html/dds/a00875_source.html

 /*
  *
  *
  * Distributed under the OpenDDS License.
  * See: http://www.opendds.org/license.html
  */
 #ifdef OPENDDS_SECURITY

 #include "Ice.h"

 #include "AgentImpl.h"
 #include "dds/DCPS/SafetyProfileStreams.h"
 #include "dds/DCPS/debug.h"
 #include <dds/DCPS/LogAddr.h>

 OPENDDS_BEGIN_VERSIONED_NAMESPACE_DECL

 namespace OpenDDS {
 namespace ICE {

 bool candidates_sorted(const Candidate& x, const Candidate& y)
 {
   if (x.address != y.address) {
     return x.address < y.address;
   }

   if (x.base != y.base) {
     return x.base < y.base;
   }

   return x.priority > y.priority;
 }

 bool candidates_equal(const Candidate& x, const Candidate& y)
 {
   return x.address == y.address && x.base == y.base;
 }

 // TODO(jrw972): Implement RFC8421.

 // TODO(jrw972): Implement NAT64 and DNS64 considerations.

 // TODO(jrw972): For IPV6, prefer temporary addresses to permanent addresses.

 // TODO(jrw972): If gathering one or more host candidates that
 // correspond to an IPv6 address that was generated using a mechanism
 // that prevents location tracking [RFC7721], host candidates that
 // correspond to IPv6 addresses that do allow location tracking, are
 // configured on the same interface, and are part of the same network
 // prefix MUST NOT be gathered.  Similarly, when host candidates
 // corresponding to an IPv6 address generated using a mechanism that
 // prevents location tracking are gathered, then host candidates
 // corresponding to IPv6 link-local addresses [RFC4291] MUST NOT be
 // gathered.

 ACE_UINT32 local_priority(const ACE_INET_Addr& addr)
 {
   if (addr.get_type() == AF_INET6) {
     return 65535;
   }
   return 65534;
 }

 Candidate make_host_candidate(const ACE_INET_Addr& address)
 {
   Candidate candidate;
   candidate.address = address;
   candidate.foundation = std::string("H") + DCPS::LogAddr::ip(address) + "U";
   // See https://tools.ietf.org/html/rfc8445#section-5.1.2.1 for an explanation of the formula below.
   candidate.priority = (126 << 24) + (local_priority(address) << 8) + ((256 - 1) << 0); // No local preference, component 1.
   candidate.type = HOST;
   candidate.base = address;
   return candidate;
 }

 Candidate make_server_reflexive_candidate(const ACE_INET_Addr& address, const ACE_INET_Addr& base, const ACE_INET_Addr& server_address)
 {
   Candidate candidate;
   candidate.address = address;
   candidate.foundation = std::string("S") + DCPS::LogAddr::ip(base) + "_" + DCPS::LogAddr::ip(server_address) + "U";
   // See https://tools.ietf.org/html/rfc8445#section-5.1.2.1 for an explanation of the formula below.
   candidate.priority = (100 << 24) + (local_priority(address) << 8) + ((256 - 1) << 0); // No local preference, component 1.
   candidate.type = SERVER_REFLEXIVE;
   candidate.base = base;
   return candidate;
 }

 Candidate make_peer_reflexive_candidate(const ACE_INET_Addr& address, const ACE_INET_Addr& base, const ACE_INET_Addr& server_address, ACE_UINT32 priority)
 {
   Candidate candidate;
   candidate.address = address;
   candidate.foundation = std::string("P") + DCPS::LogAddr::ip(base) + "_" + DCPS::LogAddr::ip(server_address) + "U";
   candidate.priority = priority;
   candidate.type = PEER_REFLEXIVE;
   candidate.base = base;
   return candidate;
 }

 Candidate make_peer_reflexive_candidate(const ACE_INET_Addr& address, ACE_UINT32 priority, size_t q)
 {
   Candidate candidate;
   candidate.address = address;
   candidate.foundation = std::string("Q") + OpenDDS::DCPS::to_dds_string(q) + "U";
   candidate.priority = priority;
   candidate.type = PEER_REFLEXIVE;
   return candidate;
 }

 Configuration* Configuration::instance()
 {
   return ACE_Singleton<Configuration, ACE_Thread_Mutex>::instance();
 }

 struct AgentHolder {
   AgentHolder()
     : agent_impl(DCPS::make_rch<AgentImpl>())
   {}

   DCPS::RcHandle<AgentImpl> agent_impl;
 };

 DCPS::RcHandle<Agent> Agent::instance()
 {
   return DCPS::static_rchandle_cast<Agent>(ACE_Singleton<AgentHolder, ACE_Thread_Mutex>::instance()->agent_impl);
 }

 ServerReflexiveStateMachine::StateChange
 ServerReflexiveStateMachine::send(const ACE_INET_Addr& address,
                                   size_t indication_count_limit,
                                   const DCPS::GuidPrefix_t& guid_prefix)
 {
   timestamp_ = DCPS::MonotonicTimePoint::now();

   if (stun_server_address_ == ACE_INET_Addr() &&
       address == ACE_INET_Addr()) {
     // Do nothing.
     return SRSM_None;
   } else if (stun_server_address_ == ACE_INET_Addr() &&
              address != ACE_INET_Addr()) {
     return start(address, indication_count_limit, guid_prefix);
   } else if (stun_server_address_ != ACE_INET_Addr() &&
              address == ACE_INET_Addr()) {
     return stop();
   } else {
     if (stun_server_address_ != address) {
       const StateChange retval = stop();
       start(address, indication_count_limit, guid_prefix);
       return retval;
     } else {
       return next_send(indication_count_limit, guid_prefix);
     }
   }
 }

 ServerReflexiveStateMachine::StateChange
 ServerReflexiveStateMachine::receive(const STUN::Message& message)
 {
   latency_ = DCPS::MonotonicTimePoint::now() - timestamp_;
   latency_available_ = true;

   switch (message.class_) {
   case STUN::SUCCESS_RESPONSE:
     return success_response(message);

   case STUN::ERROR_RESPONSE:
     return error_response(message);

   case STUN::REQUEST:
   case STUN::INDICATION:
     ACE_ERROR((LM_WARNING, ACE_TEXT("(%P|%t) ServerReflexiveStateMachine::receive: WARNING Unsupported STUN message class %d\n"), message.class_));
     return SRSM_None;
   }

   ACE_ERROR((LM_WARNING, ACE_TEXT("(%P|%t) ServerReflexiveStateMachine::receive: WARNING Unknown STUN message class %d\n"), message.class_));
   return SRSM_None;
 }

 ServerReflexiveStateMachine::StateChange
 ServerReflexiveStateMachine::start(const ACE_INET_Addr& address,
                                    size_t indication_count_limit,
                                    const DCPS::GuidPrefix_t& guid_prefix)
 {
   OPENDDS_ASSERT(address != ACE_INET_Addr());
   OPENDDS_ASSERT(stun_server_address_ == ACE_INET_Addr());

   // Send a binding request.
   message_class_ = STUN::REQUEST;
   send_count_ = 0;

   stun_server_address_ = address;
   server_reflexive_address_ = ACE_INET_Addr();

   return next_send(indication_count_limit, guid_prefix);
 }

 ServerReflexiveStateMachine::StateChange
 ServerReflexiveStateMachine::stop()
 {
   OPENDDS_ASSERT(stun_server_address_ != ACE_INET_Addr());
   const StateChange retval = server_reflexive_address_ != ACE_INET_Addr() ? SRSM_Unset : SRSM_None;
   unset_stun_server_address_ = stun_server_address_;
   stun_server_address_ = ACE_INET_Addr();
   server_reflexive_address_ = ACE_INET_Addr();
   send_count_ = 0;
   return retval;
 }

 ServerReflexiveStateMachine::StateChange
 ServerReflexiveStateMachine::next_send(size_t indication_count_limit,
                                        const DCPS::GuidPrefix_t& guid_prefix)
 {
   StateChange retval = SRSM_None;

   if (message_class_ == STUN::REQUEST &&
       server_reflexive_address_ != ACE_INET_Addr() &&
       send_count_ == indication_count_limit) {
     // Reset.
     retval = SRSM_Unset;
     server_reflexive_address_ = ACE_INET_Addr();
     unset_stun_server_address_ = stun_server_address_;
   }

   // indication_count_limit is offset by 1 to account for sending the request.
   if ((server_reflexive_address_ == ACE_INET_Addr()) ||
       (message_class_ == STUN::INDICATION && send_count_ >= indication_count_limit + 1)) {
     message_class_ = STUN::REQUEST;
     send_count_ = 0;
   }

   message_ = STUN::Message();
   message_.class_ = message_class_;
   message_.method = STUN::BINDING;
   message_.generate_transaction_id();
   message_.append_attribute(STUN::make_guid_prefix(guid_prefix));
   message_.append_attribute(STUN::make_fingerprint());

   ++send_count_;

   return retval;
 }

 ServerReflexiveStateMachine::StateChange
 ServerReflexiveStateMachine::success_response(const STUN::Message& message)
 {
   std::vector<STUN::AttributeType> unknown_attributes = message.unknown_comprehension_required_attributes();

   if (!unknown_attributes.empty()) {
     if (DCPS::DCPS_debug_level > 0) {
       ACE_ERROR((LM_WARNING,
                  ACE_TEXT("(%P|%t) ServerReflexiveStateMachine::success_response: "
                           "WARNING Unknown comprehension required attributes\n")));
     }
     return SRSM_None;
   }

   ACE_INET_Addr server_reflexive_address;

   if (!message.get_mapped_address(server_reflexive_address)) {
     if (DCPS::DCPS_debug_level > 0) {
       ACE_ERROR((LM_WARNING,
                  ACE_TEXT("(%P|%t) ServerReflexiveStateMachine::success_response: "
                           "WARNING No (XOR)_MAPPED_ADDRESS attribute\n")));
     }
     return SRSM_None;
   }

   if (server_reflexive_address == ACE_INET_Addr()) {
     if (DCPS::DCPS_debug_level > 0) {
       ACE_ERROR((LM_WARNING,
                  ACE_TEXT("(%P|%t) ServerReflexiveStateMachine::success_response: "
                           "WARNING (XOR)_MAPPED_ADDRESS is not valid\n")));
     }
     return SRSM_None;
   }

   message_class_ = STUN::INDICATION;
   if (server_reflexive_address == server_reflexive_address_) {
     return SRSM_None;
   } else if (server_reflexive_address_ == ACE_INET_Addr()) {
     server_reflexive_address_ = server_reflexive_address;
     return SRSM_Set;
   } else {
     server_reflexive_address_ = server_reflexive_address;
     return SRSM_Change;
   }
 }

 ServerReflexiveStateMachine::StateChange
 ServerReflexiveStateMachine::error_response(const STUN::Message& message)
 {
   if (message.method != STUN::BINDING) {
     if (DCPS::DCPS_debug_level > 0) {
       ACE_ERROR((LM_WARNING,
                  ACE_TEXT("(%P|%t) ServerReflexiveStateMachine::error_response: "
                           "WARNING Unsupported STUN method\n")));
     }
     return SRSM_None;
   }


   if (!message.has_error_code()) {
     if (DCPS::DCPS_debug_level > 0) {
       ACE_ERROR((LM_WARNING, ACE_TEXT("(%P|%t) ServerReflexiveStateMachine::error_response: "
                                       "WARNING No error code\n")));
     }
     return SRSM_None;
   }

   if (DCPS::DCPS_debug_level > 0) {
     ACE_ERROR((LM_WARNING,
                ACE_TEXT("(%P|%t) ServerReflexiveStateMachine::error_response: "
                         "WARNING STUN error response code=%d reason=%C\n"),
                message.get_error_code(),
                message.get_error_reason().c_str()));

     if (message.get_error_code() == STUN::UNKNOWN_ATTRIBUTE && message.has_unknown_attributes()) {
       std::vector<STUN::AttributeType> unknown_attributes = message.get_unknown_attributes();

       for (std::vector<STUN::AttributeType>::const_iterator pos = unknown_attributes.begin(),
              limit = unknown_attributes.end(); pos != limit; ++pos) {
         ACE_ERROR((LM_WARNING,
                    ACE_TEXT("(%P|%t) ServerReflexiveStateMachine::error_response: "
                             "WARNING Unknown STUN attribute %d\n"),
                    *pos));
       }
     }
   }

   return SRSM_None;
 }

 } // namespace ICE
 } // namespace OpenDDS

 OPENDDS_END_VERSIONED_NAMESPACE_DECL

 #endif /* OPENDDS_SECURITY */
OpenDDS::STUN::make_guid_prefix
OpenDDS_Rtps_Export Attribute make_guid_prefix(const DCPS::GuidPrefix_t &guid_prefix)
Definition: Stun.cpp:163

OpenDDS::ICE::ServerReflexiveStateMachine::start
StateChange start(const ACE_INET_Addr &address, size_t indication_count_limit, const DCPS::GuidPrefix_t &guid_prefix)
Definition: Ice.cpp:179

ACE_ERROR
#define ACE_ERROR(X)

debug.h

OpenDDS::STUN::Message::get_mapped_address
bool get_mapped_address(ACE_INET_Addr &address) const
Definition: Stun.cpp:643

OpenDDS::ICE::ServerReflexiveStateMachine::error_response
StateChange error_response(const STUN::Message &message)
Definition: Ice.cpp:289

OpenDDS::STUN::Message::class_
Class class_
Definition: Stun.h:184

OpenDDS::ICE::AgentImpl
Definition: AgentImpl.h:35

OpenDDS::ICE::Configuration
Definition: RTPS/ICE/Ice.h:59

OpenDDS::ICE::ServerReflexiveStateMachine::next_send
StateChange next_send(size_t indication_count_limit, const DCPS::GuidPrefix_t &guid_prefix)
Definition: Ice.cpp:209

OpenDDS::STUN::SUCCESS_RESPONSE
Definition: Stun.h:35

OpenDDS::ICE::Candidate::base
ACE_INET_Addr base
Definition: Ice.h:55

OpenDDS::DCPS::to_dds_string
String to_dds_string(unsigned short to_convert)
Definition: SafetyProfileStreams.cpp:17

OpenDDS::ICE::ServerReflexiveStateMachine::success_response
StateChange success_response(const STUN::Message &message)
Definition: Ice.cpp:243

OpenDDS::DCPS::make_rch
RcHandle< T > make_rch()
Definition: RcHandle_T.h:256

OpenDDS::STUN::BINDING
Definition: Stun.h:40

OPENDDS_ASSERT
#define OPENDDS_ASSERT(C)
Definition: Definitions.h:72

OpenDDS::ICE::SERVER_REFLEXIVE
Definition: Ice.h:37

LogAddr.h

OpenDDS::ICE::make_peer_reflexive_candidate
Candidate make_peer_reflexive_candidate(const ACE_INET_Addr &address, const ACE_INET_Addr &base, const ACE_INET_Addr &server_address, ACE_UINT32 priority)
Definition: Ice.cpp:88

OpenDDS::STUN::Message::get_unknown_attributes
std::vector< AttributeType > get_unknown_attributes() const
Definition: Stun.cpp:786

OpenDDS::STUN::UNKNOWN_ATTRIBUTE
const ACE_UINT16 UNKNOWN_ATTRIBUTE
Definition: Stun.h:53

ACE_Addr::get_type
int get_type(void) const

ACE_INET_Addr

OpenDDS::ICE::AgentHolder
Definition: Ice.cpp:114

OpenDDS::ICE::Candidate::address
ACE_INET_Addr address
Definition: Ice.h:46

OpenDDS::ICE::make_host_candidate
Candidate make_host_candidate(const ACE_INET_Addr &address)
Definition: Ice.cpp:64

OpenDDS::DCPS::TimePoint_T< MonotonicClock >::now
static TimePoint_T< MonotonicClock > now()
Definition: TimePoint_T.inl:41

OpenDDS::STUN::Message::has_unknown_attributes
bool has_unknown_attributes() const
Definition: Stun.cpp:775

OpenDDS::ICE::HOST
Definition: Ice.h:36

OpenDDS::ICE::AgentHolder::AgentHolder
AgentHolder()
Definition: Ice.cpp:115

OpenDDS::STUN::ERROR_RESPONSE
Definition: Stun.h:36

OpenDDS::ICE::ServerReflexiveStateMachine::send
StateChange send(const ACE_INET_Addr &address, size_t indication_count_limit, const DCPS::GuidPrefix_t &guid_prefix)
Definition: Ice.cpp:128

OpenDDS::ICE::candidates_equal
bool candidates_equal(const Candidate &x, const Candidate &y)
Definition: Ice.cpp:34

OpenDDS::ICE::Candidate::type
CandidateType type
Definition: Ice.h:51

Ice.h

OpenDDS::ICE::ServerReflexiveStateMachine::stop
StateChange stop()
Definition: Ice.cpp:197

OpenDDS::STUN::Message::get_error_code
ACE_UINT16 get_error_code() const
Definition: Stun.cpp:753

OpenDDS::ICE::local_priority
ACE_UINT32 local_priority(const ACE_INET_Addr &addr)
Definition: Ice.cpp:56

OpenDDS::ICE::Candidate
Definition: Ice.h:42

OpenDDS::ICE::Agent
Definition: RTPS/ICE/Ice.h:178

OpenDDS::ICE::Candidate::foundation
std::string foundation
Definition: Ice.h:48

OpenDDS::STUN::Message::method
Method method
Definition: Stun.h:185

LM_WARNING
LM_WARNING

OpenDDS::ICE::ServerReflexiveStateMachine::receive
StateChange receive(const STUN::Message &message)
Definition: Ice.cpp:156

OpenDDS::ICE::AgentHolder::agent_impl
DCPS::RcHandle< AgentImpl > agent_impl
Definition: Ice.cpp:119

OpenDDS::STUN::Message::has_error_code
bool has_error_code() const
Definition: Stun.cpp:742

ACE_TEXT
ACE_TEXT("TCP_Factory")

OpenDDS::STUN::INDICATION
Definition: Stun.h:34

OpenDDS::STUN::make_fingerprint
Attribute make_fingerprint()
Definition: Stun.cpp:139

ACE_Singleton::instance
static TYPE * instance(void)

OpenDDS::DCPS::DCPS_debug_level
OpenDDS_Dcps_Export unsigned int DCPS_debug_level
Definition: debug.cpp:30

OpenDDS::STUN::Message::get_error_reason
std::string get_error_reason() const
Definition: Stun.cpp:764

OpenDDS::STUN::REQUEST
Definition: Stun.h:33

OpenDDS::DCPS::GuidPrefix_t
octet GuidPrefix_t[12]
Definition: DdsDcpsGuid.idl:19

OpenDDS::ICE::PEER_REFLEXIVE
Definition: Ice.h:38

OpenDDS::DCPS::static_rchandle_cast
RcHandle< T > static_rchandle_cast(const RcHandle< U > &h)
Definition: RcHandle_T.h:202

OpenDDS::ICE::Agent::instance
static DCPS::RcHandle< Agent > instance()
Definition: Ice.cpp:122

OpenDDS::ICE::Configuration::instance
static Configuration * instance()
Definition: Ice.cpp:109

OPENDDS_END_VERSIONED_NAMESPACE_DECL
#define OPENDDS_END_VERSIONED_NAMESPACE_DECL
Definition: Versioned_Namespace.h:48

OPENDDS_BEGIN_VERSIONED_NAMESPACE_DECL
Definition: Hash.cpp:17

AgentImpl.h

SafetyProfileStreams.h

OpenDDS::STUN::Message
Definition: Stun.h:180

OpenDDS::DCPS::LogAddr::ip
static const String ip(const ACE_INET_Addr &addr)
Definition: LogAddr.cpp:15

OpenDDS::ICE::make_server_reflexive_candidate
Candidate make_server_reflexive_candidate(const ACE_INET_Addr &address, const ACE_INET_Addr &base, const ACE_INET_Addr &server_address)
Definition: Ice.cpp:76

OpenDDS::STUN::Message::unknown_comprehension_required_attributes
std::vector< AttributeType > unknown_comprehension_required_attributes() const
Definition: Stun.cpp:616

OpenDDS
The Internal API and Implementation of OpenDDS.
Definition: AddressCache.h:28

OpenDDS::ICE::Candidate::priority
ACE_UINT32 priority
Definition: Ice.h:50

OpenDDS::DCPS::RcHandle
Definition: RcHandle_T.h:24

OpenDDS::ICE::candidates_sorted
bool candidates_sorted(const Candidate &x, const Candidate &y)
Definition: Ice.cpp:21

OpenDDS::ICE::ServerReflexiveStateMachine::StateChange
StateChange
Definition: RTPS/ICE/Ice.h:213