Project

General

Profile

Actions
Copy link

Feature #6648

closed

Task #6644: tracking: detect: integer as first-class support

detect: integer: support bitmasks

Added by Philippe Antoine almost 2 years ago. Updated over 1 year ago.

Status:
Closed
Priority:
Normal
Assignee:
Philippe Antoine
Target version:
8.0.0-beta1
Effort:
Difficulty:
Label:

Description

Bitflags/Bitstrings are just an integer where numerical comparison does not make sense

But we should add an operator & with two values : a mask, and a value to compare.
This would allow to check for a set of flags and their values

Related issues 1 (0 open1 closed)

Related to Suricata - Feature #6724: detect: review existing keywords for usage of bitflagsClosedPhilippe AntoineActions
Actions
Copy link

Also available in: Atom PDF