/* Copyright (c) Citrix Systems, Inc. * All rights reserved. * * Redistribution and use in source and binary forms, * with or without modification, are permitted provided * that the following conditions are met: * * * Redistributions of source code must retain the above * copyright notice, this list of conditions and the * following disclaimer. * * Redistributions in binary form must reproduce the above * copyright notice, this list of conditions and the * following disclaimer in the documentation and/or other * materials provided with the distribution. * * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND * CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, * INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF * MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE * DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR * CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, * BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR * SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, * WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING * NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF * SUCH DAMAGE. */ using System; using System.IO; using System.Text; using CookComputing.XmlRpc; using XenAdmin; using XenAdmin.Network; using Newtonsoft.Json.Linq; namespace XenAPI { public partial class Session { private static readonly log4net.ILog log = log4net.LogManager.GetLogger(System.Reflection.MethodBase.GetCurrentMethod().DeclaringType); public bool IsElevatedSession = false; private Session(int timeout, IXenConnection connection, string url) : this(CreateProxy(url, timeout), connection) { proxy.RequestEvent += LogRequest; proxy.ResponseEvent += LogResponse; } public Session(Proxy proxy, IXenConnection connection) { Connection = connection; this.proxy = proxy; } public Session(int timeout, IXenConnection connection, string host, int port) : this(timeout, connection, GetUrl(host, port)) { } public Session(Session session, Proxy proxy, IXenConnection connection) : this(proxy, connection) { InitAD(session); } /// /// Create a new Session instance, using the given instance and timeout. The connection details and Xen-API session handle will be /// copied from the given instance, but a new connection will be created. Use this if you want a duplicate connection to a host, /// for example when you need to cancel an operation that is blocking the primary connection. /// public Session(Session session, IXenConnection connection, int timeout) { if (session.JsonRpcClient != null) { JsonRpcClient = new JsonRpcClient(session.Url) {JsonRpcVersion = session.JsonRpcClient.JsonRpcVersion}; JsonRpcClient.RequestEvent += LogJsonRequest; } else { proxy = CreateProxy(session.Url, timeout); proxy.RequestEvent += LogRequest; proxy.ResponseEvent += LogResponse; } Connection = connection; InitAD(session); } private void InitAD(Session session) { opaque_ref = session.uuid; APIVersion = session.APIVersion; _userSid = session.UserSid; _subject = session.Subject; _isLocalSuperuser = session.IsLocalSuperuser; roles = session.Roles; permissions = session.Permissions; } private static Proxy CreateProxy(string url, int timeout) { var xmlrpcProxy = XmlRpcProxyGen.Create(); xmlrpcProxy.Url = url; xmlrpcProxy.NonStandard = XmlRpcNonStandard.All; xmlrpcProxy.Timeout = timeout; xmlrpcProxy.UseIndentation = false; xmlrpcProxy.UserAgent = UserAgent; xmlrpcProxy.KeepAlive = true; xmlrpcProxy.Proxy = Proxy; // reverted because of CA-137829/CA-137959: _proxy.ConnectionGroupName = Guid.NewGuid().ToString(); // this will force the Session onto a different set of TCP streams (see CA-108676) return xmlrpcProxy; } /// /// When the CacheWarming flag is set, we output logging at Debug rather than Info level. /// This means that we don't spam the logs when the application starts. /// private bool _cacheWarming = false; public bool CacheWarming { get { return _cacheWarming; } set { _cacheWarming = value; } } /// /// Do not log while downloading objects; /// also exclude calls occurring frequently, we don't need to know about them /// private bool CanLogCall(string call) { return CacheWarming || call == "event.next" || call == "event.from" || call == "host.get_servertime" || call.StartsWith("task.get_"); } private void LogJsonRequest(string json) { #if DEBUG string methodName = ""; string parameters = ""; try { JObject obj = JObject.Parse(json); methodName = obj.Property("method").Value.ToString(); parameters = obj.Property("params").Value.ToString(); } catch { //ignore } // only log the full parameters at Debug level because it may contain sensitive data if (CanLogCall(methodName)) log.DebugFormat("Invoking JSON-RPC method '{0}' with params: {1}", methodName, parameters); else log.InfoFormat("Invoking JSON-RPC method '{0}'", methodName); #else string methodName = json; if (CanLogCall(methodName)) log.DebugFormat("Invoking JSON-RPC method '{0}'", methodName); else log.InfoFormat("Invoking JSON-RPC method '{0}'", methodName); #endif } private void LogRequest(object o, XmlRpcRequestEventArgs args) { string xml = DumpStream(args.RequestStream, String.Empty); // Find the method name within the XML string methodName = ""; int methodNameStart = xml.IndexOf(""); if (methodNameStart >= 0) { methodNameStart += 12; // skip past "" int methodNameEnd = xml.IndexOf('<', methodNameStart); if (methodNameEnd > methodNameStart) methodName = xml.Substring(methodNameStart, methodNameEnd - methodNameStart); } // do not log while downloading objects // also exclude calls occurring frequently; we don't need to know about them; // only log the full XML at Debug level because it may have sensitive data in: CA-80174 if (CanLogCall(methodName)) { log.DebugFormat("Invoking XML-RPC method {0}: {1}", methodName, xml); } else { log.InfoFormat("Invoking XML-RPC method {0}", methodName); } } private void LogResponse(object o, XmlRpcResponseEventArgs args) { if(log.IsDebugEnabled) log.DebugFormat(DumpStream(args.ResponseStream, "XML-RPC response: ")); } private string DumpStream(Stream s, string header) { try { StringBuilder stringBuilder = new StringBuilder(header); using (TextReader r = new StreamReader(s)) { string l; while ((l = r.ReadLine()) != null) stringBuilder.Append(l); } return stringBuilder.ToString(); } catch(OutOfMemoryException ex) { log.DebugFormat("Session ran out of memory while trying to log the XML response stream: {0}", ex.Message); return String.Empty; } } /// /// The i18n'd string for the 'Logged in as:' username (AD or local root). /// public string UserFriendlyName() { if (IsLocalSuperuser) return Messages.AD_LOCAL_ROOT_ACCOUNT; if (!string.IsNullOrEmpty(CurrentUserDetails.UserDisplayName)) return CurrentUserDetails.UserDisplayName.Ellipsise(50); if (!string.IsNullOrEmpty(CurrentUserDetails.UserName)) return CurrentUserDetails.UserName.Ellipsise(50); return Messages.UNKNOWN_AD_USER; } /// /// Useful as a unique name for logging purposes /// public string UserLogName() { if (IsLocalSuperuser) return Messages.AD_LOCAL_ROOT_ACCOUNT; if (!string.IsNullOrEmpty(CurrentUserDetails.UserName)) return CurrentUserDetails.UserName; return UserSid; } /// /// This gives either a friendly csv list of the sessions roles or a friendly string for Local root account. /// If Pre MR gives Pool Admin for AD users. /// public string FriendlyRoleDescription() { if (IsLocalSuperuser || XenAdmin.Core.Helpers.GetMaster(Connection).external_auth_type != Auth.AUTH_TYPE_AD) return Messages.AD_LOCAL_ROOT_ACCOUNT; return Role.FriendlyCSVRoleList(Roles); } /// /// This gives either a friendly string for the dominant role on the session or a friendly string for Local root account. /// If Pre MR gives Pool Admin for AD users. /// public string FriendlySingleRoleDescription() { if (IsLocalSuperuser || XenAdmin.Core.Helpers.GetMaster(Connection).external_auth_type != Auth.AUTH_TYPE_AD) return Messages.AD_LOCAL_ROOT_ACCOUNT; //Sort roles from highest to lowest roles.Sort((r1, r2) => { return r2.CompareTo(r1); }); //Take the highest role return roles[0].FriendlyName(); } } }