root
|
3bbbd53f39
|
fix maat_redis_tool, fix some mem leaks, use (uuid_t *) type as para of function to avoid some problems
|
2024-09-27 11:38:41 +00:00 |
|
root
|
3315428974
|
add temp code
|
2024-09-26 11:14:06 +00:00 |
|
root
|
fc99675b40
|
change type of rule_id, object_id, item_id from (long long) to (uuid_t)
just compile libmaatframe.so, without modifing about test case
|
2024-09-20 11:20:21 +00:00 |
|
root
|
feb1576545
|
add basic code without test case, just compile success
|
2024-09-12 09:31:27 +00:00 |
|
root
|
537c75887d
|
1.rename rule_state to rule_compile_state
2.recover regex_expr.json to make expr_matcher_gtest pass
|
2024-08-30 08:28:58 +00:00 |
|
root
|
54a70f19d9
|
rename terminology "group" to "object"
|
2024-08-22 10:26:59 +00:00 |
|
root
|
f660e6b2ac
|
rename terminology "virtual table(vtable)" to "attribute"
|
2024-08-22 06:42:37 +00:00 |
|
root
|
678ddd718a
|
rename terminology "compile" to "rule"
|
2024-08-22 03:11:15 +00:00 |
|
root
|
a4ca92ea41
|
rename maat_rule.c to maat_core.c
rename maat_rule.h to maat_core.h
|
2024-08-21 08:39:28 +00:00 |
|
root
|
d16a5d3b92
|
modify expr table and fix corresponding test case
|
2024-08-19 11:04:17 +00:00 |
|
root
|
3b5009ce9e
|
TSG-21089: 不修改runtime的引擎配置,保证增量更新时的引擎切换判断正确
|
2024-05-08 03:43:55 +00:00 |
|
liuchang
|
d8d7f38efc
|
add dup key don't output fatal log
|
2024-04-24 08:16:57 +00:00 |
|
liuchang
|
56238be701
|
TSG-20076: 存储转义之前的字符串,避免增量更新时对已转义的规则再次转义
|
2024-04-23 10:15:33 +00:00 |
|
liuwentan
|
580d6faa0f
|
[BUGFIX]Clean up hit groups promptly during scanning
|
2024-04-11 16:16:04 +08:00 |
|
liuwentan
|
cbabcbd6b0
|
[PATCH]support virtual table statistics
|
2024-04-02 16:17:31 +08:00 |
|
liuwentan
|
6d5fea298a
|
[PATCH]add expr_matcher hit pattern statistics
|
2023-12-27 12:04:15 +08:00 |
|
liuwentan
|
7568d4e2b9
|
[PATCH]bugfix for switch expr engine
|
2023-11-24 15:36:27 +08:00 |
|
liuwentan
|
179c983b12
|
[FEATURE]support switch expr engine automatically
|
2023-11-24 11:05:52 +08:00 |
|
liuwentan
|
a0cd830eaa
|
[FEATURE]user-defined expr table scanning engine
|
2023-11-20 18:50:11 +08:00 |
|
刘文坛
|
91937cdbfb
|
[FEATURE]support maat_scan_not_logic & maat_scan_group
|
2023-11-10 08:26:48 +00:00 |
|
刘文坛
|
5e907a171f
|
[FEATURE]Compile table must register plugin table to get compile ex_data
|
2023-10-30 08:00:49 +00:00 |
|
liuwentan
|
732c709ac6
|
[PATCH]variable naming optimization
|
2023-10-27 18:40:08 +08:00 |
|
liuwentan
|
edab9520bd
|
[PATCH]patch for physical NOT clause
|
2023-10-24 21:19:33 +08:00 |
|
刘文坛
|
d24d6c1a5f
|
[FEATURE]support physical NOT clause => TSG-17286
|
2023-10-24 08:21:41 +00:00 |
|
刘文坛
|
613b5b3dcf
|
[FEATURE]Refactor NOT clause, NOTE:forward incompatibility!!!
|
2023-10-18 03:32:53 +00:00 |
|
刘文坛
|
e49427974f
|
[BUGFIX]fix illegal clause index
|
2023-10-11 06:53:03 +00:00 |
|
liuwentan
|
8be8f33150
|
[BUGFIX]fix keywords max length 1024
|
2023-08-11 17:06:22 +08:00 |
|
liuwentan
|
42f4480271
|
[FEATURE]expr_matcher support dual engine(hyperscan & rulescan) & benchmark
|
2023-08-10 16:10:50 +08:00 |
|
liuwentan
|
fb0cb5405d
|
rollback to v4.0.31
|
2023-08-09 19:22:09 +08:00 |
|
刘文坛
|
d29eef0423
|
[FEATURE]Compile table must register plugin table to get compile ex_data & maat_state_get_compile_table_ids API
|
2023-08-07 04:26:13 +00:00 |
|
刘文坛
|
af0461bb25
|
[FEATURE]support benchmark
|
2023-08-01 10:08:52 +00:00 |
|
刘文坛
|
bcbb796a7d
|
[FEATURE]expr_matcher support dual engine(hyperscan & rulescan)
|
2023-07-28 12:32:25 +00:00 |
|
liuwentan
|
f731f7d405
|
[BUGFIX]fix maat_stat stream error
|
2023-07-18 18:54:34 +08:00 |
|
liuwentan
|
e9a394e718
|
[BUGFIX]put compile ex_data into garbage queue
|
2023-06-21 18:36:20 +08:00 |
|
liuwentan
|
7cb24d96f8
|
[PATCH]handle matcher NULL pointer
|
2023-06-20 17:34:46 +08:00 |
|
刘文坛
|
8ad355d5d7
|
[OPTIMIZE]reduce adapter_hs_scan cpu usage
|
2023-06-20 07:00:49 +00:00 |
|
刘文坛
|
df36b8987b
|
[FEATURE]compile/plugin/xx_plugin table support gc
|
2023-06-19 09:44:25 +00:00 |
|
liuwentan
|
0b73681bd1
|
[OPTIMIZE]reduce config memory usage
|
2023-06-16 15:59:30 +08:00 |
|
刘文坛
|
5a18084eaa
|
[BUGFIX]fix hyperscan-5.4.2 literal empty string check bug
|
2023-06-14 09:10:16 +00:00 |
|
liuwentan
|
8e882a8f72
|
[PATCH]hyperscan version 5.4.0->5.4.2
|
2023-06-12 18:22:01 +08:00 |
|
liuwentan
|
48397f754e
|
[OPTIMIZE]delete update_hit_groups to reduce cpu consumption & reduce maat_state memory usage
|
2023-06-09 16:44:47 +08:00 |
|
刘文坛
|
64ac2dd7da
|
reduce unnecessary memory usage & add maat_stat info
|
2023-05-31 09:13:14 +00:00 |
|
liuwentan
|
51e29f0b95
|
[FEATURE]plugin table support ip_addr key type
|
2023-05-30 16:16:18 +08:00 |
|
刘文坛
|
464dc43cc4
|
fix group_exclude logic miss & add some corner case
|
2023-05-23 03:23:39 +00:00 |
|
liuwentan
|
7ce971902d
|
[patch]maat not handle regex string
|
2023-05-10 13:33:50 +08:00 |
|
liuwentan
|
e97adb8b97
|
[feature]verify regex expression
|
2023-05-09 17:45:43 +08:00 |
|
liuwentan
|
7ba644ce66
|
simplify table rcu hash
|
2023-05-07 23:09:33 +08:00 |
|
liuwentan
|
33015d5aac
|
support parse encrypted json config
|
2023-05-04 17:10:19 +08:00 |
|
liuwentan
|
eb540b570b
|
fix maat_stat scan_cpu_time null pointer
|
2023-04-24 19:18:12 +08:00 |
|
liuwentan
|
72066281dc
|
solve invalid read
|
2023-04-22 10:46:21 +08:00 |
|