date: Tue May 1 20:27:33 2018 -0400
appid: fixed http fields, referer payload and appid debug
Tom Peters (thopeter) [Wed, 2 May 2018 16:44:36 +0000 (12:44 -0400)]
Merge pull request #1199 in SNORT/snort3 from build_doc to master
Squashed commit of the following:
commit
be3d6e1db59c639ea26fb2ef0bd1f5f9afe1dd68
Author: mdagon <mdagon@cisco.com>
Date: Thu Apr 19 12:24:13 2018 -0400
build: add disable-docs to disable doc build
Mike Stepanek (mstepane) [Fri, 27 Apr 2018 19:55:23 +0000 (15:55 -0400)]
Merge pull request #1200 in SNORT/snort3 from navl_integration to master
Squashed commit of the following:
commit
1ce3e5786af7a18a4f23af459fa65ca4f14c0298
Author: Shravan Rangaraju <shrarang@cisco.com>
Date: Tue Apr 10 13:22:37 2018 -0400
appid: Third party integration support
Hui Cao (huica) [Fri, 27 Apr 2018 15:50:14 +0000 (11:50 -0400)]
Merge pull request #1203 in SNORT/snort3 from ProtocolReference_UT to master
Squashed commit of the following:
commit
346ade396bba9a3212e4e28e5d58bf8eab1bc735
Author: Victor Roemer <viroemer@cisco.com>
Date: Mon Apr 23 15:18:37 2018 -0400
target_based: unit tests for ProtocolReference class
Michael Altizer (mialtize) [Fri, 27 Apr 2018 15:14:38 +0000 (11:14 -0400)]
Merge pull request #1204 in SNORT/snort3 from navl_integration_configure_cmake to master
Squashed commit of the following:
commit
b1b3a387107cafc1958b70d4617cdc4d9fe5c8cd
Author: Silviu Minut <sminut@cisco.com>
Date: Fri Apr 27 10:55:11 2018 -0400
cmake: Add --enable-appid-third-party to configure_cmake.sh
Michael Altizer (mialtize) [Fri, 27 Apr 2018 14:11:19 +0000 (10:11 -0400)]
Merge pull request #1202 in SNORT/snort3 from freebsd_unit_test_fixes to master
Squashed commit of the following:
commit
f8b702f6deb629b05dd9c8c330a907d4cec57b9b
Author: shaslad <shaslad@cisco.com>
Date: Mon Apr 23 16:27:16 2018 -0400
build: Fix building unit tests on FreeBSD
Russ Combs (rucombs) [Wed, 25 Apr 2018 10:42:18 +0000 (06:42 -0400)]
Merge pull request #1201 in SNORT/snort3 from fixed_ip4_id to master
Squashed commit of the following:
commit
67252ea2a66b113a98f2c2c3239ef21d0713d30c
Author: Steven Baigal (sbaigal) <sbaigal@cisco.com>
Date: Tue Apr 24 14:41:38 2018 -0400
ip: replaced REG_TEST with -H option for ipv4 codec fixed seed
Hui Cao (huica) [Tue, 24 Apr 2018 17:56:52 +0000 (13:56 -0400)]
Merge pull request #1196 in SNORT/snort3 from reputation_zone to master
Squashed commit of the following:
commit
d4a3ca924d6fe39b3d3746d5c260a40a442a58ee
Author: huica <huica@cisco.com>
Date: Tue Apr 17 14:39:11 2018 -0400
reputation: add zone support
Michael Altizer (mialtize) [Tue, 24 Apr 2018 17:36:30 +0000 (13:36 -0400)]
Merge pull request #1180 in SNORT/snort3 from pkt_trace_command to master
Squashed commit of the following:
commit
4517f65d5f7c91db3200bce544d74f5de1673821
Author: shaslad <shaslad@cisco.com>
Date: Thu Mar 29 16:31:29 2018 -0400
packet_tracer: Modularize and add constraint-based shell enablement
ihacku [Mon, 23 Apr 2018 12:15:35 +0000 (20:15 +0800)]
Fix hyperscan doc link (#47)
Hui Cao (huica) [Fri, 20 Apr 2018 15:16:53 +0000 (11:16 -0400)]
Merge pull request #1190 in SNORT/snort3 from ftp_config_crash1 to master
Squashed commit of the following:
commit
f57b799a15eaad14dc512edc17cbb5da2a062209
Author: Steve Chew <stechew@cisco.com>
Date: Fri Apr 13 15:17:54 2018 -0400
Removed #if 0 and cleaned up string.
commit
cddc9d3760a7ac4ddfdccc44a5a8fb76121ed929
Author: Steve Chew <stechew@cisco.com>
Date: Fri Apr 13 14:10:33 2018 -0400
FtpServer: ftp_server requires that ftp_client and ftp_data be configured.
Tom Peters (thopeter) [Fri, 20 Apr 2018 15:04:47 +0000 (11:04 -0400)]
Merge pull request #1195 in SNORT/snort3 from debug_specific_dir to master
Squashed commit of the following:
commit
b7b5a6b70aaaa42cbaece10e785d2887d8ae2cd3
Author: Nihal Desai <nihdesai@cisco.com>
Date: Wed Apr 18 10:47:53 2018 -0400
debug: Remove debug messages from stream
Russ Combs (rucombs) [Wed, 18 Apr 2018 20:50:10 +0000 (16:50 -0400)]
Merge pull request #1198 in SNORT/snort3 from new_linux to master
Squashed commit of the following:
commit
93a6a410cd28d7b699c6d361c0b9482d1e694734
Author: Russ Combs <rucombs@cisco.com>
Date: Wed Apr 18 16:02:14 2018 -0400
steam_tcp: change singleton names from linux to new_linux to avoid spurious collisions with defines
Tom Peters (thopeter) [Wed, 18 Apr 2018 14:49:12 +0000 (10:49 -0400)]
Merge pull request #1194 in SNORT/snort3 from iconv_update to master
Squashed commit of the following:
commit
3fde28b58644da73423bc39563129f0cf8e6937f
Author: mdagon <mdagon@cisco.com>
Date: Tue Apr 17 15:13:30 2018 -0400
cmake: update for iconv
Tom Peters (thopeter) [Tue, 17 Apr 2018 19:41:05 +0000 (15:41 -0400)]
Merge pull request #1193 in SNORT/snort3 from nhttp101 to master
Squashed commit of the following:
commit
1e832db96b33cdc4cfe07c608faef6363262c590
Author: Tom Peters <thopeter@cisco.com>
Date: Tue Apr 17 14:04:48 2018 -0400
http_inspect: broken chunk performance improvement
Tom Peters (thopeter) [Tue, 17 Apr 2018 15:09:27 +0000 (11:09 -0400)]
Merge pull request #1188 in SNORT/snort3 from debug_specific_dir to master
Squashed commit of the following:
commit
4a9b44279dfa69da6c982b6101678224d5ea9216
Author: Nihal Desai <nihdesai@cisco.com>
Date: Wed Apr 11 16:33:56 2018 -0400
debug: Remove debug messages from detection and ips_options
Russ Combs (rucombs) [Tue, 17 Apr 2018 15:06:22 +0000 (11:06 -0400)]
Merge pull request #1189 in SNORT/snort3 from more_perf to master
Squashed commit of the following:
commit
ec308cd55b2e2e32ae4db3eb969b5fd38e7bb63f
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Mon Apr 16 16:49:26 2018 -0400
stream_tcp: switch to splitter max
commit
783c405bb721e48352db0a9e00946722c037231a
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Sat Apr 14 07:46:20 2018 -0400
spell check: fix memeory and indicies typos
commit
9aa84591ec853873196ca1bb5dc85fddd043081a
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Fri Apr 13 21:41:02 2018 -0400
build: fix various warnings:
file_decomp_pdf.cc: unreachable code return
decompress/file_decomp_pdf.cc: implicit fallthrough
stream.cc: warning: potential memory leaks
memory_manager.cc: dangling references
commit
f07b179baae636ec9be6307fe3bbb0295aeba387
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Thu Apr 12 09:27:50 2018 -0400
stream: be selective about flow creation for scans
commit
cdf528691f7aaeebb40a0b686ae46b7ff4651579
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Wed Apr 11 21:25:31 2018 -0400
http_inspect: patch around regression failures until a permanent solution is implemented
commit
7f57541f3e4d1c1aaf44807c358b858f9ede043c
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Fri Apr 6 17:17:56 2018 -0400
stream_tcp: tweak seglist cursor handling
commit
417992054439d839d3651fc5adf1b08d836cd1d4
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Wed Apr 11 07:41:35 2018 -0400
port_scan: include open ports with alerts instead of separate
commit
cf2e7d2ac36b3cf70ee8c7a55f932029755ddccb
Author: Russ Combs <rucombs@cisco.com>
Date: Sat Mar 31 12:41:53 2018 -0400
stream: remove usused ignore_any_rules from tcp and udp
commit
f5843c4d2ad6a439003afde1830c41900bc492bf
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Thu Apr 5 17:00:27 2018 -0400
stream: respect tcp require_3whs
commit
c9bb1eb11d3060515bc26e8a393a1c963f47ae9c
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Thu Apr 5 11:44:15 2018 -0400
stream: refactor flow control for new PktTypes
commit
c9c5d239de87e9aa45925fde906d842f3ad2c33d
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Tue Apr 10 11:12:06 2018 -0400
search_engine: revert default detect_raw_tcp to false
commit
f0556f01cf98bfd8fef7494177ae6b33fde52b38
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Thu Apr 5 09:57:27 2018 -0400
framework: remove bogus PktType for ARP and just use proto bits instead
commit
f84ee2cb693c94e243180b2f3a715cc564d2d329
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Thu Apr 5 09:31:53 2018 -0400
framework: align PktType and proto bits
commit
f1f54c0fd3188460b1cb2e203cfb3c4789ed8e8a
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Mon Apr 2 06:14:05 2018 -0400
memory: disable with -DNO_MEM_MGR
commit
6d070a4e8f17ae96f519cb833e356aaa7c3e6145
Author: Russ Combs (rucombs) <rucombs@cisco.com>
Date: Mon Apr 2 06:13:42 2018 -0400
profile: disable with -DNO_PROFILER
commit
a7ddf1395e9c9e69eb2b5d72077c40cb5e7aac19
Author: Russ Combs <rucombs@cisco.com>
Date: Sat Mar 31 13:04:24 2018 -0400
zhash: cleanup cruftiness
Russ Combs (rucombs) [Fri, 13 Apr 2018 15:42:18 +0000 (11:42 -0400)]
Merge pull request #1187 in SNORT/snort3 from stream_perf_optimization to master
Squashed commit of the following:
commit
aba95f74f79e56d0752ceab71a6da315596d0aad
Author: Russ Combs <rucombs@cisco.com>
Date: Fri Mar 30 17:09:05 2018 -0400
stream_tcp: refactor tcp normalizer and reassembler to eliminate dynamic heap allocations per flow
Mike Stepanek (mstepane) [Thu, 12 Apr 2018 18:01:15 +0000 (14:01 -0400)]
Merge pull request #1186 in SNORT/snort3 from service_disco_state to master
Squashed commit of the following:
commit
3719339c89b9ba9cfd56393da18a8895a3e6c290
Author: Masud Hasan <mashasan@cisco.com>
Date: Sat Apr 7 12:00:47 2018 -0400
appid: Fixing service discovery states
Tom Peters (thopeter) [Tue, 10 Apr 2018 17:22:37 +0000 (13:22 -0400)]
Merge pull request #1183 in SNORT/snort3 from appid_pegs to master
Squashed commit of the following:
commit
24afa26ce1178c47b2cd2f77c326d1a24babe00b
Author: mdagon <mdagon@cisco.com>
Date: Thu Apr 5 13:49:49 2018 -0400
appid: peg count / dynamic peg count update.
Split peg counts into the ones known at compile time and dynamic ones.
Update stats , module manager and module to support dumping dynamic stats.
Hui Cao (huica) [Tue, 10 Apr 2018 14:56:18 +0000 (10:56 -0400)]
Merge pull request #1185 in SNORT/snort3 from snort2lua_ftp_data3 to master
Squashed commit of the following:
commit
f1b8fe018aba47bc898ffbc1560eccad2fcec361
Author: Steve Chew <stechew@cisco.com>
Date: Tue Apr 10 09:39:16 2018 -0400
Snort2lua: Add ftp_data to multiple files when needed, once per file.
Hui Cao (huica) [Tue, 10 Apr 2018 12:59:19 +0000 (08:59 -0400)]
Merge pull request #1181 in SNORT/snort3 from send_reset_on_pdu3 to master
Squashed commit of the following:
commit
8c7e839b8c0f2b9abb85cc45b8ec0ce86b1759e0
Author: Steve Chew <stechew@cisco.com>
Date: Thu Apr 5 14:50:47 2018 -0400
Reset: Always queue reject and test packet type in RejectAction::exec.
Michael Altizer (mialtize) [Mon, 9 Apr 2018 21:20:56 +0000 (17:20 -0400)]
Merge pull request #1179 in SNORT/snort3 from snort2lua_ftp_data to master
Squashed commit of the following:
commit
01e173c6ecc9756cde2ec63f078d769c4e9ff772
Author: Steve Chew <stechew@cisco.com>
Date: Wed Apr 4 01:56:22 2018 -0400
Snort2lua: Translate ftp_server relative to default configurations.
Tom Peters (thopeter) [Fri, 6 Apr 2018 19:09:30 +0000 (15:09 -0400)]
Merge pull request #1174 in SNORT/snort3 from debug_network_inspectors to master
Squashed commit of the following:
commit
78f5d5bf7d36f4da2a9382c7db6bc65210a7a41f
Author: Nihal Desai <nihdesai@cisco.com>
Date: Mon Apr 2 16:59:22 2018 -0400
debug: Remove debug messages from appid, arp_spoof, and perf_monitor
Tom Peters (thopeter) [Fri, 6 Apr 2018 19:05:42 +0000 (15:05 -0400)]
Merge pull request #1178 in SNORT/snort3 from reload_ips_actions to master
Squashed commit of the following:
commit
6d659feda07dd5071cb3035d55ad61136d2faea8
Author: Steven Baigal <sbaigal@cisco.com>
Date: Fri Mar 30 11:27:47 2018 -0400
reload: enabled reloading ips_actions
added parse error check for reloading
projects / thirdparty / snort3.git / log
