Optimization #4749: app-layer: track changed txs for detect and logging - Suricata - Open Information Security Foundation

Actions

Copy link

Optimization #4749

closed

app-layer: track changed txs for detect and logging

Added by Victor Julien almost 4 years ago. Updated about 1 year ago.

Status:

Closed

Priority:

Normal

Assignee:

Target version:

Effort:

Difficulty:

Label:

Description

When a parser runs it "knows" which txs have been created and/or updated. So it should communicate this to detect/output somehow so that these subsystems don't need to iterate all of them.

Related issues 2 (0 open — 2 closed)

History
Notes
Property changes

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Suricata

Custom queries

Optimization #4749

app-layer: track changed txs for detect and logging

Updated by Philippe Antoine almost 2 years ago

Updated by Philippe Antoine about 1 year ago

Updated by Philippe Antoine about 1 year ago

	Related to Suricata - Security #6299: mqtt: pcap with anomalies takes too long to process because of app-layer-event detection	Closed	Philippe Antoine				Actions
	Related to Suricata - Optimization #7087: app-layer: track modified transactions	Closed	Philippe Antoine				Actions