diff options
| author | Lu <[email protected]> | 2018-06-19 20:22:36 +0800 |
|---|---|---|
| committer | Lu <[email protected]> | 2018-06-19 20:22:36 +0800 |
| commit | cd3eca7a277db00302675149b1416ba330de8065 (patch) | |
| tree | 7991ff9995be555ea17094838a5b43b8b6a980c7 /src/httpscan.cc | |
| parent | 1e11d48dadf8a1c8b948228ef15a386c213df1c1 (diff) | |
HttpRedirect功能测试通过
Diffstat (limited to 'src/httpscan.cc')
| -rw-r--r-- | src/httpscan.cc | 82 |
1 files changed, 48 insertions, 34 deletions
diff --git a/src/httpscan.cc b/src/httpscan.cc index a2e9a34..407e1ba 100644 --- a/src/httpscan.cc +++ b/src/httpscan.cc @@ -21,14 +21,14 @@ #include "compat.h" #include "logger.h" -static int __maat_table_register_or_throw(Maat_feather_t feather, const char *str_table) +static int __maat_table_register_or_throw(Maat_feather_t feather, const char * str_table) { int table_id = Maat_table_register(feather, str_table); if (table_id < 0) throw std::runtime_error("Failed at register maat table " + std::string(str_table)); return table_id; } -HttpScan::HttpScan(struct tfe_instance *instance, struct tfe_config *config) +HttpScan::HttpScan(struct tfe_instance * instance, struct tfe_config * config) : maat_feather_ref(instance->maat_feather) { table_id_ctrl_ip = __maat_table_register_or_throw(maat_feather_ref, "PXY_CTRL_IP"); @@ -39,22 +39,22 @@ HttpScan::HttpScan(struct tfe_instance *instance, struct tfe_config *config) table_id_ctrl_http_res_body = __maat_table_register_or_throw(maat_feather_ref, "PXY_CTRL_HTTP_RES_BODY"); auto & http_module = instance->http_module; - http_module->SetHttpConnectionNewCallback([this](Http &ht, HttpConnection &ct) -> void + http_module->SetHttpConnectionNewCallback([this](Http & ht, HttpConnection & ct) -> void { this->handlerConnectionCreate(ct); }); - http_module->SetHttpConnectionCloseCallback([this](Http &ht, HttpConnection &ct) -> void + http_module->SetHttpConnectionCloseCallback([this](Http & ht, HttpConnection & ct) -> void { this->handlerConnectionClose(ct); }); } -void HttpScan::handlerConnectionCreate(HttpConnection &ct) +void HttpScan::handlerConnectionCreate(HttpConnection & ct) { /* 新Session的创建处理函数 */ auto __shared_this_ptr = shared_from_this(); - ct.SetSessionNewCallback([__shared_this_ptr](HttpSession &session) -> void + ct.SetSessionNewCallback([__shared_this_ptr](HttpSession & session) -> void { /* 创建HttpScan的Session Ctx */ auto __scan_ctx = std::make_shared<HttpScanSession>(*__shared_this_ptr); @@ -64,25 +64,25 @@ void HttpScan::handlerConnectionCreate(HttpConnection &ct) * 这样,回调时始终保持__scan_ctx的引用计数大于等于1, * 避免在回调过程中变更回调函数导致ctx析构。 */ - session.SetRequestHeaderCallback([__scan_ctx](HttpSession &session) + session.SetRequestHeaderCallback([__scan_ctx](HttpSession & session) { auto __scan_ctx_stack = __scan_ctx; __scan_ctx_stack->ScanRequestHeader(&session); }); - session.SetRequestBodyCallback([__scan_ctx](HttpSession &session) + session.SetRequestBodyCallback([__scan_ctx](HttpSession & session) { auto __scan_ctx_stack = __scan_ctx; __scan_ctx->ScanRequestBody(&session); }); - session.SetResponseHeaderCallback([__scan_ctx](HttpSession &session) + session.SetResponseHeaderCallback([__scan_ctx](HttpSession & session) { auto __scan_ctx_stack = __scan_ctx; __scan_ctx->ScanResponseHeader(&session); }); - session.SetResponseBodyCallback([__scan_ctx](HttpSession &session) + session.SetResponseBodyCallback([__scan_ctx](HttpSession & session) { auto __scan_ctx_stack = __scan_ctx; __scan_ctx->ScanResponseBody(&session); @@ -93,7 +93,7 @@ void HttpScan::handlerConnectionCreate(HttpConnection &ct) ct.SetSessionCloseCallback(nullptr); } -void HttpScan::handlerConnectionClose(HttpConnection &ct) +void HttpScan::handlerConnectionClose(HttpConnection & ct) { return; } @@ -108,7 +108,7 @@ int HttpScan::connection_bypass_do_action() return 0; } -HttpScanSession::HttpScanSession(const HttpScan &httpscan_module) : +HttpScanSession::HttpScanSession(const HttpScan & httpscan_module) : httpscan_module_ref_(httpscan_module) { } @@ -118,15 +118,15 @@ HttpScanSession::~HttpScanSession() if (maat_scan_mid_ != nullptr) Maat_clean_status(&maat_scan_mid_); } -void HttpScanSession::ScanRequestHeader(HttpSession *http_session_ctx) +void HttpScanSession::ScanRequestHeader(HttpSession * http_session_ctx) { - auto &http_request = http_session_ctx->request(); + auto & http_request = http_session_ctx->request(); int dummy[MAAT_SCAN_RESULT_]; /* 扫描IP地址,获取连接对应的四元组 */ - const auto &connection = http_session_ctx->connection(); - const auto *sockaddr_src = connection.SockAddrSource(); - const auto *sockaddr_dst = connection.SockAddrDest(); + const auto & connection = http_session_ctx->connection(); + const auto * sockaddr_src = connection.SockAddrSource(); + const auto * sockaddr_dst = connection.SockAddrDest(); /* 转换为Sapp中的四元组结构体 */ auto sapp_tuple4_ptr = sockaddr_to_sapp_ipaddr(sockaddr_src, sockaddr_dst); @@ -136,64 +136,78 @@ void HttpScanSession::ScanRequestHeader(HttpSession *http_session_ctx) httpscan_module_ref_.table_id_ctrl_ip, sapp_tuple4_ptr.get(), maat_scan_result_, MAAT_SCAN_RESULT_, &maat_scan_mid_, 0); + /* 以下所有扫描命中后,配置callback tag为repeat,在本函数返回后,再次调用RequestHeader处理回调 + * 函数,执行命中动作 */ if (nr_maat_scan_result_ > 0) + { + http_session_ctx->SetRequestHeaderTag(HttpSession::kCallbackTagRepeat); return hit_config_and_do_action(http_session_ctx); + } else if (nr_maat_scan_result_ == -1) + { return hit_scan_error(); + } /* 扫描HTTP URL */ - const auto &__url = http_request.Url(); + const auto & __url = http_request.Url(); nr_maat_scan_result_ = Maat_full_scan_string(httpscan_module_ref_.maat_feather_ref, httpscan_module_ref_.table_id_ctrl_http_url, CHARSET_UTF8, __url.c_str(), (int) __url.length(), maat_scan_result_, dummy, MAAT_SCAN_RESULT_, &maat_scan_mid_, 0); if (nr_maat_scan_result_ > 0) + { + http_session_ctx->SetRequestHeaderTag(HttpSession::kCallbackTagRepeat); return hit_config_and_do_action(http_session_ctx); + } else if (nr_maat_scan_result_ == -1) + { return hit_scan_error(); + } /* 未命中HTTP URL,继续扫描其他HTTP头部字段 */ - http_request.ForEachHeader([this, http_session_ctx](const std::string &field, const std::string &value) + http_request.ForEachHeader([this, http_session_ctx](const std::string & field, const std::string & value) { /* 增强字符串表,设置区域字段,即Header字段 */ int ret = Maat_set_scan_status(httpscan_module_ref_.maat_feather_ref, &maat_scan_mid_, MAAT_SET_SCAN_DISTRICT, field.c_str(), (int) field.length()); /* 设置失败 */ - if (ret < 0) - return hit_scan_error(); - + if (ret < 0) return hit_scan_error(); int __dummy[MAAT_SCAN_RESULT_]; nr_maat_scan_result_ = Maat_full_scan_string(httpscan_module_ref_.maat_feather_ref, httpscan_module_ref_.table_id_ctrl_http_req_hdr, MAAT_DEFAULT_CHARSET_, - value.c_str(), (int) value.length(), - maat_scan_result_, __dummy, MAAT_SCAN_RESULT_, &maat_scan_mid_, 0); + value.c_str(), (int) value.length(), maat_scan_result_, __dummy, MAAT_SCAN_RESULT_, &maat_scan_mid_, 0); if (nr_maat_scan_result_ > 0) + { + http_session_ctx->SetRequestHeaderTag(HttpSession::kCallbackTagRepeat); return hit_config_and_do_action(http_session_ctx); + } else if (nr_maat_scan_result_ == -1) + { return hit_scan_error(); + } }); } -void HttpScanSession::ScanRequestBody(HttpSession *http_session_ctx) +void HttpScanSession::ScanRequestBody(HttpSession * http_session_ctx) { return; } -void HttpScanSession::ScanResponseHeader(HttpSession *http_session_ctx) +void HttpScanSession::ScanResponseHeader(HttpSession * http_session_ctx) { return; } -void HttpScanSession::ScanResponseBody(HttpSession *http_session_ctx) +void HttpScanSession::ScanResponseBody(HttpSession * http_session_ctx) { return; } -void HttpScanSession::hit_config_and_do_action(HttpSession *http_session_ctx) +void HttpScanSession::hit_config_and_do_action(HttpSession * http_session_ctx) { /* 判断命中数量,若为多命中,选择优先级最高的动作执行 */ enum HttpActionType action_type = HttpActionType::kActionMax; @@ -205,9 +219,9 @@ void HttpScanSession::hit_config_and_do_action(HttpSession *http_session_ctx) if (maat_scan_result_[i].action <= action_type) do_action_id = i; } - Maat_rule_t *hit_maat_rule = &maat_scan_result_[do_action_id]; + Maat_rule_t * hit_maat_rule = &maat_scan_result_[do_action_id]; auto __action_type = (enum HttpActionType) hit_maat_rule->action; - const char *__action_string = hit_maat_rule->service_defined; + const char * __action_string = hit_maat_rule->service_defined; /* 创建HttpAction的对象 */ auto action_object = HttpActionFactory(__action_type, __action_string); @@ -217,25 +231,25 @@ void HttpScanSession::hit_config_and_do_action(HttpSession *http_session_ctx) action_object->service_id(hit_maat_rule->service_id); /* 替换HttpSession的事件处理函数,以后的事件由HttpAction处理 */ - http_session_ctx->SetRequestHeaderCallback([action_object](HttpSession &session) + http_session_ctx->SetRequestHeaderCallback([action_object](HttpSession & session) { auto __action_object = action_object; __action_object->OnRequestHeader(&session); }); - http_session_ctx->SetRequestBodyCallback([action_object](HttpSession &session) + http_session_ctx->SetRequestBodyCallback([action_object](HttpSession & session) { auto __action_object = action_object; __action_object->OnRequestBody(&session); }); - http_session_ctx->SetResponseHeaderCallback([action_object](HttpSession &session) + http_session_ctx->SetResponseHeaderCallback([action_object](HttpSession & session) { auto __action_object = action_object; __action_object->OnResponseHeader(&session); }); - http_session_ctx->SetResponseBodyCallback([action_object](HttpSession &session) + http_session_ctx->SetResponseBodyCallback([action_object](HttpSession & session) { auto __action_object = action_object; __action_object->OnResponseBody(&session); |