aiden
/
suricata
mirror of https://github.com/OISF/suricata
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

snmp: restrict rust visibility

Browse Source
pull/12965/head
Philippe Antoine 10 months ago committed by Victor Julien
parent d24a3eb5f6
commit e3ee922fbf
3 changed files with 20 additions and 21 deletions
Show Stats Download Patch File Download Diff File

16
rust/src/snmp/detect.rs
Unescape Escape View File

@ -105,7 +105,7 @@ unsafe extern "C" fn snmp_detect_pdutype_free(_de: *mut c_void, ctx: *mut c_void
SCDetectU32Free(ctx); SCDetectU32Free(ctx);
} }
pub unsafe extern "C" fn snmp_detect_usm_setup( unsafe extern "C" fn snmp_detect_usm_setup(
de: *mut c_void, s: *mut c_void, _raw: *const std::os::raw::c_char, de: *mut c_void, s: *mut c_void, _raw: *const std::os::raw::c_char,
) -> c_int { ) -> c_int {
if DetectSignatureSetAppProto(s, ALPROTO_SNMP) != 0 { if DetectSignatureSetAppProto(s, ALPROTO_SNMP) != 0 {
@ -117,7 +117,7 @@ pub unsafe extern "C" fn snmp_detect_usm_setup(
return 0; return 0;
} }
pub unsafe extern "C" fn snmp_detect_usm_get( unsafe extern "C" fn snmp_detect_usm_get(
tx: *const c_void, _flow_flags: u8, buffer: *mut *const u8, buffer_len: *mut u32, tx: *const c_void, _flow_flags: u8, buffer: *mut *const u8, buffer_len: *mut u32,
) -> bool { ) -> bool {
let tx = cast_pointer!(tx, SNMPTransaction); let tx = cast_pointer!(tx, SNMPTransaction);
@ -129,7 +129,7 @@ pub unsafe extern "C" fn snmp_detect_usm_get(
return false; return false;
} }
pub unsafe extern "C" fn snmp_detect_usm_get_data( unsafe extern "C" fn snmp_detect_usm_get_data(
de: *mut c_void, transforms: *const c_void, flow: *const c_void, flow_flags: u8, de: *mut c_void, transforms: *const c_void, flow: *const c_void, flow_flags: u8,
tx: *const c_void, list_id: c_int, tx: *const c_void, list_id: c_int,
) -> *mut c_void { ) -> *mut c_void {
@ -144,7 +144,7 @@ pub unsafe extern "C" fn snmp_detect_usm_get_data(
); );
} }
pub unsafe extern "C" fn snmp_detect_community_setup( unsafe extern "C" fn snmp_detect_community_setup(
de: *mut c_void, s: *mut c_void, _raw: *const std::os::raw::c_char, de: *mut c_void, s: *mut c_void, _raw: *const std::os::raw::c_char,
) -> c_int { ) -> c_int {
if DetectSignatureSetAppProto(s, ALPROTO_SNMP) != 0 { if DetectSignatureSetAppProto(s, ALPROTO_SNMP) != 0 {
@ -156,7 +156,7 @@ pub unsafe extern "C" fn snmp_detect_community_setup(
return 0; return 0;
} }
pub unsafe extern "C" fn snmp_detect_community_get( unsafe extern "C" fn snmp_detect_community_get(
tx: *const c_void, _flow_flags: u8, buffer: *mut *const u8, buffer_len: *mut u32, tx: *const c_void, _flow_flags: u8, buffer: *mut *const u8, buffer_len: *mut u32,
) -> bool { ) -> bool {
let tx = cast_pointer!(tx, SNMPTransaction); let tx = cast_pointer!(tx, SNMPTransaction);
@ -168,7 +168,7 @@ pub unsafe extern "C" fn snmp_detect_community_get(
return false; return false;
} }
pub unsafe extern "C" fn snmp_detect_community_get_data( unsafe extern "C" fn snmp_detect_community_get_data(
de: *mut c_void, transforms: *const c_void, flow: *const c_void, flow_flags: u8, de: *mut c_void, transforms: *const c_void, flow: *const c_void, flow_flags: u8,
tx: *const c_void, list_id: c_int, tx: *const c_void, list_id: c_int,
) -> *mut c_void { ) -> *mut c_void {
@ -182,8 +182,8 @@ pub unsafe extern "C" fn snmp_detect_community_get_data(
snmp_detect_community_get, snmp_detect_community_get,
); );
} }
#[no_mangle]
pub unsafe extern "C" fn SCDetectSNMPRegister() { pub(super) unsafe extern "C" fn detect_snmp_register() {
let kw = SCSigTableElmt { let kw = SCSigTableElmt {
name: b"snmp.version\0".as_ptr() as *const libc::c_char, name: b"snmp.version\0".as_ptr() as *const libc::c_char,
desc: b"match SNMP version\0".as_ptr() as *const libc::c_char, desc: b"match SNMP version\0".as_ptr() as *const libc::c_char,

3
rust/src/snmp/log.rs
Unescape Escape View File

@ -77,8 +77,7 @@ fn snmp_log_response(jsb: &mut JsonBuilder, tx: &SNMPTransaction) -> Result<(),
return Ok(()); return Ok(());
} }
#[no_mangle] pub(super) unsafe extern "C" fn snmp_log_json_response(
pub unsafe extern "C" fn SCSnmpLogJsonResponse(
tx: *const std::os::raw::c_void, jsb: *mut std::os::raw::c_void, tx: *const std::os::raw::c_void, jsb: *mut std::os::raw::c_void,
) -> bool { ) -> bool {
let tx = cast_pointer!(tx, SNMPTransaction); let tx = cast_pointer!(tx, SNMPTransaction);

22
rust/src/snmp/snmp.rs
Unescape Escape View File

@ -22,8 +22,8 @@ use crate::flow::Flow;
use crate::snmp::snmp_parser::*; use crate::snmp::snmp_parser::*;
use crate::core::{self, *}; use crate::core::{self, *};
use crate::applayer::{self, *}; use crate::applayer::{self, *};
use super::log::SCSnmpLogJsonResponse; use super::log::snmp_log_json_response;
use super::detect::SCDetectSNMPRegister; use super::detect::detect_snmp_register;
use std; use std;
use std::ffi::CString; use std::ffi::CString;
@ -38,18 +38,18 @@ use suricata_sys::sys::{
}; };
#[derive(AppLayerEvent)] #[derive(AppLayerEvent)]
pub enum SNMPEvent { enum SNMPEvent {
MalformedData, MalformedData,
UnknownSecurityModel, UnknownSecurityModel,
VersionMismatch, VersionMismatch,
} }
#[derive(Default)] #[derive(Default)]
pub struct SNMPState<'a> { struct SNMPState<'a> {
state_data: AppLayerStateData, state_data: AppLayerStateData,
/// SNMP protocol version /// SNMP protocol version
pub version: u32, version: u32,
/// List of transactions for this session /// List of transactions for this session
transactions: Vec<SNMPTransaction<'a>>, transactions: Vec<SNMPTransaction<'a>>,
@ -58,7 +58,7 @@ pub struct SNMPState<'a> {
tx_id: u64, tx_id: u64,
} }
pub struct SNMPPduInfo<'a> { pub(super) struct SNMPPduInfo<'a> {
pub pdu_type: PduType, pub pdu_type: PduType,
pub err: ErrorStatus, pub err: ErrorStatus,
@ -68,7 +68,7 @@ pub struct SNMPPduInfo<'a> {
pub vars: Vec<Oid<'a>>, pub vars: Vec<Oid<'a>>,
} }
pub struct SNMPTransaction<'a> { pub(super) struct SNMPTransaction<'a> {
/// PDU version /// PDU version
pub version: u32, pub version: u32,
@ -97,7 +97,7 @@ impl Transaction for SNMPTransaction<'_> {
} }
impl<'a> SNMPState<'a> { impl<'a> SNMPState<'a> {
pub fn new() -> SNMPState<'a> { fn new() -> SNMPState<'a> {
Default::default() Default::default()
} }
} }
@ -243,7 +243,7 @@ impl<'a> SNMPState<'a> {
} }
impl<'a> SNMPTransaction<'a> { impl<'a> SNMPTransaction<'a> {
pub fn new(direction: Direction, version: u32, id: u64) -> SNMPTransaction<'a> { fn new(direction: Direction, version: u32, id: u64) -> SNMPTransaction<'a> {
SNMPTransaction { SNMPTransaction {
version, version,
info: None, info: None,
@ -415,10 +415,10 @@ pub unsafe extern "C" fn SCRegisterSnmpParser() {
logname: b"JsonSNMPLog\0".as_ptr() as *const std::os::raw::c_char, logname: b"JsonSNMPLog\0".as_ptr() as *const std::os::raw::c_char,
alproto: ALPROTO_SNMP, alproto: ALPROTO_SNMP,
dir: SCOutputJsonLogDirection::LOG_DIR_PACKET as u8, dir: SCOutputJsonLogDirection::LOG_DIR_PACKET as u8,
LogTx: Some(SCSnmpLogJsonResponse), LogTx: Some(snmp_log_json_response),
}; };
SCOutputEvePreRegisterLogger(reg_data); SCOutputEvePreRegisterLogger(reg_data);
SigTablePreRegister(SCDetectSNMPRegister); SigTablePreRegister(detect_snmp_register);
if AppLayerProtoDetectConfProtoDetectionEnabled(ip_proto_str.as_ptr(), parser.name) != 0 { if AppLayerProtoDetectConfProtoDetectionEnabled(ip_proto_str.as_ptr(), parser.name) != 0 {
// port 161 // port 161
_ = AppLayerRegisterProtocolDetection(&parser, 1); _ = AppLayerRegisterProtocolDetection(&parser, 1);

Write Preview
Loading…
Cancel
Save