Stowage/clamav
2
0
Fork 0
mirror of https://github.com/Cisco-Talos/clamav.git synced 2025-10-19 18:33:16 +00:00
Code Issues Projects Releases Packages Wiki Activity
8227 commits 35 branches 233 tags 197 MiB
Commit graph

287 commits

Author SHA1 Message Date
Tomasz Kojm
d510390f9a libclamav: fix bytecode whitelisting 2012-02-07 23:24:30 +01:00
Török Edvin
57dbcca236 silence cat load failures 2012-01-11 14:10:20 +02:00
Török Edvin
ccb3713875 don't fail loadmscat 2012-01-10 19:42:40 +02:00
Török Edvin
71d2c4ce79 print name of .cat that fails to load 2012-01-10 17:43:02 +02:00
Török Edvin
0c35b7cdf0 fix readdb 2012-01-09 16:54:58 +02:00
aCaB
0393aa560a cli_checkfp_pe 2012-01-08 03:19:29 +01:00
aCaB
f05aa1659e many fixes, add validity check 2012-01-04 22:32:26 +01:00
aCaB
7cb86faf7d few fixmes fixed 2012-01-03 15:46:20 +01:00
aCaB
004735cb0e minor perf fixes 2012-01-02 17:40:16 +01:00
aCaB
7595e1081f handle file cats - wip 2011-12-30 18:08:48 +01:00
aCaB
3a55c60d14 refactor 2011-12-30 15:01:50 +01:00
aCaB
5d49bd063f readd (broken) support for emb cats 2011-12-29 19:39:19 +01:00
aCaB
7bcfb2f3bf TL;DR: a bunch of stuff 2011-12-25 11:30:04 +01:00
aCaB
71da61a7ca root CAs, draft of rsa verification 2011-12-22 20:57:51 +01:00
aCaB
8997495d13 crtmgr_add 2011-12-21 22:52:46 +01:00
aCaB
b0357255dd treat sha1encrypt as sha1sign 2011-12-19 20:25:01 +01:00
aCaB
a8a99142f0 cats are slightly different 2011-12-16 17:39:06 +01:00
aCaB
5b48b665ff add spam on errors 2011-12-16 15:30:09 +01:00
Tomasz Kojm
cfacfb45dc libclamav/readdb.c: allow comments in all db files (bb#3930) 2011-12-01 15:09:02 +01:00
Tomasz Kojm
43f1a140bf fix compile warnings (bb#3882) 2011-11-22 19:27:21 +01:00
aCaB
f206d31afa bb#3509 2011-09-16 12:48:59 +02:00
Török Edvin
234d0f3424 fix debugmessage (bb #2930) 2011-06-15 18:12:03 +03:00
aCaB
88d09f480d make the sigload callback be aware of custom sigs 2011-06-14 19:04:02 +02:00
Tomasz Kojm
cdddd014ff sigtool: add support for building unsigned dbs (--unsigned) 
libclamav: handle unsigned db files (.cud)
 2011-05-10 21:29:49 +02:00
Tomasz Kojm
7b324eb346 libclamav: optimize handling of {n} wildcards (bb#1796) 2011-03-10 15:55:13 +01:00
Tomasz Kojm
62315ce69a clamd: add new config option BytecodeUnsigned (bb#2537); drop 
"None" from BytecodeSecurity
clamscan: add new switch --bytecode-unsigned and drop --bytecode-trust-all
 2011-02-17 19:17:35 +01:00
Tomasz Kojm
f820268196 freshclam: detect and fix corruptions of existing db files 2011-01-17 19:06:57 +01:00
aCaB
0b82971d7d port hashmatch to non-mpool 2011-01-14 23:25:27 +01:00
aCaB
72bbfaf51e add min/max fl in loadhash 
TODO:
- port to non-mpool
- sigtool and stuff
- enforce md5 only in md[bu]
- tune mpool?
 2011-01-14 23:02:59 +01:00
aCaB
3faa97834c new hash matching 2011-01-14 17:29:19 +01:00
aCaB
0fcc8112ff enable full db load, fix ram usage 2011-01-09 16:47:40 +01:00
aCaB
2296ab0f00 add hash matching 2011-01-07 19:08:49 +01:00
aCaB
bb2f6b0bda hash load complete with flush and naive quicksort 2011-01-07 15:19:44 +01:00
aCaB
c802edd50e add loadhash 2011-01-07 02:59:41 +01:00
Török Edvin
3ccff6f29c show infomsg for bytecode number -> bytecode name mapping in test mode. 
This allows you to find out which bytecode is causing the errors.
 2010-10-18 10:48:20 +03:00
aCaB
355bbc6a1f hashset from pool (bb#2185) 2010-10-14 19:44:59 +02:00
Tomasz Kojm
87acc26344 libclamav/readdb.c: fix handling of Engine attrib (bb#2297) 2010-10-08 14:24:10 +02:00
Tomasz Kojm
7770d314ff libclamav: allow logical sigs to be used as file type sigs (bb#2228) 2010-08-24 12:28:16 +02:00
Török Edvin
a5efaf68f6 Add more hints on how to load unsigned bytecode. 
"debug mode" is not very useful. Explicitly mention ./configure
--enable-unsigned-bytecode
 2010-08-17 21:35:33 +03:00
aCaB
9f497be696 Revert "Revert "add whitelisting via cb to phish sigs too"" 
This reverts commit 9eff97c080.
 2010-08-13 00:53:45 +02:00
aCaB
2d78fb7c83 Revert "Revert "clcb_sigload:"" 
This reverts commit 7f3ac44610.
 2010-08-13 00:53:35 +02:00
aCaB
9eff97c080 Revert "add whitelisting via cb to phish sigs too" 
This reverts commit febc0c9f77.
 2010-08-11 14:18:13 +02:00
aCaB
7f3ac44610 Revert "clcb_sigload:" 
This reverts commit aaeba8ea08.
 2010-08-11 14:18:02 +02:00
Török Edvin
540fc128a0 freshclam is using private symbol that changed proto (bb #2187). 
Change name to prevent crash with 0.96.1 freshclam and 0.96.2 libclamav.
You'll get a missing symbol error.
 2010-08-11 14:26:10 +03:00
aCaB
febc0c9f77 add whitelisting via cb to phish sigs too 2010-08-11 12:33:20 +02:00
aCaB
aaeba8ea08 clcb_sigload: 
- don't skip sdb
- skip cbc
- retrieve proper db name for md5 sigs
 2010-08-11 12:07:52 +02:00
Török Edvin
88d54dcb72 Fix distcheck warnings. 2010-07-29 18:22:57 +03:00
Török Edvin
d5ffa2acff Introduce BC_STARTUP bytecode (bb #2101, #2078). 
This bytecode will be run in interpreter mode on startup:
it can disable the JIT, or disable all further bytecodes.
There will be a builtin copy of it that is loaded if
no BC_STARTUP bytecodes were loaded (like filetypes_int.h and daily.ftm).
Only one BC_STARTUP bytecode is accepted, so as soon as bytecode.cvd will
contain one, it won't be overridable!

This bytecode will replace all the JIT checks (CPU, selinux, pax) etc.,
and allows to disable the JIT on just specific OS/arch/compiler/etc.
combinations. There are too many combinations to have a dconf flag for each.

Also fix the bytecode dconf so that the individual JIT_* flags actually work
(previously we could disable the entire JIT, or none at all).

Also introduce preliminary support for bytecode test mode (we already have
auto, jit and interpreter mode, introducing another mode here is easiest).
The test mode doesn't actually compare the outputs yet, but it does fail if
the JIT is disabled / falls back to interpreter.
 2010-07-29 13:48:18 +03:00
Török Edvin
927d054838 Add engine param to bytecode, and remove dconf from _init. 2010-07-29 13:48:18 +03:00
Tomasz Kojm
44712fcbe7 libclamav: reduce memory usage for MD5 sigs (bb#2057) 2010-06-24 20:04:42 +02:00