代码拉取完成,页面将自动刷新
package servicecache
import (
"fmt"
"net"
"sync"
"git.cloud.top/DSec/trireme-lib/common"
"git.cloud.top/DSec/trireme-lib/utils/ipprefix"
"git.cloud.top/DSec/trireme-lib/utils/portspec"
)
type entry struct {
id string
ports *portspec.PortSpec
data interface{}
}
type entryList []*entry
func (e entryList) Delete(i int) entryList {
if i >= len(e) || i < 0 {
return e
}
return append(e[:i], e[i+1:]...)
}
// ServiceCache is a new service cache
type ServiceCache struct {
// ipprefixs is map[prefixlength][prefix] -> array of entries indexed by port
local ipprefix.IPcache
remote ipprefix.IPcache
// hostcaches is map[host] -> array of entries indexed by port.
remoteHosts map[string]entryList
localHosts map[string]entryList
// portCaches is list of all ports where we can retrieve a service based on the port.
remotePorts entryList
localPorts entryList
sync.RWMutex
}
// NewTable creates a new table
func NewTable() *ServiceCache {
return &ServiceCache{
local: ipprefix.NewIPCache(),
remote: ipprefix.NewIPCache(),
remoteHosts: map[string]entryList{},
localHosts: map[string]entryList{},
}
}
// Add adds a service into the cache. Returns error of if any overlap has been detected.
func (s *ServiceCache) Add(e *common.Service, id string, data interface{}, local bool) error {
s.Lock()
defer s.Unlock()
record := &entry{
ports: e.Ports,
data: data,
id: id,
}
if err := s.addPorts(e, record, local); err != nil {
return err
}
if err := s.addHostService(e, record, local); err != nil {
return err
}
return s.addIPService(e, record, local)
}
// Find searches for a matching service, given an IP and port. Caller must specify
// the local or remote context.
func (s *ServiceCache) Find(ip net.IP, port int, host string, local bool) interface{} {
s.RLock()
defer s.RUnlock()
if host != "" {
if data := s.findHost(host, port, local); data != nil {
return data
}
}
return s.findIP(ip, port, local)
}
// FindListeningServicesForPU returns a service that is found and the associated
// portSpecifications that refer to this service.
func (s *ServiceCache) FindListeningServicesForPU(id string) (interface{}, *portspec.PortSpec) {
s.RLock()
defer s.RUnlock()
for _, spec := range s.localPorts {
if spec.id == id {
return spec.data, spec.ports
}
}
return nil, nil
}
// DeleteByID will delete all entries related to this ID from all references.
func (s *ServiceCache) DeleteByID(id string, local bool) {
s.Lock()
defer s.Unlock()
hosts := s.remoteHosts
cache := s.remote
if local {
hosts = s.localHosts
cache = s.local
}
if local {
s.localPorts = deleteMatchingPorts(s.localPorts, id)
} else {
s.remotePorts = deleteMatchingPorts(s.remotePorts, id)
}
for host, ports := range hosts {
hosts[host] = deleteMatchingPorts(ports, id)
if len(hosts[host]) == 0 {
delete(hosts, host)
}
}
deleteMatching := func(val interface{}) interface{} {
if val == nil {
return nil
}
entryL := val.(entryList)
r := deleteMatchingPorts(entryL, id)
if len(r) == 0 {
return nil
}
return r
}
cache.RunFuncOnVals(deleteMatching)
}
func deleteMatchingPorts(list entryList, id string) entryList {
remainingPorts := entryList{}
for _, spec := range list {
if spec.id != id {
remainingPorts = append(remainingPorts, spec)
}
}
return remainingPorts
}
func (s *ServiceCache) addIPService(e *common.Service, record *entry, local bool) error {
cache := s.remote
if local {
cache = s.local
}
addresses := e.Addresses
// If addresses are nil, I only care about ports.
if len(e.Addresses) == 0 {
_, ip, _ := net.ParseCIDR("0.0.0.0/0")
addresses = append(addresses, ip)
_, ip, _ = net.ParseCIDR("::/0")
addresses = append(addresses, ip)
}
for _, addr := range addresses {
var records entryList
mask, _ := addr.Mask.Size()
v, err := cache.Get(addr.IP, mask)
if !err {
records = entryList{}
} else {
records = v.(entryList)
for _, spec := range records {
if spec.ports.Overlaps(e.Ports) {
return fmt.Errorf("service port overlap for a given IP not allowed: ip %s, port %s", addr.String(), e.Ports.String())
}
}
}
records = append(records, record)
cache.Put(addr.IP, mask, records)
}
return nil
}
func (s *ServiceCache) addHostService(e *common.Service, record *entry, local bool) error {
hostCache := s.remoteHosts
if local {
hostCache = s.localHosts
}
// If addresses are nil, I only care about ports.
if len(e.FQDNs) == 0 {
return nil
}
for _, host := range e.FQDNs {
if _, ok := hostCache[host]; !ok {
hostCache[host] = entryList{}
}
for _, spec := range hostCache[host] {
if spec.ports.Overlaps(e.Ports) {
return fmt.Errorf("service port overlap for a given host not allowed: host %s, port %s", host, e.Ports.String())
}
}
hostCache[host] = append(hostCache[host], record)
}
return nil
}
// findIP searches for a matching service, given an IP and port
func (s *ServiceCache) findIP(ip net.IP, port int, local bool) interface{} {
cache := s.remote
if local {
cache = s.local
}
if ip == nil {
return nil
}
var data interface{}
findMatch := func(val interface{}) bool {
if val != nil {
records := val.(entryList)
for _, e := range records {
if e.ports.IsIncluded(port) {
data = e.data
return true
}
}
}
return false
}
cache.RunFuncOnLpmIP(ip, findMatch)
return data
}
// findIP searches for a matching service, given an IP and port
func (s *ServiceCache) findHost(host string, port int, local bool) interface{} {
hostCache := s.remoteHosts
if local {
hostCache = s.localHosts
}
entries, ok := hostCache[host]
if !ok {
return nil
}
for _, e := range entries {
if e.ports.IsIncluded(port) {
return e.data
}
}
return nil
}
// addPorts will only work for local ports.
func (s *ServiceCache) addPorts(e *common.Service, record *entry, local bool) error {
if !local {
return nil
}
for _, spec := range s.localPorts {
if spec.ports.Overlaps(e.Ports) {
return fmt.Errorf("service port overlap in the global port list: %+v %s", e.Addresses, e.Ports.String())
}
}
s.localPorts = append(s.localPorts, record)
return nil
}
此处可能存在不合适展示的内容,页面不予展示。您可通过相关编辑功能自查并修改。
如您确认内容无涉及 不当用语 / 纯广告导流 / 暴力 / 低俗色情 / 侵权 / 盗版 / 虚假 / 无价值内容或违法国家有关法律法规的内容,可点击提交进行申诉,我们将尽快为您处理。