Project

General

Profile

Actions
Copy link

Feature #2697

closed

prefilter support for stream_size

Added by Victor Julien over 5 years ago. Updated almost 2 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Philippe Antoine
Target version:
7.0.0-beta1
Effort:
Difficulty:
Label:

Description

Probably would need to merge multiple statements first, as ranges are expressed by using 2 instances of the keyword in a rule.

Related issues 2 (1 open1 closed)

Related to Suricata - Task #2685: SuriCon 2018 brainstormAssignedVictor JulienActions
Related to Suricata - Optimization #4112: Use generic rust DetectU32Data in every keyword needing thisClosedPhilippe AntoineActions
Actions
Copy link
 #1

Updated by Victor Julien over 5 years ago

  • Related to Task #2685: SuriCon 2018 brainstorm added
Actions
Copy link
 #2

Updated by Victor Julien about 2 years ago

  • Related to Optimization #4112: Use generic rust DetectU32Data in every keyword needing this added
Actions
Copy link
 #3

Updated by Victor Julien about 2 years ago

  • Assignee changed from Victor Julien to OISF Dev

Wonder if the matching logic should actually not use stream isn and such, but the offsets which we track in u64. But these may depend on stream depth, so needs some thought.

Actions
Copy link
 #4

Updated by Victor Julien about 2 years ago

  • Status changed from New to Assigned
  • Assignee changed from OISF Dev to Philippe Antoine
  • Target version changed from TBD to 7.0.0-beta1
Actions
Copy link
 #5

Updated by Philippe Antoine almost 2 years ago

  • Status changed from Assigned to In Review
Actions
Copy link
 #6

Updated by Victor Julien almost 2 years ago

  • Status changed from In Review to Closed
Actions
Copy link

Also available in: Atom PDF