5 Author: Pekka Riikonen <priikone@poseidon.pspt.fi>
7 Copyright (C) 1997 - 2001 Pekka Riikonen
9 This program is free software; you can redistribute it and/or modify
10 it under the terms of the GNU General Public License as published by
11 the Free Software Foundation; either version 2 of the License, or
12 (at your option) any later version.
14 This program is distributed in the hope that it will be useful,
15 but WITHOUT ANY WARRANTY; without even the implied warranty of
16 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 GNU General Public License for more details.
21 * This is the actual SILC server than handles everything relating to
22 * servicing the SILC connections. This is also a SILC router as a router
23 * is also normal server.
27 #include "serverincludes.h"
28 #include "server_internal.h"
30 /* Static prototypes */
31 SILC_TASK_CALLBACK(silc_server_connect_router);
32 SILC_TASK_CALLBACK(silc_server_connect_to_router);
33 SILC_TASK_CALLBACK(silc_server_connect_to_router_second);
34 SILC_TASK_CALLBACK(silc_server_connect_to_router_final);
35 SILC_TASK_CALLBACK(silc_server_accept_new_connection);
36 SILC_TASK_CALLBACK(silc_server_accept_new_connection_second);
37 SILC_TASK_CALLBACK(silc_server_accept_new_connection_final);
38 SILC_TASK_CALLBACK(silc_server_packet_process);
39 SILC_TASK_CALLBACK(silc_server_packet_parse_real);
40 SILC_TASK_CALLBACK(silc_server_timeout_remote);
41 SILC_TASK_CALLBACK(silc_server_failure_callback);
42 SILC_TASK_CALLBACK(silc_server_rekey_callback);
44 /* Allocates a new SILC server object. This has to be done before the server
45 can be used. After allocation one must call silc_server_init to initialize
46 the server. The new allocated server object is returned to the new_server
49 int silc_server_alloc(SilcServer *new_server)
53 SILC_LOG_DEBUG(("Allocating new server object"));
55 server = silc_calloc(1, sizeof(*server));
56 server->server_type = SILC_SERVER;
57 server->standalone = TRUE;
58 server->local_list = silc_calloc(1, sizeof(*server->local_list));
59 server->global_list = silc_calloc(1, sizeof(*server->global_list));
60 server->pending_commands = silc_dlist_init();
62 server->sim = silc_dlist_init();
70 /* Free's the SILC server object. This is called at the very end before
73 void silc_server_free(SilcServer server)
80 if (server->local_list)
81 silc_free(server->local_list);
82 if (server->global_list)
83 silc_free(server->global_list);
85 silc_rng_free(server->rng);
88 while ((sim = silc_dlist_get(server->sim)) != SILC_LIST_END) {
89 silc_dlist_del(server->sim, sim);
92 silc_dlist_uninit(server->sim);
96 silc_free(server->params);
98 if (server->pending_commands)
99 silc_dlist_uninit(server->pending_commands);
105 /* Initializes the entire SILC server. This is called always before running
106 the server. This is called only once at the initialization of the program.
107 This binds the server to its listenning port. After this function returns
108 one should call silc_server_run to start the server. This returns TRUE
109 when everything is ok to run the server. Configuration file must be
110 read and parsed before calling this. */
112 int silc_server_init(SilcServer server)
114 int *sock = NULL, sock_count = 0, i;
116 SilcServerEntry id_entry;
117 SilcIDListPurge purge;
119 SILC_LOG_DEBUG(("Initializing server"));
121 assert(server->config);
123 /* Set public and private keys */
124 if (!server->config->server_keys ||
125 !server->config->server_keys->public_key ||
126 !server->config->server_keys->private_key) {
127 SILC_LOG_ERROR(("Server public key and/or private key does not exist"));
130 server->public_key = server->config->server_keys->public_key;
131 server->private_key = server->config->server_keys->private_key;
133 /* XXX After server is made as Silc Server Library this can be given
134 as argument, for now this is hard coded */
135 server->params = silc_calloc(1, sizeof(*server->params));
136 server->params->retry_count = SILC_SERVER_RETRY_COUNT;
137 server->params->retry_interval_min = SILC_SERVER_RETRY_INTERVAL_MIN;
138 server->params->retry_interval_max = SILC_SERVER_RETRY_INTERVAL_MAX;
139 server->params->retry_keep_trying = FALSE;
140 server->params->protocol_timeout = 60;
141 server->params->require_reverse_mapping = FALSE;
143 /* Set log files where log message should be saved. */
144 server->config->server = server;
145 silc_server_config_setlogfiles(server->config);
147 /* Register all configured ciphers, PKCS and hash functions. */
148 silc_server_config_register_ciphers(server->config);
149 silc_server_config_register_pkcs(server->config);
150 silc_server_config_register_hashfuncs(server->config);
151 silc_server_config_register_hmacs(server->config);
153 /* Initialize random number generator for the server. */
154 server->rng = silc_rng_alloc();
155 silc_rng_init(server->rng);
156 silc_rng_global_init(server->rng);
158 /* Initialize hash functions for server to use */
159 silc_hash_alloc("md5", &server->md5hash);
160 silc_hash_alloc("sha1", &server->sha1hash);
162 /* Initialize none cipher */
163 silc_cipher_alloc("none", &server->none_cipher);
165 /* Create a listening server. Note that our server can listen on
166 multiple ports. All listeners are created here and now. */
167 /* XXX Still check this whether to use server_info or listen_port. */
169 while(server->config->listen_port) {
172 tmp = silc_net_create_server(server->config->listen_port->port,
173 server->config->listen_port->host);
177 sock = silc_realloc(sock, (sizeof(int *) * (sock_count + 1)));
178 sock[sock_count] = tmp;
179 server->config->listen_port = server->config->listen_port->next;
183 /* Initialize ID caches */
184 server->local_list->clients =
185 silc_idcache_alloc(0, silc_idlist_client_destructor);
186 server->local_list->servers = silc_idcache_alloc(0, NULL);
187 server->local_list->channels = silc_idcache_alloc(0, NULL);
189 /* These are allocated for normal server as well as these hold some
190 global information that the server has fetched from its router. For
191 router these are used as they are supposed to be used on router. */
192 server->global_list->clients =
193 silc_idcache_alloc(0, silc_idlist_client_destructor);
194 server->global_list->servers = silc_idcache_alloc(0, NULL);
195 server->global_list->channels = silc_idcache_alloc(0, NULL);
197 /* Allocate the entire socket list that is used in server. Eventually
198 all connections will have entry in this table (it is a table of
199 pointers to the actual object that is allocated individually
201 server->sockets = silc_calloc(SILC_SERVER_MAX_CONNECTIONS,
202 sizeof(*server->sockets));
204 for (i = 0; i < sock_count; i++) {
205 SilcSocketConnection newsocket = NULL;
207 /* Set socket to non-blocking mode */
208 silc_net_set_socket_nonblock(sock[i]);
209 server->sock = sock[i];
211 /* Create a Server ID for the server. */
212 silc_id_create_server_id(sock[i], server->rng, &id);
218 server->id_string = silc_id_id2str(id, SILC_ID_SERVER);
219 server->id_string_len = silc_id_get_len(SILC_ID_SERVER);
220 server->id_type = SILC_ID_SERVER;
221 server->server_name = server->config->server_info->server_name;
223 /* Add ourselves to the server list. We don't have a router yet
224 beacuse we haven't established a route yet. It will be done later.
225 For now, NULL is sent as router. This allocates new entry to
228 silc_idlist_add_server(server->local_list,
229 server->config->server_info->server_name,
230 server->server_type, server->id, NULL, NULL);
232 SILC_LOG_ERROR(("Could not add ourselves to cache"));
236 /* Add ourselves also to the socket table. The entry allocated above
237 is sent as argument for fast referencing in the future. */
238 silc_socket_alloc(sock[i], SILC_SOCKET_TYPE_SERVER, id_entry,
241 server->sockets[sock[i]] = newsocket;
243 /* Perform name and address lookups to resolve the listenning address
245 if (!silc_net_check_local_by_sock(sock[i], &newsocket->hostname,
247 if ((server->params->require_reverse_mapping && !newsocket->hostname) ||
249 SILC_LOG_ERROR(("IP/DNS lookup failed for local host %s",
250 newsocket->hostname ? newsocket->hostname :
251 newsocket->ip ? newsocket->ip : ""));
252 server->stat.conn_failures++;
255 if (!newsocket->hostname)
256 newsocket->hostname = strdup(newsocket->ip);
258 newsocket->port = silc_net_get_local_port(sock[i]);
260 /* Put the allocated socket pointer also to the entry allocated above
261 for fast back-referencing to the socket list. */
262 id_entry->connection = (void *)server->sockets[sock[i]];
263 server->id_entry = id_entry;
266 /* Register the task queues. In SILC we have by default three task queues.
267 One task queue for non-timeout tasks which perform different kind of
268 I/O on file descriptors, timeout task queue for timeout tasks, and,
269 generic non-timeout task queue whose tasks apply to all connections. */
270 silc_task_queue_alloc(&server->io_queue, TRUE);
271 if (!server->io_queue) {
274 silc_task_queue_alloc(&server->timeout_queue, TRUE);
275 if (!server->timeout_queue) {
278 silc_task_queue_alloc(&server->generic_queue, TRUE);
279 if (!server->generic_queue) {
283 /* Register protocols */
284 silc_server_protocols_register();
286 /* Initialize the scheduler */
287 silc_schedule_init(&server->io_queue, &server->timeout_queue,
288 &server->generic_queue,
289 SILC_SERVER_MAX_CONNECTIONS);
291 /* Add the first task to the queue. This is task that is executed by
292 timeout. It expires as soon as the caller calls silc_server_run. This
293 task performs authentication protocol and key exchange with our
295 silc_task_register(server->timeout_queue, sock[0],
296 silc_server_connect_to_router,
297 (void *)server, 0, 1,
299 SILC_TASK_PRI_NORMAL);
301 /* Add listener task to the queue. This task receives new connections to the
302 server. This task remains on the queue until the end of the program. */
303 silc_task_register(server->io_queue, sock[0],
304 silc_server_accept_new_connection,
305 (void *)server, 0, 0,
307 SILC_TASK_PRI_NORMAL);
308 server->listenning = TRUE;
310 /* If server connections has been configured then we must be router as
311 normal server cannot have server connections, only router connections. */
312 if (server->config->servers)
313 server->server_type = SILC_ROUTER;
315 /* Register the ID Cache purge task. This periodically purges the ID cache
316 and removes the expired cache entries. */
318 /* Clients local list */
319 purge = silc_calloc(1, sizeof(*purge));
320 purge->cache = server->local_list->clients;
321 purge->timeout_queue = server->timeout_queue;
322 silc_task_register(purge->timeout_queue, 0,
324 (void *)purge, 600, 0,
325 SILC_TASK_TIMEOUT, SILC_TASK_PRI_LOW);
327 /* Clients global list */
328 purge = silc_calloc(1, sizeof(*purge));
329 purge->cache = server->global_list->clients;
330 purge->timeout_queue = server->timeout_queue;
331 silc_task_register(purge->timeout_queue, 0,
333 (void *)purge, 300, 0,
334 SILC_TASK_TIMEOUT, SILC_TASK_PRI_LOW);
336 SILC_LOG_DEBUG(("Server initialized"));
338 /* We are done here, return succesfully */
341 silc_task_queue_free(server->timeout_queue);
343 silc_task_queue_free(server->io_queue);
345 for (i = 0; i < sock_count; i++)
346 silc_net_close_server(sock[i]);
351 /* Fork server to background and set gid+uid to non-root.
352 Silcd will not run as root, so trying to set either user or group to
353 root will cause silcd to exit. */
355 void silc_server_daemonise(SilcServer server)
357 /* Are we executing silcd as root or a regular user? */
364 if (!server->config->identity || !server->config->identity->user ||
365 !server->config->identity->group) {
366 fprintf(stderr, "Error:"
367 "\tSILC server must not be run as root. For the security of your\n"
368 "\tsystem it is strongly suggested that you run SILC under dedicated\n"
369 "\tuser account. Modify the [Identity] configuration section to run\n"
370 "\tthe server as non-root user.\n");
374 /* Get the values given for user and group in configuration file */
375 user=server->config->identity->user;
376 group=server->config->identity->group;
378 /* Check whether the user/group information is text */
379 if (atoi(user)!=0 || atoi(group)!=0) {
380 SILC_LOG_DEBUG(("Invalid user and/or group information"));
381 SILC_LOG_DEBUG(("User and/or group given as number"));
382 fprintf(stderr, "Invalid user and/or group information\n");
383 fprintf(stderr, "Please assign them as names, not numbers\n");
387 /* Catch the nasty incident of string "0" returning 0 from atoi */
388 if (strcmp("0", user)==0 || strcmp("0", group)==0) {
389 SILC_LOG_DEBUG(("User and/or group configured to 0. Unacceptable"));
390 fprintf(stderr, "User and/or group configured to 0. Exiting\n");
398 fprintf(stderr, "No such user %s found\n", user);
403 fprintf(stderr, "No such group %s found\n", group);
407 /* Check whether user and/or group is set to root. If yes, exit
408 immediately. Otherwise, setgid and setuid server to user.group */
409 if (gr->gr_gid==0 || pw->pw_uid==0) {
410 fprintf(stderr, "Error:"
411 "\tSILC server must not be run as root. For the security of your\n"
412 "\tsystem it is strongly suggested that you run SILC under dedicated\n"
413 "\tuser account. Modify the [Identity] configuration section to run\n"
414 "\tthe server as non-root user.\n");
417 /* Fork server to background, making it a daemon */
419 SILC_LOG_DEBUG(("Server started as root. Dropping privileges."));
420 SILC_LOG_DEBUG(("Forking SILC server to background"));
425 SILC_LOG_DEBUG(("Changing to group %s", group));
426 if(setgid(gr->gr_gid)==0) {
427 SILC_LOG_DEBUG(("Setgid to %s", group));
429 SILC_LOG_DEBUG(("Setgid to %s failed", group));
430 fprintf(stderr, "Tried to setgid %s but no such group. Exiting\n",
434 SILC_LOG_DEBUG(("Changing to user nobody"));
435 if(setuid(pw->pw_uid)==0) {
436 SILC_LOG_DEBUG(("Setuid to %s", user));
438 SILC_LOG_DEBUG(("Setuid to %s failed", user));
439 fprintf(stderr, "Tried to setuid %s but no such user. Exiting\n",
445 /* Fork server to background, making it a daemon */
447 SILC_LOG_DEBUG(("Server started as user"));
448 SILC_LOG_DEBUG(("Forking SILC server to background"));
455 /* Stops the SILC server. This function is used to shutdown the server.
456 This is usually called after the scheduler has returned. After stopping
457 the server one should call silc_server_free. */
459 void silc_server_stop(SilcServer server)
461 SILC_LOG_DEBUG(("Stopping server"));
463 /* Stop the scheduler, although it might be already stopped. This
464 doesn't hurt anyone. This removes all the tasks and task queues,
466 silc_schedule_stop();
467 silc_schedule_uninit();
469 silc_server_protocols_unregister();
471 SILC_LOG_DEBUG(("Server stopped"));
474 /* The heart of the server. This runs the scheduler thus runs the server.
475 When this returns the server has been stopped and the program will
478 void silc_server_run(SilcServer server)
480 SILC_LOG_DEBUG(("Running server"));
482 /* Start the scheduler, the heart of the SILC server. When this returns
483 the program will be terminated. */
487 /* Timeout callback that will be called to retry connecting to remote
488 router. This is used by both normal and router server. This will wait
489 before retrying the connecting. The timeout is generated by exponential
490 backoff algorithm. */
492 SILC_TASK_CALLBACK(silc_server_connect_to_router_retry)
494 SilcServerConnection sconn = (SilcServerConnection)context;
495 SilcServer server = sconn->server;
497 SILC_LOG_INFO(("Retrying connecting to a router"));
499 /* Calculate next timeout */
500 if (sconn->retry_count >= 1) {
501 sconn->retry_timeout = sconn->retry_timeout * SILC_SERVER_RETRY_MULTIPLIER;
502 if (sconn->retry_timeout > SILC_SERVER_RETRY_INTERVAL_MAX)
503 sconn->retry_timeout = SILC_SERVER_RETRY_INTERVAL_MAX;
505 sconn->retry_timeout = server->params->retry_interval_min;
507 sconn->retry_count++;
508 sconn->retry_timeout = sconn->retry_timeout +
509 silc_rng_get_rn32(server->rng) % SILC_SERVER_RETRY_RANDOMIZER;
511 /* If we've reached max retry count, give up. */
512 if (sconn->retry_count > server->params->retry_count &&
513 server->params->retry_keep_trying == FALSE) {
514 SILC_LOG_ERROR(("Could not connect to router, giving up"));
518 /* Wait one before retrying */
519 silc_task_register(server->timeout_queue, fd, silc_server_connect_router,
520 context, sconn->retry_timeout,
521 server->params->retry_interval_min_usec,
522 SILC_TASK_TIMEOUT, SILC_TASK_PRI_NORMAL);
525 /* Generic routine to use connect to a router. */
527 SILC_TASK_CALLBACK(silc_server_connect_router)
529 SilcServerConnection sconn = (SilcServerConnection)context;
530 SilcServer server = sconn->server;
531 SilcSocketConnection newsocket;
532 SilcProtocol protocol;
533 SilcServerKEInternalContext *proto_ctx;
536 SILC_LOG_INFO(("Connecting to the router %s on port %d",
537 sconn->remote_host, sconn->remote_port));
539 /* Connect to remote host */
540 sock = silc_net_create_connection(sconn->remote_port,
543 SILC_LOG_ERROR(("Could not connect to router"));
544 silc_task_register(server->timeout_queue, fd,
545 silc_server_connect_to_router_retry,
546 context, 0, 1, SILC_TASK_TIMEOUT,
547 SILC_TASK_PRI_NORMAL);
551 /* Set socket options */
552 silc_net_set_socket_nonblock(sock);
553 silc_net_set_socket_opt(sock, SOL_SOCKET, SO_REUSEADDR, 1);
555 /* Create socket connection for the connection. Even though we
556 know that we are connecting to a router we will mark the socket
557 to be unknown connection until we have executed authentication
559 silc_socket_alloc(sock, SILC_SOCKET_TYPE_UNKNOWN, NULL, &newsocket);
560 server->sockets[sock] = newsocket;
561 newsocket->hostname = strdup(sconn->remote_host);
562 newsocket->ip = strdup(sconn->remote_host);
563 newsocket->port = sconn->remote_port;
564 sconn->sock = newsocket;
566 /* Allocate internal protocol context. This is sent as context
568 proto_ctx = silc_calloc(1, sizeof(*proto_ctx));
569 proto_ctx->server = (void *)server;
570 proto_ctx->context = (void *)sconn;
571 proto_ctx->sock = newsocket;
572 proto_ctx->rng = server->rng;
573 proto_ctx->responder = FALSE;
575 /* Perform key exchange protocol. silc_server_connect_to_router_second
576 will be called after the protocol is finished. */
577 silc_protocol_alloc(SILC_PROTOCOL_SERVER_KEY_EXCHANGE,
578 &protocol, proto_ctx,
579 silc_server_connect_to_router_second);
580 newsocket->protocol = protocol;
582 /* Register a timeout task that will be executed if the protocol
583 is not executed within set limit. */
584 proto_ctx->timeout_task =
585 silc_task_register(server->timeout_queue, sock,
586 silc_server_timeout_remote,
587 server, server->params->protocol_timeout,
588 server->params->protocol_timeout_usec,
592 /* Register the connection for network input and output. This sets
593 that scheduler will listen for incoming packets for this connection
594 and sets that outgoing packets may be sent to this connection as
595 well. However, this doesn't set the scheduler for outgoing traffic,
596 it will be set separately by calling SILC_SET_CONNECTION_FOR_OUTPUT,
597 later when outgoing data is available. */
598 context = (void *)server;
599 SILC_REGISTER_CONNECTION_FOR_IO(sock);
601 /* Run the protocol */
602 protocol->execute(server->timeout_queue, 0, protocol, sock, 0, 0);
605 /* This function connects to our primary router or if we are a router this
606 establishes all our primary routes. This is called at the start of the
607 server to do authentication and key exchange with our router - called
610 SILC_TASK_CALLBACK(silc_server_connect_to_router)
612 SilcServer server = (SilcServer)context;
613 SilcServerConnection sconn;
615 SILC_LOG_DEBUG(("Connecting to router(s)"));
617 /* If we are normal SILC server we need to connect to our cell's
619 if (server->server_type == SILC_SERVER) {
620 SILC_LOG_DEBUG(("We are normal server"));
622 /* Create connection to the router, if configured. */
623 if (server->config->routers) {
625 /* Allocate connection object for hold connection specific stuff. */
626 sconn = silc_calloc(1, sizeof(*sconn));
627 sconn->server = server;
628 sconn->remote_host = strdup(server->config->routers->host);
629 sconn->remote_port = server->config->routers->port;
631 silc_task_register(server->timeout_queue, fd,
632 silc_server_connect_router,
633 (void *)sconn, 0, 1, SILC_TASK_TIMEOUT,
634 SILC_TASK_PRI_NORMAL);
639 /* If we are a SILC router we need to establish all of our primary
641 if (server->server_type == SILC_ROUTER) {
642 SilcServerConfigSectionServerConnection *ptr;
644 SILC_LOG_DEBUG(("We are router"));
646 /* Create the connections to all our routes */
647 ptr = server->config->routers;
650 SILC_LOG_DEBUG(("Router connection [%s] %s:%d",
651 ptr->initiator ? "Initiator" : "Responder",
652 ptr->host, ptr->port));
654 if (ptr->initiator) {
655 /* Allocate connection object for hold connection specific stuff. */
656 sconn = silc_calloc(1, sizeof(*sconn));
657 sconn->server = server;
658 sconn->remote_host = strdup(ptr->host);
659 sconn->remote_port = ptr->port;
661 silc_task_register(server->timeout_queue, fd,
662 silc_server_connect_router,
663 (void *)sconn, 0, 1, SILC_TASK_TIMEOUT,
664 SILC_TASK_PRI_NORMAL);
674 SILC_LOG_DEBUG(("No router(s), server will be standalone"));
676 /* There wasn't a configured router, we will continue but we don't
677 have a connection to outside world. We will be standalone server. */
678 server->standalone = TRUE;
681 /* Second part of connecting to router(s). Key exchange protocol has been
682 executed and now we will execute authentication protocol. */
684 SILC_TASK_CALLBACK(silc_server_connect_to_router_second)
686 SilcProtocol protocol = (SilcProtocol)context;
687 SilcServerKEInternalContext *ctx =
688 (SilcServerKEInternalContext *)protocol->context;
689 SilcServer server = (SilcServer)ctx->server;
690 SilcServerConnection sconn = (SilcServerConnection)ctx->context;
691 SilcSocketConnection sock = server->sockets[fd];
692 SilcServerConnAuthInternalContext *proto_ctx;
693 SilcServerConfigSectionServerConnection *conn = NULL;
695 SILC_LOG_DEBUG(("Start"));
697 if (protocol->state == SILC_PROTOCOL_STATE_ERROR ||
698 protocol->state == SILC_PROTOCOL_STATE_FAILURE) {
699 /* Error occured during protocol */
700 silc_protocol_free(protocol);
701 sock->protocol = NULL;
702 silc_ske_free_key_material(ctx->keymat);
704 silc_packet_context_free(ctx->packet);
706 silc_ske_free(ctx->ske);
708 silc_free(ctx->dest_id);
710 silc_task_unregister_by_callback(server->timeout_queue,
711 silc_server_failure_callback);
712 silc_server_disconnect_remote(server, sock, "Server closed connection: "
713 "Key exchange failed");
717 /* We now have the key material as the result of the key exchange
718 protocol. Take the key material into use. Free the raw key material
719 as soon as we've set them into use. */
720 if (!silc_server_protocol_ke_set_keys(ctx->ske, ctx->sock, ctx->keymat,
721 ctx->ske->prop->cipher,
722 ctx->ske->prop->pkcs,
723 ctx->ske->prop->hash,
724 ctx->ske->prop->hmac,
725 ctx->ske->prop->group,
727 silc_protocol_free(protocol);
728 sock->protocol = NULL;
729 silc_ske_free_key_material(ctx->keymat);
731 silc_packet_context_free(ctx->packet);
733 silc_ske_free(ctx->ske);
735 silc_free(ctx->dest_id);
737 silc_task_unregister_by_callback(server->timeout_queue,
738 silc_server_failure_callback);
739 silc_server_disconnect_remote(server, sock, "Server closed connection: "
740 "Key exchange failed");
743 silc_ske_free_key_material(ctx->keymat);
745 /* Allocate internal context for the authentication protocol. This
746 is sent as context for the protocol. */
747 proto_ctx = silc_calloc(1, sizeof(*proto_ctx));
748 proto_ctx->server = (void *)server;
749 proto_ctx->context = (void *)sconn;
750 proto_ctx->sock = sock;
751 proto_ctx->ske = ctx->ske; /* Save SKE object from previous protocol */
752 proto_ctx->dest_id_type = ctx->dest_id_type;
753 proto_ctx->dest_id = ctx->dest_id;
755 /* Resolve the authentication method used in this connection. Check if
756 we find a match from user configured connections */
757 conn = silc_server_config_find_router_conn(server->config,
761 /* Match found. Use the configured authentication method */
762 proto_ctx->auth_meth = conn->auth_meth;
763 if (conn->auth_data) {
764 proto_ctx->auth_data = strdup(conn->auth_data);
765 proto_ctx->auth_data_len = strlen(conn->auth_data);
768 SILC_LOG_ERROR(("Could not find connection data for %s (%s) on port",
769 sock->hostname, sock->ip, sock->port));
770 silc_protocol_free(protocol);
771 sock->protocol = NULL;
773 silc_packet_context_free(ctx->packet);
775 silc_ske_free(ctx->ske);
777 silc_free(ctx->dest_id);
779 silc_task_unregister_by_callback(server->timeout_queue,
780 silc_server_failure_callback);
781 silc_server_disconnect_remote(server, sock, "Server closed connection: "
782 "Key exchange failed");
786 /* Free old protocol as it is finished now */
787 silc_protocol_free(protocol);
789 silc_packet_context_free(ctx->packet);
791 sock->protocol = NULL;
793 /* Allocate the authentication protocol. This is allocated here
794 but we won't start it yet. We will be receiving party of this
795 protocol thus we will wait that connecting party will make
797 silc_protocol_alloc(SILC_PROTOCOL_SERVER_CONNECTION_AUTH,
798 &sock->protocol, proto_ctx,
799 silc_server_connect_to_router_final);
801 /* Register timeout task. If the protocol is not executed inside
802 this timelimit the connection will be terminated. Currently
803 this is 15 seconds and is hard coded limit (XXX). */
804 proto_ctx->timeout_task =
805 silc_task_register(server->timeout_queue, sock->sock,
806 silc_server_timeout_remote,
807 (void *)server, 15, 0,
811 /* Run the protocol */
812 sock->protocol->execute(server->timeout_queue, 0,
813 sock->protocol, sock->sock, 0, 0);
816 /* Finalizes the connection to router. Registers a server task to the
817 queue so that we can accept new connections. */
819 SILC_TASK_CALLBACK(silc_server_connect_to_router_final)
821 SilcProtocol protocol = (SilcProtocol)context;
822 SilcServerConnAuthInternalContext *ctx =
823 (SilcServerConnAuthInternalContext *)protocol->context;
824 SilcServer server = (SilcServer)ctx->server;
825 SilcServerConnection sconn = (SilcServerConnection)ctx->context;
826 SilcSocketConnection sock = ctx->sock;
827 SilcServerEntry id_entry;
829 SilcServerHBContext hb_context;
830 unsigned char *id_string;
831 SilcIDListData idata;
833 SILC_LOG_DEBUG(("Start"));
835 if (protocol->state == SILC_PROTOCOL_STATE_ERROR ||
836 protocol->state == SILC_PROTOCOL_STATE_FAILURE) {
837 /* Error occured during protocol */
839 silc_free(ctx->dest_id);
840 silc_server_disconnect_remote(server, sock, "Server closed connection: "
841 "Authentication failed");
845 /* Add a task to the queue. This task receives new connections to the
846 server. This task remains on the queue until the end of the program. */
847 if (!server->listenning) {
848 silc_task_register(server->io_queue, server->sock,
849 silc_server_accept_new_connection,
850 (void *)server, 0, 0,
852 SILC_TASK_PRI_NORMAL);
853 server->listenning = TRUE;
856 /* Send NEW_SERVER packet to the router. We will become registered
857 to the SILC network after sending this packet. */
858 id_string = silc_id_id2str(server->id, SILC_ID_SERVER);
859 packet = silc_buffer_alloc(2 + 2 + SILC_ID_SERVER_LEN +
860 strlen(server->server_name));
861 silc_buffer_pull_tail(packet, SILC_BUFFER_END(packet));
862 silc_buffer_format(packet,
863 SILC_STR_UI_SHORT(SILC_ID_SERVER_LEN),
864 SILC_STR_UI_XNSTRING(id_string, SILC_ID_SERVER_LEN),
865 SILC_STR_UI_SHORT(strlen(server->server_name)),
866 SILC_STR_UI_XNSTRING(server->server_name,
867 strlen(server->server_name)),
870 /* Send the packet */
871 silc_server_packet_send(server, ctx->sock, SILC_PACKET_NEW_SERVER, 0,
872 packet->data, packet->len, TRUE);
873 silc_buffer_free(packet);
874 silc_free(id_string);
876 SILC_LOG_DEBUG(("Connected to router %s", sock->hostname));
878 /* Add the connected router to local server list */
879 server->standalone = FALSE;
880 id_entry = silc_idlist_add_server(server->local_list, strdup(sock->hostname),
881 SILC_ROUTER, ctx->dest_id, NULL, sock);
884 silc_free(ctx->dest_id);
885 silc_server_disconnect_remote(server, sock, "Server closed connection: "
886 "Authentication failed");
890 silc_idlist_add_data(id_entry, (SilcIDListData)sock->user_data);
891 silc_free(sock->user_data);
892 sock->user_data = (void *)id_entry;
893 sock->type = SILC_SOCKET_TYPE_ROUTER;
894 server->id_entry->router = id_entry;
895 server->router = id_entry;
896 idata = (SilcIDListData)sock->user_data;
897 idata->registered = TRUE;
899 /* Perform keepalive. The `hb_context' will be freed automatically
900 when finally calling the silc_socket_free function. XXX hardcoded
902 hb_context = silc_calloc(1, sizeof(*hb_context));
903 hb_context->server = server;
904 silc_socket_set_heartbeat(sock, 600, hb_context,
905 silc_server_perform_heartbeat,
906 server->timeout_queue);
908 /* Register re-key timeout */
909 idata->rekey->timeout = 3600; /* XXX hardcoded */
910 idata->rekey->context = (void *)server;
911 silc_task_register(server->timeout_queue, sock->sock,
912 silc_server_rekey_callback,
913 (void *)sock, idata->rekey->timeout, 0,
914 SILC_TASK_TIMEOUT, SILC_TASK_PRI_NORMAL);
916 /* If we are router then announce our possible servers. */
917 if (server->server_type == SILC_ROUTER)
918 silc_server_announce_servers(server);
920 /* Announce our clients and channels to the router */
921 silc_server_announce_clients(server);
922 silc_server_announce_channels(server);
925 /* Free the temporary connection data context */
927 silc_free(sconn->remote_host);
931 /* Free the protocol object */
932 silc_protocol_free(protocol);
934 silc_packet_context_free(ctx->packet);
936 silc_ske_free(ctx->ske);
938 sock->protocol = NULL;
941 /* Accepts new connections to the server. Accepting new connections are
942 done in three parts to make it async. */
944 SILC_TASK_CALLBACK(silc_server_accept_new_connection)
946 SilcServer server = (SilcServer)context;
947 SilcSocketConnection newsocket;
948 SilcServerKEInternalContext *proto_ctx;
950 void *cconfig, *sconfig, *rconfig;
952 SILC_LOG_DEBUG(("Accepting new connection"));
954 server->stat.conn_attempts++;
956 sock = silc_net_accept_connection(server->sock);
958 SILC_LOG_ERROR(("Could not accept new connection: %s", strerror(errno)));
959 server->stat.conn_failures++;
963 /* Check max connections */
964 if (sock > SILC_SERVER_MAX_CONNECTIONS) {
965 SILC_LOG_ERROR(("Refusing connection, server is full"));
966 server->stat.conn_failures++;
970 /* Set socket options */
971 silc_net_set_socket_nonblock(sock);
972 silc_net_set_socket_opt(sock, SOL_SOCKET, SO_REUSEADDR, 1);
974 /* We don't create a ID yet, since we don't know what type of connection
975 this is yet. But, we do add the connection to the socket table. */
976 silc_socket_alloc(sock, SILC_SOCKET_TYPE_UNKNOWN, NULL, &newsocket);
977 server->sockets[sock] = newsocket;
979 /* XXX This MUST be done async as this will block the entire server
980 process. Either we have to do our own resolver stuff or in the future
981 we can use threads. */
982 /* Perform name and address lookups for the remote host. */
983 if (!silc_net_check_host_by_sock(sock, &newsocket->hostname,
985 if ((server->params->require_reverse_mapping && !newsocket->hostname) ||
987 SILC_LOG_ERROR(("IP/DNS lookup failed %s",
988 newsocket->hostname ? newsocket->hostname :
989 newsocket->ip ? newsocket->ip : ""));
990 server->stat.conn_failures++;
993 if (!newsocket->hostname)
994 newsocket->hostname = strdup(newsocket->ip);
996 newsocket->port = silc_net_get_remote_port(sock);
998 /* Register the connection for network input and output. This sets
999 that scheduler will listen for incoming packets for this connection
1000 and sets that outgoing packets may be sent to this connection as well.
1001 However, this doesn't set the scheduler for outgoing traffic, it
1002 will be set separately by calling SILC_SET_CONNECTION_FOR_OUTPUT,
1003 later when outgoing data is available. */
1004 SILC_REGISTER_CONNECTION_FOR_IO(sock);
1006 /* Check whether we have configred this sort of connection at all. We
1007 have to check all configurations since we don't know what type of
1008 connection this is. */
1009 port = server->sockets[fd]->port; /* Listenning port */
1010 if (!(cconfig = silc_server_config_find_client_conn(server->config,
1011 newsocket->ip, port)))
1012 cconfig = silc_server_config_find_client_conn(server->config,
1013 newsocket->hostname,
1015 if (!(sconfig = silc_server_config_find_server_conn(server->config,
1018 sconfig = silc_server_config_find_server_conn(server->config,
1019 newsocket->hostname,
1021 if (!(rconfig = silc_server_config_find_router_conn(server->config,
1022 newsocket->ip, port)))
1023 rconfig = silc_server_config_find_router_conn(server->config,
1024 newsocket->hostname,
1026 if (!cconfig && !sconfig && !rconfig) {
1027 silc_server_disconnect_remote(server, newsocket,
1028 "Server closed connection: "
1029 "Connection refused");
1030 server->stat.conn_failures++;
1034 /* The connection is allowed */
1036 SILC_LOG_INFO(("Incoming connection from %s (%s)", newsocket->hostname,
1039 /* Allocate internal context for key exchange protocol. This is
1040 sent as context for the protocol. */
1041 proto_ctx = silc_calloc(1, sizeof(*proto_ctx));
1042 proto_ctx->server = context;
1043 proto_ctx->sock = newsocket;
1044 proto_ctx->rng = server->rng;
1045 proto_ctx->responder = TRUE;
1046 proto_ctx->cconfig = cconfig;
1047 proto_ctx->sconfig = sconfig;
1048 proto_ctx->rconfig = rconfig;
1050 /* Prepare the connection for key exchange protocol. We allocate the
1051 protocol but will not start it yet. The connector will be the
1052 initiator of the protocol thus we will wait for initiation from
1053 there before we start the protocol. */
1054 server->stat.auth_attempts++;
1055 silc_protocol_alloc(SILC_PROTOCOL_SERVER_KEY_EXCHANGE,
1056 &newsocket->protocol, proto_ctx,
1057 silc_server_accept_new_connection_second);
1059 /* Register a timeout task that will be executed if the connector
1060 will not start the key exchange protocol within 60 seconds. For
1061 now, this is a hard coded limit. After 60 secs the connection will
1062 be closed if the key exchange protocol has not been started. */
1063 proto_ctx->timeout_task =
1064 silc_task_register(server->timeout_queue, newsocket->sock,
1065 silc_server_timeout_remote,
1071 /* Second part of accepting new connection. Key exchange protocol has been
1072 performed and now it is time to do little connection authentication
1073 protocol to figure out whether this connection is client or server
1074 and whether it has right to access this server (especially server
1075 connections needs to be authenticated). */
1077 SILC_TASK_CALLBACK(silc_server_accept_new_connection_second)
1079 SilcProtocol protocol = (SilcProtocol)context;
1080 SilcServerKEInternalContext *ctx =
1081 (SilcServerKEInternalContext *)protocol->context;
1082 SilcServer server = (SilcServer)ctx->server;
1083 SilcSocketConnection sock = server->sockets[fd];
1084 SilcServerConnAuthInternalContext *proto_ctx;
1086 SILC_LOG_DEBUG(("Start"));
1088 if (protocol->state == SILC_PROTOCOL_STATE_ERROR ||
1089 protocol->state == SILC_PROTOCOL_STATE_FAILURE) {
1090 /* Error occured during protocol */
1091 silc_protocol_free(protocol);
1092 sock->protocol = NULL;
1093 silc_ske_free_key_material(ctx->keymat);
1095 silc_packet_context_free(ctx->packet);
1097 silc_ske_free(ctx->ske);
1099 silc_free(ctx->dest_id);
1101 silc_task_unregister_by_callback(server->timeout_queue,
1102 silc_server_failure_callback);
1103 silc_server_disconnect_remote(server, sock, "Server closed connection: "
1104 "Key exchange failed");
1105 server->stat.auth_failures++;
1109 /* We now have the key material as the result of the key exchange
1110 protocol. Take the key material into use. Free the raw key material
1111 as soon as we've set them into use. */
1112 if (!silc_server_protocol_ke_set_keys(ctx->ske, ctx->sock, ctx->keymat,
1113 ctx->ske->prop->cipher,
1114 ctx->ske->prop->pkcs,
1115 ctx->ske->prop->hash,
1116 ctx->ske->prop->hmac,
1117 ctx->ske->prop->group,
1119 silc_protocol_free(protocol);
1120 sock->protocol = NULL;
1121 silc_ske_free_key_material(ctx->keymat);
1123 silc_packet_context_free(ctx->packet);
1125 silc_ske_free(ctx->ske);
1127 silc_free(ctx->dest_id);
1129 silc_task_unregister_by_callback(server->timeout_queue,
1130 silc_server_failure_callback);
1131 silc_server_disconnect_remote(server, sock, "Server closed connection: "
1132 "Key exchange failed");
1133 server->stat.auth_failures++;
1136 silc_ske_free_key_material(ctx->keymat);
1138 /* Allocate internal context for the authentication protocol. This
1139 is sent as context for the protocol. */
1140 proto_ctx = silc_calloc(1, sizeof(*proto_ctx));
1141 proto_ctx->server = (void *)server;
1142 proto_ctx->sock = sock;
1143 proto_ctx->ske = ctx->ske; /* Save SKE object from previous protocol */
1144 proto_ctx->responder = TRUE;
1145 proto_ctx->dest_id_type = ctx->dest_id_type;
1146 proto_ctx->dest_id = ctx->dest_id;
1147 proto_ctx->cconfig = ctx->cconfig;
1148 proto_ctx->sconfig = ctx->sconfig;
1149 proto_ctx->rconfig = ctx->rconfig;
1151 /* Free old protocol as it is finished now */
1152 silc_protocol_free(protocol);
1154 silc_packet_context_free(ctx->packet);
1156 sock->protocol = NULL;
1158 /* Allocate the authentication protocol. This is allocated here
1159 but we won't start it yet. We will be receiving party of this
1160 protocol thus we will wait that connecting party will make
1161 their first move. */
1162 silc_protocol_alloc(SILC_PROTOCOL_SERVER_CONNECTION_AUTH,
1163 &sock->protocol, proto_ctx,
1164 silc_server_accept_new_connection_final);
1166 /* Register timeout task. If the protocol is not executed inside
1167 this timelimit the connection will be terminated. Currently
1168 this is 60 seconds and is hard coded limit (XXX). */
1169 proto_ctx->timeout_task =
1170 silc_task_register(server->timeout_queue, sock->sock,
1171 silc_server_timeout_remote,
1172 (void *)server, 60, 0,
1177 /* Final part of accepting new connection. The connection has now
1178 been authenticated and keys has been exchanged. We also know whether
1179 this is client or server connection. */
1181 SILC_TASK_CALLBACK(silc_server_accept_new_connection_final)
1183 SilcProtocol protocol = (SilcProtocol)context;
1184 SilcServerConnAuthInternalContext *ctx =
1185 (SilcServerConnAuthInternalContext *)protocol->context;
1186 SilcServer server = (SilcServer)ctx->server;
1187 SilcSocketConnection sock = ctx->sock;
1188 SilcServerHBContext hb_context;
1189 void *id_entry = NULL;
1191 SILC_LOG_DEBUG(("Start"));
1193 if (protocol->state == SILC_PROTOCOL_STATE_ERROR ||
1194 protocol->state == SILC_PROTOCOL_STATE_FAILURE) {
1195 /* Error occured during protocol */
1196 silc_protocol_free(protocol);
1197 sock->protocol = NULL;
1199 silc_packet_context_free(ctx->packet);
1201 silc_ske_free(ctx->ske);
1203 silc_free(ctx->dest_id);
1206 sock->protocol = NULL;
1207 silc_task_unregister_by_callback(server->timeout_queue,
1208 silc_server_failure_callback);
1209 silc_server_disconnect_remote(server, sock, "Server closed connection: "
1210 "Authentication failed");
1211 server->stat.auth_failures++;
1215 sock->type = ctx->conn_type;
1216 switch(sock->type) {
1217 case SILC_SOCKET_TYPE_CLIENT:
1219 SilcClientEntry client;
1221 SILC_LOG_DEBUG(("Remote host is client"));
1222 SILC_LOG_INFO(("Connection from %s (%s) is client", sock->hostname,
1225 /* Add the client to the client ID cache. The nickname and Client ID
1226 and other information is created after we have received NEW_CLIENT
1227 packet from client. */
1228 client = silc_idlist_add_client(server->local_list,
1229 NULL, 0, NULL, NULL, NULL, NULL, sock);
1231 SILC_LOG_ERROR(("Could not add new client to cache"));
1232 silc_free(sock->user_data);
1237 server->stat.my_clients++;
1238 server->stat.clients++;
1239 if (server->server_type == SILC_ROUTER)
1240 server->stat.cell_clients++;
1242 id_entry = (void *)client;
1245 case SILC_SOCKET_TYPE_SERVER:
1246 case SILC_SOCKET_TYPE_ROUTER:
1248 SilcServerEntry new_server;
1249 SilcServerConfigSectionServerConnection *conn =
1250 sock->type == SILC_SOCKET_TYPE_SERVER ? ctx->sconfig : ctx->rconfig;
1252 SILC_LOG_DEBUG(("Remote host is %s",
1253 sock->type == SILC_SOCKET_TYPE_SERVER ?
1254 "server" : "router"));
1255 SILC_LOG_INFO(("Connection from %s (%s) is %s", sock->hostname,
1256 sock->ip, sock->type == SILC_SOCKET_TYPE_SERVER ?
1257 "server" : "router"));
1259 /* Add the server into server cache. The server name and Server ID
1260 is updated after we have received NEW_SERVER packet from the
1261 server. We mark ourselves as router for this server if we really
1264 silc_idlist_add_server(server->local_list, NULL,
1265 sock->type == SILC_SOCKET_TYPE_SERVER ?
1266 SILC_SERVER : SILC_ROUTER, NULL,
1267 sock->type == SILC_SOCKET_TYPE_SERVER ?
1268 server->id_entry : NULL, sock);
1270 SILC_LOG_ERROR(("Could not add new server to cache"));
1271 silc_free(sock->user_data);
1276 if (sock->type == SILC_SOCKET_TYPE_SERVER)
1277 server->stat.my_servers++;
1279 server->stat.my_routers++;
1280 server->stat.servers++;
1282 id_entry = (void *)new_server;
1284 /* Check whether this connection is to be our primary router connection
1285 if we dont' already have the primary route. */
1286 if (server->standalone && sock->type == SILC_SOCKET_TYPE_ROUTER) {
1287 if (silc_server_config_is_primary_route(server->config) &&
1291 SILC_LOG_DEBUG(("We are not standalone server anymore"));
1292 server->standalone = FALSE;
1293 if (!server->id_entry->router) {
1294 server->id_entry->router = id_entry;
1295 server->router = id_entry;
1305 /* Add the common data structure to the ID entry. */
1307 silc_idlist_add_data(id_entry, (SilcIDListData)sock->user_data);
1309 /* Add to sockets internal pointer for fast referencing */
1310 silc_free(sock->user_data);
1311 sock->user_data = id_entry;
1313 /* Connection has been fully established now. Everything is ok. */
1314 SILC_LOG_DEBUG(("New connection authenticated"));
1316 /* Perform keepalive. The `hb_context' will be freed automatically
1317 when finally calling the silc_socket_free function. XXX hardcoded
1319 hb_context = silc_calloc(1, sizeof(*hb_context));
1320 hb_context->server = server;
1321 silc_socket_set_heartbeat(sock, 600, hb_context,
1322 silc_server_perform_heartbeat,
1323 server->timeout_queue);
1325 silc_task_unregister_by_callback(server->timeout_queue,
1326 silc_server_failure_callback);
1327 silc_protocol_free(protocol);
1329 silc_packet_context_free(ctx->packet);
1331 silc_ske_free(ctx->ske);
1333 silc_free(ctx->dest_id);
1335 sock->protocol = NULL;
1338 /* This function is used to read packets from network and send packets to
1339 network. This is usually a generic task. */
1341 SILC_TASK_CALLBACK(silc_server_packet_process)
1343 SilcServer server = (SilcServer)context;
1344 SilcSocketConnection sock = server->sockets[fd];
1345 SilcIDListData idata;
1346 SilcCipher cipher = NULL;
1347 SilcHmac hmac = NULL;
1353 SILC_LOG_DEBUG(("Processing packet"));
1355 /* Packet sending */
1357 if (type == SILC_TASK_WRITE) {
1358 /* Do not send data to disconnected connection */
1359 if (SILC_IS_DISCONNECTED(sock))
1362 server->stat.packets_sent++;
1364 if (sock->outbuf->data - sock->outbuf->head)
1365 silc_buffer_push(sock->outbuf, sock->outbuf->data - sock->outbuf->head);
1367 /* Send the packet */
1368 ret = silc_packet_send(sock, TRUE);
1370 /* If returned -2 could not write to connection now, will do
1378 /* The packet has been sent and now it is time to set the connection
1379 back to only for input. When there is again some outgoing data
1380 available for this connection it will be set for output as well.
1381 This call clears the output setting and sets it only for input. */
1382 SILC_SET_CONNECTION_FOR_INPUT(fd);
1383 SILC_UNSET_OUTBUF_PENDING(sock);
1385 silc_buffer_clear(sock->outbuf);
1389 /* Packet receiving */
1391 /* Read some data from connection */
1392 ret = silc_packet_receive(sock);
1398 SILC_LOG_DEBUG(("Read EOF"));
1400 /* If connection is disconnecting already we will finally
1401 close the connection */
1402 if (SILC_IS_DISCONNECTING(sock)) {
1403 if (sock->user_data)
1404 silc_server_free_sock_user_data(server, sock);
1405 silc_server_close_connection(server, sock);
1409 SILC_LOG_DEBUG(("Premature EOF from connection %d", sock->sock));
1410 SILC_SET_DISCONNECTING(sock);
1412 /* If the closed connection was our primary router connection the
1413 start re-connecting phase. */
1414 if (!server->standalone && sock->type == SILC_SOCKET_TYPE_ROUTER &&
1415 sock == server->router->connection)
1416 silc_task_register(server->timeout_queue, 0,
1417 silc_server_connect_to_router,
1420 SILC_TASK_PRI_NORMAL);
1422 if (sock->user_data)
1423 silc_server_free_sock_user_data(server, sock);
1424 silc_server_close_connection(server, sock);
1428 /* If connection is disconnecting or disconnected we will ignore
1430 if (SILC_IS_DISCONNECTING(sock) || SILC_IS_DISCONNECTED(sock)) {
1431 SILC_LOG_DEBUG(("Ignoring read data from disonnected connection"));
1435 server->stat.packets_received++;
1437 /* Get keys and stuff from ID entry */
1438 idata = (SilcIDListData)sock->user_data;
1440 idata->last_receive = time(NULL);
1441 cipher = idata->receive_key;
1442 hmac = idata->hmac_receive;
1445 /* Process the packet. This will call the parser that will then
1446 decrypt and parse the packet. */
1447 silc_packet_receive_process(sock, cipher, hmac, silc_server_packet_parse,
1451 /* Callback function that the silc_packet_decrypt will call to make the
1452 decision whether the packet is normal or special packet. We will
1453 return TRUE if it is normal and FALSE if it is special */
1455 static int silc_server_packet_decrypt_check(SilcPacketType packet_type,
1457 SilcPacketContext *packet,
1460 SilcPacketParserContext *parse_ctx = (SilcPacketParserContext *)context;
1461 SilcServer server = (SilcServer)parse_ctx->context;
1463 /* Packet is normal packet, if:
1465 1) packet is private message packet and does not have private key set
1466 2) is other packet than channel message packet
1467 3) is channel message packet and remote is router and we are router
1469 all other packets are special packets
1472 if (packet_type == SILC_PACKET_PRIVATE_MESSAGE &&
1473 (buffer->data[2] & SILC_PACKET_FLAG_PRIVMSG_KEY))
1476 if (packet_type != SILC_PACKET_CHANNEL_MESSAGE ||
1477 (packet_type == SILC_PACKET_CHANNEL_MESSAGE &&
1478 parse_ctx->sock->type == SILC_SOCKET_TYPE_ROUTER &&
1479 server->server_type == SILC_ROUTER))
1485 /* Parses whole packet, received earlier. */
1487 SILC_TASK_CALLBACK(silc_server_packet_parse_real)
1489 SilcPacketParserContext *parse_ctx = (SilcPacketParserContext *)context;
1490 SilcServer server = (SilcServer)parse_ctx->context;
1491 SilcSocketConnection sock = parse_ctx->sock;
1492 SilcPacketContext *packet = parse_ctx->packet;
1493 SilcIDListData idata = (SilcIDListData)sock->user_data;
1496 SILC_LOG_DEBUG(("Start"));
1498 /* Decrypt the received packet */
1499 ret = silc_packet_decrypt(idata ? idata->receive_key : NULL,
1500 idata ? idata->hmac_receive : NULL,
1501 packet->buffer, packet,
1502 silc_server_packet_decrypt_check, parse_ctx);
1507 /* Parse the packet. Packet type is returned. */
1508 ret = silc_packet_parse(packet);
1510 /* Parse the packet header in special way as this is "special"
1512 ret = silc_packet_parse_special(packet);
1515 if (ret == SILC_PACKET_NONE)
1518 /* Check that the the current client ID is same as in the client's packet. */
1519 if (sock->type == SILC_SOCKET_TYPE_CLIENT) {
1520 SilcClientEntry client = (SilcClientEntry)sock->user_data;
1521 if (client && client->id) {
1522 void *id = silc_id_str2id(packet->src_id, packet->src_id_len,
1523 packet->src_id_type);
1524 if (SILC_ID_CLIENT_COMPARE(client->id, id)) {
1532 if (server->server_type == SILC_ROUTER) {
1533 /* Route the packet if it is not destined to us. Other ID types but
1534 server are handled separately after processing them. */
1535 if (!(packet->flags & SILC_PACKET_FLAG_BROADCAST) &&
1536 packet->dst_id_type == SILC_ID_SERVER &&
1537 sock->type != SILC_SOCKET_TYPE_CLIENT &&
1538 SILC_ID_SERVER_COMPARE(packet->dst_id, server->id_string)) {
1540 /* Route the packet to fastest route for the destination ID */
1541 void *id = silc_id_str2id(packet->dst_id, packet->dst_id_len,
1542 packet->dst_id_type);
1545 silc_server_packet_route(server,
1546 silc_server_route_get(server, id,
1547 packet->dst_id_type),
1554 /* Parse the incoming packet type */
1555 silc_server_packet_parse_type(server, sock, packet);
1557 if (server->server_type == SILC_ROUTER) {
1558 /* Broadcast packet if it is marked as broadcast packet and it is
1559 originated from router and we are router. */
1560 if (sock->type == SILC_SOCKET_TYPE_ROUTER &&
1561 packet->flags & SILC_PACKET_FLAG_BROADCAST &&
1562 !server->standalone) {
1563 silc_server_packet_broadcast(server, server->router->connection, packet);
1568 /* silc_buffer_clear(sock->inbuf); */
1569 silc_packet_context_free(packet);
1570 silc_free(parse_ctx);
1573 /* Parser callback called by silc_packet_receive_process. This merely
1574 registers timeout that will handle the actual parsing when appropriate. */
1576 void silc_server_packet_parse(SilcPacketParserContext *parser_context)
1578 SilcServer server = (SilcServer)parser_context->context;
1579 SilcSocketConnection sock = parser_context->sock;
1581 switch (sock->type) {
1582 case SILC_SOCKET_TYPE_UNKNOWN:
1583 case SILC_SOCKET_TYPE_CLIENT:
1584 /* Parse the packet with timeout */
1585 silc_task_register(server->timeout_queue, sock->sock,
1586 silc_server_packet_parse_real,
1587 (void *)parser_context, 0, 100000,
1589 SILC_TASK_PRI_NORMAL);
1591 case SILC_SOCKET_TYPE_SERVER:
1592 case SILC_SOCKET_TYPE_ROUTER:
1593 /* Packets from servers are parsed as soon as possible */
1594 silc_task_register(server->timeout_queue, sock->sock,
1595 silc_server_packet_parse_real,
1596 (void *)parser_context, 0, 1,
1598 SILC_TASK_PRI_NORMAL);
1605 /* Parses the packet type and calls what ever routines the packet type
1606 requires. This is done for all incoming packets. */
1608 void silc_server_packet_parse_type(SilcServer server,
1609 SilcSocketConnection sock,
1610 SilcPacketContext *packet)
1612 SilcPacketType type = packet->type;
1614 SILC_LOG_DEBUG(("Parsing packet type %d", type));
1616 /* Parse the packet type */
1618 case SILC_PACKET_DISCONNECT:
1619 SILC_LOG_DEBUG(("Disconnect packet"));
1620 if (packet->flags & SILC_PACKET_FLAG_LIST)
1624 case SILC_PACKET_SUCCESS:
1626 * Success received for something. For now we can have only
1627 * one protocol for connection executing at once hence this
1628 * success message is for whatever protocol is executing currently.
1630 SILC_LOG_DEBUG(("Success packet"));
1631 if (packet->flags & SILC_PACKET_FLAG_LIST)
1633 if (sock->protocol) {
1634 sock->protocol->execute(server->timeout_queue, 0,
1635 sock->protocol, sock->sock, 0, 0);
1639 case SILC_PACKET_FAILURE:
1641 * Failure received for something. For now we can have only
1642 * one protocol for connection executing at once hence this
1643 * failure message is for whatever protocol is executing currently.
1645 SILC_LOG_DEBUG(("Failure packet"));
1646 if (packet->flags & SILC_PACKET_FLAG_LIST)
1648 if (sock->protocol) {
1649 SilcServerFailureContext f;
1650 f = silc_calloc(1, sizeof(*f));
1654 /* We will wait 5 seconds to process this failure packet */
1655 silc_task_register(server->timeout_queue, sock->sock,
1656 silc_server_failure_callback, (void *)f, 5, 0,
1657 SILC_TASK_TIMEOUT, SILC_TASK_PRI_NORMAL);
1661 case SILC_PACKET_REJECT:
1662 SILC_LOG_DEBUG(("Reject packet"));
1663 if (packet->flags & SILC_PACKET_FLAG_LIST)
1668 case SILC_PACKET_NOTIFY:
1670 * Received notify packet. Server can receive notify packets from
1671 * router. Server then relays the notify messages to clients if needed.
1673 SILC_LOG_DEBUG(("Notify packet"));
1674 if (packet->flags & SILC_PACKET_FLAG_LIST)
1675 silc_server_notify_list(server, sock, packet);
1677 silc_server_notify(server, sock, packet);
1683 case SILC_PACKET_CHANNEL_MESSAGE:
1685 * Received channel message. Channel messages are special packets
1686 * (although probably most common ones) thus they are handled
1689 SILC_LOG_DEBUG(("Channel Message packet"));
1690 if (packet->flags & SILC_PACKET_FLAG_LIST)
1692 silc_server_channel_message(server, sock, packet);
1695 case SILC_PACKET_CHANNEL_KEY:
1697 * Received key for channel. As channels are created by the router
1698 * the keys are as well. We will distribute the key to all of our
1699 * locally connected clients on the particular channel. Router
1700 * never receives this channel and thus is ignored.
1702 SILC_LOG_DEBUG(("Channel Key packet"));
1703 if (packet->flags & SILC_PACKET_FLAG_LIST)
1705 silc_server_channel_key(server, sock, packet);
1711 case SILC_PACKET_COMMAND:
1713 * Recived command. Processes the command request and allocates the
1714 * command context and calls the command.
1716 SILC_LOG_DEBUG(("Command packet"));
1717 if (packet->flags & SILC_PACKET_FLAG_LIST)
1719 silc_server_command_process(server, sock, packet);
1722 case SILC_PACKET_COMMAND_REPLY:
1724 * Received command reply packet. Received command reply to command. It
1725 * may be reply to command sent by us or reply to command sent by client
1726 * that we've routed further.
1728 SILC_LOG_DEBUG(("Command Reply packet"));
1729 if (packet->flags & SILC_PACKET_FLAG_LIST)
1731 silc_server_command_reply(server, sock, packet);
1735 * Private Message packets
1737 case SILC_PACKET_PRIVATE_MESSAGE:
1739 * Received private message packet. The packet is coming from either
1742 SILC_LOG_DEBUG(("Private Message packet"));
1743 if (packet->flags & SILC_PACKET_FLAG_LIST)
1745 silc_server_private_message(server, sock, packet);
1748 case SILC_PACKET_PRIVATE_MESSAGE_KEY:
1750 * Private message key packet.
1752 if (packet->flags & SILC_PACKET_FLAG_LIST)
1754 silc_server_private_message_key(server, sock, packet);
1758 * Key Exchange protocol packets
1760 case SILC_PACKET_KEY_EXCHANGE:
1761 SILC_LOG_DEBUG(("KE packet"));
1762 if (packet->flags & SILC_PACKET_FLAG_LIST)
1765 if (sock->protocol && sock->protocol->protocol &&
1766 sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_KEY_EXCHANGE) {
1768 SilcServerKEInternalContext *proto_ctx =
1769 (SilcServerKEInternalContext *)sock->protocol->context;
1771 proto_ctx->packet = silc_packet_context_dup(packet);
1773 /* Let the protocol handle the packet */
1774 sock->protocol->execute(server->timeout_queue, 0,
1775 sock->protocol, sock->sock, 0, 100000);
1777 SILC_LOG_ERROR(("Received Key Exchange packet but no key exchange "
1778 "protocol active, packet dropped."));
1780 /* XXX Trigger KE protocol?? Rekey actually, maybe. */
1784 case SILC_PACKET_KEY_EXCHANGE_1:
1785 SILC_LOG_DEBUG(("KE 1 packet"));
1786 if (packet->flags & SILC_PACKET_FLAG_LIST)
1789 if (sock->protocol && sock->protocol->protocol &&
1790 (sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_KEY_EXCHANGE ||
1791 sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_REKEY)) {
1793 if (sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_REKEY) {
1794 SilcServerRekeyInternalContext *proto_ctx =
1795 (SilcServerRekeyInternalContext *)sock->protocol->context;
1797 if (proto_ctx->packet)
1798 silc_packet_context_free(proto_ctx->packet);
1800 proto_ctx->packet = silc_packet_context_dup(packet);
1802 /* Let the protocol handle the packet */
1803 sock->protocol->execute(server->timeout_queue, 0,
1804 sock->protocol, sock->sock, 0, 0);
1806 SilcServerKEInternalContext *proto_ctx =
1807 (SilcServerKEInternalContext *)sock->protocol->context;
1809 if (proto_ctx->packet)
1810 silc_packet_context_free(proto_ctx->packet);
1812 proto_ctx->packet = silc_packet_context_dup(packet);
1813 proto_ctx->dest_id_type = packet->src_id_type;
1814 proto_ctx->dest_id = silc_id_str2id(packet->src_id, packet->src_id_len,
1815 packet->src_id_type);
1816 if (!proto_ctx->dest_id)
1819 /* Let the protocol handle the packet */
1820 sock->protocol->execute(server->timeout_queue, 0,
1821 sock->protocol, sock->sock,
1825 SILC_LOG_ERROR(("Received Key Exchange 1 packet but no key exchange "
1826 "protocol active, packet dropped."));
1830 case SILC_PACKET_KEY_EXCHANGE_2:
1831 SILC_LOG_DEBUG(("KE 2 packet"));
1832 if (packet->flags & SILC_PACKET_FLAG_LIST)
1835 if (sock->protocol && sock->protocol->protocol &&
1836 (sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_KEY_EXCHANGE ||
1837 sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_REKEY)) {
1839 if (sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_REKEY) {
1840 SilcServerRekeyInternalContext *proto_ctx =
1841 (SilcServerRekeyInternalContext *)sock->protocol->context;
1843 if (proto_ctx->packet)
1844 silc_packet_context_free(proto_ctx->packet);
1846 proto_ctx->packet = silc_packet_context_dup(packet);
1848 /* Let the protocol handle the packet */
1849 sock->protocol->execute(server->timeout_queue, 0,
1850 sock->protocol, sock->sock, 0, 0);
1852 SilcServerKEInternalContext *proto_ctx =
1853 (SilcServerKEInternalContext *)sock->protocol->context;
1855 if (proto_ctx->packet)
1856 silc_packet_context_free(proto_ctx->packet);
1858 proto_ctx->packet = silc_packet_context_dup(packet);
1859 proto_ctx->dest_id_type = packet->src_id_type;
1860 proto_ctx->dest_id = silc_id_str2id(packet->src_id, packet->src_id_len,
1861 packet->src_id_type);
1862 if (!proto_ctx->dest_id)
1865 /* Let the protocol handle the packet */
1866 sock->protocol->execute(server->timeout_queue, 0,
1867 sock->protocol, sock->sock,
1871 SILC_LOG_ERROR(("Received Key Exchange 2 packet but no key exchange "
1872 "protocol active, packet dropped."));
1876 case SILC_PACKET_CONNECTION_AUTH_REQUEST:
1878 * Connection authentication request packet. When we receive this packet
1879 * we will send to the other end information about our mandatory
1880 * authentication method for the connection. This packet maybe received
1883 SILC_LOG_DEBUG(("Connection authentication request packet"));
1884 if (packet->flags & SILC_PACKET_FLAG_LIST)
1886 silc_server_connection_auth_request(server, sock, packet);
1890 * Connection Authentication protocol packets
1892 case SILC_PACKET_CONNECTION_AUTH:
1893 /* Start of the authentication protocol. We receive here the
1894 authentication data and will verify it. */
1895 SILC_LOG_DEBUG(("Connection auth packet"));
1896 if (packet->flags & SILC_PACKET_FLAG_LIST)
1899 if (sock->protocol && sock->protocol->protocol->type
1900 == SILC_PROTOCOL_SERVER_CONNECTION_AUTH) {
1902 SilcServerConnAuthInternalContext *proto_ctx =
1903 (SilcServerConnAuthInternalContext *)sock->protocol->context;
1905 proto_ctx->packet = silc_packet_context_dup(packet);
1907 /* Let the protocol handle the packet */
1908 sock->protocol->execute(server->timeout_queue, 0,
1909 sock->protocol, sock->sock, 0, 0);
1911 SILC_LOG_ERROR(("Received Connection Auth packet but no authentication "
1912 "protocol active, packet dropped."));
1916 case SILC_PACKET_NEW_ID:
1918 * Received New ID packet. This includes some new ID that has been
1919 * created. It may be for client, server or channel. This is the way
1920 * to distribute information about new registered entities in the
1923 SILC_LOG_DEBUG(("New ID packet"));
1924 if (packet->flags & SILC_PACKET_FLAG_LIST)
1925 silc_server_new_id_list(server, sock, packet);
1927 silc_server_new_id(server, sock, packet);
1930 case SILC_PACKET_NEW_CLIENT:
1932 * Received new client packet. This includes client information that
1933 * we will use to create initial client ID. After creating new
1934 * ID we will send it to the client.
1936 SILC_LOG_DEBUG(("New Client packet"));
1937 if (packet->flags & SILC_PACKET_FLAG_LIST)
1939 silc_server_new_client(server, sock, packet);
1942 case SILC_PACKET_NEW_SERVER:
1944 * Received new server packet. This includes Server ID and some other
1945 * information that we may save. This is received after server has
1948 SILC_LOG_DEBUG(("New Server packet"));
1949 if (packet->flags & SILC_PACKET_FLAG_LIST)
1951 silc_server_new_server(server, sock, packet);
1954 case SILC_PACKET_NEW_CHANNEL:
1956 * Received new channel packet. Information about new channel in the
1957 * network are distributed using this packet.
1959 SILC_LOG_DEBUG(("New Channel packet"));
1960 if (packet->flags & SILC_PACKET_FLAG_LIST)
1961 silc_server_new_channel_list(server, sock, packet);
1963 silc_server_new_channel(server, sock, packet);
1966 case SILC_PACKET_HEARTBEAT:
1968 * Received heartbeat.
1970 SILC_LOG_DEBUG(("Heartbeat packet"));
1971 if (packet->flags & SILC_PACKET_FLAG_LIST)
1975 case SILC_PACKET_KEY_AGREEMENT:
1977 * Received heartbeat.
1979 SILC_LOG_DEBUG(("Key agreement packet"));
1980 if (packet->flags & SILC_PACKET_FLAG_LIST)
1982 silc_server_key_agreement(server, sock, packet);
1985 case SILC_PACKET_REKEY:
1987 * Received re-key packet. The sender wants to regenerate the session
1990 SILC_LOG_DEBUG(("Re-key packet"));
1991 if (packet->flags & SILC_PACKET_FLAG_LIST)
1993 silc_server_rekey(server, sock, packet);
1996 case SILC_PACKET_REKEY_DONE:
1998 * The re-key is done.
2000 SILC_LOG_DEBUG(("Re-key done packet"));
2001 if (packet->flags & SILC_PACKET_FLAG_LIST)
2004 if (sock->protocol && sock->protocol->protocol &&
2005 sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_REKEY) {
2007 SilcServerRekeyInternalContext *proto_ctx =
2008 (SilcServerRekeyInternalContext *)sock->protocol->context;
2010 if (proto_ctx->packet)
2011 silc_packet_context_free(proto_ctx->packet);
2013 proto_ctx->packet = silc_packet_context_dup(packet);
2015 /* Let the protocol handle the packet */
2016 sock->protocol->execute(server->timeout_queue, 0,
2017 sock->protocol, sock->sock, 0, 0);
2019 SILC_LOG_ERROR(("Received Re-key done packet but no re-key "
2020 "protocol active, packet dropped."));
2025 SILC_LOG_ERROR(("Incorrect packet type %d, packet dropped", type));
2031 /* Creates connection to a remote router. */
2033 void silc_server_create_connection(SilcServer server,
2034 char *remote_host, uint32 port)
2036 SilcServerConnection sconn;
2038 /* Allocate connection object for hold connection specific stuff. */
2039 sconn = silc_calloc(1, sizeof(*sconn));
2040 sconn->server = server;
2041 sconn->remote_host = strdup(remote_host);
2042 sconn->remote_port = port;
2044 silc_task_register(server->timeout_queue, 0,
2045 silc_server_connect_router,
2046 (void *)sconn, 0, 1, SILC_TASK_TIMEOUT,
2047 SILC_TASK_PRI_NORMAL);
2050 SILC_TASK_CALLBACK(silc_server_close_connection_final)
2052 silc_socket_free((SilcSocketConnection)context);
2055 /* Closes connection to socket connection */
2057 void silc_server_close_connection(SilcServer server,
2058 SilcSocketConnection sock)
2060 SILC_LOG_INFO(("Closing connection %s:%d [%s] (%d)", sock->hostname,
2062 (sock->type == SILC_SOCKET_TYPE_UNKNOWN ? "Unknown" :
2063 sock->type == SILC_SOCKET_TYPE_CLIENT ? "Client" :
2064 sock->type == SILC_SOCKET_TYPE_SERVER ? "Server" :
2065 "Router"), sock->sock));
2067 /* We won't listen for this connection anymore */
2068 silc_schedule_unset_listen_fd(sock->sock);
2070 /* Unregister all tasks */
2071 silc_task_unregister_by_fd(server->io_queue, sock->sock);
2072 silc_task_unregister_by_fd(server->timeout_queue, sock->sock);
2074 /* Close the actual connection */
2075 silc_net_close_connection(sock->sock);
2076 server->sockets[sock->sock] = NULL;
2078 silc_task_register(server->timeout_queue, 0,
2079 silc_server_close_connection_final,
2080 (void *)sock, 0, 1, SILC_TASK_TIMEOUT,
2081 SILC_TASK_PRI_NORMAL);
2084 /* Sends disconnect message to remote connection and disconnects the
2087 void silc_server_disconnect_remote(SilcServer server,
2088 SilcSocketConnection sock,
2089 const char *fmt, ...)
2092 unsigned char buf[4096];
2097 memset(buf, 0, sizeof(buf));
2099 vsprintf(buf, fmt, ap);
2102 SILC_LOG_DEBUG(("Disconnecting remote host"));
2104 SILC_LOG_INFO(("Disconnecting %s:%d [%s]", sock->hostname,
2106 (sock->type == SILC_SOCKET_TYPE_UNKNOWN ? "Unknown" :
2107 sock->type == SILC_SOCKET_TYPE_CLIENT ? "Client" :
2108 sock->type == SILC_SOCKET_TYPE_SERVER ? "Server" :
2111 /* Notify remote end that the conversation is over. The notify message
2112 is tried to be sent immediately. */
2113 silc_server_packet_send(server, sock, SILC_PACKET_DISCONNECT, 0,
2114 buf, strlen(buf), TRUE);
2116 /* Mark the connection to be disconnected */
2117 SILC_SET_DISCONNECTED(sock);
2118 silc_server_close_connection(server, sock);
2123 SilcClientEntry client;
2124 } *FreeClientInternal;
2126 SILC_TASK_CALLBACK(silc_server_free_client_data_timeout)
2128 FreeClientInternal i = (FreeClientInternal)context;
2130 silc_idlist_del_data(i->client);
2131 silc_idcache_purge_by_context(i->server->local_list->clients, i->client);
2135 /* Frees client data and notifies about client's signoff. */
2137 void silc_server_free_client_data(SilcServer server,
2138 SilcSocketConnection sock,
2139 SilcClientEntry client,
2143 FreeClientInternal i = silc_calloc(1, sizeof(*i));
2145 /* If there is pending outgoing data for the client then purge it
2146 to the network before removing the client entry. */
2147 if (sock && SILC_IS_OUTBUF_PENDING(sock) &&
2148 (SILC_IS_DISCONNECTED(sock) == FALSE)) {
2149 server->stat.packets_sent++;
2151 if (sock->outbuf->data - sock->outbuf->head)
2152 silc_buffer_push(sock->outbuf, sock->outbuf->data - sock->outbuf->head);
2154 silc_packet_send(sock, TRUE);
2156 SILC_SET_CONNECTION_FOR_INPUT(sock->sock);
2157 SILC_UNSET_OUTBUF_PENDING(sock);
2158 silc_buffer_clear(sock->outbuf);
2161 /* Send SIGNOFF notify to routers. */
2162 if (notify && !server->standalone && server->router)
2163 silc_server_send_notify_signoff(server, server->router->connection,
2164 server->server_type == SILC_SERVER ?
2165 FALSE : TRUE, client->id,
2166 SILC_ID_CLIENT_LEN, signoff);
2168 /* Remove client from all channels */
2170 silc_server_remove_from_channels(server, NULL, client,
2171 TRUE, signoff, TRUE);
2173 silc_server_remove_from_channels(server, NULL, client,
2174 FALSE, NULL, FALSE);
2176 /* We will not delete the client entry right away. We will take it
2177 into history (for WHOWAS command) for 5 minutes */
2180 silc_task_register(server->timeout_queue, 0,
2181 silc_server_free_client_data_timeout,
2183 SILC_TASK_TIMEOUT, SILC_TASK_PRI_LOW);
2184 client->data.registered = FALSE;
2186 /* Free the client entry and everything in it */
2187 server->stat.my_clients--;
2188 server->stat.clients--;
2189 if (server->server_type == SILC_ROUTER)
2190 server->stat.cell_clients--;
2193 /* Frees user_data pointer from socket connection object. This also sends
2194 appropriate notify packets to the network to inform about leaving
2197 void silc_server_free_sock_user_data(SilcServer server,
2198 SilcSocketConnection sock)
2200 SILC_LOG_DEBUG(("Start"));
2202 switch(sock->type) {
2203 case SILC_SOCKET_TYPE_CLIENT:
2205 SilcClientEntry user_data = (SilcClientEntry)sock->user_data;
2206 silc_server_free_client_data(server, sock, user_data, TRUE, NULL);
2209 case SILC_SOCKET_TYPE_SERVER:
2210 case SILC_SOCKET_TYPE_ROUTER:
2212 SilcServerEntry user_data = (SilcServerEntry)sock->user_data;
2214 /* Free all client entries that this server owns as they will
2215 become invalid now as well. */
2217 silc_server_remove_clients_by_server(server, user_data, TRUE);
2219 /* If this was our primary router connection then we're lost to
2220 the outside world. */
2221 if (server->router == user_data) {
2222 server->id_entry->router = NULL;
2223 server->router = NULL;
2224 server->standalone = TRUE;
2227 /* Free the server entry */
2228 silc_idlist_del_data(user_data);
2229 silc_idlist_del_server(server->local_list, user_data);
2230 server->stat.my_servers--;
2231 server->stat.servers--;
2232 if (server->server_type == SILC_ROUTER)
2233 server->stat.cell_servers--;
2238 SilcUnknownEntry user_data = (SilcUnknownEntry)sock->user_data;
2240 silc_idlist_del_data(user_data);
2241 silc_free(user_data);
2246 sock->user_data = NULL;
2249 /* This function is used to remove all client entries by the server `entry'.
2250 This is called when the connection is lost to the server. In this case
2251 we must invalidate all the client entries owned by the server `entry'.
2252 If the `server_signoff' is TRUE then the SERVER_SIGNOFF notify is
2253 distributed to our local clients. */
2255 int silc_server_remove_clients_by_server(SilcServer server,
2256 SilcServerEntry entry,
2259 SilcIDCacheList list = NULL;
2260 SilcIDCacheEntry id_cache = NULL;
2261 SilcClientEntry client = NULL;
2263 SilcClientEntry *clients = NULL;
2264 uint32 clients_c = 0;
2265 unsigned char **argv = NULL;
2266 uint32 *argv_lens = NULL, *argv_types = NULL, argc = 0;
2269 SILC_LOG_DEBUG(("Start"));
2271 if (server_signoff) {
2272 idp = silc_id_payload_encode(entry->id, SILC_ID_SERVER);
2273 argv = silc_realloc(argv, sizeof(*argv) * (argc + 1));
2274 argv_lens = silc_realloc(argv_lens, sizeof(*argv_lens) * (argc + 1));
2275 argv_types = silc_realloc(argv_types, sizeof(*argv_types) * (argc + 1));
2276 argv[argc] = idp->data;
2277 argv_lens[argc] = idp->len;
2278 argv_types[argc] = argc + 1;
2280 silc_buffer_free(idp);
2283 if (silc_idcache_find_by_id(server->local_list->clients,
2284 SILC_ID_CACHE_ANY, SILC_ID_CLIENT, &list)) {
2286 if (silc_idcache_list_first(list, &id_cache)) {
2288 client = (SilcClientEntry)id_cache->context;
2289 if (client->data.registered == FALSE) {
2290 if (!silc_idcache_list_next(list, &id_cache))
2296 if (client->router != entry) {
2297 if (server_signoff && client->connection) {
2298 clients = silc_realloc(clients,
2299 sizeof(*clients) * (clients_c + 1));
2300 clients[clients_c] = client;
2304 if (!silc_idcache_list_next(list, &id_cache))
2310 if (server_signoff) {
2311 idp = silc_id_payload_encode(client->id, SILC_ID_CLIENT);
2312 argv = silc_realloc(argv, sizeof(*argv) * (argc + 1));
2313 argv_lens = silc_realloc(argv_lens, sizeof(*argv_lens) *
2315 argv_types = silc_realloc(argv_types, sizeof(*argv_types) *
2317 argv[argc] = silc_calloc(idp->len, sizeof(*argv[0]));
2318 memcpy(argv[argc], idp->data, idp->len);
2319 argv_lens[argc] = idp->len;
2320 argv_types[argc] = argc + 1;
2322 silc_buffer_free(idp);
2325 /* Remove the client entry */
2326 silc_server_remove_from_channels(server, NULL, client, FALSE,
2328 silc_idlist_del_client(server->local_list, client);
2330 if (!silc_idcache_list_next(list, &id_cache))
2334 silc_idcache_list_free(list);
2337 if (silc_idcache_find_by_id(server->global_list->clients,
2338 SILC_ID_CACHE_ANY, SILC_ID_CLIENT, &list)) {
2340 if (silc_idcache_list_first(list, &id_cache)) {
2342 client = (SilcClientEntry)id_cache->context;
2343 if (client->data.registered == FALSE) {
2344 if (!silc_idcache_list_next(list, &id_cache))
2350 if (client->router != entry) {
2351 if (server_signoff && client->connection) {
2352 clients = silc_realloc(clients,
2353 sizeof(*clients) * (clients_c + 1));
2354 clients[clients_c] = client;
2358 if (!silc_idcache_list_next(list, &id_cache))
2364 if (server_signoff) {
2365 idp = silc_id_payload_encode(client->id, SILC_ID_CLIENT);
2366 argv = silc_realloc(argv, sizeof(*argv) * (argc + 1));
2367 argv_lens = silc_realloc(argv_lens, sizeof(*argv_lens) *
2369 argv_types = silc_realloc(argv_types, sizeof(*argv_types) *
2371 argv[argc] = silc_calloc(idp->len, sizeof(*argv[0]));
2372 memcpy(argv[argc], idp->data, idp->len);
2373 argv_lens[argc] = idp->len;
2374 argv_types[argc] = argc + 1;
2376 silc_buffer_free(idp);
2379 /* Remove the client entry */
2380 silc_server_remove_from_channels(server, NULL, client, FALSE,
2382 silc_idlist_del_client(server->global_list, client);
2384 if (!silc_idcache_list_next(list, &id_cache))
2388 silc_idcache_list_free(list);
2391 /* Send the SERVER_SIGNOFF notify */
2392 if (server_signoff) {
2395 /* Send SERVER_SIGNOFF notify to our primary router */
2396 if (!server->standalone && server->router) {
2397 args = silc_argument_payload_encode(1, argv, argv_lens,
2399 silc_server_send_notify_args(server,
2400 server->router->connection,
2401 server->server_type == SILC_SERVER ?
2403 SILC_NOTIFY_TYPE_SERVER_SIGNOFF,
2405 silc_buffer_free(args);
2408 args = silc_argument_payload_encode(argc, argv, argv_lens,
2410 /* Send to local clients */
2411 for (i = 0; i < clients_c; i++) {
2412 silc_server_send_notify_args(server, clients[i]->connection,
2413 FALSE, SILC_NOTIFY_TYPE_SERVER_SIGNOFF,
2418 silc_buffer_free(args);
2420 silc_free(argv_lens);
2421 silc_free(argv_types);
2427 /* Checks whether given channel has global users. If it does this returns
2428 TRUE and FALSE if there is only locally connected clients on the channel. */
2430 int silc_server_channel_has_global(SilcChannelEntry channel)
2432 SilcChannelClientEntry chl;
2434 silc_list_start(channel->user_list);
2435 while ((chl = silc_list_get(channel->user_list)) != SILC_LIST_END) {
2436 if (chl->client->router)
2443 /* Checks whether given channel has locally connected users. If it does this
2444 returns TRUE and FALSE if there is not one locally connected client. */
2446 int silc_server_channel_has_local(SilcChannelEntry channel)
2448 SilcChannelClientEntry chl;
2450 silc_list_start(channel->user_list);
2451 while ((chl = silc_list_get(channel->user_list)) != SILC_LIST_END) {
2452 if (!chl->client->router)
2459 /* Removes client from all channels it has joined. This is used when client
2460 connection is disconnected. If the client on a channel is last, the
2461 channel is removed as well. This sends the SIGNOFF notify types. */
2463 void silc_server_remove_from_channels(SilcServer server,
2464 SilcSocketConnection sock,
2465 SilcClientEntry client,
2467 char *signoff_message,
2470 SilcChannelEntry channel;
2471 SilcChannelClientEntry chl;
2474 SILC_LOG_DEBUG(("Start"));
2476 if (!client || !client->id)
2479 clidp = silc_id_payload_encode(client->id, SILC_ID_CLIENT);
2481 /* Remove the client from all channels. The client is removed from
2482 the channels' user list. */
2483 silc_list_start(client->channels);
2484 while ((chl = silc_list_get(client->channels)) != SILC_LIST_END) {
2485 channel = chl->channel;
2487 /* Remove channel from client's channel list */
2488 silc_list_del(client->channels, chl);
2490 /* Remove channel if there is no users anymore */
2491 if (server->server_type == SILC_ROUTER &&
2492 silc_list_count(channel->user_list) < 2) {
2493 server->stat.my_channels--;
2496 silc_task_unregister_by_context(server->timeout_queue, channel->rekey);
2498 if (channel->founder_key) {
2499 /* The founder auth data exists, do not remove the channel entry */
2500 SilcChannelClientEntry chl2;
2504 silc_list_start(channel->user_list);
2505 while ((chl2 = silc_list_get(channel->user_list)) != SILC_LIST_END) {
2506 silc_list_del(chl2->client->channels, chl2);
2507 silc_list_del(channel->user_list, chl2);
2513 if (!silc_idlist_del_channel(server->local_list, channel))
2514 silc_idlist_del_channel(server->global_list, channel);
2518 /* Remove client from channel's client list */
2519 silc_list_del(channel->user_list, chl);
2521 server->stat.my_chanclients--;
2523 /* If there is no global users on the channel anymore mark the channel
2524 as local channel. */
2525 if (server->server_type == SILC_SERVER &&
2526 !silc_server_channel_has_global(channel))
2527 channel->global_users = FALSE;
2529 /* If there is not at least one local user on the channel then we don't
2530 need the channel entry anymore, we can remove it safely. */
2531 if (server->server_type == SILC_SERVER &&
2532 !silc_server_channel_has_local(channel)) {
2533 /* Notify about leaving client if this channel has global users. */
2534 if (notify && channel->global_users)
2535 silc_server_send_notify_to_channel(server, NULL, channel, FALSE,
2536 SILC_NOTIFY_TYPE_SIGNOFF,
2537 signoff_message ? 2 : 1,
2538 clidp->data, clidp->len,
2539 signoff_message, signoff_message ?
2540 strlen(signoff_message) : 0);
2543 silc_task_unregister_by_context(server->timeout_queue, channel->rekey);
2545 if (channel->founder_key) {
2546 /* The founder auth data exists, do not remove the channel entry */
2547 SilcChannelClientEntry chl2;
2551 silc_list_start(channel->user_list);
2552 while ((chl2 = silc_list_get(channel->user_list)) != SILC_LIST_END) {
2553 silc_list_del(chl2->client->channels, chl2);
2554 silc_list_del(channel->user_list, chl2);
2560 if (!silc_idlist_del_channel(server->local_list, channel))
2561 silc_idlist_del_channel(server->global_list, channel);
2562 server->stat.my_channels--;
2566 /* Send notify to channel about client leaving SILC and thus
2567 the entire channel. */
2569 silc_server_send_notify_to_channel(server, NULL, channel, FALSE,
2570 SILC_NOTIFY_TYPE_SIGNOFF,
2571 signoff_message ? 2 : 1,
2572 clidp->data, clidp->len,
2573 signoff_message, signoff_message ?
2574 strlen(signoff_message) : 0);
2576 if (keygen && !(channel->mode & SILC_CHANNEL_MODE_PRIVKEY)) {
2577 /* Re-generate channel key */
2578 silc_server_create_channel_key(server, channel, 0);
2580 /* Send the channel key to the channel. The key of course is not sent
2581 to the client who was removed from the channel. */
2582 silc_server_send_channel_key(server, client->connection, channel,
2583 server->server_type == SILC_ROUTER ?
2584 FALSE : !server->standalone);
2588 silc_buffer_free(clidp);
2591 /* Removes client from one channel. This is used for example when client
2592 calls LEAVE command to remove itself from the channel. Returns TRUE
2593 if channel still exists and FALSE if the channel is removed when
2594 last client leaves the channel. If `notify' is FALSE notify messages
2597 int silc_server_remove_from_one_channel(SilcServer server,
2598 SilcSocketConnection sock,
2599 SilcChannelEntry channel,
2600 SilcClientEntry client,
2603 SilcChannelEntry ch;
2604 SilcChannelClientEntry chl;
2607 SILC_LOG_DEBUG(("Start"));
2609 clidp = silc_id_payload_encode(client->id, SILC_ID_CLIENT);
2611 /* Remove the client from the channel. The client is removed from
2612 the channel's user list. */
2613 silc_list_start(client->channels);
2614 while ((chl = silc_list_get(client->channels)) != SILC_LIST_END) {
2615 if (chl->channel != channel)
2620 /* Remove channel from client's channel list */
2621 silc_list_del(client->channels, chl);
2623 /* Remove channel if there is no users anymore */
2624 if (server->server_type == SILC_ROUTER &&
2625 silc_list_count(channel->user_list) < 2) {
2627 silc_task_unregister_by_context(server->timeout_queue, channel->rekey);
2628 if (!silc_idlist_del_channel(server->local_list, channel))
2629 silc_idlist_del_channel(server->global_list, channel);
2630 silc_buffer_free(clidp);
2631 server->stat.my_channels--;
2635 /* Remove client from channel's client list */
2636 silc_list_del(channel->user_list, chl);
2638 server->stat.my_chanclients--;
2640 /* If there is no global users on the channel anymore mark the channel
2641 as local channel. */
2642 if (server->server_type == SILC_SERVER &&
2643 !silc_server_channel_has_global(channel))
2644 channel->global_users = FALSE;
2646 /* If there is not at least one local user on the channel then we don't
2647 need the channel entry anymore, we can remove it safely. */
2648 if (server->server_type == SILC_SERVER &&
2649 !silc_server_channel_has_local(channel)) {
2650 /* Notify about leaving client if this channel has global users. */
2651 if (notify && channel->global_users)
2652 silc_server_send_notify_to_channel(server, NULL, channel, FALSE,
2653 SILC_NOTIFY_TYPE_LEAVE, 1,
2654 clidp->data, clidp->len);
2656 silc_buffer_free(clidp);
2659 silc_task_unregister_by_context(server->timeout_queue, channel->rekey);
2661 if (channel->founder_key) {
2662 /* The founder auth data exists, do not remove the channel entry */
2663 SilcChannelClientEntry chl2;
2667 silc_list_start(channel->user_list);
2668 while ((chl2 = silc_list_get(channel->user_list)) != SILC_LIST_END) {
2669 silc_list_del(chl2->client->channels, chl2);
2670 silc_list_del(channel->user_list, chl2);
2676 if (!silc_idlist_del_channel(server->local_list, channel))
2677 silc_idlist_del_channel(server->global_list, channel);
2678 server->stat.my_channels--;
2682 /* Send notify to channel about client leaving the channel */
2684 silc_server_send_notify_to_channel(server, NULL, channel, FALSE,
2685 SILC_NOTIFY_TYPE_LEAVE, 1,
2686 clidp->data, clidp->len);
2690 silc_buffer_free(clidp);
2694 /* Returns TRUE if the given client is on the channel. FALSE if not.
2695 This works because we assure that the user list on the channel is
2696 always in up to date thus we can only check the channel list from
2697 `client' which is faster than checking the user list from `channel'. */
2699 int silc_server_client_on_channel(SilcClientEntry client,
2700 SilcChannelEntry channel)
2702 SilcChannelClientEntry chl;
2704 if (!client || !channel)
2707 silc_list_start(client->channels);
2708 while ((chl = silc_list_get(client->channels)) != SILC_LIST_END)
2709 if (chl->channel == channel)
2715 /* Timeout callback. This is called if connection is idle or for some
2716 other reason is not responding within some period of time. This
2717 disconnects the remote end. */
2719 SILC_TASK_CALLBACK(silc_server_timeout_remote)
2721 SilcServer server = (SilcServer)context;
2722 SilcSocketConnection sock = server->sockets[fd];
2727 if (sock->user_data)
2728 silc_server_free_sock_user_data(server, sock);
2730 silc_server_disconnect_remote(server, sock,
2731 "Server closed connection: "
2732 "Connection timeout");
2735 /* Creates new channel. Sends NEW_CHANNEL packet to primary route. This
2736 function may be used only by router. In real SILC network all channels
2737 are created by routers thus this function is never used by normal
2740 SilcChannelEntry silc_server_create_new_channel(SilcServer server,
2741 SilcServerID *router_id,
2747 SilcChannelID *channel_id;
2748 SilcChannelEntry entry;
2752 SILC_LOG_DEBUG(("Creating new channel"));
2755 cipher = "aes-256-cbc";
2757 hmac = "hmac-sha1-96";
2759 /* Allocate cipher */
2760 if (!silc_cipher_alloc(cipher, &key))
2764 if (!silc_hmac_alloc(hmac, NULL, &newhmac)) {
2765 silc_cipher_free(key);
2769 channel_name = strdup(channel_name);
2771 /* Create the channel */
2772 silc_id_create_channel_id(router_id, server->rng, &channel_id);
2773 entry = silc_idlist_add_channel(server->local_list, channel_name,
2774 SILC_CHANNEL_MODE_NONE, channel_id,
2775 NULL, key, newhmac);
2777 silc_free(channel_name);
2781 entry->cipher = strdup(cipher);
2782 entry->hmac_name = strdup(hmac);
2784 /* Now create the actual key material */
2785 silc_server_create_channel_key(server, entry,
2786 silc_cipher_get_key_len(key) / 8);
2788 /* Notify other routers about the new channel. We send the packet
2789 to our primary route. */
2790 if (broadcast && server->standalone == FALSE)
2791 silc_server_send_new_channel(server, server->router->connection, TRUE,
2792 channel_name, entry->id, SILC_ID_CHANNEL_LEN,
2795 server->stat.my_channels++;
2800 /* Same as above but creates the channel with Channel ID `channel_id. */
2803 silc_server_create_new_channel_with_id(SilcServer server,
2807 SilcChannelID *channel_id,
2810 SilcChannelEntry entry;
2814 SILC_LOG_DEBUG(("Creating new channel"));
2817 cipher = "aes-256-cbc";
2819 hmac = "hmac-sha1-96";
2821 /* Allocate cipher */
2822 if (!silc_cipher_alloc(cipher, &key))
2826 if (!silc_hmac_alloc(hmac, NULL, &newhmac)) {
2827 silc_cipher_free(key);
2831 channel_name = strdup(channel_name);
2833 /* Create the channel */
2834 entry = silc_idlist_add_channel(server->local_list, channel_name,
2835 SILC_CHANNEL_MODE_NONE, channel_id,
2836 NULL, key, newhmac);
2838 silc_free(channel_name);
2842 /* Now create the actual key material */
2843 silc_server_create_channel_key(server, entry,
2844 silc_cipher_get_key_len(key) / 8);
2846 /* Notify other routers about the new channel. We send the packet
2847 to our primary route. */
2848 if (broadcast && server->standalone == FALSE)
2849 silc_server_send_new_channel(server, server->router->connection, TRUE,
2850 channel_name, entry->id, SILC_ID_CHANNEL_LEN,
2853 server->stat.my_channels++;
2858 /* Channel's key re-key timeout callback. */
2860 SILC_TASK_CALLBACK(silc_server_channel_key_rekey)
2862 SilcServerChannelRekey rekey = (SilcServerChannelRekey)context;
2863 SilcServer server = (SilcServer)rekey->context;
2865 silc_server_create_channel_key(server, rekey->channel, rekey->key_len);
2866 silc_server_send_channel_key(server, NULL, rekey->channel, FALSE);
2868 silc_task_register(server->timeout_queue, 0,
2869 silc_server_channel_key_rekey,
2870 (void *)rekey, 3600, 0,
2872 SILC_TASK_PRI_NORMAL);
2875 /* Generates new channel key. This is used to create the initial channel key
2876 but also to re-generate new key for channel. If `key_len' is provided
2877 it is the bytes of the key length. */
2879 void silc_server_create_channel_key(SilcServer server,
2880 SilcChannelEntry channel,
2884 unsigned char channel_key[32], hash[32];
2887 SILC_LOG_DEBUG(("Generating channel key"));
2889 if (channel->mode & SILC_CHANNEL_MODE_PRIVKEY) {
2890 SILC_LOG_DEBUG(("Channel has private keys, will not generate new key"));
2894 if (!channel->channel_key)
2895 if (!silc_cipher_alloc("aes-256-cbc", &channel->channel_key))
2900 else if (channel->key_len)
2901 len = channel->key_len / 8;
2903 len = silc_cipher_get_key_len(channel->channel_key) / 8;
2905 /* Create channel key */
2906 for (i = 0; i < len; i++) channel_key[i] = silc_rng_get_byte(server->rng);
2909 silc_cipher_set_key(channel->channel_key, channel_key, len * 8);
2911 /* Remove old key if exists */
2913 memset(channel->key, 0, channel->key_len / 8);
2914 silc_free(channel->key);
2918 channel->key_len = len * 8;
2919 channel->key = silc_calloc(len, sizeof(*channel->key));
2920 memcpy(channel->key, channel_key, len);
2921 memset(channel_key, 0, sizeof(channel_key));
2923 /* Generate HMAC key from the channel key data and set it */
2925 silc_hmac_alloc("hmac-sha1-96", NULL, &channel->hmac);
2926 silc_hash_make(channel->hmac->hash, channel->key, len, hash);
2927 silc_hmac_set_key(channel->hmac, hash, silc_hash_len(channel->hmac->hash));
2928 memset(hash, 0, sizeof(hash));
2930 if (server->server_type == SILC_ROUTER) {
2931 if (!channel->rekey)
2932 channel->rekey = silc_calloc(1, sizeof(*channel->rekey));
2933 channel->rekey->context = (void *)server;
2934 channel->rekey->channel = channel;
2935 channel->rekey->key_len = key_len;
2937 silc_task_unregister_by_callback(server->timeout_queue,
2938 silc_server_channel_key_rekey);
2939 silc_task_register(server->timeout_queue, 0,
2940 silc_server_channel_key_rekey,
2941 (void *)channel->rekey, 3600, 0,
2943 SILC_TASK_PRI_NORMAL);
2947 /* Saves the channel key found in the encoded `key_payload' buffer. This
2948 function is used when we receive Channel Key Payload and also when we're
2949 processing JOIN command reply. Returns entry to the channel. */
2951 SilcChannelEntry silc_server_save_channel_key(SilcServer server,
2952 SilcBuffer key_payload,
2953 SilcChannelEntry channel)
2955 SilcChannelKeyPayload payload = NULL;
2956 SilcChannelID *id = NULL;
2957 unsigned char *tmp, hash[32];
2961 SILC_LOG_DEBUG(("Start"));
2963 /* Decode channel key payload */
2964 payload = silc_channel_key_payload_parse(key_payload);
2966 SILC_LOG_ERROR(("Bad channel key payload, dropped"));
2971 /* Get the channel entry */
2974 /* Get channel ID */
2975 tmp = silc_channel_key_get_id(payload, &tmp_len);
2976 id = silc_id_str2id(tmp, tmp_len, SILC_ID_CHANNEL);
2982 channel = silc_idlist_find_channel_by_id(server->local_list, id, NULL);
2984 channel = silc_idlist_find_channel_by_id(server->global_list, id, NULL);
2986 SILC_LOG_ERROR(("Received key for non-existent channel"));
2992 tmp = silc_channel_key_get_key(payload, &tmp_len);
2998 cipher = silc_channel_key_get_cipher(payload, NULL);
3004 /* Remove old key if exists */
3006 memset(channel->key, 0, channel->key_len / 8);
3007 silc_free(channel->key);
3008 silc_cipher_free(channel->channel_key);
3011 /* Create new cipher */
3012 if (!silc_cipher_alloc(cipher, &channel->channel_key)) {
3017 if (channel->cipher)
3018 silc_free(channel->cipher);
3019 channel->cipher = strdup(cipher);
3022 channel->key_len = tmp_len * 8;
3023 channel->key = silc_calloc(tmp_len, sizeof(unsigned char));
3024 memcpy(channel->key, tmp, tmp_len);
3025 silc_cipher_set_key(channel->channel_key, tmp, channel->key_len);
3027 /* Generate HMAC key from the channel key data and set it */
3029 silc_hmac_alloc("hmac-sha1-96", NULL, &channel->hmac);
3030 silc_hash_make(channel->hmac->hash, tmp, tmp_len, hash);
3031 silc_hmac_set_key(channel->hmac, hash, silc_hash_len(channel->hmac->hash));
3033 memset(hash, 0, sizeof(hash));
3034 memset(tmp, 0, tmp_len);
3036 if (server->server_type == SILC_ROUTER) {
3037 if (!channel->rekey)
3038 channel->rekey = silc_calloc(1, sizeof(*channel->rekey));
3039 channel->rekey->context = (void *)server;
3040 channel->rekey->channel = channel;
3042 silc_task_unregister_by_callback(server->timeout_queue,
3043 silc_server_channel_key_rekey);
3044 silc_task_register(server->timeout_queue, 0,
3045 silc_server_channel_key_rekey,
3046 (void *)channel->rekey, 3600, 0,
3048 SILC_TASK_PRI_NORMAL);
3055 silc_channel_key_payload_free(payload);
3060 /* Heartbeat callback. This function is set as argument for the
3061 silc_socket_set_heartbeat function. The library will call this function
3062 at the set time interval. */
3064 void silc_server_perform_heartbeat(SilcSocketConnection sock,
3067 SilcServerHBContext hb = (SilcServerHBContext)hb_context;
3069 SILC_LOG_DEBUG(("Sending heartbeat to %s (%s)", sock->hostname,
3072 /* Send the heartbeat */
3073 silc_server_send_heartbeat(hb->server, sock);
3076 /* Returns assembled of all servers in the given ID list. The packet's
3077 form is dictated by the New ID payload. */
3079 static void silc_server_announce_get_servers(SilcServer server,
3081 SilcBuffer *servers)
3083 SilcIDCacheList list;
3084 SilcIDCacheEntry id_cache;
3085 SilcServerEntry entry;
3088 /* Go through all clients in the list */
3089 if (silc_idcache_find_by_id(id_list->clients, SILC_ID_CACHE_ANY,
3090 SILC_ID_SERVER, &list)) {
3091 if (silc_idcache_list_first(list, &id_cache)) {
3093 entry = (SilcServerEntry)id_cache->context;
3095 idp = silc_id_payload_encode(entry->id, SILC_ID_SERVER);
3097 *servers = silc_buffer_realloc(*servers,
3099 (*servers)->truelen + idp->len :
3101 silc_buffer_pull_tail(*servers, ((*servers)->end - (*servers)->data));
3102 silc_buffer_put(*servers, idp->data, idp->len);
3103 silc_buffer_pull(*servers, idp->len);
3104 silc_buffer_free(idp);
3106 if (!silc_idcache_list_next(list, &id_cache))
3111 silc_idcache_list_free(list);
3115 /* This function is used by router to announce existing servers to our
3116 primary router when we've connected to it. */
3118 void silc_server_announce_servers(SilcServer server)
3120 SilcBuffer servers = NULL;
3122 SILC_LOG_DEBUG(("Announcing servers"));
3124 /* Get servers in local list */
3125 silc_server_announce_get_servers(server, server->local_list, &servers);
3127 /* Get servers in global list */
3128 silc_server_announce_get_servers(server, server->global_list, &servers);
3131 silc_buffer_push(servers, servers->data - servers->head);
3132 SILC_LOG_HEXDUMP(("servers"), servers->data, servers->len);
3134 /* Send the packet */
3135 silc_server_packet_send(server, server->router->connection,
3136 SILC_PACKET_NEW_ID, SILC_PACKET_FLAG_LIST,
3137 servers->data, servers->len, TRUE);
3139 silc_buffer_free(servers);
3143 /* Returns assembled packet of all clients in the given ID list. The
3144 packet's form is dictated by the New ID Payload. */
3146 static void silc_server_announce_get_clients(SilcServer server,
3148 SilcBuffer *clients)
3150 SilcIDCacheList list;
3151 SilcIDCacheEntry id_cache;
3152 SilcClientEntry client;
3155 /* Go through all clients in the list */
3156 if (silc_idcache_find_by_id(id_list->clients, SILC_ID_CACHE_ANY,
3157 SILC_ID_CLIENT, &list)) {
3158 if (silc_idcache_list_first(list, &id_cache)) {
3160 client = (SilcClientEntry)id_cache->context;
3162 idp = silc_id_payload_encode(client->id, SILC_ID_CLIENT);
3164 *clients = silc_buffer_realloc(*clients,
3166 (*clients)->truelen + idp->len :
3168 silc_buffer_pull_tail(*clients, ((*clients)->end - (*clients)->data));
3169 silc_buffer_put(*clients, idp->data, idp->len);
3170 silc_buffer_pull(*clients, idp->len);
3171 silc_buffer_free(idp);
3173 if (!silc_idcache_list_next(list, &id_cache))
3178 silc_idcache_list_free(list);
3182 /* This function is used to announce our existing clients to our router
3183 when we've connected to it. */
3185 void silc_server_announce_clients(SilcServer server)
3187 SilcBuffer clients = NULL;
3189 SILC_LOG_DEBUG(("Announcing clients"));
3191 /* Get clients in local list */
3192 silc_server_announce_get_clients(server, server->local_list,
3195 /* As router we announce our global list as well */
3196 if (server->server_type == SILC_ROUTER)
3197 silc_server_announce_get_clients(server, server->global_list,
3201 silc_buffer_push(clients, clients->data - clients->head);
3202 SILC_LOG_HEXDUMP(("clients"), clients->data, clients->len);
3204 /* Send the packet */
3205 silc_server_packet_send(server, server->router->connection,
3206 SILC_PACKET_NEW_ID, SILC_PACKET_FLAG_LIST,
3207 clients->data, clients->len, TRUE);
3209 silc_buffer_free(clients);
3214 silc_server_announce_encode_join(uint32 argc, ...)
3219 return silc_notify_payload_encode(SILC_NOTIFY_TYPE_JOIN, argc, ap);
3222 /* Returns assembled packets for channel users of the `channel'. */
3224 void silc_server_announce_get_channel_users(SilcServer server,
3225 SilcChannelEntry channel,
3226 SilcBuffer *channel_users)
3228 SilcChannelClientEntry chl;
3229 SilcBuffer chidp, clidp;
3233 SILC_LOG_DEBUG(("Start"));
3235 /* Now find all users on the channel */
3236 chidp = silc_id_payload_encode(channel->id, SILC_ID_CHANNEL);
3237 silc_list_start(channel->user_list);
3238 while ((chl = silc_list_get(channel->user_list)) != SILC_LIST_END) {
3239 clidp = silc_id_payload_encode(chl->client->id, SILC_ID_CLIENT);
3240 tmp = silc_server_announce_encode_join(2, clidp->data, clidp->len,
3241 chidp->data, chidp->len);
3244 silc_buffer_realloc(*channel_users,
3246 (*channel_users)->truelen + len : len));
3247 silc_buffer_pull_tail(*channel_users,
3248 ((*channel_users)->end -
3249 (*channel_users)->data));
3251 silc_buffer_put(*channel_users, tmp->data, tmp->len);
3252 silc_buffer_pull(*channel_users, len);
3253 silc_buffer_free(clidp);
3254 silc_buffer_free(tmp);
3256 silc_buffer_free(chidp);
3259 /* Returns assembled packets for all channels and users on those channels
3260 from the given ID List. The packets are in the form dictated by the
3261 New Channel and New Channel User payloads. */
3263 void silc_server_announce_get_channels(SilcServer server,
3265 SilcBuffer *channels,
3266 SilcBuffer *channel_users)
3268 SilcIDCacheList list;
3269 SilcIDCacheEntry id_cache;
3270 SilcChannelEntry channel;
3275 SILC_LOG_DEBUG(("Start"));
3277 /* Go through all channels in the list */
3278 if (silc_idcache_find_by_id(id_list->channels, SILC_ID_CACHE_ANY,
3279 SILC_ID_CHANNEL, &list)) {
3280 if (silc_idcache_list_first(list, &id_cache)) {
3282 channel = (SilcChannelEntry)id_cache->context;
3284 cid = silc_id_id2str(channel->id, SILC_ID_CHANNEL);
3285 name_len = strlen(channel->channel_name);
3287 len = 4 + name_len + SILC_ID_CHANNEL_LEN + 4;
3289 silc_buffer_realloc(*channels,
3290 (*channels ? (*channels)->truelen + len : len));
3291 silc_buffer_pull_tail(*channels,
3292 ((*channels)->end - (*channels)->data));
3293 silc_buffer_format(*channels,
3294 SILC_STR_UI_SHORT(name_len),
3295 SILC_STR_UI_XNSTRING(channel->channel_name,
3297 SILC_STR_UI_SHORT(SILC_ID_CHANNEL_LEN),
3298 SILC_STR_UI_XNSTRING(cid, SILC_ID_CHANNEL_LEN),
3299 SILC_STR_UI_INT(channel->mode),
3301 silc_buffer_pull(*channels, len);
3303 silc_server_announce_get_channel_users(server, channel,
3308 if (!silc_idcache_list_next(list, &id_cache))
3313 silc_idcache_list_free(list);
3317 /* This function is used to announce our existing channels to our router
3318 when we've connected to it. This also announces the users on the
3319 channels to the router. */
3321 void silc_server_announce_channels(SilcServer server)
3323 SilcBuffer channels = NULL, channel_users = NULL;
3325 SILC_LOG_DEBUG(("Announcing channels and channel users"));
3327 /* Get channels and channel users in local list */
3328 silc_server_announce_get_channels(server, server->local_list,
3329 &channels, &channel_users);
3331 /* Get channels and channel users in global list */
3332 silc_server_announce_get_channels(server, server->global_list,
3333 &channels, &channel_users);
3336 silc_buffer_push(channels, channels->data - channels->head);
3337 SILC_LOG_HEXDUMP(("channels"), channels->data, channels->len);
3339 /* Send the packet */
3340 silc_server_packet_send(server, server->router->connection,
3341 SILC_PACKET_NEW_CHANNEL, SILC_PACKET_FLAG_LIST,
3342 channels->data, channels->len,
3345 silc_buffer_free(channels);
3348 if (channel_users) {
3349 silc_buffer_push(channel_users, channel_users->data - channel_users->head);
3350 SILC_LOG_HEXDUMP(("channel users"), channel_users->data,
3351 channel_users->len);
3353 /* Send the packet */
3354 silc_server_packet_send(server, server->router->connection,
3355 SILC_PACKET_NOTIFY, SILC_PACKET_FLAG_LIST,
3356 channel_users->data, channel_users->len,
3359 silc_buffer_free(channel_users);
3363 /* Failure timeout callback. If this is called then we will immediately
3364 process the received failure. We always process the failure with timeout
3365 since we do not want to blindly trust to received failure packets.
3366 This won't be called (the timeout is cancelled) if the failure was
3367 bogus (it is bogus if remote does not close the connection after sending
3370 SILC_TASK_CALLBACK(silc_server_failure_callback)
3372 SilcServerFailureContext f = (SilcServerFailureContext)context;
3374 if (f->sock->protocol) {
3375 f->sock->protocol->state = SILC_PROTOCOL_STATE_FAILURE;
3376 f->sock->protocol->execute(f->server->timeout_queue, 0,
3377 f->sock->protocol, f->sock->sock, 0, 0);
3383 /* Assembles user list and users mode list from the `channel'. */
3385 void silc_server_get_users_on_channel(SilcServer server,
3386 SilcChannelEntry channel,
3387 SilcBuffer *user_list,
3388 SilcBuffer *mode_list,
3391 SilcChannelClientEntry chl;
3392 SilcBuffer client_id_list;
3393 SilcBuffer client_mode_list;
3395 uint32 list_count = 0;
3397 client_id_list = silc_buffer_alloc((SILC_ID_CLIENT_LEN + 4) *
3398 silc_list_count(channel->user_list));
3399 client_mode_list = silc_buffer_alloc(4 *
3400 silc_list_count(channel->user_list));
3401 silc_buffer_pull_tail(client_id_list, SILC_BUFFER_END(client_id_list));
3402 silc_buffer_pull_tail(client_mode_list, SILC_BUFFER_END(client_mode_list));
3403 silc_list_start(channel->user_list);
3404 while ((chl = silc_list_get(channel->user_list)) != SILC_LIST_END) {
3406 idp = silc_id_payload_encode(chl->client->id, SILC_ID_CLIENT);
3407 silc_buffer_put(client_id_list, idp->data, idp->len);
3408 silc_buffer_pull(client_id_list, idp->len);
3409 silc_buffer_free(idp);
3411 /* Client's mode on channel */
3412 SILC_PUT32_MSB(chl->mode, client_mode_list->data);
3413 silc_buffer_pull(client_mode_list, 4);
3417 silc_buffer_push(client_id_list,
3418 client_id_list->data - client_id_list->head);
3419 silc_buffer_push(client_mode_list,
3420 client_mode_list->data - client_mode_list->head);
3422 *user_list = client_id_list;
3423 *mode_list = client_mode_list;
3424 *user_count = list_count;
3427 /* Saves users and their modes to the `channel'. */
3429 void silc_server_save_users_on_channel(SilcServer server,
3430 SilcSocketConnection sock,
3431 SilcChannelEntry channel,
3432 SilcClientID *noadd,
3433 SilcBuffer user_list,
3434 SilcBuffer mode_list,
3439 /* Cache the received Client ID's and modes. This cache expires
3440 whenever server sends notify message to channel. It means two things;
3441 some user has joined or leaved the channel. XXX TODO! */
3442 for (i = 0; i < user_count; i++) {
3445 SilcClientID *client_id;
3446 SilcClientEntry client;
3449 SILC_GET16_MSB(idp_len, user_list->data + 2);
3451 client_id = silc_id_payload_parse_id(user_list->data, idp_len);
3452 silc_buffer_pull(user_list, idp_len);
3457 SILC_GET32_MSB(mode, mode_list->data);
3458 silc_buffer_pull(mode_list, 4);
3460 if (noadd && !SILC_ID_CLIENT_COMPARE(client_id, noadd)) {
3461 silc_free(client_id);
3465 /* Check if we have this client cached already. */
3466 client = silc_idlist_find_client_by_id(server->local_list, client_id,
3469 client = silc_idlist_find_client_by_id(server->global_list,
3472 /* If router did not find such Client ID in its lists then this must
3473 be bogus client or some router in the net is buggy. */
3474 if (server->server_type == SILC_ROUTER) {
3475 silc_free(client_id);
3479 /* We don't have that client anywhere, add it. The client is added
3480 to global list since server didn't have it in the lists so it must be
3482 client = silc_idlist_add_client(server->global_list, NULL, 0, NULL,
3484 silc_id_dup(client_id, SILC_ID_CLIENT),
3485 sock->user_data, NULL);
3487 silc_free(client_id);
3491 client->data.registered = TRUE;
3494 silc_free(client_id);
3496 if (!silc_server_client_on_channel(client, channel)) {
3497 /* Client was not on the channel, add it. */
3498 SilcChannelClientEntry chl = silc_calloc(1, sizeof(*chl));
3499 chl->client = client;
3501 chl->channel = channel;
3502 silc_list_add(channel->user_list, chl);
3503 silc_list_add(client->channels, chl);
3508 /* Lookups route to the client indicated by the `id_data'. The connection
3509 object and internal data object is returned. Returns NULL if route
3510 could not be found to the client. If the `client_id' is specified then
3511 it is used and the `id_data' is ignored. */
3513 SilcSocketConnection silc_server_get_client_route(SilcServer server,
3514 unsigned char *id_data,
3516 SilcClientID *client_id,
3517 SilcIDListData *idata)
3520 SilcClientEntry client;
3522 SILC_LOG_DEBUG(("Start"));
3524 /* Decode destination Client ID */
3526 id = silc_id_str2id(id_data, id_len, SILC_ID_CLIENT);
3528 SILC_LOG_ERROR(("Could not decode destination Client ID, dropped"));
3532 id = silc_id_dup(client_id, SILC_ID_CLIENT);
3535 /* If the destination belongs to our server we don't have to route
3536 the packet anywhere but to send it to the local destination. */
3537 client = silc_idlist_find_client_by_id(server->local_list, id, NULL);
3541 if (client && client->data.registered == FALSE)
3544 /* If we are router and the client has router then the client is in
3545 our cell but not directly connected to us. */
3546 if (server->server_type == SILC_ROUTER && client->router) {
3547 /* We are of course in this case the client's router thus the real
3548 "router" of the client is the server who owns the client. Thus
3549 we will send the packet to that server. */
3551 *idata = (SilcIDListData)client->router;
3552 return client->router->connection;
3555 /* Seems that client really is directly connected to us */
3557 *idata = (SilcIDListData)client;
3558 return client->connection;
3561 /* Destination belongs to someone not in this server. If we are normal
3562 server our action is to send the packet to our router. */
3563 if (server->server_type == SILC_SERVER && !server->standalone) {
3566 *idata = (SilcIDListData)server->router;
3567 return server->router->connection;
3570 /* We are router and we will perform route lookup for the destination
3571 and send the packet to fastest route. */
3572 if (server->server_type == SILC_ROUTER && !server->standalone) {
3573 /* Check first that the ID is valid */
3574 client = silc_idlist_find_client_by_id(server->global_list, id, NULL);
3576 SilcSocketConnection dst_sock;
3578 dst_sock = silc_server_route_get(server, id, SILC_ID_CLIENT);
3582 *idata = (SilcIDListData)dst_sock->user_data;
3591 /* Encodes and returns channel list of channels the `client' has joined.
3592 Secret channels are not put to the list. */
3594 SilcBuffer silc_server_get_client_channel_list(SilcServer server,
3595 SilcClientEntry client)
3597 SilcBuffer buffer = NULL;
3598 SilcChannelEntry channel;
3599 SilcChannelClientEntry chl;
3604 silc_list_start(client->channels);
3605 while ((chl = silc_list_get(client->channels)) != SILC_LIST_END) {
3606 channel = chl->channel;
3608 if (channel->mode & SILC_CHANNEL_MODE_SECRET)
3611 cid = silc_id_id2str(channel->id, SILC_ID_CHANNEL);
3612 name_len = strlen(channel->channel_name);
3614 len = 4 + name_len + SILC_ID_CHANNEL_LEN + 4;
3615 buffer = silc_buffer_realloc(buffer,
3616 (buffer ? (buffer)->truelen + len : len));
3617 silc_buffer_pull_tail(buffer, ((buffer)->end - (buffer)->data));
3618 silc_buffer_format(buffer,
3619 SILC_STR_UI_SHORT(name_len),
3620 SILC_STR_UI_XNSTRING(channel->channel_name,
3622 SILC_STR_UI_SHORT(SILC_ID_CHANNEL_LEN),
3623 SILC_STR_UI_XNSTRING(cid, SILC_ID_CHANNEL_LEN),
3624 SILC_STR_UI_INT(chl->mode), /* Client's mode */
3626 silc_buffer_pull(buffer, len);
3631 silc_buffer_push(buffer, buffer->data - buffer->head);
3636 /* Finds client entry by Client ID and if it is not found then resolves
3637 it using WHOIS command. */
3639 SilcClientEntry silc_server_get_client_resolve(SilcServer server,
3640 SilcClientID *client_id)
3642 SilcClientEntry client;
3644 client = silc_idlist_find_client_by_id(server->local_list, client_id, NULL);
3646 client = silc_idlist_find_client_by_id(server->global_list,
3648 if (!client && server->server_type == SILC_ROUTER)
3652 if (!client && server->standalone)
3655 if (!client || !client->nickname || !client->username) {
3656 SilcBuffer buffer, idp;
3658 idp = silc_id_payload_encode(client_id, SILC_ID_CLIENT);
3659 buffer = silc_command_payload_encode_va(SILC_COMMAND_WHOIS,
3660 ++server->cmd_ident, 1,
3661 3, idp->data, idp->len);
3662 silc_server_packet_send(server, client ? client->router->connection :
3663 server->router->connection,
3664 SILC_PACKET_COMMAND, 0,
3665 buffer->data, buffer->len, FALSE);
3666 silc_buffer_free(idp);
3667 silc_buffer_free(buffer);
3673 /* A timeout callback for the re-key. We will be the initiator of the
3676 SILC_TASK_CALLBACK(silc_server_rekey_callback)
3678 SilcSocketConnection sock = (SilcSocketConnection)context;
3679 SilcIDListData idata = (SilcIDListData)sock->user_data;
3680 SilcServer server = (SilcServer)idata->rekey->context;
3681 SilcProtocol protocol;
3682 SilcServerRekeyInternalContext *proto_ctx;
3684 SILC_LOG_DEBUG(("Start"));
3686 /* Allocate internal protocol context. This is sent as context
3688 proto_ctx = silc_calloc(1, sizeof(*proto_ctx));
3689 proto_ctx->server = (void *)server;
3690 proto_ctx->sock = sock;
3691 proto_ctx->responder = FALSE;
3692 proto_ctx->pfs = idata->rekey->pfs;
3694 /* Perform rekey protocol. Will call the final callback after the
3695 protocol is over. */
3696 silc_protocol_alloc(SILC_PROTOCOL_SERVER_REKEY,
3697 &protocol, proto_ctx, silc_server_rekey_final);
3698 sock->protocol = protocol;
3700 /* Run the protocol */
3701 protocol->execute(server->timeout_queue, 0, protocol,
3704 /* Re-register re-key timeout */
3705 silc_task_register(server->timeout_queue, sock->sock,
3706 silc_server_rekey_callback,
3707 context, idata->rekey->timeout, 0,
3708 SILC_TASK_TIMEOUT, SILC_TASK_PRI_NORMAL);
3711 /* The final callback for the REKEY protocol. This will actually take the
3712 new key material into use. */
3714 SILC_TASK_CALLBACK_GLOBAL(silc_server_rekey_final)
3716 SilcProtocol protocol = (SilcProtocol)context;
3717 SilcServerRekeyInternalContext *ctx =
3718 (SilcServerRekeyInternalContext *)protocol->context;
3719 SilcServer server = (SilcServer)ctx->server;
3720 SilcSocketConnection sock = ctx->sock;
3722 SILC_LOG_DEBUG(("Start"));
3724 if (protocol->state == SILC_PROTOCOL_STATE_ERROR ||
3725 protocol->state == SILC_PROTOCOL_STATE_FAILURE) {
3726 /* Error occured during protocol */
3727 silc_protocol_cancel(server->timeout_queue, protocol);
3728 silc_protocol_free(protocol);
3729 sock->protocol = NULL;
3731 silc_packet_context_free(ctx->packet);
3733 silc_ske_free(ctx->ske);
3739 silc_protocol_free(protocol);
3740 sock->protocol = NULL;
3742 silc_packet_context_free(ctx->packet);
3744 silc_ske_free(ctx->ske);
projects / silc.git / blob