suricata
SignatureInitData_ Struct Reference

#include <detect.h>

Collaboration diagram for SignatureInitData_:

Data Fields

uint16_t sm_cnt
 
bool negated
 
bool src_contains_negation
 
bool dst_contains_negation
 
uint32_t init_flags
 
SigMatchdsize_sm
 
int mpm_sm_list
 
SigMatchmpm_sm
 
SigMatchprefilter_sm
 
int list
 
bool list_set
 
DetectEngineTransforms transforms
 
int whitelist
 
const DetectAddressHeadsrc
 
const DetectAddressHeaddst
 
int prefilter_list
 
uint32_t smlists_array_size
 
struct SigMatch_ ** smlists
 
struct SigMatch_ ** smlists_tail
 

Detailed Description

Definition at line 491 of file detect.h.

Field Documentation

◆ dsize_sm

SigMatch* SignatureInitData_::dsize_sm

Definition at line 509 of file detect.h.

Referenced by SigParseGetMaxDsize(), and SigParseSetDsizePair().

◆ dst

const DetectAddressHead * SignatureInitData_::dst

Definition at line 530 of file detect.h.

◆ dst_contains_negation

bool SignatureInitData_::dst_contains_negation

Definition at line 502 of file detect.h.

Referenced by SignatureIsIPOnly().

◆ init_flags

uint32_t SignatureInitData_::init_flags

Definition at line 505 of file detect.h.

Referenced by DetectEnginePktInspectionSetup(), and DetectFlowbitsAnalyze().

◆ list

◆ list_set

bool SignatureInitData_::list_set

Definition at line 520 of file detect.h.

Referenced by DetectBufferGetActiveList(), and DetectSignatureAddTransform().

◆ mpm_sm

SigMatch* SignatureInitData_::mpm_sm

◆ mpm_sm_list

int SignatureInitData_::mpm_sm_list

Definition at line 512 of file detect.h.

Referenced by DetectEngineAppInspectionEngine2Signature(), EngineAnalysisFP(), and SigAlloc().

◆ negated

bool SignatureInitData_::negated

option was prefixed with '!'. Only set for sigmatches that have the SIGMATCH_HANDLE_NEGATION flag set.

Definition at line 497 of file detect.h.

Referenced by DetectContentSetup().

◆ prefilter_list

int SignatureInitData_::prefilter_list

Definition at line 532 of file detect.h.

◆ prefilter_sm

SigMatch* SignatureInitData_::prefilter_sm

Definition at line 516 of file detect.h.

◆ sm_cnt

uint16_t SignatureInitData_::sm_cnt

Number of sigmatches. Used for assigning SigMatch::idx

Definition at line 493 of file detect.h.

◆ smlists

◆ smlists_array_size

◆ smlists_tail

struct SigMatch_** SignatureInitData_::smlists_tail

◆ src

const DetectAddressHead* SignatureInitData_::src

address settings for this signature

Definition at line 530 of file detect.h.

◆ src_contains_negation

bool SignatureInitData_::src_contains_negation

Definition at line 501 of file detect.h.

Referenced by SignatureIsIPOnly().

◆ transforms

DetectEngineTransforms SignatureInitData_::transforms

Definition at line 522 of file detect.h.

Referenced by DetectBufferGetActiveList(), DetectSignatureAddTransform(), and SigFree().

◆ whitelist

int SignatureInitData_::whitelist

score to influence rule grouping. A higher value leads to a higher likelihood of a rulegroup with this sig ending up as a contained group.

Definition at line 527 of file detect.h.


The documentation for this struct was generated from the following file: