Jamie
a297225157
victor must be getting sick of PPPoE and ICMP
15 years ago
Victor Julien
b6deadd2b4
Fixed a few missing places for tv->flags access. Changed mutex init for packets slightly.
15 years ago
Victor Julien
968dc45d27
Merge branch 'threading' into t
15 years ago
Victor Julien
1858be7a2f
Lock threadvars flags using spinlocks.
15 years ago
Victor Julien
edfddcb282
Clean up stream tests memory handling. Remove counters in the address handling that were thread unsafe.
15 years ago
William Metcalf
6095b8f2a1
fix for older libc's missing def for IPPROTO_DCCP
15 years ago
Victor Julien
f03d540d2f
Suppress debug output in yaml loader.
15 years ago
Jason Ish
c91a4baad5
- Autoconf goo for libyaml.
...
- Mock YAML configuration file.
- YAML loader for basic YAML files - not all YAML elements support yet..
todo.
- Add --dump-config command line parameter to dump the state of the
configuration db after loading the config file.
15 years ago
Victor Julien
733c3bcb8c
Fix "ip" rules not ending up in the tcp and udp sig group heads correctly.
15 years ago
Victor Julien
d883a993f7
Make sure stream_size works on IPv6 as well, only checks TCP packets, validates input better.
15 years ago
Gurvinder Singh
0675b7d7cf
fixed unittests against protoctx
15 years ago
Gurvinder Singh
d82d83eba2
fixed regex to handle space
15 years ago
Gurvinder Singh
df74597a1f
use next_seq for stream size and comments
15 years ago
Gurvinder Singh
7e5f5e68e8
regex intial version
15 years ago
Gurvinder Singh
aa87f70470
stream size match function and unittests
15 years ago
Gurvinder Singh
ac53ca5b27
Stream Size rule option
15 years ago
Anoop Saldanha
3a45b2711c
Fixed the Perf API startup issue
15 years ago
William Metcalf
07bb501aca
compile fix for source-nfq.c
15 years ago
Victor Julien
15b75d727a
Fix reassembly unittests.
15 years ago
Victor Julien
a39108843e
Small tm module API rename to reflect that Init/Deinit/ExitPrintStats are per thread calls.
15 years ago
Victor Julien
b102ea2123
Big update:
...
- Implement "closing" state in flow.
- Add protocol specific timeouts.
- Lots of stream tracking updates, fixing a lot of out of window issues.
- Stream reassembly fixes.
- Implement a new IDS runmode with 4 stream and detect threads.
- Added a BUG_ON macro that aborts the engine if the expression is true.
- Better balance the flow queue handler for traffic that doesn't have flow (like icmp currently).
- Simplify application level protocol in the Tcp Session.
- Add some debugging memory counters.
15 years ago
Victor Julien
b4f0e82463
Small flow updates.
15 years ago
Gurvinder Singh
2e3d7fcb9d
Fixed seg fault
15 years ago
Gurvinder Singh
9dcf6e2de2
handle the FLOW_STATE_CLOSED
15 years ago
Gurvinder Singh
ced5157dc9
Flow get state protocol specific
15 years ago
Gurvinder Singh
ec4fee215c
registering unit tests
15 years ago
Gurvinder Singh
ab76253ec6
registering stream timeouts and flow prunning unit tests
15 years ago
Gurvinder Singh
a4ad7939d2
proto specific free function
15 years ago
Gurvinder Singh
55cdf8947e
some modification in protocol specifc timeouts and free funtion
15 years ago
Gurvinder Singh
efcde9f52e
Some fixes for timeouts
15 years ago
Gurvinder Singh
e3b76dcaad
efficient protocol specific timeouts
15 years ago
Gurvinder Singh
b46d9dc2b4
part2 and part3.1 of timout task
15 years ago
Gurvinder Singh
59e2232211
setting timeout on first packet in the flow
15 years ago
Gurvinder Singh
a31a261737
Another and right way i guess for timeouts
15 years ago
Gurvinder Singh
0e64fa78b4
Protocol Specific Timeouts
15 years ago
Gurvinder Singh
a65d558d2f
Changed the debug message
15 years ago
Victor Julien
7c5f95db01
Small threading update.
15 years ago
Anoop Saldanha
f35d9f0437
threading improvements. Replaced the use of slot(2/3) with varslot. Improve error handling in slot functions. Additional helper functions for thread creation
15 years ago
Victor Julien
03d084858c
Add macro's for access to ICMPv(4|6) type & code.
15 years ago
Jason Ish
00821489d7
Unit test will now fail if allow_override bug is reintroduced.
15 years ago
Jason Ish
3f51fc2ce7
- Add a configuration dumper.
...
- Fix a bug where you could override a configuration value that did not
set allow_override to true.
15 years ago
Victor Julien
aad8aaf3cb
Actually add the new queue handler.
15 years ago
Victor Julien
3636ca9703
Adding a "flow" queue handler. This queue handler passes packets of the same flow to the same queue. Changed the default IDS mode to use this.
...
Some output cleanups, shutdown should be cleaner now.
15 years ago
Victor Julien
e7206623bb
GRE struct naming fix, comment adds.
15 years ago
Anoop Saldanha
22c0ec2bc5
Added support for the csum-<protocol> rules keyword to the detection engine. Keywords added are ipv4-csum, tcpv4-csum, tcpv6-csum, udpv4-csum, udpv6-csum, icmpv4-csum and icmpv6-csum
15 years ago
Victor Julien
39724df664
2nd try of fixing some bugs reported by static code analysis tool.
15 years ago
Victor Julien
5041e7e451
updated config.h.in
15 years ago
William Metcalf
073d04210c
added detection of PF_RING for -lpfring enabled pcap
15 years ago
Victor Julien
6eaff4be12
Fixes for issues found by static code analyzer.
15 years ago
Victor Julien
85b1fd7dfc
Add TLS 1.1 and 1.2 detection.
15 years ago