Project

General

Profile

Actions
Copy link

Feature #7711

open
VJ VJ

tracking: detect: add detection hooks to inspect/drop before stateful components

Feature #7711: tracking: detect: add detection hooks to inspect/drop before stateful components

Added by Victor Julien 11 months ago. Updated 10 months ago.

Status:
In Progress
Priority:
Normal
Assignee:
Victor Julien
Target version:
9.0.0-beta1
Effort:
Difficulty:
Label:

Description

Currently the packet pipeline is roughly:

capture -> decode -> flow update -> stream -> app-layer -> detect -> output.

This leads to packets only getting dropped by a rule policy after they have first updated the state of the flow, stream, app-layer of a flow.

Subtasks 2 (0 open2 closed)

Feature #7712: detect: add pre_stream rule hookClosedVictor JulienActions
Feature #7714: detect: add pre_flow rule hookClosedVictor JulienActions

VJ Updated by Victor Julien 11 months ago Actions
Copy link
 #1

  • Subtask #7712 added

VJ Updated by Victor Julien 11 months ago Actions
Copy link
 #2

  • Subtask #7714 added

VJ Updated by Victor Julien 11 months ago Actions
Copy link
 #3

  • Status changed from New to In Review
  • Target version changed from TBD to 8.0.0-rc1

PA Updated by Philippe Antoine 10 months ago Actions
Copy link
 #4

  • Status changed from In Review to Resolved

VJ Updated by Victor Julien 10 months ago Actions
Copy link
 #5

  • Status changed from Resolved to In Progress
  • Target version changed from 8.0.0-rc1 to 9.0.0-beta1

Will be more to do, but that will be for 9.

Actions
Copy link

Also available in: PDF Atom