mirror of
https://github.com/BlackLight/Snort_AIPreproc.git
synced 2024-11-15 13:17:14 +01:00
86 lines
4.4 KiB
TeX
86 lines
4.4 KiB
TeX
|
\hypertarget{group__alert__parser}{
|
||
|
\section{Parse the alert log into binary structures}
|
||
|
\label{group__alert__parser}\index{Parse the alert log into binary structures@{Parse the alert log into binary structures}}
|
||
|
}
|
||
|
\subsection*{Functions}
|
||
|
\begin{DoxyCompactItemize}
|
||
|
\item
|
||
|
void $\ast$ \hyperlink{group__alert__parser_ga5aab8d9bdf0e92a51731442fd787f61f}{AI\_\-file\_\-alertparser\_\-thread} (void $\ast$arg)
|
||
|
\begin{DoxyCompactList}\small\item\em Thread for parsing Snort's alert file. \item\end{DoxyCompactList}\item
|
||
|
PRIVATE \hyperlink{struct__AI__snort__alert}{AI\_\-snort\_\-alert} $\ast$ \hyperlink{group__alert__parser_ga6c5014cae9155379fdc4db649b2c862d}{\_\-AI\_\-copy\_\-alerts} (\hyperlink{struct__AI__snort__alert}{AI\_\-snort\_\-alert} $\ast$node)
|
||
|
\begin{DoxyCompactList}\small\item\em Create a copy of the alert log struct (this is done for leaving the alert log structure in this file as read-\/only). \item\end{DoxyCompactList}\item
|
||
|
\hyperlink{struct__AI__snort__alert}{AI\_\-snort\_\-alert} $\ast$ \hyperlink{group__alert__parser_ga99474495643197b3075ac22ec6f6c70f}{AI\_\-get\_\-alerts} ()
|
||
|
\begin{DoxyCompactList}\small\item\em Return the alerts parsed so far as a linked list. \item\end{DoxyCompactList}\item
|
||
|
void \hyperlink{group__alert__parser_ga270e86669a0aa64a8da37bc16cda645b}{AI\_\-free\_\-alerts} (\hyperlink{struct__AI__snort__alert}{AI\_\-snort\_\-alert} $\ast$node)
|
||
|
\begin{DoxyCompactList}\small\item\em Deallocate the memory of a log alert linked list. \item\end{DoxyCompactList}\end{DoxyCompactItemize}
|
||
|
|
||
|
|
||
|
\subsection{Function Documentation}
|
||
|
\hypertarget{group__alert__parser_ga6c5014cae9155379fdc4db649b2c862d}{
|
||
|
\index{alert\_\-parser@{alert\_\-parser}!\_\-AI\_\-copy\_\-alerts@{\_\-AI\_\-copy\_\-alerts}}
|
||
|
\index{\_\-AI\_\-copy\_\-alerts@{\_\-AI\_\-copy\_\-alerts}!alert_parser@{alert\_\-parser}}
|
||
|
\subsubsection[{\_\-AI\_\-copy\_\-alerts}]{\setlength{\rightskip}{0pt plus 5cm}PRIVATE {\bf AI\_\-snort\_\-alert}$\ast$ \_\-AI\_\-copy\_\-alerts (
|
||
|
\begin{DoxyParamCaption}
|
||
|
\item[{{\bf AI\_\-snort\_\-alert} $\ast$}]{ node}
|
||
|
\end{DoxyParamCaption}
|
||
|
)}}
|
||
|
\label{group__alert__parser_ga6c5014cae9155379fdc4db649b2c862d}
|
||
|
|
||
|
|
||
|
Create a copy of the alert log struct (this is done for leaving the alert log structure in this file as read-\/only).
|
||
|
|
||
|
|
||
|
\begin{DoxyParams}{Parameters}
|
||
|
\item[{\em node}]Starting node (used for the recursion) \end{DoxyParams}
|
||
|
\begin{DoxyReturn}{Returns}
|
||
|
A copy of the alert log linked list
|
||
|
\end{DoxyReturn}
|
||
|
\hypertarget{group__alert__parser_ga5aab8d9bdf0e92a51731442fd787f61f}{
|
||
|
\index{alert\_\-parser@{alert\_\-parser}!AI\_\-file\_\-alertparser\_\-thread@{AI\_\-file\_\-alertparser\_\-thread}}
|
||
|
\index{AI\_\-file\_\-alertparser\_\-thread@{AI\_\-file\_\-alertparser\_\-thread}!alert_parser@{alert\_\-parser}}
|
||
|
\subsubsection[{AI\_\-file\_\-alertparser\_\-thread}]{\setlength{\rightskip}{0pt plus 5cm}void$\ast$ AI\_\-file\_\-alertparser\_\-thread (
|
||
|
\begin{DoxyParamCaption}
|
||
|
\item[{void $\ast$}]{ arg}
|
||
|
\end{DoxyParamCaption}
|
||
|
)}}
|
||
|
\label{group__alert__parser_ga5aab8d9bdf0e92a51731442fd787f61f}
|
||
|
|
||
|
|
||
|
Thread for parsing Snort's alert file.
|
||
|
|
||
|
|
||
|
\begin{DoxyParams}{Parameters}
|
||
|
\item[{\em arg}]void$\ast$ pointer to module's configuration \end{DoxyParams}
|
||
|
\hypertarget{group__alert__parser_ga270e86669a0aa64a8da37bc16cda645b}{
|
||
|
\index{alert\_\-parser@{alert\_\-parser}!AI\_\-free\_\-alerts@{AI\_\-free\_\-alerts}}
|
||
|
\index{AI\_\-free\_\-alerts@{AI\_\-free\_\-alerts}!alert_parser@{alert\_\-parser}}
|
||
|
\subsubsection[{AI\_\-free\_\-alerts}]{\setlength{\rightskip}{0pt plus 5cm}void AI\_\-free\_\-alerts (
|
||
|
\begin{DoxyParamCaption}
|
||
|
\item[{{\bf AI\_\-snort\_\-alert} $\ast$}]{ node}
|
||
|
\end{DoxyParamCaption}
|
||
|
)}}
|
||
|
\label{group__alert__parser_ga270e86669a0aa64a8da37bc16cda645b}
|
||
|
|
||
|
|
||
|
Deallocate the memory of a log alert linked list.
|
||
|
|
||
|
|
||
|
\begin{DoxyParams}{Parameters}
|
||
|
\item[{\em node}]Linked list to be freed \end{DoxyParams}
|
||
|
\hypertarget{group__alert__parser_ga99474495643197b3075ac22ec6f6c70f}{
|
||
|
\index{alert\_\-parser@{alert\_\-parser}!AI\_\-get\_\-alerts@{AI\_\-get\_\-alerts}}
|
||
|
\index{AI\_\-get\_\-alerts@{AI\_\-get\_\-alerts}!alert_parser@{alert\_\-parser}}
|
||
|
\subsubsection[{AI\_\-get\_\-alerts}]{\setlength{\rightskip}{0pt plus 5cm}{\bf AI\_\-snort\_\-alert}$\ast$ AI\_\-get\_\-alerts (
|
||
|
\begin{DoxyParamCaption}
|
||
|
\item[{void}]{}
|
||
|
\end{DoxyParamCaption}
|
||
|
)}}
|
||
|
\label{group__alert__parser_ga99474495643197b3075ac22ec6f6c70f}
|
||
|
|
||
|
|
||
|
Return the alerts parsed so far as a linked list.
|
||
|
|
||
|
\begin{DoxyReturn}{Returns}
|
||
|
An AI\_\-snort\_\-alert pointer identifying the list of alerts
|
||
|
\end{DoxyReturn}
|