Project

General

Profile

Actions
Copy link

Task #6644

open
PA PA

tracking: detect: integer as first-class support

Task #6644: tracking: detect: integer as first-class support

Added by Philippe Antoine over 2 years ago. Updated 6 months ago.

Status:
In Progress
Priority:
Normal
Assignee:
Philippe Antoine
Target version:
TBD
Effort:
Difficulty:
Label:

Subtasks 11 (1 open10 closed)

Documentation #6628: userguide: document generic aspects of integer keywordsClosedPhilippe AntoineActions
Feature #6645: detect: integer parsed with hexadecimal notationClosedPhilippe AntoineActions
Feature #6646: detect: integer: support negated rangesClosedPhilippe AntoineActions
Feature #6647: detect: integers: support for enumerationsClosedPhilippe AntoineActions
Feature #6648: detect: integer: support bitmasksClosedPhilippe AntoineActions
Feature #6723: detect: review existing keywords for usage of enumerationsClosedPhilippe AntoineActions
Feature #6724: detect: review existing keywords for usage of bitflagsClosedPhilippe AntoineActions
Documentation #7190: detect/integers: document usage of unitsClosedPhilippe AntoineActions
Feature #7211: detect/integers: support a count argument for array of integersClosedPhilippe AntoineActions
Feature #7480: detect/integers: array of integers should support an optional second argument to specify the indexClosedPhilippe AntoineActions
Feature #7929: detect/integers: support optional second argument to specify the index for all keywordsIn ProgressPhilippe AntoineActions

Related issues 8 (2 open6 closed)

Related to Suricata - Feature #5446: rules: allow ranges in dns.opcode valueClosedPhilippe AntoineActions
Related to Suricata - Feature #5752: Proposed new DNP3 keywords and operatorsNewOISF DevActions
Related to Suricata - Bug #7865: detect/integers: u8 prefilter does not support all modesClosedPhilippe AntoineActions
Related to Suricata - Feature #7875: list-keywords should somehow show the integer keywordsClosedPhilippe AntoineActions
Related to Suricata - Optimization #7889: detect/integers: move keywords from C to rustClosedPhilippe AntoineActions
Related to Suricata - Feature #7894: output: log http2.window when neededAssignedOISF DevActions
Related to Suricata - Feature #8179: dcerpc.opnum: doesn't support operators >,<,!,=ClosedPhilippe AntoineActions
Blocked by Suricata - Feature #7513: detect/integers: add support for negated strings when enum is usedClosedAlice da Silva AkakiActions

PA Updated by Philippe Antoine over 2 years ago Actions
Copy link
 #1

  • Subtask #6628 added

PA Updated by Philippe Antoine over 2 years ago Actions
Copy link
 #2

  • Subtask #6645 added

PA Updated by Philippe Antoine over 2 years ago Actions
Copy link
 #3

  • Subtask #6646 added

PA Updated by Philippe Antoine over 2 years ago Actions
Copy link
 #4

  • Subtask #6647 added

PA Updated by Philippe Antoine over 2 years ago Actions
Copy link
 #5

  • Subtask #6648 added

PA Updated by Philippe Antoine over 2 years ago Actions
Copy link
 #6

Also when #6647 and #6648 are done, check for existing keywords to move their implementations to integers (like http2.frame_type)

PA Updated by Philippe Antoine over 2 years ago Actions
Copy link
 #7

  • Status changed from New to In Review
  • Target version changed from TBD to 8.0.0-beta1

PA Updated by Philippe Antoine about 2 years ago Actions
Copy link
 #8

  • Subtask #6723 added

PA Updated by Philippe Antoine about 2 years ago Actions
Copy link
 #9

  • Subtask #6724 added

PA Updated by Philippe Antoine about 2 years ago Actions
Copy link
 #10

  • Related to Feature #5446: rules: allow ranges in dns.opcode value added

PA Updated by Philippe Antoine about 2 years ago Actions
Copy link
 #11

  • Status changed from In Review to In Progress

PA Updated by Philippe Antoine almost 2 years ago Actions
Copy link
 #12

  • Tracker changed from Feature to Task
  • Target version changed from 8.0.0-beta1 to TBD

Most has been done in sub tickets, still some improvements to do as a tracking task

PA Updated by Philippe Antoine almost 2 years ago Actions
Copy link
 #13

  • Related to Feature #5752: Proposed new DNP3 keywords and operators added

VJ Updated by Victor Julien almost 2 years ago Actions
Copy link
 #14

  • Blocks Story #7124: rules: improve rule language added

PA Updated by Philippe Antoine over 1 year ago Actions
Copy link
 #15

  • Subtask #7190 added

PA Updated by Philippe Antoine over 1 year ago Actions
Copy link
 #16

  • Subtask #7211 added

PA Updated by Philippe Antoine over 1 year ago Actions
Copy link
 #17

  • Subtask #7480 added

PA Updated by Philippe Antoine over 1 year ago Actions
Copy link
 #18

  • Blocked by Feature #7513: detect/integers: add support for negated strings when enum is used added

PA Updated by Philippe Antoine about 1 year ago Actions
Copy link
 #19

  • Blocks deleted (Story #7124: rules: improve rule language)

PA Updated by Philippe Antoine 8 months ago Actions
Copy link
 #20

  • Related to Bug #7865: detect/integers: u8 prefilter does not support all modes added

PA Updated by Philippe Antoine 8 months ago Actions
Copy link
 #21

  • Related to Feature #7875: list-keywords should somehow show the integer keywords added

PA Updated by Philippe Antoine 8 months ago Actions
Copy link
 #22

PA Updated by Philippe Antoine 7 months ago Actions
Copy link
 #23

  • Subtask #7929 added

PA Updated by Philippe Antoine 7 months ago Actions
Copy link
 #24

  • Related to Feature #7894: output: log http2.window when needed added

VJ Updated by Victor Julien 4 months ago Actions
Copy link
 #25

  • Related to Feature #8179: dcerpc.opnum: doesn't support operators >,<,!,= added
Actions
Copy link

Also available in: PDF Atom