5 Author: Pekka Riikonen <priikone@silcnet.org>
7 Copyright (C) 1997 - 2003 Pekka Riikonen
9 This program is free software; you can redistribute it and/or modify
10 it under the terms of the GNU General Public License as published by
11 the Free Software Foundation; version 2 of the License.
13 This program is distributed in the hope that it will be useful,
14 but WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
16 GNU General Public License for more details.
20 * This is the actual SILC server than handles everything relating to
21 * servicing the SILC connections. This is also a SILC router as a router
22 * is also normal server.
26 #include "serverincludes.h"
27 #include "server_internal.h"
29 /* Static prototypes */
30 SILC_TASK_CALLBACK(silc_server_rehash_close_connection);
31 SILC_TASK_CALLBACK(silc_server_connect_to_router_retry);
32 SILC_TASK_CALLBACK(silc_server_connect_router);
33 SILC_TASK_CALLBACK(silc_server_connect_to_router_second);
34 SILC_TASK_CALLBACK(silc_server_connect_to_router_final);
35 SILC_TASK_CALLBACK(silc_server_accept_new_connection);
36 SILC_TASK_CALLBACK(silc_server_accept_new_connection_second);
37 SILC_TASK_CALLBACK(silc_server_accept_new_connection_final);
38 SILC_TASK_CALLBACK(silc_server_packet_process);
39 SILC_TASK_CALLBACK(silc_server_packet_parse_real);
40 SILC_TASK_CALLBACK(silc_server_close_connection_final);
41 SILC_TASK_CALLBACK(silc_server_free_client_data_timeout);
42 SILC_TASK_CALLBACK(silc_server_timeout_remote);
43 SILC_TASK_CALLBACK(silc_server_channel_key_rekey);
44 SILC_TASK_CALLBACK(silc_server_get_stats);
46 /* Allocates a new SILC server object. This has to be done before the server
47 can be used. After allocation one must call silc_server_init to initialize
48 the server. The new allocated server object is returned to the new_server
51 int silc_server_alloc(SilcServer *new_server)
55 SILC_LOG_DEBUG(("Allocating new server object"));
57 server = silc_calloc(1, sizeof(*server));
58 server->server_type = SILC_SERVER;
59 server->standalone = TRUE;
60 server->local_list = silc_calloc(1, sizeof(*server->local_list));
61 server->global_list = silc_calloc(1, sizeof(*server->global_list));
62 server->pending_commands = silc_dlist_init();
64 server->sim = silc_dlist_init();
72 /* Free's the SILC server object. This is called at the very end before
75 void silc_server_free(SilcServer server)
78 SilcIDCacheEntry cache;
86 silc_dlist_start(server->sim);
87 while ((sim = silc_dlist_get(server->sim)) != SILC_LIST_END) {
88 silc_dlist_del(server->sim, sim);
92 silc_dlist_uninit(server->sim);
96 silc_server_backup_free(server);
97 silc_server_config_unref(&server->config_ref);
99 silc_rng_free(server->rng);
101 silc_pkcs_free(server->pkcs);
102 if (server->public_key)
103 silc_pkcs_public_key_free(server->public_key);
104 if (server->private_key)
105 silc_pkcs_private_key_free(server->private_key);
106 if (server->pending_commands)
107 silc_dlist_uninit(server->pending_commands);
108 if (server->id_entry)
109 silc_idlist_del_server(server->local_list, server->id_entry);
111 /* Delete all channels */
113 if (silc_idcache_get_all(server->local_list->channels, &list) &&
114 silc_idcache_list_first(list, &cache)) {
115 silc_idlist_del_channel(server->local_list, cache->context);
116 while (silc_idcache_list_next(list, &cache))
117 silc_idlist_del_channel(server->local_list, cache->context);
120 silc_idcache_list_free(list);
122 if (silc_idcache_get_all(server->global_list->channels, &list) &&
123 silc_idcache_list_first(list, &cache)) {
124 silc_idlist_del_channel(server->global_list, cache->context);
125 while (silc_idcache_list_next(list, &cache))
126 silc_idlist_del_channel(server->global_list, cache->context);
129 silc_idcache_list_free(list);
131 /* Delete all clients */
133 if (silc_idcache_get_all(server->local_list->clients, &list) &&
134 silc_idcache_list_first(list, &cache)) {
135 silc_idlist_del_client(server->local_list, cache->context);
136 while (silc_idcache_list_next(list, &cache))
137 silc_idlist_del_client(server->local_list, cache->context);
140 silc_idcache_list_free(list);
142 if (silc_idcache_get_all(server->global_list->clients, &list) &&
143 silc_idcache_list_first(list, &cache)) {
144 silc_idlist_del_client(server->global_list, cache->context);
145 while (silc_idcache_list_next(list, &cache))
146 silc_idlist_del_client(server->global_list, cache->context);
149 silc_idcache_list_free(list);
151 /* Delete all servers */
153 if (silc_idcache_get_all(server->local_list->servers, &list) &&
154 silc_idcache_list_first(list, &cache)) {
155 silc_idlist_del_server(server->local_list, cache->context);
156 while (silc_idcache_list_next(list, &cache))
157 silc_idlist_del_server(server->local_list, cache->context);
160 silc_idcache_list_free(list);
162 if (silc_idcache_get_all(server->global_list->servers, &list) &&
163 silc_idcache_list_first(list, &cache)) {
164 silc_idlist_del_server(server->global_list, cache->context);
165 while (silc_idcache_list_next(list, &cache))
166 silc_idlist_del_server(server->global_list, cache->context);
169 silc_idcache_list_free(list);
171 silc_idcache_free(server->local_list->clients);
172 silc_idcache_free(server->local_list->servers);
173 silc_idcache_free(server->local_list->channels);
174 silc_idcache_free(server->global_list->clients);
175 silc_idcache_free(server->global_list->servers);
176 silc_idcache_free(server->global_list->channels);
177 silc_hash_table_free(server->watcher_list);
179 silc_hash_free(server->md5hash);
180 silc_hash_free(server->sha1hash);
181 silc_hmac_unregister_all();
182 silc_hash_unregister_all();
183 silc_cipher_unregister_all();
184 silc_pkcs_unregister_all();
186 silc_free(server->local_list);
187 silc_free(server->global_list);
188 silc_free(server->server_name);
189 silc_free(server->id_string);
190 silc_free(server->purge_i);
191 silc_free(server->purge_g);
195 /* Creates a new server listener. */
197 static bool silc_server_listen(SilcServer server, const char *server_ip,
198 SilcUInt16 port, int *sock)
200 *sock = silc_net_create_server(port, server_ip);
202 SILC_SERVER_LOG_ERROR(("Could not create server listener: %s on %hu",
209 /* Adds a secondary listener. */
211 bool silc_server_init_secondary(SilcServer server)
213 int sock = 0, sock_list[server->config->param.connections_max];
214 SilcSocketConnection newsocket = NULL;
215 SilcServerConfigServerInfoInterface *interface;
217 for (interface = server->config->server_info->secondary; interface;
218 interface = interface->next, sock++) {
220 if (!silc_server_listen(server,
221 interface->server_ip, interface->port, &sock_list[sock]))
224 /* Set socket to non-blocking mode */
225 silc_net_set_socket_nonblock(sock_list[sock]);
227 /* Add ourselves also to the socket table. The entry allocated above
228 is sent as argument for fast referencing in the future. */
229 silc_socket_alloc(sock_list[sock],
230 SILC_SOCKET_TYPE_SERVER, NULL, &newsocket);
231 server->sockets[sock_list[sock]] = newsocket;
232 SILC_SET_LISTENER(newsocket);
234 /* Perform name and address lookups to resolve the listenning address
236 if (!silc_net_check_local_by_sock(sock_list[sock], &newsocket->hostname,
238 if ((server->config->require_reverse_lookup && !newsocket->hostname) ||
240 SILC_LOG_ERROR(("IP/DNS lookup failed for local host %s",
241 newsocket->hostname ? newsocket->hostname :
242 newsocket->ip ? newsocket->ip : ""));
243 server->stat.conn_failures++;
246 if (!newsocket->hostname)
247 newsocket->hostname = strdup(newsocket->ip);
249 newsocket->port = silc_net_get_local_port(sock);
251 newsocket->user_data = (void *)server->id_entry;
252 silc_schedule_task_add(server->schedule, sock_list[sock],
253 silc_server_accept_new_connection,
254 (void *)server, 0, 0,
256 SILC_TASK_PRI_NORMAL);
262 do silc_net_close_server(sock_list[sock--]); while (sock >= 0);
266 /* Initializes the entire SILC server. This is called always before running
267 the server. This is called only once at the initialization of the program.
268 This binds the server to its listenning port. After this function returns
269 one should call silc_server_run to start the server. This returns TRUE
270 when everything is ok to run the server. Configuration file must be
271 read and parsed before calling this. */
273 bool silc_server_init(SilcServer server)
277 SilcServerEntry id_entry;
278 SilcIDListPurge purge;
279 SilcSocketConnection newsocket = NULL;
281 SILC_LOG_DEBUG(("Initializing server"));
283 server->starttime = time(NULL);
285 /* Take config object for us */
286 silc_server_config_ref(&server->config_ref, server->config,
290 /* Set debugging on if configured */
291 if (server->config->debug_string) {
293 silc_log_set_debug_string(server->config->debug_string);
295 #endif /* SILC_DEBUG */
297 /* Steal public and private key from the config object */
298 server->public_key = server->config->server_info->public_key;
299 server->private_key = server->config->server_info->private_key;
300 server->config->server_info->public_key = NULL;
301 server->config->server_info->private_key = NULL;
303 /* Register all configured ciphers, PKCS and hash functions. */
304 if (!silc_server_config_register_ciphers(server))
305 silc_cipher_register_default();
306 if (!silc_server_config_register_pkcs(server))
307 silc_pkcs_register_default();
308 if (!silc_server_config_register_hashfuncs(server))
309 silc_hash_register_default();
310 if (!silc_server_config_register_hmacs(server))
311 silc_hmac_register_default();
313 /* Initialize random number generator for the server. */
314 server->rng = silc_rng_alloc();
315 silc_rng_init(server->rng);
316 silc_rng_global_init(server->rng);
318 /* Initialize hash functions for server to use */
319 silc_hash_alloc("md5", &server->md5hash);
320 silc_hash_alloc("sha1", &server->sha1hash);
322 /* Allocate PKCS context for local public and private keys */
323 if (!silc_pkcs_alloc(server->public_key->name, &server->pkcs))
325 silc_pkcs_public_key_set(server->pkcs, server->public_key);
326 silc_pkcs_private_key_set(server->pkcs, server->private_key);
328 /* Initialize the scheduler */
329 server->schedule = silc_schedule_init(server->config->param.connections_max,
331 if (!server->schedule)
334 /* First, register log files configuration for error output */
335 silc_server_config_setlogfiles(server);
337 /* Initialize ID caches */
338 server->local_list->clients =
339 silc_idcache_alloc(0, SILC_ID_CLIENT, silc_idlist_client_destructor);
340 server->local_list->servers = silc_idcache_alloc(0, SILC_ID_SERVER, NULL);
341 server->local_list->channels = silc_idcache_alloc(0, SILC_ID_CHANNEL, NULL);
343 /* These are allocated for normal server as well as these hold some
344 global information that the server has fetched from its router. For
345 router these are used as they are supposed to be used on router. */
346 server->global_list->clients =
347 silc_idcache_alloc(0, SILC_ID_CLIENT, silc_idlist_client_destructor);
348 server->global_list->servers = silc_idcache_alloc(0, SILC_ID_SERVER, NULL);
349 server->global_list->channels = silc_idcache_alloc(0, SILC_ID_CHANNEL, NULL);
351 /* Init watcher list */
352 server->watcher_list =
353 silc_hash_table_alloc(1, silc_hash_client_id_hash, NULL,
354 silc_hash_data_compare, (void *)CLIENTID_HASH_LEN,
356 if (!server->watcher_list)
359 /* Create a listening server */
360 if (!silc_server_listen(server,
361 server->config->server_info->primary == NULL ? NULL :
362 server->config->server_info->primary->server_ip,
363 server->config->server_info->primary == NULL ? 0 :
364 server->config->server_info->primary->port,
368 /* Set socket to non-blocking mode */
369 silc_net_set_socket_nonblock(sock);
372 /* Allocate the entire socket list that is used in server. Eventually
373 all connections will have entry in this table (it is a table of
374 pointers to the actual object that is allocated individually
376 server->sockets = silc_calloc(server->config->param.connections_max,
377 sizeof(*server->sockets));
378 if (!server->sockets)
381 /* Add ourselves also to the socket table. The entry allocated above
382 is sent as argument for fast referencing in the future. */
383 silc_socket_alloc(sock, SILC_SOCKET_TYPE_SERVER, NULL, &newsocket);
384 server->sockets[sock] = newsocket;
385 SILC_SET_LISTENER(newsocket);
387 /* Perform name and address lookups to resolve the listenning address
389 if (!silc_net_check_local_by_sock(sock, &newsocket->hostname,
391 if ((server->config->require_reverse_lookup && !newsocket->hostname) ||
393 SILC_LOG_ERROR(("IP/DNS lookup failed for local host %s",
394 newsocket->hostname ? newsocket->hostname :
395 newsocket->ip ? newsocket->ip : ""));
396 server->stat.conn_failures++;
399 if (!newsocket->hostname)
400 newsocket->hostname = strdup(newsocket->ip);
402 newsocket->port = silc_net_get_local_port(sock);
404 /* Create a Server ID for the server. */
405 silc_id_create_server_id(newsocket->ip, newsocket->port, server->rng, &id);
410 server->id_string = silc_id_id2str(id, SILC_ID_SERVER);
411 server->id_string_len = silc_id_get_len(id, SILC_ID_SERVER);
412 server->server_name = server->config->server_info->server_name;
413 server->config->server_info->server_name = NULL;
415 /* Add ourselves to the server list. We don't have a router yet
416 beacuse we haven't established a route yet. It will be done later.
417 For now, NULL is sent as router. This allocates new entry to
420 silc_idlist_add_server(server->local_list, strdup(server->server_name),
421 server->server_type, server->id, NULL, NULL);
423 SILC_LOG_ERROR(("Could not add ourselves to cache"));
426 id_entry->data.status |= SILC_IDLIST_STATUS_REGISTERED;
428 /* Put the allocated socket pointer also to the entry allocated above
429 for fast back-referencing to the socket list. */
430 newsocket->user_data = (void *)id_entry;
431 id_entry->connection = (void *)newsocket;
432 server->id_entry = id_entry;
434 /* Register protocols */
435 silc_server_protocols_register();
437 /* Create connections to configured routers. */
438 silc_server_create_connections(server);
440 /* Add listener task to the scheduler. This task receives new connections
441 to the server. This task remains on the queue until the end of the
443 silc_schedule_task_add(server->schedule, sock,
444 silc_server_accept_new_connection,
445 (void *)server, 0, 0,
447 SILC_TASK_PRI_NORMAL);
449 if (silc_server_init_secondary(server) == FALSE)
452 server->listenning = TRUE;
454 /* If server connections has been configured then we must be router as
455 normal server cannot have server connections, only router connections. */
456 if (server->config->servers) {
457 SilcServerConfigServer *ptr = server->config->servers;
459 server->server_type = SILC_ROUTER;
461 if (ptr->backup_router) {
462 server->server_type = SILC_BACKUP_ROUTER;
463 server->backup_router = TRUE;
464 server->id_entry->server_type = SILC_BACKUP_ROUTER;
471 /* Register the ID Cache purge task. This periodically purges the ID cache
472 and removes the expired cache entries. */
474 /* Clients local list */
475 server->purge_i = purge = silc_calloc(1, sizeof(*purge));
476 purge->cache = server->local_list->clients;
477 purge->timeout = 600;
478 silc_schedule_task_add(server->schedule, 0, silc_idlist_purge,
479 (void *)purge, purge->timeout, 0,
480 SILC_TASK_TIMEOUT, SILC_TASK_PRI_LOW);
482 /* Clients global list */
483 server->purge_g = purge = silc_calloc(1, sizeof(*purge));
484 purge->cache = server->global_list->clients;
485 purge->timeout = 300;
486 silc_schedule_task_add(server->schedule, 0, silc_idlist_purge,
487 (void *)purge, purge->timeout, 0,
488 SILC_TASK_TIMEOUT, SILC_TASK_PRI_LOW);
490 /* If we are normal server we'll retrieve network statisticial information
491 once in a while from the router. */
492 if (server->server_type != SILC_ROUTER)
493 silc_schedule_task_add(server->schedule, 0, silc_server_get_stats,
494 server, 10, 0, SILC_TASK_TIMEOUT,
497 if (server->server_type == SILC_ROUTER)
498 server->stat.routers++;
500 SILC_LOG_DEBUG(("Server initialized"));
502 /* We are done here, return succesfully */
506 silc_server_config_unref(&server->config_ref);
507 silc_net_close_server(sock);
511 /* Task callback to close a socket connection after rehash */
513 SILC_TASK_CALLBACK(silc_server_rehash_close_connection)
515 SilcServer server = context;
516 SilcSocketConnection sock = server->sockets[fd];
521 SILC_LOG_INFO(("Connection %s:%d [%s] is unconfigured",
522 sock->hostname, sock->port,
523 (sock->type == SILC_SOCKET_TYPE_UNKNOWN ? "Unknown" :
524 sock->type == SILC_SOCKET_TYPE_CLIENT ? "Client" :
525 sock->type == SILC_SOCKET_TYPE_SERVER ? "Server" :
527 silc_schedule_task_del_by_context(server->schedule, sock);
528 silc_server_disconnect_remote(server, sock,
529 SILC_STATUS_ERR_BANNED_FROM_SERVER,
530 "This connection is removed from "
533 silc_server_free_sock_user_data(server, sock, NULL);
536 /* This function basically reads the config file again and switches the config
537 object pointed by the server object. After that, we have to fix various
538 things such as the server_name and the listening ports.
539 Keep in mind that we no longer have the root privileges at this point. */
541 bool silc_server_rehash(SilcServer server)
543 SilcServerConfig newconfig;
545 SILC_LOG_INFO(("Rehashing server"));
547 /* Reset the logging system */
548 silc_log_quick = TRUE;
549 silc_log_flush_all();
551 /* Start the main rehash phase (read again the config file) */
552 newconfig = silc_server_config_alloc(server->config_file);
554 SILC_LOG_ERROR(("Rehash FAILED."));
558 /* Reinit scheduler if necessary */
559 if (newconfig->param.connections_max > server->config->param.connections_max)
560 if (!silc_schedule_reinit(server->schedule,
561 newconfig->param.connections_max))
564 /* Fix the server_name field */
565 if (strcmp(server->server_name, newconfig->server_info->server_name)) {
566 silc_free(server->server_name);
567 server->server_name = newconfig->server_info->server_name;
568 newconfig->server_info->server_name = NULL;
570 /* Update the idcache list with a fresh pointer */
571 silc_free(server->id_entry->server_name);
572 server->id_entry->server_name = strdup(server->server_name);
573 if (!silc_idcache_del_by_context(server->local_list->servers,
576 if (!silc_idcache_add(server->local_list->servers,
577 server->id_entry->server_name,
578 server->id_entry->id, server->id_entry, 0, NULL))
583 silc_server_config_setlogfiles(server);
585 /* Change new key pair if necessary */
586 if (newconfig->server_info->public_key &&
587 !silc_pkcs_public_key_compare(server->public_key,
588 newconfig->server_info->public_key)) {
589 silc_pkcs_public_key_free(server->public_key);
590 silc_pkcs_private_key_free(server->private_key);
591 server->public_key = newconfig->server_info->public_key;
592 server->private_key = newconfig->server_info->private_key;
593 newconfig->server_info->public_key = NULL;
594 newconfig->server_info->private_key = NULL;
596 /* Allocate PKCS context for local public and private keys */
597 silc_pkcs_free(server->pkcs);
598 if (!silc_pkcs_alloc(server->public_key->name, &server->pkcs))
600 silc_pkcs_public_key_set(server->pkcs, server->public_key);
601 silc_pkcs_private_key_set(server->pkcs, server->private_key);
604 /* Check for unconfigured server and router connections and close
605 connections that were unconfigured. */
607 if (server->config->routers) {
608 SilcServerConfigRouter *ptr;
609 SilcServerConfigRouter *newptr;
612 for (ptr = server->config->routers; ptr; ptr = ptr->next) {
615 /* Check whether new config has this one too */
616 for (newptr = newconfig->routers; newptr; newptr = newptr->next) {
617 if (silc_string_compare(newptr->host, ptr->host) &&
618 newptr->port == ptr->port &&
619 newptr->initiator == ptr->initiator) {
625 if (!found && ptr->host) {
626 /* Remove this connection */
627 SilcSocketConnection sock;
628 sock = silc_server_find_socket_by_host(server, SILC_SOCKET_TYPE_ROUTER,
629 ptr->host, ptr->port);
630 if (sock && !SILC_IS_LISTENER(sock))
631 silc_schedule_task_add(server->schedule, sock->sock,
632 silc_server_rehash_close_connection,
633 server, 0, 1, SILC_TASK_TIMEOUT,
634 SILC_TASK_PRI_NORMAL);
639 if (server->config->servers) {
640 SilcServerConfigServer *ptr;
641 SilcServerConfigServer *newptr;
644 for (ptr = server->config->servers; ptr; ptr = ptr->next) {
647 /* Check whether new config has this one too */
648 for (newptr = newconfig->servers; newptr; newptr = newptr->next) {
649 if (silc_string_compare(newptr->host, ptr->host)) {
655 if (!found && ptr->host) {
656 /* Remove this connection */
657 SilcSocketConnection sock;
658 sock = silc_server_find_socket_by_host(server, SILC_SOCKET_TYPE_SERVER,
660 if (sock && !SILC_IS_LISTENER(sock))
661 silc_schedule_task_add(server->schedule, sock->sock,
662 silc_server_rehash_close_connection,
663 server, 0, 1, SILC_TASK_TIMEOUT,
664 SILC_TASK_PRI_NORMAL);
669 if (server->config->clients) {
670 SilcServerConfigClient *ptr;
671 SilcServerConfigClient *newptr;
674 for (ptr = server->config->clients; ptr; ptr = ptr->next) {
677 /* Check whether new config has this one too */
678 for (newptr = newconfig->clients; newptr; newptr = newptr->next) {
679 if (silc_string_compare(newptr->host, ptr->host)) {
685 if (!found && ptr->host) {
686 /* Remove this connection */
687 SilcSocketConnection sock;
688 sock = silc_server_find_socket_by_host(server, SILC_SOCKET_TYPE_CLIENT,
691 silc_schedule_task_add(server->schedule, sock->sock,
692 silc_server_rehash_close_connection,
693 server, 0, 1, SILC_TASK_TIMEOUT,
694 SILC_TASK_PRI_NORMAL);
699 /* Create connections after rehash */
700 silc_server_create_connections(server);
702 /* Check whether our router status has changed */
703 if (newconfig->servers) {
704 SilcServerConfigServer *ptr = newconfig->servers;
706 server->server_type = SILC_ROUTER;
708 if (ptr->backup_router) {
709 server->server_type = SILC_BACKUP_ROUTER;
710 server->backup_router = TRUE;
711 server->id_entry->server_type = SILC_BACKUP_ROUTER;
718 /* Our old config is gone now. We'll unreference our reference made in
719 silc_server_init and then destroy it since we are destroying it
720 underneath the application (layer which called silc_server_init). */
721 silc_server_config_unref(&server->config_ref);
722 silc_server_config_destroy(server->config);
724 /* Take new config context */
725 server->config = newconfig;
726 silc_server_config_ref(&server->config_ref, server->config, server->config);
729 /* Set debugging on if configured */
730 if (server->config->debug_string) {
732 silc_log_set_debug_string(server->config->debug_string);
736 #endif /* SILC_DEBUG */
738 SILC_LOG_DEBUG(("Server rehashed"));
743 /* The heart of the server. This runs the scheduler thus runs the server.
744 When this returns the server has been stopped and the program will
747 void silc_server_run(SilcServer server)
749 SILC_LOG_INFO(("SILC Server started"));
751 /* Start the scheduler, the heart of the SILC server. When this returns
752 the program will be terminated. */
753 silc_schedule(server->schedule);
756 /* Stops the SILC server. This function is used to shutdown the server.
757 This is usually called after the scheduler has returned. After stopping
758 the server one should call silc_server_free. */
760 void silc_server_stop(SilcServer server)
762 SILC_LOG_INFO(("SILC Server shutting down"));
764 if (server->schedule) {
767 server->server_shutdown = TRUE;
769 /* Close all connections */
770 for (i = 0; i < server->config->param.connections_max; i++) {
771 if (!server->sockets[i])
773 if (!SILC_IS_LISTENER(server->sockets[i])) {
774 SilcSocketConnection sock = server->sockets[i];
775 SilcIDListData idata = sock->user_data;
778 idata->status &= ~SILC_IDLIST_STATUS_DISABLED;
780 silc_schedule_task_del_by_context(server->schedule,
782 silc_schedule_task_del_by_fd(server->schedule,
783 server->sockets[i]->sock);
784 silc_server_disconnect_remote(server, server->sockets[i],
786 "Server is shutting down");
788 silc_server_free_sock_user_data(server, sock,
789 "Server is shutting down");
790 silc_socket_free(sock);
792 silc_socket_free(server->sockets[i]);
793 server->sockets[i] = NULL;
797 /* We are not connected to network anymore */
798 server->standalone = TRUE;
800 silc_schedule_stop(server->schedule);
801 silc_schedule_uninit(server->schedule);
802 server->schedule = NULL;
804 silc_free(server->sockets);
805 server->sockets = NULL;
808 silc_server_protocols_unregister();
810 SILC_LOG_DEBUG(("Server stopped"));
813 /* Function that is called when the network connection to a router has
814 been established. This will continue with the key exchange protocol
815 with the remote router. */
817 void silc_server_start_key_exchange(SilcServer server,
818 SilcServerConnection sconn,
821 SilcSocketConnection newsocket;
822 SilcProtocol protocol;
823 SilcServerKEInternalContext *proto_ctx;
824 SilcServerConfigRouter *conn =
825 (SilcServerConfigRouter *) sconn->conn.ref_ptr;
828 /* Cancel any possible retry timeouts */
829 silc_schedule_task_del_by_callback(server->schedule,
830 silc_server_connect_to_router_retry);
832 /* Set socket options */
833 silc_net_set_socket_nonblock(sock);
834 silc_net_set_socket_opt(sock, SOL_SOCKET, SO_REUSEADDR, 1);
836 /* Create socket connection for the connection. Even though we
837 know that we are connecting to a router we will mark the socket
838 to be unknown connection until we have executed authentication
840 silc_socket_alloc(sock, SILC_SOCKET_TYPE_UNKNOWN, NULL, &newsocket);
841 server->sockets[sock] = newsocket;
842 newsocket->hostname = strdup(sconn->remote_host);
843 newsocket->ip = strdup(sconn->remote_host);
844 newsocket->port = sconn->remote_port;
845 sconn->sock = newsocket;
847 /* Allocate internal protocol context. This is sent as context
849 proto_ctx = silc_calloc(1, sizeof(*proto_ctx));
850 proto_ctx->server = (void *)server;
851 proto_ctx->context = (void *)sconn;
852 proto_ctx->sock = newsocket;
853 proto_ctx->rng = server->rng;
854 proto_ctx->responder = FALSE;
856 /* Set Key Exchange flags from configuration, but fall back to global
858 SILC_GET_SKE_FLAGS(conn, proto_ctx);
859 if (server->config->param.key_exchange_pfs)
860 proto_ctx->flags |= SILC_SKE_SP_FLAG_PFS;
862 /* Perform key exchange protocol. silc_server_connect_to_router_second
863 will be called after the protocol is finished. */
864 silc_protocol_alloc(SILC_PROTOCOL_SERVER_KEY_EXCHANGE,
865 &protocol, proto_ctx,
866 silc_server_connect_to_router_second);
867 newsocket->protocol = protocol;
869 /* Register a timeout task that will be executed if the protocol
870 is not executed within set limit. */
871 proto_ctx->timeout_task =
872 silc_schedule_task_add(server->schedule, sock,
873 silc_server_timeout_remote,
874 server, server->config->key_exchange_timeout, 0,
878 /* Register the connection for network input and output. This sets
879 that scheduler will listen for incoming packets for this connection
880 and sets that outgoing packets may be sent to this connection as
881 well. However, this doesn't set the scheduler for outgoing traffic,
882 it will be set separately by calling SILC_SET_CONNECTION_FOR_OUTPUT,
883 later when outgoing data is available. */
884 context = (void *)server;
885 SILC_REGISTER_CONNECTION_FOR_IO(sock);
887 /* Run the protocol */
888 silc_protocol_execute(protocol, server->schedule, 0, 0);
891 /* Timeout callback that will be called to retry connecting to remote
892 router. This is used by both normal and router server. This will wait
893 before retrying the connecting. The timeout is generated by exponential
894 backoff algorithm. */
896 SILC_TASK_CALLBACK(silc_server_connect_to_router_retry)
898 SilcServer server = app_context;
899 SilcServerConnection sconn = (SilcServerConnection)context;
900 SilcServerConfigRouter *conn = sconn->conn.ref_ptr;
901 SilcServerConfigConnParams *param =
902 (conn->param ? conn->param : &server->config->param);
904 /* Don't retry if we are shutting down. */
905 if (server->server_shutdown) {
906 silc_server_config_unref(&sconn->conn);
907 silc_free(sconn->remote_host);
908 silc_free(sconn->backup_replace_ip);
913 SILC_LOG_INFO(("Retrying connecting to a router"));
915 /* Calculate next timeout */
916 if (sconn->retry_count >= 1) {
917 sconn->retry_timeout = sconn->retry_timeout * SILC_SERVER_RETRY_MULTIPLIER;
918 if (sconn->retry_timeout > param->reconnect_interval_max)
919 sconn->retry_timeout = param->reconnect_interval_max;
921 sconn->retry_timeout = param->reconnect_interval;
923 sconn->retry_count++;
924 sconn->retry_timeout = sconn->retry_timeout +
925 silc_rng_get_rn32(server->rng) % SILC_SERVER_RETRY_RANDOMIZER;
927 /* If we've reached max retry count, give up. */
928 if ((sconn->retry_count > param->reconnect_count) &&
929 !param->reconnect_keep_trying) {
930 SILC_LOG_ERROR(("Could not connect to router, giving up"));
931 silc_server_config_unref(&sconn->conn);
932 silc_free(sconn->remote_host);
933 silc_free(sconn->backup_replace_ip);
938 SILC_LOG_DEBUG(("Retrying connecting to a router in %d seconds",
939 sconn->retry_timeout));
941 /* We will lookup a fresh pointer later */
942 silc_server_config_unref(&sconn->conn);
944 /* Wait one before retrying */
945 silc_schedule_task_add(server->schedule, 0, silc_server_connect_router,
946 context, sconn->retry_timeout, 0,
947 SILC_TASK_TIMEOUT, SILC_TASK_PRI_NORMAL);
950 /* Generic routine to use connect to a router. */
952 SILC_TASK_CALLBACK(silc_server_connect_router)
954 SilcServer server = app_context;
955 SilcServerConnection sconn = (SilcServerConnection)context;
956 SilcServerConfigRouter *rconn;
959 /* Don't connect if we are shutting down. */
960 if (server->server_shutdown) {
961 silc_free(sconn->remote_host);
962 silc_free(sconn->backup_replace_ip);
967 SILC_LOG_INFO(("Connecting to the %s %s on port %d",
968 (sconn->backup ? "backup router" : "router"),
969 sconn->remote_host, sconn->remote_port));
971 server->router_connect = time(NULL);
972 rconn = silc_server_config_find_router_conn(server, sconn->remote_host,
975 SILC_LOG_INFO(("Unconfigured %s connection %s:%d, cannot connect",
976 (sconn->backup ? "backup router" : "router"),
977 sconn->remote_host, sconn->remote_port));
978 silc_free(sconn->remote_host);
979 silc_free(sconn->backup_replace_ip);
983 silc_server_config_ref(&sconn->conn, server->config, (void *)rconn);
985 /* Connect to remote host */
986 sock = silc_net_create_connection(
987 (!server->config->server_info->primary ? NULL :
988 server->config->server_info->primary->server_ip),
989 sconn->remote_port, sconn->remote_host);
991 SILC_LOG_ERROR(("Could not connect to router %s:%d",
992 sconn->remote_host, sconn->remote_port));
993 if (!sconn->no_reconnect)
994 silc_schedule_task_add(server->schedule, 0,
995 silc_server_connect_to_router_retry,
996 context, 0, 1, SILC_TASK_TIMEOUT,
997 SILC_TASK_PRI_NORMAL);
999 silc_server_config_unref(&sconn->conn);
1000 silc_free(sconn->remote_host);
1001 silc_free(sconn->backup_replace_ip);
1007 /* Continue with key exchange protocol */
1008 silc_server_start_key_exchange(server, sconn, sock);
1011 /* This function connects to our primary router or if we are a router this
1012 establishes all our primary routes. This is called at the start of the
1013 server to do authentication and key exchange with our router - called
1016 SILC_TASK_CALLBACK_GLOBAL(silc_server_connect_to_router)
1018 SilcServer server = (SilcServer)context;
1019 SilcServerConnection sconn;
1020 SilcServerConfigRouter *ptr;
1022 /* Don't connect if we are shutting down. */
1023 if (server->server_shutdown)
1026 SILC_LOG_DEBUG(("We are %s",
1027 (server->server_type == SILC_SERVER ?
1028 "normal server" : server->server_type == SILC_ROUTER ?
1029 "router" : "backup router/normal server")));
1031 if (!server->config->routers) {
1032 /* There wasn't a configured router, we will continue but we don't
1033 have a connection to outside world. We will be standalone server. */
1034 SILC_LOG_DEBUG(("No router(s), we are standalone"));
1035 server->standalone = TRUE;
1039 /* Cancel any possible retry timeouts */
1040 silc_schedule_task_del_by_callback(server->schedule,
1041 silc_server_connect_router);
1042 silc_schedule_task_del_by_callback(server->schedule,
1043 silc_server_connect_to_router_retry);
1045 /* Create the connections to all our routes */
1046 for (ptr = server->config->routers; ptr; ptr = ptr->next) {
1048 SILC_LOG_DEBUG(("%s connection [%s] %s:%d",
1049 ptr->backup_router ? "Backup router" : "Router",
1050 ptr->initiator ? "Initiator" : "Responder",
1051 ptr->host, ptr->port));
1053 if (server->server_type == SILC_ROUTER && ptr->backup_router &&
1054 ptr->initiator == FALSE && !server->backup_router &&
1055 !silc_server_config_get_backup_router(server))
1056 server->wait_backup = TRUE;
1058 if (ptr->initiator) {
1059 /* Check whether we are connecting or connected to this host already */
1060 if (silc_server_num_sockets_by_remote(server,
1061 silc_net_is_ip(ptr->host) ?
1063 silc_net_is_ip(ptr->host) ?
1064 NULL : ptr->host, ptr->port,
1065 SILC_SOCKET_TYPE_ROUTER)) {
1066 SILC_LOG_DEBUG(("We are already connected to this router"));
1069 if (silc_server_num_sockets_by_remote(server,
1070 silc_net_is_ip(ptr->host) ?
1072 silc_net_is_ip(ptr->host) ?
1073 NULL : ptr->host, ptr->port,
1074 SILC_SOCKET_TYPE_UNKNOWN)) {
1075 SILC_LOG_DEBUG(("We are already connecting to this router"));
1079 /* Allocate connection object for hold connection specific stuff. */
1080 sconn = silc_calloc(1, sizeof(*sconn));
1081 sconn->remote_host = strdup(ptr->host);
1082 sconn->remote_port = ptr->port;
1083 sconn->backup = ptr->backup_router;
1084 if (sconn->backup) {
1085 sconn->backup_replace_ip = strdup(ptr->backup_replace_ip);
1086 sconn->backup_replace_port = ptr->backup_replace_port;
1089 if (!server->router_conn && !sconn->backup)
1090 server->router_conn = sconn;
1092 silc_schedule_task_add(server->schedule, 0,
1093 silc_server_connect_router,
1094 (void *)sconn, 0, 1, SILC_TASK_TIMEOUT,
1095 SILC_TASK_PRI_NORMAL);
1100 /* Second part of connecting to router(s). Key exchange protocol has been
1101 executed and now we will execute authentication protocol. */
1103 SILC_TASK_CALLBACK(silc_server_connect_to_router_second)
1105 SilcProtocol protocol = (SilcProtocol)context;
1106 SilcServerKEInternalContext *ctx =
1107 (SilcServerKEInternalContext *)protocol->context;
1108 SilcServer server = (SilcServer)ctx->server;
1109 SilcServerConnection sconn = (SilcServerConnection)ctx->context;
1110 SilcSocketConnection sock = ctx->sock;
1111 SilcServerConnAuthInternalContext *proto_ctx;
1112 SilcServerConfigRouter *conn = NULL;
1114 SILC_LOG_DEBUG(("Start"));
1116 if (protocol->state == SILC_PROTOCOL_STATE_ERROR ||
1117 protocol->state == SILC_PROTOCOL_STATE_FAILURE) {
1118 /* Error occured during protocol */
1119 silc_protocol_free(protocol);
1120 sock->protocol = NULL;
1121 silc_ske_free_key_material(ctx->keymat);
1123 silc_packet_context_free(ctx->packet);
1125 silc_ske_free(ctx->ske);
1126 silc_free(ctx->dest_id);
1128 silc_server_disconnect_remote(server, sock,
1129 SILC_STATUS_ERR_KEY_EXCHANGE_FAILED, NULL);
1131 /* Try reconnecting if configuration wants it */
1132 if (!sconn->no_reconnect) {
1133 silc_schedule_task_add(server->schedule, 0,
1134 silc_server_connect_to_router_retry,
1135 sconn, 0, 1, SILC_TASK_TIMEOUT,
1136 SILC_TASK_PRI_NORMAL);
1140 /* Call completion to indicate error */
1141 if (sconn->callback)
1142 (*sconn->callback)(server, NULL, sconn->callback_context);
1144 silc_server_config_unref(&sconn->conn);
1145 silc_free(sconn->remote_host);
1146 silc_free(sconn->backup_replace_ip);
1151 /* We now have the key material as the result of the key exchange
1152 protocol. Take the key material into use. Free the raw key material
1153 as soon as we've set them into use. */
1154 if (!silc_server_protocol_ke_set_keys(server, ctx->ske,
1155 ctx->sock, ctx->keymat,
1156 ctx->ske->prop->cipher,
1157 ctx->ske->prop->pkcs,
1158 ctx->ske->prop->hash,
1159 ctx->ske->prop->hmac,
1160 ctx->ske->prop->group,
1162 silc_protocol_free(protocol);
1163 sock->protocol = NULL;
1164 silc_ske_free_key_material(ctx->keymat);
1166 silc_packet_context_free(ctx->packet);
1168 silc_ske_free(ctx->ske);
1169 silc_free(ctx->dest_id);
1171 silc_server_disconnect_remote(server, sock,
1172 SILC_STATUS_ERR_KEY_EXCHANGE_FAILED, NULL);
1174 /* Try reconnecting if configuration wants it */
1175 if (!sconn->no_reconnect) {
1176 silc_schedule_task_add(server->schedule, 0,
1177 silc_server_connect_to_router_retry,
1178 sconn, 0, 1, SILC_TASK_TIMEOUT,
1179 SILC_TASK_PRI_NORMAL);
1183 /* Call completion to indicate error */
1184 if (sconn->callback)
1185 (*sconn->callback)(server, NULL, sconn->callback_context);
1187 silc_server_config_unref(&sconn->conn);
1188 silc_free(sconn->remote_host);
1189 silc_free(sconn->backup_replace_ip);
1193 silc_ske_free_key_material(ctx->keymat);
1195 /* Allocate internal context for the authentication protocol. This
1196 is sent as context for the protocol. */
1197 proto_ctx = silc_calloc(1, sizeof(*proto_ctx));
1198 proto_ctx->server = (void *)server;
1199 proto_ctx->context = (void *)sconn;
1200 proto_ctx->sock = sock;
1201 proto_ctx->ske = ctx->ske; /* Save SKE object from previous protocol */
1202 proto_ctx->dest_id_type = ctx->dest_id_type;
1203 proto_ctx->dest_id = ctx->dest_id;
1205 /* Resolve the authentication method used in this connection. Check if
1206 we find a match from user configured connections */
1207 if (!sconn->conn.ref_ptr)
1208 conn = silc_server_config_find_router_conn(server, sock->hostname,
1211 conn = sconn->conn.ref_ptr;
1214 /* Match found. Use the configured authentication method. Take only
1215 the passphrase, since for public key auth we automatically use
1216 our local key pair. */
1217 if (conn->passphrase) {
1218 if (conn->publickeys && !server->config->prefer_passphrase_auth) {
1219 proto_ctx->auth_meth = SILC_AUTH_PUBLIC_KEY;
1221 proto_ctx->auth_data = strdup(conn->passphrase);
1222 proto_ctx->auth_data_len = strlen(conn->passphrase);
1223 proto_ctx->auth_meth = SILC_AUTH_PASSWORD;
1225 } else if (conn->publickeys) {
1226 proto_ctx->auth_meth = SILC_AUTH_PUBLIC_KEY;
1228 proto_ctx->auth_meth = SILC_AUTH_NONE;
1231 SILC_LOG_ERROR(("Could not find connection data for %s (%s) on port",
1232 sock->hostname, sock->ip, sock->port));
1233 silc_protocol_free(protocol);
1234 sock->protocol = NULL;
1236 silc_packet_context_free(ctx->packet);
1238 silc_ske_free(ctx->ske);
1239 silc_free(ctx->dest_id);
1241 silc_server_config_unref(&sconn->conn);
1242 silc_free(sconn->remote_host);
1243 silc_free(sconn->backup_replace_ip);
1245 silc_server_disconnect_remote(server, sock,
1246 SILC_STATUS_ERR_KEY_EXCHANGE_FAILED, NULL);
1250 /* Free old protocol as it is finished now */
1251 silc_protocol_free(protocol);
1253 silc_packet_context_free(ctx->packet);
1255 sock->protocol = NULL;
1257 /* Allocate the authentication protocol. This is allocated here
1258 but we won't start it yet. We will be receiving party of this
1259 protocol thus we will wait that connecting party will make
1260 their first move. */
1261 silc_protocol_alloc(SILC_PROTOCOL_SERVER_CONNECTION_AUTH,
1262 &sock->protocol, proto_ctx,
1263 silc_server_connect_to_router_final);
1265 /* Register timeout task. If the protocol is not executed inside
1266 this timelimit the connection will be terminated. */
1267 proto_ctx->timeout_task =
1268 silc_schedule_task_add(server->schedule, sock->sock,
1269 silc_server_timeout_remote,
1271 server->config->conn_auth_timeout, 0,
1275 /* Run the protocol */
1276 silc_protocol_execute(sock->protocol, server->schedule, 0, 0);
1279 /* Finalizes the connection to router. Registers a server task to the
1280 queue so that we can accept new connections. */
1282 SILC_TASK_CALLBACK(silc_server_connect_to_router_final)
1284 SilcProtocol protocol = (SilcProtocol)context;
1285 SilcServerConnAuthInternalContext *ctx =
1286 (SilcServerConnAuthInternalContext *)protocol->context;
1287 SilcServer server = (SilcServer)ctx->server;
1288 SilcServerConnection sconn = (SilcServerConnection)ctx->context;
1289 SilcSocketConnection sock = ctx->sock;
1290 SilcServerEntry id_entry = NULL;
1292 unsigned char *id_string;
1294 SilcIDListData idata;
1295 SilcServerConfigRouter *conn = NULL;
1296 SilcServerConfigConnParams *param = NULL;
1298 SILC_LOG_DEBUG(("Start"));
1300 if (protocol->state == SILC_PROTOCOL_STATE_ERROR ||
1301 protocol->state == SILC_PROTOCOL_STATE_FAILURE) {
1302 /* Error occured during protocol */
1303 silc_free(ctx->dest_id);
1304 sock->protocol = NULL;
1305 silc_server_disconnect_remote(server, sock, SILC_STATUS_ERR_AUTH_FAILED,
1307 sock->protocol = protocol;
1309 /* Try reconnecting if configuration wants it */
1310 if (!sconn->no_reconnect) {
1311 silc_schedule_task_add(server->schedule, 0,
1312 silc_server_connect_to_router_retry,
1313 sconn, 0, 1, SILC_TASK_TIMEOUT,
1314 SILC_TASK_PRI_NORMAL);
1321 /* Add a task to the queue. This task receives new connections to the
1322 server. This task remains on the queue until the end of the program. */
1323 if (!server->listenning && !sconn->backup) {
1324 silc_schedule_task_add(server->schedule, server->sock,
1325 silc_server_accept_new_connection,
1326 (void *)server, 0, 0,
1328 SILC_TASK_PRI_NORMAL);
1329 server->listenning = TRUE;
1332 /* Send NEW_SERVER packet to the router. We will become registered
1333 to the SILC network after sending this packet. */
1334 id_string = silc_id_id2str(server->id, SILC_ID_SERVER);
1335 id_len = silc_id_get_len(server->id, SILC_ID_SERVER);
1336 packet = silc_buffer_alloc(2 + 2 + id_len + strlen(server->server_name));
1337 silc_buffer_pull_tail(packet, SILC_BUFFER_END(packet));
1338 silc_buffer_format(packet,
1339 SILC_STR_UI_SHORT(id_len),
1340 SILC_STR_UI_XNSTRING(id_string, id_len),
1341 SILC_STR_UI_SHORT(strlen(server->server_name)),
1342 SILC_STR_UI_XNSTRING(server->server_name,
1343 strlen(server->server_name)),
1346 /* Send the packet */
1347 silc_server_packet_send(server, ctx->sock, SILC_PACKET_NEW_SERVER, 0,
1348 packet->data, packet->len, TRUE);
1349 silc_buffer_free(packet);
1350 silc_free(id_string);
1352 SILC_LOG_INFO(("Connected to router %s", sock->hostname));
1354 /* Check that we do not have this ID already */
1355 id_entry = silc_idlist_find_server_by_id(server->local_list,
1356 ctx->dest_id, TRUE, NULL);
1358 silc_idcache_del_by_context(server->local_list->servers, id_entry);
1360 id_entry = silc_idlist_find_server_by_id(server->global_list,
1361 ctx->dest_id, TRUE, NULL);
1363 silc_idcache_del_by_context(server->global_list->servers, id_entry);
1366 SILC_LOG_DEBUG(("New server id(%s)",
1367 silc_id_render(ctx->dest_id, SILC_ID_SERVER)));
1369 /* Add the connected router to global server list. Router is sent
1370 as NULL since it's local to us. */
1371 id_entry = silc_idlist_add_server(server->global_list,
1372 strdup(sock->hostname),
1373 SILC_ROUTER, ctx->dest_id, NULL, sock);
1375 silc_free(ctx->dest_id);
1376 SILC_LOG_ERROR(("Cannot add new server entry to cache"));
1377 sock->protocol = NULL;
1378 silc_server_disconnect_remote(server, sock, SILC_STATUS_ERR_AUTH_FAILED,
1380 sock->protocol = protocol;
1384 silc_idlist_add_data(id_entry, (SilcIDListData)sock->user_data);
1385 silc_free(sock->user_data);
1386 sock->user_data = (void *)id_entry;
1387 sock->type = SILC_SOCKET_TYPE_ROUTER;
1388 idata = (SilcIDListData)sock->user_data;
1389 idata->status |= (SILC_IDLIST_STATUS_REGISTERED |
1390 SILC_IDLIST_STATUS_LOCAL);
1392 conn = sconn->conn.ref_ptr;
1393 param = &server->config->param;
1394 if (conn && conn->param)
1395 param = conn->param;
1397 /* Perform keepalive. */
1398 silc_socket_set_heartbeat(sock, param->keepalive_secs, server,
1399 silc_server_perform_heartbeat,
1402 /* Register re-key timeout */
1403 idata->rekey->timeout = param->key_exchange_rekey;
1404 silc_schedule_task_add(server->schedule, sock->sock,
1405 silc_server_rekey_callback,
1406 (void *)sock, idata->rekey->timeout, 0,
1407 SILC_TASK_TIMEOUT, SILC_TASK_PRI_NORMAL);
1409 if (!sconn->backup) {
1410 /* Mark this router our primary router if we're still standalone */
1411 if (server->standalone) {
1412 SILC_LOG_DEBUG(("This connection is our primary router"));
1413 server->id_entry->router = id_entry;
1414 server->router = id_entry;
1415 server->router->server_type = SILC_ROUTER;
1416 server->standalone = FALSE;
1418 /* If we are router then announce our possible servers. Backup
1419 router announces also global servers. */
1420 if (server->server_type == SILC_ROUTER)
1421 silc_server_announce_servers(server,
1422 server->backup_router ? TRUE : FALSE,
1423 0, SILC_PRIMARY_ROUTE(server));
1425 /* Announce our clients and channels to the router */
1426 silc_server_announce_clients(server, 0, SILC_PRIMARY_ROUTE(server));
1427 silc_server_announce_channels(server, 0, SILC_PRIMARY_ROUTE(server));
1429 /* If we are backup router then this primary router is whom we are
1431 if (server->server_type == SILC_BACKUP_ROUTER)
1432 silc_server_backup_add(server, server->id_entry, sock->ip,
1433 sconn->remote_port, TRUE);
1436 /* Add this server to be our backup router */
1437 id_entry->server_type = SILC_BACKUP_ROUTER;
1438 silc_server_backup_add(server, id_entry, sconn->backup_replace_ip,
1439 sconn->backup_replace_port, FALSE);
1442 sock->protocol = NULL;
1445 /* Call the completion callback to indicate that we've connected to
1447 if (sconn && sconn->callback)
1448 (*sconn->callback)(server, id_entry, sconn->callback_context);
1450 /* Free the temporary connection data context */
1452 silc_server_config_unref(&sconn->conn);
1453 silc_free(sconn->remote_host);
1454 silc_free(sconn->backup_replace_ip);
1457 if (sconn == server->router_conn)
1458 server->router_conn = NULL;
1461 /* Free the protocol object */
1462 if (sock->protocol == protocol)
1463 sock->protocol = NULL;
1464 silc_protocol_free(protocol);
1466 silc_packet_context_free(ctx->packet);
1468 silc_ske_free(ctx->ske);
1469 if (ctx->auth_meth == SILC_AUTH_PASSWORD)
1470 silc_free(ctx->auth_data);
1474 /* Host lookup callback that is called after the incoming connection's
1475 IP and FQDN lookup is performed. This will actually check the acceptance
1476 of the incoming connection and will register the key exchange protocol
1477 for this connection. */
1480 silc_server_accept_new_connection_lookup(SilcSocketConnection sock,
1483 SilcServerKEInternalContext *proto_ctx =
1484 (SilcServerKEInternalContext *)context;
1485 SilcServer server = (SilcServer)proto_ctx->server;
1486 SilcServerConfigClient *cconfig = NULL;
1487 SilcServerConfigServer *sconfig = NULL;
1488 SilcServerConfigRouter *rconfig = NULL;
1489 SilcServerConfigDeny *deny;
1492 /* Check whether we could resolve both IP and FQDN. */
1493 if (!sock->ip || (!strcmp(sock->ip, sock->hostname) &&
1494 server->config->require_reverse_lookup)) {
1495 SILC_LOG_ERROR(("IP/DNS lookup failed %s",
1496 sock->hostname ? sock->hostname :
1497 sock->ip ? sock->ip : ""));
1498 server->stat.conn_failures++;
1499 silc_server_disconnect_remote(server, sock,
1500 SILC_STATUS_ERR_INCOMPLETE_INFORMATION,
1501 "Unknown host or IP");
1502 silc_free(proto_ctx);
1506 /* Register the connection for network input and output. This sets
1507 that scheduler will listen for incoming packets for this connection
1508 and sets that outgoing packets may be sent to this connection as well.
1509 However, this doesn't set the scheduler for outgoing traffic, it
1510 will be set separately by calling SILC_SET_CONNECTION_FOR_OUTPUT,
1511 later when outgoing data is available. */
1512 context = (void *)server;
1513 SILC_REGISTER_CONNECTION_FOR_IO(sock->sock);
1515 SILC_LOG_INFO(("Incoming connection %s (%s)", sock->hostname,
1518 /* Listenning port */
1519 if (!server->sockets[(SilcUInt32)proto_ctx->context]) {
1520 silc_server_disconnect_remote(server, sock,
1521 SILC_STATUS_ERR_RESOURCE_LIMIT,
1522 "Connection refused");
1523 server->stat.conn_failures++;
1524 silc_free(proto_ctx);
1527 port = server->sockets[(SilcUInt32)proto_ctx->context]->port;
1529 /* Check whether this connection is denied to connect to us. */
1530 deny = silc_server_config_find_denied(server, sock->ip);
1532 deny = silc_server_config_find_denied(server, sock->hostname);
1534 /* The connection is denied */
1535 SILC_LOG_INFO(("Connection %s (%s) is denied",
1536 sock->hostname, sock->ip));
1537 silc_server_disconnect_remote(server, sock,
1538 SILC_STATUS_ERR_BANNED_FROM_SERVER,
1540 server->stat.conn_failures++;
1541 silc_free(proto_ctx);
1545 /* Check whether we have configured this sort of connection at all. We
1546 have to check all configurations since we don't know what type of
1547 connection this is. */
1548 if (!(cconfig = silc_server_config_find_client(server, sock->ip)))
1549 cconfig = silc_server_config_find_client(server, sock->hostname);
1550 if (!(sconfig = silc_server_config_find_server_conn(server, sock->ip)))
1551 sconfig = silc_server_config_find_server_conn(server, sock->hostname);
1552 if (server->server_type == SILC_ROUTER) {
1553 if (!(rconfig = silc_server_config_find_router_conn(server,
1554 sock->ip, sock->port)))
1555 rconfig = silc_server_config_find_router_conn(server, sock->hostname,
1558 if (!cconfig && !sconfig && !rconfig) {
1559 SILC_LOG_INFO(("Connection %s (%s) is not allowed", sock->hostname,
1561 silc_server_disconnect_remote(server, sock,
1562 SILC_STATUS_ERR_BANNED_FROM_SERVER, NULL);
1563 server->stat.conn_failures++;
1564 silc_free(proto_ctx);
1568 /* The connection is allowed */
1570 /* Set internal context for key exchange protocol. This is
1571 sent as context for the protocol. */
1572 proto_ctx->sock = sock;
1573 proto_ctx->rng = server->rng;
1574 proto_ctx->responder = TRUE;
1575 silc_server_config_ref(&proto_ctx->cconfig, server->config, cconfig);
1576 silc_server_config_ref(&proto_ctx->sconfig, server->config, sconfig);
1577 silc_server_config_ref(&proto_ctx->rconfig, server->config, rconfig);
1579 /* Take flags for key exchange. Since we do not know what type of connection
1580 this is, we go through all found configurations and use the global ones
1581 as well. This will result always into strictest key exchange flags. */
1582 SILC_GET_SKE_FLAGS(cconfig, proto_ctx);
1583 SILC_GET_SKE_FLAGS(sconfig, proto_ctx);
1584 SILC_GET_SKE_FLAGS(rconfig, proto_ctx);
1585 if (server->config->param.key_exchange_pfs)
1586 proto_ctx->flags |= SILC_SKE_SP_FLAG_PFS;
1588 /* Prepare the connection for key exchange protocol. We allocate the
1589 protocol but will not start it yet. The connector will be the
1590 initiator of the protocol thus we will wait for initiation from
1591 there before we start the protocol. */
1592 server->stat.auth_attempts++;
1593 SILC_LOG_DEBUG(("Starting key exchange protocol"));
1594 silc_protocol_alloc(SILC_PROTOCOL_SERVER_KEY_EXCHANGE,
1595 &sock->protocol, proto_ctx,
1596 silc_server_accept_new_connection_second);
1598 /* Register a timeout task that will be executed if the connector
1599 will not start the key exchange protocol within specified timeout
1600 and the connection will be closed. */
1601 proto_ctx->timeout_task =
1602 silc_schedule_task_add(server->schedule, sock->sock,
1603 silc_server_timeout_remote,
1605 server->config->key_exchange_timeout, 0,
1610 /* Accepts new connections to the server. Accepting new connections are
1611 done in three parts to make it async. */
1613 SILC_TASK_CALLBACK(silc_server_accept_new_connection)
1615 SilcServer server = (SilcServer)context;
1616 SilcSocketConnection newsocket;
1617 SilcServerKEInternalContext *proto_ctx;
1620 SILC_LOG_DEBUG(("Accepting new connection"));
1622 server->stat.conn_attempts++;
1624 sock = silc_net_accept_connection(fd);
1626 SILC_LOG_ERROR(("Could not accept new connection: %s", strerror(errno)));
1627 server->stat.conn_failures++;
1631 /* Check for maximum allowed connections */
1632 if (sock > server->config->param.connections_max) {
1633 SILC_LOG_ERROR(("Refusing connection, server is full"));
1634 server->stat.conn_failures++;
1635 silc_net_close_connection(sock);
1639 /* Set socket options */
1640 silc_net_set_socket_nonblock(sock);
1641 silc_net_set_socket_opt(sock, SOL_SOCKET, SO_REUSEADDR, 1);
1643 /* We don't create a ID yet, since we don't know what type of connection
1644 this is yet. But, we do add the connection to the socket table. */
1645 silc_socket_alloc(sock, SILC_SOCKET_TYPE_UNKNOWN, NULL, &newsocket);
1646 server->sockets[sock] = newsocket;
1648 /* Perform asynchronous host lookup. This will lookup the IP and the
1649 FQDN of the remote connection. After the lookup is done the connection
1650 is accepted further. */
1651 proto_ctx = silc_calloc(1, sizeof(*proto_ctx));
1652 proto_ctx->server = server;
1653 proto_ctx->context = (void *)fd;
1654 silc_socket_host_lookup(newsocket, TRUE,
1655 silc_server_accept_new_connection_lookup,
1656 (void *)proto_ctx, server->schedule);
1659 /* Second part of accepting new connection. Key exchange protocol has been
1660 performed and now it is time to do little connection authentication
1661 protocol to figure out whether this connection is client or server
1662 and whether it has right to access this server (especially server
1663 connections needs to be authenticated). */
1665 SILC_TASK_CALLBACK(silc_server_accept_new_connection_second)
1667 SilcProtocol protocol = (SilcProtocol)context;
1668 SilcServerKEInternalContext *ctx =
1669 (SilcServerKEInternalContext *)protocol->context;
1670 SilcServer server = (SilcServer)ctx->server;
1671 SilcSocketConnection sock = ctx->sock;
1672 SilcServerConnAuthInternalContext *proto_ctx;
1674 SILC_LOG_DEBUG(("Start"));
1676 if ((protocol->state == SILC_PROTOCOL_STATE_ERROR) ||
1677 (protocol->state == SILC_PROTOCOL_STATE_FAILURE)) {
1678 /* Error occured during protocol */
1679 SILC_LOG_DEBUG(("Error in key exchange protocol"));
1680 silc_protocol_free(protocol);
1681 sock->protocol = NULL;
1682 silc_ske_free_key_material(ctx->keymat);
1684 silc_packet_context_free(ctx->packet);
1686 silc_ske_free(ctx->ske);
1687 silc_free(ctx->dest_id);
1688 silc_server_config_unref(&ctx->cconfig);
1689 silc_server_config_unref(&ctx->sconfig);
1690 silc_server_config_unref(&ctx->rconfig);
1693 if (!SILC_IS_DISCONNECTING(sock)) {
1694 SILC_LOG_INFO(("Key exchange failed for %s:%d [%s]", sock->hostname,
1696 (sock->type == SILC_SOCKET_TYPE_UNKNOWN ? "Unknown" :
1697 sock->type == SILC_SOCKET_TYPE_CLIENT ? "Client" :
1698 sock->type == SILC_SOCKET_TYPE_SERVER ? "Server" :
1700 silc_server_disconnect_remote(server, sock,
1701 SILC_STATUS_ERR_KEY_EXCHANGE_FAILED,
1705 server->stat.auth_failures++;
1709 /* We now have the key material as the result of the key exchange
1710 protocol. Take the key material into use. Free the raw key material
1711 as soon as we've set them into use. */
1712 if (!silc_server_protocol_ke_set_keys(server, ctx->ske,
1713 ctx->sock, ctx->keymat,
1714 ctx->ske->prop->cipher,
1715 ctx->ske->prop->pkcs,
1716 ctx->ske->prop->hash,
1717 ctx->ske->prop->hmac,
1718 ctx->ske->prop->group,
1720 SILC_LOG_ERROR(("Error setting key material in use"));
1721 silc_protocol_free(protocol);
1722 sock->protocol = NULL;
1723 silc_ske_free_key_material(ctx->keymat);
1725 silc_packet_context_free(ctx->packet);
1727 silc_ske_free(ctx->ske);
1728 silc_free(ctx->dest_id);
1729 silc_server_config_unref(&ctx->cconfig);
1730 silc_server_config_unref(&ctx->sconfig);
1731 silc_server_config_unref(&ctx->rconfig);
1733 silc_server_disconnect_remote(server, sock,
1734 SILC_STATUS_ERR_KEY_EXCHANGE_FAILED, NULL);
1735 server->stat.auth_failures++;
1738 silc_ske_free_key_material(ctx->keymat);
1740 /* Allocate internal context for the authentication protocol. This
1741 is sent as context for the protocol. */
1742 proto_ctx = silc_calloc(1, sizeof(*proto_ctx));
1743 proto_ctx->server = (void *)server;
1744 proto_ctx->sock = sock;
1745 proto_ctx->ske = ctx->ske; /* Save SKE object from previous protocol */
1746 proto_ctx->responder = TRUE;
1747 proto_ctx->dest_id_type = ctx->dest_id_type;
1748 proto_ctx->dest_id = ctx->dest_id;
1749 proto_ctx->cconfig = ctx->cconfig;
1750 proto_ctx->sconfig = ctx->sconfig;
1751 proto_ctx->rconfig = ctx->rconfig;
1753 /* Free old protocol as it is finished now */
1754 silc_protocol_free(protocol);
1756 silc_packet_context_free(ctx->packet);
1758 sock->protocol = NULL;
1760 /* Allocate the authentication protocol. This is allocated here
1761 but we won't start it yet. We will be receiving party of this
1762 protocol thus we will wait that connecting party will make
1763 their first move. */
1764 SILC_LOG_DEBUG(("Starting connection authentication protocol"));
1765 silc_protocol_alloc(SILC_PROTOCOL_SERVER_CONNECTION_AUTH,
1766 &sock->protocol, proto_ctx,
1767 silc_server_accept_new_connection_final);
1769 /* Register timeout task. If the protocol is not executed inside
1770 this timelimit the connection will be terminated. */
1771 proto_ctx->timeout_task =
1772 silc_schedule_task_add(server->schedule, sock->sock,
1773 silc_server_timeout_remote,
1775 server->config->conn_auth_timeout, 0,
1780 /* After this is called, server don't wait for backup router anymore.
1781 This gets called automatically even after we have backup router
1782 connection established. */
1784 SILC_TASK_CALLBACK(silc_server_backup_router_wait)
1786 SilcServer server = context;
1787 server->wait_backup = FALSE;
1790 /* Final part of accepting new connection. The connection has now
1791 been authenticated and keys has been exchanged. We also know whether
1792 this is client or server connection. */
1794 SILC_TASK_CALLBACK(silc_server_accept_new_connection_final)
1796 SilcProtocol protocol = (SilcProtocol)context;
1797 SilcServerConnAuthInternalContext *ctx =
1798 (SilcServerConnAuthInternalContext *)protocol->context;
1799 SilcServer server = (SilcServer)ctx->server;
1800 SilcSocketConnection sock = ctx->sock;
1801 SilcUnknownEntry entry = (SilcUnknownEntry)sock->user_data;
1803 SilcServerConfigConnParams *param = &server->config->param;
1805 if (protocol->state == SILC_PROTOCOL_STATE_ERROR ||
1806 protocol->state == SILC_PROTOCOL_STATE_FAILURE) {
1807 /* Error occured during protocol */
1808 SILC_LOG_DEBUG(("Error during authentication protocol"));
1809 silc_protocol_free(protocol);
1810 sock->protocol = NULL;
1812 silc_packet_context_free(ctx->packet);
1814 silc_ske_free(ctx->ske);
1815 silc_free(ctx->dest_id);
1816 silc_server_config_unref(&ctx->cconfig);
1817 silc_server_config_unref(&ctx->sconfig);
1818 silc_server_config_unref(&ctx->rconfig);
1821 if (!SILC_IS_DISCONNECTING(sock)) {
1822 SILC_LOG_INFO(("Authentication failed for %s:%d [%s]", sock->hostname,
1824 (sock->type == SILC_SOCKET_TYPE_UNKNOWN ? "Unknown" :
1825 sock->type == SILC_SOCKET_TYPE_CLIENT ? "Client" :
1826 sock->type == SILC_SOCKET_TYPE_SERVER ? "Server" :
1828 silc_server_disconnect_remote(server, sock, SILC_STATUS_ERR_AUTH_FAILED,
1831 server->stat.auth_failures++;
1835 entry->data.last_receive = time(NULL);
1837 switch (ctx->conn_type) {
1838 case SILC_SOCKET_TYPE_CLIENT:
1840 SilcClientEntry client;
1841 SilcServerConfigClient *conn = ctx->cconfig.ref_ptr;
1843 /* Verify whether this connection is after all allowed to connect */
1844 if (!silc_server_connection_allowed(server, sock, ctx->conn_type,
1845 &server->config->param,
1846 conn->param, ctx->ske)) {
1847 server->stat.auth_failures++;
1851 /* If we are primary router and we have backup router configured
1852 but it has not connected to use yet, do not accept any other
1854 if (server->wait_backup && server->server_type == SILC_ROUTER &&
1855 !server->backup_router) {
1856 SilcServerConfigRouter *router;
1857 router = silc_server_config_get_backup_router(server);
1858 if (router && strcmp(server->config->server_info->primary->server_ip,
1860 silc_server_find_socket_by_host(server,
1861 SILC_SOCKET_TYPE_SERVER,
1862 router->backup_replace_ip, 0)) {
1863 SILC_LOG_INFO(("Will not accept connections because we do "
1864 "not have backup router connection established"));
1865 sock->protocol = NULL;
1866 silc_server_disconnect_remote(server, sock,
1867 SILC_STATUS_ERR_PERM_DENIED,
1868 "We do not have connection to backup "
1869 "router established, try later");
1870 silc_free(sock->user_data);
1871 server->stat.auth_failures++;
1873 /* From here on, wait 10 seconds for the backup router to appear. */
1874 silc_schedule_task_add(server->schedule, 0,
1875 silc_server_backup_router_wait,
1876 (void *)server, 10, 0,
1877 SILC_TASK_TIMEOUT, SILC_TASK_PRI_NORMAL);
1882 SILC_LOG_DEBUG(("Remote host is client"));
1883 SILC_LOG_INFO(("Connection %s (%s) is client", sock->hostname,
1886 /* Add the client to the client ID cache. The nickname and Client ID
1887 and other information is created after we have received NEW_CLIENT
1888 packet from client. */
1889 client = silc_idlist_add_client(server->local_list,
1890 NULL, NULL, NULL, NULL, NULL, sock, 0);
1892 SILC_LOG_ERROR(("Could not add new client to cache"));
1893 silc_free(sock->user_data);
1894 sock->protocol = NULL;
1895 silc_server_disconnect_remote(server, sock,
1896 SILC_STATUS_ERR_AUTH_FAILED, NULL);
1897 server->stat.auth_failures++;
1900 entry->data.status |= SILC_IDLIST_STATUS_LOCAL;
1903 server->stat.my_clients++;
1904 server->stat.clients++;
1905 server->stat.cell_clients++;
1907 /* Get connection parameters */
1909 param = conn->param;
1911 if (!param->keepalive_secs)
1912 param->keepalive_secs = server->config->param.keepalive_secs;
1914 if (!param->qos && server->config->param.qos) {
1915 param->qos = server->config->param.qos;
1916 param->qos_rate_limit = server->config->param.qos_rate_limit;
1917 param->qos_bytes_limit = server->config->param.qos_bytes_limit;
1918 param->qos_limit_sec = server->config->param.qos_limit_sec;
1919 param->qos_limit_usec = server->config->param.qos_limit_usec;
1922 /* Check if to be anonymous connection */
1923 if (param->anonymous)
1924 client->mode |= SILC_UMODE_ANONYMOUS;
1927 id_entry = (void *)client;
1930 case SILC_SOCKET_TYPE_SERVER:
1931 case SILC_SOCKET_TYPE_ROUTER:
1933 SilcServerEntry new_server;
1934 bool initiator = FALSE;
1935 bool backup_local = FALSE;
1936 bool backup_router = FALSE;
1937 char *backup_replace_ip = NULL;
1938 SilcUInt16 backup_replace_port = 0;
1939 SilcServerConfigServer *sconn = ctx->sconfig.ref_ptr;
1940 SilcServerConfigRouter *rconn = ctx->rconfig.ref_ptr;
1942 /* If we are backup router and this is incoming server connection
1943 and we do not have connection to primary router, do not allow
1945 if (server->server_type == SILC_BACKUP_ROUTER &&
1946 ctx->conn_type == SILC_SOCKET_TYPE_SERVER &&
1947 !SILC_PRIMARY_ROUTE(server)) {
1948 SILC_LOG_INFO(("Will not accept server connection because we do "
1949 "not have primary router connection established"));
1950 sock->protocol = NULL;
1951 silc_server_disconnect_remote(server, sock,
1952 SILC_STATUS_ERR_PERM_DENIED,
1953 "We do not have connection to primary "
1954 "router established, try later");
1955 silc_free(sock->user_data);
1956 server->stat.auth_failures++;
1960 if (ctx->conn_type == SILC_SOCKET_TYPE_ROUTER) {
1961 /* Verify whether this connection is after all allowed to connect */
1962 if (!silc_server_connection_allowed(server, sock, ctx->conn_type,
1963 &server->config->param,
1964 rconn ? rconn->param : NULL,
1966 silc_free(sock->user_data);
1967 server->stat.auth_failures++;
1973 param = rconn->param;
1975 if (!param->keepalive_secs)
1976 param->keepalive_secs = server->config->param.keepalive_secs;
1978 if (!param->qos && server->config->param.qos) {
1979 param->qos = server->config->param.qos;
1980 param->qos_rate_limit = server->config->param.qos_rate_limit;
1981 param->qos_bytes_limit = server->config->param.qos_bytes_limit;
1982 param->qos_limit_sec = server->config->param.qos_limit_sec;
1983 param->qos_limit_usec = server->config->param.qos_limit_usec;
1987 initiator = rconn->initiator;
1988 backup_local = rconn->backup_local;
1989 backup_router = rconn->backup_router;
1990 backup_replace_ip = rconn->backup_replace_ip;
1991 backup_replace_port = rconn->backup_replace_port;
1995 if (ctx->conn_type == SILC_SOCKET_TYPE_SERVER) {
1996 /* Verify whether this connection is after all allowed to connect */
1997 if (!silc_server_connection_allowed(server, sock, ctx->conn_type,
1998 &server->config->param,
1999 sconn ? sconn->param : NULL,
2001 silc_free(sock->user_data);
2002 server->stat.auth_failures++;
2007 param = sconn->param;
2009 if (!param->keepalive_secs)
2010 param->keepalive_secs = server->config->param.keepalive_secs;
2012 if (!param->qos && server->config->param.qos) {
2013 param->qos = server->config->param.qos;
2014 param->qos_rate_limit = server->config->param.qos_rate_limit;
2015 param->qos_bytes_limit = server->config->param.qos_bytes_limit;
2016 param->qos_limit_sec = server->config->param.qos_limit_sec;
2017 param->qos_limit_usec = server->config->param.qos_limit_usec;
2021 backup_router = sconn->backup_router;
2025 /* If we are primary router and we have backup router configured
2026 but it has not connected to use yet, do not accept any other
2028 if (server->wait_backup && server->server_type == SILC_ROUTER &&
2029 !server->backup_router && !backup_router) {
2030 SilcServerConfigRouter *router;
2031 router = silc_server_config_get_backup_router(server);
2032 if (router && strcmp(server->config->server_info->primary->server_ip,
2034 silc_server_find_socket_by_host(server,
2035 SILC_SOCKET_TYPE_SERVER,
2036 router->backup_replace_ip, 0)) {
2037 SILC_LOG_INFO(("Will not accept connections because we do "
2038 "not have backup router connection established"));
2039 sock->protocol = NULL;
2040 silc_server_disconnect_remote(server, sock,
2041 SILC_STATUS_ERR_PERM_DENIED,
2042 "We do not have connection to backup "
2043 "router established, try later");
2044 silc_free(sock->user_data);
2045 server->stat.auth_failures++;
2047 /* From here on, wait 10 seconds for the backup router to appear. */
2048 silc_schedule_task_add(server->schedule, 0,
2049 silc_server_backup_router_wait,
2050 (void *)server, 10, 0,
2051 SILC_TASK_TIMEOUT, SILC_TASK_PRI_NORMAL);
2056 SILC_LOG_DEBUG(("Remote host is %s",
2057 ctx->conn_type == SILC_SOCKET_TYPE_SERVER ?
2058 "server" : (backup_router ?
2059 "backup router" : "router")));
2060 SILC_LOG_INFO(("Connection %s (%s) is %s", sock->hostname,
2061 sock->ip, ctx->conn_type == SILC_SOCKET_TYPE_SERVER ?
2062 "server" : (backup_router ?
2063 "backup router" : "router")));
2065 /* Add the server into server cache. The server name and Server ID
2066 is updated after we have received NEW_SERVER packet from the
2067 server. We mark ourselves as router for this server if we really
2070 silc_idlist_add_server((ctx->conn_type == SILC_SOCKET_TYPE_SERVER ?
2071 server->local_list : (backup_router ?
2072 server->local_list :
2073 server->global_list)),
2075 (ctx->conn_type == SILC_SOCKET_TYPE_SERVER ?
2076 SILC_SERVER : SILC_ROUTER),
2078 (ctx->conn_type == SILC_SOCKET_TYPE_SERVER ?
2079 server->id_entry : (backup_router ?
2080 server->id_entry : NULL)),
2083 SILC_LOG_ERROR(("Could not add new server to cache"));
2084 silc_free(sock->user_data);
2085 sock->protocol = NULL;
2086 silc_server_disconnect_remote(server, sock,
2087 SILC_STATUS_ERR_AUTH_FAILED, NULL);
2088 server->stat.auth_failures++;
2091 entry->data.status |= SILC_IDLIST_STATUS_LOCAL;
2093 id_entry = (void *)new_server;
2095 /* If the incoming connection is router and marked as backup router
2096 then add it to be one of our backups */
2097 if (ctx->conn_type == SILC_SOCKET_TYPE_ROUTER && backup_router) {
2098 /* Change it back to SERVER type since that's what it really is. */
2100 ctx->conn_type = SILC_SOCKET_TYPE_SERVER;
2101 new_server->server_type = SILC_BACKUP_ROUTER;
2103 SILC_SERVER_SEND_OPERS(server, FALSE, TRUE, SILC_NOTIFY_TYPE_NONE,
2104 ("Backup router %s is now online",
2107 /* Remove the backup waiting with timeout */
2108 silc_schedule_task_add(server->schedule, 0,
2109 silc_server_backup_router_wait,
2110 (void *)server, 5, 0,
2111 SILC_TASK_TIMEOUT, SILC_TASK_PRI_NORMAL);
2115 if (ctx->conn_type == SILC_SOCKET_TYPE_SERVER) {
2116 server->stat.my_servers++;
2118 server->stat.my_routers++;
2119 server->stat.routers++;
2121 server->stat.servers++;
2123 /* Check whether this connection is to be our primary router connection
2124 if we do not already have the primary route. */
2125 if (!backup_router &&
2126 server->standalone && ctx->conn_type == SILC_SOCKET_TYPE_ROUTER) {
2127 if (silc_server_config_is_primary_route(server) && !initiator)
2130 SILC_LOG_DEBUG(("We are not standalone server anymore"));
2131 server->standalone = FALSE;
2132 if (!server->id_entry->router) {
2133 server->id_entry->router = id_entry;
2134 server->router = id_entry;
2145 sock->type = ctx->conn_type;
2147 /* Add the common data structure to the ID entry. */
2148 silc_idlist_add_data(id_entry, (SilcIDListData)sock->user_data);
2150 /* Add to sockets internal pointer for fast referencing */
2151 silc_free(sock->user_data);
2152 sock->user_data = id_entry;
2154 /* Connection has been fully established now. Everything is ok. */
2155 SILC_LOG_DEBUG(("New connection authenticated"));
2157 /* Perform keepalive. */
2158 if (param->keepalive_secs)
2159 silc_socket_set_heartbeat(sock, param->keepalive_secs, server,
2160 silc_server_perform_heartbeat,
2163 /* Perform Quality of Service */
2165 silc_socket_set_qos(sock, param->qos_rate_limit, param->qos_bytes_limit,
2166 param->qos_limit_sec, param->qos_limit_usec,
2170 silc_protocol_free(protocol);
2172 silc_packet_context_free(ctx->packet);
2174 silc_ske_free(ctx->ske);
2175 silc_free(ctx->dest_id);
2176 silc_server_config_unref(&ctx->cconfig);
2177 silc_server_config_unref(&ctx->sconfig);
2178 silc_server_config_unref(&ctx->rconfig);
2180 sock->protocol = NULL;
2183 /* This function is used to read packets from network and send packets to
2184 network. This is usually a generic task. */
2186 SILC_TASK_CALLBACK(silc_server_packet_process)
2188 SilcServer server = (SilcServer)context;
2189 SilcSocketConnection sock = server->sockets[fd];
2190 SilcIDListData idata;
2191 SilcCipher cipher = NULL;
2192 SilcHmac hmac = NULL;
2193 SilcUInt32 sequence = 0;
2194 bool local_is_router;
2198 SILC_LOG_DEBUG(("Unknown socket connection"));
2202 /* Packet sending */
2204 if (type == SILC_TASK_WRITE) {
2205 /* Do not send data to disconnected connection */
2206 if (SILC_IS_DISCONNECTING(sock) || SILC_IS_DISCONNECTED(sock)) {
2207 SILC_LOG_DEBUG(("Disconnected socket connection, cannot send"));
2211 server->stat.packets_sent++;
2213 /* Send the packet */
2214 ret = silc_packet_send(sock, TRUE);
2216 /* If returned -2 could not write to connection now, will do
2221 /* The packet has been sent and now it is time to set the connection
2222 back to only for input. When there is again some outgoing data
2223 available for this connection it will be set for output as well.
2224 This call clears the output setting and sets it only for input. */
2225 SILC_SET_CONNECTION_FOR_INPUT(server->schedule, fd);
2226 SILC_UNSET_OUTBUF_PENDING(sock);
2227 silc_buffer_clear(sock->outbuf);
2230 SILC_LOG_ERROR(("Error sending packet to connection "
2231 "%s:%d [%s]", sock->hostname, sock->port,
2232 (sock->type == SILC_SOCKET_TYPE_UNKNOWN ? "Unknown" :
2233 sock->type == SILC_SOCKET_TYPE_CLIENT ? "Client" :
2234 sock->type == SILC_SOCKET_TYPE_SERVER ? "Server" :
2237 if (sock->user_data)
2238 silc_server_free_sock_user_data(server, sock, NULL);
2239 SILC_SET_DISCONNECTING(sock);
2240 silc_server_close_connection(server, sock);
2245 /* Packet receiving */
2247 /* Read some data from connection */
2248 ret = silc_packet_receive(sock);
2252 SILC_LOG_ERROR(("Error receiving packet from connection "
2253 "%s:%d [%s] %s", sock->hostname, sock->port,
2254 (sock->type == SILC_SOCKET_TYPE_UNKNOWN ? "Unknown" :
2255 sock->type == SILC_SOCKET_TYPE_CLIENT ? "Client" :
2256 sock->type == SILC_SOCKET_TYPE_SERVER ? "Server" :
2257 "Router"), strerror(errno)));
2259 if (sock->user_data)
2260 silc_server_free_sock_user_data(server, sock, NULL);
2261 SILC_SET_DISCONNECTING(sock);
2262 silc_server_close_connection(server, sock);
2269 SILC_LOG_DEBUG(("Read EOF"));
2271 /* If connection is disconnecting already we will finally
2272 close the connection */
2273 if (SILC_IS_DISCONNECTING(sock)) {
2274 if (sock->user_data)
2275 silc_server_free_sock_user_data(server, sock, NULL);
2276 silc_server_close_connection(server, sock);
2280 SILC_LOG_DEBUG(("Premature EOF from connection %d", sock->sock));
2282 if (sock->user_data) {
2285 /* If backup disconnected then mark that resuming willl not be allowed */
2286 if (server->server_type == SILC_ROUTER && !server->backup_router &&
2287 sock->type == SILC_SOCKET_TYPE_SERVER && sock->user_data) {
2288 SilcServerEntry server_entry = sock->user_data;
2289 if (server_entry->server_type == SILC_BACKUP_ROUTER)
2290 server->backup_closed = TRUE;
2293 if (silc_socket_get_error(sock, tmp, sizeof(tmp) - 1))
2294 silc_server_free_sock_user_data(server, sock, tmp);
2296 silc_server_free_sock_user_data(server, sock, NULL);
2297 } else if (server->router_conn && server->router_conn->sock == sock &&
2298 !server->router && server->standalone) {
2299 silc_server_create_connections(server);
2302 SILC_SET_DISCONNECTING(sock);
2303 silc_server_close_connection(server, sock);
2307 /* If connection is disconnecting or disconnected we will ignore
2309 if (SILC_IS_DISCONNECTING(sock) || SILC_IS_DISCONNECTED(sock)) {
2310 SILC_LOG_DEBUG(("Ignoring read data from disconnected connection"));
2314 /* Get keys and stuff from ID entry */
2315 idata = (SilcIDListData)sock->user_data;
2317 cipher = idata->receive_key;
2318 hmac = idata->hmac_receive;
2319 sequence = idata->psn_receive;
2322 /* Then, process the packet. This will call the parser that will then
2323 decrypt and parse the packet. */
2325 local_is_router = (server->server_type == SILC_ROUTER);
2327 /* If socket connection is our primary, we are backup and we are doing
2328 backup resuming, we won't process the packet as being a router
2329 (affects channel message decryption). */
2330 if (server->backup_router && SILC_SERVER_IS_BACKUP(sock) &&
2331 SILC_PRIMARY_ROUTE(server) == sock)
2332 local_is_router = FALSE;
2334 ret = silc_packet_receive_process(sock, local_is_router,
2335 cipher, hmac, sequence,
2336 silc_server_packet_parse, server);
2338 /* If processing failed the connection is closed. */
2340 /* On packet processing errors we may close our primary router
2341 connection but won't become primary router if we are the backup
2342 since this is local error condition. */
2343 if (SILC_PRIMARY_ROUTE(server) == sock && server->backup_router)
2344 server->backup_noswitch = TRUE;
2346 if (sock->user_data)
2347 silc_server_free_sock_user_data(server, sock, NULL);
2348 SILC_SET_DISCONNECTING(sock);
2349 silc_server_close_connection(server, sock);
2353 /* Parses whole packet, received earlier. */
2355 SILC_TASK_CALLBACK(silc_server_packet_parse_real)
2357 SilcPacketParserContext *parse_ctx = (SilcPacketParserContext *)context;
2358 SilcServer server = (SilcServer)parse_ctx->context;
2359 SilcSocketConnection sock = parse_ctx->sock;
2360 SilcPacketContext *packet = parse_ctx->packet;
2361 SilcIDListData idata = (SilcIDListData)sock->user_data;
2364 server->stat.packets_received++;
2366 /* Parse the packet */
2367 if (parse_ctx->normal)
2368 ret = silc_packet_parse(packet, idata ? idata->receive_key : NULL);
2370 ret = silc_packet_parse_special(packet, idata ? idata->receive_key : NULL);
2372 /* If entry is disabled ignore what we got. */
2373 if (idata && idata->status & SILC_IDLIST_STATUS_DISABLED &&
2374 ret != SILC_PACKET_HEARTBEAT && ret != SILC_PACKET_RESUME_ROUTER &&
2375 ret != SILC_PACKET_REKEY && ret != SILC_PACKET_REKEY_DONE) {
2376 SILC_LOG_DEBUG(("Connection is disabled"));
2380 if (ret == SILC_PACKET_NONE) {
2381 SILC_LOG_DEBUG(("Error parsing packet"));
2385 /* Check that the the current client ID is same as in the client's packet. */
2386 if (sock->type == SILC_SOCKET_TYPE_CLIENT) {
2387 SilcClientEntry client = (SilcClientEntry)sock->user_data;
2388 if (client && client->id && packet->src_id) {
2389 void *id = silc_id_str2id(packet->src_id, packet->src_id_len,
2390 packet->src_id_type);
2391 if (!id || !SILC_ID_CLIENT_COMPARE(client->id, id)) {
2393 SILC_LOG_DEBUG(("Packet source is not same as sender"));
2400 if (server->server_type == SILC_ROUTER) {
2401 /* Route the packet if it is not destined to us. Other ID types but
2402 server are handled separately after processing them. */
2403 if (packet->dst_id && !(packet->flags & SILC_PACKET_FLAG_BROADCAST) &&
2404 packet->dst_id_type == SILC_ID_SERVER &&
2405 sock->type != SILC_SOCKET_TYPE_CLIENT &&
2406 memcmp(packet->dst_id, server->id_string, server->id_string_len)) {
2408 /* Route the packet to fastest route for the destination ID */
2409 void *id = silc_id_str2id(packet->dst_id, packet->dst_id_len,
2410 packet->dst_id_type);
2413 silc_server_packet_route(server,
2414 silc_server_route_get(server, id,
2415 packet->dst_id_type),
2422 /* Parse the incoming packet type */
2423 silc_server_packet_parse_type(server, sock, packet);
2425 /* Broadcast packet if it is marked as broadcast packet and it is
2426 originated from router and we are router. */
2427 if (server->server_type == SILC_ROUTER &&
2428 sock->type == SILC_SOCKET_TYPE_ROUTER &&
2429 packet->flags & SILC_PACKET_FLAG_BROADCAST) {
2430 /* Broadcast to our primary route */
2431 silc_server_packet_broadcast(server, SILC_PRIMARY_ROUTE(server), packet);
2433 /* If we have backup routers then we need to feed all broadcast
2434 data to those servers. */
2435 silc_server_backup_broadcast(server, sock, packet);
2439 silc_packet_context_free(packet);
2440 silc_free(parse_ctx);
2443 /* Parser callback called by silc_packet_receive_process. This merely
2444 registers timeout that will handle the actual parsing when appropriate. */
2446 bool silc_server_packet_parse(SilcPacketParserContext *parser_context,
2449 SilcServer server = (SilcServer)context;
2450 SilcSocketConnection sock = parser_context->sock;
2451 SilcIDListData idata = (SilcIDListData)sock->user_data;
2455 idata->psn_receive = parser_context->packet->sequence + 1;
2457 /* If protocol for this connection is key exchange or rekey then we'll
2458 process all packets synchronously, since there might be packets in
2459 queue that we are not able to decrypt without first processing the
2460 packets before them. */
2461 if (sock->protocol && sock->protocol->protocol &&
2462 (sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_KEY_EXCHANGE ||
2463 sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_REKEY)) {
2464 silc_server_packet_parse_real(server->schedule, server, 0, sock->sock,
2467 /* Reprocess data since we'll return FALSE here. This is because
2468 the idata->receive_key might have become valid in the last packet
2469 and we want to call this processor with valid cipher. */
2471 ret = silc_packet_receive_process(
2472 sock, server->server_type == SILC_ROUTER,
2474 idata->hmac_receive, idata->psn_receive,
2475 silc_server_packet_parse, server);
2477 ret = silc_packet_receive_process(
2478 sock, server->server_type == SILC_ROUTER,
2480 silc_server_packet_parse, server);
2483 /* On packet processing errors we may close our primary router
2484 connection but won't become primary router if we are the backup
2485 since this is local error condition. */
2486 if (SILC_PRIMARY_ROUTE(server) == sock && server->backup_router)
2487 server->backup_noswitch = TRUE;
2489 if (sock->user_data)
2490 silc_server_free_sock_user_data(server, sock, NULL);
2491 SILC_SET_DISCONNECTING(sock);
2492 silc_server_close_connection(server, sock);
2498 switch (sock->type) {
2499 case SILC_SOCKET_TYPE_UNKNOWN:
2500 case SILC_SOCKET_TYPE_CLIENT:
2501 /* Parse the packet with timeout */
2502 silc_schedule_task_add(server->schedule, sock->sock,
2503 silc_server_packet_parse_real,
2504 (void *)parser_context, 0, 100000,
2506 SILC_TASK_PRI_NORMAL);
2508 case SILC_SOCKET_TYPE_SERVER:
2509 case SILC_SOCKET_TYPE_ROUTER:
2510 /* Packets from servers are parsed immediately */
2511 silc_server_packet_parse_real(server->schedule, server, 0, sock->sock,
2521 /* Parses the packet type and calls what ever routines the packet type
2522 requires. This is done for all incoming packets. */
2524 void silc_server_packet_parse_type(SilcServer server,
2525 SilcSocketConnection sock,
2526 SilcPacketContext *packet)
2528 SilcPacketType type = packet->type;
2529 SilcIDListData idata = (SilcIDListData)sock->user_data;
2531 SILC_LOG_DEBUG(("Received %s packet [flags %d]",
2532 silc_get_packet_name(type), packet->flags));
2534 /* Parse the packet type */
2536 case SILC_PACKET_DISCONNECT:
2539 char *message = NULL;
2541 if (packet->flags & SILC_PACKET_FLAG_LIST)
2543 if (packet->buffer->len < 1)
2546 status = (SilcStatus)packet->buffer->data[0];
2547 if (packet->buffer->len > 1 &&
2548 silc_utf8_valid(packet->buffer->data + 1, packet->buffer->len - 1))
2549 message = silc_memdup(packet->buffer->data + 1,
2550 packet->buffer->len - 1);
2552 SILC_LOG_INFO(("Disconnected by %s (%s): %s (%d) %s",
2553 sock->ip, sock->hostname,
2554 silc_get_status_message(status), status,
2555 message ? message : ""));
2558 /* Do not switch to backup in case of error */
2559 server->backup_noswitch = (status == SILC_STATUS_OK ? FALSE : TRUE);
2561 /* If backup disconnected then mark that resuming willl not be allowed */
2562 if (server->server_type == SILC_ROUTER && !server->backup_router &&
2563 sock->type == SILC_SOCKET_TYPE_SERVER && sock->user_data) {
2564 SilcServerEntry server_entry = sock->user_data;
2565 if (server_entry->server_type == SILC_BACKUP_ROUTER)
2566 server->backup_closed = TRUE;
2569 /* Handle the disconnection from our end too */
2570 if (sock->user_data && SILC_IS_LOCAL(sock->user_data))
2571 silc_server_free_sock_user_data(server, sock, NULL);
2572 SILC_SET_DISCONNECTING(sock);
2573 silc_server_close_connection(server, sock);
2574 server->backup_noswitch = FALSE;
2578 case SILC_PACKET_SUCCESS:
2580 * Success received for something. For now we can have only
2581 * one protocol for connection executing at once hence this
2582 * success message is for whatever protocol is executing currently.
2584 if (packet->flags & SILC_PACKET_FLAG_LIST)
2587 silc_protocol_execute(sock->protocol, server->schedule, 0, 0);
2590 case SILC_PACKET_FAILURE:
2592 * Failure received for something. For now we can have only
2593 * one protocol for connection executing at once hence this
2594 * failure message is for whatever protocol is executing currently.
2596 if (packet->flags & SILC_PACKET_FLAG_LIST)
2598 if (sock->protocol) {
2599 sock->protocol->state = SILC_PROTOCOL_STATE_FAILURE;
2600 silc_protocol_execute(sock->protocol, server->schedule, 0, 0);
2604 /* Check for failure START_USE from backup router */
2605 if (server->server_type == SILC_SERVER &&
2606 server->backup_primary && packet->buffer->len == 4) {
2608 SILC_GET32_MSB(type, packet->buffer->data);
2609 if (type == SILC_SERVER_BACKUP_START_USE) {
2610 /* Attempt to reconnect to primary */
2611 SILC_LOG_DEBUG(("Received failed START_USE from backup %s", sock->ip));
2612 silc_server_create_connections(server);
2617 case SILC_PACKET_REJECT:
2618 if (packet->flags & SILC_PACKET_FLAG_LIST)
2623 case SILC_PACKET_NOTIFY:
2625 * Received notify packet. Server can receive notify packets from
2626 * router. Server then relays the notify messages to clients if needed.
2628 if (packet->flags & SILC_PACKET_FLAG_LIST)
2629 silc_server_notify_list(server, sock, packet);
2631 silc_server_notify(server, sock, packet);
2637 case SILC_PACKET_CHANNEL_MESSAGE:
2639 * Received channel message. Channel messages are special packets
2640 * (although probably most common ones) thus they are handled
2643 if (packet->flags & SILC_PACKET_FLAG_LIST)
2645 idata->last_receive = time(NULL);
2646 silc_server_channel_message(server, sock, packet);
2649 case SILC_PACKET_CHANNEL_KEY:
2651 * Received key for channel. As channels are created by the router
2652 * the keys are as well. We will distribute the key to all of our
2653 * locally connected clients on the particular channel. Router
2654 * never receives this channel and thus is ignored.
2656 if (packet->flags & SILC_PACKET_FLAG_LIST)
2658 silc_server_channel_key(server, sock, packet);
2664 case SILC_PACKET_COMMAND:
2666 * Recived command. Processes the command request and allocates the
2667 * command context and calls the command.
2669 if (packet->flags & SILC_PACKET_FLAG_LIST)
2671 silc_server_command_process(server, sock, packet);
2674 case SILC_PACKET_COMMAND_REPLY:
2676 * Received command reply packet. Received command reply to command. It
2677 * may be reply to command sent by us or reply to command sent by client
2678 * that we've routed further.
2680 if (packet->flags & SILC_PACKET_FLAG_LIST)
2682 silc_server_command_reply(server, sock, packet);
2686 * Private Message packets
2688 case SILC_PACKET_PRIVATE_MESSAGE:
2690 * Received private message packet. The packet is coming from either
2693 if (packet->flags & SILC_PACKET_FLAG_LIST)
2695 idata->last_receive = time(NULL);
2696 silc_server_private_message(server, sock, packet);
2699 case SILC_PACKET_PRIVATE_MESSAGE_KEY:
2701 * Private message key packet.
2703 if (packet->flags & SILC_PACKET_FLAG_LIST)
2705 silc_server_private_message_key(server, sock, packet);
2709 * Key Exchange protocol packets
2711 case SILC_PACKET_KEY_EXCHANGE:
2712 if (packet->flags & SILC_PACKET_FLAG_LIST)
2715 if (sock->protocol && sock->protocol->protocol &&
2716 sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_KEY_EXCHANGE) {
2717 SilcServerKEInternalContext *proto_ctx =
2718 (SilcServerKEInternalContext *)sock->protocol->context;
2720 proto_ctx->packet = silc_packet_context_dup(packet);
2722 /* Let the protocol handle the packet */
2723 silc_protocol_execute(sock->protocol, server->schedule, 0, 100000);
2725 SILC_LOG_ERROR(("Received Key Exchange packet but no key exchange "
2726 "protocol active, packet dropped."));
2730 case SILC_PACKET_KEY_EXCHANGE_1:
2731 if (packet->flags & SILC_PACKET_FLAG_LIST)
2734 if (sock->protocol && sock->protocol->protocol &&
2735 (sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_KEY_EXCHANGE ||
2736 sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_REKEY)) {
2738 if (sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_REKEY) {
2739 SilcServerRekeyInternalContext *proto_ctx =
2740 (SilcServerRekeyInternalContext *)sock->protocol->context;
2742 if (proto_ctx->packet)
2743 silc_packet_context_free(proto_ctx->packet);
2745 proto_ctx->packet = silc_packet_context_dup(packet);
2747 /* Let the protocol handle the packet */
2748 silc_protocol_execute(sock->protocol, server->schedule, 0, 0);
2750 SilcServerKEInternalContext *proto_ctx =
2751 (SilcServerKEInternalContext *)sock->protocol->context;
2753 if (proto_ctx->packet)
2754 silc_packet_context_free(proto_ctx->packet);
2756 proto_ctx->packet = silc_packet_context_dup(packet);
2757 proto_ctx->dest_id_type = packet->src_id_type;
2758 proto_ctx->dest_id = silc_id_str2id(packet->src_id, packet->src_id_len,
2759 packet->src_id_type);
2760 if (!proto_ctx->dest_id)
2763 /* Let the protocol handle the packet */
2764 silc_protocol_execute(sock->protocol, server->schedule,
2768 SILC_LOG_ERROR(("Received Key Exchange 1 packet but no key exchange "
2769 "protocol active, packet dropped."));
2773 case SILC_PACKET_KEY_EXCHANGE_2:
2774 if (packet->flags & SILC_PACKET_FLAG_LIST)
2777 if (sock->protocol && sock->protocol->protocol &&
2778 (sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_KEY_EXCHANGE ||
2779 sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_REKEY)) {
2781 if (sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_REKEY) {
2782 SilcServerRekeyInternalContext *proto_ctx =
2783 (SilcServerRekeyInternalContext *)sock->protocol->context;
2785 if (proto_ctx->packet)
2786 silc_packet_context_free(proto_ctx->packet);
2788 proto_ctx->packet = silc_packet_context_dup(packet);
2790 /* Let the protocol handle the packet */
2791 silc_protocol_execute(sock->protocol, server->schedule, 0, 0);
2793 SilcServerKEInternalContext *proto_ctx =
2794 (SilcServerKEInternalContext *)sock->protocol->context;
2796 if (proto_ctx->packet)
2797 silc_packet_context_free(proto_ctx->packet);
2799 proto_ctx->packet = silc_packet_context_dup(packet);
2800 proto_ctx->dest_id_type = packet->src_id_type;
2801 proto_ctx->dest_id = silc_id_str2id(packet->src_id, packet->src_id_len,
2802 packet->src_id_type);
2803 if (!proto_ctx->dest_id)
2806 /* Let the protocol handle the packet */
2807 silc_protocol_execute(sock->protocol, server->schedule,
2811 SILC_LOG_ERROR(("Received Key Exchange 2 packet but no key exchange "
2812 "protocol active, packet dropped."));
2816 case SILC_PACKET_CONNECTION_AUTH_REQUEST:
2818 * Connection authentication request packet. When we receive this packet
2819 * we will send to the other end information about our mandatory
2820 * authentication method for the connection. This packet maybe received
2823 if (packet->flags & SILC_PACKET_FLAG_LIST)
2825 silc_server_connection_auth_request(server, sock, packet);
2829 * Connection Authentication protocol packets
2831 case SILC_PACKET_CONNECTION_AUTH:
2832 /* Start of the authentication protocol. We receive here the
2833 authentication data and will verify it. */
2834 if (packet->flags & SILC_PACKET_FLAG_LIST)
2837 if (sock->protocol && sock->protocol->protocol->type
2838 == SILC_PROTOCOL_SERVER_CONNECTION_AUTH) {
2840 SilcServerConnAuthInternalContext *proto_ctx =
2841 (SilcServerConnAuthInternalContext *)sock->protocol->context;
2843 proto_ctx->packet = silc_packet_context_dup(packet);
2845 /* Let the protocol handle the packet */
2846 silc_protocol_execute(sock->protocol, server->schedule, 0, 0);
2848 SILC_LOG_ERROR(("Received Connection Auth packet but no authentication "
2849 "protocol active, packet dropped."));
2853 case SILC_PACKET_NEW_ID:
2855 * Received New ID packet. This includes some new ID that has been
2856 * created. It may be for client, server or channel. This is the way
2857 * to distribute information about new registered entities in the
2860 if (packet->flags & SILC_PACKET_FLAG_LIST)
2861 silc_server_new_id_list(server, sock, packet);
2863 silc_server_new_id(server, sock, packet);
2866 case SILC_PACKET_NEW_CLIENT:
2868 * Received new client packet. This includes client information that
2869 * we will use to create initial client ID. After creating new
2870 * ID we will send it to the client.
2872 if (packet->flags & SILC_PACKET_FLAG_LIST)
2874 silc_server_new_client(server, sock, packet);
2877 case SILC_PACKET_NEW_SERVER:
2879 * Received new server packet. This includes Server ID and some other
2880 * information that we may save. This is received after server has
2883 if (packet->flags & SILC_PACKET_FLAG_LIST)
2885 silc_server_new_server(server, sock, packet);
2888 case SILC_PACKET_NEW_CHANNEL:
2890 * Received new channel packet. Information about new channel in the
2891 * network are distributed using this packet.
2893 if (packet->flags & SILC_PACKET_FLAG_LIST)
2894 silc_server_new_channel_list(server, sock, packet);
2896 silc_server_new_channel(server, sock, packet);
2899 case SILC_PACKET_HEARTBEAT:
2901 * Received heartbeat.
2903 if (packet->flags & SILC_PACKET_FLAG_LIST)
2907 case SILC_PACKET_KEY_AGREEMENT:
2909 * Received heartbeat.
2911 if (packet->flags & SILC_PACKET_FLAG_LIST)
2913 silc_server_key_agreement(server, sock, packet);
2916 case SILC_PACKET_REKEY:
2918 * Received re-key packet. The sender wants to regenerate the session
2921 if (packet->flags & SILC_PACKET_FLAG_LIST)
2923 silc_server_rekey(server, sock, packet);
2926 case SILC_PACKET_REKEY_DONE:
2928 * The re-key is done.
2930 if (packet->flags & SILC_PACKET_FLAG_LIST)
2933 if (sock->protocol && sock->protocol->protocol &&
2934 sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_REKEY) {
2936 SilcServerRekeyInternalContext *proto_ctx =
2937 (SilcServerRekeyInternalContext *)sock->protocol->context;
2939 if (proto_ctx->packet)
2940 silc_packet_context_free(proto_ctx->packet);
2942 proto_ctx->packet = silc_packet_context_dup(packet);
2944 /* Let the protocol handle the packet */
2945 silc_protocol_execute(sock->protocol, server->schedule, 0, 0);
2947 SILC_LOG_ERROR(("Received Re-key done packet but no re-key "
2948 "protocol active, packet dropped."));
2952 case SILC_PACKET_FTP:
2954 if (packet->flags & SILC_PACKET_FLAG_LIST)
2956 silc_server_ftp(server, sock, packet);
2959 case SILC_PACKET_RESUME_CLIENT:
2961 if (packet->flags & SILC_PACKET_FLAG_LIST)
2963 silc_server_resume_client(server, sock, packet);
2966 case SILC_PACKET_RESUME_ROUTER:
2967 /* Resume router packet received. This packet is received for backup
2968 router resuming protocol. */
2969 if (packet->flags & SILC_PACKET_FLAG_LIST)
2971 silc_server_backup_resume_router(server, sock, packet);
2975 SILC_LOG_ERROR(("Incorrect packet type %d, packet dropped", type));
2980 /* Creates connection to a remote router. */
2982 void silc_server_create_connection(SilcServer server,
2983 const char *remote_host, SilcUInt32 port)
2985 SilcServerConnection sconn;
2987 /* Allocate connection object for hold connection specific stuff. */
2988 sconn = silc_calloc(1, sizeof(*sconn));
2989 sconn->remote_host = strdup(remote_host);
2990 sconn->remote_port = port;
2991 sconn->no_reconnect = TRUE;
2993 silc_schedule_task_add(server->schedule, 0,
2994 silc_server_connect_router,
2995 (void *)sconn, 0, 1, SILC_TASK_TIMEOUT,
2996 SILC_TASK_PRI_NORMAL);
2999 SILC_TASK_CALLBACK(silc_server_close_connection_final)
3001 SilcServer server = app_context;
3002 SilcSocketConnection sock = context;
3004 SILC_LOG_DEBUG(("Deleting socket %p", sock));
3006 /* Close the actual connection */
3007 silc_net_close_connection(sock->sock);
3008 server->sockets[sock->sock] = NULL;
3010 /* We won't listen for this connection anymore */
3011 silc_schedule_task_del_by_fd(server->schedule, sock->sock);
3012 silc_schedule_unset_listen_fd(server->schedule, sock->sock);
3014 silc_socket_free(sock);
3017 /* Closes connection to socket connection */
3019 void silc_server_close_connection(SilcServer server,
3020 SilcSocketConnection sock)
3024 if (SILC_IS_DISCONNECTED(sock)) {
3025 silc_schedule_task_del_by_fd(server->schedule, sock->sock);
3026 silc_schedule_task_add(server->schedule, sock->sock,
3027 silc_server_close_connection_final,
3028 (void *)sock, 0, 1, SILC_TASK_TIMEOUT,
3029 SILC_TASK_PRI_NORMAL);
3030 server->sockets[sock->sock] = NULL;
3034 /* If any protocol is active cancel its execution. It will call
3035 the final callback which will finalize the disconnection. */
3036 if (sock->protocol && sock->protocol->protocol &&
3037 sock->protocol->protocol->type != SILC_PROTOCOL_SERVER_BACKUP) {
3038 SILC_LOG_DEBUG(("Cancelling protocol, calling final callback"));
3039 silc_protocol_cancel(sock->protocol, server->schedule);
3040 sock->protocol->state = SILC_PROTOCOL_STATE_ERROR;
3041 silc_protocol_execute_final(sock->protocol, server->schedule);
3042 sock->protocol = NULL;
3046 memset(tmp, 0, sizeof(tmp));
3047 silc_socket_get_error(sock, tmp, sizeof(tmp));
3048 SILC_LOG_INFO(("Closing connection %s:%d [%s] %s", sock->hostname,
3050 (sock->type == SILC_SOCKET_TYPE_UNKNOWN ? "Unknown" :
3051 sock->type == SILC_SOCKET_TYPE_CLIENT ? "Client" :
3052 sock->type == SILC_SOCKET_TYPE_SERVER ? "Server" :
3053 "Router"), tmp[0] ? tmp : ""));
3055 SILC_SET_DISCONNECTED(sock);
3056 silc_schedule_task_add(server->schedule, sock->sock,
3057 silc_server_close_connection_final,
3058 (void *)sock, 0, 1, SILC_TASK_TIMEOUT,
3059 SILC_TASK_PRI_NORMAL);
3060 server->sockets[sock->sock] = NULL;
3063 /* Sends disconnect message to remote connection and disconnects the
3064 connection. NOTE: If this is called from protocol callback
3065 then sock->protocol must be set NULL before calling this, since
3066 this routine dispatches protocol callbacks too. */
3068 void silc_server_disconnect_remote(SilcServer server,
3069 SilcSocketConnection sock,
3070 SilcStatus status, ...)
3073 unsigned char buf[512];
3081 if (SILC_IS_DISCONNECTING(sock)) {
3082 SILC_SET_DISCONNECTED(sock);
3083 silc_server_close_connection(server, sock);
3087 memset(buf, 0, sizeof(buf));
3088 va_start(ap, status);
3089 cp = va_arg(ap, char *);
3091 vsnprintf(buf, sizeof(buf) - 1, cp, ap);
3096 SILC_LOG_DEBUG(("Disconnecting remote host"));
3098 /* Notify remote end that the conversation is over. The notify message
3099 is tried to be sent immediately. */
3103 len += silc_utf8_encoded_len(buf, strlen(buf), SILC_STRING_ASCII);
3105 buffer = silc_buffer_alloc_size(len);
3109 buffer->data[0] = status;
3111 silc_utf8_encode(buf, strlen(buf), SILC_STRING_ASCII, buffer->data + 1,
3113 silc_server_packet_send(server, sock, SILC_PACKET_DISCONNECT, 0,
3114 buffer->data, buffer->len, TRUE);
3115 silc_buffer_free(buffer);
3118 silc_server_packet_queue_purge(server, sock);
3120 /* Mark the connection to be disconnected */
3121 SILC_SET_DISCONNECTING(sock);
3122 silc_server_close_connection(server, sock);
3125 SILC_TASK_CALLBACK(silc_server_free_client_data_timeout)
3127 SilcServer server = app_context;
3128 SilcClientEntry client = context;
3130 assert(!silc_hash_table_count(client->channels));
3132 silc_idlist_del_data(client);
3133 silc_idcache_purge_by_context(server->local_list->clients, client);
3136 /* Frees client data and notifies about client's signoff. */
3138 void silc_server_free_client_data(SilcServer server,
3139 SilcSocketConnection sock,
3140 SilcClientEntry client,
3142 const char *signoff)
3144 SILC_LOG_DEBUG(("Freeing client data"));
3146 /* If there is pending outgoing data for the client then purge it
3147 to the network before removing the client entry. */
3148 silc_server_packet_queue_purge(server, sock);
3151 /* Check if anyone is watching this nickname */
3152 if (server->server_type == SILC_ROUTER)
3153 silc_server_check_watcher_list(server, client, NULL,
3154 SILC_NOTIFY_TYPE_SIGNOFF);
3156 /* Send SIGNOFF notify to routers. */
3158 silc_server_send_notify_signoff(server, SILC_PRIMARY_ROUTE(server),
3159 SILC_BROADCAST(server), client->id,
3163 /* Remove client from all channels */
3165 silc_server_remove_from_channels(server, NULL, client,
3166 TRUE, (char *)signoff, TRUE, FALSE);
3168 silc_server_remove_from_channels(server, NULL, client,
3169 FALSE, NULL, FALSE, FALSE);
3171 /* Remove this client from watcher list if it is */
3172 silc_server_del_from_watcher_list(server, client);
3174 /* Update statistics */
3175 server->stat.my_clients--;
3176 server->stat.clients--;
3177 if (server->stat.cell_clients)
3178 server->stat.cell_clients--;
3179 SILC_OPER_STATS_UPDATE(client, server, SILC_UMODE_SERVER_OPERATOR);
3180 SILC_OPER_STATS_UPDATE(client, router, SILC_UMODE_ROUTER_OPERATOR);
3181 silc_schedule_task_del_by_context(server->schedule, client);
3183 /* We will not delete the client entry right away. We will take it
3184 into history (for WHOWAS command) for 5 minutes, unless we're
3185 shutting down server. */
3186 if (!server->server_shutdown) {
3187 silc_schedule_task_add(server->schedule, 0,
3188 silc_server_free_client_data_timeout,
3190 SILC_TASK_TIMEOUT, SILC_TASK_PRI_LOW);
3191 client->data.status &= ~SILC_IDLIST_STATUS_REGISTERED;
3192 client->data.status &= ~SILC_IDLIST_STATUS_LOCAL;
3194 client->router = NULL;
3195 client->connection = NULL;
3197 /* Delete directly since we're shutting down server */
3198 silc_idlist_del_data(client);
3199 silc_idlist_del_client(server->local_list, client);
3203 /* Frees user_data pointer from socket connection object. This also sends
3204 appropriate notify packets to the network to inform about leaving
3207 void silc_server_free_sock_user_data(SilcServer server,
3208 SilcSocketConnection sock,
3209 const char *signoff_message)
3212 /* If any protocol is active cancel its execution */
3213 if (sock->protocol && sock->protocol->protocol &&
3214 sock->protocol->protocol->type != SILC_PROTOCOL_SERVER_BACKUP) {
3215 SILC_LOG_DEBUG(("Cancelling protocol, calling final callback"));
3216 silc_protocol_cancel(sock->protocol, server->schedule);
3217 sock->protocol->state = SILC_PROTOCOL_STATE_ERROR;
3218 silc_protocol_execute_final(sock->protocol, server->schedule);
3219 sock->protocol = NULL;
3222 switch (sock->type) {
3223 case SILC_SOCKET_TYPE_CLIENT:
3225 SilcClientEntry user_data = (SilcClientEntry)sock->user_data;
3226 silc_server_free_client_data(server, sock, user_data, TRUE,
3230 case SILC_SOCKET_TYPE_SERVER:
3231 case SILC_SOCKET_TYPE_ROUTER:
3233 SilcServerEntry user_data = (SilcServerEntry)sock->user_data;
3234 SilcServerEntry backup_router = NULL;
3236 SILC_LOG_DEBUG(("Freeing server data"));
3239 backup_router = silc_server_backup_get(server, user_data->id);
3241 if (!server->backup_router && server->server_type == SILC_ROUTER &&
3242 backup_router == server->id_entry &&
3243 sock->type != SILC_SOCKET_TYPE_ROUTER)
3244 backup_router = NULL;
3246 if (server->server_shutdown || server->backup_noswitch)
3247 backup_router = NULL;
3249 /* If this was our primary router connection then we're lost to
3250 the outside world. */
3251 if (server->router == user_data) {
3252 /* Check whether we have a backup router connection */
3253 if (!backup_router || backup_router == user_data) {
3254 silc_server_create_connections(server);
3255 server->id_entry->router = NULL;
3256 server->router = NULL;
3257 server->standalone = TRUE;
3258 server->backup_primary = FALSE;
3259 backup_router = NULL;
3261 if (server->id_entry != backup_router) {
3262 SILC_LOG_INFO(("New primary router is backup router %s",
3263 backup_router->server_name));
3264 server->id_entry->router = backup_router;
3265 server->router = backup_router;
3266 server->router_connect = time(0);
3267 server->backup_primary = TRUE;
3268 backup_router->data.status &= ~SILC_IDLIST_STATUS_DISABLED;
3270 /* Send START_USE to backup router to indicate we have switched */
3271 silc_server_backup_send_start_use(server,
3272 backup_router->connection,
3275 SILC_LOG_INFO(("We are now new primary router in this cell"));
3276 server->id_entry->router = NULL;
3277 server->router = NULL;
3278 server->standalone = TRUE;
3281 /* We stop here to take a breath */
3284 if (server->server_type == SILC_BACKUP_ROUTER) {
3285 server->server_type = SILC_ROUTER;
3287 /* We'll need to constantly try to reconnect to the primary
3288 router so that we'll see when it comes back online. */
3289 silc_server_backup_reconnect(server, sock->ip, sock->port,
3290 silc_server_backup_connected,
3294 /* Mark this connection as replaced */
3295 silc_server_backup_replaced_add(server, user_data->id,
3298 } else if (backup_router) {
3299 SILC_LOG_INFO(("Enabling the use of backup router %s",
3300 backup_router->server_name));
3302 /* Mark this connection as replaced */
3303 silc_server_backup_replaced_add(server, user_data->id,
3305 } else if (server->server_type == SILC_SERVER &&
3306 sock->type == SILC_SOCKET_TYPE_ROUTER) {
3307 /* Reconnect to the router (backup) */
3308 silc_server_create_connections(server);
3311 if (user_data->server_name)
3312 SILC_SERVER_SEND_OPERS(server, FALSE, TRUE, SILC_NOTIFY_TYPE_NONE,
3313 ("Server %s signoff", user_data->server_name));
3315 if (!backup_router) {
3316 /* Remove all servers that are originated from this server, and
3317 remove the clients of those servers too. */
3318 silc_server_remove_servers_by_server(server, user_data, TRUE);
3321 /* Remove the clients that this server owns as they will become
3322 invalid now too. For backup router the server is actually
3323 coming from the primary router, so mark that as the owner
3325 if (server->server_type == SILC_BACKUP_ROUTER &&
3326 sock->type == SILC_SOCKET_TYPE_SERVER)
3327 silc_server_remove_clients_by_server(server, server->router,
3331 silc_server_remove_clients_by_server(server, user_data,
3334 /* Remove channels owned by this server */
3335 if (server->server_type == SILC_SERVER)
3336 silc_server_remove_channels_by_server(server, user_data);
3338 /* Enable local server connections that may be disabled */
3339 silc_server_local_servers_toggle_enabled(server, TRUE);
3341 /* Update the client entries of this server to the new backup
3342 router. If we are the backup router we also resolve the real
3343 servers for the clients. After updating is over this also
3344 removes the clients that this server explicitly owns. */
3345 silc_server_update_clients_by_server(server, user_data,
3346 backup_router, TRUE);
3348 /* If we are router and just lost our primary router (now standlaone)
3349 we remove everything that was behind it, since we don't know
3351 if (server->server_type == SILC_ROUTER && server->standalone)
3352 /* Remove all servers that are originated from this server, and
3353 remove the clients of those servers too. */
3354 silc_server_remove_servers_by_server(server, user_data, TRUE);
3356 /* Finally remove the clients that are explicitly owned by this
3357 server. They go down with the server. */
3358 silc_server_remove_clients_by_server(server, user_data,
3361 /* Update our server cache to use the new backup router too. */
3362 silc_server_update_servers_by_server(server, user_data, backup_router);
3363 if (server->server_type == SILC_SERVER)
3364 silc_server_update_channels_by_server(server, user_data,
3367 /* Send notify about primary router going down to local operators */
3368 if (server->backup_router)
3369 SILC_SERVER_SEND_OPERS(server, FALSE, TRUE,
3370 SILC_NOTIFY_TYPE_NONE,
3371 ("%s switched to backup router %s "
3372 "(we are primary router now)",
3373 server->server_name, server->server_name));
3374 else if (server->router)
3375 SILC_SERVER_SEND_OPERS(server, FALSE, TRUE,
3376 SILC_NOTIFY_TYPE_NONE,
3377 ("%s switched to backup router %s",
3378 server->server_name,
3379 server->router->server_name));
3381 server->backup_noswitch = FALSE;
3383 /* Free the server entry */
3384 silc_server_backup_del(server, user_data);
3385 silc_server_backup_replaced_del(server, user_data);
3386 silc_idlist_del_data(user_data);
3387 if (!silc_idlist_del_server(server->local_list, user_data))
3388 silc_idlist_del_server(server->global_list, user_data);
3389 if (sock->type == SILC_SOCKET_TYPE_SERVER) {
3390 server->stat.my_servers--;
3392 server->stat.my_routers--;
3393 server->stat.routers--;
3395 server->stat.servers--;
3396 if (server->server_type == SILC_ROUTER)
3397 server->stat.cell_servers--;
3399 if (backup_router && backup_router != server->id_entry) {
3400 /* Announce all of our stuff that was created about 5 minutes ago.
3401 The backup router knows all the other stuff already. */
3402 if (server->server_type == SILC_ROUTER)
3403 silc_server_announce_servers(server, FALSE, time(0) - 300,
3404 backup_router->connection);
3406 /* Announce our clients and channels to the router */
3407 silc_server_announce_clients(server, time(0) - 300,
3408 backup_router->connection);
3409 silc_server_announce_channels(server, time(0) - 300,
3410 backup_router->connection);
3416 SilcUnknownEntry user_data = (SilcUnknownEntry)sock->user_data;
3418 SILC_LOG_DEBUG(("Freeing unknown connection data"));
3420 silc_idlist_del_data(user_data);
3421 silc_free(user_data);
3426 sock->user_data = NULL;
3429 /* Removes client from all channels it has joined. This is used when client
3430 connection is disconnected. If the client on a channel is last, the
3431 channel is removed as well. This sends the SIGNOFF notify types. */
3433 void silc_server_remove_from_channels(SilcServer server,
3434 SilcSocketConnection sock,
3435 SilcClientEntry client,
3437 const char *signoff_message,
3441 SilcChannelEntry channel;
3442 SilcChannelClientEntry chl;
3443 SilcHashTableList htl;
3444 SilcBuffer clidp = NULL;
3449 SILC_LOG_DEBUG(("Removing client from joined channels"));
3451 if (notify && !client->id)
3455 clidp = silc_id_payload_encode(client->id, SILC_ID_CLIENT);
3460 /* Remove the client from all channels. The client is removed from
3461 the channels' user list. */
3462 silc_hash_table_list(client->channels, &htl);
3463 while (silc_hash_table_get(&htl, NULL, (void *)&chl)) {
3464 channel = chl->channel;
3466 /* Remove channel if this is last client leaving the channel, unless
3467 the channel is permanent. */
3468 if (server->server_type != SILC_SERVER &&
3469 silc_hash_table_count(channel->user_list) < 2) {
3470 silc_server_channel_delete(server, channel);
3474 silc_hash_table_del(client->channels, channel);
3475 silc_hash_table_del(channel->user_list, client);
3476 channel->user_count--;
3478 /* If there is no global users on the channel anymore mark the channel
3479 as local channel. Do not check if the removed client is local client. */
3480 if (server->server_type == SILC_SERVER && channel->global_users &&
3481 chl->client->router && !silc_server_channel_has_global(channel))
3482 channel->global_users = FALSE;
3484 memset(chl, 'A', sizeof(*chl));
3487 /* Update statistics */
3488 if (SILC_IS_LOCAL(client))
3489 server->stat.my_chanclients--;
3490 if (server->server_type == SILC_ROUTER) {
3491 server->stat.cell_chanclients--;
3492 server->stat.chanclients--;
3495 /* If there is not at least one local user on the channel then we don't
3496 need the channel entry anymore, we can remove it safely, unless the
3497 channel is permanent channel */
3498 if (server->server_type == SILC_SERVER &&
3499 !silc_server_channel_has_local(channel)) {
3500 /* Notify about leaving client if this channel has global users. */
3501 if (notify && channel->global_users)
3502 silc_server_send_notify_to_channel(server, NULL, channel, FALSE,
3503 SILC_NOTIFY_TYPE_SIGNOFF,
3504 signoff_message ? 2 : 1,
3505 clidp->data, clidp->len,
3506 signoff_message, signoff_message ?
3507 strlen(signoff_message) : 0);
3509 silc_schedule_task_del_by_context(server->schedule, channel->rekey);
3510 silc_server_channel_delete(server, channel);
3514 /* Send notify to channel about client leaving SILC and channel too */
3516 silc_server_send_notify_to_channel(server, NULL, channel, FALSE,
3517 SILC_NOTIFY_TYPE_SIGNOFF,
3518 signoff_message ? 2 : 1,
3519 clidp->data, clidp->len,
3520 signoff_message, signoff_message ?
3521 strlen(signoff_message) : 0);
3523 if (killed && clidp) {
3524 /* Remove the client from channel's invite list */
3525 if (channel->invite_list &&
3526 silc_hash_table_count(channel->invite_list)) {
3528 SilcArgumentPayload iargs;
3529 ab = silc_argument_payload_encode_one(NULL, clidp->data,
3531 iargs = silc_argument_payload_parse(ab->data, ab->len, 1);
3532 silc_server_inviteban_process(server, channel->invite_list, 1, iargs);
3533 silc_buffer_free(ab);
3534 silc_argument_payload_free(iargs);
3538 /* Don't create keys if we are shutting down */
3539 if (server->server_shutdown)
3542 /* Re-generate channel key if needed */
3543 if (keygen && !(channel->mode & SILC_CHANNEL_MODE_PRIVKEY)) {
3544 if (!silc_server_create_channel_key(server, channel, 0))
3547 /* Send the channel key to the channel. The key of course is not sent
3548 to the client who was removed from the channel. */
3549 silc_server_send_channel_key(server, client->connection, channel,
3550 server->server_type == SILC_ROUTER ?
3551 FALSE : !server->standalone);
3555 silc_hash_table_list_reset(&htl);
3557 silc_buffer_free(clidp);
3560 /* Removes client from one channel. This is used for example when client
3561 calls LEAVE command to remove itself from the channel. Returns TRUE
3562 if channel still exists and FALSE if the channel is removed when
3563 last client leaves the channel. If `notify' is FALSE notify messages
3566 bool silc_server_remove_from_one_channel(SilcServer server,
3567 SilcSocketConnection sock,
3568 SilcChannelEntry channel,
3569 SilcClientEntry client,
3572 SilcChannelClientEntry chl;
3575 SILC_LOG_DEBUG(("Removing %s from channel %s",
3576 silc_id_render(client->id, SILC_ID_CLIENT),
3577 channel->channel_name));
3579 /* Get the entry to the channel, if this client is not on the channel
3581 if (!silc_hash_table_find(client->channels, channel, NULL, (void *)&chl))
3584 /* Remove channel if this is last client leaving the channel, unless
3585 the channel is permanent. */
3586 if (server->server_type != SILC_SERVER &&
3587 silc_hash_table_count(channel->user_list) < 2) {
3588 silc_server_channel_delete(server, channel);
3592 silc_hash_table_del(client->channels, channel);
3593 silc_hash_table_del(channel->user_list, client);
3594 channel->user_count--;
3596 /* If there is no global users on the channel anymore mark the channel
3597 as local channel. Do not check if the client is local client. */
3598 if (server->server_type == SILC_SERVER && channel->global_users &&
3599 chl->client->router && !silc_server_channel_has_global(channel))
3600 channel->global_users = FALSE;
3602 memset(chl, 'O', sizeof(*chl));
3605 /* Update statistics */
3606 if (SILC_IS_LOCAL(client))
3607 server->stat.my_chanclients--;
3608 if (server->server_type == SILC_ROUTER) {
3609 server->stat.cell_chanclients--;
3610 server->stat.chanclients--;
3613 clidp = silc_id_payload_encode(client->id, SILC_ID_CLIENT);
3617 /* If there is not at least one local user on the channel then we don't
3618 need the channel entry anymore, we can remove it safely, unless the
3619 channel is permanent channel */
3620 if (server->server_type == SILC_SERVER &&
3621 !silc_server_channel_has_local(channel)) {
3622 /* Notify about leaving client if this channel has global users. */
3623 if (notify && channel->global_users)
3624 silc_server_send_notify_to_channel(server, NULL, channel, FALSE,
3625 SILC_NOTIFY_TYPE_LEAVE, 1,
3626 clidp->data, clidp->len);
3628 silc_schedule_task_del_by_context(server->schedule, channel->rekey);
3629 silc_server_channel_delete(server, channel);
3630 silc_buffer_free(clidp);
3634 /* Send notify to channel about client leaving the channel */
3636 silc_server_send_notify_to_channel(server, NULL, channel, FALSE,
3637 SILC_NOTIFY_TYPE_LEAVE, 1,
3638 clidp->data, clidp->len);
3640 silc_buffer_free(clidp);
3644 /* Timeout callback. This is called if connection is idle or for some
3645 other reason is not responding within some period of time. This
3646 disconnects the remote end. */
3648 SILC_TASK_CALLBACK(silc_server_timeout_remote)
3650 SilcServer server = (SilcServer)context;
3651 SilcSocketConnection sock = server->sockets[fd];
3652 SilcProtocolType protocol = 0;
3654 SILC_LOG_DEBUG(("Start"));
3659 SILC_LOG_ERROR(("No response from %s (%s), Connection timeout",
3660 sock->hostname, sock->ip));
3662 /* If we have protocol active we must assure that we call the protocol's
3663 final callback so that all the memory is freed. */
3664 if (sock->protocol && sock->protocol->protocol &&
3665 sock->protocol->protocol->type != SILC_PROTOCOL_SERVER_BACKUP) {
3666 protocol = sock->protocol->protocol->type;
3667 silc_protocol_cancel(sock->protocol, server->schedule);
3668 sock->protocol->state = SILC_PROTOCOL_STATE_ERROR;
3669 silc_protocol_execute_final(sock->protocol, server->schedule);
3670 sock->protocol = NULL;
3674 silc_server_disconnect_remote(server, sock,
3676 SILC_PROTOCOL_SERVER_CONNECTION_AUTH ?
3677 SILC_STATUS_ERR_AUTH_FAILED :
3678 SILC_STATUS_ERR_KEY_EXCHANGE_FAILED,
3679 "Connection timeout");
3681 if (sock->user_data)
3682 silc_server_free_sock_user_data(server, sock, NULL);
3685 /* Creates new channel. Sends NEW_CHANNEL packet to primary route. This
3686 function may be used only by router. In real SILC network all channels
3687 are created by routers thus this function is never used by normal
3690 SilcChannelEntry silc_server_create_new_channel(SilcServer server,
3691 SilcServerID *router_id,
3697 SilcChannelID *channel_id;
3698 SilcChannelEntry entry;
3702 SILC_LOG_DEBUG(("Creating new channel %s", channel_name));
3705 cipher = SILC_DEFAULT_CIPHER;
3707 hmac = SILC_DEFAULT_HMAC;
3709 /* Allocate cipher */
3710 if (!silc_cipher_alloc(cipher, &key))
3714 if (!silc_hmac_alloc(hmac, NULL, &newhmac)) {
3715 silc_cipher_free(key);
3719 channel_name = strdup(channel_name);
3721 /* Create the channel ID */
3722 if (!silc_id_create_channel_id(server, router_id, server->rng,
3724 silc_free(channel_name);
3725 silc_cipher_free(key);
3726 silc_hmac_free(newhmac);
3730 /* Create the channel */
3731 entry = silc_idlist_add_channel(server->local_list, channel_name,
3732 SILC_CHANNEL_MODE_NONE, channel_id,
3733 NULL, key, newhmac, 0);
3735 silc_free(channel_name);
3736 silc_cipher_free(key);
3737 silc_hmac_free(newhmac);
3738 silc_free(channel_id);
3742 entry->cipher = strdup(cipher);
3743 entry->hmac_name = strdup(hmac);
3745 /* Now create the actual key material */
3746 if (!silc_server_create_channel_key(server, entry,
3747 silc_cipher_get_key_len(key) / 8)) {
3748 silc_idlist_del_channel(server->local_list, entry);
3752 /* Notify other routers about the new channel. We send the packet
3753 to our primary route. */
3755 silc_server_send_new_channel(server, SILC_PRIMARY_ROUTE(server), TRUE,
3756 channel_name, entry->id,
3757 silc_id_get_len(entry->id, SILC_ID_CHANNEL),
3760 /* Distribute to backup routers */
3761 if (broadcast && server->server_type == SILC_ROUTER) {
3764 SilcUInt32 name_len = strlen(channel_name);
3765 SilcUInt32 channel_id_len = silc_id_get_len(entry->id, SILC_ID_CHANNEL);
3766 cid = silc_id_id2str(entry->id, SILC_ID_CHANNEL);
3768 packet = silc_channel_payload_encode(channel_name, name_len,
3769 cid, channel_id_len, entry->mode);
3770 silc_server_backup_send(server, NULL, SILC_PACKET_NEW_CHANNEL, 0,
3771 packet->data, packet->len, FALSE, TRUE);
3773 silc_buffer_free(packet);
3776 server->stat.my_channels++;
3777 if (server->server_type == SILC_ROUTER) {
3778 server->stat.channels++;
3779 server->stat.cell_channels++;
3780 entry->users_resolved = TRUE;
3786 /* Same as above but creates the channel with Channel ID `channel_id. */
3789 silc_server_create_new_channel_with_id(SilcServer server,
3793 SilcChannelID *channel_id,
3796 SilcChannelEntry entry;
3800 SILC_LOG_DEBUG(("Creating new channel %s", channel_name));
3803 cipher = SILC_DEFAULT_CIPHER;
3805 hmac = SILC_DEFAULT_HMAC;
3807 /* Allocate cipher */
3808 if (!silc_cipher_alloc(cipher, &key))
3812 if (!silc_hmac_alloc(hmac, NULL, &newhmac)) {
3813 silc_cipher_free(key);
3817 channel_name = strdup(channel_name);
3819 /* Create the channel */
3820 entry = silc_idlist_add_channel(server->local_list, channel_name,
3821 SILC_CHANNEL_MODE_NONE, channel_id,
3822 NULL, key, newhmac, 0);
3824 silc_cipher_free(key);
3825 silc_hmac_free(newhmac);
3826 silc_free(channel_name);
3830 /* Now create the actual key material */
3831 if (!silc_server_create_channel_key(server, entry,
3832 silc_cipher_get_key_len(key) / 8)) {
3833 silc_idlist_del_channel(server->local_list, entry);
3837 /* Notify other routers about the new channel. We send the packet
3838 to our primary route. */
3840 silc_server_send_new_channel(server, SILC_PRIMARY_ROUTE(server), TRUE,
3841 channel_name, entry->id,
3842 silc_id_get_len(entry->id, SILC_ID_CHANNEL),
3845 /* Distribute to backup routers */
3846 if (broadcast && server->server_type == SILC_ROUTER) {
3849 SilcUInt32 name_len = strlen(channel_name);
3850 SilcUInt32 channel_id_len = silc_id_get_len(entry->id, SILC_ID_CHANNEL);
3851 cid = silc_id_id2str(entry->id, SILC_ID_CHANNEL);
3853 packet = silc_channel_payload_encode(channel_name, name_len,
3854 cid, channel_id_len, entry->mode);
3855 silc_server_backup_send(server, NULL, SILC_PACKET_NEW_CHANNEL, 0,
3856 packet->data, packet->len, FALSE, TRUE);
3858 silc_buffer_free(packet);
3861 server->stat.my_channels++;
3862 if (server->server_type == SILC_ROUTER) {
3863 server->stat.channels++;
3864 server->stat.cell_channels++;
3865 entry->users_resolved = TRUE;
3871 /* Channel's key re-key timeout callback. */
3873 SILC_TASK_CALLBACK(silc_server_channel_key_rekey)
3875 SilcServer server = app_context;
3876 SilcServerChannelRekey rekey = (SilcServerChannelRekey)context;
3880 /* Return now if we are shutting down */
3881 if (server->server_shutdown)
3884 if (!silc_server_create_channel_key(server, rekey->channel, rekey->key_len))
3887 silc_server_send_channel_key(server, NULL, rekey->channel, FALSE);
3890 /* Generates new channel key. This is used to create the initial channel key
3891 but also to re-generate new key for channel. If `key_len' is provided
3892 it is the bytes of the key length. */
3894 bool silc_server_create_channel_key(SilcServer server,
3895 SilcChannelEntry channel,
3899 unsigned char channel_key[32], hash[32];
3902 if (channel->mode & SILC_CHANNEL_MODE_PRIVKEY) {
3903 SILC_LOG_DEBUG(("Channel has private keys, will not generate new key"));
3907 SILC_LOG_DEBUG(("Generating channel %s key", channel->channel_name));
3909 if (!channel->channel_key)
3910 if (!silc_cipher_alloc(SILC_DEFAULT_CIPHER, &channel->channel_key)) {
3911 channel->channel_key = NULL;
3917 else if (channel->key_len)
3918 len = channel->key_len / 8;
3920 len = silc_cipher_get_key_len(channel->channel_key) / 8;
3922 /* Create channel key */
3923 for (i = 0; i < len; i++) channel_key[i] = silc_rng_get_byte(server->rng);
3926 silc_cipher_set_key(channel->channel_key, channel_key, len * 8);
3928 /* Remove old key if exists */
3930 memset(channel->key, 0, channel->key_len / 8);
3931 silc_free(channel->key);
3935 channel->key_len = len * 8;
3936 channel->key = silc_memdup(channel_key, len);
3937 memset(channel_key, 0, sizeof(channel_key));
3939 /* Generate HMAC key from the channel key data and set it */
3941 if (!silc_hmac_alloc(SILC_DEFAULT_HMAC, NULL, &channel->hmac)) {
3942 memset(channel->key, 0, channel->key_len / 8);
3943 silc_free(channel->key);
3944 channel->channel_key = NULL;
3947 silc_hash_make(silc_hmac_get_hash(channel->hmac), channel->key, len, hash);
3948 silc_hmac_set_key(channel->hmac, hash,
3949 silc_hash_len(silc_hmac_get_hash(channel->hmac)));
3950 memset(hash, 0, sizeof(hash));
3952 if (server->server_type == SILC_ROUTER) {
3953 if (!channel->rekey)
3954 channel->rekey = silc_calloc(1, sizeof(*channel->rekey));
3955 channel->rekey->channel = channel;
3956 channel->rekey->key_len = key_len;
3957 if (channel->rekey->task)
3958 silc_schedule_task_del(server->schedule, channel->rekey->task);
3960 channel->rekey->task =
3961 silc_schedule_task_add(server->schedule, 0,
3962 silc_server_channel_key_rekey,
3963 (void *)channel->rekey,
3964 server->config->channel_rekey_secs, 0,
3966 SILC_TASK_PRI_NORMAL);
3972 /* Saves the channel key found in the encoded `key_payload' buffer. This
3973 function is used when we receive Channel Key Payload and also when we're
3974 processing JOIN command reply. Returns entry to the channel. */
3976 SilcChannelEntry silc_server_save_channel_key(SilcServer server,
3977 SilcBuffer key_payload,
3978 SilcChannelEntry channel)
3980 SilcChannelKeyPayload payload = NULL;
3981 SilcChannelID *id = NULL;
3982 unsigned char *tmp, hash[32];
3986 /* Decode channel key payload */
3987 payload = silc_channel_key_payload_parse(key_payload->data,
3990 SILC_LOG_ERROR(("Bad channel key payload received, dropped"));
3995 /* Get the channel entry */
3998 /* Get channel ID */
3999 tmp = silc_channel_key_get_id(payload, &tmp_len);
4000 id = silc_id_str2id(tmp, tmp_len, SILC_ID_CHANNEL);
4006 channel = silc_idlist_find_channel_by_id(server->local_list, id, NULL);
4008 channel = silc_idlist_find_channel_by_id(server->global_list, id, NULL);
4010 if (server->server_type == SILC_ROUTER)
4011 SILC_LOG_ERROR(("Received key for non-existent channel %s",
4012 silc_id_render(id, SILC_ID_CHANNEL)));
4018 SILC_LOG_DEBUG(("Saving new channel %s key", channel->channel_name));
4020 tmp = silc_channel_key_get_key(payload, &tmp_len);
4026 cipher = silc_channel_key_get_cipher(payload, NULL);
4032 /* Remove old key if exists */
4034 memset(channel->key, 0, channel->key_len / 8);
4035 silc_free(channel->key);
4036 silc_cipher_free(channel->channel_key);
4039 /* Create new cipher */
4040 if (!silc_cipher_alloc(cipher, &channel->channel_key)) {
4041 channel->channel_key = NULL;
4046 if (channel->cipher)
4047 silc_free(channel->cipher);
4048 channel->cipher = strdup(cipher);
4051 channel->key_len = tmp_len * 8;
4052 channel->key = silc_memdup(tmp, tmp_len);
4053 silc_cipher_set_key(channel->channel_key, tmp, channel->key_len);
4055 /* Generate HMAC key from the channel key data and set it */
4057 if (!silc_hmac_alloc(SILC_DEFAULT_HMAC, NULL, &channel->hmac)) {
4058 memset(channel->key, 0, channel->key_len / 8);
4059 silc_free(channel->key);
4060 channel->channel_key = NULL;
4063 silc_hash_make(silc_hmac_get_hash(channel->hmac), tmp, tmp_len, hash);
4064 silc_hmac_set_key(channel->hmac, hash,
4065 silc_hash_len(silc_hmac_get_hash(channel->hmac)));
4067 memset(hash, 0, sizeof(hash));
4068 memset(tmp, 0, tmp_len);
4070 if (server->server_type == SILC_ROUTER) {
4071 if (!channel->rekey)
4072 channel->rekey = silc_calloc(1, sizeof(*channel->rekey));
4073 channel->rekey->channel = channel;
4074 if (channel->rekey->task)
4075 silc_schedule_task_del(server->schedule, channel->rekey->task);
4077 channel->rekey->task =
4078 silc_schedule_task_add(server->schedule, 0,
4079 silc_server_channel_key_rekey,
4080 (void *)channel->rekey,
4081 server->config->channel_rekey_secs, 0,
4083 SILC_TASK_PRI_NORMAL);
4089 silc_channel_key_payload_free(payload);
4094 /* Heartbeat callback. This function is set as argument for the
4095 silc_socket_set_heartbeat function. The library will call this function
4096 at the set time interval. */
4098 void silc_server_perform_heartbeat(SilcSocketConnection sock,
4101 SilcServer server = hb_context;
4103 SILC_LOG_DEBUG(("Sending heartbeat to %s:%d (%s)", sock->hostname,
4104 sock->port, sock->ip));
4106 /* Send the heartbeat */
4107 silc_server_send_heartbeat(server, sock);
4110 /* Returns assembled of all servers in the given ID list. The packet's
4111 form is dictated by the New ID payload. */
4113 static void silc_server_announce_get_servers(SilcServer server,
4114 SilcServerEntry remote,
4116 SilcBuffer *servers,
4117 unsigned long creation_time)
4119 SilcIDCacheList list;
4120 SilcIDCacheEntry id_cache;
4121 SilcServerEntry entry;
4124 /* Go through all clients in the list */
4125 if (silc_idcache_get_all(id_list->servers, &list)) {
4126 if (silc_idcache_list_first(list, &id_cache)) {
4128 entry = (SilcServerEntry)id_cache->context;
4130 /* Do not announce the one we've sending our announcements and
4131 do not announce ourself. Also check the creation time if it's
4133 if ((entry == remote) || (entry == server->id_entry) ||
4134 (creation_time && entry->data.created < creation_time)) {
4135 if (!silc_idcache_list_next(list, &id_cache))
4140 idp = silc_id_payload_encode(entry->id, SILC_ID_SERVER);
4142 *servers = silc_buffer_realloc(*servers,
4144 (*servers)->truelen + idp->len :
4146 silc_buffer_pull_tail(*servers, ((*servers)->end - (*servers)->data));
4147 silc_buffer_put(*servers, idp->data, idp->len);
4148 silc_buffer_pull(*servers, idp->len);
4149 silc_buffer_free(idp);
4151 if (!silc_idcache_list_next(list, &id_cache))
4156 silc_idcache_list_free(list);
4161 silc_server_announce_encode_notify(SilcNotifyType notify, SilcUInt32 argc, ...)
4167 p = silc_notify_payload_encode(notify, argc, ap);
4173 /* This function is used by router to announce existing servers to our
4174 primary router when we've connected to it. If `creation_time' is non-zero
4175 then only the servers that has been created after the `creation_time'
4176 will be announced. */
4178 void silc_server_announce_servers(SilcServer server, bool global,
4179 unsigned long creation_time,
4180 SilcSocketConnection remote)
4182 SilcBuffer servers = NULL;
4184 SILC_LOG_DEBUG(("Announcing servers"));
4186 /* Get servers in local list */
4187 silc_server_announce_get_servers(server, remote->user_data,
4188 server->local_list, &servers,
4192 /* Get servers in global list */
4193 silc_server_announce_get_servers(server, remote->user_data,
4194 server->global_list, &servers,
4198 silc_buffer_push(servers, servers->data - servers->head);
4199 SILC_LOG_HEXDUMP(("servers"), servers->data, servers->len);
4201 /* Send the packet */
4202 silc_server_packet_send(server, remote,
4203 SILC_PACKET_NEW_ID, SILC_PACKET_FLAG_LIST,
4204 servers->data, servers->len, TRUE);
4206 silc_buffer_free(servers);
4210 /* Returns assembled packet of all clients in the given ID list. The
4211 packet's form is dictated by the New ID Payload. */
4213 static void silc_server_announce_get_clients(SilcServer server,
4215 SilcBuffer *clients,
4217 unsigned long creation_time)
4219 SilcIDCacheList list;
4220 SilcIDCacheEntry id_cache;
4221 SilcClientEntry client;
4224 unsigned char mode[4];
4226 /* Go through all clients in the list */
4227 if (silc_idcache_get_all(id_list->clients, &list)) {
4228 if (silc_idcache_list_first(list, &id_cache)) {
4230 client = (SilcClientEntry)id_cache->context;
4232 if (creation_time && client->data.created < creation_time) {
4233 if (!silc_idcache_list_next(list, &id_cache))
4237 if (!(client->data.status & SILC_IDLIST_STATUS_REGISTERED) &&
4238 !client->connection && !client->router && !SILC_IS_LOCAL(client)) {
4239 if (!silc_idcache_list_next(list, &id_cache))
4244 idp = silc_id_payload_encode(client->id, SILC_ID_CLIENT);
4246 *clients = silc_buffer_realloc(*clients,
4248 (*clients)->truelen + idp->len :
4250 silc_buffer_pull_tail(*clients, ((*clients)->end - (*clients)->data));
4251 silc_buffer_put(*clients, idp->data, idp->len);
4252 silc_buffer_pull(*clients, idp->len);
4254 SILC_PUT32_MSB(client->mode, mode);
4256 silc_server_announce_encode_notify(SILC_NOTIFY_TYPE_UMODE_CHANGE,
4257 2, idp->data, idp->len,
4259 *umodes = silc_buffer_realloc(*umodes,
4261 (*umodes)->truelen + tmp->len :
4263 silc_buffer_pull_tail(*umodes, ((*umodes)->end - (*umodes)->data));
4264 silc_buffer_put(*umodes, tmp->data, tmp->len);
4265 silc_buffer_pull(*umodes, tmp->len);
4266 silc_buffer_free(tmp);
4268 silc_buffer_free(idp);
4270 if (!silc_idcache_list_next(list, &id_cache))
4275 silc_idcache_list_free(list);
4279 /* This function is used to announce our existing clients to our router
4280 when we've connected to it. If `creation_time' is non-zero then only
4281 the clients that has been created after the `creation_time' will be
4284 void silc_server_announce_clients(SilcServer server,
4285 unsigned long creation_time,
4286 SilcSocketConnection remote)
4288 SilcBuffer clients = NULL;
4289 SilcBuffer umodes = NULL;
4291 SILC_LOG_DEBUG(("Announcing clients"));
4293 /* Get clients in local list */
4294 silc_server_announce_get_clients(server, server->local_list,
4295 &clients, &umodes, creation_time);
4297 /* As router we announce our global list as well */
4298 if (server->server_type == SILC_ROUTER)
4299 silc_server_announce_get_clients(server, server->global_list,
4300 &clients, &umodes, creation_time);
4303 silc_buffer_push(clients, clients->data - clients->head);
4304 SILC_LOG_HEXDUMP(("clients"), clients->data, clients->len);
4306 /* Send the packet */
4307 silc_server_packet_send(server, remote,
4308 SILC_PACKET_NEW_ID, SILC_PACKET_FLAG_LIST,
4309 clients->data, clients->len, TRUE);
4311 silc_buffer_free(clients);
4315 silc_buffer_push(umodes, umodes->data - umodes->head);
4316 SILC_LOG_HEXDUMP(("umodes"), umodes->data, umodes->len);
4318 /* Send the packet */
4319 silc_server_packet_send(server, remote,
4320 SILC_PACKET_NOTIFY, SILC_PACKET_FLAG_LIST,
4321 umodes->data, umodes->len, TRUE);
4323 silc_buffer_free(umodes);
4327 /* Returns channel's topic for announcing it */
4329 void silc_server_announce_get_channel_topic(SilcServer server,
4330 SilcChannelEntry channel,
4335 if (channel->topic) {
4336 chidp = silc_id_payload_encode(channel->id, SILC_ID_CHANNEL);
4337 *topic = silc_server_announce_encode_notify(SILC_NOTIFY_TYPE_TOPIC_SET, 2,
4338 chidp->data, chidp->len,
4340 strlen(channel->topic));
4341 silc_buffer_free(chidp);
4345 /* Returns assembled packets for channel users of the `channel'. */
4347 void silc_server_announce_get_channel_users(SilcServer server,
4348 SilcChannelEntry channel,
4349 SilcBuffer *channel_modes,
4350 SilcBuffer *channel_users,
4351 SilcBuffer *channel_users_modes)
4353 SilcChannelClientEntry chl;
4354 SilcHashTableList htl;
4355 SilcBuffer chidp, clidp, csidp;
4356 SilcBuffer tmp, fkey = NULL, chpklist;
4358 unsigned char mode[4];
4361 SILC_LOG_DEBUG(("Start"));
4363 chidp = silc_id_payload_encode(channel->id, SILC_ID_CHANNEL);
4364 csidp = silc_id_payload_encode(server->id, SILC_ID_SERVER);
4365 chpklist = silc_server_get_channel_pk_list(server, channel, TRUE, FALSE);
4368 SILC_PUT32_MSB(channel->mode, mode);
4369 hmac = channel->hmac ? (char *)silc_hmac_get_name(channel->hmac) : NULL;
4370 if (channel->founder_key)
4371 fkey = silc_pkcs_public_key_payload_encode(channel->founder_key);
4373 silc_server_announce_encode_notify(SILC_NOTIFY_TYPE_CMODE_CHANGE,
4374 7, csidp->data, csidp->len,
4377 hmac, hmac ? strlen(hmac) : 0,
4378 channel->passphrase,
4379 channel->passphrase ?
4380 strlen(channel->passphrase) : 0,
4381 fkey ? fkey->data : NULL,
4382 fkey ? fkey->len : 0,
4383 chpklist ? chpklist->data : NULL,
4384 chpklist ? chpklist->len : 0);
4387 silc_buffer_realloc(*channel_modes,
4389 (*channel_modes)->truelen + len : len));
4390 silc_buffer_pull_tail(*channel_modes,
4391 ((*channel_modes)->end -
4392 (*channel_modes)->data));
4393 silc_buffer_put(*channel_modes, tmp->data, tmp->len);
4394 silc_buffer_pull(*channel_modes, len);
4395 silc_buffer_free(tmp);
4396 silc_buffer_free(fkey);
4399 /* Now find all users on the channel */
4400 silc_hash_table_list(channel->user_list, &htl);
4401 while (silc_hash_table_get(&htl, NULL, (void *)&chl)) {
4402 clidp = silc_id_payload_encode(chl->client->id, SILC_ID_CLIENT);
4405 tmp = silc_server_announce_encode_notify(SILC_NOTIFY_TYPE_JOIN, 2,
4406 clidp->data, clidp->len,
4407 chidp->data, chidp->len);
4410 silc_buffer_realloc(*channel_users,
4412 (*channel_users)->truelen + len : len));
4413 silc_buffer_pull_tail(*channel_users,
4414 ((*channel_users)->end -
4415 (*channel_users)->data));
4417 silc_buffer_put(*channel_users, tmp->data, tmp->len);
4418 silc_buffer_pull(*channel_users, len);
4419 silc_buffer_free(tmp);
4421 /* CUMODE notify for mode change on the channel */
4422 SILC_PUT32_MSB(chl->mode, mode);
4423 if (chl->mode & SILC_CHANNEL_UMODE_CHANFO && channel->founder_key)
4424 fkey = silc_pkcs_public_key_payload_encode(channel->founder_key);
4425 tmp = silc_server_announce_encode_notify(SILC_NOTIFY_TYPE_CUMODE_CHANGE,
4426 4, csidp->data, csidp->len,
4428 clidp->data, clidp->len,
4429 fkey ? fkey->data : NULL,
4430 fkey ? fkey->len : 0);
4432 *channel_users_modes =
4433 silc_buffer_realloc(*channel_users_modes,
4434 (*channel_users_modes ?
4435 (*channel_users_modes)->truelen + len : len));
4436 silc_buffer_pull_tail(*channel_users_modes,
4437 ((*channel_users_modes)->end -
4438 (*channel_users_modes)->data));
4440 silc_buffer_put(*channel_users_modes, tmp->data, tmp->len);
4441 silc_buffer_pull(*channel_users_modes, len);
4442 silc_buffer_free(tmp);
4443 silc_buffer_free(fkey);
4445 silc_buffer_free(clidp);
4447 silc_hash_table_list_reset(&htl);
4448 silc_buffer_free(chidp);
4449 silc_buffer_free(csidp);
4452 /* Returns assembled packets for all channels and users on those channels
4453 from the given ID List. The packets are in the form dictated by the
4454 New Channel and New Channel User payloads. */
4456 void silc_server_announce_get_channels(SilcServer server,
4458 SilcBuffer *channels,
4459 SilcBuffer **channel_modes,
4460 SilcBuffer *channel_users,
4461 SilcBuffer **channel_users_modes,
4462 SilcUInt32 *channel_users_modes_c,
4463 SilcBuffer **channel_topics,
4464 SilcChannelID ***channel_ids,
4465 unsigned long creation_time)
4467 SilcIDCacheList list;
4468 SilcIDCacheEntry id_cache;
4469 SilcChannelEntry channel;
4472 SilcUInt16 name_len;
4474 int i = *channel_users_modes_c;
4477 SILC_LOG_DEBUG(("Start"));
4479 /* Go through all channels in the list */
4480 if (silc_idcache_get_all(id_list->channels, &list)) {
4481 if (silc_idcache_list_first(list, &id_cache)) {
4483 channel = (SilcChannelEntry)id_cache->context;
4485 if (creation_time && channel->created < creation_time)
4490 cid = silc_id_id2str(channel->id, SILC_ID_CHANNEL);
4491 id_len = silc_id_get_len(channel->id, SILC_ID_CHANNEL);
4492 name_len = strlen(channel->channel_name);
4495 len = 4 + name_len + id_len + 4;
4497 silc_buffer_realloc(*channels,
4498 (*channels ? (*channels)->truelen +
4500 silc_buffer_pull_tail(*channels,
4501 ((*channels)->end - (*channels)->data));
4502 silc_buffer_format(*channels,
4503 SILC_STR_UI_SHORT(name_len),
4504 SILC_STR_UI_XNSTRING(channel->channel_name,
4506 SILC_STR_UI_SHORT(id_len),
4507 SILC_STR_UI_XNSTRING(cid, id_len),
4508 SILC_STR_UI_INT(channel->mode),
4510 silc_buffer_pull(*channels, len);
4513 if (creation_time && channel->updated < creation_time)
4519 /* Channel user modes */
4520 *channel_users_modes = silc_realloc(*channel_users_modes,
4521 sizeof(**channel_users_modes) *
4523 (*channel_users_modes)[i] = NULL;
4524 *channel_modes = silc_realloc(*channel_modes,
4525 sizeof(**channel_modes) * (i + 1));
4526 (*channel_modes)[i] = NULL;
4527 *channel_ids = silc_realloc(*channel_ids,
4528 sizeof(**channel_ids) * (i + 1));
4529 (*channel_ids)[i] = NULL;
4530 silc_server_announce_get_channel_users(server, channel,
4531 &(*channel_modes)[i],
4533 &(*channel_users_modes)[i]);
4534 (*channel_ids)[i] = channel->id;
4536 /* Channel's topic */
4537 *channel_topics = silc_realloc(*channel_topics,
4538 sizeof(**channel_topics) * (i + 1));
4539 (*channel_topics)[i] = NULL;
4540 silc_server_announce_get_channel_topic(server, channel,
4541 &(*channel_topics)[i]);
4542 (*channel_users_modes_c)++;
4549 if (!silc_idcache_list_next(list, &id_cache))
4554 silc_idcache_list_free(list);
4558 /* This function is used to announce our existing channels to our router
4559 when we've connected to it. This also announces the users on the
4560 channels to the router. If the `creation_time' is non-zero only the
4561 channels that was created after the `creation_time' are announced.
4562 Note that the channel users are still announced even if the `creation_time'
4565 void silc_server_announce_channels(SilcServer server,
4566 unsigned long creation_time,
4567 SilcSocketConnection remote)
4569 SilcBuffer channels = NULL, *channel_modes = NULL, channel_users = NULL;
4570 SilcBuffer *channel_users_modes = NULL;
4571 SilcBuffer *channel_topics = NULL;
4572 SilcUInt32 channel_users_modes_c = 0;
4573 SilcChannelID **channel_ids = NULL;
4575 SILC_LOG_DEBUG(("Announcing channels and channel users"));
4577 /* Get channels and channel users in local list */
4578 silc_server_announce_get_channels(server, server->local_list,
4579 &channels, &channel_modes,
4581 &channel_users_modes,
4582 &channel_users_modes_c,
4584 &channel_ids, creation_time);
4586 /* Get channels and channel users in global list */
4587 if (server->server_type != SILC_SERVER)
4588 silc_server_announce_get_channels(server, server->global_list,
4589 &channels, &channel_modes,
4591 &channel_users_modes,
4592 &channel_users_modes_c,
4594 &channel_ids, creation_time);
4597 silc_buffer_push(channels, channels->data - channels->head);
4598 SILC_LOG_HEXDUMP(("channels"), channels->data, channels->len);
4600 /* Send the packet */
4601 silc_server_packet_send(server, remote,
4602 SILC_PACKET_NEW_CHANNEL, SILC_PACKET_FLAG_LIST,
4603 channels->data, channels->len,
4606 silc_buffer_free(channels);
4609 if (channel_users) {
4610 silc_buffer_push(channel_users, channel_users->data - channel_users->head);
4611 SILC_LOG_HEXDUMP(("channel users"), channel_users->data,
4612 channel_users->len);
4614 /* Send the packet */
4615 silc_server_packet_send(server, remote,
4616 SILC_PACKET_NOTIFY, SILC_PACKET_FLAG_LIST,
4617 channel_users->data, channel_users->len,
4620 silc_buffer_free(channel_users);
4623 if (channel_modes) {
4626 for (i = 0; i < channel_users_modes_c; i++) {
4627 if (!channel_modes[i])
4629 silc_buffer_push(channel_modes[i],
4630 channel_modes[i]->data -
4631 channel_modes[i]->head);
4632 SILC_LOG_HEXDUMP(("channel modes"), channel_modes[i]->data,
4633 channel_modes[i]->len);
4634 silc_server_packet_send_dest(server, remote,
4635 SILC_PACKET_NOTIFY, SILC_PACKET_FLAG_LIST,
4636 channel_ids[i], SILC_ID_CHANNEL,
4637 channel_modes[i]->data,
4638 channel_modes[i]->len,
4640 silc_buffer_free(channel_modes[i]);
4642 silc_free(channel_modes);
4645 if (channel_users_modes) {
4648 for (i = 0; i < channel_users_modes_c; i++) {
4649 if (!channel_users_modes[i])
4651 silc_buffer_push(channel_users_modes[i],
4652 channel_users_modes[i]->data -
4653 channel_users_modes[i]->head);
4654 SILC_LOG_HEXDUMP(("channel users modes"), channel_users_modes[i]->data,
4655 channel_users_modes[i]->len);
4656 silc_server_packet_send_dest(server, remote,
4657 SILC_PACKET_NOTIFY, SILC_PACKET_FLAG_LIST,
4658 channel_ids[i], SILC_ID_CHANNEL,
4659 channel_users_modes[i]->data,
4660 channel_users_modes[i]->len,
4662 silc_buffer_free(channel_users_modes[i]);
4664 silc_free(channel_users_modes);
4667 if (channel_topics) {
4670 for (i = 0; i < channel_users_modes_c; i++) {
4671 if (!channel_topics[i])
4674 silc_buffer_push(channel_topics[i],
4675 channel_topics[i]->data -
4676 channel_topics[i]->head);
4677 SILC_LOG_HEXDUMP(("channel topic"), channel_topics[i]->data,
4678 channel_topics[i]->len);
4679 silc_server_packet_send_dest(server, remote,
4680 SILC_PACKET_NOTIFY, SILC_PACKET_FLAG_LIST,
4681 channel_ids[i], SILC_ID_CHANNEL,
4682 channel_topics[i]->data,
4683 channel_topics[i]->len,
4685 silc_buffer_free(channel_topics[i]);
4687 silc_free(channel_topics);
4690 silc_free(channel_ids);
4693 /* Assembles user list and users mode list from the `channel'. */
4695 bool silc_server_get_users_on_channel(SilcServer server,
4696 SilcChannelEntry channel,
4697 SilcBuffer *user_list,
4698 SilcBuffer *mode_list,
4699 SilcUInt32 *user_count)
4701 SilcChannelClientEntry chl;
4702 SilcHashTableList htl;
4703 SilcBuffer client_id_list;
4704 SilcBuffer client_mode_list;
4706 SilcUInt32 list_count = 0, len = 0;
4708 if (!silc_hash_table_count(channel->user_list))
4711 silc_hash_table_list(channel->user_list, &htl);
4712 while (silc_hash_table_get(&htl, NULL, (void *)&chl))
4713 len += (silc_id_get_len(chl->client->id, SILC_ID_CLIENT) + 4);
4714 silc_hash_table_list_reset(&htl);
4716 client_id_list = silc_buffer_alloc(len);
4718 silc_buffer_alloc(4 * silc_hash_table_count(channel->user_list));
4719 silc_buffer_pull_tail(client_id_list, SILC_BUFFER_END(client_id_list));
4720 silc_buffer_pull_tail(client_mode_list, SILC_BUFFER_END(client_mode_list));
4722 silc_hash_table_list(channel->user_list, &htl);
4723 while (silc_hash_table_get(&htl, NULL, (void *)&chl)) {
4725 idp = silc_id_payload_encode(chl->client->id, SILC_ID_CLIENT);
4726 silc_buffer_put(client_id_list, idp->data, idp->len);
4727 silc_buffer_pull(client_id_list, idp->len);
4728 silc_buffer_free(idp);
4730 /* Client's mode on channel */
4731 SILC_PUT32_MSB(chl->mode, client_mode_list->data);
4732 silc_buffer_pull(client_mode_list, 4);
4736 silc_hash_table_list_reset(&htl);
4737 silc_buffer_push(client_id_list,
4738 client_id_list->data - client_id_list->head);
4739 silc_buffer_push(client_mode_list,
4740 client_mode_list->data - client_mode_list->head);
4742 *user_list = client_id_list;
4743 *mode_list = client_mode_list;
4744 *user_count = list_count;
4748 /* Saves users and their modes to the `channel'. */
4750 void silc_server_save_users_on_channel(SilcServer server,
4751 SilcSocketConnection sock,
4752 SilcChannelEntry channel,
4753 SilcClientID *noadd,
4754 SilcBuffer user_list,
4755 SilcBuffer mode_list,
4756 SilcUInt32 user_count)
4761 SilcClientID *client_id;
4762 SilcClientEntry client;
4763 SilcIDCacheEntry cache;
4764 SilcChannelClientEntry chl;
4766 SILC_LOG_DEBUG(("Saving %d users on %s channel", user_count,
4767 channel->channel_name));
4769 for (i = 0; i < user_count; i++) {
4771 SILC_GET16_MSB(idp_len, user_list->data + 2);
4773 client_id = silc_id_payload_parse_id(user_list->data, idp_len, NULL);
4774 silc_buffer_pull(user_list, idp_len);
4779 SILC_GET32_MSB(mode, mode_list->data);
4780 silc_buffer_pull(mode_list, 4);
4782 if (noadd && SILC_ID_CLIENT_COMPARE(client_id, noadd)) {
4783 silc_free(client_id);
4789 /* Check if we have this client cached already. */
4790 client = silc_idlist_find_client_by_id(server->local_list, client_id,
4791 server->server_type, &cache);
4793 client = silc_idlist_find_client_by_id(server->global_list,
4794 client_id, server->server_type,
4797 /* If router did not find such Client ID in its lists then this must
4798 be bogus client or some router in the net is buggy. */
4799 if (server->server_type != SILC_SERVER) {
4800 silc_free(client_id);
4804 /* We don't have that client anywhere, add it. The client is added
4805 to global list since server didn't have it in the lists so it must be
4807 client = silc_idlist_add_client(server->global_list, NULL, NULL, NULL,
4808 silc_id_dup(client_id, SILC_ID_CLIENT),
4809 sock->user_data, NULL, 0);
4811 SILC_LOG_ERROR(("Could not add new client to the ID Cache"));
4812 silc_free(client_id);
4816 client->data.status |= SILC_IDLIST_STATUS_REGISTERED;
4821 silc_free(client_id);
4823 if (!(client->data.status & SILC_IDLIST_STATUS_REGISTERED)) {
4824 SILC_LOG_ERROR(("Attempting to add unregistered client to channel ",
4825 "%s", channel->channel_name));
4829 if (!silc_server_client_on_channel(client, channel, &chl)) {
4830 /* Client was not on the channel, add it. */
4831 chl = silc_calloc(1, sizeof(*chl));
4832 chl->client = client;
4834 chl->channel = channel;
4835 silc_hash_table_add(channel->user_list, chl->client, chl);
4836 silc_hash_table_add(client->channels, chl->channel, chl);
4837 channel->user_count++;
4845 /* Saves channels and channels user modes to the `client'. Removes
4846 the client from those channels that are not sent in the list but
4849 void silc_server_save_user_channels(SilcServer server,
4850 SilcSocketConnection sock,
4851 SilcClientEntry client,
4852 SilcBuffer channels,
4853 SilcBuffer channels_user_modes)
4856 SilcUInt32 *chumodes;
4857 SilcChannelPayload entry;
4858 SilcChannelEntry channel;
4859 SilcChannelID *channel_id;
4860 SilcChannelClientEntry chl;
4861 SilcHashTable ht = NULL;
4862 SilcHashTableList htl;
4866 if (!channels || !channels_user_modes ||
4867 !(client->data.status & SILC_IDLIST_STATUS_REGISTERED))
4870 ch = silc_channel_payload_parse_list(channels->data, channels->len);
4871 if (ch && silc_get_mode_list(channels_user_modes, silc_dlist_count(ch),
4873 ht = silc_hash_table_alloc(0, silc_hash_ptr, NULL, NULL,
4874 NULL, NULL, NULL, TRUE);
4875 silc_dlist_start(ch);
4876 while ((entry = silc_dlist_get(ch)) != SILC_LIST_END) {
4877 /* Check if we have this channel, and add it if we don't have it.
4878 Also add the client on the channel unless it is there already. */
4879 channel_id = silc_channel_get_id_parse(entry);
4880 channel = silc_idlist_find_channel_by_id(server->local_list,
4883 channel = silc_idlist_find_channel_by_id(server->global_list,
4886 if (server->server_type != SILC_SERVER) {
4887 silc_free(channel_id);
4892 /* We don't have that channel anywhere, add it. */
4893 name = silc_channel_get_name(entry, NULL);
4894 channel = silc_idlist_add_channel(server->global_list, strdup(name), 0,
4895 channel_id, server->router,
4898 silc_free(channel_id);
4905 channel->mode = silc_channel_get_mode(entry);
4907 /* Add the client on the channel */
4908 if (!silc_server_client_on_channel(client, channel, &chl)) {
4909 chl = silc_calloc(1, sizeof(*chl));
4910 chl->client = client;
4911 chl->mode = chumodes[i++];
4912 chl->channel = channel;
4913 silc_hash_table_add(channel->user_list, chl->client, chl);
4914 silc_hash_table_add(client->channels, chl->channel, chl);
4915 channel->user_count++;
4918 chl->mode = chumodes[i++];
4921 silc_hash_table_add(ht, channel, channel);
4922 silc_free(channel_id);
4924 silc_channel_payload_list_free(ch);
4925 silc_free(chumodes);
4929 /* Go through the list again and remove client from channels that
4930 are no part of the list. */
4932 silc_hash_table_list(client->channels, &htl);
4933 while (silc_hash_table_get(&htl, NULL, (void **)&chl)) {
4934 if (!silc_hash_table_find(ht, chl->channel, NULL, NULL)) {
4935 silc_hash_table_del(chl->channel->user_list, chl->client);
4936 silc_hash_table_del(chl->client->channels, chl->channel);
4940 silc_hash_table_list_reset(&htl);
4941 silc_hash_table_free(ht);
4943 silc_hash_table_list(client->channels, &htl);
4944 while (silc_hash_table_get(&htl, NULL, (void **)&chl)) {
4945 silc_hash_table_del(chl->channel->user_list, chl->client);
4946 silc_hash_table_del(chl->client->channels, chl->channel);
4949 silc_hash_table_list_reset(&htl);
4953 /* Lookups route to the client indicated by the `id_data'. The connection
4954 object and internal data object is returned. Returns NULL if route
4955 could not be found to the client. If the `client_id' is specified then
4956 it is used and the `id_data' is ignored. */
4958 SilcSocketConnection
4959 silc_server_get_client_route(SilcServer server,
4960 unsigned char *id_data,
4962 SilcClientID *client_id,
4963 SilcIDListData *idata,
4964 SilcClientEntry *client_entry)
4967 SilcClientEntry client;
4969 SILC_LOG_DEBUG(("Start"));
4972 *client_entry = NULL;
4974 /* Decode destination Client ID */
4976 id = silc_id_str2id(id_data, id_len, SILC_ID_CLIENT);
4978 SILC_LOG_ERROR(("Could not decode destination Client ID, dropped"));
4982 id = silc_id_dup(client_id, SILC_ID_CLIENT);
4985 /* If the destination belongs to our server we don't have to route
4986 the packet anywhere but to send it to the local destination. */
4987 client = silc_idlist_find_client_by_id(server->local_list, id, TRUE, NULL);
4991 /* If we are router and the client has router then the client is in
4992 our cell but not directly connected to us. */
4993 if (server->server_type == SILC_ROUTER && client->router) {
4994 /* We are of course in this case the client's router thus the route
4995 to the client is the server who owns the client. So, we will send
4996 the packet to that server. */
4998 *idata = (SilcIDListData)client->router;
4999 return client->router->connection;
5002 /* Seems that client really is directly connected to us */
5004 *idata = (SilcIDListData)client;
5006 *client_entry = client;
5007 return client->connection;
5010 /* Destination belongs to someone not in this server. If we are normal
5011 server our action is to send the packet to our router. */
5012 if (server->server_type != SILC_ROUTER && !server->standalone) {
5015 *idata = (SilcIDListData)server->router;
5016 return SILC_PRIMARY_ROUTE(server);
5019 /* We are router and we will perform route lookup for the destination
5020 and send the packet to fastest route. */
5021 if (server->server_type == SILC_ROUTER && !server->standalone) {
5022 /* Check first that the ID is valid */
5023 client = silc_idlist_find_client_by_id(server->global_list, id,
5026 SilcSocketConnection dst_sock;
5028 dst_sock = silc_server_route_get(server, id, SILC_ID_CLIENT);
5032 *idata = (SilcIDListData)dst_sock->user_data;
5041 /* Encodes and returns channel list of channels the `client' has joined.
5042 Secret channels are not put to the list. */
5044 SilcBuffer silc_server_get_client_channel_list(SilcServer server,
5045 SilcClientEntry client,
5048 SilcBuffer *user_mode_list)
5050 SilcBuffer buffer = NULL;
5051 SilcChannelEntry channel;
5052 SilcChannelClientEntry chl;
5053 SilcHashTableList htl;
5056 SilcUInt16 name_len;
5060 *user_mode_list = NULL;
5062 silc_hash_table_list(client->channels, &htl);
5063 while (silc_hash_table_get(&htl, NULL, (void *)&chl)) {
5064 channel = chl->channel;
5066 if (channel->mode & SILC_CHANNEL_MODE_SECRET && !get_secret)
5068 if (channel->mode & SILC_CHANNEL_MODE_PRIVATE && !get_private)
5071 cid = silc_id_id2str(channel->id, SILC_ID_CHANNEL);
5072 id_len = silc_id_get_len(channel->id, SILC_ID_CHANNEL);
5073 name_len = strlen(channel->channel_name);
5075 len = 4 + name_len + id_len + 4;
5076 buffer = silc_buffer_realloc(buffer,
5077 (buffer ? buffer->truelen + len : len));
5078 silc_buffer_pull_tail(buffer, (buffer->end - buffer->data));
5079 silc_buffer_format(buffer,
5080 SILC_STR_UI_SHORT(name_len),
5081 SILC_STR_UI_XNSTRING(channel->channel_name,
5083 SILC_STR_UI_SHORT(id_len),
5084 SILC_STR_UI_XNSTRING(cid, id_len),
5085 SILC_STR_UI_INT(chl->channel->mode),
5087 silc_buffer_pull(buffer, len);
5090 if (user_mode_list) {
5091 *user_mode_list = silc_buffer_realloc(*user_mode_list,
5093 (*user_mode_list)->truelen + 4 :
5095 silc_buffer_pull_tail(*user_mode_list, ((*user_mode_list)->end -
5096 (*user_mode_list)->data));
5097 SILC_PUT32_MSB(chl->mode, (*user_mode_list)->data);
5098 silc_buffer_pull(*user_mode_list, 4);
5101 silc_hash_table_list_reset(&htl);
5104 silc_buffer_push(buffer, buffer->data - buffer->head);
5105 if (user_mode_list && *user_mode_list)
5106 silc_buffer_push(*user_mode_list, ((*user_mode_list)->data -
5107 (*user_mode_list)->head));
5112 /* A timeout callback for the re-key. We will be the initiator of the
5115 SILC_TASK_CALLBACK_GLOBAL(silc_server_rekey_callback)
5117 SilcServer server = app_context;
5118 SilcSocketConnection sock = (SilcSocketConnection)context;
5119 SilcIDListData idata = (SilcIDListData)sock->user_data;
5120 SilcProtocol protocol;
5121 SilcServerRekeyInternalContext *proto_ctx;
5123 /* If rekey protocol is active already wait for it to finish */
5124 if (sock->protocol && sock->protocol->protocol &&
5125 sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_REKEY)
5128 /* Allocate internal protocol context. This is sent as context
5130 proto_ctx = silc_calloc(1, sizeof(*proto_ctx));
5131 proto_ctx->server = (void *)server;
5132 proto_ctx->sock = sock;
5133 proto_ctx->responder = FALSE;
5134 proto_ctx->pfs = idata->rekey->pfs;
5136 /* Perform rekey protocol. Will call the final callback after the
5137 protocol is over. */
5138 silc_protocol_alloc(SILC_PROTOCOL_SERVER_REKEY,
5139 &protocol, proto_ctx, silc_server_rekey_final);
5140 sock->protocol = protocol;
5142 /* Run the protocol */
5143 silc_protocol_execute(protocol, server->schedule, 0, 0);
5146 /* The final callback for the REKEY protocol. This will actually take the
5147 new key material into use. */
5149 SILC_TASK_CALLBACK_GLOBAL(silc_server_rekey_final)
5151 SilcProtocol protocol = (SilcProtocol)context;
5152 SilcServerRekeyInternalContext *ctx =
5153 (SilcServerRekeyInternalContext *)protocol->context;
5154 SilcServer server = (SilcServer)ctx->server;
5155 SilcSocketConnection sock = ctx->sock;
5156 SilcIDListData idata = (SilcIDListData)sock->user_data;
5158 if (protocol->state == SILC_PROTOCOL_STATE_ERROR ||
5159 protocol->state == SILC_PROTOCOL_STATE_FAILURE) {
5160 /* Error occured during protocol */
5161 SILC_LOG_ERROR(("Error occurred during rekey protocol with "
5162 "%s (%s)", sock->hostname, sock->ip));
5163 silc_protocol_cancel(protocol, server->schedule);
5164 silc_protocol_free(protocol);
5165 sock->protocol = NULL;
5167 silc_packet_context_free(ctx->packet);
5169 silc_ske_free(ctx->ske);
5171 silc_server_disconnect_remote(server, sock,
5172 SILC_STATUS_ERR_KEY_EXCHANGE_FAILED, NULL);
5175 if (sock->type != SILC_SOCKET_TYPE_CLIENT)
5176 silc_server_create_connections(server);
5180 SILC_LOG_DEBUG(("Rekey protocol completed"));
5182 /* Purge the outgoing data queue to assure that all rekey packets really
5183 go to the network before we quit the protocol. */
5184 silc_server_packet_queue_purge(server, sock);
5186 /* Re-register re-key timeout */
5187 if (ctx->responder == FALSE)
5188 silc_schedule_task_add(server->schedule, sock->sock,
5189 silc_server_rekey_callback,
5190 sock, idata->rekey->timeout, 0,
5191 SILC_TASK_TIMEOUT, SILC_TASK_PRI_NORMAL);
5194 silc_protocol_free(protocol);
5195 sock->protocol = NULL;
5197 silc_packet_context_free(ctx->packet);
5199 silc_ske_free(ctx->ske);
5203 /* Task callback used to retrieve network statistical information from
5204 router server once in a while. */
5206 SILC_TASK_CALLBACK(silc_server_get_stats)
5208 SilcServer server = (SilcServer)context;
5209 SilcBuffer idp, packet;
5211 if (!server->standalone) {
5212 SILC_LOG_DEBUG(("Retrieving stats from router"));
5213 idp = silc_id_payload_encode(server->router->id, SILC_ID_SERVER);
5214 packet = silc_command_payload_encode_va(SILC_COMMAND_STATS,
5215 ++server->cmd_ident, 1,
5216 1, idp->data, idp->len);
5217 silc_server_packet_send(server, SILC_PRIMARY_ROUTE(server),
5218 SILC_PACKET_COMMAND, 0, packet->data,
5219 packet->len, FALSE);
5220 silc_buffer_free(packet);
5221 silc_buffer_free(idp);
5224 silc_schedule_task_add(server->schedule, 0, silc_server_get_stats,
5225 server, 120, 0, SILC_TASK_TIMEOUT,