suricata

Author	SHA1	Message	Date
Jeff Lucovsky	1eeb96696b	general: Cleanup bool usage	4 years ago
Philippe Antoine	c8dbe24fb6	proto: introduce signature protocol, as extension to flow protocol AppProtoEquals function allows to check if a flow protocol matches a signature protocol	5 years ago
Philippe Antoine	0355b70f5a	detect: define generic PrefilterIsPrefilterableById	5 years ago
Philippe Antoine	bb7abbd6ec	detect: extend PrefilterPacketHeaderValue to 16 bytes	5 years ago
Jeff Lucovsky	be4c6b85de	general: Convert _Bool to bool This commit addresses task 3167 and changes usages of '_Bool` to `bool`. The latter is included from `suricata-common.h`	6 years ago
Victor Julien	91296d1eec	detect/prefilter: add de_ctx to registration	8 years ago
Victor Julien	e2eb9f8ede	prefilter: add 'extra match' logic to packet engines Many of the packet engines are very generic. Rules are generally more limited. A rule like 'alert tcp any any -> any 888 (flags:S; sid:1;)' would still be inspected against every SYN packet in most cases (it depends a bit on rule grouping though). This extra match logic adds an additional check to these packet engines. It can add a check based on alproto, source port and dest port. It uses only one of these 3. Priority order is src port > alproto > dst port. For the ports only 'single' ports are used at this time.	9 years ago
Victor Julien	ea26ee906f	prefilter: intro common engine for u8 matches	9 years ago
Victor Julien	99b9896bd7	prefilter: common funcs for packet header prefilters	9 years ago