suricata
detect-uricontent.c File Reference
#include "suricata-common.h"
#include "decode.h"
#include "detect.h"
#include "detect-content.h"
#include "detect-http-uri.h"
#include "detect-uricontent.h"
#include "detect-engine-mpm.h"
#include "detect-parse.h"
#include "detect-engine.h"
#include "detect-engine-state.h"
#include "flow.h"
#include "detect-flow.h"
#include "flow-var.h"
#include "flow-util.h"
#include "threads.h"
#include "stream-tcp.h"
#include "stream.h"
#include "app-layer.h"
#include "app-layer-parser.h"
#include "app-layer-protos.h"
#include "app-layer-htp.h"
#include "util-mpm.h"
#include "util-print.h"
#include "util-debug.h"
#include "util-unittest.h"
#include "util-unittest-helper.h"
#include "util-spm.h"
#include "conf.h"
#include "detect-isdataat.h"
#include "stream-tcp-reassemble.h"
Include dependency graph for detect-uricontent.c:

Go to the source code of this file.

Functions

void DetectUricontentRegister (void)
 Registration function for uricontent: keyword. More...
 

Detailed Description

Author
Victor Julien victo.nosp@m.r@in.nosp@m.linia.nosp@m.c.ne.nosp@m.t
Gurvinder Singh gurvi.nosp@m.nder.nosp@m.singh.nosp@m.dahi.nosp@m.ya@gm.nosp@m.ail..nosp@m.com

Simple uricontent match part of the detection engine.

Definition in file detect-uricontent.c.

Function Documentation

void DetectUricontentRegister ( void  )

Registration function for uricontent: keyword.

Definition at line 68 of file detect-uricontent.c.

References Flow_::alproto, ALPROTO_HTTP, Flow_::alstate, SigTableElmt_::alternative, AppLayerParserGetTx(), AppLayerParserParse(), AppLayerParserThreadCtxAlloc(), AppLayerParserThreadCtxFree(), BUG_ON, ConfGet(), DetectContentData_::content, DetectContentData_::content_len, SigMatch_::ctx, DE_QUIET, DetectContentData_::depth, DETECT_CONTENT, DETECT_CONTENT_NEGATED, DETECT_CONTENT_RELATIVE_NEXT, DETECT_HTTP_URI, DETECT_ISDATAAT, DETECT_SM_LIST_MATCH, DETECT_SM_LIST_PMATCH, DETECT_URICONTENT, DetectBufferTypeRegister(), DetectContentPrint(), DetectContentSetup(), DetectEngineAppendSig(), DetectEngineCtxFree(), DetectEngineCtxInit(), DetectEngineThreadCtxDeinit(), DetectEngineThreadCtxInit(), DetectHttpUriSetup(), DetectContentData_::distance, FAIL_IF, FAIL_IF_NOT, FAIL_IF_NULL, DetectIsdataatData_::flags, DetectContentData_::flags, Flow_::flags, Packet_::flags, DetectEngineCtx_::flags, SigTableElmt_::flags, Packet_::flow, FLOW_DESTROY, FLOW_INITIALIZE, FLOW_IPV4, FLOW_PKT_ESTABLISHED, FLOW_PKT_TOSERVER, Packet_::flowflags, FLOWLOCK_UNLOCK, FLOWLOCK_WRLOCK, SigTableElmt_::Free, DetectContentData_::id, Signature_::init_data, ISDATAAT_NEGATED, ISDATAAT_RAWBYTES, ISDATAAT_RELATIVE, SigTableElmt_::Match, SigTableElmt_::name, Signature_::next, DetectContentData_::offset, PacketAlertCheck(), PASS, PKT_HAS_FLOW, PKT_STREAM_EST, Flow_::proto, Flow_::protoctx, SigTableElmt_::RegisterTests, SC_ERR_INVALID_SIGNATURE, SC_ERR_INVALID_YAML_CONF_ENTRY, SCEnter, SCFree, SCLogDebug, SCLogError, SCMalloc, SCReturn, SCReturnInt, SigTableElmt_::Setup, DetectEngineCtx_::sig_list, SigCleanSignatures(), SigGroupBuild(), SigGroupCleanup(), SigInit(), SIGMATCH_HANDLE_NEGATION, SIGMATCH_QUOTES_MANDATORY, sigmatch_table, SigMatchSignatures(), SignatureInitData_::smlists_tail, DetectContentData_::spm_ctx, SpmDestroyCtx(), STREAM_EOF, STREAM_START, STREAM_TOSERVER, StreamTcpFreeConfig(), StreamTcpInitConfig(), Packet_::tcph, TRUE, SigMatch_::type, unlikely, UTHAddSessionToFlow(), UTHAddStreamToFlow(), UTHBuildFlow(), UTHBuildPacket(), UTHFreeFlow(), UTHFreePackets(), UTHRemoveSessionFromFlow(), UtRegisterTest(), and DetectContentData_::within.

Referenced by SigTableSetup().

Here is the call graph for this function:

Here is the caller graph for this function: