[Oisf-devel] [COMMIT] OISF annotated tag, suricata-1.3rc1, created. suricata-1.3rc1

noreply at openinfosecfoundation.org noreply at openinfosecfoundation.org
Fri Jun 29 18:25:38 UTC 2012 

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "OISF".

The annotated tag, suricata-1.3rc1 has been created
        at  80c270d5a7889e1c4e4a27f42eade98d48710400 (tag)
   tagging  583ba460c45e502434055d9e66f2bf0b0247ca7f (commit)
  replaces  suricata-1.3beta2
 tagged by  Victor Julien
        on  Fri Jun 29 20:24:57 2012 +0200

- Log -----------------------------------------------------------------
Tag 1.3rc1 release
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)

iEYEABECAAYFAk/t8wEACgkQiSMBBAuniMc2GACeJudkyOMszEW8KpBMEDXpxRhf
licAn0DJSMeZTTlVWOg1QPLUVOKf74ML
=unGT
-----END PGP SIGNATURE-----

Anoop Saldanha (35):
      bug #471 - http server body fast pattern unittests added
      bug #471 - file_data fast pattern unittests added
      http user agent keyword + mpm + inspection + fast pattern support added
      fast pattern cleanup - Remove FastPatternSupportEnabledForSigMatchList() and all it's associated structures
      stream raw reassembly fix
      tests to highlight that
      we now support offset, depth inspection against all packet payloads and stream messages
      #482 - use decode_flag for all decode TMs. Use the flag as a way to retrieve decode TMs from ThreadVars
      unittests that fail, displaying the issue that we don't inspect set-cookie headers against cookie keywords
      cookie header now inspects Set-Cookie headers as well
      mpm engine cleanup. Remove unnecessary flags
      some more mpm engine cleanup
      clear root node during conf de-init. also create root_backup when the root is restored back using it
      Kill engine during init stage if it fails to load valid value for sgh-mpm-context
      fix replace unittets. Re-set modified global_var to orignial value when the test completes
      variable names global vars, global no more. Moved to detection engine ctx, a place it belongs
      util action api returns error code if it encounters wrong values parsing wrong action conf
      clean classification config API
      clean reference config API
      make mpm ctx container de_ctx specific. Also introduce global variable in mpm_ctx. this is a workaround for cleaning non global mpm_ctx's since we now don't supply the de_ctx around the detection engine API
      byte_extract_id var now a non-global de_ctx specific var
      slot_data updated as an atomic var no
      cleanup threshold config de-init
      live rule support added
      add unittest for atomic operation with void *
      If new ruleset requires any htp callbacks that aren't already set, don't load new ruleset; request user to restart suricata + disable setting fileinsepection flags unconditionally in main
      Introduce util-signal.[ch]. Move our signal setup functions here
      disable live rule swap when -s or -S option's used at startup
      free flowvar entries in flow after live rule swap. Sync flowbits entries into packet struct to be used by alert debuglog when alert debuglog is enabled
      Replace the old atomic sets using cas with the new sc_atomic_set macro
      DetectEngineCtxFree() cleanup, also in main
      update clean up of old detection engine contexts for live rule swap
      code cleanup for live swap
      http header won't inspect set-cookie headers. Set-cookie part of cookie keyword now. Also update the http header inspection engine
      sc_atomic_cas replaced with sc_atomic_set

Eileen Donlon (1):
      feature 349 rule analyzer v1

Eric Leblond (7):
      config: use config file in sysconfdir by default.
      OpenBSD: fix tar command.
      af-packet: get datalink for each socket creation.
      af-packet: add support for BPF filter.
      af-packet: use counter for drop and accept
      cleaning: fix warning when building with clang.
      Update coccinelle script to match syntax evolution.

Victor Julien (25):
      filemd5: implement negated matching.
      Fix commandline supplied yaml path being ignored.
      rule analyzer: minor cleanups. Fix warning-only setting, allow true/yes/enabled for yaml option.
      Add pcap workers mode.
      pcap: make sure thread count is 1 if config is missing for a device.
      dcerpc/smb/smb2: more robust error checking, cosmetic code updates.
      detect: Only run mpm on HTTP buffers in the proper direction. Fixes a file_data FN.
      http: make client and server body inspection more robust in cases where realloc fails
      build: Use expanded sysconfdir to pass as CONFIG_DIR to the code.
      http: decode double decoded path and query string characters. Bug #464.
      Simplify flow resetting on de_ctx update. Detect ctx id starts at 1. So in a flow 0 means uninitialized (thus set) and if we detect flow is not equal to detect id, we reset the sgh storage and de_state.
      Fix compiler warning.
      Free pcre study structs for classification, threshold and reference parsing.
      Don't display a warning when log-pcap tries to remove an already removed file.
      filemd5: add support code for md5 handling for signatures.
      filemd5: fix compilation if libnss isn't available
      inline: fix unified2 alert direction selection
      default config: add engine-analysis.rules directive.
      http body inspection: force body inspection on stream eof.
      afpacket: fix compilation in debug mode.
      icmpv6: for ICMPv6 info messages set payload ptr and length to right after 4 byte hdr.
      http_raw_header: add some debug code.
      htp: keep track of header line terminators so http_raw_header can reconstruct exact headers.
      http: add unittest to test \r in header line.
      Update Changelog for 1.3rc1 release

marcos (1):
      Added -T switch to suricata output.

-----------------------------------------------------------------------


hooks/post-receive
-- 
OISF

More information about the Oisf-devel mailing list