Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

next/607/20241021/v1 #12004

Merged
merged 10 commits into from
Oct 22, 2024
Merged

next/607/20241021/v1 #12004

merged 10 commits into from
Oct 22, 2024
+126 −189

Conversation

victorjulien
Copy link
Member

catenacyber and others added 10 commits October 21, 2024 20:19
@catenacyber @victorjulien
enip/detect: remove double registration of enip_command keyword
b5fcf16 
As found with
./src/suricata --list-keywords | sort | uniq -c | awk '$1 > 1'
@jlucovsky @victorjulien
profiling: Correct profiling data array size
799822c 
The profiling arrays are incorrectly sized by the number of thread
modules. Since they contain app-layer protocol data, they should be
sized by ALPROTO_MAX.
@jasonish @victorjulien
eve/tls: disable clang formatting around tls_fields array
3ddd9e2
@jasonish @victorjulien
eve/tls: add alpn logging to custom output
6a185a8 
Adds custom fields "client_alpns" and "server_alpns".

Ticket: OISF#7333
@jasonish @victorjulien
eve/tls: remove broken check for ja3 being enabled
2e78840 
During EVE TLS setup, a broken check for Ja3 being enabled led to Ja3
being disabled, but only in custom mode. This check is not needed, if
Ja3 is disabled, it won't be available, and won't be logged.

This is required to implement "extended" in terms of "custom" fields.
@jasonish @victorjulien
eve/tls: reimplement basic and extended logging in terms of custom
377989d 
Will prevent custom logging options getting out of sync with whats
available in extended.

Ticket: OISF#7333
@jasonish @victorjulien
eve/tls: cleanup headers; update copyright year
714ada1
@jasonish @victorjulien
suricata.yaml: add missing custom tls fields
cc519be 
Also update the suricata.yaml in the userguide.
@jasonish @victorjulien
eve/tls: remove unused SC_ATOMIC_EXTERN
2462d9d
@jasonish @victorjulien
eve/tls: use BIT_U64 for flags
30806ce 
Minor cleanup.
@codecov Codecov
Copy link

codecov bot commented Oct 21, 2024
edited
Loading

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 83.22%. Comparing base (55b922c) to head (30806ce).
Report is 10 commits behind head on master.

Additional details and impacted files 
@@            Coverage Diff             @@
##           master   #12004      +/-   ##
==========================================
+ Coverage   82.75%   83.22%   +0.47%     
==========================================
  Files         910      910              
  Lines      249016   258136    +9120     
==========================================
+ Hits       206069   214831    +8762     
- Misses      42947    43305     +358
Flag Coverage Δ
fuzzcorpus 61.41% <98.18%> (+0.60%) ⬆️
livemode 19.38% <18.18%> (+0.67%) ⬆️
pcap 44.46% <98.18%> (+0.33%) ⬆️
suricata-verify 62.74% <100.00%> (+0.46%) ⬆️
unittests 59.29% <0.00%> (+0.28%) ⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

@suricata-qa
Copy link

Information: QA ran without warnings.

Pipeline 23145

@victorjulien victorjulien merged commit 30806ce into OISF:master Oct 22, 2024
61 checks passed
This was referenced Oct 22, 2024
Closed
Closed
Closed
@victorjulien victorjulien deleted the next/607/20241021/v1 branch October 22, 2024 05:16
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jasonish jasonish jasonish approved these changes

@jufajardini jufajardini Awaiting requested review from jufajardini jufajardini is a code owner

Assignees
No one assigned
Labels
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@victorjulien @suricata-qa @jasonish @catenacyber @jlucovsky