ExternalVendorCode/ZeroTierOne
1
0
Fork 0
mirror of https://github.com/zerotier/ZeroTierOne.git synced 2025-05-30 22:14:22 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Disable HTTP control plane for libzt builds, introduction of getRoutes() for SDK API

Browse Source
This commit is contained in:
Joseph Henry 2019-01-14 11:34:46 -08:00
parent 0e597191b8
commit 21f4f16e63
2 changed files with 33 additions and 35 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

41
service/OneService.cpp
View File

@ -112,7 +112,7 @@ namespace ZeroTier { typedef TestEthernetTap EthernetTap; }
#include "../controller/EmbeddedNetworkController.hpp" #include "../controller/EmbeddedNetworkController.hpp"
#include "../node/Node.hpp" #include "../node/Node.hpp"
// Use the virtual netcon endpoint instead of a tun/tap port driver // Use the virtual netcon endpoint instead of a tun/tap port driver
#include "../include/VirtualTap.h" #include "../include/VirtualTap.hpp"
namespace ZeroTier { typedef VirtualTap EthernetTap; } namespace ZeroTier { typedef VirtualTap EthernetTap; }
#else #else
@ -142,7 +142,7 @@ namespace ZeroTier { typedef NetBSDEthernetTap EthernetTap; }
namespace ZeroTier { typedef BSDEthernetTap EthernetTap; } namespace ZeroTier { typedef BSDEthernetTap EthernetTap; }
#endif // __OpenBSD__ #endif // __OpenBSD__
#endif // ZT_SERVICE_NETCON #endif // ZT_SDK
#endif // ZT_USE_TEST_TAP #endif // ZT_USE_TEST_TAP
@ -158,7 +158,9 @@ namespace ZeroTier { typedef BSDEthernetTap EthernetTap; }
#define ZT_TAP_CHECK_MULTICAST_INTERVAL 5000 #define ZT_TAP_CHECK_MULTICAST_INTERVAL 5000
// TCP fallback relay (run by ZeroTier, Inc. -- this will eventually go away) // TCP fallback relay (run by ZeroTier, Inc. -- this will eventually go away)
#ifndef ZT_SDK
#define ZT_TCP_FALLBACK_RELAY "204.80.128.1/443" #define ZT_TCP_FALLBACK_RELAY "204.80.128.1/443"
#endif
// Frequency at which we re-resolve the TCP fallback relay // Frequency at which we re-resolve the TCP fallback relay
#define ZT_TCP_FALLBACK_RERESOLVE_DELAY 86400000 #define ZT_TCP_FALLBACK_RERESOLVE_DELAY 86400000
@ -1112,44 +1114,26 @@ public:
} }
#ifdef ZT_SDK #ifdef ZT_SDK
virtual void leave(const uint64_t hp)
{
_node->leave(hp, NULL, NULL);
}
virtual void join(const uint64_t hp)
{
_node->join(hp, NULL, NULL);
}
virtual std::string givenHomePath() virtual std::string givenHomePath()
{ {
return _homePath; return _homePath;
} }
std::vector<ZT_VirtualNetworkRoute> *getRoutes(uint64_t nwid) void getRoutes(uint64_t nwid, void *routeArray, unsigned int *numRoutes)
{ {
Mutex::Lock _l(_nets_m); Mutex::Lock _l(_nets_m);
NetworkState &n = _nets[nwid]; NetworkState &n = _nets[nwid];
std::vector<ZT_VirtualNetworkRoute> *routes = new std::vector<ZT_VirtualNetworkRoute>(); *numRoutes = *numRoutes < n.config.routeCount ? *numRoutes : n.config.routeCount;
for(int i=0; i<ZT_MAX_NETWORK_ROUTES; i++) { for(unsigned int i=0; i<*numRoutes; i++) {
routes->push_back(n.config.routes[i]); ZT_VirtualNetworkRoute *vnr = (ZT_VirtualNetworkRoute*)routeArray;
memcpy(&vnr[i], &(n.config.routes[i]), sizeof(ZT_VirtualNetworkRoute));
} }
return routes;
} }
virtual Node *getNode() virtual Node *getNode()
{ {
return _node; return _node;
} }
virtual void removeNets()
{
Mutex::Lock _l(_nets_m);
std::map<uint64_t,NetworkState>::iterator i;
for(i = _nets.begin(); i != _nets.end(); i++)
delete i->second.tap;
}
#endif // ZT_SDK #endif // ZT_SDK
virtual void terminate() virtual void terminate()
@ -1962,6 +1946,13 @@ public:
_phy.close(sockN,false); _phy.close(sockN,false);
return; return;
} else { } else {
#ifdef ZT_SDK
// Immediately close new local connections. The intention is to prevent the backplane from being accessed when operating as libzt
if (!allowHttpBackplaneManagement && ((InetAddress*)from)->ipScope() == InetAddress::IP_SCOPE_LOOPBACK) {
_phy.close(sockN,false);
return;
}
#endif
TcpConnection *tc = new TcpConnection(); TcpConnection *tc = new TcpConnection();
{ {
Mutex::Lock _l(_tcpConnections_m); Mutex::Lock _l(_tcpConnections_m);

27
service/OneService.hpp
View File

@ -30,16 +30,17 @@
#include <string> #include <string>
#include <vector> #include <vector>
#include "../node/InetAddress.hpp" namespace ZeroTier {
#ifdef ZT_SDK #ifdef ZT_SDK
#include "../node/Node.hpp" class VirtualTap;
// Use the virtual netcon endpoint instead of a tun/tap port driver // Use the virtual libzt endpoint instead of a tun/tap port driver
#include "../include/VirtualTap.h"
namespace ZeroTier { typedef VirtualTap EthernetTap; } namespace ZeroTier { typedef VirtualTap EthernetTap; }
#endif #endif
namespace ZeroTier { // Forward declaration so we can avoid dragging everything in
struct InetAddress;
class Node;
/** /**
* Local service for ZeroTier One as system VPN/NFV provider * Local service for ZeroTier One as system VPN/NFV provider
@ -147,12 +148,18 @@ public:
virtual std::string portDeviceName(uint64_t nwid) const = 0; virtual std::string portDeviceName(uint64_t nwid) const = 0;
#ifdef ZT_SDK #ifdef ZT_SDK
virtual void leave(const uint64_t hp) = 0; /**
virtual void join(const uint64_t hp) = 0; * Whether we allow access to the service via local HTTP requests (disabled by default in libzt)
virtual std::string givenHomePath() = 0; */
bool allowHttpBackplaneManagement = false;
/**
* @return Reference to the Node
*/
virtual Node * getNode() = 0; virtual Node * getNode() = 0;
virtual void removeNets() = 0; /**
virtual std::vector<ZT_VirtualNetworkRoute> *getRoutes(uint64_t nwid) = 0; * Fills out a structure with network-specific route information
*/
virtual void getRoutes(uint64_t nwid, void *routeArray, unsigned int *numRoutes) = 0;
#endif #endif
/** /**