]> git.ipfire.org Git - thirdparty/suricata.git/commit
projects / thirdparty / suricata.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 9369307) | patch
lua: use a function allow list instead of a deny list
authorJason Ish <jason.ish@oisf.net>
Thu, 23 May 2024 17:55:28 +0000 (11:55 -0600)
committerJason Ish <jason.ish@oisf.net>
Mon, 27 May 2024 22:44:54 +0000 (16:44 -0600)
commit86f9e43068311e64897517f709d4349f52a95608
treedfadc60fbd539c451985a1a076c3f5cb0a6eb8e6tree
parent936930778ccc03ff82cba7da6bd9f93a151c3c32commit | diff
lua: use a function allow list instead of a deny list

The Lua library surface area is small enough to manage an allow list,
which is generally better than a deny list, as we'll explicitly need
to opt-in to new functions provided by the Lua runtime.
src/detect-lua.c diff | blob | blame | history
src/util-lua-sandbox.c diff | blob | blame | history
src/util-lua-sandbox.h diff | blob | blame | history
Mirror of https://github.com/OISF/suricata.git