Home
last modified time | relevance | path

Searched refs:RuleTreeNode (Results 1 – 25 of 47) sorted by relevance

12

/dports/security/snort3/snort3-3.1.19.0/src/detection/
H A Drtn_checks.h29 struct RuleTreeNode;
32 int RuleListEnd(snort::Packet*, RuleTreeNode*, RuleFpList*, int);
36 int CheckBidirectional(snort::Packet*, RuleTreeNode*, RuleFpList*, int);
38 int CheckProto(snort::Packet*, RuleTreeNode*, RuleFpList*, int);
39 int CheckSrcIP(snort::Packet*, RuleTreeNode*, RuleFpList*, int);
40 int CheckDstIP(snort::Packet*, RuleTreeNode*, RuleFpList*, int);
42 int CheckSrcPortEqual(snort::Packet*, RuleTreeNode*, RuleFpList*, int);
43 int CheckDstPortEqual(snort::Packet*, RuleTreeNode*, RuleFpList*, int);
44 int CheckSrcPortNotEq(snort::Packet*, RuleTreeNode*, RuleFpList*, int);
45 int CheckDstPortNotEq(snort::Packet*, RuleTreeNode*, RuleFpList*, int);
H A Drtn_checks.cc64 any_port_flag = flags & RuleTreeNode::ANY_DST_PORT; in CheckAddrPort()
66 any_port_flag = flags & RuleTreeNode::ANY_SRC_PORT; in CheckAddrPort()
74 any_port_flag = flags & RuleTreeNode::ANY_SRC_PORT; in CheckAddrPort()
76 any_port_flag = flags & RuleTreeNode::ANY_DST_PORT; in CheckAddrPort()
108 int CheckBidirectional(Packet* p, RuleTreeNode* rtn_idx, in CheckBidirectional()
178 int CheckSrcPortEqual(Packet* p, RuleTreeNode* rtn_idx, in CheckSrcPortEqual()
193 int CheckSrcPortNotEq(Packet* p, RuleTreeNode* rtn_idx, in CheckSrcPortNotEq()
209 int CheckDstPortEqual(Packet* p, RuleTreeNode* rtn_idx, in CheckDstPortEqual()
224 int CheckDstPortNotEq(Packet* p, RuleTreeNode* rtn_idx, in CheckDstPortNotEq()
240 int CheckProto(Packet* p, RuleTreeNode* rtn_idx, RuleFpList*, int) in CheckProto()
[all …]
H A Drules.cc92 RuleTreeNode* b_rtn = getRtnFromOtn(otn, ips_num); in apply()
103 RuleTreeNode* t_rtn = dup_rtn(b_rtn, policy); in apply()
109 RuleTreeNode* RuleStateMap::dup_rtn(RuleTreeNode* rtn, IpsPolicy* policy) in dup_rtn()
111 RuleTreeNode* ret = new RuleTreeNode(*rtn); in dup_rtn()
159 void RuleStateMap::update_rtn(SnortConfig* sc, RuleTreeNode* rtn, const RuleState& s) in update_rtn()
H A Drules.h54 struct RuleTreeNode;
98 RuleTreeNode* dup_rtn(RuleTreeNode*, IpsPolicy*);
99 void update_rtn(snort::SnortConfig*, RuleTreeNode*, const RuleState&);
H A Dfp_detect.h51 struct RuleTreeNode;
52 int fpLogEvent(const RuleTreeNode*, const OptTreeNode*, snort::Packet*);
53 bool fp_eval_rtn(RuleTreeNode*, snort::Packet*, int check_ports);
H A Dtreenodes.h38 struct RuleTreeNode;
86 int (* RuleHeadFunc)(snort::Packet*, RuleTreeNode*, RuleFpList*, int) = nullptr;
107 struct RuleTreeNode struct
193 RuleTreeNode** proto_nodes = nullptr;
H A Dfp_detect.cc129 Packet* p, const RuleTreeNode* rtn, const OptTreeNode* otn, Actions::Type action) in fpLogOther()
167 int fpLogEvent(const RuleTreeNode* rtn, const OptTreeNode* otn, Packet* p) in fpLogEvent()
293 RuleTreeNode* rtn = getRuntimeRtnFromOtn(otn); in fpAddMatch()
331 bool fp_eval_rtn(RuleTreeNode* rtn, Packet* p, int check_ports) in fp_eval_rtn()
670 RuleTreeNode* rtn = getRtnFromOtn(otn); in fpFinalSelectEvent()
/dports/security/snort3/snort3-3.1.19.0/src/parser/
H A Dparse_rule.h33 struct RuleTreeNode;
41 void parse_rule_type(snort::SnortConfig*, const char*, RuleTreeNode&);
42 void parse_rule_proto(snort::SnortConfig*, const char*, RuleTreeNode&, bool elided = false);
43 void parse_rule_nets(snort::SnortConfig*, const char*, bool src, RuleTreeNode&, bool elided = false…
44 void parse_rule_ports(snort::SnortConfig*, const char*, bool src, RuleTreeNode&, bool elided = fals…
45 void parse_rule_dir(snort::SnortConfig*, const char*, RuleTreeNode&, bool elided = false);
50 OptTreeNode* parse_rule_open(snort::SnortConfig*, RuleTreeNode&, bool stub = false);
51 void parse_rule_close(snort::SnortConfig*, RuleTreeNode&, OptTreeNode*);
52 void parse_rule_process_rtn(RuleTreeNode*);
53 int parse_rule_finish_ports(snort::SnortConfig*, RuleTreeNode*, OptTreeNode*);
H A Dparser.h62 int addRtnToOtn(snort::SnortConfig*, struct OptTreeNode*, RuleTreeNode*);
63 int addRtnToOtn(snort::SnortConfig*, struct OptTreeNode*, RuleTreeNode*, PolicyId);
65 bool same_headers(RuleTreeNode*, RuleTreeNode*);
66 RuleTreeNode* deleteRtnFromOtn(OptTreeNode*, snort::SnortConfig* sc = nullptr);
67 RuleTreeNode* deleteRtnFromOtn(struct OptTreeNode*, PolicyId, snort::SnortConfig* sc = nullptr, boo…
69 inline RuleTreeNode* getRtnFromOtn(const struct OptTreeNode* otn, PolicyId policyId) in getRtnFromOtn()
78 inline RuleTreeNode* getRtnFromOtn(const struct OptTreeNode* otn) in getRtnFromOtn()
83 inline RuleTreeNode* getRuntimeRtnFromOtn(const struct OptTreeNode* otn) in getRuntimeRtnFromOtn()
90 void FreeRuleTreeNode(RuleTreeNode*);
91 void DestroyRuleTreeNode(RuleTreeNode*);
[all …]
H A Dparse_rule.cc100 RuleTreeNode* rtn;
399 bool same_headers(RuleTreeNode* rule, RuleTreeNode* rtn) in same_headers()
436 static void XferHeader(RuleTreeNode* from, RuleTreeNode* to) in XferHeader()
461 RuleTreeNode* rtn) in AddRuleFuncToList()
562 static void SetupRTNFuncList(RuleTreeNode* rtn) in SetupRTNFuncList()
579 rtn->flags |= RuleTreeNode::USER_MODE; in SetupRTNFuncList()
585 static RuleTreeNode* transfer_rtn(RuleTreeNode* tmpl) in transfer_rtn()
588 auto rtn = new RuleTreeNode; in transfer_rtn()
760 rtn = RuleTreeNode(); in parse_rule_type()
1125 RuleTreeNode* new_rtn = transfer_rtn(tmp); in parse_rule_close()
[all …]
H A Dparser.cc82 RuleTreeNode* rtn = rtnk->rtn; in do_hash()
152 RuleTreeNode* rtn = getRtnFromOtn(otn, policyId); in FreeRuleTreeNodes()
389 void FreeRuleTreeNode(RuleTreeNode* rtn) in FreeRuleTreeNode()
410 void DestroyRuleTreeNode(RuleTreeNode* rtn) in DestroyRuleTreeNode()
476 static RuleTreeNode* find_rtn( in find_rtn()
477 SnortConfig* sc, RuleTreeNode* rtn, PolicyId id) in find_rtn()
744 RuleTreeNode* rtn = getRtnFromOtn(otn, policyId); in deleteRtnFromOtn()
775 RuleTreeNode** tmpNodeArray = in addRtnToOtn()
776 (RuleTreeNode**)snort_calloc(numNodes, sizeof(RuleTreeNode*)); in addRtnToOtn()
783 sizeof(RuleTreeNode*) * otn->proto_node_num); in addRtnToOtn()
[all …]
/dports/security/snort/snort-2.9.18/src/
H A Ddetect.h48 int ActivateAction(Packet *, OptTreeNode *, RuleTreeNode *, Event *);
49 int AlertAction(Packet *, OptTreeNode *, RuleTreeNode *, Event *);
50 int DropAction(Packet *, OptTreeNode *, RuleTreeNode *, Event *);
52 int DynamicAction(Packet *, OptTreeNode *, RuleTreeNode *, Event *);
53 int LogAction(Packet *, OptTreeNode *, RuleTreeNode *, Event *);
60 int EvalHeader(RuleTreeNode *, Packet *, int);
H A Devent_wrapper.c56 RuleTreeNode* GenerateSnortEventRtn (OptTreeNode* otn, tSfPolicyId policyId) in GenerateSnortEventRtn()
58 RuleTreeNode *rtn = getRtnFromOtn(otn, policyId); in GenerateSnortEventRtn()
61 rtn = calloc(1, sizeof(RuleTreeNode)); in GenerateSnortEventRtn()
82 RuleTreeNode *rtn; in GenerateSnortEventOtn()
110 RuleTreeNode *rtn; in GetSnortEventAction()
147 RuleTreeNode *rtn; in GenerateSnortEvent()
215 RuleTreeNode * rtn, in LogSnortEvent()
H A Dparser.h416 RuleTreeNode *rtn
419 RuleTreeNode* deleteRtnFromOtn(
438 static inline RuleTreeNode *getRtnFromOtn(OptTreeNode *otn, tSfPolicyId policyId) in getRtnFromOtn()
450 static inline RuleTreeNode *getParserRtnFromOtn(SnortConfig *sc, OptTreeNode *otn) in getParserRtnFromOtn()
455 static inline RuleTreeNode *getRuntimeRtnFromOtn(OptTreeNode *otn) in getRuntimeRtnFromOtn()
H A Dfpdetect.h53 int fpLogEvent(RuleTreeNode *rtn, OptTreeNode *otn, Packet *p);
54 int fpEvalRTN(RuleTreeNode *rtn, Packet *p, int check_ports);
H A Dparser.c795 static void XferHeader(RuleTreeNode *, RuleTreeNode *);
811 static int TestHeader(RuleTreeNode *, RuleTreeNode *);
832 static RuleTreeNode * findHeadNode(SnortConfig *, RuleTreeNode *, tSfPolicyId);
3048 RuleTreeNode *rtn; in createDynamicRuleTypeRtn()
3742 static void XferHeader(RuleTreeNode *test_node, RuleTreeNode *rtn) in XferHeader()
3787 static int TestHeader(RuleTreeNode * rule, RuleTreeNode * rtn) in TestHeader()
4775 RuleTreeNode *rtn; in CheckRuleStates()
9331 RuleTreeNode *rtn; in ParseRule()
9575 rtn = (RuleTreeNode *)SnortAlloc(sizeof(RuleTreeNode)); in ProcessHeadNode()
11078 RuleTreeNode *rtn; in FreeRuleTreeNodes()
[all …]
H A Devent_wrapper.h60 RuleTreeNode* GenerateSnortEventRtn(OptTreeNode *, tSfPolicyId);
77 void LogSnortEvent(Packet *, OptTreeNode *, RuleTreeNode *, const char *);
H A Dtag.h51 void SetTags(Packet *, OptTreeNode *, RuleTreeNode *, uint16_t);
H A Dtreenodes.h187 } RuleTreeNode; typedef
H A Dfpdetect.c105 int fpEvalRTN(RuleTreeNode *rtn, Packet *p, int check_ports);
205 int fpLogEvent(RuleTreeNode *rtn, OptTreeNode *otn, Packet *p) in fpLogEvent()
423 RuleTreeNode *rtn = getRuntimeRtnFromOtn(otn); in fpAddMatch()
504 int fpEvalRTN(RuleTreeNode *rtn, Packet *p, int check_ports) in fpEvalRTN()
843 RuleTreeNode *rtn; in fpFinalSelectEvent()
1031 RuleTreeNode *rtn = getParserRtnFromOtn(otn);
H A Dfpcreate.h218 typedef int (*OtnWalkFcn)(int, RuleTreeNode *, OptTreeNode *);
H A Ddetect.c898 void DumpChain(RuleTreeNode * rtn_head, char *rulename, char *listname) in DumpChain()
1264 int AlertAction(Packet * p, OptTreeNode * otn, RuleTreeNode * rtn, Event * event) in AlertAction()
1312 int DropAction(Packet * p, OptTreeNode * otn, RuleTreeNode * rtn, Event * event) in DropAction()
1370 int LogAction(Packet * p, OptTreeNode * otn, RuleTreeNode * rtn, Event * event) in LogAction()
/dports/security/snort3/snort3-3.1.19.0/src/actions/
H A Dactions.cc39 RuleTreeNode* rtn = getRuntimeRtnFromOtn(otn); in log()
45 RuleTreeNode* rtn = getRuntimeRtnFromOtn(otn); in alert()
/dports/security/snort3/snort3-3.1.19.0/src/events/
H A Devent_queue.h39 const struct RuleTreeNode* rtn;
/dports/security/snort/snort-2.9.18/src/preprocessors/Stream6/
H A Dstream_common.c225 static inline RuleTreeNode * protocolRuleList(RuleListNode *rule, IpProto protocol)
292 RuleTreeNode *rtn; in setPortFilterList()
452 RuleTreeNode *rtn, in StreamAnyAnyFlow()

12