//PrintRawDataFp(stdout, buffer, buffer_len);
r = DetectEngineContentInspection(de_ctx, det_ctx,
- s, s->sm_lists[DETECT_SM_LIST_DNSQUERYNAME_MATCH],
+ s, sm,
f, buffer, buffer_len, 0,
DETECT_ENGINE_CONTENT_INSPECTION_MODE_STATE, NULL);
if (r == 1)
buffer = (uint8_t *)ssl_state->client_connp.sni;
buffer_len = strlen(ssl_state->client_connp.sni);
- cnt = DetectEngineContentInspection(de_ctx, det_ctx, s,
- s->sm_lists[DETECT_SM_LIST_TLSSNI_MATCH],
+ cnt = DetectEngineContentInspection(de_ctx, det_ctx, s, sm,
f, buffer, buffer_len, 0,
DETECT_ENGINE_CONTENT_INSPECTION_MODE_STATE, NULL);
buffer = (uint8_t *)ssl_state->server_connp.cert0_issuerdn;
buffer_len = strlen(ssl_state->server_connp.cert0_issuerdn);
- cnt = DetectEngineContentInspection(de_ctx, det_ctx, s,
- s->sm_lists[DETECT_SM_LIST_TLSISSUER_MATCH],
+ cnt = DetectEngineContentInspection(de_ctx, det_ctx, s, sm,
f, buffer, buffer_len, 0,
DETECT_ENGINE_CONTENT_INSPECTION_MODE_STATE, NULL);
buffer = (uint8_t *)ssl_state->server_connp.cert0_subject;
buffer_len = strlen(ssl_state->server_connp.cert0_subject);
- cnt = DetectEngineContentInspection(de_ctx, det_ctx, s,
- s->sm_lists[DETECT_SM_LIST_TLSSUBJECT_MATCH],
+ cnt = DetectEngineContentInspection(de_ctx, det_ctx, s, sm,
f, buffer, buffer_len, 0,
DETECT_ENGINE_CONTENT_INSPECTION_MODE_STATE, NULL);
case DETECT_SM_LIST_HRHHDMATCH:
case DETECT_SM_LIST_HCDMATCH:
case DETECT_SM_LIST_HUADMATCH:
+
+ case DETECT_SM_LIST_DNSQUERYNAME_MATCH:
+ //case DETECT_SM_LIST_DNSRESPONSE_MATCH:
+ //case DETECT_SM_LIST_DNSRESPONSE_MATCH:
+
+ case DETECT_SM_LIST_TLSSNI_MATCH:
+ case DETECT_SM_LIST_TLSISSUER_MATCH:
+ case DETECT_SM_LIST_TLSSUBJECT_MATCH:
+ //case DETECT_SM_LIST_TLSVALIDITY_MATCH:
+
new_engine->sm = s->sm_lists[new_engine->sm_list];
s->sm_lists[new_engine->sm_list] = NULL;
s->sm_lists_tail[new_engine->sm_list] = NULL;
projects / thirdparty / suricata.git / commitdiff
