232 commits

Author	SHA1	Message	Date
Micah Snyder	169af0fc67	Revert "eliminating warnings. mostly correcting variable types. also correcting struct initialization in a couple instances (var = {0} does not zero the memory on all platforms). Also some minor formatting corrections in areas I was already working. eliminated some unused variables." ... This reverts commit 84a7f40288.	2017-09-20 12:37:07 -04:00
Micah Snyder	8efbf4a0cb	eliminating compile warnings in windows 10, vs2015, x86 and x64.	2017-08-31 16:38:41 -04:00
Micah Snyder	84a7f40288	eliminating warnings. mostly correcting variable types. also correcting struct initialization in a couple instances (var = {0} does not zero the memory on all platforms). Also some minor formatting corrections in areas I was already working. eliminated some unused variables.	2017-08-15 14:00:07 -04:00
Micah Snyder	14e2247bd2	updating the copyright for a number of tiles.	2017-08-09 14:28:47 -04:00
Micah Snyder	7b1f1aaf9a	fixed minor warnings regarding type conversions.	2017-08-08 17:38:17 -04:00
Steven Morgan	61530d4c85	bb11677 - release mpool memory with mpool_free(), not free().	2016-10-28 16:14:31 -04:00
Kevin Lin	0f23630372	matcher-ac: fix error case handling	2016-07-13 15:08:14 -04:00
Kevin Lin	f37565c3be	bb#8239 - added offset check to prevent integer wrap	2016-06-14 17:16:01 -04:00
Mickey Sola	46a35abe56	mass update of copyright headers	2015-09-17 13:41:26 -04:00
Kevin Lin	9ae2ec7063	ac-alt: check last altstr for fixed property in expr analysis	2015-09-01 16:14:05 -04:00
Kevin Lin	dc716ccb1f	cid 12176 - add missing break in ac_icmp	2015-08-19 11:14:51 -04:00
Kevin Lin	817636eb77	cid 12207 - fix error state for allocating altstr container	2015-08-19 11:14:49 -04:00
Kevin Lin	47bccd1b58	matcher-ac: handle case of empty but defined prefix	2015-07-07 16:10:45 -04:00
Kevin Lin	a2345bb5a5	matcher-ac: restructed ac verification	2015-07-07 14:02:27 -04:00
Kevin Lin	600c04f0b8	matcher-ac: fixed prefix verification for fixed multi-byte alts	2015-07-02 15:37:19 -04:00
Kevin Lin	6953341f8e	matcher-ac: added calc and storage for min/max lengths	2015-07-02 15:11:41 -04:00
Kevin Lin	f210254408	matcher-ac: converted length fields to arrays	2015-07-02 14:41:37 -04:00
Kevin Lin	b7d0b832f5	ac_special: tracks both the min and max lengths	2015-07-01 16:53:07 -04:00
Steven Morgan	7665e02d5b	Add support for YARA private rules and referencing other rules in a YARA condition.	2015-06-19 16:33:59 -04:00
Kevin Lin	d2e77863aa	sigopts: fixed incorrect checks for AC_WORD_MARKER_RIGHT	2015-06-08 16:20:36 -04:00
Kevin Lin	bb50eef345	altstr: fixed optimization error with fixed len alternates ... altstr: consistent conditional applied to byte alternates	2015-05-22 16:31:24 -04:00
Kevin Lin	28a5644795	ac_fincmatch_special: fixed issue regarding boundaries and prefix checking	2015-05-22 16:18:36 -04:00
Kevin Lin	4ffcf308bc	alternative code clean-up (cli_altnmsg)	2015-05-22 10:51:48 -04:00
Kevin Lin	590d402320	altstr: vstr duplicate trimming and uniqueness optimization	2015-05-21 18:46:34 -04:00
Kevin Lin	cdd018d5b8	altstr: optimized fixed length alternate runtime	2015-05-21 15:04:44 -04:00
Kevin Lin	925fb4e145	fixed issue in fixed len alternates negation	2015-05-20 15:38:04 -04:00
Kevin Lin	10225c7162	fixed memory issue in fixed length string alternates	2015-05-20 14:57:55 -04:00
Kevin Lin	d00f762fbd	ac_special_altstr: sigopt support	2015-05-19 12:04:59 -04:00
Kevin Lin	dda6b05765	matcher-ac: wildcard support for variable alternates (needs optimization)	2015-05-18 09:59:04 -04:00
Kevin Lin	68369b0fbc	matcher-ac: minor change to bp movement for specials	2015-05-14 14:44:06 -04:00
Kevin Lin	ed5f9fa577	ac: verifier alternative to handling nocase	2015-05-14 12:47:54 -04:00
Kevin Lin	9290ddf294	matcher-ac.c: whitespace consistency [tabs->spaces]	2015-05-14 12:23:56 -04:00
Kevin Lin	59506ff519	matcher-ac: expansion of nested alternates within alternate expr ... matcher-ac: three types of alternates: byte, fixed, and generic (variable)	2015-05-13 17:48:22 -04:00
Kevin Lin	2b51265826	matcher-ac: basic framework+debug for processing nested alternates	2015-05-11 12:20:48 -04:00
Kevin Lin	659a807742	ac_findmatch branching variant for alternating strings	2015-05-06 13:37:04 -04:00
Steven Morgan	b7999b89c9	YARA: capture offsets in matcher and use for processing YARA condition 'at' clauses.	2015-03-30 17:12:01 -04:00
Kevin Lin	f22d89ee6b	added wide support for word marker char class ... reason: differs from what is expected in yara TODO: handle this case for all character classes/cases	2015-02-26 12:34:29 -05:00
Kevin Lin	f3db2bbdc7	patterns w/o boundaries != patterns w/ boundaries ... reason: fp/fn for patterns that differed in boundaries	2015-02-25 17:38:58 -05:00
Kevin Lin	dc70379a09	converted sigopts from char string to uint8_t	2015-02-20 18:13:28 -05:00
Kevin Lin	6b725bb7c3	added '(W)' special character to match fullword (non-alnum)	2015-02-20 15:40:55 -05:00
Kevin Lin	a1924d1407	added nocase support for anchored hexsigs	2015-02-11 10:20:07 -08:00
Kevin Lin	82cc35c017	allow anchored hexsigs to use single numbers for whitespace	2015-02-11 09:02:27 -08:00
Kevin Lin	3e265c461c	added direct memory freeing of cli_ac_list ... cli_ac_pattlist renamed to cli_ac_list	2015-02-10 09:23:51 -08:00
Kevin Lin	31ab943ac1	fix to yara integration with nocase patterns	2015-02-10 07:41:08 -08:00
Kevin Lin	51ca644c6b	implemented second nocase AC matcher using full enumerations	2015-02-09 19:28:39 -08:00
Kevin Lin	23d7c6e6f4	removed nocase changes to ac tree operation	2015-02-09 14:22:45 -08:00
Kevin Lin	7fc5eab81a	finished support for AC trie nocase variant ... added check to prevent adding nocase signatures to case-sensitive AC tries	2015-02-06 11:13:20 -08:00
Kevin Lin	a02acd50b6	[WIP] added nocase support to clamav ac algorithm	2015-02-06 07:46:21 -08:00
Steven Morgan	55b8bf0c7b	Resolve merge conflicts matcher-ac.c clamconf.c readdb.c	2015-02-03 19:37:12 -05:00
Shawn Webb	1f271616be	Switch the engine to using cli_strlcat instead of strcat	2014-12-18 12:51:24 -05:00