libndpi.git - Open Source Deep Packet Inspection Software Toolkit

	Commit message (Collapse)	Author	Age
...
*	Improved missing usage of nDPIs malloc wrapper. Fixes #1978. (#1979)	Toni	2023-05-20
\| \| \| \| \|	* added CI check Signed-off-by: lns <matzeton@googlemail.com>
*	Improved debug output. (#1951)	Toni	2023-04-21
\| \| \| \| \| \|	* try to get rid of some `printf(..)`s as they do not belong to a shared library * replaced all `exit(..)`s with `abort()`s to indicate an abnormal process termination Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
*	fuzz: add fuzzer to test internal gcrypt code (#1920)	Ivan Nardi	2023-04-04
\|
*	Update libinjection code (#1918)	Ivan Nardi	2023-04-04
\| \| \| \| \| \| \| \| \| \|	Update libinjection code to the current master https://github.com/libinjection/libinjection/commit/7e4b74e824dc3f0623ba4894df2a0d817351ec39 The goal is to finally fix #1820 See: https://github.com/libinjection/libinjection/issues/33 Update the corpus of the libinjection fuzzers Close #1820
*	Centos7 fixes	Luca Deri	2023-02-13
\|
*	Update roaring bitmap code	Luca Deri	2023-02-12
\|
*	fuzz: some improvements and add two new fuzzers (#1881)	Ivan Nardi	2023-02-09
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Remove `FUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION` define from `fuzz/Makefile.am`; it is already included by the main configure script (when fuzzing). Add a knob to force disabling of AESNI optimizations: this way we can fuzz also no-aesni crypto code. Move CRC32 algorithm into the library. Add some fake traces to extend fuzzing coverage. Note that these traces are hand-made (via scapy/curl) and must not be used as "proof" that the dissectors are really able to identify this kind of traffic. Some small updates to some dissectors: CSGO: remove a wrong rule (never triggered, BTW). Any UDP packet starting with "VS01" will be classified as STEAM (see steam.c around line 111). Googling it, it seems right so. XBOX: XBOX only analyses UDP flows while HTTP only TCP ones; therefore that condition is false. RTP, STUN: removed useless "break"s Zattoo: `flow->zattoo_stage` is never set to any values greater or equal to 5, so these checks are never true. PPStream: `flow->l4.udp.ppstream_stage` is never read. Delete it. TeamSpeak: we check for `flow->packet_counter == 3` just above, so the following check `flow->packet_counter >= 3` is always false.
*	Add some fuzzers to test other data structures. (#1870)	Ivan Nardi	2023-01-25
\| \| \| \| \| \| \|	Start using a dictionary for fuzzing (see: https://llvm.org/docs/LibFuzzer.html#dictionaries). Remove some dead code. Fuzzing with debug enabled is not usually a great idea (from performance POV). Keep the code since it might be useful while debugging.
*	Some small changes (#1869)	Ivan Nardi	2023-01-25
\| \| \| \| \| \| \| \|	All dissector callbacks should not be exported by the library; make static some other local functions. The callback logic in `ndpiReader` has never been used. With internal libgcrypt, `gcry_control()` should always return no errors. We can check `categories` length at compilation time.
*	fuzz: fix memory allocation failure logic (#1867)	Ivan Nardi	2023-01-20
\| \| \| \| \|	We do want to have some allocation errors. Fix some related bugs Fix: 29be01ef
*	Add some fuzzers to test algorithms and data structures (#1852)	Ivan Nardi	2023-01-17
\| \| \|	Fix some issues found with these new fuzzers
*	Fix some warnings and two errors found while fuzzing (#1844)	Ivan Nardi	2023-01-03
\| \| \| \|	Fix CI See: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=54614
*	fuzz: add fuzzer testing nDPI (initial) configurations (#1830)	Ivan Nardi	2022-12-23
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	The goal of this fuzzer is to test init and deinit of the library, with different configurations. In details: * random memory allocation failures, even during init phase * random `ndpi_init_prefs` parameter of `ndpi_init_detection_module()` * random LRU caches sizes * random bitmask of enabled protocols * random parameters of `ndpi_set_detection_preferences()` * random initialization of opportunistic TLS * random load/don't load of configuration files This new fuzzer is a C++ file, because it uses `FuzzedDataProvider` class (see https://github.com/google/fuzzing/blob/master/docs/split-inputs.md). Note that the (existing) fuzzers need to be linked with C++ compiler anyway, so this new fuzzer doesn't add any new requirements.
*	fuzz: add a new fuzzer testing memory allocation failures (#1818)	Ivan Nardi	2022-12-06
\| \| \| \| \| \| \| \| \|	Try to fuzz error paths triggered by allocation errors. Fix some errors already found by this new fuzzer. Basic idea taken from: https://github.com/harfbuzz/harfbuzz/pull/2566/files `FUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION` is a standard define used to (not)compile specific code in fuzzing builds. See: https://llvm.org/docs/LibFuzzer.html
*	Extend CodeQL configuration and fix two warnings (#1816)	Ivan Nardi	2022-12-02
\| \| \| \| \| \| \| \| \|	``` Call to `memset` may be deleted Comparison of narrow type with wide type in loop condition ``` See https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-yang.pdf for the new portable function `secure_memzero`.
*	Removed unused variable	Luca Deri	2022-10-26
\|
*	Fix typo	Alfredo Cardigliano	2022-10-26
\|
*	Cleanup	Luca Deri	2022-10-26
\|
*	Typo	Luca Deri	2022-10-26
\|
*	Improved AESNI check	Luca Deri	2022-10-26
\|
*	Windows changes	Luca Deri	2022-10-06
\|
*	Add proj and sln for compile of dynamic x64 lib under Visual Studio 2019.	mark andrews	2022-09-21
\| \| \| \| \| \|	* add CI support via MSBuild Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
*	Fix some warnings	Nardi Ivan	2022-09-05
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Ubuntu-20.04, clang-16 (nightly build) ``` Making all in src/lib protocols/smpp.c:70:17: warning: variable 'pdu_c' set but not used [-Wunused-but-set-variable] u_int16_t pdu_c = 1; ^ 1 warning generated. third_party/src/ahocorasick.c:173:20: warning: implicit truncation from 'int' to a one-bit wide bit-field changes value from 1 to -1 [-Wsingle-bit-bitfield-constant-conversion] thiz->root->root = 1; ^ ~ third_party/src/ahocorasick.c:336:15: warning: implicit truncation from 'int' to a one-bit wide bit-field changes value from 1 to -1 [-Wsingle-bit-bitfield-constant-conversion] n->ff = 1; ^ ~ third_party/src/ahocorasick.c:716:21: warning: implicit truncation from 'int' to a one-bit wide bit-field changes value from 1 to -1 [-Wsingle-bit-bitfield-constant-conversion] node->final = 1; [...] ```
*	Improve AES-NI check	Alfredo Cardigliano	2022-08-30
\|
*	Internal gcrypt: fix memory leak	Nardi Ivan	2022-08-30
\| \| \| \|	Fix: ef99eb67
*	Improved AES-NI presence check on Linux	Luca Deri	2022-08-29
\|
*	Modified definition of hll_add	Luca Deri	2022-08-17
\|
*	Patricia tree, Ahocarasick automa, LRU cache: add statistics (#1683)	Ivan Nardi	2022-07-29
\| \| \| \| \| \| \| \| \| \|	Add (basic) internal stats to the main data structures used by the library; they might be usefull to check how effective these structures are. Add an option to `ndpiReader` to dump them; enabled by default in the unit tests. This new option enables/disables dumping of "num dissectors calls" values, too (see b4cb14ec).
*	Revert "Patricia tree, Ahocarasick automa, LRU cache: add statistics ↵	Ivan Nardi	2022-07-29
\| \| \| \| \|	(#1677)" (#1682) This reverts commit bb83899985c25097341b947c2c535f56254a075c.
*	Patricia tree, Ahocarasick automa, LRU cache: add statistics (#1677)	Ivan Nardi	2022-07-29
\| \| \| \| \| \| \| \|	Add (basic) internal stats to the main data structures used by the library; they might be usefull to check how effective these structures are. Add an option to `ndpiReader` to dump them; disabled by default to avoid too much fuss with the unit tests.
*	Add support for Memory sanitizer (#1652)	Ivan Nardi	2022-07-24
\|
*	ahocorasick: fix char/uchar bug (#1597)	Ivan Nardi	2022-07-20
\| \| \| \|	Porting of https://github.com/vel21ripn/nDPI/commit/06e2967d0c26ab214683a2f5565f4012fd523537 Close #1506
*	Fix unitialized use of W[16]. (#1662)	Toni	2022-07-15
\| \| \|	Signed-off-by: lns <matzeton@googlemail.com>
*	Fix a compilation warning (#1620)	Ivan Nardi	2022-07-03
\| \| \| \| \| \| \| \|	With clang-15 (nightly build) ``` In file included from ndpi_bitmap.c:39: ./third_party/src/roaring.cc:14233:13: warning: variable 'run_count' set but not used [-Wunused-but-set-variable] int run_count = 0; ```
*	Replaced nDPI's internal hashmap with uthash. (#1602)	Toni	2022-06-17
\| \| \|	Signed-off-by: lns <matzeton@googlemail.com>
*	Force roaring bitmap to use ndpi memory wrappers. (#1569)	Toni	2022-05-31
\| \| \| \| \| \| \| \|	GCC analyzer won't complain about possible use-after-free (false positive). * tests/do.sh prints word diff's only once and not the same over and over again * sync unit tests Signed-off-by: lns <matzeton@googlemail.com>
*	Compilation fixes for old gcc compiler	Luca Deri	2022-05-28
\|
*	Improved AES-NI check. (#1536)	Toni	2022-04-30
\| \| \| \| \|	* A library should not open a subshell Signed-off-by: lns <matzeton@googlemail.com>
*	Improved AES-NI check on Linux to avoid crashes on CPUs that do	Luca Deri	2022-04-29
\| \| \| \|	not support it (e.g. Intel Celeron N2930)
*	Fixed msys2 build warnings and re-activated CI Mingw64 build.fix/windows-msys2	Toni Uhlig	2022-04-14
\| \| \| \| \| \| \|	* Removed Visual Studio leftovers. Maintaining an autotools project with VS integration requires some additional overhead. Signed-off-by: Toni Uhlig <matzeton@googlemail.com> Signed-off-by: lns <matzeton@googlemail.com>
*	Fixed a bug for BE architectures (#1478)	Vitaly Lavrov	2022-03-05
\| \| \|	Fixed a bug in the internal implementation of libgcrypt for bigendian architectures
*	Drop support for non-gcrypt builds. (#1469)	Toni	2022-03-02
\| \| \| \| \| \| \| \|	* As there is now a builtin, lightweight libgcrypt there is no need to disable tls-clho decryption. * It is still possible to use a host libgcrypt with `--with-local-libgcrypt'. Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
*	Internal crypto: increase size of authentication buffer (#1468)	Ivan Nardi	2022-03-02
\| \| \| \| \| \| \|	Some QUIC flows are not properly decoded while using internal crypto code: the authentication buffer is too small. The new value (like the old one) is arbitrary. Close #1463
*	Fix libgcrypt(-light/-internal) compile error. (#1465)	Toni	2022-03-02
\| \| \|	Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
*	Bug fixing. (#1459)	Vitaly Lavrov	2022-02-28
\| \| \| \| \|	The '--enable-debug-messages' option works again. Fixed warning in ahocorasick.c Fixed integer overflow in ndpiReader.c for 32bit systems.
*	Win fixes	Luca Deri	2022-02-23
\|
*	Added lightweight implementation of libgcrypt. (#1444)	Vitaly Lavrov	2022-02-20
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Implementation borrowed from the https://github.com/ARMmbed/mbedtls.git project (v3.1.0) Speed testing (Xeon(R) CPU E3-1230 V2 @ 3.30GHz): gcrypt-gnu Test md 2897 ms enc 2777 ms dec 942 ms gcrypt-int Test md 3668 ms enc 1312 ms dec 2836 ms gcrypt-int-noaesni Test md 3652 ms enc 1916 ms dec 4458 ms gcrypt-gnu-nonopt Test md 3763 ms enc 4978 ms dec 3999 ms gcrypt-gnu-nonopt - libgcrypt compiled without hardware acceleration --disable-padlock-support --disable-aesni-support \ --disable-shaext-support --disable-pclmul-support \ --disable-sse41-support --disable-drng-support \ --disable-avx-support --disable-avx2-support \ --disable-neon-support --disable-arm-crypto-support \ --disable-ppc-crypto-support --disable-amd64-as-feature-detection
*	fix ahocorasick on big-endian machines (#1401)	Vinicius Silva Nogueira	2022-01-13
\|
*	Compilation fix for old Linux distributions	Luca Deri	2021-10-06
\|
*	Compilation fixed on CentOS 7	Luca Deri	2021-09-27
\| \| \| \|	Bitmap APi changes