aiden
/
suricata
mirror of https://github.com/OISF/suricata
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
6,304 Commits
7 Branches
161 Tags
204 MiB
main-7.0.x
master
master-6.0.x
master-5.0.x
master-4.1.x
master-4.0.x
master-3.2.x
suricata-8.0.0
suricata-7.0.11
suricata-8.0.0-rc1
suricata-8.0.0-beta1
suricata-7.0.10
suricata-7.0.9
suricata-7.0.8
suricata-7.0.7
suricata-7.0.6
suricata-6.0.20
suricata-7.0.5
suricata-6.0.19
suricata-6.0.18
suricata-7.0.4
suricata-6.0.17
suricata-7.0.3
suricata-6.0.16
suricata-7.0.2
suricata-6.0.15
suricata-7.0.1
suricata-6.0.14
suricata-7.0.0
suricata-7.0.0-rc2
suricata-6.0.13
suricata-6.0.12
suricata-6.0.11
suricata-7.0.0-rc1
suricata-6.0.10
suricata-6.0.9
suricata-7.0.0-beta1
suricata-6.0.8
suricata-6.0.7
suricata-6.0.6
suricata-5.0.10
suricata-6.0.5
suricata-5.0.9
suricata-6.0.4
suricata-5.0.8
suricata-6.0.3
suricata-5.0.7
suricata-6.0.2
suricata-5.0.6
suricata-6.0.1
suricata-5.0.5
suricata-4.1.10
suricata-4.1.9
suricata-5.0.4
suricata-6.0.0
suricata-6.0.0-rc1
suricata-6.0.0-beta1
suricata-5.0.3
suricata-4.1.8
suricata-4.1.7
suricata-5.0.2
suricata-4.1.6
suricata-5.0.1
suricata-5.0.0
suricata-5.0.0-rc1
suricata-4.1.5
suricata-5.0.0-beta1
suricata-4.1.4
suricata-4.1.3
suricata-4.0.7
suricata-4.1.2
suricata-4.1.1
suricata-4.1.0
suricata-4.0.6
suricata-4.1.0-rc2
suricata-4.1.0-rc1
suricata-4.0.5
suricata-4.1.0-beta1
suricata-4.0.4
suricata-4.0.3
suricata-4.0.2
suricata-3.2.5
suricata-4.0.1
suricata-3.2.4
suricata-4.0.0
suricata-4.0.0-rc2
suricata-3.2.3
suricata-4.0.0-rc1
suricata-4.0.0-beta1
suricata-3.2.2
suricata-3.1.4
suricata-3.2.1
suricata-3.2
suricata-3.2RC1
suricata-3.1.3
suricata-3.2beta1
suricata-3.1.2
suricata-3.1.1
suricata-3.1
suricata-3.0.2
suricata-3.1RC1
suricata-3.0.1
suricata-3.0.1RC1
suricata-3.0
suricata-2.0.11
suricata-3.0RC3
suricata-3.0RC2
suricata-3.0RC1
suricata-2.0.10
suricata-2.0.9
suricata-2.1beta4
suricata-2.0.8
suricata-2.0.7
suricata-2.1beta3
suricata-2.0.6
suricata-2.0.5
suricata-2.1beta2
suricata-2.0.4
suricata-2.1beta1
suricata-2.0.3
suricata-2.0.2
suricata-2.0.1
suricata-2.0.1rc1
suricata-2.0
suricata-2.0rc3
suricata-2.0rc2
suricata-2.0rc1
suricata-2.0beta2
suricata-1.4.7
suricata-1.4.6
suricata-1.4.5
suricata-2.0beta1
suricata-1.4.4
suricata-1.4.3
suricata-1.4.2
suricata-1.4.1
suricata-1.3.6
suricata-1.4
suricata-1.3.5
suricata-1.4rc1
suricata-1.3.4
suricata-1.4beta3
suricata-1.3.3
suricata-1.4beta2
suricata-1.3.2
suricata-1.4beta1
suricata-1.3.1
suricata-1.3
suricata-1.3rc1
suricata-1.3beta2
suricata-1.3beta1
suricata-1.2.1
suricata-1.2
suricata-1.2rc1
suricata-1.2beta1
suricata-1.1.1
suricata-0.8.2
suricata-1.0.0
suricata-1.0.1
suricata-1.0.2
suricata-1.0.3
suricata-1.0.4
suricata-1.0.5
suricata-1.1
suricata-1.1beta1
suricata-1.1beta2
suricata-1.1beta3
suricata-1.1rc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'b9ee86fdb4'
${ noResults }
Commit Graph

6304 Commits (b9ee86fdb400ec1569fac8c20b22bcad687b009c)
 

Author SHA1 Message Date
Victor Julien b9ee86fdb4 detect-engine: free memory in error conditions (CID 1351210) 10 years ago
Victor Julien 0dd81b85d4 multi-tenants: improve error handling (CID 1312702) 10 years ago
Victor Julien fb90358e17 conf: explicitly ignore retval (CID 1353490) 10 years ago
Victor Julien f5ce7549be unix-manager: fix memleak in error case (CID 1353491) 10 years ago
Victor Julien e51707be90 pcre: blacklist 8.35 for JIT use (issue #1693) 10 years ago
Victor Julien 3f3ed71fe7 jansson: cleanup JSON_ESCAPE_SLASH use 10 years ago
Victor Julien 654829f969 unix-socket: optimize response sends 
Instead of sending responses to clients in small chunks, send it in
one big chunk. For this the JSON message is first serialized into
a MemBuffer before sending.
 10 years ago
Victor Julien 40cf1f8ef7 json: make membuffer helper public 
Make json_t to MemBuffer helper public so it can reused.
 10 years ago
Victor Julien acaf8a84e8 stats: fix dump-counters when no loggers are active 10 years ago
Victor Julien 14030239f8 unix-socket: restore dump-counters functionality 
Create a eve.stats like output for dump-counters.
 10 years ago
Victor Julien 310e8fcbf8 stats: export StatsToJSON 10 years ago
Victor Julien ffdfb6a8f0 json-stats: split out json generation 
Split out JSON generation logic so the code becomes reusable.
 10 years ago
Victor Julien c446abeb47 jansson: include in suricata-common.h 10 years ago
Andreas Herz 8c0e575063 configure: warn if libpcre 8.35 is used 10 years ago
Travis Green 72c9debbd6 yaml: disable rules by default 
Change to "disable by default" rulefiles
 10 years ago
Tom DeCanio 8f059b2841 output-json-dns: add logging of NS answer record content. 10 years ago
Andreas Herz 09fe1c62d8 detect-tls-version: fix small resource leak 10 years ago
Jason Ish 3d2834a232 json: use top-level sensor-name if provided. 
Currently the default configuration file contains a "sensor-name"
at the root of the configuration file, however, eve-log will only
use it if its specified under eve-log.

Now we will look for it at the eve-log, if present we'll use it
but log a deprecation warning, if its not present we'll look
for sensor-name at the root of the configuration.
 10 years ago
Victor Julien 5f39728509 ssh: fix string handling in unittest 10 years ago
Victor Julien 9015fb5a7f travis: set CFLAGS to error on cc warnings 10 years ago
Victor Julien 8bb1cf08ef eve: fix mishandling of big messages 
When the string representation of a JSON message grew bigger than
64k, the JSON record would just be truncated. This lead to errors
in the parser(s) of the JSON stream.

This patch changes the buffer logic to grow the buffer on demand.
 10 years ago
Victor Julien 6c30f7bdbb counters: fix thread stats delta logging 
Just like with the global stats, store prev values. Fixes delta logging.
 10 years ago
Victor Julien 0138bf5605 qa: add leak sanitzer suppression 10 years ago
Victor Julien 1c3a0434ca wirefuzz: exit with error code on more issues 10 years ago
Victor Julien 9d49b828a6 wirefuzz: logdir handling improvement 10 years ago
Victor Julien 8626eccf58 wirefuzz: remove obsolete stream mem check 10 years ago
Victor Julien 048e538828 wirefuzz: add -N option to count complete passes 10 years ago
Victor Julien 7299388d05 wirefuzz: improve logfile cleanup 10 years ago
Victor Julien 3d0542405d wirefuzz: enforce -n option per run 10 years ago
Victor Julien 0d77c4d560 wirefuzz: add -S option for exclusive rule load 10 years ago
Victor Julien 0a22ba7e23 http: fix multipart body tracking slowdown 
Optimize HTTP multipart body parsing. Big records that were not files
could slow down Suricata. The reason was that the body tracker was not
moved forward. This lead to growing body buffers, which were expensive
wrt memory and inspection.

This patch add logic to move the tracker forward in this case.
 10 years ago
Victor Julien 4ee20f2649 asan: fix reputation code include 10 years ago
Victor Julien ee5fd4613b tls-sni: fix uninitialized memory use 
On bad traffic the parser could allocated memory that was not
intialized. This was later used in the JSON output logging as
a valid null terminated string.
 10 years ago
Victor Julien 4086938f1e pool: fix memory leak 
Due to pointer size mishandling, the pool code could consider a
block of memory inside the 'preallocated' block. It would then not
free the block.
 10 years ago
Victor Julien b93a302a5b stream: improve StreamTcpSegmentForEach for IPS 
StreamTcpSegmentForEach would only return ACK'd segments. This lead
to missing stream data in alerts when running in IPS mode.

This patch changes the behavior for IPS. All segments are iterated
now, also the non-ACK'd ones. For IDS mode the behavior is unchanged.
 10 years ago
Victor Julien 3a9bcd6a53 qa: add --simulate-ips option 
This option forces the engine in 'IPS' mode. This is useful for testing
some IPS code paths based on pcaps.
 10 years ago
Victor Julien 6152d1abca eve: fix stream payload logging wrong direction 
In the EVE stream payload logging the IPS path logged the wrong dir.
Both IDS and IPS can take the same path as the detection engine
inspects in the same direction in both cases, so the alert is also
generated in the same direction.

Bug #1684
 10 years ago
Maxtors 4b8bd9dfc9 Added checking of negated "totals" and "threads" config values for stats. 10 years ago
Mats Klepsland 6f79137971 lua: expose TLS certificate chain to lua 
Expose TLS certificate chain to lua through TlsGetCertChain().
 10 years ago
Tom DeCanio 559747e325 file-store: add force-filestore configuration option to enable writing all 
extracted files to filesystem.
 10 years ago
Nicolas Thill 3c9538b783 lua: set thread vars in DetectLuaMatch 
Fix internal error when calling SCThreadInfo from Lua detection modules.

Signed-off-by: Nicolas Thill <ntl@p1sec.com>
 10 years ago
Maurizio Abba c4fb6217ee filestore-call: forcing a call to FileStore instead of manually updating 
the relative flag in order to have a single point where we actually
touch the File structure
 10 years ago
notnyt 2b263d55a2 fix nfq_get_timestamp 
Handle case when nfq_get_timestamp returns 0 for success, but timestamp is empty.
 10 years ago
bladeswords 2a17e3e827 Fix typo of trailing ] in configure --help 
It is the small things that count.  This is an example of the fix

Before
--disable-threading-tls Disable TLS (thread local storage)]

After
--disable-threading-tls Disable TLS (thread local storage)
 10 years ago
Andreas Herz 5cee70f9ae Fix the comment and explanation for random-chunk-size 10 years ago
Andreas Herz 8bd9f3d072 json: fix missing includes in disable unix socket case 10 years ago
Victor Julien adbf8bec74 drmemory: suppress magic leak 10 years ago
Andreas Herz 15c98c6085 file-magic: improve libmagic handling on *nix systems 10 years ago
Alexander Gozman 368d7e913a In configuration test mode, check signatures if 'delayed-detect' is enabled 
When 'detection-engine.delayed-detect' option was set to 'yes',
suricata didn't check signatures validity in configuration test mode.
 10 years ago
Andreas Herz 20dd593981 remove unnecessary braces 10 years ago