2015-01-06 21:45:10 +00:00
/*
2015-02-17 21:11:34 +00:00
* ZeroTier One - Network Virtualization Everywhere
* Copyright ( C ) 2011 - 2015 ZeroTier , Inc .
2015-01-06 21:45:10 +00:00
*
* This program is free software : you can redistribute it and / or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation , either version 3 of the License , or
* ( at your option ) any later version .
*
* This program is distributed in the hope that it will be useful ,
* but WITHOUT ANY WARRANTY ; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE . See the
* GNU General Public License for more details .
*
* You should have received a copy of the GNU General Public License
* along with this program . If not , see < http : //www.gnu.org/licenses/>.
*
* - -
*
* ZeroTier may be used and distributed under the terms of the GPLv3 , which
* are available at : http : //www.gnu.org/licenses/gpl-3.0.html
*
* If you would like to embed ZeroTier into a commercial application or
* redistribute it in a modified binary form , please contact ZeroTier Networks
* LLC . Start here : http : //www.zerotier.com/
*/
# include <stdint.h>
# include <stdio.h>
# include <stdlib.h>
# include <string.h>
# include <time.h>
# include <sys/time.h>
# include <sys/types.h>
2015-01-08 22:27:55 +00:00
# include <algorithm>
# include <utility>
2015-02-24 22:17:57 +00:00
# include <stdexcept>
2015-04-22 01:37:17 +00:00
# include <set>
2015-01-08 22:27:55 +00:00
2015-04-17 22:21:53 +00:00
# include "../include/ZeroTierOne.h"
# include "../node/Constants.hpp"
2015-04-21 23:41:35 +00:00
# include "../ext/json-parser/json.h"
2015-04-15 22:12:09 +00:00
# include "SqliteNetworkController.hpp"
2015-10-06 22:56:18 +00:00
# include "../node/Node.hpp"
2015-02-24 22:17:57 +00:00
# include "../node/Utils.hpp"
# include "../node/CertificateOfMembership.hpp"
# include "../node/NetworkConfig.hpp"
2015-04-21 23:41:35 +00:00
# include "../node/InetAddress.hpp"
# include "../node/MAC.hpp"
# include "../node/Address.hpp"
2015-10-06 22:56:18 +00:00
2015-04-16 01:47:38 +00:00
# include "../osdep/OSUtils.hpp"
2015-01-06 21:45:10 +00:00
2015-03-17 21:54:13 +00:00
// Include ZT_NETCONF_SCHEMA_SQL constant to init database
2015-04-16 01:47:38 +00:00
# include "schema.sql.c"
2015-03-17 21:54:13 +00:00
2015-03-12 21:27:14 +00:00
// Stored in database as schemaVersion key in Config.
// If not present, database is assumed to be empty and at the current schema version
// and this key/value is added automatically.
# define ZT_NETCONF_SQLITE_SCHEMA_VERSION 1
2015-03-17 22:20:45 +00:00
# define ZT_NETCONF_SQLITE_SCHEMA_VERSION_STR "1"
2015-03-12 21:27:14 +00:00
2015-05-15 16:41:45 +00:00
// API version reported via JSON control plane
# define ZT_NETCONF_CONTROLLER_API_VERSION 1
2015-07-23 17:10:17 +00:00
// Drop requests for a given peer and network ID that occur more frequently
// than this (ms).
2015-07-24 00:18:20 +00:00
# define ZT_NETCONF_MIN_REQUEST_PERIOD 1000
2015-07-23 17:10:17 +00:00
2015-01-06 21:45:10 +00:00
namespace ZeroTier {
2015-04-21 23:41:35 +00:00
namespace {
static std : : string _jsonEscape ( const char * s )
{
if ( ! s )
return std : : string ( ) ;
std : : string buf ;
for ( const char * p = s ; ( * p ) ; + + p ) {
switch ( * p ) {
case ' \t ' : buf . append ( " \\ t " ) ; break ;
case ' \b ' : buf . append ( " \\ b " ) ; break ;
case ' \r ' : buf . append ( " \\ r " ) ; break ;
case ' \n ' : buf . append ( " \\ n " ) ; break ;
case ' \f ' : buf . append ( " \\ f " ) ; break ;
case ' " ' : buf . append ( " \\ \" " ) ; break ;
case ' \\ ' : buf . append ( " \\ \\ " ) ; break ;
case ' / ' : buf . append ( " \\ / " ) ; break ;
default : buf . push_back ( * p ) ; break ;
}
}
return buf ;
}
static std : : string _jsonEscape ( const std : : string & s ) { return _jsonEscape ( s . c_str ( ) ) ; }
struct MemberRecord {
int64_t rowid ;
char nodeId [ 16 ] ;
bool authorized ;
bool activeBridge ;
} ;
struct NetworkRecord {
char id [ 24 ] ;
const char * name ;
const char * v4AssignMode ;
const char * v6AssignMode ;
bool isPrivate ;
bool enableBroadcast ;
bool allowPassiveBridging ;
int multicastLimit ;
uint64_t creationTime ;
uint64_t revision ;
2015-07-17 00:34:03 +00:00
uint64_t memberRevisionCounter ;
2015-04-21 23:41:35 +00:00
} ;
} // anonymous namespace
2015-10-06 22:56:18 +00:00
SqliteNetworkController : : SqliteNetworkController ( Node * node , const char * dbPath , const char * circuitTestPath ) :
_node ( node ) ,
2015-03-12 21:03:53 +00:00
_dbPath ( dbPath ) ,
2015-10-06 22:56:18 +00:00
_circuitTestPath ( circuitTestPath ) ,
2015-03-18 23:10:48 +00:00
_db ( ( sqlite3 * ) 0 )
2015-01-06 21:45:10 +00:00
{
2015-03-17 21:54:13 +00:00
if ( sqlite3_open_v2 ( dbPath , & _db , SQLITE_OPEN_READWRITE | SQLITE_OPEN_CREATE , ( const char * ) 0 ) ! = SQLITE_OK )
2015-04-15 22:12:09 +00:00
throw std : : runtime_error ( " SqliteNetworkController cannot open database file " ) ;
2015-03-12 21:03:53 +00:00
sqlite3_busy_timeout ( _db , 10000 ) ;
2015-03-17 22:20:45 +00:00
2015-03-18 23:10:48 +00:00
sqlite3_stmt * s = ( sqlite3_stmt * ) 0 ;
2015-04-17 22:21:53 +00:00
if ( ( sqlite3_prepare_v2 ( _db , " SELECT v FROM Config WHERE k = 'schemaVersion'; " , - 1 , & s , ( const char * * ) 0 ) = = SQLITE_OK ) & & ( s ) ) {
2015-03-18 23:10:48 +00:00
int schemaVersion = - 1234 ;
2015-04-17 22:21:53 +00:00
if ( sqlite3_step ( s ) = = SQLITE_ROW ) {
2015-03-18 23:10:48 +00:00
schemaVersion = sqlite3_column_int ( s , 0 ) ;
2015-04-17 22:21:53 +00:00
}
2015-03-18 23:10:48 +00:00
sqlite3_finalize ( s ) ;
if ( schemaVersion = = - 1234 ) {
sqlite3_close ( _db ) ;
2015-04-15 22:12:09 +00:00
throw std : : runtime_error ( " SqliteNetworkController schemaVersion not found in Config table (init failure?) " ) ;
2015-03-18 23:10:48 +00:00
} else if ( schemaVersion ! = ZT_NETCONF_SQLITE_SCHEMA_VERSION ) {
// Note -- this will eventually run auto-upgrades so this isn't how it'll work going forward
sqlite3_close ( _db ) ;
2015-04-15 22:12:09 +00:00
throw std : : runtime_error ( " SqliteNetworkController database schema version mismatch " ) ;
2015-03-18 23:10:48 +00:00
}
} else {
// Prepare statement will fail if Config table doesn't exist, which means our DB
// needs to be initialized.
if ( sqlite3_exec ( _db , ZT_NETCONF_SCHEMA_SQL " INSERT INTO Config (k,v) VALUES ('schemaVersion', " ZT_NETCONF_SQLITE_SCHEMA_VERSION_STR " ); " , 0 , 0 , 0 ) ! = SQLITE_OK ) {
2015-07-29 22:09:23 +00:00
char err [ 1024 ] ;
Utils : : snprintf ( err , sizeof ( err ) , " SqliteNetworkController cannot initialize database and/or insert schemaVersion into Config table: %s " , sqlite3_errmsg ( _db ) ) ;
2015-03-18 23:10:48 +00:00
sqlite3_close ( _db ) ;
2015-07-29 22:09:23 +00:00
throw std : : runtime_error ( err ) ;
2015-03-18 23:10:48 +00:00
}
2015-03-17 22:20:45 +00:00
}
2015-03-18 23:10:48 +00:00
if (
2015-06-29 21:52:09 +00:00
/* Network */
2015-08-19 18:43:56 +00:00
( sqlite3_prepare_v2 ( _db , " SELECT name,private,enableBroadcast,allowPassiveBridging,v4AssignMode,v6AssignMode,multicastLimit,creationTime,revision,memberRevisionCounter,(SELECT COUNT(1) FROM Member WHERE Member.networkId = Network.id AND Member.authorized > 0) FROM Network WHERE id = ? " , - 1 , & _sGetNetworkById , ( const char * * ) 0 ) ! = SQLITE_OK )
2015-06-29 21:52:09 +00:00
| | ( sqlite3_prepare_v2 ( _db , " SELECT revision FROM Network WHERE id = ? " , - 1 , & _sGetNetworkRevision , ( const char * * ) 0 ) ! = SQLITE_OK )
| | ( sqlite3_prepare_v2 ( _db , " UPDATE Network SET revision = ? WHERE id = ? " , - 1 , & _sSetNetworkRevision , ( const char * * ) 0 ) ! = SQLITE_OK )
| | ( sqlite3_prepare_v2 ( _db , " INSERT INTO Network (id,name,creationTime,revision) VALUES (?,?,?,1) " , - 1 , & _sCreateNetwork , ( const char * * ) 0 ) ! = SQLITE_OK )
| | ( sqlite3_prepare_v2 ( _db , " DELETE FROM Network WHERE id = ? " , - 1 , & _sDeleteNetwork , ( const char * * ) 0 ) ! = SQLITE_OK )
| | ( sqlite3_prepare_v2 ( _db , " SELECT id FROM Network ORDER BY id ASC " , - 1 , & _sListNetworks , ( const char * * ) 0 ) ! = SQLITE_OK )
2015-07-17 00:34:03 +00:00
| | ( sqlite3_prepare_v2 ( _db , " UPDATE Network SET memberRevisionCounter = (memberRevisionCounter + 1) WHERE id = ? " , - 1 , & _sIncrementMemberRevisionCounter , ( const char * * ) 0 ) ! = SQLITE_OK )
2015-06-29 21:52:09 +00:00
/* Node */
2015-04-17 22:21:53 +00:00
| | ( sqlite3_prepare_v2 ( _db , " SELECT identity FROM Node WHERE id = ? " , - 1 , & _sGetNodeIdentity , ( const char * * ) 0 ) ! = SQLITE_OK )
2015-09-10 21:37:34 +00:00
| | ( sqlite3_prepare_v2 ( _db , " INSERT OR REPLACE INTO Node (id,identity) VALUES (?,?) " , - 1 , & _sCreateOrReplaceNode , ( const char * * ) 0 ) ! = SQLITE_OK )
2015-06-29 21:52:09 +00:00
/* Rule */
2015-04-17 22:21:53 +00:00
| | ( sqlite3_prepare_v2 ( _db , " SELECT etherType FROM Rule WHERE networkId = ? AND \" action \" = 'accept' " , - 1 , & _sGetEtherTypesFromRuleTable , ( const char * * ) 0 ) ! = SQLITE_OK )
2015-06-29 22:34:26 +00:00
| | ( sqlite3_prepare_v2 ( _db , " INSERT INTO Rule (networkId,ruleNo,nodeId,sourcePort,destPort,vlanId,vlanPcP,etherType,macSource,macDest,ipSource,ipDest,ipTos,ipProtocol,ipSourcePort,ipDestPort,flags,invFlags, \" action \" ) VALUES (?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?) " , - 1 , & _sCreateRule , ( const char * * ) 0 ) ! = SQLITE_OK )
| | ( sqlite3_prepare_v2 ( _db , " SELECT ruleNo,nodeId,sourcePort,destPort,vlanId,vlanPcp,etherType,macSource,macDest,ipSource,ipDest,ipTos,ipProtocol,ipSourcePort,ipDestPort, \" flags \" ,invFlags, \" action \" FROM Rule WHERE networkId = ? ORDER BY ruleNo ASC " , - 1 , & _sListRules , ( const char * * ) 0 ) ! = SQLITE_OK )
2015-06-29 21:52:09 +00:00
| | ( sqlite3_prepare_v2 ( _db , " DELETE FROM Rule WHERE networkId = ? " , - 1 , & _sDeleteRulesForNetwork , ( const char * * ) 0 ) ! = SQLITE_OK )
/* IpAssignmentPool */
| | ( sqlite3_prepare_v2 ( _db , " SELECT ipRangeStart,ipRangeEnd FROM IpAssignmentPool WHERE networkId = ? AND ipVersion = ? " , - 1 , & _sGetIpAssignmentPools , ( const char * * ) 0 ) ! = SQLITE_OK )
| | ( sqlite3_prepare_v2 ( _db , " SELECT ipRangeStart,ipRangeEnd,ipVersion FROM IpAssignmentPool WHERE networkId = ? ORDER BY ipRangeStart ASC " , - 1 , & _sGetIpAssignmentPools2 , ( const char * * ) 0 ) ! = SQLITE_OK )
| | ( sqlite3_prepare_v2 ( _db , " INSERT INTO IpAssignmentPool (networkId,ipRangeStart,ipRangeEnd,ipVersion) VALUES (?,?,?,?) " , - 1 , & _sCreateIpAssignmentPool , ( const char * * ) 0 ) ! = SQLITE_OK )
| | ( sqlite3_prepare_v2 ( _db , " DELETE FROM IpAssignmentPool WHERE networkId = ? " , - 1 , & _sDeleteIpAssignmentPoolsForNetwork , ( const char * * ) 0 ) ! = SQLITE_OK )
/* IpAssignment */
2015-07-21 19:42:43 +00:00
| | ( sqlite3_prepare_v2 ( _db , " SELECT \" type \" ,ip,ipNetmaskBits FROM IpAssignment WHERE networkId = ? AND (nodeId = ? OR nodeId IS NULL) AND ipVersion = ? " , - 1 , & _sGetIpAssignmentsForNode , ( const char * * ) 0 ) ! = SQLITE_OK )
2015-06-29 21:52:09 +00:00
| | ( sqlite3_prepare_v2 ( _db , " SELECT ip,ipNetmaskBits,ipVersion FROM IpAssignment WHERE networkId = ? AND nodeId = ? AND \" type \" = ? ORDER BY ip ASC " , - 1 , & _sGetIpAssignmentsForNode2 , ( const char * * ) 0 ) ! = SQLITE_OK )
2015-06-29 22:34:26 +00:00
| | ( sqlite3_prepare_v2 ( _db , " SELECT ip,ipNetmaskBits,ipVersion FROM IpAssignment WHERE networkId = ? AND nodeId IS NULL AND \" type \" = ? " , - 1 , & _sGetLocalRoutes , ( const char * * ) 0 ) ! = SQLITE_OK )
2015-06-29 21:52:09 +00:00
| | ( sqlite3_prepare_v2 ( _db , " SELECT 1 FROM IpAssignment WHERE networkId = ? AND ip = ? AND ipVersion = ? AND \" type \" = ? " , - 1 , & _sCheckIfIpIsAllocated , ( const char * * ) 0 ) ! = SQLITE_OK )
| | ( sqlite3_prepare_v2 ( _db , " INSERT INTO IpAssignment (networkId,nodeId, \" type \" ,ip,ipNetmaskBits,ipVersion) VALUES (?,?,?,?,?,?) " , - 1 , & _sAllocateIp , ( const char * * ) 0 ) ! = SQLITE_OK )
| | ( sqlite3_prepare_v2 ( _db , " DELETE FROM IpAssignment WHERE networkId = ? AND nodeId = ? AND \" type \" = ? " , - 1 , & _sDeleteIpAllocations , ( const char * * ) 0 ) ! = SQLITE_OK )
2015-06-29 22:34:26 +00:00
| | ( sqlite3_prepare_v2 ( _db , " DELETE FROM IpAssignment WHERE networkId = ? AND nodeId IS NULL AND \" type \" = ? " , - 1 , & _sDeleteLocalRoutes , ( const char * * ) 0 ) ! = SQLITE_OK )
2015-06-29 21:52:09 +00:00
/* Relay */
2015-07-20 21:28:30 +00:00
| | ( sqlite3_prepare_v2 ( _db , " SELECT \" address \" , \" phyAddress \" FROM Relay WHERE \" networkId \" = ? ORDER BY \" address \" ASC " , - 1 , & _sGetRelays , ( const char * * ) 0 ) ! = SQLITE_OK )
2015-04-22 02:49:04 +00:00
| | ( sqlite3_prepare_v2 ( _db , " DELETE FROM Relay WHERE networkId = ? " , - 1 , & _sDeleteRelaysForNetwork , ( const char * * ) 0 ) ! = SQLITE_OK )
2015-07-20 21:28:30 +00:00
| | ( sqlite3_prepare_v2 ( _db , " INSERT INTO Relay ( \" networkId \" , \" address \" , \" phyAddress \" ) VALUES (?,?,?) " , - 1 , & _sCreateRelay , ( const char * * ) 0 ) ! = SQLITE_OK )
2015-06-29 21:52:09 +00:00
/* Member */
| | ( sqlite3_prepare_v2 ( _db , " SELECT rowid,authorized,activeBridge FROM Member WHERE networkId = ? AND nodeId = ? " , - 1 , & _sGetMember , ( const char * * ) 0 ) ! = SQLITE_OK )
2015-08-17 21:08:02 +00:00
| | ( sqlite3_prepare_v2 ( _db , " SELECT m.authorized,m.activeBridge,m.memberRevision,n.identity FROM Member AS m LEFT OUTER JOIN Node AS n ON n.id = m.nodeId WHERE m.networkId = ? AND m.nodeId = ? " , - 1 , & _sGetMember2 , ( const char * * ) 0 ) ! = SQLITE_OK )
2015-07-17 00:34:03 +00:00
| | ( sqlite3_prepare_v2 ( _db , " INSERT INTO Member (networkId,nodeId,authorized,activeBridge,memberRevision) VALUES (?,?,?,0,(SELECT memberRevisionCounter FROM Network WHERE id = ?)) " , - 1 , & _sCreateMember , ( const char * * ) 0 ) ! = SQLITE_OK )
2015-06-29 21:52:09 +00:00
| | ( sqlite3_prepare_v2 ( _db , " SELECT nodeId FROM Member WHERE networkId = ? AND activeBridge > 0 AND authorized > 0 " , - 1 , & _sGetActiveBridges , ( const char * * ) 0 ) ! = SQLITE_OK )
2015-07-21 20:38:59 +00:00
| | ( sqlite3_prepare_v2 ( _db , " SELECT m.nodeId,m.memberRevision FROM Member AS m WHERE m.networkId = ? ORDER BY m.nodeId ASC " , - 1 , & _sListNetworkMembers , ( const char * * ) 0 ) ! = SQLITE_OK )
2015-07-17 00:34:03 +00:00
| | ( sqlite3_prepare_v2 ( _db , " UPDATE Member SET authorized = ?,memberRevision = (SELECT memberRevisionCounter FROM Network WHERE id = ?) WHERE rowid = ? " , - 1 , & _sUpdateMemberAuthorized , ( const char * * ) 0 ) ! = SQLITE_OK )
| | ( sqlite3_prepare_v2 ( _db , " UPDATE Member SET activeBridge = ?,memberRevision = (SELECT memberRevisionCounter FROM Network WHERE id = ?) WHERE rowid = ? " , - 1 , & _sUpdateMemberActiveBridge , ( const char * * ) 0 ) ! = SQLITE_OK )
2015-05-16 20:42:53 +00:00
| | ( sqlite3_prepare_v2 ( _db , " DELETE FROM Member WHERE networkId = ? AND nodeId = ? " , - 1 , & _sDeleteMember , ( const char * * ) 0 ) ! = SQLITE_OK )
2015-09-11 22:02:26 +00:00
| | ( sqlite3_prepare_v2 ( _db , " DELETE FROM Member WHERE networkId = ? " , - 1 , & _sDeleteAllNetworkMembers , ( const char * * ) 0 ) ! = SQLITE_OK )
2015-06-29 21:52:09 +00:00
/* Gateway */
2015-07-22 21:01:49 +00:00
| | ( sqlite3_prepare_v2 ( _db , " SELECT \" ip \" ,ipVersion,metric FROM Gateway WHERE networkId = ? ORDER BY metric ASC " , - 1 , & _sGetGateways , ( const char * * ) 0 ) ! = SQLITE_OK )
2015-06-13 09:34:31 +00:00
| | ( sqlite3_prepare_v2 ( _db , " DELETE FROM Gateway WHERE networkId = ? " , - 1 , & _sDeleteGateways , ( const char * * ) 0 ) ! = SQLITE_OK )
2015-07-22 21:01:49 +00:00
| | ( sqlite3_prepare_v2 ( _db , " INSERT INTO Gateway (networkId, \" ip \" ,ipVersion,metric) VALUES (?,?,?,?) " , - 1 , & _sCreateGateway , ( const char * * ) 0 ) ! = SQLITE_OK )
2015-07-17 17:47:21 +00:00
/* Config */
| | ( sqlite3_prepare_v2 ( _db , " SELECT \" v \" FROM \" Config \" WHERE \" k \" = ? " , - 1 , & _sGetConfig , ( const char * * ) 0 ) ! = SQLITE_OK )
2015-07-21 17:39:29 +00:00
| | ( sqlite3_prepare_v2 ( _db , " INSERT OR REPLACE INTO \" Config \" ( \" k \" , \" v \" ) VALUES (?,?) " , - 1 , & _sSetConfig , ( const char * * ) 0 ) ! = SQLITE_OK )
2015-07-17 17:47:21 +00:00
2015-03-18 23:10:48 +00:00
) {
2015-07-22 21:01:49 +00:00
//printf("%s\n",sqlite3_errmsg(_db));
2015-03-17 22:20:45 +00:00
sqlite3_close ( _db ) ;
2015-04-15 22:12:09 +00:00
throw std : : runtime_error ( " SqliteNetworkController unable to initialize one or more prepared statements " ) ;
2015-03-17 22:20:45 +00:00
}
2015-07-17 17:47:21 +00:00
/* Generate a 128-bit / 32-character "instance ID" if one isn't already
* defined . Clients can use this to determine if this is the same controller
* database they know and love . */
sqlite3_reset ( _sGetConfig ) ;
sqlite3_bind_text ( _sGetConfig , 1 , " instanceId " , 10 , SQLITE_STATIC ) ;
if ( sqlite3_step ( _sGetConfig ) ! = SQLITE_ROW ) {
2015-07-17 20:09:53 +00:00
unsigned char sr [ 32 ] ;
Utils : : getSecureRandom ( sr , 32 ) ;
for ( unsigned int i = 0 ; i < 32 ; + + i )
2015-07-21 17:39:29 +00:00
_instanceId . push_back ( " 0123456789abcdef " [ ( unsigned int ) sr [ i ] & 0xf ] ) ;
2015-07-17 17:47:21 +00:00
sqlite3_reset ( _sSetConfig ) ;
sqlite3_bind_text ( _sSetConfig , 1 , " instanceId " , 10 , SQLITE_STATIC ) ;
2015-07-21 17:39:29 +00:00
sqlite3_bind_text ( _sSetConfig , 2 , _instanceId . c_str ( ) , - 1 , SQLITE_STATIC ) ;
if ( sqlite3_step ( _sSetConfig ) ! = SQLITE_DONE )
2015-07-17 17:47:21 +00:00
throw std : : runtime_error ( " SqliteNetworkController unable to read or initialize instanceId " ) ;
2015-07-21 17:39:29 +00:00
} else {
const char * iid = reinterpret_cast < const char * > ( sqlite3_column_text ( _sGetConfig , 0 ) ) ;
if ( ! iid )
throw std : : runtime_error ( " SqliteNetworkController unable to read instanceId (it's NULL) " ) ;
_instanceId = iid ;
2015-07-17 17:47:21 +00:00
}
2015-01-06 21:45:10 +00:00
}
2015-04-15 22:12:09 +00:00
SqliteNetworkController : : ~ SqliteNetworkController ( )
2015-01-06 21:45:10 +00:00
{
Mutex : : Lock _l ( _lock ) ;
2015-03-18 23:10:48 +00:00
if ( _db ) {
sqlite3_finalize ( _sGetNetworkById ) ;
2015-04-21 23:41:35 +00:00
sqlite3_finalize ( _sGetMember ) ;
2015-03-18 23:10:48 +00:00
sqlite3_finalize ( _sCreateMember ) ;
sqlite3_finalize ( _sGetNodeIdentity ) ;
2015-09-10 21:37:34 +00:00
sqlite3_finalize ( _sCreateOrReplaceNode ) ;
2015-03-18 23:10:48 +00:00
sqlite3_finalize ( _sUpdateNode ) ;
sqlite3_finalize ( _sUpdateNode2 ) ;
sqlite3_finalize ( _sGetEtherTypesFromRuleTable ) ;
sqlite3_finalize ( _sGetActiveBridges ) ;
sqlite3_finalize ( _sGetIpAssignmentsForNode ) ;
sqlite3_finalize ( _sGetIpAssignmentPools ) ;
2015-06-29 22:34:26 +00:00
sqlite3_finalize ( _sGetLocalRoutes ) ;
2015-03-18 23:10:48 +00:00
sqlite3_finalize ( _sCheckIfIpIsAllocated ) ;
sqlite3_finalize ( _sAllocateIp ) ;
2015-05-16 19:50:42 +00:00
sqlite3_finalize ( _sDeleteIpAllocations ) ;
2015-06-29 22:34:26 +00:00
sqlite3_finalize ( _sDeleteLocalRoutes ) ;
2015-04-21 00:47:12 +00:00
sqlite3_finalize ( _sGetRelays ) ;
2015-04-21 23:41:35 +00:00
sqlite3_finalize ( _sListNetworks ) ;
sqlite3_finalize ( _sListNetworkMembers ) ;
sqlite3_finalize ( _sGetMember2 ) ;
sqlite3_finalize ( _sGetIpAssignmentPools2 ) ;
sqlite3_finalize ( _sListRules ) ;
2015-04-22 01:08:33 +00:00
sqlite3_finalize ( _sCreateRule ) ;
sqlite3_finalize ( _sCreateNetwork ) ;
sqlite3_finalize ( _sGetNetworkRevision ) ;
2015-04-24 19:29:31 +00:00
sqlite3_finalize ( _sSetNetworkRevision ) ;
2015-04-22 02:49:04 +00:00
sqlite3_finalize ( _sGetIpAssignmentsForNode2 ) ;
sqlite3_finalize ( _sDeleteRelaysForNetwork ) ;
sqlite3_finalize ( _sCreateRelay ) ;
2015-04-23 01:06:26 +00:00
sqlite3_finalize ( _sDeleteIpAssignmentPoolsForNetwork ) ;
sqlite3_finalize ( _sDeleteRulesForNetwork ) ;
sqlite3_finalize ( _sCreateIpAssignmentPool ) ;
2015-06-19 19:19:42 +00:00
sqlite3_finalize ( _sUpdateMemberAuthorized ) ;
sqlite3_finalize ( _sUpdateMemberActiveBridge ) ;
sqlite3_finalize ( _sDeleteMember ) ;
2015-09-11 22:02:26 +00:00
sqlite3_finalize ( _sDeleteAllNetworkMembers ) ;
2015-06-13 09:34:31 +00:00
sqlite3_finalize ( _sDeleteNetwork ) ;
sqlite3_finalize ( _sGetGateways ) ;
sqlite3_finalize ( _sDeleteGateways ) ;
sqlite3_finalize ( _sCreateGateway ) ;
2015-07-17 00:34:03 +00:00
sqlite3_finalize ( _sIncrementMemberRevisionCounter ) ;
2015-07-17 17:47:21 +00:00
sqlite3_finalize ( _sGetConfig ) ;
sqlite3_finalize ( _sSetConfig ) ;
2015-03-12 21:03:53 +00:00
sqlite3_close ( _db ) ;
2015-03-18 23:10:48 +00:00
}
2015-01-06 21:45:10 +00:00
}
2015-09-08 18:35:55 +00:00
NetworkController : : ResultCode SqliteNetworkController : : doNetworkConfigRequest ( const InetAddress & fromAddr , const Identity & signingId , const Identity & identity , uint64_t nwid , const Dictionary & metaData , Dictionary & netconf )
2015-01-06 21:45:10 +00:00
{
2015-09-10 21:47:04 +00:00
Mutex : : Lock _l ( _lock ) ;
return _doNetworkConfigRequest ( fromAddr , signingId , identity , nwid , metaData , netconf ) ;
}
2015-07-23 16:50:10 +00:00
2015-09-10 21:47:04 +00:00
unsigned int SqliteNetworkController : : handleControlPlaneHttpGET (
const std : : vector < std : : string > & path ,
const std : : map < std : : string , std : : string > & urlArgs ,
const std : : map < std : : string , std : : string > & headers ,
const std : : string & body ,
std : : string & responseBody ,
std : : string & responseContentType )
{
2015-01-07 01:16:54 +00:00
Mutex : : Lock _l ( _lock ) ;
2015-09-10 21:47:04 +00:00
return _doCPGet ( path , urlArgs , headers , body , responseBody , responseContentType ) ;
}
2015-01-07 01:16:54 +00:00
2015-09-10 21:47:04 +00:00
unsigned int SqliteNetworkController : : handleControlPlaneHttpPOST (
const std : : vector < std : : string > & path ,
const std : : map < std : : string , std : : string > & urlArgs ,
const std : : map < std : : string , std : : string > & headers ,
const std : : string & body ,
std : : string & responseBody ,
std : : string & responseContentType )
{
if ( path . empty ( ) )
return 404 ;
Mutex : : Lock _l ( _lock ) ;
2015-03-18 23:10:48 +00:00
2015-09-10 21:47:04 +00:00
if ( path [ 0 ] = = " network " ) {
2015-04-16 01:32:25 +00:00
2015-09-10 21:47:04 +00:00
if ( ( path . size ( ) > = 2 ) & & ( path [ 1 ] . length ( ) = = 16 ) ) {
uint64_t nwid = Utils : : hexStrToU64 ( path [ 1 ] . c_str ( ) ) ;
char nwids [ 24 ] ;
Utils : : snprintf ( nwids , sizeof ( nwids ) , " %.16llx " , ( unsigned long long ) nwid ) ;
2015-07-23 17:10:17 +00:00
2015-09-10 21:47:04 +00:00
int64_t revision = 0 ;
sqlite3_reset ( _sGetNetworkRevision ) ;
sqlite3_bind_text ( _sGetNetworkRevision , 1 , nwids , 16 , SQLITE_STATIC ) ;
bool networkExists = false ;
if ( sqlite3_step ( _sGetNetworkRevision ) = = SQLITE_ROW ) {
networkExists = true ;
revision = sqlite3_column_int64 ( _sGetNetworkRevision , 0 ) ;
}
2015-07-23 17:10:17 +00:00
2015-09-10 21:47:04 +00:00
if ( path . size ( ) > = 3 ) {
2015-03-18 23:10:48 +00:00
2015-09-10 21:47:04 +00:00
if ( ! networkExists )
return 404 ;
2015-03-18 23:10:48 +00:00
2015-09-10 21:47:04 +00:00
if ( ( path . size ( ) = = 4 ) & & ( path [ 2 ] = = " member " ) & & ( path [ 3 ] . length ( ) = = 10 ) ) {
uint64_t address = Utils : : hexStrToU64 ( path [ 3 ] . c_str ( ) ) ;
char addrs [ 24 ] ;
Utils : : snprintf ( addrs , sizeof ( addrs ) , " %.10llx " , address ) ;
2015-03-18 23:10:48 +00:00
2015-09-10 21:47:04 +00:00
int64_t addToNetworkRevision = 0 ;
2015-01-07 01:16:54 +00:00
2015-09-10 21:47:04 +00:00
int64_t memberRowId = 0 ;
sqlite3_reset ( _sGetMember ) ;
sqlite3_bind_text ( _sGetMember , 1 , nwids , 16 , SQLITE_STATIC ) ;
sqlite3_bind_text ( _sGetMember , 2 , addrs , 10 , SQLITE_STATIC ) ;
bool memberExists = false ;
if ( sqlite3_step ( _sGetMember ) = = SQLITE_ROW ) {
memberExists = true ;
memberRowId = sqlite3_column_int64 ( _sGetMember , 0 ) ;
}
2015-03-18 23:10:48 +00:00
2015-09-10 21:47:04 +00:00
if ( ! memberExists ) {
sqlite3_reset ( _sCreateMember ) ;
sqlite3_bind_text ( _sCreateMember , 1 , nwids , 16 , SQLITE_STATIC ) ;
sqlite3_bind_text ( _sCreateMember , 2 , addrs , 10 , SQLITE_STATIC ) ;
sqlite3_bind_int ( _sCreateMember , 3 , 0 ) ;
sqlite3_bind_text ( _sCreateMember , 4 , nwids , 16 , SQLITE_STATIC ) ;
if ( sqlite3_step ( _sCreateMember ) ! = SQLITE_DONE )
return 500 ;
memberRowId = ( int64_t ) sqlite3_last_insert_rowid ( _db ) ;
2015-01-07 01:16:54 +00:00
2015-09-10 21:47:04 +00:00
sqlite3_reset ( _sIncrementMemberRevisionCounter ) ;
sqlite3_bind_text ( _sIncrementMemberRevisionCounter , 1 , nwids , 16 , SQLITE_STATIC ) ;
sqlite3_step ( _sIncrementMemberRevisionCounter ) ;
addToNetworkRevision = 1 ;
}
2015-03-18 23:10:48 +00:00
2015-09-10 21:47:04 +00:00
json_value * j = json_parse ( body . c_str ( ) , body . length ( ) ) ;
if ( j ) {
if ( j - > type = = json_object ) {
for ( unsigned int k = 0 ; k < j - > u . object . length ; + + k ) {
2015-01-07 01:16:54 +00:00
2015-09-10 21:47:04 +00:00
if ( ! strcmp ( j - > u . object . values [ k ] . name , " authorized " ) ) {
if ( j - > u . object . values [ k ] . value - > type = = json_boolean ) {
sqlite3_reset ( _sUpdateMemberAuthorized ) ;
sqlite3_bind_int ( _sUpdateMemberAuthorized , 1 , ( j - > u . object . values [ k ] . value - > u . boolean = = 0 ) ? 0 : 1 ) ;
sqlite3_bind_text ( _sUpdateMemberAuthorized , 2 , nwids , 16 , SQLITE_STATIC ) ;
sqlite3_bind_int64 ( _sUpdateMemberAuthorized , 3 , memberRowId ) ;
if ( sqlite3_step ( _sUpdateMemberAuthorized ) ! = SQLITE_DONE )
return 500 ;
2015-03-18 23:10:48 +00:00
2015-09-10 21:47:04 +00:00
sqlite3_reset ( _sIncrementMemberRevisionCounter ) ;
sqlite3_bind_text ( _sIncrementMemberRevisionCounter , 1 , nwids , 16 , SQLITE_STATIC ) ;
sqlite3_step ( _sIncrementMemberRevisionCounter ) ;
addToNetworkRevision = 1 ;
}
} else if ( ! strcmp ( j - > u . object . values [ k ] . name , " activeBridge " ) ) {
if ( j - > u . object . values [ k ] . value - > type = = json_boolean ) {
sqlite3_reset ( _sUpdateMemberActiveBridge ) ;
sqlite3_bind_int ( _sUpdateMemberActiveBridge , 1 , ( j - > u . object . values [ k ] . value - > u . boolean = = 0 ) ? 0 : 1 ) ;
sqlite3_bind_text ( _sUpdateMemberActiveBridge , 2 , nwids , 16 , SQLITE_STATIC ) ;
sqlite3_bind_int64 ( _sUpdateMemberActiveBridge , 3 , memberRowId ) ;
if ( sqlite3_step ( _sUpdateMemberActiveBridge ) ! = SQLITE_DONE )
return 500 ;
2015-07-17 00:34:03 +00:00
2015-09-10 21:47:04 +00:00
sqlite3_reset ( _sIncrementMemberRevisionCounter ) ;
sqlite3_bind_text ( _sIncrementMemberRevisionCounter , 1 , nwids , 16 , SQLITE_STATIC ) ;
sqlite3_step ( _sIncrementMemberRevisionCounter ) ;
addToNetworkRevision = 1 ;
}
} else if ( ! strcmp ( j - > u . object . values [ k ] . name , " ipAssignments " ) ) {
if ( j - > u . object . values [ k ] . value - > type = = json_array ) {
sqlite3_reset ( _sDeleteIpAllocations ) ;
sqlite3_bind_text ( _sDeleteIpAllocations , 1 , nwids , 16 , SQLITE_STATIC ) ;
sqlite3_bind_text ( _sDeleteIpAllocations , 2 , addrs , 10 , SQLITE_STATIC ) ;
sqlite3_bind_int ( _sDeleteIpAllocations , 3 , ( int ) ZT_IP_ASSIGNMENT_TYPE_ADDRESS ) ;
if ( sqlite3_step ( _sDeleteIpAllocations ) ! = SQLITE_DONE )
return 500 ;
for ( unsigned int kk = 0 ; kk < j - > u . object . values [ k ] . value - > u . array . length ; + + kk ) {
json_value * ipalloc = j - > u . object . values [ k ] . value - > u . array . values [ kk ] ;
if ( ipalloc - > type = = json_string ) {
InetAddress a ( ipalloc - > u . string . ptr ) ;
char ipBlob [ 16 ] ;
int ipVersion = 0 ;
switch ( a . ss_family ) {
case AF_INET :
if ( ( a . netmaskBits ( ) > 0 ) & & ( a . netmaskBits ( ) < = 32 ) ) {
memset ( ipBlob , 0 , 12 ) ;
memcpy ( ipBlob + 12 , a . rawIpData ( ) , 4 ) ;
ipVersion = 4 ;
}
break ;
case AF_INET6 :
if ( ( a . netmaskBits ( ) > 0 ) & & ( a . netmaskBits ( ) < = 128 ) ) {
memcpy ( ipBlob , a . rawIpData ( ) , 16 ) ;
ipVersion = 6 ;
}
break ;
}
if ( ipVersion > 0 ) {
sqlite3_reset ( _sAllocateIp ) ;
sqlite3_bind_text ( _sAllocateIp , 1 , nwids , 16 , SQLITE_STATIC ) ;
sqlite3_bind_text ( _sAllocateIp , 2 , addrs , 10 , SQLITE_STATIC ) ;
sqlite3_bind_int ( _sAllocateIp , 3 , ( int ) ZT_IP_ASSIGNMENT_TYPE_ADDRESS ) ;
sqlite3_bind_blob ( _sAllocateIp , 4 , ( const void * ) ipBlob , 16 , SQLITE_STATIC ) ;
sqlite3_bind_int ( _sAllocateIp , 5 , ( int ) a . netmaskBits ( ) ) ;
sqlite3_bind_int ( _sAllocateIp , 6 , ipVersion ) ;
if ( sqlite3_step ( _sAllocateIp ) ! = SQLITE_DONE )
return 500 ;
}
}
}
addToNetworkRevision = 1 ;
}
} else if ( ! strcmp ( j - > u . object . values [ k ] . name , " identity " ) ) {
// Identity is technically an immutable field, but if the member's Node has
// no identity we allow it to be populated. This is primarily for migrating
// node data from another controller.
json_value * idstr = j - > u . object . values [ k ] . value ;
if ( idstr - > type = = json_string ) {
bool alreadyHaveIdentity = false ;
2015-01-07 01:16:54 +00:00
2015-09-10 21:47:04 +00:00
sqlite3_reset ( _sGetNodeIdentity ) ;
sqlite3_bind_text ( _sGetNodeIdentity , 1 , addrs , 10 , SQLITE_STATIC ) ;
if ( sqlite3_step ( _sGetNodeIdentity ) = = SQLITE_ROW ) {
const char * tmp2 = ( const char * ) sqlite3_column_text ( _sGetNodeIdentity , 0 ) ;
if ( ( tmp2 ) & & ( tmp2 [ 0 ] ) )
alreadyHaveIdentity = true ;
}
2015-01-07 01:16:54 +00:00
2015-09-10 21:47:04 +00:00
if ( ! alreadyHaveIdentity ) {
try {
Identity id2 ( idstr - > u . string . ptr ) ;
if ( id2 ) {
std : : string idstr2 ( id2 . toString ( false ) ) ; // object must persist until after sqlite3_step() for SQLITE_STATIC
sqlite3_reset ( _sCreateOrReplaceNode ) ;
sqlite3_bind_text ( _sCreateOrReplaceNode , 1 , addrs , 10 , SQLITE_STATIC ) ;
sqlite3_bind_text ( _sCreateOrReplaceNode , 2 , idstr2 . c_str ( ) , - 1 , SQLITE_STATIC ) ;
sqlite3_step ( _sCreateOrReplaceNode ) ;
}
} catch ( . . . ) { } // ignore invalid identities
}
}
}
2015-01-06 21:45:10 +00:00
2015-09-10 21:47:04 +00:00
}
}
json_value_free ( j ) ;
}
2015-01-07 01:16:54 +00:00
2015-09-10 21:47:04 +00:00
if ( ( addToNetworkRevision > 0 ) & & ( revision > 0 ) ) {
sqlite3_reset ( _sSetNetworkRevision ) ;
sqlite3_bind_int64 ( _sSetNetworkRevision , 1 , revision + addToNetworkRevision ) ;
sqlite3_bind_text ( _sSetNetworkRevision , 2 , nwids , 16 , SQLITE_STATIC ) ;
sqlite3_step ( _sSetNetworkRevision ) ;
}
2015-01-07 01:16:54 +00:00
2015-09-10 21:47:04 +00:00
return _doCPGet ( path , urlArgs , headers , body , responseBody , responseContentType ) ;
2015-10-08 20:25:38 +00:00
} else if ( ( path . size ( ) = = 3 ) & & ( path [ 2 ] = = " test " ) ) {
ZT_CircuitTest * test = ( ZT_CircuitTest * ) malloc ( sizeof ( ZT_CircuitTest ) ) ;
memset ( test , 0 , sizeof ( ZT_CircuitTest ) ) ;
Utils : : getSecureRandom ( & ( test - > testId ) , sizeof ( test - > testId ) ) ;
test - > credentialNetworkId = nwid ;
test - > ptr = ( void * ) this ;
json_value * j = json_parse ( body . c_str ( ) , body . length ( ) ) ;
if ( j ) {
if ( j - > type = = json_object ) {
for ( unsigned int k = 0 ; k < j - > u . object . length ; + + k ) {
if ( ! strcmp ( j - > u . object . values [ k ] . name , " hops " ) ) {
if ( j - > u . object . values [ k ] . value - > type = = json_array ) {
for ( unsigned int kk = 0 ; kk < j - > u . object . values [ k ] . value - > u . array . length ; + + kk ) {
json_value * hop = j - > u . object . values [ k ] . value - > u . array . values [ kk ] ;
if ( hop - > type = = json_array ) {
for ( unsigned int kkk = 0 ; kkk < hop - > u . array . length ; + + kkk ) {
2015-10-08 22:44:06 +00:00
if ( hop - > u . array . values [ kkk ] - > type = = json_string ) {
test - > hops [ test - > hopCount ] . addresses [ test - > hops [ test - > hopCount ] . breadth + + ] = Utils : : hexStrToU64 ( hop - > u . array . values [ kkk ] - > u . string . ptr ) & 0xffffffffffULL ;
2015-10-08 20:25:38 +00:00
}
}
+ + test - > hopCount ;
}
}
}
} else if ( ! strcmp ( j - > u . object . values [ k ] . name , " reportAtEveryHop " ) ) {
if ( j - > u . object . values [ k ] . value - > type = = json_boolean )
test - > reportAtEveryHop = ( j - > u . object . values [ k ] . value - > u . boolean = = 0 ) ? 0 : 1 ;
}
}
}
json_value_free ( j ) ;
}
if ( ! test - > hopCount ) {
: : free ( ( void * ) test ) ;
return 500 ;
}
test - > timestamp = OSUtils : : now ( ) ;
2015-10-08 22:44:06 +00:00
_circuitTests [ test - > testId ] = test ;
2015-10-08 20:25:38 +00:00
_node - > circuitTestBegin ( test , & ( SqliteNetworkController : : _circuitTestCallback ) ) ;
return 200 ;
2015-09-10 21:47:04 +00:00
} // else 404
2015-01-08 22:27:55 +00:00
2015-09-10 21:47:04 +00:00
} else {
std : : vector < std : : string > path_copy ( path ) ;
2015-01-08 22:27:55 +00:00
2015-09-10 21:47:04 +00:00
if ( ! networkExists ) {
if ( path [ 1 ] . substr ( 10 ) = = " ______ " ) {
// A special POST /network/##########______ feature lets users create a network
// with an arbitrary unused network number at this controller.
nwid = 0 ;
2015-01-08 22:27:55 +00:00
2015-09-10 21:47:04 +00:00
uint64_t nwidPrefix = ( Utils : : hexStrToU64 ( path [ 1 ] . substr ( 0 , 10 ) . c_str ( ) ) < < 24 ) & 0xffffffffff000000ULL ;
uint64_t nwidPostfix = 0 ;
Utils : : getSecureRandom ( & nwidPostfix , sizeof ( nwidPostfix ) ) ;
uint64_t nwidOriginalPostfix = nwidPostfix ;
do {
uint64_t tryNwid = nwidPrefix | ( nwidPostfix & 0xffffffULL ) ;
if ( ! nwidPostfix )
tryNwid | = 1 ;
Utils : : snprintf ( nwids , sizeof ( nwids ) , " %.16llx " , ( unsigned long long ) tryNwid ) ;
2015-04-21 00:47:12 +00:00
2015-09-10 21:47:04 +00:00
sqlite3_reset ( _sGetNetworkRevision ) ;
sqlite3_bind_text ( _sGetNetworkRevision , 1 , nwids , 16 , SQLITE_STATIC ) ;
if ( sqlite3_step ( _sGetNetworkRevision ) ! = SQLITE_ROW ) {
nwid = tryNwid ;
break ;
}
2015-06-13 09:34:31 +00:00
2015-09-10 21:47:04 +00:00
+ + nwidPostfix ;
} while ( nwidPostfix ! = nwidOriginalPostfix ) ;
2015-03-18 23:10:48 +00:00
2015-09-10 21:47:04 +00:00
// 503 means we have no more free IDs for this prefix. You shouldn't host anywhere
// near 16 million networks on the same controller, so shouldn't happen.
if ( ! nwid )
return 503 ;
}
2015-06-29 21:52:09 +00:00
2015-09-10 21:47:04 +00:00
sqlite3_reset ( _sCreateNetwork ) ;
sqlite3_bind_text ( _sCreateNetwork , 1 , nwids , 16 , SQLITE_STATIC ) ;
sqlite3_bind_text ( _sCreateNetwork , 2 , " " , 0 , SQLITE_STATIC ) ;
sqlite3_bind_int64 ( _sCreateNetwork , 3 , ( long long ) OSUtils : : now ( ) ) ;
if ( sqlite3_step ( _sCreateNetwork ) ! = SQLITE_DONE )
return 500 ;
path_copy [ 1 ] . assign ( nwids ) ;
2015-03-18 23:10:48 +00:00
}
2015-06-29 21:52:09 +00:00
2015-09-10 21:47:04 +00:00
json_value * j = json_parse ( body . c_str ( ) , body . length ( ) ) ;
if ( j ) {
if ( j - > type = = json_object ) {
for ( unsigned int k = 0 ; k < j - > u . object . length ; + + k ) {
sqlite3_stmt * stmt = ( sqlite3_stmt * ) 0 ;
2015-03-18 23:10:48 +00:00
2015-09-10 21:47:04 +00:00
if ( ! strcmp ( j - > u . object . values [ k ] . name , " name " ) ) {
if ( ( j - > u . object . values [ k ] . value - > type = = json_string ) & & ( j - > u . object . values [ k ] . value - > u . string . ptr [ 0 ] ) ) {
if ( sqlite3_prepare_v2 ( _db , " UPDATE Network SET \" name \" = ? WHERE id = ? " , - 1 , & stmt , ( const char * * ) 0 ) = = SQLITE_OK )
sqlite3_bind_text ( stmt , 1 , j - > u . object . values [ k ] . value - > u . string . ptr , - 1 , SQLITE_STATIC ) ;
}
} else if ( ! strcmp ( j - > u . object . values [ k ] . name , " private " ) ) {
if ( j - > u . object . values [ k ] . value - > type = = json_boolean ) {
if ( sqlite3_prepare_v2 ( _db , " UPDATE Network SET \" private \" = ? WHERE id = ? " , - 1 , & stmt , ( const char * * ) 0 ) = = SQLITE_OK )
sqlite3_bind_int ( stmt , 1 , ( j - > u . object . values [ k ] . value - > u . boolean = = 0 ) ? 0 : 1 ) ;
}
} else if ( ! strcmp ( j - > u . object . values [ k ] . name , " enableBroadcast " ) ) {
if ( j - > u . object . values [ k ] . value - > type = = json_boolean ) {
if ( sqlite3_prepare_v2 ( _db , " UPDATE Network SET enableBroadcast = ? WHERE id = ? " , - 1 , & stmt , ( const char * * ) 0 ) = = SQLITE_OK )
sqlite3_bind_int ( stmt , 1 , ( j - > u . object . values [ k ] . value - > u . boolean = = 0 ) ? 0 : 1 ) ;
}
} else if ( ! strcmp ( j - > u . object . values [ k ] . name , " allowPassiveBridging " ) ) {
if ( j - > u . object . values [ k ] . value - > type = = json_boolean ) {
if ( sqlite3_prepare_v2 ( _db , " UPDATE Network SET allowPassiveBridging = ? WHERE id = ? " , - 1 , & stmt , ( const char * * ) 0 ) = = SQLITE_OK )
sqlite3_bind_int ( stmt , 1 , ( j - > u . object . values [ k ] . value - > u . boolean = = 0 ) ? 0 : 1 ) ;
}
} else if ( ! strcmp ( j - > u . object . values [ k ] . name , " v4AssignMode " ) ) {
if ( j - > u . object . values [ k ] . value - > type = = json_string ) {
if ( sqlite3_prepare_v2 ( _db , " UPDATE Network SET v4AssignMode = ? WHERE id = ? " , - 1 , & stmt , ( const char * * ) 0 ) = = SQLITE_OK )
sqlite3_bind_text ( stmt , 1 , j - > u . object . values [ k ] . value - > u . string . ptr , - 1 , SQLITE_STATIC ) ;
}
} else if ( ! strcmp ( j - > u . object . values [ k ] . name , " v6AssignMode " ) ) {
if ( j - > u . object . values [ k ] . value - > type = = json_string ) {
if ( sqlite3_prepare_v2 ( _db , " UPDATE Network SET v6AssignMode = ? WHERE id = ? " , - 1 , & stmt , ( const char * * ) 0 ) = = SQLITE_OK )
sqlite3_bind_text ( stmt , 1 , j - > u . object . values [ k ] . value - > u . string . ptr , - 1 , SQLITE_STATIC ) ;
}
} else if ( ! strcmp ( j - > u . object . values [ k ] . name , " multicastLimit " ) ) {
if ( j - > u . object . values [ k ] . value - > type = = json_integer ) {
if ( sqlite3_prepare_v2 ( _db , " UPDATE Network SET multicastLimit = ? WHERE id = ? " , - 1 , & stmt , ( const char * * ) 0 ) = = SQLITE_OK )
sqlite3_bind_int ( stmt , 1 , ( int ) j - > u . object . values [ k ] . value - > u . integer ) ;
}
} else if ( ! strcmp ( j - > u . object . values [ k ] . name , " relays " ) ) {
if ( j - > u . object . values [ k ] . value - > type = = json_array ) {
std : : map < Address , InetAddress > nodeIdToPhyAddress ;
for ( unsigned int kk = 0 ; kk < j - > u . object . values [ k ] . value - > u . array . length ; + + kk ) {
json_value * relay = j - > u . object . values [ k ] . value - > u . array . values [ kk ] ;
const char * address = ( const char * ) 0 ;
const char * phyAddress = ( const char * ) 0 ;
if ( ( relay ) & & ( relay - > type = = json_object ) ) {
for ( unsigned int rk = 0 ; rk < relay - > u . object . length ; + + rk ) {
if ( ( ! strcmp ( relay - > u . object . values [ rk ] . name , " address " ) ) & & ( relay - > u . object . values [ rk ] . value - > type = = json_string ) )
address = relay - > u . object . values [ rk ] . value - > u . string . ptr ;
else if ( ( ! strcmp ( relay - > u . object . values [ rk ] . name , " phyAddress " ) ) & & ( relay - > u . object . values [ rk ] . value - > type = = json_string ) )
phyAddress = relay - > u . object . values [ rk ] . value - > u . string . ptr ;
}
}
if ( ( address ) & & ( phyAddress ) )
nodeIdToPhyAddress [ Address ( address ) ] = InetAddress ( phyAddress ) ;
}
2015-06-29 21:52:09 +00:00
2015-09-10 21:47:04 +00:00
sqlite3_reset ( _sDeleteRelaysForNetwork ) ;
sqlite3_bind_text ( _sDeleteRelaysForNetwork , 1 , nwids , 16 , SQLITE_STATIC ) ;
sqlite3_step ( _sDeleteRelaysForNetwork ) ;
2015-06-29 21:52:09 +00:00
2015-09-10 21:47:04 +00:00
for ( std : : map < Address , InetAddress > : : iterator rl ( nodeIdToPhyAddress . begin ( ) ) ; rl ! = nodeIdToPhyAddress . end ( ) ; + + rl ) {
sqlite3_reset ( _sCreateRelay ) ;
sqlite3_bind_text ( _sCreateRelay , 1 , nwids , 16 , SQLITE_STATIC ) ;
std : : string a ( rl - > first . toString ( ) ) , b ( rl - > second . toString ( ) ) ; // don't destroy strings until sqlite3_step()
sqlite3_bind_text ( _sCreateRelay , 2 , a . c_str ( ) , - 1 , SQLITE_STATIC ) ;
sqlite3_bind_text ( _sCreateRelay , 3 , b . c_str ( ) , - 1 , SQLITE_STATIC ) ;
sqlite3_step ( _sCreateRelay ) ;
}
}
} else if ( ! strcmp ( j - > u . object . values [ k ] . name , " gateways " ) ) {
sqlite3_reset ( _sDeleteGateways ) ;
sqlite3_bind_text ( _sDeleteGateways , 1 , nwids , 16 , SQLITE_STATIC ) ;
sqlite3_step ( _sDeleteGateways ) ;
if ( j - > u . object . values [ k ] . value - > type = = json_array ) {
for ( unsigned int kk = 0 ; kk < j - > u . object . values [ k ] . value - > u . array . length ; + + kk ) {
json_value * gateway = j - > u . object . values [ k ] . value - > u . array . values [ kk ] ;
if ( ( gateway ) & & ( gateway - > type = = json_string ) ) {
InetAddress gwip ( gateway - > u . string . ptr ) ;
sqlite3_reset ( _sCreateGateway ) ;
sqlite3_bind_text ( _sCreateGateway , 1 , nwids , 16 , SQLITE_STATIC ) ;
sqlite3_bind_int ( _sCreateGateway , 4 , ( int ) gwip . metric ( ) ) ;
if ( gwip . ss_family = = AF_INET ) {
char ipBlob [ 16 ] ;
memset ( ipBlob , 0 , 12 ) ;
memcpy ( ipBlob + 12 , gwip . rawIpData ( ) , 4 ) ;
sqlite3_bind_blob ( _sCreateGateway , 2 , ( const void * ) ipBlob , 16 , SQLITE_STATIC ) ;
sqlite3_bind_int ( _sCreateGateway , 3 , 4 ) ;
sqlite3_step ( _sCreateGateway ) ;
} else if ( gwip . ss_family = = AF_INET6 ) {
sqlite3_bind_blob ( _sCreateGateway , 2 , gwip . rawIpData ( ) , 16 , SQLITE_STATIC ) ;
sqlite3_bind_int ( _sCreateGateway , 3 , 6 ) ;
sqlite3_step ( _sCreateGateway ) ;
}
}
}
}
} else if ( ! strcmp ( j - > u . object . values [ k ] . name , " ipLocalRoutes " ) ) {
sqlite3_reset ( _sDeleteLocalRoutes ) ;
sqlite3_bind_text ( _sDeleteLocalRoutes , 1 , nwids , 16 , SQLITE_STATIC ) ;
sqlite3_bind_int ( _sDeleteLocalRoutes , 2 , ( int ) ZT_IP_ASSIGNMENT_TYPE_NETWORK ) ;
sqlite3_step ( _sDeleteLocalRoutes ) ;
if ( j - > u . object . values [ k ] . value - > type = = json_array ) {
for ( unsigned int kk = 0 ; kk < j - > u . object . values [ k ] . value - > u . array . length ; + + kk ) {
json_value * localRoute = j - > u . object . values [ k ] . value - > u . array . values [ kk ] ;
if ( ( localRoute ) & & ( localRoute - > type = = json_string ) ) {
InetAddress lr ( localRoute - > u . string . ptr ) ;
if ( lr . ss_family = = AF_INET ) {
char ipBlob [ 16 ] ;
memset ( ipBlob , 0 , 12 ) ;
memcpy ( ipBlob + 12 , lr . rawIpData ( ) , 4 ) ;
sqlite3_reset ( _sAllocateIp ) ;
sqlite3_bind_text ( _sAllocateIp , 1 , nwids , 16 , SQLITE_STATIC ) ;
sqlite3_bind_null ( _sAllocateIp , 2 ) ;
sqlite3_bind_int ( _sAllocateIp , 3 , ( int ) ZT_IP_ASSIGNMENT_TYPE_NETWORK ) ;
sqlite3_bind_blob ( _sAllocateIp , 4 , ( const void * ) ipBlob , 16 , SQLITE_STATIC ) ;
sqlite3_bind_int ( _sAllocateIp , 5 , lr . netmaskBits ( ) ) ;
sqlite3_bind_int ( _sAllocateIp , 6 , 4 ) ;
sqlite3_step ( _sAllocateIp ) ;
} else if ( lr . ss_family = = AF_INET6 ) {
sqlite3_reset ( _sAllocateIp ) ;
sqlite3_bind_text ( _sAllocateIp , 1 , nwids , 16 , SQLITE_STATIC ) ;
sqlite3_bind_null ( _sAllocateIp , 2 ) ;
sqlite3_bind_int ( _sAllocateIp , 3 , ( int ) ZT_IP_ASSIGNMENT_TYPE_NETWORK ) ;
sqlite3_bind_blob ( _sAllocateIp , 4 , lr . rawIpData ( ) , 16 , SQLITE_STATIC ) ;
sqlite3_bind_int ( _sAllocateIp , 5 , lr . netmaskBits ( ) ) ;
sqlite3_bind_int ( _sAllocateIp , 6 , 6 ) ;
sqlite3_step ( _sAllocateIp ) ;
}
}
}
}
} else if ( ! strcmp ( j - > u . object . values [ k ] . name , " ipAssignmentPools " ) ) {
if ( j - > u . object . values [ k ] . value - > type = = json_array ) {
std : : vector < std : : pair < InetAddress , InetAddress > > pools ;
for ( unsigned int kk = 0 ; kk < j - > u . object . values [ k ] . value - > u . array . length ; + + kk ) {
json_value * pool = j - > u . object . values [ k ] . value - > u . array . values [ kk ] ;
const char * iprs = ( const char * ) 0 ;
const char * ipre = ( const char * ) 0 ;
if ( ( pool ) & & ( pool - > type = = json_object ) ) {
for ( unsigned int rk = 0 ; rk < pool - > u . object . length ; + + rk ) {
if ( ( ! strcmp ( pool - > u . object . values [ rk ] . name , " ipRangeStart " ) ) & & ( pool - > u . object . values [ rk ] . value - > type = = json_string ) )
iprs = pool - > u . object . values [ rk ] . value - > u . string . ptr ;
else if ( ( ! strcmp ( pool - > u . object . values [ rk ] . name , " ipRangeEnd " ) ) & & ( pool - > u . object . values [ rk ] . value - > type = = json_string ) )
ipre = pool - > u . object . values [ rk ] . value - > u . string . ptr ;
}
}
if ( ( iprs ) & & ( ipre ) ) {
InetAddress iprs2 ( iprs ) ;
InetAddress ipre2 ( ipre ) ;
if ( iprs2 . ss_family = = ipre2 . ss_family ) {
iprs2 . setPort ( 0 ) ;
ipre2 . setPort ( 0 ) ;
pools . push_back ( std : : pair < InetAddress , InetAddress > ( iprs2 , ipre2 ) ) ;
}
}
}
std : : sort ( pools . begin ( ) , pools . end ( ) ) ;
pools . erase ( std : : unique ( pools . begin ( ) , pools . end ( ) ) , pools . end ( ) ) ;
2015-06-29 21:52:09 +00:00
2015-09-10 21:47:04 +00:00
sqlite3_reset ( _sDeleteIpAssignmentPoolsForNetwork ) ;
sqlite3_bind_text ( _sDeleteIpAssignmentPoolsForNetwork , 1 , nwids , 16 , SQLITE_STATIC ) ;
sqlite3_step ( _sDeleteIpAssignmentPoolsForNetwork ) ;
2015-06-29 21:52:09 +00:00
2015-09-10 21:47:04 +00:00
for ( std : : vector < std : : pair < InetAddress , InetAddress > > : : const_iterator p ( pools . begin ( ) ) ; p ! = pools . end ( ) ; + + p ) {
char ipBlob1 [ 16 ] , ipBlob2 [ 16 ] ;
sqlite3_reset ( _sCreateIpAssignmentPool ) ;
sqlite3_bind_text ( _sCreateIpAssignmentPool , 1 , nwids , 16 , SQLITE_STATIC ) ;
if ( p - > first . ss_family = = AF_INET ) {
memset ( ipBlob1 , 0 , 12 ) ;
memcpy ( ipBlob1 + 12 , p - > first . rawIpData ( ) , 4 ) ;
memset ( ipBlob2 , 0 , 12 ) ;
memcpy ( ipBlob2 + 12 , p - > second . rawIpData ( ) , 4 ) ;
sqlite3_bind_blob ( _sCreateIpAssignmentPool , 2 , ( const void * ) ipBlob1 , 16 , SQLITE_STATIC ) ;
sqlite3_bind_blob ( _sCreateIpAssignmentPool , 3 , ( const void * ) ipBlob2 , 16 , SQLITE_STATIC ) ;
sqlite3_bind_int ( _sCreateIpAssignmentPool , 4 , 4 ) ;
} else if ( p - > first . ss_family = = AF_INET6 ) {
sqlite3_bind_blob ( _sCreateIpAssignmentPool , 2 , p - > first . rawIpData ( ) , 16 , SQLITE_STATIC ) ;
sqlite3_bind_blob ( _sCreateIpAssignmentPool , 3 , p - > second . rawIpData ( ) , 16 , SQLITE_STATIC ) ;
sqlite3_bind_int ( _sCreateIpAssignmentPool , 4 , 6 ) ;
} else continue ;
sqlite3_step ( _sCreateIpAssignmentPool ) ;
2015-06-29 21:52:09 +00:00
}
2015-03-18 23:10:48 +00:00
}
2015-09-10 21:47:04 +00:00
} else if ( ! strcmp ( j - > u . object . values [ k ] . name , " rules " ) ) {
if ( j - > u . object . values [ k ] . value - > type = = json_array ) {
sqlite3_reset ( _sDeleteRulesForNetwork ) ;
sqlite3_bind_text ( _sDeleteRulesForNetwork , 1 , nwids , 16 , SQLITE_STATIC ) ;
sqlite3_step ( _sDeleteRulesForNetwork ) ;
2015-06-29 21:52:09 +00:00
2015-09-10 21:47:04 +00:00
for ( unsigned int kk = 0 ; kk < j - > u . object . values [ k ] . value - > u . array . length ; + + kk ) {
json_value * rj = j - > u . object . values [ k ] . value - > u . array . values [ kk ] ;
if ( ( rj ) & & ( rj - > type = = json_object ) ) {
struct { // NULL pointers indicate missing or NULL -- wildcards
const json_int_t * ruleNo ;
const char * nodeId ;
const char * sourcePort ;
const char * destPort ;
const json_int_t * vlanId ;
const json_int_t * vlanPcp ;
const json_int_t * etherType ;
const char * macSource ;
const char * macDest ;
const char * ipSource ;
const char * ipDest ;
const json_int_t * ipTos ;
const json_int_t * ipProtocol ;
const json_int_t * ipSourcePort ;
const json_int_t * ipDestPort ;
const json_int_t * flags ;
const json_int_t * invFlags ;
const char * action ;
} rule ;
memset ( & rule , 0 , sizeof ( rule ) ) ;
2015-06-29 21:52:09 +00:00
2015-09-10 21:47:04 +00:00
for ( unsigned int rk = 0 ; rk < rj - > u . object . length ; + + rk ) {
if ( ( ! strcmp ( rj - > u . object . values [ rk ] . name , " ruleNo " ) ) & & ( rj - > u . object . values [ rk ] . value - > type = = json_integer ) )
rule . ruleNo = & ( rj - > u . object . values [ rk ] . value - > u . integer ) ;
else if ( ( ! strcmp ( rj - > u . object . values [ rk ] . name , " nodeId " ) ) & & ( rj - > u . object . values [ rk ] . value - > type = = json_string ) )
rule . nodeId = rj - > u . object . values [ rk ] . value - > u . string . ptr ;
else if ( ( ! strcmp ( rj - > u . object . values [ rk ] . name , " sourcePort " ) ) & & ( rj - > u . object . values [ rk ] . value - > type = = json_string ) )
rule . sourcePort = rj - > u . object . values [ rk ] . value - > u . string . ptr ;
else if ( ( ! strcmp ( rj - > u . object . values [ rk ] . name , " destPort " ) ) & & ( rj - > u . object . values [ rk ] . value - > type = = json_string ) )
rule . destPort = rj - > u . object . values [ rk ] . value - > u . string . ptr ;
else if ( ( ! strcmp ( rj - > u . object . values [ rk ] . name , " vlanId " ) ) & & ( rj - > u . object . values [ rk ] . value - > type = = json_integer ) )
rule . vlanId = & ( rj - > u . object . values [ rk ] . value - > u . integer ) ;
else if ( ( ! strcmp ( rj - > u . object . values [ rk ] . name , " vlanPcp " ) ) & & ( rj - > u . object . values [ rk ] . value - > type = = json_integer ) )
rule . vlanPcp = & ( rj - > u . object . values [ rk ] . value - > u . integer ) ;
else if ( ( ! strcmp ( rj - > u . object . values [ rk ] . name , " etherType " ) ) & & ( rj - > u . object . values [ rk ] . value - > type = = json_integer ) )
rule . etherType = & ( rj - > u . object . values [ rk ] . value - > u . integer ) ;
else if ( ( ! strcmp ( rj - > u . object . values [ rk ] . name , " macSource " ) ) & & ( rj - > u . object . values [ rk ] . value - > type = = json_string ) )
rule . macSource = rj - > u . object . values [ rk ] . value - > u . string . ptr ;
else if ( ( ! strcmp ( rj - > u . object . values [ rk ] . name , " macDest " ) ) & & ( rj - > u . object . values [ rk ] . value - > type = = json_string ) )
rule . macDest = rj - > u . object . values [ rk ] . value - > u . string . ptr ;
else if ( ( ! strcmp ( rj - > u . object . values [ rk ] . name , " ipSource " ) ) & & ( rj - > u . object . values [ rk ] . value - > type = = json_string ) )
rule . ipSource = rj - > u . object . values [ rk ] . value - > u . string . ptr ;
else if ( ( ! strcmp ( rj - > u . object . values [ rk ] . name , " ipDest " ) ) & & ( rj - > u . object . values [ rk ] . value - > type = = json_string ) )
rule . ipDest = rj - > u . object . values [ rk ] . value - > u . string . ptr ;
else if ( ( ! strcmp ( rj - > u . object . values [ rk ] . name , " ipTos " ) ) & & ( rj - > u . object . values [ rk ] . value - > type = = json_integer ) )
rule . ipTos = & ( rj - > u . object . values [ rk ] . value - > u . integer ) ;
else if ( ( ! strcmp ( rj - > u . object . values [ rk ] . name , " ipProtocol " ) ) & & ( rj - > u . object . values [ rk ] . value - > type = = json_integer ) )
rule . ipProtocol = & ( rj - > u . object . values [ rk ] . value - > u . integer ) ;
else if ( ( ! strcmp ( rj - > u . object . values [ rk ] . name , " ipSourcePort " ) ) & & ( rj - > u . object . values [ rk ] . value - > type = = json_integer ) )
rule . ipSourcePort = & ( rj - > u . object . values [ rk ] . value - > u . integer ) ;
else if ( ( ! strcmp ( rj - > u . object . values [ rk ] . name , " ipDestPort " ) ) & & ( rj - > u . object . values [ rk ] . value - > type = = json_integer ) )
rule . ipDestPort = & ( rj - > u . object . values [ rk ] . value - > u . integer ) ;
else if ( ( ! strcmp ( rj - > u . object . values [ rk ] . name , " flags " ) ) & & ( rj - > u . object . values [ rk ] . value - > type = = json_integer ) )
rule . flags = & ( rj - > u . object . values [ rk ] . value - > u . integer ) ;
else if ( ( ! strcmp ( rj - > u . object . values [ rk ] . name , " invFlags " ) ) & & ( rj - > u . object . values [ rk ] . value - > type = = json_integer ) )
rule . invFlags = & ( rj - > u . object . values [ rk ] . value - > u . integer ) ;
else if ( ( ! strcmp ( rj - > u . object . values [ rk ] . name , " action " ) ) & & ( rj - > u . object . values [ rk ] . value - > type = = json_string ) )
rule . action = rj - > u . object . values [ rk ] . value - > u . string . ptr ;
}
if ( ( rule . ruleNo ) & & ( rule . action ) & & ( rule . action [ 0 ] ) ) {
char mactmp1 [ 16 ] , mactmp2 [ 16 ] ;
sqlite3_reset ( _sCreateRule ) ;
sqlite3_bind_text ( _sCreateRule , 1 , nwids , 16 , SQLITE_STATIC ) ;
sqlite3_bind_int64 ( _sCreateRule , 2 , * rule . ruleNo ) ;
// Optional values: null by default
for ( int i = 3 ; i < = 18 ; + + i )
sqlite3_bind_null ( _sCreateRule , i ) ;
if ( ( rule . nodeId ) & & ( strlen ( rule . nodeId ) = = 10 ) ) sqlite3_bind_text ( _sCreateRule , 3 , rule . nodeId , 10 , SQLITE_STATIC ) ;
if ( ( rule . sourcePort ) & & ( strlen ( rule . sourcePort ) = = 10 ) ) sqlite3_bind_text ( _sCreateRule , 4 , rule . sourcePort , 10 , SQLITE_STATIC ) ;
if ( ( rule . destPort ) & & ( strlen ( rule . destPort ) = = 10 ) ) sqlite3_bind_text ( _sCreateRule , 5 , rule . destPort , 10 , SQLITE_STATIC ) ;
if ( rule . vlanId ) sqlite3_bind_int ( _sCreateRule , 6 , ( int ) * rule . vlanId ) ;
if ( rule . vlanPcp ) sqlite3_bind_int ( _sCreateRule , 7 , ( int ) * rule . vlanPcp ) ;
if ( rule . etherType ) sqlite3_bind_int ( _sCreateRule , 8 , ( int ) * rule . etherType & ( int ) 0xffff ) ;
if ( rule . macSource ) {
MAC m ( rule . macSource ) ;
Utils : : snprintf ( mactmp1 , sizeof ( mactmp1 ) , " %.12llx " , ( unsigned long long ) m . toInt ( ) ) ;
sqlite3_bind_text ( _sCreateRule , 9 , mactmp1 , - 1 , SQLITE_STATIC ) ;
}
if ( rule . macDest ) {
MAC m ( rule . macDest ) ;
Utils : : snprintf ( mactmp2 , sizeof ( mactmp2 ) , " %.12llx " , ( unsigned long long ) m . toInt ( ) ) ;
sqlite3_bind_text ( _sCreateRule , 10 , mactmp2 , - 1 , SQLITE_STATIC ) ;
}
if ( rule . ipSource ) sqlite3_bind_text ( _sCreateRule , 11 , rule . ipSource , - 1 , SQLITE_STATIC ) ;
if ( rule . ipDest ) sqlite3_bind_text ( _sCreateRule , 12 , rule . ipDest , - 1 , SQLITE_STATIC ) ;
if ( rule . ipTos ) sqlite3_bind_int ( _sCreateRule , 13 , ( int ) * rule . ipTos ) ;
if ( rule . ipProtocol ) sqlite3_bind_int ( _sCreateRule , 14 , ( int ) * rule . ipProtocol ) ;
if ( rule . ipSourcePort ) sqlite3_bind_int ( _sCreateRule , 15 , ( int ) * rule . ipSourcePort & ( int ) 0xffff ) ;
if ( rule . ipDestPort ) sqlite3_bind_int ( _sCreateRule , 16 , ( int ) * rule . ipDestPort & ( int ) 0xffff ) ;
if ( rule . flags ) sqlite3_bind_int64 ( _sCreateRule , 17 , ( int64_t ) * rule . flags ) ;
if ( rule . invFlags ) sqlite3_bind_int64 ( _sCreateRule , 18 , ( int64_t ) * rule . invFlags ) ;
sqlite3_bind_text ( _sCreateRule , 19 , rule . action , - 1 , SQLITE_STATIC ) ;
sqlite3_step ( _sCreateRule ) ;
}
}
}
}
}
if ( stmt ) {
sqlite3_bind_text ( stmt , 2 , nwids , 16 , SQLITE_STATIC ) ;
sqlite3_step ( stmt ) ;
sqlite3_finalize ( stmt ) ;
}
}
2015-03-18 23:10:48 +00:00
}
2015-09-10 21:47:04 +00:00
json_value_free ( j ) ;
2015-03-18 23:10:48 +00:00
}
2015-01-08 22:27:55 +00:00
2015-09-10 21:47:04 +00:00
sqlite3_reset ( _sSetNetworkRevision ) ;
sqlite3_bind_int64 ( _sSetNetworkRevision , 1 , revision + = 1 ) ;
sqlite3_bind_text ( _sSetNetworkRevision , 2 , nwids , 16 , SQLITE_STATIC ) ;
sqlite3_step ( _sSetNetworkRevision ) ;
2015-01-07 01:16:54 +00:00
2015-09-10 21:47:04 +00:00
return _doCPGet ( path_copy , urlArgs , headers , body , responseBody , responseContentType ) ;
2015-01-08 22:27:55 +00:00
}
2015-01-07 01:16:54 +00:00
2015-09-10 21:47:04 +00:00
} // else 404
2015-01-07 01:16:54 +00:00
2015-09-10 21:47:04 +00:00
} // else 404
2015-01-07 01:16:54 +00:00
2015-09-10 21:47:04 +00:00
return 404 ;
2015-05-17 00:12:29 +00:00
}
2015-04-21 23:41:35 +00:00
2015-09-10 21:47:04 +00:00
unsigned int SqliteNetworkController : : handleControlPlaneHttpDELETE (
2015-05-17 00:12:29 +00:00
const std : : vector < std : : string > & path ,
const std : : map < std : : string , std : : string > & urlArgs ,
const std : : map < std : : string , std : : string > & headers ,
const std : : string & body ,
std : : string & responseBody ,
std : : string & responseContentType )
{
if ( path . empty ( ) )
return 404 ;
Mutex : : Lock _l ( _lock ) ;
if ( path [ 0 ] = = " network " ) {
2015-04-21 23:41:35 +00:00
if ( ( path . size ( ) > = 2 ) & & ( path [ 1 ] . length ( ) = = 16 ) ) {
uint64_t nwid = Utils : : hexStrToU64 ( path [ 1 ] . c_str ( ) ) ;
char nwids [ 24 ] ;
Utils : : snprintf ( nwids , sizeof ( nwids ) , " %.16llx " , ( unsigned long long ) nwid ) ;
2015-09-10 21:47:04 +00:00
sqlite3_reset ( _sGetNetworkById ) ;
sqlite3_bind_text ( _sGetNetworkById , 1 , nwids , 16 , SQLITE_STATIC ) ;
if ( sqlite3_step ( _sGetNetworkById ) ! = SQLITE_ROW )
return 404 ;
2015-05-17 00:12:29 +00:00
2015-04-21 23:41:35 +00:00
if ( path . size ( ) > = 3 ) {
2015-05-17 00:12:29 +00:00
2015-04-21 23:41:35 +00:00
if ( ( path . size ( ) = = 4 ) & & ( path [ 2 ] = = " member " ) & & ( path [ 3 ] . length ( ) = = 10 ) ) {
uint64_t address = Utils : : hexStrToU64 ( path [ 3 ] . c_str ( ) ) ;
char addrs [ 24 ] ;
Utils : : snprintf ( addrs , sizeof ( addrs ) , " %.10llx " , address ) ;
2015-05-17 00:12:29 +00:00
sqlite3_reset ( _sGetMember ) ;
sqlite3_bind_text ( _sGetMember , 1 , nwids , 16 , SQLITE_STATIC ) ;
sqlite3_bind_text ( _sGetMember , 2 , addrs , 10 , SQLITE_STATIC ) ;
2015-09-10 21:47:04 +00:00
if ( sqlite3_step ( _sGetMember ) ! = SQLITE_ROW )
return 404 ;
2015-04-22 02:49:04 +00:00
2015-09-10 21:47:04 +00:00
sqlite3_reset ( _sDeleteIpAllocations ) ;
sqlite3_bind_text ( _sDeleteIpAllocations , 1 , nwids , 16 , SQLITE_STATIC ) ;
sqlite3_bind_text ( _sDeleteIpAllocations , 2 , addrs , 10 , SQLITE_STATIC ) ;
sqlite3_bind_int ( _sDeleteIpAllocations , 3 , ( int ) ZT_IP_ASSIGNMENT_TYPE_ADDRESS ) ;
if ( sqlite3_step ( _sDeleteIpAllocations ) = = SQLITE_DONE ) {
sqlite3_reset ( _sDeleteMember ) ;
sqlite3_bind_text ( _sDeleteMember , 1 , nwids , 16 , SQLITE_STATIC ) ;
sqlite3_bind_text ( _sDeleteMember , 2 , addrs , 10 , SQLITE_STATIC ) ;
if ( sqlite3_step ( _sDeleteMember ) ! = SQLITE_DONE )
2015-05-17 00:12:29 +00:00
return 500 ;
2015-09-10 21:47:04 +00:00
} else return 500 ;
2015-07-17 00:34:03 +00:00
2015-09-10 21:47:04 +00:00
return 200 ;
}
2015-04-22 02:49:04 +00:00
2015-09-10 21:47:04 +00:00
} else {
2015-05-16 19:50:42 +00:00
2015-09-10 21:47:04 +00:00
sqlite3_reset ( _sDeleteNetwork ) ;
sqlite3_bind_text ( _sDeleteNetwork , 1 , nwids , 16 , SQLITE_STATIC ) ;
2015-09-11 22:02:26 +00:00
if ( sqlite3_step ( _sDeleteNetwork ) = = SQLITE_DONE ) {
sqlite3_reset ( _sDeleteAllNetworkMembers ) ;
sqlite3_bind_text ( _sDeleteAllNetworkMembers , 1 , nwids , 16 , SQLITE_STATIC ) ;
sqlite3_step ( _sDeleteAllNetworkMembers ) ;
return 200 ;
} else return 500 ;
2015-07-17 00:34:03 +00:00
2015-09-10 21:47:04 +00:00
}
} // else 404
2015-07-17 00:34:03 +00:00
2015-09-10 21:47:04 +00:00
} // else 404
2015-09-10 21:37:34 +00:00
2015-09-10 21:47:04 +00:00
return 404 ;
}
2015-09-10 21:37:34 +00:00
2015-09-10 21:47:04 +00:00
unsigned int SqliteNetworkController : : _doCPGet (
const std : : vector < std : : string > & path ,
const std : : map < std : : string , std : : string > & urlArgs ,
const std : : map < std : : string , std : : string > & headers ,
const std : : string & body ,
std : : string & responseBody ,
std : : string & responseContentType )
{
// Assumes _lock is locked
char json [ 65536 ] ;
if ( ( path . size ( ) > 0 ) & & ( path [ 0 ] = = " network " ) ) {
if ( ( path . size ( ) > = 2 ) & & ( path [ 1 ] . length ( ) = = 16 ) ) {
uint64_t nwid = Utils : : hexStrToU64 ( path [ 1 ] . c_str ( ) ) ;
char nwids [ 24 ] ;
Utils : : snprintf ( nwids , sizeof ( nwids ) , " %.16llx " , ( unsigned long long ) nwid ) ;
if ( path . size ( ) > = 3 ) {
// /network/<nwid>/...
if ( path [ 2 ] = = " member " ) {
if ( path . size ( ) > = 4 ) {
// Get specific member info
uint64_t address = Utils : : hexStrToU64 ( path [ 3 ] . c_str ( ) ) ;
char addrs [ 24 ] ;
Utils : : snprintf ( addrs , sizeof ( addrs ) , " %.10llx " , address ) ;
sqlite3_reset ( _sGetMember2 ) ;
sqlite3_bind_text ( _sGetMember2 , 1 , nwids , 16 , SQLITE_STATIC ) ;
sqlite3_bind_text ( _sGetMember2 , 2 , addrs , 10 , SQLITE_STATIC ) ;
if ( sqlite3_step ( _sGetMember2 ) = = SQLITE_ROW ) {
const char * memberIdStr = ( const char * ) sqlite3_column_text ( _sGetMember2 , 3 ) ;
// If testSingingId is included in the URL or X-ZT1-TestSigningId in the headers
// and if it contains an identity with a secret portion, the resturned JSON
// will contain an extra field called _testConf. This will contain several
// fields that report the result of doNetworkConfigRequest() for this member.
std : : string testFields ;
{
Identity testOutputSigningId ;
std : : map < std : : string , std : : string > : : const_iterator sid ( urlArgs . find ( " testSigningId " ) ) ;
if ( sid ! = urlArgs . end ( ) ) {
testOutputSigningId . fromString ( sid - > second . c_str ( ) ) ;
} else {
sid = headers . find ( " x-zt1-testsigningid " ) ;
if ( sid ! = headers . end ( ) )
testOutputSigningId . fromString ( sid - > second . c_str ( ) ) ;
2015-05-16 19:50:42 +00:00
}
2015-05-17 00:12:29 +00:00
2015-09-10 21:47:04 +00:00
if ( ( testOutputSigningId . hasPrivate ( ) ) & & ( memberIdStr ) ) {
Dictionary testNetconf ;
NetworkController : : ResultCode rc = this - > _doNetworkConfigRequest (
InetAddress ( ) ,
testOutputSigningId ,
Identity ( memberIdStr ) ,
nwid ,
Dictionary ( ) , // TODO: allow passing of meta-data for testing
testNetconf ) ;
char rcs [ 16 ] ;
Utils : : snprintf ( rcs , sizeof ( rcs ) , " %d, \n " , ( int ) rc ) ;
testFields . append ( " \t \" _test \" : { \n " ) ;
testFields . append ( " \t \t \" resultCode \" : " ) ; testFields . append ( rcs ) ;
2015-09-10 22:14:10 +00:00
testFields . append ( " \t \t \" result \" : \" " ) ; testFields . append ( _jsonEscape ( testNetconf . toString ( ) . c_str ( ) ) . c_str ( ) ) ; testFields . append ( " \" , \n " ) ;
testFields . append ( " \t \t \" resultJson \" : { \n " ) ;
for ( Dictionary : : const_iterator i ( testNetconf . begin ( ) ) ; i ! = testNetconf . end ( ) ; + + i ) {
if ( i ! = testNetconf . begin ( ) )
testFields . append ( " , \n " ) ;
testFields . append ( " \t \t \t \" " ) ;
testFields . append ( i - > first ) ;
testFields . append ( " \" : \" " ) ;
testFields . append ( _jsonEscape ( i - > second . c_str ( ) ) ) ;
testFields . push_back ( ' " ' ) ;
}
testFields . append ( " \n \t \t } \n " ) ;
2015-09-14 18:59:43 +00:00
testFields . append ( " \t }, \n " ) ;
2015-09-10 21:47:04 +00:00
}
2015-05-16 19:50:42 +00:00
}
2015-09-10 21:47:04 +00:00
Utils : : snprintf ( json , sizeof ( json ) ,
" { \n %s "
" \t \" nwid \" : \" %s \" , \n "
" \t \" address \" : \" %s \" , \n "
" \t \" controllerInstanceId \" : \" %s \" , \n "
" \t \" authorized \" : %s, \n "
" \t \" activeBridge \" : %s, \n "
" \t \" memberRevision \" : %llu, \n "
" \t \" clock \" : %llu, \n "
" \t \" identity \" : \" %s \" , \n "
" \t \" ipAssignments \" : [ " ,
testFields . c_str ( ) ,
nwids ,
addrs ,
_instanceId . c_str ( ) ,
( sqlite3_column_int ( _sGetMember2 , 0 ) > 0 ) ? " true " : " false " ,
( sqlite3_column_int ( _sGetMember2 , 1 ) > 0 ) ? " true " : " false " ,
( unsigned long long ) sqlite3_column_int64 ( _sGetMember2 , 2 ) ,
( unsigned long long ) OSUtils : : now ( ) ,
_jsonEscape ( memberIdStr ) . c_str ( ) ) ;
responseBody = json ;
2015-07-24 00:18:20 +00:00
2015-09-10 21:47:04 +00:00
sqlite3_reset ( _sGetIpAssignmentsForNode2 ) ;
sqlite3_bind_text ( _sGetIpAssignmentsForNode2 , 1 , nwids , 16 , SQLITE_STATIC ) ;
sqlite3_bind_text ( _sGetIpAssignmentsForNode2 , 2 , addrs , 10 , SQLITE_STATIC ) ;
sqlite3_bind_int ( _sGetIpAssignmentsForNode2 , 3 , ( int ) ZT_IP_ASSIGNMENT_TYPE_ADDRESS ) ;
bool firstIp = true ;
while ( sqlite3_step ( _sGetIpAssignmentsForNode2 ) = = SQLITE_ROW ) {
int ipversion = sqlite3_column_int ( _sGetIpAssignmentsForNode2 , 2 ) ;
char ipBlob [ 16 ] ;
memcpy ( ipBlob , ( const void * ) sqlite3_column_blob ( _sGetIpAssignmentsForNode2 , 0 ) , 16 ) ;
InetAddress ip (
( const void * ) ( ipversion = = 6 ? ipBlob : & ipBlob [ 12 ] ) ,
( ipversion = = 6 ? 16 : 4 ) ,
( unsigned int ) sqlite3_column_int ( _sGetIpAssignmentsForNode2 , 1 )
) ;
responseBody . append ( firstIp ? " \" " : " , \" " ) ;
firstIp = false ;
responseBody . append ( _jsonEscape ( ip . toString ( ) ) ) ;
responseBody . push_back ( ' " ' ) ;
}
2015-05-17 00:12:29 +00:00
2015-09-10 21:47:04 +00:00
responseBody . append ( " ], \n \t \" recentLog \" : [ " ) ;
2015-04-21 23:41:35 +00:00
2015-09-15 17:59:23 +00:00
{
std : : map < std : : pair < Address , uint64_t > , _LLEntry > : : const_iterator lli ( _lastLog . find ( std : : pair < Address , uint64_t > ( Address ( address ) , nwid ) ) ) ;
if ( lli ! = _lastLog . end ( ) ) {
const _LLEntry & lastLogEntry = lli - > second ;
uint64_t eptr = lastLogEntry . totalRequests ;
for ( int k = 0 ; k < ZT_SQLITENETWORKCONTROLLER_IN_MEMORY_LOG_SIZE ; + + k ) {
if ( ! eptr - - )
break ;
const unsigned long ptr = ( unsigned long ) eptr % ZT_SQLITENETWORKCONTROLLER_IN_MEMORY_LOG_SIZE ;
char tsbuf [ 64 ] ;
Utils : : snprintf ( tsbuf , sizeof ( tsbuf ) , " %llu " , ( unsigned long long ) lastLogEntry . l [ ptr ] . ts ) ;
responseBody . append ( ( k = = 0 ) ? " { " : " ,{ " ) ;
responseBody . append ( " \" ts \" : " ) ;
responseBody . append ( tsbuf ) ;
responseBody . append ( lastLogEntry . l [ ptr ] . authorized ? " , \" authorized \" :false, \" version \" : " : " , \" authorized \" :true, \" version \" : " ) ;
if ( lastLogEntry . l [ ptr ] . version [ 0 ] ) {
responseBody . push_back ( ' " ' ) ;
responseBody . append ( _jsonEscape ( lastLogEntry . l [ ptr ] . version ) ) ;
responseBody . append ( " \" , \" fromAddr \" : " ) ;
} else responseBody . append ( " null, \" fromAddr \" : " ) ;
if ( lastLogEntry . l [ ptr ] . fromAddr ) {
responseBody . push_back ( ' " ' ) ;
responseBody . append ( _jsonEscape ( lastLogEntry . l [ ptr ] . fromAddr . toString ( ) ) ) ;
responseBody . append ( " \" } " ) ;
} else responseBody . append ( " null} " ) ;
}
}
2015-09-10 21:47:04 +00:00
}
2015-05-17 16:36:35 +00:00
2015-09-10 21:47:04 +00:00
responseBody . append ( " ] \n } \n " ) ;
2015-05-17 16:36:35 +00:00
2015-09-10 21:47:04 +00:00
responseContentType = " application/json " ;
return 200 ;
} // else 404
2015-05-17 16:36:35 +00:00
2015-09-10 21:47:04 +00:00
} else {
// List members
2015-05-17 16:36:35 +00:00
2015-09-10 21:47:04 +00:00
sqlite3_reset ( _sListNetworkMembers ) ;
sqlite3_bind_text ( _sListNetworkMembers , 1 , nwids , 16 , SQLITE_STATIC ) ;
responseBody . append ( " { " ) ;
bool firstMember = true ;
while ( sqlite3_step ( _sListNetworkMembers ) = = SQLITE_ROW ) {
responseBody . append ( firstMember ? " \" " : " , \" " ) ;
firstMember = false ;
responseBody . append ( ( const char * ) sqlite3_column_text ( _sListNetworkMembers , 0 ) ) ;
responseBody . append ( " \" : " ) ;
responseBody . append ( ( const char * ) sqlite3_column_text ( _sListNetworkMembers , 1 ) ) ;
}
responseBody . push_back ( ' } ' ) ;
responseContentType = " application/json " ;
return 200 ;
2015-05-17 16:36:35 +00:00
2015-09-10 21:47:04 +00:00
}
2015-04-21 23:50:02 +00:00
2015-09-10 21:47:04 +00:00
} // else 404
2015-04-22 01:08:33 +00:00
2015-09-10 21:47:04 +00:00
} else {
// get network info
sqlite3_reset ( _sGetNetworkById ) ;
sqlite3_bind_text ( _sGetNetworkById , 1 , nwids , 16 , SQLITE_STATIC ) ;
if ( sqlite3_step ( _sGetNetworkById ) = = SQLITE_ROW ) {
Utils : : snprintf ( json , sizeof ( json ) ,
" { \n "
" \t \" nwid \" : \" %s \" , \n "
" \t \" controllerInstanceId \" : \" %s \" , \n "
" \t \" clock \" : %llu, \n "
" \t \" name \" : \" %s \" , \n "
" \t \" private \" : %s, \n "
" \t \" enableBroadcast \" : %s, \n "
" \t \" allowPassiveBridging \" : %s, \n "
" \t \" v4AssignMode \" : \" %s \" , \n "
" \t \" v6AssignMode \" : \" %s \" , \n "
" \t \" multicastLimit \" : %d, \n "
" \t \" creationTime \" : %llu, \n "
" \t \" revision \" : %llu, \n "
" \t \" memberRevisionCounter \" : %llu, \n "
" \t \" authorizedMemberCount \" : %llu, \n "
" \t \" relays \" : [ " ,
nwids ,
_instanceId . c_str ( ) ,
( unsigned long long ) OSUtils : : now ( ) ,
_jsonEscape ( ( const char * ) sqlite3_column_text ( _sGetNetworkById , 0 ) ) . c_str ( ) ,
( sqlite3_column_int ( _sGetNetworkById , 1 ) > 0 ) ? " true " : " false " ,
( sqlite3_column_int ( _sGetNetworkById , 2 ) > 0 ) ? " true " : " false " ,
( sqlite3_column_int ( _sGetNetworkById , 3 ) > 0 ) ? " true " : " false " ,
_jsonEscape ( ( const char * ) sqlite3_column_text ( _sGetNetworkById , 4 ) ) . c_str ( ) ,
_jsonEscape ( ( const char * ) sqlite3_column_text ( _sGetNetworkById , 5 ) ) . c_str ( ) ,
sqlite3_column_int ( _sGetNetworkById , 6 ) ,
( unsigned long long ) sqlite3_column_int64 ( _sGetNetworkById , 7 ) ,
( unsigned long long ) sqlite3_column_int64 ( _sGetNetworkById , 8 ) ,
( unsigned long long ) sqlite3_column_int64 ( _sGetNetworkById , 9 ) ,
( unsigned long long ) sqlite3_column_int64 ( _sGetNetworkById , 10 ) ) ;
responseBody = json ;
2015-06-29 21:52:09 +00:00
2015-09-10 21:47:04 +00:00
sqlite3_reset ( _sGetRelays ) ;
sqlite3_bind_text ( _sGetRelays , 1 , nwids , 16 , SQLITE_STATIC ) ;
bool firstRelay = true ;
while ( sqlite3_step ( _sGetRelays ) = = SQLITE_ROW ) {
responseBody . append ( firstRelay ? " \n \t \t " : " , \n \t \t " ) ;
firstRelay = false ;
responseBody . append ( " { \" address \" : \" " ) ;
responseBody . append ( ( const char * ) sqlite3_column_text ( _sGetRelays , 0 ) ) ;
responseBody . append ( " \" , \" phyAddress \" : \" " ) ;
responseBody . append ( _jsonEscape ( ( const char * ) sqlite3_column_text ( _sGetRelays , 1 ) ) ) ;
responseBody . append ( " \" } " ) ;
}
2015-06-29 21:52:09 +00:00
2015-09-10 21:47:04 +00:00
responseBody . append ( " ], \n \t \" gateways \" : [ " ) ;
2015-04-23 01:06:26 +00:00
2015-09-10 21:47:04 +00:00
sqlite3_reset ( _sGetGateways ) ;
sqlite3_bind_text ( _sGetGateways , 1 , nwids , 16 , SQLITE_STATIC ) ;
bool firstGateway = true ;
while ( sqlite3_step ( _sGetGateways ) = = SQLITE_ROW ) {
char tmp [ 128 ] ;
const unsigned char * ip = ( const unsigned char * ) sqlite3_column_blob ( _sGetGateways , 0 ) ;
switch ( sqlite3_column_int ( _sGetGateways , 1 ) ) { // ipVersion
case 4 :
Utils : : snprintf ( tmp , sizeof ( tmp ) , " %s%d.%d.%d.%d/%d \" " ,
( firstGateway ) ? " \" " : " , \" " ,
( int ) ip [ 12 ] ,
( int ) ip [ 13 ] ,
( int ) ip [ 14 ] ,
( int ) ip [ 15 ] ,
( int ) sqlite3_column_int ( _sGetGateways , 2 ) ) ; // metric
break ;
case 6 :
Utils : : snprintf ( tmp , sizeof ( tmp ) , " %s%.2x%.2x:%.2x%.2x:%.2x%.2x:%.2x%.2x:%.2x%.2x:%.2x%.2x:%.2x%.2x:%.2x%.2x/%d \" " ,
( firstGateway ) ? " \" " : " , \" " ,
( int ) ip [ 0 ] ,
( int ) ip [ 1 ] ,
( int ) ip [ 2 ] ,
( int ) ip [ 3 ] ,
( int ) ip [ 4 ] ,
( int ) ip [ 5 ] ,
( int ) ip [ 6 ] ,
( int ) ip [ 7 ] ,
( int ) ip [ 8 ] ,
( int ) ip [ 9 ] ,
( int ) ip [ 10 ] ,
( int ) ip [ 11 ] ,
( int ) ip [ 12 ] ,
( int ) ip [ 13 ] ,
( int ) ip [ 14 ] ,
( int ) ip [ 15 ] ,
( int ) sqlite3_column_int ( _sGetGateways , 2 ) ) ; // metric
break ;
}
responseBody . append ( tmp ) ;
firstGateway = false ;
}
2015-04-23 01:06:26 +00:00
2015-09-10 21:47:04 +00:00
responseBody . append ( " ], \n \t \" ipLocalRoutes \" : [ " ) ;
2015-04-23 01:06:26 +00:00
2015-09-10 21:47:04 +00:00
sqlite3_reset ( _sGetLocalRoutes ) ;
sqlite3_bind_text ( _sGetLocalRoutes , 1 , nwids , 16 , SQLITE_STATIC ) ;
sqlite3_bind_int ( _sGetLocalRoutes , 2 , ( int ) ZT_IP_ASSIGNMENT_TYPE_NETWORK ) ;
bool firstLocalRoute = true ;
while ( sqlite3_step ( _sGetLocalRoutes ) = = SQLITE_ROW ) {
char tmp [ 128 ] ;
const unsigned char * ip = ( const unsigned char * ) sqlite3_column_blob ( _sGetLocalRoutes , 0 ) ;
switch ( sqlite3_column_int ( _sGetLocalRoutes , 2 ) ) {
case 4 :
Utils : : snprintf ( tmp , sizeof ( tmp ) , " %s%d.%d.%d.%d/%d \" " ,
( firstLocalRoute ) ? " \" " : " , \" " ,
( int ) ip [ 12 ] ,
( int ) ip [ 13 ] ,
( int ) ip [ 14 ] ,
( int ) ip [ 15 ] ,
( int ) sqlite3_column_int ( _sGetLocalRoutes , 1 ) ) ; // netmask bits
break ;
case 6 :
Utils : : snprintf ( tmp , sizeof ( tmp ) , " %s%.2x%.2x:%.2x%.2x:%.2x%.2x:%.2x%.2x:%.2x%.2x:%.2x%.2x:%.2x%.2x:%.2x%.2x/%d \" " ,
( firstLocalRoute ) ? " \" " : " , \" " ,
( int ) ip [ 0 ] ,
( int ) ip [ 1 ] ,
( int ) ip [ 2 ] ,
( int ) ip [ 3 ] ,
( int ) ip [ 4 ] ,
( int ) ip [ 5 ] ,
( int ) ip [ 6 ] ,
( int ) ip [ 7 ] ,
( int ) ip [ 8 ] ,
( int ) ip [ 9 ] ,
( int ) ip [ 10 ] ,
( int ) ip [ 11 ] ,
( int ) ip [ 12 ] ,
( int ) ip [ 13 ] ,
( int ) ip [ 14 ] ,
( int ) ip [ 15 ] ,
( int ) sqlite3_column_int ( _sGetLocalRoutes , 1 ) ) ; // netmask bits
break ;
}
responseBody . append ( tmp ) ;
firstLocalRoute = false ;
}
2015-05-25 20:20:10 +00:00
2015-09-10 21:47:04 +00:00
responseBody . append ( " ], \n \t \" ipAssignmentPools \" : [ " ) ;
2015-06-29 22:34:26 +00:00
2015-09-10 21:47:04 +00:00
sqlite3_reset ( _sGetIpAssignmentPools2 ) ;
sqlite3_bind_text ( _sGetIpAssignmentPools2 , 1 , nwids , 16 , SQLITE_STATIC ) ;
bool firstIpAssignmentPool = true ;
while ( sqlite3_step ( _sGetIpAssignmentPools2 ) = = SQLITE_ROW ) {
const char * ipRangeStartB = reinterpret_cast < const char * > ( sqlite3_column_blob ( _sGetIpAssignmentPools2 , 0 ) ) ;
const char * ipRangeEndB = reinterpret_cast < const char * > ( sqlite3_column_blob ( _sGetIpAssignmentPools2 , 1 ) ) ;
if ( ( ipRangeStartB ) & & ( ipRangeEndB ) ) {
InetAddress ipps , ippe ;
int ipVersion = sqlite3_column_int ( _sGetIpAssignmentPools2 , 2 ) ;
if ( ipVersion = = 4 ) {
ipps . set ( ( const void * ) ( ipRangeStartB + 12 ) , 4 , 0 ) ;
ippe . set ( ( const void * ) ( ipRangeEndB + 12 ) , 4 , 0 ) ;
} else if ( ipVersion = = 6 ) {
ipps . set ( ( const void * ) ipRangeStartB , 16 , 0 ) ;
ippe . set ( ( const void * ) ipRangeEndB , 16 , 0 ) ;
2015-04-22 01:08:33 +00:00
}
2015-09-10 21:47:04 +00:00
if ( ipps ) {
responseBody . append ( firstIpAssignmentPool ? " \n \t \t " : " , \n \t \t " ) ;
firstIpAssignmentPool = false ;
Utils : : snprintf ( json , sizeof ( json ) , " { \" ipRangeStart \" : \" %s \" , \" ipRangeEnd \" : \" %s \" } " ,
_jsonEscape ( ipps . toIpString ( ) ) . c_str ( ) ,
_jsonEscape ( ippe . toIpString ( ) ) . c_str ( ) ) ;
responseBody . append ( json ) ;
2015-05-16 21:34:51 +00:00
}
2015-04-22 01:08:33 +00:00
}
}
2015-04-21 23:50:02 +00:00
2015-09-10 21:47:04 +00:00
responseBody . append ( " ], \n \t \" rules \" : [ " ) ;
2015-04-24 19:29:31 +00:00
2015-09-10 21:47:04 +00:00
sqlite3_reset ( _sListRules ) ;
sqlite3_bind_text ( _sListRules , 1 , nwids , 16 , SQLITE_STATIC ) ;
bool firstRule = true ;
while ( sqlite3_step ( _sListRules ) = = SQLITE_ROW ) {
responseBody . append ( firstRule ? " \n \t { \n " : " ,{ \n " ) ;
firstRule = false ;
Utils : : snprintf ( json , sizeof ( json ) , " \t \t \" ruleNo \" : %lld, \n " , sqlite3_column_int64 ( _sListRules , 0 ) ) ;
responseBody . append ( json ) ;
if ( sqlite3_column_type ( _sListRules , 1 ) ! = SQLITE_NULL ) {
Utils : : snprintf ( json , sizeof ( json ) , " \t \t \" nodeId \" : \" %s \" , \n " , ( const char * ) sqlite3_column_text ( _sListRules , 1 ) ) ;
responseBody . append ( json ) ;
}
if ( sqlite3_column_type ( _sListRules , 2 ) ! = SQLITE_NULL ) {
Utils : : snprintf ( json , sizeof ( json ) , " \t \t \" sourcePort \" : \" %s \" , \n " , ( const char * ) sqlite3_column_text ( _sListRules , 2 ) ) ;
responseBody . append ( json ) ;
}
if ( sqlite3_column_type ( _sListRules , 3 ) ! = SQLITE_NULL ) {
Utils : : snprintf ( json , sizeof ( json ) , " \t \t \" destPort \" : \" %s \" , \n " , ( const char * ) sqlite3_column_text ( _sListRules , 3 ) ) ;
responseBody . append ( json ) ;
}
if ( sqlite3_column_type ( _sListRules , 4 ) ! = SQLITE_NULL ) {
Utils : : snprintf ( json , sizeof ( json ) , " \t \t \" vlanId \" : %d, \n " , sqlite3_column_int ( _sListRules , 4 ) ) ;
responseBody . append ( json ) ;
}
if ( sqlite3_column_type ( _sListRules , 5 ) ! = SQLITE_NULL ) {
Utils : : snprintf ( json , sizeof ( json ) , " \t \t \" vlanPcp \" : %d, \n " , sqlite3_column_int ( _sListRules , 5 ) ) ;
responseBody . append ( json ) ;
}
if ( sqlite3_column_type ( _sListRules , 6 ) ! = SQLITE_NULL ) {
Utils : : snprintf ( json , sizeof ( json ) , " \t \t \" etherType \" : %d, \n " , sqlite3_column_int ( _sListRules , 6 ) ) ;
responseBody . append ( json ) ;
}
if ( sqlite3_column_type ( _sListRules , 7 ) ! = SQLITE_NULL ) {
Utils : : snprintf ( json , sizeof ( json ) , " \t \t \" macSource \" : \" %s \" , \n " , MAC ( ( const char * ) sqlite3_column_text ( _sListRules , 7 ) ) . toString ( ) . c_str ( ) ) ;
responseBody . append ( json ) ;
}
if ( sqlite3_column_type ( _sListRules , 8 ) ! = SQLITE_NULL ) {
Utils : : snprintf ( json , sizeof ( json ) , " \t \t \" macDest \" : \" %s \" , \n " , MAC ( ( const char * ) sqlite3_column_text ( _sListRules , 8 ) ) . toString ( ) . c_str ( ) ) ;
responseBody . append ( json ) ;
}
if ( sqlite3_column_type ( _sListRules , 9 ) ! = SQLITE_NULL ) {
Utils : : snprintf ( json , sizeof ( json ) , " \t \t \" ipSource \" : \" %s \" , \n " , _jsonEscape ( ( const char * ) sqlite3_column_text ( _sListRules , 9 ) ) . c_str ( ) ) ;
responseBody . append ( json ) ;
}
if ( sqlite3_column_type ( _sListRules , 10 ) ! = SQLITE_NULL ) {
Utils : : snprintf ( json , sizeof ( json ) , " \t \t \" ipDest \" : \" %s \" , \n " , _jsonEscape ( ( const char * ) sqlite3_column_text ( _sListRules , 10 ) ) . c_str ( ) ) ;
responseBody . append ( json ) ;
}
if ( sqlite3_column_type ( _sListRules , 11 ) ! = SQLITE_NULL ) {
Utils : : snprintf ( json , sizeof ( json ) , " \t \t \" ipTos \" : %d, \n " , sqlite3_column_int ( _sListRules , 11 ) ) ;
responseBody . append ( json ) ;
}
if ( sqlite3_column_type ( _sListRules , 12 ) ! = SQLITE_NULL ) {
Utils : : snprintf ( json , sizeof ( json ) , " \t \t \" ipProtocol \" : %d, \n " , sqlite3_column_int ( _sListRules , 12 ) ) ;
responseBody . append ( json ) ;
}
if ( sqlite3_column_type ( _sListRules , 13 ) ! = SQLITE_NULL ) {
Utils : : snprintf ( json , sizeof ( json ) , " \t \t \" ipSourcePort \" : %d, \n " , sqlite3_column_int ( _sListRules , 13 ) ) ;
responseBody . append ( json ) ;
}
if ( sqlite3_column_type ( _sListRules , 14 ) ! = SQLITE_NULL ) {
Utils : : snprintf ( json , sizeof ( json ) , " \t \t \" ipDestPort \" : %d, \n " , sqlite3_column_int ( _sListRules , 14 ) ) ;
responseBody . append ( json ) ;
}
if ( sqlite3_column_type ( _sListRules , 15 ) ! = SQLITE_NULL ) {
Utils : : snprintf ( json , sizeof ( json ) , " \t \t \" flags \" : %lu, \n " , ( unsigned long ) sqlite3_column_int64 ( _sListRules , 15 ) ) ;
responseBody . append ( json ) ;
}
if ( sqlite3_column_type ( _sListRules , 16 ) ! = SQLITE_NULL ) {
Utils : : snprintf ( json , sizeof ( json ) , " \t \t \" invFlags \" : %lu, \n " , ( unsigned long ) sqlite3_column_int64 ( _sListRules , 16 ) ) ;
responseBody . append ( json ) ;
}
responseBody . append ( " \t \t \" action \" : \" " ) ;
responseBody . append ( _jsonEscape ( ( sqlite3_column_type ( _sListRules , 17 ) = = SQLITE_NULL ) ? " drop " : ( const char * ) sqlite3_column_text ( _sListRules , 17 ) ) ) ;
responseBody . append ( " \" \n \t } " ) ;
}
2015-04-21 23:50:02 +00:00
2015-09-10 21:47:04 +00:00
responseBody . append ( " ] \n } \n " ) ;
responseContentType = " application/json " ;
return 200 ;
} // else 404
}
} else if ( path . size ( ) = = 1 ) {
// list networks
sqlite3_reset ( _sListNetworks ) ;
responseContentType = " application/json " ;
responseBody = " [ " ;
bool first = true ;
while ( sqlite3_step ( _sListNetworks ) = = SQLITE_ROW ) {
if ( first ) {
first = false ;
responseBody . push_back ( ' " ' ) ;
} else responseBody . append ( " , \" " ) ;
responseBody . append ( ( const char * ) sqlite3_column_text ( _sListNetworks , 0 ) ) ;
responseBody . push_back ( ' " ' ) ;
}
responseBody . push_back ( ' ] ' ) ;
return 200 ;
2015-04-21 23:50:02 +00:00
} // else 404
2015-09-10 21:47:04 +00:00
} else {
// GET /controller returns status and API version if controller is supported
Utils : : snprintf ( json , sizeof ( json ) , " { \n \t \" controller \" : true, \n \t \" apiVersion \" : %d, \n \t \" clock \" : %llu, \n \t \" instanceId \" : \" %s \" \n } \n " , ZT_NETCONF_CONTROLLER_API_VERSION , ( unsigned long long ) OSUtils : : now ( ) , _instanceId . c_str ( ) ) ;
responseBody = json ;
responseContentType = " application/json " ;
return 200 ;
}
2015-04-21 23:50:02 +00:00
2015-04-21 23:41:35 +00:00
return 404 ;
}
2015-09-10 21:47:04 +00:00
NetworkController : : ResultCode SqliteNetworkController : : _doNetworkConfigRequest ( const InetAddress & fromAddr , const Identity & signingId , const Identity & identity , uint64_t nwid , const Dictionary & metaData , Dictionary & netconf )
2015-04-21 23:41:35 +00:00
{
2015-09-10 21:47:04 +00:00
// Assumes _lock is locked
2015-05-16 20:42:53 +00:00
2015-09-10 21:47:04 +00:00
// Decode some stuff from metaData
const unsigned int clientMajorVersion = ( unsigned int ) metaData . getHexUInt ( ZT_NETWORKCONFIG_REQUEST_METADATA_KEY_NODE_MAJOR_VERSION , 0 ) ;
const unsigned int clientMinorVersion = ( unsigned int ) metaData . getHexUInt ( ZT_NETWORKCONFIG_REQUEST_METADATA_KEY_NODE_MINOR_VERSION , 0 ) ;
const unsigned int clientRevision = ( unsigned int ) metaData . getHexUInt ( ZT_NETWORKCONFIG_REQUEST_METADATA_KEY_NODE_REVISION , 0 ) ;
const bool clientIs104 = ( Utils : : compareVersion ( clientMajorVersion , clientMinorVersion , clientRevision , 1 , 0 , 4 ) > = 0 ) ;
2015-05-16 20:42:53 +00:00
2015-09-10 21:47:04 +00:00
// Note: we can't reuse prepared statements that return const char * pointers without
// making our own copy in e.g. a std::string first.
2015-05-16 20:42:53 +00:00
2015-09-10 21:47:04 +00:00
if ( ( ! signingId ) | | ( ! signingId . hasPrivate ( ) ) ) {
netconf [ " error " ] = " signing identity invalid or lacks private key " ;
return NetworkController : : NETCONF_QUERY_INTERNAL_SERVER_ERROR ;
}
if ( signingId . address ( ) . toInt ( ) ! = ( nwid > > 24 ) ) {
netconf [ " error " ] = " signing identity address does not match most significant 40 bits of network ID " ;
return NetworkController : : NETCONF_QUERY_INTERNAL_SERVER_ERROR ;
}
2015-05-16 20:42:53 +00:00
2015-09-15 17:59:23 +00:00
// Check rate limit circuit breaker to prevent flooding
const uint64_t now = OSUtils : : now ( ) ;
_LLEntry & lastLogEntry = _lastLog [ std : : pair < Address , uint64_t > ( identity . address ( ) , nwid ) ] ;
if ( ( now - lastLogEntry . lastRequestTime ) < = ZT_NETCONF_MIN_REQUEST_PERIOD )
return NetworkController : : NETCONF_QUERY_IGNORE ;
lastLogEntry . lastRequestTime = now ;
2015-05-16 20:42:53 +00:00
2015-09-10 21:47:04 +00:00
NetworkRecord network ;
memset ( & network , 0 , sizeof ( network ) ) ;
Utils : : snprintf ( network . id , sizeof ( network . id ) , " %.16llx " , ( unsigned long long ) nwid ) ;
2015-04-21 23:41:35 +00:00
2015-09-10 21:47:04 +00:00
MemberRecord member ;
memset ( & member , 0 , sizeof ( member ) ) ;
Utils : : snprintf ( member . nodeId , sizeof ( member . nodeId ) , " %.10llx " , ( unsigned long long ) identity . address ( ) . toInt ( ) ) ;
2015-05-17 00:12:29 +00:00
2015-09-10 21:47:04 +00:00
// Create Node record or do full identity check if we already have one
2015-05-17 00:12:29 +00:00
2015-09-10 21:47:04 +00:00
sqlite3_reset ( _sGetNodeIdentity ) ;
sqlite3_bind_text ( _sGetNodeIdentity , 1 , member . nodeId , 10 , SQLITE_STATIC ) ;
if ( sqlite3_step ( _sGetNodeIdentity ) = = SQLITE_ROW ) {
try {
Identity alreadyKnownIdentity ( ( const char * ) sqlite3_column_text ( _sGetNodeIdentity , 0 ) ) ;
if ( alreadyKnownIdentity ! = identity )
return NetworkController : : NETCONF_QUERY_ACCESS_DENIED ;
} catch ( . . . ) { // identity stored in database is not valid or is NULL
return NetworkController : : NETCONF_QUERY_ACCESS_DENIED ;
}
} else {
std : : string idstr ( identity . toString ( false ) ) ;
sqlite3_reset ( _sCreateOrReplaceNode ) ;
sqlite3_bind_text ( _sCreateOrReplaceNode , 1 , member . nodeId , 10 , SQLITE_STATIC ) ;
sqlite3_bind_text ( _sCreateOrReplaceNode , 2 , idstr . c_str ( ) , - 1 , SQLITE_STATIC ) ;
if ( sqlite3_step ( _sCreateOrReplaceNode ) ! = SQLITE_DONE ) {
netconf [ " error " ] = " unable to create new Node record " ;
return NetworkController : : NETCONF_QUERY_INTERNAL_SERVER_ERROR ;
}
}
2015-05-17 00:12:29 +00:00
2015-09-10 21:47:04 +00:00
// Fetch Network record
2015-07-21 19:57:01 +00:00
2015-09-10 21:47:04 +00:00
sqlite3_reset ( _sGetNetworkById ) ;
sqlite3_bind_text ( _sGetNetworkById , 1 , network . id , 16 , SQLITE_STATIC ) ;
if ( sqlite3_step ( _sGetNetworkById ) = = SQLITE_ROW ) {
network . name = ( const char * ) sqlite3_column_text ( _sGetNetworkById , 0 ) ;
network . isPrivate = ( sqlite3_column_int ( _sGetNetworkById , 1 ) > 0 ) ;
network . enableBroadcast = ( sqlite3_column_int ( _sGetNetworkById , 2 ) > 0 ) ;
network . allowPassiveBridging = ( sqlite3_column_int ( _sGetNetworkById , 3 ) > 0 ) ;
network . v4AssignMode = ( const char * ) sqlite3_column_text ( _sGetNetworkById , 4 ) ;
network . v6AssignMode = ( const char * ) sqlite3_column_text ( _sGetNetworkById , 5 ) ;
network . multicastLimit = sqlite3_column_int ( _sGetNetworkById , 6 ) ;
network . creationTime = ( uint64_t ) sqlite3_column_int64 ( _sGetNetworkById , 7 ) ;
network . revision = ( uint64_t ) sqlite3_column_int64 ( _sGetNetworkById , 8 ) ;
network . memberRevisionCounter = ( uint64_t ) sqlite3_column_int64 ( _sGetNetworkById , 9 ) ;
} else {
return NetworkController : : NETCONF_QUERY_OBJECT_NOT_FOUND ;
}
2015-07-21 19:57:01 +00:00
2015-09-10 21:47:04 +00:00
// Fetch Member record
2015-07-21 19:57:01 +00:00
2015-09-10 21:47:04 +00:00
bool foundMember = false ;
sqlite3_reset ( _sGetMember ) ;
sqlite3_bind_text ( _sGetMember , 1 , network . id , 16 , SQLITE_STATIC ) ;
sqlite3_bind_text ( _sGetMember , 2 , member . nodeId , 10 , SQLITE_STATIC ) ;
if ( sqlite3_step ( _sGetMember ) = = SQLITE_ROW ) {
foundMember = true ;
member . rowid = ( int64_t ) sqlite3_column_int64 ( _sGetMember , 0 ) ;
member . authorized = ( sqlite3_column_int ( _sGetMember , 1 ) > 0 ) ;
member . activeBridge = ( sqlite3_column_int ( _sGetMember , 2 ) > 0 ) ;
}
2015-07-21 19:57:01 +00:00
2015-09-10 21:47:04 +00:00
// Create Member record for unknown nodes, auto-authorizing if network is public
2015-09-08 18:35:55 +00:00
2015-09-10 21:47:04 +00:00
if ( ! foundMember ) {
member . authorized = ( network . isPrivate ? false : true ) ;
member . activeBridge = false ;
sqlite3_reset ( _sCreateMember ) ;
sqlite3_bind_text ( _sCreateMember , 1 , network . id , 16 , SQLITE_STATIC ) ;
sqlite3_bind_text ( _sCreateMember , 2 , member . nodeId , 10 , SQLITE_STATIC ) ;
sqlite3_bind_int ( _sCreateMember , 3 , ( member . authorized ? 1 : 0 ) ) ;
sqlite3_bind_text ( _sCreateMember , 4 , network . id , 16 , SQLITE_STATIC ) ;
if ( sqlite3_step ( _sCreateMember ) ! = SQLITE_DONE ) {
netconf [ " error " ] = " unable to create new member record " ;
return NetworkController : : NETCONF_QUERY_INTERNAL_SERVER_ERROR ;
}
member . rowid = ( int64_t ) sqlite3_last_insert_rowid ( _db ) ;
2015-09-08 18:35:55 +00:00
2015-09-10 21:47:04 +00:00
sqlite3_reset ( _sIncrementMemberRevisionCounter ) ;
sqlite3_bind_text ( _sIncrementMemberRevisionCounter , 1 , network . id , 16 , SQLITE_STATIC ) ;
sqlite3_step ( _sIncrementMemberRevisionCounter ) ;
}
2015-09-08 18:35:55 +00:00
2015-09-15 17:59:23 +00:00
// Add log entry to in-memory circular log
2015-09-10 21:47:04 +00:00
{
2015-09-15 17:59:23 +00:00
const unsigned long ptr = ( unsigned long ) lastLogEntry . totalRequests % ZT_SQLITENETWORKCONTROLLER_IN_MEMORY_LOG_SIZE ;
lastLogEntry . l [ ptr ] . ts = now ;
lastLogEntry . l [ ptr ] . fromAddr = fromAddr ;
if ( ( clientMajorVersion > 0 ) | | ( clientMinorVersion > 0 ) | | ( clientRevision > 0 ) )
Utils : : snprintf ( lastLogEntry . l [ ptr ] . version , sizeof ( lastLogEntry . l [ ptr ] . version ) , " %u.%u.%u " , clientMajorVersion , clientMinorVersion , clientRevision ) ;
else lastLogEntry . l [ ptr ] . version [ 0 ] = ( char ) 0 ;
lastLogEntry . l [ ptr ] . authorized = member . authorized ;
+ + lastLogEntry . totalRequests ;
// TODO: push or save these somewhere
2015-09-10 21:47:04 +00:00
}
2015-07-21 19:57:01 +00:00
2015-09-10 21:47:04 +00:00
// Check member authorization
2015-05-17 00:12:29 +00:00
2015-09-10 21:47:04 +00:00
if ( ! member . authorized )
return NetworkController : : NETCONF_QUERY_ACCESS_DENIED ;
2015-07-24 16:59:17 +00:00
2015-09-10 21:47:04 +00:00
// Create and sign netconf
2015-05-17 00:12:29 +00:00
2015-09-10 21:47:04 +00:00
netconf . clear ( ) ;
{
char tss [ 24 ] , rs [ 24 ] ;
2015-09-18 20:35:00 +00:00
Utils : : snprintf ( tss , sizeof ( tss ) , " %.16llx " , ( unsigned long long ) now ) ;
2015-09-10 21:47:04 +00:00
Utils : : snprintf ( rs , sizeof ( rs ) , " %.16llx " , ( unsigned long long ) network . revision ) ;
netconf [ ZT_NETWORKCONFIG_DICT_KEY_TIMESTAMP ] = tss ;
netconf [ ZT_NETWORKCONFIG_DICT_KEY_REVISION ] = rs ;
netconf [ ZT_NETWORKCONFIG_DICT_KEY_NETWORK_ID ] = network . id ;
netconf [ ZT_NETWORKCONFIG_DICT_KEY_ISSUED_TO ] = member . nodeId ;
netconf [ ZT_NETWORKCONFIG_DICT_KEY_PRIVATE ] = network . isPrivate ? " 1 " : " 0 " ;
netconf [ ZT_NETWORKCONFIG_DICT_KEY_NAME ] = ( network . name ) ? network . name : " " ;
netconf [ ZT_NETWORKCONFIG_DICT_KEY_ENABLE_BROADCAST ] = network . enableBroadcast ? " 1 " : " 0 " ;
netconf [ ZT_NETWORKCONFIG_DICT_KEY_ALLOW_PASSIVE_BRIDGING ] = network . allowPassiveBridging ? " 1 " : " 0 " ;
2015-07-21 19:57:01 +00:00
2015-09-10 21:47:04 +00:00
{ // TODO: right now only etherTypes are supported in rules
std : : vector < int > allowedEtherTypes ;
sqlite3_reset ( _sGetEtherTypesFromRuleTable ) ;
sqlite3_bind_text ( _sGetEtherTypesFromRuleTable , 1 , network . id , 16 , SQLITE_STATIC ) ;
while ( sqlite3_step ( _sGetEtherTypesFromRuleTable ) = = SQLITE_ROW ) {
if ( sqlite3_column_type ( _sGetEtherTypesFromRuleTable , 0 ) = = SQLITE_NULL ) {
allowedEtherTypes . clear ( ) ;
allowedEtherTypes . push_back ( 0 ) ; // NULL 'allow' matches ANY
break ;
} else {
int et = sqlite3_column_int ( _sGetEtherTypesFromRuleTable , 0 ) ;
if ( ( et > = 0 ) & & ( et < = 0xffff ) )
allowedEtherTypes . push_back ( et ) ;
}
}
std : : sort ( allowedEtherTypes . begin ( ) , allowedEtherTypes . end ( ) ) ;
allowedEtherTypes . erase ( std : : unique ( allowedEtherTypes . begin ( ) , allowedEtherTypes . end ( ) ) , allowedEtherTypes . end ( ) ) ;
std : : string allowedEtherTypesCsv ;
for ( std : : vector < int > : : const_iterator i ( allowedEtherTypes . begin ( ) ) ; i ! = allowedEtherTypes . end ( ) ; + + i ) {
if ( allowedEtherTypesCsv . length ( ) )
allowedEtherTypesCsv . push_back ( ' , ' ) ;
char tmp [ 16 ] ;
Utils : : snprintf ( tmp , sizeof ( tmp ) , " %.4x " , ( unsigned int ) * i ) ;
allowedEtherTypesCsv . append ( tmp ) ;
}
netconf [ ZT_NETWORKCONFIG_DICT_KEY_ALLOWED_ETHERNET_TYPES ] = allowedEtherTypesCsv ;
}
2015-05-17 00:12:29 +00:00
2015-09-10 21:47:04 +00:00
if ( network . multicastLimit > 0 ) {
char ml [ 16 ] ;
Utils : : snprintf ( ml , sizeof ( ml ) , " %lx " , ( unsigned long ) network . multicastLimit ) ;
netconf [ ZT_NETWORKCONFIG_DICT_KEY_MULTICAST_LIMIT ] = ml ;
}
2015-07-21 19:57:01 +00:00
2015-09-10 21:47:04 +00:00
{
std : : string activeBridges ;
sqlite3_reset ( _sGetActiveBridges ) ;
sqlite3_bind_text ( _sGetActiveBridges , 1 , network . id , 16 , SQLITE_STATIC ) ;
while ( sqlite3_step ( _sGetActiveBridges ) = = SQLITE_ROW ) {
const char * ab = ( const char * ) sqlite3_column_text ( _sGetActiveBridges , 0 ) ;
if ( ( ab ) & & ( strlen ( ab ) = = 10 ) ) {
if ( activeBridges . length ( ) )
activeBridges . push_back ( ' , ' ) ;
activeBridges . append ( ab ) ;
}
if ( activeBridges . length ( ) > 1024 ) // sanity check -- you can't have too many active bridges at the moment
break ;
}
if ( activeBridges . length ( ) )
netconf [ ZT_NETWORKCONFIG_DICT_KEY_ACTIVE_BRIDGES ] = activeBridges ;
}
2015-07-21 19:57:01 +00:00
2015-09-10 21:47:04 +00:00
{
std : : string relays ;
sqlite3_reset ( _sGetRelays ) ;
sqlite3_bind_text ( _sGetRelays , 1 , network . id , 16 , SQLITE_STATIC ) ;
while ( sqlite3_step ( _sGetRelays ) = = SQLITE_ROW ) {
const char * n = ( const char * ) sqlite3_column_text ( _sGetRelays , 0 ) ;
const char * a = ( const char * ) sqlite3_column_text ( _sGetRelays , 1 ) ;
if ( ( n ) & & ( a ) ) {
Address node ( n ) ;
InetAddress addr ( a ) ;
if ( ( node ) & & ( addr ) ) {
if ( relays . length ( ) )
relays . push_back ( ' , ' ) ;
relays . append ( node . toString ( ) ) ;
relays . push_back ( ' ; ' ) ;
relays . append ( addr . toString ( ) ) ;
2015-07-21 19:57:01 +00:00
}
2015-09-10 21:47:04 +00:00
}
}
if ( relays . length ( ) )
netconf [ ZT_NETWORKCONFIG_DICT_KEY_RELAYS ] = relays ;
}
2015-07-21 19:57:01 +00:00
2015-09-10 21:47:04 +00:00
{
char tmp [ 128 ] ;
std : : string gateways ;
sqlite3_reset ( _sGetGateways ) ;
sqlite3_bind_text ( _sGetGateways , 1 , network . id , 16 , SQLITE_STATIC ) ;
while ( sqlite3_step ( _sGetGateways ) = = SQLITE_ROW ) {
const unsigned char * ip = ( const unsigned char * ) sqlite3_column_blob ( _sGetGateways , 0 ) ;
switch ( sqlite3_column_int ( _sGetGateways , 1 ) ) { // ipVersion
case 4 :
Utils : : snprintf ( tmp , sizeof ( tmp ) , " %s%d.%d.%d.%d/%d " ,
( gateways . length ( ) > 0 ) ? " , " : " " ,
( int ) ip [ 12 ] ,
( int ) ip [ 13 ] ,
( int ) ip [ 14 ] ,
( int ) ip [ 15 ] ,
( int ) sqlite3_column_int ( _sGetGateways , 2 ) ) ; // metric
gateways . append ( tmp ) ;
break ;
case 6 :
Utils : : snprintf ( tmp , sizeof ( tmp ) , " %s%.2x%.2x:%.2x%.2x:%.2x%.2x:%.2x%.2x:%.2x%.2x:%.2x%.2x:%.2x%.2x:%.2x%.2x/%d " ,
( gateways . length ( ) > 0 ) ? " , " : " " ,
( int ) ip [ 0 ] ,
( int ) ip [ 1 ] ,
( int ) ip [ 2 ] ,
( int ) ip [ 3 ] ,
( int ) ip [ 4 ] ,
( int ) ip [ 5 ] ,
( int ) ip [ 6 ] ,
( int ) ip [ 7 ] ,
( int ) ip [ 8 ] ,
( int ) ip [ 9 ] ,
( int ) ip [ 10 ] ,
( int ) ip [ 11 ] ,
( int ) ip [ 12 ] ,
( int ) ip [ 13 ] ,
( int ) ip [ 14 ] ,
( int ) ip [ 15 ] ,
( int ) sqlite3_column_int ( _sGetGateways , 2 ) ) ; // metric
gateways . append ( tmp ) ;
break ;
}
}
if ( gateways . length ( ) )
netconf [ ZT_NETWORKCONFIG_DICT_KEY_GATEWAYS ] = gateways ;
}
2015-07-21 19:57:01 +00:00
2015-09-10 21:47:04 +00:00
if ( ( network . v4AssignMode ) & & ( ! strcmp ( network . v4AssignMode , " zt " ) ) ) {
std : : string v4s ;
2015-05-17 00:12:29 +00:00
2015-09-10 21:47:04 +00:00
// Get existing IPv4 IP assignments and network routes -- keep routes in a
// vector for use in auto-assign if we need them.
std : : vector < std : : pair < uint32_t , int > > routedNetworks ;
bool haveStaticIpAssignment = false ;
sqlite3_reset ( _sGetIpAssignmentsForNode ) ;
sqlite3_bind_text ( _sGetIpAssignmentsForNode , 1 , network . id , 16 , SQLITE_STATIC ) ;
sqlite3_bind_text ( _sGetIpAssignmentsForNode , 2 , member . nodeId , 10 , SQLITE_STATIC ) ;
sqlite3_bind_int ( _sGetIpAssignmentsForNode , 3 , 4 ) ; // 4 == IPv4
while ( sqlite3_step ( _sGetIpAssignmentsForNode ) = = SQLITE_ROW ) {
const unsigned char * ip = ( const unsigned char * ) sqlite3_column_blob ( _sGetIpAssignmentsForNode , 1 ) ;
if ( ( ! ip ) | | ( sqlite3_column_bytes ( _sGetIpAssignmentsForNode , 1 ) ! = 16 ) )
continue ;
int ipNetmaskBits = sqlite3_column_int ( _sGetIpAssignmentsForNode , 2 ) ;
if ( ( ipNetmaskBits < = 0 ) | | ( ipNetmaskBits > 32 ) )
continue ;
2015-06-29 22:34:26 +00:00
2015-09-10 21:47:04 +00:00
const IpAssignmentType ipt = ( IpAssignmentType ) sqlite3_column_int ( _sGetIpAssignmentsForNode , 0 ) ;
switch ( ipt ) {
case ZT_IP_ASSIGNMENT_TYPE_ADDRESS :
haveStaticIpAssignment = true ;
break ;
case ZT_IP_ASSIGNMENT_TYPE_NETWORK :
routedNetworks . push_back ( std : : pair < uint32_t , int > ( Utils : : ntoh ( * ( reinterpret_cast < const uint32_t * > ( ip + 12 ) ) ) , ipNetmaskBits ) ) ;
break ;
default :
continue ;
}
2015-06-13 09:34:31 +00:00
2015-09-10 21:47:04 +00:00
// 1.0.4 or newer clients support network routes in addition to IPs.
// Older clients only support IP address / netmask entries.
if ( ( clientIs104 ) | | ( ipt = = ZT_IP_ASSIGNMENT_TYPE_ADDRESS ) ) {
char tmp [ 32 ] ;
Utils : : snprintf ( tmp , sizeof ( tmp ) , " %d.%d.%d.%d/%d " , ( int ) ip [ 12 ] , ( int ) ip [ 13 ] , ( int ) ip [ 14 ] , ( int ) ip [ 15 ] , ipNetmaskBits ) ;
if ( v4s . length ( ) )
v4s . push_back ( ' , ' ) ;
v4s . append ( tmp ) ;
}
}
2015-06-29 22:34:26 +00:00
2015-09-10 21:47:04 +00:00
if ( ! haveStaticIpAssignment ) {
// Attempt to auto-assign an IPv4 address from an available routed pool
sqlite3_reset ( _sGetIpAssignmentPools ) ;
sqlite3_bind_text ( _sGetIpAssignmentPools , 1 , network . id , 16 , SQLITE_STATIC ) ;
sqlite3_bind_int ( _sGetIpAssignmentPools , 2 , 4 ) ; // 4 == IPv4
2015-06-29 22:34:26 +00:00
2015-09-10 21:47:04 +00:00
while ( sqlite3_step ( _sGetIpAssignmentPools ) = = SQLITE_ROW ) {
const unsigned char * ipRangeStartB = reinterpret_cast < const unsigned char * > ( sqlite3_column_blob ( _sGetIpAssignmentPools , 0 ) ) ;
const unsigned char * ipRangeEndB = reinterpret_cast < const unsigned char * > ( sqlite3_column_blob ( _sGetIpAssignmentPools , 1 ) ) ;
if ( ( ! ipRangeStartB ) | | ( ! ipRangeEndB ) | | ( sqlite3_column_bytes ( _sGetIpAssignmentPools , 0 ) ! = 16 ) | | ( sqlite3_column_bytes ( _sGetIpAssignmentPools , 1 ) ! = 16 ) )
continue ;
2015-06-29 22:34:26 +00:00
2015-09-10 21:47:04 +00:00
uint32_t ipRangeStart = Utils : : ntoh ( * ( reinterpret_cast < const uint32_t * > ( ipRangeStartB + 12 ) ) ) ;
uint32_t ipRangeEnd = Utils : : ntoh ( * ( reinterpret_cast < const uint32_t * > ( ipRangeEndB + 12 ) ) ) ;
if ( ipRangeEnd < ipRangeStart )
continue ;
uint32_t ipRangeLen = ipRangeEnd - ipRangeStart ;
2015-05-17 00:12:29 +00:00
2015-09-10 21:47:04 +00:00
// Start with the LSB of the member's address
uint32_t ipTrialCounter = ( uint32_t ) ( identity . address ( ) . toInt ( ) & 0xffffffff ) ;
for ( uint32_t k = ipRangeStart , l = 0 ; ( k < = ipRangeEnd ) & & ( l < 1000000 ) ; + + k , + + l ) {
uint32_t ip = ( ipRangeLen > 0 ) ? ( ipRangeStart + ( ipTrialCounter % ipRangeLen ) ) : ipRangeStart ;
+ + ipTrialCounter ;
2015-09-28 22:28:30 +00:00
if ( ( ip & 0x000000ff ) = = 0x000000ff )
continue ; // don't allow addresses that end in .255
2015-09-10 21:47:04 +00:00
for ( std : : vector < std : : pair < uint32_t , int > > : : const_iterator r ( routedNetworks . begin ( ) ) ; r ! = routedNetworks . end ( ) ; + + r ) {
if ( ( ip & ( 0xffffffff < < ( 32 - r - > second ) ) ) = = r - > first ) {
// IP is included in a routed network, so check if it's allocated
uint32_t ipBlob [ 4 ] ;
ipBlob [ 0 ] = 0 ; ipBlob [ 1 ] = 0 ; ipBlob [ 2 ] = 0 ; ipBlob [ 3 ] = Utils : : hton ( ip ) ;
sqlite3_reset ( _sCheckIfIpIsAllocated ) ;
sqlite3_bind_text ( _sCheckIfIpIsAllocated , 1 , network . id , 16 , SQLITE_STATIC ) ;
sqlite3_bind_blob ( _sCheckIfIpIsAllocated , 2 , ( const void * ) ipBlob , 16 , SQLITE_STATIC ) ;
sqlite3_bind_int ( _sCheckIfIpIsAllocated , 3 , 4 ) ; // 4 == IPv4
sqlite3_bind_int ( _sCheckIfIpIsAllocated , 4 , ( int ) ZT_IP_ASSIGNMENT_TYPE_ADDRESS ) ;
if ( sqlite3_step ( _sCheckIfIpIsAllocated ) ! = SQLITE_ROW ) {
// No rows returned, so the IP is available
sqlite3_reset ( _sAllocateIp ) ;
sqlite3_bind_text ( _sAllocateIp , 1 , network . id , 16 , SQLITE_STATIC ) ;
sqlite3_bind_text ( _sAllocateIp , 2 , member . nodeId , 10 , SQLITE_STATIC ) ;
sqlite3_bind_int ( _sAllocateIp , 3 , ( int ) ZT_IP_ASSIGNMENT_TYPE_ADDRESS ) ;
sqlite3_bind_blob ( _sAllocateIp , 4 , ( const void * ) ipBlob , 16 , SQLITE_STATIC ) ;
sqlite3_bind_int ( _sAllocateIp , 5 , r - > second ) ; // IP netmask bits from matching route
sqlite3_bind_int ( _sAllocateIp , 6 , 4 ) ; // 4 == IPv4
if ( sqlite3_step ( _sAllocateIp ) = = SQLITE_DONE ) {
char tmp [ 32 ] ;
Utils : : snprintf ( tmp , sizeof ( tmp ) , " %d.%d.%d.%d/%d " , ( int ) ( ( ip > > 24 ) & 0xff ) , ( int ) ( ( ip > > 16 ) & 0xff ) , ( int ) ( ( ip > > 8 ) & 0xff ) , ( int ) ( ip & 0xff ) , r - > second ) ;
if ( v4s . length ( ) )
v4s . push_back ( ' , ' ) ;
v4s . append ( tmp ) ;
haveStaticIpAssignment = true ; // break outer loop
}
}
break ; // stop checking routed networks
2015-07-17 22:09:28 +00:00
}
}
2015-09-10 21:47:04 +00:00
if ( haveStaticIpAssignment )
break ;
2015-05-17 00:12:29 +00:00
}
2015-09-10 21:47:04 +00:00
}
}
2015-06-29 22:34:26 +00:00
2015-09-10 21:47:04 +00:00
if ( v4s . length ( ) )
netconf [ ZT_NETWORKCONFIG_DICT_KEY_IPV4_STATIC ] = v4s ;
}
2015-05-17 00:12:29 +00:00
2015-09-18 20:35:00 +00:00
if ( ( network . v6AssignMode ) & & ( ! strcmp ( network . v6AssignMode , " rfc4193 " ) ) ) {
InetAddress rfc4193Addr ( InetAddress : : makeIpv6rfc4193 ( nwid , identity . address ( ) . toInt ( ) ) ) ;
netconf [ ZT_NETWORKCONFIG_DICT_KEY_IPV6_STATIC ] = rfc4193Addr . toString ( ) ;
}
2015-05-17 00:12:29 +00:00
2015-09-10 21:47:04 +00:00
if ( network . isPrivate ) {
2015-09-18 20:35:00 +00:00
CertificateOfMembership com ( now , ZT_NETWORK_AUTOCONF_DELAY + ( ZT_NETWORK_AUTOCONF_DELAY / 2 ) , nwid , identity . address ( ) ) ;
2015-09-10 21:47:04 +00:00
if ( com . sign ( signingId ) ) // basically can't fail unless our identity is invalid
netconf [ ZT_NETWORKCONFIG_DICT_KEY_CERTIFICATE_OF_MEMBERSHIP ] = com . toString ( ) ;
else {
netconf [ " error " ] = " unable to sign COM " ;
return NETCONF_QUERY_INTERNAL_SERVER_ERROR ;
2015-05-17 00:12:29 +00:00
}
2015-09-10 21:47:04 +00:00
}
2015-05-17 00:12:29 +00:00
2015-09-18 20:35:00 +00:00
if ( ! netconf . sign ( signingId , now ) ) {
2015-09-10 21:47:04 +00:00
netconf [ " error " ] = " unable to sign netconf dictionary " ;
return NETCONF_QUERY_INTERNAL_SERVER_ERROR ;
}
2015-05-17 00:12:29 +00:00
}
2015-09-10 21:47:04 +00:00
return NetworkController : : NETCONF_QUERY_OK ;
2015-05-17 00:12:29 +00:00
}
2015-10-08 22:44:06 +00:00
void SqliteNetworkController : : _circuitTestCallback ( ZT_Node * node , ZT_CircuitTest * test , const ZT_CircuitTestReport * report )
2015-10-08 20:25:38 +00:00
{
2015-10-08 22:44:06 +00:00
static Mutex circuitTestWriteLock ;
const uint64_t now = OSUtils : : now ( ) ;
SqliteNetworkController * const c = reinterpret_cast < SqliteNetworkController * > ( test - > ptr ) ;
char tmp [ 128 ] ;
std : : string reportSavePath ( c - > _circuitTestPath ) ;
OSUtils : : mkdir ( reportSavePath ) ;
Utils : : snprintf ( tmp , sizeof ( tmp ) , ZT_PATH_SEPARATOR_S " %.16llx " , test - > credentialNetworkId ) ;
reportSavePath . append ( tmp ) ;
OSUtils : : mkdir ( reportSavePath ) ;
Utils : : snprintf ( tmp , sizeof ( tmp ) , ZT_PATH_SEPARATOR_S " %.16llx_%.16llx " , test - > timestamp , test - > testId ) ;
reportSavePath . append ( tmp ) ;
OSUtils : : mkdir ( reportSavePath ) ;
Utils : : snprintf ( tmp , sizeof ( tmp ) , ZT_PATH_SEPARATOR_S " %.10llx " , report - > address ) ;
reportSavePath . append ( tmp ) ;
{
Mutex : : Lock _l ( circuitTestWriteLock ) ;
FILE * f = fopen ( reportSavePath . c_str ( ) , " a " ) ;
if ( ! f )
return ;
fseek ( f , 0 , SEEK_END ) ;
fprintf ( f , " %s{ \n "
" \t \" address \" : \" %.10llx \" , " ZT_EOL_S
" \t \" testId \" : \" %.16llx \" , " ZT_EOL_S
" \t \" timestamp \" : %llu, " ZT_EOL_S
" \t \" receivedTimestamp \" : %llu, " ZT_EOL_S
" \t \" remoteTimestamp \" : %llu, " ZT_EOL_S
" \t \" sourcePacketId \" : \" %.16llx \" , " ZT_EOL_S
" \t \" flags \" : %llu, " ZT_EOL_S
" \t \" sourcePacketHopCount \" : %u, " ZT_EOL_S
" \t \" errorCode \" : %u, " ZT_EOL_S
" \t \" vendor \" : %d, " ZT_EOL_S
" \t \" protocolVersion \" : %u, " ZT_EOL_S
" \t \" majorVersion \" : %u, " ZT_EOL_S
" \t \" minorVersion \" : %u, " ZT_EOL_S
" \t \" revision \" : %u, " ZT_EOL_S
" \t \" platform \" : %d, " ZT_EOL_S
" \t \" architecture \" : %d, " ZT_EOL_S
" \t \" receivedOnLocalAddress \" : \" %s \" , " ZT_EOL_S
" \t \" receivedFromRemoteAddress \" : \" %s \" " ZT_EOL_S
" } " ,
( ( ftell ( f ) > 0 ) ? " , \n " : " " ) ,
report - > address ,
test - > testId ,
report - > timestamp ,
now ,
report - > remoteTimestamp ,
report - > sourcePacketId ,
report - > flags ,
report - > sourcePacketHopCount ,
report - > errorCode ,
( int ) report - > vendor ,
report - > protocolVersion ,
report - > majorVersion ,
report - > minorVersion ,
report - > revision ,
( int ) report - > platform ,
( int ) report - > architecture ,
reinterpret_cast < const InetAddress * > ( & ( report - > receivedOnLocalAddress ) ) - > toString ( ) . c_str ( ) ,
reinterpret_cast < const InetAddress * > ( & ( report - > receivedFromRemoteAddress ) ) - > toString ( ) . c_str ( ) ) ;
fclose ( f ) ;
}
2015-10-08 20:25:38 +00:00
}
2015-01-06 21:45:10 +00:00
} // namespace ZeroTier