1768 Commits (f73c60b4ffefda41228f180815c568d0606dcaad)

 

All Branches   

Search

Author	SHA1	Message	Date
Anoop Saldanha	46b4806d8e	use a single populatempm() function to add the right content for mpm	14 years ago
Anoop Saldanha	4a038511ff	Change the struct members uricontent and uricontent_len in DetectUricontentData to content and content_len. Make replacements everywhere else in the codebase to accomodate these changes	14 years ago
Anoop Saldanha	ede7be34b5	replace all Signature->tmatch instances in the engine with Signature->sm_lists[DETECT_SM_LIST_TMATCH]	14 years ago
Anoop Saldanha	3d2f81d978	replace all Signature->dmatch instances in the engine with Signature->sm_lists[DETECT_SM_LIST_DMATCH]	14 years ago
Anoop Saldanha	a7353be20d	replace all Signature->amatch instances in the engine with Signature->sm_lists[DETECT_SM_LIST_AMATCH]	14 years ago
Anoop Saldanha	e0476242c6	replace all Signature->umatch instances in the engine with Signature->sm_lists[DETECT_SM_LIST_UMATCH]	14 years ago
Anoop Saldanha	e54358a9e1	replace all Signature->pmatch instances in the engine with Signature->sm_lists[DETECT_SM_LIST_PMATCH]	14 years ago
Anoop Saldanha	82fd581b64	replace all sm lists (match, pmatch, dmatch, umatch, amatch, tmatch) with an array Signature->sm_lists[]. Replace all Signature->match instances in the engine with Signature->sm_lists[DETECT_SM_LIST_MATCH]	14 years ago
Anoop Saldanha	3656879aa0	fix some dce opnum/stub tests that would have shown success always irrespective of test results	14 years ago
Anoop Saldanha	4b77f132df	add support for sigs with uricontent fast_pattern	14 years ago
Anoop Saldanha	ea8eaf31aa	Fix fast_pattern tests that always showed success, irrespective of test results	14 years ago
Victor Julien	966c7349d3	Make sure we have a response message before inspecting it in http_stat_msg.	14 years ago
Victor Julien	07ec1ee10e	Slightly cleanup detect-engine.sgh-mpm-context option parsing.	15 years ago
Anoop Saldanha	c89507836b	if sgh-mpm-context is not available in conf, alias the auto case inside the engine	15 years ago
Victor Julien	bac621760e	Fix a potential invalid memory read in the protocol name code used by alert-fastlog.	15 years ago
Gurvinder Singh	f92ba23331	add the support for >= and <= operator for byte_test	15 years ago
Victor Julien	412498f4e4	Converts port vars in http logger from uint32_t to Port and update output.	15 years ago
Gurvinder Singh	b7ff6537d2	fixed the incorrect port issue in http.log	15 years ago
Victor Julien	275bd3b7d7	Switch back to defaulting to full for detect-engine.sgh-mpm-context as it broke many tests.	15 years ago
Victor Julien	dec4218d62	Layout updates to NFQ runmode.	15 years ago
Victor Julien	7e49aa7f76	Simplify NFQ runmode reducing the number of threads and thus queues.	15 years ago
Victor Julien	7e6f01765f	Change default of detect-engine.sgh-mpm-context to auto.	15 years ago
Victor Julien	001f91056e	Add http_raw_header as an alias to the http_header keyword as that actually inspects the raw headers (see issue #243). Closes issue #242.	15 years ago
Victor Julien	4598274d07	Fix depth error messages referring to distance instead of depth, fix their layout.	15 years ago
Victor Julien	afdb39e5f6	Print an error if the protocol field of a signature contains a unknown/invalid value.	15 years ago
Victor Julien	8d0bc27fc4	Fix a case where alerting in inline mode would lead dropping on alert sigs.	15 years ago
Victor Julien	5a10eac5bd	Cleanup http_stat_code unittests, shrink data structure.	15 years ago
Victor Julien	1636152e32	Fix negated http_method not working properly, causing false positives.	15 years ago
Gurvinder Singh	b7da115e6d	support for http_stat_code keyword has been added to detection module	15 years ago
Gurvinder Singh	1deae70cf7	added http_stat_msg keyword support for detection module	15 years ago
Jason Ish	a4d19e4130	Add new profiling sort option, maxticks.	15 years ago
Anoop Saldanha	59923316bc	change the default recursion limit in the code to 3000, the value which we currently have in the conf file. Also change print modifier for printing timeval	15 years ago
Anoop Saldanha	5d9a453e0d	find an optimal value for detect-engine:inspection-recursion_limit + unittest	15 years ago
Anoop Saldanha	bc99328ec8	define a new conf paramter detect-engine:inspection-recursion-limit; Defines a recursion limit for content inspection code	15 years ago
William Metcalf	efeab331ea	compilation fix missing UT ifdef wrapper in reference code	15 years ago
Victor Julien	746ef0d2f8	Remove stray newline char from profiling output.	15 years ago
Victor Julien	3062b19068	Clean up output of signature ordering module.	15 years ago
Victor Julien	001dcaae84	Minor reference.config support changes: improve error handling, reduce hash table size.	15 years ago
Anoop Saldanha	88d94b136d	Support for reference.config file	15 years ago
Anoop Saldanha	f5a02833dd	code cleanup in detect-reference.c	15 years ago
Victor Julien	5f4d681a42	Apply revision 233 and 234 from libhtp to improve memory handling when Suricata runs out of memory.	15 years ago
Victor Julien	344ea14695	Change mpm hash_size config setting highest to higher as highest wasn't the... highest. Max was higher. Leaving highest as an alias to higher for backwards compatibility.	15 years ago
Victor Julien	41fd7e51c6	Really add secunia reference support.	15 years ago
Victor Julien	33170fd181	Add secunia reference pending our reference.config support.	15 years ago
Anoop Saldanha	067e53403c	add missing sig_app_layer flags for dce sigs	15 years ago
Victor Julien	26fd2a0afd	Add telus and bid references for etpro.	15 years ago
Victor Julien	2b187a2721	Remove a BUG_ON statement from the payload inspection code.	15 years ago
Victor Julien	f2e6ec7374	Fix http_method not inspecting all http transactions all the time. Fix proper nocase setting. Switch to pattern scanning only, no more numeric compares as it turned to be incompatible with how the keyword is used (nocase, etc).	15 years ago
Anoop Saldanha	2cdb5be391	Print out file name for fast_pattern engine_analysis. Also add some info logs	15 years ago
Anoop Saldanha	0c5b82d891	provide separate ids for content, uricontent, http_(client_body_data|cookie|header|method|uri), when they share the same pattern	15 years ago