[Oisf-devel] [COMMIT] OISF branch, master, updated. suricata-4.0.0-beta1-15-g70808a4

OISF Git noreply at openinfosecfoundation.org
Mon Jun 12 19:09:43 UTC 2017 

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "OISF".

The branch, master has been updated
       via  70808a4f1d87c036b89172a06f5dbc222308ada9 (commit)
       via  f1ba406d39e4b18a0128f28203449124e10329d0 (commit)
       via  4bdb722371987aa15f2d707c2aadc07eac12b605 (commit)
       via  2aebfbce946104716d97549802b2b05e356fd761 (commit)
       via  26914cd59af44ccf81a483636c490da2f8584a29 (commit)
       via  fafa75035f213b9a1d946f9d4a3b101639c9d7d3 (commit)
       via  5be44eb50019a908d4621c8dce1c138dd3437289 (commit)
       via  f4374ffd0bfce53abb04b6f415ea7d55f84eba70 (commit)
       via  f5ad6a209527ba6df554f6c3334f2392afcaed04 (commit)
       via  0c3a3101b16763dfc99c24be9e50f26c03e74876 (commit)
       via  f0e8062b2bbb51699404932400fdd889d3893443 (commit)
       via  6af529d0c66407beac142a74ad437e62f1274ef5 (commit)
       via  97b89c0a5492417efad8374c4bfb9515e4a5887c (commit)
       via  43db4697a3a599f0a0cb069bf25a987f896c345b (commit)
       via  e91473b1519c4b69f4b36ac2345cdbd26d2b084b (commit)
      from  8ea9a5a7d6619057ea7c51676743b02692dad7b5 (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
commit 70808a4f1d87c036b89172a06f5dbc222308ada9
Author: Jason Ish <ish at unx.ca>
Date:   Fri Jun 9 11:12:19 2017 -0600

    rust/dns: support gaps in TCP DNS

commit f1ba406d39e4b18a0128f28203449124e10329d0
Author: Jason Ish <ish at unx.ca>
Date:   Thu Jun 8 13:32:40 2017 -0600

    travis: add rust 1.7.0 build
    
    One build with Rust 1.7.0, our oldest that we'll support as its
    whats bundled with Ubuntu 16.04. Create another build that will use
    the latest stable.

commit 4bdb722371987aa15f2d707c2aadc07eac12b605
Author: Jason Ish <ish at unx.ca>
Date:   Thu Jun 8 13:59:09 2017 -0600

    rust/dns: fix unit tests on Rust 1.7.0

commit 2aebfbce946104716d97549802b2b05e356fd761
Author: Jason Ish <ish at unx.ca>
Date:   Thu Jun 8 13:26:37 2017 -0600

    rust/dns: support txt records

commit 26914cd59af44ccf81a483636c490da2f8584a29
Author: Jason Ish <ish at unx.ca>
Date:   Wed Jun 7 14:06:44 2017 -0600

    rust/dns: copy over dns unit tests
    
    Only the tests that make sense were copied over, those testing
    correlation of responses to requests were not.
    
    Also, remove compiler warning when not built with
    unit tests.

commit fafa75035f213b9a1d946f9d4a3b101639c9d7d3
Author: Jason Ish <ish at unx.ca>
Date:   Wed Jun 7 13:25:16 2017 -0600

    rust: don't fail distcheck if cargo-vendor not found
    
    Allow distcheck to pass if cargo vendor is not found by not
    failing out. It is not required to successfully build a dist
    tarball, the Rust sources will just not be vendored in.
    
    Also don't fail out make dist if Python is not installed. A build
    will still be successful is Python is available on the end
    build system.

commit 5be44eb50019a908d4621c8dce1c138dd3437289
Author: Eric Leblond <eric at regit.org>
Date:   Mon Jun 12 14:04:38 2017 +0200

    output-json-alert: don't decref used object
    
    In the unlikely case of a allocation error we will still use the
    existing object so it should not be decref and freed.

commit f4374ffd0bfce53abb04b6f415ea7d55f84eba70
Author: Eric Leblond <eric at regit.org>
Date:   Tue Jun 6 18:45:52 2017 +0200

    doc: some more info about alert format

commit f5ad6a209527ba6df554f6c3334f2392afcaed04
Author: Eric Leblond <eric at regit.org>
Date:   Tue Jun 6 18:35:48 2017 +0200

    doc: document target keyword

commit 0c3a3101b16763dfc99c24be9e50f26c03e74876
Author: Eric Leblond <eric at regit.org>
Date:   Sun Dec 25 23:04:31 2016 +0100

    alert-prelude: correctly set Source and Target
    
    IDMEF alert contains two entities named Source and Target that are
    defined using common language:
    * "The Source class contains information about the possible source(s) of
       the event(s) that generated an alert."
    * "The Target class contains information about the possible target(s) of
       the event(s) that generated an alert."
    
    Previous alerts event were not following that so we can updated the code
    when we know the direction thanks to the metadata field.

commit f0e8062b2bbb51699404932400fdd889d3893443
Author: Eric Leblond <eric at regit.org>
Date:   Sun Apr 23 10:24:05 2017 +0200

    alert-prelude: fix warnings on callback type

commit 6af529d0c66407beac142a74ad437e62f1274ef5
Author: Eric Leblond <eric at regit.org>
Date:   Sat Dec 17 10:40:11 2016 +0100

    output-json-alert: output source and target
    
    Use metadata provided information to output the Source and Target
    in the definition of IDMEF.
    
    The output is now the following:
    
      "alert": {
        "action": "allowed",
        "gid": 1,
        "signature_id": 1,
        "rev": 1,
        "signature": "connection to home",
        "category": "",
        "severity": 3,
        "source": {
          "ip": "2001:31d0:000a:f68a:0000:0000:0000:0001",
          "port": 80
        },
        "target": {
          "ip": "2a01:0e34:ee97:b130:c685:08ff:dab3:c9c8",
          "port": 48390
        }

commit 97b89c0a5492417efad8374c4bfb9515e4a5887c
Author: Eric Leblond <eric at regit.org>
Date:   Fri Dec 16 19:26:58 2016 +0100

    detect-target: introduce new keyword
    
    The target keyword allows rules writer to specify information about
    target of the attack. Using this keyword in a signature causes
    some fields to be added in the EVE output. It also fixes ambiguity
    in the Prelude output.

commit 43db4697a3a599f0a0cb069bf25a987f896c345b
Author: Victor Julien <victor at inliniac.net>
Date:   Mon Jun 12 18:45:36 2017 +0200

    github: add pull request template

commit e91473b1519c4b69f4b36ac2345cdbd26d2b084b
Author: Victor Julien <victor at inliniac.net>
Date:   Mon Jun 12 18:38:42 2017 +0200

    github: add contributing doc

-----------------------------------------------------------------------

Summary of changes:
 .github/CONTRIBUTING.md                           |  38 +++++
 .github/PULL_REQUEST_TEMPLATE.md                  |  15 ++
 .travis.yml                                       |  27 +++-
 doc/userguide/output/eve/eve-json-format.rst      |  21 +++
 doc/userguide/rules/meta.rst                      |  17 ++
 rust/Makefile.am                                  |  39 ++---
 rust/src/dns/dns.rs                               | 108 ++++++++++---
 rust/src/dns/log.rs                               |   2 +
 rust/src/dns/parser.rs                            |   8 +
 src/Makefile.am                                   |   1 +
 src/alert-prelude.c                               |  54 +++++--
 src/app-layer-dns-tcp-rust.c                      | 129 ++++++++++++++-
 src/app-layer-dns-udp-rust.c                      | 187 +++++++++++++++++++++-
 src/detect-target.c                               | 167 +++++++++++++++++++
 src/{app-layer-dns-udp-rust.h => detect-target.h} |  14 +-
 src/detect.c                                      |   2 +
 src/detect.h                                      |   8 +
 src/output-json-alert.c                           |  53 +++++-
 18 files changed, 820 insertions(+), 70 deletions(-)
 create mode 100644 .github/CONTRIBUTING.md
 create mode 100644 .github/PULL_REQUEST_TEMPLATE.md
 create mode 100644 src/detect-target.c
 copy src/{app-layer-dns-udp-rust.h => detect-target.h} (79%)


hooks/post-receive
-- 
OISF

More information about the Oisf-devel mailing list