clamav

Commit Graph

Author	SHA1	Message	Date
Tomasz Kojm	94f8946c5a	libclamav/matcher-ac.c: fix counting of subsig matches (bb#2001)	15 years ago
Tomasz Kojm	8ff82a6851	libclamav/matcher-ac.c: fix handling of VI/MACRO special offsets (bb#1957)	15 years ago
Török Edvin	e4a0f2c94f	fix compiler warnings (bb #1872 , bb #1934 , bb #1935 )	15 years ago
Török Edvin	fed7cf9711	shut up filter debug messages during DB load.	15 years ago
Török Edvin	5b74e89a35	enable prefiltering, and add to dconf. Also downgrade some warnings to debug messages.	16 years ago
Tomasz Kojm	8cf6cab95d	chk prefix_length	16 years ago
Török Edvin	380ae30458	fix prefiltering build.	16 years ago
Török Edvin	02eabc6d1e	Add the rest of the prefiltering glue code. This is still disabled for now (see the & 0).	16 years ago
Török Edvin	551e73b783	matcher-ac: move leaf checks inside IS_FINAL. All other were removed during ac_maketrans.	16 years ago
Török Edvin	ab89360583	Support for macros in logical subsignatures (bb #164 ). In the LDB there is (one or more) special subsignature ${min-max}MACROID$, which means: must match any signature from group MACROID (for current filetype), and the match must occur at a distance of min-max from the start(!) of the previous logical subsignature match. It also has the sideeffect of making the previous subsignature considered a match only if both that and the macro matches. The offset of first match for the previous logical subsig will be the offset where the {min-max} distance is satisfied. The macro logical subsignature will have a count of 0 (if it didn't match together with the previous subsig), or a count of 1 if it did. The matches can occur anywhere (even in different ac scan buffers), since I don't call cli_ac_scanbuff I just use the offset of first match (which we have for the bytecode anyway). There can be at most 32 macro groups, signatures are added to a macro group by using $MACROID$ as offset. For example pdb entries could be converted to PDB:3:$0:<hexsig of domainname> if we assign macro id 0 to PDB (and we can assign 31 more macro ids to whatever). Example: test.ldb: TestMacro;Target:0;0&1;616161;${3-4}12$ test.ndb: D:0:$12:6262 D:0:$12:6363 D:0:$11:6262 test.dat: aaaaxccdd test-nomatch.dat: aaaaxxxccdd	16 years ago
Tomasz Kojm	baf2e702e2	libclamav: provide information about lsig matches to bytecode (bb#1799)	16 years ago
Tomasz Kojm	2e4fd44f4f	libclamav: provide offset in cli_ac_result (bb#1799)	16 years ago
Tomasz Kojm	bb1e844cc2	fix some warnings	16 years ago
aCaB	1e7afd202b	fix debug printf	16 years ago
aCaB	145a188666	hs api upgrade	16 years ago
aCaB	d2ba6f98bb	matching complete	16 years ago
Tomasz Kojm	0354e96264	fix maxpatlen	16 years ago
aCaB	49cc1e3c35	s/struct F_MAP/fmap_t/	16 years ago
Tomasz Kojm	417b7509f6	libclamav/matcher-ac.c: fix matching of logical sigs (bb#1707)	16 years ago
Tomasz Kojm	04133ff998	libclamav: new signature blacklisting format (bb#1625) libclamav: allow arbitrary names for .ign/.ign2 files (bb#1683)	16 years ago
Tomasz Kojm	723a44d54d	libclamav/matcher-ac.c: add support for line marker (L) (matches CR, CRLF and boundaries)	16 years ago
Tomasz Kojm	8c3c77b49c	libclamav/matcher-ac.c: implement word delimiter (B) as requested in bb#1631	16 years ago
Tomasz Kojm	a6d4c62ee5	libclamav/matcher-ac.c: initial limited support for word boundary (bb#1631)	16 years ago
Tomasz Kojm	95ac9effe4	libclamav/matcher-ac.c: alternatives can now be negated: !(aa\|bb\|cc)	16 years ago
Tomasz Kojm	8cd9e4da7a	fix copy&paste error	16 years ago
Tomasz Kojm	57e5af13c2	optimize alt handling	16 years ago
aCaB	49ee0318fc	fix scanbuff callers	16 years ago
aCaB	048d76777f	scanners to fmap - hackish peheader to fmap lacks review + elf + macho	16 years ago
Tomasz Kojm	006f5fe642	libclamav: in bm_offmode only load sigs with non-floating absolute and relative offsets into BM matcher (load other ones into AC) and use per-file computed offset table to pick up best shifts (not enabled by default, bb#1300)	16 years ago
Tomasz Kojm	a4d5efb4fe	fix fd check, thx aCaB	16 years ago
Tomasz Kojm	6bb841e896	libclamav/matcher-ac.c: improve handling of signature offsets	16 years ago
Tomasz Kojm	aca9ea82df	libclamav: handle relative offsets with cli_ac_data; fix offset logic	16 years ago
Tomasz Kojm	33872a43de	libclamav: improve handling of signature offsets	16 years ago
Tomasz Kojm	8df99a92aa	0.95.2 git-svn: trunk@5074	16 years ago
Tomasz Kojm	64b9b982c7	allow offsets for all buffer types git-svn: trunk@5027	16 years ago
Tomasz Kojm	871177cdd9	return codes cleanup (bb#1159) git-svn: trunk@4749	17 years ago
Tomasz Kojm	47d40feb7a	libclamav: use LibTomMath by Tom St Denis instead of libgmp for multiple precision integer arithmetic (bb#1366) git-svn: trunk@4650	17 years ago
Tomasz Kojm	589d8d8e99	libclamav: add default.h git-svn: trunk@4578	17 years ago
Tomasz Kojm	41486c4253	libclamav/matcher-ac.c: fix parsing of lsig modifiers git-svn: trunk@4506	17 years ago
Tomasz Kojm	ab0d2f054d	libclamav, clamd, clamscan: use cl_engine_set() to control AC settings git-svn: trunk@4404	17 years ago
Tomasz Kojm	724b2bf770	Move cl_engine from clamav.h to others.h; move cl_limits to cl_engine; New API calls: int cl_init(unsigned int options); struct cl_engine cl_engine_new(unsigned int options); int cl_engine_compile(struct cl_engine engine); struct cl_engine cl_engine_dup(struct cl_engine engine); int cl_engine_free(struct cl_engine *engine); more to come.. WARNING: THE BRANCH IS CURRENTLY BROKEN AND SHOULD NOT BE USED git-svn-id: file:///var/lib/svn/clamav-devel/branches/newapi@4370 77e5149b-7576-45b1-b177-96237e5ba77b	17 years ago
Török Edvin	fc0493d2ca	reduce memory usage of AC nodes git-svn: trunk@4363	17 years ago
Török Edvin	6a21552ef2	have configure define NDEBUG unless we use --enable-debug, instead of having to #ifndef CL_DEBUG #define NDEBUG #endif in each .c file that uses assert. If you want assertions enabled you'll need to use --enable-debug to configure, as until now, no change there. git-svn: trunk@4343	17 years ago
aCaB	38e881e3c0	mpool cli_mp_hex2ui git-svn: trunk@4337	17 years ago
Tomasz Kojm	a305a2616a	libclamav/matcher-ac.c: micro-optimization (bb#843), thanks to Edwin git-svn: trunk@4334	17 years ago
aCaB	d6e1ef1611	mempool deuglification git-svn: trunk@4333	17 years ago
Török Edvin	ad0fd7287a	* libclamav/matcher-ac.c (cli_ac_addsig): need to use mpool allocated memory for ->str * libclamav/mpool.c (mp_malloc, cli_mp_hex2str, check_all): introduce hex2str wrapper * libclamav/mpool.h (mp_t, cli_mp_hex2str): introduce hex2str wrapper * libclamav/regex_list.c (add_hash): need to use mpool allocated memory for arg to bm_addpatt git-svn: trunk@4330	17 years ago
Török Edvin	563582a1ec	fix unit tests when mpool is activated git-svn: trunk@4323	17 years ago
aCaB	e21657dfc9	a faster and more compact allocator git-svn-id: file:///var/lib/svn/clamav-devel/branches/mpool@4286 77e5149b-7576-45b1-b177-96237e5ba77b	17 years ago
aCaB	0d9dbdef21	some leaks fixed git-svn-id: file:///var/lib/svn/clamav-devel/branches/mpool@4280 77e5149b-7576-45b1-b177-96237e5ba77b	17 years ago

1 2

100 Commits (8f5cead087045c4c938dd10613ef8b8b91601c80)