aiden
/
suricata
mirror of https://github.com/OISF/suricata
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
18,219 Commits
8 Branches
165 Tags
218 MiB
main
main-8.0.x
main-7.0.x
master-6.0.x
master-5.0.x
master-4.1.x
master-4.0.x
master-3.2.x
suricata-8.0.2
suricata-7.0.13
suricata-8.0.1
suricata-7.0.12
suricata-8.0.0
suricata-7.0.11
suricata-8.0.0-rc1
suricata-8.0.0-beta1
suricata-7.0.10
suricata-7.0.9
suricata-7.0.8
suricata-7.0.7
suricata-7.0.6
suricata-6.0.20
suricata-7.0.5
suricata-6.0.19
suricata-6.0.18
suricata-7.0.4
suricata-6.0.17
suricata-7.0.3
suricata-6.0.16
suricata-7.0.2
suricata-6.0.15
suricata-7.0.1
suricata-6.0.14
suricata-7.0.0
suricata-7.0.0-rc2
suricata-6.0.13
suricata-6.0.12
suricata-6.0.11
suricata-7.0.0-rc1
suricata-6.0.10
suricata-6.0.9
suricata-7.0.0-beta1
suricata-6.0.8
suricata-6.0.7
suricata-6.0.6
suricata-5.0.10
suricata-6.0.5
suricata-5.0.9
suricata-6.0.4
suricata-5.0.8
suricata-6.0.3
suricata-5.0.7
suricata-6.0.2
suricata-5.0.6
suricata-6.0.1
suricata-5.0.5
suricata-4.1.10
suricata-4.1.9
suricata-5.0.4
suricata-6.0.0
suricata-6.0.0-rc1
suricata-6.0.0-beta1
suricata-5.0.3
suricata-4.1.8
suricata-4.1.7
suricata-5.0.2
suricata-4.1.6
suricata-5.0.1
suricata-5.0.0
suricata-5.0.0-rc1
suricata-4.1.5
suricata-5.0.0-beta1
suricata-4.1.4
suricata-4.1.3
suricata-4.0.7
suricata-4.1.2
suricata-4.1.1
suricata-4.1.0
suricata-4.0.6
suricata-4.1.0-rc2
suricata-4.1.0-rc1
suricata-4.0.5
suricata-4.1.0-beta1
suricata-4.0.4
suricata-4.0.3
suricata-4.0.2
suricata-3.2.5
suricata-4.0.1
suricata-3.2.4
suricata-4.0.0
suricata-4.0.0-rc2
suricata-3.2.3
suricata-4.0.0-rc1
suricata-4.0.0-beta1
suricata-3.2.2
suricata-3.1.4
suricata-3.2.1
suricata-3.2
suricata-3.2RC1
suricata-3.1.3
suricata-3.2beta1
suricata-3.1.2
suricata-3.1.1
suricata-3.1
suricata-3.0.2
suricata-3.1RC1
suricata-3.0.1
suricata-3.0.1RC1
suricata-3.0
suricata-2.0.11
suricata-3.0RC3
suricata-3.0RC2
suricata-3.0RC1
suricata-2.0.10
suricata-2.0.9
suricata-2.1beta4
suricata-2.0.8
suricata-2.0.7
suricata-2.1beta3
suricata-2.0.6
suricata-2.0.5
suricata-2.1beta2
suricata-2.0.4
suricata-2.1beta1
suricata-2.0.3
suricata-2.0.2
suricata-2.0.1
suricata-2.0.1rc1
suricata-2.0
suricata-2.0rc3
suricata-2.0rc2
suricata-2.0rc1
suricata-2.0beta2
suricata-1.4.7
suricata-1.4.6
suricata-1.4.5
suricata-2.0beta1
suricata-1.4.4
suricata-1.4.3
suricata-1.4.2
suricata-1.4.1
suricata-1.3.6
suricata-1.4
suricata-1.3.5
suricata-1.4rc1
suricata-1.3.4
suricata-1.4beta3
suricata-1.3.3
suricata-1.4beta2
suricata-1.3.2
suricata-1.4beta1
suricata-1.3.1
suricata-1.3
suricata-1.3rc1
suricata-1.3beta2
suricata-1.3beta1
suricata-1.2.1
suricata-1.2
suricata-1.2rc1
suricata-1.2beta1
suricata-1.1.1
suricata-0.8.2
suricata-1.0.0
suricata-1.0.1
suricata-1.0.2
suricata-1.0.3
suricata-1.0.4
suricata-1.0.5
suricata-1.1
suricata-1.1beta1
suricata-1.1beta2
suricata-1.1beta3
suricata-1.1rc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'b21c93d789'
${ noResults }
Commit Graph

2050 Commits (b21c93d7892b68498fd1194a1b7739709a589beb)

Author SHA1 Message Date
Jeff Lucovsky e1bf5cb1f3 nfs: Support EXCLUSIVE4_1 flag 
Issue: 8006

Support the EXCLUSIVE4_1 create mode added to NFS 4.1
 2 weeks ago
Philippe Antoine 79e66f76e6 detect: icmp_id is now a generic integer 
Ticket: 7889
 2 weeks ago
Philippe Antoine 85fa894425 detect: dnp3.func is now a generic integer 
Ticket: 7889
 2 weeks ago
Philippe Antoine f2b6540c52 htp: bound decompression 
Ticket: 7980

Usage of Vec<u8> instead of Box<u8> gave the ability to callers
to grow the buffer (indefinitely)
This was regressed in 16fee33368

Additionnaly, use rust WriteZero instead of WouldBlock as a more
fitting error when cursor is full, as that error kind is the
one tested by callers.
 2 weeks ago
Philippe Antoine c61f1cb6d0 detect/integers: rename index all1 to all 
And all to all_or_absent

Ticket: 7929
 2 weeks ago
Philippe Antoine eb5a2d646b detect/vlan: move vlan.id keyword to generic integer 
Ticket: 7929
 2 weeks ago
Li Heng c141c55bc6 snmp: can be set to detection-only 
Realloc alp_ctx.ctxs when a dynamic alproto is registered and
g_alproto_max increases. So dynamic alproto can be treated as
real/normal ones. And app-layer switch can be set to any value
of no/deteciton-only/yes.

Ticket: 8000
 2 weeks ago
Philippe Antoine 439f96dea7 rust: bindgen frames functions 
Ticket: 7667
 2 weeks ago
Philippe Antoine 92c7be1cb6 rust: bindgen SCSRepCatGetByShortname 
Ticket: 7667
 2 weeks ago
Philippe Antoine 7447651fa0 output/jsonbuilder: helper function SCJbSetPrintAsciiString 
To replace C PrintStringsToBuffer and avoid a stack alloc
+ copy

Ticket: 8004
 3 weeks ago
Li Heng 1106323ae1 rust/sip: delete redundant computing codes 
Delete call of is_alphanumeric where is_alphanumeric and
is_token_char are called together. Four places are modified.

Ticket: 8003
 3 weeks ago
Jason Ish 1efe70a234 rust/ike: convert to nom 8 
Ticket: #8050
 3 weeks ago
Jason Ish f368324e87 rust/mime: convert to nom 8 
Ticket: #8048
 3 weeks ago
Jason Ish c5ef615953 rust/mqtt: convert to nom 8 
Ticket: #8047
 3 weeks ago
Jason Ish 2289069f74 rust/websocket: convert to nom 8 
Ticket: #8046
 3 weeks ago
Jason Ish 9eeefd0684 rust/bt-dht: convert to nom 8 
Ticket: #8045
 3 weeks ago
Jason Ish 399f96b07d rust/rdp: convert to nom 8 
Ticket: #8044
 3 weeks ago
Jason Ish 7c70f74942 rust/telnet: convert to nom 8 
Ticket: #8043
 3 weeks ago
Jason Ish 2ff2eb1325 rust/ssh: convert to nom 8 
Ticket: #8042
 3 weeks ago
Jason Ish baa22287b8 rust/rfb: convert to nom 8 
Ticket: #8041
 3 weeks ago
Jason Ish dcfe247467 rust/pgsql: convert to nom 8 
Ticket: #8039
 3 weeks ago
Jason Ish d25286e77a rust/enip: convert to nom 8 
Ticket: #8038
 3 weeks ago
Jason Ish d74f8522ee rust/tftp: convert to nom 8 
Ticket: #8037
 3 weeks ago
Jason Ish 4b09622ebc rust/dhcp: convert to nom 8 
Ticket: #8036
 3 weeks ago
Philippe Antoine 772bd9ca53 rust: reduce visibility of detect_parse_uint_notending 
It is meant as an internal function

Also document the function
 3 weeks ago
Philippe Antoine b636dffd5b detect: urilen keyword fails on trailing junk 
Fails especailly on 1<>2 which looks like a range, but is invalid
as too small, and ended up being accepted as =1

Ticket: 8028
 3 weeks ago
Philippe Antoine 2e9027fd5a plugins: update SC_API_VERSION to 9 
So that plugins built for 8 will fail to load with 9 as there
were already breaking changes in the structures and functions
prototypes
 3 weeks ago
Jason Ish 16d313cb8b rust/applayertemplate: convert to nom 8 
Ticket: #8027
 3 weeks ago
Jason Ish f0f4d88119 rust/sip+sdp: update to nom 8 
Done together as there is a dependence of SDP by SIP.

Ticket: #8025
 3 weeks ago
Jason Ish 58564a4b0e rust/ftp: update to nom 8 
Ticket: #8026
 3 weeks ago
Jason Ish 54cc97b78e rust/dns: convert to nom 8.0 
Ticket: #8024
 3 weeks ago
Jason Ish 16c42da57e rust: add nom8 as a dependency 
For the update from nom 7 to nom 8.
 3 weeks ago
Jason Ish 0990c9dbf6 rust: pin indexmap 
Newer indexmap, pulled in by serde_json requires Rust 1.82, so pin
pack to 2.11.4 which still works with Rust 1.75.
 1 month ago
Philippe Antoine dc7874b2ac rust: bindgen more http range functions used in http2 
Ticket: 7667
 1 month ago
Philippe Antoine 842352c190 rust: bindgen SCHttpRangeFreeBlock 
Ticket: 7667
 1 month ago
Philippe Antoine 93785ae357 rust: bindgen SCHTTP2MimicHttp1Request 
Ticket: 7667
 1 month ago
Philippe Antoine a1613fecb4 detect: tcp.flags rejects non-sensical values 
ignored flags are only meaningful for equal mode
 1 month ago
Philippe Antoine 31e9cb55be detect: tcp.flags unit tests improvements 
Tests better the ignored flags functionality.
This functionality is only used at detection for default mode,
it is not used for any, plus or not mode.

So, have unit tests about igored flags with default mode with
both matching and non matching cases
 1 month ago
Philippe Antoine d8cb00e795 detect/tcp: make tcp.flags a generic integer with bitflags 
Ticket: 6724

Allows to use numerical values for example

Also fixes some unit tests that were returning 1 after goto error
FlagsTestParse05 especially took this path as
de->ignored_flags != (TH_SYN|TH_RST) was false
we had de->ignored_flags == 0xff ^ (TH_SYN|TH_RST)
And then, we had a match, instead of what the not-run code
was supposing.
 1 month ago
Philippe Antoine 1f9236a6d8 detect/ipv4: make fragbits a generic uint16 bitflags keyword 
Ticket: 6724

Allows to use numerical values
 1 month ago
Philippe Antoine 633180c93f detect/integers: generalize support for bitflags modifier 
Ticket: 6724

Allows sugar syntax for bitflags keywords.
While the expressivity does not increase, because we could already
use numerial values with all generic integer modes, this modifier
prefix is used with the strings, and follows the syntax
that is already used for fragbits and tcp.flags keyword.
 1 month ago
Philippe Antoine f25194480c libhtp: fix newer clippy lints with newer MSRV 1 month ago
Jason Ish bc33bd49eb quic/crypto: remove use of GenericArray 
Its not needed, and gets rid of the deprecation warnings.
 1 month ago
Jason Ish bdfdf7ff33 rust: update deps with cargo-update 
Suppress deprecation warnings in quick/crypto.rs about GenericArray.
 1 month ago
Jason Ish 6fdf0d736b rust: update aes-gcm to 0.10.3 1 month ago
Jason Ish b9517de86e rust: update aes to 0.8.4 1 month ago
Philippe Antoine 4b69a31dc3 detect/integers: count argument for multi-integers 
Ticket: 7211

Allows to count the number of elements, without matching on
individual elements
 1 month ago
Philippe Antoine 3babd68af4 pop3: count retr_data into consumed 
for later AppLayerResult::incomplete

Fixes: acef961645 ("pop3: improve parsing")

https://issues.oss-fuzz.com/u/1/issues/451112373

Ticket: 7994
 1 month ago
Philippe Antoine 9a4a29e218 http2: fix parsing of goaway frames 
There was a last stream id before the error code
As per section 6.8 of RFC 7540

Ticket: 7991
 1 month ago
Philippe Antoine 7f0087f19a rust/detect: fix correct pointer type in SCDetectU32ArrayFree 1 month ago