suricata
Data Structures | Macros | Typedefs | Functions
output-eve-stream.c File Reference
#include "suricata-common.h"
#include "packet.h"
#include "detect.h"
#include "flow.h"
#include "conf.h"
#include "threads.h"
#include "tm-threads.h"
#include "threadvars.h"
#include "util-debug.h"
#include "decode-ipv4.h"
#include "detect-parse.h"
#include "detect-engine.h"
#include "detect-engine-mpm.h"
#include "detect-reference.h"
#include "output.h"
#include "output-json.h"
#include "output-json-flow.h"
#include "output-eve-stream.h"
#include "stream-tcp.h"
#include "util-unittest.h"
#include "util-unittest-helper.h"
#include "util-classification-config.h"
#include "util-privs.h"
#include "util-print.h"
#include "util-proto-name.h"
#include "util-logopenfile.h"
#include "util-time.h"
#include "util-buffer.h"
#include "action-globals.h"
Include dependency graph for output-eve-stream.c:

Go to the source code of this file.

Data Structures

struct  EveStreamOutputCtx_
 
struct  EveStreamLogThread_
 

Macros

#define MODULE_NAME   "EveStreamLog"
 

Typedefs

typedef struct EveStreamOutputCtx_ EveStreamOutputCtx
 
typedef struct EveStreamLogThread_ EveStreamLogThread
 

Functions

void EveAddFlowTcpStreamFlags (const TcpStream *stream, const char *name, JsonBuilder *jb)
 
void EveAddFlowTcpFlags (const TcpSession *ssn, const char *name, JsonBuilder *jb)
 
void EveStreamLogRegister (void)
 

Macro Definition Documentation

◆ MODULE_NAME

#define MODULE_NAME   "EveStreamLog"

Definition at line 59 of file output-eve-stream.c.

Typedef Documentation

◆ EveStreamLogThread

typedef struct EveStreamLogThread_ EveStreamLogThread

◆ EveStreamOutputCtx

typedef struct EveStreamOutputCtx_ EveStreamOutputCtx

Function Documentation

◆ EveAddFlowTcpFlags()

void EveAddFlowTcpFlags ( const TcpSession ssn,
const char *  name,
JsonBuilder *  jb 
)

Definition at line 206 of file output-eve-stream.c.

References TcpSession_::flags, STREAMTCP_FLAG_3WHS_CONFIRMED, STREAMTCP_FLAG_4WHS, STREAMTCP_FLAG_APP_LAYER_DISABLED, STREAMTCP_FLAG_BYPASS, STREAMTCP_FLAG_CLIENT_SACKOK, STREAMTCP_FLAG_CLOSED_BY_RST, STREAMTCP_FLAG_DETECTION_EVASION_ATTEMPT, STREAMTCP_FLAG_MIDSTREAM, STREAMTCP_FLAG_MIDSTREAM_ESTABLISHED, STREAMTCP_FLAG_MIDSTREAM_SYNACK, STREAMTCP_FLAG_SERVER_WSCALE, STREAMTCP_FLAG_TCP_FAST_OPEN, STREAMTCP_FLAG_TFO_DATA_IGNORED, and STREAMTCP_FLAG_TIMESTAMP.

◆ EveAddFlowTcpStreamFlags()

void EveAddFlowTcpStreamFlags ( const TcpStream stream,
const char *  name,
JsonBuilder *  jb 
)

Definition at line 176 of file output-eve-stream.c.

References TcpStream_::flags, STREAMTCP_STREAM_FLAG_APPPROTO_DETECTION_COMPLETED, STREAMTCP_STREAM_FLAG_APPPROTO_DETECTION_SKIPPED, STREAMTCP_STREAM_FLAG_DEPTH_REACHED, STREAMTCP_STREAM_FLAG_DISABLE_RAW, STREAMTCP_STREAM_FLAG_HAS_GAP, STREAMTCP_STREAM_FLAG_KEEPALIVE, STREAMTCP_STREAM_FLAG_NEW_RAW_DISABLED, STREAMTCP_STREAM_FLAG_NOREASSEMBLY, STREAMTCP_STREAM_FLAG_RST_RECV, STREAMTCP_STREAM_FLAG_TIMESTAMP, STREAMTCP_STREAM_FLAG_TRIGGER_RAW, and STREAMTCP_STREAM_FLAG_ZERO_TIMESTAMP.

◆ EveStreamLogRegister()

void EveStreamLogRegister ( void  )

Definition at line 452 of file output-eve-stream.c.

References LOGGER_JSON_STREAM, MODULE_NAME, and OutputRegisterPacketSubModule().

Referenced by OutputRegisterLoggers().

Here is the call graph for this function:
Here is the caller graph for this function: