Code structure and other codecs
Let us take a quick look at how the source files related to codecs are organized within the Snort 3 source code:
ls src/codecs CMakeLists.txt codec_api.cc codec_api.h codec_module.cc codec_module.h dev_notes.txt ip link misc root
The source code relevant to codecs is organized under the directory named codecs. We see four directories: ip, link, misc, and root. Let us list the files under each of these directories as well:
ls src/codecs/root cd_eth.cc cd_raw.cc CMakeLists.txt dev_notes.txt
The root directory includes the common top-level codecs, ethernet and raw. These two are the common codecs that serve as the first-level decoders. Next, let us look at the ip directory:
ls src/codecs/ip cd_auth.cc cd_esp.cc cd_hop_opts.cc cd_igmp.cc ...
