[Oisf-devel] [COMMIT] OISF branch, master, updated. suricata-1.2beta1-71-g5a1a443
noreply at openinfosecfoundation.org
noreply at openinfosecfoundation.org
Fri Jan 6 18:05:14 UTC 2012
This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "OISF".
The branch, master has been updated
via 5a1a4437018a15d51a2921a72c69a4c779dd74f5 (commit)
via 026a4efc571b4d0c41f4854a33fb1e6a2e8ccd21 (commit)
via 21ee59e6f3ee73ba4436ff759f2e0d24cbff5b28 (commit)
via d5402d33d42dc5d47fd485f52a6ed1efa24c802a (commit)
via 7fa22e8453116d9b8953227de02e0194e0e342ff (commit)
via ecd457db7b823fe31f83b61d87d4f5e4799a5989 (commit)
via 5311cd4866d0f102338adc33a35edbcf7ff83c91 (commit)
via eea5ab4a7aab02dc7f451ab09f737e063712258c (commit)
from 4c1e417d4920cb37a1f3da64db8a3703c01323a2 (commit)
Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.
- Log -----------------------------------------------------------------
commit 5a1a4437018a15d51a2921a72c69a4c779dd74f5
Author: Victor Julien <victor at inliniac.net>
Date: Fri Jan 6 19:04:55 2012 +0100
Add example smtp decoding events rules file.
commit 026a4efc571b4d0c41f4854a33fb1e6a2e8ccd21
Author: Victor Julien <victor at inliniac.net>
Date: Fri Jan 6 19:02:02 2012 +0100
Make sure that continued stateful detection only inspects sigs in the proper direction.
commit 21ee59e6f3ee73ba4436ff759f2e0d24cbff5b28
Author: Victor Julien <victor at inliniac.net>
Date: Fri Jan 6 18:51:55 2012 +0100
Add signature direction (flow:toserver/flow:toclient) as a signature flag.
commit d5402d33d42dc5d47fd485f52a6ed1efa24c802a
Author: Victor Julien <victor at inliniac.net>
Date: Fri Jan 6 18:20:35 2012 +0100
Simplify detection loop. Inspect packet keywords before the state.
commit 7fa22e8453116d9b8953227de02e0194e0e342ff
Author: Victor Julien <victor at inliniac.net>
Date: Fri Jan 6 18:00:51 2012 +0100
Rename app_layer_events to app-layer-events. Misc fixes/changes.
commit ecd457db7b823fe31f83b61d87d4f5e4799a5989
Author: Victor Julien <victor at inliniac.net>
Date: Fri Jan 6 17:56:52 2012 +0100
Allow flowint names to have dots in them.
commit 5311cd4866d0f102338adc33a35edbcf7ff83c91
Author: Anoop Saldanha <poonaatsoc at gmail.com>
Date: Fri Jan 6 14:33:23 2012 +0530
Support for smtp decoder events
commit eea5ab4a7aab02dc7f451ab09f737e063712258c
Author: Anoop Saldanha <poonaatsoc at gmail.com>
Date: Fri Jan 6 11:28:33 2012 +0530
Support for app layer decoder events added + app_layer_event keyword added
-----------------------------------------------------------------------
Summary of changes:
rules/smtp-events.rules | 18 ++
src/Makefile.am | 4 +-
src/app-layer-parser.c | 21 ++
src/app-layer-parser.h | 6 +
src/app-layer-smtp.c | 322 +++++++++++++++++++-
src/app-layer-smtp.h | 14 +
src/decode-events.c | 130 ++++++++
src/decode-events.h | 165 ++++++++++-
src/detect-app-layer-event.c | 299 ++++++++++++++++++
...{detect-priority.h => detect-app-layer-event.h} | 16 +-
src/detect-engine-state.c | 8 +-
src/detect-flow.c | 18 +-
src/detect-flowint.c | 2 +-
src/detect-parse.c | 10 +
src/detect.c | 153 +++-------
src/detect.h | 4 +
16 files changed, 1048 insertions(+), 142 deletions(-)
create mode 100644 rules/smtp-events.rules
create mode 100644 src/decode-events.c
create mode 100644 src/detect-app-layer-event.c
copy src/{detect-priority.h => detect-app-layer-event.h} (74%)
hooks/post-receive
--
OISF
More information about the Oisf-devel
mailing list