tcpflow  1.6.1
About: tcpflow is a TCP/IP packet demultiplexer that captures data transmitted as part of TCP connections (flows), and stores the data in a way that is convenient for protocol analysis and debugging.
  Fossies Dox: tcpflow-1.6.1.tar.gz  ("unofficial" and yet experimental doxygen-generated source code documentation)  

Internal_interfaces

Files

file  feature_recorder_set.h
 
file  histogram.h
 
file  word_and_context_list.h
 

Classes

class  feature_recorder_set
 
struct  feature_recorder_set::hash_def
 
struct  feature_recorder_set::pstats
 
class  CharClass
 
class  HistogramMaker
 
class  HistogramMaker::histogramTally
 
struct  HistogramMaker::ReportElement
 
class  context
 
class  word_and_context_list
 

Typedefs

typedef std::map< std::string, class feature_recorder * > feature_recorder_map
 
typedef std::set< std::string > feature_file_names_t
 
typedef std::map< std::string, struct pstatsfeature_recorder_set::scanner_stats_map
 
typedef void(* feature_recorder_set::xml_notifier_t) (const std::string &xmlstring)
 
typedef int(* feature_recorder_set::stat_callback_t) (void *user, const std::string &name, uint64_t calls, double seconds)
 
typedef std::map< std::string, histogramTallyHistogramMaker::HistogramMap
 
typedef std::vector< ReportElement * > HistogramMaker::FrequencyReportVector
 
typedef std::multimap< std::string, contextword_and_context_list::stopmap_t
 
typedef std::set< std::string > word_and_context_list::stopset_t
 

Functions

 feature_recorder_set::feature_recorder_set (const feature_recorder_set &fs)
 
feature_recorder_setfeature_recorder_set::operator= (const feature_recorder_set &fs)
 
virtual void feature_recorder_set::heartbeat ()
 
 feature_recorder_set::hash_def::hash_def (std::string name_, std::string(*func_)(const uint8_t *buf, const size_t bufsize))
 
 feature_recorder_set::feature_recorder_set (uint32_t flags_, const hash_def &hasher_, const std::string &input_fname_, const std::string &outdir_)
 
virtual feature_recorder_set::~feature_recorder_set ()
 
std::string feature_recorder_set::get_input_fname () const
 
virtual const std::string & feature_recorder_set::get_outdir () const
 
void feature_recorder_set::set_stop_list (const word_and_context_list *alist)
 
void feature_recorder_set::set_alert_list (const word_and_context_list *alist)
 
void feature_recorder_set::init (const feature_file_names_t &feature_files)
 
void feature_recorder_set::flush_all ()
 
void feature_recorder_set::close_all ()
 
bool feature_recorder_set::has_name (std::string name) const
 
void feature_recorder_set::set_flag (uint32_t f)
 
void feature_recorder_set::unset_flag (uint32_t f)
 
bool feature_recorder_set::flag_set (uint32_t f) const
 
bool feature_recorder_set::flag_notset (uint32_t f) const
 
uint32_t feature_recorder_set::get_flags () const
 
void feature_recorder_set::add_histogram (const histogram_def &def)
 
void feature_recorder_set::dump_histograms (void *user, feature_recorder::dump_callback_t cb, xml_notifier_t xml_error_notifier) const
 
virtual feature_recorderfeature_recorder_set::create_name_factory (const std::string &name_)
 
virtual void feature_recorder_set::create_name (const std::string &name, bool create_stop_also)
 
void feature_recorder_set::add_stats (const std::string &bucket, double seconds)
 
void feature_recorder_set::get_stats (void *user, stat_callback_t stat_callback) const
 
void feature_recorder_set::dump_name_count_stats (dfxml_writer &writer) const
 
virtual void feature_recorder_set::db_send_sql (void *db3, const char **stmts,...)
 
virtual void * feature_recorder_set::db_create_empty (const std::string &name)
 
void feature_recorder_set::db_create_table (const std::string &name)
 
void feature_recorder_set::db_create ()
 
void feature_recorder_set::db_transaction_begin ()
 
void feature_recorder_set::db_transaction_commit ()
 
void feature_recorder_set::db_close ()
 
virtual bool feature_recorder_set::check_previously_processed (const uint8_t *buf, size_t bufsize)
 
virtual feature_recorderfeature_recorder_set::get_name (const std::string &name) const
 
virtual feature_recorderfeature_recorder_set::get_alert_recorder () const
 
virtual void feature_recorder_set::get_feature_file_list (std::vector< std::string > &ret)
 
 CharClass::CharClass ()
 
void CharClass::add (uint8_t ch)
 
void CharClass::add (uint8_t *buf, size_t len)
 
 HistogramMaker::histogramTally::histogramTally ()
 
virtual HistogramMaker::histogramTally::~histogramTally ()
 
 HistogramMaker::ReportElement::ReportElement (std::string aValue, histogramTally aTally)
 
static bool HistogramMaker::ReportElement::compare_ref (const ReportElement &e1, const ReportElement &e2)
 
static bool HistogramMaker::ReportElement::compare (const ReportElement *e1, const ReportElement *e2)
 
virtual HistogramMaker::ReportElement::~ReportElement ()
 
static bool HistogramMaker::looks_like_utf16 (const std::string &str, bool &little_endian)
 
static std::string * HistogramMaker::convert_utf16_to_utf8 (const std::string &str)
 
static std::string * HistogramMaker::convert_utf16_to_utf8 (const std::string &str, bool little_endian)
 
static std::string * HistogramMaker::make_utf8 (const std::string &key)
 
 HistogramMaker::HistogramMaker (uint32_t flags_)
 
void HistogramMaker::clear ()
 
void HistogramMaker::add (const std::string &key)
 
FrequencyReportVectorHistogramMaker::makeReport () const
 
FrequencyReportVectorHistogramMaker::makeReport (int topN) const
 
virtual HistogramMaker::~HistogramMaker ()
 
std::ostream & operator<< (std::ostream &os, const HistogramMaker::FrequencyReportVector &rep)
 
static void context::extract_before_after (const std::string &feature, const std::string &ctx, std::string &before, std::string &after)
 
 context::context (const std::string &f)
 
 context::context (const std::string &f, const std::string &c)
 
 context::context (const std::string &f, const std::string &b, const std::string &a)
 
std::ostream & operator<< (std::ostream &os, const class context &c)
 
bool operator== (const class context &a, const class context &b)
 
static int word_and_context_list::rstrcmp (const std::string &a, const std::string &b)
 
 word_and_context_list::word_and_context_list ()
 
 word_and_context_list::~word_and_context_list ()
 
size_t word_and_context_list::size ()
 
void word_and_context_list::add_regex (const std::string &pat)
 
bool word_and_context_list::add_fc (const std::string &f, const std::string &c)
 
int word_and_context_list::readfile (const std::string &fname)
 
bool word_and_context_list::check (const std::string &probe, const std::string &before, const std::string &after) const
 
bool word_and_context_list::check_feature_context (const std::string &probe, const std::string &context) const
 
void word_and_context_list::dump ()
 

Variables

uint32_t feature_recorder_set::flags
 
atomic_set< std::string > feature_recorder_set::seen_set
 
const std::string feature_recorder_set::input_fname
 
const std::string feature_recorder_set::outdir
 
feature_recorder_map feature_recorder_set::frm
 
cppmutex feature_recorder_set::Mscanner_stats
 
histogram_defs_t feature_recorder_set::histogram_defs
 
cppmutex feature_recorder_set::Min_transaction
 
bool feature_recorder_set::in_transaction
 
void * feature_recorder_set::db3
 
std::string feature_recorder_set::hash_def::name
 
std::string(* feature_recorder_set::hash_def::func )(const uint8_t *buf, const size_t bufsize)
 
double feature_recorder_set::pstats::seconds
 
uint64_t feature_recorder_set::pstats::calls
 
const word_and_context_listfeature_recorder_set::alert_list
 
const word_and_context_listfeature_recorder_set::stop_list
 
scanner_stats_map feature_recorder_set::scanner_stats
 
const hash_deffeature_recorder_set::hasher
 
static hash_def feature_recorder_set::null_hasher
 
static const std::string feature_recorder_set::ALERT_RECORDER_NAME = "alerts"
 
static const std::string feature_recorder_set::DISABLED_RECORDER_NAME = "disabled"
 
static const std::string feature_recorder_set::NO_INPUT = "<NO-INPUT>"
 
static const std::string feature_recorder_set::NO_OUTDIR = "<NO-OUTDIR>"
 
static const uint32_t feature_recorder_set::ONLY_ALERT = 0x01
 
static const uint32_t feature_recorder_set::SET_DISABLED = 0x02
 
static const uint32_t feature_recorder_set::CREATE_STOP_LIST_RECORDERS = 0x04
 
static const uint32_t feature_recorder_set::MEM_HISTOGRAM = 0x20
 
static const uint32_t feature_recorder_set::ENABLE_SQLITE3_RECORDERS = 0x40
 
static const uint32_t feature_recorder_set::DISABLE_FILE_RECORDERS = 0x80
 
static const uint32_t feature_recorder_set::NO_ALERT = 0x100
 
uint32_t CharClass::range_0_9
 
uint32_t CharClass::range_A_Fi
 
uint32_t CharClass::range_g_z
 
uint32_t CharClass::range_G_Z
 
static const int HistogramMaker::FLAG_LOWERCASE = 0x01
 
static const int HistogramMaker::FLAG_NUMERIC = 0x02
 
static uint32_t HistogramMaker::debug_histogram_malloc_fail_frequency = 0
 
uint32_t HistogramMaker::histogramTally::count
 
uint32_t HistogramMaker::histogramTally::count16
 
const std::string HistogramMaker::ReportElement::value
 
histogramTally HistogramMaker::ReportElement::tally
 
HistogramMap HistogramMaker::h
 
uint32_t HistogramMaker::flags
 
std::string context::feature
 
std::string context::before
 
std::string context::after
 
stopmap_t word_and_context_list::fcmap
 
stopset_t word_and_context_list::context_set
 
beregex_vector word_and_context_list::patterns
 

Detailed Description

Typedef Documentation

◆ feature_file_names_t

typedef std::set<std::string> feature_file_names_t

Definition at line 27 of file feature_recorder_set.h.

◆ feature_recorder_map

typedef std::map<std::string,class feature_recorder *> feature_recorder_map

Definition at line 26 of file feature_recorder_set.h.

◆ FrequencyReportVector

A FrequencyReportVector is a vector of report elements when the report is generated.

Definition at line 124 of file histogram.h.

◆ HistogramMap

typedef std::map<std::string,histogramTally> HistogramMaker::HistogramMap
private

A HistogramMap holds the histogram while it is being computed.

Definition at line 102 of file histogram.h.

◆ scanner_stats_map

typedef std::map<std::string,struct pstats> feature_recorder_set::scanner_stats_map

Definition at line 57 of file feature_recorder_set.h.

◆ stat_callback_t

typedef int(* feature_recorder_set::stat_callback_t) (void *user, const std::string &name, uint64_t calls, double seconds)

Definition at line 121 of file feature_recorder_set.h.

◆ stopmap_t

typedef std::multimap<std::string,context> word_and_context_list::stopmap_t
private

Definition at line 104 of file word_and_context_list.h.

◆ stopset_t

typedef std::set< std::string > word_and_context_list::stopset_t
private

Definition at line 115 of file word_and_context_list.h.

◆ xml_notifier_t

typedef void(* feature_recorder_set::xml_notifier_t) (const std::string &xmlstring)

Definition at line 114 of file feature_recorder_set.h.

Function Documentation

◆ add() [1/3]

void HistogramMaker::add ( const std::string &  key)

"key" passed in is a const reference. But we might want to change it. So keyToAdd points to what will be added. If we need to change key, we allocate more memory, and make keyToAdd point to the memory that was allocated. This way we only make a copy if we need to make a copy.

Definition at line 142 of file histogram.cpp.

References HistogramMaker::convert_utf16_to_utf8(), HistogramMaker::debug_histogram_malloc_fail_frequency, HistogramMaker::FLAG_LOWERCASE, HistogramMaker::FLAG_NUMERIC, HistogramMaker::h, HistogramMaker::looks_like_utf16(), utf8::utf16to8(), and utf8::utf8to16().

Referenced by feature_recorder::dump_histogram_file().

◆ add() [2/3]

void CharClass::add ( uint8_t buf,
size_t  len 
)
inline

Definition at line 39 of file histogram.h.

References CharClass::add().

◆ add() [3/3]

void CharClass::add ( uint8_t  ch)
inline

◆ add_fc()

bool word_and_context_list::add_fc ( const std::string &  f,
const std::string &  c 
)

Insert a feature and context, but only if not already present. Returns true if added.

Definition at line 21 of file word_and_context_list.cpp.

References c, word_and_context_list::context_set, and word_and_context_list::fcmap.

Referenced by word_and_context_list::readfile().

◆ add_histogram()

void feature_recorder_set::add_histogram ( const histogram_def def)

PHASE HISTOGRAM (formerly phase 3): Create the histograms We now have three kinds of histograms: 1 - Traditional post-processing histograms specified by the histogram library 1a - feature-file based traditional ones 1b - SQL-based traditional ones. 2 - In-memory histograms (used primarily by beapi)

Definition at line 233 of file feature_recorder_set.cpp.

References feature_recorder::add_histogram(), histogram_def::feature, and feature_recorder_set::get_name().

Referenced by be13::plugin::add_enabled_scanner_histograms_to_feature_recorder_set().

◆ add_regex()

void word_and_context_list::add_regex ( const std::string &  pat)

class word_and_context_list reads from disk and maintains in memory a data structure that is used for the stop list and alert list.

Definition at line 12 of file word_and_context_list.cpp.

References word_and_context_list::patterns.

◆ add_stats()

void feature_recorder_set::add_stats ( const std::string &  bucket,
double  seconds 
)

◆ CharClass()

CharClass::CharClass ( )
inline

Definition at line 30 of file histogram.h.

◆ check()

bool word_and_context_list::check ( const std::string &  probe,
const std::string &  before,
const std::string &  after 
) const

◆ check_feature_context()

bool word_and_context_list::check_feature_context ( const std::string &  probe,
const std::string &  context 
) const

◆ check_previously_processed()

bool feature_recorder_set::check_previously_processed ( const uint8_t buf,
size_t  bufsize 
)
virtual

◆ clear()

void HistogramMaker::clear ( )
inline

Definition at line 119 of file histogram.h.

References HistogramMaker::h.

◆ close_all()

◆ compare()

static bool HistogramMaker::ReportElement::compare ( const ReportElement e1,
const ReportElement e2 
)
inlinestatic

◆ compare_ref()

static bool HistogramMaker::ReportElement::compare_ref ( const ReportElement e1,
const ReportElement e2 
)
inlinestatic

◆ context() [1/3]

context::context ( const std::string &  f)
inline

Definition at line 72 of file word_and_context_list.h.

◆ context() [2/3]

context::context ( const std::string &  f,
const std::string &  b,
const std::string &  a 
)
inline

Definition at line 76 of file word_and_context_list.h.

◆ context() [3/3]

context::context ( const std::string &  f,
const std::string &  c 
)
inline

◆ convert_utf16_to_utf8() [1/2]

std::string * HistogramMaker::convert_utf16_to_utf8 ( const std::string &  str)
static

◆ convert_utf16_to_utf8() [2/2]

std::string * HistogramMaker::convert_utf16_to_utf8 ( const std::string &  key,
bool  little_endian 
)
static

Converts a utf16 with a byte order to utf8, returning an ALLOCATED STRING if conversion is successful, and returning 0 if it is not.

Definition at line 90 of file histogram.cpp.

References utf8::utf16to8().

◆ create_name()

void feature_recorder_set::create_name ( const std::string &  name,
bool  create_stop_also 
)
virtual

◆ create_name_factory()

feature_recorder * feature_recorder_set::create_name_factory ( const std::string &  name_)
virtual

Definition at line 115 of file feature_recorder_set.cpp.

Referenced by feature_recorder_set::create_name().

◆ db_close()

void feature_recorder_set::db_close ( )

◆ db_create()

void feature_recorder_set::db_create ( )

Definition at line 174 of file feature_recorder_sql.cpp.

References feature_recorder::debug.

Referenced by feature_recorder_set::init().

◆ db_create_empty()

void * feature_recorder_set::db_create_empty ( const std::string &  name)
virtual

◆ db_create_table()

void feature_recorder_set::db_create_table ( const std::string &  name)

Definition at line 145 of file feature_recorder_sql.cpp.

References feature_recorder::name.

Referenced by feature_recorder::open().

◆ db_send_sql()

void feature_recorder_set::db_send_sql ( void *  db3,
const char **  stmts,
  ... 
)
virtual

SQLite3 interface

Definition at line 123 of file feature_recorder_sql.cpp.

References feature_recorder::debug.

Referenced by feature_recorder::dump_histogram_db().

◆ db_transaction_begin()

void feature_recorder_set::db_transaction_begin ( )

Definition at line 198 of file feature_recorder_sql.cpp.

References begin_transaction.

◆ db_transaction_commit()

void feature_recorder_set::db_transaction_commit ( )

Definition at line 207 of file feature_recorder_sql.cpp.

References commit_transaction.

Referenced by feature_recorder_set::close_all().

◆ dump()

void word_and_context_list::dump ( )

◆ dump_histograms()

void feature_recorder_set::dump_histograms ( void *  user,
feature_recorder::dump_callback_t  cb,
feature_recorder_set::xml_notifier_t  xml_error_notifier 
) const

◆ dump_name_count_stats()

void feature_recorder_set::dump_name_count_stats ( dfxml_writer &  writer) const

◆ extract_before_after()

static void context::extract_before_after ( const std::string &  feature,
const std::string &  ctx,
std::string &  before,
std::string &  after 
)
inlinestatic

◆ feature_recorder_set() [1/2]

feature_recorder_set::feature_recorder_set ( const feature_recorder_set fs)
private

◆ feature_recorder_set() [2/2]

feature_recorder_set::feature_recorder_set ( uint32_t  flags_,
const hash_def hasher_,
const std::string &  input_fname_,
const std::string &  outdir_ 
)

create an emptry feature recorder set. If disabled, create a disabled recorder.

Definition at line 27 of file feature_recorder_set.cpp.

References feature_recorder_set::create_name(), feature_recorder_set::DISABLED_RECORDER_NAME, feature_recorder::FLAG_DISABLED, feature_recorder_set::frm, and feature_recorder_set::SET_DISABLED.

◆ flag_notset()

bool feature_recorder_set::flag_notset ( uint32_t  f) const
inline

◆ flag_set()

◆ flush_all()

void feature_recorder_set::flush_all ( )

Flush all of the feature recorder files. Typically done at the end of an sbuf.

Definition at line 71 of file feature_recorder_set.cpp.

References feature_recorder_set::frm.

Referenced by be13::plugin::process_sbuf().

◆ get_alert_recorder()

◆ get_feature_file_list()

void feature_recorder_set::get_feature_file_list ( std::vector< std::string > &  ret)
virtual

Definition at line 249 of file feature_recorder_set.cpp.

References feature_recorder_set::frm.

◆ get_flags()

uint32_t feature_recorder_set::get_flags ( ) const
inline

Definition at line 112 of file feature_recorder_set.h.

References feature_recorder_set::flags.

◆ get_input_fname()

std::string feature_recorder_set::get_input_fname ( ) const
inline

◆ get_name()

◆ get_outdir()

virtual const std::string& feature_recorder_set::get_outdir ( ) const
inlinevirtual

◆ get_stats()

void feature_recorder_set::get_stats ( void *  user,
stat_callback_t  stat_callback 
) const

Definition at line 171 of file feature_recorder_set.cpp.

References feature_recorder_set::scanner_stats.

◆ has_name()

bool feature_recorder_set::has_name ( std::string  name) const

Definition at line 89 of file feature_recorder_set.cpp.

References feature_recorder_set::frm, and name.

◆ hash_def()

feature_recorder_set::hash_def::hash_def ( std::string  name_,
std::string(*)(const uint8_t *buf, const size_t bufsize)  func_ 
)
inline

Definition at line 45 of file feature_recorder_set.h.

◆ heartbeat()

virtual void feature_recorder_set::heartbeat ( )
inlinevirtual

Definition at line 43 of file feature_recorder_set.h.

Referenced by be13::plugin::process_sbuf().

◆ HistogramMaker()

HistogramMaker::HistogramMaker ( uint32_t  flags_)
inline

Definition at line 118 of file histogram.h.

◆ histogramTally()

HistogramMaker::histogramTally::histogramTally ( )
inline

Definition at line 75 of file histogram.h.

◆ init()

void feature_recorder_set::init ( const feature_file_names_t feature_files)

Initialize a feature_recorder_set. Previously this was a constructor, but it turns out that virtual functions for the create_name_factory aren't honored in constructors.

init() is called after all of the scanners have been loaded. It tells each feature file about its histograms (among other things)

Initialize a properly functioning feature recorder set. If disabled, create a disabled feature_recorder that can respond to functions as requested.

Definition at line 47 of file feature_recorder_set.cpp.

References feature_recorder_set::ALERT_RECORDER_NAME, feature_recorder_set::create_name(), feature_recorder_set::CREATE_STOP_LIST_RECORDERS, feature_recorder_set::db_create(), feature_recorder_set::ENABLE_SQLITE3_RECORDERS, feature_recorder_set::flag_notset(), feature_recorder_set::flag_set(), feature_recorder_set::NO_ALERT, feature_recorder_set::NO_OUTDIR, and feature_recorder_set::outdir.

Referenced by main().

◆ looks_like_utf16()

bool HistogramMaker::looks_like_utf16 ( const std::string &  str,
bool &  little_endian 
)
static

Determine if a string probably has utf16.

Definition at line 57 of file histogram.cpp.

Referenced by HistogramMaker::add(), and HistogramMaker::convert_utf16_to_utf8().

◆ make_utf8()

std::string * HistogramMaker::make_utf8 ( const std::string &  key)
static

Definition at line 128 of file histogram.cpp.

References HistogramMaker::convert_utf16_to_utf8().

Referenced by feature_recorder::write().

◆ makeReport() [1/2]

HistogramMaker::FrequencyReportVector * HistogramMaker::makeReport ( ) const

makeReport() makes a report and returns a FrequencyReportVector.

Definition at line 28 of file histogram.cpp.

References HistogramMaker::ReportElement::compare(), and HistogramMaker::h.

Referenced by feature_recorder::dump_histogram_file(), and HistogramMaker::makeReport().

◆ makeReport() [2/2]

HistogramMaker::FrequencyReportVector * HistogramMaker::makeReport ( int  topN) const

Definition at line 39 of file histogram.cpp.

References HistogramMaker::makeReport().

◆ operator<<() [1/2]

std::ostream& operator<< ( std::ostream &  os,
const class context c 
)
inline

Definition at line 82 of file word_and_context_list.h.

References c.

◆ operator<<() [2/2]

◆ operator=()

feature_recorder_set& feature_recorder_set::operator= ( const feature_recorder_set fs)
private

◆ operator==()

bool operator== ( const class context a,
const class context b 
)
inline

Definition at line 87 of file word_and_context_list.h.

References context::after, context::before, and context::feature.

◆ readfile()

int word_and_context_list::readfile ( const std::string &  filename)

◆ ReportElement()

HistogramMaker::ReportElement::ReportElement ( std::string  aValue,
histogramTally  aTally 
)
inline

Definition at line 83 of file histogram.h.

◆ rstrcmp()

int word_and_context_list::rstrcmp ( const std::string &  a,
const std::string &  b 
)
inlinestatic

rstrcmp is like strcmp, except it compares std::strings right-aligned and only compares the minimum sized std::string of the two.

Definition at line 146 of file word_and_context_list.h.

Referenced by word_and_context_list::check().

◆ set_alert_list()

void feature_recorder_set::set_alert_list ( const word_and_context_list alist)
inline

Definition at line 91 of file feature_recorder_set.h.

References feature_recorder_set::alert_list.

◆ set_flag()

void feature_recorder_set::set_flag ( uint32_t  f)

◆ set_stop_list()

void feature_recorder_set::set_stop_list ( const word_and_context_list alist)
inline

Definition at line 90 of file feature_recorder_set.h.

References feature_recorder_set::stop_list.

◆ size()

size_t word_and_context_list::size ( )
inline

◆ unset_flag()

void feature_recorder_set::unset_flag ( uint32_t  f)

Definition at line 211 of file feature_recorder_set.cpp.

References feature_recorder_set::MEM_HISTOGRAM.

◆ word_and_context_list()

word_and_context_list::word_and_context_list ( )
inline

Definition at line 128 of file word_and_context_list.h.

◆ ~feature_recorder_set()

virtual feature_recorder_set::~feature_recorder_set ( )
inlinevirtual

◆ ~HistogramMaker()

virtual HistogramMaker::~HistogramMaker ( )
inlinevirtual

Definition at line 130 of file histogram.h.

◆ ~histogramTally()

virtual HistogramMaker::histogramTally::~histogramTally ( )
inlinevirtual

Definition at line 76 of file histogram.h.

◆ ~ReportElement()

virtual HistogramMaker::ReportElement::~ReportElement ( )
inlinevirtual

Definition at line 96 of file histogram.h.

◆ ~word_and_context_list()

word_and_context_list::~word_and_context_list ( )
inline

Definition at line 129 of file word_and_context_list.h.

References word_and_context_list::patterns.

Variable Documentation

◆ after

std::string context::after

◆ alert_list

const word_and_context_list* feature_recorder_set::alert_list

◆ ALERT_RECORDER_NAME

const std::string feature_recorder_set::ALERT_RECORDER_NAME = "alerts"
static

feature_recorder_set: Manage the set of feature recorders. Handles both file-based feature recorders and the SQLite3 feature recorder.

Definition at line 67 of file feature_recorder_set.h.

Referenced by feature_recorder_set::get_alert_recorder(), feature_recorder_set::get_name(), and feature_recorder_set::init().

◆ before

std::string context::before

◆ calls

uint64_t feature_recorder_set::pstats::calls

Definition at line 51 of file feature_recorder_set.h.

Referenced by feature_recorder_set::add_stats().

◆ context_set

stopset_t word_and_context_list::context_set
private

Definition at line 118 of file word_and_context_list.h.

Referenced by word_and_context_list::add_fc().

◆ count

uint32_t HistogramMaker::histogramTally::count

◆ count16

uint32_t HistogramMaker::histogramTally::count16

Definition at line 74 of file histogram.h.

Referenced by operator<<().

◆ CREATE_STOP_LIST_RECORDERS

const uint32_t feature_recorder_set::CREATE_STOP_LIST_RECORDERS = 0x04
static

Definition at line 75 of file feature_recorder_set.h.

Referenced by feature_recorder_set::init().

◆ db3

void* feature_recorder_set::db3

◆ debug_histogram_malloc_fail_frequency

uint32_t HistogramMaker::debug_histogram_malloc_fail_frequency = 0
static

Takes a string (the key) and adds it to the histogram. automatically determines if the key is UTF-16 and converts it to UTF8 if so.

Definition at line 66 of file histogram.h.

Referenced by HistogramMaker::add().

◆ DISABLE_FILE_RECORDERS

const uint32_t feature_recorder_set::DISABLE_FILE_RECORDERS = 0x80
static

◆ DISABLED_RECORDER_NAME

const std::string feature_recorder_set::DISABLED_RECORDER_NAME = "disabled"
static

◆ ENABLE_SQLITE3_RECORDERS

const uint32_t feature_recorder_set::ENABLE_SQLITE3_RECORDERS = 0x40
static

◆ fcmap

◆ feature

std::string context::feature

Definition at line 77 of file word_and_context_list.h.

Referenced by context::extract_before_after(), and operator==().

◆ FLAG_LOWERCASE

const int HistogramMaker::FLAG_LOWERCASE = 0x01
static

Definition at line 64 of file histogram.h.

Referenced by HistogramMaker::add().

◆ FLAG_NUMERIC

const int HistogramMaker::FLAG_NUMERIC = 0x02
static

Definition at line 65 of file histogram.h.

Referenced by HistogramMaker::add().

◆ flags [1/2]

uint32_t feature_recorder_set::flags
private

Definition at line 32 of file feature_recorder_set.h.

Referenced by feature_recorder_set::get_flags().

◆ flags [2/2]

uint32_t HistogramMaker::flags
private

Definition at line 104 of file histogram.h.

◆ frm

◆ func

std::string(* feature_recorder_set::hash_def::func) (const uint8_t *buf, const size_t bufsize)

Definition at line 47 of file feature_recorder_set.h.

Referenced by feature_recorder::carve().

◆ h

HistogramMap HistogramMaker::h
private

◆ hasher

const hash_def& feature_recorder_set::hasher

Definition at line 63 of file feature_recorder_set.h.

Referenced by feature_recorder::carve().

◆ histogram_defs

histogram_defs_t feature_recorder_set::histogram_defs
private

Definition at line 38 of file feature_recorder_set.h.

◆ in_transaction

bool feature_recorder_set::in_transaction
private

Definition at line 40 of file feature_recorder_set.h.

◆ input_fname

const std::string feature_recorder_set::input_fname
private

Definition at line 34 of file feature_recorder_set.h.

Referenced by feature_recorder_set::get_input_fname().

◆ MEM_HISTOGRAM

const uint32_t feature_recorder_set::MEM_HISTOGRAM = 0x20
static

◆ Min_transaction

cppmutex feature_recorder_set::Min_transaction
mutableprivate

Definition at line 39 of file feature_recorder_set.h.

◆ Mscanner_stats

cppmutex feature_recorder_set::Mscanner_stats
mutableprivate

◆ name

std::string feature_recorder_set::hash_def::name

Definition at line 46 of file feature_recorder_set.h.

Referenced by feature_recorder::carve().

◆ NO_ALERT

const uint32_t feature_recorder_set::NO_ALERT = 0x100
static

◆ NO_INPUT

const std::string feature_recorder_set::NO_INPUT = "<NO-INPUT>"
static

Definition at line 69 of file feature_recorder_set.h.

Referenced by be13::plugin::load_scanner().

◆ NO_OUTDIR

const std::string feature_recorder_set::NO_OUTDIR = "<NO-OUTDIR>"
static

◆ null_hasher

feature_recorder_set::hash_def feature_recorder_set::null_hasher
static

Definition at line 64 of file feature_recorder_set.h.

Referenced by be13::plugin::load_scanner().

◆ ONLY_ALERT

const uint32_t feature_recorder_set::ONLY_ALERT = 0x01
static

Definition at line 73 of file feature_recorder_set.h.

Referenced by feature_recorder_set::get_name().

◆ outdir

const std::string feature_recorder_set::outdir
private

◆ patterns

◆ range_0_9

uint32_t CharClass::range_0_9

Definition at line 26 of file histogram.h.

Referenced by CharClass::add().

◆ range_A_Fi

uint32_t CharClass::range_A_Fi

Definition at line 27 of file histogram.h.

Referenced by CharClass::add().

◆ range_g_z

uint32_t CharClass::range_g_z

Definition at line 28 of file histogram.h.

Referenced by CharClass::add().

◆ range_G_Z

uint32_t CharClass::range_G_Z

Definition at line 29 of file histogram.h.

Referenced by CharClass::add().

◆ scanner_stats

scanner_stats_map feature_recorder_set::scanner_stats

◆ seconds

double feature_recorder_set::pstats::seconds

Definition at line 50 of file feature_recorder_set.h.

Referenced by feature_recorder_set::add_stats().

◆ seen_set

atomic_set<std::string> feature_recorder_set::seen_set
private

◆ SET_DISABLED

const uint32_t feature_recorder_set::SET_DISABLED = 0x02
static

◆ stop_list

const word_and_context_list* feature_recorder_set::stop_list

◆ tally

histogramTally HistogramMaker::ReportElement::tally

◆ value

const std::string HistogramMaker::ReportElement::value