/* Copyright (c) 2007, Arvid Norberg All rights reserved. Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met: * Redistributions of source code must retain the above copyright notice, this list of conditions and the following disclaimer. * Redistributions in binary form must reproduce the above copyright notice, this list of conditions and the following disclaimer in the documentation and/or other materials provided with the distribution. * Neither the name of the author nor the names of its contributors may be used to endorse or promote products derived from this software without specific prior written permission. THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. */ #include "libtorrent/pch.hpp" #include "libtorrent/socket.hpp" #include "libtorrent/upnp.hpp" #include "libtorrent/io.hpp" #include "libtorrent/http_tracker_connection.hpp" #include "libtorrent/xml_parse.hpp" #include #include #include #include #include #include using boost::bind; using namespace libtorrent; address_v4 upnp::upnp_multicast_address; udp::endpoint upnp::upnp_multicast_endpoint; upnp::upnp(io_service& ios, address const& listen_interface , std::string const& user_agent, portmap_callback_t const& cb) : m_udp_local_port(0) , m_tcp_local_port(0) , m_user_agent(user_agent) , m_callback(cb) , m_retry_count(0) , m_socket(ios) , m_broadcast_timer(ios) , m_refresh_timer(ios) , m_strand(ios) , m_disabled(false) , m_closing(false) { // UPnP multicast address and port upnp_multicast_address = address_v4::from_string("239.255.255.250"); upnp_multicast_endpoint = udp::endpoint(upnp_multicast_address, 1900); #ifdef TORRENT_UPNP_LOGGING m_log.open("upnp.log", std::ios::in | std::ios::out | std::ios::trunc); #endif rebind(listen_interface); } upnp::~upnp() { } void upnp::rebind(address const& listen_interface) try { if (listen_interface.is_v4() && listen_interface != address_v4::from_string("0.0.0.0")) { m_local_ip = listen_interface.to_v4(); } else { // make a best guess of the interface we're using and its IP udp::resolver r(m_socket.io_service()); udp::resolver::iterator i = r.resolve(udp::resolver::query(asio::ip::host_name(), "0")); for (;i != udp::resolver_iterator(); ++i) { if (i->endpoint().address().is_v4()) break; } if (i == udp::resolver_iterator()) { throw std::runtime_error("local host name did not resolve to an " "IPv4 address. disabling NAT-PMP"); } m_local_ip = i->endpoint().address().to_v4(); } #ifdef TORRENT_UPNP_LOGGING m_log << time_now_string() << " local ip: " << m_local_ip.to_string() << std::endl; #endif if ((m_local_ip.to_ulong() & 0xff000000) != 0x0a000000 && (m_local_ip.to_ulong() & 0xfff00000) != 0xac100000 && (m_local_ip.to_ulong() & 0xffff0000) != 0xc0a80000) { // the local address seems to be an external // internet address. Assume it is not behind a NAT throw std::runtime_error("local IP is not on a local network"); } // the local interface hasn't changed if (m_socket.is_open() && m_socket.local_endpoint().address() == m_local_ip) return; m_socket.close(); using namespace asio::ip::multicast; m_socket.open(udp::v4()); m_socket.set_option(datagram_socket::reuse_address(true)); m_socket.bind(udp::endpoint(m_local_ip, 0)); m_socket.set_option(join_group(upnp_multicast_address)); m_socket.set_option(outbound_interface(m_local_ip)); m_socket.set_option(hops(255)); m_disabled = false; m_retry_count = 0; discover_device(); } catch (std::exception& e) { m_disabled = true; std::stringstream msg; msg << "UPnP portmapping disabled: " << e.what(); m_callback(0, 0, msg.str()); }; void upnp::discover_device() { const char msearch[] = "M-SEARCH * HTTP/1.1\r\n" "HOST: 239.255.255.250:1900\r\n" "ST:upnp:rootdevice\r\n" "MAN:\"ssdp:discover\"\r\n" "MX:3\r\n" "\r\n\r\n"; m_socket.async_receive_from(asio::buffer(m_receive_buffer , sizeof(m_receive_buffer)), m_remote, m_strand.wrap(bind( &upnp::on_reply, this, _1, _2))); m_socket.send_to(asio::buffer(msearch, sizeof(msearch) - 1) , upnp_multicast_endpoint); ++m_retry_count; m_broadcast_timer.expires_from_now(milliseconds(250 * m_retry_count)); m_broadcast_timer.async_wait(m_strand.wrap(bind(&upnp::resend_request , this, _1))); #ifdef TORRENT_UPNP_LOGGING m_log << time_now_string() << " ==> Broadcasting search for rootdevice" << std::endl; #endif } void upnp::set_mappings(int tcp, int udp) { if (m_disabled) return; if (udp != 0) m_udp_local_port = udp; if (tcp != 0) m_tcp_local_port = tcp; for (std::set::iterator i = m_devices.begin() , end(m_devices.end()); i != end; ++i) { rootdevice& d = const_cast(*i); if (d.mapping[0].local_port != m_tcp_local_port) { if (d.mapping[0].external_port == 0) d.mapping[0].external_port = m_tcp_local_port; d.mapping[0].local_port = m_tcp_local_port; d.mapping[0].need_update = true; } if (d.mapping[1].local_port != m_udp_local_port) { if (d.mapping[1].external_port == 0) d.mapping[1].external_port = m_udp_local_port; d.mapping[1].local_port = m_udp_local_port; d.mapping[1].need_update = true; } if (d.mapping[0].need_update || d.mapping[1].need_update) map_port(d, 0); } } void upnp::resend_request(asio::error_code const& e) { if (e) return; if (m_retry_count < 9 && (m_devices.empty() || m_retry_count < 4)) { discover_device(); } if (m_devices.empty()) { #ifdef TORRENT_UPNP_LOGGING m_log << time_now_string() << " *** Got no response in 9 retries. Giving up, " "disabling UPnP." << std::endl; #endif m_disabled = true; return; } for (std::set::iterator i = m_devices.begin() , end(m_devices.end()); i != end; ++i) { if (i->control_url.empty() && !i->upnp_connection) { // we don't have a WANIP or WANPPP url for this device, // ask for it rootdevice& d = const_cast(*i); d.upnp_connection.reset(new http_connection(m_socket.io_service() , m_strand.wrap(bind(&upnp::on_upnp_xml, this, _1, _2, boost::ref(d))))); d.upnp_connection->get(d.url); } } } void upnp::on_reply(asio::error_code const& e , std::size_t bytes_transferred) { using namespace libtorrent::detail; if (e) return; // since we're using udp, send the query 4 times // just to make sure we find all devices if (m_retry_count >= 4) m_broadcast_timer.cancel(); // parse out the url for the device /* the response looks like this: HTTP/1.1 200 OK ST:upnp:rootdevice USN:uuid:000f-66d6-7296000099dc::upnp:rootdevice Location: http://192.168.1.1:5431/dyndev/uuid:000f-66d6-7296000099dc Server: Custom/1.0 UPnP/1.0 Proc/Ver EXT: Cache-Control:max-age=180 DATE: Fri, 02 Jan 1970 08:10:38 GMT */ http_parser p; try { p.incoming(buffer::const_interval(m_receive_buffer , m_receive_buffer + bytes_transferred)); } catch (std::exception& e) { #ifdef TORRENT_UPNP_LOGGING m_log << time_now_string() << " <== Rootdevice responded with incorrect HTTP packet: " << e.what() << ". Ignoring device" << std::endl; #endif return; } if (p.status_code() != 200) { #ifdef TORRENT_UPNP_LOGGING m_log << time_now_string() << " <== Rootdevice responded with HTTP status: " << p.status_code() << ". Ignoring device" << std::endl; #endif return; } if (!p.header_finished()) { #ifdef TORRENT_UPNP_LOGGING m_log << time_now_string() << " <== Rootdevice responded with incomplete HTTP " "packet. Ignoring device" << std::endl; #endif return; } std::string url = p.header("location"); if (url.empty()) { #ifdef TORRENT_UPNP_LOGGING m_log << time_now_string() << " <== Rootdevice response is missing a location header. " "Ignoring device" << std::endl; #endif return; } rootdevice d; d.url = url; std::set::iterator i = m_devices.find(d); if (i == m_devices.end()) { std::string protocol; // we don't have this device in our list. Add it boost::tie(protocol, d.hostname, d.port, d.path) = parse_url_components(d.url); if (protocol != "http") { #ifdef TORRENT_UPNP_LOGGING m_log << time_now_string() << " <== Rootdevice uses unsupported protocol: '" << protocol << "'. Ignoring device" << std::endl; #endif return; } if (d.port == 0) { #ifdef TORRENT_UPNP_LOGGING m_log << time_now_string() << " <== Rootdevice responded with a url with port 0. " "Ignoring device" << std::endl; #endif return; } #ifdef TORRENT_UPNP_LOGGING m_log << time_now_string() << " <== Found rootdevice: " << d.url << std::endl; #endif if (m_tcp_local_port != 0) { d.mapping[0].need_update = true; d.mapping[0].local_port = m_tcp_local_port; } if (m_udp_local_port != 0) { d.mapping[1].need_update = true; d.mapping[1].local_port = m_udp_local_port; } boost::tie(i, boost::tuples::ignore) = m_devices.insert(d); } } void upnp::post(rootdevice& d, std::stringstream const& soap , std::string const& soap_action) { std::stringstream header; header << "POST " << d.control_url << " HTTP/1.1\r\n" "Host: " << d.hostname << ":" << d.port << "\r\n" "Content-Type: text/xml; charset=\"utf-8\"\r\n" "Content-Length: " << soap.str().size() << "\r\n" "Soapaction: \"" << d.service_namespace << "#" << soap_action << "\"\r\n\r\n" << soap.str(); d.upnp_connection->sendbuffer = header.str(); d.upnp_connection->start(d.hostname, boost::lexical_cast(d.port) , seconds(10)); } void upnp::map_port(rootdevice& d, int i) { if (d.upnp_connection) return; if (!d.mapping[i].need_update) { if (i < num_mappings - 1) map_port(d, i + 1); return; } d.mapping[i].need_update = false; assert(!d.upnp_connection); d.upnp_connection.reset(new http_connection(m_socket.io_service() , m_strand.wrap(bind(&upnp::on_upnp_map_response, this, _1, _2 , boost::ref(d), i)))); std::string soap_action = "AddPortMapping"; std::stringstream soap; soap << "\n" "" ""; soap << "" "" << d.mapping[i].external_port << "" "" << (d.mapping[i].protocol ? "UDP" : "TCP") << "" "" << d.mapping[i].local_port << "" "" << m_local_ip.to_string() << "" "1" "" << m_user_agent << "" "" << d.lease_duration << ""; soap << ""; post(d, soap, soap_action); #ifdef TORRENT_UPNP_LOGGING m_log << time_now_string() << " ==> AddPortMapping: " << soap.str() << std::endl; #endif } // requires the mutex to be locked void upnp::unmap_port(rootdevice& d, int i) { if (d.mapping[i].external_port == 0) { if (i < num_mappings - 1) { unmap_port(d, i + 1); } else { m_devices.erase(d); } return; } d.upnp_connection.reset(new http_connection(m_socket.io_service() , m_strand.wrap(bind(&upnp::on_upnp_unmap_response, this, _1, _2 , boost::ref(d), i)))); std::string soap_action = "DeletePortMapping"; std::stringstream soap; soap << "\n" "" ""; soap << "" "" << d.mapping[i].external_port << "" "" << (d.mapping[i].protocol ? "UDP" : "TCP") << ""; soap << ""; post(d, soap, soap_action); #ifdef TORRENT_UPNP_LOGGING m_log << time_now_string() << " ==> DeletePortMapping: " << soap.str() << std::endl; #endif } namespace { struct parse_state { parse_state(): found_service(false), exit(false) {} void reset(char const* st) { found_service = false; exit = false; service_type = st; } bool found_service; bool exit; std::string top_tag; std::string control_url; char const* service_type; }; void find_control_url(int type, char const* string, parse_state& state) { if (state.exit) return; if (type == xml_start_tag) { if ((!state.top_tag.empty() && state.top_tag == "service") || !strcmp(string, "service")) { state.top_tag = string; } } else if (type == xml_end_tag) { if (!strcmp(string, "service")) { state.top_tag.clear(); if (state.found_service) state.exit = true; } else if (!state.top_tag.empty() && state.top_tag != "service") state.top_tag = "service"; } else if (type == xml_string) { if (state.top_tag == "serviceType") { if (!strcmp(string, state.service_type)) state.found_service = true; } else if (state.top_tag == "controlURL") { state.control_url = string; if (state.found_service) state.exit = true; } } } } void upnp::on_upnp_xml(asio::error_code const& e , libtorrent::http_parser const& p, rootdevice& d) { if (d.upnp_connection) { d.upnp_connection->close(); d.upnp_connection.reset(); } if (e) { #ifdef TORRENT_UPNP_LOGGING m_log << time_now_string() << " <== error while fetching control url: " << e.message() << std::endl; #endif return; } if (!p.header_finished()) { #ifdef TORRENT_UPNP_LOGGING m_log << time_now_string() << " <== incomplete http message" << std::endl; #endif return; } parse_state s; s.reset("urn:schemas-upnp-org:service:WANIPConnection:1"); xml_parse((char*)p.get_body().begin, (char*)p.get_body().end , m_strand.wrap(bind(&find_control_url, _1, _2, boost::ref(s)))); d.service_namespace = "urn:schemas-upnp-org:service:WANIPConnection:1"; if (!s.found_service) { // we didn't find the WAN IP connection, look for // a PPP IP connection s.reset("urn:schemas-upnp-org:service:PPPIPConnection:1"); xml_parse((char*)p.get_body().begin, (char*)p.get_body().end , m_strand.wrap(bind(&find_control_url, _1, _2, boost::ref(s)))); d.service_namespace = "urn:schemas-upnp-org:service:WANPPPConnection:1"; } #ifdef TORRENT_UPNP_LOGGING m_log << time_now_string() << " <== Rootdevice response, found control URL: " << s.control_url << std::endl; #endif d.control_url = s.control_url; map_port(d, 0); } namespace { struct error_code_parse_state { error_code_parse_state(): in_error_code(false), exit(false), error_code(-1) {} bool in_error_code; bool exit; int error_code; }; void find_error_code(int type, char const* string, error_code_parse_state& state) { if (state.exit) return; if (type == xml_start_tag && !strcmp("errorCode", string)) { state.in_error_code = true; } else if (type == xml_string && state.in_error_code) { state.error_code = std::atoi(string); state.exit = true; } } } void upnp::on_upnp_map_response(asio::error_code const& e , libtorrent::http_parser const& p, rootdevice& d, int mapping) { if (d.upnp_connection) { d.upnp_connection->close(); d.upnp_connection.reset(); } if (e) { #ifdef TORRENT_UPNP_LOGGING m_log << time_now_string() << " <== error while adding portmap: " << e.message() << std::endl; #endif m_devices.erase(d); return; } if (m_closing) return; // error code response may look like this: // // // // s:Client // UPnPError // // // 402 // Invalid Args // // // // // if (!p.header_finished()) { #ifdef TORRENT_UPNP_LOGGING m_log << time_now_string() << " <== incomplete http message" << std::endl; #endif m_devices.erase(d); return; } error_code_parse_state s; xml_parse((char*)p.get_body().begin, (char*)p.get_body().end , m_strand.wrap(bind(&find_error_code, _1, _2, boost::ref(s)))); #ifdef TORRENT_UPNP_LOGGING if (s.error_code != -1) { m_log << time_now_string() << " <== got error message: " << s.error_code << std::endl; } #endif if (s.error_code == 725) { // only permanent leases supported d.lease_duration = 0; d.mapping[mapping].need_update = true; map_port(d, mapping); return; } else if (s.error_code == 718) { // conflict in mapping, try next external port ++d.mapping[mapping].external_port; d.mapping[mapping].need_update = true; map_port(d, mapping); return; } else if (s.error_code != -1) { std::map error_codes; error_codes[402] = "Invalid Arguments"; error_codes[501] = "Action Failed"; error_codes[714] = "The specified value does not exist in the array"; error_codes[715] = "The source IP address cannot be wild-carded"; error_codes[716] = "The external port cannot be wild-carded"; error_codes[718] = "The port mapping entry specified conflicts with " "a mapping assigned previously to another client"; error_codes[724] = "Internal and External port values must be the same"; error_codes[725] = "The NAT implementation only supports permanent " "lease times on port mappings"; error_codes[726] = "RemoteHost must be a wildcard and cannot be a " "specific IP address or DNS name"; error_codes[727] = "ExternalPort must be a wildcard and cannot be a specific port "; m_callback(0, 0, "UPnP mapping error " + boost::lexical_cast(s.error_code) + ": " + error_codes[s.error_code]); } #ifdef TORRENT_UPNP_LOGGING m_log << time_now_string() << " <== map response: " << std::string(p.get_body().begin, p.get_body().end) << std::endl; #endif if (s.error_code == -1) { int tcp = 0; int udp = 0; if (mapping == 0) tcp = d.mapping[mapping].external_port; else udp = d.mapping[mapping].external_port; m_callback(tcp, udp, ""); if (d.lease_duration > 0) { d.mapping[mapping].expires = time_now() + seconds(int(d.lease_duration * 0.75f)); ptime next_expire = m_refresh_timer.expires_at(); if (next_expire < time_now() || next_expire > d.mapping[mapping].expires) { m_refresh_timer.expires_at(d.mapping[mapping].expires); m_refresh_timer.async_wait(m_strand.wrap(bind(&upnp::on_expire, this, _1))); } } else { d.mapping[mapping].expires = max_time(); } } for (int i = 0; i < num_mappings; ++i) { if (d.mapping[i].need_update) { map_port(d, i); return; } } } void upnp::on_upnp_unmap_response(asio::error_code const& e , libtorrent::http_parser const& p, rootdevice& d, int mapping) { if (d.upnp_connection) { d.upnp_connection->close(); d.upnp_connection.reset(); } if (e) { #ifdef TORRENT_UPNP_LOGGING m_log << time_now_string() << " <== error while deleting portmap: " << e.message() << std::endl; #endif } if (!p.header_finished()) { #ifdef TORRENT_UPNP_LOGGING m_log << time_now_string() << " <== incomplete http message" << std::endl; #endif return; } #ifdef TORRENT_UPNP_LOGGING m_log << time_now_string() << " <== unmap response: " << std::string(p.get_body().begin, p.get_body().end) << std::endl; #endif // ignore errors and continue with the next mapping for this device if (mapping < num_mappings - 1) { unmap_port(d, mapping + 1); return; } // the main thread is likely to be waiting for // all the unmap operations to complete m_devices.erase(d); } void upnp::on_expire(asio::error_code const& e) { if (e) return; ptime now = time_now(); ptime next_expire = max_time(); for (std::set::iterator i = m_devices.begin() , end(m_devices.end()); i != end; ++i) { rootdevice& d = const_cast(*i); for (int m = 0; m < num_mappings; ++m) { if (d.mapping[m].expires != max_time()) continue; if (d.mapping[m].expires < now) { d.mapping[m].expires = max_time(); map_port(d, m); } else if (d.mapping[m].expires < next_expire) { next_expire = d.mapping[m].expires; } } } if (next_expire != max_time()) { m_refresh_timer.expires_at(next_expire); m_refresh_timer.async_wait(m_strand.wrap(bind(&upnp::on_expire, this, _1))); } } void upnp::close() { m_refresh_timer.cancel(); m_broadcast_timer.cancel(); m_closing = true; m_socket.close(); if (m_disabled) { m_devices.clear(); return; } for (std::set::iterator i = m_devices.begin() , end(m_devices.end()); i != end;) { rootdevice& d = const_cast(*i); if (d.control_url.empty()) { m_devices.erase(i++); continue; } ++i; unmap_port(d, 0); } }