suricata
Data Fields
SigMatch_ Struct Reference

a single match condition for a signature More...

#include <detect.h>

Collaboration diagram for SigMatch_:
Collaboration graph
[legend]

Data Fields

uint8_t type
 
uint16_t idx
 
SigMatchCtxctx
 
struct SigMatch_next
 
struct SigMatch_prev
 

Detailed Description

a single match condition for a signature

Definition at line 318 of file detect.h.

Field Documentation

SigMatchCtx* SigMatch_::ctx

plugin specific data

Definition at line 321 of file detect.h.

Referenced by DetectAckRegister(), DetectAppLayerEventRegister(), DetectAsn1Register(), DetectBase64DecodeDoMatch(), DetectBypassRegister(), DetectByteExtractDoMatch(), DetectByteExtractRetrieveSMVar(), DetectBytejumpDoMatch(), DetectBytetestDoMatch(), DetectCipServiceRegister(), DetectContentPMATCHValidateCallback(), DetectContentPropagateLimits(), DetectContentSetup(), DetectCsumRegister(), DetectDatarepBufferMatch(), DetectDatasetBufferMatch(), DetectDceIfaceRegister(), DetectDceOpnumRegister(), DetectDepthRegister(), DetectDetectionFilterRegister(), DetectDistanceRegister(), DetectDnsQueryRegister(), DetectDsizeRegister(), DetectEngineContentModifierBufferSetup(), DetectEngineEventRegister(), DetectEnipCommandRegister(), DetectFastPatternRegister(), DetectFileextRegister(), DetectFilemagicRegister(), DetectFilenameRegister(), DetectFilesizeRegister(), DetectFilestoreRegister(), DetectFlagsRegister(), DetectFlagsSignatureNeedsSynOnlyPackets(), DetectFlagsSignatureNeedsSynPackets(), DetectFlowbitMatch(), DetectFlowintMatch(), DetectFlowSetupImplicit(), DetectFlowvarMatch(), DetectFlowvarPostMatchSetup(), DetectFragBitsRegister(), DetectFragOffsetRegister(), DetectFtpbounceRegister(), DetectFtpdataRegister(), DetectGeoipRegister(), DetectHttpHHRegister(), DetectHttpMethodRegister(), DetectIcmpIdRegister(), DetectIcmpSeqRegister(), DetectIdRegister(), DetectIpOptsFree(), DetectIPProtoRegister(), DetectIPRepRegister(), DetectIsdataatFree(), DetectIsdataatSetup(), DetectKrb5ErrCodeRegister(), DetectKrb5MsgTypeRegister(), DetectLuaRegister(), DetectMarkRegister(), DetectNfsProcedureRegister(), DetectNfsVersionRegister(), DetectNocaseRegister(), DetectOffsetRegister(), DetectPcrePayloadMatch(), DetectPktvarRegister(), DetectPrefilterRegister(), DetectRawbytesRegister(), DetectReplaceRegister(), DetectRpcRegister(), DetectSameipRegister(), DetectSeqRegister(), DetectSetFastPatternAndItsId(), DetectSNMPPduTypeRegister(), DetectSNMPVersionRegister(), DetectSshSoftwareVersionRegister(), DetectSshVersionRegister(), DetectSslStateRegister(), DetectSslVersionRegister(), DetectStreamSizeFree(), DetectStreamSizeRegister(), DetectTagRegister(), DetectTcpmssRegister(), DetectTemplate2Register(), DetectTemplateRegister(), DetectThresholdRegister(), DetectTlsFingerprintRegister(), DetectTlsJa3HashRegister(), DetectTlsJa3SHashRegister(), DetectTlsRegister(), DetectTlsSerialRegister(), DetectTlsValidityRegister(), DetectTlsVersionRegister(), DetectTosRegister(), DetectTtlRegister(), DetectUricontentRegister(), DetectUrilenApplyToContent(), DetectUrilenRegister(), DetectUrilenValidateContent(), DetectWindowRegister(), DetectWithinRegister(), DetectXbitMatchHost(), DetectXbitsRegister(), EngineAnalysisFP(), EngineAnalysisRules(), MpmStoreFree(), PacketCreateMask(), PerCentEncodingMatch(), SCThresholdConfInitContext(), SCThresholdConfParseFile(), SigAddressPrepareStage1(), SigMatchFree(), SigMatchList2DataArray(), SignatureIsIPOnly(), SigParseApplyDsizeToContent(), SigParseGetMaxDsize(), and SigParseSetDsizePair().

uint16_t SigMatch_::idx

position in the signature

Definition at line 320 of file detect.h.

Referenced by DetectFastPatternRegister(), DetectGetLastSM(), DetectGetLastSMByListId(), DetectGetLastSMByListPtr(), DetectGetLastSMFromLists(), DetectGetLastSMFromMpmLists(), SigMatchAppendSMToList(), and SigMatchList2DataArray().

struct SigMatch_* SigMatch_::next

Definition at line 322 of file detect.h.

Referenced by DetectAckRegister(), DetectAppLayerEventPrepare(), DetectByteExtractRetrieveSMVar(), DetectContentPMATCHValidateCallback(), DetectContentPropagateLimits(), DetectDistanceRegister(), DetectDsizeRegister(), DetectFastPatternRegister(), DetectFlagsSignatureNeedsSynOnlyPackets(), DetectFlagsSignatureNeedsSynPackets(), DetectFlowbitsAnalyze(), DetectFlowFree(), DetectFragBitsRegister(), DetectFragOffsetFree(), DetectGetLastSM(), DetectHttpHHRegister(), DetectHttpMethodRegister(), DetectIcmpIdFree(), DetectIcmpSeqFree(), DetectICodeFree(), DetectIdFree(), DetectIPProtoRegister(), DetectIPProtoRemoveAllSMs(), DetectITypeFree(), DetectLuaRegister(), DetectPktDataRegister(), DetectSeqRegister(), DetectSignatureSetAppProto(), DetectTcpmssFree(), DetectTemplate2Free(), DetectTlsFingerprintRegister(), DetectTlsJa3HashRegister(), DetectTlsJa3SHashRegister(), DetectTlsSerialRegister(), DetectTtlFree(), DetectUrilenApplyToContent(), DetectUrilenValidateContent(), EngineAnalysisRules(), PacketCreateMask(), RetrieveFPForSig(), SigAddressPrepareStage1(), SigAddressPrepareStage4(), SigFree(), SigMatchAlloc(), SigMatchAppendSMToList(), SigMatchList2DataArray(), SigMatchListSMBelongsTo(), SigMatchRemoveSMFromList(), SignatureIsIPOnly(), and SigParseApplyDsizeToContent().

struct SigMatch_* SigMatch_::prev

Definition at line 323 of file detect.h.

Referenced by DetectAppLayerEventPrepare(), DetectDistanceRegister(), DetectEngineContentModifierBufferSetup(), DetectGetLastSM(), DetectPcrePayloadMatch(), DetectWithinRegister(), SigMatchAlloc(), SigMatchAppendSMToList(), SigMatchList2DataArray(), and SigMatchRemoveSMFromList().

uint8_t SigMatch_::type

match type

Definition at line 319 of file detect.h.

Referenced by DetectAckRegister(), DetectAppLayerEventRegister(), DetectAsn1Register(), DetectBase64DataDoMatch(), DetectBase64DecodeDoMatch(), DetectBypassRegister(), DetectByteExtractDoMatch(), DetectByteExtractRetrieveSMVar(), DetectBytejumpDoMatch(), DetectBytetestDoMatch(), DetectCipServiceRegister(), DetectContentPMATCHValidateCallback(), DetectContentPropagateLimits(), DetectContentSetup(), DetectCsumRegister(), DetectDatarepBufferMatch(), DetectDatasetBufferMatch(), DetectDceIfaceRegister(), DetectDceOpnumRegister(), DetectDetectionFilterRegister(), DetectDistanceRegister(), DetectDnsQueryRegister(), DetectDsizeRegister(), DetectEngineContentModifierBufferSetup(), DetectEngineEventRegister(), DetectEnipCommandRegister(), DetectFastPatternRegister(), DetectFileextRegister(), DetectFilemagicRegister(), DetectFilenameRegister(), DetectFilesizeRegister(), DetectFilestoreRegister(), DetectFlagsRegister(), DetectFlagsSignatureNeedsSynOnlyPackets(), DetectFlagsSignatureNeedsSynPackets(), DetectFlowbitMatch(), DetectFlowFree(), DetectFlowintMatch(), DetectFlowSetupImplicit(), DetectFlowvarMatch(), DetectFlowvarPostMatchSetup(), DetectFragBitsRegister(), DetectFragOffsetFree(), DetectFragOffsetRegister(), DetectFtpbounceRegister(), DetectFtpdataRegister(), DetectGeoipRegister(), DetectHttpHHRegister(), DetectHttpMethodRegister(), DetectIcmpIdFree(), DetectIcmpIdRegister(), DetectIcmpSeqFree(), DetectIcmpSeqRegister(), DetectICodeFree(), DetectIdFree(), DetectIdRegister(), DetectIpOptsFree(), DetectIPProtoRegister(), DetectIPProtoRemoveAllSMs(), DetectIPRepRegister(), DetectIsdataatSetup(), DetectITypeFree(), DetectKrb5ErrCodeRegister(), DetectKrb5MsgTypeRegister(), DetectLuaRegister(), DetectMarkRegister(), DetectNfsProcedureRegister(), DetectNfsVersionRegister(), DetectPcrePayloadMatch(), DetectPktDataRegister(), DetectPktvarRegister(), DetectPrefilterRegister(), DetectRawbytesRegister(), DetectReplaceRegister(), DetectRpcRegister(), DetectSameipRegister(), DetectSeqRegister(), DetectSNMPPduTypeRegister(), DetectSNMPVersionRegister(), DetectSshSoftwareVersionRegister(), DetectSshVersionRegister(), DetectSslStateRegister(), DetectSslVersionRegister(), DetectStreamSizeRegister(), DetectTagRegister(), DetectTcpmssFree(), DetectTcpmssRegister(), DetectTemplate2Free(), DetectTemplate2Register(), DetectTemplateRegister(), DetectThresholdRegister(), DetectTlsFingerprintRegister(), DetectTlsJa3HashRegister(), DetectTlsJa3SHashRegister(), DetectTlsRegister(), DetectTlsSerialRegister(), DetectTlsValidityRegister(), DetectTlsVersionRegister(), DetectTosRegister(), DetectTtlFree(), DetectTtlRegister(), DetectUricontentRegister(), DetectUrilenApplyToContent(), DetectUrilenRegister(), DetectUrilenValidateContent(), DetectWindowRegister(), DetectWithinRegister(), DetectXbitMatchHost(), DetectXbitsRegister(), EngineAnalysisFP(), EngineAnalysisRules(), PacketCreateMask(), SCThresholdConfInitContext(), SigAddressPrepareStage1(), SigMatchFree(), SigMatchList2DataArray(), SigMatchRemoveSMFromList(), SignatureIsIPOnly(), and SigParseApplyDsizeToContent().

The documentation for this struct was generated from the following file: