Project

General

Profile

Actions
Copy link

Feature #6723

closed
PA PA

Task #6644: tracking: detect: integer as first-class support

detect: review existing keywords for usage of enumerations

Feature #6723: detect: review existing keywords for usage of enumerations

Added by Philippe Antoine about 2 years ago. Updated 6 months ago.

Status:
Closed
Priority:
Normal
Assignee:
Philippe Antoine
Target version:
9.0.0-beta1
Effort:
Difficulty:
Label:

Description

Follow up on #6647

http2.error_code and alike

Related issues 6 (1 open5 closed)

Related to Suricata - Feature #6647: detect: integers: support for enumerationsClosedPhilippe AntoineActions
Related to Suricata - Feature #5446: rules: allow ranges in dns.opcode valueClosedPhilippe AntoineActions
Related to Suricata - Task #4683: detect: remove sigmatch_table in favor of a dynamic storage optionClosedPhilippe AntoineActions
Related to Suricata - Optimization #7529: detect/dns: move wrapper code from C to rustClosedPhilippe AntoineActions
Related to Suricata - Optimization #7889: detect/integers: move keywords from C to rustClosedPhilippe AntoineActions
Blocks Suricata - Story #7900: 9.0.0: rules: improve rule languageAssignedVictor JulienActions

PA Updated by Philippe Antoine about 2 years ago Actions
Copy link
 #1

  • Related to Feature #6647: detect: integers: support for enumerations added

PA Updated by Philippe Antoine about 2 years ago Actions
Copy link
 #2

Also review for generic integer usage like #5446

PA Updated by Philippe Antoine about 2 years ago Actions
Copy link
 #3

  • Related to Feature #5446: rules: allow ranges in dns.opcode value added

PA Updated by Philippe Antoine almost 2 years ago Actions
Copy link
 #4

quick note : snmp pdu is not so easy to get this, because we use the enum of an external crate

PA Updated by Philippe Antoine almost 2 years ago Actions
Copy link
 #5

  • Related to Task #4683: detect: remove sigmatch_table in favor of a dynamic storage option added

PA Updated by Philippe Antoine almost 2 years ago Actions
Copy link
 #6

MQTTTypeCode is good for this

We should handle negation of known strings in detect_parse_uint_enum

PA Updated by Philippe Antoine over 1 year ago Actions
Copy link
 #7

PA Updated by Philippe Antoine over 1 year ago Actions
Copy link
 #8

  • Status changed from New to In Progress

PA Updated by Philippe Antoine over 1 year ago Actions
Copy link
 #9

  • Target version changed from TBD to 8.0.0-beta1

This is done progressively for each protocol as pat of the rustification of keywords

PA Updated by Philippe Antoine about 1 year ago Actions
Copy link
 #10

VJ Updated by Victor Julien about 1 year ago Actions
Copy link
 #11

  • Target version changed from 8.0.0-beta1 to 9.0.0-beta1

PA Updated by Philippe Antoine 7 months ago Actions
Copy link
 #13

  • Status changed from In Progress to In Review

PA Updated by Philippe Antoine 7 months ago Actions
Copy link
 #14

  • Blocks Story #7900: 9.0.0: rules: improve rule language added

PA Updated by Philippe Antoine 6 months ago Actions
Copy link
 #15

  • Status changed from In Review to Closed

PA Updated by Philippe Antoine 6 months ago Actions
Copy link
 #16

Actions
Copy link

Also available in: PDF Atom