ASN, GeoIP: skip option template records

AdamZvara · sedmicha · commit 34870c781cec · 2025-03-04T15:53:19.000+01:00
diff --git a/src/plugins/intermediate/asn/asn.c b/src/plugins/intermediate/asn/asn.c
@@ -275,7 +275,7 @@ process_session(ipx_ctx_t *ctx, ipx_modifier_t *modifier, ipx_msg_session_t *msg
  * \param[in] msg IPFIX message
  * \return Estimated size
  */
-int
+static inline int
 estimate_new_length(ipx_msg_ipfix_t *msg)
 {
     const struct fds_ipfix_msg_hdr *hdr = (struct fds_ipfix_msg_hdr *) ipx_msg_ipfix_get_packet(msg);
@@ -300,7 +300,7 @@ estimate_new_length(ipx_msg_ipfix_t *msg)
  * \return #IPX_ERR_ARG on invalid arguments
  * \return #IPX_ERR_NOMEM on memory allocation error
  */
-int
+static int
 ipfix_add_session(ipx_ctx_t *ctx, ipx_modifier_t *modifier, ipx_msg_ipfix_t *msg)
 {
     int rc;
@@ -344,7 +344,7 @@ ipfix_add_session(ipx_ctx_t *ctx, ipx_modifier_t *modifier, ipx_msg_ipfix_t *msg
  * \return #IPX_ERR_ARG on invalid arguments
  * \return #IPX_ERR_NOMEM on memory allocation error
  */
-int
+static int
 ipfix_start_builder(ipx_ctx_t *ctx, ipx_msg_builder_t *builder,
     const struct fds_ipfix_msg_hdr *hdr, const size_t maxsize)
 {
@@ -369,6 +369,39 @@ ipfix_start_builder(ipx_ctx_t *ctx, ipx_msg_builder_t *builder,
     return IPX_OK;
 }
 
+/**
+ * \brief Add record to new message in builder
+ *
+ * \param[in] ctx     Plugin context
+ * \param[in] builder Message builder
+ * \param[in] rec     Data record
+ * \return
+ */
+static int
+add_record_to_builder(ipx_ctx_t *ctx, ipx_msg_builder_t *builder, const struct fds_drec *rec)
+{
+    // Store modified record in builder
+    int rc = ipx_msg_builder_add_drec(builder, rec);
+
+    if (rc) {
+        switch(rc) {
+            case IPX_ERR_DENIED:
+                // Exceeded builder limit
+                IPX_CTX_ERROR(ctx, "Exceeded message builder limit", __FILE__, __LINE__);
+                return rc;
+            case IPX_ERR_NOMEM:
+                IPX_CTX_ERROR(ctx, "Memory allocation error (%s:%d)", __FILE__, __LINE__);
+                return rc;
+            default:
+                IPX_CTX_ERROR(ctx, "Unexpected error from ipx_modifier_add_session (%s:%d)",
+                    __FILE__, __LINE__);
+                return rc;
+        }
+    }
+
+    return IPX_OK;
+}
+
 /**
  * \brief Process IPFIX message
  *
@@ -411,34 +444,32 @@ process_ipfix(ipx_ctx_t *ctx, ipx_modifier_t *modifier, ipx_msg_builder_t *build
     for (uint32_t i = 0; i < rec_cnt; i++) {
         rec = ipx_msg_ipfix_get_drec(msg, i);
 
+        if (rec->rec.tmplt->type == FDS_TYPE_TEMPLATE_OPTS) {
+            // Options template found ... just add it into new message
+            if (add_record_to_builder(ctx, builder, &(rec->rec)) != IPX_OK) {
+                // Error ... proper message has been already printed
+                return rc;
+            }
+            continue;
+        }
+
         // Modify record
         modified_rec = ipx_modifier_modify(modifier, &(rec->rec), &ipfix_garbage);
         if (ipfix_garbage) {
             ipx_ctx_msg_pass(ctx, ipx_msg_garbage2base(ipfix_garbage));
         }
         if (!modified_rec) {
-            // Proper message has been already printed
+            // Error ... proper message has been already printed
             return IPX_ERR_DENIED;
         }
 
-        // Store modified record in builder
-        rc = ipx_msg_builder_add_drec(builder, modified_rec);
-
-        if (rc) {
-            switch(rc) {
-                case IPX_ERR_DENIED:
-                    // Exceeded builder limit
-                    IPX_CTX_ERROR(ctx, "Exceeded message builder limit", __FILE__, __LINE__);
-                    return rc;
-                case IPX_ERR_NOMEM:
-                    IPX_CTX_ERROR(ctx, "Memory allocation error (%s:%d)", __FILE__, __LINE__);
-                    return rc;
-                default:
-                    IPX_CTX_ERROR(ctx, "Unexpected error from ipx_modifier_add_session (%s:%d)",
-                        __FILE__, __LINE__);
-                    return rc;
-            }
+        // Add modified record to new message
+        rc = add_record_to_builder(ctx, builder, modified_rec);
+        if (rc != IPX_OK) {
+            // Error ... proper message has been already printed
+            return rc;
         }
+
         free(modified_rec->data);
         free(modified_rec);
     }
diff --git a/src/plugins/intermediate/geoip/geoip.c b/src/plugins/intermediate/geoip/geoip.c
@@ -470,6 +470,39 @@ ipfix_start_builder(ipx_ctx_t *ctx, ipx_msg_builder_t *builder,
     return IPX_OK;
 }
 
+/**
+ * \brief Add record to new message in builder
+ *
+ * \param[in] ctx     Plugin context
+ * \param[in] builder Message builder
+ * \param[in] rec     Data record
+ * \return
+ */
+static int
+add_record_to_builder(ipx_ctx_t *ctx, ipx_msg_builder_t *builder, const struct fds_drec *rec)
+{
+    // Store modified record in builder
+    int rc = ipx_msg_builder_add_drec(builder, rec);
+
+    if (rc) {
+        switch(rc) {
+            case IPX_ERR_DENIED:
+                // Exceeded builder limit
+                IPX_CTX_ERROR(ctx, "Exceeded message builder limit", __FILE__, __LINE__);
+                return rc;
+            case IPX_ERR_NOMEM:
+                IPX_CTX_ERROR(ctx, "Memory allocation error (%s:%d)", __FILE__, __LINE__);
+                return rc;
+            default:
+                IPX_CTX_ERROR(ctx, "Unexpected error from ipx_modifier_add_session (%s:%d)",
+                    __FILE__, __LINE__);
+                return rc;
+        }
+    }
+
+    return IPX_OK;
+}
+
 /**
  * \brief Process IPFIX message
  *
@@ -512,6 +545,15 @@ process_ipfix(ipx_ctx_t *ctx, ipx_modifier_t *modifier, ipx_msg_builder_t *build
     for (uint32_t i = 0; i < rec_cnt; i++) {
         rec = ipx_msg_ipfix_get_drec(msg, i);
 
+        if (rec->rec.tmplt->type == FDS_TYPE_TEMPLATE_OPTS) {
+            // Options template found ... just add it into new message
+            if (add_record_to_builder(ctx, builder, &(rec->rec)) != IPX_OK) {
+                // Error ... proper message has been already printed
+                return rc;
+            }
+            continue;
+        }
+
         // Modify record
         modified_rec = ipx_modifier_modify(modifier, &(rec->rec), &ipfix_garbage);
         if (ipfix_garbage) {
@@ -522,24 +564,13 @@ process_ipfix(ipx_ctx_t *ctx, ipx_modifier_t *modifier, ipx_msg_builder_t *build
             return IPX_ERR_DENIED;
         }
 
-        // Store modified record in builder
-        rc = ipx_msg_builder_add_drec(builder, modified_rec);
-
-        if (rc) {
-            switch(rc) {
-                case IPX_ERR_DENIED:
-                    // Exceeded builder limit
-                    IPX_CTX_ERROR(ctx, "Exceeded message builder limit", __FILE__, __LINE__);
-                    return rc;
-                case IPX_ERR_NOMEM:
-                    IPX_CTX_ERROR(ctx, "Memory allocation error (%s:%d)", __FILE__, __LINE__);
-                    return rc;
-                default:
-                    IPX_CTX_ERROR(ctx, "Unexpected error from ipx_modifier_add_session (%s:%d)",
-                        __FILE__, __LINE__);
-                    return rc;
-            }
+        // Add modified record to new message
+        rc = add_record_to_builder(ctx, builder, modified_rec);
+        if (rc != IPX_OK) {
+            // Error ... proper message has been already printed
+            return rc;
         }
+
         free(modified_rec->data);
         free(modified_rec);
     }
