{
DB->_subscribe(key, h);
}
-void DataBus::subscribe_default(const char* key, DataHandler* h, SnortConfig*)
+void DataBus::subscribe_global(const char* key, DataHandler* h, SnortConfig*)
{
DB->_subscribe(key, h);
}
void DataBus::unsubscribe(const char*, DataHandler*) {}
-void DataBus::unsubscribe_default(const char*, DataHandler*, SnortConfig*) {}
+void DataBus::unsubscribe_global(const char*, DataHandler*, SnortConfig*) {}
void DataBus::publish(const char* key, DataEvent& e, Flow* f)
{
}
// for subscribers that need to receive events regardless of active inspection policy
-void DataBus::subscribe_default(const char* key, DataHandler* h, SnortConfig* sc)
+void DataBus::subscribe_global(const char* key, DataHandler* h, SnortConfig* sc)
{
- if (sc)
- get_default_inspection_policy(sc)->dbus._subscribe(key, h);
- else
- get_default_inspection_policy(SnortConfig::get_conf())->dbus._subscribe(key, h);
+ assert(sc);
+ sc->global_dbus->_subscribe(key, h);
}
void DataBus::unsubscribe(const char* key, DataHandler* h)
get_data_bus()._unsubscribe(key, h);
}
-void DataBus::unsubscribe_default(const char* key, DataHandler* h, SnortConfig* sc)
+void DataBus::unsubscribe_global(const char* key, DataHandler* h, SnortConfig* sc)
{
- if (sc)
- get_default_inspection_policy(sc)->dbus._unsubscribe(key, h);
- else
- get_default_inspection_policy(SnortConfig::get_conf())->dbus._unsubscribe(key, h);
+ assert(sc);
+ sc->global_dbus->_unsubscribe(key, h);
}
// notify subscribers of event
InspectionPolicy* pi = get_inspection_policy();
pi->dbus._publish(key, e, f);
- // also publish to default policy to notify control subscribers such as appid
- InspectionPolicy* di = get_default_inspection_policy(SnortConfig::get_conf());
-
- // of course, only when current is not default
- if ( di != pi )
- di->dbus._publish(key, e, f);
+ SnortConfig::get_conf()->global_dbus->_publish(key, e, f);
}
void DataBus::publish(const char* key, const uint8_t* buf, unsigned len, Flow* f)
// at arbitrary points, eg when service is identified, or when a URI is
// available, or when a flow clears.
-#include <map>
#include <string>
+#include <unordered_map>
#include <unordered_set>
#include <vector>
// FIXIT-P evaluate perf; focus is on correctness
typedef std::vector<DataHandler*> DataList;
-typedef std::map<std::string, DataList> DataMap;
+typedef std::unordered_map<std::string, DataList> DataMap;
typedef std::unordered_set<const char*> DataModule;
class SO_PUBLIC DataBus
void add_mapped_module(const char*);
static void subscribe(const char* key, DataHandler*);
- static void subscribe_default(const char* key, DataHandler*, SnortConfig* = nullptr);
+ static void subscribe_global(const char* key, DataHandler*, SnortConfig*);
static void unsubscribe(const char* key, DataHandler*);
- static void unsubscribe_default(const char* key, DataHandler*, SnortConfig* = nullptr);
+ static void unsubscribe_global(const char* key, DataHandler*, SnortConfig*);
static void publish(const char* key, DataEvent&, Flow* = nullptr);
// convenience methods
other_conf->cloned = true;
sc->policy_map->get_inspection_policy()->clone_dbus(other_conf, iname);
+ sc->global_dbus->add_mapped_module(iname);
+ sc->global_dbus->clone(*other_conf->global_dbus);
InspectorManager::update_policy(sc);
reloading = false;
return sc;
other_conf->cloned = true;
sc->policy_map->get_inspection_policy()->clone_dbus(other_conf, name);
+ sc->global_dbus->add_mapped_module(name);
+ sc->global_dbus->clone(*other_conf->global_dbus);
InspectorManager::update_policy(sc);
reloading = false;
return sc;
memory = new MemoryConfig();
policy_map = new PolicyMap;
thread_config = new ThreadConfig();
+ global_dbus = new DataBus();
memset(evalOrder, 0, sizeof(evalOrder));
proto_ref = new ProtocolReference(protocol_reference);
delete[] state;
delete thread_config;
delete ha_config;
+ delete global_dbus;
if (gtp_ports)
delete gtp_ports;
VarNode* var_list = nullptr;
std::string tweaks;
+ DataBus* global_dbus = nullptr;
+
uint8_t tunnel_mask = 0;
// FIXIT-L this is temporary for legacy paf_max required only for HI;
active_config = new AppIdConfig(const_cast<AppIdModuleConfig*>(config));
my_seh = SipEventHandler::create();
- my_seh->subscribe();
+ my_seh->subscribe(sc);
active_config->init_appid(sc);
if (!TPLibHandler::have_tp())
#endif
{
- DataBus::subscribe(HTTP_REQUEST_HEADER_EVENT_KEY, new HttpEventHandler(
- HttpEventHandler::REQUEST_EVENT));
+ DataBus::subscribe_global(HTTP_REQUEST_HEADER_EVENT_KEY, new HttpEventHandler(
+ HttpEventHandler::REQUEST_EVENT), sc);
- DataBus::subscribe(HTTP_RESPONSE_HEADER_EVENT_KEY, new HttpEventHandler(
- HttpEventHandler::RESPONSE_EVENT));
+ DataBus::subscribe_global(HTTP_RESPONSE_HEADER_EVENT_KEY, new HttpEventHandler(
+ HttpEventHandler::RESPONSE_EVENT), sc);
}
return true;
static void set_client(SipUdpClientDetector* cd) { SipEventHandler::client = cd; }
static void set_service(SipServiceDetector* sd) { SipEventHandler::service = sd; }
- void subscribe()
- { snort::DataBus::subscribe(SIP_EVENT_TYPE_SIP_DIALOG_KEY, this); }
+ void subscribe(snort::SnortConfig* sc)
+ { snort::DataBus::subscribe_global(SIP_EVENT_TYPE_SIP_DIALOG_KEY, this, sc); }
void handle(snort::DataEvent&, snort::Flow*) override;
{
public:
PerfIdleHandler(PerfMonitor& p, SnortConfig*& sc) : DataHandler(PERF_NAME), perf_monitor(p)
- { DataBus::subscribe_default(THREAD_IDLE_EVENT, this, sc); }
+ { DataBus::subscribe_global(THREAD_IDLE_EVENT, this, sc); }
void handle(DataEvent&, Flow*) override
{ perf_monitor.eval(nullptr); }
{
public:
PerfRotateHandler(PerfMonitor& p, SnortConfig* sc) : DataHandler(PERF_NAME), perf_monitor(p)
- { DataBus::subscribe_default(THREAD_ROTATE_EVENT, this, sc); }
+ { DataBus::subscribe_global(THREAD_ROTATE_EVENT, this, sc); }
void handle(DataEvent&, Flow*) override
{ perf_monitor.rotate(); }
{
public:
FlowIPDataHandler(PerfMonitor& p, SnortConfig* sc) : DataHandler(PERF_NAME), perf_monitor(p)
- { DataBus::subscribe_default(FLOW_STATE_EVENT, this, sc); }
+ { DataBus::subscribe_global(FLOW_STATE_EVENT, this, sc); }
void handle(DataEvent&, Flow* flow) override
{
delete mod_conf;
}
-bool RnaInspector::configure(SnortConfig*)
+bool RnaInspector::configure(SnortConfig* sc)
{
- DataBus::subscribe( STREAM_ICMP_NEW_FLOW_EVENT, new RnaIcmpNewFlowEventHandler(*pnd) );
- DataBus::subscribe( STREAM_ICMP_BIDIRECTIONAL_EVENT, new RnaIcmpBidirectionalEventHandler(*pnd) );
+ DataBus::subscribe_global( STREAM_ICMP_NEW_FLOW_EVENT, new RnaIcmpNewFlowEventHandler(*pnd), sc );
+ DataBus::subscribe_global( STREAM_ICMP_BIDIRECTIONAL_EVENT, new RnaIcmpBidirectionalEventHandler(*pnd), sc );
- DataBus::subscribe( STREAM_IP_NEW_FLOW_EVENT, new RnaIpNewFlowEventHandler(*pnd) );
- DataBus::subscribe( STREAM_IP_BIDIRECTIONAL_EVENT, new RnaIpBidirectionalEventHandler(*pnd) );
+ DataBus::subscribe_global( STREAM_IP_NEW_FLOW_EVENT, new RnaIpNewFlowEventHandler(*pnd), sc );
+ DataBus::subscribe_global( STREAM_IP_BIDIRECTIONAL_EVENT, new RnaIpBidirectionalEventHandler(*pnd), sc );
- DataBus::subscribe( STREAM_UDP_NEW_FLOW_EVENT, new RnaUdpNewFlowEventHandler(*pnd) );
- DataBus::subscribe( STREAM_UDP_BIDIRECTIONAL_EVENT, new RnaUdpBidirectionalEventHandler(*pnd) );
+ DataBus::subscribe_global( STREAM_UDP_NEW_FLOW_EVENT, new RnaUdpNewFlowEventHandler(*pnd), sc );
+ DataBus::subscribe_global( STREAM_UDP_BIDIRECTIONAL_EVENT, new RnaUdpBidirectionalEventHandler(*pnd), sc );
- DataBus::subscribe( STREAM_TCP_SYN_EVENT, new RnaTcpSynEventHandler(*pnd) );
- DataBus::subscribe( STREAM_TCP_SYN_ACK_EVENT, new RnaTcpSynAckEventHandler(*pnd) );
- DataBus::subscribe( STREAM_TCP_MIDSTREAM_EVENT, new RnaTcpMidstreamEventHandler(*pnd) );
+ DataBus::subscribe_global( STREAM_TCP_SYN_EVENT, new RnaTcpSynEventHandler(*pnd), sc );
+ DataBus::subscribe_global( STREAM_TCP_SYN_ACK_EVENT, new RnaTcpSynAckEventHandler(*pnd), sc );
+ DataBus::subscribe_global( STREAM_TCP_MIDSTREAM_EVENT, new RnaTcpMidstreamEventHandler(*pnd), sc );
if (rna_conf && rna_conf->log_when_idle)
- DataBus::subscribe( THREAD_IDLE_EVENT, new RnaIdleEventHandler(*pnd) );
+ DataBus::subscribe_global( THREAD_IDLE_EVENT, new RnaIdleEventHandler(*pnd), sc );
return true;
}
#include "piglet_manager.h"
#include <cassert>
+#include <map>
#include "log/messages.h"
#include "main/snort_config.h"
projects / thirdparty / snort3.git / commitdiff
