]> git.ipfire.org Git - thirdparty/suricata.git/commitdiff
projects / thirdparty / suricata.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: df529b1)
detect: make port grouping use config limits
authorVictor Julien <victor@inliniac.net>
Wed, 30 Sep 2015 10:41:42 +0000 (12:41 +0200)
committerVictor Julien <victor@inliniac.net>
Mon, 4 Apr 2016 16:14:56 +0000 (18:14 +0200)
src/detect.c patch | blob | blame | history

diff --git a/src/detect.c b/src/detect.c
index 1fdbe10812eb299918186314d90e00770b42ff3a..c7d1040d7c2a1805ce1ce5cee22c301fb62503d0 100644 (file)
--- a/src/detect.c
+++ b/src/detect.c
@@ -3046,7 +3046,9 @@ static DetectPort *RulesGroupByPorts(DetectEngineCtx *de_ctx, int ipproto, uint3
     SCLogDebug("rules analyzed");
 
     DetectPort *newlist = NULL;
-    CreateGroupedPortList(de_ctx, list, &newlist, 10, CreateGroupedPortListCmpCnt, max_idx);
+    uint16_t groupmax = (direction == SIG_FLAG_TOCLIENT) ? de_ctx->max_uniq_toclient_dp_groups :
+                                                           de_ctx->max_uniq_toserver_dp_groups;
+    CreateGroupedPortList(de_ctx, list, &newlist, groupmax, CreateGroupedPortListCmpCnt, max_idx);
     list = newlist;
 
     /* step 2: deduplicate the SGH's */
Mirror of https://github.com/OISF/suricata.git