1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
|
/*****
*
* Copyright (C) 1998, 1999, 2000, 2001, 2002, 2003, 2004, 2005 PreludeIDS Technologies. All Rights Reserved.
* Author: Yoann Vandoorselaere <yoann.v@prelude-ids.com>
*
* This file is part of the Prelude-LML program.
*
* This program is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation; either version 2, or (at your option)
* any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program; see the file COPYING. If not, write to
* the Free Software Foundation, 675 Mass Ave, Cambridge, MA 02139, USA.
*
*****/
typedef struct rule_regex rule_regex_t;
void rule_regex_destroy(rule_regex_t *ptr);
rule_regex_t *rule_regex_new(const char *regex, prelude_bool_t optionnal);
rule_regex_t *rule_search_new(const char *regex, prelude_bool_t optional);
int rule_regex_match(pcre_plugin_t *plugin, pcre_rule_container_t *rc,
const lml_log_source_t *ls, lml_log_entry_t *log_entry, pcre_match_flags_t *match_flags);
int pcre_state_push_idmef(pcre_state_t *state, idmef_message_t *idmef);
int pcre_state_clone(pcre_state_t *state, pcre_state_t **nstate);
pcre_state_t *pcre_state_ref(pcre_state_t *state);
void pcre_state_destroy(pcre_state_t *state);
|
