..
Makefile.am
Introduce util-signal.[ch]. Move our signal setup functions here
14 years ago
action-globals.h
…
alert-debuglog.c
free flowvar entries in flow after live rule swap. Sync flowbits entries into packet struct to be used by alert debuglog when alert debuglog is enabled
14 years ago
alert-debuglog.h
…
alert-fastlog.c
OpenBSD: introduce SCLocalTime function.
14 years ago
alert-fastlog.h
Add per packet profiling.
14 years ago
alert-pcapinfo.c
No longer pass StreamMsg to output for alert logging, instead use the same callback code as is used for state alerts.
14 years ago
alert-pcapinfo.h
Add pcap-info alert format.
14 years ago
alert-prelude.c
Do not use underscored config vars internally.
14 years ago
alert-prelude.h
…
alert-syslog.c
Set DROP flag for reject action so in addition to sending the rst, in IPS mode also drop the offending packet.
14 years ago
alert-syslog.h
…
alert-unified2-alert.c
inline: fix unified2 alert direction selection
14 years ago
alert-unified2-alert.h
…
app-layer-dcerpc-common.h
…
app-layer-dcerpc-udp.c
Fix compiler warning.
14 years ago
app-layer-dcerpc-udp.h
…
app-layer-dcerpc.c
dcerpc/smb/smb2: more robust error checking, cosmetic code updates.
14 years ago
app-layer-dcerpc.h
…
app-layer-detect-proto.c
Add new command line option --list-app-layer-protocols to list supported app layer protocols in sigs
14 years ago
app-layer-detect-proto.h
Add new command line option --list-app-layer-protocols to list supported app layer protocols in sigs
14 years ago
app-layer-ftp.c
Add new command line option --list-app-layer-protocols to list supported app layer protocols in sigs
14 years ago
app-layer-ftp.h
…
app-layer-htp-body.c
http: body inspection improvement
14 years ago
app-layer-htp-body.h
File carving -- enable reponse file extraction
14 years ago
app-layer-htp-file.c
filemd5: add support code for md5 handling for signatures.
14 years ago
app-layer-htp-file.h
file extract: split toserver and toclient tracking
14 years ago
app-layer-htp.c
file inspection: improve logging when stream.depth limit is reached. #493 .
13 years ago
app-layer-htp.h
file inspection: improve logging when stream.depth limit is reached. #493 .
13 years ago
app-layer-nbss.h
…
app-layer-parser.c
coverity fixes
14 years ago
app-layer-parser.h
Add new command line option --list-app-layer-protocols to list supported app layer protocols in sigs
14 years ago
app-layer-protos.c
Add per app layer parser profiling
14 years ago
app-layer-protos.h
probing parser updated to always accept u32 buflens. Update all probing parser functions to accomodate this change
14 years ago
app-layer-smb.c
dcerpc/smb/smb2: more robust error checking, cosmetic code updates.
14 years ago
app-layer-smb.h
…
app-layer-smb2.c
dcerpc/smb/smb2: more robust error checking, cosmetic code updates.
14 years ago
app-layer-smb2.h
…
app-layer-smtp.c
Add new command line option --list-app-layer-protocols to list supported app layer protocols in sigs
14 years ago
app-layer-smtp.h
Support for smtp decoder events
14 years ago
app-layer-ssh.c
Add new command line option --list-app-layer-protocols to list supported app layer protocols in sigs
14 years ago
app-layer-ssh.h
…
app-layer-ssl.c
tls: debug compilation fixes, new tls decoder rule for tls.error_message_encountered event.
14 years ago
app-layer-ssl.h
ssl connection error message event added. Remove warning log for the same error alert
14 years ago
app-layer-tls-handshake.c
ssl parser fix/updates
14 years ago
app-layer-tls-handshake.h
ssl parser fix/updates
14 years ago
app-layer.c
flow: create a flow lock macro API, implement it for mutex and rwlocks. Mutex remains the default.
14 years ago
app-layer.h
…
conf-yaml-loader.c
Add line number to warning about mangled yaml parameters. Limit number of warnings to 10.
14 years ago
conf-yaml-loader.h
…
conf.c
conf api: remove dead code
13 years ago
conf.h
Allow other yaml files to be included in the main yaml.
14 years ago
counters.c
cleaning: fix warning when building with clang.
14 years ago
counters.h
Changed my email address to anoopsaldanha at gmail dot com from my current one
14 years ago
cuda-packet-batcher.c
sc_atomic_cas replaced with sc_atomic_set
14 years ago
cuda-packet-batcher.h
Changed my email address to anoopsaldanha at gmail dot com from my current one
14 years ago
cuda-ptxdump.h
Add missing cuda header file causing 'make distcheck' to fail.
14 years ago
data-queue.c
Changed my email address to anoopsaldanha at gmail dot com from my current one
14 years ago
data-queue.h
Changed my email address to anoopsaldanha at gmail dot com from my current one
14 years ago
debug.h
…
decode-ethernet.c
doc: add decode group and related documentation.
14 years ago
decode-ethernet.h
…
decode-events.c
Fix bug in app layer event handling causing http event rules to fail loading.
14 years ago
decode-events.h
ipv6: fix an AH header parsing issue. Add decoder event for non-null reserved fields.
14 years ago
decode-gre.c
Fix a number of potential issues found by CLANG and cppcheck.
14 years ago
decode-gre.h
…
decode-icmpv4.c
Various fixes and improvements based on feedback by Coverity analyzer.
14 years ago
decode-icmpv4.h
csum function fixes. Improves alert accuracy. FPs on invalid-csums decoder rules fixed
14 years ago
decode-icmpv6.c
icmpv6: for ICMPv6 info messages set payload ptr and length to right after 4 byte hdr.
14 years ago
decode-icmpv6.h
icmpv6: for ICMPv6 info messages set payload ptr and length to right after 4 byte hdr.
14 years ago
decode-ipv4.c
Set the packet protocol only if it can parsed without error
14 years ago
decode-ipv4.h
csum function fixes. Improves alert accuracy. FPs on invalid-csums decoder rules fixed
14 years ago
decode-ipv6.c
ipv6: fix an AH header parsing issue. Add decoder event for non-null reserved fields.
14 years ago
decode-ipv6.h
ipv6: improve handling of packets with duplicate (or more) ipv6 extension headers.
14 years ago
decode-ppp.c
doc: add decode group and related documentation.
14 years ago
decode-ppp.h
…
decode-pppoe.c
Minor code cleanups fixing all GCC 4.6 compiler warnings for default, debug and unittests mode.
14 years ago
decode-pppoe.h
…
decode-raw.c
doc: add decode group and related documentation.
14 years ago
decode-raw.h
…
decode-sctp.c
doc: add decode group and related documentation.
14 years ago
decode-sctp.h
…
decode-sll.c
doc: add decode group and related documentation.
14 years ago
decode-sll.h
…
decode-tcp.c
Small optimizations to IPV4 and TCP header parsing.
14 years ago
decode-tcp.h
csum function fixes. Improves alert accuracy. FPs on invalid-csums decoder rules fixed
14 years ago
decode-udp.c
doc: add decode group and related documentation.
14 years ago
decode-udp.h
coverity fixes
14 years ago
decode-vlan.c
doc: add decode group and related documentation.
14 years ago
decode-vlan.h
…
decode.c
Make sure all fake packets have datalink type DLT_RAW. Make sure stream end packets set pkt size.
14 years ago
decode.h
free flowvar entries in flow after live rule swap. Sync flowbits entries into packet struct to be used by alert debuglog when alert debuglog is enabled
14 years ago
defrag.c
defrag: don't increment recursion level for reassembled packets. Fixes defragged packets not seeing the same flow.
14 years ago
defrag.h
…
detect-ack.c
code cleanup - replace SigMatchAppendPacket with SigMatchAppendSMToList
14 years ago
detect-ack.h
…
detect-app-layer-event.c
flow: create a flow lock macro API, implement it for mutex and rwlocks. Mutex remains the default.
14 years ago
detect-app-layer-event.h
Support for app layer decoder events added + app_layer_event keyword added
14 years ago
detect-asn1.c
code cleanup - replace SigMatchAppendPacket with SigMatchAppendSMToList
14 years ago
detect-asn1.h
…
detect-byte-extract.c
byte_extract_id var now a non-global de_ctx specific var
14 years ago
detect-byte-extract.h
byte_extract_id var now a non-global de_ctx specific var
14 years ago
detect-bytejump.c
Minor unittest fixes to make Coverity happy.
14 years ago
detect-bytejump.h
byte extract added to the engine. Detection support added for packet payload, uri and dce detection engines
15 years ago
detect-bytetest.c
Minor unittest fixes to make Coverity happy.
14 years ago
detect-bytetest.h
byte extract added to the engine. Detection support added for packet payload, uri and dce detection engines
15 years ago
detect-classtype.c
clean classification config API
14 years ago
detect-classtype.h
Changed my email address to anoopsaldanha at gmail dot com from my current one
14 years ago
detect-content.c
Minor unittest fixes to make Coverity happy.
14 years ago
detect-content.h
http user agent keyword + mpm + inspection + fast pattern support added
14 years ago
detect-csum.c
csum function fixes. Improves alert accuracy. FPs on invalid-csums decoder rules fixed
14 years ago
detect-csum.h
Changed my email address to anoopsaldanha at gmail dot com from my current one
14 years ago
detect-dce-iface.c
Minor unittest fixes to make Coverity happy.
14 years ago
detect-dce-iface.h
Changed my email address to anoopsaldanha at gmail dot com from my current one
14 years ago
detect-dce-opnum.c
code cleanup - replace SigMatchAppendAppLayer with SigMatchAppendSMToList
14 years ago
detect-dce-opnum.h
Changed my email address to anoopsaldanha at gmail dot com from my current one
14 years ago
detect-dce-stub-data.c
code cleanup - replace SigMatchAppendAppLayer with SigMatchAppendSMToList
14 years ago
detect-dce-stub-data.h
Changed my email address to anoopsaldanha at gmail dot com from my current one
14 years ago
detect-depth.c
http user agent keyword + mpm + inspection + fast pattern support added
14 years ago
detect-depth.h
…
detect-detection-filter.c
fix detection filter unittests to reflect recent fixes
14 years ago
detect-detection-filter.h
…
detect-distance.c
http user agent keyword + mpm + inspection + fast pattern support added
14 years ago
detect-distance.h
…
detect-dsize.c
Various fixes and improvements based on feedback by Coverity analyzer.
14 years ago
detect-dsize.h
…
detect-engine-address-ipv4.c
Fix broken tests.
14 years ago
detect-engine-address-ipv4.h
…
detect-engine-address-ipv6.c
Fix compilation with profiling enabled. Minor unittest fixes.
14 years ago
detect-engine-address-ipv6.h
…
detect-engine-address.c
Improve error reporting in case of syntax errors in the address and port vars.
14 years ago
detect-engine-address.h
bug #454 - global check to see if address and port vars are properly configured
14 years ago
detect-engine-alert.c
No longer pass StreamMsg to output for alert logging, instead use the same callback code as is used for state alerts.
14 years ago
detect-engine-alert.h
No longer pass StreamMsg to output for alert logging, instead use the same callback code as is used for state alerts.
14 years ago
detect-engine-analyzer.c
rule analyzer: fix detecting stream match
13 years ago
detect-engine-analyzer.h
feature 349 rule analyzer v1
14 years ago
detect-engine-content-inspection.c
All http_http_stat_code modified patterns now are DETECT_CONTENT and not DETECT_AL_HTTP_STAT_CODE. Also remove dummy match/free functions for stat code and stat msg
14 years ago
detect-engine-content-inspection.h
http user agent keyword + mpm + inspection + fast pattern support added
14 years ago
detect-engine-dcepayload.c
Disable dce unittests that tick off clamav. #458 .
14 years ago
detect-engine-dcepayload.h
…
detect-engine-event.c
code cleanup - replace SigMatchAppendPacket with SigMatchAppendSMToList
14 years ago
detect-engine-event.h
ipv6: fix an AH header parsing issue. Add decoder event for non-null reserved fields.
14 years ago
detect-engine-file.c
filemd5: add support code for md5 handling for signatures.
14 years ago
detect-engine-file.h
File carving -- enable reponse file extraction
14 years ago
detect-engine-hcbd.c
file inspection: improve logging when stream.depth limit is reached. #493 .
13 years ago
detect-engine-hcbd.h
support splitting mpm ctxs based on direction v2
14 years ago
detect-engine-hcd.c
cookie header now inspects Set-Cookie headers as well
14 years ago
detect-engine-hcd.h
support splitting mpm ctxs based on direction v2
14 years ago
detect-engine-hhd.c
http header won't inspect set-cookie headers. Set-cookie part of cookie keyword now. Also update the http header inspection engine
14 years ago
detect-engine-hhd.h
bug 389 - support http response header inspection + fix bug with stateful inspection for sigs that would have both request/response inpection
14 years ago
detect-engine-hmd.c
flow: create a flow lock macro API, implement it for mutex and rwlocks. Mutex remains the default.
14 years ago
detect-engine-hmd.h
support splitting mpm ctxs based on direction v2
14 years ago
detect-engine-hrhd.c
http_raw_header: add some debug code.
14 years ago
detect-engine-hrhd.h
support http response raw header inspection + carry out hrhd mpm on both request/response headers + add unittests for the same
14 years ago
detect-engine-hrud.c
flow: create a flow lock macro API, implement it for mutex and rwlocks. Mutex remains the default.
14 years ago
detect-engine-hrud.h
support splitting mpm ctxs based on direction v2
14 years ago
detect-engine-hsbd.c
file inspection: improve logging when stream.depth limit is reached. #493 .
13 years ago
detect-engine-hsbd.h
support splitting mpm ctxs based on direction v2
14 years ago
detect-engine-hscd.c
flow: create a flow lock macro API, implement it for mutex and rwlocks. Mutex remains the default.
14 years ago
detect-engine-hscd.h
rebase commit for hscd and hsmd patches
14 years ago
detect-engine-hsmd.c
flow: create a flow lock macro API, implement it for mutex and rwlocks. Mutex remains the default.
14 years ago
detect-engine-hsmd.h
rebase commit for hscd and hsmd patches
14 years ago
detect-engine-hua.c
http user agent keyword + mpm + inspection + fast pattern support added
14 years ago
detect-engine-hua.h
http user agent keyword + mpm + inspection + fast pattern support added
14 years ago
detect-engine-iponly.c
Properly clean signature's ip only data.
14 years ago
detect-engine-iponly.h
IP Only cleanup: make most functions static. Add error message on address parsing issues.
14 years ago
detect-engine-mpm.c
mpm engine and ac mem free fixes
14 years ago
detect-engine-mpm.h
http user agent keyword + mpm + inspection + fast pattern support added
14 years ago
detect-engine-payload.c
tests to highlight that
14 years ago
detect-engine-payload.h
…
detect-engine-port.c
Improve error reporting in case of syntax errors in the address and port vars.
14 years ago
detect-engine-port.h
bug #454 - global check to see if address and port vars are properly configured
14 years ago
detect-engine-proto.c
Fix parsing of tcp-pkt and tcp-stream sigs, add unittest.
14 years ago
detect-engine-proto.h
feature #414 - support listing supported keywords. Remove support for dummy keywords __address__, __proto__, __port__. Remove support for recursive keyword and all references to it
14 years ago
detect-engine-siggroup.c
filemd5: add support code for md5 handling for signatures.
14 years ago
detect-engine-siggroup.h
filemd5: add support code for md5 handling for signatures.
14 years ago
detect-engine-sigorder.c
more coverity fixes
14 years ago
detect-engine-sigorder.h
Changed my email address to anoopsaldanha at gmail dot com from my current one
14 years ago
detect-engine-state.c
Simplify flow resetting on de_ctx update. Detect ctx id starts at 1. So in a flow 0 means uninitialized (thus set) and if we detect flow is not equal to detect id, we reset the sgh storage and de_state.
14 years ago
detect-engine-state.h
Simplify flow resetting on de_ctx update. Detect ctx id starts at 1. So in a flow 0 means uninitialized (thus set) and if we detect flow is not equal to detect id, we reset the sgh storage and de_state.
14 years ago
detect-engine-tag.c
cleaning: fix warning when building with clang.
14 years ago
detect-engine-tag.h
Introduce host table, make tag use it
14 years ago
detect-engine-threshold.c
fix rate filters that reset the sig ctx data and handled action timeouts wrongly
14 years ago
detect-engine-threshold.h
Move over src and dst thresholding to use host table. Fix a bug in threshold 'both' handling.
14 years ago
detect-engine-uri.c
flow: create a flow lock macro API, implement it for mutex and rwlocks. Mutex remains the default.
14 years ago
detect-engine-uri.h
…
detect-engine.c
Fix a reload memleak in thread local detection engine ctx.
14 years ago
detect-engine.h
update clean up of old detection engine contexts for live rule swap
14 years ago
detect-fast-pattern.c
fast pattern cleanup - Remove FastPatternSupportEnabledForSigMatchList() and all it's associated structures
14 years ago
detect-fast-pattern.h
fast pattern cleanup - Remove FastPatternSupportEnabledForSigMatchList() and all it's associated structures
14 years ago
detect-file-data.c
disallow file_data with flow:to_server/from_client
14 years ago
detect-file-data.h
file-data: create initial keyword registration.
14 years ago
detect-fileext.c
file detect: improve cleanup
14 years ago
detect-fileext.h
Add negation to filename and fileext, use same syntax as with content.
14 years ago
detect-filemagic.c
file detect: improve cleanup
14 years ago
detect-filemagic.h
File carving -- enable reponse file extraction
14 years ago
detect-filemd5.c
filemd5: free hash during cleanup
14 years ago
detect-filemd5.h
filemd5: implement negated matching.
14 years ago
detect-filename.c
file detect: improve cleanup
14 years ago
detect-filename.h
Add negation to filename and fileext, use same syntax as with content.
14 years ago
detect-filestore.c
file detect: improve cleanup
14 years ago
detect-filestore.h
file store: respect flowbits and other keywords
14 years ago
detect-flags.c
code cleanup - replace SigMatchAppendPacket with SigMatchAppendSMToList
14 years ago
detect-flags.h
…
detect-flow.c
allow only one flow option in a rule
14 years ago
detect-flow.h
…
detect-flowbits.c
variable names global vars, global no more. Moved to detection engine ctx, a place it belongs
14 years ago
detect-flowbits.h
…
detect-flowint.c
variable names global vars, global no more. Moved to detection engine ctx, a place it belongs
14 years ago
detect-flowint.h
…
detect-flowvar.c
variable names global vars, global no more. Moved to detection engine ctx, a place it belongs
14 years ago
detect-flowvar.h
…
detect-fragbits.c
code cleanup - replace SigMatchAppendPacket with SigMatchAppendSMToList
14 years ago
detect-fragbits.h
…
detect-fragoffset.c
Various fixes and improvements based on feedback by Coverity analyzer.
14 years ago
detect-fragoffset.h
…
detect-ftpbounce.c
flow: create a flow lock macro API, implement it for mutex and rwlocks. Mutex remains the default.
14 years ago
detect-ftpbounce.h
…
detect-gid.c
…
detect-gid.h
…
detect-http-client-body.c
http: body inspection improvement
14 years ago
detect-http-client-body.h
Changed my email address to anoopsaldanha at gmail dot com from my current one
14 years ago
detect-http-cookie.c
unittests that fail, displaying the issue that we don't inspect set-cookie headers against cookie keywords
14 years ago
detect-http-cookie.h
…
detect-http-header.c
All http_http_header modified patterns now are DETECT_CONTENT and not DETECT_AL_HTTP_HEADER
14 years ago
detect-http-header.h
…
detect-http-method.c
All http_http_method modified patterns now are DETECT_CONTENT and not DETECT_AL_HTTP_METHOD
14 years ago
detect-http-method.h
…
detect-http-raw-header.c
All http_http_raw_header modified patterns now are DETECT_CONTENT and not DETECT_AL_HTTP_RAW_HEADER
14 years ago
detect-http-raw-header.h
…
detect-http-raw-uri.c
All http_http_raw_uri modified patterns now are DETECT_CONTENT and not DETECT_AL_HTTP_RAW_URI
14 years ago
detect-http-raw-uri.h
Changed my email address to anoopsaldanha at gmail dot com from my current one
14 years ago
detect-http-server-body.c
http body inspection: force body inspection on stream eof.
14 years ago
detect-http-server-body.h
Changed my email address to anoopsaldanha at gmail dot com from my current one
14 years ago
detect-http-stat-code.c
All http_http_stat_code modified patterns now are DETECT_CONTENT and not DETECT_AL_HTTP_STAT_CODE. Also remove dummy match/free functions for stat code and stat msg
14 years ago
detect-http-stat-code.h
All http_http_stat_code modified patterns now are DETECT_CONTENT and not DETECT_AL_HTTP_STAT_CODE. Also remove dummy match/free functions for stat code and stat msg
14 years ago
detect-http-stat-msg.c
All http_http_stat_code modified patterns now are DETECT_CONTENT and not DETECT_AL_HTTP_STAT_CODE. Also remove dummy match/free functions for stat code and stat msg
14 years ago
detect-http-stat-msg.h
…
detect-http-ua.c
http user agent keyword + mpm + inspection + fast pattern support added
14 years ago
detect-http-ua.h
http user agent keyword + mpm + inspection + fast pattern support added
14 years ago
detect-http-uri.c
All uricontent modified patterns now are DETECT_CONTENT and not DETECT_URICONTENT. Step towards unifying all content based patterns. Makes way for easier management of patterns
14 years ago
detect-http-uri.h
…
detect-icmp-id.c
Various fixes and improvements based on feedback by Coverity analyzer.
14 years ago
detect-icmp-id.h
…
detect-icmp-seq.c
code cleanup - replace SigMatchAppendPacket with SigMatchAppendSMToList
14 years ago
detect-icmp-seq.h
…
detect-icode.c
code cleanup - replace SigMatchAppendPacket with SigMatchAppendSMToList
14 years ago
detect-icode.h
…
detect-id.c
code cleanup - replace SigMatchAppendPacket with SigMatchAppendSMToList
14 years ago
detect-id.h
…
detect-ipopts.c
code cleanup - replace SigMatchAppendPacket with SigMatchAppendSMToList
14 years ago
detect-ipopts.h
…
detect-ipproto.c
Minor error message cleanups
14 years ago
detect-ipproto.h
support multiple ipprotos in the same sig + unittest
14 years ago
detect-isdataat.c
http user agent keyword + mpm + inspection + fast pattern support added
14 years ago
detect-isdataat.h
byte_extract support for isdataat added
15 years ago
detect-itype.c
code cleanup - replace SigMatchAppendPacket with SigMatchAppendSMToList
14 years ago
detect-itype.h
…
detect-mark.c
code cleanup - replace SigMatchAppendTag with SigMatchAppendSMToList
14 years ago
detect-mark.h
…
detect-metadata.c
…
detect-metadata.h
…
detect-msg.c
…
detect-msg.h
…
detect-noalert.c
…
detect-noalert.h
…
detect-nocase.c
http user agent keyword + mpm + inspection + fast pattern support added
14 years ago
detect-nocase.h
…
detect-offset.c
http user agent keyword + mpm + inspection + fast pattern support added
14 years ago
detect-offset.h
…
detect-parse.c
Update SigValidate() to allow http keywords to be specified in the right flow direction
13 years ago
detect-parse.h
code cleanup. Remove unused functions
14 years ago
detect-pcre.c
variable names global vars, global no more. Moved to detection engine ctx, a place it belongs
14 years ago
detect-pcre.h
http user agent keyword + mpm + inspection + fast pattern support added
14 years ago
detect-pktvar.c
Improve pktvar keyword parsing and error handling.
14 years ago
detect-pktvar.h
…
detect-priority.c
Changed my email address to anoopsaldanha at gmail dot com from my current one
14 years ago
detect-priority.h
Changed my email address to anoopsaldanha at gmail dot com from my current one
14 years ago
detect-rawbytes.c
Minor error message cleanups
14 years ago
detect-rawbytes.h
…
detect-reference.c
clean reference config API
14 years ago
detect-reference.h
…
detect-replace.c
fix replace unittets. Re-set modified global_var to orignial value when the test completes
14 years ago
detect-replace.h
Add support for replace keyword.
14 years ago
detect-rev.c
Use strtoul instead of strtol for sid parsing. Fixes parsing of really large sid numbers. Fixes #393 .
14 years ago
detect-rev.h
…
detect-rpc.c
code cleanup - replace SigMatchAppendPacket with SigMatchAppendSMToList
14 years ago
detect-rpc.h
…
detect-sameip.c
code cleanup - replace SigMatchAppendPacket with SigMatchAppendSMToList
14 years ago
detect-sameip.h
…
detect-seq.c
code cleanup - replace SigMatchAppendPacket with SigMatchAppendSMToList
14 years ago
detect-seq.h
…
detect-sid.c
Use strtoul instead of strtol for sid parsing. Fixes parsing of really large sid numbers. Fixes #393 .
14 years ago
detect-sid.h
…
detect-ssh-proto-version.c
flow: create a flow lock macro API, implement it for mutex and rwlocks. Mutex remains the default.
14 years ago
detect-ssh-proto-version.h
…
detect-ssh-software-version.c
flow: create a flow lock macro API, implement it for mutex and rwlocks. Mutex remains the default.
14 years ago
detect-ssh-software-version.h
…
detect-ssl-state.c
flow: create a flow lock macro API, implement it for mutex and rwlocks. Mutex remains the default.
14 years ago
detect-ssl-state.h
Changed my email address to anoopsaldanha at gmail dot com from my current one
14 years ago
detect-ssl-version.c
tls: debug compilation fixes, new tls decoder rule for tls.error_message_encountered event.
14 years ago
detect-ssl-version.h
Various fixes and improvements based on feedback by Coverity analyzer.
14 years ago
detect-stream_size.c
Various fixes and improvements based on feedback by Coverity analyzer.
14 years ago
detect-stream_size.h
…
detect-tag.c
Fix detect tag error handling.
14 years ago
detect-tag.h
Introduce host table, make tag use it
14 years ago
detect-threshold.c
Move over src and dst thresholding to use host table. Fix a bug in threshold 'both' handling.
14 years ago
detect-threshold.h
considering the tenths of a seconds in a packet, when calculating thresholds
14 years ago
detect-tls-version.c
tls: debug compilation fixes, new tls decoder rule for tls.error_message_encountered event.
14 years ago
detect-tls-version.h
…
detect-tls.c
ssl parser fix/updates
14 years ago
detect-tls.h
TLS app layer: misc fixes, reorder some fields to same memory
14 years ago
detect-tos.c
code cleanup - replace SigMatchAppendPacket with SigMatchAppendSMToList
14 years ago
detect-tos.h
Changed my email address to anoopsaldanha at gmail dot com from my current one
14 years ago
detect-ttl.c
reject rules with an invalid ttl range
14 years ago
detect-ttl.h
…
detect-uricontent.c
http: body inspection improvement
14 years ago
detect-uricontent.h
code cleanup - remove DetectUricontentGetLastPattern
14 years ago
detect-urilen.c
Improve error message for malformed urilen value.
14 years ago
detect-urilen.h
bug #341 - support for urilen check on both norm and raw buffers
14 years ago
detect-window.c
code cleanup - replace SigMatchAppendPacket with SigMatchAppendSMToList
14 years ago
detect-window.h
…
detect-within.c
http user agent keyword + mpm + inspection + fast pattern support added
14 years ago
detect-within.h
…
detect.c
filemd5: add support code for md5 handling for signatures.
14 years ago
detect.h
filemd5: add support code for md5 handling for signatures.
14 years ago
flow-alert-sid.c
flow: create a flow lock macro API, implement it for mutex and rwlocks. Mutex remains the default.
14 years ago
flow-alert-sid.h
…
flow-bit.c
flow: create a flow lock macro API, implement it for mutex and rwlocks. Mutex remains the default.
14 years ago
flow-bit.h
…
flow-hash.c
cleaning: fix warning when building with clang.
14 years ago
flow-hash.h
flow engine: improve scalability
14 years ago
flow-manager.c
cleaning: fix warning when building with clang.
14 years ago
flow-manager.h
flow engine: improve scalability
14 years ago
flow-private.h
Undo changes from 88b8f15663
. Atomic stack implementation had a-b-a problem.
14 years ago
flow-queue.c
Undo changes from 88b8f15663
. Atomic stack implementation had a-b-a problem.
14 years ago
flow-queue.h
Undo changes from 88b8f15663
. Atomic stack implementation had a-b-a problem.
14 years ago
flow-timeout.c
check if all packets are processed before disabling detect threads + kill all threads <= detect after FFR + other minor fixes
13 years ago
flow-timeout.h
flow engine: improve scalability
14 years ago
flow-util.c
cleaning: fix warning when building with clang.
14 years ago
flow-util.h
cleaning: fix warning when building with clang.
14 years ago
flow-var.c
flow: create a flow lock macro API, implement it for mutex and rwlocks. Mutex remains the default.
14 years ago
flow-var.h
…
flow.c
cleaning: fix warning when building with clang.
14 years ago
flow.h
filemd5: add support code for md5 handling for signatures.
14 years ago
host-queue.c
Introduce host table, make tag use it
14 years ago
host-queue.h
Introduce host table, make tag use it
14 years ago
host-timeout.c
host: convert use_cnt to a atomic var (like in flow).
14 years ago
host-timeout.h
Introduce host table, make tag use it
14 years ago
host.c
cleaning: fix warning when building with clang.
14 years ago
host.h
host: convert use_cnt to a atomic var (like in flow).
14 years ago
log-droplog.c
OpenBSD: introduce SCLocalTime function.
14 years ago
log-droplog.h
…
log-file.c
file inspection: improve logging when stream.depth limit is reached. #493 .
13 years ago
log-file.h
file extraction: add waldo option to file log module. This will store the last used file_id so extracted files won't get overwritten is Suricata is restarted.
14 years ago
log-filestore.c
file inspection: improve logging when stream.depth limit is reached. #493 .
13 years ago
log-filestore.h
file-inspection: split 'file' output module into file-store and file-log. Store stores files. Log logs json records.
14 years ago
log-httplog.c
OpenBSD: introduce SCLocalTime function.
14 years ago
log-httplog.h
…
log-pcap.c
Don't display a warning when log-pcap tries to remove an already removed file.
14 years ago
log-pcap.h
…
output.c
Add per packet profiling.
14 years ago
output.h
SCConfLogOpenGeneric() abstraction for regular and AF_UNIX logs.
14 years ago
packet-queue.c
…
packet-queue.h
…
pkt-var.c
…
pkt-var.h
…
ptxdump.py
fixed cuda build: portability issues and nvcc version check
15 years ago
queue.h
Safer macro parenthesization and do/while use
14 years ago
reputation.c
…
reputation.h
…
respond-reject-libnet11.c
Add per packet profiling.
14 years ago
respond-reject-libnet11.h
…
respond-reject.c
Add per packet profiling.
14 years ago
respond-reject.h
Add per packet profiling.
14 years ago
runmode-af-packet.c
Minor fixes for coverity issues.
14 years ago
runmode-af-packet.h
Add "workers" runmode.
14 years ago
runmode-erf-dag.c
Implement single, autofp and workers run modes for DAG interfaces. Includes multiple interface support.
14 years ago
runmode-erf-dag.h
Implement single, autofp and workers run modes for DAG interfaces. Includes multiple interface support.
14 years ago
runmode-erf-file.c
Fix minor compiler warning.
14 years ago
runmode-erf-file.h
Update the ERF file runmodes to support autofp and single.
14 years ago
runmode-ipfw.c
Rename 'worker' running mode to 'workers'
13 years ago
runmode-ipfw.h
ipfw: Add support for autofp and worker runmode
14 years ago
runmode-napatech.c
Napatech code formatting fixes.
14 years ago
runmode-napatech.h
Fix compilation without napatech tech support enabled.
14 years ago
runmode-nfq.c
Rename 'worker' running mode to 'workers'
13 years ago
runmode-nfq.h
nfq: add worker runmode support.
14 years ago
runmode-pcap-file.c
cuda pb tm should be in a thread of its own + pkt_acq should be as free as possible
14 years ago
runmode-pcap-file.h
Implement a pkt acq loop infra with support for pcap-file.
14 years ago
runmode-pcap.c
Minor fixes for coverity issues.
14 years ago
runmode-pcap.h
pcap: add "autofp" runmode
14 years ago
runmode-pfring.c
cleaning: fix warning when building with clang.
14 years ago
runmode-pfring.h
Add "workers" runmode.
14 years ago
runmodes.c
Rename 'worker' running mode to 'workers'
13 years ago
runmodes.h
free flowvar entries in flow after live rule swap. Sync flowbits entries into packet struct to be used by alert debuglog when alert debuglog is enabled
14 years ago
source-af-packet.c
afpacket: fix compilation in debug mode.
14 years ago
source-af-packet.h
af-packet: add support for BPF filter.
14 years ago
source-erf-dag.c
#482 - use decode_flag for all decode TMs. Use the flag as a way to retrieve decode TMs from ThreadVars
14 years ago
source-erf-dag.h
…
source-erf-file.c
#482 - use decode_flag for all decode TMs. Use the flag as a way to retrieve decode TMs from ThreadVars
14 years ago
source-erf-file.h
…
source-ipfw.c
Rename 'worker' running mode to 'workers'
13 years ago
source-ipfw.h
ipfw: don't use socket lock in 'worker' mode
14 years ago
source-napatech.c
#482 - use decode_flag for all decode TMs. Use the flag as a way to retrieve decode TMs from ThreadVars
14 years ago
source-napatech.h
Initial Napatech support by Randy Caldejon / nPulse.
14 years ago
source-nfq-prototypes.h
…
source-nfq.c
Rename 'worker' running mode to 'workers'
13 years ago
source-nfq.h
nfq: do not use mutex in 'worker' mode
14 years ago
source-pcap-file.c
#482 - use decode_flag for all decode TMs. Use the flag as a way to retrieve decode TMs from ThreadVars
14 years ago
source-pcap-file.h
…
source-pcap.c
cleaning: fix warning when building with clang.
14 years ago
source-pcap.h
Add pcap workers mode.
14 years ago
source-pfring.c
cleaning: fix warning when building with clang.
14 years ago
source-pfring.h
pf-ring: add support for checksum verif mode
14 years ago
stream-tcp-inline.c
Add and use utility functions for checksum computing.
14 years ago
stream-tcp-inline.h
Add and use utility functions for checksum computing.
14 years ago
stream-tcp-private.h
set stream_eof flag per stream, only when the stream initiates a close. Fix htp parser to close connection per direction based on this
14 years ago
stream-tcp-reassemble.c
stream: don't NULL dereference p->flow->protoctx in StreamTcpReassembleDepthReached
13 years ago
stream-tcp-reassemble.h
file inspection: improve logging when stream.depth limit is reached. #493 .
13 years ago
stream-tcp-sack.c
Another batch of minor fixed for issues found by Coverity.
14 years ago
stream-tcp-sack.h
…
stream-tcp-util.c
…
stream-tcp-util.h
…
stream-tcp.c
check if all packets are processed before disabling detect threads + kill all threads <= detect after FFR + other minor fixes
13 years ago
stream-tcp.h
Add counters for SYN, SYN/ACK and RST TCP packets. Issue #251 .
14 years ago
stream.c
Make sure stream debug code is only used in debug mode.
14 years ago
stream.h
Minor stream optimization.
14 years ago
suricata-common.h
http user agent keyword + mpm + inspection + fast pattern support added
14 years ago
suricata.c
check if all packets are processed before disabling detect threads + kill all threads <= detect after FFR + other minor fixes
13 years ago
suricata.h
Introduce util-signal.[ch]. Move our signal setup functions here
14 years ago
threads.c
Add per packet profiling.
14 years ago
threads.h
Fix SCSetThreadName() macros in threads.h Add FreeBSD thread naming implementation.
14 years ago
threadvars.h
restructure disabling receive threads. Introduce new flag to indicate that threads have finised running
14 years ago
tm-modules.c
Add way to profile mutex/spin locks per thread module.
14 years ago
tm-modules.h
check if all packets are processed before disabling detect threads + kill all threads <= detect after FFR + other minor fixes
13 years ago
tm-queuehandlers.c
Clean up packet pool at shut down.
14 years ago
tm-queuehandlers.h
Clean up packet pool at shut down.
14 years ago
tm-queues.c
…
tm-queues.h
…
tm-threads-common.h
file-inspection: split 'file' output module into file-store and file-log. Store stores files. Log logs json records.
14 years ago
tm-threads.c
check if all packets are processed before disabling detect threads + kill all threads <= detect after FFR + other minor fixes
13 years ago
tm-threads.h
check if all packets are processed before disabling detect threads + kill all threads <= detect after FFR + other minor fixes
13 years ago
tmqh-flow.c
cleaning: fix warning when building with clang.
14 years ago
tmqh-flow.h
Adapt flow tmqh counters to be atomic vars. Remove support for active flows q handler. Introduce SC_ATOMIC_SET
14 years ago
tmqh-nfq.c
…
tmqh-nfq.h
…
tmqh-packetpool.c
Clean up packet pool at shut down.
14 years ago
tmqh-packetpool.h
Clean up packet pool at shut down.
14 years ago
tmqh-ringbuffer.c
Clean up packet pool at shut down.
14 years ago
tmqh-ringbuffer.h
Clean up packet pool at shut down.
14 years ago
tmqh-simple.c
Minor flowq updates.
14 years ago
tmqh-simple.h
…
util-action.c
util action api returns error code if it encounters wrong values parsing wrong action conf
14 years ago
util-action.h
util action api returns error code if it encounters wrong values parsing wrong action conf
14 years ago
util-affinity.c
Convert underscores to dashes in thread affinity type names.
14 years ago
util-affinity.h
Fixes for building in Cygwin.
14 years ago
util-atomic.c
sc_atomic_cas replaced with sc_atomic_set
14 years ago
util-atomic.h
add unittest for atomic operation with void *
14 years ago
util-binsearch.c
…
util-binsearch.h
…
util-bloomfilter-counting.c
Clean up for unittests code: only compile unittest api code when unittests are enabled. Fix unittest code that wasn't wrapped in the proper UNITTESTS ifdefs.
14 years ago
util-bloomfilter-counting.h
…
util-bloomfilter.c
…
util-bloomfilter.h
…
util-buffer.c
Misc buffer API update.
14 years ago
util-buffer.h
debuglog now uses the new mem buffer API. Improve file ctx locking to just the file write
14 years ago
util-byte.c
…
util-byte.h
Win32 compile fixes.
14 years ago
util-checksum.c
Various fixes and improvements based on feedback by Coverity analyzer.
14 years ago
util-checksum.h
Assume offloading in use if 1/10th of the packets has a bad checksum.
14 years ago
util-cidr.c
…
util-cidr.h
…
util-classification-config.c
Free pcre study structs for classification, threshold and reference parsing.
14 years ago
util-classification-config.h
clean classification config API
14 years ago
util-clock.h
…
util-coredump-config.c
Do not use underscored config vars internally.
14 years ago
util-coredump-config.h
Enable/disable core dump in config (feature 319)
14 years ago
util-cpu.c
…
util-cpu.h
…
util-cuda-handlers.c
Changed my email address to anoopsaldanha at gmail dot com from my current one
14 years ago
util-cuda-handlers.h
Changed my email address to anoopsaldanha at gmail dot com from my current one
14 years ago
util-cuda.c
Changed my email address to anoopsaldanha at gmail dot com from my current one
14 years ago
util-cuda.h
Changed my email address to anoopsaldanha at gmail dot com from my current one
14 years ago
util-daemon.c
OpenBSD: don't close std* to avoid problem.
14 years ago
util-daemon.h
…
util-debug-filters.c
more coverity fixes
14 years ago
util-debug-filters.h
Changed my email address to anoopsaldanha at gmail dot com from my current one
14 years ago
util-debug.c
OpenBSD: introduce SCLocalTime function.
14 years ago
util-debug.h
fix cppcheck analyzer warnings - bug 439
14 years ago
util-decode-asn1.c
Do not use underscored config vars internally.
14 years ago
util-decode-asn1.h
…
util-decode-der-get.c
TLS: add variable to store the error code in the decoder
14 years ago
util-decode-der-get.h
TLS: add variable to store the error code in the decoder
14 years ago
util-decode-der.c
TLS: add variable to store the error code in the decoder
14 years ago
util-decode-der.h
TLS: add variable to store the error code in the decoder
14 years ago
util-device.c
Various fixes and improvements based on feedback by Coverity analyzer.
14 years ago
util-device.h
Clean up csum detection output, misc fixes.
14 years ago
util-enum.c
Changed my email address to anoopsaldanha at gmail dot com from my current one
14 years ago
util-enum.h
Changed my email address to anoopsaldanha at gmail dot com from my current one
14 years ago
util-error.c
bug #455 - Warn users on signature event vars having precedence over threshold.conf ones
14 years ago
util-error.h
bug #455 - Warn users on signature event vars having precedence over threshold.conf ones
14 years ago
util-file.c
filemd5: fix compilation if libnss isn't available
14 years ago
util-file.h
filemd5: add support code for md5 handling for signatures.
14 years ago
util-fix_checksum.c
…
util-fix_checksum.h
…
util-fmemopen.c
…
util-fmemopen.h
…
util-hash-lookup3.c
fix compiler warnings
14 years ago
util-hash-lookup3.h
Add a new hash datatype to do speedy lookups of read only uniform data, like md5's.
14 years ago
util-hash.c
Clean up for unittests code: only compile unittest api code when unittests are enabled. Fix unittest code that wasn't wrapped in the proper UNITTESTS ifdefs.
14 years ago
util-hash.h
Various fixes and improvements based on feedback by Coverity analyzer.
14 years ago
util-hashlist.c
…
util-hashlist.h
Various fixes and improvements based on feedback by Coverity analyzer.
14 years ago
util-host-os-info.c
Fix various minor clang/scan-build warnings.
14 years ago
util-host-os-info.h
Changed my email address to anoopsaldanha at gmail dot com from my current one
14 years ago
util-ioctl.c
…
util-ioctl.h
…
util-logopenfile.c
Fix OpenBSD compilation.
14 years ago
util-logopenfile.h
SCConfLogOpenGeneric() abstraction for regular and AF_UNIX logs.
14 years ago
util-magic.c
Minor fixes for coverity issues.
14 years ago
util-magic.h
File carving -- enable reponse file extraction
14 years ago
util-mem.h
fix cppcheck analyzer warnings - bug 439
14 years ago
util-memcmp.c
…
util-memcmp.h
…
util-misc.c
Introduce util-signal.[ch]. Move our signal setup functions here
14 years ago
util-misc.h
Introduce util-signal.[ch]. Move our signal setup functions here
14 years ago
util-mpm-ac-bs.c
ac-bs and ac-gfbs mem cleanup
14 years ago
util-mpm-ac-bs.h
Support for new MPM ac-bs added
14 years ago
util-mpm-ac-gfbs.c
ac-bs and ac-gfbs mem cleanup
14 years ago
util-mpm-ac-gfbs.h
Changed my email address to anoopsaldanha at gmail dot com from my current one
14 years ago
util-mpm-ac.c
mpm engine and ac mem free fixes
14 years ago
util-mpm-ac.h
Changed my email address to anoopsaldanha at gmail dot com from my current one
14 years ago
util-mpm-b2g-cuda-kernel.cu
Changed my email address to anoopsaldanha@gmail.com from my current one - Should have been an amend over my previous commit, but that commit's pushed out
14 years ago
util-mpm-b2g-cuda.c
sc_atomic_cas replaced with sc_atomic_set
14 years ago
util-mpm-b2g-cuda.h
b2g cuda up, compiling and running
14 years ago
util-mpm-b2g.c
…
util-mpm-b2g.h
…
util-mpm-b2gc.c
…
util-mpm-b2gc.h
…
util-mpm-b2gm.c
…
util-mpm-b2gm.h
…
util-mpm-b3g.c
Openbsd: Fix some warning related to inline usage.
14 years ago
util-mpm-b3g.h
…
util-mpm-wumanber.c
Openbsd: Fix some warning related to inline usage.
14 years ago
util-mpm-wumanber.h
…
util-mpm.c
ac-bs and ac-gfbs mem cleanup
14 years ago
util-mpm.h
make mpm ctx container de_ctx specific. Also introduce global variable in mpm_ctx. this is a workaround for cleaning non global mpm_ctx's since we now don't supply the de_ctx around the detection engine API
14 years ago
util-optimize.h
Add compiler and hardware barrier macro's.
15 years ago
util-path.c
Fix PathIsAbsolute function not dealing with CYGWIN. Handle absolute paths in logfile api.
14 years ago
util-path.h
Add functions to determine whether a path is absolute or relative.
14 years ago
util-pidfile.c
…
util-pidfile.h
…
util-pool.c
Fix a number of potential issues found by CLANG and cppcheck.
14 years ago
util-pool.h
…
util-print.c
debuglog now uses the new mem buffer API. Improve file ctx locking to just the file write
14 years ago
util-print.h
debuglog now uses the new mem buffer API. Improve file ctx locking to just the file write
14 years ago
util-privs.c
Remove duplicate sys/prctl.h configure check. Wrap another include in HAVE_SYS_PRCTL_H.
14 years ago
util-privs.h
…
util-profiling-locks.c
profiling: fix lock profiling int print issue.
14 years ago
util-profiling-locks.h
profiling: add per lock location profiling
14 years ago
util-profiling.c
cleaning: fix warning when building with clang.
14 years ago
util-profiling.h
Fix error in per packet detection engine profiling.
14 years ago
util-proto-name.c
Win32 compile fixes.
14 years ago
util-proto-name.h
Win32 compile fixes.
14 years ago
util-radix-tree.c
Minor unittest fixes to make Coverity happy.
14 years ago
util-radix-tree.h
Changed my email address to anoopsaldanha at gmail dot com from my current one
14 years ago
util-random.c
…
util-random.h
…
util-reference-config.c
Minor fixes for coverity issues.
14 years ago
util-reference-config.h
clean reference config API
14 years ago
util-ringbuffer.c
cleaning: fix warning when building with clang.
14 years ago
util-ringbuffer.h
…
util-rohash.c
Add filemd5 keyword that loads a list of md5's to match a file's md5 against.
14 years ago
util-rohash.h
Add filemd5 keyword that loads a list of md5's to match a file's md5 against.
14 years ago
util-rule-vars.c
Changed my email address to anoopsaldanha at gmail dot com from my current one
14 years ago
util-rule-vars.h
Changed my email address to anoopsaldanha at gmail dot com from my current one
14 years ago
util-runmodes.c
Use less queues and threads in nfq autofp mode.
14 years ago
util-runmodes.h
runmode: Add support for IPS running mode
14 years ago
util-signal.c
update clean up of old detection engine contexts for live rule swap
14 years ago
util-signal.h
code cleanup for live swap
14 years ago
util-spm-bm.c
update all spm algos to use 16 bit pattern lengths. Should compress a lot of tables
14 years ago
util-spm-bm.h
Fix typo in spm prototype declaration.
14 years ago
util-spm-bs.c
update all spm algos to use 16 bit pattern lengths. Should compress a lot of tables
14 years ago
util-spm-bs.h
update all spm algos to use 16 bit pattern lengths. Should compress a lot of tables
14 years ago
util-spm-bs2bm.c
update all spm algos to use 16 bit pattern lengths. Should compress a lot of tables
14 years ago
util-spm-bs2bm.h
update all spm algos to use 16 bit pattern lengths. Should compress a lot of tables
14 years ago
util-spm.c
update all spm algos to use 16 bit pattern lengths. Should compress a lot of tables
14 years ago
util-spm.h
update all spm algos to use 16 bit pattern lengths. Should compress a lot of tables
14 years ago
util-strlcatu.c
…
util-strlcpyu.c
…
util-syslog.c
…
util-syslog.h
…
util-threshold-config.c
bug #455 - Warn users on signature event vars having precedence over threshold.conf ones
14 years ago
util-threshold-config.h
…
util-time.c
OpenBSD: introduce SCLocalTime function.
14 years ago
util-time.h
OpenBSD: introduce SCLocalTime function.
14 years ago
util-unittest-helper.c
Undo changes from 88b8f15663
. Atomic stack implementation had a-b-a problem.
14 years ago
util-unittest-helper.h
Clean up for unittests code: only compile unittest api code when unittests are enabled. Fix unittest code that wasn't wrapped in the proper UNITTESTS ifdefs.
14 years ago
util-unittest.c
Do not use underscored config vars internally.
14 years ago
util-unittest.h
Clean up for unittests code: only compile unittest api code when unittests are enabled. Fix unittest code that wasn't wrapped in the proper UNITTESTS ifdefs.
14 years ago
util-validate.h
Fix locking error in filestore handling. Add debug validate check for asserting a flow is locked.
14 years ago
util-var-name.c
variable names global vars, global no more. Moved to detection engine ctx, a place it belongs
14 years ago
util-var-name.h
variable names global vars, global no more. Moved to detection engine ctx, a place it belongs
14 years ago
util-var.c
…
util-var.h
…
util-vector.h
Use pmmintrin.h as older gcc's don't have immintrin.h it seems.
15 years ago
win32-misc.c
Win32 compile fixes.
14 years ago
win32-misc.h
Win32 compile fixes.
14 years ago
win32-service.c
…
win32-service.h
…
win32-syslog.h
…