iarv/znc
1
0
Fork 0
mirror of https://github.com/znc/znc.git synced 2026-03-28 17:42:41 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
2d1336dcf3d620f115aec771ddfb86b199a71e21
znc/include/znc/Socket.h
Falk Seidel 2e29d49a53 Welcome to 2015
2014-12-31 11:28:38 +01:00

257 lines
7.8 KiB
C++
Raw Blame History

/*
* Copyright (C) 2004-2015 ZNC, see the NOTICE file for details.
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
#ifndef SOCKET_H
#define SOCKET_H
#include <znc/zncconfig.h>
#include <znc/Csocket.h>
#include <znc/Threads.h>
class CModule;
class CZNCSock : public Csock {
public:
CZNCSock(int timeout = 60);
CZNCSock(const CString& sHost, u_short port, int timeout = 60);
~CZNCSock() {}
int ConvertAddress(const struct sockaddr_storage * pAddr, socklen_t iAddrLen, CS_STRING & sIP, u_short * piPort) const override;
#ifdef HAVE_LIBSSL
int VerifyPeerCertificate(int iPreVerify, X509_STORE_CTX * pStoreCTX) override;
void SSLHandShakeFinished() override;
#endif
void SetHostToVerifySSL(const CString& sHost) { m_HostToVerifySSL = sHost; }
CString GetSSLPeerFingerprint() const;
void SetSSLTrustedPeerFingerprints(const SCString& ssFPs) { m_ssTrustedFingerprints = ssFPs; }
#ifndef HAVE_ICU
// Don't fail to compile when ICU is not enabled
void SetEncoding(const CString&) {}
#endif
virtual CString GetRemoteIP() const { return Csock::GetRemoteIP(); }
protected:
// All existing errno codes seem to be in range 1-300
enum {
errnoBadSSLCert = 12569,
};
private:
CString m_HostToVerifySSL;
SCString m_ssTrustedFingerprints;
SCString m_ssCertVerificationErrors;
};
enum EAddrType {
ADDR_IPV4ONLY,
ADDR_IPV6ONLY,
ADDR_ALL
};
class CSockManager : public TSocketManager<CZNCSock> {
public:
CSockManager();
virtual ~CSockManager();
bool ListenHost(u_short iPort, const CString& sSockName, const CString& sBindHost, bool bSSL = false, int iMaxConns = SOMAXCONN, CZNCSock *pcSock = NULL, u_int iTimeout = 0, EAddrType eAddr = ADDR_ALL) {
CSListener L(iPort, sBindHost);
L.SetSockName(sSockName);
L.SetIsSSL(bSSL);
L.SetTimeout(iTimeout);
L.SetMaxConns(iMaxConns);
#ifdef HAVE_IPV6
switch (eAddr) {
case ADDR_IPV4ONLY:
L.SetAFRequire(CSSockAddr::RAF_INET);
break;
case ADDR_IPV6ONLY:
L.SetAFRequire(CSSockAddr::RAF_INET6);
break;
case ADDR_ALL:
L.SetAFRequire(CSSockAddr::RAF_ANY);
break;
}
#endif
return Listen(L, pcSock);
}
bool ListenAll(u_short iPort, const CString& sSockName, bool bSSL = false, int iMaxConns = SOMAXCONN, CZNCSock *pcSock = NULL, u_int iTimeout = 0, EAddrType eAddr = ADDR_ALL) {
return ListenHost(iPort, sSockName, "", bSSL, iMaxConns, pcSock, iTimeout, eAddr);
}
u_short ListenRand(const CString& sSockName, const CString& sBindHost, bool bSSL = false, int iMaxConns = SOMAXCONN, CZNCSock *pcSock = NULL, u_int iTimeout = 0, EAddrType eAddr = ADDR_ALL) {
unsigned short uPort = 0;
CSListener L(0, sBindHost);
L.SetSockName(sSockName);
L.SetIsSSL(bSSL);
L.SetTimeout(iTimeout);
L.SetMaxConns(iMaxConns);
#ifdef HAVE_IPV6
switch (eAddr) {
case ADDR_IPV4ONLY:
L.SetAFRequire(CSSockAddr::RAF_INET);
break;
case ADDR_IPV6ONLY:
L.SetAFRequire(CSSockAddr::RAF_INET6);
break;
case ADDR_ALL:
L.SetAFRequire(CSSockAddr::RAF_ANY);
break;
}
#endif
Listen(L, pcSock, &uPort);
return uPort;
}
u_short ListenAllRand(const CString& sSockName, bool bSSL = false, int iMaxConns = SOMAXCONN, CZNCSock *pcSock = NULL, u_int iTimeout = 0, EAddrType eAddr = ADDR_ALL) {
return(ListenRand(sSockName, "", bSSL, iMaxConns, pcSock, iTimeout, eAddr));
}
void Connect(const CString& sHostname, u_short iPort, const CString& sSockName, int iTimeout = 60, bool bSSL = false, const CString& sBindHost = "", CZNCSock *pcSock = NULL);
unsigned int GetAnonConnectionCount(const CString &sIP) const;
private:
void FinishConnect(const CString& sHostname, u_short iPort, const CString& sSockName, int iTimeout, bool bSSL, const CString& sBindHost, CZNCSock *pcSock);
class CTDNSMonitorFD;
friend class CTDNSMonitorFD;
#ifdef HAVE_THREADED_DNS
struct TDNSTask {
CString sHostname;
u_short iPort;
CString sSockName;
int iTimeout;
bool bSSL;
CString sBindhost;
CZNCSock* pcSock;
bool bDoneTarget;
bool bDoneBind;
addrinfo* aiTarget;
addrinfo* aiBind;
};
class CDNSJob : public CJob {
public:
CString sHostname;
TDNSTask* task;
CSockManager* pManager;
bool bBind;
int iRes;
addrinfo* aiResult;
void runThread();
void runMain();
};
void StartTDNSThread(TDNSTask* task, bool bBind);
void SetTDNSThreadFinished(TDNSTask* task, bool bBind, addrinfo* aiResult);
static void* TDNSThread(void* argument);
#endif
protected:
};
/**
* @class CSocket
* @brief Base Csock implementation to be used by modules
*
* By all means, this class should be used as a base for sockets originating from modules. It handles removing instances of itself
* from the module as it unloads, and simplifies use in general.
* - EnableReadLine is default to true in this class
* - MaxBuffer for readline is set to 10240, in the event this is reached the socket is closed (@see ReachedMaxBuffer)
*/
class CSocket : public CZNCSock {
public:
/**
* @brief ctor
* @param pModule the module this sock instance is associated to
*/
CSocket(CModule* pModule);
/**
* @brief ctor
* @param pModule the module this sock instance is associated to
* @param sHostname the hostname being connected to
* @param uPort the port being connected to
* @param iTimeout the timeout period for this specific sock
*/
CSocket(CModule* pModule, const CString& sHostname, unsigned short uPort, int iTimeout = 60);
virtual ~CSocket();
using Csock::Connect;
using Csock::Listen;
//! This defaults to closing the socket, feel free to override
virtual void ReachedMaxBuffer();
virtual void SockError(int iErrno, const CString& sDescription);
//! This limits the global connections from this IP to defeat DoS attacks, feel free to override. The ACL used is provided by the main interface @see CZNC::AllowConnectionFrom
virtual bool ConnectionFrom(const CString& sHost, unsigned short uPort);
//! Ease of use Connect, assigns to the manager and is subsequently tracked
bool Connect(const CString& sHostname, unsigned short uPort, bool bSSL = false, unsigned int uTimeout = 60);
//! Ease of use Listen, assigned to the manager and is subsequently tracked
bool Listen(unsigned short uPort, bool bSSL, unsigned int uTimeout = 0);
// Getters
CModule* GetModule() const;
// !Getters
private:
protected:
CModule* m_pModule; //!< pointer to the module that this sock instance belongs to
};
/**
* @class CIRCSocket
* @brief Base IRC socket for client<->ZNC, and ZNC<->server
*/
class CIRCSocket : public CZNCSock {
public:
#ifdef HAVE_ICU
/**
* @brief Allow IRC control characters to appear even if protocol encoding explicitly disallows them.
*
* E.g. ISO-2022-JP disallows 0x0F, which in IRC means "reset format",
* so by default it gets replaced with U+FFFD ("replacement character").
* https://code.google.com/p/chromium/issues/detail?id=277062#c3
*
* In case if protocol encoding uses these code points for something else, the encoding takes preference,
* and they are not IRC control characters anymore.
*/
void IcuExtToUCallback(
UConverterToUnicodeArgs* toArgs,
const char* codeUnits,
int32_t length,
UConverterCallbackReason reason,
UErrorCode* err) override;
void IcuExtFromUCallback(
UConverterFromUnicodeArgs* fromArgs,
const UChar* codeUnits,
int32_t length,
UChar32 codePoint,
UConverterCallbackReason reason,
UErrorCode* err) override;
#endif
};
#endif /* SOCKET_H */
Reference in New Issue View Git Blame Copy Permalink