use user-agent for searching a client

Author: avbelov23

tempesta_fw/client.c

@@ -83,16 +83,16 @@ tfw_client_addr_eq(TdbRec *rec, void *data)
 }
 
 /**
- * Find a client corresponding to @addr and @cli_addr (e.g. from X-Forwarded-For).
- * More advanced identification is possible based on User-Agent,
- * Cookie and other HTTP headers.
+ * Find a client corresponding to @addr, @cli_addr (e.g. from X-Forwarded-For)
+ * and @user_agent.
  *
  * The returned TfwClient reference must be released via tfw_client_put()
  * when the @sk is closed.
  * TODO #515 employ eviction strategy for the table
  */
 TfwClient *
-tfw_client_obtain(TfwAddr addr, TfwAddr *cli_addr, void (*init)(TfwClient *))
+tfw_client_obtain(TfwAddr addr, TfwAddr *cli_addr, TfwStr *user_agent,
+		  void (*init)(TfwClient *))
 {
 	TfwClientEntry *ent;
 	TfwClient *cli;
@@ -109,6 +109,12 @@ tfw_client_obtain(TfwAddr addr, TfwAddr *cli_addr, void (*init)(TfwClient *))
 	if (cli_addr)
 		key ^= hash_calc((const char *)&cli_addr->sin6_addr,
 				 sizeof(cli_addr->sin6_addr));
+	if (user_agent) {
+		char buf[256];
+		size_t len = tfw_str_to_cstr(user_agent, buf, sizeof(buf));
+
+		key ^= hash_calc(buf, len);
+	}
 
 	len = sizeof(*ent);
 	rec = tdb_rec_get_alloc(client_db, key, &len, &tfw_client_addr_eq,

tempesta_fw/client.h

@@ -40,7 +40,8 @@ typedef struct {
 	TfwClassifierPrvt	class_prvt;
 } TfwClient;
 
-TfwClient *tfw_client_obtain(TfwAddr addr, TfwAddr *cli_addr, void (*init)(TfwClient *));
+TfwClient *tfw_client_obtain(TfwAddr addr, TfwAddr *cli_addr,
+			     TfwStr *user_agent, void (*init)(TfwClient *));
 void tfw_client_put(TfwClient *cli);
 int tfw_client_for_each(int (*fn)(void *));
 void tfw_cli_conn_release(TfwCliConn *cli_conn);

tempesta_fw/http.c

@@ -2855,7 +2855,7 @@ tfw_http_req_process(TfwConn *conn, const TfwFsmData *data)
 	TfwHttpParser *parser;
 	TfwFsmData data_up;
 	TfwAddr addr;
-	TfwStr s_ip;
+	TfwStr s_ip, s_user_agent;
 
 	BUG_ON(!conn->msg);
 	BUG_ON(off >= skb->len);
@@ -2962,12 +2962,17 @@ tfw_http_req_process(TfwConn *conn, const TfwFsmData *data)
 	s_ip = tfw_http_get_ip_from_xff(req);
 	if (!TFW_STR_EMPTY(&s_ip)) {
 		TfwClient *cli, *conn_cli;
+		TfwStr *ua;
 
 		if (tfw_addr_pton(&s_ip, &addr) != 0)
 			return TFW_BLOCK;
 
 		conn_cli = (TfwClient *)conn->peer;
-		cli = tfw_client_obtain(conn_cli->addr, &addr, NULL);
+		ua = &req->h_tbl->tbl[TFW_HTTP_HDR_USER_AGENT];
+		tfw_http_msg_clnthdr_val(ua, TFW_HTTP_HDR_USER_AGENT,
+					 &s_user_agent);
+		cli = tfw_client_obtain(conn_cli->addr, &addr, &s_user_agent,
+					NULL);
 		if (cli && cli != conn_cli)
 			req->peer = cli;
 		else

tempesta_fw/http_limits.c

@@ -338,7 +338,7 @@ frang_conn_new(struct sock *sk)
 	TfwAddr addr;
 
 	ss_getpeername(sk, &addr);
-	cli = tfw_client_obtain(addr, NULL, __frang_init_acc);
+	cli = tfw_client_obtain(addr, NULL, NULL, __frang_init_acc);
 	if (unlikely(!cli)) {
 		TFW_ERR("can't obtain a client for frang accounting\n");
 		return TFW_BLOCK;

tempesta_fw/sock_clnt.c

@@ -160,7 +160,7 @@ tfw_sock_clnt_new(struct sock *sk)
 	tfw_connection_unlink_from_sk(sk);
 
 	ss_getpeername(sk, &addr);
-	cli = tfw_client_obtain(addr, NULL, NULL);
+	cli = tfw_client_obtain(addr, NULL, NULL, NULL);
 	if (!cli) {
 		TFW_ERR("can't obtain a client for the new socket\n");
 		return -ENOENT;