suricata

Commit Graph

Author	SHA1	Message	Date
jason taylor	e8eba6e4a1	userguide: update id keyword information Signed-off-by: jason taylor <jtfas90@gmail.com>	3 years ago
jason taylor	cfd0da133e	userguide: update ipv6.hdr keyword information Signed-off-by: jason taylor <jtfas90@gmail.com>	3 years ago
jason taylor	150a04b597	userguide: update ipv4.hdr keyword information Signed-off-by: jason taylor <jtfas90@gmail.com>	3 years ago
jason taylor	298f59c2ba	userguide: update ip_proto keyword information Signed-off-by: jason taylor <jtfas90@gmail.com>	3 years ago
jason taylor	6226492976	userguide: update sameip keyword information Signed-off-by: jason taylor <jtfas90@gmail.com>	3 years ago
jason taylor	f97ba44339	userguide: update ipopts keyword information Signed-off-by: jason taylor <jtfas90@gmail.com>	3 years ago
jason taylor	9b4e6e5802	userguide: update ttl keyword information Signed-off-by: jason taylor <jtfas90@gmail.com>	3 years ago
Philippe Antoine	ce710181f6	doc: update doc for HTTP file.data to server Ticket: #4144 Completes `e587f6792a`	3 years ago
Philippe Antoine	e1ee401a12	quic: use VecDeque Ticket: #5637	3 years ago
Victor Julien	ca6ce935b5	security: disable setrlimit with asan Various parts of ASAN will require creation of threads. At least LSAN reporting and ASAN stack traces require this. Detect if we run with ASAN and bypass the noproc setting with a warning. Bug: #5661.	3 years ago
Philippe Antoine	41d529fb24	pcre: configurable paths for PCRE2 for include/lib Ticket: #5572	3 years ago
Victor Julien	8f0d820218	ssl: add debug validation checks for recent changes Make sure the assumptions are correct.	3 years ago
Philippe Antoine	3fbcba8ab7	tls: fix buffer overread Recently introduced by commit `4bab6e24e5` Ticket: #5564	3 years ago
Philippe Antoine	4706083929	detect: avoids memory leak on ja3 signature parsing If a later keyword enforces a protocol incompatible with ja3	3 years ago
Philippe Antoine	c09ca7d171	clean: use SC_MD5_HEX_LEN instead of magic number 32	3 years ago
Philippe Antoine	7823653a30	clean: replace MD5_STRING_LENGTH with more used SC_MD5_HEX_LEN	3 years ago
Philippe Antoine	5a0d07b13f	clean: remove useless * sizeof(char)	3 years ago
Philippe Antoine	f75d18b077	quic: ja3 code deduplication As quic transactions are unidirectional, the same function is used to get ja3 from client or from server.	3 years ago
Philippe Antoine	7cb40a1dfc	quic: allow ja3.hash keyword Ticket: #5624	3 years ago
Philippe Antoine	286bd2a7ed	rust: fix cargo clippy --all-features	3 years ago
Philippe Antoine	bc287018e5	rust: cargo clippy --all-features --fix --allow-no-vcs	3 years ago
Philippe Antoine	ce66c26afc	ci: cargo clippy run option As clippy does not recognize git which is above	3 years ago
Philippe Antoine	cd4bf518f3	rust: fix warnings on rustc 1.67.0-nightly warning: for loop over an `Option`. This is more readably written as an `if let` statement	3 years ago
Daniel Young	aeb0c0e71a	detect/parse-port: fix whitespaces bug Updated by Victor Julien to: - accept but strip leading whitespaces - update tests - cleanup tests	3 years ago
Eric Leblond	ea85e2ccf2	detect/filename: fix buffer description	3 years ago
Shivani Bhardwaj	82dba07579	src: remove unneeded header and refs	3 years ago
Haleema Khan	df45fc9e97	detect-l3proto: Convert unittests to new FAIL/PASS API Ticket: #4050	3 years ago
Alice Akaki	d46ce170ba	detect-icmp-seq: clean-up unittests Task: #5597	3 years ago
Eric Leblond	4e1ff9a7ff	flow: fix FlowSwapFileFlags function Ticket: #5625	3 years ago
Haleema Khan	160c778a1f	detect-filesize: Convert unittests to new FAIL/PASS API Ticket: 4039	3 years ago
Haleema Khan	f25d4cc546	detect-distance: Convert unittests to new FAIL/PASS API Ticket : #4020	3 years ago
Juliana Fajardini	a654ef50de	pgsql: add test for parameter status parser Since we've done some changes to how the parameters are parsed, add one more test case to check that. Bug #5579	3 years ago
Juliana Fajardini	c4fbd78770	pgsql: move database into opt parameters list For StartupMessages, the database parameter is optional. This moves the parameter into the optional_parameters list. Bug #5579	3 years ago
Juliana Fajardini	84f9ea7254	eve/schema: pgsql - allow flexible parameters list Pgsql's parameters - for message types like StartupMessage and ParameterStatus, for instance, don't have a finite, definitive set, as per their documentation. Our json schema was allow expecting a fixed set of parameters, though, resulting in SV tests failing if different, valid parameters appeared. Bug #5579	3 years ago
Philippe Antoine	cc68898532	pgsql: support empty parameter values Bug #5579	3 years ago
Philippe Antoine	1e0190bc6b	pgsql: support out of order parameters for startup message As user can be not the first parameter Bug #5579	3 years ago
Alice Akaki	f251b6af65	detect-icmp-id: convert unittests to FAIL/PASS APIs Task: #4042	3 years ago
Haleema Khan	1fdd56a61d	detect-itype: Convert unittests to new FAIL/PASS API Bug: #5589	3 years ago
dependabot[bot]	6a9b7cf977	github-actions: bump actions/cache from 3.0.10 to 3.0.11 Bumps [actions/cache](https://github.com/actions/cache) from 3.0.10 to 3.0.11. - [Release notes](https://github.com/actions/cache/releases) - [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md) - [Commits](https://github.com/actions/cache/compare/v3.0.10...9b0c1fce7a93df8e3bb8926b0d6e9d89e92f20a7) --- updated-dependencies: - dependency-name: actions/cache dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	3 years ago
Simeon Miteff	6673846481	profiling: Make rule_perf.log JSON output newline-delimited Adding a newline makes the output valid JSON when multiple sortings of the rules profile object are written to the log.	3 years ago
Jeff Lucovsky	5a6e68285b	doc/netmap: Describe Netmap IPS usage Issue: 5512 This commit summarizes Netmap usage with Suricata's IPS mode.	3 years ago
Jason Ish	9d653512f9	doc/userguide: update bittorrent-dht eve examples Update the bittorrent-dht examples using real log records with peers and nodes broken down into objects.	3 years ago
Jason Ish	e3e7d007b2	eve/schema: bittorrent-dht updates Some values that were previously strings are now parsed down into objects.	3 years ago
Jason Ish	1f056f9974	bittorrent-dht: parse and log node6 lists Node6 lists are just like node lists, but for IPv6 addresses.	3 years ago
Jason Ish	86d5ab8644	bittorrent-dht: remove tests that are no longer valid	3 years ago
Jason Ish	2f9eb5d1dd	bittorrent-dht: fix values decoding, as a list of peers The "values" field is not a string, but instead peer information in compact format. Decode this properly and then properly format in the log.	3 years ago
Jason Ish	4a0859beeb	jsonbuilder: add append_hex - add hex to array New method, append_hex to add a byte array to a JSON array in hex encoding.	3 years ago
Jason Ish	4bc9cf3986	bittorrent-dht: parse token and target as byte values	3 years ago
Jason Ish	5a30ee77a1	bittorrent-dht: only attempt to parse dht messages The bittorrent flow is shared with transport messages as well as dht messages. Only attempt to parse dht message as dht, ignore the rest.	3 years ago
Jason Ish	98a9391210	bittorrent-dht: decode node data structures Instead of decoding the nodes field into a blog of bytes, decode it into an array of node info objects, each with a node id, IP address and port.	3 years ago

1 2 3 4 5 ...

13830 Commits (91617f479a3f0c4a643b3f895de15d007a66ef6d) All Branches Search

13830 Commits (91617f479a3f0c4a643b3f895de15d007a66ef6d)

All Branches