Actions
Optimization #6792
opendetect/port: port grouping is quite slow in worst cases
Effort:
Difficulty:
Label:
Description
Given how the port grouping was done historically, in some worst case scenarios, it could take a very long time to group the signatures on the basis of ports and thus increasing the entire time taken by the engine to start by a huge factor.
Updated by Shivani Bhardwaj 2 months ago
- Status changed from Assigned to In Review
Closed by: https://github.com/OISF/suricata/pull/10567
Updated by Shivani Bhardwaj about 2 months ago
- Related to Bug #6414: detect-engine/port: recursive DetectPortInsert calls are expensive added
Updated by Shivani Bhardwaj about 2 months ago
- Status changed from In Review to Resolved
Updated by Shivani Bhardwaj about 2 months ago
- Label Needs backport to 7.0 added
Updated by OISF Ticketbot about 2 months ago
- Label deleted (
Needs backport to 7.0)
Updated by Shivani Bhardwaj about 2 months ago
- Related to Bug #6843: detect/port: port ranges are incorrect when a port is single as well as a part of range added
Updated by Shivani Bhardwaj about 1 month ago
- Related to Bug #6881: detect/port: port grouping does not happen correctly if gap between a single and range port added
Updated by Shivani Bhardwaj about 1 month ago
- Related to Bug #6896: detect/port: upper boundary ports are not correctly handled added
Updated by Victor Julien 17 days ago
- Related to Bug #2908: ip only rules cause suricata to take 17 minutes to start added
Actions