]> git.ipfire.org Git - thirdparty/suricata.git/commit
projects / thirdparty / suricata.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: d32a39c) | patch
detect: add configurable limits for datasets
authorPhilippe Antoine <pantoine@oisf.net>
Tue, 18 Mar 2025 09:55:39 +0000 (10:55 +0100)
committerVictor Julien <vjulien@oisf.net>
Tue, 18 Mar 2025 10:49:05 +0000 (11:49 +0100)
commita7713db709b8a0be5fc5e5809ab58e9b14a16e85
tree5c460a7d77dfcfc92962519c820f811178fd74f0tree
parentd32a39ca4b53d7f659f4f0a2a5c162ef97dc4797commit | diff
detect: add configurable limits for datasets

Ticket: 7615

Avoids signatures setting extreme hash sizes, which would lead to very
high memory use.

Default to allowing:
- 65536 per dataset
16777216 total

To override these built-in defaults:

```yaml
datasets:
  # Limits for per rule dataset instances to avoid rules using too many
  # resources.
  limits:
    # Max value for per dataset `hashsize` setting
    #single-hashsize: 65536
    # Max combined hashsize values for all datasets.
    #total-hashsizes: 16777216
```
src/datasets.c diff | blob | blame | history
src/tests/fuzz/confyaml.c diff | blob | blame | history
src/util-thash.c diff | blob | blame | history
suricata.yaml.in diff | blob | blame | history
Mirror of https://github.com/OISF/suricata.git