CVS log for snort/contrib/Attic/create_mysql
	Help

Request diff between arbitrary revisions

* Actually removing from 2.3 branch now.

* Removed obsolete contribs, relocated to www.snort.org

- DB schema v106
- Added the sensor.last_cid field to the schema so the
  database can store the last used cid for a given sensor.
  This field will ensure that a cid will never be reused.
- Improved error messages

* updated changes to db stuff from Roman
* updated BUILD #
* strncat in sp_reference
* opts[1] fix to plugin args passing

+ DB schema version 105
+ native DATE support in Oracle for timestamps (Chad Kreimendahl)

Patch from (Roman Danyliw <roman@danyliw.com>)
+ enlarged the reference.reg_tag field to 100 characters.

- patch altered: changed to "TEXT" where available, left "VARCHAR(100)"
                 where not
- note that the schema version has changed to 1.04

Small fix in create_mysql that prevents older versions of mysql from
complaining about indexing a NULL column.

XML Plugin
+ added support for priority, rev, sid, and classification
+ updated /contrib/snml.dtd to version 1.03

Database Plugin
+ introduce schema v103
+ removed support for schema v0, v100-v102 in database plug-in
+ removed duplicate logging of IP addresses as 4-byte octets
+ removed classification level priorities
+ removed classification description from schema
+ removed hard-coded classifications from the create_* scripts.
  Classification information is now logged like a reference;
  on the first instance of a rule, log its classification
+ added support for the 'priority', 'rev', 'sid' rule options

* Patch from Roman to support classifications in the database
* Update to create_mysql and create_postgresql to include classifications
* Bug fix for handling rules with no layer 4 content

Note that after the 1.8 release all future versions of the create_*
scripts will not include static INSERT statements for classification
data; rather we will handle this with a script that reads
"classification.config" and generates the proper INSERT statements.

Patch from Roman Danyliw to
* Update schema version number
* Change signature column to int4 in create_postgresql

database patch from Roman Danyliw <roman@danyliw.com>

+ added support for the 'reference' tag in the rules
+ normalization of the signature in the DB schema
+ embedding the schema version number in the schema itself
+ updated the DDL create_* scripts to reflect the updated structure

- temporarily removed support for the DELAYED clause in MySQL inserts
  (it was interferring with some of the code with the reference tags.
   Further investigation will be needed)

Changed all checksum fields to short ints instead of long ints.

Fixed a couple sizes for checksum fields. They were smallints: they were
changed to long ints.

Makefile.in

* Committed Makefile.in because it was out of sync with Makefile.am. This
  was one of the build problems people have had in the past 24 hours.

plugbase.c/plugbase.h

* Added hex() function. This converts a bunch of bytes into a hex string.
  It is used for database logging, and I will add this functionality to
  the xml plugin as well.
* Added escaping for the ascii character ' in the ascii() function

spo_log_database.c/spo_log_database.h

* Added "encoding" option so you can select hex, base64, or ascii for
  logging binary data
* Added the "detail" option so you can choose between full and fast
  logging. Fast logs to only a subset of the fields where full loggs
  all of the fields.
* Fixed the full logging of tcp fields. I noticed this morning that
  I negleted to add all of the fields for the commit I made yesterday.
* Added encoding and detail to sensor table queries
* Added hex binary logging support

create_mysql / create_postgresql

* Added detail and encoding to sensor table
* Slightly changed the data table to make more sense with new binary
  encoding option
* Added encoding and detail lookup tables

spo_log_database.c
  Fixed time issue --- now it logs the time reported by libpcap instead
   of now() so you can effectively insert packets replayed from a
   tcpdump file.
  Fixed udp and icmp inserts -- they were failing based on the code
   submitted in the last commit.

create_mysql / create_postgresql
  Changed a couple fields in icmphdr from tinyints to smallints. They
   were previously a typo.

This commit includes an updated version of the database plugin.
The database format has been updated to include all possible
fields in ip, tcp, udp, or icmp headers. This includes ip and
tcp options and data payload. Payload is logged as either base64
or ascii depending on wether the user enters the -d and/or -C
command line switches.

IP addresses are currently represented as both one four byte int
and four one byte ints. I plan to phase out the four one byte
ints before the next official release.

There is also a one liner fix for the xml plugin in here that
caused a coredump when DEBUG was defined.

This is a test to see if the mailing list for CVS commits is working.
There is no functional change to create_mysql. I just added a \n on
the last line.

This is another test to see if the cvsinfo mailinglist is working.
There is no functional change to the code.

This is just a test to ensure everything is working correctly as far
as commit access to the CVS tree goes. This is also a test to see if
the mailing list that reports changes in CVS is working.

I just added a \n on the last line in this file so it would be
different.

* Jed

Initial Import

Initial revision