app/frames: implement rust API

diff --git a/rust/src/frames.rs b/rust/src/frames.rs
new file mode 100644 (file)
index 0000000..a9079d0
--- /dev/null
+++ b/rust/src/frames.rs
@@ -0,0 +1,104 @@
+/* Copyright (C) 2017-2021 Open Information Security Foundation
+ *
+ * You can copy, redistribute or modify this Program under the terms of
+ * the GNU General Public License version 2 as published by the Free
+ * Software Foundation.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * version 2 along with this program; if not, write to the Free Software
+ * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA
+ * 02110-1301, USA.
+ */
+
+use crate::applayer::StreamSlice;
+use crate::core::Flow;
+
+#[repr(C)]
+struct CFrame {
+    _private: [u8; 0],
+}
+
+// Defined in app-layer-register.h
+extern {
+    fn AppLayerFrameNewByRelativeOffset(
+        flow: *const Flow, stream_slice: *const StreamSlice, frame_start_rel: u32, len: i64,
+        dir: i32, frame_type: u8,
+    ) -> *const CFrame;
+    fn AppLayerFrameAddEventById(flow: *const Flow, dir: i32, id: i64, event: u8);
+    fn AppLayerFrameSetLengthById(flow: *const Flow, dir: i32, id: i64, len: i64);
+    fn AppLayerFrameSetTxIdById(flow: *const Flow, dir: i32, id: i64, tx_id: u64);
+    fn AppLayerFrameGetId(frame: *const CFrame) -> i64;
+}
+
+pub struct Frame {
+    pub id: i64,
+}
+
+impl std::fmt::Debug for Frame {
+    fn fmt(&self, f: &mut std::fmt::Formatter) -> std::fmt::Result {
+        write!(f, "frame: {}", self.id)
+    }
+}
+
+impl Frame {
+    pub fn new(
+        flow: *const Flow, stream_slice: &StreamSlice, frame_start: &[u8], frame_len: i64,
+        dir: i32, frame_type: u8,
+    ) -> Option<Self> {
+        let offset = frame_start.as_ptr() as usize - stream_slice.as_slice().as_ptr() as usize;
+        SCLogDebug!("offset {} stream_slice.len() {} frame_start.len() {}", offset, stream_slice.len(), frame_start.len());
+        let frame = unsafe {
+            AppLayerFrameNewByRelativeOffset(
+                flow,
+                stream_slice,
+                offset as u32,
+                frame_len,
+                dir,
+                frame_type,
+            )
+        };
+        let id = unsafe { AppLayerFrameGetId(frame) };
+        if id > 0 {
+            Some(Self { id })
+        } else {
+            None
+        }
+    }
+
+    pub fn new_ts(
+        flow: *const Flow, stream_slice: &StreamSlice, frame_start: &[u8], frame_len: i64,
+        frame_type: u8,
+    ) -> Option<Self> {
+        Self::new(flow, stream_slice, frame_start, frame_len, 0, frame_type)
+    }
+
+    pub fn new_tc(
+        flow: *const Flow, stream_slice: &StreamSlice, frame_start: &[u8], frame_len: i64,
+        frame_type: u8,
+    ) -> Option<Self> {
+        Self::new(flow, stream_slice, frame_start, frame_len, 1, frame_type)
+    }
+
+    pub fn set_len(&self, flow: *const Flow, dir: i32, len: i64) {
+        unsafe {
+            AppLayerFrameSetLengthById(flow, dir, self.id, len);
+        };
+    }
+
+    pub fn set_tx(&self, flow: *const Flow, dir: i32, tx_id: u64) {
+        unsafe {
+            AppLayerFrameSetTxIdById(flow, dir, self.id, tx_id);
+        };
+    }
+
+    pub fn add_event(&self, flow: *const Flow, dir: i32, event: u8) {
+        unsafe {
+            AppLayerFrameAddEventById(flow, dir, self.id, event);
+        };
+    }
+}

diff --git a/rust/src/lib.rs b/rust/src/lib.rs
index fee5fe4d0a41bed0c71976ad11837660a5a960b8..00a8e82ce32607e69f717b5579b6e850b64fd72a 100644 (file)
--- a/rust/src/lib.rs
+++ b/rust/src/lib.rs
@@ -96,6 +96,7 @@ pub mod conf;
 pub mod jsonbuilder;
 #[macro_use]
 pub mod applayer;
+pub mod frames;
 pub mod filecontainer;
 pub mod filetracker;
 pub mod kerberos;