// Copyright (c) Microsoft. All rights reserved. namespace Microsoft.Azure.Devices.Edge.Hub.Service { using System; using System.Collections.Generic; using System.Diagnostics.Tracing; using System.IO; using System.Runtime.InteropServices; using System.Security.Authentication; using System.Security.Cryptography.X509Certificates; using System.Threading.Tasks; using Autofac; using DotNetty.Common.Internal.Logging; using Microsoft.Azure.Devices.Edge.Hub.CloudProxy; using Microsoft.Azure.Devices.Edge.Hub.Core.Config; using Microsoft.Azure.Devices.Edge.Hub.Mqtt; using Microsoft.Azure.Devices.Edge.Hub.Service.Modules; using Microsoft.Azure.Devices.Edge.Util; using Microsoft.Azure.Devices.Edge.Util.Logging; using Microsoft.Azure.Devices.Edge.Util.Metrics; using Microsoft.Azure.Devices.ProtocolGateway.Instrumentation; using Microsoft.Extensions.Configuration; using Microsoft.Extensions.Logging; using StorageLogLevel = Microsoft.Azure.Devices.Edge.Storage.StorageLogLevel; class DependencyManager : IDependencyManager { readonly IConfigurationRoot configuration; readonly X509Certificate2 serverCertificate; readonly IList<X509Certificate2> trustBundle; readonly Option<X509Certificate2> manifestTrustBundle; readonly string iotHubHostname; readonly Option<string> gatewayHostname; readonly string edgeDeviceId; readonly string edgeModuleId; readonly string edgeDeviceHostName; readonly Option<string> connectionString; readonly VersionInfo versionInfo; readonly SslProtocols sslProtocols; struct StoreAndForward { public bool IsEnabled { get; } public bool UsePersistentStorage { get; } public StoreAndForwardConfiguration Config { get; } public string StoragePath { get; } public bool UseBackupAndRestore { get; } public Option<string> StorageBackupPath { get; } public Option<ulong> StorageMaxTotalWalSize { get; } public Option<ulong> StorageMaxManifestFileSize { get; } public Option<int> StorageMaxOpenFiles { get; } public Option<StorageLogLevel> StorageLogLevel { get; } public StoreAndForward( bool isEnabled, bool usePersistentStorage, StoreAndForwardConfiguration config, string storagePath, bool useBackupAndRestore, Option<string> storageBackupPath, Option<ulong> storageMaxTotalWalSize, Option<ulong> storageMaxManifestFileSize, Option<int> storageMaxOpenFiles, Option<StorageLogLevel> storageLogLevel) { this.IsEnabled = isEnabled; this.UsePersistentStorage = usePersistentStorage; this.Config = Preconditions.CheckNotNull(config, nameof(config)); this.StoragePath = Preconditions.CheckNonWhiteSpace(storagePath, nameof(storagePath)); this.UseBackupAndRestore = useBackupAndRestore; this.StorageBackupPath = storageBackupPath; this.StorageMaxTotalWalSize = storageMaxTotalWalSize; this.StorageMaxManifestFileSize = storageMaxManifestFileSize; this.StorageMaxOpenFiles = storageMaxOpenFiles; this.StorageLogLevel = storageLogLevel; } } public DependencyManager(IConfigurationRoot configuration, X509Certificate2 serverCertificate, IList<X509Certificate2> trustBundle, Option<X509Certificate2> manifestTrustBundle, SslProtocols sslProtocols) { this.configuration = Preconditions.CheckNotNull(configuration, nameof(configuration)); this.serverCertificate = Preconditions.CheckNotNull(serverCertificate, nameof(serverCertificate)); this.trustBundle = Preconditions.CheckNotNull(trustBundle, nameof(trustBundle)); this.manifestTrustBundle = manifestTrustBundle; this.sslProtocols = sslProtocols; this.gatewayHostname = Option.Maybe(this.configuration.GetValue<string>(Constants.ConfigKey.GatewayHostname)); string edgeHubConnectionString = this.configuration.GetValue<string>(Constants.ConfigKey.IotHubConnectionString); if (!string.IsNullOrWhiteSpace(edgeHubConnectionString)) { IotHubConnectionStringBuilder iotHubConnectionStringBuilder = IotHubConnectionStringBuilder.Create(edgeHubConnectionString); this.iotHubHostname = iotHubConnectionStringBuilder.HostName; this.edgeDeviceId = iotHubConnectionStringBuilder.DeviceId; this.edgeModuleId = iotHubConnectionStringBuilder.ModuleId; this.edgeDeviceHostName = this.configuration.GetValue(Constants.ConfigKey.EdgeDeviceHostName, string.Empty); this.connectionString = Option.Some(edgeHubConnectionString); } else { this.iotHubHostname = this.configuration.GetValue<string>(Constants.ConfigKey.IotHubHostname); this.edgeDeviceId = this.configuration.GetValue<string>(Constants.ConfigKey.DeviceId); this.edgeModuleId = this.configuration.GetValue<string>(Constants.ConfigKey.ModuleId); this.edgeDeviceHostName = this.configuration.GetValue<string>(Constants.ConfigKey.EdgeDeviceHostName); this.connectionString = Option.None<string>(); } this.versionInfo = VersionInfo.Get(Constants.VersionInfoFileName); } public void Register(ContainerBuilder builder) { builder.RegisterModule(new LoggingModule()); builder.RegisterBuildCallback( c => { // set up loggers for Dotnetty var loggerFactory = c.Resolve<ILoggerFactory>(); InternalLoggerFactory.DefaultFactory = loggerFactory; var eventListener = new LoggerEventListener(loggerFactory.CreateLogger("EdgeHub")); eventListener.EnableEvents(CommonEventSource.Log, EventLevel.Informational); }); bool optimizeForPerformance = this.configuration.GetValue("OptimizeForPerformance", true); StoreAndForward storeAndForward = this.GetStoreAndForwardConfiguration(); IConfiguration experimentalFeaturesConfig = this.configuration.GetSection(Constants.ConfigKey.ExperimentalFeatures); ExperimentalFeatures experimentalFeatures = ExperimentalFeatures.Create(experimentalFeaturesConfig, Logger.Factory.CreateLogger("EdgeHub")); MetricsConfig metricsConfig = new MetricsConfig(this.configuration.GetSection("metrics:listener")); bool nestedEdgeEnabled = this.configuration.GetValue<bool>(Constants.ConfigKey.NestedEdgeEnabled, true); if (!Enum.TryParse(this.configuration.GetValue("AuthenticationMode", string.Empty), true, out AuthenticationMode authenticationMode)) { authenticationMode = AuthenticationMode.Scope; } bool trackDeviceState = authenticationMode == AuthenticationMode.Scope && this.configuration.GetValue("TrackDeviceState", true); string proxyModuleId = this.configuration.GetValue("ApiProxyModuleId", Core.Constants.DefaultApiProxyId); this.RegisterCommonModule(builder, optimizeForPerformance, storeAndForward, metricsConfig, nestedEdgeEnabled, authenticationMode); this.RegisterRoutingModule(builder, storeAndForward, experimentalFeatures, nestedEdgeEnabled, authenticationMode == AuthenticationMode.Scope, trackDeviceState); this.RegisterMqttModule(builder, storeAndForward); this.RegisterAmqpModule(builder); builder.RegisterModule(new HttpModule(this.iotHubHostname, this.edgeDeviceId, proxyModuleId)); } internal static Option<UpstreamProtocol> GetUpstreamProtocol(IConfigurationRoot configuration) => Enum.TryParse(configuration.GetValue("UpstreamProtocol", string.Empty), true, out UpstreamProtocol upstreamProtocol) ? Option.Some(upstreamProtocol) : Option.None<UpstreamProtocol>(); void RegisterAmqpModule(ContainerBuilder builder) { IConfiguration amqpSettings = this.configuration.GetSection("amqpSettings"); bool clientCertAuthEnabled = this.configuration.GetValue(Constants.ConfigKey.EdgeHubClientCertAuthEnabled, false); builder.RegisterModule(new AmqpModule(amqpSettings["scheme"], amqpSettings.GetValue<ushort>("port"), this.serverCertificate, this.iotHubHostname, clientCertAuthEnabled, this.sslProtocols, amqpSettings.GetValue<bool>("delayedBatchingEnabled"))); } void RegisterMqttModule( ContainerBuilder builder, StoreAndForward storeAndForward) { var topics = new MessageAddressConversionConfiguration( this.configuration.GetSection(Constants.TopicNameConversionSectionName + ":InboundTemplates").Get<List<string>>(), this.configuration.GetSection(Constants.TopicNameConversionSectionName + ":OutboundTemplates").Get<Dictionary<string, string>>()); bool clientCertAuthEnabled = this.configuration.GetValue(Constants.ConfigKey.EdgeHubClientCertAuthEnabled, false); IConfiguration mqttSettingsConfiguration = this.configuration.GetSection("mqttSettings"); if (mqttSettingsConfiguration.GetValue("enabled", true)) { builder.RegisterModule(new MqttModule(mqttSettingsConfiguration, topics, this.serverCertificate, storeAndForward.IsEnabled, clientCertAuthEnabled, this.sslProtocols)); } } void RegisterRoutingModule( ContainerBuilder builder, StoreAndForward storeAndForward, ExperimentalFeatures experimentalFeatures, bool nestedEdgeEnabled, bool scopeAuthenticationOnly, bool trackDeviceState) { var routes = this.configuration.GetSection("routes").Get<Dictionary<string, string>>(); int connectionPoolSize = this.configuration.GetValue<int>("IotHubConnectionPoolSize"); string configSource = this.configuration.GetValue<string>("configSource"); bool useTwinConfig = !string.IsNullOrWhiteSpace(configSource) && configSource.Equals("twin", StringComparison.OrdinalIgnoreCase); Option<UpstreamProtocol> upstreamProtocolOption = GetUpstreamProtocol(this.configuration); int connectivityCheckFrequencySecs = this.configuration.GetValue("ConnectivityCheckFrequencySecs", 300); TimeSpan connectivityCheckFrequency = connectivityCheckFrequencySecs < 0 ? TimeSpan.MaxValue : TimeSpan.FromSeconds(connectivityCheckFrequencySecs); // n Clients + 1 Edgehub int maxConnectedClients = this.configuration.GetValue("MaxConnectedClients", 100) + 1; int messageAckTimeoutSecs = this.configuration.GetValue("MessageAckTimeoutSecs", 30); TimeSpan messageAckTimeout = TimeSpan.FromSeconds(messageAckTimeoutSecs); int cloudConnectionIdleTimeoutSecs = this.configuration.GetValue("CloudConnectionIdleTimeoutSecs", 3600); TimeSpan cloudConnectionIdleTimeout = TimeSpan.FromSeconds(cloudConnectionIdleTimeoutSecs); bool closeCloudConnectionOnIdleTimeout = this.configuration.GetValue("CloseCloudConnectionOnIdleTimeout", true); int cloudOperationTimeoutSecs = this.configuration.GetValue("CloudOperationTimeoutSecs", 20); int cloudConnectionHangingTimeoutSecs = this.configuration.GetValue("CloudConnectionHangingTimeoutSecs", 50); bool useServerHeartbeat = this.configuration.GetValue("UseServerHeartbeat", true); TimeSpan cloudOperationTimeout = TimeSpan.FromSeconds(cloudOperationTimeoutSecs); TimeSpan cloudConnectionHangingTimeout = TimeSpan.FromSeconds(cloudConnectionHangingTimeoutSecs); Option<TimeSpan> minTwinSyncPeriod = this.GetConfigurationValueIfExists("MinTwinSyncPeriodSecs") .Map(s => TimeSpan.FromSeconds(s)); Option<TimeSpan> reportedPropertiesSyncFrequency = this.GetConfigurationValueIfExists("ReportedPropertiesSyncFrequencySecs") .Map(s => TimeSpan.FromSeconds(s)); bool useV1TwinManager = this.GetConfigurationValueIfExists<string>("TwinManagerVersion") .Map(v => v.Equals("v1", StringComparison.OrdinalIgnoreCase)) .GetOrElse(false); int maxUpstreamBatchSize = this.configuration.GetValue("MaxUpstreamBatchSize", 10); int upstreamFanOutFactor = this.configuration.GetValue("UpstreamFanOutFactor", 10); bool encryptTwinStore = this.configuration.GetValue("EncryptTwinStore", true); int configUpdateFrequencySecs = this.configuration.GetValue("ConfigRefreshFrequencySecs", 3600); TimeSpan configUpdateFrequency = TimeSpan.FromSeconds(configUpdateFrequencySecs); bool checkEntireQueueOnCleanup = this.configuration.GetValue("CheckEntireQueueOnCleanup", false); int messageCleanupIntervalSecs = this.configuration.GetValue("MessageCleanupIntervalSecs", 1800); bool closeCloudConnectionOnDeviceDisconnect = this.configuration.GetValue("CloseCloudConnectionOnDeviceDisconnect", true); builder.RegisterModule( new RoutingModule( this.iotHubHostname, this.gatewayHostname, this.edgeDeviceId, this.edgeModuleId, this.connectionString, routes, storeAndForward.IsEnabled, storeAndForward.Config, connectionPoolSize, useTwinConfig, this.versionInfo, upstreamProtocolOption, connectivityCheckFrequency, maxConnectedClients, messageAckTimeout, cloudConnectionIdleTimeout, closeCloudConnectionOnIdleTimeout, cloudOperationTimeout, cloudConnectionHangingTimeout, useServerHeartbeat, minTwinSyncPeriod, reportedPropertiesSyncFrequency, useV1TwinManager, maxUpstreamBatchSize, upstreamFanOutFactor, encryptTwinStore, configUpdateFrequency, checkEntireQueueOnCleanup, messageCleanupIntervalSecs, experimentalFeatures, closeCloudConnectionOnDeviceDisconnect, nestedEdgeEnabled, scopeAuthenticationOnly: scopeAuthenticationOnly, trackDeviceState: trackDeviceState, this.manifestTrustBundle)); } void RegisterCommonModule( ContainerBuilder builder, bool optimizeForPerformance, StoreAndForward storeAndForward, MetricsConfig metricsConfig, bool nestedEdgeEnabled, AuthenticationMode authenticationMode) { bool cacheTokens = this.configuration.GetValue("CacheTokens", false); Option<string> workloadUri = this.GetConfigurationValueIfExists<string>(Constants.ConfigKey.WorkloadUri); Option<string> workloadApiVersion = this.GetConfigurationValueIfExists<string>(Constants.ConfigKey.WorkloadAPiVersion); Option<string> moduleGenerationId = this.GetConfigurationValueIfExists<string>(Constants.ConfigKey.ModuleGenerationId); bool hasParentEdge = this.GetConfigurationValueIfExists<string>(Constants.ConfigKey.GatewayHostname).HasValue; int scopeCacheRefreshRateSecs = this.configuration.GetValue("DeviceScopeCacheRefreshRateSecs", 3600); TimeSpan scopeCacheRefreshRate = TimeSpan.FromSeconds(scopeCacheRefreshRateSecs); int scopeCacheRefreshDelaySecs = this.configuration.GetValue("DeviceScopeCacheRefreshDelaySecs", 120); TimeSpan scopeCacheRefreshDelay = TimeSpan.FromSeconds(scopeCacheRefreshDelaySecs); string proxy = this.configuration.GetValue("https_proxy", string.Empty); string productInfo = GetProductInfo(); // Register modules builder.RegisterModule( new CommonModule( productInfo, this.iotHubHostname, this.gatewayHostname, this.edgeDeviceId, this.edgeModuleId, this.edgeDeviceHostName, moduleGenerationId, authenticationMode, this.connectionString, optimizeForPerformance, storeAndForward.UsePersistentStorage, storeAndForward.StoragePath, workloadUri, workloadApiVersion, scopeCacheRefreshRate, scopeCacheRefreshDelay, cacheTokens, this.trustBundle, proxy, metricsConfig, storeAndForward.UseBackupAndRestore, storeAndForward.StorageBackupPath, storeAndForward.StorageMaxTotalWalSize, storeAndForward.StorageMaxManifestFileSize, storeAndForward.StorageMaxOpenFiles, storeAndForward.StorageLogLevel, nestedEdgeEnabled)); } static string GetProductInfo() { string version = VersionInfo.Get(Constants.VersionInfoFileName).ToString(); string productInfo = $"{Core.Constants.IoTEdgeProductInfoIdentifier}/{version}"; return productInfo; } StoreAndForward GetStoreAndForwardConfiguration() { int defaultTtl = -1; bool usePersistentStorage = this.configuration.GetValue<bool>("usePersistentStorage"); int timeToLiveSecs = defaultTtl; // Note: Keep in sync with iotedge-check's edge-hub-storage-mounted-from-host check (edgelet/iotedge/src/check/checks/storage_mounted_from_host.rs) string storagePath = GetOrCreateDirectoryPath(this.configuration.GetValue<string>("StorageFolder"), Constants.EdgeHubStorageFolder); bool storeAndForwardEnabled = this.configuration.GetValue<bool>("storeAndForwardEnabled"); Option<ulong> storageMaxTotalWalSize = this.GetConfigIfExists<ulong>(Constants.ConfigKey.StorageMaxTotalWalSize, this.configuration); Option<ulong> storageMaxManifestFileSize = this.GetConfigIfExists<ulong>(Constants.ConfigKey.StorageMaxManifestFileSize, this.configuration); Option<int> storageMaxOpenFiles = this.GetConfigIfExists<int>(Constants.ConfigKey.StorageMaxOpenFiles, this.configuration); Option<StorageLogLevel> storageLogLevel = this.GetConfigIfExists<StorageLogLevel>(Constants.ConfigKey.StorageLogLevel, this.configuration); if (storeAndForwardEnabled) { IConfiguration storeAndForwardConfigurationSection = this.configuration.GetSection("storeAndForward"); timeToLiveSecs = storeAndForwardConfigurationSection.GetValue("timeToLiveSecs", defaultTtl); } Option<string> storageBackupPath = Option.None<string>(); bool useBackupAndRestore = !usePersistentStorage && this.configuration.GetValue<bool>("EnableNonPersistentStorageBackup"); if (useBackupAndRestore) { storageBackupPath = Option.Some(GetOrCreateDirectoryPath(this.configuration.GetValue<string>("BackupFolder"), Constants.EdgeHubStorageBackupFolder)); } var storeAndForwardConfiguration = new StoreAndForwardConfiguration(timeToLiveSecs); return new StoreAndForward(storeAndForwardEnabled, usePersistentStorage, storeAndForwardConfiguration, storagePath, useBackupAndRestore, storageBackupPath, storageMaxTotalWalSize, storageMaxManifestFileSize, storageMaxOpenFiles, storageLogLevel); } // TODO: Move this function to a common location that can be shared between EdgeHub and EdgeAgent Option<T> GetConfigIfExists<T>(string fieldName, IConfiguration configuration, ILogger logger = default(ILogger)) { T storageParamValue = default(T); try { storageParamValue = configuration.GetValue<T>(fieldName); } catch { logger?.LogError($"Cannot get parameter '{fieldName}' from the config"); } return EqualityComparer<T>.Default.Equals(storageParamValue, default(T)) ? Option.None<T>() : Option.Some(storageParamValue); } static string GetOrCreateDirectoryPath(string baseDirectoryPath, string directoryName) { if (string.IsNullOrWhiteSpace(baseDirectoryPath) || !Directory.Exists(baseDirectoryPath)) { baseDirectoryPath = Path.GetTempPath(); } string directoryPath = Path.Combine(baseDirectoryPath, directoryName); if (!Directory.Exists(directoryPath)) { Directory.CreateDirectory(directoryPath); } return directoryPath; } Option<T> GetConfigurationValueIfExists<T>(string key) where T : class { var value = this.configuration.GetValue<T>(key); return EqualityComparer<T>.Default.Equals(value, default(T)) ? Option.None<T>() : Option.Some(value); } Option<long> GetConfigurationValueIfExists(string key) { long value = this.configuration.GetValue(key, long.MinValue); return value == long.MinValue ? Option.None<long>() : Option.Some(value); } } }