/* * * (C) 2013-24 - ntop.org * * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation; either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program; if not, write to the Free Software Foundation, * Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. * */ #include "ntop_includes.h" /* This file implements the flow.**** class */ /* ****************************************** */ static int ntop_flow_get_bytes(lua_State *vm) { NtopngLuaContext *c = getLuaVMContext(vm); Flow *f = c ? c->flow : NULL; if (f) lua_pushinteger(vm, f->get_bytes()); else lua_pushnil(vm); return (ntop_lua_return_value(vm, __FUNCTION__, CONST_LUA_OK)); } /* ****************************************** */ static int ntop_flow_get_cli2srv_bytes(lua_State *vm) { NtopngLuaContext *c = getLuaVMContext(vm); Flow *f = c ? c->flow : NULL; if (f) lua_pushinteger(vm, f->get_bytes_cli2srv()); else lua_pushnil(vm); return (ntop_lua_return_value(vm, __FUNCTION__, CONST_LUA_OK)); } /* ****************************************** */ static int ntop_flow_get_srv2cli_bytes(lua_State *vm) { NtopngLuaContext *c = getLuaVMContext(vm); Flow *f = c ? c->flow : NULL; if (f) lua_pushinteger(vm, f->get_bytes_srv2cli()); else lua_pushnil(vm); return (ntop_lua_return_value(vm, __FUNCTION__, CONST_LUA_OK)); } /* **************************************************************** */ static int ntop_flow_get_client(lua_State *vm) { NtopngLuaContext *c = getLuaVMContext(vm); Flow *f = c ? c->flow : NULL; if (f && f->get_cli_ip_addr()) { char buf[64]; lua_pushstring(vm, f->get_cli_ip_addr()->print(buf, sizeof(buf))); } else lua_pushnil(vm); return (ntop_lua_return_value(vm, __FUNCTION__, CONST_LUA_OK)); } /* **************************************************************** */ static int ntop_flow_get_client_port(lua_State *vm) { NtopngLuaContext *c = getLuaVMContext(vm); Flow *f = c ? c->flow : NULL; if (f) lua_pushinteger(vm, f->get_cli_port()); else lua_pushnil(vm); return (ntop_lua_return_value(vm, __FUNCTION__, CONST_LUA_OK)); } /* **************************************************************** */ static int ntop_flow_get_server(lua_State *vm) { NtopngLuaContext *c = getLuaVMContext(vm); Flow *f = c ? c->flow : NULL; if (f && f->get_srv_ip_addr()) { char buf[64]; lua_pushstring(vm, f->get_srv_ip_addr()->print(buf, sizeof(buf))); } else lua_pushnil(vm); return (ntop_lua_return_value(vm, __FUNCTION__, CONST_LUA_OK)); } /* **************************************************************** */ static int ntop_flow_get_server_port(lua_State *vm) { NtopngLuaContext *c = getLuaVMContext(vm); Flow *f = c ? c->flow : NULL; if (f) lua_pushinteger(vm, f->get_srv_port()); else lua_pushnil(vm); return (ntop_lua_return_value(vm, __FUNCTION__, CONST_LUA_OK)); } /* **************************************************************** */ static int ntop_flow_get_protocol(lua_State *vm) { NtopngLuaContext *c = getLuaVMContext(vm); Flow *f = c ? c->flow : NULL; if (f) lua_pushinteger(vm, f->get_protocol()); else lua_pushnil(vm); return (ntop_lua_return_value(vm, __FUNCTION__, CONST_LUA_OK)); } /* **************************************************************** */ static int ntop_flow_get_vlan_id(lua_State *vm) { NtopngLuaContext *c = getLuaVMContext(vm); Flow *f = c ? c->flow : NULL; if (f) lua_pushinteger(vm, f->get_vlan_id()); else lua_pushnil(vm); return (ntop_lua_return_value(vm, __FUNCTION__, CONST_LUA_OK)); } /* **************************************************************** */ static int ntop_flow_get_l7_master_proto(lua_State *vm) { NtopngLuaContext *c = getLuaVMContext(vm); Flow *f = c ? c->flow : NULL; if (f) lua_pushinteger(vm, f->get_detected_protocol().master_protocol); else lua_pushnil(vm); return (ntop_lua_return_value(vm, __FUNCTION__, CONST_LUA_OK)); } /* **************************************************************** */ static int ntop_flow_get_l7_proto(lua_State *vm) { NtopngLuaContext *c = getLuaVMContext(vm); Flow *f = c ? c->flow : NULL; if (f) lua_pushinteger(vm, f->get_detected_protocol().app_protocol); else lua_pushnil(vm); return (ntop_lua_return_value(vm, __FUNCTION__, CONST_LUA_OK)); } /* **************************************************************** */ static int ntop_flow_get_direction(lua_State *vm) { NtopngLuaContext *c = getLuaVMContext(vm); Flow *f = c ? c->flow : NULL; if (f) { const char *rsp; if (f->isRemoteToRemote()) rsp = "remote2remote"; else if (f->isLocalToRemote()) rsp = "local@remote"; else if (f->isRemoteToLocal()) rsp = "remote@local"; else if (f->isLocalToLocal()) rsp = "local@local"; else rsp = "unknown"; lua_pushstring(vm, rsp); } else lua_pushnil(vm); return (ntop_lua_return_value(vm, __FUNCTION__, CONST_LUA_OK)); } /* **************************************************************** */ static int ntop_flow_is_oneway(lua_State *vm) { NtopngLuaContext *c = getLuaVMContext(vm); Flow *f = c ? c->flow : NULL; lua_pushboolean(vm, f ? f->isOneWay() : false); return (ntop_lua_return_value(vm, __FUNCTION__, CONST_LUA_OK)); } /* **************************************************************** */ static int ntop_flow_is_unicast(lua_State *vm) { NtopngLuaContext *c = getLuaVMContext(vm); Flow *f = c ? c->flow : NULL; lua_pushboolean(vm, f ? f->isUnicast() : false); return (ntop_lua_return_value(vm, __FUNCTION__, CONST_LUA_OK)); } /* **************************************************************** */ static int ntop_flow_get_l7_proto_name(lua_State *vm) { NtopngLuaContext *c = getLuaVMContext(vm); Flow *f = c ? c->flow : NULL; if (f) { char buf[64]; lua_pushstring(vm, f->get_detected_protocol_name(buf, sizeof(buf))); } else lua_pushnil(vm); return (ntop_lua_return_value(vm, __FUNCTION__, CONST_LUA_OK)); } /* **************************************************************** */ static int ntop_flow_get_l7_proto_http(lua_State *vm) { NtopngLuaContext *c = getLuaVMContext(vm); Flow *f = c ? c->flow : NULL; if (f) { lua_newtable(vm); f->lua_get_http_info(vm); } else lua_pushnil(vm); return (ntop_lua_return_value(vm, __FUNCTION__, CONST_LUA_OK)); } /* **************************************************************** */ static int ntop_flow_get_l7_proto_dns(lua_State *vm) { NtopngLuaContext *c = getLuaVMContext(vm); Flow *f = c ? c->flow : NULL; if (f) { lua_newtable(vm); f->lua_get_dns_info(vm); } else lua_pushnil(vm); return (ntop_lua_return_value(vm, __FUNCTION__, CONST_LUA_OK)); } /* **************************************************************** */ static int ntop_flow_get_l7_proto_ssh(lua_State *vm) { NtopngLuaContext *c = getLuaVMContext(vm); Flow *f = c ? c->flow : NULL; if (f) { lua_newtable(vm); f->lua_get_ssh_info(vm); } else lua_pushnil(vm); return (ntop_lua_return_value(vm, __FUNCTION__, CONST_LUA_OK)); } /* **************************************************************** */ static int ntop_flow_get_l7_proto_tls_quic(lua_State *vm) { NtopngLuaContext *c = getLuaVMContext(vm); Flow *f = c ? c->flow : NULL; if (f) { lua_newtable(vm); f->lua_get_tls_info(vm); } else lua_pushnil(vm); return (ntop_lua_return_value(vm, __FUNCTION__, CONST_LUA_OK)); } /* **************************************************************** */ static int ntop_trigger_flow_alert(lua_State *vm) { NtopngLuaContext *c = getLuaVMContext(vm); Flow *f = c ? c->flow : NULL; if (f) { u_int32_t value; char *msg; if (ntop_lua_check(vm, __FUNCTION__, 1, LUA_TNUMBER) != CONST_LUA_OK) return (ntop_lua_return_value(vm, __FUNCTION__, CONST_LUA_ERROR)); value = (u_int32_t)lua_tointeger(vm, 1); if (ntop_lua_check(vm, __FUNCTION__, 2, LUA_TSTRING) != CONST_LUA_OK) return (ntop_lua_return_value(vm, __FUNCTION__, CONST_LUA_ERROR)); msg = (char *)lua_tostring(vm, 2); f->triggerCustomFlowAlert(value, msg); } else lua_pushnil(vm); return (ntop_lua_return_value(vm, __FUNCTION__, CONST_LUA_OK)); } /* **************************************************************** */ static luaL_Reg _ntop_flow_reg[] = { {"cli", ntop_flow_get_client}, {"cli_port", ntop_flow_get_client_port}, {"srv", ntop_flow_get_server}, {"srv_port", ntop_flow_get_server_port}, {"protocol", ntop_flow_get_protocol}, {"vlan_id", ntop_flow_get_vlan_id}, {"is_oneway", ntop_flow_is_oneway}, {"is_unicast", ntop_flow_is_unicast}, {"cli2srv_bytes", ntop_flow_get_cli2srv_bytes}, {"srv2cli_bytes", ntop_flow_get_srv2cli_bytes}, {"bytes", ntop_flow_get_bytes}, {"l7_master_proto", ntop_flow_get_l7_master_proto}, {"l7_proto", ntop_flow_get_l7_proto}, {"l7_proto_name", ntop_flow_get_l7_proto_name}, /* Layer-7 Protocols */ {"http", ntop_flow_get_l7_proto_http}, {"dns", ntop_flow_get_l7_proto_dns}, {"ssh", ntop_flow_get_l7_proto_ssh}, {"tls_quic", ntop_flow_get_l7_proto_tls_quic}, {"direction", ntop_flow_get_direction}, {"triggerAlert", ntop_trigger_flow_alert}, {NULL, NULL}}; luaL_Reg *ntop_flow_reg = _ntop_flow_reg;