diff options
| author | fengweihao <[email protected]> | 2024-02-01 16:03:49 +0800 |
|---|---|---|
| committer | fengweihao <[email protected]> | 2024-02-01 16:03:49 +0800 |
| commit | 2c32c20e234d9bce9748eee62d8da27c09bd324b (patch) | |
| tree | 10ba2fca555735b004ee54f40b554ee04e5c509a /plugin | |
| parent | 9c9cc1de759d7a7ce1b2c86d17086d57d537cbfe (diff) | |
TSG-18425 Proxy支持port object匹配 TSG-19090 Proxy支持Protocol Object匹配v4.8.64-20240204
Diffstat (limited to 'plugin')
| -rw-r--r-- | plugin/business/doh/src/doh.cpp | 14 | ||||
| -rw-r--r-- | plugin/business/doh/src/pub.h | 4 | ||||
| -rw-r--r-- | plugin/business/tsg-http/src/tsg_http.cpp | 18 |
3 files changed, 20 insertions, 16 deletions
diff --git a/plugin/business/doh/src/doh.cpp b/plugin/business/doh/src/doh.cpp index 89afd2a..c983571 100644 --- a/plugin/business/doh/src/doh.cpp +++ b/plugin/business/doh/src/doh.cpp @@ -323,6 +323,11 @@ static void doh_maat_scan(const struct tfe_stream *stream, const struct tfe_http { hit_cnt += scan_ret; } + scan_ret = tfe_scan_port(stream, result, ctx->scan_mid, hit_cnt, sapp_addr.v4->source, sapp_addr.v4->dest); + if(scan_ret > 0) + { + hit_cnt += scan_ret; + } } if (sapp_addr.addrtype == ADDR_TYPE_IPV6) { @@ -331,6 +336,11 @@ static void doh_maat_scan(const struct tfe_stream *stream, const struct tfe_http { hit_cnt += scan_ret; } + scan_ret = tfe_scan_port(stream, result, ctx->scan_mid, hit_cnt, sapp_addr.v6->source, sapp_addr.v6->dest); + if(scan_ret > 0) + { + hit_cnt += scan_ret; + } } // scan appid long long app_id = 8006; @@ -377,12 +387,8 @@ static int doh_maat_init(const char *profile, const char *section) { g_doh_conf->maat = (struct maat *)tfe_bussiness_resouce_get(STATIC_MAAT); MESA_load_profile_string_def(profile, section, "table_appid", g_doh_conf->tables[TYPE_APPID].name, TFE_STRING_MAX, "ATTR_APP_ID"); - MESA_load_profile_string_def(profile, section, "table_src_addr", g_doh_conf->tables[TYPE_SRC_ADDR].name, TFE_STRING_MAX, "ATTR_SOURCE_ADDR"); - MESA_load_profile_string_def(profile, section, "table_dst_addr", g_doh_conf->tables[TYPE_DST_ADDR].name, TFE_STRING_MAX, "ATTR_DESTINATION_ADDR"); MESA_load_profile_string_def(profile, section, "table_qname", g_doh_conf->tables[TYPE_QNAME].name, TFE_STRING_MAX, "ATTR_DOH_QNAME"); MESA_load_profile_string_def(profile, section, "table_host", g_doh_conf->tables[TYPE_HOST].name, TFE_STRING_MAX, "ATTR_SERVER_FQDN"); - MESA_load_profile_string_def(profile, section, "table_internal_addr", g_doh_conf->tables[TYPE_INTERNAL_ADDR].name, TFE_STRING_MAX, "ATTR_INTERNAL_ADDR"); - MESA_load_profile_string_def(profile, section, "table_external_addr", g_doh_conf->tables[TYPE_EXTERNAL_ADDR].name, TFE_STRING_MAX, "ATTR_EXTERNAL_ADDR"); for (int i = 0; i < TYPE_MAX; i++) { diff --git a/plugin/business/doh/src/pub.h b/plugin/business/doh/src/pub.h index 2ca5271..1e7aef9 100644 --- a/plugin/business/doh/src/pub.h +++ b/plugin/business/doh/src/pub.h @@ -30,13 +30,9 @@ enum pangu_http_stat enum table_type { - TYPE_SRC_ADDR, - TYPE_DST_ADDR, TYPE_APPID, TYPE_QNAME, TYPE_HOST, - TYPE_INTERNAL_ADDR, - TYPE_EXTERNAL_ADDR, TYPE_MAX }; diff --git a/plugin/business/tsg-http/src/tsg_http.cpp b/plugin/business/tsg-http/src/tsg_http.cpp index 336dc85..42afd8c 100644 --- a/plugin/business/tsg-http/src/tsg_http.cpp +++ b/plugin/business/tsg-http/src/tsg_http.cpp @@ -63,8 +63,6 @@ enum manipulate_action enum scan_table { - PXY_CTRL_SOURCE_ADDR, - PXY_CTRL_DESTINATION_ADDR, PXY_CTRL_HTTP_URL, PXY_CTRL_HTTP_FQDN, PXY_CTRL_HTTP_REQ_HDR, @@ -72,8 +70,6 @@ enum scan_table PXY_CTRL_HTTP_RES_HDR, PXY_CTRL_HTTP_RES_BODY, PXY_CTRL_APP_ID, - PXY_CTRL_INTERNAL_ADDR, - PXY_CTRL_EXTERNAL_ADDR, __SCAN_TABLE_MAX }; @@ -1011,8 +1007,6 @@ int proxy_policy_init(const char* profile_path, const char* static_section, cons g_proxy_rt->feather = (struct maat *)tfe_bussiness_resouce_get(STATIC_MAAT); const char * table_name[__SCAN_TABLE_MAX]; - table_name[PXY_CTRL_SOURCE_ADDR] = "ATTR_SOURCE_ADDR"; - table_name[PXY_CTRL_DESTINATION_ADDR]="ATTR_DESTINATION_ADDR"; table_name[PXY_CTRL_HTTP_URL] = "ATTR_HTTP_URL"; table_name[PXY_CTRL_HTTP_FQDN] = "ATTR_SERVER_FQDN"; table_name[PXY_CTRL_HTTP_REQ_HDR] = "ATTR_HTTP_REQ_HDR"; @@ -1020,8 +1014,6 @@ int proxy_policy_init(const char* profile_path, const char* static_section, cons table_name[PXY_CTRL_HTTP_RES_HDR] = "ATTR_HTTP_RES_HDR"; table_name[PXY_CTRL_HTTP_RES_BODY] = "ATTR_HTTP_RES_BODY"; table_name[PXY_CTRL_APP_ID] = "ATTR_APP_ID"; - table_name[PXY_CTRL_INTERNAL_ADDR] = "ATTR_INTERNAL_ADDR"; - table_name[PXY_CTRL_EXTERNAL_ADDR] = "ATTR_EXTERNAL_ADDR"; for (int i = 0; i < __SCAN_TABLE_MAX; i++) { @@ -2889,6 +2881,11 @@ void proxy_on_http_begin(const struct tfe_stream *stream, const struct tfe_http_ { hit_cnt += scan_ret; } + scan_ret = tfe_scan_port(stream, result, ctx->scan_mid, hit_cnt, sapp_addr.v4->source, sapp_addr.v4->dest); + if(scan_ret > 0) + { + hit_cnt += scan_ret; + } } if (sapp_addr.addrtype == ADDR_TYPE_IPV6) { @@ -2897,6 +2894,11 @@ void proxy_on_http_begin(const struct tfe_stream *stream, const struct tfe_http_ { hit_cnt += scan_ret; } + scan_ret = tfe_scan_port(stream, result, ctx->scan_mid, hit_cnt, sapp_addr.v6->source, sapp_addr.v6->dest); + if(scan_ret > 0) + { + hit_cnt += scan_ret; + } } if(hit_cnt > 0) |