2016-12-28 07:47:11 +01:00
|
|
|
%%%-------------------------------------------------------------------
|
|
|
|
%%% Created : 12 Dec 2016 by Evgeny Khramtsov <ekhramtsov@process-one.net>
|
2007-12-24 12:41:41 +01:00
|
|
|
%%%
|
|
|
|
%%%
|
2017-01-02 21:41:53 +01:00
|
|
|
%%% ejabberd, Copyright (C) 2002-2017 ProcessOne
|
2007-12-24 12:41:41 +01:00
|
|
|
%%%
|
|
|
|
%%% This program is free software; you can redistribute it and/or
|
|
|
|
%%% modify it under the terms of the GNU General Public License as
|
|
|
|
%%% published by the Free Software Foundation; either version 2 of the
|
|
|
|
%%% License, or (at your option) any later version.
|
|
|
|
%%%
|
|
|
|
%%% This program is distributed in the hope that it will be useful,
|
|
|
|
%%% but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
%%% MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
|
|
%%% General Public License for more details.
|
2009-01-12 15:44:42 +01:00
|
|
|
%%%
|
2014-02-22 11:27:40 +01:00
|
|
|
%%% You should have received a copy of the GNU General Public License along
|
|
|
|
%%% with this program; if not, write to the Free Software Foundation, Inc.,
|
|
|
|
%%% 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
|
2007-12-24 12:41:41 +01:00
|
|
|
%%%
|
2016-12-28 07:47:11 +01:00
|
|
|
%%%-------------------------------------------------------------------
|
2002-12-06 21:59:19 +01:00
|
|
|
-module(ejabberd_s2s_in).
|
2016-12-28 07:47:11 +01:00
|
|
|
-behaviour(xmpp_stream_in).
|
2017-12-26 16:55:57 +01:00
|
|
|
-behaviour(xmpp_socket).
|
2015-06-01 14:38:27 +02:00
|
|
|
|
2017-12-26 16:55:57 +01:00
|
|
|
%% xmpp_socket callbacks
|
2014-04-28 01:42:02 +02:00
|
|
|
-export([start/2, start_link/2, socket_type/0]).
|
2017-05-08 11:59:28 +02:00
|
|
|
%% ejabberd_listener callbacks
|
|
|
|
-export([listen_opt_type/1]).
|
2016-12-28 07:47:11 +01:00
|
|
|
%% xmpp_stream_in callbacks
|
|
|
|
-export([init/1, handle_call/3, handle_cast/2,
|
|
|
|
handle_info/2, terminate/2, code_change/3]).
|
|
|
|
-export([tls_options/1, tls_required/1, tls_verify/1, tls_enabled/1,
|
|
|
|
compress_methods/1,
|
|
|
|
unauthenticated_stream_features/1, authenticated_stream_features/1,
|
2016-12-29 22:00:36 +01:00
|
|
|
handle_stream_start/2, handle_stream_end/2,
|
2016-12-28 07:47:11 +01:00
|
|
|
handle_stream_established/1, handle_auth_success/4,
|
|
|
|
handle_auth_failure/4, handle_send/3, handle_recv/3, handle_cdata/2,
|
|
|
|
handle_unauthenticated_packet/2, handle_authenticated_packet/2]).
|
|
|
|
%% Hooks
|
|
|
|
-export([handle_unexpected_info/2, handle_unexpected_cast/2,
|
|
|
|
reject_unauthenticated_packet/2, process_closed/2]).
|
|
|
|
%% API
|
2017-04-15 07:30:41 +02:00
|
|
|
-export([stop/1, close/1, close/2, send/2, update_state/2, establish/1,
|
2017-02-23 08:12:19 +01:00
|
|
|
host_up/1, host_down/1]).
|
2002-12-06 21:59:19 +01:00
|
|
|
|
|
|
|
-include("ejabberd.hrl").
|
2016-07-27 09:45:08 +02:00
|
|
|
-include("xmpp.hrl").
|
2016-12-28 07:47:11 +01:00
|
|
|
-include("logger.hrl").
|
2013-03-14 10:33:02 +01:00
|
|
|
|
2016-12-28 07:47:11 +01:00
|
|
|
-type state() :: map().
|
|
|
|
-export_type([state/0]).
|
2011-12-02 19:30:20 +01:00
|
|
|
|
2016-12-28 07:47:11 +01:00
|
|
|
%%%===================================================================
|
|
|
|
%%% API
|
|
|
|
%%%===================================================================
|
2015-11-04 16:24:35 +01:00
|
|
|
start(SockData, Opts) ->
|
2017-01-11 08:56:04 +01:00
|
|
|
case proplists:get_value(supervisor, Opts, true) of
|
|
|
|
true ->
|
2017-06-22 15:58:46 +02:00
|
|
|
case supervisor:start_child(ejabberd_s2s_in_sup, [SockData, Opts]) of
|
|
|
|
{ok, undefined} -> ignore;
|
|
|
|
Res -> Res
|
|
|
|
end;
|
2017-01-11 08:56:04 +01:00
|
|
|
_ ->
|
|
|
|
xmpp_stream_in:start(?MODULE, [SockData, Opts],
|
|
|
|
ejabberd_config:fsm_limit_opts(Opts))
|
|
|
|
end.
|
2003-07-20 22:35:35 +02:00
|
|
|
|
2003-11-10 22:25:36 +01:00
|
|
|
start_link(SockData, Opts) ->
|
2016-12-28 07:47:11 +01:00
|
|
|
xmpp_stream_in:start_link(?MODULE, [SockData, Opts],
|
|
|
|
ejabberd_config:fsm_limit_opts(Opts)).
|
|
|
|
|
|
|
|
close(Ref) ->
|
|
|
|
xmpp_stream_in:close(Ref).
|
|
|
|
|
2017-04-15 07:30:41 +02:00
|
|
|
close(Ref, Reason) ->
|
|
|
|
xmpp_stream_in:close(Ref, Reason).
|
|
|
|
|
2016-12-28 07:47:11 +01:00
|
|
|
stop(Ref) ->
|
|
|
|
xmpp_stream_in:stop(Ref).
|
|
|
|
|
|
|
|
socket_type() ->
|
|
|
|
xml_stream.
|
|
|
|
|
|
|
|
-spec send(pid(), xmpp_element()) -> ok;
|
|
|
|
(state(), xmpp_element()) -> state().
|
|
|
|
send(Stream, Pkt) ->
|
|
|
|
xmpp_stream_in:send(Stream, Pkt).
|
|
|
|
|
|
|
|
-spec establish(state()) -> state().
|
|
|
|
establish(State) ->
|
|
|
|
xmpp_stream_in:establish(State).
|
|
|
|
|
|
|
|
-spec update_state(pid(), fun((state()) -> state()) |
|
|
|
|
{module(), atom(), list()}) -> ok.
|
|
|
|
update_state(Ref, Callback) ->
|
|
|
|
xmpp_stream_in:cast(Ref, {update_state, Callback}).
|
|
|
|
|
2017-02-23 08:12:19 +01:00
|
|
|
-spec host_up(binary()) -> ok.
|
|
|
|
host_up(Host) ->
|
|
|
|
ejabberd_hooks:add(s2s_in_closed, Host, ?MODULE,
|
|
|
|
process_closed, 100),
|
|
|
|
ejabberd_hooks:add(s2s_in_unauthenticated_packet, Host, ?MODULE,
|
|
|
|
reject_unauthenticated_packet, 100),
|
|
|
|
ejabberd_hooks:add(s2s_in_handle_info, Host, ?MODULE,
|
|
|
|
handle_unexpected_info, 100),
|
|
|
|
ejabberd_hooks:add(s2s_in_handle_cast, Host, ?MODULE,
|
|
|
|
handle_unexpected_cast, 100).
|
|
|
|
|
|
|
|
-spec host_down(binary()) -> ok.
|
|
|
|
host_down(Host) ->
|
|
|
|
ejabberd_hooks:delete(s2s_in_closed, Host, ?MODULE,
|
|
|
|
process_closed, 100),
|
|
|
|
ejabberd_hooks:delete(s2s_in_unauthenticated_packet, Host, ?MODULE,
|
|
|
|
reject_unauthenticated_packet, 100),
|
|
|
|
ejabberd_hooks:delete(s2s_in_handle_info, Host, ?MODULE,
|
|
|
|
handle_unexpected_info, 100),
|
|
|
|
ejabberd_hooks:delete(s2s_in_handle_cast, Host, ?MODULE,
|
|
|
|
handle_unexpected_cast, 100).
|
2016-12-28 07:47:11 +01:00
|
|
|
|
|
|
|
%%%===================================================================
|
|
|
|
%%% Hooks
|
|
|
|
%%%===================================================================
|
|
|
|
handle_unexpected_info(State, Info) ->
|
|
|
|
?WARNING_MSG("got unexpected info: ~p", [Info]),
|
|
|
|
State.
|
|
|
|
|
|
|
|
handle_unexpected_cast(State, Msg) ->
|
|
|
|
?WARNING_MSG("got unexpected cast: ~p", [Msg]),
|
|
|
|
State.
|
|
|
|
|
2017-01-13 09:35:47 +01:00
|
|
|
reject_unauthenticated_packet(State, _Pkt) ->
|
|
|
|
Err = xmpp:serr_not_authorized(),
|
|
|
|
send(State, Err).
|
2016-12-28 07:47:11 +01:00
|
|
|
|
|
|
|
process_closed(State, _Reason) ->
|
|
|
|
stop(State).
|
|
|
|
|
|
|
|
%%%===================================================================
|
|
|
|
%%% xmpp_stream_in callbacks
|
|
|
|
%%%===================================================================
|
2017-01-09 15:02:17 +01:00
|
|
|
tls_options(#{tls_options := TLSOpts, server_host := LServer}) ->
|
|
|
|
ejabberd_s2s:tls_options(LServer, TLSOpts).
|
2016-12-28 07:47:11 +01:00
|
|
|
|
|
|
|
tls_required(#{server_host := LServer}) ->
|
|
|
|
ejabberd_s2s:tls_required(LServer).
|
2002-12-06 21:59:19 +01:00
|
|
|
|
2016-12-28 07:47:11 +01:00
|
|
|
tls_verify(#{server_host := LServer}) ->
|
|
|
|
ejabberd_s2s:tls_verify(LServer).
|
2006-09-25 05:51:11 +02:00
|
|
|
|
2016-12-28 07:47:11 +01:00
|
|
|
tls_enabled(#{server_host := LServer}) ->
|
|
|
|
ejabberd_s2s:tls_enabled(LServer).
|
2002-12-06 21:59:19 +01:00
|
|
|
|
2016-12-28 07:47:11 +01:00
|
|
|
compress_methods(#{server_host := LServer}) ->
|
|
|
|
case ejabberd_s2s:zlib_enabled(LServer) of
|
|
|
|
true -> [<<"zlib">>];
|
|
|
|
false -> []
|
|
|
|
end.
|
|
|
|
|
|
|
|
unauthenticated_stream_features(#{server_host := LServer}) ->
|
|
|
|
ejabberd_hooks:run_fold(s2s_in_pre_auth_features, LServer, [], [LServer]).
|
|
|
|
|
|
|
|
authenticated_stream_features(#{server_host := LServer}) ->
|
|
|
|
ejabberd_hooks:run_fold(s2s_in_post_auth_features, LServer, [], [LServer]).
|
|
|
|
|
|
|
|
handle_stream_start(_StreamStart, #{lserver := LServer} = State) ->
|
|
|
|
case check_to(jid:make(LServer), State) of
|
|
|
|
false ->
|
|
|
|
send(State, xmpp:serr_host_unknown());
|
2017-05-24 17:16:16 +02:00
|
|
|
true ->
|
2016-12-28 07:47:11 +01:00
|
|
|
ServerHost = ejabberd_router:host_of_route(LServer),
|
|
|
|
State#{server_host => ServerHost}
|
|
|
|
end.
|
|
|
|
|
|
|
|
handle_stream_end(Reason, #{server_host := LServer} = State) ->
|
2017-03-07 16:46:02 +01:00
|
|
|
State1 = State#{stop_reason => Reason},
|
|
|
|
ejabberd_hooks:run_fold(s2s_in_closed, LServer, State1, [Reason]).
|
2016-12-28 07:47:11 +01:00
|
|
|
|
|
|
|
handle_stream_established(State) ->
|
|
|
|
set_idle_timeout(State#{established => true}).
|
|
|
|
|
|
|
|
handle_auth_success(RServer, Mech, _AuthModule,
|
2017-12-26 16:55:57 +01:00
|
|
|
#{socket := Socket, ip := IP,
|
2016-12-28 07:47:11 +01:00
|
|
|
auth_domains := AuthDomains,
|
|
|
|
server_host := ServerHost,
|
|
|
|
lserver := LServer} = State) ->
|
|
|
|
?INFO_MSG("(~s) Accepted inbound s2s ~s authentication ~s -> ~s (~s)",
|
2017-12-26 16:55:57 +01:00
|
|
|
[xmpp_socket:pp(Socket), Mech, RServer, LServer,
|
2017-04-11 12:13:58 +02:00
|
|
|
ejabberd_config:may_hide_data(misc:ip_to_list(IP))]),
|
2016-12-28 07:47:11 +01:00
|
|
|
State1 = case ejabberd_s2s:allow_host(ServerHost, RServer) of
|
2017-05-24 17:16:16 +02:00
|
|
|
true ->
|
2016-12-28 07:47:11 +01:00
|
|
|
AuthDomains1 = sets:add_element(RServer, AuthDomains),
|
2017-12-26 16:55:57 +01:00
|
|
|
State0 = change_shaper(State, RServer),
|
|
|
|
State0#{auth_domains => AuthDomains1};
|
2016-12-28 07:47:11 +01:00
|
|
|
false ->
|
|
|
|
State
|
2016-07-27 09:45:08 +02:00
|
|
|
end,
|
2016-12-28 07:47:11 +01:00
|
|
|
ejabberd_hooks:run_fold(s2s_in_auth_result, ServerHost, State1, [true, RServer]).
|
|
|
|
|
|
|
|
handle_auth_failure(RServer, Mech, Reason,
|
2017-12-26 16:55:57 +01:00
|
|
|
#{socket := Socket, ip := IP,
|
2016-12-28 07:47:11 +01:00
|
|
|
server_host := ServerHost,
|
|
|
|
lserver := LServer} = State) ->
|
|
|
|
?INFO_MSG("(~s) Failed inbound s2s ~s authentication ~s -> ~s (~s): ~s",
|
2017-12-26 16:55:57 +01:00
|
|
|
[xmpp_socket:pp(Socket), Mech, RServer, LServer,
|
2017-04-11 12:13:58 +02:00
|
|
|
ejabberd_config:may_hide_data(misc:ip_to_list(IP)), Reason]),
|
2016-12-28 07:47:11 +01:00
|
|
|
ejabberd_hooks:run_fold(s2s_in_auth_result,
|
|
|
|
ServerHost, State, [false, RServer]).
|
|
|
|
|
|
|
|
handle_unauthenticated_packet(Pkt, #{server_host := LServer} = State) ->
|
|
|
|
ejabberd_hooks:run_fold(s2s_in_unauthenticated_packet,
|
|
|
|
LServer, State, [Pkt]).
|
|
|
|
|
|
|
|
handle_authenticated_packet(Pkt, #{server_host := LServer} = State) when not ?is_stanza(Pkt) ->
|
|
|
|
ejabberd_hooks:run_fold(s2s_in_authenticated_packet, LServer, State, [Pkt]);
|
2017-02-14 15:09:25 +01:00
|
|
|
handle_authenticated_packet(Pkt0, #{ip := {IP, _}} = State) ->
|
|
|
|
Pkt = xmpp:put_meta(Pkt0, ip, IP),
|
2016-07-27 09:45:08 +02:00
|
|
|
From = xmpp:get_from(Pkt),
|
|
|
|
To = xmpp:get_to(Pkt),
|
2016-12-28 07:47:11 +01:00
|
|
|
case check_from_to(From, To, State) of
|
|
|
|
ok ->
|
|
|
|
LServer = ejabberd_router:host_of_route(To#jid.lserver),
|
|
|
|
State1 = ejabberd_hooks:run_fold(s2s_in_authenticated_packet,
|
|
|
|
LServer, State, [Pkt]),
|
2017-01-09 15:02:17 +01:00
|
|
|
{Pkt1, State2} = ejabberd_hooks:run_fold(s2s_receive_packet, LServer,
|
|
|
|
{Pkt, State1}, []),
|
|
|
|
case Pkt1 of
|
|
|
|
drop -> ok;
|
2017-02-16 09:00:26 +01:00
|
|
|
_ -> ejabberd_router:route(Pkt1)
|
2016-07-27 09:45:08 +02:00
|
|
|
end,
|
2017-01-09 15:02:17 +01:00
|
|
|
State2;
|
2016-12-28 07:47:11 +01:00
|
|
|
{error, Err} ->
|
|
|
|
send(State, Err)
|
2011-12-02 19:30:20 +01:00
|
|
|
end.
|
|
|
|
|
2016-12-28 07:47:11 +01:00
|
|
|
handle_cdata(Data, #{server_host := LServer} = State) ->
|
|
|
|
ejabberd_hooks:run_fold(s2s_in_handle_cdata, LServer, State, [Data]).
|
|
|
|
|
|
|
|
handle_recv(El, Pkt, #{server_host := LServer} = State) ->
|
|
|
|
State1 = set_idle_timeout(State),
|
|
|
|
ejabberd_hooks:run_fold(s2s_in_handle_recv, LServer, State1, [El, Pkt]).
|
|
|
|
|
|
|
|
handle_send(Pkt, Result, #{server_host := LServer} = State) ->
|
|
|
|
ejabberd_hooks:run_fold(s2s_in_handle_send, LServer,
|
|
|
|
State, [Pkt, Result]).
|
|
|
|
|
|
|
|
init([State, Opts]) ->
|
2017-05-08 13:34:35 +02:00
|
|
|
Shaper = proplists:get_value(shaper, Opts, none),
|
2017-01-09 15:02:17 +01:00
|
|
|
TLSOpts1 = lists:filter(
|
|
|
|
fun({certfile, _}) -> true;
|
|
|
|
({ciphers, _}) -> true;
|
|
|
|
({dhfile, _}) -> true;
|
|
|
|
({cafile, _}) -> true;
|
2017-04-30 18:01:47 +02:00
|
|
|
({protocol_options, _}) -> true;
|
2017-01-09 15:02:17 +01:00
|
|
|
(_) -> false
|
|
|
|
end, Opts),
|
2017-04-30 18:01:47 +02:00
|
|
|
TLSOpts2 = case proplists:get_bool(tls_compression, Opts) of
|
|
|
|
false -> [compression_none | TLSOpts1];
|
|
|
|
true -> TLSOpts1
|
2016-07-27 09:45:08 +02:00
|
|
|
end,
|
2017-04-30 18:01:47 +02:00
|
|
|
State1 = State#{tls_options => TLSOpts2,
|
2016-12-28 07:47:11 +01:00
|
|
|
auth_domains => sets:new(),
|
|
|
|
xmlns => ?NS_SERVER,
|
|
|
|
lang => ?MYLANG,
|
|
|
|
server => ?MYNAME,
|
|
|
|
lserver => ?MYNAME,
|
|
|
|
server_host => ?MYNAME,
|
|
|
|
established => false,
|
|
|
|
shaper => Shaper},
|
|
|
|
ejabberd_hooks:run_fold(s2s_in_init, {ok, State1}, [Opts]).
|
|
|
|
|
|
|
|
handle_call(Request, From, #{server_host := LServer} = State) ->
|
|
|
|
ejabberd_hooks:run_fold(s2s_in_handle_call, LServer, State, [Request, From]).
|
|
|
|
|
|
|
|
handle_cast({update_state, Fun}, State) ->
|
|
|
|
case Fun of
|
|
|
|
{M, F, A} -> erlang:apply(M, F, [State|A]);
|
|
|
|
_ when is_function(Fun) -> Fun(State)
|
|
|
|
end;
|
|
|
|
handle_cast(Msg, #{server_host := LServer} = State) ->
|
|
|
|
ejabberd_hooks:run_fold(s2s_in_handle_cast, LServer, State, [Msg]).
|
2002-12-07 21:27:26 +01:00
|
|
|
|
2016-12-28 07:47:11 +01:00
|
|
|
handle_info(Info, #{server_host := LServer} = State) ->
|
|
|
|
ejabberd_hooks:run_fold(s2s_in_handle_info, LServer, State, [Info]).
|
|
|
|
|
2017-03-07 16:46:02 +01:00
|
|
|
terminate(Reason, #{auth_domains := AuthDomains,
|
2017-12-26 16:55:57 +01:00
|
|
|
socket := Socket} = State) ->
|
2017-03-07 16:46:02 +01:00
|
|
|
case maps:get(stop_reason, State, undefined) of
|
2017-03-08 06:27:54 +01:00
|
|
|
{tls, _} = Err ->
|
2017-12-19 13:33:30 +01:00
|
|
|
?WARNING_MSG("(~s) Failed to secure inbound s2s connection: ~s",
|
2017-12-26 16:55:57 +01:00
|
|
|
[xmpp_socket:pp(Socket), xmpp_stream_in:format_error(Err)]);
|
2017-03-07 16:46:02 +01:00
|
|
|
_ ->
|
|
|
|
ok
|
|
|
|
end,
|
2011-12-02 19:30:20 +01:00
|
|
|
case Reason of
|
2013-03-14 10:33:02 +01:00
|
|
|
{process_limit, _} ->
|
2017-01-09 15:02:17 +01:00
|
|
|
sets:fold(
|
|
|
|
fun(Host, _) ->
|
|
|
|
ejabberd_s2s:external_host_overloaded(Host)
|
|
|
|
end, ok, AuthDomains);
|
|
|
|
_ ->
|
|
|
|
ok
|
2011-12-02 19:30:20 +01:00
|
|
|
end.
|
|
|
|
|
2016-12-28 07:47:11 +01:00
|
|
|
code_change(_OldVsn, State, _Extra) ->
|
|
|
|
{ok, State}.
|
2011-12-02 19:30:20 +01:00
|
|
|
|
2016-12-28 07:47:11 +01:00
|
|
|
%%%===================================================================
|
2002-12-06 21:59:19 +01:00
|
|
|
%%% Internal functions
|
2016-12-28 07:47:11 +01:00
|
|
|
%%%===================================================================
|
|
|
|
-spec check_from_to(jid(), jid(), state()) -> ok | {error, stream_error()}.
|
|
|
|
check_from_to(From, To, State) ->
|
|
|
|
case check_from(From, State) of
|
2017-05-24 17:16:16 +02:00
|
|
|
true ->
|
2016-12-28 07:47:11 +01:00
|
|
|
case check_to(To, State) of
|
2017-05-24 17:16:16 +02:00
|
|
|
true ->
|
2016-12-28 07:47:11 +01:00
|
|
|
ok;
|
2017-05-24 17:16:16 +02:00
|
|
|
false ->
|
2017-01-13 09:35:47 +01:00
|
|
|
{error, xmpp:serr_host_unknown()}
|
2017-05-24 17:16:16 +02:00
|
|
|
end;
|
2016-12-28 07:47:11 +01:00
|
|
|
false ->
|
|
|
|
{error, xmpp:serr_invalid_from()}
|
2016-07-27 09:45:08 +02:00
|
|
|
end.
|
|
|
|
|
2016-12-28 07:47:11 +01:00
|
|
|
-spec check_from(jid(), state()) -> boolean().
|
|
|
|
check_from(#jid{lserver = S1}, #{auth_domains := AuthDomains}) ->
|
|
|
|
sets:is_element(S1, AuthDomains).
|
|
|
|
|
|
|
|
-spec check_to(jid(), state()) -> boolean().
|
|
|
|
check_to(#jid{lserver = LServer}, _State) ->
|
|
|
|
ejabberd_router:is_my_route(LServer).
|
|
|
|
|
|
|
|
-spec set_idle_timeout(state()) -> state().
|
|
|
|
set_idle_timeout(#{server_host := LServer,
|
|
|
|
established := true} = State) ->
|
|
|
|
Timeout = ejabberd_s2s:get_idle_timeout(LServer),
|
|
|
|
xmpp_stream_in:set_timeout(State, Timeout);
|
|
|
|
set_idle_timeout(State) ->
|
|
|
|
State.
|
2015-06-01 14:38:27 +02:00
|
|
|
|
2017-12-26 16:55:57 +01:00
|
|
|
-spec change_shaper(state(), binary()) -> state().
|
2017-01-09 15:02:17 +01:00
|
|
|
change_shaper(#{shaper := ShaperName, server_host := ServerHost} = State,
|
|
|
|
RServer) ->
|
|
|
|
Shaper = acl:match_rule(ServerHost, ShaperName, jid:make(RServer)),
|
|
|
|
xmpp_stream_in:change_shaper(State, Shaper).
|
|
|
|
|
2017-05-08 11:59:28 +02:00
|
|
|
-spec listen_opt_type(shaper) -> fun((any()) -> any());
|
|
|
|
(certfile) -> fun((binary()) -> binary());
|
|
|
|
(ciphers) -> fun((binary()) -> binary());
|
|
|
|
(dhfile) -> fun((binary()) -> binary());
|
|
|
|
(cafile) -> fun((binary()) -> binary());
|
|
|
|
(protocol_options) -> fun(([binary()]) -> binary());
|
|
|
|
(tls_compression) -> fun((boolean()) -> boolean());
|
|
|
|
(tls) -> fun((boolean()) -> boolean());
|
|
|
|
(supervisor) -> fun((boolean()) -> boolean());
|
|
|
|
(max_stanza_type) -> fun((timeout()) -> timeout());
|
|
|
|
(max_fsm_queue) -> fun((pos_integer()) -> pos_integer());
|
|
|
|
(atom()) -> [atom()].
|
2017-04-30 18:01:47 +02:00
|
|
|
listen_opt_type(shaper) -> fun acl:shaper_rules_validator/1;
|
2017-11-03 06:32:34 +01:00
|
|
|
listen_opt_type(certfile = Opt) ->
|
2017-05-12 15:27:09 +02:00
|
|
|
fun(S) ->
|
2017-11-03 06:32:34 +01:00
|
|
|
?WARNING_MSG("Listening option '~s' for ~s is deprecated, use "
|
|
|
|
"'certfiles' global option instead", [Opt, ?MODULE]),
|
2017-05-12 15:27:09 +02:00
|
|
|
ejabberd_pkix:add_certfile(S),
|
|
|
|
iolist_to_binary(S)
|
|
|
|
end;
|
2017-04-30 18:01:47 +02:00
|
|
|
listen_opt_type(ciphers) -> ejabberd_s2s:opt_type(s2s_ciphers);
|
|
|
|
listen_opt_type(dhfile) -> ejabberd_s2s:opt_type(s2s_dhfile);
|
|
|
|
listen_opt_type(cafile) -> ejabberd_s2s:opt_type(s2s_cafile);
|
|
|
|
listen_opt_type(protocol_options) -> ejabberd_s2s:opt_type(s2s_protocol_options);
|
|
|
|
listen_opt_type(tls_compression) -> ejabberd_s2s:opt_type(s2s_tls_compression);
|
|
|
|
listen_opt_type(tls) -> fun(B) when is_boolean(B) -> B end;
|
|
|
|
listen_opt_type(supervisor) -> fun(B) when is_boolean(B) -> B end;
|
|
|
|
listen_opt_type(max_stanza_size) ->
|
2017-05-08 11:59:28 +02:00
|
|
|
fun(I) when is_integer(I), I>0 -> I;
|
2017-04-30 18:01:47 +02:00
|
|
|
(unlimited) -> infinity;
|
|
|
|
(infinity) -> infinity
|
|
|
|
end;
|
|
|
|
listen_opt_type(max_fsm_queue) ->
|
|
|
|
fun(I) when is_integer(I), I>0 -> I end;
|
|
|
|
listen_opt_type(_) ->
|
|
|
|
[shaper, certfile, ciphers, dhfile, cafile, protocol_options,
|
|
|
|
tls_compression, tls, max_fsm_queue].
|