56 lines
1.9 KiB
C
56 lines
1.9 KiB
C
/*
|
|
* Copyright (C) 2013-2022 Cisco Systems, Inc. and/or its affiliates. All rights reserved.
|
|
* Copyright (C) 2007-2013 Sourcefire, Inc.
|
|
*
|
|
* Authors: Tomasz Kojm
|
|
*
|
|
* This program is free software; you can redistribute it and/or modify
|
|
* it under the terms of the GNU General Public License version 2 as
|
|
* published by the Free Software Foundation.
|
|
*
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU General Public License
|
|
* along with this program; if not, write to the Free Software
|
|
* Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston,
|
|
* MA 02110-1301, USA.
|
|
*/
|
|
|
|
#ifndef __MATCHER_BM_H
|
|
#define __MATCHER_BM_H
|
|
|
|
#include "matcher.h"
|
|
#include "filetypes.h"
|
|
#include "clamav-types.h"
|
|
#include "fmap.h"
|
|
#include "others.h"
|
|
|
|
#define BM_BOUNDARY_EOL 1
|
|
|
|
struct cli_bm_patt {
|
|
unsigned char *pattern, *prefix;
|
|
char *virname;
|
|
uint32_t offdata[4], offset_min, offset_max;
|
|
struct cli_bm_patt *next;
|
|
uint16_t length, prefix_length;
|
|
uint16_t cnt;
|
|
unsigned char pattern0;
|
|
uint32_t boundary, filesize;
|
|
};
|
|
|
|
struct cli_bm_off {
|
|
uint32_t *offset, *offtab, cnt, pos;
|
|
};
|
|
|
|
cl_error_t cli_bm_addpatt(struct cli_matcher *root, struct cli_bm_patt *pattern, const char *offset);
|
|
cl_error_t cli_bm_init(struct cli_matcher *root);
|
|
cl_error_t cli_bm_initoff(const struct cli_matcher *root, struct cli_bm_off *data, const struct cli_target_info *info);
|
|
void cli_bm_freeoff(struct cli_bm_off *data);
|
|
cl_error_t cli_bm_scanbuff(const unsigned char *buffer, uint32_t length, const char **virname, const struct cli_bm_patt **patt, const struct cli_matcher *root, uint32_t offset, const struct cli_target_info *info, struct cli_bm_off *offdata, cli_ctx *ctx);
|
|
void cli_bm_free(struct cli_matcher *root);
|
|
|
|
#endif
|