suricata

Commit Graph

Author	SHA1	Message	Date
Victor Julien	b31ffde6f4	output: remove error codes from output	3 years ago
Victor Julien	39f5c7f56a	error: use SC_EINVAL for invalid input	3 years ago
Victor Julien	0dd5921bc9	detect/prefilter: fix handling of prefilter as fast_pattern alias	5 years ago
Philippe Antoine	b7fd01c86e	detect: forbids unsupported prefilters	5 years ago
Victor Julien	6ab323d323	detect: hide RegisterTests behind ifdef UNITTESTS Update all callers to more aggressively use UNITTESTS guards as well.	5 years ago
Victor Julien	26bcc97515	detect/keywords: dynamic version part of doc URL	5 years ago
Shivani Bhardwaj	d801c3e588	detect: Make keyword description consistent Closes redmine ticket #3137.	6 years ago
Shivani Bhardwaj	b5b429c288	detect: Add missing keyword URLs and description Add missing keyword URLs and their description. Fix the ones that were incorrect. Partially closes redmine ticket #2974.	6 years ago
Travis Green	6f5eb487a1	doc: add missing and fix 404 for --list-keywords	7 years ago
Victor Julien	7fca17639d	detect/prefilter: speed up setup If the global detect.prefilter.default setting is not "auto", it is wasteful to run each prefilter setup routine. This patch tracks which of the engines have been explicitly enabled in the rules and only runs those.	7 years ago
Victor Julien	0b5d8a1d75	detect/prefilter: fix alias for fast_pattern If prefilter is used on a content keyword, it acts as a simple fast_pattern statement. This was broken because the SIG_FLAG_PREFILTER flag bypasses MPM for a sig. This commits fixes this by not setting the flag when it should act as fast_pattern.	7 years ago
Victor Julien	ab1200fbd7	compiler: more strict compiler warnings Set flags by default: -Wmissing-prototypes -Wmissing-declarations -Wstrict-prototypes -Wwrite-strings -Wcast-align -Wbad-function-cast -Wformat-security -Wno-format-nonliteral -Wmissing-format-attribute -funsigned-char Fix minor compiler warnings for these new flags on gcc and clang.	8 years ago
Victor Julien	779d40cedf	detect: remove hardcoded sm_list logic from setup Introduce utility functions to aid this.	9 years ago
Victor Julien	f370e88135	detect: move init only Signature members to init_data	9 years ago
Victor Julien	56239690d0	prefilter: implement prefilter keyword Introduce prefilter keyword to force a keyword to be used as prefilter. e.g. alert tcp any any -> any any (content:"A"; flags:R; prefilter; sid:1;) alert tcp any any -> any any (content:"A"; flags:R; sid:2;) alert tcp any any -> any any (content:"A"; dsize:1; prefilter; sid:3;) alert tcp any any -> any any (content:"A"; dsize:1; sid:4;) In sid 2 and 4 the content keyword is used in the MPM engine. In sid 1 and 3 the flags and dsize keywords will be used.	9 years ago

15 Commits (d18e52ed93e996bc0335d4a100b2ac7f12b3848d)