suricata

Commit Graph

Author	SHA1	Message	Date
Victor Julien	ab1200fbd7	compiler: more strict compiler warnings Set flags by default: -Wmissing-prototypes -Wmissing-declarations -Wstrict-prototypes -Wwrite-strings -Wcast-align -Wbad-function-cast -Wformat-security -Wno-format-nonliteral -Wmissing-format-attribute -funsigned-char Fix minor compiler warnings for these new flags on gcc and clang.	8 years ago
Jason Ish	796dd5223b	tests: no longer necessary to provide successful return code 1 pass, 0 is fail.	9 years ago
Victor Julien	0d3f671b55	detect: constify mpm/detect funcs	9 years ago
Ken Steele	8f1d75039a	Enforce function coding standard Functions should be defined as: int foo(void) { } Rather than: int food(void) { } All functions where changed by a script to match this standard.	11 years ago
Anoop Saldanha	e8cd15c823	Support for feature #983 . Provide support for icmvp4 and icmpv6 as well. You can now use alert icmpv4 and alert icmpv6 as well, apart from the existing alert icmp, which created a rule that applied to both icmpv4 and icmpv6.	12 years ago
Anoop Saldanha	ac65784cbc	Fix coverity scan defect #1099714 . Sending back uninitialized variable in DetectParseProto().	12 years ago
Anoop Saldanha	6eb8f66f0a	alert ipv4 and alert ipv6 specified proto rules should be treated and PROTO_ANY just like how we treat alert ip rules.	12 years ago
Anoop Saldanha	6f8cfd999f	Allow detection ports for alproto to be specified via the conf file. To understand the option have a look at the option app-layer.protocols.tls.detection-ports	12 years ago
Eric Leblond	e176be6fcc	Use unlikely for error treatment. When handling error case on SCMallog, SCCalloc or SCStrdup we are in an unlikely case. This patch adds the unlikely() expression to indicate this to gcc. This patch has been obtained via coccinelle. The transformation is the following: @istested@ identifier x; statement S1; identifier func =~ "(SCMalloc\|SCStrdup\|SCCalloc)"; @@ x = func(...) ... when != x - if (x == NULL) S1 + if (unlikely(x == NULL)) S1	13 years ago
Eric Leblond	fd7b6db22d	sig: Add ipv6 and ipv4 to list of protocols With this patch it is possible to do: alert ipv6 any any -> any any or alert ip4 any any -> any any to match on IPv4 or IPv6 packets.	13 years ago
Victor Julien	073ce64786	Fix parsing of tcp-pkt and tcp-stream sigs, add unittest.	14 years ago
Anoop Saldanha	e682796d03	feature #414 - support listing supported keywords. Remove support for dummy keywords __address__, __proto__, __port__. Remove support for recursive keyword and all references to it	14 years ago
Victor Julien	c04f45ccb9	Add tcp-pkt and tcp-stream 'protocols' to force a signature to inspect only packet or stream data.	14 years ago
Victor Julien	140eb4fde8	Fix decode-event keyword parsing. Fix code that indicates a signature is decode-event only. Add 'pkthdr' protocol as an alias for any/ip to be used by decode-event signatures.	15 years ago
Eric Leblond	a823160384	detect: Add support for sctp option in rule 'sctp' can now be used as a keyword in signature. It is at the same level as the 'tcp' or 'udp' keywords.	15 years ago
Victor Julien	fc248ca7a1	Many small performance updates.	15 years ago
Victor Julien	d1ce1c502b	Fix -Wall -Werror compilation after unittests update.	15 years ago
Victor Julien	1071a53210	Fix unittests after ip_proto keyword change.	15 years ago
Victor Julien	37442a8a84	Prefilter signatures before fully scanning them.	15 years ago
Gerardo Iglesias Galvan	9f4fae5b1a	Fix inconsistent use of dynamic memory allocation	15 years ago
William Metcalf	ce01927515	Import of GPLv2 Header 050410	15 years ago
Pablo Rincon	25a3a5c6d8	Adding mem wrapper to debug runtime alloc()/free() functions. Fixing some memory leaks.	16 years ago
Victor Julien	c969294fef	Make sure icmp rules also apply to icmpv6	16 years ago
Victor Julien	ecf86f9c23	Rename to Suricata.	16 years ago
Victor Julien	2cfa284999	Fix app layer detect to actually work.	16 years ago
Victor Julien	f1f7df0766	First iteration of doing app layer detection.	16 years ago
Victor Julien	c5dd31868d	Small detect engine proto cleanups.	16 years ago
Victor Julien	7a7bb7a390	Get rid of global mpm_ctx.	16 years ago
Victor Julien	fbe87a3ad5	Bunch of mostly unittest related memleak fixes.	16 years ago
Gurvinder Singh	02fb39b913	detect-engine-proto unit tests and comments	16 years ago
Victor Julien	8c747380ae	Fixup ip_proto keyword.	16 years ago
Brian Rectanus	e28647032d	Add ip_proto support.	16 years ago
Anoop Saldanha	fbc4d11ed4	Some code refactoring	16 years ago
Breno Silva	c43319c337	Regular expression for UnitTests Signed-off-by: Brian Rectanus <brectanu@gmail.com>	16 years ago
Victor Julien	0d0ffb9963	Reorganize header inclusions.	16 years ago
Victor Julien	930aa4e038	Fix ip-only again: flowbit sigs were not handled correctly and tcp/udp sigs with ports set also were not.	16 years ago
Victor Julien	5df5b35e90	Put all globals in the detection engine ctx. Add HashList type, a hash that also stores the items ina list to it can be traversed. Many cleanups.	16 years ago
Victor Julien	3f7195454b	Big detection engine update.	16 years ago
Victor Julien	54ffe2053e	Large detection engine update.	16 years ago
Victor Julien	f3a94413db	Properly support 'alert ip' rules. Add support for handling ip only rules differently.	16 years ago

40 Commits (1d9f37a60e7fde720768f41e5680ee2e02b78ffc)