2010-08-14 14:30:41 +02:00
|
|
|
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
|
|
|
|
<html xmlns="http://www.w3.org/1999/xhtml">
|
|
|
|
<head>
|
|
|
|
<meta http-equiv="Content-Type" content="text/xhtml;charset=UTF-8"/>
|
|
|
|
<title>Snort AI preprocessor module: pkt_info Struct Reference</title>
|
|
|
|
<link href="tabs.css" rel="stylesheet" type="text/css"/>
|
|
|
|
<link href="search/search.css" rel="stylesheet" type="text/css"/>
|
|
|
|
<script type="text/javaScript" src="search/search.js"></script>
|
|
|
|
<link href="doxygen.css" rel="stylesheet" type="text/css"/>
|
|
|
|
</head>
|
|
|
|
<body onload='searchBox.OnSelectItem(0);'>
|
|
|
|
<!-- Generated by Doxygen 1.7.1 -->
|
|
|
|
<script type="text/javascript"><!--
|
|
|
|
var searchBox = new SearchBox("searchBox", "search",false,'Search');
|
|
|
|
--></script>
|
|
|
|
<div class="navigation" id="top">
|
|
|
|
<div class="tabs">
|
|
|
|
<ul class="tablist">
|
|
|
|
<li><a href="index.html"><span>Main Page</span></a></li>
|
|
|
|
<li><a href="modules.html"><span>Modules</span></a></li>
|
|
|
|
<li class="current"><a href="annotated.html"><span>Data Structures</span></a></li>
|
|
|
|
<li><a href="files.html"><span>Files</span></a></li>
|
|
|
|
<li id="searchli">
|
|
|
|
<div id="MSearchBox" class="MSearchBoxInactive">
|
|
|
|
<span class="left">
|
|
|
|
<img id="MSearchSelect" src="search/mag_sel.png"
|
|
|
|
onmouseover="return searchBox.OnSearchSelectShow()"
|
|
|
|
onmouseout="return searchBox.OnSearchSelectHide()"
|
|
|
|
alt=""/>
|
|
|
|
<input type="text" id="MSearchField" value="Search" accesskey="S"
|
|
|
|
onfocus="searchBox.OnSearchFieldFocus(true)"
|
|
|
|
onblur="searchBox.OnSearchFieldFocus(false)"
|
|
|
|
onkeyup="searchBox.OnSearchFieldChange(event)"/>
|
|
|
|
</span><span class="right">
|
|
|
|
<a id="MSearchClose" href="javascript:searchBox.CloseResultsWindow()"><img id="MSearchCloseImg" border="0" src="search/close.png" alt=""/></a>
|
|
|
|
</span>
|
|
|
|
</div>
|
|
|
|
</li>
|
|
|
|
</ul>
|
|
|
|
</div>
|
|
|
|
<div class="tabs2">
|
|
|
|
<ul class="tablist">
|
|
|
|
<li><a href="annotated.html"><span>Data Structures</span></a></li>
|
|
|
|
<li><a href="classes.html"><span>Data Structure Index</span></a></li>
|
|
|
|
<li><a href="functions.html"><span>Data Fields</span></a></li>
|
|
|
|
</ul>
|
|
|
|
</div>
|
|
|
|
</div>
|
|
|
|
<div class="header">
|
|
|
|
<div class="summary">
|
|
|
|
<a href="#pub-attribs">Data Fields</a> </div>
|
|
|
|
<div class="headertitle">
|
|
|
|
<h1>pkt_info Struct Reference</h1> </div>
|
|
|
|
</div>
|
|
|
|
<div class="contents">
|
2010-08-16 22:09:34 +02:00
|
|
|
<!-- doxytag: class="pkt_info" -->
|
|
|
|
<p><code>#include <<a class="el" href="spp__ai_8h_source.html">spp_ai.h</a>></code></p>
|
|
|
|
<table class="memberdecls">
|
2010-08-14 14:30:41 +02:00
|
|
|
<tr><td colspan="2"><h2><a name="pub-attribs"></a>
|
|
|
|
Data Fields</h2></td></tr>
|
|
|
|
<tr><td class="memItemLeft" align="right" valign="top">struct <a class="el" href="structpkt__key.html">pkt_key</a> </td><td class="memItemRight" valign="bottom"><a class="el" href="structpkt__info.html#a231d4734d3c62292b06eb9ea4b49c339">key</a></td></tr>
|
|
|
|
<tr><td class="memItemLeft" align="right" valign="top">time_t </td><td class="memItemRight" valign="bottom"><a class="el" href="structpkt__info.html#a7f5090443f21e6290f0439f1bb872e92">timestamp</a></td></tr>
|
|
|
|
<tr><td class="memItemLeft" align="right" valign="top">SFSnortPacket * </td><td class="memItemRight" valign="bottom"><a class="el" href="structpkt__info.html#a8d5ebd04a32067b05387e5c5056fe168">pkt</a></td></tr>
|
|
|
|
<tr><td class="memItemLeft" align="right" valign="top">struct <a class="el" href="structpkt__info.html">pkt_info</a> * </td><td class="memItemRight" valign="bottom"><a class="el" href="structpkt__info.html#a5ee3c51f2ca5768b94819182641ef168">next</a></td></tr>
|
2010-08-16 22:09:34 +02:00
|
|
|
<tr><td class="memItemLeft" align="right" valign="top"><a class="el" href="spp__ai_8h.html#a3e5b8192e7d9ffaf3542f1210aec18dd">BOOL</a> </td><td class="memItemRight" valign="bottom"><a class="el" href="structpkt__info.html#ac7ff78ea5faf333fc91f92e3085ea7c9">observed</a></td></tr>
|
2010-08-14 14:30:41 +02:00
|
|
|
<tr><td class="memItemLeft" align="right" valign="top">UT_hash_handle </td><td class="memItemRight" valign="bottom"><a class="el" href="structpkt__info.html#a264e90d4b5d490de040f38c1072e142f">hh</a></td></tr>
|
|
|
|
</table>
|
2010-09-04 21:33:53 +02:00
|
|
|
<hr/><a name="_details"></a><h2>Detailed Description</h2>
|
|
|
|
<p>Identifier of a packet in a stream </p>
|
2010-08-14 14:30:41 +02:00
|
|
|
<hr/><h2>Field Documentation</h2>
|
|
|
|
<a class="anchor" id="a264e90d4b5d490de040f38c1072e142f"></a><!-- doxytag: member="pkt_info::hh" ref="a264e90d4b5d490de040f38c1072e142f" args="" -->
|
|
|
|
<div class="memitem">
|
|
|
|
<div class="memproto">
|
|
|
|
<table class="memname">
|
|
|
|
<tr>
|
|
|
|
<td class="memname">UT_hash_handle <a class="el" href="structpkt__info.html#a264e90d4b5d490de040f38c1072e142f">pkt_info::hh</a></td>
|
|
|
|
</tr>
|
|
|
|
</table>
|
|
|
|
</div>
|
|
|
|
<div class="memdoc">
|
2010-09-04 21:33:53 +02:00
|
|
|
<p>Make the struct 'hashable' </p>
|
2010-08-14 14:30:41 +02:00
|
|
|
|
|
|
|
</div>
|
|
|
|
</div>
|
|
|
|
<a class="anchor" id="a231d4734d3c62292b06eb9ea4b49c339"></a><!-- doxytag: member="pkt_info::key" ref="a231d4734d3c62292b06eb9ea4b49c339" args="" -->
|
|
|
|
<div class="memitem">
|
|
|
|
<div class="memproto">
|
|
|
|
<table class="memname">
|
|
|
|
<tr>
|
|
|
|
<td class="memname">struct <a class="el" href="structpkt__key.html">pkt_key</a> <a class="el" href="structpkt__info.html#a231d4734d3c62292b06eb9ea4b49c339">pkt_info::key</a></td>
|
|
|
|
</tr>
|
|
|
|
</table>
|
|
|
|
</div>
|
|
|
|
<div class="memdoc">
|
2010-09-04 21:33:53 +02:00
|
|
|
<p>Key of the packet (src_ip, dst_port) </p>
|
2010-08-14 14:30:41 +02:00
|
|
|
|
|
|
|
</div>
|
|
|
|
</div>
|
|
|
|
<a class="anchor" id="a5ee3c51f2ca5768b94819182641ef168"></a><!-- doxytag: member="pkt_info::next" ref="a5ee3c51f2ca5768b94819182641ef168" args="" -->
|
|
|
|
<div class="memitem">
|
|
|
|
<div class="memproto">
|
|
|
|
<table class="memname">
|
|
|
|
<tr>
|
|
|
|
<td class="memname">struct <a class="el" href="structpkt__info.html">pkt_info</a>* <a class="el" href="structpkt__info.html#a5ee3c51f2ca5768b94819182641ef168">pkt_info::next</a></td>
|
|
|
|
</tr>
|
|
|
|
</table>
|
|
|
|
</div>
|
|
|
|
<div class="memdoc">
|
2010-09-04 21:33:53 +02:00
|
|
|
<p>Pointer to the next packet in the stream </p>
|
2010-08-14 14:30:41 +02:00
|
|
|
|
2010-08-16 22:09:34 +02:00
|
|
|
</div>
|
|
|
|
</div>
|
|
|
|
<a class="anchor" id="ac7ff78ea5faf333fc91f92e3085ea7c9"></a><!-- doxytag: member="pkt_info::observed" ref="ac7ff78ea5faf333fc91f92e3085ea7c9" args="" -->
|
|
|
|
<div class="memitem">
|
|
|
|
<div class="memproto">
|
|
|
|
<table class="memname">
|
|
|
|
<tr>
|
|
|
|
<td class="memname"><a class="el" href="spp__ai_8h.html#a3e5b8192e7d9ffaf3542f1210aec18dd">BOOL</a> <a class="el" href="structpkt__info.html#ac7ff78ea5faf333fc91f92e3085ea7c9">pkt_info::observed</a></td>
|
|
|
|
</tr>
|
|
|
|
</table>
|
|
|
|
</div>
|
|
|
|
<div class="memdoc">
|
2010-09-04 21:33:53 +02:00
|
|
|
<p>Flag set if the packet is observed, i.e. associated to a security alert </p>
|
2010-08-16 22:09:34 +02:00
|
|
|
|
2010-08-14 14:30:41 +02:00
|
|
|
</div>
|
|
|
|
</div>
|
|
|
|
<a class="anchor" id="a8d5ebd04a32067b05387e5c5056fe168"></a><!-- doxytag: member="pkt_info::pkt" ref="a8d5ebd04a32067b05387e5c5056fe168" args="" -->
|
|
|
|
<div class="memitem">
|
|
|
|
<div class="memproto">
|
|
|
|
<table class="memname">
|
|
|
|
<tr>
|
|
|
|
<td class="memname">SFSnortPacket* <a class="el" href="structpkt__info.html#a8d5ebd04a32067b05387e5c5056fe168">pkt_info::pkt</a></td>
|
|
|
|
</tr>
|
|
|
|
</table>
|
|
|
|
</div>
|
|
|
|
<div class="memdoc">
|
2010-09-04 21:33:53 +02:00
|
|
|
<p>Reference to SFSnortPacket containing packet's information </p>
|
2010-08-14 14:30:41 +02:00
|
|
|
|
|
|
|
</div>
|
|
|
|
</div>
|
|
|
|
<a class="anchor" id="a7f5090443f21e6290f0439f1bb872e92"></a><!-- doxytag: member="pkt_info::timestamp" ref="a7f5090443f21e6290f0439f1bb872e92" args="" -->
|
|
|
|
<div class="memitem">
|
|
|
|
<div class="memproto">
|
|
|
|
<table class="memname">
|
|
|
|
<tr>
|
|
|
|
<td class="memname">time_t <a class="el" href="structpkt__info.html#a7f5090443f21e6290f0439f1bb872e92">pkt_info::timestamp</a></td>
|
|
|
|
</tr>
|
|
|
|
</table>
|
|
|
|
</div>
|
|
|
|
<div class="memdoc">
|
2010-09-04 21:33:53 +02:00
|
|
|
<p>Timestamp </p>
|
2010-08-14 14:30:41 +02:00
|
|
|
|
|
|
|
</div>
|
|
|
|
</div>
|
|
|
|
<hr/>The documentation for this struct was generated from the following file:<ul>
|
2010-08-16 22:09:34 +02:00
|
|
|
<li><a class="el" href="spp__ai_8h_source.html">spp_ai.h</a></li>
|
2010-08-14 14:30:41 +02:00
|
|
|
</ul>
|
|
|
|
</div>
|
|
|
|
<!--- window showing the filter options -->
|
|
|
|
<div id="MSearchSelectWindow"
|
|
|
|
onmouseover="return searchBox.OnSearchSelectShow()"
|
|
|
|
onmouseout="return searchBox.OnSearchSelectHide()"
|
|
|
|
onkeydown="return searchBox.OnSearchSelectKey(event)">
|
|
|
|
<a class="SelectItem" href="javascript:void(0)" onclick="searchBox.OnSelectItem(0)"><span class="SelectionMark"> </span>All</a><a class="SelectItem" href="javascript:void(0)" onclick="searchBox.OnSelectItem(1)"><span class="SelectionMark"> </span>Data Structures</a><a class="SelectItem" href="javascript:void(0)" onclick="searchBox.OnSelectItem(2)"><span class="SelectionMark"> </span>Files</a><a class="SelectItem" href="javascript:void(0)" onclick="searchBox.OnSelectItem(3)"><span class="SelectionMark"> </span>Functions</a><a class="SelectItem" href="javascript:void(0)" onclick="searchBox.OnSelectItem(4)"><span class="SelectionMark"> </span>Variables</a><a class="SelectItem" href="javascript:void(0)" onclick="searchBox.OnSelectItem(5)"><span class="SelectionMark"> </span>Typedefs</a><a class="SelectItem" href="javascript:void(0)" onclick="searchBox.OnSelectItem(6)"><span class="SelectionMark"> </span>Enumerations</a><a class="SelectItem" href="javascript:void(0)" onclick="searchBox.OnSelectItem(7)"><span class="SelectionMark"> </span>Enumerator</a><a class="SelectItem" href="javascript:void(0)" onclick="searchBox.OnSelectItem(8)"><span class="SelectionMark"> </span>Defines</a></div>
|
|
|
|
|
|
|
|
<!-- iframe showing the search results (closed by default) -->
|
|
|
|
<div id="MSearchResultsWindow">
|
|
|
|
<iframe src="" frameborder="0"
|
|
|
|
name="MSearchResults" id="MSearchResults">
|
|
|
|
</iframe>
|
|
|
|
</div>
|
|
|
|
|
2010-09-04 21:33:53 +02:00
|
|
|
<hr class="footer"/><address class="footer"><small>Generated on Sat Sep 4 2010 21:30:42 for Snort AI preprocessor module by
|
2010-08-14 14:30:41 +02:00
|
|
|
<a href="http://www.doxygen.org/index.html">
|
|
|
|
<img class="footer" src="doxygen.png" alt="doxygen"/></a> 1.7.1 </small></address>
|
|
|
|
</body>
|
|
|
|
</html>
|