def ksr_route_natdetect(self, msg): KSR.force_rport(); if KSR.nathelper.nat_uac_test(19)>0 : if KSR.pv.get("$rm")=="REGISTER" : KSR.nathelper.fix_nated_register(); elif KSR.siputils.is_first_hop()>0 : KSR.nathelper.set_contact_alias(); KSR.setflag(FLT_NATS); return 1;
def ksr_route_natdetect(self, msg): KSR.force_rport() if KSR.nathelper.nat_uac_test(19) > 0: if KSR.is_REGISTER(): KSR.nathelper.fix_nated_register() elif KSR.siputils.is_first_hop() > 0: KSR.nathelper.set_contact_alias() KSR.setflag(FLT_NATS) return 1
def ksr_route_natdetect(self): KSR.force_rport() if KSR.nathelper.nat_uac_test(19) > 0: KSR.xlog.xdbg("Client behind NAT.") if KSR.is_REGISTER(): KSR.nathelper.fix_nated_register() elif KSR.siputils.is_first_hop() > 0: KSR.nathelper.set_contact_alias() KSR.setflag(self.FLAGS['FLT_NATS']) else: KSR.xlog.xdbg("NAT not detected.") return 1
def ksr_route_location(self, msg): rc = KSR.registrar.lookup("location"); if rc<0 : KSR.tm.t_newtran(); if rc==-1 or rc==-3 : KSR.sl.send_reply(404, "Not Found"); return -255; elif rc==-2 : KSR.sl.send_reply(405, "Method Not Allowed"); return -255; # when routing via usrloc, log the missed calls also if KSR.pv.get("$rm")=="INVITE" : KSR.setflag(FLT_ACCMISSED); self.ksr_route_relay(msg); return -255;
def ksr_route_location(self, msg): rc = KSR.registrar.lookup("location") if rc < 0: KSR.tm.t_newtran() if rc == -1 or rc == -3: KSR.sl.send_reply(404, "Not Found") return -255 elif rc == -2: KSR.sl.send_reply(405, "Method Not Allowed") return -255 # when routing via usrloc, log the missed calls also if KSR.is_INVITE(): KSR.setflag(FLT_ACCMISSED) self.ksr_route_relay(msg) return -255
def ksr_route_withindlg(self, msg): if KSR.siputils.has_totag()<0 : return 1; # sequential request withing a dialog should # take the path determined by record-routing if KSR.rr.loose_route()>0 : if self.ksr_route_dlguri(msg)==-255 : return -255; if KSR.pv.get("$rm")=="BYE" : # do accounting ... KSR.setflag(FLT_ACC); # ... even if the transaction fails KSR.setflag(FLT_ACCFAILED); elif KSR.pv.get("$rm")=="ACK" : # ACK is forwarded statelessly if self.ksr_route_natmanage(msg)==-255 : return -255; elif KSR.pv.get("$rm")=="NOTIFY" : # Add Record-Route for in-dialog NOTIFY as per RFC 6665. KSR.rr.record_route(); self.ksr_route_relay(msg); return -255; if KSR.pv.get("$rm")=="ACK" : if KSR.tm.t_check_trans() >0 : # no loose-route, but stateful ACK; # must be an ACK after a 487 # or e.g. 404 from upstream server self.ksr_route_relay(msg); return -255; else: # ACK without matching transaction ... ignore and discard return -255; KSR.sl.sl_send_reply(404, "Not here"); return -255;
def ksr_route_withindlg(self, msg): if KSR.siputils.has_totag()<0 : return 1; # sequential request withing a dialog should # take the path determined by record-routing if KSR.rr.loose_route()>0 : if self.ksr_route_dlguri(msg)==-255 : return -255; if KSR.pv.get("$rm")=="BYE" : # do accounting ... KSR.setflag(FLT_ACC); # ... even if the transaction fails KSR.setflag(FLT_ACCFAILED); elif KSR.pv.get("$rm")=="ACK" : # ACK is forwarded statelessy if self.ksr_route_natmanage(msg)==-255 : return -255; elif KSR.pv.get("$rm")=="NOTIFY" : # Add Record-Route for in-dialog NOTIFY as per RFC 6665. KSR.rr.record_route(); self.ksr_route_relay(msg); return -255; if KSR.pv.get("$rm")=="ACK" : if KSR.tm.t_check_trans() >0 : # no loose-route, but stateful ACK; # must be an ACK after a 487 # or e.g. 404 from upstream server self.ksr_route_relay(msg); return -255; else: # ACK without matching transaction ... ignore and discard return -255; KSR.sl.sl_send_reply(404, "Not here"); return -255;
def ksr_request_route(self, msg): # KSR.info("===== request - from kamailio python script\n"); # KSR.info("===== method [%s] r-uri [%s]\n" % (KSR.pv.get("$rm"),KSR.pv.get("$ru"))); # per request initial checks if self.ksr_route_reqinit(msg)==-255 : return 1; # NAT detection if self.ksr_route_natdetect(msg)==-255 : return 1; # CANCEL processing if KSR.pv.get("$rm") == "CANCEL" : if KSR.tm.t_check_trans()>0 : self.ksr_route_relay(msg); return 1; # handle requests within SIP dialogs if self.ksr_route_withindlg(msg)==-255 : return 1; # -- only initial requests (no To tag) # handle retransmissions if KSR.tmx.t_precheck_trans()>0 : KSR.tm.t_check_trans(); return 1; if KSR.tm.t_check_trans()==0 : return 1; # authentication if self.ksr_route_auth(msg)==-255 : return 1 # record routing for dialog forming requests (in case they are routed) # - remove preloaded route headers KSR.hdr.remove("Route"); if "INVITE|SUBSCRIBE".find(KSR.pv.get("$rm"))!=-1 : KSR.rr.record_route(); # account only INVITEs if KSR.pv.get("$rm")=="INVITE" : KSR.setflag(FLT_ACC); # do accounting # dispatch requests to foreign domains if self.ksr_route_sipout(msg)==-255 : return 1; # # requests for my local domains # handle registrations if self.ksr_route_registrar(msg)==-255 : return 1; if KSR.pv.is_null("$rU") : # request with no Username in RURI KSR.sl.sl_send_reply(484,"Address Incomplete"); return 1; # user location service self.ksr_route_location(msg); return 1;
def ksr_request_route(self, msg): # KSR.info("===== request - from kamailio python script\n"); # KSR.info("===== method [%s] r-uri [%s]\n" % (KSR.pv.get("$rm"),KSR.pv.get("$ru"))); # per request initial checks if self.ksr_route_reqinit(msg)==-255 : return 1; # NAT detection if self.ksr_route_natdetect(msg)==-255 : return 1; # CANCEL processing if KSR.pv.get("$rm") == "CANCEL" : if KSR.tm.t_check_trans()>0 : self.ksr_route_relay(); return 1; # handle requests within SIP dialogs if self.ksr_route_withindlg(msg)==-255 : return 1; # -- only initial requests (no To tag) # handle retransmissions if KSR.tmx.t_precheck_trans()>0 : KSR.tm.t_check_trans(); return 1; if KSR.tm.t_check_trans()==0 : return 1; # authentication if self.ksr_route_auth(msg)==-255 : return 1 # record routing for dialog forming requests (in case they are routed) # - remove preloaded route headers KSR.hdr.remove("Route"); if "INVITE|SUBSCRIBE".find(KSR.pv.get("$rm"))!=-1 : KSR.rr.record_route(); # account only INVITEs if KSR.pv.get("$rm")=="INVITE" : KSR.setflag(FLT_ACC); # do accounting # dispatch requests to foreign domains if self.ksr_route_sipout(msg)==-255 : return 1; # # requests for my local domains # handle registrations if self.ksr_route_registrar(msg)==-255 : return 1; if KSR.pv.is_null("$rU") : # request with no Username in RURI KSR.sl.sl_send_reply(484,"Address Incomplete"); return 1; # user location service self.ksr_route_location(msg); return 1;
def ksr_route_async_auth(self, msg): furi = KSR.pv.getw("$fu") ruri = KSR.pv.getw("$ru") if KSR.is_INVITE(): KSR.xlog.xnotice("Do auth procedure for {} from {}:{}".format( ruri, furi, KSR.pv.getw("$si"))) if KSR.auth_db.is_subscriber(furi, "subscriber", 2) > 0 and not KSR.isflagset( self.FLAGS['FLT_SKIP_AUTH']): if not KSR.is_REGISTER(): KSR.xlog.xinfo("Request from local subscriber") KSR.setflag(self.FLAGS['FLT_FROM_SUBSCRIBER']) if KSR.auth_db.is_subscriber(ruri, "subscriber", 2) > 0: if not KSR.is_REGISTER(): KSR.xlog.xinfo("Request to local subscriber") KSR.setflag(self.FLAGS['FLT_TO_SUBSCRIBER']) if KSR.isflagset(self.FLAGS['FLT_FROM_SUBSCRIBER']): if not KSR.isflagset(self.FLAGS['FLT_SKIP_AUTH']): res = KSR.auth_db.auth_check(KSR.pv.getw("$fd"), "subscriber", 1) if res < 0: if res == -2: # -2 Wrong passworg KSR.xlog.xnotice("Wrong password. From:$fU Auth user:$au") KSR.sl.sl_send_reply(403, "You're not welcome here") if KSR.is_REGISTER(): self.send_registration_info_to_redis( 'False', time.time()) else: KSR.auth.auth_challenge(KSR.pv.getw("$fd"), 0) return -255 else: if KSR.is_REGISTER(): self.send_registration_info_to_redis('True', time.time()) # user authenticated - remove auth header # if not KSR.is_method("REGISTER,PUBLISH") : KSR.auth.consume_credentials() elif not KSR.isflagset(self.FLAGS['FLT_SKIP_AUTH']): # Отпинываем нелокальных абонентов KSR.sl.send_reply(406, "Not acceptable") return -255 if not KSR.isflagset(self.FLAGS['FLT_SKIP_AUTH']): # if caller is not local subscriber, then check if it calls # a local destination, otherwise deny, not an open relay here if (not KSR.is_myself(furi) and (not KSR.is_myself(ruri))): KSR.sl.sl_send_reply(403, "Not relaying") return -255 # authentication not enabled - do not relay at all to foreign networks if not KSR.is_myself(ruri): KSR.sl.sl_send_reply(403, "Not relaying") return -255 # Jump from async route, based on processing SIP method if self.GLOBALS['WITH_ASYNC_FRAMEWORK']: KSR.asynk.task_route('ksr_route_async_' + KSR.pv.getw("$rm")) else: # lambda will generate 500 error if something went wrong getattr(self, 'ksr_route_async_' + KSR.pv.getw("$rm"), lambda: -255)(msg) return -255
def ksr_request_route(self, msg): # per request initial checks if self.ksr_route_reqinit() == -255: return 1 # NAT detection if self.ksr_route_natdetect() == -255: return 1 # CANCEL processing if KSR.is_CANCEL(): self.manage_call_status(KSR.pv.getw("$fU"), 'del') KSR.xlog.xinfo("CANCELing request from $fU:$si") if KSR.tm.t_check_trans() > 0: self.ksr_route_relay() return 1 if KSR.is_BYE(): self.manage_call_status(KSR.pv.getw("$fU"), 'del') # handle requests within SIP dialogs if self.ksr_route_withindlg() == -255: return 1 # handle retransmissions if (not KSR.is_ACK()) and (KSR.tmx.t_precheck_trans() > 0): KSR.tm.t_check_trans() return 1 if KSR.tm.t_check_trans() == 0: return 1 ### only initial requests (no To tag) # record routing for dialog forming requests (in case they are routed) # - remove preloaded route headers KSR.hdr.remove("Route") #if KSR.is_method_in("IS") : # KSR.rr.record_route() if KSR.is_INVITE() and KSR.pv.is_null("$rU"): KSR.sl.sl_send_reply(484, "Address Incomplete") return 1 if KSR.is_method_in("IR"): #r = redis.StrictRedis(host='127.0.0.1', port=6379, db=10, password='******') r = redis.StrictRedis(host='127.0.0.1', port=6379, db=10, decode_responses=True) if r.get("{}:{}".format(KSR.pv.getw("$fU"), KSR.pv.getw("$rU"))) or r.get(KSR.pv.getw("$rU")) or r.get(KSR.pv.getw("$tU")): KSR.sl.sl_send_reply(503, "There is no money.") return -255 if KSR.is_INVITE(): if (KSR.dispatcher.ds_is_from_list(self.DSIDS['MEDIASERVERS']) > 0 or KSR.dispatcher.ds_is_from_list(self.DSIDS['CALLERS']) > 0): KSR.setflag(self.FLAGS['FLT_FROM_ASTERISK']) KSR.setflag(self.FLAGS['FLT_SKIP_AUTH']) if (KSR.dispatcher.ds_is_from_list(self.DSIDS['GW']) > 0): KSR.setflag(self.FLAGS['FLT_FROM_GW']) KSR.setflag(self.FLAGS['FLT_SKIP_AUTH']) if self.GLOBALS['WITH_ASYNC_FRAMEWORK']: KSR.asynk.task_route("ksr_route_async_auth") else: if self.ksr_route_async_auth(msg) == -255: return 1 else: KSR.xlog.xerr("Запрос $ru от $fu :: $si дошел до конца request_route и не был обработан") KSR.sl.sl_send_reply("404", "Out of order") return 1