"dump_configuration" and "load_configuration" error when filter rules more than 256.

Question

"dump_configuration" and "load_configuration" error when filter rules more than 256.

typeryougishiki opened this issue 2 years ago · 1 comments

I try to dump a config with 283 filter rules. It raise exception:

FormatFieldError
Error in path (building) -> None -> data -> None -> rules_count
struct '<B' error during building, given value 283
struct.error: ubyte format requires 0 <= number <= 255

Then ,I dump a config with 253 filter rules to a file, import config file in procmon, add 10 filter rules , export config to new file ,and try to load config from the new config file. It raise exception:

ConstError
Error in path (parsing) -> None -> record_header_size
parsing expected 16 but parsed 0

System environment: Windows 10, python 3.7.9, procmon-parser 0.3.12

Answer 1 · 2023-04-06T10:27:43.000Z

Thanks for submitting the issue, should be fixed in the new 0.3.13 version