clamav/libclamav/special.h

/*
 *  Copyright (C) 2013-2025 Cisco Systems, Inc. and/or its affiliates. All rights reserved.
 *  Copyright (C) 2007-2013 Sourcefire, Inc.
 *
 *  Authors: Trog
 *
 *  This program is free software; you can redistribute it and/or modify
 *  it under the terms of the GNU General Public License version 2 as
 *  published by the Free Software Foundation.
 *
 *  This program is distributed in the hope that it will be useful,
 *  but WITHOUT ANY WARRANTY; without even the implied warranty of
 *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 *  GNU General Public License for more details.
 *
 *  You should have received a copy of the GNU General Public License
 *  along with this program; if not, write to the Free Software
 *  Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston,
 *  MA 02110-1301, USA.
 */

#ifndef __SPECIAL_H
#define __SPECIAL_H

#include "others.h"
#define SWIZZ_MAXERRORS 2000
struct swizz_stats {
    uint16_t gngrams[17576];
    uint32_t total;
    uint32_t suspicious;
    int has_version;
    int has_manifest;
    int errors;
    int entries;
};

int cli_check_mydoom_log(cli_ctx *ctx);
int cli_check_riff_exploit(cli_ctx *ctx);
void cli_detect_swizz_str(const unsigned char *str, uint32_t len, struct swizz_stats *stats, int blob);
int cli_detect_swizz(struct swizz_stats *stats);

#endif
eliminate false positive matches of Exploit.JPEG.Comment git-svn: trunk@949 2004-09-30 00:26:52 +00:00			`/*`
Bump copyright dates for 2025 2025-02-14 10:24:30 -05:00			`* Copyright (C) 2013-2025 Cisco Systems, Inc. and/or its affiliates. All rights reserved.`
Updating and cleaning up copyright notices. 2019-01-25 10:15:50 -05:00			`* Copyright (C) 2007-2013 Sourcefire, Inc.`
update copyrights and stick more files to GPLv2; move and add more credits to the AUTHORS file; add COPYING.BSD git-svn: trunk@3749 2008-04-02 15:24:51 +00:00			`*`
			`* Authors: Trog`
eliminate false positive matches of Exploit.JPEG.Comment git-svn: trunk@949 2004-09-30 00:26:52 +00:00			`*`
			`* This program is free software; you can redistribute it and/or modify`
update copyrights and stick more files to GPLv2; move and add more credits to the AUTHORS file; add COPYING.BSD git-svn: trunk@3749 2008-04-02 15:24:51 +00:00			`* it under the terms of the GNU General Public License version 2 as`
			`* published by the Free Software Foundation.`
eliminate false positive matches of Exploit.JPEG.Comment git-svn: trunk@949 2004-09-30 00:26:52 +00:00			`*`
			`* This program is distributed in the hope that it will be useful,`
			`* but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`* GNU General Public License for more details.`
			`*`
			`* You should have received a copy of the GNU General Public License`
			`* along with this program; if not, write to the Free Software`
update GPL headers with new address for FSF git-svn: trunk@1901 2006-04-09 19:59:28 +00:00			`* Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston,`
			`* MA 02110-1301, USA.`
eliminate false positive matches of Exploit.JPEG.Comment git-svn: trunk@949 2004-09-30 00:26:52 +00:00			`*/`

			`#ifndef __SPECIAL_H`
			`#define __SPECIAL_H`

libclamav/special.c: respect recursion limits in cli_check_jpeg_exploit() (bb#1266) git-svn: trunk@4483 2008-11-26 13:02:37 +00:00			`#include "others.h"`
Fix some Trojan.Swizzor.Gen false positives (bb #1558). git-svn: trunk@5036 2009-04-10 13:23:13 +00:00			`#define SWIZZ_MAXERRORS 2000`
Heuristic detection of Trojan.Swizzor.Gen (bb #1310) git-svn: trunk@4511 2008-12-02 19:55:57 +00:00			`struct swizz_stats {`
clang-format'd using new .clang-format rules. 2018-12-03 12:40:13 -05:00			`uint16_t gngrams[17576];`
			`uint32_t total;`
			`uint32_t suspicious;`
			`int has_version;`
			`int has_manifest;`
			`int errors;`
			`int entries;`
Heuristic detection of Trojan.Swizzor.Gen (bb #1310) git-svn: trunk@4511 2008-12-02 19:55:57 +00:00			`};`
libclamav/special.c: respect recursion limits in cli_check_jpeg_exploit() (bb#1266) git-svn: trunk@4483 2008-11-26 13:02:37 +00:00
fmapify mydoom 2011-06-15 12:00:23 +02:00			`int cli_check_mydoom_log(cli_ctx *ctx);`
fmaify cli_scan_riff 2011-06-15 20:50:42 +02:00			`int cli_check_riff_exploit(cli_ctx *ctx);`
Heuristic detection of Trojan.Swizzor.Gen (bb #1310) git-svn: trunk@4511 2008-12-02 19:55:57 +00:00			`void cli_detect_swizz_str(const unsigned char str, uint32_t len, struct swizz_stats stats, int blob);`
			`int cli_detect_swizz(struct swizz_stats *stats);`
eliminate false positive matches of Exploit.JPEG.Comment git-svn: trunk@949 2004-09-30 00:26:52 +00:00
			`#endif`