#include "suricata-common.h"#include "conf.h"#include "decode.h"#include "detect.h"#include "detect-parse.h"#include "detect-engine.h"#include "detect-engine-buffer.h"#include "detect-engine-mpm.h"#include "detect-engine-build.h"#include "detect-byte.h"#include "flow.h"#include "flow-var.h"#include "flow-util.h"#include "util-byte.h"#include "util-unittest.h"#include "util-unittest-helper.h"#include "app-layer.h"#include "app-layer-parser.h"#include "app-layer-htp.h"#include "app-layer-ssl.h"#include "stream-tcp.h"#include "detect-lua.h"#include "detect-lua-extensions.h"#include "util-var-name.h"#include "util-lua.h"#include "util-lua-builtins.h"#include "util-lua-common.h"#include "util-lua-sandbox.h"#include "detect-engine-alert.h"
Go to the source code of this file.
Macros | |
| #define | FLAG_DATATYPE_PACKET BIT_U32(0) |
| #define | FLAG_DATATYPE_PAYLOAD BIT_U32(1) |
| #define | FLAG_DATATYPE_STREAM BIT_U32(2) |
| #define | FLAG_LIST_JA3 BIT_U32(3) |
| #define | FLAG_LIST_JA3S BIT_U32(4) |
| #define | FLAG_DATATYPE_BUFFER BIT_U32(22) |
| #define | FLAG_ERROR_LOGGED BIT_U32(23) |
| #define | FLAG_BLOCKED_FUNCTION_LOGGED BIT_U32(24) |
| #define | FLAG_INSTRUCTION_LIMIT_LOGGED BIT_U32(25) |
| #define | FLAG_MEMORY_LIMIT_LOGGED BIT_U32(26) |
| #define | DEFAULT_LUA_ALLOC_LIMIT 500000 |
| #define | DEFAULT_LUA_INSTRUCTION_LIMIT 500000 |
Functions | |
| void | DetectLuaRegister (void) |
| Registration function for keyword: lua. More... | |
| void | LuaDumpStack (lua_State *state, const char *prefix) |
| dump stack from lua state to screen More... | |
| int | DetectLuaMatchBuffer (DetectEngineThreadCtx *det_ctx, const Signature *s, const SigMatchData *smd, const uint8_t *buffer, uint32_t buffer_len, uint32_t offset, Flow *f) |
Detailed Description
Definition in file detect-lua.c.
Macro Definition Documentation
◆ DEFAULT_LUA_ALLOC_LIMIT
| #define DEFAULT_LUA_ALLOC_LIMIT 500000 |
Definition at line 124 of file detect-lua.c.
◆ DEFAULT_LUA_INSTRUCTION_LIMIT
| #define DEFAULT_LUA_INSTRUCTION_LIMIT 500000 |
Definition at line 125 of file detect-lua.c.
◆ FLAG_BLOCKED_FUNCTION_LOGGED
| #define FLAG_BLOCKED_FUNCTION_LOGGED BIT_U32(24) |
Definition at line 120 of file detect-lua.c.
◆ FLAG_DATATYPE_BUFFER
| #define FLAG_DATATYPE_BUFFER BIT_U32(22) |
Definition at line 118 of file detect-lua.c.
◆ FLAG_DATATYPE_PACKET
| #define FLAG_DATATYPE_PACKET BIT_U32(0) |
Definition at line 113 of file detect-lua.c.
◆ FLAG_DATATYPE_PAYLOAD
| #define FLAG_DATATYPE_PAYLOAD BIT_U32(1) |
Definition at line 114 of file detect-lua.c.
◆ FLAG_DATATYPE_STREAM
| #define FLAG_DATATYPE_STREAM BIT_U32(2) |
Definition at line 115 of file detect-lua.c.
◆ FLAG_ERROR_LOGGED
| #define FLAG_ERROR_LOGGED BIT_U32(23) |
Definition at line 119 of file detect-lua.c.
◆ FLAG_INSTRUCTION_LIMIT_LOGGED
| #define FLAG_INSTRUCTION_LIMIT_LOGGED BIT_U32(25) |
Definition at line 121 of file detect-lua.c.
◆ FLAG_LIST_JA3
| #define FLAG_LIST_JA3 BIT_U32(3) |
Definition at line 116 of file detect-lua.c.
◆ FLAG_LIST_JA3S
| #define FLAG_LIST_JA3S BIT_U32(4) |
Definition at line 117 of file detect-lua.c.
◆ FLAG_MEMORY_LIMIT_LOGGED
| #define FLAG_MEMORY_LIMIT_LOGGED BIT_U32(26) |
Definition at line 122 of file detect-lua.c.
Function Documentation
◆ DetectLuaMatchBuffer()
| int DetectLuaMatchBuffer | ( | DetectEngineThreadCtx * | det_ctx, |
| const Signature * | s, | ||
| const SigMatchData * | smd, | ||
| const uint8_t * | buffer, | ||
| uint32_t | buffer_len, | ||
| uint32_t | offset, | ||
| Flow * | f | ||
| ) |
Definition at line 240 of file detect-lua.c.
References DetectLuaData::buffername, SigMatchData_::ctx, DetectThreadCtxGetKeywordThreadCtx(), LuaExtensionsMatchSetup(), LuaPushStringBuffer(), DetectLuaThreadData::luastate, offset, SCEnter, SCReturnInt, and DetectLuaData::thread_ctx_id.
◆ DetectLuaRegister()
| void DetectLuaRegister | ( | void | ) |
Registration function for keyword: lua.
Definition at line 83 of file detect-lua.c.
References SigTableElmt_::desc, DETECT_LUA, SigTableElmt_::Match, SigTableElmt_::name, sigmatch_table, and SigTableElmt_::url.
Referenced by SigTableSetup().
◆ LuaDumpStack()
| void LuaDumpStack | ( | lua_State * | state, |
| const char * | prefix | ||
| ) |
