sr-dev

sr-dev@lists.kamailio.org

44307 discussions

by Juha Heinanen

Module: sip-router Branch: master Commit: 550db5cb1599619a285144cc14677b89eefcf33b URL: http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commit;h=550db5c… Author: Juha Heinanen <jh(a)tutpro.com> Committer: Juha Heinanen <jh(a)tutpro.com> Date: Thu Jun 10 13:05:05 2010 +0300 modules/lcr: major rewrite - For easier management, information is now kept in three tables: lcr_rule, lcr_rule_target, and lcr_gw. - For simplicity, gateway groups are not anymore supported. - Added possibility to stop trying to match shorter prefixes, when a matching prefix is found. - Stripping and tagging can be controlled by a flag. - New database schema and upgrade script will be provided later today. --- modules/lcr/README | 596 ++++++++++------- modules/lcr/doc/lcr_admin.xml | 423 ++++++++---- modules/lcr/hash.c | 168 ++++-- modules/lcr/hash.h | 30 +- modules/lcr/lcr_mod.c | 1507 ++++++++++++++++++++++------------------- modules/lcr/lcr_mod.h | 56 +- modules/lcr/lcr_rpc.c | 235 ++++--- modules/lcr/lcr_rpc.h | 12 +- 8 files changed, 1753 insertions(+), 1274 deletions(-) Diff: http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commitdiff;h=550…

14 years, 8 months

git:andrei/raw_sock: raw sockets: get dst. ip from the ip header

by Andrei Pelinescu-Onciul

Module: sip-router Branch: andrei/raw_sock Commit: fb20a055a029198cbc9dd5c755c3806fbb1e80cf URL: http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commit;h=fb20a05… Author: Andrei Pelinescu-Onciul <andrei(a)iptel.org> Committer: Andrei Pelinescu-Onciul <andrei(a)iptel.org> Date: Wed Jun 9 22:58:55 2010 +0200 raw sockets: get dst. ip from the ip header Get the destination ip from the packet header (when using IP_HDRINCL we don't set PKT_INFO so we don't have the destination information). --- raw_sock.c | 6 +++++- 1 files changed, 5 insertions(+), 1 deletions(-) diff --git a/raw_sock.c b/raw_sock.c index fb357c0..e8b90b1 100644 --- a/raw_sock.c +++ b/raw_sock.c @@ -284,9 +284,13 @@ int raw_udp4_recv(int rsock, char** buf, int len, union sockaddr_union* from, /* advance buf */ *buf=udp_payload; n=(int)(end-*buf); + /* fill ip from the packet (needed if no PKT_INFO is used) */ + dst_ip.af=AF_INET; + dst_ip.len=4; + dst_ip.u.addr32[0]=iph.daddr; /* fill dst_port */ dst_port=ntohs(udph.dest); - su_setport(to, dst_port); + ip_addr2su(to, &dst_ip, port); /* fill src_port */ src_port=ntohs(udph.source); su_setport(from, src_port);

14 years, 8 months

why git push fails

by Juha Heinanen

i tried to push a commit, but push failed like this: $ eg push jh(a)git.sip-router.org's password: Counting objects: 9, done. Delta compression using up to 2 threads. Compressing objects: 100% (5/5), done. Writing objects: 100% (5/5), 1.19 KiB, done. Total 5 (delta 4), reused 0 (delta 0) error: hooks/update exited with error code 1 error: hook declined to update refs/heads/master To ssh://jh@git.sip-router.org/sip-router ! [remote rejected] master -> master (hook declined) error: failed to push some refs to 'ssh://jh@git.sip-router.org/sip-router' the error message does not say anything useful to normal user. -- juha

14 years, 8 months

git:master: modules/mediaproxy: ICE fixes

by Juha Heinanen

Module: sip-router Branch: master Commit: 976fb426bb577fab033e7846625fbfa2a8a38399 URL: http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commit;h=976fb42… Author: Juha Heinanen <jh(a)tutpro.com> Committer: Juha Heinanen <jh(a)tutpro.com> Date: Wed Jun 9 12:27:42 2010 +0300 modules/mediaproxy: ICE fixes - ICE attributes may appear at the session level. - Insert our RTCP component if we found another component: some clients may not use a=rtcp line but then insert a RTCP candidate component. - Credits to Saul Ibarra Corretge. --- modules/mediaproxy/mediaproxy.c | 84 +++++++++++++++++++++++++++++++++++--- 1 files changed, 77 insertions(+), 7 deletions(-) diff --git a/modules/mediaproxy/mediaproxy.c b/modules/mediaproxy/mediaproxy.c index 732395d..67a0c72 100644 --- a/modules/mediaproxy/mediaproxy.c +++ b/modules/mediaproxy/mediaproxy.c @@ -134,6 +134,7 @@ typedef struct { str direction; Bool local_ip; // true if the IP is locally defined inside this media stream Bool has_ice; + Bool has_rtcp_ice; TransportType transport; char *start_line; char *next_line; @@ -914,21 +915,89 @@ get_rtcp_ip_attribute(str *block) } -// will return true if the stream in the given block -// has ice proposal/answer, false otherwise +// will return true if the given block has both +// a=ice-pwd and a=ice-ufrag attributes. static Bool -has_ice_proposal(str *block) +has_ice_attributes(str *block) { char *ptr; ptr = find_line_starting_with(block, "a=ice-pwd:", False); if (ptr) { ptr = find_line_starting_with(block, "a=ice-ufrag:", False); if (ptr) { - ptr = find_line_starting_with(block, "a=candidate:", False); - if (ptr) { + return True; + } + } + return False; +} + + +// will return true if the given SDP has both +// a=ice-pwd and a=ice-ufrag attributes at the +// session level. +static Bool +has_session_ice_attributes(str *sdp) +{ + str block; + char *ptr; + + // session level ICE attributes can be found from the beginning up to the first media block + ptr = find_line_starting_with(sdp, "m=", False); + if (ptr) { + block.s = sdp->s; + block.len = ptr - block.s; + } else { + block = *sdp; + } + + return has_ice_attributes(&block); +} + + +// will return true if the given block contains +// a a=candidate attribute. This should be called +// for a stream, as a=candidate attribute is not +// allowed at the session level +static Bool +has_ice_candidates(str *block) +{ + char *ptr; + ptr = find_line_starting_with(block, "a=candidate:", False); + if (ptr) { + return True; + } + return False; +} + + +// will return true if given block contains an ICE +// candidate with the given component ID +static Bool +has_ice_candidate_component(str *block, int id) +{ + char *ptr, *block_end; + int i, components, count; + str chunk, zone, tokens[2]; + + block_end = block->s + block->len; + components = count_lines_starting_with(block, "a=candidate:", False); + for (i=0, chunk=*block; i<components; i++) { + ptr = find_line_starting_with(&chunk, "a=candidate:", False); + if (!ptr) + break; + + zone.s = ptr + 12; + zone.len = findendline(zone.s, block_end - zone.s) - zone.s; + count = get_str_tokens(&zone, tokens, 2); + + if (count == 2) { + if (strtoint(&tokens[1]) == id) { return True; } } + + chunk.s = zone.s + zone.len; + chunk.len = block_end - chunk.s; } return False; } @@ -1242,7 +1311,8 @@ get_session_info(str *sdp, SessionInfo *session) session->streams[i].rtcp_ip = get_rtcp_ip_attribute(&block); session->streams[i].rtcp_port = get_rtcp_port_attribute(&block); session->streams[i].direction = get_direction_attribute(&block, &session->direction); - session->streams[i].has_ice = has_ice_proposal(&block); + session->streams[i].has_ice = ((has_ice_attributes(&block) || has_session_ice_attributes(sdp)) && has_ice_candidates(&block)); + session->streams[i].has_rtcp_ice = has_ice_candidate_component(&block, 2); session->streams[i].first_ice_candidate = find_line_starting_with(&block, "a=candidate:", False); } @@ -1748,7 +1818,7 @@ use_media_proxy(struct sip_msg *msg, char *dialog_id, ice_candidate_data *ice_da return -1; } - if (stream.rtcp_port.len>0 && !isnullport(stream.rtcp_port)) { + if (stream.has_rtcp_ice) { candidate.s = buf; candidate.len = sprintf(candidate.s, "a=candidate:R%x 2 UDP %u %.*s %i typ relay%.*s", hexip.s_addr,

14 years, 8 months

git:master: PKG Debian

by Jon Bonilla

Module: sip-router Branch: master Commit: 8888d2b7f3791f1022564972974440405b3f8ab5 URL: http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commit;h=8888d2b… Author: Jon Bonilla <manwe(a)aholab.ehu.es> Committer: Jon Bonilla <manwe(a)aholab.ehu.es> Date: Mon Jun 7 23:38:59 2010 +0200 PKG Debian - Merge from kamailio_3.0 branch of debian packaging folders --- pkg/kamailio/debian-etch/changelog | 38 ++ pkg/kamailio/debian-etch/control | 118 ++---- pkg/kamailio/debian-etch/rules | 466 +++++++------------- pkg/kamailio/debian-lenny | 1 + pkg/kamailio/debian-lenny/changelog | 21 - pkg/kamailio/debian-lenny/rules | 413 ----------------- pkg/kamailio/debian-squeeze/changelog | 52 +++ .../{debian-lenny => debian-squeeze}/compat | 0 .../{debian-lenny => debian-squeeze}/control | 104 ++--- .../{debian-lenny => debian-squeeze}/copyright | 2 +- .../kamailio.README.Debian | 0 .../kamailio.default | 0 .../{debian-lenny => debian-squeeze}/kamailio.dirs | 0 .../kamailio.examples | 0 .../{debian-lenny => debian-squeeze}/kamailio.init | 0 .../kamailio.postinst | 0 pkg/kamailio/debian-squeeze/rules | 220 +++++++++ pkg/kamailio/debian/changelog | 24 + pkg/kamailio/debian/control | 21 +- pkg/kamailio/ubuntu-lucid | 1 + 20 files changed, 591 insertions(+), 890 deletions(-) Diff: http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commitdiff;h=888…

14 years, 8 months

git:kamailio_3.0: *PKG Debian

by Jon Bonilla

Module: sip-router Branch: kamailio_3.0 Commit: 3224810f6fc75b0f7a498e8bfe3947c0e05bc98f URL: http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commit;h=3224810… Author: Jon Bonilla <manwe(a)aholab.ehu.es> Committer: Jon Bonilla <manwe(a)aholab.ehu.es> Date: Sun Jun 6 13:26:31 2010 +0200 *PKG Debian - Mantainer header changed to $me --- pkg/kamailio/debian-etch/control | 3 +-- pkg/kamailio/debian-squeeze/control | 3 +-- pkg/kamailio/debian/control | 3 +-- 3 files changed, 3 insertions(+), 6 deletions(-) diff --git a/pkg/kamailio/debian-etch/control b/pkg/kamailio/debian-etch/control index 1aa0516..f29ef2a 100644 --- a/pkg/kamailio/debian-etch/control +++ b/pkg/kamailio/debian-etch/control @@ -1,8 +1,7 @@ Source: kamailio Section: net Priority: optional -Maintainer: Debian VoIP Team <pkg-voip-maintainers(a)lists.alioth.debian.org> -Uploaders: Kilian Krause <kilian(a)debian.org> +Maintainer: Jon Bonilla <manwe(a)aholab.ehu.es> Build-Depends: debhelper (>= 5), dpatch, libmysqlclient-dev, libexpat1-dev, libxml2-dev, libpq-dev, libradiusclient-ng-dev, flex, bison, zlib1g-dev, unixodbc-dev, libperl-dev, libsnmp-dev, dpkg-dev (>= 1.13.19), xsltproc, libconfuse-dev, libldap2-dev, libssl-dev, libcurl3-openssl-dev, python, libpcre3-dev, docbook-xml, libmemcache-dev, libreadline5-dev Standards-Version: 3.8.0 Homepage: http://www.kamailio.org/ diff --git a/pkg/kamailio/debian-squeeze/control b/pkg/kamailio/debian-squeeze/control index edd9255..5178bec 100644 --- a/pkg/kamailio/debian-squeeze/control +++ b/pkg/kamailio/debian-squeeze/control @@ -1,8 +1,7 @@ Source: kamailio Section: net Priority: optional -Maintainer: Debian VoIP Team <pkg-voip-maintainers(a)lists.alioth.debian.org> -Uploaders: Kilian Krause <kilian(a)debian.org> +Maintainer: Jon Bonilla <manwe(a)aholab.ehu.es> Build-Depends: debhelper (>= 5), dpatch, libmysqlclient-dev, libexpat1-dev, libxml2-dev, libpq-dev, libradiusclient-ng-dev, flex, bison, zlib1g-dev, unixodbc-dev, libxmlrpc-c3-dev, libperl-dev, libsnmp-dev, dpkg-dev (>= 1.13.19), libdb-dev (>= 4.6.19), xsltproc, libconfuse-dev, libldap2-dev, libssl-dev, libcurl3-openssl-dev, python, libpcre3-dev, docbook-xml, libmemcache-dev, libreadline5-dev Standards-Version: 3.8.0 Homepage: http://www.kamailio.org/ diff --git a/pkg/kamailio/debian/control b/pkg/kamailio/debian/control index 14f159c..d4f1d6c 100644 --- a/pkg/kamailio/debian/control +++ b/pkg/kamailio/debian/control @@ -1,8 +1,7 @@ Source: kamailio Section: net Priority: optional -Maintainer: Debian VoIP Team <pkg-voip-maintainers(a)lists.alioth.debian.org> -Uploaders: Kilian Krause <kilian(a)debian.org> +Maintainer: Jon Bonilla <manwe(a)aholab.ehu.es> Build-Depends: debhelper (>= 5), dpatch, libmysqlclient-dev, libexpat1-dev, libxml2-dev, libpq-dev, libradiusclient-ng-dev, flex, bison, zlib1g-dev, unixodbc-dev, libxmlrpc-c3-dev, libperl-dev, libsnmp-dev, dpkg-dev (>= 1.13.19), libdb-dev (>= 4.6.19), xsltproc, libconfuse-dev, libldap2-dev, libssl-dev, libcurl3-openssl-dev, python, libpcre3-dev, docbook-xml, libpurple-dev, libmemcache-dev, libreadline5-dev Standards-Version: 3.8.0 Homepage: http://www.kamailio.org/

14 years, 8 months

git:andrei/tcp_tls_changes: tls: ssl_flush() fix and re-worked error reporting

by Andrei Pelinescu-Onciul

Module: sip-router Branch: andrei/tcp_tls_changes Commit: d9730932a53c14ef039eb00b63d48e002c2c570f URL: http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commit;h=d973093… Author: Andrei Pelinescu-Onciul <andrei(a)iptel.org> Committer: Andrei Pelinescu-Onciul <andrei(a)iptel.org> Date: Fri Jun 4 22:26:01 2010 +0200 tls: ssl_flush() fix and re-worked error reporting - ssl_flush() did not properly handle connection in non-established state - all ssl_errors are now treated inside tls_generic_send() and tls_read_f() - queue size accounting fix --- modules/tls/tls_ct_wrq.c | 64 +++++++++++----- modules/tls/tls_ct_wrq.h | 6 +- modules/tls/tls_server.c | 194 +++++++++++++++++++++++---------------------- modules/tls/tls_server.h | 2 + 4 files changed, 149 insertions(+), 117 deletions(-) Diff: http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commitdiff;h=d97…

14 years, 8 months

git:andrei/tcp_tls_changes: tls: tls.list rpc: fix timeout & ip display

by Andrei Pelinescu-Onciul

Module: sip-router Branch: andrei/tcp_tls_changes Commit: 1ea3a8c7842ed59309b6d555492921eba7459d44 URL: http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commit;h=1ea3a8c… Author: Andrei Pelinescu-Onciul <andrei(a)iptel.org> Committer: Andrei Pelinescu-Onciul <andrei(a)iptel.org> Date: Fri Jun 4 22:20:16 2010 +0200 tls: tls.list rpc: fix timeout & ip display - fix ip address display - fix timeout computation --- modules/tls/tls_rpc.c | 14 +++++++------- 1 files changed, 7 insertions(+), 7 deletions(-) diff --git a/modules/tls/tls_rpc.c b/modules/tls/tls_rpc.c index 650c972..0013142 100644 --- a/modules/tls/tls_rpc.c +++ b/modules/tls/tls_rpc.c @@ -116,15 +116,15 @@ static void tls_list(rpc_t* rpc, void* c) tls_d = con->extra_data; rpc->add(c, "{", &handle); /* tcp data */ - if (ip_addr2sbuf(&con->rcv.src_ip, src_ip, sizeof(src_ip)) == 0) { + if ((len = ip_addr2sbuf(&con->rcv.src_ip, src_ip, sizeof(src_ip))) + == 0) BUG("failed to convert source ip"); - src_ip[0]=0; - } - if (ip_addr2sbuf(&con->rcv.dst_ip, dst_ip, sizeof(dst_ip)) == 0) { + src_ip[len] = 0; + if ((len = ip_addr2sbuf(&con->rcv.dst_ip, dst_ip, sizeof(dst_ip))) + == 0) BUG("failed to convert destination ip"); - dst_ip[0]=0; - } - timeout = TICKS_TO_S(con->timeout - get_ticks()); + dst_ip[len] = 0; + timeout = TICKS_TO_S(con->timeout - get_ticks_raw()); rpc->struct_add(handle, "ddsdsd", "id", con->id, "timeout", timeout,

14 years, 8 months

git:andrei/tcp_tls_changes: tls: fix queue accounting

by Andrei Pelinescu-Onciul

Module: sip-router Branch: andrei/tcp_tls_changes Commit: f509ccdc8c3212a7df9c4089c9dcde0d2c44eef5 URL: http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commit;h=f509ccd… Author: Andrei Pelinescu-Onciul <andrei(a)iptel.org> Committer: Andrei Pelinescu-Onciul <andrei(a)iptel.org> Date: Fri Jun 4 22:17:51 2010 +0200 tls: fix queue accounting On queue flush the size of the queue was substracted twice. --- modules/tls/sbufq.h | 2 -- 1 files changed, 0 insertions(+), 2 deletions(-) diff --git a/modules/tls/sbufq.h b/modules/tls/sbufq.h index 6b59751..cd29ecb 100644 --- a/modules/tls/sbufq.h +++ b/modules/tls/sbufq.h @@ -262,11 +262,9 @@ inline static int sbufq_flush(struct sbuffer_queue* q, int* flags, shm_free(b); q->offset=0; q->queued-=block_size; - ret+=block_size; }else{ q->offset+=n; q->queued-=n; - ret+=n; break; } }else{

14 years, 8 months

git:andrei/tcp_tls_changes: tls: rpc: tls.list and tls.options update

by Andrei Pelinescu-Onciul

Module: sip-router Branch: andrei/tcp_tls_changes Commit: 0dbb49bd6e08cfd80bb65da23fe048511d3983b7 URL: http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commit;h=0dbb49b… Author: Andrei Pelinescu-Onciul <andrei(a)iptel.org> Committer: Andrei Pelinescu-Onciul <andrei(a)iptel.org> Date: Fri Jun 4 18:43:15 2010 +0200 tls: rpc: tls.list and tls.options update - tls.list update/cleanups (more detailed now) - tls.options - print also the new options. - code in tls_rpc.* is iptelorg only => changed (c) and license (BSD-like). --- modules/tls/tls_rpc.c | 121 ++++++++++++++++++++++++++++++++----------------- modules/tls/tls_rpc.h | 23 ++++----- 2 files changed, 89 insertions(+), 55 deletions(-) diff --git a/modules/tls/tls_rpc.c b/modules/tls/tls_rpc.c index 826f12c..650c972 100644 --- a/modules/tls/tls_rpc.c +++ b/modules/tls/tls_rpc.c @@ -4,24 +4,21 @@ * TLS module - management interface * * Copyright (C) 2001-2003 FhG FOKUS - * Copyright (C) 2004,2005 Free Software Foundation, Inc. * Copyright (C) 2005 iptelorg GmbH * * This file is part of sip-router, a free SIP server. * - * sip-router is free software; you can redistribute it and/or modify - * it under the terms of the GNU General Public License as published by - * the Free Software Foundation; either version 2 of the License, or - * (at your option) any later version + * Permission to use, copy, modify, and distribute this software for any + * purpose with or without fee is hereby granted, provided that the above + * copyright notice and this permission notice appear in all copies. * - * sip-router is distributed in the hope that it will be useful, - * but WITHOUT ANY WARRANTY; without even the implied warranty of - * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the - * GNU General Public License for more details. - * - * You should have received a copy of the GNU General Public License - * along with this program; if not, write to the Free Software - * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA + * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES + * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF + * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR + * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES + * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN + * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF + * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. */ /** tls module management interface (rpc). * @file tls_rpc.c @@ -102,46 +99,83 @@ extern struct tcp_connection** tcpconn_id_hash; static void tls_list(rpc_t* rpc, void* c) { - static char buf[128]; + char buf[128]; + char src_ip[IP_ADDR_MAX_STR_SIZE]; + char dst_ip[IP_ADDR_MAX_STR_SIZE]; void* handle; char* tls_info; - SSL* ssl; + char* state; + struct tls_extra_data* tls_d; struct tcp_connection* con; int i, len, timeout; - ssl=0; TCPCONN_LOCK; for(i = 0; i < TCP_ID_HASH_SIZE; i++) { - if (tcpconn_id_hash[i] == NULL) continue; - con = tcpconn_id_hash[i]; - while(con) { - if (con->rcv.proto != PROTO_TLS) goto skip; - if (con->extra_data) - ssl = ((struct tls_extra_data*)con->extra_data)->ssl; - if (ssl) { - tls_info = SSL_CIPHER_description(SSL_get_current_cipher(ssl), - buf, 128); - len = strlen(buf); - if (len && buf[len - 1] == '\n') buf[len - 1] = '\0'; - } else { - tls_info = "Unknown"; - } - timeout = con->timeout - get_ticks(); - if (timeout < 0) timeout = 0; + for (con = tcpconn_id_hash[i]; con; con = con->id_next) { + if (con->rcv.proto != PROTO_TLS) continue; + tls_d = con->extra_data; rpc->add(c, "{", &handle); - rpc->struct_add(handle, "ddsdsds", + /* tcp data */ + if (ip_addr2sbuf(&con->rcv.src_ip, src_ip, sizeof(src_ip)) == 0) { + BUG("failed to convert source ip"); + src_ip[0]=0; + } + if (ip_addr2sbuf(&con->rcv.dst_ip, dst_ip, sizeof(dst_ip)) == 0) { + BUG("failed to convert destination ip"); + dst_ip[0]=0; + } + timeout = TICKS_TO_S(con->timeout - get_ticks()); + rpc->struct_add(handle, "ddsdsd", "id", con->id, "timeout", timeout, - "src_ip", ip_addr2a(&con->rcv.src_ip), + "src_ip", src_ip, "src_port", con->rcv.src_port, - "dst_ip", ip_addr2a(&con->rcv.dst_ip), - "dst_port", con->rcv.dst_port, - "tls", tls_info); - skip: - con = con->id_next; + "dst_ip", dst_ip, + "dst_port", con->rcv.dst_port); + if (tls_d) { + tls_info = SSL_CIPHER_description( + SSL_get_current_cipher(tls_d->ssl), + buf, sizeof(buf)); + len = strlen(buf); + if (len && buf[len - 1] == '\n') buf[len - 1] = '\0'; + /* tls data */ + state = "unknown/error"; + lock_get(&con->write_lock); + switch(tls_d->state) { + case S_TLS_NONE: + state = "none/init"; + break; + case S_TLS_ACCEPTING: + state = "tls_accept"; + break; + case S_TLS_CONNECTING: + state = "tls_connect"; + break; + case S_TLS_ESTABLISHED: + state = "established"; + break; + } + rpc->struct_add(handle, "sddds", + "cipher", tls_info, + "ct_wq_size", tls_d->ct_wq? + tls_d->ct_wq->queued:0, + "enc_rd_buf", tls_d->enc_rd_buf? + tls_d->enc_rd_buf->size:0, + "flags", tls_d->flags, + "state", state + ); + lock_release(&con->write_lock); + } else { + rpc->struct_add(handle, "sddds", + "cipher", "unknown", + "ct_wq_size", 0, + "enc_rd_buf", 0, + "flags", 0, + "state", "pre-init" + ); + } } } - TCPCONN_UNLOCK; } @@ -169,7 +203,7 @@ static void tls_options(rpc_t* rpc, void* c) { void* handle; rpc->add(c, "{", &handle); - rpc->struct_add(handle, "dSdddSSSSdSSddddddddd", + rpc->struct_add(handle, "dSdddSSSSdSSdddddddddddd", "force_run", cfg_get(tls, tls_cfg, force_run), "method", &cfg_get(tls, tls_cfg, method), "verify_certificate", cfg_get(tls, tls_cfg, verify_cert), @@ -191,7 +225,10 @@ static void tls_options(rpc_t* rpc, void* c) "ssl_max_send_fragment", cfg_get(tls, tls_cfg, ssl_max_send_fragment), "ssl_read_ahead", cfg_get(tls, tls_cfg, ssl_read_ahead), "low_mem_threshold1", cfg_get(tls, tls_cfg, low_mem_threshold1), - "low_mem_threshold2", cfg_get(tls, tls_cfg, low_mem_threshold2) + "low_mem_threshold2", cfg_get(tls, tls_cfg, low_mem_threshold2), + "ct_wq_max", cfg_get(tls, tls_cfg, ct_wq_max), + "con_ct_wq_max", cfg_get(tls, tls_cfg, con_ct_wq_max), + "ct_wq_blk_size", cfg_get(tls, tls_cfg, ct_wq_blk_size) ); } diff --git a/modules/tls/tls_rpc.h b/modules/tls/tls_rpc.h index b292de1..558bf0d 100644 --- a/modules/tls/tls_rpc.h +++ b/modules/tls/tls_rpc.h @@ -4,24 +4,21 @@ * TLS module - management interface * * Copyright (C) 2001-2003 FhG FOKUS - * Copyright (C) 2004,2005 Free Software Foundation, Inc. * Copyright (C) 2005 iptelorg GmbH * * This file is part of sip-router, a free SIP server. * - * sip-router is free software; you can redistribute it and/or modify - * it under the terms of the GNU General Public License as published by - * the Free Software Foundation; either version 2 of the License, or - * (at your option) any later version + * Permission to use, copy, modify, and distribute this software for any + * purpose with or without fee is hereby granted, provided that the above + * copyright notice and this permission notice appear in all copies. * - * sip-router is distributed in the hope that it will be useful, - * but WITHOUT ANY WARRANTY; without even the implied warranty of - * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the - * GNU General Public License for more details. - * - * You should have received a copy of the GNU General Public License - * along with this program; if not, write to the Free Software - * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA + * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES + * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF + * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR + * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES + * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN + * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF + * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. */ /** tls module management interface (rpc). * @file tls_rpc.h

14 years, 8 months

Jump to page:

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

sr-dev