Go to the source code of this file.
Data Structures | |
| struct | DetectProto_ |
Macros | |
| #define | DETECT_PROTO_ANY BIT_U8(0) |
| #define | DETECT_PROTO_ONLY_PKT BIT_U8(1) |
| #define | DETECT_PROTO_ONLY_STREAM BIT_U8(2) |
| #define | DETECT_PROTO_IPV4 BIT_U8(3) |
| #define | DETECT_PROTO_IPV6 BIT_U8(4) |
Typedefs | |
| typedef struct DetectProto_ | DetectProto |
Functions | |
| int | DetectProtoParse (DetectProto *dp, const char *str) |
| Parses a protocol sent as a string. More... | |
| int | DetectProtoContainsProto (const DetectProto *, int) |
| see if a DetectProto contains a certain proto More... | |
| void | DetectProtoTests (void) |
| this function registers unit tests for DetectProto More... | |
Detailed Description
Definition in file detect-engine-proto.h.
Macro Definition Documentation
◆ DETECT_PROTO_ANY
| #define DETECT_PROTO_ANY BIT_U8(0) |
Indicate that given protocol is considered as IP
Definition at line 29 of file detect-engine-proto.h.
◆ DETECT_PROTO_IPV4
| #define DETECT_PROTO_IPV4 BIT_U8(3) |
IPv4 only
Definition at line 32 of file detect-engine-proto.h.
◆ DETECT_PROTO_IPV6
| #define DETECT_PROTO_IPV6 BIT_U8(4) |
IPv6 only
Definition at line 33 of file detect-engine-proto.h.
◆ DETECT_PROTO_ONLY_PKT
| #define DETECT_PROTO_ONLY_PKT BIT_U8(1) |
Indicate that we only care about packet payloads.
Definition at line 30 of file detect-engine-proto.h.
◆ DETECT_PROTO_ONLY_STREAM
| #define DETECT_PROTO_ONLY_STREAM BIT_U8(2) |
Indicate that we only care about stream payloads.
Definition at line 31 of file detect-engine-proto.h.
Typedef Documentation
◆ DetectProto
| typedef struct DetectProto_ DetectProto |
Function Documentation
◆ DetectProtoContainsProto()
| int DetectProtoContainsProto | ( | const DetectProto * | dp, |
| int | proto | ||
| ) |
see if a DetectProto contains a certain proto
- Parameters
-
dp detect proto to inspect proto protocol (such as IPPROTO_TCP) to look for
- Return values
-
0 protocol not in the set 1 protocol is in the set
Definition at line 115 of file detect-engine-proto.c.
References DETECT_PROTO_ANY, DetectProto_::flags, proto, and DetectProto_::proto.
◆ DetectProtoParse()
| int DetectProtoParse | ( | DetectProto * | dp, |
| const char * | str | ||
| ) |
Parses a protocol sent as a string.
- Parameters
-
dp Pointer to the DetectProto instance which will be updated with the incoming protocol information. str Pointer to the string containing the protocol name.
- Return values
-
>=0 If proto is detected, -1 otherwise.
Definition at line 56 of file detect-engine-proto.c.
References DETECT_PROTO_ANY, DETECT_PROTO_IPV4, DETECT_PROTO_IPV6, DETECT_PROTO_ONLY_PKT, DETECT_PROTO_ONLY_STREAM, DetectProto_::flags, IPPROTO_SCTP, DetectProto_::proto, SCLogDebug, and str.
◆ DetectProtoTests()
| void DetectProtoTests | ( | void | ) |
this function registers unit tests for DetectProto
Definition at line 374 of file detect-engine-proto.c.
References UtRegisterTest().
