#include "suricata-common.h"#include "packet.h"#include "detect.h"#include "flow.h"#include "conf.h"#include "threads.h"#include "tm-threads.h"#include "threadvars.h"#include "util-debug.h"#include "decode-ipv4.h"#include "detect-parse.h"#include "detect-engine.h"#include "detect-engine-mpm.h"#include "detect-reference.h"#include "output.h"#include "output-json.h"#include "output-json-flow.h"#include "output-eve-stream.h"#include "stream-tcp.h"#include "util-unittest.h"#include "util-unittest-helper.h"#include "util-classification-config.h"#include "util-privs.h"#include "util-print.h"#include "util-proto-name.h"#include "util-logopenfile.h"#include "util-time.h"#include "util-buffer.h"#include "action-globals.h"
Go to the source code of this file.
Data Structures | |
| struct | EveStreamOutputCtx_ |
| struct | EveStreamLogThread_ |
Macros | |
| #define | MODULE_NAME "EveStreamLog" |
Typedefs | |
| typedef struct EveStreamOutputCtx_ | EveStreamOutputCtx |
| typedef struct EveStreamLogThread_ | EveStreamLogThread |
Functions | |
| void | EveAddFlowTcpStreamFlags (const TcpStream *stream, const char *name, SCJsonBuilder *jb) |
| void | EveAddFlowTcpFlags (const TcpSession *ssn, const char *name, SCJsonBuilder *jb) |
| void | EveStreamLogRegister (void) |
Macro Definition Documentation
◆ MODULE_NAME
| #define MODULE_NAME "EveStreamLog" |
Definition at line 58 of file output-eve-stream.c.
Typedef Documentation
◆ EveStreamLogThread
| typedef struct EveStreamLogThread_ EveStreamLogThread |
◆ EveStreamOutputCtx
| typedef struct EveStreamOutputCtx_ EveStreamOutputCtx |
Function Documentation
◆ EveAddFlowTcpFlags()
| void EveAddFlowTcpFlags | ( | const TcpSession * | ssn, |
| const char * | name, | ||
| SCJsonBuilder * | jb | ||
| ) |
Definition at line 207 of file output-eve-stream.c.
References TcpSession_::flags, name, STREAMTCP_FLAG_3WHS_CONFIRMED, STREAMTCP_FLAG_4WHS, STREAMTCP_FLAG_APP_LAYER_DISABLED, STREAMTCP_FLAG_BYPASS, STREAMTCP_FLAG_CLIENT_SACKOK, STREAMTCP_FLAG_CLOSED_BY_RST, STREAMTCP_FLAG_DETECTION_EVASION_ATTEMPT, STREAMTCP_FLAG_MIDSTREAM, STREAMTCP_FLAG_MIDSTREAM_ESTABLISHED, STREAMTCP_FLAG_MIDSTREAM_SYNACK, STREAMTCP_FLAG_SERVER_WSCALE, STREAMTCP_FLAG_TCP_FAST_OPEN, STREAMTCP_FLAG_TFO_DATA_IGNORED, and STREAMTCP_FLAG_TIMESTAMP.
◆ EveAddFlowTcpStreamFlags()
| void EveAddFlowTcpStreamFlags | ( | const TcpStream * | stream, |
| const char * | name, | ||
| SCJsonBuilder * | jb | ||
| ) |
Definition at line 177 of file output-eve-stream.c.
References TcpStream_::flags, name, STREAMTCP_STREAM_FLAG_APPPROTO_DETECTION_COMPLETED, STREAMTCP_STREAM_FLAG_APPPROTO_DETECTION_SKIPPED, STREAMTCP_STREAM_FLAG_DEPTH_REACHED, STREAMTCP_STREAM_FLAG_DISABLE_RAW, STREAMTCP_STREAM_FLAG_HAS_GAP, STREAMTCP_STREAM_FLAG_KEEPALIVE, STREAMTCP_STREAM_FLAG_NEW_RAW_DISABLED, STREAMTCP_STREAM_FLAG_NOREASSEMBLY, STREAMTCP_STREAM_FLAG_RST_RECV, STREAMTCP_STREAM_FLAG_TIMESTAMP, STREAMTCP_STREAM_FLAG_TRIGGER_RAW, and STREAMTCP_STREAM_FLAG_ZERO_TIMESTAMP.
◆ EveStreamLogRegister()
| void EveStreamLogRegister | ( | void | ) |
Definition at line 453 of file output-eve-stream.c.
References OutputPacketLoggerFunctions_::LogFunc, LOGGER_JSON_STREAM, MODULE_NAME, OutputJsonLogFlush(), and OutputRegisterPacketSubModule().
Referenced by OutputRegisterLoggers().
