/* * libretroshare/src/rsserver: p3peers.cc * * RetroShare C++ Interface. * * Copyright 2004-2008 by Robert Fernie. * * This library is free software; you can redistribute it and/or * modify it under the terms of the GNU Library General Public * License Version 2 as published by the Free Software Foundation. * * This library is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Library General Public License for more details. * * You should have received a copy of the GNU Library General Public * License along with this library; if not, write to the Free Software * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 * USA. * * Please report all bugs and problems to "retroshare@lunamutt.com". * */ #include "rsserver/p3peers.h" #include "rsserver/p3face.h" #include "pqi/p3connmgr.h" #include "pqi/authssl.h" #include "pqi/authgpg.h" #include #include #include #include #include #ifdef RS_USE_PGPSSL #include #endif const std::string CERT_SSL_ID = "--SSLID--"; const std::string CERT_LOCATION = "--LOCATION--"; const std::string CERT_LOCAL_IP = "--LOCAL--"; const std::string CERT_EXT_IP = "--EXT--"; #include "pqi/authssl.h" RsPeers *rsPeers = NULL; /******* * #define P3PEERS_DEBUG 1 *******/ static uint32_t RsPeerTranslateTrust(uint32_t trustLvl); int ensureExtension(std::string &name, std::string def_ext); std::string RsPeerTrustString(uint32_t trustLvl) { std::string str; switch(trustLvl) { default: case GPGME_VALIDITY_UNKNOWN: str = "GPGME_VALIDITY_UNKNOWN"; break; case GPGME_VALIDITY_UNDEFINED: str = "GPGME_VALIDITY_UNDEFINED"; break; case GPGME_VALIDITY_NEVER: str = "GPGME_VALIDITY_NEVER"; break; case GPGME_VALIDITY_MARGINAL: str = "GPGME_VALIDITY_MARGINAL"; break; case GPGME_VALIDITY_FULL: str = "GPGME_VALIDITY_FULL"; break; case GPGME_VALIDITY_ULTIMATE: str = "GPGME_VALIDITY_ULTIMATE"; break; } return str; } std::string RsPeerStateString(uint32_t state) { std::string str; if (state & RS_PEER_STATE_CONNECTED) { str = "Connected"; } else if (state & RS_PEER_STATE_UNREACHABLE) { str = "Unreachable"; } else if (state & RS_PEER_STATE_ONLINE) { str = "Available"; } else if (state & RS_PEER_STATE_FRIEND) { str = "Offline"; } else { str = "Neighbour"; } return str; } std::string RsPeerNetModeString(uint32_t netModel) { std::string str; if (netModel == RS_NETMODE_EXT) { str = "External Port"; } else if (netModel == RS_NETMODE_UPNP) { str = "Ext (UPnP)"; } else if (netModel == RS_NETMODE_UDP) { str = "UDP Mode"; } else if (netModel == RS_NETMODE_UNREACHABLE) { str = "UDP Mode (Unreachable)"; } else { str = "Unknown NetMode"; } return str; } std::string RsPeerLastConnectString(uint32_t lastConnect) { std::ostringstream out; out << lastConnect << " secs ago"; return out.str(); } p3Peers::p3Peers(p3ConnectMgr *cm) :mConnMgr(cm) { return; } /* Updates ... */ bool p3Peers::FriendsChanged() { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::FriendsChanged()"; std::cerr << std::endl; #endif /* TODO */ return false; } bool p3Peers::OthersChanged() { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::OthersChanged()"; std::cerr << std::endl; #endif /* TODO */ return false; } /* Peer Details (Net & Auth) */ std::string p3Peers::getOwnId() { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::getOwnId()"; std::cerr << std::endl; #endif return AuthSSL::getAuthSSL()->OwnId(); } bool p3Peers::getOnlineList(std::list &ids) { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::getOnlineList()"; std::cerr << std::endl; #endif /* get from mConnectMgr */ mConnMgr->getOnlineList(ids); return true; } bool p3Peers::getFriendList(std::list &ids) { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::getFriendList()"; std::cerr << std::endl; #endif /* get from mConnectMgr */ mConnMgr->getFriendList(ids); return true; } //bool p3Peers::getOthersList(std::list &ids) //{ //#ifdef P3PEERS_DEBUG // std::cerr << "p3Peers::getOthersList()"; // std::cerr << std::endl; //#endif // // /* get from mAuthMgr */ // AuthSSL::getAuthSSL()->getAllList(ids); // return true; //} bool p3Peers::isOnline(std::string id) { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::isOnline() " << id; std::cerr << std::endl; #endif /* get from mConnectMgr */ peerConnectState state; if (mConnMgr->getFriendNetStatus(id, state) && (state.state & RS_PEER_S_CONNECTED)) { return true; } return false; } bool p3Peers::isFriend(std::string ssl_id) { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::isFriend() " << ssl_id; std::cerr << std::endl; #endif /* get from mConnectMgr */ return mConnMgr->isFriend(ssl_id); } static struct sockaddr_in getPreferredAddress( const struct sockaddr_in& addr1,time_t ts1, const struct sockaddr_in& addr2,time_t ts2, const struct sockaddr_in& addr3,time_t ts3) { time_t ts = ts1 ; struct sockaddr_in addr = addr1 ; if(ts2 > ts && strcmp(inet_ntoa(addr2.sin_addr),"0.0.0.0")) { ts = ts2 ; addr = addr2 ; } if(ts3 > ts && strcmp(inet_ntoa(addr3.sin_addr),"0.0.0.0")) { ts = ts3 ; addr = addr3 ; } return addr ; } bool p3Peers::getPeerDetails(std::string id, RsPeerDetails &d) { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::getPeerDetails() called for id : " << id << std::endl; #endif //first, check if it's a gpg or a ssl id. peerConnectState pcs; if (id != AuthSSL::getAuthSSL()->OwnId() && !mConnMgr->getFriendNetStatus(id, pcs)) { //assume is not SSL, because every ssl_id has got a friend correspondance in mConnMgr #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::getPeerDetails() got a gpg id and is returning GPG details only for id : " << id << std::endl; #endif d.isOnlyGPGdetail = true; return this->getGPGDetails(id, d); } #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::getPeerDetails() got a SSL id and is returning SSL and GPG details for id : " << id << std::endl; #endif if (id == AuthSSL::getAuthSSL()->OwnId()) { mConnMgr->getOwnNetStatus(pcs); } /* get from gpg (first), to fill in the sign and trust details */ /* don't retrun now, we've got fill in the ssl and connection info */ this->getGPGDetails(pcs.gpg_id, d); d.isOnlyGPGdetail = false; //get the ssl details d.id = id; d.location = pcs.location; /* generate */ d.authcode = "AUTHCODE"; //TODO : check use of this details // From all addresses, show the most recent one if no address is currently in use. struct sockaddr_in best_local_addr = (!strcmp(inet_ntoa(pcs.currentlocaladdr.sin_addr),"0.0.0.0"))?getPreferredAddress(pcs.dht.laddr,pcs.dht.ts,pcs.disc.laddr,pcs.disc.ts,pcs.peer.laddr,pcs.peer.ts):pcs.currentlocaladdr ; struct sockaddr_in best_servr_addr = (!strcmp(inet_ntoa(pcs.currentserveraddr.sin_addr),"0.0.0.0"))?getPreferredAddress(pcs.dht.raddr,pcs.dht.ts,pcs.disc.raddr,pcs.disc.ts,pcs.peer.raddr,pcs.peer.ts):pcs.currentserveraddr ; /* fill from pcs */ d.localAddr = inet_ntoa(best_local_addr.sin_addr); d.localPort = ntohs(best_local_addr.sin_port); d.extAddr = inet_ntoa(best_servr_addr.sin_addr); d.extPort = ntohs(best_servr_addr.sin_port); d.lastConnect = pcs.lastcontact; d.connectPeriod = 0; std::list ipAddressList; std::list pcsList = pcs.getIpAddressList(); for (std::list::iterator ipListIt = pcsList.begin(); ipListIt!=(pcsList.end()); ipListIt++) { std::ostringstream toto; toto << ntohs(ipListIt->ipAddr.sin_port) << " " << (time(NULL) - ipListIt->seenTime) << " sec"; ipAddressList.push_back(std::string(inet_ntoa(ipListIt->ipAddr.sin_addr)) + ":" + toto.str()); } d.ipAddressList = ipAddressList; /* Translate */ d.state = 0; if (pcs.state & RS_PEER_S_FRIEND) d.state |= RS_PEER_STATE_FRIEND; if (pcs.state & RS_PEER_S_ONLINE) d.state |= RS_PEER_STATE_ONLINE; if (pcs.state & RS_PEER_S_CONNECTED) d.state |= RS_PEER_STATE_CONNECTED; if (pcs.state & RS_PEER_S_UNREACHABLE) d.state |= RS_PEER_STATE_UNREACHABLE; switch(pcs.netMode & RS_NET_MODE_ACTUAL) { case RS_NET_MODE_EXT: d.netMode = RS_NETMODE_EXT; break; case RS_NET_MODE_UPNP: d.netMode = RS_NETMODE_UPNP; break; case RS_NET_MODE_UDP: d.netMode = RS_NETMODE_UDP; break; case RS_NET_MODE_UNREACHABLE: case RS_NET_MODE_UNKNOWN: default: d.netMode = RS_NETMODE_UNREACHABLE; break; } if (pcs.netMode & RS_NET_MODE_TRY_EXT) { d.tryNetMode = RS_NETMODE_EXT; } else if (pcs.netMode & RS_NET_MODE_TRY_UPNP) { d.tryNetMode = RS_NETMODE_UPNP; } else { d.tryNetMode = RS_NETMODE_UDP; } d.visState = 0; if (!(pcs.visState & RS_VIS_STATE_NODISC)) { d.visState |= RS_VS_DISC_ON; } if (!(pcs.visState & RS_VIS_STATE_NODHT)) { d.visState |= RS_VS_DHT_ON; } /* Finally determine AutoConnect Status */ std::ostringstream autostr; if (pcs.inConnAttempt) { if (pcs.currentConnAddrAttempt.type & RS_NET_CONN_TUNNEL) { autostr << "Trying tunnel connection"; } else if (pcs.currentConnAddrAttempt.type & RS_NET_CONN_TCP_ALL) { autostr << "Trying TCP : " << inet_ntoa(pcs.currentConnAddrAttempt.addr.sin_addr) << ":" << ntohs(pcs.currentConnAddrAttempt.addr.sin_port); } else if (pcs.currentConnAddrAttempt.type & RS_NET_CONN_UDP_ALL) { autostr << "Trying UDP : " << inet_ntoa(pcs.currentConnAddrAttempt.addr.sin_addr) << ":" << ntohs(pcs.currentConnAddrAttempt.addr.sin_port); } } else if (pcs.state & RS_PEER_S_CONNECTED) { if (pcs.connecttype == RS_NET_CONN_TCP_ALL) { autostr << "Connected: TCP"; } else if (pcs.connecttype == RS_NET_CONN_UDP_ALL) { autostr << "Connected: UDP"; } else if (pcs.connecttype == RS_NET_CONN_TUNNEL) { autostr << "Connected: Tunnel"; } else { autostr << "Connected: Unknown"; } } else { autostr << RsPeerStateString(pcs.state); } d.autoconnect = autostr.str(); return true; } std::string p3Peers::getGPGName(std::string gpg_id) { /* get from mAuthMgr as it should have more peers? */ return AuthGPG::getAuthGPG()->getGPGName(gpg_id); } bool p3Peers::isGPGAccepted(std::string gpg_id_is_friend) { /* get from mAuthMgr as it should have more peers? */ return AuthGPG::getAuthGPG()->isGPGAccepted(gpg_id_is_friend); } std::string p3Peers::getPeerName(std::string ssl_or_gpg_id) { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::getPeerName() " << ssl_or_gpg_id; std::cerr << std::endl; #endif std::string name; if (ssl_or_gpg_id == AuthSSL::getAuthSSL()->OwnId()) { return AuthGPG::getAuthGPG()->getGPGOwnName(); } peerConnectState pcs; if (mConnMgr->getFriendNetStatus(ssl_or_gpg_id, pcs)) { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::getPeerName() got a ssl id. Name is : " << pcs.name; std::cerr << std::endl; #endif return pcs.name; } return AuthGPG::getAuthGPG()->getGPGName(ssl_or_gpg_id); } bool p3Peers::getGPGAllList(std::list &ids) { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::getGPGAllList()"; std::cerr << std::endl; #endif /* get from mAuthMgr */ AuthGPG::getAuthGPG()->getGPGAllList(ids); return true; } bool p3Peers::getGPGValidList(std::list &ids) { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::getPGPOthersList()"; std::cerr << std::endl; #endif /* get from mAuthMgr */ AuthGPG::getAuthGPG()->getGPGValidList(ids); return true; } bool p3Peers::getGPGSignedList(std::list &ids) { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::getPGPOthersList()"; std::cerr << std::endl; #endif /* get from mAuthMgr */ AuthGPG::getAuthGPG()->getGPGSignedList(ids); return true; } bool p3Peers::getGPGAcceptedList(std::list &ids) { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::getPGPOthersList()"; std::cerr << std::endl; #endif //TODO implement an additional list of GPG keys that are accepted even if not signed AuthGPG::getAuthGPG()->getGPGAcceptedList(ids); return true; } bool p3Peers::getSSLChildListOfGPGId(std::string gpg_id, std::list &ids) { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::getSSLChildListOfGPGId() for id : " << gpg_id; std::cerr << std::endl; #endif ids.clear(); if (gpg_id == "" ) { return false; } //let's roll throush the friends std::list friendsIds; mConnMgr->getFriendList(friendsIds); peerConnectState pcs; for (std::list::iterator it = friendsIds.begin(); it != friendsIds.end(); it++) { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::getSSLChildListOfGPGId() iterating over friends id : " << gpg_id; std::cerr << std::endl; #endif if (mConnMgr->getFriendNetStatus(*it, pcs) && pcs.gpg_id == gpg_id) { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::getSSLChildListOfGPGId() adding ssl id : " << pcs.id; std::cerr << std::endl; #endif ids.push_back(pcs.id); } } return true; } bool p3Peers::getGPGDetails(std::string id, RsPeerDetails &d) { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::getPgpDetails() called for id : " << id; std::cerr << std::endl; #endif /* get from mAuthMgr */ return AuthGPG::getAuthGPG()->getGPGDetails(id, d); } std::string p3Peers::getGPGOwnId() { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::getPGPOwnId()"; std::cerr << std::endl; #endif /* get from mAuthMgr */ return AuthGPG::getAuthGPG()->getGPGOwnId(); } std::string p3Peers::getGPGId(std::string sslid_or_gpgid) { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::getPGPId()"; std::cerr << std::endl; #endif /* get from mAuthMgr */ if (sslid_or_gpgid == AuthSSL::getAuthSSL()->OwnId()) { return AuthGPG::getAuthGPG()->getGPGOwnId(); } peerConnectState pcs; if (mConnMgr->getFriendNetStatus(sslid_or_gpgid, pcs)) { return pcs.gpg_id; } else { if ( AuthGPG::getAuthGPG()->isGPGId(sslid_or_gpgid)) { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::getPGPId() given id is already an gpg id : " << sslid_or_gpgid; std::cerr << std::endl; #endif return sslid_or_gpgid; } } return ""; } /* Add/Remove Friends */ bool p3Peers::addFriend(std::string id, std::string gpg_id) { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::addFriend() with : id : " << id << "; gpg_id : " << gpg_id << std::endl; #endif if (id == gpg_id || id == "") { return addDummyFriend(gpg_id); } else { return mConnMgr->addFriend(id, gpg_id); } } bool p3Peers::addDummyFriend(std::string gpg_id) { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::addDummyFriend() called" << std::endl; #endif std::string dummy_ssl_id = "dummy"+ gpg_id; //check if this gpg_id already got a dummy friend if (!mConnMgr->isFriend(dummy_ssl_id)) { return mConnMgr->addFriend(dummy_ssl_id, gpg_id); } else { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::addDummyFriend() dummy friend already exists for gpg_id : " << gpg_id << std::endl; #endif return false; } } bool p3Peers::isDummyFriend(std::string ssl_id) { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::isDummyFriend() called" << std::endl; #endif RsPeerDetails details; bool ret = false; if (getPeerDetails(ssl_id, details)) { ret = (details.id == ("dummy" + details.gpg_id)); } else { ret = (ssl_id.substr(0,5) == "dummy"); } #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::isDummyFriend() return : " << ret << std::endl; #endif return ret; } bool p3Peers::removeFriend(std::string id) { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::removeFriend() " << id; std::cerr << std::endl; #endif //will remove if it's a gpg id AuthGPG::getAuthGPG()->setAcceptToConnectGPGCertificate(id, false); //will remove if it's a ssl id mConnMgr->removeFriend(id); return true; } /* Network Stuff */ bool p3Peers::connectAttempt(std::string id) { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::connectAttempt() " << id; std::cerr << std::endl; #endif return mConnMgr->retryConnect(id); } void p3Peers::getIPServersList(std::list& ip_servers) { mConnMgr->getIPServersList(ip_servers) ; } void p3Peers::allowServerIPDetermination(bool b) { mConnMgr->setIPServersEnabled(b) ; } void p3Peers::allowTunnelConnection(bool b) { std::cerr << "p3Peers::allowTunnelConnection() set tunnel to : " << b << std::endl; mConnMgr->setTunnelConnection(b) ; } bool p3Peers::getAllowServerIPDetermination() { return mConnMgr->getIPServersEnabled() ; } bool p3Peers::getAllowTunnelConnection() { std::cerr << "p3Peers::getAllowTunnelConnection() tunnel is : " << mConnMgr->getTunnelConnection() << std::endl; return mConnMgr->getTunnelConnection() ; } bool p3Peers::setLocalAddress(std::string id, std::string addr_str, uint16_t port) { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::setLocalAddress() " << id; std::cerr << std::endl; #endif struct sockaddr_in addr; addr.sin_family = AF_INET; addr.sin_port = htons(port); int ret = 1; /********************************** WINDOWS/UNIX SPECIFIC PART *******************/ #ifndef WINDOWS_SYS if (ret && (0 != inet_aton(addr_str.c_str(), &(addr.sin_addr)))) #else addr.sin_addr.s_addr = inet_addr(addr_str.c_str()); if (ret) #endif /********************************** WINDOWS/UNIX SPECIFIC PART *******************/ { return mConnMgr->setLocalAddress(id, addr); } return false; } bool p3Peers::setLocation(std::string ssl_id, std::string location) { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::setLocation() " << ssl_id; std::cerr << std::endl; #endif return mConnMgr->setLocation(ssl_id, location); } bool p3Peers::setExtAddress(std::string id, std::string addr_str, uint16_t port) { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::setExtAddress() " << id; std::cerr << std::endl; #endif struct sockaddr_in addr; addr.sin_family = AF_INET; addr.sin_port = htons(port); int ret = 1; /********************************** WINDOWS/UNIX SPECIFIC PART *******************/ #ifndef WINDOWS_SYS if (ret && (0 != inet_aton(addr_str.c_str(), &(addr.sin_addr)))) #else addr.sin_addr.s_addr = inet_addr(addr_str.c_str()); if (ret) #endif /********************************** WINDOWS/UNIX SPECIFIC PART *******************/ { return mConnMgr->setExtAddress(id, addr); } return false; } bool p3Peers::setNetworkMode(std::string id, uint32_t extNetMode) { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::setNetworkMode() " << id; std::cerr << std::endl; #endif /* translate */ uint32_t netMode = 0; switch(extNetMode) { case RS_NETMODE_EXT: netMode = RS_NET_MODE_EXT; break; case RS_NETMODE_UPNP: netMode = RS_NET_MODE_UPNP; break; case RS_NETMODE_UDP: netMode = RS_NET_MODE_UDP; break; case RS_NETMODE_UNREACHABLE: netMode = RS_NET_MODE_UNREACHABLE; break; default: break; } return mConnMgr->setNetworkMode(id, netMode); } bool p3Peers::setVisState(std::string id, uint32_t extVisState) { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::setVisState() " << id; std::cerr << std::endl; #endif uint32_t visState = 0; if (!(extVisState & RS_VS_DHT_ON)) visState |= RS_VIS_STATE_NODHT; if (!(extVisState & RS_VS_DISC_ON)) visState |= RS_VIS_STATE_NODISC; return mConnMgr->setVisState(id, visState); } //=========================================================================== /* Auth Stuff */ std::string p3Peers::GetRetroshareInvite() { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::GetRetroshareInvite()"; std::cerr << std::endl; #endif std::cerr << "p3Peers::GetRetroshareInvite()"; std::cerr << std::endl; std::string invite = AuthGPG::getAuthGPG()->SaveCertificateToString(AuthGPG::getAuthGPG()->getGPGOwnId()); //add the sslid, location, ip local and external address after the signature RsPeerDetails ownDetail; if (getPeerDetails(rsPeers->getOwnId(), ownDetail)) { invite += CERT_SSL_ID + ownDetail.id + ";"; invite += CERT_LOCATION + ownDetail.location + ";\n"; invite += CERT_LOCAL_IP + ownDetail.localAddr + ":"; std::ostringstream out; out << ownDetail.localPort; invite += out.str() + ";"; invite += CERT_EXT_IP + ownDetail.extAddr + ":"; std::ostringstream out2; out2 << ownDetail.extPort; invite += out2.str() + ";"; } std::cerr << "p3Peers::GetRetroshareInvite() returns : \n"; std::cerr << invite << std::endl; return invite; } //=========================================================================== bool p3Peers::loadCertificateFromFile(std::string fname, std::string &id, std::string &gpg_id) { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::LoadCertificateFromFile() not implemented yet"; std::cerr << std::endl; #endif return false; } //bool splitCerts(std::string in, std::string &sslcert, std::string &pgpcert) //{ // std::cerr << "splitCerts():" << in; // std::cerr << std::endl; // // /* search for -----END CERTIFICATE----- */ // std::string sslend("-----END CERTIFICATE-----"); // std::string pgpend("-----END PGP PUBLIC KEY BLOCK-----"); // size_t pos = in.find(sslend); // size_t pos2 = in.find(pgpend); // size_t ssllen, pgplen; // // if (pos != std::string::npos) // { // std::cerr << "splitCerts(): Found SSL Cert"; // std::cerr << std::endl; // // ssllen = pos + sslend.length(); // sslcert = in.substr(0, ssllen); // // if (pos2 != std::string::npos) // { // std::cerr << "splitCerts(): Found SSL + PGP Cert"; // std::cerr << std::endl; // // pgplen = pos2 + pgpend.length() - ssllen; // pgpcert = in.substr(ssllen, pgplen); // } // return true; // } // else if (pos2 != std::string::npos) // { // std::cerr << "splitCerts(): Found PGP Cert Only"; // std::cerr << std::endl; // // pgplen = pos2 + pgpend.length(); // pgpcert = in.substr(0, pgplen); // return true; // } // return false; //} bool p3Peers::loadDetailsFromStringCert(std::string certstr, RsPeerDetails &pd) { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::LoadCertificateFromString() "; std::cerr << std::endl; #endif /* search for -----END CERTIFICATE----- */ std::string pgpend("-----END PGP PUBLIC KEY BLOCK-----"); //parse the text to get ip address try { size_t parsePosition = certstr.find(pgpend); if (parsePosition != std::string::npos) { parsePosition += pgpend.length(); std::string pgpCert = certstr.substr(0, parsePosition); std::string gpg_id; AuthGPG::getAuthGPG()->LoadCertificateFromString(pgpCert, gpg_id); AuthGPG::getAuthGPG()->getGPGDetails(gpg_id, pd); if (gpg_id == "") { return false; } } std::cerr << "Parsing cert for sslid, location, ext and local address details. : " << certstr << std::endl; //let's parse the ssl id parsePosition = certstr.find(CERT_SSL_ID); std::cerr << "sslid position : " << parsePosition << std::endl; if (parsePosition != std::string::npos) { parsePosition += CERT_SSL_ID.length(); std::string subCert = certstr.substr(parsePosition); parsePosition = subCert.find(";"); if (parsePosition != std::string::npos) { std::string ssl_id = subCert.substr(0, parsePosition); std::cerr << "SSL id : " << ssl_id << std::endl; pd.id = ssl_id; } } //let's parse the location parsePosition = certstr.find(CERT_LOCATION); std::cerr << "location position : " << parsePosition << std::endl; if (parsePosition != std::string::npos) { parsePosition += CERT_LOCATION.length(); std::string subCert = certstr.substr(parsePosition); parsePosition = subCert.find(";"); if (parsePosition != std::string::npos) { std::string location = subCert.substr(0, parsePosition); std::cerr << "location : " << location << std::endl; pd.location = location; } } //let's parse ip local address parsePosition = certstr.find(CERT_LOCAL_IP); std::cerr << "local ip position : " << parsePosition << std::endl; if (parsePosition != std::string::npos) { parsePosition += CERT_LOCAL_IP.length(); std::string subCert = certstr.substr(parsePosition); parsePosition = subCert.find(":"); if (parsePosition != std::string::npos) { std::string local_ip = subCert.substr(0, parsePosition); std::cerr << "Local Ip : " << local_ip << std::endl; pd.localAddr = local_ip; //let's parse local port subCert = subCert.substr(parsePosition + 1); parsePosition = subCert.find(";"); if (parsePosition != std::string::npos) { std::string local_port = subCert.substr(0, parsePosition); std::cerr << "Local port : " << local_port << std::endl; pd.localPort = (boost::lexical_cast(local_port)); } } } //let's parse ip ext address parsePosition = certstr.find(CERT_EXT_IP); std::cerr << "Ext ip position : " << parsePosition << std::endl; if (parsePosition != std::string::npos) { parsePosition = parsePosition + CERT_EXT_IP.length(); std::string subCert = certstr.substr(parsePosition); parsePosition = subCert.find(":"); if (parsePosition != std::string::npos) { std::string ext_ip = subCert.substr(0, parsePosition); std::cerr << "Ext Ip : " << ext_ip << std::endl; pd.extAddr = ext_ip; //let's parse ext port subCert = subCert.substr(parsePosition + 1); parsePosition = subCert.find(";"); if (parsePosition != std::string::npos) { std::string ext_port = subCert.substr(0, parsePosition); std::cerr << "Ext port : " << ext_port << std::endl; pd.extPort = (boost::lexical_cast(ext_port)); } } } } catch (...) { std::cerr << "ConnectFriendWizard : Parse ip address error." << std::endl; } return true; } bool p3Peers::saveCertificateToFile(std::string id, std::string fname) { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::SaveCertificateToFile() not implemented yet " << id; std::cerr << std::endl; #endif // ensureExtension(fname, "pqi"); // // return AuthSSL::getAuthSSL()->SaveCertificateToFile(id, fname); return false; } std::string p3Peers::saveCertificateToString(std::string id) { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::SaveCertificateToString() " << id; std::cerr << std::endl; #endif if (id == AuthSSL::getAuthSSL()->OwnId()) { return AuthSSL::getAuthSSL()->SaveOwnCertificateToString(); } else { return ""; } } bool p3Peers::signGPGCertificate(std::string id) { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::SignCertificate() " << id; std::cerr << std::endl; #endif AuthGPG::getAuthGPG()->SignCertificateLevel0(id); AuthGPG::getAuthGPG()->setAcceptToConnectGPGCertificate(id, true); return true; } bool p3Peers::setAcceptToConnectGPGCertificate(std::string gpg_id, bool acceptance) { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::setAcceptToConnectGPGCertificate() called with gpg_id : " << gpg_id << ", acceptance : " << acceptance << std::endl; #endif if (gpg_id != "" && acceptance == false) { //remove the friends from the connect manager std::list sslFriends; this->getSSLChildListOfGPGId(gpg_id, sslFriends); for (std::list::iterator it = sslFriends.begin(); it != sslFriends.end(); it++) { mConnMgr->removeFriend(*it); } return AuthGPG::getAuthGPG()->setAcceptToConnectGPGCertificate(gpg_id, acceptance); } return AuthGPG::getAuthGPG()->setAcceptToConnectGPGCertificate(gpg_id, acceptance); } bool p3Peers::trustGPGCertificate(std::string id, uint32_t trustlvl) { #ifdef P3PEERS_DEBUG std::cerr << "p3Peers::TrustCertificate() " << id; std::cerr << std::endl; #endif //check if we've got a ssl or gpg id if (getGPGId(id) == "") { //if no result then it must be a gpg id return AuthGPG::getAuthGPG()->TrustCertificate(id, trustlvl); } else { return AuthGPG::getAuthGPG()->TrustCertificate(getGPGId(id), trustlvl); } } int ensureExtension(std::string &name, std::string def_ext) { /* if it has an extension, don't change */ int len = name.length(); int extpos = name.find_last_of('.'); std::ostringstream out; out << "ensureExtension() name: " << name << std::endl; out << "\t\t extpos: " << extpos; out << " len: " << len << std::endl; /* check that the '.' has between 1 and 4 char after it (an extension) */ if ((extpos > 0) && (extpos < len - 1) && (extpos + 6 > len)) { /* extension there */ std::string curext = name.substr(extpos, len); out << "ensureExtension() curext: " << curext << std::endl; std::cerr << out.str(); return 0; } if (extpos != len - 1) { name += "."; } name += def_ext; out << "ensureExtension() added ext: " << name << std::endl; std::cerr << out.str(); return 1; } RsPeerDetails::RsPeerDetails() :trustLvl(0), ownsign(false), state(0), netMode(0), lastConnect(0), connectPeriod(0) { return; } std::ostream &operator<<(std::ostream &out, const RsPeerDetails &detail) { out << "RsPeerDetail: " << detail.name << " <" << detail.id << ">"; out << std::endl; out << " email: " << detail.email; out << " location:" << detail.location; out << " org: " << detail.org; out << std::endl; out << " fpr: " << detail.fpr; out << " authcode:" << detail.authcode; out << std::endl; out << " signers:"; out << std::endl; std::list::const_iterator it; for(it = detail.gpgSigners.begin(); it != detail.gpgSigners.end(); it++) { out << "\t" << *it; out << std::endl; } out << std::endl; out << " trustLvl: " << detail.trustLvl; out << " ownSign: " << detail.ownsign; out << std::endl; out << " state: " << detail.state; out << " netMode: " << detail.netMode; out << std::endl; out << " localAddr: " << detail.localAddr; out << ":" << detail.localPort; out << std::endl; out << " extAddr: " << detail.extAddr; out << ":" << detail.extPort; out << std::endl; out << " lastConnect: " << detail.lastConnect; out << " connectPeriod: " << detail.connectPeriod; out << std::endl; return out; }