| Commit message (Collapse) | Author | Age | |
|---|---|---|---|
| * | Differentiate between standard Amazon stuff (i.e market) and AWS (#1369) | Ivan Nardi | 2021-11-04 |
| | | |||
| * | Improved BitTorrent detection | Luca Deri | 2021-11-04 |
| | | |||
| * | Fix use-of-uninitialized-value (#1366) | Ivan Nardi | 2021-11-03 |
| | | | | Close #1346 | ||
| * | TLS: fix two warnings (#1365) | Ivan Nardi | 2021-11-02 |
| | | | | | | | | | Disable unit tests on CI for big-endian target. We know we have multiple issues on big-endian architectures (see #1312) and so the unit tests always fail there. Ignore this error for the time being and let the CI pass if we don't have other issues. Remove an unused automa definition | ||
| * | Updated test results | Luca Deri | 2021-11-02 |
| | | |||
| * | Fixed certificate mismatch for TLS flows with no client hello observed | Luca Deri | 2021-11-02 |
| | | |||
| * | BitTorrent detection improvements | Luca Deri | 2021-10-31 |
| | | |||
| * | Little change in TLS debug traces | Luca Deri | 2021-10-28 |
| | | |||
| * | Updated results | Luca Deri | 2021-10-27 |
| | | |||
| * | Fixed TLS certificate dissection of subjectAltName | Luca Deri | 2021-10-27 |
| | | |||
| * | Minor code cleanup | Luca Deri | 2021-10-27 |
| | | |||
| * | Avoid overwriting valid protocol in `ndpi_detection_giveup` (#1360) | Ivan Nardi | 2021-10-27 |
| | | | | | | | | | | | | | | | | | | We should avoid updating any valid protocol in `ndpi_detection_giveup`; we should try to find a proper classification only if the flow is still completely unclassified. For example in the attached pcap there is a valid TLS session, recognized as such by TLS dissector. However, the `ndpi_detection_giveup`function updates it to "HTTP/TLS" (!?) simply because the server port is 80. Note that the real issue is not the wrong classification, but the wrong access to `flow->protos` union. If we already set some fields of `flow->protos` and we change the protocol in `ndpi_detection_giveup`, we might end up freeing some invalid pointers in `ndpi_free_flow_data` (no wonder this issue has been found while fuzzing #1354) Fix GIT and TLS dissectors (issues found by CI fuzzer) | ||
| * | Serialize additional information stored in the flow struct. (#1362) | Toni | 2021-10-27 |
| | | | | | | | | * Changed function signature of ndpi_flow2json (removed unused vlan_id; API break) * Serialize NTP information. * Improved QUIC serialization. Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | ||
| * | Improved STUN and RTP detection | Luca Deri | 2021-10-27 |
| | | |||
| * | Detect invalid characters in text and set a risk. Fixes #1347. (#1363) | Toni | 2021-10-26 |
| | | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | ||
| * | Fixed Git protocol dissection (#1355) | Luca Deri | 2021-10-25 |
| | | |||
| * | Fixed cleartext protocol assignment (#1357) | Ivan Nardi | 2021-10-25 |
| | | |||
| * | TLS: fix a heap-buffer-overflow (#1356) | Ivan Nardi | 2021-10-22 |
| | | | | | Revert of c3d1c697 Error reproducible with the attached pcap and valgrind | ||
| * | Fixed heap-buffer-overflow in TLS dissector | Luca Deri | 2021-10-20 |
| | | |||
| * | Fix QUIC log and remove SoulSeek leftovers after b97dc6ba (#1351) | Ivan Nardi | 2021-10-19 |
| | | | | | | Update .gitignore file Fix a function prototype Close #1349 | ||
| * | Fix some invalid memory reads (#1350) | Ivan Nardi | 2021-10-19 |
| | | | | | | | | | `ndpi_detection_giveup()` (and any functions called by it) can't access `ndpi_detection_module_struct->packet` anymore since 730c236. Sync unit tests results Close #1348 | ||
| * | Added clertext alert with telnet | Luca Deri | 2021-10-19 |
| | | |||
| * | Fix broken fuzz_process_packet fuzzer by adding a call to ↵ | Toni | 2021-10-18 |
| | | | | | | | | | | | | | ndpi_finalize_initialization(). (#1334) * fixed several memory errors (heap-overflow, unitialized memory, etc) * ability to build fuzz_process_packet with a main() allowing to replay crash data generated with fuzz_process_packet by LLVMs libfuzzer * temporarily disable fuzzing if `tests/do.sh` executed with env FUZZY_TESTING_ENABLED=1 Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | ||
| * | Implemented RDP over UDP dissection | Luca Deri | 2021-10-18 |
| | | |||
| * | Refreshed results list | Luca Deri | 2021-10-16 |
| | | |||
| * | Fixed cleartext protocol assignment | Luca Deri | 2021-10-16 |
| | | |||
| * | Updated test results after latest commit | Luca Deri | 2021-10-16 |
| | | |||
| * | Reworked flow risks asignment | Luca Deri | 2021-10-16 |
| | | | | | Added esceptions for windows update and binary application transfer risk | ||
| * | Removed outdated (and broken) soulseek dissector | Luca Deri | 2021-10-15 |
| | | |||
| * | Updated test results | Luca Deri | 2021-10-14 |
| | | |||
| * | Added missing call to ndpi_reconcile_protocols() with protocol guess | Luca Deri | 2021-10-14 |
| | | |||
| * | Fixed issue on DGA numeric IP detection | Luca Deri | 2021-10-13 |
| | | |||
| * | Indemt | Luca Deri | 2021-10-13 |
| | | |||
| * | Add issue templates. (#1340) | Zied Aouini | 2021-10-13 |
| | | | | | * Add issue template. * Add config log instruction. | ||
| * | Implemented ndpi_ses_fitting() and ndpi_des_fitting() | Luca Deri | 2021-10-12 |
| | | | | | for comuting the best alpha/beta values for exponential smoothing | ||
| * | Return 0 on ndpi_init_serializer_ll success for consistency | Alfredo Cardigliano | 2021-10-12 |
| | | |||
| * | Fixed DES initialisation | Luca Deri | 2021-10-12 |
| | | |||
| * | QUIC: fix an integer overflow (#1337) | Ivan Nardi | 2021-10-11 |
| | | | | | Long standing bug: credits to @lnslbrty for digging into it and to @aouinizied for the CI improvements | ||
| * | Removed README.protocols because: (#1333) | Toni | 2021-10-11 |
| | | | | | | | * Tor via TLS should be detectable via DGA as a risk * protocol limitations should be part of the official documentation in `doc/` Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | ||
| * | Win fix | Luca Deri | 2021-10-11 |
| | | |||
| * | Fix FuzzCI. (#1338) | Zied Aouini | 2021-10-11 |
| | | |||
| * | Enable sanitizers on CIFuzz. (#1336) | Zied Aouini | 2021-10-11 |
| | | |||
| * | Cleaned up code moving specific includes in files their are using it. Thi ↵ | Luca Deri | 2021-10-11 |
| | | | | | prevents ndpi_config.h to be included everywhere in apps using nDPI that might leade to #define redefinitions after the latest changes | ||
| * | Additional fix related to cf931fda6bfb3925555c7bd11d950a886676bcb3. (#1332) | Toni | 2021-10-10 |
| | | | | | | * configure.seed references removed Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | ||
| * | Fix `make dist` and add it to the CI along with `make -C doc text`. Fixes ↵ | Toni | 2021-10-10 |
| | | | | | | #1324 (#1327) Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | ||
| * | Get rid of `configure.seed` as it comes with some disadvantages. (#1328) | Toni | 2021-10-10 |
| | | | | | | * using Autotools best-practices to achieve (hopefully) the same result Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | ||
| * | Add more WindowsUpdate URLs as requested in #698. (#1329) | Toni | 2021-10-08 |
| | | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | ||
| * | Added extra check | Luca Deri | 2021-10-07 |
| | | |||
| * | Fix compilation with clang-13 or if some debug macros are enabled (#1326) | Ivan Nardi | 2021-10-06 |
| | | |||
| * | Added check | Luca Deri | 2021-10-06 |
| | | |||