gfwleak/tango-maat
Archived
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
1,017 Commits 7 Branches 200 Tags
refactor-separate-scan-and-stat-compile
Commit Graph

1017 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
liuchang
9979fc00f5 add a parameter "table_name" for maat_state_get_hit_paths 2024-11-28 08:53:31 +00:00
liuchang
e8b826b754 rule sort support priority 2024-11-28 02:29:33 +00:00
liuchang
2ef61c51f9 1.maat_state_compile add para "exdata_array" 
2.maat_plugin_table_ex_schema_register support rule table
 2024-11-27 08:18:17 +00:00
liuchang
a18157cd41 rename attribute to field 2024-11-26 06:55:29 +00:00
liuchang
6990542158 add api maat_state_need_compile 2024-11-25 01:53:48 +00:00
liuchang
e50b1079f7 complete new api and test case 2024-11-22 07:53:29 +00:00
liuchang
89c8cad6c9 add incomplete code 2024-11-19 09:57:24 +00:00
liuchang
c7c0f5db30 add test cases for TSG-23138 2024-11-15 08:39:11 +00:00
liuchang
216ac5f77b add definition of api 2024-11-15 08:37:00 +00:00
root
8f44d0677c add the definition of new API 2024-11-13 09:34:57 +00:00
yangwei
2dfcf103c0 🐎 ci(add aarch64 jobs): aarch64 + el9 v5.0.3 2024-11-11 18:23:17 +08:00
yangwei
1dfc7d36e1 🔧 build(rulescan cxx flags): ignore narrowing for el9 2024-11-11 17:39:12 +08:00
yangwei
634a3a884c 🔧 build(fix el9 compile warning): upgrade hyperscan & rulescan 2024-11-11 17:27:40 +08:00
root
086db650c5 merge the duplicated code between HS and RS in test case, using TEST_P of gtest 2024-11-05 03:30:04 +00:00
root
bc52994922 fix coredump when rule is invalid v5.0.2 2024-10-29 07:51:04 +00:00
root
9d72c83e9f store history pattern ids at expr_matcher after hs/rs stream scan, instead of storing them during hs/rs scan 2024-10-28 10:44:22 +00:00
root
abd00a9aab add some detail info for log 2024-10-28 09:25:46 +00:00
root
816dabaf9e change library version according to tag version v5.0.1 2024-10-25 07:58:28 +00:00
root
12241e6580 fix memory leak in test case v5.0.0 2024-10-25 06:27:34 +00:00
root
b663077045 remove useless test case 2024-10-25 03:31:55 +00:00
root
da715f21ef rename o2o and object2object to object_group 2024-10-24 07:56:49 +00:00
root
1cd21a43c9 fix MaatCmd testcase 2024-10-24 07:12:57 +00:00
root
4fddb2b0e9 fix mem leak for ipport_plugin 2024-10-18 08:32:15 +00:00
root
041c32ccaa ipport plugin table support CIDR 2024-10-17 06:37:29 +00:00
root
cc67447c4e fix foreign key rewrite fail 2024-10-16 01:48:31 +00:00
root
78f733417c fix memory leak 2024-10-14 02:25:36 +00:00
root
586f1c11b2 1.support and_conditions and or_conditions in rule 
2.all test case success except MaatCmd.* in maat_framework_gtest
 2024-10-12 07:28:26 +00:00
root
02a2acf051 fix some test case 2024-10-11 06:37:06 +00:00
root
e180ce18e0 fix test case using rule from json file 2024-10-10 06:28:40 +00:00
root
35667246d3 use attribute_name instead of attribute_id to map condition_id 2024-10-08 11:10:03 +00:00
root
3bbbd53f39 fix maat_redis_tool, fix some mem leaks, use (uuid_t *) type as para of function to avoid some problems 2024-09-27 11:38:41 +00:00
root
3315428974 add temp code 2024-09-26 11:14:06 +00:00
root
be3b474f69 commit temp table_info 2024-09-25 07:48:05 +00:00
root
69d4938005 modify maat.h 2024-09-23 09:24:21 +00:00
root
f6900204f5 modify maat.h api 2024-09-23 08:52:47 +00:00
root
fc99675b40 change type of rule_id, object_id, item_id from (long long) to (uuid_t) 
just compile libmaatframe.so, without modifing about test case
 2024-09-20 11:20:21 +00:00
root
20de47c873 run first test case success 2024-09-14 11:29:12 +00:00
root
feb1576545 add basic code without test case, just compile success 2024-09-12 09:31:27 +00:00
root
537c75887d 1.rename rule_state to rule_compile_state 
2.recover regex_expr.json to make expr_matcher_gtest pass
 2024-08-30 08:28:58 +00:00
root
54a70f19d9 rename terminology "group" to "object" 2024-08-22 10:26:59 +00:00
root
72cf89723d rename terminology "not flag" to "negate option" 2024-08-22 08:28:33 +00:00
root
e538f5bb52 rename terminology "clause" to "condition" 2024-08-22 07:35:53 +00:00
root
f660e6b2ac rename terminology "virtual table(vtable)" to "attribute" 2024-08-22 06:42:37 +00:00
root
678ddd718a rename terminology "compile" to "rule" 2024-08-22 03:11:15 +00:00
root
a4ca92ea41 rename maat_rule.c to maat_core.c 
rename maat_rule.h to maat_core.h
 2024-08-21 08:39:28 +00:00
root
0640799f21 remove unescape process of district 2024-08-21 07:50:09 +00:00
root
b634070092 remove escape of \b 2024-08-21 02:20:04 +00:00
root
d16a5d3b92 modify expr table and fix corresponding test case 2024-08-19 11:04:17 +00:00
root
7dd54ad0ec modify fqdn_plugin table 2024-08-13 07:29:41 +00:00
root
71871622dd Merge remote-tracking branch 'origin/simplify_item_schema' into simplify_item_schema 2024-08-13 03:40:24 +00:00