2018-05-28 16:03:39 -04:00
|
|
|
/*******************************************************************************
|
|
|
|
* libretroshare/src/pqi: pqissl.h *
|
|
|
|
* *
|
|
|
|
* libretroshare: retroshare core library *
|
|
|
|
* *
|
2019-05-02 19:27:32 -04:00
|
|
|
* Copyright (C) 2004-2006 Robert Fernie <retroshare@lunamutt.com> *
|
|
|
|
* Copyright (C) 2015-2019 Gioacchino Mazzurco <gio@eigenlab.org> *
|
2018-05-28 16:03:39 -04:00
|
|
|
* *
|
|
|
|
* This program is free software: you can redistribute it and/or modify *
|
|
|
|
* it under the terms of the GNU Lesser General Public License as *
|
|
|
|
* published by the Free Software Foundation, either version 3 of the *
|
|
|
|
* License, or (at your option) any later version. *
|
|
|
|
* *
|
|
|
|
* This program is distributed in the hope that it will be useful, *
|
|
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of *
|
|
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
|
|
|
|
* GNU Lesser General Public License for more details. *
|
|
|
|
* *
|
|
|
|
* You should have received a copy of the GNU Lesser General Public License *
|
|
|
|
* along with this program. If not, see <https://www.gnu.org/licenses/>. *
|
|
|
|
* *
|
|
|
|
*******************************************************************************/
|
2019-05-02 19:27:32 -04:00
|
|
|
#pragma once
|
2007-11-14 22:18:48 -05:00
|
|
|
|
|
|
|
// operating system specific network header.
|
|
|
|
#include "pqi/pqinetwork.h"
|
|
|
|
|
|
|
|
#include <string>
|
|
|
|
#include <map>
|
|
|
|
|
|
|
|
#include "pqi/pqi_base.h"
|
2008-11-09 11:52:14 -05:00
|
|
|
#include "pqi/authssl.h"
|
2007-11-14 22:18:48 -05:00
|
|
|
|
2019-05-14 15:33:08 -04:00
|
|
|
#define RS_PQISSL_AUTH_DOUBLE_CHECK 1
|
2019-05-02 19:27:32 -04:00
|
|
|
|
2019-05-14 15:33:08 -04:00
|
|
|
#define RS_PQISSL_BANLIST_DOUBLE_CHECK 1
|
2019-05-14 08:28:27 -04:00
|
|
|
|
2019-05-02 19:27:32 -04:00
|
|
|
|
2007-11-14 22:18:48 -05:00
|
|
|
#define WAITING_NOT 0
|
2008-02-26 21:32:20 -05:00
|
|
|
#define WAITING_DELAY 1
|
|
|
|
#define WAITING_SOCK_CONNECT 2
|
|
|
|
#define WAITING_SSL_CONNECTION 3
|
|
|
|
#define WAITING_SSL_AUTHORISE 4
|
|
|
|
#define WAITING_FAIL_INTERFACE 5
|
2007-11-14 22:18:48 -05:00
|
|
|
|
|
|
|
#define PQISSL_PASSIVE 0x00
|
|
|
|
#define PQISSL_ACTIVE 0x01
|
|
|
|
|
|
|
|
const int PQISSL_LOCAL_FLAG = 0x01;
|
|
|
|
const int PQISSL_REMOTE_FLAG = 0x02;
|
|
|
|
const int PQISSL_DNS_FLAG = 0x04;
|
|
|
|
|
|
|
|
/* not sure about the value? */
|
|
|
|
const int PQISSL_UDP_FLAG = 0x02;
|
|
|
|
|
2010-11-12 16:05:59 -05:00
|
|
|
/* TCP buffer size for Windows systems */
|
2014-02-10 16:50:59 -05:00
|
|
|
const int WINDOWS_TCP_BUFFER_SIZE = 512 * 1024; // 512 KB
|
2007-11-14 22:18:48 -05:00
|
|
|
|
|
|
|
/***************************** pqi Net SSL Interface *********************************
|
|
|
|
* This provides the base SSL interface class,
|
|
|
|
* and handles most of the required functionality.
|
|
|
|
*
|
|
|
|
* there are a series of small fn's that can be overloaded
|
|
|
|
* to provide alternative behaviour....
|
|
|
|
*
|
|
|
|
* Classes expected to inherit from this are:
|
|
|
|
*
|
|
|
|
* pqissllistener -> pqissllistener (tcp only)
|
|
|
|
* -> pqixpgplistener (tcp only)
|
|
|
|
*
|
|
|
|
* pqissl -> pqissltcp
|
|
|
|
* -> pqissludp
|
|
|
|
* -> pqixpgptcp
|
|
|
|
* -> pqixpgpudp
|
|
|
|
*
|
|
|
|
*/
|
|
|
|
|
|
|
|
class pqissllistener;
|
2011-07-09 14:39:34 -04:00
|
|
|
class p3LinkMgr;
|
2018-10-04 19:55:18 -04:00
|
|
|
struct RsPeerCryptoParams;
|
2007-11-14 22:18:48 -05:00
|
|
|
|
|
|
|
class pqissl: public NetBinInterface
|
|
|
|
{
|
|
|
|
public:
|
2008-01-28 00:40:32 -05:00
|
|
|
pqissl(pqissllistener *l, PQInterface *parent,
|
2011-07-09 14:39:34 -04:00
|
|
|
p3LinkMgr *lm);
|
2007-11-14 22:18:48 -05:00
|
|
|
virtual ~pqissl();
|
|
|
|
|
|
|
|
// NetInterface
|
2013-09-13 10:35:19 -04:00
|
|
|
virtual int connect(const struct sockaddr_storage &raddr);
|
2007-11-14 22:18:48 -05:00
|
|
|
virtual int listen();
|
|
|
|
virtual int stoplistening();
|
|
|
|
virtual int reset();
|
|
|
|
virtual int disconnect();
|
2013-09-13 10:35:19 -04:00
|
|
|
virtual int getConnectAddress(struct sockaddr_storage &raddr);
|
2007-11-14 22:18:48 -05:00
|
|
|
|
2015-09-27 09:11:55 -04:00
|
|
|
virtual bool connect_parameter(uint32_t /*type*/, const std::string & /*value*/) { return false; }
|
2008-02-26 21:32:20 -05:00
|
|
|
virtual bool connect_parameter(uint32_t type, uint32_t value);
|
|
|
|
|
2007-11-14 22:18:48 -05:00
|
|
|
// BinInterface
|
|
|
|
virtual int tick();
|
|
|
|
virtual int status();
|
|
|
|
|
|
|
|
virtual int senddata(void*, int);
|
|
|
|
virtual int readdata(void*, int);
|
|
|
|
virtual int netstatus();
|
|
|
|
virtual int isactive();
|
2013-10-01 06:11:34 -04:00
|
|
|
virtual bool moretoread(uint32_t usec);
|
|
|
|
virtual bool cansend(uint32_t usec);
|
2008-03-31 10:06:59 -04:00
|
|
|
|
|
|
|
virtual int close(); /* BinInterface version of reset() */
|
2014-03-17 16:56:06 -04:00
|
|
|
virtual RsFileHash gethash(); /* not used here */
|
2018-02-22 06:18:51 -05:00
|
|
|
virtual bool bandwidthLimited() { return true ; }
|
2007-11-14 22:18:48 -05:00
|
|
|
|
2013-10-01 06:11:34 -04:00
|
|
|
public:
|
|
|
|
|
2018-02-24 08:07:25 -05:00
|
|
|
/// initiate incoming connection.
|
|
|
|
int accept(SSL *ssl, int fd, const struct sockaddr_storage &foreign_addr);
|
2013-10-01 06:11:34 -04:00
|
|
|
|
|
|
|
void getCryptoParams(RsPeerCryptoParams& params) ;
|
2015-05-16 07:19:53 -04:00
|
|
|
bool actAsServer();
|
2013-10-01 06:11:34 -04:00
|
|
|
|
|
|
|
|
2007-11-14 22:18:48 -05:00
|
|
|
protected:
|
2013-10-01 06:11:34 -04:00
|
|
|
|
|
|
|
|
|
|
|
/* no mutex protection for these ones */
|
|
|
|
|
|
|
|
p3LinkMgr *mLinkMgr;
|
|
|
|
pqissllistener *pqil;
|
|
|
|
|
|
|
|
RsMutex mSslMtx; /**** MUTEX protects data and fn below ****/
|
|
|
|
|
|
|
|
virtual int reset_locked();
|
2018-02-24 08:07:25 -05:00
|
|
|
|
|
|
|
/// initiate incoming connection.
|
|
|
|
int accept_locked( SSL *ssl, int fd,
|
|
|
|
const sockaddr_storage& foreign_addr );
|
2013-10-01 06:11:34 -04:00
|
|
|
|
2007-11-14 22:18:48 -05:00
|
|
|
// A little bit of information to describe
|
|
|
|
// the SSL state, this is needed
|
|
|
|
// to allow full Non-Blocking Connect behaviour.
|
|
|
|
// This fn loops through the following fns.
|
|
|
|
// to complete an SSL.
|
|
|
|
|
|
|
|
int ConnectAttempt();
|
|
|
|
|
2008-01-25 01:36:40 -05:00
|
|
|
virtual int Failed_Connection();
|
2007-11-14 22:18:48 -05:00
|
|
|
|
2008-02-26 21:32:20 -05:00
|
|
|
// Start up connection with delay...
|
|
|
|
virtual int Delay_Connection();
|
|
|
|
|
2008-01-25 01:36:40 -05:00
|
|
|
// These two fns are overloaded for udp/etc connections.
|
2007-11-14 22:18:48 -05:00
|
|
|
virtual int Initiate_Connection();
|
|
|
|
virtual int Basic_Connection_Complete();
|
|
|
|
|
|
|
|
// These should be identical for all cases,
|
|
|
|
// differences are achieved via the net_internal_* fns.
|
|
|
|
int Initiate_SSL_Connection();
|
|
|
|
int SSL_Connection_Complete();
|
|
|
|
int Authorise_SSL_Connection();
|
|
|
|
|
2014-01-19 06:35:31 -05:00
|
|
|
// check connection timeout.
|
|
|
|
bool CheckConnectionTimeout();
|
|
|
|
|
2007-11-14 22:18:48 -05:00
|
|
|
|
2015-10-30 04:23:59 -04:00
|
|
|
/* Do we really need this ?
|
|
|
|
* It is very specific TCP+SSL stuff and unlikely to be reused.
|
|
|
|
* In fact we are overloading them in pqissludp case where they do different things or nothing.
|
|
|
|
*/
|
|
|
|
virtual int net_internal_close(int fd);
|
|
|
|
virtual int net_internal_SSL_set_fd(SSL *ssl, int fd);
|
|
|
|
virtual int net_internal_fcntl_nonblock(int fd);
|
2007-11-14 22:18:48 -05:00
|
|
|
|
|
|
|
|
|
|
|
/* data */
|
|
|
|
bool active;
|
|
|
|
bool certvalid;
|
|
|
|
|
2013-10-01 06:11:34 -04:00
|
|
|
int waiting;
|
|
|
|
|
2007-11-14 22:18:48 -05:00
|
|
|
// addition for udp (tcp version == ACTIVE).
|
|
|
|
int sslmode;
|
|
|
|
|
|
|
|
SSL *ssl_connection;
|
|
|
|
int sockfd;
|
|
|
|
|
2013-09-13 10:35:19 -04:00
|
|
|
struct sockaddr_storage remote_addr;
|
2007-11-14 22:18:48 -05:00
|
|
|
|
|
|
|
void *readpkt;
|
|
|
|
int pktlen;
|
2009-07-21 16:14:31 -04:00
|
|
|
int total_len ; // saves the reading state accross successive calls.
|
2007-11-14 22:18:48 -05:00
|
|
|
|
2010-06-25 17:44:24 -04:00
|
|
|
int attempt_ts;
|
2007-11-14 22:18:48 -05:00
|
|
|
|
|
|
|
int n_read_zero; /* a counter to determine if the connection is really dead */
|
2018-10-06 19:34:05 -04:00
|
|
|
rstime_t mReadZeroTS; /* timestamp of first READ_ZERO occurance */
|
2007-11-14 22:18:48 -05:00
|
|
|
|
2010-06-25 17:44:24 -04:00
|
|
|
int ssl_connect_timeout; /* timeout to ensure that we don't get stuck (can happen on udp!) */
|
2007-11-14 22:18:48 -05:00
|
|
|
|
2008-02-26 21:32:20 -05:00
|
|
|
uint32_t mConnectDelay;
|
2018-10-06 19:34:05 -04:00
|
|
|
rstime_t mConnectTS;
|
2008-03-26 11:35:09 -04:00
|
|
|
uint32_t mConnectTimeout;
|
2018-10-06 19:34:05 -04:00
|
|
|
rstime_t mTimeoutTS;
|
2008-01-28 00:40:32 -05:00
|
|
|
|
2008-02-26 21:32:20 -05:00
|
|
|
private:
|
2007-11-14 22:18:48 -05:00
|
|
|
// ssl only fns.
|
2015-10-30 04:23:59 -04:00
|
|
|
int connectInterface(const struct sockaddr_storage &addr);
|
2007-11-14 22:18:48 -05:00
|
|
|
|
2019-05-02 19:27:32 -04:00
|
|
|
RS_SET_CONTEXT_DEBUG_LEVEL(1)
|
|
|
|
};
|