tcpflow  1.6.1
About: tcpflow is a TCP/IP packet demultiplexer that captures data transmitted as part of TCP connections (flows), and stores the data in a way that is convenient for protocol analysis and debugging.
  Fossies Dox: tcpflow-1.6.1.tar.gz  ("unofficial" and yet experimental doxygen-generated source code documentation)  



file  feature_recorder_set.h
file  histogram.h
file  word_and_context_list.h


class  feature_recorder_set
struct  feature_recorder_set::hash_def
struct  feature_recorder_set::pstats
class  CharClass
class  HistogramMaker
class  HistogramMaker::histogramTally
struct  HistogramMaker::ReportElement
class  context
class  word_and_context_list


typedef std::map< std::string, class feature_recorder * > feature_recorder_map
typedef std::set< std::string > feature_file_names_t
typedef std::map< std::string, struct pstatsfeature_recorder_set::scanner_stats_map
typedef void(* feature_recorder_set::xml_notifier_t) (const std::string &xmlstring)
typedef int(* feature_recorder_set::stat_callback_t) (void *user, const std::string &name, uint64_t calls, double seconds)
typedef std::map< std::string, histogramTallyHistogramMaker::HistogramMap
typedef std::vector< ReportElement * > HistogramMaker::FrequencyReportVector
typedef std::multimap< std::string, contextword_and_context_list::stopmap_t
typedef std::set< std::string > word_and_context_list::stopset_t


 feature_recorder_set::feature_recorder_set (const feature_recorder_set &fs)
feature_recorder_setfeature_recorder_set::operator= (const feature_recorder_set &fs)
virtual void feature_recorder_set::heartbeat ()
 feature_recorder_set::hash_def::hash_def (std::string name_, std::string(*func_)(const uint8_t *buf, const size_t bufsize))
 feature_recorder_set::feature_recorder_set (uint32_t flags_, const hash_def &hasher_, const std::string &input_fname_, const std::string &outdir_)
virtual feature_recorder_set::~feature_recorder_set ()
std::string feature_recorder_set::get_input_fname () const
virtual const std::string & feature_recorder_set::get_outdir () const
void feature_recorder_set::set_stop_list (const word_and_context_list *alist)
void feature_recorder_set::set_alert_list (const word_and_context_list *alist)
void feature_recorder_set::init (const feature_file_names_t &feature_files)
void feature_recorder_set::flush_all ()
void feature_recorder_set::close_all ()
bool feature_recorder_set::has_name (std::string name) const
void feature_recorder_set::set_flag (uint32_t f)
void feature_recorder_set::unset_flag (uint32_t f)
bool feature_recorder_set::flag_set (uint32_t f) const
bool feature_recorder_set::flag_notset (uint32_t f) const
uint32_t feature_recorder_set::get_flags () const
void feature_recorder_set::add_histogram (const histogram_def &def)
void feature_recorder_set::dump_histograms (void *user, feature_recorder::dump_callback_t cb, xml_notifier_t xml_error_notifier) const
virtual feature_recorderfeature_recorder_set::create_name_factory (const std::string &name_)
virtual void feature_recorder_set::create_name (const std::string &name, bool create_stop_also)
void feature_recorder_set::add_stats (const std::string &bucket, double seconds)
void feature_recorder_set::get_stats (void *user, stat_callback_t stat_callback) const
void feature_recorder_set::dump_name_count_stats (dfxml_writer &writer) const
virtual void feature_recorder_set::db_send_sql (void *db3, const char **stmts,...)
virtual void * feature_recorder_set::db_create_empty (const std::string &name)
void feature_recorder_set::db_create_table (const std::string &name)
void feature_recorder_set::db_create ()
void feature_recorder_set::db_transaction_begin ()
void feature_recorder_set::db_transaction_commit ()
void feature_recorder_set::db_close ()
virtual bool feature_recorder_set::check_previously_processed (const uint8_t *buf, size_t bufsize)
virtual feature_recorderfeature_recorder_set::get_name (const std::string &name) const
virtual feature_recorderfeature_recorder_set::get_alert_recorder () const
virtual void feature_recorder_set::get_feature_file_list (std::vector< std::string > &ret)
 CharClass::CharClass ()
void CharClass::add (uint8_t ch)
void CharClass::add (uint8_t *buf, size_t len)
 HistogramMaker::histogramTally::histogramTally ()
virtual HistogramMaker::histogramTally::~histogramTally ()
 HistogramMaker::ReportElement::ReportElement (std::string aValue, histogramTally aTally)
static bool HistogramMaker::ReportElement::compare_ref (const ReportElement &e1, const ReportElement &e2)
static bool HistogramMaker::ReportElement::compare (const ReportElement *e1, const ReportElement *e2)
virtual HistogramMaker::ReportElement::~ReportElement ()
static bool HistogramMaker::looks_like_utf16 (const std::string &str, bool &little_endian)
static std::string * HistogramMaker::convert_utf16_to_utf8 (const std::string &str)
static std::string * HistogramMaker::convert_utf16_to_utf8 (const std::string &str, bool little_endian)
static std::string * HistogramMaker::make_utf8 (const std::string &key)
 HistogramMaker::HistogramMaker (uint32_t flags_)
void HistogramMaker::clear ()
void HistogramMaker::add (const std::string &key)
FrequencyReportVectorHistogramMaker::makeReport () const
FrequencyReportVectorHistogramMaker::makeReport (int topN) const
virtual HistogramMaker::~HistogramMaker ()
std::ostream & operator<< (std::ostream &os, const HistogramMaker::FrequencyReportVector &rep)
static void context::extract_before_after (const std::string &feature, const std::string &ctx, std::string &before, std::string &after)
 context::context (const std::string &f)
 context::context (const std::string &f, const std::string &c)
 context::context (const std::string &f, const std::string &b, const std::string &a)
std::ostream & operator<< (std::ostream &os, const class context &c)
bool operator== (const class context &a, const class context &b)
static int word_and_context_list::rstrcmp (const std::string &a, const std::string &b)
 word_and_context_list::word_and_context_list ()
 word_and_context_list::~word_and_context_list ()
size_t word_and_context_list::size ()
void word_and_context_list::add_regex (const std::string &pat)
bool word_and_context_list::add_fc (const std::string &f, const std::string &c)
int word_and_context_list::readfile (const std::string &fname)
bool word_and_context_list::check (const std::string &probe, const std::string &before, const std::string &after) const
bool word_and_context_list::check_feature_context (const std::string &probe, const std::string &context) const
void word_and_context_list::dump ()


uint32_t feature_recorder_set::flags
atomic_set< std::string > feature_recorder_set::seen_set
const std::string feature_recorder_set::input_fname
const std::string feature_recorder_set::outdir
feature_recorder_map feature_recorder_set::frm
cppmutex feature_recorder_set::Mscanner_stats
histogram_defs_t feature_recorder_set::histogram_defs
cppmutex feature_recorder_set::Min_transaction
bool feature_recorder_set::in_transaction
void * feature_recorder_set::db3
std::string feature_recorder_set::hash_def::name
std::string(* feature_recorder_set::hash_def::func )(const uint8_t *buf, const size_t bufsize)
double feature_recorder_set::pstats::seconds
uint64_t feature_recorder_set::pstats::calls
const word_and_context_listfeature_recorder_set::alert_list
const word_and_context_listfeature_recorder_set::stop_list
scanner_stats_map feature_recorder_set::scanner_stats
const hash_deffeature_recorder_set::hasher
static hash_def feature_recorder_set::null_hasher
static const std::string feature_recorder_set::ALERT_RECORDER_NAME = "alerts"
static const std::string feature_recorder_set::DISABLED_RECORDER_NAME = "disabled"
static const std::string feature_recorder_set::NO_INPUT = "<NO-INPUT>"
static const std::string feature_recorder_set::NO_OUTDIR = "<NO-OUTDIR>"
static const uint32_t feature_recorder_set::ONLY_ALERT = 0x01
static const uint32_t feature_recorder_set::SET_DISABLED = 0x02
static const uint32_t feature_recorder_set::CREATE_STOP_LIST_RECORDERS = 0x04
static const uint32_t feature_recorder_set::MEM_HISTOGRAM = 0x20
static const uint32_t feature_recorder_set::ENABLE_SQLITE3_RECORDERS = 0x40
static const uint32_t feature_recorder_set::DISABLE_FILE_RECORDERS = 0x80
static const uint32_t feature_recorder_set::NO_ALERT = 0x100
uint32_t CharClass::range_0_9
uint32_t CharClass::range_A_Fi
uint32_t CharClass::range_g_z
uint32_t CharClass::range_G_Z
static const int HistogramMaker::FLAG_LOWERCASE = 0x01
static const int HistogramMaker::FLAG_NUMERIC = 0x02
static uint32_t HistogramMaker::debug_histogram_malloc_fail_frequency = 0
uint32_t HistogramMaker::histogramTally::count
uint32_t HistogramMaker::histogramTally::count16
const std::string HistogramMaker::ReportElement::value
histogramTally HistogramMaker::ReportElement::tally
HistogramMap HistogramMaker::h
uint32_t HistogramMaker::flags
std::string context::feature
std::string context::before
std::string context::after
stopmap_t word_and_context_list::fcmap
stopset_t word_and_context_list::context_set
beregex_vector word_and_context_list::patterns

Detailed Description

Typedef Documentation

◆ feature_file_names_t

typedef std::set<std::string> feature_file_names_t

Definition at line 27 of file feature_recorder_set.h.

◆ feature_recorder_map

typedef std::map<std::string,class feature_recorder *> feature_recorder_map

Definition at line 26 of file feature_recorder_set.h.

◆ FrequencyReportVector

A FrequencyReportVector is a vector of report elements when the report is generated.

Definition at line 124 of file histogram.h.

◆ HistogramMap

typedef std::map<std::string,histogramTally> HistogramMaker::HistogramMap

A HistogramMap holds the histogram while it is being computed.

Definition at line 102 of file histogram.h.

◆ scanner_stats_map

typedef std::map<std::string,struct pstats> feature_recorder_set::scanner_stats_map

Definition at line 57 of file feature_recorder_set.h.

◆ stat_callback_t

typedef int(* feature_recorder_set::stat_callback_t) (void *user, const std::string &name, uint64_t calls, double seconds)

Definition at line 121 of file feature_recorder_set.h.

◆ stopmap_t

typedef std::multimap<std::string,context> word_and_context_list::stopmap_t

Definition at line 104 of file word_and_context_list.h.

◆ stopset_t

typedef std::set< std::string > word_and_context_list::stopset_t

Definition at line 115 of file word_and_context_list.h.

◆ xml_notifier_t

typedef void(* feature_recorder_set::xml_notifier_t) (const std::string &xmlstring)

Definition at line 114 of file feature_recorder_set.h.

Function Documentation

◆ add() [1/3]

void HistogramMaker::add ( const std::string &  key)

"key" passed in is a const reference. But we might want to change it. So keyToAdd points to what will be added. If we need to change key, we allocate more memory, and make keyToAdd point to the memory that was allocated. This way we only make a copy if we need to make a copy.

Definition at line 142 of file histogram.cpp.

References HistogramMaker::convert_utf16_to_utf8(), HistogramMaker::debug_histogram_malloc_fail_frequency, HistogramMaker::FLAG_LOWERCASE, HistogramMaker::FLAG_NUMERIC, HistogramMaker::h, HistogramMaker::looks_like_utf16(), utf8::utf16to8(), and utf8::utf8to16().

Referenced by feature_recorder::dump_histogram_file().

◆ add() [2/3]

void CharClass::add ( uint8_t buf,
size_t  len 

Definition at line 39 of file histogram.h.

References CharClass::add().

◆ add() [3/3]

void CharClass::add ( uint8_t  ch)

◆ add_fc()

bool word_and_context_list::add_fc ( const std::string &  f,
const std::string &  c 

Insert a feature and context, but only if not already present. Returns true if added.

Definition at line 21 of file word_and_context_list.cpp.

References c, word_and_context_list::context_set, and word_and_context_list::fcmap.

Referenced by word_and_context_list::readfile().

◆ add_histogram()

void feature_recorder_set::add_histogram ( const histogram_def def)

PHASE HISTOGRAM (formerly phase 3): Create the histograms We now have three kinds of histograms: 1 - Traditional post-processing histograms specified by the histogram library 1a - feature-file based traditional ones 1b - SQL-based traditional ones. 2 - In-memory histograms (used primarily by beapi)

Definition at line 233 of file feature_recorder_set.cpp.

References feature_recorder::add_histogram(), histogram_def::feature, and feature_recorder_set::get_name().

Referenced by be13::plugin::add_enabled_scanner_histograms_to_feature_recorder_set().

◆ add_regex()

void word_and_context_list::add_regex ( const std::string &  pat)

class word_and_context_list reads from disk and maintains in memory a data structure that is used for the stop list and alert list.

Definition at line 12 of file word_and_context_list.cpp.

References word_and_context_list::patterns.

◆ add_stats()

void feature_recorder_set::add_stats ( const std::string &  bucket,
double  seconds 

◆ CharClass()

CharClass::CharClass ( )

Definition at line 30 of file histogram.h.

◆ check()

bool word_and_context_list::check ( const std::string &  probe,
const std::string &  before,
const std::string &  after 
) const

◆ check_feature_context()

bool word_and_context_list::check_feature_context ( const std::string &  probe,
const std::string &  context 
) const

◆ check_previously_processed()

bool feature_recorder_set::check_previously_processed ( const uint8_t buf,
size_t  bufsize 

◆ clear()

void HistogramMaker::clear ( )

Definition at line 119 of file histogram.h.

References HistogramMaker::h.

◆ close_all()

◆ compare()

static bool HistogramMaker::ReportElement::compare ( const ReportElement e1,
const ReportElement e2 

◆ compare_ref()

static bool HistogramMaker::ReportElement::compare_ref ( const ReportElement e1,
const ReportElement e2 

◆ context() [1/3]

context::context ( const std::string &  f)

Definition at line 72 of file word_and_context_list.h.

◆ context() [2/3]

context::context ( const std::string &  f,
const std::string &  b,
const std::string &  a 

Definition at line 76 of file word_and_context_list.h.

◆ context() [3/3]

context::context ( const std::string &  f,
const std::string &  c 

◆ convert_utf16_to_utf8() [1/2]

std::string * HistogramMaker::convert_utf16_to_utf8 ( const std::string &  str)

◆ convert_utf16_to_utf8() [2/2]

std::string * HistogramMaker::convert_utf16_to_utf8 ( const std::string &  key,
bool  little_endian 

Converts a utf16 with a byte order to utf8, returning an ALLOCATED STRING if conversion is successful, and returning 0 if it is not.

Definition at line 90 of file histogram.cpp.

References utf8::utf16to8().

◆ create_name()

void feature_recorder_set::create_name ( const std::string &  name,
bool  create_stop_also 

◆ create_name_factory()

feature_recorder * feature_recorder_set::create_name_factory ( const std::string &  name_)

Definition at line 115 of file feature_recorder_set.cpp.

Referenced by feature_recorder_set::create_name().

◆ db_close()

void feature_recorder_set::db_close ( )

◆ db_create()

void feature_recorder_set::db_create ( )

Definition at line 174 of file feature_recorder_sql.cpp.

References feature_recorder::debug.

Referenced by feature_recorder_set::init().

◆ db_create_empty()

void * feature_recorder_set::db_create_empty ( const std::string &  name)

◆ db_create_table()

void feature_recorder_set::db_create_table ( const std::string &  name)

Definition at line 145 of file feature_recorder_sql.cpp.

References feature_recorder::name.

Referenced by feature_recorder::open().

◆ db_send_sql()

void feature_recorder_set::db_send_sql ( void *  db3,
const char **  stmts,

SQLite3 interface

Definition at line 123 of file feature_recorder_sql.cpp.

References feature_recorder::debug.

Referenced by feature_recorder::dump_histogram_db().

◆ db_transaction_begin()

void feature_recorder_set::db_transaction_begin ( )

Definition at line 198 of file feature_recorder_sql.cpp.

References begin_transaction.

◆ db_transaction_commit()

void feature_recorder_set::db_transaction_commit ( )

Definition at line 207 of file feature_recorder_sql.cpp.

References commit_transaction.

Referenced by feature_recorder_set::close_all().

◆ dump()

void word_and_context_list::dump ( )

◆ dump_histograms()

void feature_recorder_set::dump_histograms ( void *  user,
feature_recorder::dump_callback_t  cb,
feature_recorder_set::xml_notifier_t  xml_error_notifier 
) const

◆ dump_name_count_stats()

void feature_recorder_set::dump_name_count_stats ( dfxml_writer &  writer) const

◆ extract_before_after()

static void context::extract_before_after ( const std::string &  feature,
const std::string &  ctx,
std::string &  before,
std::string &  after 

◆ feature_recorder_set() [1/2]

feature_recorder_set::feature_recorder_set ( const feature_recorder_set fs)

◆ feature_recorder_set() [2/2]

feature_recorder_set::feature_recorder_set ( uint32_t  flags_,
const hash_def hasher_,
const std::string &  input_fname_,
const std::string &  outdir_ 

create an emptry feature recorder set. If disabled, create a disabled recorder.

Definition at line 27 of file feature_recorder_set.cpp.

References feature_recorder_set::create_name(), feature_recorder_set::DISABLED_RECORDER_NAME, feature_recorder::FLAG_DISABLED, feature_recorder_set::frm, and feature_recorder_set::SET_DISABLED.

◆ flag_notset()

bool feature_recorder_set::flag_notset ( uint32_t  f) const

◆ flag_set()

◆ flush_all()

void feature_recorder_set::flush_all ( )

Flush all of the feature recorder files. Typically done at the end of an sbuf.

Definition at line 71 of file feature_recorder_set.cpp.

References feature_recorder_set::frm.

Referenced by be13::plugin::process_sbuf().

◆ get_alert_recorder()

◆ get_feature_file_list()

void feature_recorder_set::get_feature_file_list ( std::vector< std::string > &  ret)

Definition at line 249 of file feature_recorder_set.cpp.

References feature_recorder_set::frm.

◆ get_flags()

uint32_t feature_recorder_set::get_flags ( ) const

Definition at line 112 of file feature_recorder_set.h.

References feature_recorder_set::flags.

◆ get_input_fname()

std::string feature_recorder_set::get_input_fname ( ) const

◆ get_name()

◆ get_outdir()

virtual const std::string& feature_recorder_set::get_outdir ( ) const

◆ get_stats()

void feature_recorder_set::get_stats ( void *  user,
stat_callback_t  stat_callback 
) const

Definition at line 171 of file feature_recorder_set.cpp.

References feature_recorder_set::scanner_stats.

◆ has_name()

bool feature_recorder_set::has_name ( std::string  name) const

Definition at line 89 of file feature_recorder_set.cpp.

References feature_recorder_set::frm, and name.

◆ hash_def()

feature_recorder_set::hash_def::hash_def ( std::string  name_,
std::string(*)(const uint8_t *buf, const size_t bufsize)  func_ 

Definition at line 45 of file feature_recorder_set.h.

◆ heartbeat()

virtual void feature_recorder_set::heartbeat ( )

Definition at line 43 of file feature_recorder_set.h.

Referenced by be13::plugin::process_sbuf().

◆ HistogramMaker()

HistogramMaker::HistogramMaker ( uint32_t  flags_)

Definition at line 118 of file histogram.h.

◆ histogramTally()

HistogramMaker::histogramTally::histogramTally ( )

Definition at line 75 of file histogram.h.

◆ init()

void feature_recorder_set::init ( const feature_file_names_t feature_files)

Initialize a feature_recorder_set. Previously this was a constructor, but it turns out that virtual functions for the create_name_factory aren't honored in constructors.

init() is called after all of the scanners have been loaded. It tells each feature file about its histograms (among other things)

Initialize a properly functioning feature recorder set. If disabled, create a disabled feature_recorder that can respond to functions as requested.

Definition at line 47 of file feature_recorder_set.cpp.

References feature_recorder_set::ALERT_RECORDER_NAME, feature_recorder_set::create_name(), feature_recorder_set::CREATE_STOP_LIST_RECORDERS, feature_recorder_set::db_create(), feature_recorder_set::ENABLE_SQLITE3_RECORDERS, feature_recorder_set::flag_notset(), feature_recorder_set::flag_set(), feature_recorder_set::NO_ALERT, feature_recorder_set::NO_OUTDIR, and feature_recorder_set::outdir.

Referenced by main().

◆ looks_like_utf16()

bool HistogramMaker::looks_like_utf16 ( const std::string &  str,
bool &  little_endian 

Determine if a string probably has utf16.

Definition at line 57 of file histogram.cpp.

Referenced by HistogramMaker::add(), and HistogramMaker::convert_utf16_to_utf8().

◆ make_utf8()

std::string * HistogramMaker::make_utf8 ( const std::string &  key)

Definition at line 128 of file histogram.cpp.

References HistogramMaker::convert_utf16_to_utf8().

Referenced by feature_recorder::write().

◆ makeReport() [1/2]

HistogramMaker::FrequencyReportVector * HistogramMaker::makeReport ( ) const

makeReport() makes a report and returns a FrequencyReportVector.

Definition at line 28 of file histogram.cpp.

References HistogramMaker::ReportElement::compare(), and HistogramMaker::h.

Referenced by feature_recorder::dump_histogram_file(), and HistogramMaker::makeReport().

◆ makeReport() [2/2]

HistogramMaker::FrequencyReportVector * HistogramMaker::makeReport ( int  topN) const

Definition at line 39 of file histogram.cpp.

References HistogramMaker::makeReport().

◆ operator<<() [1/2]

std::ostream& operator<< ( std::ostream &  os,
const class context c 

Definition at line 82 of file word_and_context_list.h.

References c.

◆ operator<<() [2/2]

◆ operator=()

feature_recorder_set& feature_recorder_set::operator= ( const feature_recorder_set fs)

◆ operator==()

bool operator== ( const class context a,
const class context b 

Definition at line 87 of file word_and_context_list.h.

References context::after, context::before, and context::feature.

◆ readfile()

int word_and_context_list::readfile ( const std::string &  filename)

◆ ReportElement()

HistogramMaker::ReportElement::ReportElement ( std::string  aValue,
histogramTally  aTally 

Definition at line 83 of file histogram.h.

◆ rstrcmp()

int word_and_context_list::rstrcmp ( const std::string &  a,
const std::string &  b 

rstrcmp is like strcmp, except it compares std::strings right-aligned and only compares the minimum sized std::string of the two.

Definition at line 146 of file word_and_context_list.h.

Referenced by word_and_context_list::check().

◆ set_alert_list()

void feature_recorder_set::set_alert_list ( const word_and_context_list alist)

Definition at line 91 of file feature_recorder_set.h.

References feature_recorder_set::alert_list.

◆ set_flag()

void feature_recorder_set::set_flag ( uint32_t  f)

◆ set_stop_list()

void feature_recorder_set::set_stop_list ( const word_and_context_list alist)

Definition at line 90 of file feature_recorder_set.h.

References feature_recorder_set::stop_list.

◆ size()

size_t word_and_context_list::size ( )

◆ unset_flag()

void feature_recorder_set::unset_flag ( uint32_t  f)

Definition at line 211 of file feature_recorder_set.cpp.

References feature_recorder_set::MEM_HISTOGRAM.

◆ word_and_context_list()

word_and_context_list::word_and_context_list ( )

Definition at line 128 of file word_and_context_list.h.

◆ ~feature_recorder_set()

virtual feature_recorder_set::~feature_recorder_set ( )

◆ ~HistogramMaker()

virtual HistogramMaker::~HistogramMaker ( )

Definition at line 130 of file histogram.h.

◆ ~histogramTally()

virtual HistogramMaker::histogramTally::~histogramTally ( )

Definition at line 76 of file histogram.h.

◆ ~ReportElement()

virtual HistogramMaker::ReportElement::~ReportElement ( )

Definition at line 96 of file histogram.h.

◆ ~word_and_context_list()

word_and_context_list::~word_and_context_list ( )

Definition at line 129 of file word_and_context_list.h.

References word_and_context_list::patterns.

Variable Documentation

◆ after

std::string context::after

◆ alert_list

const word_and_context_list* feature_recorder_set::alert_list


const std::string feature_recorder_set::ALERT_RECORDER_NAME = "alerts"

feature_recorder_set: Manage the set of feature recorders. Handles both file-based feature recorders and the SQLite3 feature recorder.

Definition at line 67 of file feature_recorder_set.h.

Referenced by feature_recorder_set::get_alert_recorder(), feature_recorder_set::get_name(), and feature_recorder_set::init().

◆ before

std::string context::before

◆ calls

uint64_t feature_recorder_set::pstats::calls

Definition at line 51 of file feature_recorder_set.h.

Referenced by feature_recorder_set::add_stats().

◆ context_set

stopset_t word_and_context_list::context_set

Definition at line 118 of file word_and_context_list.h.

Referenced by word_and_context_list::add_fc().

◆ count

uint32_t HistogramMaker::histogramTally::count

◆ count16

uint32_t HistogramMaker::histogramTally::count16

Definition at line 74 of file histogram.h.

Referenced by operator<<().


const uint32_t feature_recorder_set::CREATE_STOP_LIST_RECORDERS = 0x04

Definition at line 75 of file feature_recorder_set.h.

Referenced by feature_recorder_set::init().

◆ db3

void* feature_recorder_set::db3

◆ debug_histogram_malloc_fail_frequency

uint32_t HistogramMaker::debug_histogram_malloc_fail_frequency = 0

Takes a string (the key) and adds it to the histogram. automatically determines if the key is UTF-16 and converts it to UTF8 if so.

Definition at line 66 of file histogram.h.

Referenced by HistogramMaker::add().


const uint32_t feature_recorder_set::DISABLE_FILE_RECORDERS = 0x80


const std::string feature_recorder_set::DISABLED_RECORDER_NAME = "disabled"


const uint32_t feature_recorder_set::ENABLE_SQLITE3_RECORDERS = 0x40

◆ fcmap

◆ feature

std::string context::feature

Definition at line 77 of file word_and_context_list.h.

Referenced by context::extract_before_after(), and operator==().


const int HistogramMaker::FLAG_LOWERCASE = 0x01

Definition at line 64 of file histogram.h.

Referenced by HistogramMaker::add().


const int HistogramMaker::FLAG_NUMERIC = 0x02

Definition at line 65 of file histogram.h.

Referenced by HistogramMaker::add().

◆ flags [1/2]

uint32_t feature_recorder_set::flags

Definition at line 32 of file feature_recorder_set.h.

Referenced by feature_recorder_set::get_flags().

◆ flags [2/2]

uint32_t HistogramMaker::flags

Definition at line 104 of file histogram.h.

◆ frm

◆ func

std::string(* feature_recorder_set::hash_def::func) (const uint8_t *buf, const size_t bufsize)

Definition at line 47 of file feature_recorder_set.h.

Referenced by feature_recorder::carve().

◆ h

HistogramMap HistogramMaker::h

◆ hasher

const hash_def& feature_recorder_set::hasher

Definition at line 63 of file feature_recorder_set.h.

Referenced by feature_recorder::carve().

◆ histogram_defs

histogram_defs_t feature_recorder_set::histogram_defs

Definition at line 38 of file feature_recorder_set.h.

◆ in_transaction

bool feature_recorder_set::in_transaction

Definition at line 40 of file feature_recorder_set.h.

◆ input_fname

const std::string feature_recorder_set::input_fname

Definition at line 34 of file feature_recorder_set.h.

Referenced by feature_recorder_set::get_input_fname().


const uint32_t feature_recorder_set::MEM_HISTOGRAM = 0x20

◆ Min_transaction

cppmutex feature_recorder_set::Min_transaction

Definition at line 39 of file feature_recorder_set.h.

◆ Mscanner_stats

cppmutex feature_recorder_set::Mscanner_stats

◆ name

std::string feature_recorder_set::hash_def::name

Definition at line 46 of file feature_recorder_set.h.

Referenced by feature_recorder::carve().


const uint32_t feature_recorder_set::NO_ALERT = 0x100


const std::string feature_recorder_set::NO_INPUT = "<NO-INPUT>"

Definition at line 69 of file feature_recorder_set.h.

Referenced by be13::plugin::load_scanner().


const std::string feature_recorder_set::NO_OUTDIR = "<NO-OUTDIR>"

◆ null_hasher

feature_recorder_set::hash_def feature_recorder_set::null_hasher

Definition at line 64 of file feature_recorder_set.h.

Referenced by be13::plugin::load_scanner().


const uint32_t feature_recorder_set::ONLY_ALERT = 0x01

Definition at line 73 of file feature_recorder_set.h.

Referenced by feature_recorder_set::get_name().

◆ outdir

const std::string feature_recorder_set::outdir

◆ patterns

◆ range_0_9

uint32_t CharClass::range_0_9

Definition at line 26 of file histogram.h.

Referenced by CharClass::add().

◆ range_A_Fi

uint32_t CharClass::range_A_Fi

Definition at line 27 of file histogram.h.

Referenced by CharClass::add().

◆ range_g_z

uint32_t CharClass::range_g_z

Definition at line 28 of file histogram.h.

Referenced by CharClass::add().

◆ range_G_Z

uint32_t CharClass::range_G_Z

Definition at line 29 of file histogram.h.

Referenced by CharClass::add().

◆ scanner_stats

scanner_stats_map feature_recorder_set::scanner_stats

◆ seconds

double feature_recorder_set::pstats::seconds

Definition at line 50 of file feature_recorder_set.h.

Referenced by feature_recorder_set::add_stats().

◆ seen_set

atomic_set<std::string> feature_recorder_set::seen_set


const uint32_t feature_recorder_set::SET_DISABLED = 0x02

◆ stop_list

const word_and_context_list* feature_recorder_set::stop_list

◆ tally

histogramTally HistogramMaker::ReportElement::tally

◆ value

const std::string HistogramMaker::ReportElement::value