mirror of
https://github.com/kubeshark/kubeshark.git
synced 2025-08-11 21:32:37 +00:00
Return a *api.RequestResponsePair from the dissection
This commit is contained in:
M. Mert Yildiran
parent
9a2edbac56
commit
6b584c4c3f
@ -3,6 +3,7 @@ package api
|
|||||||
import (
|
import (
|
||||||
"bufio"
|
"bufio"
|
||||||
"plugin"
|
"plugin"
|
||||||
|
"time"
|
||||||
)
|
)
|
||||||
|
|
||||||
type Extension struct {
|
type Extension struct {
|
||||||
@ -29,8 +30,19 @@ type TcpID struct {
|
|||||||
DstPort string
|
DstPort string
|
||||||
}
|
}
|
||||||
|
|
||||||
|
type GenericMessage struct {
|
||||||
|
IsRequest bool
|
||||||
|
CaptureTime time.Time
|
||||||
|
Orig interface{}
|
||||||
|
}
|
||||||
|
|
||||||
|
type RequestResponsePair struct {
|
||||||
|
Request GenericMessage `json:"request"`
|
||||||
|
Response GenericMessage `json:"response"`
|
||||||
|
}
|
||||||
|
|
||||||
type Dissector interface {
|
type Dissector interface {
|
||||||
Register(*Extension)
|
Register(*Extension)
|
||||||
Ping()
|
Ping()
|
||||||
Dissect(b *bufio.Reader, isClient bool, tcpID *TcpID) interface{}
|
Dissect(b *bufio.Reader, isClient bool, tcpID *TcpID) *RequestResponsePair
|
||||||
}
|
}
|
||||||
|
|||||||
@ -23,7 +23,7 @@ func (g dissecting) Ping() {
|
|||||||
log.Printf("pong AMQP\n")
|
log.Printf("pong AMQP\n")
|
||||||
}
|
}
|
||||||
|
|
||||||
func (g dissecting) Dissect(b *bufio.Reader, isClient bool, tcpID *api.TcpID) interface{} {
|
func (g dissecting) Dissect(b *bufio.Reader, isClient bool, tcpID *api.TcpID) *api.RequestResponsePair {
|
||||||
// TODO: Implement
|
// TODO: Implement
|
||||||
return nil
|
return nil
|
||||||
}
|
}
|
||||||
|
|||||||
@ -33,7 +33,7 @@ func (g dissecting) Ping() {
|
|||||||
log.Printf("pong HTTP\n")
|
log.Printf("pong HTTP\n")
|
||||||
}
|
}
|
||||||
|
|
||||||
func (g dissecting) Dissect(b *bufio.Reader, isClient bool, tcpID *api.TcpID) interface{} {
|
func (g dissecting) Dissect(b *bufio.Reader, isClient bool, tcpID *api.TcpID) *api.RequestResponsePair {
|
||||||
for {
|
for {
|
||||||
if isClient {
|
if isClient {
|
||||||
requestCounter++
|
requestCounter++
|
||||||
@ -79,10 +79,11 @@ func (g dissecting) Dissect(b *bufio.Reader, isClient bool, tcpID *api.TcpID) in
|
|||||||
)
|
)
|
||||||
reqResPair := reqResMatcher.registerResponse(ident, res, time.Now())
|
reqResPair := reqResMatcher.registerResponse(ident, res, time.Now())
|
||||||
if reqResPair != nil {
|
if reqResPair != nil {
|
||||||
log.Printf("YES REQRES MATCHED!\n")
|
return reqResPair
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
return nil
|
||||||
}
|
}
|
||||||
|
|
||||||
var Dissector dissecting
|
var Dissector dissecting
|
||||||
|
|||||||
@ -6,21 +6,12 @@ import (
|
|||||||
"strings"
|
"strings"
|
||||||
"sync"
|
"sync"
|
||||||
"time"
|
"time"
|
||||||
|
|
||||||
|
"github.com/up9inc/mizu/tap/api"
|
||||||
)
|
)
|
||||||
|
|
||||||
var reqResMatcher = createResponseRequestMatcher() // global
|
var reqResMatcher = createResponseRequestMatcher() // global
|
||||||
|
|
||||||
type requestResponsePair struct {
|
|
||||||
Request httpMessage `json:"request"`
|
|
||||||
Response httpMessage `json:"response"`
|
|
||||||
}
|
|
||||||
|
|
||||||
type httpMessage struct {
|
|
||||||
isRequest bool
|
|
||||||
captureTime time.Time
|
|
||||||
orig interface{}
|
|
||||||
}
|
|
||||||
|
|
||||||
// Key is {client_addr}:{client_port}->{dest_addr}:{dest_port}
|
// Key is {client_addr}:{client_port}->{dest_addr}:{dest_port}
|
||||||
type requestResponseMatcher struct {
|
type requestResponseMatcher struct {
|
||||||
openMessagesMap sync.Map
|
openMessagesMap sync.Map
|
||||||
@ -31,21 +22,21 @@ func createResponseRequestMatcher() requestResponseMatcher {
|
|||||||
return *newMatcher
|
return *newMatcher
|
||||||
}
|
}
|
||||||
|
|
||||||
func (matcher *requestResponseMatcher) registerRequest(ident string, request *http.Request, captureTime time.Time) *requestResponsePair {
|
func (matcher *requestResponseMatcher) registerRequest(ident string, request *http.Request, captureTime time.Time) *api.RequestResponsePair {
|
||||||
split := splitIdent(ident)
|
split := splitIdent(ident)
|
||||||
key := genKey(split)
|
key := genKey(split)
|
||||||
// fmt.Printf(">>> request key: %v\n", key)
|
// fmt.Printf(">>> request key: %v\n", key)
|
||||||
|
|
||||||
requestHTTPMessage := httpMessage{
|
requestHTTPMessage := api.GenericMessage{
|
||||||
isRequest: true,
|
IsRequest: true,
|
||||||
captureTime: captureTime,
|
CaptureTime: captureTime,
|
||||||
orig: request,
|
Orig: request,
|
||||||
}
|
}
|
||||||
|
|
||||||
if response, found := matcher.openMessagesMap.LoadAndDelete(key); found {
|
if response, found := matcher.openMessagesMap.LoadAndDelete(key); found {
|
||||||
// Type assertion always succeeds because all of the map's values are of httpMessage type
|
// Type assertion always succeeds because all of the map's values are of api.GenericMessage type
|
||||||
responseHTTPMessage := response.(*httpMessage)
|
responseHTTPMessage := response.(*api.GenericMessage)
|
||||||
if responseHTTPMessage.isRequest {
|
if responseHTTPMessage.IsRequest {
|
||||||
SilentError("Request-Duplicate", "Got duplicate request with same identifier")
|
SilentError("Request-Duplicate", "Got duplicate request with same identifier")
|
||||||
return nil
|
return nil
|
||||||
}
|
}
|
||||||
@ -58,21 +49,21 @@ func (matcher *requestResponseMatcher) registerRequest(ident string, request *ht
|
|||||||
return nil
|
return nil
|
||||||
}
|
}
|
||||||
|
|
||||||
func (matcher *requestResponseMatcher) registerResponse(ident string, response *http.Response, captureTime time.Time) *requestResponsePair {
|
func (matcher *requestResponseMatcher) registerResponse(ident string, response *http.Response, captureTime time.Time) *api.RequestResponsePair {
|
||||||
split := splitIdent(ident)
|
split := splitIdent(ident)
|
||||||
key := genKey(split)
|
key := genKey(split)
|
||||||
// fmt.Printf(">>> response key: %v\n", key)
|
// fmt.Printf(">>> response key: %v\n", key)
|
||||||
|
|
||||||
responseHTTPMessage := httpMessage{
|
responseHTTPMessage := api.GenericMessage{
|
||||||
isRequest: false,
|
IsRequest: false,
|
||||||
captureTime: captureTime,
|
CaptureTime: captureTime,
|
||||||
orig: response,
|
Orig: response,
|
||||||
}
|
}
|
||||||
|
|
||||||
if request, found := matcher.openMessagesMap.LoadAndDelete(key); found {
|
if request, found := matcher.openMessagesMap.LoadAndDelete(key); found {
|
||||||
// Type assertion always succeeds because all of the map's values are of httpMessage type
|
// Type assertion always succeeds because all of the map's values are of api.GenericMessage type
|
||||||
requestHTTPMessage := request.(*httpMessage)
|
requestHTTPMessage := request.(*api.GenericMessage)
|
||||||
if !requestHTTPMessage.isRequest {
|
if !requestHTTPMessage.IsRequest {
|
||||||
SilentError("Response-Duplicate", "Got duplicate response with same identifier")
|
SilentError("Response-Duplicate", "Got duplicate response with same identifier")
|
||||||
return nil
|
return nil
|
||||||
}
|
}
|
||||||
@ -85,8 +76,8 @@ func (matcher *requestResponseMatcher) registerResponse(ident string, response *
|
|||||||
return nil
|
return nil
|
||||||
}
|
}
|
||||||
|
|
||||||
func (matcher *requestResponseMatcher) preparePair(requestHTTPMessage *httpMessage, responseHTTPMessage *httpMessage) *requestResponsePair {
|
func (matcher *requestResponseMatcher) preparePair(requestHTTPMessage *api.GenericMessage, responseHTTPMessage *api.GenericMessage) *api.RequestResponsePair {
|
||||||
return &requestResponsePair{
|
return &api.RequestResponsePair{
|
||||||
Request: *requestHTTPMessage,
|
Request: *requestHTTPMessage,
|
||||||
Response: *responseHTTPMessage,
|
Response: *responseHTTPMessage,
|
||||||
}
|
}
|
||||||
@ -106,8 +97,8 @@ func (matcher *requestResponseMatcher) deleteOlderThan(t time.Time) int {
|
|||||||
numDeleted := 0
|
numDeleted := 0
|
||||||
|
|
||||||
matcher.openMessagesMap.Range(func(key interface{}, value interface{}) bool {
|
matcher.openMessagesMap.Range(func(key interface{}, value interface{}) bool {
|
||||||
message, _ := value.(*httpMessage)
|
message, _ := value.(*api.GenericMessage)
|
||||||
if message.captureTime.Before(t) {
|
if message.CaptureTime.Before(t) {
|
||||||
matcher.openMessagesMap.Delete(key)
|
matcher.openMessagesMap.Delete(key)
|
||||||
numDeleted++
|
numDeleted++
|
||||||
}
|
}
|
||||||
|
|||||||
@ -23,7 +23,7 @@ func (g dissecting) Ping() {
|
|||||||
log.Printf("pong Kafka\n")
|
log.Printf("pong Kafka\n")
|
||||||
}
|
}
|
||||||
|
|
||||||
func (g dissecting) Dissect(b *bufio.Reader, isClient bool, tcpID *api.TcpID) interface{} {
|
func (g dissecting) Dissect(b *bufio.Reader, isClient bool, tcpID *api.TcpID) *api.RequestResponsePair {
|
||||||
// TODO: Implement
|
// TODO: Implement
|
||||||
return nil
|
return nil
|
||||||
}
|
}
|
||||||
|
|||||||
@ -3,6 +3,7 @@ package tap
|
|||||||
import (
|
import (
|
||||||
"bufio"
|
"bufio"
|
||||||
"fmt"
|
"fmt"
|
||||||
|
"log"
|
||||||
"sync"
|
"sync"
|
||||||
|
|
||||||
"github.com/romana/rlog"
|
"github.com/romana/rlog"
|
||||||
@ -45,13 +46,14 @@ func (h *tcpStream) serverRun(tcpID *api.TcpID) {
|
|||||||
for _, extension := range extensions {
|
for _, extension := range extensions {
|
||||||
if containsPort(extension.OutboundPorts, h.transport.Src().String()) {
|
if containsPort(extension.OutboundPorts, h.transport.Src().String()) {
|
||||||
extension.Dissector.Ping()
|
extension.Dissector.Ping()
|
||||||
extension.Dissector.Dissect(b, false, tcpID)
|
reqResPair := extension.Dissector.Dissect(b, false, tcpID)
|
||||||
|
log.Printf("reqResPair: %+v\n", reqResPair)
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
func (h *tcpStreamFactory) New(net, transport gopacket.Flow) tcpassembly.Stream {
|
func (h *tcpStreamFactory) New(net, transport gopacket.Flow) tcpassembly.Stream {
|
||||||
fmt.Printf("* NEW: %s %s\n", net, transport)
|
log.Printf("* NEW: %s %s\n", net, transport)
|
||||||
stream := &tcpStream{
|
stream := &tcpStream{
|
||||||
net: net,
|
net: net,
|
||||||
transport: transport,
|
transport: transport,
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user