diff options
| author | Toni Uhlig <matzeton@googlemail.com> | 2021-12-15 23:25:32 +0100 |
|---|---|---|
| committer | Toni Uhlig <matzeton@googlemail.com> | 2022-01-20 00:50:38 +0100 |
| commit | 9e07a57566cc45bf92a845d8cee968d72e0f314e (patch) | |
| tree | 8f1a6bfd08bd68a5253fadf3a01beecda77b1c95 /schema/packet_event_schema.json | |
| parent | a35fc1d5ea8570609cc0c8cf6edadc81f8f5bb76 (diff) | |
Major nDPId extension. Sorry for the huge commit.
- nDPId: fixed invalid IP4/IP6 tuple compare
- nDPIsrvd: fixed caching issue (finally)
- added tiny c example (can be used to check flow manager sanity)
- c-captured: use flow_last_seen timestamp from `struct nDPIsrvd_flow`
- README.md update: added example JSON sequence
- nDPId: added new flow event `update` necessary for correct
timeout handling (and other future use-cases)
- nDPIsrvd.h and nDPIsrvd.py: switched to an instance
(consists of an alias/source tuple) based flow manager
- every flow related event **must** now serialize `alias`, `source`,
`flow_id`, `flow_last_seen` and `flow_idle_time` to make the timeout
handling and verification process work correctly
- nDPIsrvd.h: ability to profile any dynamic memory (de-)allocation
- nDPIsrvd.py: removed PcapPacket class (unused)
- py-flow-dashboard and py-flow-multiprocess: fixed race condition
- py-flow-info: print statusbar with probably useful information
- nDPId/nDPIsrvd.h: switched from packet-flow only timestamps (`pkt_*sec`)
to a generic flow event timestamp `ts_msec`
- nDPId-test: added additional checks
- nDPId: increased ICMP flow timeout
- nDPId: using event based i/o if capturing packets from a device
- nDPIsrvd: fixed memory leak on shutdown if remote descriptors
were still connected
Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
Diffstat (limited to 'schema/packet_event_schema.json')
| -rw-r--r-- | schema/packet_event_schema.json | 38 |
1 files changed, 30 insertions, 8 deletions
diff --git a/schema/packet_event_schema.json b/schema/packet_event_schema.json index abdeb7721..0b53ae99c 100644 --- a/schema/packet_event_schema.json +++ b/schema/packet_event_schema.json @@ -6,8 +6,25 @@ "thread_id", "packet_id", "packet_event_id", - "packet_event_name" + "packet_event_name", + "pkt_oversize", + "pkt_caplen", + "pkt_type", + "pkt_l3_offset", + "pkt_l4_offset", + "pkt_len", + "pkt_l4_len", + "ts_msec" ], + "dependencies" : { + "flow_id" : [ "flow_packet_id", "flow_last_seen", "flow_idle_time" ] + }, + "if": { + "properties": { "packet_event_name": { "const": "packet-flow" } } + }, + "then": { + "required": [ "flow_id" ] + }, "properties": { "alias": { "type": "string" @@ -42,6 +59,14 @@ "flow_packet_id": { "type": "number" }, + "flow_last_seen": { + "type": "number", + "minimum": 24710 + }, + "flow_idle_time": { + "type": "number", + "minimum": 1 + }, "pkt_caplen": { "type": "number", "minimum": 1, @@ -65,6 +90,10 @@ "minimum": 0, "maximum": 65535 }, + "ts_msec": { + "type": "number", + "minimum": 0 + }, "pkt_l4_offset": { "type": "number", "minimum": 0, @@ -75,13 +104,6 @@ "minimum": 0, "maximum": 65535 }, - "pkt_ts_usec": { - "type": "number" - }, - "pkt_ts_sec": { - "type": "number", - "minimum": 1 - }, "pkt": { "type": "string" } |