+ stanzaChannel_ = new ClientSessionStanzaChannel();

+ stanzaChannel_->onMessageReceived.connect(boost::bind(&CoreClient::handleMessageReceived, this, _1));

+ stanzaChannel_->onPresenceReceived.connect(boost::bind(&CoreClient::handlePresenceReceived, this, _1));

+ stanzaChannel_->onStanzaAcked.connect(boost::bind(&CoreClient::handleStanzaAcked, this, _1));

+ stanzaChannel_->onAvailableChanged.connect(boost::bind(&CoreClient::handleStanzaChannelAvailableChanged, this, _1));

+

+ iqRouter_ = new IQRouter(stanzaChannel_);

+ iqRouter_->setJID(jid);

+ forceReset();

+ delete iqRouter_;

+

+ stanzaChannel_->onAvailableChanged.disconnect(boost::bind(&CoreClient::handleStanzaChannelAvailableChanged, this, _1));

+ stanzaChannel_->onMessageReceived.disconnect(boost::bind(&CoreClient::handleMessageReceived, this, _1));

+ stanzaChannel_->onPresenceReceived.disconnect(boost::bind(&CoreClient::handlePresenceReceived, this, _1));

+ stanzaChannel_->onStanzaAcked.disconnect(boost::bind(&CoreClient::handleStanzaAcked, this, _1));

+ delete stanzaChannel_;

+ SWIFT_LOG(debug) << "Connecting ";

+

+ forceReset();

+ disconnectRequested_ = false;

+

+ options = o;

+

+

+ // Determine connection types to use

+ assert(proxyConnectionFactories.empty());

+ bool useDirectConnection = true;

+ HostAddressPort systemSOCKS5Proxy = networkFactories->getProxyProvider()->getSOCKS5Proxy();

+ HostAddressPort systemHTTPConnectProxy = networkFactories->getProxyProvider()->getHTTPConnectProxy();

+ switch (o.proxyType) {

+ case ClientOptions::NoProxy:

+ SWIFT_LOG(debug) << " without a proxy" << std::endl;

+ break;

+ case ClientOptions::SystemConfiguredProxy:

+ SWIFT_LOG(debug) << " with a system configured proxy" << std::endl;

+ if (systemSOCKS5Proxy.isValid()) {

+ SWIFT_LOG(debug) << "Found SOCK5 Proxy: " << systemSOCKS5Proxy.getAddress().toString() << ":" << systemSOCKS5Proxy.getPort() << std::endl;

+ proxyConnectionFactories.push_back(new SOCKS5ProxiedConnectionFactory(networkFactories->getDomainNameResolver(), networkFactories->getConnectionFactory(), networkFactories->getTimerFactory(), systemSOCKS5Proxy.getAddress().toString(), systemSOCKS5Proxy.getPort()));

+ }

+ if (systemHTTPConnectProxy.isValid()) {

+ SWIFT_LOG(debug) << "Found HTTPConnect Proxy: " << systemHTTPConnectProxy.getAddress().toString() << ":" << systemHTTPConnectProxy.getPort() << std::endl;

+ proxyConnectionFactories.push_back(new HTTPConnectProxiedConnectionFactory(networkFactories->getDomainNameResolver(), networkFactories->getConnectionFactory(), networkFactories->getTimerFactory(), systemHTTPConnectProxy.getAddress().toString(), systemHTTPConnectProxy.getPort()));

+ }

+ break;

+ case ClientOptions::SOCKS5Proxy: {

+ SWIFT_LOG(debug) << " with manual configured SOCKS5 proxy" << std::endl;

+ std::string proxyHostname = o.manualProxyHostname.empty() ? systemSOCKS5Proxy.getAddress().toString() : o.manualProxyHostname;

+ int proxyPort = o.manualProxyPort == -1 ? systemSOCKS5Proxy.getPort() : o.manualProxyPort;

+ SWIFT_LOG(debug) << "Proxy: " << proxyHostname << ":" << proxyPort << std::endl;

+ proxyConnectionFactories.push_back(new SOCKS5ProxiedConnectionFactory(networkFactories->getDomainNameResolver(), networkFactories->getConnectionFactory(), networkFactories->getTimerFactory(), proxyHostname, proxyPort));

+ useDirectConnection = false;

+ break;

+ }

+ case ClientOptions::HTTPConnectProxy: {

+ SWIFT_LOG(debug) << " with manual configured HTTPConnect proxy" << std::endl;

+ std::string proxyHostname = o.manualProxyHostname.empty() ? systemHTTPConnectProxy.getAddress().toString() : o.manualProxyHostname;

+ int proxyPort = o.manualProxyPort == -1 ? systemHTTPConnectProxy.getPort() : o.manualProxyPort;

+ SWIFT_LOG(debug) << "Proxy: " << proxyHostname << ":" << proxyPort << std::endl;

+ proxyConnectionFactories.push_back(new HTTPConnectProxiedConnectionFactory(networkFactories->getDomainNameResolver(), networkFactories->getConnectionFactory(), networkFactories->getTimerFactory(), proxyHostname, proxyPort, o.httpTrafficFilter));

+ useDirectConnection = false;

+ break;

+ }

+ }

+ std::vector<ConnectionFactory*> connectionFactories(proxyConnectionFactories);

+ if (useDirectConnection) {

+ connectionFactories.push_back(networkFactories->getConnectionFactory());

+ }

+

+ // Create connector

+ std::string host = o.manualHostname.empty() ? jid_.getDomain() : o.manualHostname;

+ int port = o.manualPort;

+ boost::optional<std::string> serviceLookupPrefix;

+ if (o.manualHostname.empty()) {

+ serviceLookupPrefix = "_xmpp-client._tcp.";

+ }

+ assert(!connector_);

+ if (options.boshURL.isEmpty()) {

+ connector_ = boost::make_shared<ChainedConnector>(host, port, serviceLookupPrefix, networkFactories->getDomainNameResolver(), connectionFactories, networkFactories->getTimerFactory());

+ connector_->onConnectFinished.connect(boost::bind(&CoreClient::handleConnectorFinished, this, _1, _2));

+ connector_->setTimeoutMilliseconds(2*60*1000);

+ connector_->start();

+ }

+ else {

+ /* Autodiscovery of which proxy works is largely ok with a TCP session, because this is a one-off. With BOSH

+ * it would be quite painful given that potentially every stanza could be sent on a new connection.

+ */

+ boost::shared_ptr<BOSHSessionStream> boshSessionStream_ = boost::shared_ptr<BOSHSessionStream>(new BOSHSessionStream(

+ options.boshURL,

+ getPayloadParserFactories(),

+ getPayloadSerializers(),

+ networkFactories->getConnectionFactory(),

+ networkFactories->getTLSContextFactory(),

+ networkFactories->getTimerFactory(),

+ networkFactories->getXMLParserFactory(),

+ networkFactories->getEventLoop(),

+ networkFactories->getDomainNameResolver(),

+ host,

+ options.boshHTTPConnectProxyURL,

+ options.boshHTTPConnectProxyAuthID,

+ options.boshHTTPConnectProxyAuthPassword,

+ options.tlsOptions,

+ options.httpTrafficFilter));

+ sessionStream_ = boshSessionStream_;

+ sessionStream_->onDataRead.connect(boost::bind(&CoreClient::handleDataRead, this, _1));

+ sessionStream_->onDataWritten.connect(boost::bind(&CoreClient::handleDataWritten, this, _1));

+ if (certificate_ && !certificate_->isNull()) {

+ SWIFT_LOG(debug) << "set certificate" << std::endl;

+ sessionStream_->setTLSCertificate(certificate_);

+ }

+ boshSessionStream_->open();

+ bindSessionToStream();

+ }

+ session_ = ClientSession::create(jid_, sessionStream_, networkFactories->getIDNConverter(), networkFactories->getCryptoProvider());

+ session_->setCertificateTrustChecker(certificateTrustChecker);

+ session_->setUseStreamCompression(options.useStreamCompression);

+ session_->setAllowPLAINOverNonTLS(options.allowPLAINWithoutTLS);

+ session_->setSingleSignOn(options.singleSignOn);

+ session_->setAuthenticationPort(options.manualPort);

+ switch(options.useTLS) {

+ case ClientOptions::UseTLSWhenAvailable:

+ session_->setUseTLS(ClientSession::UseTLSWhenAvailable);

+ break;

+ case ClientOptions::NeverUseTLS:

+ session_->setUseTLS(ClientSession::NeverUseTLS);

+ break;

+ case ClientOptions::RequireTLS:

+ session_->setUseTLS(ClientSession::RequireTLS);

+ break;

+ }

+ session_->setUseAcks(options.useAcks);

+ stanzaChannel_->setSession(session_);

+ session_->onFinished.connect(boost::bind(&CoreClient::handleSessionFinished, this, _1));

+ session_->onNeedCredentials.connect(boost::bind(&CoreClient::handleNeedCredentials, this));

+ session_->start();

+ resetConnector();

+ if (!connection) {

+ if (options.forgetPassword) {

+ purgePassword();

+ }

+ boost::optional<ClientError> clientError;

+ if (!disconnectRequested_) {

+ clientError = boost::dynamic_pointer_cast<DomainNameResolveError>(error) ? boost::optional<ClientError>(ClientError::DomainNameResolveError) : boost::optional<ClientError>(ClientError::ConnectionError);

+ }

+ onDisconnected(clientError);

+ }

+ else {

+ assert(!connection_);

+ assert(!sessionStream_);

+

+ if (certificate_ && certificate_->isNull()) {

+ //certificate cannot be read so do not initailise session

+ onDisconnected(boost::optional<ClientError>(ClientError::ClientCertificateLoadError));

+ return;

+ }

+

+ connection_ = connection;

+

+ sessionStream_ = boost::make_shared<BasicSessionStream>(ClientStreamType, connection_, getPayloadParserFactories(), getPayloadSerializers(), networkFactories->getTLSContextFactory(), networkFactories->getTimerFactory(), networkFactories->getXMLParserFactory(), options.tlsOptions);

+ if (certificate_) {

+ sessionStream_->setTLSCertificate(certificate_);

+ }

+ sessionStream_->onDataRead.connect(boost::bind(&CoreClient::handleDataRead, this, _1));

+ sessionStream_->onDataWritten.connect(boost::bind(&CoreClient::handleDataWritten, this, _1));

+

+ bindSessionToStream();

+ }

+ // FIXME: We should be able to do without this boolean. We just have to make sure we can tell the difference between

+ // connector finishing without a connection due to an error or because of a disconnect.

+ disconnectRequested_ = true;

+ if (session_ && !session_->isFinished()) {

+ session_->finish();

+ }

+ else if (connector_) {

+ connector_->stop();

+ }

+ certificate_ = certificate;

+ if (options.forgetPassword) {

+ purgePassword();

+ }

+ resetSession();

+

+ boost::optional<ClientError> actualError;

+ if (error) {

+ ClientError clientError;

+ if (boost::shared_ptr<ClientSession::Error> actualError = boost::dynamic_pointer_cast<ClientSession::Error>(error)) {

+ switch(actualError->type) {

+ case ClientSession::Error::AuthenticationFailedError:

+ clientError = ClientError(ClientError::AuthenticationFailedError);

+ break;

+ case ClientSession::Error::CompressionFailedError:

+ clientError = ClientError(ClientError::CompressionFailedError);

+ break;

+ case ClientSession::Error::ServerVerificationFailedError:

+ clientError = ClientError(ClientError::ServerVerificationFailedError);

+ break;

+ case ClientSession::Error::NoSupportedAuthMechanismsError:

+ clientError = ClientError(ClientError::NoSupportedAuthMechanismsError);

+ break;

+ case ClientSession::Error::UnexpectedElementError:

+ clientError = ClientError(ClientError::UnexpectedElementError);

+ break;

+ case ClientSession::Error::ResourceBindError:

+ clientError = ClientError(ClientError::ResourceBindError);

+ break;

+ case ClientSession::Error::SessionStartError:

+ clientError = ClientError(ClientError::SessionStartError);

+ break;

+ case ClientSession::Error::TLSError:

+ clientError = ClientError(ClientError::TLSError);

+ break;

+ case ClientSession::Error::TLSClientCertificateError:

+ clientError = ClientError(ClientError::ClientCertificateError);

+ break;

+ case ClientSession::Error::StreamError:

+ clientError = ClientError(ClientError::StreamError);

+ break;

+ }

+ clientError.setErrorCode(actualError->errorCode);

+ }

+ else if (boost::shared_ptr<TLSError> actualError = boost::dynamic_pointer_cast<TLSError>(error)) {

+ switch(actualError->getType()) {

+ case TLSError::CertificateCardRemoved:

+ clientError = ClientError(ClientError::CertificateCardRemoved);

+ break;

+ case TLSError::UnknownError:

+ clientError = ClientError(ClientError::TLSError);

+ break;

+ }

+ }

+ else if (boost::shared_ptr<SessionStream::SessionStreamError> actualError = boost::dynamic_pointer_cast<SessionStream::SessionStreamError>(error)) {

+ switch(actualError->type) {

+ case SessionStream::SessionStreamError::ParseError:

+ clientError = ClientError(ClientError::XMLError);

+ break;

+ case SessionStream::SessionStreamError::TLSError:

+ clientError = ClientError(ClientError::TLSError);

+ break;

+ case SessionStream::SessionStreamError::InvalidTLSCertificateError:

+ clientError = ClientError(ClientError::ClientCertificateLoadError);

+ break;

+ case SessionStream::SessionStreamError::ConnectionReadError:

+ clientError = ClientError(ClientError::ConnectionReadError);

+ break;

+ case SessionStream::SessionStreamError::ConnectionWriteError:

+ clientError = ClientError(ClientError::ConnectionWriteError);

+ break;

+ }

+ }

+ else if (boost::shared_ptr<CertificateVerificationError> verificationError = boost::dynamic_pointer_cast<CertificateVerificationError>(error)) {

+ switch(verificationError->getType()) {

+ case CertificateVerificationError::UnknownError:

+ clientError = ClientError(ClientError::UnknownCertificateError);

+ break;

+ case CertificateVerificationError::Expired:

+ clientError = ClientError(ClientError::CertificateExpiredError);

+ break;

+ case CertificateVerificationError::NotYetValid:

+ clientError = ClientError(ClientError::CertificateNotYetValidError);

+ break;

+ case CertificateVerificationError::SelfSigned:

+ clientError = ClientError(ClientError::CertificateSelfSignedError);

+ break;

+ case CertificateVerificationError::Rejected:

+ clientError = ClientError(ClientError::CertificateRejectedError);

+ break;

+ case CertificateVerificationError::Untrusted:

+ clientError = ClientError(ClientError::CertificateUntrustedError);

+ break;

+ case CertificateVerificationError::InvalidPurpose:

+ clientError = ClientError(ClientError::InvalidCertificatePurposeError);

+ break;

+ case CertificateVerificationError::PathLengthExceeded:

+ clientError = ClientError(ClientError::CertificatePathLengthExceededError);

+ break;

+ case CertificateVerificationError::InvalidSignature:

+ clientError = ClientError(ClientError::InvalidCertificateSignatureError);

+ break;

+ case CertificateVerificationError::InvalidCA:

+ clientError = ClientError(ClientError::InvalidCAError);

+ break;

+ case CertificateVerificationError::InvalidServerIdentity:

+ clientError = ClientError(ClientError::InvalidServerIdentityError);

+ break;

+ case CertificateVerificationError::Revoked:

+ clientError = ClientError(ClientError::RevokedError);

+ break;

+ case CertificateVerificationError::RevocationCheckFailed:

+ clientError = ClientError(ClientError::RevocationCheckFailedError);

+ break;

+ }

+ }

+ actualError = boost::optional<ClientError>(clientError);

+ }

+ onDisconnected(actualError);

+ assert(session_);

+ session_->sendCredentials(password_);

+ if (options.forgetPassword) {

+ purgePassword();

+ }

+ onDataRead(data);

+ onDataWritten(data);

+ if (available) {

+ iqRouter_->setJID(session_->getLocalJID());

+ handleConnected();

+ onConnected();

+ }

+ stanzaChannel_->sendMessage(message);

+ stanzaChannel_->sendPresence(presence);

+ sessionStream_->writeData(data);

+ return (session_ && !session_->isFinished()) || connector_;

+ certificateTrustChecker = checker;

+ onPresenceReceived(presence);

+ onMessageReceived(message);

+ onStanzaAcked(stanza);

+ return stanzaChannel_->isAvailable();

+ return stanzaChannel_->getStreamManagementEnabled();

+ return sessionStream_->isTLSEncrypted();

+ return stanzaChannel_;

+ if (session_) {

+ return session_->getLocalJID();

+ }

+ else {

+ return jid_;

+ }

+ safeClear(password_);

+ connector_->onConnectFinished.disconnect(boost::bind(&CoreClient::handleConnectorFinished, this, _1, _2));

+ connector_.reset();

+ foreach(ConnectionFactory* f, proxyConnectionFactories) {

+ delete f;

+ }

+ proxyConnectionFactories.clear();

+ session_->onFinished.disconnect(boost::bind(&CoreClient::handleSessionFinished, this, _1));

+ session_->onNeedCredentials.disconnect(boost::bind(&CoreClient::handleNeedCredentials, this));

+

+ sessionStream_->onDataRead.disconnect(boost::bind(&CoreClient::handleDataRead, this, _1));

+ sessionStream_->onDataWritten.disconnect(boost::bind(&CoreClient::handleDataWritten, this, _1));

+

+ if (connection_) {

+ connection_->disconnect();

+ }

+ else if (boost::dynamic_pointer_cast<BOSHSessionStream>(sessionStream_)) {

+ sessionStream_->close();

+ }

+ sessionStream_.reset();

+ connection_.reset();

+ if (connector_) {

+ SWIFT_LOG(warning) << "Client not disconnected properly: Connector still active" << std::endl;

+ resetConnector();

+ }

+ if (sessionStream_ || connection_) {

+ SWIFT_LOG(warning) << "Client not disconnected properly: Session still active" << std::endl;

+ resetSession();

+ }