https://redmine.openinfosecfoundation.org/https://redmine.openinfosecfoundation.org/favicon.ico?17011170022019-11-02T08:41:58ZOpen Information Security FoundationSuricata - Optimization #3304: generic way to register buffers for logging and detectionhttps://redmine.openinfosecfoundation.org/issues/3304?journal_id=144142019-11-02T08:41:58ZVictor Julienvictor@inliniac.net
<ul><li><strong>Subject</strong> changed from <i>Make sure output of protocol parsers and keywords are both supported</i> to <i>generic way to register buffers for logging and detection</i></li><li><strong>Description</strong> updated (<a title="View differences" href="/journals/14414/diff?detail_id=14898">diff</a>)</li></ul> Suricata - Optimization #3304: generic way to register buffers for logging and detectionhttps://redmine.openinfosecfoundation.org/issues/3304?journal_id=144662019-11-05T10:50:39ZVictor Julienvictor@inliniac.net
<ul><li><strong>Parent task</strong> deleted (<del><i>#3288</i></del>)</li></ul> Suricata - Optimization #3304: generic way to register buffers for logging and detectionhttps://redmine.openinfosecfoundation.org/issues/3304?journal_id=144682019-11-05T10:50:45ZVictor Julienvictor@inliniac.net
<ul><li><strong>Related to</strong> <i><a class="issue tracker-5 status-2 priority-4 priority-default child" href="/issues/3288">Task #3288</a>: Suricon 2019 brainstorm</i> added</li></ul> Suricata - Optimization #3304: generic way to register buffers for logging and detectionhttps://redmine.openinfosecfoundation.org/issues/3304?journal_id=182062020-11-06T15:37:44ZVictor Julienvictor@inliniac.net
<ul><li><strong>Related to</strong> <i><a class="issue tracker-5 status-8 priority-4 priority-default" href="/issues/4101">Task #4101</a>: tracking: plugins</i> added</li></ul> Suricata - Optimization #3304: generic way to register buffers for logging and detectionhttps://redmine.openinfosecfoundation.org/issues/3304?journal_id=262952022-12-29T14:37:57ZPhilippe Antoine
<ul></ul><p>As I see it, the main problem is that detection requires redmine ticket + suricata-verify test + documentation when logging does not</p> Suricata - Optimization #3304: generic way to register buffers for logging and detectionhttps://redmine.openinfosecfoundation.org/issues/3304?journal_id=307592023-11-09T10:54:39ZPhilippe Antoine
<ul></ul><p>Idea about this : using magic rust derive that would parse a struct and see which fiels are annotated for logging and/or detection and create functions to log them or get the buffer/integer for detection</p>