Go to the source code of this file.
Functions | |
| void | DetectBytemathRegister (void) |
| Registers the keyword handlers for the "byte_math" keyword. More... | |
| SigMatch * | DetectByteMathRetrieveSMVar (const char *, const Signature *) |
| Lookup the SigMatch for a named byte_math variable. More... | |
| int | DetectByteMathDoMatch (DetectEngineThreadCtx *, const SigMatchData *, const Signature *, const uint8_t *, uint16_t, uint64_t, uint64_t *, uint8_t) |
Detailed Description
Definition in file detect-bytemath.h.
Function Documentation
◆ DetectByteMathDoMatch()
| int DetectByteMathDoMatch | ( | DetectEngineThreadCtx * | , |
| const SigMatchData * | , | ||
| const Signature * | , | ||
| const uint8_t * | , | ||
| uint16_t | , | ||
| uint64_t | , | ||
| uint64_t * | , | ||
| uint8_t | |||
| ) |
Definition at line 79 of file detect-bytemath.c.
References DetectEngineThreadCtx_::buffer_offset, BUG_ON, BYTE_BIG_ENDIAN, BYTE_LITTLE_ENDIAN, ByteExtractStringUint64(), ByteExtractUint64(), SigMatchData_::ctx, len, payload_len, and SCLogDebug.
◆ DetectBytemathRegister()
| void DetectBytemathRegister | ( | void | ) |
Registers the keyword handlers for the "byte_math" keyword.
Definition at line 68 of file detect-bytemath.c.
References DETECT_BYTEMATH, SigTableElmt_::Match, SigTableElmt_::name, SigTableElmt_::Setup, and sigmatch_table.
Referenced by SigTableSetup().
◆ DetectByteMathRetrieveSMVar()
Lookup the SigMatch for a named byte_math variable.
- Parameters
-
arg The name of the byte_math variable to lookup. s Pointer the signature to look in.
- Return values
-
A pointer to the SigMatch if found, otherwise NULL.
Definition at line 404 of file detect-bytemath.c.
References Signature_::init_data, and SignatureInitData_::smlists_array_size.
Referenced by DetectByteRetrieveSMVar().
