Home - Waterfall Grid T-Grid Console Builders Recent Builds Buildslaves Changesources - JSON API - About

Console View


Categories: default personal
Legend:   Passed Failed Warnings Failed Again Running Exception Offline No data

default personal
f74eff9eacbb...
Victor Julien
threads: address sleep under lock issue
f38087105723...
Victor Julien
threads: don't sleep under lock
ee9f822b8e14...
Mats Klepsland
doc: add documentation for tls_cert_serial keyword
ee7e689b5423...
Alexander Gozman
af-packet: write VLAN info for both TPACKET_V2 and V3
e91bb09c9138...
Mats Klepsland
doc: add documentation for TLS eve-log
e41a9d637bf0...
Alexander Gozman
af-packet: get VLAN info for packets in TPACKET_V3 mode
ddf1bf6518fd...
Jason Ish
unified2: unlock using same dereference as lock
Addresses Coverity CIDs:
    1400797
    1400796

Note that the mutex was actually being unlocked, but
from a different variable pointing to the same mutex.
d8e9e1fd77b1...
Jason Ish
unified2: minor cleanups
- remove unused arguments and make static
d6508e640a23...
Mats Klepsland
detect: add (mpm) keyword tls_cert_serial
Match on TLS certificate serial number using tls_cert_serial
keyword, e.g.:

alert tls any any -> any any (msg:"TLS cert serial test";
        tls_cert_serial; content:"5C:19:B7:B1:32:3B:1C:A1";
        sid:12345;)
d445b4b5fa5b...
Victor Julien
dce: remove commented out code
cc4010343dd4...
Victor Julien
detect: add and use util func for alproto sets
c859d39f4f69...
Victor Julien
coverity: suppress CID 1400648
c810748a6029...
Jason Ish
Makefile: fix race condition in make install-full
Use recursive make for the install process so it
is executed in a predictable order.

Addresses issue:
https://redmine.openinfosecfoundation.org/issues/1470
which triggered on OSX/macOS.
c477c4370e1e...
Victor Julien
doc: update for unix socket hostbits
bbd32c141957...
Mats Klepsland
output-json-tls: code cleanup
b1ad770b36ba...
David Wharton
doc: removed references to older Suricata versions
docs are versioned; references to older Suricata versions undesired.
9da7be81f072...
Victor Julien
flow-worker: clean up thread init
95864375f2a5...
Mats Klepsland
lua: add function to print certificate serial number
Add function LuaGetCertSerial to print serial number from TLS
certificate.

Example:

function log (args)
    serial = TlsGetCertSerial()

    if serial then
        file:write(serial .. "\n");
        file:flush()
    end
end
955c22712708...
Victor Julien
detect-ssh: cleanup duplicate code
92db12c3492d...
Jason Ish
pidfile: fail if the pid file exists
Changes the pidfile check function to fail just on the
existence of the file to address issue
https://redmine.openinfosecfoundation.org/issues/1335
but log a message if the pid file appears to be stale.
8c8db1cf0f8d...
Mats Klepsland
output-json-alert: fix wrongful comments
89ba5816dc30...
Jason Ish
doc: update unified2 section
Remove documentation on older unified formats that have
been removed.
82f61031499c...
Jason Ish
unified2: nostamp and file rotation
Give unified2 a nostamp option which will create the file
without the timestamp suffix (like Snort's nostamp option).

Also register for rotation notification on SIGHUP so the file
will be recreated if it is removed by an external rotation
program (only when nostamp is used).
7293286f2fab...
Mats Klepsland
output-json: move code to get 5-tuple to own function
Move code to get 5-tuple in JSON object to own function 'JsonFiveTuple'.
This enables this code to be reused when printing 'parent' JSON object in
output-json-alert.
6a382259f809...
Mats Klepsland
doc: documentation for custom JSON flags in eve-log
6585ac4a9fae...
Jason Ish
logging: remove unused print stats callbacks
Remove the ThreadExitPrintStats callback from logging modules
that weren't doing anything with it.
65317ba865bc...
Mats Klepsland
output-json: make JSON flags in eve-log user configurable
511e8049157b...
Victor Julien
detect: fix missing unlock in error path
310b27a196a9...
Alexander Gozman
af-packet: fix parsing packet in TPACKET_V3 mode
AFPParsePacketV3() saved tpacket_block_desc structure
instead of tpacket3_hdr. As a result, reconstructed
packets were wrong.

Bug #2044.
2f30adb08aec...
Victor Julien
detect-lua: setup cleanup, fixing a potential int issue
2e339aa7911b...
Mats Klepsland
tls-log: log certificate serial number
2c1a36dd6e56...
Mats Klepsland
app-layer-tls: decode certificate serial number
2c01985e731d...
Jason Ish
autoconf - look for stdbool.h
2b460b8d0639...
Mats Klepsland
output-json-lua: log certificate serial number
285b5662050c...
Mats Klepsland
doc: add documentation for TlsGetCertSerial Lua function
234a3a890bb1...
Mats Klepsland
output-json-alert: print 'tunnel' JSON object if tunnel
Log src_ip, dst_ip and proto for root packet (p->root) if the
packet that triggered is inside a tunnel, as JSON object
'tunnel'. Also log recursion depth to indicate the depth of
the tunnel.
1bf7ded224ba...
David Wharton
doc: specify buffers that can be used for fast_pattern
Updated notes on the following buffers indicating that they can
be used for fast_pattern:
tls_cert_subject
tls_cert_issuer
tls_sni
115b3138cc47...
Mats Klepsland
output-json-tls: log certificate and chain
Log entire certificate and certificate chain Base64 encoded.
0c3f1e297418...
Jason Ish
logging: move lock into write function
All loggers were wrapping just the write in a lock with some
updating a counter.  This moves the lock into the write function.

The log_ctx alerts counter was also removed as many modules have
stopped using this and the alert count is available elsewhere.

Should satisfy Coverity CID 1400798:

CID 1400798 (#1 of 1): Data race condition (MISSING_LOCK) 2.
missing_lock: Accessing log_ctx->rotation_flag without holding lock
LogFileCtx_.fp_mutex. Elsewhere, "LogFileCtx_.rotation_flag" is accessed
with LogFileCtx_.fp_mutex held 4 out of 5 times.

Which appears to be a false positive as all calls to SCLogFileWrite
were done under lock, but this will make it more explicit.
0716199acb38...
Mats Klepsland
output-json-tls: custom tls logging