[Oisf-devel] [COMMIT] OISF branch, master, updated. suricata-4.0.1-435-g6c643d8

OISF Git noreply at openinfosecfoundation.org
Fri Feb 9 18:02:34 UTC 2018 

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "OISF".

The branch, master has been updated
       via  6c643d8975e9bab542ef5583d1422d5e669188df (commit)
       via  92b537d02861001434bf88e86d2f2b4f1a4094cf (commit)
       via  8b74ac6ba00c40fd252698b6938ea5bcda39163b (commit)
       via  013c4e0aa04436727d8c8cc4292387af069eea52 (commit)
      from  f815027cdfbf9fda9f6141d9bf3a5584d6d7a672 (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
commit 6c643d8975e9bab542ef5583d1422d5e669188df
Author: David DIALLO <david.diallo at gmail.com>
Date:   Thu Feb 8 00:20:09 2018 +0100

    modbus: duplicate alerts unaware of direction
    
    Remove DetectAppLayerInspectEngineRegister for TOCLIENT direction
    because Modbus inspection engine is only performing in request (TOSERVER).
    
    Detect Value keyword in read access rule. In read access, match on value
    is not possible.
    
    Update Modbus keyword documentation.

commit 92b537d02861001434bf88e86d2f2b4f1a4094cf
Author: Pierre Chifflier <chifflier at wzdftpd.net>
Date:   Thu Feb 8 19:41:49 2018 +0100

    rust: update 'external' api for app layer changes
    
    Remove unused HasTxDetectState function and remove state argument
    from SetTxDetectState.
    
    Update NTP code.

commit 8b74ac6ba00c40fd252698b6938ea5bcda39163b
Author: Jason Ish <ish at unx.ca>
Date:   Wed Feb 7 15:11:54 2018 -0600

    conf/yaml: don't allow empty key values
    
    When loading an empty file, libyaml will fire a single scalar
    event causing us to create a key that contains an empty string.
    We're not interested in this, so skip an empty scalar value
    when expecting a key.
    
    Redmine issue:
    https://redmine.openinfosecfoundation.org/issues/2418

commit 013c4e0aa04436727d8c8cc4292387af069eea52
Author: Jason Ish <ish at unx.ca>
Date:   Mon Feb 5 15:34:09 2018 -0600

    metadata: fix parsing when not k/v
    
    Allows for parsing metadata with mixed single word and key/val
    pairs.

-----------------------------------------------------------------------

Summary of changes:
 doc/userguide/rules/modbus-keyword.rst |   8 ++-
 rust/src/ntp/ntp.rs                    |   8 ---
 rust/src/parser.rs                     |   5 +-
 src/conf-yaml-loader.c                 |   8 +++
 src/detect-metadata.c                  | 108 +++++++++++----------------------
 src/detect-modbus.c                    |   7 ++-
 6 files changed, 53 insertions(+), 91 deletions(-)


hooks/post-receive
-- 
OISF

More information about the Oisf-devel mailing list