[Oisf-devel] [COMMIT] OISF branch, master, updated. suricata-2.1beta4-189-g6484299
OISF Git
noreply at openinfosecfoundation.org
Mon Jul 20 12:14:50 UTC 2015
This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "OISF".
The branch, master has been updated
via 6484299701699a3934f145ababeaae5b9f01bf75 (commit)
via 334e8656bf7cc08e24048a1d8c7865ec45ccb478 (commit)
via 4dd53c8f03111da4c6b857f6e7486697b8be246f (commit)
via 433e511b636d09dfa71bd45095499210aa68bee5 (commit)
via 110e23964e99cf7c7f43a9a24eb740f3e335b002 (commit)
via e6129f7b47cfbf886254bf283bf4844f6493ac40 (commit)
via 2c8e8c2516742a100875a4b9392bd889e4506a00 (commit)
via a1e50b3138b59c667120b19997c5a7e40499b0e1 (commit)
via c46d472921aed5c5aab03ca8dc3e0277dd467568 (commit)
via 159a6d1cb4054ee7a93b87f823fbe6c464d30698 (commit)
via cbf5d8844706cd7f83ba4ed06a2f2ce0028c2d79 (commit)
via b77cd22b9818f71ce5d276a44166bc0c56effbb3 (commit)
via 4db0a35f25cd2cd6079cdff28be55c6996c11f2d (commit)
via 893fc9660dcaf613162140c442d71b338047ea3e (commit)
via b512580bbe28cb1109fd876a653abf486aa02ad9 (commit)
via 14981cb2a84951ff1ce4e8d911ebc7cdd9b22755 (commit)
from f43767ba445b9536e797b432ca5e9848846d9d36 (commit)
Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.
- Log -----------------------------------------------------------------
commit 6484299701699a3934f145ababeaae5b9f01bf75
Author: Schnaffon <schnaffon at hotmail.fr>
Date: Tue Apr 28 12:23:12 2015 +0200
Use unlikely for error treatment in alert-prelude.c
When handling error cases on creation of a new idmef field, we are in an unlikely case. This patch adds the unlikely() expression to indicate this to gcc.
commit 334e8656bf7cc08e24048a1d8c7865ec45ccb478
Author: Victor Julien <victor at inliniac.net>
Date: Fri Jul 10 12:19:57 2015 +0200
introduce fatal error macro's
Add 'FatalError' and 'FatalErrorConditonal' that will take the same
args as SCLogError.
FatalError logs the error using SCLogError and then exits with return
code EXIT_FAILURE.
FatalErrorOnInit does the same only during init and with
--init-errors-fatal enabled, otherwise it just calls SCLogWarning. So
then the macro returns to the caller.
Implement this for output setup.
commit 4dd53c8f03111da4c6b857f6e7486697b8be246f
Author: Victor Julien <victor at inliniac.net>
Date: Wed Jun 10 12:15:10 2015 +0200
lua: dns support
commit 433e511b636d09dfa71bd45095499210aa68bee5
Author: Victor Julien <victor at inliniac.net>
Date: Wed Jun 10 11:57:59 2015 +0200
dns: generic inspect engines for DNS
commit 110e23964e99cf7c7f43a9a24eb740f3e335b002
Author: Victor Julien <victor at inliniac.net>
Date: Wed Jun 10 11:50:51 2015 +0200
detect: add AppLayerTxMatch call
commit e6129f7b47cfbf886254bf283bf4844f6493ac40
Author: Victor Julien <victor at inliniac.net>
Date: Tue Jun 9 15:31:32 2015 +0200
dns: generic request/response detect lists
commit 2c8e8c2516742a100875a4b9392bd889e4506a00
Author: Victor Julien <victor at inliniac.net>
Date: Tue Jun 9 14:49:22 2015 +0200
dns: rename type so it's purpose is more clear
commit a1e50b3138b59c667120b19997c5a7e40499b0e1
Author: Victor Julien <victor at inliniac.net>
Date: Fri Jun 5 08:53:47 2015 +0200
lua: dns extensions
Add DNS lua calls for getting queries, answers, authorities. Also
rcode and recusion desired flags.
commit c46d472921aed5c5aab03ca8dc3e0277dd467568
Author: Victor Julien <victor at inliniac.net>
Date: Thu Jun 4 10:46:26 2015 +0200
lua: initial DNS logging support
commit 159a6d1cb4054ee7a93b87f823fbe6c464d30698
Author: Eric Leblond <eric at regit.org>
Date: Wed Jul 15 22:21:07 2015 +0200
tls-store: avoid log flooding
In case we can't write in the certs directory, this is possible
we flood the log for each TLS session or even worse each TLS
packet. So this patch puts a limit in the number of logged
messages related to file creation.
commit cbf5d8844706cd7f83ba4ed06a2f2ce0028c2d79
Author: Eric Leblond <eric at regit.org>
Date: Wed Jul 15 13:50:22 2015 +0200
filestore: use SCFree instead of free
commit b77cd22b9818f71ce5d276a44166bc0c56effbb3
Author: Eric Leblond <eric at regit.org>
Date: Tue Jul 14 22:35:32 2015 +0200
tls-store: backward compatibility
This patch implements backward compatibility in suricata.yaml
file. In case the new 'tls-store' output is not present in the
YAML we have to use the value defined in 'tls-log'.
commit 4db0a35f25cd2cd6079cdff28be55c6996c11f2d
Author: Eric Leblond <eric at regit.org>
Date: Tue Jul 14 21:22:31 2015 +0200
tls-store: now a separate module
An design error was made when doing the TLS storage module which
has been made dependant of the TLS logging. At the time there was
only one TLS logging module but there is now two different ones.
By putting the TLS store module in a separate module, we can now
use EVE output and TLS store at the same time.
commit 893fc9660dcaf613162140c442d71b338047ea3e
Author: Jeff Barber <jeff.barber at nexdefense.com>
Date: Thu Jul 16 09:39:15 2015 -0400
Support for reconnecting unix domain socket log files
Issue #1423
commit b512580bbe28cb1109fd876a653abf486aa02ad9
Author: Jason Ish <ish at unx.ca>
Date: Wed Jul 8 09:49:41 2015 -0600
logging: integrate rotation into SCConfLogOpenGeneric.
Addresses issue 1492, and will make it harder to omit
rotation on new outputs.
commit 14981cb2a84951ff1ce4e8d911ebc7cdd9b22755
Author: Jason Ish <ish at unx.ca>
Date: Fri Jul 17 16:22:59 2015 -0600
rule vars: strip leading white space before looking up var.
-----------------------------------------------------------------------
Summary of changes:
src/Makefile.am | 1 +
src/alert-debuglog.c | 4 +-
src/alert-fastlog.c | 4 +-
src/alert-prelude.c | 108 ++++----
src/app-layer-ssl.h | 5 +-
src/detect-dns-query.c | 2 +-
src/detect-engine-analyzer.c | 2 +-
src/detect-engine-dns.c | 71 +++++-
src/detect-engine-dns.h | 10 +
src/detect-engine-mpm.c | 6 +-
src/detect-engine-state.h | 4 +-
src/detect-engine.c | 49 +++-
src/detect-fast-pattern.c | 6 +-
src/detect-isdataat.c | 6 +-
src/detect-lua.c | 73 ++++--
src/detect-parse.c | 11 +-
src/detect-pcre.c | 4 +-
src/detect.h | 10 +-
src/log-dnslog.c | 4 +-
src/log-droplog.c | 4 +-
src/log-file.c | 4 +-
src/log-filestore.c | 2 +-
src/log-httplog.c | 4 +-
src/log-stats.c | 4 +-
src/log-tcp-data.c | 2 +-
src/log-tlslog.c | 222 +----------------
src/log-tlslog.h | 4 +
src/{log-tlslog.c => log-tlsstore.c} | 470 +++++++++++------------------------
src/{log-stats.h => log-tlsstore.h} | 10 +-
src/output-json-alert.c | 2 +-
src/output-json-dns.c | 2 +-
src/output-json-drop.c | 2 +-
src/output-json-flow.c | 2 +-
src/output-json-http.c | 2 +-
src/output-json-netflow.c | 2 +-
src/output-json-smtp.c | 2 +-
src/output-json-ssh.c | 2 +-
src/output-json-stats.c | 2 +-
src/output-json-tls.c | 2 +-
src/output-json.c | 3 +-
src/output-lua.c | 26 +-
src/runmodes.c | 68 +++--
src/suricata.c | 2 +
src/tm-modules.c | 1 +
src/tm-threads-common.h | 1 +
src/util-debug.h | 18 ++
src/util-logopenfile.c | 100 ++++++--
src/util-logopenfile.h | 10 +-
src/util-lua-dns.c | 221 ++++++++++++++++
src/util-rule-vars.c | 10 +
suricata.yaml.in | 6 +-
51 files changed, 885 insertions(+), 707 deletions(-)
copy src/{log-tlslog.c => log-tlsstore.c} (50%)
copy src/{log-stats.h => log-tlsstore.h} (79%)
hooks/post-receive
--
OISF
More information about the Oisf-devel
mailing list