suricata

Commit Graph

Author	SHA1	Message	Date
Victor Julien	17bc0299fe	detect: rename non_mpm lists/vars to non_pf Rename to non_pf: non prefilter.	9 years ago
Duarte Silva	a6d928e269	file-hashing: added support for SHA-1 file hashing	9 years ago
Victor Julien	e0111fbb90	detect grouping: remove debug mem counters	10 years ago
Victor Julien	f0ba00e51d	detect: remove old unused code	10 years ago
Victor Julien	d82df4eb8b	detect-mpm: make sgh setup proto aware Allow multi-proto, multi-direction sgh's.	10 years ago
Victor Julien	27e63a1e11	detect: track direction and ipproto of sgh Each SGH has a unique ipproto and direction.	10 years ago
Victor Julien	0d3f671b55	detect: constify mpm/detect funcs	10 years ago
Victor Julien	e529ebb50e	mpm: redo uri maxlen logic The mpm_uricontent_maxlen logic was meant to track the shortest possible pattern in the MPM of a SGH. So a minlen more than a maxlen. This patch replaces the complicated tracking logic by a simpler scheme. When the SGH's are finalize, the minlen is calculated. It also fixes a small corner case where the calculated "maxlen" could be wrong. This would require a smaller pattern in a rule to be forced as fast pattern.	10 years ago
Victor Julien	ef6875d583	detect: Disable unused SignatureHeader code	11 years ago
Victor Julien	f5df526f9b	Detect: create per sgh non-MPM rule array Array of rule id's that are not using MPM prefiltering. These will be merged with the MPM results array. Together these should lead to a list of all the rules that can possibly match.	11 years ago
Victor Julien	8f71333e12	file: implement filesize keyword. #489 .	13 years ago
Victor Julien	c9e93ec52c	filemd5: add support code for md5 handling for signatures.	14 years ago
Victor Julien	9b62ec65ab	Make sure filemagic works properly regardless of filestore being in use for a flow.	14 years ago
Victor Julien	23e01d23d3	Implement filestore keyword, including a way for the stateful detection engine to conclude that a file will never have to be stored.	14 years ago
Victor Julien	37442a8a84	Prefilter signatures before fully scanning them.	16 years ago
Victor Julien	a24f288074	Moving the stream content scanning to have it's own mpm ctx.	16 years ago
Victor Julien	46831e0f8f	Fix signature grouping bug for protocols without ports. Add debugging code.	16 years ago
William Metcalf	ce01927515	Import of GPLv2 Header 050410	16 years ago
Anoop Saldanha	78db80ea15	Unittests and style fix for detect-engine-siggroup.[ch]	16 years ago
Victor Julien	3c7a038477	Further memory cleanups. Split out init only vars out of the sig group head.	16 years ago
Victor Julien	15ab5d7003	More engine init memleaks fixed. HashListTable remove function fixed.	16 years ago
Victor Julien	733c3bcb8c	Fix "ip" rules not ending up in the tcp and udp sig group heads correctly.	16 years ago
Victor Julien	b26b5aa462	More cleanups.	16 years ago
Brian Rectanus	fa5939ca91	64 bit cleanup part2	17 years ago
Victor Julien	5df5b35e90	Put all globals in the detection engine ctx. Add HashList type, a hash that also stores the items ina list to it can be traversed. Many cleanups.	17 years ago
Victor Julien	3f7195454b	Big detection engine update.	17 years ago
Victor Julien	8b3d06fd92	Rename some detection engine related files.	17 years ago

27 Commits (88177694fdf74cd577710f90ac687be8289b1230)