suricata

Commit Graph

Author	SHA1	Message	Date
Victor Julien	79499e4769	app-layer: move files into transactions Update APIs to store files in transactions instead of the per flow state. Goal is to avoid the overhead of matching up files and transactions in cases where there are many of both. Update all protocol implementations to support this. Update file logging logic to account for having files in transactions. Instead of it acting separately on file containers, it is now tied into the transaction logging. Update the filestore keyword to consider a match if filestore output not enabled.	3 years ago
Philippe Antoine	6058792bee	rust: make suricata context const So that it is read only and its pointers do not get modified	3 years ago
Victor Julien	9537d119b9	http: fix reassembled range file accounting	4 years ago
Victor Julien	6d30f4442c	http2: fix file accounting for ranged files Increment files_opened for tx that 'gets' reassembled ranged file	4 years ago
Philippe Antoine	98f84d5a9b	http2: follow range requests Move the content-range parsing code to rust	4 years ago
Victor Julien	7a797631e0	http/range: cleanup and simplification Simplify locking by using the THashData lock instead of a separate range lock. Avoid size_t in function arguments. Clean up file handling functions. Implement handling of alloc errors. Rename yaml entry to byterange Unify public api naming	4 years ago
Philippe Antoine	e82416a415	http/range: reassemble files from different flows with range adds a container, ie a thread safe hash table whose key is the filename keep a tree of unordered ranges, up to a memcap limit adds HTPFileOpenWithRange to handle like HTPFileOpen if there is a range : open 2 files, one for the whole reassembled, and one only for the current range	4 years ago
Victor Julien	d74c18ee28	http: support per-tx file accounting	4 years ago
Philippe Antoine	bef190f767	http: logs content range Fixes #2485	7 years ago
Victor Julien	6b942b6734	htp file: constify name/data args	10 years ago
Victor Julien	136c6440c8	http file: fix txid type	10 years ago
Victor Julien	d59ca75e46	file extract: split toserver and toclient tracking Split toserver and toclient file tracking for the http state.	14 years ago
Victor Julien	b402d97179	File carving -- enable reponse file extraction - Enable response body tracking - Enable file extraction for responses - File store meta file includes magic, close reason. - Option to force magic lookup for all stored files. - Fix libmagic calls thead safety.	14 years ago
Victor Julien	e1022ee5ae	file-extraction: Disconnect file handling from flow and move into the app layer state.	14 years ago
Victor Julien	9d5d46c4bb	Implement flow file storage API, create HTP wrappers for it, use it in HTTP parsing.	14 years ago
Victor Julien	a0ee6ade3e	Improve HTTP multipart parsing, add streaming parsing for files.	14 years ago

16 Commits (7bfb63210e3a128c999343a4805b1d972ae64b73)