[Oisf-devel] [COMMIT] OISF branch, master, updated. suricata-3.1.2-74-gf1117ba

OISF Git noreply at openinfosecfoundation.org
Tue Sep 20 15:43:12 UTC 2016

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "OISF".

The branch, master has been updated
       via  f1117ba2dcdf5ef4a8fcd6ec010b6ea1bb98622f (commit)
       via  215d0d54c7771fdc735bf05302716ebf041e678b (commit)
       via  04faf1a93a80248c6f58268428eb16797a0776e1 (commit)
       via  f2d1e93e653c9498d810b189d5c106f25f4e08c9 (commit)
       via  f6c3845397df717ebf2d0adf6ab917119371b822 (commit)
       via  15766ce2c4e04b71511a47d8ef9c0368228bb1a8 (commit)
       via  7d54d8c590971a9b126d0baf2343f508b1ec09e6 (commit)
       via  b454aa46c6ecaddb382eae401e34c929f8f50887 (commit)
       via  00313b21408c3c0ac6d128412a88a0616788b081 (commit)
      from  bbbc5ab1fcd7cb8b38a3ccb698c92f1439f8cbea (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
commit f1117ba2dcdf5ef4a8fcd6ec010b6ea1bb98622f
Author: Victor Julien <victor at inliniac.net>
Date:   Fri Jun 10 15:49:21 2016 +0200

    iponly: fix unittests

commit 215d0d54c7771fdc735bf05302716ebf041e678b
Author: Victor Julien <victor at inliniac.net>
Date:   Fri Jun 10 12:32:25 2016 +0200

    detect: optimize rule address parsing
    Many rules have the same address vars, so instead of parsing them
    each time use a hash to store the string and the parsed result.
    Rules now reference the stored result in the hash table.

commit 04faf1a93a80248c6f58268428eb16797a0776e1
Author: Tom DeCanio <decanio.tom at gmail.com>
Date:   Fri Sep 16 05:24:50 2016 -0700

    util-decode-mime: remove quote from boundary= string.
    remove quote from the end of the boundary= string.  This was throwing off
    the mime parser so that it wouldn't always catch mime boundaries causing
    things like missed attachments.

commit f2d1e93e653c9498d810b189d5c106f25f4e08c9
Author: Eric Leblond <eric at regit.org>
Date:   Tue May 31 15:02:12 2016 +0200

    unix-socket: add auto mode
    When running in live mode, the new default 'auto' value of
    unix-command.enabled causes unix-command to be activated. This
    will allow users of live capture to benefit from the feature and
    result in no side effect for user running in offline capture.

commit f6c3845397df717ebf2d0adf6ab917119371b822
Author: Eric Leblond <eric at regit.org>
Date:   Tue May 31 14:47:58 2016 +0200

    util-time: new function to know if live or offline

commit 15766ce2c4e04b71511a47d8ef9c0368228bb1a8
Author: Andreas Herz <andi at geekosphere.org>
Date:   Sun Jun 12 20:55:16 2016 +0200

    configure: set correct cppflags for enabled nfqueue
    This change sets the correct CPPFLAGS received by PKG_CHECK to resolve
    building issues with some systems like OpenSuse.

commit 7d54d8c590971a9b126d0baf2343f508b1ec09e6
Author: Andreas Herz <andi at geekosphere.org>
Date:   Sat Jul 23 21:59:12 2016 +0200

    rule-reload: remember pending USR2 signals
    We did ignore additional USR2 signals while a rule-reload was running.
    This changes the counter to be incremented with every additional USR2
    signal so we don't ignore them anymore but it's still limited to prevent
    huge overload or even overflow.

commit b454aa46c6ecaddb382eae401e34c929f8f50887
Author: Jason Ish <ish at unx.ca>
Date:   Mon Sep 19 07:47:24 2016 -0600

    defrag: use frag_pkt_too_large instead of frag_too_large
    The rules were using the wrong decoder event type, which was
    only set in the unlikely event of a complete overlap, which
    really had nothing to do with being too large.
    Remove FRAG_TOO_LARGE as its no longer being used, an overlap
    event is already set in the case where this event would be set.

commit 00313b21408c3c0ac6d128412a88a0616788b081
Author: Victor Julien <victor at inliniac.net>
Date:   Mon Sep 12 18:15:01 2016 +0200

    decoder-event: BUG_ON on table mismatches
    Abort when the event enum and the name<>event table are not matching.


Summary of changes:
 configure.ac                |   4 ++
 rules/decoder-events.rules  |   4 +-
 src/counters.c              |   5 +-
 src/decode-events.c         |   4 +-
 src/decode-events.h         |   2 -
 src/decode.c                |   5 +-
 src/defrag.c                |   7 +--
 src/detect-engine-address.c | 123 +++++++++++++++++++++++++++++++++++++++++++-
 src/detect-engine-address.h |   7 ++-
 src/detect-engine-iponly.c  |  98 ++++++++++++-----------------------
 src/detect-engine.c         |   6 ++-
 src/detect-parse.c          |  29 +++++------
 src/detect.h                |   5 +-
 src/suricata.c              |  10 ++--
 src/util-conf.c             |  28 ++++++++++
 src/util-conf.h             |   2 +
 src/util-decode-mime.c      |   2 +-
 src/util-time.c             |   5 ++
 src/util-time.h             |   1 +
 src/util-var.c              |   2 +-
 src/util-var.h              |   2 +-
 suricata.yaml.in            |   5 +-
 22 files changed, 243 insertions(+), 113 deletions(-)


More information about the Oisf-devel mailing list