[thirdparty/squid.git] / src / comm / Connection.h

/*
 * Copyright (C) 1996-2020 The Squid Software Foundation and contributors
 *
 * Squid software is distributed under GPLv2+ license and includes
 * contributions from numerous individuals and organizations.
 * Please see the COPYING and CONTRIBUTORS files for details.
 */

/* DEBUG: section 05    Socket Functions */

#ifndef _SQUIDCONNECTIONDETAIL_H_
#define _SQUIDCONNECTIONDETAIL_H_

#include "base/CodeContext.h"
#include "base/InstanceId.h"
#include "comm/forward.h"
#include "defines.h"
#if USE_SQUID_EUI
#include "eui/Eui48.h"
#include "eui/Eui64.h"
#endif
#include "hier_code.h"
#include "ip/Address.h"
#include "ip/forward.h"
#include "mem/forward.h"
#include "SquidTime.h"

#include <iosfwd>
#include <ostream>

class CachePeer;

namespace Security
{
class NegotiationHistory;
};

namespace Comm
{

/* TODO: make these a struct of boolean flags members in the connection instead of a bitmap.
 * we can't do that until all non-comm code uses Commm::Connection objects to create FD
 * currently there is code still using comm_open() and comm_openex() synchronously!!
 */
#define COMM_UNSET              0x00
#define COMM_NONBLOCKING        0x01  // default flag.
#define COMM_NOCLOEXEC          0x02
#define COMM_REUSEADDR          0x04  // shared FD may be both accept()ing and read()ing
#define COMM_DOBIND             0x08  // requires a bind()
#define COMM_TRANSPARENT        0x10  // arrived via TPROXY
#define COMM_INTERCEPTION       0x20  // arrived via NAT
#define COMM_REUSEPORT          0x40 //< needs SO_REUSEPORT

/**
 * Store data about the physical and logical attributes of a connection.
 *
 * Some link state can be infered from the data, however this is not an
 * object for state data. But a semantic equivalent for FD with easily
 * accessible cached properties not requiring repeated complex lookups.
 *
 * Connection properties may be changed until the connection is opened.
 * Properties should be considered read-only outside of the Comm layer
 * code once the connection is open.
 *
 * These objects should not be passed around directly,
 * but a Comm::ConnectionPointer should be passed instead.
 */
class Connection: public CodeContext
{
    MEMPROXY_CLASS(Comm::Connection);

public:
    Connection();

    /** Clear the connection properties and close any open socket. */
    virtual ~Connection();

    /** Copy an existing connections IP and properties.
     * This excludes the FD. The new copy will be a closed connection.
     */
    ConnectionPointer copyDetails() const;

    /** Close any open socket. */
    void close();

    /** Synchronize with Comm: Somebody closed our connection. */
    void noteClosure();

    /** determine whether this object describes an active connection or not. */
    bool isOpen() const { return (fd >= 0); }

    /** Alter the stored IP address pair.
     * WARNING: Does not ensure matching IPv4/IPv6 are supplied.
     */
    void setAddrs(const Ip::Address &aLocal, const Ip::Address &aRemote) {local = aLocal; remote = aRemote;}

    /** retrieve the CachePeer pointer for use.
     * The caller is responsible for all CBDATA operations regarding the
     * used of the pointer returned.
     */
    CachePeer * getPeer() const;

    /** alter the stored CachePeer pointer.
     * Perform appropriate CBDATA operations for locking the CachePeer pointer
     */
    void setPeer(CachePeer * p);

    /** The time the connection started */
    time_t startTime() const {return startTime_;}

    /** The connection lifetime */
    time_t lifeTime() const {return squid_curtime - startTime_;}

    /** The time left for this connection*/
    time_t timeLeft(const time_t idleTimeout) const;

    /// Connection establishment timeout for callers that have already decided
    /// to connect(2), either for the first time or after checking
    /// EnoughTimeToReForward() during any re-forwarding attempts.
    /// \returns the time left for this connection to become connected
    /// \param fwdStart The start time of the peer selection/connection process.
    time_t connectTimeout(const time_t fwdStart) const;

    void noteStart() {startTime_ = squid_curtime;}

    Security::NegotiationHistory *tlsNegotiations();
    const Security::NegotiationHistory *hasTlsNegotiations() const {return tlsHistory;}

    /* CodeContext API */
    virtual ScopedId codeContextGist() const override;
    virtual std::ostream &detailCodeContext(std::ostream &os) const override;

private:
    /** These objects may not be exactly duplicated. Use copyDetails() instead. */
    Connection(const Connection &c);

    /** These objects may not be exactly duplicated. Use copyDetails() instead. */
    Connection & operator =(const Connection &c);

public:
    /** Address/Port for the Squid end of a TCP link. */
    Ip::Address local;

    /** Address for the Remote end of a TCP link. */
    Ip::Address remote;

    /** Hierarchy code for this connection link */
    hier_code peerType;

    /** Socket used by this connection. Negative if not open. */
    int fd;

    /** Quality of Service TOS values currently sent on this connection */
    tos_t tos;

    /** Netfilter MARK values currently sent on this connection
     * In case of FTP, the MARK will be sent on data connections as well.
     */
    nfmark_t nfmark;

    /** Netfilter CONNMARK value previously retrieved from this connection
     * In case of FTP, the CONNMARK will NOT be applied to data connections, for one main reason:
     * the CONNMARK could be set by a third party like iptables and overwriting it in squid may
     * cause side effects and break CONNMARK-based policy. In other words, data connection is
     * related to control connection, but it's not the same.
     */
    nfmark_t nfConnmark = 0;

    /** COMM flags set on this connection */
    int flags;

    char rfc931[USER_IDENT_SZ];

#if USE_SQUID_EUI
    Eui::Eui48 remoteEui48;
    Eui::Eui64 remoteEui64;
#endif

    InstanceId<Connection, uint64_t> id;

private:
    /** cache_peer data object (if any) */
    CachePeer *peer_;

    /** The time the connection object was created */
    time_t startTime_;

    /** TLS connection details*/
    Security::NegotiationHistory *tlsHistory;
};

}; // namespace Comm

std::ostream &operator << (std::ostream &os, const Comm::Connection &conn);

inline std::ostream &
operator << (std::ostream &os, const Comm::ConnectionPointer &conn)
{
    if (conn != NULL)
        os << *conn;
    return os;
}

#endif
Commit	Line	Data
ee0989f2	1	/*
77b1029d	2	* Copyright (C) 1996-2020 The Squid Software Foundation and contributors
ee0989f2	3	*
bbc27441 AJ	4	* Squid software is distributed under GPLv2+ license and includes
	5	* contributions from numerous individuals and organizations.
	6	* Please see the COPYING and CONTRIBUTORS files for details.
ee0989f2	7	*/
ee0989f2	8
bbc27441 AJ	9	/* DEBUG: section 05 Socket Functions */
bbc27441 AJ	10
ee0989f2	11	#ifndef _SQUIDCONNECTIONDETAIL_H_
	12	#define _SQUIDCONNECTIONDETAIL_H_
	13
ccfbe8f4 AR	14	#include "base/CodeContext.h"
ccfbe8f4 AR	15	#include "base/InstanceId.h"
49ae8b95	16	#include "comm/forward.h"
582c2af2	17	#include "defines.h"
89aec9b6 AJ	18	#if USE_SQUID_EUI
	19	#include "eui/Eui48.h"
	20	#include "eui/Eui64.h"
	21	#endif
d35851f1 FC	22	#include "hier_code.h"
	23	#include "ip/Address.h"
	24	#include "ip/forward.h"
	25	#include "mem/forward.h"
8aec3e1b	26	#include "SquidTime.h"
cc192b50	27
5c336a3b	28	#include <iosfwd>
5c336a3b	29	#include <ostream>
5c336a3b	30
a3c6762c	31	class CachePeer;
cfd66529	32
2bcab852 CT	33	namespace Security
	34	{
	35	class NegotiationHistory;
	36	};
	37
dc49061a A	38	namespace Comm
dc49061a A	39	{
cfd66529	40
27d1f0a0 AJ	41	/* TODO: make these a struct of boolean flags members in the connection instead of a bitmap.
	42	* we can't do that until all non-comm code uses Commm::Connection objects to create FD
	43	* currently there is code still using comm_open() and comm_openex() synchronously!!
	44	*/
cfd66529	45	#define COMM_UNSET 0x00
40d34a62	46	#define COMM_NONBLOCKING 0x01 // default flag.
cfd66529	47	#define COMM_NOCLOEXEC 0x02
40d34a62 AJ	48	#define COMM_REUSEADDR 0x04 // shared FD may be both accept()ing and read()ing
	49	#define COMM_DOBIND 0x08 // requires a bind()
	50	#define COMM_TRANSPARENT 0x10 // arrived via TPROXY
	51	#define COMM_INTERCEPTION 0x20 // arrived via NAT
7d17a6a6	52	#define COMM_REUSEPORT 0x40 //< needs SO_REUSEPORT
62e76326	53
739b352a AJ	54	/**
	55	* Store data about the physical and logical attributes of a connection.
	56	*
	57	* Some link state can be infered from the data, however this is not an
	58	* object for state data. But a semantic equivalent for FD with easily
	59	* accessible cached properties not requiring repeated complex lookups.
	60	*
50847dca	61	* Connection properties may be changed until the connection is opened.
e83cc785 AJ	62	* Properties should be considered read-only outside of the Comm layer
e83cc785 AJ	63	* code once the connection is open.
739b352a	64	*
1c8f25bb AJ	65	* These objects should not be passed around directly,
1c8f25bb AJ	66	* but a Comm::ConnectionPointer should be passed instead.
739b352a	67	*/
ccfbe8f4	68	class Connection: public CodeContext
cfd66529	69	{
fd7b48b9 AJ	70	MEMPROXY_CLASS(Comm::Connection);
fd7b48b9 AJ	71
741c2986	72	public:
cfd66529	73	Connection();
739b352a	74
aed188fd	75	/** Clear the connection properties and close any open socket. */
ccfbe8f4	76	virtual ~Connection();
cfd66529	77
aed188fd AJ	78	/** Copy an existing connections IP and properties.
aed188fd AJ	79	* This excludes the FD. The new copy will be a closed connection.
739b352a	80	*/
5ae21d99	81	ConnectionPointer copyDetails() const;
aed188fd	82
aed188fd	83	/** Close any open socket. */
55cbb02b AJ	84	void close();
55cbb02b AJ	85
b54a7c5a CT	86	/** Synchronize with Comm: Somebody closed our connection. */
	87	void noteClosure();
	88
55cbb02b	89	/** determine whether this object describes an active connection or not. */
d6327017	90	bool isOpen() const { return (fd >= 0); }
55cbb02b	91
7fb5be3e AJ	92	/** Alter the stored IP address pair.
	93	* WARNING: Does not ensure matching IPv4/IPv6 are supplied.
	94	*/
	95	void setAddrs(const Ip::Address &aLocal, const Ip::Address &aRemote) {local = aLocal; remote = aRemote;}
	96
a3c6762c	97	/** retrieve the CachePeer pointer for use.
5229395c AJ	98	* The caller is responsible for all CBDATA operations regarding the
	99	* used of the pointer returned.
	100	*/
a3c6762c	101	CachePeer * getPeer() const;
5229395c	102
a3c6762c FC	103	/** alter the stored CachePeer pointer.
a3c6762c FC	104	* Perform appropriate CBDATA operations for locking the CachePeer pointer
5229395c	105	*/
a3c6762c	106	void setPeer(CachePeer * p);
5229395c	107
8aec3e1b CT	108	/** The time the connection started */
	109	time_t startTime() const {return startTime_;}
	110
c5c06f02 CT	111	/** The connection lifetime */
	112	time_t lifeTime() const {return squid_curtime - startTime_;}
	113
	114	/** The time left for this connection*/
	115	time_t timeLeft(const time_t idleTimeout) const;
	116
0ce8e93b EB	117	/// Connection establishment timeout for callers that have already decided
	118	/// to connect(2), either for the first time or after checking
	119	/// EnoughTimeToReForward() during any re-forwarding attempts.
	120	/// \returns the time left for this connection to become connected
	121	/// \param fwdStart The start time of the peer selection/connection process.
	122	time_t connectTimeout(const time_t fwdStart) const;
	123
8aec3e1b	124	void noteStart() {startTime_ = squid_curtime;}
2bcab852 CT	125
	126	Security::NegotiationHistory *tlsNegotiations();
	127	const Security::NegotiationHistory *hasTlsNegotiations() const {return tlsHistory;}
	128
ccfbe8f4 AR	129	/* CodeContext API */
	130	virtual ScopedId codeContextGist() const override;
	131	virtual std::ostream &detailCodeContext(std::ostream &os) const override;
	132
5229395c AJ	133	private:
	134	/** These objects may not be exactly duplicated. Use copyDetails() instead. */
	135	Connection(const Connection &c);
	136
	137	/** These objects may not be exactly duplicated. Use copyDetails() instead. */
	138	Connection & operator =(const Connection &c);
	139
	140	public:
cfd66529 AJ	141	/** Address/Port for the Squid end of a TCP link. */
cfd66529 AJ	142	Ip::Address local;
62e76326	143
cfd66529 AJ	144	/** Address for the Remote end of a TCP link. */
cfd66529 AJ	145	Ip::Address remote;
2d8c0b1a	146
cfd66529	147	/** Hierarchy code for this connection link */
5229395c	148	hier_code peerType;
cfd66529	149
e83cc785	150	/** Socket used by this connection. Negative if not open. */
cfd66529 AJ	151	int fd;
cfd66529 AJ	152
739b352a	153	/** Quality of Service TOS values currently sent on this connection */
b5523edc AJ	154	tos_t tos;
b5523edc AJ	155
244da4ad AG	156	/** Netfilter MARK values currently sent on this connection
	157	* In case of FTP, the MARK will be sent on data connections as well.
	158	*/
b5523edc	159	nfmark_t nfmark;
cfd66529	160
244da4ad AG	161	/** Netfilter CONNMARK value previously retrieved from this connection
	162	* In case of FTP, the CONNMARK will NOT be applied to data connections, for one main reason:
	163	* the CONNMARK could be set by a third party like iptables and overwriting it in squid may
	164	* cause side effects and break CONNMARK-based policy. In other words, data connection is
	165	* related to control connection, but it's not the same.
	166	*/
	167	nfmark_t nfConnmark = 0;
	168
cfd66529 AJ	169	/** COMM flags set on this connection */
cfd66529 AJ	170	int flags;
739b352a	171
73c36fd9 AJ	172	char rfc931[USER_IDENT_SZ];
73c36fd9 AJ	173
89aec9b6 AJ	174	#if USE_SQUID_EUI
	175	Eui::Eui48 remoteEui48;
	176	Eui::Eui64 remoteEui64;
	177	#endif
	178
a120b7a8	179	InstanceId<Connection, uint64_t> id;
ccfbe8f4	180
739b352a AJ	181	private:
739b352a AJ	182	/** cache_peer data object (if any) */
a3c6762c	183	CachePeer *peer_;
8aec3e1b CT	184
	185	/** The time the connection object was created */
	186	time_t startTime_;
2bcab852 CT	187
	188	/** TLS connection details*/
	189	Security::NegotiationHistory *tlsHistory;
ee0989f2	190	};
ee0989f2	191
cfd66529 AJ	192	}; // namespace Comm
cfd66529 AJ	193
6043e368	194	std::ostream &operator << (std::ostream &os, const Comm::Connection &conn);
5c336a3b AJ	195
	196	inline std::ostream &
	197	operator << (std::ostream &os, const Comm::ConnectionPointer &conn)
	198	{
	199	if (conn != NULL)
	200	os << *conn;
	201	return os;
	202	}
	203
ee0989f2	204	#endif
f53969cc	205