aiden
/
suricata
mirror of https://github.com/OISF/suricata
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
13,993 Commits
7 Branches
155 Tags
192 MiB
master
main-7.0.x
master-6.0.x
master-5.0.x
master-4.1.x
master-4.0.x
master-3.2.x
suricata-7.0.8
suricata-7.0.7
suricata-7.0.6
suricata-6.0.20
suricata-7.0.5
suricata-6.0.19
suricata-6.0.18
suricata-7.0.4
suricata-6.0.17
suricata-7.0.3
suricata-6.0.16
suricata-7.0.2
suricata-6.0.15
suricata-7.0.1
suricata-6.0.14
suricata-7.0.0
suricata-7.0.0-rc2
suricata-6.0.13
suricata-6.0.12
suricata-6.0.11
suricata-7.0.0-rc1
suricata-6.0.10
suricata-6.0.9
suricata-7.0.0-beta1
suricata-6.0.8
suricata-6.0.7
suricata-6.0.6
suricata-5.0.10
suricata-6.0.5
suricata-5.0.9
suricata-6.0.4
suricata-5.0.8
suricata-6.0.3
suricata-5.0.7
suricata-6.0.2
suricata-5.0.6
suricata-6.0.1
suricata-5.0.5
suricata-4.1.10
suricata-4.1.9
suricata-5.0.4
suricata-6.0.0
suricata-6.0.0-rc1
suricata-6.0.0-beta1
suricata-5.0.3
suricata-4.1.8
suricata-4.1.7
suricata-5.0.2
suricata-4.1.6
suricata-5.0.1
suricata-5.0.0
suricata-5.0.0-rc1
suricata-4.1.5
suricata-5.0.0-beta1
suricata-4.1.4
suricata-4.1.3
suricata-4.0.7
suricata-4.1.2
suricata-4.1.1
suricata-4.1.0
suricata-4.0.6
suricata-4.1.0-rc2
suricata-4.1.0-rc1
suricata-4.0.5
suricata-4.1.0-beta1
suricata-4.0.4
suricata-4.0.3
suricata-4.0.2
suricata-3.2.5
suricata-4.0.1
suricata-3.2.4
suricata-4.0.0
suricata-4.0.0-rc2
suricata-3.2.3
suricata-4.0.0-rc1
suricata-4.0.0-beta1
suricata-3.2.2
suricata-3.1.4
suricata-3.2.1
suricata-3.2
suricata-3.2RC1
suricata-3.1.3
suricata-3.2beta1
suricata-3.1.2
suricata-3.1.1
suricata-3.1
suricata-3.0.2
suricata-3.1RC1
suricata-3.0.1
suricata-3.0.1RC1
suricata-3.0
suricata-2.0.11
suricata-3.0RC3
suricata-3.0RC2
suricata-3.0RC1
suricata-2.0.10
suricata-2.0.9
suricata-2.1beta4
suricata-2.0.8
suricata-2.0.7
suricata-2.1beta3
suricata-2.0.6
suricata-2.0.5
suricata-2.1beta2
suricata-2.0.4
suricata-2.1beta1
suricata-2.0.3
suricata-2.0.2
suricata-2.0.1
suricata-2.0.1rc1
suricata-2.0
suricata-2.0rc3
suricata-2.0rc2
suricata-2.0rc1
suricata-2.0beta2
suricata-1.4.7
suricata-1.4.6
suricata-1.4.5
suricata-2.0beta1
suricata-1.4.4
suricata-1.4.3
suricata-1.4.2
suricata-1.4.1
suricata-1.3.6
suricata-1.4
suricata-1.3.5
suricata-1.4rc1
suricata-1.3.4
suricata-1.4beta3
suricata-1.3.3
suricata-1.4beta2
suricata-1.3.2
suricata-1.4beta1
suricata-1.3.1
suricata-1.3
suricata-1.3rc1
suricata-1.3beta2
suricata-1.3beta1
suricata-1.2.1
suricata-1.2
suricata-1.2rc1
suricata-1.2beta1
suricata-1.1.1
suricata-0.8.2
suricata-1.0.0
suricata-1.0.1
suricata-1.0.2
suricata-1.0.3
suricata-1.0.4
suricata-1.0.5
suricata-1.1
suricata-1.1beta1
suricata-1.1beta2
suricata-1.1beta3
suricata-1.1rc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '8bebc2390d'
${ noResults }
Commit Graph

13993 Commits (8bebc2390dd64f42f148bfb3cff2581c0086a04d)
 

Author SHA1 Message Date
dependabot[bot] 8bebc2390d github-actions: bump ossf/scorecard-action from 2.1.1 to 2.1.2 
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.1.1 to 2.1.2.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](15c10fcf1c...e38b1902ae)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2 years ago
Jason Ish 48f0fd3c74 doc/userguide: update logging section for time formats 
- Update fragment of configuration file to match suricata.yaml with
  new default-log-format.
- Document new %z format specifier.
 2 years ago
Jason Ish 531c4336c9 logging: use ISO-like timestamp in file log 
Also update suricata.yaml to show this default, as updating the
"default-log-format" does not affect the file output.
 2 years ago
Jason Ish 761e7c2a63 suricata.yaml: update default-log-format current state 
The default-log-format has changed, reflect this in the suricata.yaml.
 2 years ago
Jason Ish bac8b8d26d logging: add new date format: YYYY-MM-DD HH:MM:SS 
Adds a new logging format character, %z that uses a more standard time
format of "YYYY-MM-DD HH:MM:SS".

Ticket #5764
 2 years ago
Philippe Antoine 9f21e2bcde src: remove unneeded double colon 
git grep ';;' src/ | grep -v for | cut -d: -f1 | uniq
| while read f; do sed -i -e 's/;;/;/' $f; done
 2 years ago
Philippe Antoine cb89192ec3 smb: fix typo in comment 2 years ago
Philippe Antoine 0dfaf2802f test: remove one duplicate line 2 years ago
Philippe Antoine 27d2bce1a1 flow: complete stats for app_layer protocol counters 
In the case of a gap, or in the case of a flow where one side
is recognized, but the other is not before the end, we still
increase the counters to have consistency between

jq 'select(.event_type=="flow" and .app_proto=="ftp") | .app_proto'  log/eve.json | wc -l
jq 'select(.event_type=="stats") | .stats."app_layer".flow.ftp' log/eve.json

Ticket: #5769
 2 years ago
Haleema Khan cfcb7df9dc mqtt: rustfmt parser.rs 2 years ago
Haleema Khan 23acb89653 mqtt: add unittests for nom7 parsers 
Ticket: #5742
 2 years ago
dependabot[bot] ad7baad4a0 github-actions: bump actions/download-artifact from 3.0.1 to 3.0.2 
Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 3.0.1 to 3.0.2.
- [Release notes](https://github.com/actions/download-artifact/releases)
- [Commits](9782bd6a98...9bc31d5ccc)

---
updated-dependencies:
- dependency-name: actions/download-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2 years ago
dependabot[bot] 87420c8083 github-actions: bump actions/upload-artifact from 3.1.1 to 3.1.2 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3.1.1 to 3.1.2.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](83fd05a356...0b7f8abb15)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2 years ago
dependabot[bot] c091e65662 github-actions: bump actions/checkout from 3.2.0 to 3.3.0 
Bumps [actions/checkout](https://github.com/actions/checkout) from 3.2.0 to 3.3.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v3.2.0...v3.3.0)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2 years ago
Philippe Antoine fff4475d91 stream: fix memory leak when failing to insert segment 
As introduced by commit f848e34bcc

DoInsertSegment can now return `-EINVAL` and there was no
generic handling of error values to return the tcp segment
to its pool.

Ticket: #5777
 2 years ago
Jeff Lucovsky e15c9451f2 log/stats: Ensure output exists for the stats thread 
Issue: 5198

This commit ensures that a log output destination exists for the stats
thread.
 2 years ago
Jeff Lucovsky 018ea2625f log: Use hash table for slot maintenance 
Issue: 5198

This commit modifies the threaded logging support to use the hash table
for handling thread/slot mappings. As a result, it's no longer necessary
to provide the thread id when ensuring the log output exists.
 2 years ago
Jeff Lucovsky f06aabc32a log: Add hash table for thread/slot mappings 
Issue: 5198

This commit adds a hash table to manage thread id to slot mappings. This
ensures that each thread will have its own slot (file output device)
 2 years ago
Juliana Fajardini 4c7ca2c367 devguide/install: add note about ubuntu version 
We want to make it clear with which system the instructions for
installing from were tested with.
 2 years ago
Haleema Khan cdc5ccd7f7 rfb: rustfmt parser.rs 2 years ago
Haleema Khan b95d7efbd0 rfb: add unittests for nom7 parsers 
Task: #5741
 2 years ago
Philippe Antoine 3979acb5ed smb: set event for ntlmssp unusual order 2 years ago
Philippe Antoine e41c01a483 smb: rustfmt ntlmssp_records.rs 2 years ago
Philippe Antoine 1db8685848 smb/ntlmssp: parse fields independently of order 
Instead of relying on the usual ordering...

Ticket: #5258
 2 years ago
dependabot[bot] fc177754d1 github-actions: bump ossf/scorecard-action from 2.0.6 to 2.1.1 
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.0.6 to 2.1.1.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](99c53751e0...15c10fcf1c)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2 years ago
Jeff Lucovsky dfcb429524 detect/cert: Use client side certs 
Issue: 5516

This commit modifies the detect logic to choose the certificate based on
the flow direction -- to server or to client.
 2 years ago
Jason Ish ae192ebae7 rust: sync log levels with C 2 years ago
Juliana Fajardini 377885f420 exception-policies: fix typos 2 years ago
Shivani Bhardwaj 21edf136a5 scripts: fix app-layer-protos.c setup 
After the changes in the script in 05e16820de, the file
app-layer-protos.c was to be modified properly iff it was left unformatted.
However, the file was also formatted as a part of the same commit making
the lines split which broke the output of the script. Fix that by
looking for another pattern and changing the lines following that.
 2 years ago
Victor Julien 23eeba3e35 app/protos: reformat string to proto 2 years ago
Victor Julien 4f6d388740 app-layer: check name vs proto mapping in registration 2 years ago
Victor Julien 0ff88c0315 netmap/runmode: minor code cleanup 2 years ago
Victor Julien 0e5af9e8a7 ioctl: output cleanups 2 years ago
Victor Julien 07008f0da2 netmap: output cleanups 2 years ago
Victor Julien 597601b294 dpdk: don't "fix" broken ips setting 2 years ago
Victor Julien 4e945351a5 dpdk: output cleanups 2 years ago
Victor Julien 7196257f68 nfq: minor error message improvement 2 years ago
Victor Julien a4eefd16b7 output: add %M format option for the log message body 
If %M is not specified, it is automatically appended to the format
string, to provide backwards compatibility.
 2 years ago
Victor Julien fa7760aa67 commandline: output cleanups 2 years ago
Victor Julien da5fa24ab2 pcap: output cleanups 2 years ago
Victor Julien 1db4dc4fcb output: default output format 
Add a separate default for file output.
 2 years ago
Victor Julien 5b58be6076 output: remove unused log levels 
Critical, alert and emergency were unused, so remove.
 2 years ago
Victor Julien 8a3c8984b4 output: print detect-engine as detect 2 years ago
Victor Julien 199e444498 output/capture: group source and runmode 
So outputs from runmode-af-packet and source-af-packet both will
show 'af-packet' as the module.
 2 years ago
Victor Julien 1b755653c0 output: add %D for compact log level 2 years ago
Jeff Lucovsky 2c9c18a9d0 log/json: Convert log output to use JsonBuilder 
This commit converts the file logging logic to use JsonBuilder instead
of libjansson.
 2 years ago
Jeff Lucovsky e7c2298203 config: Clarify when log format can be overridden 2 years ago
Jeff Lucovsky 3a37cf4507 log: Use SCCalloc instead of alloc/clear 2 years ago
Jeff Lucovsky f8474344cd log: Add module and subsystem identifiers to log 
Issue: 2497

This changeset provides subsystem and module identifiers in the log when
the log format string contains "%S". By convention, the log format
surrounds "%S" with brackets.

The subsystem name is generally the same as the thread name. The module
name is derived from the source code module name and usually consists of
the first one or 2 segments of the name using the dash character as the
segment delimiter.
 2 years ago
Victor Julien 197aa010d6 unix-socket: minor output improvements 2 years ago