[Bro-Dev] Pattern matching for the Bro language

2015-08-19 Thread Matthias Vallentin
TL;DR: function f() : any; local result = ; switch( f() ) { case addr: if ( x in 10.0.0.0/8 ) result = got it!; case string: result = f() failed: + x; } I want to propose introducing pattern matching for the Bro language. Pattern

[Bro-Dev] [JIRA] (BIT-1457) [PATCH] add support for MIME type video/MP2T

2015-08-19 Thread Robin Sommer (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1457?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robin Sommer updated BIT-1457: -- Status: Merge Request (was: Open) [PATCH] add support for MIME type video/MP2T

Re: [Bro-Dev] Pattern matching for the Bro language

2015-08-19 Thread Vern Paxson
I want to propose introducing pattern matching for the Bro language. Per our discussion yesterday, I like this notion in general. (Seems we need a better term for it, though, as pattern matching is very generic - plus will confuse some people who'll think it refers to NIDS rules rather than

[Bro-Dev] [JIRA] (BIT-1458) Lots of binpac exceptions in SIP

2015-08-19 Thread Gary Faulkner (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1458?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Gary Faulkner updated BIT-1458: --- Attachment: badsip-19AUG2015_anon.pcapng Lots of binpac exceptions in SIP

Re: [Bro-Dev] Pattern matching for the Bro language

2015-08-19 Thread Matthias Vallentin
local result = switch( x ) { case T: case U: }; Personally, this strike me as a tad weird, since now result might not have a statically determined type, so we're back to it being any. To avoid falling back to any land, the additional constraint

[Bro-Dev] [JIRA] (BIT-1460) DPD query too large on multicast DNS

2015-08-19 Thread Michal Purzynski (JIRA)
Michal Purzynski created BIT-1460: - Summary: DPD query too large on multicast DNS Key: BIT-1460 URL: https://bro-tracker.atlassian.net/browse/BIT-1460 Project: Bro Issue Tracker Issue Type:

[Bro-Dev] [JIRA] (BIT-1458) Lots of binpac exceptions in SIP

2015-08-19 Thread Michal Purzynski (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1458?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=21706#comment-21706 ] Michal Purzynski commented on BIT-1458: --- More pcaps attached. Lots of binpac exceptions

[Bro-Dev] [JIRA] (BIT-1458) Lots of binpac exceptions in SIP

2015-08-19 Thread Michal Purzynski (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1458?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Michal Purzynski updated BIT-1458: -- Attachment: sip3.pcap sip2.pcap Lots of binpac exceptions in SIP

[Bro-Dev] [JIRA] (BIT-1458) Lots of binpac exceptions in SIP

2015-08-19 Thread Michal Purzynski (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1458?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=21705#comment-21705 ] Michal Purzynski commented on BIT-1458: --- Pcap of an example scan attached Lots of

[Bro-Dev] [JIRA] (BIT-1458) Lots of binpac exceptions in SIP

2015-08-19 Thread Michal Purzynski (JIRA)
[ https://bro-tracker.atlassian.net/browse/BIT-1458?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Michal Purzynski updated BIT-1458: -- Attachment: sip-scan-detailed.pcap Lots of binpac exceptions in SIP

[Bro-Dev] [JIRA] (BIT-1459) bro segfaults at analyzer::mime::MIME_Entity::ParseFieldParameters

2015-08-19 Thread Alexander Zatserkovnyy (JIRA)
Alexander Zatserkovnyy created BIT-1459: --- Summary: bro segfaults at analyzer::mime::MIME_Entity::ParseFieldParameters Key: BIT-1459 URL: https://bro-tracker.atlassian.net/browse/BIT-1459

[Bro-Dev] [Auto] Merge Status

2015-08-19 Thread Merge Tracker
Open Merge Requests === IDComponentReporter AssigneeUpdated For Version PrioritySummary --- --- -- -- - --