Commit | Line | Data |
---|---|---|
094ee3a2 | 1 | #!/usr/bin/python3 |
3fba9787 | 2 | |
094ee3a2 | 3 | import twisted.web.server import Site |
3fba9787 IJ |
4 | from twisted.web.resource import Resource |
5 | from twisted.web.server import NOT_DONE_YET | |
6 | from twisted.internet import reactor | |
7 | ||
e75e9c17 IJ |
8 | from optparse import OptionParser |
9 | from configparser import ConfigParser | |
10 | from configparser import NoOptionError | |
ec88b1f1 | 11 | import ipaddress |
3fba9787 | 12 | |
0ac316c8 IJ |
13 | import collections |
14 | ||
c4b6d990 IJ |
15 | import syslog |
16 | ||
3fba9787 IJ |
17 | clients = { } |
18 | ||
19 | def ipaddress(input): | |
20 | try: | |
ec88b1f1 | 21 | r = ipaddress.IPv4Address(input) |
3fba9787 | 22 | except AddressValueError: |
ec88b1f1 | 23 | r = ipaddress.IPv6Address(input) |
3fba9787 IJ |
24 | return r |
25 | ||
26 | def ipnetwork(input): | |
27 | try: | |
ec88b1f1 | 28 | r = ipaddress.IPv4Network(input) |
3fba9787 | 29 | except NetworkValueError: |
ec88b1f1 | 30 | r = ipaddress.IPv6Network(input) |
3fba9787 IJ |
31 | return r |
32 | ||
e75e9c17 | 33 | defcfg = ''' |
094ee3a2 IJ |
34 | [DEFAULT] |
35 | max_batch_down = 65536 | |
36 | max_queue_time = 10 | |
37 | max_request_time = 54 | |
38 | ||
e75e9c17 IJ |
39 | [virtual] |
40 | mtu = 1500 | |
41 | # network | |
42 | # [host] | |
43 | # [relay] | |
44 | ||
45 | [server] | |
46 | ipif_program = userv root ipif %(host),%(relay),%(mtu),slip %(network) | |
47 | ||
094ee3a2 IJ |
48 | [limits] |
49 | max_batch_down = 262144 | |
50 | max_queue_time = 121 | |
51 | max_request_time = 121 | |
ec88b1f1 IJ |
52 | ''' |
53 | ||
c4b6d990 IJ |
54 | def route(packet. daddr): |
55 | try: client = clients[daddr] | |
56 | except KeyError: dclient = None | |
57 | if dclient is not None: | |
0ac316c8 | 58 | dclient.queue_outbound(packet) |
c4b6d990 | 59 | else if daddr = server or daddr not in network: |
0ac316c8 | 60 | queue_inbound(packet) |
c4b6d990 IJ |
61 | else: |
62 | syslog.syslog(syslog.LOG_DEBUG, 'no client for %s' % daddr) | |
63 | ||
ec88b1f1 | 64 | class Client(): |
c4b6d990 | 65 | def __init__(self, ip, cs): |
ec88b1f1 IJ |
66 | # instance data members |
67 | self._ip = ip | |
68 | self._cs = cs | |
69 | self.pw = cfg.get(cs, 'password') | |
0ac316c8 IJ |
70 | self._rq = collections.deque() # requests |
71 | self._pq = collections.deque() # packets | |
c4b6d990 IJ |
72 | # plus from config: |
73 | # .max_batch_down | |
74 | # .max_queue_time | |
75 | # .max_request_time | |
ec88b1f1 IJ |
76 | for k in ('max_batch_down','max_queue_time','max_request_time'): |
77 | req = cfg.getint(cs, k) | |
094ee3a2 | 78 | limit = cfg.getint('limits',k) |
c4b6d990 IJ |
79 | self.__dict__[k] = min(req, limit) |
80 | ||
81 | def process_arriving_data(self, d): | |
82 | for packet in slip_decode(d): | |
83 | (saddr, daddr) = ip_64_addrs(packet) | |
84 | if saddr != self._ip: | |
85 | raise ValueError('wrong source address %s' % saddr) | |
86 | route(packet, daddr) | |
ec88b1f1 | 87 | |
c4b6d990 IJ |
88 | def _req_cancel(self, request): |
89 | request.finish() | |
90 | ||
91 | def _req_error(self, err, request): | |
92 | self._req_cancel(request) | |
93 | ||
0ac316c8 | 94 | def queue_outbound(self, packet): |
094ee3a2 | 95 | self._pq.append((time.monotonic(), packet)) |
0ac316c8 | 96 | |
c4b6d990 IJ |
97 | def http_request(self, request): |
98 | request.setHeader('Content-Type','application/octet-stream') | |
99 | reactor.callLater(self.max_request_time, self._req_cancel, request) | |
100 | request.notifyFinish().addErrback(self._req_error, request) | |
0ac316c8 IJ |
101 | self._rq.append(request) |
102 | self._check_outbound() | |
103 | ||
104 | def _check_outbound(self): | |
105 | while True: | |
106 | try: request = self._rq[0] | |
107 | except IndexError: request = None | |
108 | if request and request.finished: | |
109 | self._rq.popleft() | |
110 | continue | |
111 | ||
112 | # now request is an unfinished request, or None | |
113 | try: (queuetime, packet) = self._pq[0] | |
114 | except: IndexError: | |
115 | # no packets, oh well | |
094ee3a2 IJ |
116 | break |
117 | ||
118 | age = time.monotonic() - queuetime | |
119 | if age > self.max_queue_time: | |
120 | self._pq.popleft() | |
0ac316c8 IJ |
121 | continue |
122 | ||
094ee3a2 IJ |
123 | if request is None: |
124 | # no request | |
125 | break | |
126 | ||
127 | # request, and also some non-expired packets | |
128 | while True: | |
129 | try: (dummy, packet) = self._pq[0] | |
130 | except IndexError: break | |
131 | ||
132 | encoded = slip_encode(packet) | |
133 | ||
134 | if request.sentLength > 0: | |
135 | if (request.sentLength + len(slip_delimiter) | |
136 | + len(encoded) > self.max_batch_down): | |
137 | break | |
138 | request.write(slip_delimiter) | |
139 | ||
140 | request.write(encoded) | |
141 | self._pq.popLeft() | |
142 | ||
143 | assert(request.sentLength) | |
144 | self._rq.popLeft() | |
145 | request.finish() | |
146 | # round again, looking for more to do | |
ec88b1f1 | 147 | |
3fba9787 IJ |
148 | def process_cfg(): |
149 | global network | |
e75e9c17 IJ |
150 | global host |
151 | global relay | |
3fba9787 | 152 | |
ec88b1f1 | 153 | network = ipnetwork(cfg.get('virtual','network')) |
e75e9c17 IJ |
154 | if network.num_addresses < 3 + 2: |
155 | raise ValueError('network needs at least 2^3 addresses') | |
156 | ||
3fba9787 | 157 | try: |
e75e9c17 IJ |
158 | host = cfg.get('virtual','host') |
159 | except NoOptionError: | |
160 | host = network.hosts().next() | |
161 | ||
162 | try: | |
163 | relay = cfg.get('virtual','relay') | |
164 | except OptionError: | |
165 | for search in network.hosts(): | |
166 | if search = host: continue | |
167 | relay = search | |
168 | break | |
3fba9787 | 169 | |
ec88b1f1 IJ |
170 | for cs in cfg.sections(): |
171 | if not (':' in cs or '.' in cs): continue | |
172 | ci = ipaddress(cs) | |
173 | if ci not in network: | |
174 | raise ValueError('client %s not in network' % ci) | |
175 | if ci in clients: | |
176 | raise ValueError('multiple client cfg sections for %s' % ci) | |
177 | clients[ci] = Client(ci, cs) | |
3fba9787 IJ |
178 | |
179 | class FormPage(Resource): | |
180 | def render_POST(self, request): | |
ec88b1f1 IJ |
181 | # find client, update config, etc. |
182 | ci = ipaddress(request.args['i']) | |
183 | c = clients[ci] | |
184 | pw = request.args['pw'] | |
185 | if pw != c.pw: raise ValueError('bad password') | |
186 | ||
187 | # update config | |
188 | for r, w in (('mbd', 'max_batch_down'), | |
189 | ('mqt', 'max_queue_time'), | |
190 | ('mrt', 'max_request_time')): | |
191 | try: v = request.args[r] | |
192 | except KeyError: continue | |
193 | v = int(v) | |
c4b6d990 | 194 | c.__dict__[w] = v |
ec88b1f1 IJ |
195 | |
196 | try: d = request.args['d'] | |
197 | except KeyError: d = '' | |
198 | ||
199 | c.process_arriving_data(d) | |
c4b6d990 | 200 | c.new_request(request) |
e75e9c17 IJ |
201 | |
202 | def startup(): | |
203 | op = OptionParser() | |
204 | op.add_option('-c', '--config', dest='configfile', | |
205 | default='/etc/hippottd/server.conf') | |
206 | global opts | |
207 | (opts, args) = op.parse_args() | |
208 | if len(args): op.error('no non-option arguments please') | |
209 | ||
210 | cfg = ConfigParser() | |
211 |