hyperscan for regex matching?

intel / cve-bin-tool

The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 200 common, vulnerable components (openssl, libpng, libxml2, expat and others), or if you know the components used, you can get a list of known vulnerabilities associated with an SBOM or a list of components and versions.

https://cve-bin-tool.readthedocs.io/en/latest/

GNU General Public License v3.0

1.18k stars 454 forks source link

hyperscan for regex matching? #2485

Open ffontaine opened 1 year ago

ffontaine commented 1 year ago

I just discovered the unblob project which is using hyperscan for regex matching. As hyperscan is maintained by Intel, I was wondering if some of you have an experience with it and if it could increase performance.

terriko commented 1 year ago

I haven't worked directly with the hyperscan folk, but I've worked with a few of the teams working on other SIMD stuff and their performance results tend to be pretty great, so it's worth looking into.

ffontaine commented 1 year ago

OK, I'll send a PR.