#include "tp_lib_handler.h"
#endif
-
#define ODP_PORT_DETECTORS "odp/port/*"
#define CUSTOM_PORT_DETECTORS "custom/port/*"
#define MAX_DISPLAY_SIZE 65536
cleanup();
}
-const TPLibHandler * AppIdConfig::tp_handler() const
-{
-#ifdef ENABLE_APPID_THIRD_PARTY
- return tph;
-#else
- return nullptr;
-#endif
-}
-
-bool AppIdConfig::have_tp() const
-{
-#ifdef ENABLE_APPID_THIRD_PARTY
- return tph != nullptr && tph->have_tp();
-#else
- return false;
-#endif
-}
-
-void AppIdConfig::tp_appid_module_tinit()
-{
-#ifdef ENABLE_APPID_THIRD_PARTY
- if(tph) tph->tinit();
-#endif
-}
-
-void AppIdConfig::tp_appid_module_tterm()
-{
-#ifdef ENABLE_APPID_THIRD_PARTY
- if(tph) tph->tterm();
-#endif
-}
-
void AppIdConfig::read_port_detectors(const char* files)
{
int rval;
read_port_detectors(CUSTOM_PORT_DETECTORS);
#ifdef ENABLE_APPID_THIRD_PARTY
- tph=TPLibHandler::get();
- tph->pinit(mod_config);
+ TPLibHandler::pinit(mod_config);
#endif
map_app_names_to_snort_ids(sc);
return true;
void AppIdConfig::cleanup()
{
-#ifdef ENABLE_APPID_THIRD_PARTY
- tph->pfini(0);
- TPLibHandler::destroy(tph);
-#endif
-
app_info_mgr.cleanup_appid_info_table();
#ifdef USE_RNA_CONFIG
struct NetworkSet;
class AppInfoManager;
-class TPLibHandler;
extern unsigned appIdPolicyId;
extern uint32_t app_id_netmasks[];
AppIdModuleConfig* mod_config = nullptr;
unsigned appIdPolicyId = 53;
- const TPLibHandler * tp_handler() const;
- bool have_tp() const;
- void tp_appid_module_tinit();
- void tp_appid_module_tterm();
-
private:
void read_port_detectors(const char* files);
void configure_analysis_networks(char* toklist[], uint32_t flag);
void display_port_config();
AppInfoManager& app_info_mgr;
-
-// #ifdef ENABLE_APPID_THIRD_PARTY
- // class that holds pointers to third party objects in thirdparty.so
- TPLibHandler* tph = nullptr;
-// #endif
};
#endif
#include "detector_plugins/http_url_patterns.h"
#include "host_port_app_cache.h"
#include "service_plugins/service_discovery.h"
-#ifdef ENABLE_THIRD_PARTY_APPID
-#include "tp_appid_session_api.h"
+#ifdef ENABLE_APPID_THIRD_PARTY
+#include "tp_lib_handler.h"
#endif
using namespace snort;
+
bool do_tp_discovery(AppIdSession&, IpProtocol, Packet*, AppidSessionDirection&);
AppIdDiscovery::AppIdDiscovery(AppIdInspector& ins)
// Third party detection
#ifdef ENABLE_APPID_THIRD_PARTY
- if(asd.config->have_tp())
+ if ( TPLibHandler::have_tp() )
is_discovery_done = do_tp_discovery(asd,protocol,p,direction);
#endif
#include "detector_plugins/http_url_patterns.h"
#include "http_xff_fields.h"
#ifdef ENABLE_APPID_THIRD_PARTY
-#include "tp_appid_session_api.h"
+#include "tp_lib_handler.h"
#endif
static const char* httpFieldName[ MAX_HTTP_FIELD_ID ] = // for use in debug messages
AppId service_id = APP_ID_NONE;
AppId client_id = APP_ID_NONE;
AppId payload_id = APP_ID_NONE;
- bool have_tp = asd.tpsession != nullptr;
+ bool have_tp = asd.tpsession;
// For fragmented HTTP headers, do not process if none of the fields are set.
// These fields will get set when the HTTP header is reassembled.
#include "lua_detector_module.h"
#include "service_plugins/service_discovery.h"
#include "service_plugins/service_ssl.h"
+#ifdef ENABLE_APPID_THIRD_PARTY
+#include "tp_lib_handler.h"
+#endif
using namespace snort;
static THREAD_LOCAL PacketTracer::TracerMute appid_mute;
if (active_config->mod_config and active_config->mod_config->log_all_sessions)
appidDebug->set_enabled(true);
#ifdef ENABLE_APPID_THIRD_PARTY
- active_config->tp_appid_module_tinit();
+ TPLibHandler::tinit();
#endif
}
delete appidDebug;
appidDebug = nullptr;
#ifdef ENABLE_APPID_THIRD_PARTY
- active_config->tp_appid_module_tterm();
+ TPLibHandler::tterm();
#endif
}
static void appid_inspector_pinit()
{
AppIdSession::init();
+#ifdef ENABLE_APPID_THIRD_PARTY
+ TPLibHandler::get();
+#endif
}
static void appid_inspector_pterm()
{
openssl_cleanup();
+#ifdef ENABLE_APPID_THIRD_PARTY
+ TPLibHandler::pfini();
+#endif
}
static void appid_inspector_tinit()
#include "appid_utils/ip_funcs.h"
#include "service_plugins/service_ssl.h"
#ifdef ENABLE_APPID_THIRD_PARTY
-#include "tp_appid_session_api.h"
+#include "tp_lib_handler.h"
#endif
using namespace snort;
bool AppIdSession::is_tp_appid_done() const
{
#ifdef ENABLE_APPID_THIRD_PARTY
- if (config->have_tp())
+ if ( TPLibHandler::have_tp() )
{
if (!tpsession)
return false;
bool AppIdSession::is_tp_processing_done() const
{
-
#ifdef ENABLE_APPID_THIRD_PARTY
- if (config->have_tp() &&
- !get_session_flags(APPID_SESSION_NO_TPI) &&
- (!is_tp_appid_done() ||
- get_session_flags(APPID_SESSION_APP_REINSPECT | APPID_SESSION_APP_REINSPECT_SSL)))
+ if ( TPLibHandler::have_tp() &&
+ !get_session_flags(APPID_SESSION_NO_TPI) &&
+ (!is_tp_appid_done() ||
+ get_session_flags(APPID_SESSION_APP_REINSPECT | APPID_SESSION_APP_REINSPECT_SSL)))
return false;
#endif
bool AppIdSession::is_tp_appid_available() const
{
#ifdef ENABLE_APPID_THIRD_PARTY
- if (config->have_tp())
+ if ( TPLibHandler::have_tp() )
{
unsigned state;
TEST(tp_lib_handler, load_unload)
{
+ tph = TPLibHandler::get();
tph->pinit(&config);
CHECK_TRUE(tph->have_tp());
TEST(tp_lib_handler, tp_lib_handler_get)
{
+ tph=TPLibHandler::get();
TPLibHandler* tph2=TPLibHandler::get();
CHECK_EQUAL(tph,tph2);
+ TPLibHandler::pfini();
}
TEST(tp_lib_handler, load_error)
// Trigger load error:
AppIdModuleConfig config;
config.tp_appid_path="nonexistent.so";
- tph=TPLibHandler::get();
- tph->pinit(&config);
- CHECK_FALSE(tph->have_tp());
- tph->pfini();
+ TPLibHandler::get();
+ TPLibHandler::pinit(&config);
+ CHECK_FALSE(TPLibHandler::have_tp());
+ TPLibHandler::pfini();
}
TEST(tp_lib_handler, tp_appid_module_pinit_error)
{
config.tp_appid_path="./libtp_mock.so";
config.tp_appid_config="./tp.config";
- tph=TPLibHandler::get();
-
+
int rc = CommandLineTestRunner::RunAllTests(argc, argv);
- TPLibHandler::destroy(tph);
-
return rc;
}
#include "log/messages.h"
#include "profiler/profiler.h"
#include "stream/stream.h"
-#include "tp_appid_types.h"
-#include "tp_appid_session_api.h"
+#ifdef ENABLE_APPID_THIRD_PARTY
#include "tp_lib_handler.h"
+#endif
using namespace std;
using namespace snort;
vector<AppId> tp_proto_list;
bool isTpAppidDiscoveryDone = false;
- if ( !asd.config->have_tp() )
- return true;
+ if ( !TPLibHandler::have_tp() )
+ return true;
if (asd.tp_app_id == APP_ID_SSH && asd.payload.get_id() != APP_ID_SFTP &&
asd.session_packet_count >= MIN_SFTP_PACKET_COUNT &&
ThirdPartyAppIDAttributeData tp_attribute_data;
if (!asd.tpsession)
{
- const TPLibHandler* tph = asd.config->tp_handler();
+ const TPLibHandler* tph = TPLibHandler::get();
CreateThirdPartyAppIDSession_t tpsf = tph->tpsession_factory();
if ( !(asd.tpsession = tpsf()) )
FatalError("Could not allocate asd.tpsession data");
#define TP_APPID_MODULE_SYMBOL "create_third_party_appid_module"
#define TP_APPID_SESSION_SYMBOL "create_third_party_appid_session"
-TPLibHandler* TPLibHandler::handler = nullptr;
+TPLibHandler* TPLibHandler::self = nullptr;
int TPLibHandler::LoadCallback(const char* const path, int /* indent */)
{
{
int ret;
- if (config->tp_appid_path.empty())
+ if (self->tp_so_handle or config->tp_appid_path.empty())
return;
- tp_config.tp_appid_config=config->tp_appid_config;
+ self->tp_config.tp_appid_config=config->tp_appid_config;
- LoadCallback(config->tp_appid_path.c_str(),1);
+ self->LoadCallback(config->tp_appid_path.c_str(),1);
- if (tp_appid_module == nullptr)
+ if (self->tp_appid_module == nullptr)
{
- // FIXIT-H error message
+ ErrorMessage("Ignoring third party AppId library\n");
return;
}
- tp_config.chp_body_collection_max = config->chp_body_collection_max;
- tp_config.ftp_userid_disabled = config->ftp_userid_disabled;
- tp_config.chp_body_collection_disabled =
+ self->tp_config.chp_body_collection_max = config->chp_body_collection_max;
+ self->tp_config.ftp_userid_disabled = config->ftp_userid_disabled;
+ self->tp_config.chp_body_collection_disabled =
config->chp_body_collection_disabled;
- tp_config.tp_allow_probes = config->tp_allow_probes;
+ self->tp_config.tp_allow_probes = config->tp_allow_probes;
if (config->http2_detection_enabled)
- tp_config.http_upgrade_reporting_enabled = 1;
+ self->tp_config.http_upgrade_reporting_enabled = 1;
else
- tp_config.http_upgrade_reporting_enabled = 0;
+ self->tp_config.http_upgrade_reporting_enabled = 0;
- tp_config.http_response_version_enabled = config->http_response_version_enabled;
+ self->tp_config.http_response_version_enabled = config->http_response_version_enabled;
- ret = tp_appid_module->pinit(tp_config);
+ ret = self->tp_appid_module->pinit(self->tp_config);
if (ret != 0)
{
ErrorMessage("Unable to initialize 3rd party AppID module (%d)!\n", ret);
- delete tp_appid_module;
- dlclose(tp_so_handle);
- tp_so_handle = nullptr;
- tp_appid_module = nullptr;
+ delete self->tp_appid_module;
+ dlclose(self->tp_so_handle);
+ self->tp_so_handle = nullptr;
+ self->tp_appid_module = nullptr;
return;
}
}
void TPLibHandler::pfini(bool print_stats_flag)
{
- if (tp_appid_module != nullptr)
+ if (self and self->tp_appid_module != nullptr)
{
if (print_stats_flag)
- tp_appid_module->print_stats();
+ self->tp_appid_module->print_stats();
- int ret = tp_appid_module->pfini();
+ int ret = self->tp_appid_module->pfini();
if (ret != 0)
ErrorMessage("Could not finalize 3rd party AppID module (%d)!\n", ret);
- delete tp_appid_module;
- tp_appid_module = nullptr;
- dlclose(tp_so_handle); // after delete, otherwise tpam will be dangling
- tp_so_handle = nullptr;
+ delete self->tp_appid_module;
+ self->tp_appid_module = nullptr;
+
+ dlclose(self->tp_so_handle); // after delete, otherwise tpam will be dangling
+ self->tp_so_handle = nullptr;
}
-}
+ if ( self ) {
+ delete self;
+ self = nullptr;
+ }
+}
{
public:
- bool have_tp() const
+ static bool have_tp()
{
- return tp_appid_module != nullptr;
+ return self and self->tp_appid_module != nullptr;
}
static TPLibHandler* get()
{
- if (handler)
- return handler;
+ if (self)
+ return self;
else
- return (handler=new TPLibHandler());
+ return (self=new TPLibHandler());
}
- static void destroy(TPLibHandler* tph)
- {
- delete tph->handler;
- tph->handler=nullptr;
- }
-
- // called from AppIdConfig::init_appid() and cleanup(), respectively.
- void pinit(const AppIdModuleConfig* config);
- void pfini(bool print_stats_flag=0);
+ // called from appid_inspector.cc appid_inspector_pinit() / pterm()
+ static void pinit(const AppIdModuleConfig* config);
+ static void pfini(bool print_stats_flag=0);
// called from AppIdInspector tinit/tterm via
// AppIdConfig::tp_appid_module_tinit/tterm.
- void tinit() { if ( tp_appid_module ) tp_appid_module->tinit(); }
- void tterm() { if ( tp_appid_module ) tp_appid_module->tfini(); }
+ static void tinit() { if ( have_tp() ) self->tp_appid_module->tinit(); }
+ static void tterm() { if ( have_tp() ) self->tp_appid_module->tfini(); }
CreateThirdPartyAppIDSession_t tpsession_factory() const
{
private:
- TPLibHandler() { }
- ~TPLibHandler() { }
+ TPLibHandler() = default;
+ ~TPLibHandler() = default;
- static TPLibHandler* handler;
+ static TPLibHandler* self;
void* tp_so_handle = nullptr; // output of dlopen(thirdparty.so)
ThirdPartyAppIDModule* tp_appid_module = nullptr;
CreateThirdPartyAppIDSession_t createThirdPartyAppIDSession;
};
#endif
-
projects / thirdparty / snort3.git / commitdiff
