static int add_int_data(idmef_alert_t *alert, const char *meaning, uint32_t data)
{
int ret;
prelude_string_t *str;
idmef_additional_data_t *ad;
ret = idmef_alert_new_additional_data(alert, &ad, IDMEF_LIST_APPEND);
if ( ret < 0 )
return ret;
idmef_additional_data_set_integer(ad, data);
ret = idmef_additional_data_new_meaning(ad, &str);
if ( ret < 0 ) {
ErrorMessage("%s: error creating additional-data meaning: %s.\n",
prelude_strsource(ret), prelude_strerror(ret));
return -1;
}
ret = prelude_string_set_ref(str, meaning);
if ( ret < 0 ) {
ErrorMessage("%s: error setting integer data meaning: %s.\n",
prelude_strsource(ret), prelude_strerror(ret));
return -1;
}
return 0;
}
int add_string_additional_data(idmef_alert_t *alert, const char *meaning, const char *ptr){
int ret;
prelude_string_t *str;
idmef_additional_data_t *ad;
idmef_data_t *data;
ret = idmef_alert_new_additional_data(alert, &ad, IDMEF_LIST_APPEND);
if ( ret < 0 )
return ret;
idmef_additional_data_set_type(ad, IDMEF_ADDITIONAL_DATA_TYPE_STRING);
idmef_additional_data_new_data(ad, &data);
ret = idmef_data_set_char_string_ref(data, ptr);
if ( ret < 0)
return ret;
ret = idmef_additional_data_new_meaning(ad, &str);
if ( ret < 0)
return ret;
ret = prelude_string_set_ref(str, meaning);
if ( ret < 0 )
return ret;
return 0;
}
/**
* \brief Add integer data, to be stored in the Additional Data
* field of the IDMEF alert (see section 4.2.4.6 of RFC 4765).
*
* \return 0 if ok
*/
static int AddIntData(idmef_alert_t *alert, const char *meaning, uint32_t data)
{
int ret;
prelude_string_t *str;
idmef_additional_data_t *ad;
SCEnter();
ret = idmef_alert_new_additional_data(alert, &ad, IDMEF_LIST_APPEND);
if ( ret < 0 )
SCReturnInt(ret);
idmef_additional_data_set_integer(ad, data);
ret = idmef_additional_data_new_meaning(ad, &str);
if ( ret < 0 ) {
SCLogDebug("%s: error creating additional-data meaning: %s.",
prelude_strsource(ret), prelude_strerror(ret));
SCReturnInt(-1);
}
ret = prelude_string_set_ref(str, meaning);
if ( ret < 0 ) {
SCLogDebug("%s: error setting integer data meaning: %s.",
prelude_strsource(ret), prelude_strerror(ret));
SCReturnInt(-1);
}
SCReturnInt(0);
}
int add_int_additional_data(idmef_alert_t *alert, const char *meaning, int data){
int ret;
prelude_string_t *str;
idmef_additional_data_t *ad;
ret = idmef_alert_new_additional_data(alert, &ad, IDMEF_LIST_APPEND);
if ( ret < 0 )
return ret;
idmef_additional_data_set_integer(ad, data);
ret = idmef_additional_data_new_meaning(ad, &str);
if ( ret < 0)
return ret;
ret = prelude_string_set_ref(str, meaning);
if ( ret < 0 )
return ret;
return 0;
}
/**
* \brief Add binary data, to be stored in the Additional Data
* field of the IDMEF alert (see section 4.2.4.6 of RFC 4765).
*
* \return 0 if ok
*/
static int AddByteData(idmef_alert_t *alert, const char *meaning, const unsigned char *data, size_t size)
{
int ret;
prelude_string_t *str;
idmef_additional_data_t *ad;
SCEnter();
if ( ! data || ! size )
SCReturnInt(0);
ret = idmef_alert_new_additional_data(alert, &ad, IDMEF_LIST_APPEND);
if ( ret < 0 )
SCReturnInt(0);
ret = idmef_additional_data_set_byte_string_ref(ad, data, size);
if ( ret < 0 ) {
SCLogDebug("%s: error setting byte string data: %s.",
prelude_strsource(ret), prelude_strerror(ret));
SCReturnInt(-1);
}
ret = idmef_additional_data_new_meaning(ad, &str);
if ( ret < 0 ) {
SCLogDebug("%s: error creating additional-data meaning: %s.",
prelude_strsource(ret), prelude_strerror(ret));
SCReturnInt(-1);
}
ret = prelude_string_set_ref(str, meaning);
if ( ret < 0 ) {
SCLogDebug("%s: error setting byte string data meaning: %s.",
prelude_strsource(ret), prelude_strerror(ret));
SCReturnInt(-1);
}
SCReturnInt(0);
}
static int add_byte_data(idmef_alert_t *alert, const char *meaning, const unsigned char *data, size_t size)
{
int ret;
prelude_string_t *str;
idmef_additional_data_t *ad;
if ( ! data || ! size )
return 0;
ret = idmef_alert_new_additional_data(alert, &ad, IDMEF_LIST_APPEND);
if ( ret < 0 )
return ret;
ret = idmef_additional_data_set_byte_string_ref(ad, data, size);
if ( ret < 0 ) {
ErrorMessage("%s: error setting byte string data: %s.\n",
prelude_strsource(ret), prelude_strerror(ret));
return -1;
}
ret = idmef_additional_data_new_meaning(ad, &str);
if ( ret < 0 ) {
ErrorMessage("%s: error creating additional-data meaning: %s.\n",
prelude_strsource(ret), prelude_strerror(ret));
return -1;
}
ret = prelude_string_set_ref(str, meaning);
if ( ret < 0 ) {
ErrorMessage("%s: error setting byte string data meaning: %s.\n",
prelude_strsource(ret), prelude_strerror(ret));
return -1;
}
return 0;
}
