[Oisf-devel] [COMMIT] OISF branch, master, updated. suricata-4.0.1-150-gcf8d770
OISF Git
noreply at openinfosecfoundation.org
Tue Dec 19 07:51:12 UTC 2017
This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "OISF".
The branch, master has been updated
via cf8d770caad3b049d67143d3e84f6fb56c28d6b9 (commit)
via 5a8537fe4a7b0a3288e14e2d9c510417c9353f1d (commit)
via 9d1f07c021da8ebc01054773ca45444af5a11bb4 (commit)
via a463910ff2be7122d8995eb9624856bfce2d0276 (commit)
via ed041239f388e572f7eb30cf1c7f51df755b7eb6 (commit)
via 17e77346de7cc3c7bc16066d25935ee787b2abef (commit)
from 84f09d5124643c6be7fc9b9604f24609a6bfb1c4 (commit)
Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.
- Log -----------------------------------------------------------------
commit cf8d770caad3b049d67143d3e84f6fb56c28d6b9
Author: Jason Ish <ish at unx.ca>
Date: Mon Dec 18 06:58:18 2017 -0600
dns-log: don't register if HAVE_RUST
Log just one notice message when attempting to register
this logger with HAVE_RUST, instead of logging on
every attempt to output a DNS record.
Issue:
https://redmine.openinfosecfoundation.org/issues/2365
commit 5a8537fe4a7b0a3288e14e2d9c510417c9353f1d
Author: Jason Ish <ish at unx.ca>
Date: Mon Dec 18 06:46:17 2017 -0600
rust/dns - convert more type values to text
Issue:
https://redmine.openinfosecfoundation.org/issues/2364
Convert more record type and errr code values to text.
Remove duplicate type declarations.
commit 9d1f07c021da8ebc01054773ca45444af5a11bb4
Author: Wolfgang Hotwagner <code at feedyourhead.at>
Date: Mon Dec 18 14:49:38 2017 +0000
Conf: Multipe NULL-pointer dereferences in PostConfLoadedSetup
Multiple NULL-pointer dereferences after ConfGet in PostConfLoadedSetup can cause suricata to terminate with segfaults. The ASAN-output:
ASAN:DEADLYSIGNAL =================================================================
5734ERROR: AddressSanitizer: SEGV on unknown address 0x000000000000 (pc 0x7f1a9a3967cc bp 0x7ffdff033ad0 sp 0x7ffdff033250 T0)
0 0x7f1a9a3967cb (/usr/lib/x86_64-linux-gnu/libasan.so.3+0x447cb)
1 0x55ba65f66f27 in PostConfLoadedSetup /root/suricata-1/src/suricata.c:2652
2 0x55ba65f6870e in main /root/suricata-1/src/suricata.c:2898
3 0x7f1a96aeb2b0 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x202b0)
4 0x55ba65af9039 in _start (/usr/local/bin/suricata+0xc8039)
AddressSanitizer can not provide additional info.
SUMMARY: AddressSanitizer: SEGV (/usr/lib/x86_64-linux-gnu/libasan.so.3+0x447cb)
This commit fixes Bug #2370 by replacing ConfGet by ConfGetValue
commit a463910ff2be7122d8995eb9624856bfce2d0276
Author: Wolfgang Hotwagner <code at feedyourhead.at>
Date: Sun Dec 17 22:15:27 2017 +0000
Conf: Multipe NULL-pointer dereferences after ConfGetBool in StreamTcpInitConfig
There are multiple NULL-pointer dereferences after calling ConfGetBool in StreamTcpInitConfig. ConfGetBool calls ConfGet which doesn't check the vptr-argument. This is a sample ASAN-output:
1453ERROR: AddressSanitizer: SEGV on unknown address 0x000000000000 (pc 0x7f2969b83a28 bp 0x7ffdbf613a90 sp 0x7ffdbf613210 T0)
0 0x7f2969b83a27 in strcasecmp (/usr/lib/x86_64-linux-gnu/libasan.so.3+0x51a27)
1 0x564185accefd in ConfValIsTrue /root/suricata-1/src/conf.c:559
2 0x564185accb4f in ConfGetBool /root/suricata-1/src/conf.c:512
3 0x564185dcbe05 in StreamTcpInitConfig /root/suricata-1/src/stream-tcp.c:381
4 0x564185e21a88 in PreRunInit /root/suricata-1/src/suricata.c:2264
5 0x564185e24d2c in PostConfLoadedSetup /root/suricata-1/src/suricata.c:2763
6 0x564185e2570e in main /root/suricata-1/src/suricata.c:2898
7 0x7f29662cb2b0 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x202b0)
8 0x5641859b6039 in _start (/usr/local/bin/suricata+0xc8039)
AddressSanitizer can not provide additional info.
SUMMARY: AddressSanitizer: SEGV (/usr/lib/x86_64-linux-gnu/libasan.so.3+0x51a27) in strcasecmp
1453ABORTING
This commit replaces ConfGet by ConfGetValue in ConfGetBool. This does not only fix Bug #2368 but might also fix others too.
commit ed041239f388e572f7eb30cf1c7f51df755b7eb6
Author: Wolfgang Hotwagner <code at feedyourhead.at>
Date: Sun Dec 17 21:54:15 2017 +0000
Conf: Multipe NULL-pointer dereferences in HostInitConfig
Multiple NULL-pointer dereferences after ConfGet in HostInitConfig can cause suricata to terminate with segfaults. The ASAN-output:
==29747==ERROR: AddressSanitizer: SEGV on unknown address 0x000000000000 (pc 0x7ff937904646 bp
0 0x7ff937904645 in strlen (/lib/x86_64-linux-gnu/libc.so.6+0x80645)
1 0x7ff93b146eec (/usr/lib/x86_64-linux-gnu/libasan.so.3+0x3beec)
2 0x5618387c86a3 in HostInitConfig /root/suricata-1/src/host.c:174
3 0x56183893eccb in PostConfLoadedSetup /root/suricata-1/src/suricata.c:2752
4 0x56183893f70e in main /root/suricata-1/src/suricata.c:2898
5 0x7ff9378a42b0 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x202b0)
6 0x5618384d0039 in _start (/usr/local/bin/suricata+0xc8039)
AddressSanitizer can not provide additional info.
SUMMARY: AddressSanitizer: SEGV (/lib/x86_64-linux-gnu/libc.so.6+0x80645) in strlen
This commit fixes Bug #2367
commit 17e77346de7cc3c7bc16066d25935ee787b2abef
Author: Victor Julien <victor at inliniac.net>
Date: Fri Dec 15 09:44:12 2017 +0100
content: fix depth/within, offset/distance mix
-----------------------------------------------------------------------
Summary of changes:
rust/src/dns/dns.rs | 32 ++++++++++-------
rust/src/dns/log.rs | 94 ++++++++++++++++++++++++++++++++++++++++++--------
rust/src/dns/lua.rs | 2 +-
rust/src/dns/parser.rs | 12 +++----
src/conf.c | 2 +-
src/detect-content.c | 12 ++++++-
src/host.c | 6 ++--
src/log-dnslog.c | 10 +++---
src/runmodes.c | 6 ++++
src/suricata.c | 4 +--
10 files changed, 135 insertions(+), 45 deletions(-)
hooks/post-receive
--
OISF
More information about the Oisf-devel
mailing list