Go to the source code of this file.
Functions | |
| void | DetectBytemathRegister (void) |
| Registers the keyword handlers for the "byte_math" keyword. More... | |
| SigMatch * | DetectByteMathRetrieveSMVar (const char *, const Signature *) |
| Lookup the SigMatch for a named byte_math variable. More... | |
| int | DetectByteMathDoMatch (DetectEngineThreadCtx *, const SigMatchData *, const Signature *, const uint8_t *, uint16_t, uint8_t, uint64_t, uint64_t *, uint8_t) |
Detailed Description
Definition in file detect-bytemath.h.
Function Documentation
◆ DetectByteMathDoMatch()
| int DetectByteMathDoMatch | ( | DetectEngineThreadCtx * | , |
| const SigMatchData * | , | ||
| const Signature * | , | ||
| const uint8_t * | , | ||
| uint16_t | , | ||
| uint8_t | , | ||
| uint64_t | , | ||
| uint64_t * | , | ||
| uint8_t | |||
| ) |
Definition at line 85 of file detect-bytemath.c.
References SigMatchData_::ctx, and payload_len.
◆ DetectBytemathRegister()
| void DetectBytemathRegister | ( | void | ) |
Registers the keyword handlers for the "byte_math" keyword.
Definition at line 68 of file detect-bytemath.c.
References DETECT_BYTEMATH, SigTableElmt_::Match, SigTableElmt_::name, SigTableElmt_::Setup, and sigmatch_table.
Referenced by SigTableSetup().
◆ DetectByteMathRetrieveSMVar()
Lookup the SigMatch for a named byte_math variable.
- Parameters
-
arg The name of the byte_math variable to lookup. s Pointer the signature to look in.
- Return values
-
A pointer to the SigMatch if found, otherwise NULL.
Definition at line 447 of file detect-bytemath.c.
References SignatureInitData_::buffer_index, SignatureInitData_::buffers, SigMatch_::ctx, DETECT_BYTEMATH, SignatureInitDataBuffer_::head, Signature_::init_data, SigMatch_::next, SCLogDebug, and SigMatch_::type.
Referenced by DetectByteRetrieveSMVar().
