/* * Copyright (C) 2020-2021 Soleta Networks * * This program is free software: you can redistribute it and/or modify it under * the terms of the GNU Affero General Public License as published by the * Free Software Foundation; either version 3 of the License, or * (at your option) any later version. */ #include "ogAdmServer.h" #include "dbi.h" #include "utils.h" #include "list.h" #include "rest.h" #include "wol.h" #include "client.h" #include "json.h" #include #include #include #include #include #include #include #include #include static void og_client_release(struct ev_loop *loop, struct og_client *cli) { list_del(&cli->list); ev_timer_stop(loop, &cli->timer); ev_io_stop(loop, &cli->io); close(cli->io.fd); free((void *)cli->shell.cmd); free((void *)cli->shell.output); free(cli); } static int og_client_payload_too_large(struct og_client *cli) { char buf[] = "HTTP/1.1 413 Payload Too Large\r\n" "Content-Length: 0\r\n\r\n"; send(og_client_socket(cli), buf, strlen(buf), 0); return -1; } static int og_client_state_recv_hdr_rest(struct og_client *cli) { char *ptr; ptr = strstr(cli->buf, "\r\n\r\n"); if (!ptr) return 0; cli->msg_len = ptr - cli->buf + 4; ptr = strstr(cli->buf, "Content-Length: "); if (ptr) { sscanf(ptr, "Content-Length: %i[^\r\n]", &cli->content_length); if (cli->content_length < 0) return -1; cli->msg_len += cli->content_length; } ptr = strstr(cli->buf, "Authorization: "); if (ptr) sscanf(ptr, "Authorization: %63[^\r\n]", cli->auth_token); return 1; } static int og_client_recv(struct og_client *cli, int events) { struct ev_io *io = &cli->io; int ret; if (events & EV_ERROR) { syslog(LOG_ERR, "unexpected error event from client %s:%hu\n", inet_ntoa(cli->addr.sin_addr), ntohs(cli->addr.sin_port)); return 0; } ret = recv(io->fd, cli->buf + cli->buf_len, sizeof(cli->buf) - cli->buf_len, 0); if (ret <= 0) { if (ret < 0) { syslog(LOG_ERR, "error reading from client %s:%hu (%s)\n", inet_ntoa(cli->addr.sin_addr), ntohs(cli->addr.sin_port), strerror(errno)); } return ret; } return ret; } static void og_client_read_cb(struct ev_loop *loop, struct ev_io *io, int events) { struct og_client *cli; int ret; cli = container_of(io, struct og_client, io); ret = og_client_recv(cli, events); if (ret <= 0) goto close; ev_timer_again(loop, &cli->timer); cli->buf_len += ret; if (cli->buf_len >= sizeof(cli->buf)) { syslog(LOG_ERR, "client request from %s:%hu is too long\n", inet_ntoa(cli->addr.sin_addr), ntohs(cli->addr.sin_port)); og_client_payload_too_large(cli); goto close; } switch (cli->state) { case OG_CLIENT_RECEIVING_HEADER: ret = og_client_state_recv_hdr_rest(cli); if (ret < 0) goto close; if (!ret) return; cli->state = OG_CLIENT_RECEIVING_PAYLOAD; /* Fall through. */ case OG_CLIENT_RECEIVING_PAYLOAD: /* Still not enough data to process request. */ if (cli->buf_len < cli->msg_len) return; cli->state = OG_CLIENT_PROCESSING_REQUEST; /* fall through. */ case OG_CLIENT_PROCESSING_REQUEST: ret = og_client_state_process_payload_rest(cli); if (ret < 0) { syslog(LOG_ERR, "Failed to process HTTP request from %s:%hu\n", inet_ntoa(cli->addr.sin_addr), ntohs(cli->addr.sin_port)); } goto close; default: syslog(LOG_ERR, "unknown state, critical internal error\n"); goto close; } return; close: og_client_release(loop, cli); } enum og_agent_state { OG_AGENT_RECEIVING_HEADER = 0, OG_AGENT_RECEIVING_PAYLOAD, OG_AGENT_PROCESSING_RESPONSE, }; static int og_agent_state_recv_hdr_rest(struct og_client *cli) { uint32_t seq; char *ptr; ptr = strstr(cli->buf, "\r\n\r\n"); if (!ptr) return 0; cli->msg_len = ptr - cli->buf + 4; ptr = strstr(cli->buf, "Content-Length: "); if (ptr) { sscanf(ptr, "Content-Length: %i[^\r\n]", &cli->content_length); if (cli->content_length < 0) return -1; cli->msg_len += cli->content_length; } ptr = strstr(cli->buf, "X-Sequence: "); if (ptr) { if (sscanf(ptr, "X-Sequence: %i[^\r\n]", &seq) != 1) { syslog(LOG_ERR, "Invalid sequence value from client %s.\n" "Payload:\n%s", inet_ntoa(cli->addr.sin_addr), cli->buf); return -1; } if (cli->seq != 0 && cli->seq != seq) { syslog(LOG_ERR, "Unexpected sequence %u from client %s, expecting %u.\n" "Payload:\n%s", seq, inet_ntoa(cli->addr.sin_addr), cli->seq, cli->buf); return -1; } } return 1; } static void og_agent_reset_state(struct og_client *cli) { cli->state = OG_AGENT_RECEIVING_HEADER; cli->buf_len = 0; cli->content_length = 0; memset(cli->buf, 0, sizeof(cli->buf)); } #define OG_AGENT_CMD_TIMEOUT 900 static void og_agent_read_cb(struct ev_loop *loop, struct ev_io *io, int events) { struct og_client *cli; int ret; cli = container_of(io, struct og_client, io); ret = og_client_recv(cli, events); if (ret <= 0) goto close; ev_timer_again(loop, &cli->timer); cli->buf_len += ret; if (cli->buf_len >= sizeof(cli->buf)) { syslog(LOG_ERR, "client request from %s:%hu is too long\n", inet_ntoa(cli->addr.sin_addr), ntohs(cli->addr.sin_port)); goto close; } switch (cli->state) { case OG_AGENT_RECEIVING_HEADER: ret = og_agent_state_recv_hdr_rest(cli); if (ret < 0) goto close; if (!ret) return; cli->state = OG_AGENT_RECEIVING_PAYLOAD; /* Fall through. */ case OG_AGENT_RECEIVING_PAYLOAD: /* Still not enough data to process request. */ if (cli->buf_len < cli->msg_len) return; cli->state = OG_AGENT_PROCESSING_RESPONSE; /* fall through. */ case OG_AGENT_PROCESSING_RESPONSE: ret = og_agent_state_process_response(cli); if (ret < 0) goto close; og_agent_reset_state(cli); break; default: syslog(LOG_ERR, "unknown state, critical internal error\n"); goto close; } return; close: og_client_release(loop, cli); } static void og_client_timer_cb(struct ev_loop *loop, ev_timer *timer, int events) { struct og_client *cli; cli = container_of(timer, struct og_client, timer); if (cli->agent) { ev_timer_again(loop, &cli->timer); return; } syslog(LOG_ERR, "timeout request for client %s:%hu\n", inet_ntoa(cli->addr.sin_addr), ntohs(cli->addr.sin_port)); og_client_release(loop, cli); } static void og_agent_send_refresh(struct og_client *cli) { struct og_msg_params params; params.ips_array[0] = inet_ntoa(cli->addr.sin_addr); params.ips_array_len = 1; og_send_request(OG_METHOD_GET, OG_CMD_REFRESH, ¶ms, NULL, NULL); } /* Shut down connection if there is no complete message after 10 seconds. */ #define OG_CLIENT_TIMEOUT 10. /* Agent client operation might take longer, shut down after 30 seconds. */ #define OG_AGENT_CLIENT_TIMEOUT 30. #define OG_TCP_KEEPALIVE_IDLE 60 #define OG_TCP_KEEPALIVE_INTL 30 #define OG_TCP_KEEPALIVE_CNT 4 int socket_rest, socket_agent_rest; void og_server_accept_cb(struct ev_loop *loop, struct ev_io *io, int events) { int intl = OG_TCP_KEEPALIVE_INTL, cnt = OG_TCP_KEEPALIVE_CNT; int on = 1, idle = OG_TCP_KEEPALIVE_IDLE; struct sockaddr_in client_addr; socklen_t addrlen = sizeof(client_addr); struct og_client_wol *cli_wol; struct og_client *cli; int client_sd; bool agent; if (events & EV_ERROR) return; if (io->fd == socket_agent_rest) agent = true; else agent = false; client_sd = accept(io->fd, (struct sockaddr *)&client_addr, &addrlen); if (client_sd < 0) { syslog(LOG_ERR, "cannot accept client connection\n"); return; } setsockopt(client_sd, SOL_SOCKET, SO_KEEPALIVE, &on, sizeof(int)); setsockopt(client_sd, IPPROTO_TCP, TCP_KEEPIDLE, &idle, sizeof(int)); setsockopt(client_sd, IPPROTO_TCP, TCP_KEEPINTVL, &intl, sizeof(int)); setsockopt(client_sd, IPPROTO_TCP, TCP_KEEPCNT, &cnt, sizeof(int)); if (agent) { cli_wol = og_client_wol_find(&client_addr.sin_addr); if (cli_wol) og_client_wol_destroy(cli_wol); cli = __og_client_find(&client_addr.sin_addr); if (cli) og_client_release(loop, cli); } cli = (struct og_client *)calloc(1, sizeof(struct og_client)); if (!cli) { close(client_sd); return; } memcpy(&cli->addr, &client_addr, sizeof(client_addr)); if (agent) { cli->agent = true; ev_io_init(&cli->io, og_agent_read_cb, client_sd, EV_READ); } else { ev_io_init(&cli->io, og_client_read_cb, client_sd, EV_READ); } ev_io_start(loop, &cli->io); ev_init(&cli->timer, og_client_timer_cb); if (agent) cli->timer.repeat = OG_AGENT_CLIENT_TIMEOUT; else cli->timer.repeat = OG_CLIENT_TIMEOUT; ev_timer_again(loop, &cli->timer); og_client_add(cli); if (agent) og_agent_send_refresh(cli); } int og_socket_server_init(const char *addr, const char *port) { struct sockaddr_in local; uint64_t port_num; uint32_t s_addr; int sd, on = 1; if (!inet_pton(AF_INET, addr, &s_addr)) { syslog(LOG_ERR, "listener address `%s' not valid\n", addr); return -1; } sd = socket(AF_INET, SOCK_STREAM, IPPROTO_TCP); if (sd < 0) { syslog(LOG_ERR, "cannot create main socket\n"); return -1; } setsockopt(sd, SOL_SOCKET, SO_REUSEPORT, &on, sizeof(int)); local.sin_addr.s_addr = s_addr; local.sin_family = AF_INET; if (safe_strtoull(port, &port_num, 10, UINT16_MAX) < 0) { syslog(LOG_ERR, "failed to parse port %s (%s:%d)\n", port, __func__, __LINE__); return -1; } local.sin_port = htons(port_num); if (bind(sd, (struct sockaddr *) &local, sizeof(local)) < 0) { close(sd); syslog(LOG_ERR, "cannot bind socket\n"); return -1; } listen(sd, 250); return sd; }