|
1
|
|
|
<?php |
|
2
|
|
|
/** |
|
3
|
|
|
* Copyright 2015 François Kooman <[email protected]>. |
|
4
|
|
|
* |
|
5
|
|
|
* Licensed under the Apache License, Version 2.0 (the "License"); |
|
6
|
|
|
* you may not use this file except in compliance with the License. |
|
7
|
|
|
* You may obtain a copy of the License at |
|
8
|
|
|
* |
|
9
|
|
|
* http://www.apache.org/licenses/LICENSE-2.0 |
|
10
|
|
|
* |
|
11
|
|
|
* Unless required by applicable law or agreed to in writing, software |
|
12
|
|
|
* distributed under the License is distributed on an "AS IS" BASIS, |
|
13
|
|
|
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
|
14
|
|
|
* See the License for the specific language governing permissions and |
|
15
|
|
|
* limitations under the License. |
|
16
|
|
|
*/ |
|
17
|
|
|
namespace fkooman\VPN\Server\OpenVpn; |
|
18
|
|
|
|
|
19
|
|
|
/** |
|
20
|
|
|
* Parses the response from the OpenVPN `status 2` command. |
|
21
|
|
|
* |
|
22
|
|
|
* NOTE: The OpenVPN instance MUST NOT have --duplicate-cn in the configuration |
|
23
|
|
|
* as we do not deal with multiple connections with the same CN, due to bugs in |
|
24
|
|
|
* udp6 status report where the client port is not mentioned in the |
|
25
|
|
|
* 'Real Address' column |
|
26
|
|
|
*/ |
|
27
|
|
|
class StatusParser |
|
28
|
|
|
{ |
|
29
|
|
|
public static function parse(array $statusData) |
|
30
|
|
|
{ |
|
31
|
|
|
#TITLE,OpenVPN 2.3.9 x86_64-redhat-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [PKCS11] [MH] [IPv6] built on Dec 16 2015 |
|
|
|
|
|
|
32
|
|
|
#TIME,Wed Dec 23 12:52:08 2015,1450875128 |
|
|
|
|
|
|
33
|
|
|
#HEADER,CLIENT_LIST,Common Name,Real Address,Virtual Address,Bytes Received,Bytes Sent,Connected Since,Connected Since (time_t),Username |
|
34
|
|
|
#CLIENT_LIST,fkooman_ziptest,::ffff:91.64.87.183,10.42.42.2,127707,127903,Wed Dec 23 12:49:15 2015,1450874955,UNDEF |
|
|
|
|
|
|
35
|
|
|
#CLIENT_LIST,sebas_tuxed_SGS6,::ffff:83.83.194.107,10.42.42.3,127229,180419,Wed Dec 23 12:05:28 2015,1450872328,UNDEF |
|
|
|
|
|
|
36
|
|
|
#HEADER,ROUTING_TABLE,Virtual Address,Common Name,Real Address,Last Ref,Last Ref (time_t) |
|
37
|
|
|
#ROUTING_TABLE,10.42.42.2,fkooman_ziptest,::ffff:91.64.87.183,Wed Dec 23 12:52:07 2015,1450875127 |
|
|
|
|
|
|
38
|
|
|
#ROUTING_TABLE,fd00:4242:4242::1000,fkooman_ziptest,::ffff:91.64.87.183,Wed Dec 23 12:50:42 2015,1450875042 |
|
|
|
|
|
|
39
|
|
|
#ROUTING_TABLE,fd00:4242:4242::1001,sebas_tuxed_SGS6,::ffff:83.83.194.107,Wed Dec 23 12:28:53 2015,1450873733 |
|
|
|
|
|
|
40
|
|
|
#ROUTING_TABLE,10.42.42.3,sebas_tuxed_SGS6,::ffff:83.83.194.107,Wed Dec 23 12:50:46 2015,1450875046 |
|
|
|
|
|
|
41
|
|
|
#GLOBAL_STATS,Max bcast/mcast queue length,0 |
|
42
|
|
|
#END |
|
43
|
|
|
|
|
44
|
|
|
// for now, we log all statusData to get a good corpus for writing |
|
45
|
|
|
// tests |
|
46
|
|
|
|
|
47
|
|
|
//error_log(json_encode($statusData)); |
|
|
|
|
|
|
48
|
|
|
|
|
49
|
|
|
$clientListStart = 0; |
|
50
|
|
|
$routingTableStart = 0; |
|
51
|
|
|
$globalStatsStart = 0; |
|
52
|
|
|
|
|
53
|
|
|
for ($i = 0; $i < sizeof($statusData); ++$i) { |
|
|
|
|
|
|
54
|
|
|
if (0 === strpos($statusData[$i], 'HEADER,CLIENT_LIST')) { |
|
55
|
|
|
$clientListStart = $i; |
|
56
|
|
|
} |
|
57
|
|
|
if (0 === strpos($statusData[$i], 'HEADER,ROUTING_TABLE')) { |
|
58
|
|
|
$routingTableStart = $i; |
|
59
|
|
|
} |
|
60
|
|
|
if (0 === strpos($statusData[$i], 'GLOBAL_STATS')) { |
|
61
|
|
|
$globalStatsStart = $i; |
|
62
|
|
|
} |
|
63
|
|
|
} |
|
64
|
|
|
|
|
65
|
|
|
$parsedClientList = self::parseClientList(array_slice($statusData, $clientListStart, $routingTableStart - $clientListStart)); |
|
66
|
|
|
$parsedRoutingTable = self::parseRoutingTable(array_slice($statusData, $routingTableStart, $globalStatsStart - $routingTableStart)); |
|
67
|
|
|
|
|
68
|
|
|
// merge routing table in client list |
|
69
|
|
|
foreach ($parsedClientList as $key => $value) { |
|
70
|
|
|
if (!array_key_exists($key, $parsedRoutingTable)) { |
|
71
|
|
|
$parsedClientList[$key]['virtual_address'] = array(); |
|
72
|
|
|
} else { |
|
73
|
|
|
$parsedClientList[$key]['virtual_address'] = $parsedRoutingTable[$key]; |
|
74
|
|
|
} |
|
75
|
|
|
} |
|
76
|
|
|
|
|
77
|
|
|
return array_values($parsedClientList); |
|
78
|
|
|
} |
|
79
|
|
|
|
|
80
|
|
|
private static function parseClientList(array $clientList) |
|
81
|
|
|
{ |
|
82
|
|
|
#HEADER,CLIENT_LIST,Common Name,Real Address,Virtual Address,Bytes Received,Bytes Sent,Connected Since,Connected Since (time_t),Username |
|
83
|
|
|
#CLIENT_LIST,fkooman_ziptest,::ffff:91.64.87.183,10.42.42.2,127707,127903,Wed Dec 23 12:49:15 2015,1450874955,UNDEF |
|
|
|
|
|
|
84
|
|
|
#CLIENT_LIST,sebas_tuxed_SGS6,::ffff:83.83.194.107,10.42.42.3,127229,180419,Wed Dec 23 12:05:28 2015,1450872328,UNDEF |
|
|
|
|
|
|
85
|
|
|
$parsedClientList = array(); |
|
86
|
|
|
for ($i = 1; $i < sizeof($clientList); ++$i) { |
|
|
|
|
|
|
87
|
|
|
$parsedClient = str_getcsv($clientList[$i]); |
|
88
|
|
|
$commonName = $parsedClient[1]; |
|
89
|
|
|
if (array_key_exists($commonName, $parsedClientList)) { |
|
90
|
|
|
error_log('duplicate common name, possibly --duplicate-cn enabled in server configuration'); |
|
91
|
|
|
} |
|
92
|
|
|
$parsedClientList[$commonName] = array( |
|
93
|
|
|
'common_name' => $commonName, |
|
94
|
|
|
'real_address' => $parsedClient[2], |
|
95
|
|
|
//'virtual_address' => $parsedClient[3], |
|
|
|
|
|
|
96
|
|
|
'bytes_in' => intval($parsedClient[4]), |
|
97
|
|
|
'bytes_out' => intval($parsedClient[5]), |
|
98
|
|
|
'connected_since' => intval($parsedClient[7]), |
|
99
|
|
|
); |
|
100
|
|
|
} |
|
101
|
|
|
|
|
102
|
|
|
return $parsedClientList; |
|
103
|
|
|
} |
|
104
|
|
|
|
|
105
|
|
|
private static function parseRoutingTable(array $routingTable) |
|
106
|
|
|
{ |
|
107
|
|
|
#HEADER,ROUTING_TABLE,Virtual Address,Common Name,Real Address,Last Ref,Last Ref (time_t) |
|
108
|
|
|
#ROUTING_TABLE,10.42.42.2,fkooman_ziptest,::ffff:91.64.87.183,Wed Dec 23 12:52:07 2015,1450875127 |
|
|
|
|
|
|
109
|
|
|
#ROUTING_TABLE,fd00:4242:4242::1000,fkooman_ziptest,::ffff:91.64.87.183,Wed Dec 23 12:50:42 2015,1450875042 |
|
|
|
|
|
|
110
|
|
|
#ROUTING_TABLE,fd00:4242:4242::1001,sebas_tuxed_SGS6,::ffff:83.83.194.107,Wed Dec 23 12:28:53 2015,1450873733 |
|
|
|
|
|
|
111
|
|
|
#ROUTING_TABLE,10.42.42.3,sebas_tuxed_SGS6,::ffff:83.83.194.107,Wed Dec 23 12:50:46 2015,1450875046 |
|
|
|
|
|
|
112
|
|
|
$parsedRoutingTable = array(); |
|
113
|
|
|
for ($i = 1; $i < sizeof($routingTable); ++$i) { |
|
|
|
|
|
|
114
|
|
|
$parsedRoute = str_getcsv($routingTable[$i]); |
|
115
|
|
|
$commonName = $parsedRoute[2]; |
|
116
|
|
|
if (!array_key_exists($commonName, $parsedRoutingTable)) { |
|
117
|
|
|
$parsedRoutingTable[$commonName] = array(); |
|
118
|
|
|
} |
|
119
|
|
|
$parsedRoutingTable[$commonName][] = $parsedRoute[1]; |
|
120
|
|
|
} |
|
121
|
|
|
|
|
122
|
|
|
return $parsedRoutingTable; |
|
123
|
|
|
} |
|
124
|
|
|
} |
|
125
|
|
|
|
eduVPN /
vpn-server-api
Loading history...
Sometimes obsolete code just ends up commented out instead of removed. In this case it is better to remove the code once you have checked you do not need it.
The code might also have been commented out for debugging purposes. In this case it is vital that someone uncomments it again or your project may behave in very unexpected ways in production.
This check looks for comments that seem to be mostly valid code and reports them.