scottk/nDPId
1
0
Fork 0
mirror of https://github.com/optim-enterprises-bv/nDPId.git synced 2025-10-29 17:32:23 +00:00
Code Issues Packages Projects Releases Wiki Activity
788 Commits 1 Branch 0 Tags
9efdecf4efa352a6046c88a945cf9ff8db1b37b9
Commit Graph

26 Commits

Author SHA1 Message Date
Toni Uhlig
9efdecf4ef bump libnDPI to 59ee1fe1156be234fed796972a29a31a0589e25a 
* set minimum nDPI version to 4.12.0 (incompatible API changes)
 * fixed `ndpi_debug_printf()` function signature
 * JSON schema (flow): added risk `56`: "Obfuscated Traffic"
 * JSON schema (flow): added "domainame"
 * fixed OpenWrt build

Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2024-11-13 17:23:31 +01:00
Toni Uhlig
a733d536ad Added env check NDPID_STARTED_BY_SYSTEMD to prevent logging to stderr in such a case 
* removed `nDPId` shutdown on poll/epoll error
 * fixed `chmod_chown()` rv check

Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2024-11-07 11:32:42 +01:00
Toni Uhlig
ce5f448d3b Switched OpenWrt GitHub Actions SDK to main branch 
* fixed some SonarCloud complaints
 * added more systemd CI tests
 * fixed debian package scripts to obey remove/purge
 * changed `chmod_chown()` error handling

Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2024-11-02 18:36:54 +01:00
Toni
efed6f196e Read and parse configuration files. Fixes #41. (#42) 
Read and parse configuration files. Fixes #41.

 * supports nDPId / nDPIsrvd via command line parameter `-f`
 * nDPId: read general/tuning and libnDPI settings
 * support for settings risk domains libnDPI option via config file or via `-R` (Fixes #45, thanks to @UnveilTech)
 * added some documentation in the config file
 * adjusted Systemd and Debian packaging to make use of config files

Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2024-10-16 14:13:55 +02:00
Toni Uhlig
7bebd7b2c7 Fix OpenWrt package build. 
Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2024-09-02 17:51:38 +02:00
Toni
5e4005162b Add PF_RING support. (#38) 2024-08-19 18:33:18 +02:00
Toni Uhlig
165b18c829 Fixed OpenWrt nDPId-testing build. 
Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2024-06-12 15:07:17 +02:00
Toni Uhlig
e822bb6145 Fix OpenWrt builds. 
Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2024-04-17 09:25:37 +02:00
Toni Uhlig
d5266b7f44 Support simple config file reading via systemd environment file. 
* cfg file path defaults to PREFIX/etc/default/ndpid

Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2023-11-20 12:27:40 +01:00
Toni Uhlig
315dc32baf Improved syslog logging. 
* fixed missing log level for non-error message, causes systemd to send broadcast messages
 * completly removed logging to stderr while started via systemd

Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2023-10-19 13:38:26 +02:00
Toni Uhlig
a0e0611c56 nDPIsrvd: Log error if collector unix socket can not be removed. 
* systemd: add post stop hook to forcefully remove the collector unix socket

Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2023-09-11 16:58:13 +02:00
Toni Uhlig
22ba5d5103 Improved OpenWrt Makefile: set an optional libnDPI commit hash 
Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2023-07-18 01:25:06 +02:00
Toni Uhlig
d107560049 Updated OpenWrt In-Source build patch. 
Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2023-06-12 19:56:02 +02:00
lns
d8c20d37e5 Allow in-source builds required for OpenWrt toolchain. 
Signed-off-by: lns <matzeton@googlemail.com>
 2023-05-30 12:03:34 +02:00
lns
d0c070a800 Added CentOs and ArchLinux to the CI. 
* added some additional checks in get-and-build-libndpi.sh
 * CMake fallback library checks

Signed-off-by: lns <matzeton@googlemail.com>
Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2023-05-28 00:46:58 +02:00
Toni Uhlig
7515c8aeec Experimental systemd support. 
Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2022-11-06 12:58:55 +01:00
lns
cd22d56056 Add ArchLinux PKGBUILD. 
Signed-off-by: lns <matzeton@googlemail.com>
 2022-10-19 18:40:52 +02:00
Toni Uhlig
49352698a0 nDPId: Added error event threshold to prevent event spamming which may be abused. 
Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2022-10-17 06:36:30 +02:00
Toni Uhlig
b7a17d62c7 Improved OpenWrt UCI/Initscript 
* c-analysed: chuser()/chgroup()

Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2022-10-06 06:54:01 +02:00
Toni Uhlig
be3f466373 OpenWrt UCI/Initscript 
Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2022-10-03 15:57:16 +02:00
Toni Uhlig
b6060b897e c-analysed: improved feature extraction from "analyse" events 
* c-captured: update detected risks on "detection-update" events
 * c-collectd: added missing flow breed
 * c-collectd: PUTVAL macros are more flexible now

Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2022-10-01 18:01:56 +02:00
Toni Uhlig
08f263e409 nDPId: Reduced flow-updates for TCP flows to 1/4 of the timeout value. 
* nDPId: Fixed broken validation tests.
 * nDPId: Removed TICK_RESOLUTION, not required anymore.
 * c-collectd: Improved total layer4 payload calculation/update handling.
 * c-collectd: Updated RRD Graph script according to total layer4 payload changes.
 * py-flow-info.py: Fixed several bugs and syntax errors.
 * Python scripts: Added dirname(argv[0]) as search path for nDPIsrvd.py.
 * nDPIsrvd&nDPId-test: Fixed missing EPOLLERR check.

Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2022-09-19 19:39:49 +02:00
Toni Uhlig
31715295d9 bump libnDPI to 174cd739dbb1358ab012c4779e42e0221bef835c 
* ReadMe stuff
 * OpenWrt Makefile: set NEED_LINKING_AGAINST_LIBM=ON

Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2022-09-18 13:34:43 +02:00
Toni Uhlig
06bce24c0e Add -Werror to OpenWrt package TARGET_CFLAGS. 
Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2022-09-17 18:53:17 +02:00
Toni Uhlig
b3e9af495c Add OpenWrt CI via Github Actions. 
Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2022-09-17 10:31:26 +02:00
Toni Uhlig
aca1615dc1 OpenWrt packaging support. 
Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2022-09-13 13:53:48 +02:00