suricata
detect-isdataat.h
Go to the documentation of this file.
1 /* Copyright (C) 2007-2010 Open Information Security Foundation
2  *
3  * You can copy, redistribute or modify this Program under the terms of
4  * the GNU General Public License version 2 as published by the Free
5  * Software Foundation.
6  *
7  * This program is distributed in the hope that it will be useful,
8  * but WITHOUT ANY WARRANTY; without even the implied warranty of
9  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
10  * GNU General Public License for more details.
11  *
12  * You should have received a copy of the GNU General Public License
13  * version 2 along with this program; if not, write to the Free Software
14  * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA
15  * 02110-1301, USA.
16  */
17 
18 /**
19  * \file
20  *
21  * \author Pablo Rincon <pablo.rincon.crespo@gmail.com>
22  */
23 
24 #ifndef __DETECT_ISDATAAT_H__
25 #define __DETECT_ISDATAAT_H__
26 
27 #define ISDATAAT_RELATIVE 0x01
28 #define ISDATAAT_RAWBYTES 0x02
29 #define ISDATAAT_NEGATED 0x04
30 #define ISDATAAT_OFFSET_BE 0x08
31 
32 #define ISDATAAT_MIN 0
33 #define ISDATAAT_MAX 65535
34 
35 typedef struct DetectIsdataatData_ {
36  uint16_t dataat; /* data offset to match */
37  uint8_t flags; /* isdataat options*/
38 } DetectIsdataatData;
39 
40 /* prototypes */
41 void DetectIsdataatRegister (void);
42 
43 #endif /* __DETECT_ISDATAAT_H__ */
44 
DetectIsdataatData_
Definition: detect-isdataat.h:35
DetectIsdataatData_::flags
uint8_t flags
Definition: detect-isdataat.h:37
DetectIsdataatData
struct DetectIsdataatData_ DetectIsdataatData
DetectIsdataatRegister
void DetectIsdataatRegister(void)
Registration function for isdataat: keyword.
Definition: detect-isdataat.c:67
DetectIsdataatData_::dataat
uint16_t dataat
Definition: detect-isdataat.h:36