[Oisf-devel] [COMMIT] OISF branch, master, updated. suricata-1.3.1-91-gb2691cb

noreply at openinfosecfoundation.org noreply at openinfosecfoundation.org
Thu Sep 6 08:33:11 UTC 2012 

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "OISF".

The branch, master has been updated
       via  b2691cbe889f138b0de0426740ae48dec77cdb8b (commit)
       via  4d8f70c61348a45cea86c5d737204929130bc886 (commit)
       via  ee6ba09948ddc9128604c0834dc3b400fe6b92e2 (commit)
       via  6040016347fd64b4e91903d78f57b2f9673c6be7 (commit)
       via  3bea3b39df4c1fe1306662f506b659e6e750539d (commit)
       via  13f13b6d7ebe6999e6c8e43c72a3055375cd6556 (commit)
       via  0f2b34068cd04422ef968ab0d149cb0f704da875 (commit)
       via  355e981775d0d1d27d395a6491a944e6b60a2b2b (commit)
       via  886a4f2850f18ba1cc68ae1b98722b92538009d9 (commit)
      from  5ffe7e21c3a2ed553c60e628a42439ef1fbb66cd (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
commit b2691cbe889f138b0de0426740ae48dec77cdb8b
Author: Eric Leblond <eric at regit.org>
Date:   Wed Sep 5 15:32:11 2012 +0200

    af-packet: handle possible exit of capture loop.
    
    If a capture loop does exit, the thread needs to start without
    synchronization with the other threads. This patch fixes this
    by resetting the turn count on the peerslist structure and
    adding a test on this condition in the wait function.

commit 4d8f70c61348a45cea86c5d737204929130bc886
Author: Eric Leblond <eric at regit.org>
Date:   Wed Sep 5 00:15:16 2012 +0200

    af-packet: fix kernel offset issue
    
    It seems that, in some case, there is a read waiting but the
    offset in the ring buffer is not correct and Suricata need to
    walk the ring to find the correct place and make the read.

commit ee6ba09948ddc9128604c0834dc3b400fe6b92e2
Author: Eric Leblond <eric at regit.org>
Date:   Tue Sep 4 18:43:01 2012 +0200

    af-packet: fix emergency mode
    
    This patch fixes emergency mode by setting the variable even if we
    have a non kernel checksum check. It also does a call to
    AFPDUmpCounters() as it seems to improve thing to do it ASAP.

commit 6040016347fd64b4e91903d78f57b2f9673c6be7
Author: Eric Leblond <eric at regit.org>
Date:   Tue Sep 4 12:14:58 2012 +0200

    af-packet: implement late open
    
    This patch implements "late open". On high performance system, it
    is needed to create the AF_PACKET just before reading to avoid
    overflow. Socket creation has to be done with respect to the order
    of thread creation to respect affinity settings.
    This patch adds a counter to AFPPeer to be ale to synchronize the
    initial socket creation.

commit 3bea3b39df4c1fe1306662f506b659e6e750539d
Author: Eric Leblond <eric at regit.org>
Date:   Tue Sep 4 11:20:05 2012 +0200

    af-packet: improve logged messages.

commit 13f13b6d7ebe6999e6c8e43c72a3055375cd6556
Author: Eric Leblond <eric at regit.org>
Date:   Mon Sep 3 16:43:45 2012 +0200

    af-packet: rework socket transition phase.
    
    Suricata was not able to start cleanly in AF_PACKET with default
    suricata.yaml file if there was no eth1 on the system. This patch
    fixes this issue and rework the socket transition phase to fix
    some serious issues (file descriptor leak) found when fixing this
    problem.
    Every 20 seconds it displays a message to the user to warn him about
    the interface not being accessible:
      [ERRCODE: SC_ERR_AFP_CREATE(196)] - Can not open iface 'eth1'

commit 0f2b34068cd04422ef968ab0d149cb0f704da875
Author: Eric Leblond <eric at regit.org>
Date:   Mon Sep 3 18:38:45 2012 +0200

    af-packet: ring mode is not optionnal in AFPReadFromRing

commit 355e981775d0d1d27d395a6491a944e6b60a2b2b
Author: Victor Julien <victor at inliniac.net>
Date:   Thu Sep 6 10:11:57 2012 +0200

    Fix 'no effect' check in timestamp print logic. Coverity 717437.

commit 886a4f2850f18ba1cc68ae1b98722b92538009d9
Author: Victor Julien <victor at inliniac.net>
Date:   Thu Sep 6 10:09:14 2012 +0200

    Check response headers in custom http logging before using them. Coverity 717436.

-----------------------------------------------------------------------

Summary of changes:
 src/log-httplog.c      |    7 +-
 src/source-af-packet.c |  470 +++++++++++++++++++++++++++++++++---------------
 src/source-af-packet.h |    8 +-
 3 files changed, 334 insertions(+), 151 deletions(-)


hooks/post-receive
-- 
OISF

More information about the Oisf-devel mailing list