aiden
/
suricata
mirror of https://github.com/OISF/suricata
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
14,706 Commits
7 Branches
155 Tags
200 MiB
master
main-7.0.x
master-6.0.x
master-5.0.x
master-4.1.x
master-4.0.x
master-3.2.x
suricata-7.0.8
suricata-7.0.7
suricata-7.0.6
suricata-6.0.20
suricata-7.0.5
suricata-6.0.19
suricata-6.0.18
suricata-7.0.4
suricata-6.0.17
suricata-7.0.3
suricata-6.0.16
suricata-7.0.2
suricata-6.0.15
suricata-7.0.1
suricata-6.0.14
suricata-7.0.0
suricata-7.0.0-rc2
suricata-6.0.13
suricata-6.0.12
suricata-6.0.11
suricata-7.0.0-rc1
suricata-6.0.10
suricata-6.0.9
suricata-7.0.0-beta1
suricata-6.0.8
suricata-6.0.7
suricata-6.0.6
suricata-5.0.10
suricata-6.0.5
suricata-5.0.9
suricata-6.0.4
suricata-5.0.8
suricata-6.0.3
suricata-5.0.7
suricata-6.0.2
suricata-5.0.6
suricata-6.0.1
suricata-5.0.5
suricata-4.1.10
suricata-4.1.9
suricata-5.0.4
suricata-6.0.0
suricata-6.0.0-rc1
suricata-6.0.0-beta1
suricata-5.0.3
suricata-4.1.8
suricata-4.1.7
suricata-5.0.2
suricata-4.1.6
suricata-5.0.1
suricata-5.0.0
suricata-5.0.0-rc1
suricata-4.1.5
suricata-5.0.0-beta1
suricata-4.1.4
suricata-4.1.3
suricata-4.0.7
suricata-4.1.2
suricata-4.1.1
suricata-4.1.0
suricata-4.0.6
suricata-4.1.0-rc2
suricata-4.1.0-rc1
suricata-4.0.5
suricata-4.1.0-beta1
suricata-4.0.4
suricata-4.0.3
suricata-4.0.2
suricata-3.2.5
suricata-4.0.1
suricata-3.2.4
suricata-4.0.0
suricata-4.0.0-rc2
suricata-3.2.3
suricata-4.0.0-rc1
suricata-4.0.0-beta1
suricata-3.2.2
suricata-3.1.4
suricata-3.2.1
suricata-3.2
suricata-3.2RC1
suricata-3.1.3
suricata-3.2beta1
suricata-3.1.2
suricata-3.1.1
suricata-3.1
suricata-3.0.2
suricata-3.1RC1
suricata-3.0.1
suricata-3.0.1RC1
suricata-3.0
suricata-2.0.11
suricata-3.0RC3
suricata-3.0RC2
suricata-3.0RC1
suricata-2.0.10
suricata-2.0.9
suricata-2.1beta4
suricata-2.0.8
suricata-2.0.7
suricata-2.1beta3
suricata-2.0.6
suricata-2.0.5
suricata-2.1beta2
suricata-2.0.4
suricata-2.1beta1
suricata-2.0.3
suricata-2.0.2
suricata-2.0.1
suricata-2.0.1rc1
suricata-2.0
suricata-2.0rc3
suricata-2.0rc2
suricata-2.0rc1
suricata-2.0beta2
suricata-1.4.7
suricata-1.4.6
suricata-1.4.5
suricata-2.0beta1
suricata-1.4.4
suricata-1.4.3
suricata-1.4.2
suricata-1.4.1
suricata-1.3.6
suricata-1.4
suricata-1.3.5
suricata-1.4rc1
suricata-1.3.4
suricata-1.4beta3
suricata-1.3.3
suricata-1.4beta2
suricata-1.3.2
suricata-1.4beta1
suricata-1.3.1
suricata-1.3
suricata-1.3rc1
suricata-1.3beta2
suricata-1.3beta1
suricata-1.2.1
suricata-1.2
suricata-1.2rc1
suricata-1.2beta1
suricata-1.1.1
suricata-0.8.2
suricata-1.0.0
suricata-1.0.1
suricata-1.0.2
suricata-1.0.3
suricata-1.0.4
suricata-1.0.5
suricata-1.1
suricata-1.1beta1
suricata-1.1beta2
suricata-1.1beta3
suricata-1.1rc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'aee7838ce1'
${ noResults }
Commit Graph

14706 Commits (aee7838ce15c1368310686d43455f0d594134244)
 

Author SHA1 Message Date
Jeff Lucovsky 0ad6d4358f add to doc/pfring: Document additional cluster types 2 years ago
Jeff Lucovsky e26e7b4f0a gen: Typo correction 
This commit fixes various typos in the pf-ring source modules.

Issue: 5975
 2 years ago
Jeff Lucovsky 4f7a36ac2e config/pf-ring: Change default cluster type: cluster_flow 
This commit changes the default pf-ring cluster type to cluster-flow.
Round-robin clustering is not recommended for Suricata.

Issue: 5975
 2 years ago
Jeff Lucovsky b21a4ded6e config/pf-ring: Recognize and set add'l cluster types 
This commit extends the pf-ring config parser to recognize the
additional cluster types:
- cluster_inner_flow
- cluster_inner_flow_2_tuple
- cluster_inner_flow_4_tuple
- cluster_inner_flow_5_tuple

Issue: 5975
 2 years ago
Jeff Lucovsky 0ac3bee423 pf-ring: Add add'l cluster types 
This commit adds preprocessor values for additional pf-ring
cluster-types:
- CLUSTER_INNER_FLOW
- CLUSTER_INNER_FLOW_2_TUPLE
- CLUSTER_INNER_FLOW_4_TUPLE
- CLUSTER_INNER_FLOW_5_TUPLE

Issue: 5975
 2 years ago
Jeff Lucovsky 62f4049705 config/pfring: Document add'l pf-ring cluster types 
This commit adds additional cluster-types for use with the pf-ring
packet source.

Issue: 5975
 2 years ago
Jeff Lucovsky b1918168f9 doc/pfring: Document additional cluster types 
This commit adds brief discussion for additional cluster types for use
with the pf-ring packet source.

Newly added:
- cluster_inner_flow
- cluster_inner_flow_2_tuple
- cluster_inner_flow_4_tuple
- cluster_inner_flow_5_tuple

Issue: 5975
 2 years ago
Juliana Fajardini 1665f71a68 flow: make exc policy work w/ simulated flowmemcap 
Exception policy wouldn't be applied if we were in the context of a
simulated flow memcap hit.

Bug #5998
 2 years ago
Jason Ish b4f0d3c741 rust: update der-parser to 8.2.0 
Minimal modifications required on the Suricata side, mainly for fields
becoming private and needing an accessor instead.

Note: As the kerberos parser still depends on der-parser 6.0, we still
have to depend on that so it is depended on, but renamed to
der-parser6. There is not an udpated kerberos-parser yet that uses
der-parser 8.2.0.

Ticket: #5991
 2 years ago
Philippe Antoine 59734d16a1 detect: use http.connection to client 
Ticket: #5746
 2 years ago
Jason Ish 3d9fc3bf1d rust: update snmp-parser to 0.9.0 
Updating snmp-parser required directly depending on the asn1-rs crate
for the Oid type, as snmp-parser does not re-export this type anymore.

Ticket: #5992
 2 years ago
Jason Ish 0d6628c64e rust: update cargo.lock 
Update Cargo.lock, most importantly the Nom 5.1.3 update which will
prevent future breakage by Rustc.
 2 years ago
Victor Julien 0b15b73c9c stream: minor const cleanup 2 years ago
Victor Julien 5903ca624e stream: simplify raw stream progress catch up 
Don't use TCP window, but use last ACK instead.
 2 years ago
Victor Julien 62b998cc06 stream: clear SYN queue on state change 
Bug: #5907.
 2 years ago
Victor Julien cb66a1e636 github-ci: add padding check to scan-build 2 years ago
Victor Julien 47fe88b79b ftp: rearrange command struct to be more compact 
./app-layer-ftp.h:92:16: warning: Excessive padding in 'struct FtpCommand_' (11 padding bytes, where 3 is optimal). Optimal fields order: command_name, command, command_length, consider reordering the fields or adding explicit padding members [optin.performance.Padding]
typedef struct FtpCommand_ {
        ~~~~~~~^~~~~~~~~~~~~
 2 years ago
Victor Julien afd57dc845 detect: remove unused thread ctx members 2 years ago
Victor Julien 4f1d61169c detect: make DetectEngineCtx more compact 2 years ago
Victor Julien 0ff28a482b detect: remove unused group counters 2 years ago
Victor Julien 9f0bea5410 detect: remove DetectEngineCtx members 
Members were set but not checked.
 2 years ago
Victor Julien 9ce967da53 detect: remove unused field 2 years ago
Victor Julien 3480d57103 threading: reduce padding in affinity 2 years ago
Victor Julien d0d6ca4c6e github-ci: add more scan-build checks 
Explicitly disable:
security.insecureAPI.DeprecatedOrUnsafeBufferHandling
optin.performance.Padding
 2 years ago
Victor Julien 9586aed43b scan-build: fix potential 0 size allocation warnings 2 years ago
Victor Julien 0265c13550 src: fix extern max_pending_packets type 2 years ago
Victor Julien fb237e8de3 github-ci: add dpdk, nfqueue, nflog to scan-build 2 years ago
Victor Julien c1714294cb streaming: improve error handling 2 years ago
Victor Julien 59df740e85 output: work around scan-build fp 
runmodes.c:541:13: warning: Use of memory after it is freed [unix.Malloc]
        if (output->output_ctx != NULL && output->output_ctx->DeInit != NULL)
            ^~~~~~~~~~~~~~~~~~
1 warning generated.
 2 years ago
Victor Julien 0af599f5fa log/pcap: work around scan-build fp 
log-pcap.c:1008:24: warning: Use of memory after it is freed [unix.Malloc]
            if (remove(pf->filename) != 0) {
                       ^~~~~~~~~~~~
1 warning generated.
 2 years ago
Victor Julien fc000a6d81 af/xdp: fix memory leaks on thread init failure 
source-af-xdp.c:675:21: warning: Potential leak of memory pointed to by 'ptv' [unix.Malloc]
        SCReturnInt(TM_ECODE_FAILED);
                    ^~~~~~~~~~~~~~~
./util-debug.h:275:48: note: expanded from macro 'SCReturnInt'
 #define SCReturnInt(x)                  return x
                                                ^
1 warning generated.
 2 years ago
Victor Julien ea67a2edd2 dpdk: fix scan-build warnings 
runmode-dpdk.c:204:18: warning: Result of 'calloc' is converted to a pointer of type 'char *', which is incompatible with sizeof operand type 'ptrdiff_t' [unix.MallocSizeof]
    args->argv = SCCalloc(capacity, sizeof(ptrdiff_t)); // alloc array of pointers
                 ^~~~~~~~           ~~~~~~~~~~~~~~~~~
./util-mem.h:36:18: note: expanded from macro 'SCCalloc'
 #define SCCalloc calloc
                  ^~~~~~
runmode-dpdk.c:278:16: warning: Result of 'malloc' is converted to a pointer of type 'char *', which is incompatible with sizeof operand type 'char **' [unix.MallocSizeof]
    eal_argv = SCMalloc(args.argc * sizeof(args.argv));
               ^~~~~~~~             ~~~~~~~~~~~~~~~~~
./util-mem.h:35:18: note: expanded from macro 'SCMalloc'
 #define SCMalloc malloc
                  ^~~~~~
2 warnings generated.
 2 years ago
Victor Julien e717c2e0ec github-ci: remove debian 9 as it is EOL 2 years ago
Jason Ish 915f487a1c github-ci: update Fedora 36 cov build to Fedora 38 
As Fedora 36 will be EOL in a month.
 2 years ago
Jason Ish bcbceb13f8 github-ci: update non-root build to Fedora 37 
As Fedora 36 will be EOL in a month.
 2 years ago
Jason Ish b0bc95d7c1 github-ci: add Fedora 38 builds 2 years ago
Jason Ish 3974142b41 github-ci: use cbindgen from packages on almalinux:9 
AlmaLinux 9 has cbindgen available from the package repositories.
 2 years ago
Jason Ish fa651606a0 github-ci: add Fedora 37 builders 2 years ago
Jason Ish 4105ac436e github-ci: add Fedora 36 gcc builder 
The existing Fedora 36 builder used clang. Add a gcc builder as it can
show different errors.
 2 years ago
Jason Ish 04fb0189a7 github-ci: replace Fedora no-jansson build with AlmaLinux 
Use AlmaLinux 9 for the no-jansson test instead of Fedora as it will
need to be updated much less.
 2 years ago
Jason Ish dd72a64c53 github-ci: remove Fedora 35 build: EOL 2 years ago
Jason Ish e32d01d01b github-ci: enable asan for Ubuntu debug-validation test 2 years ago
Jason Ish 497a6e7ab7 github-ci: fedora non-root: remove external script usage 
In the end, its not needed and makes it easier to copy and paste to a
new test.
 2 years ago
Jason Ish ec253e54cc github-ci: use bundle.sh script for libhtp, suricata-update 
Update the GitHub CI workflow to use the bundle.sh script to pull in
Suricata-Update and libhtp. This means one less place where defaults
are hardcoded and can get out of sync.

This also simplifies the variable names that can be embedded in a pull
request message to use the same variable names that bundle.sh
expects. Of note, this removes the _PR variant, instead a branch name
of "pr/N" can be used to specify a PR.
 2 years ago
Jason Ish 76c71a9120 bundle.sh: allow a PR # to be specified 
Allow pull requests (and merge requests) to be specified by using a
branch name like "pr/111" or "mr/222". This allows CI to use this
script as well, instead of multiple variations of the same thing.

Additonally allow the destination directory to be overridden with the
DESTDIR environment variable.
 2 years ago
Victor Julien d8152b6f7e packet/queue: debug validation for pkt src 2 years ago
Victor Julien 0334eaf7fb eve/dnp3: remove noisy debug code 2 years ago
Jason Ish d2fb958e28 rust: fix clippy lint for assert 
Fix done automatically by clippy --fix
 2 years ago
Victor Julien 96c331c5d0 fuzz/predef_aware: set pkt_src 2 years ago
Victor Julien efeaa6e2c7 github: add scan-build workflow 
Add scan-build workflow that fails on any warning.

Exclude libhtp as there is still one open issue there.
 2 years ago