Training courses

Kernel and Embedded Linux

Bootlin training courses

Embedded Linux, kernel,
Yocto Project, Buildroot, real-time,
graphics, boot time, debugging...

Bootlin logo

Elixir Cross Referencer

Open Menu /contrib/unbound/dnstap/dtstream.h 
  1
  2
  3
  4
  5
  6
  7
  8
  9
 10
 11
 12
 13
 14
 15
 16
 17
 18
 19
 20
 21
 22
 23
 24
 25
 26
 27
 28
 29
 30
 31
 32
 33
 34
 35
 36
 37
 38
 39
 40
 41
 42
 43
 44
 45
 46
 47
 48
 49
 50
 51
 52
 53
 54
 55
 56
 57
 58
 59
 60
 61
 62
 63
 64
 65
 66
 67
 68
 69
 70
 71
 72
 73
 74
 75
 76
 77
 78
 79
 80
 81
 82
 83
 84
 85
 86
 87
 88
 89
 90
 91
 92
 93
 94
 95
 96
 97
 98
 99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
/*
 * dnstap/dtstream.h - Frame Streams thread for unbound DNSTAP
 *
 * Copyright (c) 2020, NLnet Labs. All rights reserved.
 *
 * This software is open source.
 * 
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted provided that the following conditions
 * are met:
 * 
 * Redistributions of source code must retain the above copyright notice,
 * this list of conditions and the following disclaimer.
 * 
 * Redistributions in binary form must reproduce the above copyright notice,
 * this list of conditions and the following disclaimer in the documentation
 * and/or other materials provided with the distribution.
 * 
 * Neither the name of the NLNET LABS nor the names of its contributors may
 * be used to endorse or promote products derived from this software without
 * specific prior written permission.
 * 
 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
 * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
 * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
 * A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
 * HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED
 * TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR
 * PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
 * LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
 * NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
 * SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
 *
 */

/**
 * \file
 *
 * An implementation of the Frame Streams data transport protocol for
 * the Unbound DNSTAP message logging facility.
 */

#ifndef DTSTREAM_H
#define DTSTREAM_H

#include "util/locks.h"
struct dt_msg_entry;
struct dt_io_list_item;
struct dt_io_thread;
struct config_file;
struct comm_base;

/**
 * A message buffer with dnstap messages queued up.  It is per-worker.
 * It has locks to synchronize.  If the buffer is full, a new message
 * cannot be added and is discarded.  A thread reads the messages and sends
 * them.
 */
struct dt_msg_queue {
	/** lock of the buffer structure.  Hold this lock to add or remove
	 * entries to the buffer.  Release it so that other threads can also
	 * put messages to log, or a message can be taken out to send away
	 * by the writer thread.
	 */
	lock_basic_type lock;
	/** the maximum size of the buffer, in bytes */
	size_t maxsize;
	/** current size of the buffer, in bytes.  data bytes of messages.
	 * If a new message make it more than maxsize, the buffer is full */
	size_t cursize;
	/** number of messages in the queue */
	int msgcount;
	/** list of messages.  The messages are added to the back and taken
	 * out from the front. */
	struct dt_msg_entry* first, *last;
	/** reference to the io thread to wakeup */
	struct dt_io_thread* dtio;
	/** the wakeup timer for dtio, on worker event base */
	struct comm_timer* wakeup_timer;
};

/**
 * An entry in the dt_msg_queue. contains one DNSTAP message.
 * It is malloced.
 */
struct dt_msg_entry {
	/** next in the list. */
	struct dt_msg_entry* next;
	/** the buffer with the data to send, an encoded DNSTAP message */
	void* buf;
	/** the length to send. */
	size_t len;
};

/**
 * Containing buffer and counter for reading DNSTAP frames.
 */
struct dt_frame_read_buf {
	/** Buffer containing frame, except length counter(s). */
	void* buf;
	/** Number of bytes written to buffer. */
	size_t buf_count;
	/** Capacity of the buffer. */
	size_t buf_cap;

	/** Frame length field. Will contain the 2nd length field for control
	 * frames. */
	uint32_t frame_len;
	/** Number of bytes that have been written to the frame_length field. */
	size_t frame_len_done;

	/** Set to 1 if this is a control frame, 0 otherwise (ie data frame). */
	int control_frame;
};

/**
 * IO thread that reads from the queues and writes them.
 */
struct dt_io_thread {
	/** the thread number for the dtio thread,
	 * must be first to cast thread arg to int* in checklock code. */
	int threadnum;
	/** event base, for event handling */
	void* event_base;
	/** list of queues that is registered to get written */
	struct dt_io_list_item* io_list;
	/** iterator point in the io_list, to pick from them in a
	 * round-robin fashion, instead of only from the first when busy.
	 * if NULL it means start at the start of the list. */
	struct dt_io_list_item* io_list_iter;
	/** thread id, of the io thread */
	ub_thread_type tid;
	/** if the io processing has started */
	int started;
	/** ssl context for the io thread, for tls connections. type SSL_CTX* */
	void* ssl_ctx;
	/** if SNI will be used for TLS connections. */
	int tls_use_sni;

	/** file descriptor that the thread writes to */
	int fd;
	/** event structure that the thread uses */
	void* event;
	/** the event is added */
	int event_added;
	/** event added is a write event */
	int event_added_is_write;
	/** check for nonblocking connect errors on fd */
	int check_nb_connect;
	/** ssl for current connection, type SSL* */
	void* ssl;
	/** true if the handshake for SSL is done, 0 if not */
	int ssl_handshake_done;
	/** true if briefly the SSL wants a read event, 0 if not.
	 * This happens during negotiation, we then do not want to write,
	 * but wait for a read event. */
	int ssl_brief_read;
	/** true if SSL_read is waiting for a write event. Set back to 0 after
	 * single write event is handled. */
	int ssl_brief_write;

	/** the buffer that currently getting written, or NULL if no
	 * (partial) message written now */
	void* cur_msg;
	/** length of the current message */
	size_t cur_msg_len;
	/** number of bytes written for the current message */
	size_t cur_msg_done;
	/** number of bytes of the length that have been written,
	 * for the current message length that precedes the frame */
	size_t cur_msg_len_done;

	/** lock on wakeup_timer_enabled */
	lock_basic_type wakeup_timer_lock;
	/** if wakeup timer is enabled in some thread */
	int wakeup_timer_enabled;
	/** command pipe that stops the pipe if closed.  Used to quit
	 * the program. [0] is read, [1] is written to. */
	int commandpipe[2];
	/** the event to listen to the commandpipe */
	void* command_event;
	/** the io thread wants to exit */
	int want_to_exit;

	/** in stop flush, this is nonNULL and references the stop_ev */
	void* stop_flush_event;

	/** the timer event for connection retries */
	void* reconnect_timer;
	/** if the reconnect timer is added to the event base */
	int reconnect_is_added;
	/** the current reconnection timeout, it is increased with
	 * exponential backoff, in msec */
	int reconnect_timeout;

	/** If the log server is connected to over unix domain sockets,
	 * eg. a file is named that is created to log onto. */
	int upstream_is_unix;
	/** if the log server is connected to over TCP.  The ip address and
	 * port are used */
	int upstream_is_tcp;
	/** if the log server is connected to over TLS.  ip address, port,
	 * and client certificates can be used for authentication. */
	int upstream_is_tls;

	/** Perform bidirectional Frame Streams handshake before sending
	 * messages. */
	int is_bidirectional;
	/** Set if the READY control frame has been sent. */
	int ready_frame_sent;
	/** Set if valid ACCEPT frame is received. */
	int accept_frame_received;
	/** (partially) read frame */
	struct dt_frame_read_buf read_frame;

	/** the file path for unix socket (or NULL) */
	char* socket_path;
	/** the ip address and port number (or NULL) */
	char* ip_str;
	/** is the TLS upstream authenticated by name, if nonNULL,
	 * we use the same cert bundle as used by other TLS streams. */
	char* tls_server_name;
	/** are client certificates in use */
	int use_client_certs;
	/** client cert files: the .key file */
	char* client_key_file;
	/** client cert files: the .pem file */
	char* client_cert_file;
};

/**
 * IO thread list of queues list item
 * lists a worker queue that should be looked at and sent to the log server.
 */
struct dt_io_list_item {
	/** next in the list of buffers to inspect */
	struct dt_io_list_item* next;
	/** buffer of this worker */
	struct dt_msg_queue* queue;
};

/**
 * Create new (empty) worker message queue. Limit set to default on max.
 * @param base: event base for wakeup timer.
 * @return NULL on malloc failure or a new queue (not locked).
 */
struct dt_msg_queue* dt_msg_queue_create(struct comm_base* base);

/**
 * Delete a worker message queue.  It has to be unlinked from access,
 * so it can be deleted without lock worries.  The queue is emptied (deleted).
 * @param mq: message queue.
 */
void dt_msg_queue_delete(struct dt_msg_queue* mq);

/**
 * Submit a message to the queue.  The queue is locked by the routine,
 * the message is inserted, and then the queue is unlocked so the
 * message can be picked up by the writer thread.
 * @param mq: message queue.
 * @param buf: buffer with message (dnstap contents).
 * 	The buffer must have been malloced by caller.  It is linked in
 * 	the queue, and is free()d after use.  If the routine fails
 * 	the buffer is freed as well (and nothing happens, the item
 * 	could not be logged).
 * @param len: length of buffer.
 */
void dt_msg_queue_submit(struct dt_msg_queue* mq, void* buf, size_t len);

/** timer callback to wakeup dtio thread to process messages */
void mq_wakeup_cb(void* arg);

/**
 * Create IO thread.
 * @return new io thread object. not yet started. or NULL malloc failure.
 */
struct dt_io_thread* dt_io_thread_create(void);

/**
 * Delete the IO thread structure.
 * @param dtio: the io thread that is deleted.  It must not be running.
 */
void dt_io_thread_delete(struct dt_io_thread* dtio);

/**
 * Apply config to the dtio thread
 * @param dtio: io thread, not yet started.
 * @param cfg: config file struct.
 * @return false on malloc failure.
 */
int dt_io_thread_apply_cfg(struct dt_io_thread* dtio,
	struct config_file *cfg);

/**
 * Register a msg queue to the io thread.  It will be polled to see if
 * there are messages and those then get removed and sent, when the thread
 * is running.
 * @param dtio: the io thread.
 * @param mq: message queue to register.
 * @return false on failure (malloc failure).
 */
int dt_io_thread_register_queue(struct dt_io_thread* dtio,
	struct dt_msg_queue* mq);

/**
 * Unregister queue from io thread.
 * @param dtio: the io thread.
 * @param mq: message queue.
 */
void dt_io_thread_unregister_queue(struct dt_io_thread* dtio,
        struct dt_msg_queue* mq);

/**
 * Start the io thread
 * @param dtio: the io thread.
 * @param event_base_nothr: the event base to attach the events to, in case
 * 	we are running without threads.  With threads, this is ignored
 * 	and a thread is started to process the dnstap log messages.
 * @param numworkers: number of worker threads.  The dnstap io thread is
 * 	that number +1 as the threadnumber (in logs).
 * @return false on failure.
 */
int dt_io_thread_start(struct dt_io_thread* dtio, void* event_base_nothr,
	int numworkers);

/** 
 * Stop the io thread
 * @param dtio: the io thread.
 */
void dt_io_thread_stop(struct dt_io_thread* dtio);

/** callback for the dnstap reconnect, to start reconnecting to output */
void dtio_reconnect_timeout_cb(int fd, short bits, void* arg);

/** callback for the dnstap events, to write to the output */
void dtio_output_cb(int fd, short bits, void* arg);

/** callback for the dnstap commandpipe, to stop the dnstap IO */
void dtio_cmd_cb(int fd, short bits, void* arg);

/** callback for the timer when the thread stops and wants to finish up */
void dtio_stop_timer_cb(int fd, short bits, void* arg);

/** callback for the output when the thread stops and wants to finish up */
void dtio_stop_ev_cb(int fd, short bits, void* arg);

/** callback for unbound-dnstap-socket */
void dtio_tap_callback(int fd, short bits, void* arg);

/** callback for unbound-dnstap-socket */
void dtio_mainfdcallback(int fd, short bits, void* arg);

#endif /* DTSTREAM_H */