"file_process:context missing, returning \n");
return false;
}
+
+ if (context->has_to_re_eval() and context->processing_complete)
+ context->reset();
+
context->set_weak_file_name((const char*)fname, name_size);
context->set_weak_url((const char*)url, url_size);
context->set_host(host_name.c_str(), host_name.size());
policy->policy_check(flow, this);
}
+void FileInfo::reset()
+{
+ verdict = FILE_VERDICT_UNKNOWN;
+ processing_complete = false;
+ set_file_size(0);
+ reset_sha();
+ if (is_file_name_set())
+ unset_file_name();
+}
+
+void FileInfo::set_re_eval()
+{
+ re_eval = true;
+}
+
+bool FileInfo::has_to_re_eval()
+{
+ return re_eval;
+}
+
+void FileInfo::unset_re_eval()
+{
+ re_eval = false;
+}
+
+void FileContext::remove_segments()
+{
+ if (file_segments == nullptr)
+ return;
+ delete file_segments;
+ file_segments = nullptr;
+}
+
+void FileContext::reset()
+{
+ verdict = FILE_VERDICT_UNKNOWN;
+ processing_complete = false;
+ set_file_size(0);
+ reset_sha();
+ if (is_file_name_set())
+ unset_file_name();
+ remove_segments();
+}
+
/*
* Return:
* true: continue processing/log/block this file
FI_TEST info;
info.set_file_name("test", 4);
- CHECK ( true == info.is_file_name_set());
+ CHECK (true == info.is_file_name_set());
info.unset_file_name();
CHECK (false == info.is_file_name_set());
CHECK (info.get_url() == std::string("/var/tmp/test.pdf"));
}
+TEST_CASE ("reset", "[file_info]")
+{
+ FI_TEST info;
+ info.verdict = FILE_VERDICT_BLOCK;
+ info.processing_complete = true;
+ info.set_file_name("test", 4);
+
+ info.reset();
+
+ CHECK (false == info.processing_complete);
+ CHECK (FILE_VERDICT_UNKNOWN == info.verdict);
+ CHECK (false == info.is_file_name_set());
+}
+
+TEST_CASE ("re_eval", "[file_info]")
+{
+ FI_TEST info;
+ CHECK (false == info.has_to_re_eval());
+ info.set_re_eval();
+ CHECK (true == info.has_to_re_eval());
+ info.unset_re_eval();
+ CHECK (false == info.has_to_re_eval());
+}
#endif
void set_file_data(UserFileDataBase* fd);
UserFileDataBase* get_file_data() const;
void copy(const FileInfo& other, bool clear_data = true);
+ void reset();
// Preserve the file in memory until it is released
// The file reserved will be returned and it will be detached from file context/session
FileCaptureState reserve_file(FileCapture*& dest);
std::mutex user_file_data_mutex;
struct timeval pending_expire_time = {0, 0};
+ void set_re_eval();
+ bool has_to_re_eval();
+ void unset_re_eval();
+
+ // Flag which indicates that the file requires re-eval even though it was fully processed before.
+ // If "true" and the policy was checked - has to be set to "false" again.
+ bool re_eval = false;
+
protected:
std::string file_name;
bool file_name_set = false;
bool is_cacheable() { return cacheable; }
bool segments_queued() { return (file_segments != nullptr); }
+ // Configuration functions
+ void remove_segments();
+ void reset();
+
private:
uint64_t processed_bytes = 0;
void* file_type_context;
projects / thirdparty / snort3.git / commitdiff
