suricata

Commit Graph

Author	SHA1	Message	Date
Anoop Saldanha	526a782002	temporary fix for dcerpc so that we don't loop endlessly, till we cover all cases with fragged pdus	15 years ago
Anoop Saldanha	361cf14f50	fix endless loop. Change dce parser to accept ctx ids that always start with a ctx with a 0 ctx id	15 years ago
Anoop Saldanha	8c774a1e2a	fix 206. Keep a count of uuids that don't belong to the first frag. Change dce_iface to match against uuids based on any_frag setting	15 years ago
Anoop Saldanha	52bb4c0670	fix endless loop in dce parser. fix parsing error of secondaryaddrlen for bindack	15 years ago
Anoop Saldanha	cda1efff29	fix mem leak in tailq that holds dce uuids	15 years ago
Anoop Saldanha	154a48fada	parse fragmented dce rpc headers correctly. Also some other minor fixes	15 years ago
Anoop Saldanha	c7fdc5ebda	do not reset dce stub buffer, if we are dealing with fragmented pdus(holds good only for first frag request pdus)	15 years ago
Anoop Saldanha	73241fc86c	support fragmented puds in dce + unittest	15 years ago
Anoop Saldanha	3ae45e5bbc	fix indentation in DCERPCParser	15 years ago
Victor Julien	c62a3d995e	Fix signatures with trailing spaces being rejected by the regex. Add test.	15 years ago
Anoop Saldanha	60c770c434	make pcre respect discontinue_matching flag in content matching functions	15 years ago
Kirby Kuehl	e8ecc94d6a	fix multiple dcerpc fragments in one packet	15 years ago
Anoop Saldanha	ce4bc5a63b	some minor modifications to the b2g cuda tests	15 years ago
Victor Julien	c25921edf0	Add config output for new stream settings.	15 years ago
Anoop Saldanha	3a0dadc0f3	Fix seg fault while running cuda tests. Don't set the alarm while running unittests, inside cuda-packet-batcher.c. Will result in a seg while the sig handler for ALRM in invoked	15 years ago
Anoop Saldanha	3536ba7348	fix seg fault due to premature cleanup/double cleanup for byte(jump\|test), isdataat, on seeing no previous relative keywords	15 years ago
Pablo Rincon	c1486d7f2e	Fix bug 217 (segv on profiling summary if no rule was specified	15 years ago
Victor Julien	d1ce1c502b	Fix -Wall -Werror compilation after unittests update.	15 years ago
Pablo Rincon	0c3906a99b	Fix for bug 204 (signature ordering with flowbit priority)	15 years ago
Victor Julien	1071a53210	Fix unittests after ip_proto keyword change.	15 years ago
Pablo Rincon	70bda6506d	Fix for bug 180 (check proto specified at the IP hdr)	15 years ago
William	f7ab84ca83	PF_RING hang at exit fix	15 years ago
Victor Julien	1bd2d59253	Merge decode and stream threads in RunModeIdsPcapAuto like in the file runmode. Fix these runmodes not adhering to the cpu affinity setting if CUDA is compiled in.	15 years ago
Anoop Saldanha	ead29dc691	make detection engine use dce alstate(if present), on seeing smb traffic	15 years ago
Victor Julien	7acb97da9d	Use same mpm prepare procedure for uricontent as for normal content. More cleanups.	15 years ago
Victor Julien	9ba11dbfbd	Clean up detection engine mpm initialization phase.	15 years ago
Victor Julien	37ca07b687	Fix segv on loading signatures with unsupported combinations of pcre and the relative flag.	15 years ago
Victor Julien	0d008c8135	Change stateful detection engine to be able to start the stateful detection separate from other sigs. Fixes bugs #213 , #214 , #215 .	15 years ago
Victor Julien	05ae4f99d8	Kick out invalid signature with uricontent and flow:to_client or flow:from_server.	15 years ago
Victor Julien	a9e78871fe	Really fix bug 205 this time, repair a broken unittest.	15 years ago
Pablo Rincon	34bb107f2c	Fix for bug 207 (depth/offset not correctly updated on certain cases)	15 years ago
Victor Julien	ef27234959	Comment out broken SSLParserTest03 test.	15 years ago
Victor Julien	196e572daa	Make sure holding up to_client reassembly stops after the proto is detected or we're sure we'll never detect it. Fixes issues related to bug 205.	15 years ago
Victor Julien	689d05b10b	Add missing protocol check in the sig matching process. This prevents FP's such as the one reported in bug #209 .	15 years ago
Pablo Rincon	4c94a27b71	Fix bug 205 (at stream-tcp-reassemble)	15 years ago
Anoop Saldanha	b7a57c5210	fix setting the right value for parsed bytes in case of fragmented BIND dce PDUs	15 years ago
Anoop Saldanha	b94eaec7c2	implement relative pcre matching in detect-engine-(payload\|uri\|dcepayload).c. Also fix within/distance handling of RELATIVE_NEXT flag for uricontent	15 years ago
Anoop Saldanha	3a375aa43a	fix relative contents with a negated content for detect-engine-(uri\|dcepayload).c like how we did for detect-engine-payload.c	15 years ago
Anoop Saldanha	ae3148aded	fix false positives for a negated content case	15 years ago
Victor Julien	0219b767b8	Fix a content pattern matching bug related to signature grouping and mpm_ctx sharing. In certain conditions (signature combinations) the mpm_stream_ctx (the ctx that handles stream pattern scanning) wasn't properly setup.	15 years ago
Kirby Kuehl	18840bd96e	properly handle bytecount of 0	15 years ago
Victor Julien	875184a4ba	Cleanup suricata.yaml.	15 years ago
Gurvinder Singh	7577823cdf	support for stopping the evasion, which is caused by the use of TCP RST packets for linux based systems	15 years ago
Gurvinder Singh	f0928a4555	support for enforcing the depth until when the reassembly will be performed	15 years ago
Victor Julien	13045683ff	Reenable and fix AlpDetectTestSig5	15 years ago
Pablo Rincon	c6e090f72c	App layer proto specific sigs (use the app layer to match proto)	15 years ago
Victor Julien	102092a89c	Make signature address matching more cache efficient.	15 years ago
Victor Julien	1eec149f5e	Use Address structure in DetectAddress struct.	15 years ago
Victor Julien	66dee577d7	Force stream reassembly on streams where we didn't yet detect the protocol if the stream is closing.	15 years ago
Victor Julien	cbebc44fb2	Fix config file typo.	15 years ago

1 2 3 4 5 ...

1516 Commits (526a782002ad82f7d6e6dcc2766fce1124fdbdf1) All Branches Search

1516 Commits (526a782002ad82f7d6e6dcc2766fce1124fdbdf1)

All Branches