tango-tfe/common/src/tfe_scan.cpp

#include <MESA/maat.h>
#include <tfe_resource.h>
#include <tfe_scan.h>
#include <MESA/stream.h>

int tfe_scan_subscribe_id(const struct tfe_stream *stream, long long *result, struct maat_state *scan_mid,
                          int hit_cnt, void *logger)
{
    int scan_ret = 0;
    int hit_cnt_ip = 0;
	size_t n_hit_result = 0;
    uint16_t opt_out_size;
    char dest_subscribe_id[TFE_STRING_MAX] = {0};
    char source_subscribe_id[TFE_STRING_MAX] = {0};
    struct tfe_cmsg *cmsg = tfe_stream_get0_cmsg(stream);
    if (cmsg != NULL)
    {
        scan_ret = tfe_cmsg_get_value(cmsg, TFE_CMSG_SRC_SUB_ID, (unsigned char *)source_subscribe_id, sizeof(source_subscribe_id), &opt_out_size);
        if (scan_ret != 0)
        {
            TFE_LOG_ERROR(logger, "fetch src sub id from cmsg failed, ret: %d addr: %s", scan_ret, stream->str_stream_info);
        }
        scan_ret = tfe_cmsg_get_value(cmsg, TFE_CMSG_DST_SUB_ID, (unsigned char *)dest_subscribe_id, sizeof(dest_subscribe_id), &opt_out_size);
        if (scan_ret != 0)
        {
            TFE_LOG_ERROR(logger, "fetch dst sub id from cmsg failed, ret: %d addr: %s", scan_ret, stream->str_stream_info);
        }
    }
    TFE_LOG_DEBUG(logger, "fetch src sub id:%s dst sub id:%s addr: %s", source_subscribe_id, dest_subscribe_id, stream->str_stream_info);

    if (strlen(source_subscribe_id))
    {
        scan_ret = maat_scan_string((struct maat *)tfe_bussiness_resouce_get(STATIC_MAAT), tfe_bussiness_tableid_get(PXY_CTRL_SUBSCRIBER_ID),
                                    source_subscribe_id, strlen(source_subscribe_id),result + hit_cnt + hit_cnt_ip,
                                    MAX_SCAN_RESULT - hit_cnt - hit_cnt_ip, &n_hit_result, scan_mid);
        if (scan_ret == MAAT_SCAN_HIT)
        {
            TFE_LOG_INFO(logger, "Scan src TSG_OBJ_SUBSCRIBER_ID, Hit subid: %s scan ret: %d policy_id: %lld addr: %s",
                         source_subscribe_id, scan_ret, result[hit_cnt + hit_cnt_ip], stream->str_stream_info);
            hit_cnt_ip += n_hit_result;
        }
        else
        {
            TFE_LOG_INFO(logger, "Scan src TSG_OBJ_SUBSCRIBER_ID, NO hit subid: %s scan ret: %d addr: %s",
                         source_subscribe_id, scan_ret, stream->str_stream_info);
        }
        scan_ret = maat_scan_not_logic((struct maat *)tfe_bussiness_resouce_get(STATIC_MAAT), tfe_bussiness_tableid_get(PXY_CTRL_SUBSCRIBER_ID),
                                       result + hit_cnt + hit_cnt_ip, MAX_SCAN_RESULT - hit_cnt - hit_cnt_ip, &n_hit_result, scan_mid);
        if (scan_ret == MAAT_SCAN_HIT)
        {
           hit_cnt_ip += n_hit_result;
        }
    }

    if (strlen(dest_subscribe_id))
    {
        scan_ret = maat_scan_string((struct maat *)tfe_bussiness_resouce_get(STATIC_MAAT), tfe_bussiness_tableid_get(PXY_CTRL_SUBSCRIBER_ID),
                                    dest_subscribe_id, strlen(dest_subscribe_id),result + hit_cnt + hit_cnt_ip,
                                    MAX_SCAN_RESULT - hit_cnt - hit_cnt_ip,&n_hit_result, scan_mid);
        if (scan_ret == MAAT_SCAN_HIT)
        {
            TFE_LOG_INFO(logger, "Scan dst TSG_OBJ_SUBSCRIBER_ID, Hit subid: %s scan ret: %d policy_id: %lld addr: %s",
                         dest_subscribe_id, scan_ret, result[hit_cnt + hit_cnt_ip], stream->str_stream_info);
            hit_cnt_ip += n_hit_result;
        }
        else
        {
            TFE_LOG_INFO(logger, "Scan dst TSG_OBJ_SUBSCRIBER_ID, NO hit subid: %s scan ret: %d addr: %s",
                         dest_subscribe_id, scan_ret, stream->str_stream_info);
        }
        scan_ret = maat_scan_not_logic((struct maat *)tfe_bussiness_resouce_get(STATIC_MAAT), tfe_bussiness_tableid_get(PXY_CTRL_SUBSCRIBER_ID),
                                      result + hit_cnt + hit_cnt_ip, MAX_SCAN_RESULT - hit_cnt - hit_cnt_ip, &n_hit_result, scan_mid);
        if (scan_ret == MAAT_SCAN_HIT)
        {
           hit_cnt_ip += n_hit_result;
        }
    }

    return hit_cnt_ip;
}

static int scan_group(struct maat_hit_group hit_group, long long *result, struct maat_state *scan_mid, int hit_cnt, int table_id)
{
	size_t n_hit_result=0;
	int scan_ret=0, hit_cnt_group=0;

	scan_ret = maat_scan_group((struct maat *)tfe_bussiness_resouce_get(STATIC_MAAT), table_id, &hit_group, 1,
							    result+hit_cnt+hit_cnt_group, MAX_SCAN_RESULT-hit_cnt-hit_cnt_group, &n_hit_result, scan_mid);
	if(scan_ret == MAAT_SCAN_HIT)
	{
		hit_cnt_group+=n_hit_result;
	}
	scan_ret = maat_scan_not_logic((struct maat *)tfe_bussiness_resouce_get(STATIC_MAAT), table_id, result+hit_cnt+hit_cnt_group,
								   MAX_SCAN_RESULT-hit_cnt-hit_cnt_group, &n_hit_result, scan_mid);
	if (scan_ret == MAAT_SCAN_HIT)
	{
		hit_cnt_group+=n_hit_result;
	}
	return hit_cnt_group;
}

int tfe_scan_ip_location(const struct tfe_stream *stream, long long *result, struct maat_state *scan_mid, int hit_cnt, void *logger)
{
    int scan_ret = 0;
    int hit_cnt_ip = 0;
    uint16_t opt_out_size;
    unsigned int i=0, group_id=0, group_id_num=0;
	unsigned int group_id_val[TFE_SYMBOL_MAX] = {0};

    struct tfe_cmsg *cmsg = tfe_stream_get0_cmsg(stream);
    if(cmsg == NULL)
    {
        return hit_cnt_ip;
    }

    for(i=TFE_CMSG_SRC_REGION_ID; i <= TFE_CMSG_DST_SUBDIVISION_ID; i+=2)
    {
        scan_ret = tfe_cmsg_get_value(cmsg, (enum tfe_cmsg_tlv_type)i, (unsigned char *)&group_id, sizeof(group_id), &opt_out_size);
        if (scan_ret == 0)
        {
             group_id_val[group_id_num] = group_id;
        }
        group_id_num++;
    }
    TFE_LOG_DEBUG(logger, "fetch src ip location group id num:%d val:%d,%d,%d,%d, addr: %s", group_id_num, group_id_val[0], group_id_val[1], group_id_val[2],group_id_val[3], stream->str_stream_info);

    struct maat_hit_group hit_group;
    for (i = 0; i < group_id_num; i++)
    {
        memset(&hit_group, 0, sizeof(hit_group));
        hit_group.group_id=group_id_val[i];
        scan_ret = scan_group(hit_group, result, scan_mid, hit_cnt, tfe_bussiness_tableid_get((enum scan_common_table)(PXY_CTRL_SOURCE_GEO_COUNTRY+i)));
        if (scan_ret > 0)
        {
            TFE_LOG_INFO(logger, "Scan SRC IP_LOCATION, Hit scan ret: %d policy_id: %lld addr: %s", scan_ret, result[hit_cnt + hit_cnt_ip], stream->str_stream_info);
            hit_cnt_ip += scan_ret;
        }
        else
        {
            TFE_LOG_INFO(logger, "Scan SRC IP_LOCATION, NO hit scan ret: %d addr: %s", scan_ret, stream->str_stream_info);
        }
    }

    group_id_num=0;
    memset(group_id_val, 0, sizeof(group_id_val));
    for(i=TFE_CMSG_DST_REGION_ID; i <= TFE_CMSG_DST_SUBDIVISION_ID; i+=2)
    {
        scan_ret = tfe_cmsg_get_value(cmsg, (enum tfe_cmsg_tlv_type)i, (unsigned char *)&group_id, sizeof(group_id), &opt_out_size);
        if (scan_ret == 0)
        {
             group_id_val[group_id_num] = group_id;
        }
        group_id_num++;
    }
    TFE_LOG_DEBUG(logger, "fetch dst ip location group id num:%d val:%d,%d,%d,%d, addr: %s", group_id_num, group_id_val[0], group_id_val[1], group_id_val[2],group_id_val[3], stream->str_stream_info);
    for (i = 0; i < group_id_num; i++)
    {
        memset(&hit_group, 0, sizeof(hit_group));
        hit_group.group_id=group_id_val[i];
        scan_ret = scan_group(hit_group, result, scan_mid, hit_cnt, tfe_bussiness_tableid_get((enum scan_common_table)(PXY_CTRL_DESTINATION_GEO_COUNTRY+i)));
        if (scan_ret > 0)
        {
            TFE_LOG_INFO(logger, "Scan IP_LOCATION, Hit scan ret: %d policy_id: %lld addr: %s", scan_ret, result[hit_cnt + hit_cnt_ip], stream->str_stream_info);
            hit_cnt_ip += scan_ret;
        }
        else
        {
            TFE_LOG_INFO(logger, "Scan IP_LOCATION, NO hit scan ret: %d addr: %s", scan_ret, stream->str_stream_info);
        }
    }
    return hit_cnt_ip;
}

int tfe_scan_ip_asn(const struct tfe_stream *stream, long long *result, struct maat_state *scan_mid,
                    int hit_cnt, void *logger, char **asn_server, char **asn_client)
{
    int scan_ret = 0;
    int hit_cnt_ip = 0;
	size_t n_hit_result = 0;
    uint16_t opt_out_size;
    uint64_t src_asn_group_id=0, dst_asn_group_id=0;

    struct tfe_cmsg *cmsg = tfe_stream_get0_cmsg(stream);
    if (cmsg != NULL)
    {
        scan_ret = tfe_cmsg_get_value(cmsg, TFE_CMSG_SRC_ASN_ID, (unsigned char *)&src_asn_group_id, sizeof(src_asn_group_id), &opt_out_size);
        if (scan_ret != 0)
        {
            TFE_LOG_ERROR(logger, "fetch src asn from cmsg failed, ret: %d addr: %s", scan_ret, stream->str_stream_info);
        }
        scan_ret = tfe_cmsg_get_value(cmsg, TFE_CMSG_DST_ASN_ID, (unsigned char *)&dst_asn_group_id, sizeof(dst_asn_group_id), &opt_out_size);
        if (scan_ret != 0)
        {
            TFE_LOG_ERROR(logger, "fetch dst asn from cmsg failed, ret: %d addr: %s", scan_ret, stream->str_stream_info);
        }
    }
    TFE_LOG_DEBUG(logger, "fetch src asn:%lu; dst asn:%lu addr: %s", src_asn_group_id, dst_asn_group_id, stream->str_stream_info);

    struct maat_hit_group hit_group;
    if (dst_asn_group_id > 0)
    {
        memset(&hit_group, 0, sizeof(hit_group));
        hit_group.group_id=dst_asn_group_id;
        scan_ret = scan_group(hit_group, result, scan_mid, hit_cnt+hit_cnt_ip, tfe_bussiness_tableid_get(PXY_CTRL_DESTINATION_ASN));
        if (scan_ret > 0)
        {
            TFE_LOG_INFO(logger, "Scan ATTR_DESTINATION_ASN, Hit asn: %lu scan ret: %d policy_id: %lld addr: %s",
                         dst_asn_group_id, scan_ret, result[hit_cnt + hit_cnt_ip], stream->str_stream_info);
            hit_cnt_ip += n_hit_result;    
        }
        else
        {
            TFE_LOG_INFO(logger, "Scan ATTR_DESTINATION_ASN, NO hit asn: %lu scan ret: %d addr: %s",
                         dst_asn_group_id, scan_ret, stream->str_stream_info);   
        }
    }
    if(src_asn_group_id > 0)
    {
        memset(&hit_group, 0, sizeof(hit_group));
        hit_group.group_id=src_asn_group_id;
        scan_ret = scan_group(hit_group, result, scan_mid, hit_cnt+hit_cnt_ip, tfe_bussiness_tableid_get(PXY_CTRL_SOURCE_ASN));
        if(scan_ret > 0)
        {
            TFE_LOG_INFO(logger, "Scan ATTR_SOURCE_ASN, Hit asn: %lu scan ret: %d policy_id: %lld addr: %s",
                         src_asn_group_id, scan_ret, result[hit_cnt + hit_cnt_ip], stream->str_stream_info);
            hit_cnt_ip += n_hit_result;

        }
        else
        {
             TFE_LOG_INFO(logger, "Scan ATTR_SOURCE_ASN, NO hit asn: %lu scan ret: %d addr: %s",
                         src_asn_group_id, scan_ret, stream->str_stream_info);
        }
    }

    return hit_cnt_ip;
}

int tfe_scan_app_id(long long *result, struct maat_state *scan_mid, int hit_cnt, long long app_id, int table_id)
{
    int scan_ret = 0;
    int hit_app_id = 0;
    size_t n_hit_result = 0;
    struct maat_hit_group hit_group;
 
	struct app_id_dict *app_dict = (struct app_id_dict*)maat_plugin_table_get_ex_data((struct maat *)tfe_bussiness_resouce_get(STATIC_MAAT), tfe_bussiness_tableid_get(PXY_CTRL_APP_ID_DICT),
                                    (const char *)&app_id, sizeof(long long));
	if(app_dict!=NULL)
	{
        memset(&hit_group, 0, sizeof(hit_group));
        hit_group.group_id=app_dict->group_id;
		scan_ret = maat_scan_group((struct maat *)tfe_bussiness_resouce_get(STATIC_MAAT), table_id, &hit_group, 1, result+hit_cnt+hit_app_id,
                                    MAX_SCAN_RESULT-hit_cnt-hit_app_id, &n_hit_result, scan_mid);
		if(scan_ret==MAAT_SCAN_HIT)
		{
			hit_app_id += n_hit_result;
		}
		scan_ret = maat_scan_not_logic((struct maat *)tfe_bussiness_resouce_get(STATIC_MAAT), table_id, result+hit_cnt+hit_app_id, MAX_SCAN_RESULT-hit_cnt-hit_app_id, &n_hit_result, scan_mid);
        if (scan_ret == MAAT_SCAN_HIT)
        {
           hit_app_id += n_hit_result;
        }
		app_id_dict_free(app_dict);
	}
    return hit_app_id;
}

static int get_route_dir(const struct tfe_stream * stream)
{
	uint16_t out_size;
	unsigned int route_dir; int ret=0;

	struct tfe_cmsg *cmsg = tfe_stream_get0_cmsg(stream);
	if (cmsg != NULL)
	{
		ret = tfe_cmsg_get_value(cmsg, TFE_CMSG_COMMON_DIRECTION, (unsigned char *)&route_dir, sizeof(route_dir), &out_size);
		if (ret != 0)
		{
			return ret;
		}
	}
	return (route_dir==69) ? 1 : 0;
}

int tfe_scan_internal_exteral_addr(const struct tfe_stream *stream, long long *result, struct maat_state *scan_mid, int hit_cnt, int c2s)
{
    int scan_ret = 0;
    int table_id=0;
    int hit_cnt_ip = 0;
    size_t array_size=256;
    size_t n_hit_result = 0;
    struct maat_hit_group last_hit_groups[256] = {0};

    int dir_is_e2i = get_route_dir(stream);
    if(c2s == 1)  table_id = (dir_is_e2i == 1) ? tfe_bussiness_tableid_get(PXY_CTRL_INTERNAL_IP) : tfe_bussiness_tableid_get(PXY_CTRL_EXTERNAL_IP);
    if(c2s == 0)  table_id = (dir_is_e2i == 0) ? tfe_bussiness_tableid_get(PXY_CTRL_INTERNAL_IP) : tfe_bussiness_tableid_get(PXY_CTRL_EXTERNAL_IP);

    size_t n_last_hit_group = maat_state_get_last_hit_group_cnt(scan_mid);
    if(n_last_hit_group > 0)
    {
        maat_state_get_last_hit_groups(scan_mid, last_hit_groups, array_size);
        scan_ret = maat_scan_group((struct maat *)tfe_bussiness_resouce_get(STATIC_MAAT), table_id, last_hit_groups, array_size, result+hit_cnt+hit_cnt_ip,
                                    MAX_SCAN_RESULT-hit_cnt-hit_cnt_ip, &n_hit_result, scan_mid);
        if(scan_ret == MAAT_SCAN_HIT)
        {
            hit_cnt_ip += n_hit_result;
        }
        scan_ret = maat_scan_not_logic((struct maat *)tfe_bussiness_resouce_get(STATIC_MAAT), table_id,
                                 result+hit_cnt+hit_cnt_ip, MAX_SCAN_RESULT-hit_cnt-hit_cnt_ip, &n_hit_result, scan_mid);
        if (scan_ret == MAAT_SCAN_HIT)
        {
            hit_cnt_ip += n_hit_result;
        }
    }

    return hit_cnt_ip;
}

int tfe_scan_internal_exteral_port(const struct tfe_stream *stream, long long *result, struct maat_state *scan_mid, int hit_cnt, int c2s)
{
    int scan_ret = 0;
    int table_id=0;
    int hit_cnt_port = 0;
    size_t array_size=256;
    size_t n_hit_result = 0;
    struct maat_hit_group last_hit_groups[256] = {0};
    
    int dir_is_e2i = get_route_dir(stream);
    if(c2s == 1)  table_id = (dir_is_e2i == 1) ? tfe_bussiness_tableid_get(PXY_CTRL_INTERNAL_PORT) : tfe_bussiness_tableid_get(PXY_CTRL_EXTERNAL_PORT);
    if(c2s == 0)  table_id = (dir_is_e2i == 0) ? tfe_bussiness_tableid_get(PXY_CTRL_INTERNAL_PORT) : tfe_bussiness_tableid_get(PXY_CTRL_EXTERNAL_PORT);

    size_t n_last_hit_group = maat_state_get_last_hit_group_cnt(scan_mid);
    if(n_last_hit_group > 0)
    {
        maat_state_get_last_hit_groups(scan_mid, last_hit_groups, array_size);
        scan_ret = maat_scan_group((struct maat *)tfe_bussiness_resouce_get(STATIC_MAAT), table_id, last_hit_groups, array_size, result+hit_cnt+hit_cnt_port,
                                    MAX_SCAN_RESULT-hit_cnt-hit_cnt_port, &n_hit_result, scan_mid);
        if(scan_ret == MAAT_SCAN_HIT)
        {
            hit_cnt_port += n_hit_result;
        }
        scan_ret = maat_scan_not_logic((struct maat *)tfe_bussiness_resouce_get(STATIC_MAAT), table_id,
                                 result+hit_cnt+hit_cnt_port, MAX_SCAN_RESULT-hit_cnt-hit_cnt_port, &n_hit_result, scan_mid);
        if (scan_ret == MAAT_SCAN_HIT)
        {
            hit_cnt_port += n_hit_result;
        }
    }
    return hit_cnt_port;
}

int tfe_scan_port(const struct tfe_stream *stream, long long *result, struct maat_state *scan_mid, int hit_cnt, uint16_t source, uint16_t dest)
{
    int scan_ret = 0;
    int hit_cnt_port = 0;
	size_t n_hit_result = 0;

    scan_ret=maat_scan_integer((struct maat *)tfe_bussiness_resouce_get(STATIC_MAAT), tfe_bussiness_tableid_get(PXY_CTRL_SOURCE_PORT), ntohs(source),
                               result+hit_cnt+hit_cnt_port, MAX_SCAN_RESULT-hit_cnt-hit_cnt_port, &n_hit_result, scan_mid);
    if(scan_ret == MAAT_SCAN_HIT)
    {
        hit_cnt_port+=n_hit_result;
    }
    scan_ret = maat_scan_not_logic((struct maat *)tfe_bussiness_resouce_get(STATIC_MAAT), tfe_bussiness_tableid_get(PXY_CTRL_SOURCE_PORT), 
                                  result+hit_cnt+hit_cnt_port, MAX_SCAN_RESULT-hit_cnt-hit_cnt_port, &n_hit_result, scan_mid);
	if (scan_ret == MAAT_SCAN_HIT)
	{
		hit_cnt_port+=n_hit_result;
	}
    scan_ret = tfe_scan_internal_exteral_port(stream, result, scan_mid, hit_cnt, 1);
    if(scan_ret > 0)
    {
        hit_cnt_port+=scan_ret;
    }

    scan_ret=maat_scan_integer((struct maat *)tfe_bussiness_resouce_get(STATIC_MAAT), tfe_bussiness_tableid_get(PXY_CTRL_DESTINATION_PORT), ntohs(dest),
                               result+hit_cnt+hit_cnt_port, MAX_SCAN_RESULT-hit_cnt-hit_cnt_port, &n_hit_result, scan_mid);
    if(scan_ret == MAAT_SCAN_HIT)
    {
        hit_cnt_port+=n_hit_result;
    }
    scan_ret = maat_scan_not_logic((struct maat *)tfe_bussiness_resouce_get(STATIC_MAAT), tfe_bussiness_tableid_get(PXY_CTRL_DESTINATION_PORT),
                                   result+hit_cnt+hit_cnt_port, MAX_SCAN_RESULT-hit_cnt-hit_cnt_port, &n_hit_result, scan_mid);
	if (scan_ret == MAAT_SCAN_HIT)
	{
		hit_cnt_port+=n_hit_result;
	}
    scan_ret = tfe_scan_internal_exteral_port(stream, result, scan_mid, hit_cnt, 0);
    if(scan_ret > 0)
    {
        hit_cnt_port+=scan_ret;
    }

    return hit_cnt_port;
}

#define PROTOCOL_TCP_GROUP_ID	6
int tfe_scan_ipv4_addr(const struct tfe_stream *stream, long long *result, struct maat_state *scan_mid, int hit_cnt, struct ipaddr sapp_addr)
{
    int scan_ret = 0;
    int hit_cnt_ip = 0;
	size_t n_hit_result = 0;
    struct maat_hit_group hit_group;

    memset(&hit_group, 0, sizeof(hit_group));
    hit_group.group_id=PROTOCOL_TCP_GROUP_ID;
    scan_ret = maat_scan_group((struct maat *)tfe_bussiness_resouce_get(STATIC_MAAT), tfe_bussiness_tableid_get(PXY_CTRL_IP_PROTOCOL), &hit_group, 1, 
                                result+hit_cnt+hit_cnt_ip, MAX_SCAN_RESULT-hit_cnt-hit_cnt_ip, &n_hit_result, scan_mid);
    if(scan_ret==MAAT_SCAN_HIT)
    {
        hit_cnt_ip += n_hit_result;
    }
    scan_ret = maat_scan_not_logic((struct maat *)tfe_bussiness_resouce_get(STATIC_MAAT), tfe_bussiness_tableid_get(PXY_CTRL_IP_PROTOCOL), 
                                  result+hit_cnt+hit_cnt_ip, MAX_SCAN_RESULT-hit_cnt-hit_cnt_ip, &n_hit_result, scan_mid);
    if (scan_ret == MAAT_SCAN_HIT)
    {
        hit_cnt_ip += n_hit_result;
    }

    scan_ret = maat_scan_ipv4_port((struct maat *)tfe_bussiness_resouce_get(STATIC_MAAT), tfe_bussiness_tableid_get(PXY_CTRL_SOURCE_IP), sapp_addr.v4->saddr, ntohs(sapp_addr.v4->source),
                                    result+hit_cnt+hit_cnt_ip, MAX_SCAN_RESULT-hit_cnt-hit_cnt_ip, &n_hit_result, scan_mid);
    if (scan_ret == MAAT_SCAN_HIT)
    {
        hit_cnt_ip += n_hit_result;
    }
    scan_ret = maat_scan_not_logic((struct maat *)tfe_bussiness_resouce_get(STATIC_MAAT), tfe_bussiness_tableid_get(PXY_CTRL_SOURCE_IP), 
                                  result+hit_cnt+hit_cnt_ip, MAX_SCAN_RESULT-hit_cnt-hit_cnt_ip, &n_hit_result, scan_mid);
    if (scan_ret == MAAT_SCAN_HIT)
    {
        hit_cnt_ip += n_hit_result;
    }
    scan_ret = tfe_scan_internal_exteral_addr(stream, result, scan_mid, hit_cnt, 1);
    if(scan_ret > 0)
    {
        hit_cnt_ip += scan_ret;
    }

    scan_ret = maat_scan_ipv4_port((struct maat *)tfe_bussiness_resouce_get(STATIC_MAAT), tfe_bussiness_tableid_get(PXY_CTRL_DESTINATION_IP), sapp_addr.v4->daddr, ntohs(sapp_addr.v4->dest),
                                   result+hit_cnt+hit_cnt_ip, MAX_SCAN_RESULT-hit_cnt-hit_cnt_ip, &n_hit_result, scan_mid);
    if(scan_ret == MAAT_SCAN_HIT)
    {
        hit_cnt_ip += n_hit_result;
    }
    scan_ret = maat_scan_not_logic((struct maat *)tfe_bussiness_resouce_get(STATIC_MAAT), tfe_bussiness_tableid_get(PXY_CTRL_DESTINATION_IP), 
                                  result+hit_cnt+hit_cnt_ip, MAX_SCAN_RESULT-hit_cnt-hit_cnt_ip, &n_hit_result, scan_mid);
    if (scan_ret == MAAT_SCAN_HIT)
    {
        hit_cnt_ip += n_hit_result;
    }
    scan_ret = tfe_scan_internal_exteral_addr(stream, result, scan_mid, hit_cnt, 0);
    if(scan_ret > 0)
    {
        hit_cnt_ip += scan_ret;
    }

    return hit_cnt_ip;
}

int tfe_scan_ipv6_addr(const struct tfe_stream *stream, long long *result, struct maat_state *scan_mid, int hit_cnt, struct ipaddr sapp_addr)
{
    int scan_ret = 0;
    int hit_cnt_ip = 0;
	size_t n_hit_result = 0;
    struct maat_hit_group hit_group;

    memset(&hit_group, 0, sizeof(hit_group));
    hit_group.group_id=PROTOCOL_TCP_GROUP_ID;
    scan_ret = maat_scan_group((struct maat *)tfe_bussiness_resouce_get(STATIC_MAAT), tfe_bussiness_tableid_get(PXY_CTRL_IP_PROTOCOL), &hit_group, 1,
                              result+hit_cnt+hit_cnt_ip, MAX_SCAN_RESULT-hit_cnt-hit_cnt_ip, &n_hit_result, scan_mid);
    if(scan_ret==MAAT_SCAN_HIT)
    {
        hit_cnt_ip += n_hit_result;
    }
    
    scan_ret = maat_scan_ipv6((struct maat *)tfe_bussiness_resouce_get(STATIC_MAAT), tfe_bussiness_tableid_get(PXY_CTRL_SOURCE_IP), sapp_addr.v6->saddr,
                              result+hit_cnt+hit_cnt_ip, MAX_SCAN_RESULT-hit_cnt-hit_cnt_ip, &n_hit_result, scan_mid);
    if (scan_ret == MAAT_SCAN_HIT)
    {
        hit_cnt_ip += n_hit_result;
    }
    scan_ret = maat_scan_not_logic((struct maat *)tfe_bussiness_resouce_get(STATIC_MAAT), tfe_bussiness_tableid_get(PXY_CTRL_SOURCE_IP), 
                                  result+hit_cnt+hit_cnt_ip, MAX_SCAN_RESULT-hit_cnt-hit_cnt_ip, &n_hit_result, scan_mid);
    if (scan_ret == MAAT_SCAN_HIT)
    {
        hit_cnt_ip += n_hit_result;
    }
    scan_ret = tfe_scan_internal_exteral_addr(stream, result, scan_mid, hit_cnt, 1);
    if(scan_ret > 0)
    {
        hit_cnt_ip += scan_ret;
    }
    
    scan_ret = maat_scan_ipv6_port((struct maat *)tfe_bussiness_resouce_get(STATIC_MAAT), tfe_bussiness_tableid_get(PXY_CTRL_DESTINATION_IP), sapp_addr.v6->daddr, ntohs(sapp_addr.v6->dest),
                                  result+hit_cnt+hit_cnt_ip, MAX_SCAN_RESULT-hit_cnt-hit_cnt_ip, &n_hit_result, scan_mid);
    if (scan_ret == MAAT_SCAN_HIT)
    {
        hit_cnt_ip += n_hit_result;
    }
    scan_ret = maat_scan_not_logic((struct maat *)tfe_bussiness_resouce_get(STATIC_MAAT), tfe_bussiness_tableid_get(PXY_CTRL_DESTINATION_IP),
                                   result+hit_cnt+hit_cnt_ip, MAX_SCAN_RESULT-hit_cnt-hit_cnt_ip, &n_hit_result, scan_mid);
    if (scan_ret == MAAT_SCAN_HIT)
    {
        hit_cnt_ip += n_hit_result;
    }
    scan_ret = tfe_scan_internal_exteral_addr(stream, result, scan_mid, hit_cnt, 0);
    if(scan_ret > 0)
    {
        hit_cnt_ip += scan_ret;
    }

    return hit_cnt_ip;
}