Pull request #4587: Data log filtering
Merge in SNORT/snort3 from ~OSHUMEIK/snort3:data_log_filtering to master
Squashed commit of the following:
commit
5d73e7676db2bb678860ba07607cb840ea6ab516
Author: Oleksii Shumeiko <oshumeik@cisco.com>
Date: Fri Jan 31 15:12:28 2025 +0200
extractor: rework parsing messages
commit
653b4570e28aff6a62fb71dc4d83bc11f881a7c3
Author: Oleksii Shumeiko <oshumeik@cisco.com>
Date: Fri Jan 31 12:07:38 2025 +0200
extractor: fix subscription to be global
As the inspector itself is global, it ought to get events from all policies.
commit
d60c29383e5c0841f09659dc226dc57e29fe56a8
Author: Oleksii Shumeiko <oshumeik@cisco.com>
Date: Tue Jan 28 14:51:23 2025 +0200
extractor: add default filter
commit
450ba51ae1f3833b7c8f80a38fcf633a768dd319
Author: Oleksii Shumeiko <oshumeik@cisco.com>
Date: Thu Jan 23 14:41:57 2025 +0200
extractor: export service types
Exported ServiceType value renamed to make it more clear for an external module.
commit
be29879348a0ed24cad06618fe6ec59d62c53bcf
Author: Oleksii Shumeiko <oshumeik@cisco.com>
Date: Mon Nov 18 15:42:46 2024 +0200
extractor: add logging constraints
Being a part of logging filtering Tenant ID is not cached.
In absence of native filters the extractor sets filtering unconditionally.
projects / thirdparty / snort3.git / commit
