yara_inspection_core.h File Reference
#include <doca_apsh.h>#include <doca_apsh_attr.h>#include <doca_dev.h>#include <doca_telemetry_exporter.h>
Include dependency graph for yara_inspection_core.h:
This graph shows which files directly or indirectly include this file:
Go to the source code of this file.
Data Structures | |
| struct | yara_config |
| struct | yara_resources |
| struct | yara_event |
Macros | |
| #define | MAX_PATH_LEN 260 |
| #define | MAX_PROCESS_NAME_LEN 1000 |
Functions | |
| struct yara_event | __attribute__ ((packed)) |
| doca_error_t | register_yara_params (void) |
| doca_error_t | yara_inspection_init (struct yara_config *conf, struct yara_resources *resources) |
| void | yara_inspection_cleanup (struct yara_resources *resources) |
| doca_error_t | telemetry_start (struct doca_telemetry_exporter_schema **telemetry_schema, struct doca_telemetry_exporter_source **telemetry_source, doca_telemetry_exporter_type_index_t *index) |
| void | telemetry_destroy (struct doca_telemetry_exporter_schema *telemetry_schema, struct doca_telemetry_exporter_source *telemetry_source) |
Variables | |
| doca_telemetry_exporter_timestamp_t | timestamp |
| int32_t | pid |
| char | process_name [MAX_PROCESS_NAME_LEN+1] |
| char | yara_rule_name [MAX_PATH_LEN+1] |
| uint64_t | vad |
Macro Definition Documentation
◆ MAX_PATH_LEN
| #define MAX_PATH_LEN 260 |
Definition at line 45 of file yara_inspection_core.h.
◆ MAX_PROCESS_NAME_LEN
| #define MAX_PROCESS_NAME_LEN 1000 |
Definition at line 46 of file yara_inspection_core.h.
Function Documentation
◆ __attribute__()
| struct yara_event __attribute__ | ( | (packed) | ) |
Definition at line 1 of file telemetry_exporter.h.
◆ register_yara_params()
| doca_error_t register_yara_params | ( | void | ) |
Definition at line 147 of file yara_inspection_core.c.
◆ telemetry_destroy()
| void telemetry_destroy | ( | struct doca_telemetry_exporter_schema * | telemetry_schema, |
| struct doca_telemetry_exporter_source * | telemetry_source | ||
| ) |
Definition at line 720 of file app_shield_agent_core.c.
◆ telemetry_start()
| doca_error_t telemetry_start | ( | struct doca_telemetry_exporter_schema ** | telemetry_schema, |
| struct doca_telemetry_exporter_source ** | telemetry_source, | ||
| doca_telemetry_exporter_type_index_t * | index | ||
| ) |
Definition at line 483 of file yara_inspection_core.c.
◆ yara_inspection_cleanup()
| void yara_inspection_cleanup | ( | struct yara_resources * | resources | ) |
Definition at line 395 of file yara_inspection_core.c.
◆ yara_inspection_init()
| doca_error_t yara_inspection_init | ( | struct yara_config * | conf, |
| struct yara_resources * | resources | ||
| ) |
Definition at line 383 of file yara_inspection_core.c.
Variable Documentation
◆ pid
| int32_t pid |
Definition at line 2 of file yara_inspection_core.h.
◆ process_name
| char process_name[MAX_PROCESS_NAME_LEN+1] |
Definition at line 3 of file yara_inspection_core.h.
◆ timestamp
| doca_telemetry_exporter_timestamp_t timestamp |
Definition at line 0 of file yara_inspection_core.h.
◆ vad
| uint64_t vad |
Definition at line 5 of file yara_inspection_core.h.
◆ yara_rule_name
| char yara_rule_name[MAX_PATH_LEN+1] |
Definition at line 4 of file yara_inspection_core.h.
