|
|
|
Libdexter Reference Manual | |
|---|---|---|---|---|
| Top | Description | ||||
#include <dexter.h> #define DEXTER_SERVER_ERROR enum DexterServerError; DexterServer; enum DexterServerState; enum DexterServerTLSSupportFlag; enum DexterServerTLSClientCertFlag; struct DexterServerTLSSettings; void (*DexterServerTLSStartCallback) (DexterServer *server,const struct sockaddr *client_sa,socklen_t client_salen,DexterServerTLSSettings *tls_settings); enum DexterServerSettingFlags; struct DexterServerSettings; DexterServer * dexter_server_new (const DexterServerSettings *settings); gboolean dexter_server_start (DexterServer *server,GError **error); gboolean dexter_server_stop (DexterServer *server,GError **error); void dexter_server_free (DexterServer *server); gint dexter_server_get_state (DexterServer *server);
Servers are Libdexter objects that allow applications to host Libdexter services on the network. You can write a dedicated server application with just a few lines of code, or you can augment your application to allow it to host Libdexter operations as add-on functionality. The configuration file determines which plugins are loaded and which services are authorized for hosting.
After creating the server with dexter_server_new() and starting it with
dexter_server_start(), a listening thread will begin accepting incoming
connections, initiated from other hosts using dexter_channel_open().
The listening thread will continue accepting connections until dexter_server_stop()
is called (or the server process exits).
Several settings in the configuration file control the default behavior of Libdexter server objects, including default host name/ip, listening service/port, socket options, TLS settings, etc.
Applications should stop any running servers when done with dexter_server_stop().
You should then free the server objects as a last step with dexter_server_free().
#define DEXTER_SERVER_ERROR dexter_server_error_quark()
The error domain of the libdexter server subsystem.
typedef enum {
DEXTER_SERVER_ERROR_EACCES,
DEXTER_SERVER_ERROR_EADDRINUSE,
DEXTER_SERVER_ERROR_EAGAIN,
DEXTER_SERVER_ERROR_STATE,
DEXTER_SERVER_ERROR_TLS_NOT_ENABLED,
DEXTER_SERVER_ERROR_FAILED
} DexterServerError;
Error codes for dexter_server operations.
| address is protected, and the user is not the superuser. | |
| local address in use. | |
| temporary name server failure. | |
| operation not allowed in current server state. | |
| TLS not enabled on this installation. | |
| other failure. |
typedef enum {
DEXTER_SERVER_STATE_STARTED,
DEXTER_SERVER_STATE_STOPPED,
} DexterServerState;
All possible server states.
typedef enum {
DEXTER_SERVER_TLS_SUPPORT_NONE = 0,
DEXTER_SERVER_TLS_SUPPORT_AVAILABLE = 1,
DEXTER_SERVER_TLS_SUPPORT_REQUIRED = 2,
} DexterServerTLSSupportFlag;
Flag to set the level of TLS support offered by the server.
For DEXTER_SERVER_TLS_SUPPORT_AVAILABLE, the client may issue dexter_channel_starttls(),
but is not required to do so.
For DEXTER_SERVER_TLS_SUPPORT_REQUIRED, the client must issue dexter_channel_starttls()
after dexter_channel_greet(). The server will respond negatively to any channel operation,
except dexter_channel_part(), until TLS is started by the client.
| server does not support TLS. | |
| server supports TLS. | |
| server requires TLS. |
Since 0.2.0
typedef enum {
DEXTER_SERVER_TLS_CLIENT_CERT_NONE = 0,
DEXTER_SERVER_TLS_CLIENT_CERT_REQUESTED = 1,
DEXTER_SERVER_TLS_CLIENT_CERT_REQUIRED = 2
} DexterServerTLSClientCertFlag;
Flag to set server requirements for client X.509 certificates.
| server will not request client certificate. | |
| server requests client certificate. | |
| server requires client certificate. |
Since 0.2.0
struct DexterServerTLSSettings {
gchar *cert_file; /* ServerTLSCertFile */
gchar *key_file; /* ServerTLSKeyFile */
gchar *trust_file; /* ServerTLSTrustFile */
gchar *crl_file; /* ServerTLSCrlFile */
DexterServerTLSClientCertFlag client_cert_flag; /* ServerTLSClientCertFlag */
gboolean verify_hostname; /* ServerTLSVerifyHostname */
};
TLS settings that the server will use when starting TLS for a client. They are copied
from the DexterServerSettings structure provided to dexter_server_new().
When this structure is seen within the context of a DexterServerTLSStartCallback,
you may change the elements as needed. For any non-NULL gchar elements that you want
to change, you must first g_free() the element and then allocate a replacement string
using a GLib string allocation api, e.g. g_strdup_printf(). The Library will free
everything for you when the callback exits.
gchar * |
full path to X.509 certificate file in PEM format. |
gchar * |
full path to X.509 certificate private key file in PEM format. |
gchar * |
full path to X.509 trust file in PEM format. |
gchar * |
full path to X.509 certificate revocation list file in PEM format. |
DexterServerTLSClientCertFlag |
server requirements for client certificates. |
gboolean |
verify that the hostname of client matches its X.509 certificate. |
Since 0.2.0
void (*DexterServerTLSStartCallback) (DexterServer *server,const struct sockaddr *client_sa,socklen_t client_salen,DexterServerTLSSettings *tls_settings);
Signature of callback function used to adjust TLS settings, as needed for this client address, as TLS starts.
If specificed in DexterServerTLSSettings, this callback allows you to inspect the client socket address and adjust your server TLS settings as needed for that client connection. In this manner you can decide which certificate, trust and revocation files to use based on the client, and whether or not that particular client must present X.509 certificates.
|
DexterServer on which TLS is starting. |
|
socket address of client. |
|
length of client socket address. |
|
DexterServerTLSSettings of TLS settings. |
Since 0.2.0
typedef enum {
DEXTER_SERVER_SETTING_HOST = 1 << 0,
DEXTER_SERVER_SETTING_SERVICE = 1 << 1,
DEXTER_SERVER_SETTING_SOCKET_OPTIONS = 1 << 2,
DEXTER_SERVER_SETTING_MAX_BACKLOG = 1 << 3,
DEXTER_SERVER_SETTING_MAX_CLIENTS = 1 << 4,
DEXTER_SERVER_SETTING_RECV_BUFFER_SIZE = 1 << 5,
DEXTER_SERVER_SETTING_TLS_SUPPORT_FLAG = 1 << 6,
DEXTER_SERVER_SETTING_TLS_CLIENT_CERT_FLAG = 1 << 7,
DEXTER_SERVER_SETTING_TLS_START_CALLBACK = 1 << 8,
DEXTER_SERVER_SETTING_TLS_CERT_FILE = 1 << 9,
DEXTER_SERVER_SETTING_TLS_KEY_FILE = 1 << 10,
DEXTER_SERVER_SETTING_TLS_TRUST_FILE = 1 << 11,
DEXTER_SERVER_SETTING_TLS_CRL_FILE = 1 << 12,
DEXTER_SERVER_SETTING_TLS_VERIFY_HOSTNAME = 1 << 13
} DexterServerSettingFlags;
Flags to indicate which elements of DexterServerSettings have data on them.
Since 0.2.0
| flag for host element of DexterServerSettings. | |
| flag for service element of DexterServerSettings. | |
| flag for socket_options element of DexterServerSettings. | |
| flag for max_backlog element of DexterServerSettings. | |
| flag for max_clients element of DexterServerSettings. | |
| flag for recv_buffer_size element of DexterServerSettings. | |
| flag for tls_support_flag element of DexterServerSettings. | |
| flag for tls_client_cert_flag element of DexterServerSettings. | |
| flag for tls_start_callback element of DexterServerSettings. | |
| flag for tls_cert_file element of DexterServerSettings. | |
| flag for tls_key_file element of DexterServerSettings. | |
| flag for tls_trust_file element of DexterServerSettings. | |
| flag for tls_cert_file element of DexterServerSettings. | |
| flag for tls_verify_hostname element of DexterServerSettings. |
struct DexterServerSettings {
DexterServerSettingFlags flags;
gchar *host; /* ServerHost */
gchar *service; /* ServerService */
gchar *socket_options; /* ServerSocketOptions */
gint max_backlog; /* ServerMaxBacklog */
gint max_clients; /* ServerMaxClients */
gint recv_buffer_size; /* ServerRecvBufferSize */
DexterServerTLSSupportFlag tls_support_flag; /* ServerTLSSupportFlag */
DexterServerTLSClientCertFlag tls_client_cert_flag; /* ServerTLSClientCertFlag */
DexterServerTLSStartCallback tls_start_callback; /* -- */
gchar *tls_cert_file; /* ServerTLSCertFile */
gchar *tls_key_file; /* ServerTLSKeyFile */
gchar *tls_trust_file; /* ServerTLSTrustFile */
gchar *tls_crl_file; /* ServerTLSCrlFile */
gboolean tls_verify_hostname; /* ServerTLSVerifyHostname */
};
Server settings.
The flags element indicates which elements have user-supplied data.
Elements for which no flag is set, i.e. have no user-supplied data, will be set to a default: either from the configuration file, if available, or an internal default will be used.
DexterServerSettingFlags |
Bitwise OR of flags from DexterServerSettingFlags. |
gchar * |
host name or host ip. |
gchar * |
service name or port number. |
gchar * |
tab or space-delimited list of socket options. |
gint |
maximum number of data messages in per-channel backlog queue. |
gint |
maximum number of simulateous clients. |
gint |
size of service socket receive buffer. |
DexterServerTLSSupportFlag |
indicates server TLS support. |
DexterServerTLSClientCertFlag |
indicates server requirement for client certificates. |
DexterServerTLSStartCallback |
callback to override TLS settings as TLS starts. |
gchar * |
full path to X.509 certificate file in PEM format. |
gchar * |
full path to X.509 certificate private key file in PEM format. |
gchar * |
full path to X.509 trust file in PEM format. |
gchar * |
full path to X.509 certificate revocation list file in PEM format. |
gboolean |
whether or not server requires that the client's DNS hostname match its X.509 certificate. |
Since 0.2.0
DexterServer * dexter_server_new (const DexterServerSettings *settings);
Creates a server using the supplied settings.
NULL may be indicated for settings, in which case the configuration file is used for all
server settings. Internal defaults are used for items not found in the configuration file.
No network calls are performed until the server is started with dexter_server_start().
The server must be freed when done with dexter_server_free().
|
address of DexterServerSettings or NULL.
If NULL, the configuration file is used for all server settings. |
Returns : |
newly allocated DexterServer if successful. NULL otherwise. |
gboolean dexter_server_start (DexterServer *server,GError **error);
Starts the server created with dexter_server_new().
The server is threaded, so control will pass immediately to the next statement in the
program. The server will accept connections immediately and continue to accept connections
until dexter_server_stop() is called.
|
DexterServer to start. |
|
return location for optional GError. |
Returns : |
gboolean indicating success or failure. |
gboolean dexter_server_stop (DexterServer *server,GError **error);
Stops a DexterServer previously opened with dexter_channel_open().
No new connections will be accepted and existing connections are shutdown.
|
DexterServer to stop. |
|
return location for optional GError. |
Returns : |
gboolean indicating success or failure. |
void dexter_server_free (DexterServer *server);
Frees a DexterServer created with dexter_server_new().
If the server is started, it will be stopped for you, although it is better form to use dexter_server_stop()
before freeing the server. Future versions may be stricter on this point.
|
DexterServer to free. |
gint dexter_server_get_state (DexterServer *server);
Returns the current state of the server.
|
a DexterServer. |
Returns : |
gint from DexterServerState indicating current state of the server. |