Corsaro output state. More...
Data Fields | |
| struct timeval | init_time |
| The local wall time that corsaro was started at. More... | |
| libtrace_t * | trace |
| The libtrace trace pointer for the trace that we are being fed. More... | |
| char * | uridata |
| The uri that was used to open the trace file. More... | |
| char * | monitorname |
| The name of the monitor that corsaro is running on. More... | |
| char * | template |
| The template used to create corsaro output files. More... | |
| corsaro_file_mode_t | output_mode |
| The default output mode for new files. More... | |
| corsaro_file_compress_t | compress |
| The compression type (based on the file name) More... | |
| int | compress_level |
| The compression level (ignored if not compressing) More... | |
| corsaro_file_t * | global_file |
| The corsaro output file to write global output to. More... | |
| int | global_file_disabled |
| Has the user asked us not to create a global output file? More... | |
| corsaro_file_t * | logfile |
| The file to write log output to. More... | |
| int | logfile_disabled |
| Has the user asked us not to log to a file? More... | |
| corsaro_packet_t * | packet |
| A pointer to the wrapper packet passed to the plugins. More... | |
| corsaro_plugin_manager_t * | plugin_manager |
| A pointer to the corsaro plugin manager state. More... | |
| corsaro_interval_align_t | interval_align |
| The first interval end will be rounded down to the nearest integer multiple of the interval length if enabled. More... | |
| int | interval |
| The number of seconds after which plugins will be asked to dump data. More... | |
| int | output_rotate |
| The output files will be rotated after n intervals if >0. More... | |
| int | meta_output_rotate |
| The meta output files will be rotated after n intervals if >=0 a value of 0 indicates no rotation, <0 indicates the output_rotate value should be used. More... | |
| corsaro_interval_t | interval_start |
| State for the current interval. More... | |
| uint32_t | next_report |
| The time that this interval will be dumped at. More... | |
| struct timeval | first_ts |
| The time of the the first packet seen by corsaro. More... | |
| struct timeval | last_ts |
| The time of the most recent packet seen by corsaro. More... | |
| int | interval_end_needed |
| Whether there are un-dumped packets in the current interval. More... | |
| uint64_t | packet_cnt |
| The total number of packets that have been processed. More... | |
| uint64_t | accepted_pkts |
| The total number of packets that have been accepted by libtrace (before the current interval) More... | |
| uint64_t | dropped_pkts |
| The total number of packets that have been dropped by libtrace (before the current interval) More... | |
| int | started |
| Has this corsaro object been started yet? More... | |
Corsaro output state.
Definition at line 230 of file corsaro_int.h.
| uint64_t corsaro::accepted_pkts |
The total number of packets that have been accepted by libtrace (before the current interval)
Definition at line 311 of file corsaro_int.h.
Referenced by corsaro_get_accepted_packets(), corsaro_init(), corsaro_set_trace(), and end_interval().
| corsaro_file_compress_t corsaro::compress |
The compression type (based on the file name)
Definition at line 251 of file corsaro_int.h.
Referenced by corsaro_init(), corsaro_io_prepare_file(), and corsaro_pcap_start_interval().
| int corsaro::compress_level |
The compression level (ignored if not compressing)
Definition at line 254 of file corsaro_int.h.
Referenced by corsaro_init(), corsaro_io_prepare_file(), and corsaro_pcap_start_interval().
| uint64_t corsaro::dropped_pkts |
The total number of packets that have been dropped by libtrace (before the current interval)
Definition at line 315 of file corsaro_int.h.
Referenced by corsaro_get_dropped_packets(), corsaro_init(), corsaro_set_trace(), and end_interval().
| struct timeval corsaro::first_ts |
The time of the the first packet seen by corsaro.
Definition at line 298 of file corsaro_int.h.
Referenced by corsaro_per_packet(), and per_interval_start().
| corsaro_file_t* corsaro::global_file |
The corsaro output file to write global output to.
Definition at line 257 of file corsaro_int.h.
Referenced by corsaro_dos_end_interval(), corsaro_finalize_output(), corsaro_free(), end_interval(), and start_interval().
| int corsaro::global_file_disabled |
Has the user asked us not to create a global output file?
Definition at line 260 of file corsaro_int.h.
Referenced by corsaro_disable_globalfile(), and start_interval().
| struct timeval corsaro::init_time |
The local wall time that corsaro was started at.
Definition at line 233 of file corsaro_int.h.
Referenced by corsaro_init().
| int corsaro::interval |
The number of seconds after which plugins will be asked to dump data.
Definition at line 280 of file corsaro_int.h.
Referenced by corsaro_init(), corsaro_per_packet(), and corsaro_set_interval().
| corsaro_interval_align_t corsaro::interval_align |
The first interval end will be rounded down to the nearest integer multiple of the interval length if enabled.
Definition at line 277 of file corsaro_int.h.
Referenced by corsaro_init(), corsaro_per_packet(), and corsaro_set_interval_alignment().
| int corsaro::interval_end_needed |
Whether there are un-dumped packets in the current interval.
Definition at line 304 of file corsaro_int.h.
Referenced by corsaro_finalize_output(), corsaro_per_packet(), and end_interval().
| corsaro_interval_t corsaro::interval_start |
State for the current interval.
Definition at line 292 of file corsaro_int.h.
Referenced by corsaro_dos_end_interval(), corsaro_flowtuple_end_interval(), corsaro_init(), corsaro_is_rotate_interval(), corsaro_log_init(), corsaro_per_packet(), end_interval(), is_meta_rotate_interval(), per_interval_end(), per_interval_start(), and start_interval().
| struct timeval corsaro::last_ts |
The time of the most recent packet seen by corsaro.
Definition at line 301 of file corsaro_int.h.
Referenced by corsaro_finalize_output(), corsaro_per_packet(), and per_interval_end().
| corsaro_file_t* corsaro::logfile |
The file to write log output to.
Definition at line 263 of file corsaro_int.h.
Referenced by corsaro_init(), corsaro_log_close(), corsaro_log_init(), corsaro_log_va(), corsaro_start_output(), end_interval(), and start_interval().
| int corsaro::logfile_disabled |
Has the user asked us not to log to a file?
Definition at line 266 of file corsaro_int.h.
Referenced by corsaro_disable_logfile(), corsaro_start_output(), and start_interval().
| int corsaro::meta_output_rotate |
The meta output files will be rotated after n intervals if >=0 a value of 0 indicates no rotation, <0 indicates the output_rotate value should be used.
Definition at line 289 of file corsaro_int.h.
Referenced by corsaro_init(), corsaro_set_meta_output_rotation(), and is_meta_rotate_interval().
| char* corsaro::monitorname |
The name of the monitor that corsaro is running on.
Definition at line 242 of file corsaro_int.h.
Referenced by corsaro_free(), corsaro_get_monitorname(), corsaro_init(), and corsaro_set_monitorname().
| uint32_t corsaro::next_report |
The time that this interval will be dumped at.
Definition at line 295 of file corsaro_int.h.
Referenced by corsaro_per_packet().
| corsaro_file_mode_t corsaro::output_mode |
The default output mode for new files.
Definition at line 248 of file corsaro_int.h.
Referenced by corsaro_init(), and corsaro_io_prepare_file().
| int corsaro::output_rotate |
The output files will be rotated after n intervals if >0.
Definition at line 283 of file corsaro_int.h.
Referenced by corsaro_is_rotate_interval(), and corsaro_set_output_rotation().
| corsaro_packet_t* corsaro::packet |
A pointer to the wrapper packet passed to the plugins.
Definition at line 269 of file corsaro_int.h.
Referenced by corsaro_free(), corsaro_geo_free_provider(), corsaro_geo_get_by_id(), corsaro_geo_get_default(), corsaro_geo_init_provider(), corsaro_init(), and corsaro_per_packet().
| uint64_t corsaro::packet_cnt |
The total number of packets that have been processed.
Definition at line 307 of file corsaro_int.h.
Referenced by corsaro_per_packet(), and per_interval_start().
| corsaro_plugin_manager_t* corsaro::plugin_manager |
A pointer to the corsaro plugin manager state.
Definition at line 273 of file corsaro_int.h.
Referenced by corsaro_anon_init_output(), corsaro_dos_close_output(), corsaro_dos_init_output(), corsaro_enable_plugin(), corsaro_filtergeo_close_output(), corsaro_filtergeo_init_output(), corsaro_filterpfx_close_output(), corsaro_filterpfx_init_output(), corsaro_flowtuple_close_output(), corsaro_flowtuple_init_output(), corsaro_free(), corsaro_geodb_close_output(), corsaro_geodb_init_output(), corsaro_init(), corsaro_io_write_record(), corsaro_pcap_close_output(), corsaro_pcap_init_output(), corsaro_pfx2as_close_output(), corsaro_pfx2as_init_output(), corsaro_smee_close_output(), corsaro_smee_init_output(), corsaro_start_output(), end_interval(), process_packet(), and start_interval().
| int corsaro::started |
Has this corsaro object been started yet?
Definition at line 318 of file corsaro_int.h.
Referenced by corsaro_finalize_output(), corsaro_per_packet(), corsaro_set_interval(), corsaro_set_interval_alignment(), corsaro_set_meta_output_rotation(), corsaro_set_monitorname(), corsaro_set_output_rotation(), corsaro_set_traceuri(), and corsaro_start_output().
| char* corsaro::template |
The template used to create corsaro output files.
Definition at line 245 of file corsaro_int.h.
Referenced by corsaro_free(), corsaro_init(), and corsaro_io_template_has_timestamp().
| libtrace_t* corsaro::trace |
The libtrace trace pointer for the trace that we are being fed.
Definition at line 236 of file corsaro_int.h.
Referenced by corsaro_get_accepted_packets(), corsaro_get_dropped_packets(), corsaro_set_trace(), and end_interval().
| char* corsaro::uridata |
The uri that was used to open the trace file.
Definition at line 239 of file corsaro_int.h.
Referenced by corsaro_free(), corsaro_get_traceuri(), and corsaro_set_traceuri().
![[CAIDA - Center for Applied Internet Data Analysis logo]](https://www.caida.org/images/caida_globe_faded.png)
![[CAIDA]](https://www.caida.org/images/caida_whitewords.png "Go to CAIDA home page"){kind=small}