tango-maat/src/maat_rule.cpp

/*
**********************************************************************************************
*	File: maat_rule.cpp
*   Description:
*	Authors: Liu WenTan <liuwentan@geedgenetworks.com>
*	Date:    2022-10-31
*   Copyright: (c) 2018-2022 Geedge Networks, Inc. All rights reserved.
***********************************************************************************************
*/

#include <unistd.h>
#include <stdio.h>
#include <pthread.h>
#include <limits.h>
#include <string.h>
#include <sys/prctl.h>
#include <sys/stat.h>
#include <assert.h>

#include "utils.h"
#include "json2iris.h"
#include "maat_utils.h"
#include "maat_rule.h"
#include "maat_config_monitor.h"
#include "maat_redis_monitor.h"

#include "maat_table_runtime.h"
#include "maat_table_schema.h"

#define MODULE_MAAT_RULE	 module_name_str("maat.rule")

struct maat_runtime* maat_runtime_create(long long version, struct maat *maat_instance)
{
	struct maat_runtime *maat_rt = ALLOC(struct maat_runtime, 1);

	maat_rt->version = version;
	maat_rt->table_rt_mgr = table_runtime_manager_create(maat_instance->table_schema_mgr,
                                                        maat_instance->nr_worker_thread,
                                                        maat_instance->garbage_bin);
	maat_rt->max_table_num = table_schema_manager_get_size(maat_instance->table_schema_mgr);
    maat_rt->max_thread_num = maat_instance->nr_worker_thread;

    return maat_rt;
}

void maat_runtime_commit(struct maat_runtime *maat_rt)
{
	for (size_t i = 0; i < maat_rt->max_table_num; i++) {
		struct table_runtime *table_rt = table_runtime_get(maat_rt->table_rt_mgr, i);
		if (NULL == table_rt) {
			continue;
		}

		table_runtime_commit(table_rt, maat_rt->max_thread_num);
	}

    maat_rt->last_update_time = time(NULL);
}

void maat_runtime_destroy(struct maat_runtime *maat_rt)
{
    if (NULL == maat_rt) {
        return;
    }

    if (maat_rt->table_rt_mgr != NULL) {
        table_runtime_manager_destroy(maat_rt->table_rt_mgr);
        maat_rt->table_rt_mgr = NULL;
    }

    FREE(maat_rt);
}

int maat_runtime_updating_flag(struct maat_runtime *maat_rt)
{
    for (size_t i = 0; i < maat_rt->max_table_num; i++) {
		struct table_runtime *table_rt = table_runtime_get(maat_rt->table_rt_mgr, i);
		if (NULL == table_rt) {
			continue;
		}
        
        int flag = table_runtime_updating_flag(table_rt);
        if (1 == flag) {
            return 1;
        }
	}

    return 0;
}

void maat_start_cb(long long new_version, int update_type, void *u_param)
{
	struct maat *maat_instance = (struct maat *)u_param;
	
	if (update_type == CM_UPDATE_TYPE_FULL) {
		maat_instance->creating_maat_rt = maat_runtime_create(new_version, maat_instance);
	} else {
		maat_instance->maat_version = new_version;
	}

    table_schema_manager_all_plugin_cb_start(maat_instance->table_schema_mgr, update_type);
}

int maat_update_cb(const char *table_name, const char *line, void *u_param)
{
	struct maat *maat_instance =(struct maat *)u_param; 
	struct maat_runtime* maat_rt = NULL;
	int table_id = table_schema_manager_get_table_id(maat_instance->table_schema_mgr, table_name);
    if (table_id < 0) {
        log_error(maat_instance->logger, MODULE_MAAT_RULE, "update warning, unknown table name %s", table_name);
        return -1;
    }

	struct table_schema* table_schema = table_schema_get(maat_instance->table_schema_mgr, table_id);
    if (NULL == table_schema) {
        log_error(maat_instance->logger, MODULE_MAAT_RULE, 
                  "update warning, table name %s doesn't have table schema", table_name);
        return -1;
    }

    table_schema_set_updating_name(table_schema, table_name);
    
	if (maat_instance->creating_maat_rt != NULL) {
		maat_rt = maat_instance->creating_maat_rt;
	} else {
		maat_rt = maat_instance->maat_rt;
	}

    struct table_item *table_item = table_schema_line_to_item(line, table_schema, maat_instance->logger);
    if (table_item != NULL) {
        struct table_runtime *table_rt = table_runtime_get(maat_rt->table_rt_mgr, table_id);
        table_runtime_update(table_rt, table_schema, line, table_item, maat_instance->logger);
	    FREE(table_item);
    }
     
	return 0;
}

uint32_t maat_runtime_rule_num(struct maat_runtime *maat_rt)
{
	uint32_t total = 0;
	struct table_runtime *table_rt = NULL;
	
	for (size_t i = 0; i < maat_rt->max_table_num; i++) {
		table_rt = table_runtime_get(maat_rt->table_rt_mgr, i);
		if (table_rt != NULL) {
			total += table_runtime_rule_count(table_rt);
		}
	}

	return total;
}

void maat_finish_cb(void *u_param)
{
	struct maat *maat_instance = (struct maat *)u_param;

    table_schema_manager_all_plugin_cb_finish(maat_instance->table_schema_mgr);
    
    if (maat_instance->creating_maat_rt != NULL) {
        maat_instance->creating_maat_rt->rule_num = maat_runtime_rule_num(maat_instance->creating_maat_rt);
        maat_runtime_commit(maat_instance->creating_maat_rt);
        log_info(maat_instance->logger, MODULE_MAAT_RULE, "Full config version %llu load %d entries complete\n", 
                 maat_instance->creating_maat_rt->version, maat_instance->creating_maat_rt->rule_num);
    } else if (maat_instance->maat_rt != NULL) {
        maat_instance->maat_rt->rule_num = maat_runtime_rule_num(maat_instance->maat_rt);
        maat_instance->maat_rt->version = maat_instance->maat_version;
        maat_runtime_commit(maat_instance->maat_rt);
        log_info(maat_instance->logger, MODULE_MAAT_RULE, "Inc config version %llu load %d entries complete\n", 
                 maat_instance->maat_rt->version, maat_instance->maat_rt->rule_num);
    }
}

void *rule_monitor_loop(void *arg)
{
    /* Defined by prctl: The name can be up to 16 bytes long, and should 
        be null terminated if it contains fewer bytes. */
    char maat_name[16] = {0};
    struct maat *maat_instance = (struct maat *)arg;

    if (strlen(maat_instance->instance_name) > 0) {
        snprintf(maat_name, sizeof(maat_name), "MAAT_%s", maat_instance->instance_name);
    } else {
        snprintf(maat_name, sizeof(maat_name), "MAAT");
    }

    int ret = prctl(PR_SET_NAME, (unsigned long long)maat_name, NULL, NULL, NULL);
    assert(ret >= 0);

    pthread_mutex_lock(&(maat_instance->background_update_mutex));
    /* if deferred load on */
    if (maat_instance->deferred_load != 0) {
        log_info(maat_instance->logger, MODULE_MAAT_RULE, "Deferred Loading ON, updating in %s", __func__);
        maat_read_full_config(maat_instance);
    }
    pthread_mutex_unlock(&(maat_instance->background_update_mutex));

    char md5_tmp[MD5_DIGEST_LENGTH * 2 + 1] = {0};
    char err_str[NAME_MAX] = {0};
    struct stat attrib;
    while (maat_instance->is_running) {
        usleep(maat_instance->rule_update_checking_interval_ms * 1000);
		if( 0 == pthread_mutex_trylock(&(maat_instance->background_update_mutex))) {
			switch (maat_instance->input_mode) {
                case DATA_SOURCE_REDIS:
                    redis_monitor_traverse(maat_instance->maat_version,
                                            &(maat_instance->mr_ctx),
                                            maat_start_cb, maat_update_cb, maat_finish_cb,
                                            maat_instance);
                    break;
				case DATA_SOURCE_IRIS_FILE:
					config_monitor_traverse(maat_instance->maat_version, 
											maat_instance->iris_ctx.inc_idx_dir,
											maat_start_cb, maat_update_cb, maat_finish_cb,
											maat_instance, maat_instance->logger);
					break;
                case DATA_SOURCE_JSON_FILE:
                    memset(md5_tmp, 0, sizeof(md5_tmp));
				    stat(maat_instance->json_ctx.json_file, &attrib);
					if (memcmp(&attrib.st_ctim, &(maat_instance->json_ctx.last_md5_time), sizeof(attrib.st_ctim))) {
						maat_instance->json_ctx.last_md5_time = attrib.st_ctim;
						md5_file(maat_instance->json_ctx.json_file, md5_tmp);
						if (0 != strcmp(md5_tmp, maat_instance->json_ctx.effective_json_md5)) {
							ret = load_maat_json_file(maat_instance, maat_instance->json_ctx.json_file, 
                                                      err_str, sizeof(err_str));
							if (ret < 0) {
								log_error(maat_instance->logger, MODULE_MAAT_RULE, 
                                          "Maat re-initiate with JSON file %s (md5=%s)failed: %s\n",
										  maat_instance->json_ctx.json_file, md5_tmp, err_str);
							} else {
								config_monitor_traverse(0, maat_instance->json_ctx.iris_file,
														maat_start_cb, maat_update_cb, maat_finish_cb,
														maat_instance, maat_instance->logger);
								log_info(maat_instance->logger, MODULE_MAAT_RULE, 
                                         "Maat re-initiate with JSON file %s success, md5: %s\n",
										 maat_instance->json_ctx.json_file, md5_tmp);
							}
						}
					}
                    break;
				default:
					break;
			}

			if (maat_instance->creating_maat_rt != NULL) {
				struct maat_runtime *old_maat_rt = maat_instance->maat_rt;
				maat_instance->maat_rt = maat_instance->creating_maat_rt;

				if (old_maat_rt != NULL) {
                    if (maat_instance->maat_rt->version > old_maat_rt->version) {
                        log_info(maat_instance->logger, MODULE_MAAT_RULE, "Maat version updated %lld -> %lld\n", 
                                 old_maat_rt->version, maat_instance->maat_rt->version);
                    } else {
                        log_info(maat_instance->logger, MODULE_MAAT_RULE, "Maat version roll back %lld -> %lld\n",
                                 old_maat_rt->version, maat_instance->maat_rt->version);
                    }
                    maat_garbage_bagging(maat_instance->garbage_bin, old_maat_rt, (void (*)(void*))maat_runtime_destroy);
				}

				maat_instance->creating_maat_rt = NULL;
				maat_instance->maat_version = maat_instance->maat_rt->version;
				maat_instance->last_full_version = maat_instance->maat_rt->version;
			}

			if (maat_instance->maat_rt != NULL) {
                int updating_flag = maat_runtime_updating_flag(maat_instance->maat_rt);
                time_t time_window = time(NULL) - maat_instance->maat_rt->last_update_time;
                
                if ((updating_flag > 0) && (time_window >= maat_instance->rule_effect_interval_ms / 1000)) {
                    maat_runtime_commit(maat_instance->maat_rt);
                }
				
			}

			pthread_mutex_unlock(&(maat_instance->background_update_mutex));
		}
        maat_garbage_collect_routine(maat_instance->garbage_bin);
    }

    maat_runtime_destroy(maat_instance->maat_rt);
	maat_garbage_bin_free(maat_instance->garbage_bin);
	table_schema_manager_destroy(maat_instance->table_schema_mgr);

    if (maat_instance->input_mode == DATA_SOURCE_REDIS) {
        if (maat_instance->mr_ctx.read_ctx != NULL) {
            redisFree(maat_instance->mr_ctx.read_ctx);
            maat_instance->mr_ctx.read_ctx = NULL;
        }

        if (maat_instance->mr_ctx.write_ctx != NULL) {
            redisFree(maat_instance->mr_ctx.write_ctx);
            maat_instance->mr_ctx.write_ctx = NULL;
        }
    }

    FREE(maat_instance);

    return NULL;
}
unfinished work 2022-11-17 05:05:35 +08:00			`/*`
			`**********************************************************************************************`
			`* File: maat_rule.cpp`
			`* Description:`
			`* Authors: Liu WenTan <liuwentan@geedgenetworks.com>`
			`* Date: 2022-10-31`
			`* Copyright: (c) 2018-2022 Geedge Networks, Inc. All rights reserved.`
			`***********************************************************************************************`
			`*/`

			`#include <unistd.h>`
framework work well 2022-11-25 16:32:29 +08:00			`#include <stdio.h>`
unfinished work 2022-11-17 05:05:35 +08:00			`#include <pthread.h>`
			`#include <limits.h>`
framework work well 2022-11-25 16:32:29 +08:00			`#include <string.h>`
			`#include <sys/prctl.h>`
add json/redis rule parser 2022-12-03 22:23:41 +08:00			`#include <sys/stat.h>`
framework work well 2022-11-25 16:32:29 +08:00			`#include <assert.h>`
unfinished work 2022-11-17 05:05:35 +08:00
framework work well 2022-11-25 16:32:29 +08:00			`#include "utils.h"`
add json/redis rule parser 2022-12-03 22:23:41 +08:00			`#include "json2iris.h"`
unfinished work 2022-11-17 05:05:35 +08:00			`#include "maat_utils.h"`
add json/redis rule parser 2022-12-03 22:23:41 +08:00			`#include "maat_rule.h"`
			`#include "maat_config_monitor.h"`
			`#include "maat_redis_monitor.h"`

unfinished work 2022-11-17 05:05:35 +08:00			`#include "maat_table_runtime.h"`
			`#include "maat_table_schema.h"`

support scan ip 2022-12-09 17:12:18 +08:00			`#define MODULE_MAAT_RULE module_name_str("maat.rule")`

framework work well 2022-11-25 16:32:29 +08:00			`struct maat_runtime* maat_runtime_create(long long version, struct maat *maat_instance)`
unfinished work 2022-11-17 05:05:35 +08:00			`{`
			`struct maat_runtime *maat_rt = ALLOC(struct maat_runtime, 1);`

			`maat_rt->version = version;`
framework work well 2022-11-25 16:32:29 +08:00			`maat_rt->table_rt_mgr = table_runtime_manager_create(maat_instance->table_schema_mgr,`
			`maat_instance->nr_worker_thread,`
			`maat_instance->garbage_bin);`
			`maat_rt->max_table_num = table_schema_manager_get_size(maat_instance->table_schema_mgr);`
			`maat_rt->max_thread_num = maat_instance->nr_worker_thread;`

			`return maat_rt;`
unfinished work 2022-11-17 05:05:35 +08:00			`}`

framework work well 2022-11-25 16:32:29 +08:00			`void maat_runtime_commit(struct maat_runtime *maat_rt)`
unfinished work 2022-11-17 05:05:35 +08:00			`{`
			`for (size_t i = 0; i < maat_rt->max_table_num; i++) {`
framework work well 2022-11-25 16:32:29 +08:00			`struct table_runtime *table_rt = table_runtime_get(maat_rt->table_rt_mgr, i);`
unfinished work 2022-11-17 05:05:35 +08:00			`if (NULL == table_rt) {`
			`continue;`
			`}`

framework work well 2022-11-25 16:32:29 +08:00			`table_runtime_commit(table_rt, maat_rt->max_thread_num);`
unfinished work 2022-11-17 05:05:35 +08:00			`}`
framework work well 2022-11-25 16:32:29 +08:00
			`maat_rt->last_update_time = time(NULL);`
unfinished work 2022-11-17 05:05:35 +08:00			`}`

framework work well 2022-11-25 16:32:29 +08:00			`void maat_runtime_destroy(struct maat_runtime *maat_rt)`
unfinished work 2022-11-17 05:05:35 +08:00			`{`
framework work well 2022-11-25 16:32:29 +08:00			`if (NULL == maat_rt) {`
			`return;`
			`}`

			`if (maat_rt->table_rt_mgr != NULL) {`
			`table_runtime_manager_destroy(maat_rt->table_rt_mgr);`
			`maat_rt->table_rt_mgr = NULL;`
			`}`
unfinished work 2022-11-17 05:05:35 +08:00
add input mode unit-test 2022-12-05 23:21:18 +08:00			`FREE(maat_rt);`
unfinished work 2022-11-17 05:05:35 +08:00			`}`

framework work well 2022-11-25 16:32:29 +08:00			`int maat_runtime_updating_flag(struct maat_runtime *maat_rt)`
			`{`
			`for (size_t i = 0; i < maat_rt->max_table_num; i++) {`
			`struct table_runtime *table_rt = table_runtime_get(maat_rt->table_rt_mgr, i);`
			`if (NULL == table_rt) {`
			`continue;`
			`}`

			`int flag = table_runtime_updating_flag(table_rt);`
			`if (1 == flag) {`
			`return 1;`
			`}`
			`}`

			`return 0;`
			`}`

			`void maat_start_cb(long long new_version, int update_type, void *u_param)`
unfinished work 2022-11-17 05:05:35 +08:00			`{`
			`struct maat maat_instance = (struct maat )u_param;`

framework work well 2022-11-25 16:32:29 +08:00			`if (update_type == CM_UPDATE_TYPE_FULL) {`
			`maat_instance->creating_maat_rt = maat_runtime_create(new_version, maat_instance);`
unfinished work 2022-11-17 05:05:35 +08:00			`} else {`
			`maat_instance->maat_version = new_version;`
			`}`
framework work well 2022-11-25 16:32:29 +08:00
			`table_schema_manager_all_plugin_cb_start(maat_instance->table_schema_mgr, update_type);`
unfinished work 2022-11-17 05:05:35 +08:00			`}`

framework work well 2022-11-25 16:32:29 +08:00			`int maat_update_cb(const char table_name, const char line, void *u_param)`
unfinished work 2022-11-17 05:05:35 +08:00			`{`
			`struct maat maat_instance =(struct maat )u_param;`
			`struct maat_runtime* maat_rt = NULL;`
framework work well 2022-11-25 16:32:29 +08:00			`int table_id = table_schema_manager_get_table_id(maat_instance->table_schema_mgr, table_name);`
add json/redis rule parser 2022-12-03 22:23:41 +08:00			`if (table_id < 0) {`
support scan ip 2022-12-09 17:12:18 +08:00			`log_error(maat_instance->logger, MODULE_MAAT_RULE, "update warning, unknown table name %s", table_name);`
add json/redis rule parser 2022-12-03 22:23:41 +08:00			`return -1;`
			`}`

framework work well 2022-11-25 16:32:29 +08:00			`struct table_schema* table_schema = table_schema_get(maat_instance->table_schema_mgr, table_id);`
add json/redis rule parser 2022-12-03 22:23:41 +08:00			`if (NULL == table_schema) {`
support scan ip 2022-12-09 17:12:18 +08:00			`log_error(maat_instance->logger, MODULE_MAAT_RULE,`
			`"update warning, table name %s doesn't have table schema", table_name);`
add json/redis rule parser 2022-12-03 22:23:41 +08:00			`return -1;`
			`}`
unfinished work 2022-11-17 05:05:35 +08:00
add conjunction table 2022-12-06 00:35:36 +08:00			`table_schema_set_updating_name(table_schema, table_name);`

framework work well 2022-11-25 16:32:29 +08:00			`if (maat_instance->creating_maat_rt != NULL) {`
			`maat_rt = maat_instance->creating_maat_rt;`
unfinished work 2022-11-17 05:05:35 +08:00			`} else {`
			`maat_rt = maat_instance->maat_rt;`
			`}`

support scan ip 2022-12-09 17:12:18 +08:00			`struct table_item *table_item = table_schema_line_to_item(line, table_schema, maat_instance->logger);`
add input mode unit-test 2022-12-05 23:21:18 +08:00			`if (table_item != NULL) {`
			`struct table_runtime *table_rt = table_runtime_get(maat_rt->table_rt_mgr, table_id);`
support scan ip 2022-12-09 17:12:18 +08:00			`table_runtime_update(table_rt, table_schema, line, table_item, maat_instance->logger);`
add input mode unit-test 2022-12-05 23:21:18 +08:00			`FREE(table_item);`
			`}`

unfinished work 2022-11-17 05:05:35 +08:00			`return 0;`
			`}`

framework work well 2022-11-25 16:32:29 +08:00			`uint32_t maat_runtime_rule_num(struct maat_runtime *maat_rt)`
			`{`
			`uint32_t total = 0;`
			`struct table_runtime *table_rt = NULL;`

			`for (size_t i = 0; i < maat_rt->max_table_num; i++) {`
			`table_rt = table_runtime_get(maat_rt->table_rt_mgr, i);`
			`if (table_rt != NULL) {`
			`total += table_runtime_rule_count(table_rt);`
			`}`
			`}`

			`return total;`
			`}`

unfinished work 2022-11-17 05:05:35 +08:00			`void maat_finish_cb(void *u_param)`
			`{`
			`struct maat maat_instance = (struct maat )u_param;`

framework work well 2022-11-25 16:32:29 +08:00			`table_schema_manager_all_plugin_cb_finish(maat_instance->table_schema_mgr);`

			`if (maat_instance->creating_maat_rt != NULL) {`
			`maat_instance->creating_maat_rt->rule_num = maat_runtime_rule_num(maat_instance->creating_maat_rt);`
			`maat_runtime_commit(maat_instance->creating_maat_rt);`
support scan ip 2022-12-09 17:12:18 +08:00			`log_info(maat_instance->logger, MODULE_MAAT_RULE, "Full config version %llu load %d entries complete\n",`
			`maat_instance->creating_maat_rt->version, maat_instance->creating_maat_rt->rule_num);`
framework work well 2022-11-25 16:32:29 +08:00			`} else if (maat_instance->maat_rt != NULL) {`
			`maat_instance->maat_rt->rule_num = maat_runtime_rule_num(maat_instance->maat_rt);`
			`maat_instance->maat_rt->version = maat_instance->maat_version;`
			`maat_runtime_commit(maat_instance->maat_rt);`
support scan ip 2022-12-09 17:12:18 +08:00			`log_info(maat_instance->logger, MODULE_MAAT_RULE, "Inc config version %llu load %d entries complete\n",`
			`maat_instance->maat_rt->version, maat_instance->maat_rt->rule_num);`
unfinished work 2022-11-17 05:05:35 +08:00			`}`
			`}`

			`void rule_monitor_loop(void arg)`
			`{`
framework work well 2022-11-25 16:32:29 +08:00			`/* Defined by prctl: The name can be up to 16 bytes long, and should`
			`be null terminated if it contains fewer bytes. */`
			`char maat_name[16] = {0};`
unfinished work 2022-11-17 05:05:35 +08:00			`struct maat maat_instance = (struct maat )arg;`

framework work well 2022-11-25 16:32:29 +08:00			`if (strlen(maat_instance->instance_name) > 0) {`
			`snprintf(maat_name, sizeof(maat_name), "MAAT_%s", maat_instance->instance_name);`
			`} else {`
			`snprintf(maat_name, sizeof(maat_name), "MAAT");`
			`}`

			`int ret = prctl(PR_SET_NAME, (unsigned long long)maat_name, NULL, NULL, NULL);`
			`assert(ret >= 0);`

			`pthread_mutex_lock(&(maat_instance->background_update_mutex));`
			`/* if deferred load on */`
			`if (maat_instance->deferred_load != 0) {`
support scan ip 2022-12-09 17:12:18 +08:00			`log_info(maat_instance->logger, MODULE_MAAT_RULE, "Deferred Loading ON, updating in %s", __func__);`
framework work well 2022-11-25 16:32:29 +08:00			`maat_read_full_config(maat_instance);`
			`}`
			`pthread_mutex_unlock(&(maat_instance->background_update_mutex));`

add json/redis rule parser 2022-12-03 22:23:41 +08:00			`char md5_tmp[MD5_DIGEST_LENGTH * 2 + 1] = {0};`
			`char err_str[NAME_MAX] = {0};`
			`struct stat attrib;`
unfinished work 2022-11-17 05:05:35 +08:00			`while (maat_instance->is_running) {`
framework work well 2022-11-25 16:32:29 +08:00			`usleep(maat_instance->rule_update_checking_interval_ms * 1000);`
unfinished work 2022-11-17 05:05:35 +08:00			`if( 0 == pthread_mutex_trylock(&(maat_instance->background_update_mutex))) {`
framework work well 2022-11-25 16:32:29 +08:00			`switch (maat_instance->input_mode) {`
add json/redis rule parser 2022-12-03 22:23:41 +08:00			`case DATA_SOURCE_REDIS:`
			`redis_monitor_traverse(maat_instance->maat_version,`
			`&(maat_instance->mr_ctx),`
support scan ip 2022-12-09 17:12:18 +08:00			`maat_start_cb, maat_update_cb, maat_finish_cb,`
add json/redis rule parser 2022-12-03 22:23:41 +08:00			`maat_instance);`
			`break;`
framework work well 2022-11-25 16:32:29 +08:00			`case DATA_SOURCE_IRIS_FILE:`
unfinished work 2022-11-17 05:05:35 +08:00			`config_monitor_traverse(maat_instance->maat_version,`
add input mode unit-test 2022-12-05 23:21:18 +08:00			`maat_instance->iris_ctx.inc_idx_dir,`
support scan ip 2022-12-09 17:12:18 +08:00			`maat_start_cb, maat_update_cb, maat_finish_cb,`
			`maat_instance, maat_instance->logger);`
unfinished work 2022-11-17 05:05:35 +08:00			`break;`
add json/redis rule parser 2022-12-03 22:23:41 +08:00			`case DATA_SOURCE_JSON_FILE:`
			`memset(md5_tmp, 0, sizeof(md5_tmp));`
			`stat(maat_instance->json_ctx.json_file, &attrib);`
			`if (memcmp(&attrib.st_ctim, &(maat_instance->json_ctx.last_md5_time), sizeof(attrib.st_ctim))) {`
			`maat_instance->json_ctx.last_md5_time = attrib.st_ctim;`
			`md5_file(maat_instance->json_ctx.json_file, md5_tmp);`
			`if (0 != strcmp(md5_tmp, maat_instance->json_ctx.effective_json_md5)) {`
support scan ip 2022-12-09 17:12:18 +08:00			`ret = load_maat_json_file(maat_instance, maat_instance->json_ctx.json_file,`
			`err_str, sizeof(err_str));`
add json/redis rule parser 2022-12-03 22:23:41 +08:00			`if (ret < 0) {`
support scan ip 2022-12-09 17:12:18 +08:00			`log_error(maat_instance->logger, MODULE_MAAT_RULE,`
			`"Maat re-initiate with JSON file %s (md5=%s)failed: %s\n",`
			`maat_instance->json_ctx.json_file, md5_tmp, err_str);`
add json/redis rule parser 2022-12-03 22:23:41 +08:00			`} else {`
			`config_monitor_traverse(0, maat_instance->json_ctx.iris_file,`
support scan ip 2022-12-09 17:12:18 +08:00			`maat_start_cb, maat_update_cb, maat_finish_cb,`
			`maat_instance, maat_instance->logger);`
			`log_info(maat_instance->logger, MODULE_MAAT_RULE,`
			`"Maat re-initiate with JSON file %s success, md5: %s\n",`
			`maat_instance->json_ctx.json_file, md5_tmp);`
add json/redis rule parser 2022-12-03 22:23:41 +08:00			`}`
			`}`
			`}`
			`break;`
unfinished work 2022-11-17 05:05:35 +08:00			`default:`
			`break;`
			`}`

framework work well 2022-11-25 16:32:29 +08:00			`if (maat_instance->creating_maat_rt != NULL) {`
unfinished work 2022-11-17 05:05:35 +08:00			`struct maat_runtime *old_maat_rt = maat_instance->maat_rt;`
framework work well 2022-11-25 16:32:29 +08:00			`maat_instance->maat_rt = maat_instance->creating_maat_rt;`
unfinished work 2022-11-17 05:05:35 +08:00
			`if (old_maat_rt != NULL) {`
fix memory leak and add framework test 2022-11-29 14:12:40 +08:00			`if (maat_instance->maat_rt->version > old_maat_rt->version) {`
support scan ip 2022-12-09 17:12:18 +08:00			`log_info(maat_instance->logger, MODULE_MAAT_RULE, "Maat version updated %lld -> %lld\n",`
			`old_maat_rt->version, maat_instance->maat_rt->version);`
fix memory leak and add framework test 2022-11-29 14:12:40 +08:00			`} else {`
support scan ip 2022-12-09 17:12:18 +08:00			`log_info(maat_instance->logger, MODULE_MAAT_RULE, "Maat version roll back %lld -> %lld\n",`
			`old_maat_rt->version, maat_instance->maat_rt->version);`
fix memory leak and add framework test 2022-11-29 14:12:40 +08:00			`}`
framework work well 2022-11-25 16:32:29 +08:00			`maat_garbage_bagging(maat_instance->garbage_bin, old_maat_rt, (void ()(void))maat_runtime_destroy);`
unfinished work 2022-11-17 05:05:35 +08:00			`}`

framework work well 2022-11-25 16:32:29 +08:00			`maat_instance->creating_maat_rt = NULL;`
unfinished work 2022-11-17 05:05:35 +08:00			`maat_instance->maat_version = maat_instance->maat_rt->version;`
			`maat_instance->last_full_version = maat_instance->maat_rt->version;`
			`}`

			`if (maat_instance->maat_rt != NULL) {`
framework work well 2022-11-25 16:32:29 +08:00			`int updating_flag = maat_runtime_updating_flag(maat_instance->maat_rt);`
			`time_t time_window = time(NULL) - maat_instance->maat_rt->last_update_time;`

			`if ((updating_flag > 0) && (time_window >= maat_instance->rule_effect_interval_ms / 1000)) {`
			`maat_runtime_commit(maat_instance->maat_rt);`
			`}`

unfinished work 2022-11-17 05:05:35 +08:00			`}`

			`pthread_mutex_unlock(&(maat_instance->background_update_mutex));`
			`}`
framework work well 2022-11-25 16:32:29 +08:00			`maat_garbage_collect_routine(maat_instance->garbage_bin);`
unfinished work 2022-11-17 05:05:35 +08:00			`}`
framework work well 2022-11-25 16:32:29 +08:00
			`maat_runtime_destroy(maat_instance->maat_rt);`
			`maat_garbage_bin_free(maat_instance->garbage_bin);`
			`table_schema_manager_destroy(maat_instance->table_schema_mgr);`
add json/redis rule parser 2022-12-03 22:23:41 +08:00
			`if (maat_instance->input_mode == DATA_SOURCE_REDIS) {`
			`if (maat_instance->mr_ctx.read_ctx != NULL) {`
			`redisFree(maat_instance->mr_ctx.read_ctx);`
			`maat_instance->mr_ctx.read_ctx = NULL;`
			`}`

			`if (maat_instance->mr_ctx.write_ctx != NULL) {`
			`redisFree(maat_instance->mr_ctx.write_ctx);`
			`maat_instance->mr_ctx.write_ctx = NULL;`
			`}`
			`}`

			`FREE(maat_instance);`
framework work well 2022-11-25 16:32:29 +08:00
			`return NULL;`
unfinished work 2022-11-17 05:05:35 +08:00			`}`