#include "output-json-sip.h"
#include "output-json-rfb.h"
#include "output-json-mqtt.h"
+#include "output-json-ike.h"
#include "util-byte.h"
#include "util-privs.h"
case ALPROTO_DNS:
AlertJsonDns(p->flow, tx_id, jb);
break;
+ case ALPROTO_IKE:
+ jb_get_mark(jb, &mark);
+ if (!EveIKEAddMetadata(p->flow, tx_id, jb)) {
+ jb_restore_mark(jb, &mark);
+ }
+ break;
case ALPROTO_MQTT:
jb_get_mark(jb, &mark);
if (!JsonMQTTAddMetadata(p->flow, tx_id, jb)) {
MemBuffer *buffer;
} LogIKELogThread;
+bool EveIKEAddMetadata(const Flow *f, uint64_t tx_id, JsonBuilder *js)
+{
+ IKEState *state = FlowGetAppState(f);
+ if (state) {
+ IKETransaction *tx = AppLayerParserGetTx(f->proto, ALPROTO_IKE, state, tx_id);
+ if (tx) {
+ return rs_ike_logger_log(state, tx, LOG_IKE_EXTENDED, js);
+ }
+ }
+
+ return false;
+}
+
static int JsonIKELogger(ThreadVars *tv, void *thread_data, const Packet *p, Flow *f, void *state,
void *tx, uint64_t tx_id)
{
void JsonIKELogRegister(void);
+bool EveIKEAddMetadata(const Flow *f, uint64_t tx_id, JsonBuilder *js);
+
#endif /* __OUTPUT_JSON_IKE_H__ */
projects / thirdparty / suricata.git / commitdiff
