gfwleak/tango-maat
Archived
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
1,017 Commits 7 Branches 200 Tags
refactor-separate-scan-and-stat-compile
Commit Graph

197 Commits

Author SHA1 Message Date
liuchang
9979fc00f5 add a parameter "table_name" for maat_state_get_hit_paths 2024-11-28 08:53:31 +00:00
liuchang
e8b826b754 rule sort support priority 2024-11-28 02:29:33 +00:00
liuchang
2ef61c51f9 1.maat_state_compile add para "exdata_array" 
2.maat_plugin_table_ex_schema_register support rule table
 2024-11-27 08:18:17 +00:00
liuchang
a18157cd41 rename attribute to field 2024-11-26 06:55:29 +00:00
liuchang
6990542158 add api maat_state_need_compile 2024-11-25 01:53:48 +00:00
liuchang
e50b1079f7 complete new api and test case 2024-11-22 07:53:29 +00:00
liuchang
89c8cad6c9 add incomplete code 2024-11-19 09:57:24 +00:00
liuchang
c7c0f5db30 add test cases for TSG-23138 2024-11-15 08:39:11 +00:00
root
086db650c5 merge the duplicated code between HS and RS in test case, using TEST_P of gtest 2024-11-05 03:30:04 +00:00
root
9d72c83e9f store history pattern ids at expr_matcher after hs/rs stream scan, instead of storing them during hs/rs scan 2024-10-28 10:44:22 +00:00
root
12241e6580 fix memory leak in test case 2024-10-25 06:27:34 +00:00
root
b663077045 remove useless test case 2024-10-25 03:31:55 +00:00
root
da715f21ef rename o2o and object2object to object_group 2024-10-24 07:56:49 +00:00
root
1cd21a43c9 fix MaatCmd testcase 2024-10-24 07:12:57 +00:00
root
041c32ccaa ipport plugin table support CIDR 2024-10-17 06:37:29 +00:00
root
cc67447c4e fix foreign key rewrite fail 2024-10-16 01:48:31 +00:00
root
78f733417c fix memory leak 2024-10-14 02:25:36 +00:00
root
02a2acf051 fix some test case 2024-10-11 06:37:06 +00:00
root
e180ce18e0 fix test case using rule from json file 2024-10-10 06:28:40 +00:00
root
35667246d3 use attribute_name instead of attribute_id to map condition_id 2024-10-08 11:10:03 +00:00
root
3315428974 add temp code 2024-09-26 11:14:06 +00:00
root
fc99675b40 change type of rule_id, object_id, item_id from (long long) to (uuid_t) 
just compile libmaatframe.so, without modifing about test case
 2024-09-20 11:20:21 +00:00
root
20de47c873 run first test case success 2024-09-14 11:29:12 +00:00
root
feb1576545 add basic code without test case, just compile success 2024-09-12 09:31:27 +00:00
root
537c75887d 1.rename rule_state to rule_compile_state 
2.recover regex_expr.json to make expr_matcher_gtest pass
 2024-08-30 08:28:58 +00:00
root
54a70f19d9 rename terminology "group" to "object" 2024-08-22 10:26:59 +00:00
root
72cf89723d rename terminology "not flag" to "negate option" 2024-08-22 08:28:33 +00:00
root
e538f5bb52 rename terminology "clause" to "condition" 2024-08-22 07:35:53 +00:00
root
f660e6b2ac rename terminology "virtual table(vtable)" to "attribute" 2024-08-22 06:42:37 +00:00
root
678ddd718a rename terminology "compile" to "rule" 2024-08-22 03:11:15 +00:00
root
a4ca92ea41 rename maat_rule.c to maat_core.c 
rename maat_rule.h to maat_core.h
 2024-08-21 08:39:28 +00:00
root
b634070092 remove escape of \b 2024-08-21 02:20:04 +00:00
root
d16a5d3b92 modify expr table and fix corresponding test case 2024-08-19 11:04:17 +00:00
root
7dd54ad0ec modify fqdn_plugin table 2024-08-13 07:29:41 +00:00
root
a6c3e26577 modify interval table and fix some test case 2024-08-13 03:35:50 +00:00
root
a786103b94 modify ip_table and ip_plugin_table 2024-08-09 01:52:13 +00:00
Zheng Chao
2d77b9c88d When removing group from a clause, and the clause is empty, the clause id should be cleared. 2024-07-01 14:48:29 +08:00
liuchang
e5f45366c0 add test case to reproduce one policy change caluse id and scan both before and after change with the same maat_state 2024-07-01 06:32:06 +00:00
liuchang
56238be701 TSG-20076: 存储转义之前的字符串,避免增量更新时对已转义的规则再次转义 2024-04-23 10:15:33 +00:00
liuwentan
580d6faa0f [BUGFIX]Clean up hit groups promptly during scanning 2024-04-11 16:16:04 +08:00
liuwentan
1b97f76bf5 [BUGFIX]maat_scan_group support virtual table statistics 2024-04-09 09:57:11 +08:00
liuwentan
7e25f48fdd [PATCH]delete useless code 2024-04-03 16:47:30 +08:00
郑超
99f98abbcd Feature/scan ip port together support endpoint object 2024-03-27 11:19:39 +00:00
liuwentan
dd5d65ec80 [PATCH]update colm & ragel version 2024-03-20 10:08:39 +08:00
liuwentan
d2422fe7e1 [FEATURE]fieldstat3 -> fieldstat4 2024-03-15 18:17:36 +08:00
liuwentan
b1c629811d [FEATURE]ip_plugin support CIDR addr_format 2024-03-15 14:50:50 +08:00
liuwentan
7de0db5ebc [PATCH]add log handle for maat_wrap_redis_command 2024-02-22 17:51:23 +08:00
liuwentan
7e159477ac [PATCH]maat_scan_ip remove port & protocol parameter 2024-01-31 18:44:27 +08:00
liuwentan
3f95cb2d48 [PATCH]update maat_scan_group & maat_state_get_last_hit_groups API 2024-01-02 20:23:09 +08:00
liuwentan
6d5fea298a [PATCH]add expr_matcher hit pattern statistics 2023-12-27 12:04:15 +08:00