[ADD] made code event based, changed code style

the openflow framework does now use events to signal
the success or failure of openflow commands, further
the reporter framework is used to log errors.

added bro unique cookie, so the framework can recognize
which flows it installed and which not.

documented all of the code.

the code style should now me more like the rest of the
bro code.

scripts/site/openflow-shunt.bro

@@ -12,6 +12,7 @@ module OpenflowShunt;
 
 
 # default constants which are not automatically gathered.
+redef Openflow::controller_ip = "10.255.0.20";
 const dpid = 4222282094087168;
 const cookie = 0;
 const idle_timeout = 30;
@@ -34,7 +35,8 @@ export {
 	global shunt_triggered: event(c: connection);
 }
 
-function size_callback(c: connection, cnt: count): interval	{
+function size_callback(c: connection, cnt: count): interval
+	{
 	# print flow traffic.
 	print fmt(
 		"%s:%s <-> %s:%s reached %s/%s",
@@ -46,17 +48,20 @@ function size_callback(c: connection, cnt: count): interval	{
 		size_threshold
 	);
 	# if traffic exceeds the given threshold, remove flow.
-	if ( c$orig$num_bytes_ip + c$resp$num_bytes_ip >= size_threshold ) {
+	if ( c$orig$num_bytes_ip + c$resp$num_bytes_ip >= size_threshold )
+		{
 		# create openflow flow_mod add records from connection data and given default constants
 		local actions: vector of Openflow::ofp_action_output;
+		local reverse_actions: vector of Openflow::ofp_action_output;
 		actions[|actions|] = Openflow::ofp_action_output($_port=out_port);
+		reverse_actions[|reverse_actions|] = Openflow::ofp_action_output($_port=in_port);
 		# flow layer 4 protocol
 		local nw_proto = Openflow::IP_TCP;
-		if(is_udp_port(c$id$orig_p)) {
+		if(is_udp_port(c$id$orig_p))
 			nw_proto = Openflow::IP_UDP;
-		} else if(is_icmp_port(c$id$orig_p)) {
+		else if(is_icmp_port(c$id$orig_p))
 			nw_proto = Openflow::IP_ICMP;
-		}
+
 		local match: Openflow::ofp_match = [
 			$in_port=in_port,
 			$nw_src=c$id$orig_h,
@@ -65,10 +70,19 @@ function size_callback(c: connection, cnt: count): interval	{
 			$tp_src=c$id$orig_p,
 			$tp_dst=c$id$resp_p
 		];
+
+		local reverse_match: Openflow::ofp_match = [
+			$in_port=out_port,
+			$nw_src=c$id$resp_h,
+			$nw_dst=c$id$orig_h,
+			$nw_proto=nw_proto,
+			$tp_src=c$id$resp_p,
+			$tp_dst=c$id$orig_p
+		];
+
 		local command = Openflow::OFPFC_ADD;
-		if(delete_flow) {
+		if(delete_flow)
 			command = Openflow::OFPFC_DELETE;
-		}
 		local flow_mod: Openflow::ofp_flow_mod = [
 			$match=match,
 			$cookie=cookie,
@@ -77,26 +91,51 @@ function size_callback(c: connection, cnt: count): interval	{
 			$hard_timeout=hard_timeout,
 			$actions=actions
 		];
+		local reverse_flow_mod: Openflow::ofp_flow_mod = [
+			$match=reverse_match,
+			$cookie=cookie,
+			$command=command,
+			$idle_timeout=idle_timeout,
+			$hard_timeout=hard_timeout,
+			$actions=reverse_actions
+		];
 
 		# call openflow framework
-		when ( local result = Openflow::flow_mod(dpid, flow_mod) ) {
-			if(result) {
-				event OpenflowShunt::shunt_triggered(c);
+		if(Openflow::flow_mod(dpid, flow_mod) && Openflow::flow_mod(dpid, reverse_flow_mod)) {
+			event shunt_triggered(c);
+		}
+
+		if(delete_flow)
+			{
+			delete_flow = F;
+			return -1sec;
+			}
+		else
+			{
+			delete_flow = T;
+			return 15sec;
 			}
 		}
 
-		if(delete_flow) {
-			return -1sec;
-		} else {
-			delete_flow = T;
-			return 15sec;
-		}
+	return poll_interval;
 	}
 
-	return poll_interval;
-}
-
-event connection_established(c: connection) {
+event connection_established(c: connection)
+	{
 	print fmt("new connection");
 	ConnPolling::watch(c, size_callback, 0, 0secs);
-}
+	}
+
+event Openflow::flow_mod_success(flow_mod: Openflow::ofp_flow_mod, msg: string)
+	{
+	print fmt("succsess, %s", cat(flow_mod));
+	}
+
+event Openflow::flow_mod_failure(flow_mod: Openflow::ofp_flow_mod, msg: string)
+	{
+	print fmt("failed, %s", cat(flow_mod));
+	}
+event Openflow::ryu_error(flow_mod: Openflow::ofp_flow_mod, error: Openflow::RyuError, msg: string)
+	{
+	print fmt("ERROR: %s, msg: %s\n%s", error, msg, flow_mod);
+	}