Home Explore Help
Register Sign In
drachfly
/
android10
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 6b68537209
Branches Tags
android10
/
kernel
/
Documentation
/
networking
/
strparser.txt

strparser.txt 5.5 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136 
  1. Stream Parser
    2. 

  2. -------------
    3. 

  3. 

  4. The stream parser (strparser) is a utility that parses messages of an
    5. 

  5. application layer protocol running over a TCP connection. The stream
    6. 

  6. parser works in conjunction with an upper layer in the kernel to provide
    7. 

  7. kernel support for application layer messages. For instance, Kernel
    8. 

  8. Connection Multiplexor (KCM) uses the Stream Parser to parse messages
    9. 

  9. using a BPF program.
    10. 

  10. 

  11. Interface
    12. 

  12. ---------
    13. 

  13. 

  14. The API includes a context structure, a set of callbacks, utility
    15. 

  15. functions, and a data_ready function. The callbacks include
    16. 

  16. a parse_msg function that is called to perform parsing (e.g.
    17. 

  17. BPF parsing in case of KCM), and a rcv_msg function that is called
    18. 

  18. when a full message has been completed.
    19. 

  19. 

  20. A stream parser can be instantiated for a TCP connection. This is done
    21. 

  21. by:
    22. 

  22. 

  23. strp_init(struct strparser *strp, struct sock *csk,
    24. 

  24. 	  struct strp_callbacks *cb)
    25. 

  25. 

  26. strp is a struct of type strparser that is allocated by the upper layer.
    27. 

  27. csk is the TCP socket associated with the stream parser. Callbacks are
    28. 

  28. called by the stream parser.
    29. 

  29. 

  30. Callbacks
    31. 

  31. ---------
    32. 

  32. 

  33. There are four callbacks:
    34. 

  34. 

  35. int (*parse_msg)(struct strparser *strp, struct sk_buff *skb);
    36. 

  36. 

  37.     parse_msg is called to determine the length of the next message
    38. 

  38.     in the stream. The upper layer must implement this function. It
    39. 

  39.     should parse the sk_buff as containing the headers for the
    40. 

  40.     next application layer messages in the stream.
    41. 

  41. 

  42.     The skb->cb in the input skb is a struct strp_rx_msg. Only
    43. 

  43.     the offset field is relevant in parse_msg and gives the offset
    44. 

  44.     where the message starts in the skb.
    45. 

  45. 

  46.     The return values of this function are:
    47. 

  47. 

  48.     >0 : indicates length of successfully parsed message
    49. 

  49.     0  : indicates more data must be received to parse the message
    50. 

  50.     -ESTRPIPE : current message should not be processed by the
    51. 

  51.           kernel, return control of the socket to userspace which
    52. 

  52.           can proceed to read the messages itself
    53. 

  53.     other < 0 : Error is parsing, give control back to userspace
    54. 

  54.           assuming that synchronization is lost and the stream
    55. 

  55.           is unrecoverable (application expected to close TCP socket)
    56. 

  56. 

  57.     In the case that an error is returned (return value is less than
    58. 

  58.     zero) the stream parser will set the error on TCP socket and wake
    59. 

  59.     it up. If parse_msg returned -ESTRPIPE and the stream parser had
    60. 

  60.     previously read some bytes for the current message, then the error
    61. 

  61.     set on the attached socket is ENODATA since the stream is
    62. 

  62.     unrecoverable in that case.
    63. 

  63. 

  64. void (*rcv_msg)(struct strparser *strp, struct sk_buff *skb);
    65. 

  65. 

  66.     rcv_msg is called when a full message has been received and
    67. 

  67.     is queued. The callee must consume the sk_buff; it can
    68. 

  68.     call strp_pause to prevent any further messages from being
    69. 

  69.     received in rcv_msg (see strp_pause below). This callback
    70. 

  70.     must be set.
    71. 

  71. 

  72.     The skb->cb in the input skb is a struct strp_rx_msg. This
    73. 

  73.     struct contains two fields: offset and full_len. Offset is
    74. 

  74.     where the message starts in the skb, and full_len is the
    75. 

  75.     the length of the message. skb->len - offset may be greater
    76. 

  76.     then full_len since strparser does not trim the skb.
    77. 

  77. 

  78. int (*read_sock_done)(struct strparser *strp, int err);
    79. 

  79. 

  80.      read_sock_done is called when the stream parser is done reading
    81. 

  81.      the TCP socket. The stream parser may read multiple messages
    82. 

  82.      in a loop and this function allows cleanup to occur when existing
    83. 

  83.      the loop. If the callback is not set (NULL in strp_init) a
    84. 

  84.      default function is used.
    85. 

  85. 

  86. void (*abort_parser)(struct strparser *strp, int err);
    87. 

  87. 

  88.      This function is called when stream parser encounters an error
    89. 

  89.      in parsing. The default function stops the stream parser for the
    90. 

  90.      TCP socket and sets the error in the socket. The default function
    91. 

  91.      can be changed by setting the callback to non-NULL in strp_init.
    92. 

  92. 

  93. Functions
    94. 

  94. ---------
    95. 

  95. 

  96. The upper layer calls strp_tcp_data_ready when data is ready on the lower
    97. 

  97. socket for strparser to process. This should be called from a data_ready
    98. 

  98. callback that is set on the socket.
    99. 

  99. 

  100. strp_stop is called to completely stop stream parser operations. This
    101. 

  101. is called internally when the stream parser encounters an error, and
    102. 

  102. it is called from the upper layer when unattaching a TCP socket.
    103. 

  103. 

  104. strp_done is called to unattach the stream parser from the TCP socket.
    105. 

  105. This must be called after the stream processor has be stopped.
    106. 

  106. 

  107. strp_check_rcv is called to check for new messages on the socket. This
    108. 

  108. is normally called at initialization of the a stream parser instance
    109. 

  109. of after strp_unpause.
    110. 

  110. 

  111. Statistics
    112. 

  112. ----------
    113. 

  113. 

  114. Various counters are kept for each stream parser for a TCP socket.
    115. 

  115. These are in the strp_stats structure. strp_aggr_stats is a convenience
    116. 

  116. structure for accumulating statistics for multiple stream parser
    117. 

  117. instances. save_strp_stats and aggregate_strp_stats are helper functions
    118. 

  118. to save and aggregate statistics.
    119. 

  119. 

  120. Message assembly limits
    121. 

  121. -----------------------
    122. 

  122. 

  123. The stream parser provide mechanisms to limit the resources consumed by
    124. 

  124. message assembly.
    125. 

  125. 

  126. A timer is set when assembly starts for a new message. The message
    127. 

  127. timeout is taken from rcvtime for the associated TCP socket. If the
    128. 

  128. timer fires before assembly completes the stream parser is aborted
    129. 

  129. and the ETIMEDOUT error is set on the TCP socket.
    130. 

  130. 

  131. Message length is limited to the receive buffer size of the associated
    132. 

  132. TCP socket. If the length returned by parse_msg is greater than
    133. 

  133. the socket buffer size then the stream parser is aborted with
    134. 

  134. EMSGSIZE error set on the TCP socket. Note that this makes the
    135. 

  135. maximum size of receive skbuffs for a socket with a stream parser
    136. 

  136. to be 2*sk_rcvbuf of the TCP socket.
    137.