[Oisf-devel] [COMMIT] OISF branch, master, updated. suricata-2.1beta1-131-gb2b1239

OISF Git noreply at openinfosecfoundation.org
Sat Oct 25 20:36:44 UTC 2014

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "OISF".

The branch, master has been updated
       via  b2b1239ddfcadf15cda248f4297e727343e2171c (commit)
       via  07fffa6a7d1b32363b7e892019dc50927177888a (commit)
       via  2d43dae9346c7521e994f8270b62a5ee0fc6561c (commit)
       via  395d5b7f61ff4738f9e677fbd84346ca66fb51af (commit)
       via  5499cb71b097be10751fd873e7d784b42902edca (commit)
       via  a1d8439b2537e366cdb308f7b14155a1b503ee26 (commit)
       via  667b9a5220bd85453f3bbbf5aadb156673a741e4 (commit)
       via  74ffa2b26456f5e01eea45ece9b77cf8443c5160 (commit)
       via  4d66775a569c628d8cbc29f888e48d61835cf2eb (commit)
      from  a54f52278b351ae445fed03502a8f68a1518ef92 (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
commit b2b1239ddfcadf15cda248f4297e727343e2171c
Author: Ken Steele <ken at tilera.com>
Date:   Mon Oct 6 11:40:58 2014 -0400

    Make AppLayerProfiling functions inline
    The entire body of these functions are protected by ifdef PROFILING.
    If the functions are inlined, then this check removes the need for the
    function entirely.
    Previously, the empty function was still called, even when not built
    for profiling. The functions showed as being 0.25% of total CPU time
    without being built for profiling.

commit 07fffa6a7d1b32363b7e892019dc50927177888a
Author: Giuseppe Longo <giuseppelng at gmail.com>
Date:   Thu Oct 23 11:43:04 2014 +0200

    Fixes comments for pfring section in suricata.yaml
    Bug #1301

commit 2d43dae9346c7521e994f8270b62a5ee0fc6561c
Author: Giuseppe Longo <giuseppelng at gmail.com>
Date:   Thu Oct 23 11:30:38 2014 +0200

    PF_RING: force cluster type if vlan is disabled
    If vlan is disabled the cluster_flow mode will still take VLAN tags
    into account due to using pf_ring's 6-tuple mode.
    So this forces to use pf_ring's 5-tuple mode.
    Bug #1292

commit 395d5b7f61ff4738f9e677fbd84346ca66fb51af
Author: Giuseppe Longo <giuseppelng at gmail.com>
Date:   Fri Sep 5 15:58:44 2014 +0200

    iprep: add unit tests for cidr
    Implements unit tests to test the new API

commit 5499cb71b097be10751fd873e7d784b42902edca
Author: Giuseppe Longo <giuseppelng at gmail.com>
Date:   Wed Sep 3 15:30:08 2014 +0200

    detect-iprep: extends cidr
    Adds new API to check if an IP address is belong
    to a netblock and gets the value.

commit a1d8439b2537e366cdb308f7b14155a1b503ee26
Author: Giuseppe Longo <giuseppelng at gmail.com>
Date:   Fri Aug 29 14:22:09 2014 +0200

    iprep: extends cidr support
    Implements new API to expand the IP reputation
    to netblocks with CIDR notation
    A new object 'srepCIDRTree' is kept in the DetectionEngineCtx,
    which contains two tree (one for ipv4 and one for ipv6)
    where the reputation values are stored.

commit 667b9a5220bd85453f3bbbf5aadb156673a741e4
Author: Eric Leblond <eric at regit.org>
Date:   Sat Oct 18 19:38:12 2014 +0200

    lua: add export of dns.rrname
    Add the capability for a lua script to ask for rrname in DNS query.

commit 74ffa2b26456f5e01eea45ece9b77cf8443c5160
Author: Eric Leblond <eric at regit.org>
Date:   Sat Oct 18 13:20:52 2014 +0200

    lua: move function to common utils
    LuaStateNeedProto function can be used for any protocol so let's
    move it out of the http file.

commit 4d66775a569c628d8cbc29f888e48d61835cf2eb
Author: Victor Julien <victor at inliniac.net>
Date:   Thu Oct 23 12:54:13 2014 +0200

    stream: improve bad window update detection
    Ignore more valid ACKs in FIN shutdown phase.
    Improve heuristic for window shrinking in case of packet loss.


Summary of changes:
 src/Makefile.am                         |    1 +
 src/app-layer.c                         |   10 +-
 src/app-layer.h                         |   24 +-
 src/detect-iprep.c                      |  636 +++++++++++++++++++++++++++++++
 src/detect-lua-extensions.c             |    2 +
 src/detect-lua.c                        |   19 +
 src/detect.h                            |    4 +
 src/reputation.c                        |  358 +++++++++++++++--
 src/reputation.h                        |   15 +-
 src/source-pfring.c                     |   13 +
 src/source-pfring.h                     |    2 +-
 src/stream-tcp.c                        |   34 +-
 src/util-lua-common.c                   |   20 +
 src/util-lua-common.h                   |    2 +
 src/util-lua-dns.c                      |  100 +++++
 src/{util-lua-http.h => util-lua-dns.h} |    8 +-
 src/util-lua-http.c                     |   20 -
 suricata.yaml.in                        |    6 +-
 18 files changed, 1186 insertions(+), 88 deletions(-)
 create mode 100644 src/util-lua-dns.c
 copy src/{util-lua-http.h => util-lua-dns.h} (83%)


More information about the Oisf-devel mailing list