kris
/
buggy_openssl_with_fullduplex
1
0
Atdalīts 0
Kods Problēmas 0 Izmaiņu pieprasījumi 0 Laidieni 0 Vikivietne Aktivitāte
Nevar pievienot vairāk kā 25 tēmas Tēmai ir jāsākas ar burtu vai ciparu, tā var saturēt domu zīmes ('-') un var būt līdz 35 simboliem gara.
13 Revīzijas
1 Atzars
64 KiB
Atzars: master
Atzari Tagi
${ item.name }
Izveidot atzaru ${ searchTerm }
no 'master'
${ noResults }
buggy_openssl_with_fullduplex/withselect/server.cpp

server.cpp 10 KiB
Neapstrādāts Patstāvīgā saite Parastais skats Vēsture

Init sources. Doesn't work yet
pirms 11 gadiem
Show bug a bit better
pirms 11 gadiem
Init sources. Doesn't work yet
pirms 11 gadiem
Fixed mutexed version
pirms 11 gadiem
Init sources. Doesn't work yet
pirms 11 gadiem
Fixed mutexed version
pirms 11 gadiem
Init sources. Doesn't work yet
pirms 11 gadiem
Show bug a bit better
pirms 11 gadiem
Init sources. Doesn't work yet
pirms 11 gadiem
Show bug a bit better
pirms 11 gadiem
Fixed mutexed version
pirms 11 gadiem
Init sources. Doesn't work yet
pirms 11 gadiem
Show bug a bit better
pirms 11 gadiem
Init sources. Doesn't work yet
pirms 11 gadiem
Use SSL3 so that it is easy to debug with wireshark
pirms 11 gadiem
Show bug a bit better
pirms 11 gadiem
Init sources. Doesn't work yet
pirms 11 gadiem
Show bug a bit better
pirms 11 gadiem
Init sources. Doesn't work yet
pirms 11 gadiem
epoll init
pirms 10 gadiem
Added exit() whenever WANT_SOMETHING
pirms 11 gadiem
epoll init
pirms 10 gadiem
Added exit() whenever WANT_SOMETHING
pirms 11 gadiem
epoll init
pirms 10 gadiem
Added exit() whenever WANT_SOMETHING
pirms 11 gadiem
epoll init
pirms 10 gadiem
Added exit() whenever WANT_SOMETHING
pirms 11 gadiem
epoll init
pirms 10 gadiem
Init sources. Doesn't work yet
pirms 11 gadiem
Show bug a bit better
pirms 11 gadiem
Init sources. Doesn't work yet
pirms 11 gadiem
Show bug a bit better
pirms 11 gadiem
Added exit() whenever WANT_SOMETHING
pirms 11 gadiem
Show bug a bit better
pirms 11 gadiem
Added exit() whenever WANT_SOMETHING
pirms 11 gadiem
Show bug a bit better
pirms 11 gadiem
Init sources. Doesn't work yet
pirms 11 gadiem
 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379 
  1. #include "server.h"

  2. #include <vector>

  3. #include <set>

  4. #include <boost/thread/thread.hpp>

  5. #include <boost/thread/mutex.hpp>

  6. #include <boost/thread/condition_variable.hpp>

  7. #include <boost/thread/locks.hpp>

  8. #include <boost/pending/queue.hpp>

  9. #include <netinet/tcp.h>

  10. #include <fcntl.h>

  11. #include <iostream>

  12. #include <exception>

  13. #include <netinet/tcp.h>

  14. #include <openssl/ssl.h>

  15. #include <openssl/err.h>

  16. #include "defs.h"

  17. 

  18. using namespace std;

  19. using namespace boost;

  20. 

  21. typedef pair<int, SSL*> SocketSSLHandles_t;

  22. SocketSSLHandles_t WriteHandler(0,0);

  23. 

  24. // Keeps socket handles that are ready to be read

  25. boost::queue<SocketSSLHandles_t> ReadQueue;

  26. 

  27. // Socket Set is a set that keeps sockets on which we can 'select()'

  28. typedef set<SocketSSLHandles_t> SocketSet_t;

  29. SocketSet_t SocketSet;

  30. mutex SocketSetMutex;

  31. 

  32. // WaitForWrite is a condition variable that is signaled when Sender must start sending the data

  33. condition_variable WaitForWrite;

  34. mutex WaitForWriteMutex;

  35. 

  36. // mutex that synchronizes access to SSL_read/SSL_write

  37. mutex WriteReadMutex;

  38. 

  39. // thread functions to send and receive

  40. void Receive();

  41. void Send();

  42. int Gmaster=0;

  43. 

  44. bool handle_error_code(int& len, SSL* SSLHandler, int code, const char* func)

  45. {

  46.     switch( SSL_get_error( SSLHandler, code ) )

  47.     {

  48.     case SSL_ERROR_NONE:

  49.         len+=code;

  50.         return false;

  51.     case SSL_ERROR_ZERO_RETURN:

  52.         cout << "CONNETION CLOSE ON WRITE" << endl;

  53.         exit(1);

  54.         break;

  55.     case SSL_ERROR_WANT_READ:

  56.         cout << func << " WANT READ" << endl;

  57.         break;

  58.     case SSL_ERROR_WANT_WRITE:

  59.         cout << func << " WANT WRITE" << endl;

  60.         break;

  61.     case SSL_ERROR_SYSCALL:

  62.         cout << func << " ESYSCALL" << endl;

  63. //        exit(1);

  64.         break;

  65.     case SSL_ERROR_SSL:

  66.         cout << func << " ESSL" << endl;

  67.         exit(1);

  68.         break;

  69.     default:

  70.         cout << func << " SOMETHING ELSE" << endl;

  71.     }

  72.     return true;

  73. }

  74. 

  75. Server::Server()

  76.     : SSLProcess(true)

  77.     , _master(0)

  78. {

  79. }

  80. 

  81. void Server::startListen(void) {

  82.     struct sockaddr_in local_address;

  83. 

  84.     _master = ::socket(PF_INET, SOCK_STREAM, 0);

  85.     memset(&local_address, 0, sizeof(local_address));

  86. 

  87.     local_address.sin_family = AF_INET;

  88.     local_address.sin_port = htons(PORT);

  89.     local_address.sin_addr.s_addr = INADDR_ANY;

  90. 

  91.     int reuseval = 1;

  92.     setsockopt(_master,SOL_SOCKET,SO_REUSEADDR, &reuseval, sizeof(reuseval));

  93. 

  94.     // set socket non-blocking

  95.     fcntl(_master, F_SETFL, O_NONBLOCK);

  96. 

  97.     // Bind to the socket

  98.     if(::bind(_master, (struct sockaddr *)&local_address, sizeof(local_address)) != 0)

  99.         throw runtime_error("Couldn't bind to local port");

  100. 

  101.     // Set a limit on connection queue.

  102.     if(::listen(_master, 5) != 0)

  103.         throw runtime_error("Not possible to get into listen state");

  104. }

  105. 

  106. void Server::start()

  107. {

  108.     if( !_ctx )

  109.         throw runtime_error("SSL not initialized");

  110. 

  111.     startListen();

  112. 

  113.     Acceptor ac(_master, _ctx);

  114.     Gmaster=_master;

  115.     _sender  =new thread( Send );

  116.     _reciver =new thread( Receive );

  117.     _reactor =new thread( ac );

  118. 

  119. 

  120. }

  121. 

  122. void Server::init()

  123. {

  124.     sslInit();

  125.     doServerSSLInit();

  126. }

  127. 

  128. void Server::doServerSSLInit()

  129. {

  130.     // Load certificate & private key

  131.     if ( SSL_CTX_use_certificate_chain_file(_ctx, CERTIFICATE_FILE) <= 0) {

  132.         ERR_print_errors_fp(stderr);

  133.         _exit(1);

  134.     }

  135. 

  136.     if ( SSL_CTX_use_PrivateKey_file(_ctx, PRIVATE_KEY_FILE, SSL_FILETYPE_PEM) <= 0) {

  137.         ERR_print_errors_fp(stderr);

  138.         _exit(1);

  139.     }

  140. 

  141.     // Verify if public-private keypair matches

  142.     if ( !SSL_CTX_check_private_key(_ctx) ) {

  143.         fprintf(stderr, "Private key is invalid.\n");

  144.         _exit(1);

  145.     }

  146. 

  147.     // set weak protocol, so it is easy to debug with wireshark

  148. 

  149.     SSL_CTX_set_options(_ctx, SSL_OP_NO_TLSv1_2

  150.                         | SSL_OP_NO_TLSv1_1

  151.                         | SSL_OP_NO_TLSv1

  152.                         | SSL_OP_ALL

  153.                         | SSL_OP_SINGLE_DH_USE );

  154. }

  155. 

  156. void Acceptor::operator()()

  157. {

  158.     cout << "Entering acceptor loop..." << endl;

  159.     while(1)

  160.     {

  161.         // wait timer for select

  162.         struct timeval tv;

  163.         tv.tv_sec  = 0;

  164.         tv.tv_usec = 10;

  165. 

  166.         fd_set fd_read;

  167. 

  168.         // set fd_sets

  169.         FD_ZERO(&fd_read);

  170. 

  171.         // set max fd for select

  172.         int maxv = _master;

  173.         FD_SET(_master, &fd_read);

  174. 

  175.         // add all the sockets to sets

  176.         {

  177.             lock_guard<mutex> guard(SocketSetMutex);

  178.             for(SocketSet_t::const_iterator aIt=SocketSet.begin();

  179.                 aIt!=SocketSet.end(); ++aIt)

  180.             {

  181.                 FD_SET(aIt->first, &fd_read);

  182.                 if(aIt->first > maxv)

  183.                     maxv=aIt->first;

  184.             }

  185.         }

  186. 

  187.         // wait in select now

  188.         select(maxv+1, &fd_read, NULL, NULL, (struct timeval *)&tv);

  189.         {

  190.             lock_guard<mutex> guard(SocketSetMutex);

  191. 

  192.             // check if you can read

  193.             SocketSet_t::const_iterator aIt=SocketSet.begin();

  194.             while(aIt!=SocketSet.end())

  195.             {

  196. 

  197.                 SocketSSLHandles_t aTmpHandles = *aIt;

  198.                 aIt++;

  199.                 if( FD_ISSET(aTmpHandles.first, &fd_read ) )

  200.                 {

  201.                     // you need to erase tmpHd from SocketSet - otherwise it will

  202.                     // be ready to read until SSL_read is not called on it

  203.                     SocketSet.erase(aTmpHandles);

  204.                     ReadQueue.push(aTmpHandles);

  205.                 }

  206.             }

  207.         }

  208. 

  209.         // if master is in fd_read - then it means new connection req

  210.         // has arrived

  211.         if( FD_ISSET(_master, &fd_read) )

  212.         {

  213.             int new_fd=openTCPSocket();

  214.             if( new_fd >= 0 )

  215.             {

  216.                 int flag =1;

  217. //                setsockopt(new_fd, IPPROTO_TCP, TCP_NODELAY, (char *)&flag, sizeof(int));

  218.                 cout << "New socket with ID : " << new_fd

  219.                      << " is going to be added to map" << endl;

  220.                 SSL* ssl = openSSLSession(new_fd);

  221.                 lock_guard<mutex> guard(SocketSetMutex);

  222.                 SocketSet.insert(make_pair(new_fd, ssl));

  223.             }

  224.         }

  225.     }

  226. }

  227. 

  228. int Acceptor::openTCPSocket()

  229. {

  230.     // Open up new connection

  231.     cout << "New connection has arrived" << endl;

  232.     struct sockaddr_in addr;

  233.     int len = sizeof(addr);

  234.     int client = accept(_master, (struct sockaddr *)&addr, (socklen_t *)&len);

  235.     if(client == -1)

  236.         perror("accept");

  237.     return client;

  238. }

  239. 

  240. SSL* Acceptor::openSSLSession(int iTCPHandle)

  241. {

  242.     SSL *ssl = (SSL*) SSL_new(_ctx);

  243.     SSL_set_fd(ssl, iTCPHandle);

  244. 

  245.     // normally this would be in other thread

  246.     if(SSL_accept(ssl) == -1) {

  247.         ERR_print_errors_fp(stderr);

  248.         throw runtime_error("Can't SSL_accept => can't continue");

  249.     }

  250.     return ssl;

  251. }

  252. 

  253. void Receive()

  254. {

  255.     while(1)

  256.     {

  257.         char buf[1024];

  258.         SocketSSLHandles_t handler;

  259. 

  260.         // TO-DO: this way it takes 100% CPU, some signal would be usefull

  261.         while (!ReadQueue.empty())

  262.         {

  263.             handler = ReadQueue.front();

  264.             ReadQueue.pop();

  265. 

  266.             memset(buf,'\0',1024);

  267.             int len_rcv=0;

  268.             cout << SSL_state_string(handler.second) << endl;

  269.             {

  270.                 lock_guard<mutex> lock(WriteReadMutex);

  271.                 int flag = 1;

  272.                 while( flag!=0 )

  273.                 {

  274.                     cout << "SSL_read: start" << endl;

  275.                     len_rcv = SSL_read(handler.second, buf, 1024);

  276.                     flag = SSL_pending(handler.second);

  277.                     cout << "PENDING: " << flag << endl;

  278. 

  279. //                cout << "SSL_read: stop" << endl;

  280.                     if( !handle_error_code(len_rcv, handler.second, len_rcv, "rcv") )

  281.                     {

  282.                         // dirty thing - if it has \n on the end - remove it

  283.                         if( buf[len_rcv-1] == '\n' )

  284.                             buf[len_rcv-1] = '\0';

  285. 

  286.                         cout << buf << endl;

  287.                         {

  288.                             // add it back to the socket so that select can use it

  289.                             lock_guard<mutex> guard(SocketSetMutex);

  290.                             SocketSet.insert(handler);

  291. 

  292.                             // push handler ID and notify sender thread

  293.                             WriteHandler = handler;

  294.                             WaitForWrite.notify_one();

  295.                         }

  296.                         break;

  297.                     }

  298.                 }

  299. 

  300.             }

  301.         }

  302.     }

  303. }

  304. 

  305. void Send()

  306. {

  307.     while(1)

  308.     {

  309.         SocketSSLHandles_t handler(0,0);

  310.         {

  311.             unique_lock<mutex> lock(WaitForWriteMutex);

  312.             WaitForWrite.wait(lock);

  313.             handler = WriteHandler;

  314.         }

  315. 

  316.         cout << "Writing to handler " << handler.first << endl;

  317.         string buf(EXCHANGE_STRING);

  318.         for(int i=0; i<SEND_ITERATIONS; ++i)

  319.         {

  320.             int len = 0;

  321.             // wait timer for select

  322.             struct timeval tv;

  323.             tv.tv_sec  = 0;

  324.             tv.tv_usec = 10;

  325. 

  326.             do

  327.             {

  328.                 fd_set fd_write;

  329.                 FD_ZERO(&fd_write);

  330.                 FD_SET(Gmaster, &fd_write);

  331.                 FD_SET(handler.first, &fd_write);

  332. 

  333.                 int maxv=Gmaster;

  334.                 if(Gmaster < handler.first)

  335.                     maxv=handler.first;

  336. 

  337.                 select(maxv+1, NULL, &fd_write, NULL, (struct timeval *)&tv);

  338. 

  339.                 if( FD_ISSET(handler.first, &fd_write) )

  340.                 {

  341.                     lock_guard<mutex> lock(WriteReadMutex);

  342. //                    cout << "SSL_write: start" << endl;

  343.                     int write_len=SSL_write(handler.second, buf.c_str()+len, buf.size()-len);

  344. //                    cout << "SSL_write: stop " << endl;

  345.                     handle_error_code(len, handler.second, write_len, "write");

  346. 

  347.                     // for debugging re-neg

  348.                     // cout << "SSL STATE: " << SSL_state_string(handler.second) << endl;

  349.                 }

  350. 

  351.             } while( len != static_cast<int>(buf.size()) );

  352.         }

  353.     }

  354. }

  355. 

  356. 

  357. void Server::waitForStop()

  358. {

  359.     _sender->join();

  360.     _reciver->join();

  361.     _reactor->join();

  362. }

  363. 

  364. Server::~Server()

  365. {

  366.     delete _sender;

  367.     delete _reciver;

  368.     delete _reactor;

  369. }

  370. 

  371. /// --- MAIN --- ///

  372. int main() {

  373.   Server server;

  374.   server.init();

  375.   server.start();

  376.   server.waitForStop();

  377. 

  378.   return 0;

  379. }