rule-vars: take detect engine as arg

author Victor Julien <victor@inliniac.net>

Sun, 1 Mar 2015 19:30:01 +0000 (20:30 +0100)

committer Victor Julien <victor@inliniac.net>

Thu, 19 Mar 2015 17:02:18 +0000 (18:02 +0100)
author Victor Julien <victor@inliniac.net>
Sun, 1 Mar 2015 19:30:01 +0000 (20:30 +0100)
committer Victor Julien <victor@inliniac.net>
Thu, 19 Mar 2015 17:02:18 +0000 (18:02 +0100)
diff --git a/src/detect-engine-address.c b/src/detect-engine-address.c

index 7a04cc761b48f7fd9f0afdadcf4467b9cd2e3017..19b960a79b942c416080d817f0adbd8e7d5c2c61 100644 (file)
--- a/src/detect-engine-address.c
+++ b/src/detect-engine-address.c
@@ -1029,7 +1029,7 @@ static int DetectAddressParse2(const DetectEngineCtx *de_ctx,
              } else if (d_set == 1) {
                  address[x - 1] = '\0';
  
-                rule_var_address = SCRuleVarsGetConfVar(address,
+                rule_var_address = SCRuleVarsGetConfVar(de_ctx, address,
                                                          SC_RULE_VARS_ADDRESS_GROUPS);
                  if (rule_var_address == NULL)
                      goto error;
@@ -1081,7 +1081,7 @@ static int DetectAddressParse2(const DetectEngineCtx *de_ctx,
              x = 0;
  
              if (d_set == 1) {
-                rule_var_address = SCRuleVarsGetConfVar(address,
+                rule_var_address = SCRuleVarsGetConfVar(de_ctx, address,
                                                          SC_RULE_VARS_ADDRESS_GROUPS);
                  if (rule_var_address == NULL)
                      goto error;
diff --git a/src/detect-engine-iponly.c b/src/detect-engine-iponly.c

index d98fa0e50c326aad908518e2b36b92404d18165e..bc876a188844b97e7d03f515867b5401393ade39 100644 (file)
--- a/src/detect-engine-iponly.c
+++ b/src/detect-engine-iponly.c
@@ -581,7 +581,8 @@ static void SigNumArrayFree(void *tmp)
   * \retval 0 if success
   * \retval -1 if fails
   */
-static IPOnlyCIDRItem *IPOnlyCIDRListParse2(char *s, int negate)
+static IPOnlyCIDRItem *IPOnlyCIDRListParse2(const DetectEngineCtx *de_ctx,
+                                            char *s, int negate)
  {
      size_t x = 0;
      size_t u = 0;
@@ -615,7 +616,7 @@ static IPOnlyCIDRItem *IPOnlyCIDRListParse2(char *s, int negate)
                  address[x - 1] = '\0';
                  x = 0;
  
-                if ( (subhead = IPOnlyCIDRListParse2(address,
+                if ( (subhead = IPOnlyCIDRListParse2(de_ctx, address,
                                                  (negate + n_set) % 2)) == NULL)
                      goto error;
  
@@ -629,7 +630,7 @@ static IPOnlyCIDRItem *IPOnlyCIDRListParse2(char *s, int negate)
              } else if (d_set == 1) {
                  address[x - 1] = '\0';
  
-                rule_var_address = SCRuleVarsGetConfVar(address,
+                rule_var_address = SCRuleVarsGetConfVar(de_ctx, address,
                                                    SC_RULE_VARS_ADDRESS_GROUPS);
                  if (rule_var_address == NULL)
                      goto error;
@@ -646,7 +647,7 @@ static IPOnlyCIDRItem *IPOnlyCIDRListParse2(char *s, int negate)
                               "[%s]", rule_var_address);
                  }
  
-                subhead = IPOnlyCIDRListParse2(temp_rule_var_address,
+                subhead = IPOnlyCIDRListParse2(de_ctx, temp_rule_var_address,
                                                 (negate + n_set) % 2);
                  head = IPOnlyCIDRItemInsert(head, subhead);
  
@@ -689,7 +690,7 @@ static IPOnlyCIDRItem *IPOnlyCIDRListParse2(char *s, int negate)
              x = 0;
  
              if (d_set == 1) {
-                rule_var_address = SCRuleVarsGetConfVar(address,
+                rule_var_address = SCRuleVarsGetConfVar(de_ctx, address,
                                                      SC_RULE_VARS_ADDRESS_GROUPS);
                  if (rule_var_address == NULL)
                      goto error;
@@ -703,7 +704,7 @@ static IPOnlyCIDRItem *IPOnlyCIDRListParse2(char *s, int negate)
                      snprintf(temp_rule_var_address, strlen(rule_var_address) + 3,
                              "[%s]", rule_var_address);
                  }
-                subhead = IPOnlyCIDRListParse2(temp_rule_var_address,
+                subhead = IPOnlyCIDRListParse2(de_ctx, temp_rule_var_address,
                                                 (negate + n_set) % 2);
                  head = IPOnlyCIDRItemInsert(head, subhead);
  
@@ -751,14 +752,15 @@ error:
   * \retval  0 On success.
   * \retval -1 On failure.
   */
-static int IPOnlyCIDRListParse(IPOnlyCIDRItem **gh, char *str)
+static int IPOnlyCIDRListParse(const DetectEngineCtx *de_ctx,
+                               IPOnlyCIDRItem **gh, char *str)
  {
      SCLogDebug("gh %p, str %s", gh, str);
  
      if (gh == NULL)
          goto error;
  
-    *gh = IPOnlyCIDRListParse2(str, 0);
+    *gh = IPOnlyCIDRListParse2(de_ctx, str, 0);
      if (*gh == NULL) {
          SCLogDebug("DetectAddressParse2 returned null");
          goto error;
@@ -782,7 +784,8 @@ error:
   * \retval  0 On success.
   * \retval -1 On failure.
   */
-int IPOnlySigParseAddress(Signature *s, const char *addrstr, char flag)
+int IPOnlySigParseAddress(const DetectEngineCtx *de_ctx,
+                          Signature *s, const char *addrstr, char flag)
  {
      SCLogDebug("Address Group \"%s\" to be parsed now", addrstr);
      IPOnlyCIDRItem *tmp = NULL;
@@ -792,15 +795,15 @@ int IPOnlySigParseAddress(Signature *s, const char *addrstr, char flag)
          if (strcasecmp(addrstr, "any") == 0) {
              s->flags |= SIG_FLAG_SRC_ANY;
  
-            if (IPOnlyCIDRListParse(&s->CidrSrc, (char *)"0.0.0.0/0") < 0)
+            if (IPOnlyCIDRListParse(de_ctx, &s->CidrSrc, (char *)"0.0.0.0/0") < 0)
                  goto error;
  
-            if (IPOnlyCIDRListParse(&tmp, (char *)"::/0") < 0)
+            if (IPOnlyCIDRListParse(de_ctx, &tmp, (char *)"::/0") < 0)
                  goto error;
  
              s->CidrSrc = IPOnlyCIDRItemInsert(s->CidrSrc, tmp);
  
-        } else if (IPOnlyCIDRListParse(&s->CidrSrc, (char *)addrstr) < 0) {
+        } else if (IPOnlyCIDRListParse(de_ctx, &s->CidrSrc, (char *)addrstr) < 0) {
              goto error;
          }
  
@@ -809,15 +812,15 @@ int IPOnlySigParseAddress(Signature *s, const char *addrstr, char flag)
          if (strcasecmp(addrstr, "any") == 0) {
              s->flags |= SIG_FLAG_DST_ANY;
  
-            if (IPOnlyCIDRListParse(&tmp, (char *)"0.0.0.0/0") < 0)
+            if (IPOnlyCIDRListParse(de_ctx, &tmp, (char *)"0.0.0.0/0") < 0)
                  goto error;
  
-            if (IPOnlyCIDRListParse(&s->CidrDst, (char *)"::/0") < 0)
+            if (IPOnlyCIDRListParse(de_ctx, &s->CidrDst, (char *)"::/0") < 0)
                  goto error;
  
              s->CidrDst = IPOnlyCIDRItemInsert(s->CidrDst, tmp);
  
-        } else if (IPOnlyCIDRListParse(&s->CidrDst, (char *)addrstr) < 0) {
+        } else if (IPOnlyCIDRListParse(de_ctx, &s->CidrDst, (char *)addrstr) < 0) {
              goto error;
          }
  
diff --git a/src/detect-engine-iponly.h b/src/detect-engine-iponly.h

index 599a11157e4ddfa9021b5e7743140a62a6cee465..b71a59337dcdf90d25f839bca4bb21864f627287 100644 (file)
--- a/src/detect-engine-iponly.h
+++ b/src/detect-engine-iponly.h
@@ -36,7 +36,7 @@ typedef struct SigNumArray_ {
  } SigNumArray;
  
  void IPOnlyCIDRListFree(IPOnlyCIDRItem *tmphead);
-int IPOnlySigParseAddress(Signature *, const char *, char);
+int IPOnlySigParseAddress(const DetectEngineCtx *, Signature *, const char *, char);
  void IPOnlyMatchPacket(ThreadVars *tv, DetectEngineCtx *,
                         DetectEngineThreadCtx *, DetectEngineIPOnlyCtx *,
                         DetectEngineIPOnlyThreadCtx *, Packet *);
diff --git a/src/detect-engine-port.c b/src/detect-engine-port.c

index 826f7a9d5b9b637b6b88904ba052f91890800519..6d3d5208eb48f55b88ad58df3dfa416fc3cb2a24 100644 (file)
--- a/src/detect-engine-port.c
+++ b/src/detect-engine-port.c
@@ -1082,7 +1082,7 @@ static int DetectPortParseDo(const DetectEngineCtx *de_ctx,
  
                  address[x - 1] = '\0';
  
-                rule_var_port = SCRuleVarsGetConfVar(address,
+                rule_var_port = SCRuleVarsGetConfVar(de_ctx, address,
                                                       SC_RULE_VARS_PORT_GROUPS);
                  if (rule_var_port == NULL)
                      goto error;
@@ -1142,7 +1142,7 @@ static int DetectPortParseDo(const DetectEngineCtx *de_ctx,
                  char *temp_rule_var_port = NULL,
                       *alloc_rule_var_port = NULL;
  
-                rule_var_port = SCRuleVarsGetConfVar(address,
+                rule_var_port = SCRuleVarsGetConfVar(de_ctx, address,
                                                       SC_RULE_VARS_PORT_GROUPS);
                  if (rule_var_port == NULL)
                      goto error;
diff --git a/src/detect-parse.c b/src/detect-parse.c

index fa1bb35dd480a6923c99ca65fcb7c8085b17a4b5..0f65cd466e108a0fef75e5a769892956e730c151 100644 (file)
--- a/src/detect-parse.c
+++ b/src/detect-parse.c
@@ -795,10 +795,10 @@ static int SigParseBasics(const DetectEngineCtx *de_ctx,
          goto error;
  
      /* For IPOnly */
-    if (IPOnlySigParseAddress(s, parser->src, SIG_DIREC_SRC ^ addrs_direction) < 0)
+    if (IPOnlySigParseAddress(de_ctx, s, parser->src, SIG_DIREC_SRC ^ addrs_direction) < 0)
          goto error;
  
-    if (IPOnlySigParseAddress(s, parser->dst, SIG_DIREC_DST ^ addrs_direction) < 0)
+    if (IPOnlySigParseAddress(de_ctx, s, parser->dst, SIG_DIREC_DST ^ addrs_direction) < 0)
          goto error;
  
      /* By AWS - Traditionally we should be doing this only for tcp/udp/sctp,
diff --git a/src/util-rule-vars.c b/src/util-rule-vars.c

index bf7515f82e233dd1daec0b2a233e65b7d16235c0..32cfa78bb4e24f76e350c9439d556724d3862ce9 100644 (file)
--- a/src/util-rule-vars.c
+++ b/src/util-rule-vars.c
@@ -62,7 +62,8 @@ SCEnumCharMap sc_rule_vars_type_map[ ] = {
   * \retval conf_var_name_value Pointer to the string containing the conf value
   *                             on success; NULL on failure.
   */
-char *SCRuleVarsGetConfVar(const char *conf_var_name,
+char *SCRuleVarsGetConfVar(const DetectEngineCtx *de_ctx,
+                           const char *conf_var_name,
                             SCRuleVarsType conf_vars_type)
  {
      SCEnter();
@@ -180,44 +181,44 @@ int SCRuleVarsPositiveTest01(void)
      ConfYamlLoadString(dummy_conf_string, strlen(dummy_conf_string));
  
      /* check for address-groups */
-    result &= (SCRuleVarsGetConfVar("$HOME_NET", SC_RULE_VARS_ADDRESS_GROUPS) != NULL &&
-               strcmp(SCRuleVarsGetConfVar("$HOME_NET", SC_RULE_VARS_ADDRESS_GROUPS),
+    result &= (SCRuleVarsGetConfVar(NULL,"$HOME_NET", SC_RULE_VARS_ADDRESS_GROUPS) != NULL &&
+               strcmp(SCRuleVarsGetConfVar(NULL,"$HOME_NET", SC_RULE_VARS_ADDRESS_GROUPS),
                        "[192.168.0.0/16,10.8.0.0/16,127.0.0.1,2001:888:13c5:"
                        "5AFE::/64,2001:888:13c5:CAFE::/64]") == 0);
-    result &= (SCRuleVarsGetConfVar("$EXTERNAL_NET", SC_RULE_VARS_ADDRESS_GROUPS) != NULL &&
-               strcmp(SCRuleVarsGetConfVar("$EXTERNAL_NET", SC_RULE_VARS_ADDRESS_GROUPS),
+    result &= (SCRuleVarsGetConfVar(NULL,"$EXTERNAL_NET", SC_RULE_VARS_ADDRESS_GROUPS) != NULL &&
+               strcmp(SCRuleVarsGetConfVar(NULL,"$EXTERNAL_NET", SC_RULE_VARS_ADDRESS_GROUPS),
                        "[!192.168.0.0/16,2000::/3]") == 0);
-    result &= (SCRuleVarsGetConfVar("$HTTP_SERVERS", SC_RULE_VARS_ADDRESS_GROUPS) != NULL &&
-               strcmp(SCRuleVarsGetConfVar("$HTTP_SERVERS", SC_RULE_VARS_ADDRESS_GROUPS),
+    result &= (SCRuleVarsGetConfVar(NULL,"$HTTP_SERVERS", SC_RULE_VARS_ADDRESS_GROUPS) != NULL &&
+               strcmp(SCRuleVarsGetConfVar(NULL,"$HTTP_SERVERS", SC_RULE_VARS_ADDRESS_GROUPS),
                        "!192.168.0.0/16") == 0);
-    result &= (SCRuleVarsGetConfVar("$SMTP_SERVERS", SC_RULE_VARS_ADDRESS_GROUPS) != NULL &&
-               strcmp(SCRuleVarsGetConfVar("$SMTP_SERVERS", SC_RULE_VARS_ADDRESS_GROUPS),
+    result &= (SCRuleVarsGetConfVar(NULL,"$SMTP_SERVERS", SC_RULE_VARS_ADDRESS_GROUPS) != NULL &&
+               strcmp(SCRuleVarsGetConfVar(NULL,"$SMTP_SERVERS", SC_RULE_VARS_ADDRESS_GROUPS),
                        "!192.168.0.0/16") == 0);
-    result &= (SCRuleVarsGetConfVar("$SQL_SERVERS", SC_RULE_VARS_ADDRESS_GROUPS) != NULL &&
-               strcmp(SCRuleVarsGetConfVar("$SQL_SERVERS", SC_RULE_VARS_ADDRESS_GROUPS),
+    result &= (SCRuleVarsGetConfVar(NULL,"$SQL_SERVERS", SC_RULE_VARS_ADDRESS_GROUPS) != NULL &&
+               strcmp(SCRuleVarsGetConfVar(NULL,"$SQL_SERVERS", SC_RULE_VARS_ADDRESS_GROUPS),
                        "!192.168.0.0/16") == 0);
-    result &= (SCRuleVarsGetConfVar("$DNS_SERVERS", SC_RULE_VARS_ADDRESS_GROUPS) != NULL &&
-               strcmp(SCRuleVarsGetConfVar("$DNS_SERVERS", SC_RULE_VARS_ADDRESS_GROUPS),
+    result &= (SCRuleVarsGetConfVar(NULL,"$DNS_SERVERS", SC_RULE_VARS_ADDRESS_GROUPS) != NULL &&
+               strcmp(SCRuleVarsGetConfVar(NULL,"$DNS_SERVERS", SC_RULE_VARS_ADDRESS_GROUPS),
                        "any") == 0);
-    result &= (SCRuleVarsGetConfVar("$TELNET_SERVERS", SC_RULE_VARS_ADDRESS_GROUPS) != NULL &&
-               strcmp(SCRuleVarsGetConfVar("$TELNET_SERVERS", SC_RULE_VARS_ADDRESS_GROUPS),
+    result &= (SCRuleVarsGetConfVar(NULL,"$TELNET_SERVERS", SC_RULE_VARS_ADDRESS_GROUPS) != NULL &&
+               strcmp(SCRuleVarsGetConfVar(NULL,"$TELNET_SERVERS", SC_RULE_VARS_ADDRESS_GROUPS),
                        "any") == 0);
-    result &= (SCRuleVarsGetConfVar("$AIM_SERVERS", SC_RULE_VARS_ADDRESS_GROUPS) != NULL &&
-               strcmp(SCRuleVarsGetConfVar("$AIM_SERVERS", SC_RULE_VARS_ADDRESS_GROUPS),
+    result &= (SCRuleVarsGetConfVar(NULL,"$AIM_SERVERS", SC_RULE_VARS_ADDRESS_GROUPS) != NULL &&
+               strcmp(SCRuleVarsGetConfVar(NULL,"$AIM_SERVERS", SC_RULE_VARS_ADDRESS_GROUPS),
                        "any") == 0);
  
      /* check for port-groups */
-    result &= (SCRuleVarsGetConfVar("$HTTP_PORTS", SC_RULE_VARS_PORT_GROUPS) != NULL &&
-               strcmp(SCRuleVarsGetConfVar("$HTTP_PORTS", SC_RULE_VARS_PORT_GROUPS),
+    result &= (SCRuleVarsGetConfVar(NULL,"$HTTP_PORTS", SC_RULE_VARS_PORT_GROUPS) != NULL &&
+               strcmp(SCRuleVarsGetConfVar(NULL,"$HTTP_PORTS", SC_RULE_VARS_PORT_GROUPS),
                        "80:81,88") == 0);
-    result &= (SCRuleVarsGetConfVar("$SHELLCODE_PORTS", SC_RULE_VARS_PORT_GROUPS) != NULL &&
-               strcmp(SCRuleVarsGetConfVar("$SHELLCODE_PORTS", SC_RULE_VARS_PORT_GROUPS),
+    result &= (SCRuleVarsGetConfVar(NULL,"$SHELLCODE_PORTS", SC_RULE_VARS_PORT_GROUPS) != NULL &&
+               strcmp(SCRuleVarsGetConfVar(NULL,"$SHELLCODE_PORTS", SC_RULE_VARS_PORT_GROUPS),
                        "80") == 0);
-    result &= (SCRuleVarsGetConfVar("$ORACLE_PORTS", SC_RULE_VARS_PORT_GROUPS) != NULL &&
-               strcmp(SCRuleVarsGetConfVar("$ORACLE_PORTS", SC_RULE_VARS_PORT_GROUPS),
+    result &= (SCRuleVarsGetConfVar(NULL,"$ORACLE_PORTS", SC_RULE_VARS_PORT_GROUPS) != NULL &&
+               strcmp(SCRuleVarsGetConfVar(NULL,"$ORACLE_PORTS", SC_RULE_VARS_PORT_GROUPS),
                        "1521") == 0);
-    result &= (SCRuleVarsGetConfVar("$SSH_PORTS", SC_RULE_VARS_PORT_GROUPS) != NULL &&
-               strcmp(SCRuleVarsGetConfVar("$SSH_PORTS", SC_RULE_VARS_PORT_GROUPS),
+    result &= (SCRuleVarsGetConfVar(NULL,"$SSH_PORTS", SC_RULE_VARS_PORT_GROUPS) != NULL &&
+               strcmp(SCRuleVarsGetConfVar(NULL,"$SSH_PORTS", SC_RULE_VARS_PORT_GROUPS),
                        "22") == 0);
  
      ConfDeInit();
@@ -238,11 +239,11 @@ int SCRuleVarsNegativeTest02(void)
      ConfInit();
      ConfYamlLoadString(dummy_conf_string, strlen(dummy_conf_string));
  
-    result &= (SCRuleVarsGetConfVar("$HOME_NETW", SC_RULE_VARS_ADDRESS_GROUPS) == NULL);
-    result &= (SCRuleVarsGetConfVar("$home_net", SC_RULE_VARS_ADDRESS_GROUPS) == NULL);
+    result &= (SCRuleVarsGetConfVar(NULL,"$HOME_NETW", SC_RULE_VARS_ADDRESS_GROUPS) == NULL);
+    result &= (SCRuleVarsGetConfVar(NULL,"$home_net", SC_RULE_VARS_ADDRESS_GROUPS) == NULL);
  
-    result &= (SCRuleVarsGetConfVar("$TOMCAT_PORTSW", SC_RULE_VARS_PORT_GROUPS) == NULL);
-    result &= (SCRuleVarsGetConfVar("$tomcat_ports", SC_RULE_VARS_PORT_GROUPS) == NULL);
+    result &= (SCRuleVarsGetConfVar(NULL,"$TOMCAT_PORTSW", SC_RULE_VARS_PORT_GROUPS) == NULL);
+    result &= (SCRuleVarsGetConfVar(NULL,"$tomcat_ports", SC_RULE_VARS_PORT_GROUPS) == NULL);
  
      ConfDeInit();
      ConfRestoreContextBackup();
diff --git a/src/util-rule-vars.h b/src/util-rule-vars.h

index 35f677ffb6d951bbb59a486e492b2c86d4250bea..57d161e9f154de32e252e557dab97bcc459235a0 100644 (file)
--- a/src/util-rule-vars.h
+++ b/src/util-rule-vars.h
@@ -30,7 +30,7 @@ typedef enum {
      SC_RULE_VARS_PORT_GROUPS,
  } SCRuleVarsType;
  
-char *SCRuleVarsGetConfVar(const char *, SCRuleVarsType);
+char *SCRuleVarsGetConfVar(const DetectEngineCtx *, const char *, SCRuleVarsType);
  void SCRuleVarsRegisterTests(void);
  
  #endif /* __UTIL_RULE_VARS_H__ */
author	Victor Julien <victor@inliniac.net>
	Sun, 1 Mar 2015 19:30:01 +0000 (20:30 +0100)
committer	Victor Julien <victor@inliniac.net>
	Thu, 19 Mar 2015 17:02:18 +0000 (18:02 +0100)
src/detect-engine-address.c		patch \| blob \| blame \| history
src/detect-engine-iponly.c		patch \| blob \| blame \| history
src/detect-engine-iponly.h		patch \| blob \| blame \| history
src/detect-engine-port.c		patch \| blob \| blame \| history
src/detect-parse.c		patch \| blob \| blame \| history
src/util-rule-vars.c		patch \| blob \| blame \| history
src/util-rule-vars.h		patch \| blob \| blame \| history