Open Information Security Foundation

09/13/2019

09:11 AM Suricata Support #3122: action missing in packet delivered in Bypass Callback

Victor Julien wrote:
> I think the issue is that the bypass is called from the post-match callback, but before the r... Eric Leblond

09/10/2019

06:24 PM Suricata Optimization #3085 (Closed): Suggest more appropriate location to store eBPF binaries

Merged with https://github.com/OISF/suricata/pull/4187 Eric Leblond

08/28/2019

11:42 AM Suricata Feature #3081 (Closed): Decapsulation of GRE in XDP filter

Implemented in https://github.com/OISF/suricata/pull/4118 Eric Leblond

11:42 AM Suricata Feature #3080 (Closed): Provide a IP pair XDP load balancing

Eric Leblond

11:42 AM Suricata Feature #3080 (Resolved): Provide a IP pair XDP load balancing

Implemented in https://github.com/OISF/suricata/pull/4118 Eric Leblond

11:38 AM Suricata Optimization #3085: Suggest more appropriate location to store eBPF binaries

Almost implemented by https://github.com/OISF/suricata/pull/4118, as I did miss the last comment. Eric Leblond

08/10/2019

08:35 AM Suricata Bug #3109: dcerpc engine not generating alerts

Side note: the pcap needs stream.midstream to true to get properly analysed but this does not alert correctly after t... Eric Leblond

07/17/2019

10:33 AM Suricata Bug #3089: Fedora rawhide af-packet compilation err

It seems we are suffering from that: https://github.com/linux-can/can-utils/pull/147 Eric Leblond

07/10/2019

01:38 PM Suricata Feature #3081 (Closed): Decapsulation of GRE in XDP filter

XDP allows to shift the start of the data of the packet. This can be used to decapsulate GRE and by consequence load ... Eric Leblond

01:33 PM Suricata Feature #3080 (Closed): Provide a IP pair XDP load balancing

By using CPU redirect map, we can load balance efficiently in XDP code. By using IP pair load balancing we should fix... Eric Leblond