aboutsummaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAge
* go-dashboard: Added event structs and JSON unmarshal semantic.Toni Uhlig2020-09-02
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* go-dashboard: go mod/vendor support + termdash text user interfaceToni Uhlig2020-09-01
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* nDPId: Print compiled-in libgcrypt version (if libndpi was compiled with ↵Toni Uhlig2020-08-31
| | | | | | libgcrypt support). Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* Added golang JSON deserializer example.Toni Uhlig2020-08-31
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* Increased network buffer size from 8448 to 9216 with the hope that it might ↵Toni Uhlig2020-08-27
| | | | | | be finally enough. Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* nDPId: Improved command line option parsing, app usage and subopts for ↵Toni Uhlig2020-08-26
| | | | | | (carefully) tuning some daemon options. Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* Makefile: Allow pkg-config based builds and also allow setting libndpi build ↵Toni Uhlig2020-08-24
| | | | | | options manually. Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* risky-flow-to-pcap.py: dump the first few packets of a "risky" flow to a ↵Toni Uhlig2020-08-23
| | | | | | PCAP file Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* nDPId: subopt parsing skeletonToni Uhlig2020-08-19
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* nDPIsrvd.py: improved PCAP writing for guessed/undetected flows (ignore ↵Toni Uhlig2020-08-19
| | | | | | empty UDP/TCP packets) Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* added pkt_type and pkt_ipoffset to json serializationToni Uhlig2020-08-19
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* nDPIsrvd: add command line option for distributor listen host/portToni Uhlig2020-08-18
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* merged code to reduce code duplicatesToni Uhlig2020-08-18
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* nDPIsrvd: log ip:port for distributor connection failsToni Uhlig2020-08-17
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* added nDPIsrvd communication/utils python moduleToni Uhlig2020-08-16
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* minor improvments regarding flow guessing on flow end/idle and other not ↵Toni Uhlig2020-08-16
| | | | | | worth to mention Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* yet another README.md updateToni Uhlig2020-08-15
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* error handling enhancementsToni Uhlig2020-08-15
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* README.md updateToni Uhlig2020-08-15
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* nDPIsrvd: fixed another two bugs; one related to EPOLLIN event for fd with ↵Toni Uhlig2020-08-15
| | | | | | shutdown reading end, one if write() did not write all bytes Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* adjust some config valuesToni Uhlig2020-08-15
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* several fixes and improvmentsToni Uhlig2020-08-14
| | | | | | | | - set errno to 0 if it is checked right after a libc call - ignore SIGPIPE as we want to avoid signal handling where possible - fixed another issue in nDPIsrvd/c-json-stdout which caused buffering errors Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* minor improvmentsToni Uhlig2020-08-14
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* c-json-stdout: fixed broken bufferingToni Uhlig2020-08-14
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* nDPIsrvd: fixed broken bufferingToni Uhlig2020-08-14
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* nDPId: removed unused code, process remaining flows on shutdown (useful for ↵Toni Uhlig2020-08-14
| | | | | | replaying pcap files) Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* flow-undetected-to-pcap.py: apply 'guessed' or 'undetected' to the filepathToni Uhlig2020-08-14
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* Makefile: ENABLE_DEBUG disables function inliningToni Uhlig2020-08-14
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* set detection_completed = 1 if guessed/not-detected event thrownToni Uhlig2020-08-13
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* flow-info.py, flow-undetected-to-pcap.py: throw socket error runtime ↵Toni Uhlig2020-08-13
| | | | | | exception if disconnect received Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* flow-undetected-to-pcap.py: do not write pcaps for midstream flows, write ↵Toni Uhlig2020-08-13
| | | | | | pcaps after detection completed or flow EoF but only once Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* improved TCP-FIN/TCP-RST and TCP-keepalive/-idle timeout handlingToni Uhlig2020-08-13
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* replaced deprecated pcap_lookupdev with pcap_findalldevsToni Uhlig2020-08-12
|
* improved nDPIsrvd buffering if write returned EAGAINToni Uhlig2020-08-12
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* do not disconnect a distributor client if write returned EAGAIN (still not ↵Toni Uhlig2020-08-09
| | | | | | perfect) Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* moved PACKET_EVENT_PAYLOAD_FLOW after FLOW_EVENT_NEW (and before ↵Toni Uhlig2020-08-09
| | | | | | FLOW_EVENT_END/IDLE) Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* flow-info.py: fixed buffering issueToni Uhlig2020-08-08
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* event consistency: call ndpi_dpi2json only for GUESSED, DETECTED, ↵Toni Uhlig2020-08-08
| | | | | | | | NOT-DETECTED flow events - force generation of GUESSED, NOT-DETECTED events on flow idle/end if detection finished Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* flow-info.py overhaul, terminal color support, ndpi ↵Toni Uhlig2020-08-07
| | | | | | protocol/category/flow-risk output Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* nDPId: do not serialize flow riskm twiceToni Uhlig2020-08-07
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* added some random info'sToni Uhlig2020-08-06
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* added python flow info script, improved IPv4/IPv6 string conversionToni Uhlig2020-08-06
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* nDPIsrvd sighandler and cmd opt parserToni Uhlig2020-08-06
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* added utils module to share some code parts with other appsToni Uhlig2020-08-05
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* nDPId daemonize / pidfile support + improved syslog loggingToni Uhlig2020-08-05
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* improved Makefile help targetToni Uhlig2020-08-05
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* json buffering and parsingToni Uhlig2020-08-04
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* introduced NETWORK_BUFFER_MAX_SIZE to replace BUFSIZ as this might change ↵Toni Uhlig2020-08-04
| | | | | | depending on the arch/libc used Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* fixed buffering issue, improved logging verbosityToni Uhlig2020-08-04
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* print snprintf retval and buffer size if buffer preparation failedToni Uhlig2020-08-04
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
Powered by cgit, Themed by Ted Yin.