aiden
/
suricata
mirror of https://github.com/OISF/suricata
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
17,907 Commits
8 Branches
165 Tags
216 MiB
main
main-8.0.x
main-7.0.x
master-6.0.x
master-5.0.x
master-4.1.x
master-4.0.x
master-3.2.x
suricata-8.0.2
suricata-7.0.13
suricata-8.0.1
suricata-7.0.12
suricata-8.0.0
suricata-7.0.11
suricata-8.0.0-rc1
suricata-8.0.0-beta1
suricata-7.0.10
suricata-7.0.9
suricata-7.0.8
suricata-7.0.7
suricata-7.0.6
suricata-6.0.20
suricata-7.0.5
suricata-6.0.19
suricata-6.0.18
suricata-7.0.4
suricata-6.0.17
suricata-7.0.3
suricata-6.0.16
suricata-7.0.2
suricata-6.0.15
suricata-7.0.1
suricata-6.0.14
suricata-7.0.0
suricata-7.0.0-rc2
suricata-6.0.13
suricata-6.0.12
suricata-6.0.11
suricata-7.0.0-rc1
suricata-6.0.10
suricata-6.0.9
suricata-7.0.0-beta1
suricata-6.0.8
suricata-6.0.7
suricata-6.0.6
suricata-5.0.10
suricata-6.0.5
suricata-5.0.9
suricata-6.0.4
suricata-5.0.8
suricata-6.0.3
suricata-5.0.7
suricata-6.0.2
suricata-5.0.6
suricata-6.0.1
suricata-5.0.5
suricata-4.1.10
suricata-4.1.9
suricata-5.0.4
suricata-6.0.0
suricata-6.0.0-rc1
suricata-6.0.0-beta1
suricata-5.0.3
suricata-4.1.8
suricata-4.1.7
suricata-5.0.2
suricata-4.1.6
suricata-5.0.1
suricata-5.0.0
suricata-5.0.0-rc1
suricata-4.1.5
suricata-5.0.0-beta1
suricata-4.1.4
suricata-4.1.3
suricata-4.0.7
suricata-4.1.2
suricata-4.1.1
suricata-4.1.0
suricata-4.0.6
suricata-4.1.0-rc2
suricata-4.1.0-rc1
suricata-4.0.5
suricata-4.1.0-beta1
suricata-4.0.4
suricata-4.0.3
suricata-4.0.2
suricata-3.2.5
suricata-4.0.1
suricata-3.2.4
suricata-4.0.0
suricata-4.0.0-rc2
suricata-3.2.3
suricata-4.0.0-rc1
suricata-4.0.0-beta1
suricata-3.2.2
suricata-3.1.4
suricata-3.2.1
suricata-3.2
suricata-3.2RC1
suricata-3.1.3
suricata-3.2beta1
suricata-3.1.2
suricata-3.1.1
suricata-3.1
suricata-3.0.2
suricata-3.1RC1
suricata-3.0.1
suricata-3.0.1RC1
suricata-3.0
suricata-2.0.11
suricata-3.0RC3
suricata-3.0RC2
suricata-3.0RC1
suricata-2.0.10
suricata-2.0.9
suricata-2.1beta4
suricata-2.0.8
suricata-2.0.7
suricata-2.1beta3
suricata-2.0.6
suricata-2.0.5
suricata-2.1beta2
suricata-2.0.4
suricata-2.1beta1
suricata-2.0.3
suricata-2.0.2
suricata-2.0.1
suricata-2.0.1rc1
suricata-2.0
suricata-2.0rc3
suricata-2.0rc2
suricata-2.0rc1
suricata-2.0beta2
suricata-1.4.7
suricata-1.4.6
suricata-1.4.5
suricata-2.0beta1
suricata-1.4.4
suricata-1.4.3
suricata-1.4.2
suricata-1.4.1
suricata-1.3.6
suricata-1.4
suricata-1.3.5
suricata-1.4rc1
suricata-1.3.4
suricata-1.4beta3
suricata-1.3.3
suricata-1.4beta2
suricata-1.3.2
suricata-1.4beta1
suricata-1.3.1
suricata-1.3
suricata-1.3rc1
suricata-1.3beta2
suricata-1.3beta1
suricata-1.2.1
suricata-1.2
suricata-1.2rc1
suricata-1.2beta1
suricata-1.1.1
suricata-0.8.2
suricata-1.0.0
suricata-1.0.1
suricata-1.0.2
suricata-1.0.3
suricata-1.0.4
suricata-1.0.5
suricata-1.1
suricata-1.1beta1
suricata-1.1beta2
suricata-1.1beta3
suricata-1.1rc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '9fb33bbaf6'
${ noResults }
Commit Graph

1982 Commits (9fb33bbaf6902cf4f0498b52330e2bb85cba974c)

Author SHA1 Message Date
Philippe Antoine 3641b4eda1 detect/nfs: move nfs_procedure to rust 
Make it able to use strings on the way

Ticket: 6723
 2 months ago
Philippe Antoine 9869fb776b detect/snmp: pdu_type keyword now accepts strings 
Ticket: 6723
 2 months ago
Philippe Antoine 0553dfa814 detect/krb5: move krb5_msg_type to rust 
Makes it a generic u32 on the way

Unit tests are covered by SV tests

Ticket: 6723
 2 months ago
Philippe Antoine 24503b0ead rust: move file functions out of SuricataContext 
Ticket: 7667
 2 months ago
Philippe Antoine 1f084f8cb7 rust: move HttpRangeFreeBlock out of SuricataContext 
Ticket: 7667
 2 months ago
Philippe Antoine 828a6bdbf8 rust: bindgen SCLogMessage 
Ticket: 7667
 2 months ago
Philippe Antoine cc845dccdb rust: bindgen GenericVarFree 
Ticket: 7667
 2 months ago
Philippe Antoine b00788af8b rust: bindgen SCAppLayerParserTriggerRawStreamInspection 
Ticket: 7667
 2 months ago
Philippe Antoine c52121586a rust: move AppLayerEvents funcs out of RustContext 
Ticket: 7667

just use it directly, with bindgen, and cfg not test
 2 months ago
Philippe Antoine bf6b8510fe rust: move DetectEngineStateFree out of RustContext 
Ticket: 7667

just use it directly, with bindgen, and cfg not test
 2 months ago
Philippe Antoine 573dd2367e rust: bindgen SCFileFlowFlagsToFlags 
Ticket: 7667
 2 months ago
Philippe Antoine 6fa85d18f0 rust: reenable lint unused_doc_comment 
With just local exceptions
 2 months ago
Philippe Antoine b59086210f rust: bindgen flow ffi API 
Ticket: 7667
 2 months ago
Philippe Antoine bbf1424371 rust: bindgen MpmAddPatternCI 
Ticket: 7667
 2 months ago
Philippe Antoine c391451f19 rust: begin to bindgen app-layer-register.h 
Ticket: 7667
 2 months ago
Philippe Antoine 95483228d2 detect: list-keywords cli shows integers with bitflags 
Ticket: 7875
 2 months ago
Philippe Antoine 53d9569dfb detect: list-keywords cli shows integers with enums 
Ticket: 7875
 2 months ago
Philippe Antoine da486af881 detect: list-keywords cli shows integers 
Ticket: 7875
 2 months ago
Philippe Antoine 68017d3fe1 detect: grow SigTableElmt flags to u32 
to be later able to store information about keywords being about
integers
 2 months ago
Philippe Antoine b298bce0e7 detect: list-keywords cli shows multi-buffers 
Ticket: 7571
 2 months ago
Philippe Antoine cb9ab951b9 detect/integers: subslice for multi-integers 2 months ago
Philippe Antoine 82f0e725a2 detect/integers: index or_absent and or_oob 
To match if array is empty, or index is out of bounds
 2 months ago
Philippe Antoine 1480cf47ab detect/integers: nb index to match a specific number of times 
For example
dns.rrtype: !A,nb>3
will match if we have more than 3 dns records which are not A
 2 months ago
Philippe Antoine 6f848eeaaf detect/integers: all1 index to match only on non-empty arrays 2 months ago
Philippe Antoine dd81cfa733 detect/uint: wait for end of progress to match on all 
As is done for absent keyword for instance
 2 months ago
Philippe Antoine 5add185f22 http2/detect: http2.window can now use index 
Ticket: 7480
 2 months ago
Philippe Antoine 83868778b9 http2/detect: http2.priority can now use index 
Ticket: 7480
 2 months ago
Philippe Antoine 9fc407fd75 mqtt/detect: mqtt.type can now use index 
Ticket: 7480
 2 months ago
Philippe Antoine c0988252ba dns/detect: rrtype can now use index 
Ticket: 7480
 2 months ago
Philippe Antoine d8c1f8e7be rust/detect: generic detect_uint_match_at_index 
and make ldap use it

Ticket: 7480

No behavior change, just code restyling
 2 months ago
Philippe Antoine 7effcb7835 rust/ldap: use Vec instead of Vecdeque 
as we do not pop

Ticket: 7480

May have a behavior change, but only in terms of performance
 2 months ago
Philippe Antoine f555f02ed4 rust/detect: generic detect_parse_array_uint_enum 
And make ldap use it

Ticket: 7480

No behavior change, just code restyling
 2 months ago
Philippe Antoine c6d3857793 rust/detect: create generic DetectUintArrayData 
And make ldap use them

Ticket: 7480

No behavior change, just code restyling
 2 months ago
Philippe Antoine e01d19889e rust/detect: move DetectUintIndex definition to generic file 
Ticket: 7480

No behavior change, just code restyling
 2 months ago
Philippe Antoine ef6ce7d701 detect: rename LdapIndex to something generic 
to be able to use it outside of ldap

Ticket: 7480

No behavior change, just code restyling
 2 months ago
Philippe Antoine 2ed7a85356 rust: rustfmt detect uint 2 months ago
Alice Akaki 8e0b0ef35f detect: add email.body_md5 keyword 
email.body_md5 matches on md5 hash generated from email body
This keyword maps to the EVE field email.body_md5
It is a sticky buffer
Supports prefiltering

Ticket: #7587
 2 months ago
Alice Akaki 6c88cc1e0c detect/mime: fix detect mime nits 
Return 0 if .to_str() fails in functions
SCDetectMimeEmailGetData and SCDetectMimeEmailGetDataArray

Fixes:
431822c ("detect: add email.from")
96e461f ("detect: add email.received keyword")
 2 months ago
Alice Akaki 4f1cc19f25 mime/smtp: Change md5_result type from GenericArray<u8, U16> to String 2 months ago
Victor Julien 96ae693b44 version: start work on 9.0.0 2 months ago
Shivani Bhardwaj 0d65d35c92 version: start development towards 8.0.2 2 months ago
Jason Ish 2444feed0d release: 8.0.1; update changelog 2 months ago
Jason Ish 6d74656bef rust: respect RUSTC and CARGO env vars like CC 
To support alternative cargo and rustc programs (such as cargo-1.82),
respect CARGO and RUSTC environment variables during ./configure much
like CC.

RUSTFMT is also respected as that is required for the tests, and Cargo
can't figure this out like it can for rustc (perhaps a bug in the
packaging).

For cbindgen, we have also have to make sure the cargo environment
variable is set for each invocation.

To build with Ubuntu's Rust 1.82 packaging:

  CARGO=cargo-1.82 RUSTC=rustc-1.82 RUSTDOC=rustdoc-1.82 \
      ./configure

Note that setting RUSTDOC is only required for commands like "make
check" to pass.

Ticket: #7877
 2 months ago
Jason Ish db945aec83 rust: bindgen requires rustfmt 
Bindgen will use rustfmt after generating the bindings, but this will
fail if rustfmt is not installed. Only run bindgen if rustfmt is
installed.
 2 months ago
Jason Ish 4d4198dccc rust: update tracing-subscriber 
Address https://rustsec.org/advisories/RUSTSEC-2025-0055.
 2 months ago
Jason Ish 3b9dfe620d rust: pin time crate to 0.3.41 
0.3.42 introduces dependencies that require Rust 1.81.
 2 months ago
Philippe Antoine be605ba2de htp: use transactions right get function 
Not the VecDeque one

Ticket: 7803
 3 months ago
Philippe Antoine d0a513df6a detect/integers: support kibibyte unit 
Ticket: 7869
 3 months ago
Philippe Antoine 2a17ab6d88 http: generate no anomaly for identity encoding 
Ticket: 7843
 3 months ago
Jeff Lucovsky 03d676531a detect/from_base64: Support keyword w/no opts 
Issue: 7853

Support the use of `from_base64` with no optional values. In this case,
the default values for:
- mode RFC4648
- offset: 0
- bytes: buffer size
will be used.
 3 months ago