[Oisf-devel] [COMMIT] OISF annotated tag, suricata-2.0rc1, created. suricata-2.0rc1
OISF Git
noreply at openinfosecfoundation.org
Thu Feb 13 10:38:32 UTC 2014
This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "OISF".
The annotated tag, suricata-2.0rc1 has been created
at a8f081e2210861af49ea3a00e8d19f1a560d28f3 (tag)
tagging 2421da6eec853eeadf11abb2bf30afd980736742 (commit)
replaces suricata-2.0beta2
tagged by Victor Julien
on Thu Feb 13 11:36:53 2014 +0100
- Log -----------------------------------------------------------------
Tag 2.0rc1 release
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.14 (GNU/Linux)
iQEcBAABAgAGBQJS/KBOAAoJEMH0leOSaFa0f/gH/1IkPAGuEyzi0wi4hkJKarW9
45LuyugEnYlUi5bwgKwnX/UDhCaGtNhVMFuVuTsNC04++TXT7N55moH3psGKeAWH
AoO2yllnBtNIAo9VEmi5HHCw8C2cs+OAayByYiI05w6CRJOZD+eFmm3EhNMkoDY3
GVCYtoOmXZpqmD8QaX8/xqMM5QmqJcdxiUbiCxis8veE6S+V7T7/2VKxeARnk4py
s6rD5ORRH2sFrlI92hl+VBbrYniuP81drJ4eW1LQMMy0fVxlyumyI5m1+6U2lEcG
pEOvBcEGottdwIJY4Mk1J2Lcqnz43LRt5aUP6LfH8LdjJ2ps+2AiU7UyWQaN2Rw=
=N9k0
-----END PGP SIGNATURE-----
Anoop Saldanha (5):
Disabling the ssh parser temporarily, since we are moving away from some
Use a typdef AppProto <-> uint16_t for representing app layer protocol.
App layer API rewritten. The main files in question are:
Remove BUG_ON(1) in app layer event second stage preparation function.
CUDA: Fix header file resolution issues.
Duarte Silva (1):
Fix the segmentation fault while logging the host on the custom HTTP logger.
Eric Leblond (30):
fix size_t printing
coccinelle: protecting regexp operator is not needed
device list: clean and display stat at exit
capture: display exit stats at default verbosity
af-packet: fix live device counter usage
pfring: fix live device counter usage
htp layer: use memcap for HTTP related allocations
htp layer: add memory usage counter
htp layer: add memory cap counter
prscript: add --norebase option
af-packet: update packet reading loop logic
Add missing UNITTESTS
doxygen: add profiling to generated doc.
doxygen: document all code
doxygen: document some functions
debug: default logging level is notice
af-packet: fix problem introduced in recent commit
util-device: use safe tailq foreach
json: sync key name with CIM
json-dns: sync field names with draft rfc2629
json dns: do not use array to output answer
json: add event_type key
json file: separate http params
tls: fix negated match
af-packet: get vlan id from header
af-packet: handle vlan counter
af-packet: improve VLAN detection
Add new function to work on kernel version.
af-packet: no VLAN id from msg header for old kernel
af-packet: declare TP_STATUS_VLAN_VALID if needed
Jason Ish (5):
Remove the old include support.
Add a --set command line option to set/override a configuration value.
When setting a sequence value, check for an existing node.
Don't alert on valid ICMP6 solicit/advert messages.
Promote nodes set with --set to sequence nodes as needed.
Ken Steele (10):
Add 8-bit states to ac-tile
Port unittest from bug #970 for util-mpm-ac.c to util-mpm-ac-tile.c
Correct coding style in decode-ethernet.c
Fix PmqSetup() argument removal in ac-tile MPM unit tests.
Remove GCC -no-strict-aliasing compiler flag.
Fix make distcheck for Tile
Alert file formatting clean up.
Reduce time the file lock is held to write an alert to Fast.log
Add option on Tile-Gx for logging for fast.log alerts over PCIe
Remove extra ] configure.ac for HAVE_DETECT_DISABLED
Tom DeCanio (32):
Add JSON formatted alert output
change srcport->sp dstport->dp
fix NULL string into JSON in alert-json
Change JSON alert syslog level to INFO
cleanup fallout from upstream merge with alert json work
nested json alert output
Alert/HTTP/DNS JSON output working with Logstash
JSON cleanup
move some JSON alert work outside of lock
beginning of JSON config alignment
First cut at united .yaml configuration
Add vlan and pcap_cnt to JSON logs
Support for configuration of JSON http output module
add ICMP type and code support to JSON log
add united TLS JSON logging
JSON output cleanup
Add "united" log to suricata.yaml.in
Add support for JSON output to syslog/unix_stream/unix_dgram
remove unused JSON TMM_*JSON enumerations
fix compile errors w/o libjansson
rename alert-json.[ch] output-json.[ch]
JSON output cleanup
remove dead JSON DNS output code
more output JSON cleanup
remove unused http JSON code
JSON output cleanup
First cut at "united" file log output in JSON
Add "united" JSON files output
add "united" drop JSON log
address most initial JSON pull request comments
Remaining JSON output pull request comment edits
json: rebase fixes
Victor Julien (186):
Various style fixes
compile fixes
profiling: fix compilation
scan-build fixes
Cleanup and fix scan-build warning
app proto detect: fix valgrind test warnings
Fix AppLayerProtoDetectPMFreeSignature related valgrind errors
App Layer: fix memory leaks
detect unittests: clang build fix and cleanups
Rename AppLayerCtxThread -> AppLayerThreadCtx
Rename AppLayerParserCtxThread -> AppLayerParserThreadCtx
Rename AppLayerParserpCtx -> AppLayerParserProtoCtx
Rename AppLayerParserParserState -> AppLayerParserState
Rename AppLayerProtoDetectCtxThread -> AppLayerProtoDetectThreadCtx
App Layer: cleanup state func naming
Use u8 for ipproto
app layer: uint16_t alproto -> AppProto alproto
app layer: fix memory leak
app-layer: rename AppLayerThreadCtx funcs
Fix HTPBodyReassemblyTest01 Asan error
app-layer: Use opaque pointers instead of void
Update tests to use AppLayerParserThreadCtx ptr instead of void. Fix a few bugs uncovered by this.
app layer: void -> AppLayerProtoDetectThreadCtx
app-layer: only typedef opaque pointers once
stream: no longer process STREAM_GAP smsgs
stream: remove unused gap structure from StreamMsg.
stream msg: remove structure
stream: pass TcpSession to StreamTcpReassembleProcessAppLayer
stream: remove flow reference from StreamMsg
stream: remove per thread queue for stream msgs
stream: remove flags from StreamMsg
stream: increase max StreamMsg data
stream: don't send empty streammsg at stream end
Clean up TX clean up
app-layer: configurable GetActiveTxId function
counters: fix 2 scan-build warnings
app-layer: API calls to check for TX aware proto
dns log: cleanups
memcmp: convert all pointer arguments to be const pointers, like memcmp itself uses.
DNS: don't store duplicate queries
dns: tag each tx we get a reply for as replied
Fix unittest size_t printing on 32bit
pool thread: undo CLS alignment
coccinelle: add --disable-coccinelle to configure
Fix coccinelle autotools check
Fix compiler warning:
Cygwin: fix compilation
Cygwin: make configure pass with -Werror
Fix crash in AppLayer Proto Detect
Bug 980: fix HTTP memory cleanup at shutdown
app-layer-ssl: code cleanup
app-layer-ssl: style fixes
app-layer-ssl: fix unusual memory leak
Bug 1083 and 1084: add valgrind suppressions
dns: fix dns configure code
dns: add memcap options
dns: make DNSTransactionAlloc static
dns: add memcap checking
Pass ThreadVars ptr to various thread init funcs
app-layer: update UDP entry function
dns: register counters
dns: update counters
dns: add event for when memcap is reached
App-layer proto detect cleanups
Coverity 1153935: fix confusing sizeof
app-layer proto detect: optimization
detect: use pflow pointer
app-layer: parser cleanup
stream: cast memcap checks to uint64_t
stream: improve memcap checking
pool: update internal counters at the proper time
pool: document some of the Pool:: fields.
pool: remove tail tracking in alloc list
pool: rename data structure fields to stack
stream: in SACK, always decrease memcap on free
stream: use reassembly.memcap for stream chunks
app-layer: shrink AppLayerParserState
app-layer-event: refactor
app-layer-proto: speed up
flow-timeout: change error logic
Add --disable-detection commandline option
Introduce g_detect_disabled global
flow-time: handle detect-less case
update runmodes to handle detect-less
Update main loop to handle detect-less
detect-less: add log only TX handling function
detect-less: disable raw reassembly
Error out if -s/-S are used with disable detect
Add --disable-detection configure option
no-detect: handle protocols that have no logger
Introduce packet logging output API
Packet logging API: convert unified2
Introduce TX logging API
TX logging API: convert HTTP log
Convert log-drop to packet logger api.
dns: convert dns logger to TX logger API
log-tls: clean ups
log-tls: convert to packet logger API
alert-debug log cleanups
alert-debuglog: port to packet logger api
alert-debuglog: minor cleanups
alert-pcapinfo: clean up
alert-pcapinfo: convert to packet logger API
alert-syslog: cleanup
alert-syslog: convert to packet logger API
prelude: fix configure and cleanup
prelude: convert to packet logger API
log-file: cleanups
Introduce 'file' logging API
log-file: convert to file-logger API
profiling: add logger api labels
app-layer: add logger check to API
tx-logger: speed up
log-filestore: tag truncated files as such
log-filestore: cleanups
Introduce Filedata Logger API
log-filestore: convert to FiledataLog API
stream: configurable segment pools
stream: silence stream.reassembly.raw message
stream: configurable stream chunk prealloc
stream: add performance output for stream pools
Various compile fixes after rebase with master
http-json: separate module using tx api
dns-json: turn logger to tx api
output: introduce concept of sub-modules
output: sub-module support for other log api's
alert-json: make full module out of json alert
alert json: make child of eve-log
log api: convert all names to const
log api: use AppProto instead of uint16_t
json drop log: move into packet module
drop-json: make child of eve-log
output: simple name space support for sub modules
tls json: turn into packet logger
jansson file log: make file log module
json outputs: cleanups
json: rename output-httplog -> output-json-http
json dns: rename output-dnslog -> output-json-dns
json drop log: rename to output-json-drop
output: check for multiple instances of drop and tls
json tls log: rename to output-json-tls
output: cleanups
Various fixes for scan-build warnings
Fix util-debug scan-build warnings
util-host-os-info: scan build fixes
util-host-os-info: scan-build fix
stream: yaml addition for recent config options
json loggers: dup bstr with bstr_util_strdup_to_c
Introduce BytesToString utility
Replace remaining SCStrndup calls
Remove SCStrndup
Replace strchrnul with strchr
Updated banned function cocci check
profiling: lower overhead when disabled
profiling: conditional rule profiling
profiling: add sample-rate yaml option
threading: add utility to get module id from name
profiling: support log api
output: add TM_FLAG_LOGAPI_TM thread module flag
threading: add missing json types to TmModuleTmmIdToString
profiling: fix percentage of detect phases
profiling: output log api modules separately
json dns: fix tx logic
fileext: make case insensitive
profiling: end profiling tunnel packets inside lock
Fix address parsing issues
dns: fix protocol yaml setting
http: per tx decoder events
app-layer: fix AppLayerParserProtocolIsTxEventAware
Fix CUDA test warning.
radix: don't modify node prefix on lookup
radix: update tests after API change
radix: update HTP config lookup logic
defrag: update radix usage
unused reputation: radix update
host-os-info: update radix lookups
detect ip-only: update radix usage
debug-validation: fix packet check
ipv4 decoder: set 'invalid' event on icmpv6
Flow: fix flow reference cnt issues
Bug 1107: decoders: bail out on pseudo packets
defrag: fix reassembly with vlan
vlan: support QinQ ethernet types
eve-log: add warning if enabled but not supported
vlan/QinQ: add vlan_qinq counter
Update Changelog for 2.0rc1 release
-----------------------------------------------------------------------
hooks/post-receive
--
OISF
More information about the Oisf-devel
mailing list