suricata

Commit Graph

Author	SHA1	Message	Date
Philippe Antoine	f6e1a20215	detect: dns.opcode as first-class integer Ticket: 5446 That means it can accept ranges	1 year ago
Philippe Antoine	d05f3ac791	detect: integer keywords now accept bitmasks Ticket: 6648 Like &0x40=0x40 to test for a specific bit set	1 year ago
Philippe Antoine	370ac05419	detect/integer: rust derive for enumerations Ticket: 6647 Allows keywords using integers to use strings in signature parsing based on a rust enumeration with a derive.	1 year ago
Philippe Antoine	06c5dd3133	detect: integer keywords now accept negated ranges Ticket: 6646	1 year ago
Philippe Antoine	3b65a2bb61	detect: integer keywords now support hexadecimal So that we can write enip.revision: 0x203 Ticket: 6645	1 year ago
Philippe Antoine	a8199bf2ca	rust: fix assertions_on_constants for assert!(false) using panic! instead with a string message	2 years ago
Jason Ish	5d5b0509a5	requires: add requires keyword Add a new rule keyword "requires" that allows a rule to require specific Suricata versions and/or Suricata features to be enabled. Example: requires: feature geoip, version >= 7.0.0, version < 8; requires: version >= 7.0.3 < 8 requires: version >= 7.0.3 < 8 \| >= 8.0.3 Feature: #5972 Co-authored-by: Philippe Antoine <pantoine@oisf.net>	2 years ago
Philippe Antoine	ae72ce77fa	detect: parse units for integers Ticket: #6423 Especially for filesize, instead of just a number, a signature can use a number and a unit such as kb, mb or Gb	2 years ago
Daniel Olatunji	5c0af0b203	rust/doc: add docstring to rust module files. Issue: #4584	2 years ago
Philippe Antoine	b235e85c68	rust: fix clippy warnings for version 1.72.0 Includes using the right prototype for C SRepCatGetByShortname	2 years ago
Jeff Lucovsky	690b65ae88	detect/byte_math: Permit var name for bytes value Issue: 6145 Modifications to permit a variable name to be used for the byte_math bytes value.	2 years ago
Philippe Antoine	668501c225	rust: remove unused	2 years ago
Jason Ish	d2fb958e28	rust: fix clippy lint for assert Fix done automatically by clippy --fix	2 years ago
Jason Ish	565da0d0af	rust: fix clippy lints for clippy::redundant_field_names	3 years ago
Jason Ish	c4034dafa1	rust: fix clippy lints for clippy::derive_partial_eq_without_eq	3 years ago
Jason Ish	f3e4bcfe23	rust: fix clippy lint for bool_assert_comparison Checking for is_empty is faster than checking for equality.	3 years ago
Jason Ish	e9597f3d0c	rust: fix clippy lint for redundant_closure Removes a closure where the function can be directly provided.	3 years ago
Jeff Lucovsky	ab4d0f7f4a	detect/stream_size: Rename detect.rs to stream_size.rs This commit renames detect.rs to stream_size.rs to reflect its content.	3 years ago
Jeff Lucovsky	2386f2614f	detect/iprep: Move iprep logic into a separate module	3 years ago
Jeff Lucovsky	c957882d1c	detect/uri: Move uri logic into a separate module	3 years ago
Jeff Lucovsky	484c34bc60	detect/uint: Move uint logic into a separate module This commit moves the uint logic into its own module.	3 years ago
Jeff Lucovsky	8bfe427a74	rust/detect: Create detect module for rule parsing This commit creates a module named "detect" for rule parsing logic. As part of this commit, detect.rs is moved from its toplevel position into the new module. Thus, use crate::detect::detect to refer to items within detect.rs (instead of create::detect). Ticket: 5077	3 years ago

22 Commits (f6e1a202159720adc70e90bc413d3d3ae40cff6e)