Project

General

Profile

Actions
Copy link

Feature #2697

closed
VJ PA

prefilter support for stream_size

Feature #2697: prefilter support for stream_size

Added by Victor Julien over 7 years ago. Updated almost 4 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Philippe Antoine
Target version:
7.0.0-beta1
Effort:
Difficulty:
Label:

Description

Probably would need to merge multiple statements first, as ranges are expressed by using 2 instances of the keyword in a rule.

Related issues 2 (1 open1 closed)

Related to Suricata - Task #2685: SuriCon 2018 brainstormAssignedVictor JulienActions
Related to Suricata - Optimization #4112: Use generic rust DetectU32Data in every keyword needing thisClosedPhilippe AntoineActions

VJ Updated by Victor Julien over 7 years ago Actions
Copy link
 #1

  • Related to Task #2685: SuriCon 2018 brainstorm added

VJ Updated by Victor Julien almost 4 years ago Actions
Copy link
 #2

  • Related to Optimization #4112: Use generic rust DetectU32Data in every keyword needing this added

VJ Updated by Victor Julien almost 4 years ago Actions
Copy link
 #3

  • Assignee changed from Victor Julien to OISF Dev

Wonder if the matching logic should actually not use stream isn and such, but the offsets which we track in u64. But these may depend on stream depth, so needs some thought.

VJ Updated by Victor Julien almost 4 years ago Actions
Copy link
 #4

  • Status changed from New to Assigned
  • Assignee changed from OISF Dev to Philippe Antoine
  • Target version changed from TBD to 7.0.0-beta1

PA Updated by Philippe Antoine almost 4 years ago Actions
Copy link
 #5

  • Status changed from Assigned to In Review

VJ Updated by Victor Julien almost 4 years ago Actions
Copy link
 #6

  • Status changed from In Review to Closed
Actions
Copy link

Also available in: PDF Atom