[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[ossec-dev] ossec-hids: decode-xml.c (HEAD) decoder.c (HEAD) decoder.h (HEAD) [dcid]

To: dancid@xxxxxxxxxxxxxxx
Subject: [ossec-dev] ossec-hids: decode-xml.c (HEAD) decoder.c (HEAD) decoder.h (HEAD) [dcid]
From: OSSEC CVS <cvs-commit@xxxxxxxxx>
Date: Thu, 7 Sep 2006 20:19:06 -0300 (ADT)
Content-transfer-encoding: 8bit

Module name:	ossec-hids
Changes by:	dcid	06/09/07 20:19:04

Modified files:
	decode-xml.c decoder.c decoder.h

Log message:
Description: Multiple windows fixes. Porting the agent/server changes to windows.
Reviewed by: dcid
Bug:

Index: decode-xml.c
===================================================================
RCS file: /usr/cvsroot/ossec-hids/src/analysisd/decoders/decode-xml.c,v
diff -u -r1.26 -r1.27
--- decode-xml.c	3 Aug 2006 21:51:20 -0000	1.26
+++ decode-xml.c	7 Sep 2006 23:19:04 -0000	1.27
@@ -374,6 +374,10 @@
                     {
                         pi->order[order_int] = (void *)Data_FP;
                     }
+                    else if(strstr(*norder, "system_name") != NULL)
+                    {
+                        pi->order[order_int] = (void *)SystemName_FP;
+                    }
                     else
                     {
                         ErrorExit("decode-xml: Wrong field '%s' in the order"
@@ -439,6 +443,10 @@
                     else if(strstr(*norder, "data") != NULL)
                     {
                         pi->fts|=FTS_DATA;
+                    }
+                    else if(strstr(*norder, "system_name") != NULL)
+                    {
+                        pi->fts|=FTS_SYSTEMNAME;
                     }
                     else
                     {

Index: decoder.c
===================================================================
RCS file: /usr/cvsroot/ossec-hids/src/analysisd/decoders/decoder.c,v
diff -u -r1.28 -r1.29
--- decoder.c	28 Aug 2006 18:45:24 -0000	1.28
+++ decoder.c	7 Sep 2006 23:19:04 -0000	1.29
@@ -319,6 +319,11 @@
     lf->data = field;
     return(NULL);
 }
+void *SystemName_FP(Eventinfo *lf, char *field)
+{
+    lf->systemname = field;
+    return(NULL);
+}
 void *None_FP(Eventinfo *lf, char *field)
 {
     free(field);

Index: decoder.h
===================================================================
RCS file: /usr/cvsroot/ossec-hids/src/analysisd/decoders/decoder.h,v
diff -u -r1.10 -r1.11
--- decoder.h	3 Aug 2006 21:51:20 -0000	1.10
+++ decoder.h	7 Sep 2006 23:19:04 -0000	1.11
@@ -73,6 +73,7 @@
 void *ID_FP(Eventinfo *lf, char *field);
 void *Url_FP(Eventinfo *lf, char *field);
 void *Data_FP(Eventinfo *lf, char *field);
+void *SystemName_FP(Eventinfo *lf, char *field);
 void *None_FP(Eventinfo *lf, char *field);
 
 #endif

Prev by Date: [ossec-dev] ossec-hids: ossec2mysql.pl (HEAD) ossec2mysqld.pl (HEAD) [meirm]
Next by Date: [ossec-dev] More development issues/ideas
Previous by thread: [ossec-dev] ossec-hids: fts.c (HEAD) [dcid]
Next by thread: [ossec-dev] More development issues/ideas
Index(es):
- Date
- Thread

OSSEC home | Main Index | Thread Index

OSSEC project: www.ossec.net.
Mailling list information: http://www.ossec.net/en/mailing_lists.html.