aiden
/
suricata
mirror of https://github.com/OISF/suricata
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Slightly cleanup detect-engine.sgh-mpm-context option parsing.

Browse Source
remotes/origin/master-1.1.x
Victor Julien 15 years ago
parent c89507836b
commit 07ec1ee10e
1 changed files with 9 additions and 21 deletions
Show Stats Download Patch File Download Diff File

26
src/detect-engine.c
Unescape Escape View File

@ -219,38 +219,26 @@ static uint8_t DetectEngineCtxLoadConf(DetectEngineCtx *de_ctx) {
"at suricata.yaml. Using default (\"medium\")."); "at suricata.yaml. Using default (\"medium\").");
} }
if (sgh_mpm_context != NULL) { /* detect-engine.sgh-mpm-context option parsing */
if (strcmp(sgh_mpm_context, "single") == 0) { if (sgh_mpm_context == NULL || strcmp(sgh_mpm_context, "auto") == 0) {
de_ctx->sgh_mpm_context = ENGINE_SGH_MPM_FACTORY_CONTEXT_SINGLE;
} else if (strcmp(sgh_mpm_context, "full") == 0) {
de_ctx->sgh_mpm_context = ENGINE_SGH_MPM_FACTORY_CONTEXT_FULL;
} else if (strcmp(sgh_mpm_context, "auto") == 0) {
/* for now, since we still haven't implemented any intelligence into /* for now, since we still haven't implemented any intelligence into
* understanding the patterns and distributing mpm_ctx across sgh */ * understanding the patterns and distributing mpm_ctx across sgh */
if (de_ctx->mpm_matcher == MPM_AC || de_ctx->mpm_matcher == MPM_AC_GFBS) if (de_ctx->mpm_matcher == MPM_AC || de_ctx->mpm_matcher == MPM_AC_GFBS)
de_ctx->sgh_mpm_context = ENGINE_SGH_MPM_FACTORY_CONTEXT_SINGLE; de_ctx->sgh_mpm_context = ENGINE_SGH_MPM_FACTORY_CONTEXT_SINGLE;
else else
de_ctx->sgh_mpm_context = ENGINE_SGH_MPM_FACTORY_CONTEXT_FULL; de_ctx->sgh_mpm_context = ENGINE_SGH_MPM_FACTORY_CONTEXT_FULL;
} else {
if (strcmp(sgh_mpm_context, "single") == 0) {
de_ctx->sgh_mpm_context = ENGINE_SGH_MPM_FACTORY_CONTEXT_SINGLE;
} else if (strcmp(sgh_mpm_context, "full") == 0) {
de_ctx->sgh_mpm_context = ENGINE_SGH_MPM_FACTORY_CONTEXT_FULL;
} else { } else {
SCLogWarning(SC_ERR_INVALID_YAML_CONF_ENTRY, "You have supplied an " SCLogWarning(SC_ERR_INVALID_YAML_CONF_ENTRY, "You have supplied an "
"invalid conf value for detect-engine.sgh-mpm-context-" "invalid conf value for detect-engine.sgh-mpm-context-"
"%s", sgh_mpm_context); "%s", sgh_mpm_context);
} }
} else {
SCLogInfo("You have not supplied a value for "
"detect-engine.sgh-mpm-context. Using default value of \"auto\"");
if (de_ctx->mpm_matcher == MPM_AC || de_ctx->mpm_matcher == MPM_AC_GFBS)
de_ctx->sgh_mpm_context = ENGINE_SGH_MPM_FACTORY_CONTEXT_SINGLE;
else
de_ctx->sgh_mpm_context = ENGINE_SGH_MPM_FACTORY_CONTEXT_FULL;
/* someday when our engine turns intelligent we will actualy support this
* option internally */
//de_ctx->sgh_mpm_context = ENGINE_SGH_MPM_FACTORY_CONTEXT_AUTO;
} }
opt = NULL; opt = NULL;
switch (profile) { switch (profile) {
case ENGINE_PROFILE_LOW: case ENGINE_PROFILE_LOW:

Write Preview
Loading…
Cancel
Save