"Fossies" - the Fresh Open Source Software Archive  

Source code changes of the file "src/service_inspectors/http_inspect/http_msg_section.h" between
snort3-3.1.36.0.tar.gz and snort3-3.1.38.0.tar.gz

About: Snort 3 is a network intrusion prevention and detection system (IDS/IPS) combining the benefits of signature, protocol and anomaly-based inspection.

http_msg_section.h  (snort3-3.1.36.0):http_msg_section.h  (snort3-3.1.38.0)
skipping to change at line 25 skipping to change at line 25
// with this program; if not, write to the Free Software Foundation, Inc., // with this program; if not, write to the Free Software Foundation, Inc.,
// 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. // 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
//-------------------------------------------------------------------------- //--------------------------------------------------------------------------
// http_msg_section.h author Tom Peters <thopeter@cisco.com> // http_msg_section.h author Tom Peters <thopeter@cisco.com>
#ifndef HTTP_MSG_SECTION_H #ifndef HTTP_MSG_SECTION_H
#define HTTP_MSG_SECTION_H #define HTTP_MSG_SECTION_H
#include "detection/detection_util.h" #include "detection/detection_util.h"
#include "framework/cursor.h" #include "framework/cursor.h"
#include "protocols/packet.h"
#include "http_buffer_info.h" #include "http_buffer_info.h"
#include "http_common.h" #include "http_common.h"
#include "http_cursor_data.h" #include "http_cursor_data.h"
#include "http_enum.h" #include "http_enum.h"
#include "http_field.h" #include "http_field.h"
#include "http_flow_data.h" #include "http_flow_data.h"
#include "http_module.h" #include "http_module.h"
#include "http_param.h" #include "http_param.h"
#include "http_transaction.h" #include "http_transaction.h"
skipping to change at line 70 skipping to change at line 71
// analyze() generates many events in the course of its work. Many other eve nts are generated // analyze() generates many events in the course of its work. Many other eve nts are generated
// by JIT normalization but only if someone asks for the item in question. g en_events() // by JIT normalization but only if someone asks for the item in question. g en_events()
// addresses a third category--things that do not come up during analysis bu t must be // addresses a third category--things that do not come up during analysis bu t must be
// inspected for every message even if no one else asks about them. // inspected for every message even if no one else asks about them.
virtual void gen_events() {} virtual void gen_events() {}
// Manages the splitter and communication between message sections // Manages the splitter and communication between message sections
virtual void update_flow() = 0; virtual void update_flow() = 0;
// Publish an inspection event for other modules to consume
virtual void publish() {}
// Call the detection engine to inspect the current packet
bool run_detection(snort::Packet* p);
const Field& get_classic_buffer(unsigned id, uint64_t sub_id, uint64_t form) ; const Field& get_classic_buffer(unsigned id, uint64_t sub_id, uint64_t form) ;
const Field& get_classic_buffer(const HttpBufferInfo& buf); const Field& get_classic_buffer(const HttpBufferInfo& buf);
const Field& get_param_buffer(Cursor& c, const HttpParam& param); const Field& get_param_buffer(Cursor& c, const HttpParam& param);
HttpEnums::MethodId get_method_id() const { return method_id; } HttpEnums::MethodId get_method_id() const { return method_id; }
int32_t get_status_code_num() const { return status_code_num; } int32_t get_status_code_num() const { return status_code_num; }
// Publish an inspection event for other modules to consume.
virtual void publish() { }
void clear(); void clear();
bool is_clear() { return cleared; } bool is_clear() { return cleared; }
uint64_t get_transaction_id() { return trans_num; } uint64_t get_transaction_id() { return trans_num; }
int32_t get_num_headers(const HttpBufferInfo& buf) const; int32_t get_num_headers(const HttpBufferInfo& buf) const;
HttpEnums::VersionId get_version_id(const HttpBufferInfo& buf) const; HttpEnums::VersionId get_version_id(const HttpBufferInfo& buf) const;
HttpMsgSection* next = nullptr; HttpMsgSection* next = nullptr;
#ifdef REG_TEST #ifdef REG_TEST
 End of changes. 3 change blocks. 
3 lines changed or deleted 7 lines changed or added

Home  |  About  |  Features  |  All  |  Newest  |  Dox  |  Diffs  |  RSS Feeds  |  Screenshots  |  Comments  |  Imprint  |  Privacy  |  HTTP(S)