Skip to content

cerfcast/teaparty

BranchesTags

Repository files navigation

Teaparty

An open source implementation of the Simple Two-Way Active Measurement Protocol (RFC 8762). Most of the documentation here is Teaparty specific. However, see STAMP Protocol for documentation about what is available in this repository that is useful for anyone working with the STAMP protocol.

Building

Note well: Compilation has only been testing on Linux-based systems (specifically Fedora Core 39+). Your mileage may vary, and patches are definitely welcome!

After cloning the repository, make sure to initialize the git submodules:

$ git submodule update --init --recursive

After that, it should be as easy as

$ cargo build

Running

teaparty has both a reflector and a sender mode. The sender mode is developed/maintained for the purposes of testing interoperability.

Reflector

Because the Reflector listens on a privileged port by default, it requires root privileges to run (see below for ways to customize the teaparty startup).

$ sudo teaparty reflector

is the fastest way to get started. With the exception of specifying the debugging level and IP/port on which Teaparty should listen, all configuration is done using a YAML-based configuration file. To specify that Teaparty should read its Reflector configuration from a file, use the --config command-line option.

Configuration File Format

The Reflector's configuration file is formatted according to the YAML specification and its contents must be a sequence of nodes, each of which is a mapping with exactly one key/value pair. The key in each of the single key/value pairs in each mapping defines the component configured by that value of that mapping. Components that can be configured: general.

Below is documentation on how to configure each of the components of the Reflector using the configuration file:

Component Key Description Value
general stateless Controls whether the Reflector operates in stateful or stateless mode. A YAML scalar with boolean type (i.e., true or false) that defaults to false.
heartbeat Controls list of hearbeat targets to which the Reflector will send messages. A YAML sequence of nodes, each of which are YAML scalar values with string type that match the format IP:PORT@S, where the IP:PORT is an IP address (either v4 or v6) and a port and S is the interval (in seconds) at which to send heartbeats. The default is an empty list.
link_layer Whether the Reflector should run in link-layer mode. A YAML scalar with boolean type (i.e., true or false) that defaults to false.
meta_addr Specify the address on which the meta RESTful interface will listen. A YAML mapping with (optionally) ip and/or port keys (and string and i64 type, respectively) whose values set the IP address and port number on which the meta interface will listen. By default, the meta interface will listen on the same address as the STAMP Reflector on port 8000. Default values are used when meta_addr is not specified or it is specified but either/both ip and port keys are missing.

As an example, here is a valid configuration file that configures the Reflector to

  1. Not operate in stateful mode;
  2. Send heartbeat packets to 8.8.8.8 (port 863) and 1.1.1.1 (port 865) at intervals of 3 and 5 seconds, respectively; and
  3. Listen for meta RESTful connections on port 8765 of the IP address 127.1.1.1.
- general:
    stateless: true
    heartbeat: [8.8.8.8:863@3, 1.1.1.1:865@5]
    meta_addr:
      ip: 127.1.1.1
      port: 8765

Some TLVs (see below) need access to link-layer information about the test packet. Capturing such information is not possible using traditional BSD-socket-like methods. When the Reflector runs in link-layer mode, it will listen for test packets by acting as a packet capturing system. While this feature will allow the Reflector to handle more TLVs, it may also cause additional overhead.

Monitoring

By default, the Reflector will launch a RESTful API on the localhost on port 8000 on the same IP address as the STAMP server is configured. Customization of that address is available with meta_addr in the configuration file (see above). It supports the following endpoints:

/heartbeats

Will return information about the configured heartbeat targets:

$ curl http://127.0.0.1:8000/heartbeats

Sample output:

[
  {
    "target": "8.8.8.8:8620",
    "interval": {
      "secs": 5,
      "nanos": 0
    }
  }
]

/sessions

Will return information about the currently active sessions:

$ curl 127.0.0.1:8000/sessions

Sample output:

[
  {
    "id": {
      "src": "127.0.0.1:5001",
      "dst": "0.0.0.0:862",
      "ssid": {
        "Ssid": 5
      }
    },
    "data": {
      "sequence": 1,
      "reference_count": 0,
      "last": {
        "secs_since_epoch": 1751335070,
        "nanos_since_epoch": 614552045
      },
      "key": [
        116,
        101,
        115,
        116,
        105,
        110,
        103
      ],
      "ssid": {
        "Mbz": {}
      },
      "history": {
        "history": [
          {
            "sequence": 1,
            "sender_sequence": 34,
            "received_time": {
              "seconds": 3960323870,
              "fractions": 2637543230
            },
            "sender_time": {
              "seconds": 3960323870,
              "fractions": 2636593127
            },
            "sent_time": {
              "seconds": 3960323870,
              "fractions": 2640255978
            }
          }
        ],
        "latest": 0
      }
    }
  }
]

More endpoints are planned. Endpoints that control and not just monitor the Reflector are planned, too.

Configuring

/session

Will add a new active session, if possible. A request to create a new session (a session request) requires

  • a source of test packets: src_ip: a string; src_port: a number
  • a destination of test packets (i.e., the reflector): src_ip: a string; src_port: a number
  • a key used for validating authenticated test packets: key: a string
  • a session ID: ssid: a number

Upon POSTing a JSON object with the fields above, the server will respond with:

  • 500: The session could not be created (most likely because a session with the requested parameters exists)
  • 200: The sesion was created (and the body of the response will be the POSTed JSON for confirmation)

Sender

The Sender has a variety of options that are useful for testing implementations of a STAMP-compliant Reflector:

Usage: teaparty sender [OPTIONS] [COMMAND]

Commands:
  tlvs  
  help  Print this message or the help of the given subcommand(s)

Options:
      --ssid <SSID>
          Specify a non-zero Ssid (in decimal or hexadecimal [by using the 0x prefix])
      --malformed <MALFORMED>          Include a malformed Tlv in the test packet [possible values: bad-flags, bad-length]
      --ecn <ECN>                      Enable a non-default ECN for testing [possible values: not-ect, ect1, ect0, ce]
      --dscp <DSCP>                    Enable a non-default DSCP for testing [possible values: cs0, cs1, cs2, cs3, cs4, cs5, cs6, cs7, af11, af12, af13, af21, af22, af23, af31, af32, af33, af41, af42, af43, ef, voiceadmit]
      --ttl <TTL>                      Enable a non-default TTL for testing
      --src-port <SRC_PORT>
          Enable a non-operating-system chosen source port for the test packet
      --authenticated <AUTHENTICATED>  
      --destination-ext <DESTINATION_EXT>
          Add an IPv6 Extension Header option to the Destination Extension Header (specified as T,L[,V])
      --hbh-ext <HBH_EXT>
          Add an IPv6 Extension Header option to the Hop-by-hop Extension Header (specified as T,L[,V])
  -h, --help                           Print help

The --src-port option is useful for testing the statefulness of the Reflector. The --malformed option is useful for testing the Reflector's error handling. The --ecn and --dscp will set the TOS fields of the IP packet of the test packet with the values specified. -- useful for testing the Reflector's implementation of the TLVs related to quality of service. Omitting either of those options means that the test packet will have neither DSCP nor ECN values set in the IP header. Setting the --authenticated flag will cause the sender to operate in Authenticated Mode and use <AUTHENTICATED> as the key for generating the test packet's HMAC.

The --destination-ext and --hbh-ext options are useful for testing STAMP extensions that reflect IPv6 Extension Headers. The option is only valid when the STAMP test packet is being sent using IPv6. The options will add an IPv6 extension header option to the Destination/Hob-by-hop extension header of the STAMP test packet. These options can be given more than once. The contents of the option are specified as T,L[,V] (no spaces) where T is the option type, L is the option length and (optionally) V is a pattern for the bytes in the body. For example,

$ ./teaparty ::1 sender --destination-ext 3,4,7 --hbh-ext 3,4,9

will generate a STAMP test packet with

  • a Hop-by-hop IPv6 extension header with a single TLV option of type 3 whose body is 0x090x090x090x09;
  • a Destination IPv6 extension header with a single TLV option of type 3 whose body is 0x070x070x070x07.

The tlvs subcommand will put TLVs into the test packet.

Usage: teaparty sender tlvs [COMMAND]

Commands:
  time               
  destination-port   
  destination-address
  class-of-service   
  location           
  unrecognized       
  padding            
  access-report      
  history            
  followup           
  reflected-control  
  hmac
  bit-error-rate
  v6-extension-header-reflection  
  return-path
  help               Print this message or the help of the given subcommand(s)

Options:
  -h, --help  Print help
Name TLV Defaults/Notes
class-of-service Class of Service The DSCP value requested to be set in the reflected IP packet can be specified with the --dscp option. By default, the requested value is CS1. The ECN value requested to be set in the reflected IP packet can be specified with the --ecn option. By default, the requested value is not-ect.
time Timestamp All fields empty (see RFC 8972)
destination-port Destination Port To request the reflector send the reflected packet to a port different than the one on which the test packet is received, set --port. By default, the value is 983.
destination-address Destination Address The IP Address used as the value of the TLV can be specified using the --address parameter.
location Location A Source IP Address sub-TLV
unrecognized Special Will include a TLV whose type is unrecognized
padding Padding Will pad out a STAMP packet with 64 bytes (by default); customize with the -s option
history History Will include a TLV that requests information about the previous N reflected packets in the current session (defaults to 3; customize with --length)
reflected-control Reflected Test Packet Control Will include a TLV that manipulates the size, quantity and frequency of responses from the reflector (customize with --reflected-length, --count and --interval, respectively).
hmac HMAC TLV Will include a TLV that contains a HMAC (calculated using the key for authenticating the base STAMP packet [see --authenticated, above]) to verify integrity of TLV data.
bit-error-rate Bit Error Rate and Bit Error Detection Will include a TLV that can be used to (detect and) measure a path's bit error rate using a pattern of bytes spread over a given size (customize with --pattern and -size, respectively).
v6-extension-header-reflection Reflected IPv6 Extension Header Data -size specifies the size of the TLV which, in turn, will be used by the reflector to select the IPv6 extension header to reflect.
return-path Return Path --address the address the reflector will use as the destination of the reflected packet.

Example:

$ teaparty 127.0.0.1 sender  --dscp ef tlvs class-of-service

will send a STAMP test packet to a Reflector running on localhost that contains a Class of Service TLV (with the requested value of the reflected packet's IP headerDSCP field set to CS1) with the test IP packet's DSCP value set to EF.

It is possible to put more than one TLV into a test packet by separating multiple instances of the tlvs subcommand with the --.

Example:

$ 127.0.0.1 sender --ecn ect1 --dscp af11 tlvs time -- class-of-service --ecn ect0 --dscp af21

will send a STAMP test packet to a Reflector running on localhost that contains a Timestamp TLV, a Class-of-Service TLV (requesting that the reflected IP packet's headers have DSCP and ECN fields set to AF21 and ECT0, respectively), and with the test IP packet's ECN and DSCP values set to ECT1 and AF11, respectively.

Contributing

We would love to have you contribute. We love contributors, big and small and everywhere in between. If you would like to learn more about how to work with us, just open an issue!

Conformance Status

RFC 8762

Feature Supported
Unauthenticated STAMP messages (reflector)
Unauthenticated STAMP messages (sender)
Authenticated STAMP messages (reflector)
Authenticated STAMP messages (sender)
Stateful (reflector)

RFC 8972

TLV Supported
Extra Padding (reflector)
Extra Padding (sender)
Location (reflector)
Location (sender)
Timestamp (reflector)
Timestamp (sender)
Class of service (reflector)
Class of service (sender)
Direct measurement (reflector)
Direct measurement (sender)
Access report (reflector)
Access report (sender)
Follow-up Telemetry (reflector)
Follow-up Telemetry (sender)
HMAC (reflector)
HMAC (sender)

RFC 9503

TLV Supported
Destination Node Address TLV (sender)
Destination Node Address TLV (reflector)
Return Path TLV (sender - return address sub-TLV)
Return Path TLV (reflector - return address sub-TLV)
Return Path TLV (sender - return path control code and segment list sub-TLVs)
Return Path TLV (sender - return path control code and segment list sub-TLVs)

Yet-to-be-standardized TLVs

TLV Supported
Heartbeat (reflector)
Heartbeat (sender)
Destination port (reflector)
Destination port (sender)
History (reflector)
History (sender)
Reflected Test Packet Control (RFC) ✅ (more testing required, but support starting in 48c274b)
Bit Error Detection and Bit Error Rate (RFC) ✅ (more work required for complete implementation, but support starting in 592558a)1
Simple Two-Way Active Measurement Protocol (STAMP) Extensions for Reflecting STAMP Packet IP Headers (RFC) ✅ (more work required for complete implementation, but support starting in aa7cdb7)2

Testing

In addition to unit tests, there are tools for end-to-end tests in the testing_data directory. See testing_data/README.md for more information.

STAMP Protocol

There is early work on a YANG model for the configuration of a Session Sender and/or Reflector in the yang directory. Start with yang/yang.md if you are interested in contributing -- and, yes, we would love it!

There is a Lua-based STAMP dissector for Wireshark in the wireshark directory. There are usage instructions and other details for potential contributors in wireshark/README.md. Again, we would love contributors!

Footnotes

  1. Note: The BER TLV has been temporarily assigned 181 and 182 for TLV Type for the Count and Pattern, respectively. The implementation will be updated as the Draft changes.

  2. Note: The Reflected IPv6 Extension Header Data TLV has been temporarily assigned 183 for TLV Type. The implementation will be updated as the Draft changes.

About

An implementation of the STAMP protocol (RFC 8762/8972)

Resources

Readme

License

GPL-3.0 license
Activity
Custom properties

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages