From 61fc5be202f05113de07c063fa3fc9ccc47625d8 Mon Sep 17 00:00:00 2001 From: Luca Deri Date: Fri, 23 Jul 2021 17:26:56 +0200 Subject: Reworked flow risk implementation --- src/include/ndpi_main.h | 3 ++- src/include/ndpi_typedefs.h | 3 ++- 2 files changed, 4 insertions(+), 2 deletions(-) (limited to 'src/include') diff --git a/src/include/ndpi_main.h b/src/include/ndpi_main.h index c8d9b06ae..3369e979a 100644 --- a/src/include/ndpi_main.h +++ b/src/include/ndpi_main.h @@ -151,7 +151,8 @@ extern "C" { int ndpi_handle_ipv6_extension_headers(struct ndpi_detection_module_struct *ndpi_str, const u_int8_t ** l4ptr, u_int16_t * l4len, u_int8_t * nxt_hdr); - void ndpi_set_risk(struct ndpi_flow_struct *flow, ndpi_risk_enum r); + void ndpi_set_risk(struct ndpi_detection_module_struct *ndpi_str, + struct ndpi_flow_struct *flow, ndpi_risk_enum r); int ndpi_is_printable_string(char const * const str, size_t len); float ndpi_calculate_entropy(u_int8_t const * const buf, size_t len); #ifdef __cplusplus diff --git a/src/include/ndpi_typedefs.h b/src/include/ndpi_typedefs.h index 66a731d47..a8bc466f6 100644 --- a/src/include/ndpi_typedefs.h +++ b/src/include/ndpi_typedefs.h @@ -1301,7 +1301,8 @@ struct ndpi_flow_struct { /* HTTP host or DNS query */ u_char host_server_name[240]; u_int8_t initial_binary_bytes[8], initial_binary_bytes_len; - u_int8_t risk_checked; + u_int8_t risk_checked:1, ip_risk_mask_evaluated:1, _notused:6; + ndpi_risk host_risk_mask; /* Stores the flow risk mask for flow peers */ ndpi_risk risk; /* Issues found with this flow [bitmask of ndpi_risk] */ /* -- cgit v1.2.3