165 lines
5.9 KiB
Plaintext
165 lines
5.9 KiB
Plaintext
#include "TCPServer.h"
|
|
#include "EPoll.h"
|
|
#include "TCPSession.h"
|
|
#include "Exception.h"
|
|
#include "Log.h"
|
|
|
|
namespace core {
|
|
|
|
TCPServer::TCPServer(EPoll &ePoll, IPAddress address, std::string delimiter, int depth, std::string text)
|
|
: TCPSocket(ePoll, text), commands(delimiter, depth) {
|
|
|
|
commands.add(subscriptions, "publish");
|
|
commands.add(subscriptions, "unpublish");
|
|
commands.add(subscriptions, "subscribe");
|
|
commands.add(subscriptions, "unsubscribe");
|
|
commands.add(subscriptions, "catalog");
|
|
commands.add(subscriptions, "event");
|
|
|
|
setDescriptor(socket(AF_INET, SOCK_STREAM, 0));
|
|
int yes = 1;
|
|
setsockopt(getDescriptor(), SOL_SOCKET, SO_REUSEADDR, &yes, sizeof(int));
|
|
|
|
if(bind(getDescriptor(), address.getPointer(), address.addressLength) < 0)
|
|
throw coreutils::Exception("Error on bind to socket: " + std::to_string(errno));
|
|
|
|
if(listen(getDescriptor(), 20) < 0)
|
|
throw coreutils::Exception("Error on listen to socket");
|
|
|
|
if(tls)
|
|
tls->tlsServer();
|
|
|
|
}
|
|
|
|
TCPServer::~TCPServer() {
|
|
coreutils::Log(coreutils::LOG_DEBUG_2) << "Closing server socket " << getDescriptor() << ".";
|
|
close(getDescriptor());
|
|
}
|
|
|
|
void TLS::tlsServer()
|
|
{
|
|
|
|
|
|
SSL_library_init();
|
|
SSL_load_error_strings();
|
|
|
|
lockarray = (pthread_mutex_t *)OPENSSL_malloc(CRYPTO_num_locks() * sizeof(pthread_mutex_t));
|
|
for(int i = 0; i < CRYPTO_num_locks(); ++i)
|
|
pthread_mutex_init(&(lockarray[i]), NULL);
|
|
|
|
CRYPTO_set_id_callback((unsigned long (*)())thread_id);
|
|
CRYPTO_set_locking_callback((void (*)(int, int, const char *, int))lock_callback);
|
|
|
|
SSLeay_add_ssl_algorithms();
|
|
RAND_load_file("/dev/hwrng", 1024);
|
|
|
|
if(!(ctx = SSL_CTX_new(SSLv23_server_method())))
|
|
throw coreutils::Exception("Error while setting server method SSLv23.");
|
|
SSL_CTX_set_mode(ctx, SSL_MODE_RELEASE_BUFFERS | SSL_MODE_ACCEPT_MOVING_WRITE_BUFFER);
|
|
SSL_CTX_set_options(ctx, SSL_OP_NO_TICKET);
|
|
SSL_CTX_set_session_cache_mode(ctx, SSL_SESS_CACHE_SERVER);
|
|
// SSL_CTX_set_generate_session_id(ctx, generate_session_id);
|
|
SSL_CTX_set_cipher_list(ctx, "ECDH-ECDSA-AES256-GCM-SHA384:DHE-DSS-AES256-GCM-SHA384:DHE-RSA-AES256-GCM-SHA384:DH$ if(SSL_CTX_use_certificate_file(ctx, sip_cert, SSL_FILETYPE_PEM) <= 0)
|
|
throw coreutils::Exception("Error looking up certificate.");
|
|
if(SSL_CTX_use_PrivateKey_file(ctx, sip_key, SSL_FILETYPE_PEM) < 0)
|
|
throw coreutils::Exception("Error with private key.");
|
|
if(SSL_CTX_check_private_key(ctx) != 1)
|
|
throw coreutils::Exception("Private key does not match certificate.");
|
|
SSL_CTX_set_verify(ctx, SSL_VERIFY_PEER, NULL);
|
|
SSL_CTX_set_verify_depth(ctx, 1);
|
|
if(!SSL_CTX_load_verify_locations(ctx, sip_cacert, NULL))
|
|
throw coreutils::Exception("Cannot verify locations.");
|
|
SSL_CTX_set_client_CA_list(ctx, SSL_load_client_CA_file(sip_cacert));
|
|
coreutils::Log(coreutils::LOG_DEBUG_1) <<
|
|
|
|
void TCPServer::onDataReceived(std::string data) {
|
|
lock.lock();
|
|
TCPSession *session = accept();
|
|
if(session)
|
|
sessions.push_back(session);
|
|
lock.unlock();
|
|
}
|
|
|
|
TCPSession * TCPServer::accept() {
|
|
|
|
try {
|
|
|
|
TCPSession *session = getSocketAccept(ePoll);
|
|
session->setDescriptor(::accept(getDescriptor(), (struct sockaddr *)&session->ipAddress.addr, &session->ipAddress.addressLength));
|
|
// if(blackList && blackList->contains(session->ipAddress.getClientAddress())) {
|
|
// session->shutdown();
|
|
// Log(LOG_WARN) << "Client at IP address " << session->ipAddress.getClientAddress() << " is blacklisted and was denied a connection.";
|
|
// return NULL;
|
|
// }
|
|
// if(whiteList && !whiteList->contains(session->ipAddress.getClientAddress())) {
|
|
// session->shutdown();
|
|
// Log(LOG_WARN) << "Client at IP address " << session->ipAddress.getClientAddress() << " is not authorized and was denied a connection.";
|
|
// return NULL;
|
|
// }
|
|
return session;
|
|
}
|
|
catch(coreutils::Exception e) {
|
|
coreutils::Log(coreutils::LOG_EXCEPT) << "Major error on session initialization. Error is '" << e.text << "'.";
|
|
}
|
|
catch(...) {
|
|
coreutils::Log(coreutils::LOG_EXCEPT) << "Unnspecified error on session initialization.";
|
|
}
|
|
return NULL;
|
|
}
|
|
|
|
void TCPServer::removeFromSessionList(TCPSession *session) {
|
|
std::vector<TCPSession *>::iterator cursor;
|
|
lock.lock();
|
|
for(cursor = sessions.begin(); cursor < sessions.end(); ++cursor)
|
|
if(*cursor == session) {
|
|
sessions.erase(cursor);
|
|
break;
|
|
}
|
|
lock.unlock();
|
|
}
|
|
|
|
void TCPServer::sessionErrorHandler(std::string errorString, std::stringstream &out) {
|
|
throw coreutils::Exception(errorString);
|
|
}
|
|
|
|
TCPSession * TCPServer::getSocketAccept(EPoll &ePoll) {
|
|
return new TCPSession(ePoll, *this);
|
|
}
|
|
|
|
void TCPServer::output(std::stringstream &out) {
|
|
out << "Use the 'help' command to list the commands for this server." << std::endl;
|
|
}
|
|
|
|
int TCPServer::processCommand(coreutils::ZString &request, TCPSession &session) {
|
|
int sequence = 0;
|
|
for(auto *sessionx : sessions) {
|
|
session.out << "|" << ++sequence;
|
|
sessionx->output(session.out);
|
|
session.out << "|" << std::endl;
|
|
}
|
|
return 1;
|
|
}
|
|
|
|
void TCPServer::sendToAll(std::stringstream &data) {
|
|
for(auto session : sessions)
|
|
session->write(data.str());
|
|
data.str("");
|
|
}
|
|
|
|
void TCPServer::sendToAll(std::stringstream &data, TCPSession &sender) {
|
|
for(auto session : sessions)
|
|
if(session != &sender)
|
|
session->write(data.str());
|
|
data.str("");
|
|
}
|
|
|
|
void TCPServer::sendToAll(std::stringstream &data, TCPSession &sender, SessionFilter filter) {
|
|
for(auto session : sessions)
|
|
if(filter.test(*session))
|
|
if(session != &sender)
|
|
session->write(data.str());
|
|
data.str("");
|
|
}
|
|
|
|
}
|