[Oisf-devel] [COMMIT] OISF branch, master, updated. suricata-3.2beta1-52-gc6134e0

OISF Git noreply at openinfosecfoundation.org
Wed Oct 12 15:15:06 UTC 2016 

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "OISF".

The branch, master has been updated
       via  c6134e007e0785bc9a3ef5b524fd03adf7fa2c09 (commit)
       via  b789d2ae3d13cdb0d0bf6a5e40eafa96b82ced04 (commit)
       via  c17402fdcb95be613e23c4e0c7cf3e77a5832155 (commit)
       via  dcce2251023a6bf404217623ab264ef6d95b3157 (commit)
       via  671320aab8c2151a63a9e4f052f7e800c8ad6acc (commit)
       via  e33060cee097f57f20614cc907c53ce178d384d2 (commit)
       via  b1c1699699298b91386c9d47cbe7291bcda75e78 (commit)
       via  4d4a3d0b8f2ab729be8fbd65ff40c3cd0cf77077 (commit)
       via  18c9312380e04d4233862b772078211b25c1fb8d (commit)
       via  4eca40ac34debc8584b5d08180b7521bd8d737c1 (commit)
       via  69e1ff7ba7834585bb9f97d3d02d553856af0f6a (commit)
       via  3750c1563219d271155eab217335f25ec1efd09a (commit)
       via  e95e6ccded36789ebcf73bb1a5a51cf21037cd75 (commit)
      from  f4b165de945beaa9b03981c0b84880845ac587c3 (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
commit c6134e007e0785bc9a3ef5b524fd03adf7fa2c09
Author: Victor Julien <victor at inliniac.net>
Date:   Wed Oct 12 12:30:19 2016 +0200

    doc: app-layer tls including no-reassemble

commit b789d2ae3d13cdb0d0bf6a5e40eafa96b82ced04
Author: Victor Julien <victor at inliniac.net>
Date:   Wed Oct 12 11:21:28 2016 +0200

    tls: change 'no-reassemble' option to default off
    
    This option was broken so there should be no visible change to
    actual deployments.

commit c17402fdcb95be613e23c4e0c7cf3e77a5832155
Author: Thomas Andrejak <thomas.andrejak at gmail.com>
Date:   Mon May 16 12:56:50 2016 +0200

    prelude: add IPv6 support

commit dcce2251023a6bf404217623ab264ef6d95b3157
Author: Thomas Andrejak <thomas.andrejak at gmail.com>
Date:   Mon May 16 12:56:12 2016 +0200

    prelude: add missing TCP header to additional data

commit 671320aab8c2151a63a9e4f052f7e800c8ad6acc
Author: Thomas ANDREJAK <thomas.andrejak at c-s.fr>
Date:   Thu Apr 7 22:54:56 2016 +0200

    prelude: update URL

commit e33060cee097f57f20614cc907c53ce178d384d2
Author: Thomas Andrejak <thomas.andrejak at gmail.com>
Date:   Mon May 16 12:55:32 2016 +0200

    prelude: coding style, it's better to use macro

commit b1c1699699298b91386c9d47cbe7291bcda75e78
Author: Thomas Andrejak <thomas.andrejak at gmail.com>
Date:   Mon May 16 12:36:29 2016 +0200

    prelude: Add other actions than just ACTION_DROP when packet drop

commit 4d4a3d0b8f2ab729be8fbd65ff40c3cd0cf77077
Author: Thomas Andrejak <thomas.andrejak at gmail.com>
Date:   Mon May 16 12:35:17 2016 +0200

    prelude: Add log when failed to create assessment or impact object

commit 18c9312380e04d4233862b772078211b25c1fb8d
Author: Thomas Andrejak <thomas.andrejak at gmail.com>
Date:   Mon May 16 12:37:38 2016 +0200

    Add macro for TCP and UDP header access

commit 4eca40ac34debc8584b5d08180b7521bd8d737c1
Author: Eric Leblond <eric at regit.org>
Date:   Fri Oct 7 16:51:22 2016 +0900

    app-layer-tls: stop detection if no reassembly
    
    It no-reassembly is asked in TLS conf then we can stop inspection
    after handshake and cause bypass to be triggered on the flow.

commit 69e1ff7ba7834585bb9f97d3d02d553856af0f6a
Author: Eric Leblond <eric at regit.org>
Date:   Thu Oct 6 14:10:13 2016 +0900

    stream-tcp: bypass encrypted when both side ready
    
    Suricata should not completely bypass a flow before both end of it
    have reached the stream depth or have reached a certain state.
    Justification is that suricata need the ACK to treat the other side
    so we can't really decide to cut only one side.

commit 3750c1563219d271155eab217335f25ec1efd09a
Author: Nicolas Thill <ntl at p1sec.com>
Date:   Tue Oct 11 17:16:33 2016 +0200

    doc: add SCPacketTimestamp Lua function
    
    Signed-off-by: Nicolas Thill <ntl at p1sec.com>

commit e95e6ccded36789ebcf73bb1a5a51cf21037cd75
Author: Nicolas Thill <ntl at p1sec.com>
Date:   Fri Feb 5 11:40:08 2016 +0100

    lua: add an SCPacketTimestamp function
    
    The SCPacketTimestamp function returns packet timestamps as 2 real
    numbers (seconds & microseconds).
    
    Example:
    
      local sec, usec = SCPacketTimestamp()
    
    Signed-off-by: Nicolas Thill <ntl at p1sec.com>

-----------------------------------------------------------------------

Summary of changes:
 doc/userguide/configuration/suricata-yaml.rst | 41 ++++++++++++++
 doc/userguide/output/lua-output.rst           | 12 ++++
 m4/libprelude.m4                              |  2 +-
 src/alert-prelude.c                           | 80 ++++++++++++++++++++-------
 src/app-layer-ssl.c                           | 19 ++++---
 src/decode-icmpv4.h                           |  3 +-
 src/decode-icmpv6.h                           |  1 +
 src/decode-tcp.h                              |  4 ++
 src/decode-udp.h                              |  2 +
 src/stream-tcp.c                              |  5 ++
 src/util-lua-common.c                         | 30 ++++++++++
 suricata.yaml.in                              |  4 ++
 12 files changed, 174 insertions(+), 29 deletions(-)


hooks/post-receive
-- 
OISF

More information about the Oisf-devel mailing list