✨ feat(integration decoders): http and glimpse_detector

compile pass, todo test

test/glimpse_detector/test_env/log.toml

@@ -0,0 +1,4 @@
+[log]
+output = file      # stderr, file
+file   = "log/stellar.log"
+level  = INFO       # TRACE, DEBUG, INFO, WARN, ERROR, FATAL

test/glimpse_detector/test_env/spec.toml

@@ -0,0 +1,11 @@
+# stellar_plugin.toml
+#
+[[plugin]]
+path = ""
+init = "APP_GLIMPSE_DETECTOR_LOAD"
+exit = "APP_GLIMPSE_DETECTOR_UNLOAD"
+
+[[plugin]]
+path = ""
+init = "APP_TEST_PLUG_INIT"
+exit = "APP_TEST_PLUG_DESTROY"

test/glimpse_detector/test_env/stellar.toml

@@ -0,0 +1,56 @@
+[id_generator]
+snowflake_worker_id_base = 1   # [0, 31]
+snowflake_worker_id_offset = 2 # [0, 127]
+
+[packet_io]
+mode = "dumpfile"                        # dumpfile, marsio
+app_symbol = "stellar"
+dev_symbol = "nf_0_fw"
+
+dumpfile_dir = "/tmp/dumpfile/"
+nr_threads = 1                         # [1, 256]
+cpu_mask = [5, 6, 7, 8, 9, 10, 11, 12]
+
+[ip_reassembly]
+enable = 1
+timeout = 10000      # range: [1, 60000] (ms)
+bucket_entries = 256 # range: [1, 4294967295] (must be power of 2)
+bucket_num = 4096    # range: [1, 4294967295]
+
+[session_manager]
+# max session number
+max_tcp_session_num = 50000
+max_udp_session_num = 50000
+
+# session overload evict
+tcp_overload_evict_old_sess = 1 # 1: evict old session, 0: bypass new session
+udp_overload_evict_old_sess = 1 # 1: evict old session, 0: bypass new session
+
+# TCP timeout
+tcp_init_timeout = 5000           # range: [1, 60000] (ms)
+tcp_handshake_timeout = 5000      # range: [1, 60000] (ms)
+tcp_data_timeout = 5000           # range: [1, 15999999000] (ms)
+tcp_half_closed_timeout = 5000    # range: [1, 604800000] (ms)
+tcp_time_wait_timeout = 5000      # range: [1, 600000] (ms)
+tcp_discard_timeout = 10000       # range: [1, 15999999000] (ms)
+tcp_unverified_rst_timeout = 5000 # range: [1, 600000] (ms)
+# UDP timeout
+udp_data_timeout = 5000    # range: [1, 15999999000] (ms)
+udp_discard_timeout = 5000 # range: [1, 15999999000] (ms)
+
+# duplicate packet filter
+duplicated_packet_filter_enable = 1
+duplicated_packet_filter_capacity = 1000000   # range: [1, 4294967295]
+duplicated_packet_filter_timeout = 10000      # range: [1, 60000] (ms)
+duplicated_packet_filter_error_rate = 0.00001 # range: [0.0, 1.0]
+
+# evicted session filter
+evicted_session_filter_enable = 1
+evicted_session_filter_capacity = 1000000   # range: [1, 4294967295]
+evicted_session_filter_timeout = 10000      # range: [1, 60000] (ms)
+evicted_session_filter_error_rate = 0.00001 # range: [0.0, 1.0]
+
+# TCP reassembly (Per direction)
+tcp_reassembly_enable = 1
+tcp_reassembly_max_timeout = 10000 # range: [1, 60000] (ms)
+tcp_reassembly_max_segments = 256  # range: [2, 4096]

test/glimpse_detector/test_env/tsg_l7_protocol.conf

@@ -0,0 +1,61 @@
+#TYPE：1:UCHAR,2:USHORT,3:USTRING,4:ULOG,5:USTRING,6:FILE,7:UBASE64,8:PACKET
+#TYPE	FIELD		VALUE
+STRING	UNCATEGORIZED	8000
+#STRING	UNCATEGORIZED	8001
+#STRING	UNKNOWN_OTHER	8002
+STRING	DNS		32
+STRING	FTP		45
+STRING	FTPS		751
+STRING	HTTP		67
+STRING	HTTPS		68
+STRING	ICMP		70
+STRING	IKE		8003
+STRING	MAIL		8004
+STRING	IMAP		75
+STRING	IMAPS		76
+STRING	IPSEC		85
+STRING	XMPP		94
+STRING	L2TP		98
+STRING	NTP		137
+STRING	POP3		147
+STRING	POP3S		148
+STRING	PPTP		153
+STRING	QUIC		2521
+STRING	SIP		182
+STRING	SMB		185
+STRING	SMTP		186
+STRING	SMTPS		187
+STRING	SPDY		1469
+STRING	SSH		198
+STRING	SSL		199
+STRING	SOCKS		8005
+STRING	TELNET		209
+STRING	DHCP		29
+STRING	RADIUS		158
+STRING	OPENVPN		336
+STRING	STUN		201
+STRING	TEREDO		555
+STRING	DTLS		1291
+STRING	DoH		8006
+STRING	ISAKMP		92
+STRING	MDNS		3835
+STRING	NETBIOS		129
+STRING	NETFLOW		130
+STRING	RDP		159
+STRING	RTCP		174
+STRING	RTP		175
+STRING	SLP		8007
+STRING	SNMP		190
+STRING	SSDP		197
+STRING	TFTP		211
+STRING	BJNP		2481
+STRING	LDAP		100
+STRING	RTMP		337
+STRING	RTSP		176
+STRING	ESNI		8008
+STRING  Stratum     8169
+STRING	QQ		156
+STRING	WeChat		1296
+STRING	WIREGUARD	3700
+STRING	MMS	115
+STRING	RSYNC	173