解密流量转发功能适配MARSIOv4
This commit is contained in:
luqiuwen
@@ -429,11 +429,28 @@ static int traffic_mirror_ethdev_init(struct traffic_mirror_instance * instance)
|
||||
return -1;
|
||||
}
|
||||
|
||||
instance->ethdev = traffic_mirror_ethdev_pcap_create(str_ethdev, instance->logger);
|
||||
unsigned int device_type;
|
||||
MESA_load_profile_uint_def(profile, "traffic_mirror", "type", &device_type, TRAFFIC_MIRROR_ETHDEV_AF_PACKET);
|
||||
|
||||
if (device_type == TRAFFIC_MIRROR_ETHDEV_AF_PACKET)
|
||||
{
|
||||
instance->ethdev = traffic_mirror_ethdev_pcap_create(str_ethdev, instance->logger);
|
||||
}
|
||||
else if(device_type == TRAFFIC_MIRROR_ETHDEV_MARSIO)
|
||||
{
|
||||
instance->ethdev = traffic_mirror_ethdev_mr4_create(str_ethdev,
|
||||
tfe_proxy_get_work_thread_count(), instance->logger);
|
||||
}
|
||||
else
|
||||
{
|
||||
TFE_LOG_ERROR(instance->logger, "invalid traffic mirror device type, [traffic_mirror]type = %d", device_type);
|
||||
return -2;
|
||||
}
|
||||
|
||||
if (!instance->ethdev)
|
||||
{
|
||||
TFE_LOG_ERROR(instance->logger, "failed at traffic mirror device init ");
|
||||
return -2;
|
||||
TFE_LOG_ERROR(instance->logger, "failed at traffic mirror device init. ");
|
||||
return -3;
|
||||
}
|
||||
|
||||
return 0;
|
||||
@@ -515,6 +532,9 @@ int traffic_mirror_on_open_cb(const struct tfe_stream * stream, unsigned int thr
|
||||
struct traffic_mirror_instance * instance = g_traffic_mirror_instance;
|
||||
struct tfe_cmsg * cmsg = tfe_stream_get0_cmsg(stream);
|
||||
|
||||
unsigned int target_id;
|
||||
struct traffic_mirror_rebuild_target * rebuild_target = NULL;
|
||||
|
||||
assert(instance != NULL);
|
||||
assert(cmsg != NULL);
|
||||
|
||||
@@ -527,7 +547,7 @@ int traffic_mirror_on_open_cb(const struct tfe_stream * stream, unsigned int thr
|
||||
struct policy_table_ex_data * policy_ex_data = NULL;
|
||||
struct profile_table_ex_data * profile_ex_data = NULL;
|
||||
|
||||
int ret = tfe_cmsg_get_value(cmsg, TFE_CMSG_POLICY_ID, (unsigned char*)&opt_val, sizeof(opt_val), &opt_out_size);
|
||||
int ret = tfe_cmsg_get_value(cmsg, TFE_CMSG_POLICY_ID, (unsigned char *) &opt_val, sizeof(opt_val), &opt_out_size);
|
||||
if (ret < 0)
|
||||
{
|
||||
TFE_LOG_ERROR(instance->logger, "failed at getting policy id from cmsg, detach the stream.");
|
||||
@@ -535,7 +555,7 @@ int traffic_mirror_on_open_cb(const struct tfe_stream * stream, unsigned int thr
|
||||
}
|
||||
|
||||
snprintf(str_policy_id, sizeof(str_policy_id), "%u", opt_val);
|
||||
policy_ex_data = (struct policy_table_ex_data *)Maat_plugin_get_EX_data(instance->maat_feather,
|
||||
policy_ex_data = (struct policy_table_ex_data *) Maat_plugin_get_EX_data(instance->maat_feather,
|
||||
instance->policy_table_id, str_policy_id);
|
||||
|
||||
if (!policy_ex_data)
|
||||
@@ -550,7 +570,7 @@ int traffic_mirror_on_open_cb(const struct tfe_stream * stream, unsigned int thr
|
||||
}
|
||||
|
||||
snprintf(str_profile_id, sizeof(str_policy_id), "%u", policy_ex_data->profile_id);
|
||||
profile_ex_data = (struct profile_table_ex_data *)Maat_plugin_get_EX_data(instance->maat_feather,
|
||||
profile_ex_data = (struct profile_table_ex_data *) Maat_plugin_get_EX_data(instance->maat_feather,
|
||||
instance->profile_table_id, str_profile_id);
|
||||
|
||||
if (!profile_ex_data)
|
||||
@@ -560,16 +580,21 @@ int traffic_mirror_on_open_cb(const struct tfe_stream * stream, unsigned int thr
|
||||
goto detach;
|
||||
}
|
||||
|
||||
target_id = random() % profile_ex_data->nr_targets;
|
||||
rebuild_target = ALLOC(struct traffic_mirror_rebuild_target, 1);
|
||||
rebuild_target->vlan_tci = profile_ex_data->vlans[target_id];
|
||||
rebuild_target->ether_addr = profile_ex_data->ether_addrs[target_id];
|
||||
|
||||
me = ALLOC(struct traffic_mirror_me, 1);
|
||||
me->rebuild_ctx = traffic_mirror_rebuild_create(stream->addr, profile_ex_data, instance->ethdev);
|
||||
me->rebuild_ctx = traffic_mirror_rebuild_create(stream->addr, rebuild_target, instance->ethdev);
|
||||
me->profile_ex_data = profile_ex_data;
|
||||
*pme = (void *) me;
|
||||
|
||||
/* profile_ex_data's ownership is transfer to me */
|
||||
/* the ownership is transfer to struct me and rebuild_target */
|
||||
profile_ex_data = NULL;
|
||||
traffic_mirror_rebuild_handshake(me->rebuild_ctx);
|
||||
rebuild_target = NULL;
|
||||
|
||||
*pme = (void *)me;
|
||||
traffic_mirror_rebuild_handshake(me->rebuild_ctx, thread_id);
|
||||
return ACTION_FORWARD_DATA;
|
||||
|
||||
detach:
|
||||
@@ -588,15 +613,20 @@ detach:
|
||||
profile_table_ex_data_free(profile_ex_data);
|
||||
}
|
||||
|
||||
if (rebuild_target)
|
||||
{
|
||||
free(rebuild_target);
|
||||
}
|
||||
|
||||
tfe_stream_detach(stream);
|
||||
return ACTION_FORWARD_DATA;
|
||||
return ACTION_FORWARD_DATA;
|
||||
}
|
||||
|
||||
enum tfe_stream_action traffic_mirror_on_data_cb(const struct tfe_stream * stream, unsigned int thread_id,
|
||||
enum tfe_conn_dir dir, const unsigned char * data, size_t len, void ** pme)
|
||||
{
|
||||
struct traffic_mirror_me * me = (struct traffic_mirror_me *)(*pme);
|
||||
traffic_mirror_rebuild_data(me->rebuild_ctx, (const char *)data, (size_t)len, dir);
|
||||
traffic_mirror_rebuild_data(me->rebuild_ctx, 0, (const char *) data, (size_t) len, dir);
|
||||
return ACTION_FORWARD_DATA;
|
||||
}
|
||||
|
||||
@@ -604,7 +634,7 @@ void traffic_mirror_on_close_cb(const struct tfe_stream * stream, unsigned int t
|
||||
enum tfe_stream_close_reason reason, void ** pme)
|
||||
{
|
||||
struct traffic_mirror_me * me = (struct traffic_mirror_me *)(*pme);
|
||||
traffic_mirror_rebuild_farewell(me->rebuild_ctx);
|
||||
traffic_mirror_rebuild_farewell(me->rebuild_ctx, 0);
|
||||
traffic_mirror_rebuild_destroy(me->rebuild_ctx);
|
||||
profile_table_ex_data_free(me->profile_ex_data);
|
||||
|
||||
|
||||
Reference in New Issue
Block a user