Eric Leblond
Eric Leblond
> > I'm quoting the documentation here. First sentence of https://docs.suricata.io/en/latest/rules/file-keywords.html#filestore: > > ``` > > Stores files to disk if the signature matched. > > ``` > > Matched...
> We have 3 scopes for filestore: > > * `file`, this is the default if the option is omitted. It means "this file". > * `tx`, all the files...
> You force-pushed, do you want to do a new version of this PR ? (is it ready ?) Error, I wanted to push a new version in a different...
> > I think the signature `alert http any any -> any any (msg:"ex"; http.uri; content:"/example"; filestore; sid:2; rev:1;)` is ok as it does not have mismatched scopes. The question...
There is a build issue on non Linux. Cooking a fix.
> I'm looking at how I can test this, and I'm struggling to make it work w/o getting flooded with warnings. > > E.g. trying a single file > ```...
> Hmm I would really like to figure out how else it can be made useful. If the clangd method can work, it should also be usable directly somehow. Discovered...
@victorjulien I've pushed some more commits on top of the MR. I've played a bit with the `--fix` option of clang-tidy and it produces some interesting patches. There is some...
I'm stopping playing with it. This is ready for review.
Do you have a compile_database.json ? (Can use bear of you don't have). Having it fixes most of the include issue.Le 12 janv. 2025 09:15, Victor Julien ***@***.***> a écrit ...