From a53d05c8bd06d795c860b0de9a81cfa617482969 Mon Sep 17 00:00:00 2001
From: John Safranek <john@wolfssl.com>
Date: Thu, 10 Sep 2015 11:06:48 -0700
Subject: [PATCH] updated sniffer statistics for missed sessions and reassembly
 buffer usage

---
 src/sniffer.c            | 67 +++++++++++++++++++++++++++++++++++-----
 wolfssl/sniffer_error.h  |  1 +
 wolfssl/sniffer_error.rc |  1 +
 3 files changed, 61 insertions(+), 8 deletions(-)

diff --git a/src/sniffer.c b/src/sniffer.c
index d28b91599..8f6942673 100644
--- a/src/sniffer.c
+++ b/src/sniffer.c
@@ -243,7 +243,8 @@ static const char* const msgTable[] =
     "Secure Renegotiation Not Supported",
 
     /* 76 */
-    "Get Session Stats Failure"
+    "Get Session Stats Failure",
+    "Reassembly Buffer Size Exceeded"
 };
 
 
@@ -345,6 +346,8 @@ typedef struct SnifferSession {
     time_t         lastUsed;          /* last used ticks */
     PacketBuffer*  cliReassemblyList; /* client out of order packets */
     PacketBuffer*  srvReassemblyList; /* server out of order packets */
+    word32         cliReassemblyMemory; /* client packet memory used */
+    word32         srvReassemblyMemory; /* server packet memory used */
     struct SnifferSession* next;      /* for hash table list */
     byte*          ticketID;          /* mac ID of session ticket */
 } SnifferSession;
@@ -365,7 +368,14 @@ static wolfSSL_Mutex RecoveryMutex;      /* for stats */
 static int RecoveryEnabled    = 0;       /* global switch */
 static int MaxRecoveryMemory  = -1;      /* per session max recovery memory */
 static word32 MissedDataSessions = 0;    /* # of sessions with missed data */
-static word32 ReassemblyMemory   = 0;    /* total reassembly memory in use */
+
+
+static void UpdateMissedDataSessions(void)
+{
+    LockMutex(&RecoveryMutex);
+    MissedDataSessions += 1;
+    UnLockMutex(&RecoveryMutex);
+}
 
 
 /* Initialize overall Sniffer */
@@ -566,6 +576,8 @@ static void InitSession(SnifferSession* session)
     session->lastUsed       = 0;
     session->cliReassemblyList = 0;
     session->srvReassemblyList = 0;
+    session->cliReassemblyMemory = 0;
+    session->srvReassemblyMemory = 0;
     session->next           = 0;
     session->ticketID       = 0;
     
@@ -2326,18 +2338,26 @@ static int AddToReassembly(byte from, word32 seq, const byte* sslFrame,
     PacketBuffer*  curr = *front;
     PacketBuffer*  prev = curr;
     
+    word32* reassemblyMemory = (from == WOLFSSL_SERVER_END) ?
+                  &session->cliReassemblyMemory : &session->srvReassemblyMemory;
     word32  startSeq = seq;
     word32  added;
     int     bytesLeft = sslBytes;  /* could be overlapping fragment */
 
     /* if list is empty add full frame to front */
     if (!curr) {
+        if (MaxRecoveryMemory != -1 &&
+                      (int)(*reassemblyMemory + sslBytes) > MaxRecoveryMemory) {
+            SetError(REASSEMBLY_MAX_STR, error, session, FATAL_ERROR_STATE);
+            return -1;
+        }
         add = CreateBuffer(&seq, seq + sslBytes - 1, sslFrame, &bytesLeft);
         if (add == NULL) {
             SetError(MEMORY_STR, error, session, FATAL_ERROR_STATE);
             return -1;
         }
         *front = add;
+        *reassemblyMemory += sslBytes;
         return 1;
     }
     
@@ -2348,6 +2368,11 @@ static int AddToReassembly(byte from, word32 seq, const byte* sslFrame,
         if (end >= curr->begin)
             end = curr->begin - 1;
         
+        if (MaxRecoveryMemory -1 &&
+                      (int)(*reassemblyMemory + sslBytes) > MaxRecoveryMemory) {
+            SetError(REASSEMBLY_MAX_STR, error, session, FATAL_ERROR_STATE);
+            return -1;
+        }
         add = CreateBuffer(&seq, end, sslFrame, &bytesLeft);
         if (add == NULL) {
             SetError(MEMORY_STR, error, session, FATAL_ERROR_STATE);
@@ -2355,6 +2380,7 @@ static int AddToReassembly(byte from, word32 seq, const byte* sslFrame,
         }
         add->next = curr;
         *front = add;
+        *reassemblyMemory += sslBytes;
     }
     
     /* while we have bytes left, try to find a gap to fill */
@@ -2384,6 +2410,11 @@ static int AddToReassembly(byte from, word32 seq, const byte* sslFrame,
         if (added == 0)
             continue;
         
+        if (MaxRecoveryMemory != -1 &&
+                         (int)(*reassemblyMemory + added) > MaxRecoveryMemory) {
+            SetError(REASSEMBLY_MAX_STR, error, session, FATAL_ERROR_STATE);
+            return -1;
+        }
         add = CreateBuffer(&seq, seq + added - 1, &sslFrame[seq - startSeq],
                            &bytesLeft);
         if (add == NULL) {
@@ -2392,6 +2423,7 @@ static int AddToReassembly(byte from, word32 seq, const byte* sslFrame,
         }
         add->next  = prev->next;
         prev->next = add;
+        *reassemblyMemory += added;
     }
     return 1;
 }
@@ -2557,6 +2589,7 @@ static int CheckSequence(IpInfo* ipInfo, TcpInfo* tcpInfo,
     
     TraceSequence(tcpInfo->sequence, *sslBytes);
     if (CheckAck(tcpInfo, session) < 0) {
+        UpdateMissedDataSessions();
         SetError(ACK_MISSED_STR, error, session, FATAL_ERROR_STATE);
         return -1;
     }
@@ -2664,6 +2697,8 @@ static int HaveMoreInput(SnifferSession* session, const byte** sslFrame,
                            &session->sslClient->buffers.inputBuffer.bufferSize;
     SSL*               ssl  = (session->flags.side == WOLFSSL_SERVER_END) ?
                             session->sslServer : session->sslClient;
+    word32*     reassemblyMemory = (session->flags.side == WOLFSSL_SERVER_END) ?
+                  &session->cliReassemblyMemory : &session->srvReassemblyMemory;
     
     while (*front && ((*front)->begin == *expected) ) {
         word32 room = *bufferSize - *length;
@@ -2687,6 +2722,8 @@ static int HaveMoreInput(SnifferSession* session, const byte** sslFrame,
             
             /* remove used packet */
             *front = (*front)->next;
+
+            *reassemblyMemory -= packetLen;
             FreePacketBuffer(del);
             
             moreInput = 1;
@@ -3016,14 +3053,28 @@ int ssl_GetSessionStats(unsigned int* active,     unsigned int* total,
 {
     int ret;
 
-    LockMutex(&RecoveryMutex);
-
-    if (missedData)
+    if (missedData) {
+        LockMutex(&RecoveryMutex);
         *missedData = MissedDataSessions;
-    if (reassemblyMem)
-        *reassemblyMem = ReassemblyMemory;
+        UnLockMutex(&RecoveryMutex);
+    }
 
-    UnLockMutex(&RecoveryMutex);
+    if (reassemblyMem) {
+        SnifferSession* session;
+        int i;
+
+        *reassemblyMem = 0;
+        LockMutex(&SessionMutex);
+        for (i = 0; i < HASH_SIZE; i++) {
+            session = SessionTable[i];
+            while (session) {
+                *reassemblyMem += session->cliReassemblyMemory;
+                *reassemblyMem += session->srvReassemblyMemory;
+                session = session->next;
+            }
+        }
+        UnLockMutex(&SessionMutex);
+    }
 
     ret = wolfSSL_get_session_stats(active, total, peak, maxSessions);
 
diff --git a/wolfssl/sniffer_error.h b/wolfssl/sniffer_error.h
index e459ec858..2277c32bf 100644
--- a/wolfssl/sniffer_error.h
+++ b/wolfssl/sniffer_error.h
@@ -110,6 +110,7 @@
 #define NO_SECURE_RENEGOTIATION 75
 
 #define BAD_SESSION_STATS 76
+#define REASSEMBLY_MAX_STR 77
 /* !!!! also add to msgTable in sniffer.c and .rc file !!!! */
 
 
diff --git a/wolfssl/sniffer_error.rc b/wolfssl/sniffer_error.rc
index 8b942b257..bba88271b 100644
--- a/wolfssl/sniffer_error.rc
+++ b/wolfssl/sniffer_error.rc
@@ -92,5 +92,6 @@ STRINGTABLE
     75, "Secure Renegotiation Not Supported"
 
     76, "Get Session Stats Failure"
+    77, "Reassembly Buffer Size Exceeded"
 }