#include "spp_ai.h"#include <stdio.h>#include <stdlib.h>#include <time.h>#include <unistd.h>Functions | |
| PRIVATE void | _AI_stream_free (struct pkt_info *stream) |
| Remove a stream from the hash table (private function). | |
| void * | AI_hashcleanup_thread (void *arg) |
| Thread called for cleaning up the hash table from the traffic streams older than a certain threshold. | |
| void | AI_pkt_enqueue (SFSnortPacket *pkt) |
| Function called for appending a new packet to the hash table, creating a new stream or appending it to an existing stream. | |
| struct pkt_info * | AI_get_stream_by_key (struct pkt_key key) |
| Get a TCP stream by key. | |
| void | AI_set_stream_observed (struct pkt_key key) |
| Set the flag "observed" on a stream associated to a security alert, so that it won't be removed from the hash table. | |
Variables | |
| PRIVATE struct pkt_info * | hash = NULL |
| PRIVATE time_t | start_time = 0 |
| PRIVATE void _AI_stream_free | ( | struct pkt_info * | stream | ) |
Remove a stream from the hash table (private function).
FUNCTION: _AI_stream_free
| stream | Stream to be removed |
| void* AI_hashcleanup_thread | ( | void * | arg | ) |
Thread called for cleaning up the hash table from the traffic streams older than a certain threshold.
FUNCTION: AI_hashcleanup_thread
| arg | Pointer to the AI_config struct |
| void AI_pkt_enqueue | ( | SFSnortPacket * | pkt | ) |
Function called for appending a new packet to the hash table, creating a new stream or appending it to an existing stream.
FUNCTION: AI_pkt_enqueue
| pkt | Packet to be appended |
| void AI_set_stream_observed | ( | struct pkt_key | key | ) |
Set the flag "observed" on a stream associated to a security alert, so that it won't be removed from the hash table.
FUNCTION: AI_set_stream_observed
| key | Key of the stream to be set as "observed" |
| PRIVATE time_t start_time = 0 |
1.7.1