suricata
detect-file-data.h
Go to the documentation of this file.
1
/* Copyright (C) 2007-2011 Open Information Security Foundation
2
*
3
* You can copy, redistribute or modify this Program under the terms of
4
* the GNU General Public License version 2 as published by the Free
5
* Software Foundation.
6
*
7
* This program is distributed in the hope that it will be useful,
8
* but WITHOUT ANY WARRANTY; without even the implied warranty of
9
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
10
* GNU General Public License for more details.
11
*
12
* You should have received a copy of the GNU General Public License
13
* version 2 along with this program; if not, write to the Free Software
14
* Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA
15
* 02110-1301, USA.
16
*/
17
18
/**
19
* \file
20
*
21
* \author Victor Julien <victor@inliniac.net>
22
*/
23
24
#ifndef SURICATA_DETECT_FILEDATA_H
25
#define SURICATA_DETECT_FILEDATA_H
26
27
/* prototypes */
28
void
DetectFiledataRegister
(
void
);
29
30
typedef
struct
PrefilterMpmFiledata
{
31
int
list_id
;
32
int
base_list_id
;
33
const
MpmCtx
*
mpm_ctx
;
34
const
DetectEngineTransforms
*
transforms
;
35
}
PrefilterMpmFiledata
;
36
37
uint8_t
DetectEngineInspectFiledata
(
DetectEngineCtx
*
de_ctx
,
DetectEngineThreadCtx
*det_ctx,
38
const
DetectEngineAppInspectionEngine
*engine,
const
Signature
*s,
Flow
*f, uint8_t
flags
,
39
void
*alstate,
void
*txv, uint64_t tx_id);
40
int
PrefilterMpmFiledataRegister
(
DetectEngineCtx
*
de_ctx
,
SigGroupHead
*sgh,
MpmCtx
*mpm_ctx,
41
const
DetectBufferMpmRegistry
*mpm_reg,
int
list_id);
42
43
#endif
/* SURICATA_DETECT_FILEDATA_H */
DetectEngineAppInspectionEngine_
Definition:
detect.h:427
SigGroupHead_
Container for matching data for a signature group.
Definition:
detect.h:1448
DetectEngineTransforms
Definition:
detect.h:409
Flow_
Flow data structure.
Definition:
flow.h:351
DetectEngineInspectFiledata
uint8_t DetectEngineInspectFiledata(DetectEngineCtx *de_ctx, DetectEngineThreadCtx *det_ctx, const DetectEngineAppInspectionEngine *engine, const Signature *s, Flow *f, uint8_t flags, void *alstate, void *txv, uint64_t tx_id)
Definition:
detect-file-data.c:389
DetectEngineCtx_
main detection engine ctx
Definition:
detect.h:839
DetectBufferMpmRegistry_
one time registration of keywords at start up
Definition:
detect.h:680
PrefilterMpmFiledata::transforms
const DetectEngineTransforms * transforms
Definition:
detect-file-data.h:34
de_ctx
DetectEngineCtx * de_ctx
Definition:
fuzz_siginit.c:17
DetectEngineThreadCtx_
Definition:
detect.h:1095
PrefilterMpmFiledata::mpm_ctx
const MpmCtx * mpm_ctx
Definition:
detect-file-data.h:33
PrefilterMpmFiledata::base_list_id
int base_list_id
Definition:
detect-file-data.h:32
flags
uint8_t flags
Definition:
decode-gre.h:0
DetectFiledataRegister
void DetectFiledataRegister(void)
Registration function for keyword: file_data.
Definition:
detect-file-data.c:71
PrefilterMpmFiledata
struct PrefilterMpmFiledata PrefilterMpmFiledata
PrefilterMpmFiledataRegister
int PrefilterMpmFiledataRegister(DetectEngineCtx *de_ctx, SigGroupHead *sgh, MpmCtx *mpm_ctx, const DetectBufferMpmRegistry *mpm_reg, int list_id)
Definition:
detect-file-data.c:478
Signature_
Signature container.
Definition:
detect.h:596
PrefilterMpmFiledata
Definition:
detect-file-data.h:30
MpmCtx_
Definition:
util-mpm.h:88
PrefilterMpmFiledata::list_id
int list_id
Definition:
detect-file-data.h:31
src
detect-file-data.h
Generated on Wed Apr 24 2024 23:30:33 for suricata by
1.8.18
1.8.18