5 Author: Pekka Riikonen <priikone@silcnet.org>
7 Copyright (C) 1997 - 2001 Pekka Riikonen
9 This program is free software; you can redistribute it and/or modify
10 it under the terms of the GNU General Public License as published by
11 the Free Software Foundation; either version 2 of the License, or
12 (at your option) any later version.
14 This program is distributed in the hope that it will be useful,
15 but WITHOUT ANY WARRANTY; without even the implied warranty of
16 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 GNU General Public License for more details.
21 * This is the actual SILC server than handles everything relating to
22 * servicing the SILC connections. This is also a SILC router as a router
23 * is also normal server.
27 #include "serverincludes.h"
28 #include "server_internal.h"
30 /* Static prototypes */
31 SILC_TASK_CALLBACK(silc_server_connect_router);
32 SILC_TASK_CALLBACK(silc_server_connect_to_router);
33 SILC_TASK_CALLBACK(silc_server_connect_to_router_second);
34 SILC_TASK_CALLBACK(silc_server_connect_to_router_final);
35 SILC_TASK_CALLBACK(silc_server_accept_new_connection);
36 SILC_TASK_CALLBACK(silc_server_accept_new_connection_second);
37 SILC_TASK_CALLBACK(silc_server_accept_new_connection_final);
38 SILC_TASK_CALLBACK(silc_server_packet_process);
39 SILC_TASK_CALLBACK(silc_server_packet_parse_real);
40 SILC_TASK_CALLBACK(silc_server_timeout_remote);
41 SILC_TASK_CALLBACK(silc_server_failure_callback);
42 SILC_TASK_CALLBACK(silc_server_rekey_callback);
44 /* Allocates a new SILC server object. This has to be done before the server
45 can be used. After allocation one must call silc_server_init to initialize
46 the server. The new allocated server object is returned to the new_server
49 int silc_server_alloc(SilcServer *new_server)
53 SILC_LOG_DEBUG(("Allocating new server object"));
55 server = silc_calloc(1, sizeof(*server));
56 server->server_type = SILC_SERVER;
57 server->standalone = TRUE;
58 server->local_list = silc_calloc(1, sizeof(*server->local_list));
59 server->global_list = silc_calloc(1, sizeof(*server->global_list));
60 server->pending_commands = silc_dlist_init();
62 server->sim = silc_dlist_init();
70 /* Free's the SILC server object. This is called at the very end before
73 void silc_server_free(SilcServer server)
80 silc_free(server->local_list);
81 silc_free(server->global_list);
83 silc_rng_free(server->rng);
86 silc_pkcs_free(server->pkcs);
89 while ((sim = silc_dlist_get(server->sim)) != SILC_LIST_END) {
90 silc_dlist_del(server->sim, sim);
93 silc_dlist_uninit(server->sim);
96 silc_free(server->params);
98 if (server->pending_commands)
99 silc_dlist_uninit(server->pending_commands);
105 /* Initializes the entire SILC server. This is called always before running
106 the server. This is called only once at the initialization of the program.
107 This binds the server to its listenning port. After this function returns
108 one should call silc_server_run to start the server. This returns TRUE
109 when everything is ok to run the server. Configuration file must be
110 read and parsed before calling this. */
112 int silc_server_init(SilcServer server)
114 int *sock = NULL, sock_count = 0, i;
116 SilcServerEntry id_entry;
117 SilcIDListPurge purge;
118 SilcServerConfigSectionListenPort *listen;
120 SILC_LOG_DEBUG(("Initializing server"));
122 assert(server->config);
124 /* Set public and private keys */
125 if (!server->config->server_keys ||
126 !server->config->server_keys->public_key ||
127 !server->config->server_keys->private_key) {
128 SILC_LOG_ERROR(("Server public key and/or private key does not exist"));
131 server->public_key = server->config->server_keys->public_key;
132 server->private_key = server->config->server_keys->private_key;
134 /* XXX After server is made as Silc Server Library this can be given
135 as argument, for now this is hard coded */
136 server->params = silc_calloc(1, sizeof(*server->params));
137 server->params->retry_count = SILC_SERVER_RETRY_COUNT;
138 server->params->retry_interval_min = SILC_SERVER_RETRY_INTERVAL_MIN;
139 server->params->retry_interval_max = SILC_SERVER_RETRY_INTERVAL_MAX;
140 server->params->retry_keep_trying = FALSE;
141 server->params->protocol_timeout = 60;
142 server->params->require_reverse_mapping = FALSE;
144 /* Set log files where log message should be saved. */
145 server->config->server = server;
146 silc_server_config_setlogfiles(server->config);
148 /* Register all configured ciphers, PKCS and hash functions. */
149 if (!silc_server_config_register_ciphers(server->config))
150 silc_cipher_register_default();
151 if (!silc_server_config_register_pkcs(server->config))
152 silc_pkcs_register_default();
153 if (!silc_server_config_register_hashfuncs(server->config))
154 silc_hash_register_default();
155 if (!silc_server_config_register_hmacs(server->config))
156 silc_hmac_register_default();
158 /* Initialize random number generator for the server. */
159 server->rng = silc_rng_alloc();
160 silc_rng_init(server->rng);
161 silc_rng_global_init(server->rng);
163 /* Initialize hash functions for server to use */
164 silc_hash_alloc("md5", &server->md5hash);
165 silc_hash_alloc("sha1", &server->sha1hash);
167 /* Initialize none cipher */
168 silc_cipher_alloc("none", &server->none_cipher);
170 /* Allocate PKCS context for local public and private keys */
171 silc_pkcs_alloc(server->public_key->name, &server->pkcs);
172 silc_pkcs_public_key_set(server->pkcs, server->public_key);
173 silc_pkcs_private_key_set(server->pkcs, server->private_key);
175 /* Create a listening server. Note that our server can listen on multiple
176 ports. All listeners are created here and now. */
178 listen = server->config->listen_port;
182 tmp = silc_net_create_server(server->config->listen_port->port,
183 server->config->listen_port->listener_ip);
187 sock = silc_realloc(sock, (sizeof(int *) * (sock_count + 1)));
188 sock[sock_count] = tmp;
190 listen = listen->next;
193 /* Initialize ID caches */
194 server->local_list->clients =
195 silc_idcache_alloc(0, SILC_ID_CLIENT, silc_idlist_client_destructor);
196 server->local_list->servers = silc_idcache_alloc(0, SILC_ID_SERVER, NULL);
197 server->local_list->channels = silc_idcache_alloc(0, SILC_ID_CHANNEL, NULL);
199 /* These are allocated for normal server as well as these hold some
200 global information that the server has fetched from its router. For
201 router these are used as they are supposed to be used on router. */
202 server->global_list->clients =
203 silc_idcache_alloc(0, SILC_ID_CLIENT, silc_idlist_client_destructor);
204 server->global_list->servers = silc_idcache_alloc(0, SILC_ID_SERVER, NULL);
205 server->global_list->channels = silc_idcache_alloc(0, SILC_ID_CHANNEL, NULL);
207 /* Allocate the entire socket list that is used in server. Eventually
208 all connections will have entry in this table (it is a table of
209 pointers to the actual object that is allocated individually
211 server->sockets = silc_calloc(SILC_SERVER_MAX_CONNECTIONS,
212 sizeof(*server->sockets));
214 for (i = 0; i < sock_count; i++) {
215 SilcSocketConnection newsocket = NULL;
217 /* Set socket to non-blocking mode */
218 silc_net_set_socket_nonblock(sock[i]);
219 server->sock = sock[i];
221 /* Create a Server ID for the server. */
222 silc_id_create_server_id(sock[i], server->rng, &id);
228 server->id_string = silc_id_id2str(id, SILC_ID_SERVER);
229 server->id_string_len = silc_id_get_len(id, SILC_ID_SERVER);
230 server->id_type = SILC_ID_SERVER;
231 server->server_name = server->config->server_info->server_name;
233 /* Add ourselves to the server list. We don't have a router yet
234 beacuse we haven't established a route yet. It will be done later.
235 For now, NULL is sent as router. This allocates new entry to
238 silc_idlist_add_server(server->local_list,
239 server->config->server_info->server_name,
240 server->server_type, server->id, NULL, NULL);
242 SILC_LOG_ERROR(("Could not add ourselves to cache"));
245 id_entry->data.status |= SILC_IDLIST_STATUS_REGISTERED;
247 /* Add ourselves also to the socket table. The entry allocated above
248 is sent as argument for fast referencing in the future. */
249 silc_socket_alloc(sock[i], SILC_SOCKET_TYPE_SERVER, id_entry,
252 server->sockets[sock[i]] = newsocket;
254 /* Perform name and address lookups to resolve the listenning address
256 if (!silc_net_check_local_by_sock(sock[i], &newsocket->hostname,
258 if ((server->params->require_reverse_mapping && !newsocket->hostname) ||
260 SILC_LOG_ERROR(("IP/DNS lookup failed for local host %s",
261 newsocket->hostname ? newsocket->hostname :
262 newsocket->ip ? newsocket->ip : ""));
263 server->stat.conn_failures++;
266 if (!newsocket->hostname)
267 newsocket->hostname = strdup(newsocket->ip);
269 newsocket->port = silc_net_get_local_port(sock[i]);
271 /* Put the allocated socket pointer also to the entry allocated above
272 for fast back-referencing to the socket list. */
273 id_entry->connection = (void *)server->sockets[sock[i]];
274 server->id_entry = id_entry;
277 /* Register protocols */
278 silc_server_protocols_register();
280 /* Initialize the scheduler. */
281 server->schedule = silc_schedule_init(SILC_SERVER_MAX_CONNECTIONS);
282 if (!server->schedule)
285 /* Add the first task to the scheduler. This is task that is executed by
286 timeout. It expires as soon as the caller calls silc_server_run. This
287 task performs authentication protocol and key exchange with our
289 silc_schedule_task_add(server->schedule, sock[0],
290 silc_server_connect_to_router,
291 (void *)server, 0, 1,
293 SILC_TASK_PRI_NORMAL);
295 /* Add listener task to the scheduler. This task receives new connections
296 to the server. This task remains on the queue until the end of the
298 silc_schedule_task_add(server->schedule, sock[0],
299 silc_server_accept_new_connection,
300 (void *)server, 0, 0,
302 SILC_TASK_PRI_NORMAL);
303 server->listenning = TRUE;
305 /* If server connections has been configured then we must be router as
306 normal server cannot have server connections, only router connections. */
307 if (server->config->servers) {
308 SilcServerConfigSectionServerConnection *ptr = server->config->servers;
310 server->server_type = SILC_ROUTER;
312 if (ptr->backup_router) {
313 server->server_type = SILC_BACKUP_ROUTER;
314 server->backup_router = TRUE;
315 server->id_entry->server_type = SILC_BACKUP_ROUTER;
322 /* Register the ID Cache purge task. This periodically purges the ID cache
323 and removes the expired cache entries. */
325 /* Clients local list */
326 purge = silc_calloc(1, sizeof(*purge));
327 purge->cache = server->local_list->clients;
328 purge->schedule = server->schedule;
329 silc_schedule_task_add(purge->schedule, 0,
331 (void *)purge, 600, 0,
332 SILC_TASK_TIMEOUT, SILC_TASK_PRI_LOW);
334 /* Clients global list */
335 purge = silc_calloc(1, sizeof(*purge));
336 purge->cache = server->global_list->clients;
337 purge->schedule = server->schedule;
338 silc_schedule_task_add(purge->schedule, 0,
340 (void *)purge, 300, 0,
341 SILC_TASK_TIMEOUT, SILC_TASK_PRI_LOW);
343 SILC_LOG_DEBUG(("Server initialized"));
345 /* We are done here, return succesfully */
349 for (i = 0; i < sock_count; i++)
350 silc_net_close_server(sock[i]);
355 /* Fork server to background and set gid+uid to non-root.
356 Silcd will not run as root, so trying to set either user or group to
357 root will cause silcd to exit. */
359 void silc_server_daemonise(SilcServer server)
361 /* Are we executing silcd as root or a regular user? */
368 if (!server->config->identity || !server->config->identity->user ||
369 !server->config->identity->group) {
370 fprintf(stderr, "Error:"
371 "\tSILC server must not be run as root. For the security of your\n"
372 "\tsystem it is strongly suggested that you run SILC under dedicated\n"
373 "\tuser account. Modify the [Identity] configuration section to run\n"
374 "\tthe server as non-root user.\n");
378 /* Get the values given for user and group in configuration file */
379 user=server->config->identity->user;
380 group=server->config->identity->group;
382 /* Check whether the user/group information is text */
383 if (atoi(user)!=0 || atoi(group)!=0) {
384 SILC_LOG_DEBUG(("Invalid user and/or group information"));
385 SILC_LOG_DEBUG(("User and/or group given as number"));
386 fprintf(stderr, "Invalid user and/or group information\n");
387 fprintf(stderr, "Please assign them as names, not numbers\n");
391 /* Catch the nasty incident of string "0" returning 0 from atoi */
392 if (strcmp("0", user)==0 || strcmp("0", group)==0) {
393 SILC_LOG_DEBUG(("User and/or group configured to 0. Unacceptable"));
394 fprintf(stderr, "User and/or group configured to 0. Exiting\n");
402 fprintf(stderr, "No such user %s found\n", user);
407 fprintf(stderr, "No such group %s found\n", group);
411 /* Check whether user and/or group is set to root. If yes, exit
412 immediately. Otherwise, setgid and setuid server to user.group */
413 if (gr->gr_gid==0 || pw->pw_uid==0) {
414 fprintf(stderr, "Error:"
415 "\tSILC server must not be run as root. For the security of your\n"
416 "\tsystem it is strongly suggested that you run SILC under dedicated\n"
417 "\tuser account. Modify the [Identity] configuration section to run\n"
418 "\tthe server as non-root user.\n");
421 /* Fork server to background, making it a daemon */
423 SILC_LOG_DEBUG(("Server started as root. Dropping privileges."));
424 SILC_LOG_DEBUG(("Forking SILC server to background"));
429 SILC_LOG_DEBUG(("Changing to group %s", group));
430 if(setgid(gr->gr_gid)==0) {
431 SILC_LOG_DEBUG(("Setgid to %s", group));
433 SILC_LOG_DEBUG(("Setgid to %s failed", group));
434 fprintf(stderr, "Tried to setgid %s but no such group. Exiting\n",
438 SILC_LOG_DEBUG(("Changing to user nobody"));
439 if(setuid(pw->pw_uid)==0) {
440 SILC_LOG_DEBUG(("Setuid to %s", user));
442 SILC_LOG_DEBUG(("Setuid to %s failed", user));
443 fprintf(stderr, "Tried to setuid %s but no such user. Exiting\n",
449 /* Fork server to background, making it a daemon */
451 SILC_LOG_DEBUG(("Server started as user"));
452 SILC_LOG_DEBUG(("Forking SILC server to background"));
459 /* The heart of the server. This runs the scheduler thus runs the server.
460 When this returns the server has been stopped and the program will
463 void silc_server_run(SilcServer server)
465 SILC_LOG_DEBUG(("Running server"));
467 SILC_LOG_INFO(("SILC Server started"));
469 /* Start the scheduler, the heart of the SILC server. When this returns
470 the program will be terminated. */
471 silc_schedule(server->schedule);
474 /* Stops the SILC server. This function is used to shutdown the server.
475 This is usually called after the scheduler has returned. After stopping
476 the server one should call silc_server_free. */
478 void silc_server_stop(SilcServer server)
480 SILC_LOG_DEBUG(("Stopping server"));
482 silc_schedule_stop(server->schedule);
483 silc_schedule_uninit(server->schedule);
485 silc_server_protocols_unregister();
487 SILC_LOG_DEBUG(("Server stopped"));
490 /* Function that is called when the network connection to a router has
491 been established. This will continue with the key exchange protocol
492 with the remote router. */
494 void silc_server_start_key_exchange(SilcServer server,
495 SilcServerConnection sconn,
498 SilcSocketConnection newsocket;
499 SilcProtocol protocol;
500 SilcServerKEInternalContext *proto_ctx;
503 /* Set socket options */
504 silc_net_set_socket_nonblock(sock);
505 silc_net_set_socket_opt(sock, SOL_SOCKET, SO_REUSEADDR, 1);
507 /* Create socket connection for the connection. Even though we
508 know that we are connecting to a router we will mark the socket
509 to be unknown connection until we have executed authentication
511 silc_socket_alloc(sock, SILC_SOCKET_TYPE_UNKNOWN, NULL, &newsocket);
512 server->sockets[sock] = newsocket;
513 newsocket->hostname = strdup(sconn->remote_host);
514 newsocket->ip = strdup(sconn->remote_host);
515 newsocket->port = sconn->remote_port;
516 sconn->sock = newsocket;
518 /* Allocate internal protocol context. This is sent as context
520 proto_ctx = silc_calloc(1, sizeof(*proto_ctx));
521 proto_ctx->server = (void *)server;
522 proto_ctx->context = (void *)sconn;
523 proto_ctx->sock = newsocket;
524 proto_ctx->rng = server->rng;
525 proto_ctx->responder = FALSE;
527 /* Perform key exchange protocol. silc_server_connect_to_router_second
528 will be called after the protocol is finished. */
529 silc_protocol_alloc(SILC_PROTOCOL_SERVER_KEY_EXCHANGE,
530 &protocol, proto_ctx,
531 silc_server_connect_to_router_second);
532 newsocket->protocol = protocol;
534 /* Register a timeout task that will be executed if the protocol
535 is not executed within set limit. */
536 proto_ctx->timeout_task =
537 silc_schedule_task_add(server->schedule, sock,
538 silc_server_timeout_remote,
539 server, server->params->protocol_timeout,
540 server->params->protocol_timeout_usec,
544 /* Register the connection for network input and output. This sets
545 that scheduler will listen for incoming packets for this connection
546 and sets that outgoing packets may be sent to this connection as
547 well. However, this doesn't set the scheduler for outgoing traffic,
548 it will be set separately by calling SILC_SET_CONNECTION_FOR_OUTPUT,
549 later when outgoing data is available. */
550 context = (void *)server;
551 SILC_REGISTER_CONNECTION_FOR_IO(sock);
553 /* Run the protocol */
554 silc_protocol_execute(protocol, server->schedule, 0, 0);
557 /* Timeout callback that will be called to retry connecting to remote
558 router. This is used by both normal and router server. This will wait
559 before retrying the connecting. The timeout is generated by exponential
560 backoff algorithm. */
562 SILC_TASK_CALLBACK(silc_server_connect_to_router_retry)
564 SilcServerConnection sconn = (SilcServerConnection)context;
565 SilcServer server = sconn->server;
567 SILC_LOG_INFO(("Retrying connecting to a router"));
569 /* Calculate next timeout */
570 if (sconn->retry_count >= 1) {
571 sconn->retry_timeout = sconn->retry_timeout * SILC_SERVER_RETRY_MULTIPLIER;
572 if (sconn->retry_timeout > SILC_SERVER_RETRY_INTERVAL_MAX)
573 sconn->retry_timeout = SILC_SERVER_RETRY_INTERVAL_MAX;
575 sconn->retry_timeout = server->params->retry_interval_min;
577 sconn->retry_count++;
578 sconn->retry_timeout = sconn->retry_timeout +
579 silc_rng_get_rn32(server->rng) % SILC_SERVER_RETRY_RANDOMIZER;
581 /* If we've reached max retry count, give up. */
582 if (sconn->retry_count > server->params->retry_count &&
583 server->params->retry_keep_trying == FALSE) {
584 SILC_LOG_ERROR(("Could not connect to router, giving up"));
588 /* Wait one before retrying */
589 silc_schedule_task_add(server->schedule, fd, silc_server_connect_router,
590 context, sconn->retry_timeout,
591 server->params->retry_interval_min_usec,
592 SILC_TASK_TIMEOUT, SILC_TASK_PRI_NORMAL);
595 /* Generic routine to use connect to a router. */
597 SILC_TASK_CALLBACK(silc_server_connect_router)
599 SilcServerConnection sconn = (SilcServerConnection)context;
600 SilcServer server = sconn->server;
603 SILC_LOG_INFO(("Connecting to the %s %s on port %d",
604 (sconn->backup ? "backup router" : "router"),
605 sconn->remote_host, sconn->remote_port));
607 server->router_connect = time(0);
609 /* Connect to remote host */
610 sock = silc_net_create_connection(server->config->listen_port->local_ip,
614 SILC_LOG_ERROR(("Could not connect to router"));
615 silc_schedule_task_add(server->schedule, fd,
616 silc_server_connect_to_router_retry,
617 context, 0, 1, SILC_TASK_TIMEOUT,
618 SILC_TASK_PRI_NORMAL);
622 /* Continue with key exchange protocol */
623 silc_server_start_key_exchange(server, sconn, sock);
626 /* This function connects to our primary router or if we are a router this
627 establishes all our primary routes. This is called at the start of the
628 server to do authentication and key exchange with our router - called
631 SILC_TASK_CALLBACK(silc_server_connect_to_router)
633 SilcServer server = (SilcServer)context;
634 SilcServerConnection sconn;
635 SilcServerConfigSectionServerConnection *ptr;
637 SILC_LOG_DEBUG(("Connecting to router(s)"));
639 if (server->server_type == SILC_SERVER) {
640 SILC_LOG_DEBUG(("We are normal server"));
641 } else if (server->server_type == SILC_ROUTER) {
642 SILC_LOG_DEBUG(("We are router"));
644 SILC_LOG_DEBUG(("We are backup router/normal server"));
647 /* Create the connections to all our routes */
648 ptr = server->config->routers;
651 SILC_LOG_DEBUG(("%s connection [%s] %s:%d",
652 ptr->backup_router ? "Backup router" : "Router",
653 ptr->initiator ? "Initiator" : "Responder",
654 ptr->host, ptr->port));
656 if (ptr->initiator) {
657 /* Allocate connection object for hold connection specific stuff. */
658 sconn = silc_calloc(1, sizeof(*sconn));
659 sconn->server = server;
660 sconn->remote_host = strdup(ptr->host);
661 sconn->remote_port = ptr->port;
662 sconn->backup = ptr->backup_router;
664 sconn->backup_replace_ip = strdup(ptr->backup_replace_ip);
665 sconn->backup_replace_port = ptr->backup_replace_port;
668 silc_schedule_task_add(server->schedule, fd,
669 silc_server_connect_router,
670 (void *)sconn, 0, 1, SILC_TASK_TIMEOUT,
671 SILC_TASK_PRI_NORMAL);
680 SILC_LOG_DEBUG(("No router(s), server will be standalone"));
682 /* There wasn't a configured router, we will continue but we don't
683 have a connection to outside world. We will be standalone server. */
684 server->standalone = TRUE;
687 /* Second part of connecting to router(s). Key exchange protocol has been
688 executed and now we will execute authentication protocol. */
690 SILC_TASK_CALLBACK(silc_server_connect_to_router_second)
692 SilcProtocol protocol = (SilcProtocol)context;
693 SilcServerKEInternalContext *ctx =
694 (SilcServerKEInternalContext *)protocol->context;
695 SilcServer server = (SilcServer)ctx->server;
696 SilcServerConnection sconn = (SilcServerConnection)ctx->context;
697 SilcSocketConnection sock = ctx->sock;
698 SilcServerConnAuthInternalContext *proto_ctx;
699 SilcServerConfigSectionServerConnection *conn = NULL;
701 SILC_LOG_DEBUG(("Start"));
703 if (protocol->state == SILC_PROTOCOL_STATE_ERROR ||
704 protocol->state == SILC_PROTOCOL_STATE_FAILURE) {
705 /* Error occured during protocol */
706 silc_protocol_free(protocol);
707 sock->protocol = NULL;
708 silc_ske_free_key_material(ctx->keymat);
710 silc_packet_context_free(ctx->packet);
712 silc_ske_free(ctx->ske);
713 silc_free(ctx->dest_id);
715 silc_schedule_task_del_by_callback(server->schedule,
716 silc_server_failure_callback);
717 silc_server_disconnect_remote(server, sock, "Server closed connection: "
718 "Key exchange failed");
722 /* We now have the key material as the result of the key exchange
723 protocol. Take the key material into use. Free the raw key material
724 as soon as we've set them into use. */
725 if (!silc_server_protocol_ke_set_keys(ctx->ske, ctx->sock, ctx->keymat,
726 ctx->ske->prop->cipher,
727 ctx->ske->prop->pkcs,
728 ctx->ske->prop->hash,
729 ctx->ske->prop->hmac,
730 ctx->ske->prop->group,
732 silc_protocol_free(protocol);
733 sock->protocol = NULL;
734 silc_ske_free_key_material(ctx->keymat);
736 silc_packet_context_free(ctx->packet);
738 silc_ske_free(ctx->ske);
739 silc_free(ctx->dest_id);
741 silc_schedule_task_del_by_callback(server->schedule,
742 silc_server_failure_callback);
743 silc_server_disconnect_remote(server, sock, "Server closed connection: "
744 "Key exchange failed");
747 silc_ske_free_key_material(ctx->keymat);
749 /* Allocate internal context for the authentication protocol. This
750 is sent as context for the protocol. */
751 proto_ctx = silc_calloc(1, sizeof(*proto_ctx));
752 proto_ctx->server = (void *)server;
753 proto_ctx->context = (void *)sconn;
754 proto_ctx->sock = sock;
755 proto_ctx->ske = ctx->ske; /* Save SKE object from previous protocol */
756 proto_ctx->dest_id_type = ctx->dest_id_type;
757 proto_ctx->dest_id = ctx->dest_id;
759 /* Resolve the authentication method used in this connection. Check if
760 we find a match from user configured connections */
761 conn = silc_server_config_find_router_conn(server->config,
765 /* Match found. Use the configured authentication method */
766 proto_ctx->auth_meth = conn->auth_meth;
767 if (conn->auth_data) {
768 proto_ctx->auth_data = strdup(conn->auth_data);
769 proto_ctx->auth_data_len = strlen(conn->auth_data);
772 SILC_LOG_ERROR(("Could not find connection data for %s (%s) on port",
773 sock->hostname, sock->ip, sock->port));
774 silc_protocol_free(protocol);
775 sock->protocol = NULL;
777 silc_packet_context_free(ctx->packet);
779 silc_ske_free(ctx->ske);
780 silc_free(ctx->dest_id);
782 silc_schedule_task_del_by_callback(server->schedule,
783 silc_server_failure_callback);
784 silc_server_disconnect_remote(server, sock, "Server closed connection: "
785 "Key exchange failed");
789 /* Free old protocol as it is finished now */
790 silc_protocol_free(protocol);
792 silc_packet_context_free(ctx->packet);
794 sock->protocol = NULL;
796 /* Allocate the authentication protocol. This is allocated here
797 but we won't start it yet. We will be receiving party of this
798 protocol thus we will wait that connecting party will make
800 silc_protocol_alloc(SILC_PROTOCOL_SERVER_CONNECTION_AUTH,
801 &sock->protocol, proto_ctx,
802 silc_server_connect_to_router_final);
804 /* Register timeout task. If the protocol is not executed inside
805 this timelimit the connection will be terminated. Currently
806 this is 15 seconds and is hard coded limit (XXX). */
807 proto_ctx->timeout_task =
808 silc_schedule_task_add(server->schedule, sock->sock,
809 silc_server_timeout_remote,
810 (void *)server, 15, 0,
814 /* Run the protocol */
815 silc_protocol_execute(sock->protocol, server->schedule, 0, 0);
818 /* Finalizes the connection to router. Registers a server task to the
819 queue so that we can accept new connections. */
821 SILC_TASK_CALLBACK(silc_server_connect_to_router_final)
823 SilcProtocol protocol = (SilcProtocol)context;
824 SilcServerConnAuthInternalContext *ctx =
825 (SilcServerConnAuthInternalContext *)protocol->context;
826 SilcServer server = (SilcServer)ctx->server;
827 SilcServerConnection sconn = (SilcServerConnection)ctx->context;
828 SilcSocketConnection sock = ctx->sock;
829 SilcServerEntry id_entry;
831 SilcServerHBContext hb_context;
832 unsigned char *id_string;
834 SilcIDListData idata;
836 SILC_LOG_DEBUG(("Start"));
838 if (protocol->state == SILC_PROTOCOL_STATE_ERROR ||
839 protocol->state == SILC_PROTOCOL_STATE_FAILURE) {
840 /* Error occured during protocol */
841 silc_free(ctx->dest_id);
842 silc_server_disconnect_remote(server, sock, "Server closed connection: "
843 "Authentication failed");
847 /* Add a task to the queue. This task receives new connections to the
848 server. This task remains on the queue until the end of the program. */
849 if (!server->listenning && !sconn->backup) {
850 silc_schedule_task_add(server->schedule, server->sock,
851 silc_server_accept_new_connection,
852 (void *)server, 0, 0,
854 SILC_TASK_PRI_NORMAL);
855 server->listenning = TRUE;
858 /* Send NEW_SERVER packet to the router. We will become registered
859 to the SILC network after sending this packet. */
860 id_string = silc_id_id2str(server->id, SILC_ID_SERVER);
861 id_len = silc_id_get_len(server->id, SILC_ID_SERVER);
862 packet = silc_buffer_alloc(2 + 2 + id_len + strlen(server->server_name));
863 silc_buffer_pull_tail(packet, SILC_BUFFER_END(packet));
864 silc_buffer_format(packet,
865 SILC_STR_UI_SHORT(id_len),
866 SILC_STR_UI_XNSTRING(id_string, id_len),
867 SILC_STR_UI_SHORT(strlen(server->server_name)),
868 SILC_STR_UI_XNSTRING(server->server_name,
869 strlen(server->server_name)),
872 /* Send the packet */
873 silc_server_packet_send(server, ctx->sock, SILC_PACKET_NEW_SERVER, 0,
874 packet->data, packet->len, TRUE);
875 silc_buffer_free(packet);
876 silc_free(id_string);
878 SILC_LOG_INFO(("Connected to router %s", sock->hostname));
880 /* Check that we do not have this ID already */
881 id_entry = silc_idlist_find_server_by_id(server->local_list,
882 ctx->dest_id, TRUE, NULL);
884 silc_idcache_del_by_context(server->local_list->servers, id_entry);
886 id_entry = silc_idlist_find_server_by_id(server->global_list,
887 ctx->dest_id, TRUE, NULL);
889 silc_idcache_del_by_context(server->global_list->servers, id_entry);
892 SILC_LOG_DEBUG(("New server id(%s)",
893 silc_id_render(ctx->dest_id, SILC_ID_SERVER)));
895 /* Add the connected router to global server list */
896 id_entry = silc_idlist_add_server(server->global_list,
897 strdup(sock->hostname),
898 SILC_ROUTER, ctx->dest_id, NULL, sock);
900 silc_free(ctx->dest_id);
901 silc_server_disconnect_remote(server, sock, "Server closed connection: "
902 "Authentication failed");
906 silc_idlist_add_data(id_entry, (SilcIDListData)sock->user_data);
907 silc_free(sock->user_data);
908 sock->user_data = (void *)id_entry;
909 sock->type = SILC_SOCKET_TYPE_ROUTER;
910 idata = (SilcIDListData)sock->user_data;
911 idata->status |= SILC_IDLIST_STATUS_REGISTERED;
913 /* Perform keepalive. The `hb_context' will be freed automatically
914 when finally calling the silc_socket_free function. XXX hardcoded
916 hb_context = silc_calloc(1, sizeof(*hb_context));
917 hb_context->server = server;
918 silc_socket_set_heartbeat(sock, 600, hb_context,
919 silc_server_perform_heartbeat,
922 /* Register re-key timeout */
923 idata->rekey->timeout = 3600; /* XXX hardcoded */
924 idata->rekey->context = (void *)server;
925 silc_schedule_task_add(server->schedule, sock->sock,
926 silc_server_rekey_callback,
927 (void *)sock, idata->rekey->timeout, 0,
928 SILC_TASK_TIMEOUT, SILC_TASK_PRI_NORMAL);
930 if (!sconn->backup) {
931 /* Mark this router our primary router if we're still standalone */
932 if (server->standalone) {
933 server->id_entry->router = id_entry;
934 server->router = id_entry;
935 server->standalone = FALSE;
937 /* If we are router then announce our possible servers. */
938 if (server->server_type == SILC_ROUTER)
939 silc_server_announce_servers(server, FALSE, 0,
940 server->router->connection);
942 /* Announce our clients and channels to the router */
943 silc_server_announce_clients(server, 0, server->router->connection);
944 silc_server_announce_channels(server, 0, server->router->connection);
947 /* Add this server to be our backup router */
948 silc_server_backup_add(server, id_entry, sconn->backup_replace_ip,
949 sconn->backup_replace_port, FALSE);
952 sock->protocol = NULL;
954 /* Call the completion callback to indicate that we've connected to
957 (*sconn->callback)(server, id_entry, sconn->callback_context);
960 /* Free the temporary connection data context */
962 silc_free(sconn->remote_host);
963 silc_free(sconn->backup_replace_ip);
967 /* Free the protocol object */
968 if (sock->protocol == protocol)
969 sock->protocol = NULL;
970 silc_protocol_free(protocol);
972 silc_packet_context_free(ctx->packet);
974 silc_ske_free(ctx->ske);
978 /* Host lookup callbcak that is called after the incoming connection's
979 IP and FQDN lookup is performed. This will actually check the acceptance
980 of the incoming connection and will register the key exchange protocol
981 for this connection. */
984 silc_server_accept_new_connection_lookup(SilcSocketConnection sock,
987 SilcServer server = (SilcServer)context;
988 SilcServerKEInternalContext *proto_ctx;
989 void *cconfig, *sconfig, *rconfig;
990 SilcServerConfigSectionDenyConnection *deny;
993 SILC_LOG_DEBUG(("Start"));
995 /* Check whether we could resolve both IP and FQDN. */
996 if (!sock->ip || (!strcmp(sock->ip, sock->hostname) &&
997 server->params->require_reverse_mapping)) {
998 SILC_LOG_ERROR(("IP/DNS lookup failed %s",
999 sock->hostname ? sock->hostname :
1000 sock->ip ? sock->ip : ""));
1001 server->stat.conn_failures++;
1002 silc_server_disconnect_remote(server, sock,
1003 "Server closed connection: Unknown host");
1007 /* Register the connection for network input and output. This sets
1008 that scheduler will listen for incoming packets for this connection
1009 and sets that outgoing packets may be sent to this connection as well.
1010 However, this doesn't set the scheduler for outgoing traffic, it
1011 will be set separately by calling SILC_SET_CONNECTION_FOR_OUTPUT,
1012 later when outgoing data is available. */
1013 SILC_REGISTER_CONNECTION_FOR_IO(sock->sock);
1015 SILC_LOG_INFO(("Incoming connection from %s (%s)", sock->hostname,
1018 port = server->sockets[server->sock]->port; /* Listenning port */
1020 /* Check whether this connection is denied to connect to us. */
1021 deny = silc_server_config_denied_conn(server->config, sock->ip, port);
1023 deny = silc_server_config_denied_conn(server->config, sock->hostname,
1026 /* The connection is denied */
1027 SILC_LOG_INFO(("Connection %s (%s) is denied",
1028 sock->hostname, sock->ip));
1029 silc_server_disconnect_remote(server, sock, deny->comment ?
1031 "Server closed connection: "
1032 "Connection refused");
1033 server->stat.conn_failures++;
1037 /* Check whether we have configred this sort of connection at all. We
1038 have to check all configurations since we don't know what type of
1039 connection this is. */
1040 if (!(cconfig = silc_server_config_find_client_conn(server->config,
1042 cconfig = silc_server_config_find_client_conn(server->config,
1045 if (!(sconfig = silc_server_config_find_server_conn(server->config,
1048 sconfig = silc_server_config_find_server_conn(server->config,
1051 if (!(rconfig = silc_server_config_find_router_conn(server->config,
1053 rconfig = silc_server_config_find_router_conn(server->config,
1056 if (!cconfig && !sconfig && !rconfig) {
1057 silc_server_disconnect_remote(server, sock,
1058 "Server closed connection: "
1059 "Connection refused");
1060 server->stat.conn_failures++;
1064 /* The connection is allowed */
1066 /* Allocate internal context for key exchange protocol. This is
1067 sent as context for the protocol. */
1068 proto_ctx = silc_calloc(1, sizeof(*proto_ctx));
1069 proto_ctx->server = context;
1070 proto_ctx->sock = sock;
1071 proto_ctx->rng = server->rng;
1072 proto_ctx->responder = TRUE;
1073 proto_ctx->cconfig = cconfig;
1074 proto_ctx->sconfig = sconfig;
1075 proto_ctx->rconfig = rconfig;
1077 /* Prepare the connection for key exchange protocol. We allocate the
1078 protocol but will not start it yet. The connector will be the
1079 initiator of the protocol thus we will wait for initiation from
1080 there before we start the protocol. */
1081 server->stat.auth_attempts++;
1082 silc_protocol_alloc(SILC_PROTOCOL_SERVER_KEY_EXCHANGE,
1083 &sock->protocol, proto_ctx,
1084 silc_server_accept_new_connection_second);
1086 /* Register a timeout task that will be executed if the connector
1087 will not start the key exchange protocol within 60 seconds. For
1088 now, this is a hard coded limit. After 60 secs the connection will
1089 be closed if the key exchange protocol has not been started. */
1090 proto_ctx->timeout_task =
1091 silc_schedule_task_add(server->schedule, sock->sock,
1092 silc_server_timeout_remote,
1098 /* Accepts new connections to the server. Accepting new connections are
1099 done in three parts to make it async. */
1101 SILC_TASK_CALLBACK(silc_server_accept_new_connection)
1103 SilcServer server = (SilcServer)context;
1104 SilcSocketConnection newsocket;
1107 SILC_LOG_DEBUG(("Accepting new connection"));
1109 server->stat.conn_attempts++;
1111 sock = silc_net_accept_connection(server->sock);
1113 SILC_LOG_ERROR(("Could not accept new connection: %s", strerror(errno)));
1114 server->stat.conn_failures++;
1118 /* Check max connections */
1119 if (sock > SILC_SERVER_MAX_CONNECTIONS) {
1120 SILC_LOG_ERROR(("Refusing connection, server is full"));
1121 server->stat.conn_failures++;
1125 /* Set socket options */
1126 silc_net_set_socket_nonblock(sock);
1127 silc_net_set_socket_opt(sock, SOL_SOCKET, SO_REUSEADDR, 1);
1129 /* We don't create a ID yet, since we don't know what type of connection
1130 this is yet. But, we do add the connection to the socket table. */
1131 silc_socket_alloc(sock, SILC_SOCKET_TYPE_UNKNOWN, NULL, &newsocket);
1132 server->sockets[sock] = newsocket;
1134 /* Perform asynchronous host lookup. This will lookup the IP and the
1135 FQDN of the remote connection. After the lookup is done the connection
1136 is accepted further. */
1137 silc_socket_host_lookup(newsocket, TRUE,
1138 silc_server_accept_new_connection_lookup, context,
1142 /* Second part of accepting new connection. Key exchange protocol has been
1143 performed and now it is time to do little connection authentication
1144 protocol to figure out whether this connection is client or server
1145 and whether it has right to access this server (especially server
1146 connections needs to be authenticated). */
1148 SILC_TASK_CALLBACK(silc_server_accept_new_connection_second)
1150 SilcProtocol protocol = (SilcProtocol)context;
1151 SilcServerKEInternalContext *ctx =
1152 (SilcServerKEInternalContext *)protocol->context;
1153 SilcServer server = (SilcServer)ctx->server;
1154 SilcSocketConnection sock = ctx->sock;
1155 SilcServerConnAuthInternalContext *proto_ctx;
1157 SILC_LOG_DEBUG(("Start"));
1159 if (protocol->state == SILC_PROTOCOL_STATE_ERROR ||
1160 protocol->state == SILC_PROTOCOL_STATE_FAILURE) {
1161 /* Error occured during protocol */
1162 silc_protocol_free(protocol);
1163 sock->protocol = NULL;
1164 silc_ske_free_key_material(ctx->keymat);
1166 silc_packet_context_free(ctx->packet);
1168 silc_ske_free(ctx->ske);
1169 silc_free(ctx->dest_id);
1171 silc_schedule_task_del_by_callback(server->schedule,
1172 silc_server_failure_callback);
1173 silc_server_disconnect_remote(server, sock, "Server closed connection: "
1174 "Key exchange failed");
1175 server->stat.auth_failures++;
1179 /* We now have the key material as the result of the key exchange
1180 protocol. Take the key material into use. Free the raw key material
1181 as soon as we've set them into use. */
1182 if (!silc_server_protocol_ke_set_keys(ctx->ske, ctx->sock, ctx->keymat,
1183 ctx->ske->prop->cipher,
1184 ctx->ske->prop->pkcs,
1185 ctx->ske->prop->hash,
1186 ctx->ske->prop->hmac,
1187 ctx->ske->prop->group,
1189 silc_protocol_free(protocol);
1190 sock->protocol = NULL;
1191 silc_ske_free_key_material(ctx->keymat);
1193 silc_packet_context_free(ctx->packet);
1195 silc_ske_free(ctx->ske);
1196 silc_free(ctx->dest_id);
1198 silc_schedule_task_del_by_callback(server->schedule,
1199 silc_server_failure_callback);
1200 silc_server_disconnect_remote(server, sock, "Server closed connection: "
1201 "Key exchange failed");
1202 server->stat.auth_failures++;
1205 silc_ske_free_key_material(ctx->keymat);
1207 /* Allocate internal context for the authentication protocol. This
1208 is sent as context for the protocol. */
1209 proto_ctx = silc_calloc(1, sizeof(*proto_ctx));
1210 proto_ctx->server = (void *)server;
1211 proto_ctx->sock = sock;
1212 proto_ctx->ske = ctx->ske; /* Save SKE object from previous protocol */
1213 proto_ctx->responder = TRUE;
1214 proto_ctx->dest_id_type = ctx->dest_id_type;
1215 proto_ctx->dest_id = ctx->dest_id;
1216 proto_ctx->cconfig = ctx->cconfig;
1217 proto_ctx->sconfig = ctx->sconfig;
1218 proto_ctx->rconfig = ctx->rconfig;
1220 /* Free old protocol as it is finished now */
1221 silc_protocol_free(protocol);
1223 silc_packet_context_free(ctx->packet);
1225 sock->protocol = NULL;
1227 /* Allocate the authentication protocol. This is allocated here
1228 but we won't start it yet. We will be receiving party of this
1229 protocol thus we will wait that connecting party will make
1230 their first move. */
1231 silc_protocol_alloc(SILC_PROTOCOL_SERVER_CONNECTION_AUTH,
1232 &sock->protocol, proto_ctx,
1233 silc_server_accept_new_connection_final);
1235 /* Register timeout task. If the protocol is not executed inside
1236 this timelimit the connection will be terminated. Currently
1237 this is 60 seconds and is hard coded limit (XXX). */
1238 proto_ctx->timeout_task =
1239 silc_schedule_task_add(server->schedule, sock->sock,
1240 silc_server_timeout_remote,
1241 (void *)server, 60, 0,
1246 /* Final part of accepting new connection. The connection has now
1247 been authenticated and keys has been exchanged. We also know whether
1248 this is client or server connection. */
1250 SILC_TASK_CALLBACK(silc_server_accept_new_connection_final)
1252 SilcProtocol protocol = (SilcProtocol)context;
1253 SilcServerConnAuthInternalContext *ctx =
1254 (SilcServerConnAuthInternalContext *)protocol->context;
1255 SilcServer server = (SilcServer)ctx->server;
1256 SilcSocketConnection sock = ctx->sock;
1257 SilcServerHBContext hb_context;
1258 SilcUnknownEntry entry = (SilcUnknownEntry)sock->user_data;
1259 void *id_entry = NULL;
1261 SILC_LOG_DEBUG(("Start"));
1263 if (protocol->state == SILC_PROTOCOL_STATE_ERROR ||
1264 protocol->state == SILC_PROTOCOL_STATE_FAILURE) {
1265 /* Error occured during protocol */
1266 silc_protocol_free(protocol);
1267 sock->protocol = NULL;
1269 silc_packet_context_free(ctx->packet);
1271 silc_ske_free(ctx->ske);
1272 silc_free(ctx->dest_id);
1275 sock->protocol = NULL;
1276 silc_schedule_task_del_by_callback(server->schedule,
1277 silc_server_failure_callback);
1278 silc_server_disconnect_remote(server, sock, "Server closed connection: "
1279 "Authentication failed");
1280 server->stat.auth_failures++;
1284 entry->data.last_receive = time(NULL);
1286 switch (ctx->conn_type) {
1287 case SILC_SOCKET_TYPE_CLIENT:
1289 SilcClientEntry client;
1291 SILC_LOG_DEBUG(("Remote host is client"));
1292 SILC_LOG_INFO(("Connection from %s (%s) is client", sock->hostname,
1295 /* Add the client to the client ID cache. The nickname and Client ID
1296 and other information is created after we have received NEW_CLIENT
1297 packet from client. */
1298 client = silc_idlist_add_client(server->local_list,
1299 NULL, NULL, NULL, NULL, NULL, sock);
1301 SILC_LOG_ERROR(("Could not add new client to cache"));
1302 silc_free(sock->user_data);
1303 silc_server_disconnect_remote(server, sock,
1304 "Server closed connection: "
1305 "Authentication failed");
1306 server->stat.auth_failures++;
1311 server->stat.my_clients++;
1312 server->stat.clients++;
1313 if (server->server_type == SILC_ROUTER)
1314 server->stat.cell_clients++;
1316 id_entry = (void *)client;
1319 case SILC_SOCKET_TYPE_SERVER:
1320 case SILC_SOCKET_TYPE_ROUTER:
1322 SilcServerEntry new_server;
1323 SilcServerConfigSectionServerConnection *conn =
1324 ctx->conn_type == SILC_SOCKET_TYPE_SERVER ?
1325 ctx->sconfig : ctx->rconfig;
1327 SILC_LOG_DEBUG(("Remote host is %s",
1328 ctx->conn_type == SILC_SOCKET_TYPE_SERVER ?
1329 "server" : (conn->backup_router ?
1330 "backup router" : "router")));
1331 SILC_LOG_INFO(("Connection from %s (%s) is %s", sock->hostname,
1332 sock->ip, ctx->conn_type == SILC_SOCKET_TYPE_SERVER ?
1333 "server" : (conn->backup_router ?
1334 "backup router" : "router")));
1336 /* Add the server into server cache. The server name and Server ID
1337 is updated after we have received NEW_SERVER packet from the
1338 server. We mark ourselves as router for this server if we really
1341 silc_idlist_add_server((ctx->conn_type == SILC_SOCKET_TYPE_SERVER ?
1342 server->local_list : (conn->backup_router ?
1343 server->local_list :
1344 server->global_list)),
1346 (ctx->conn_type == SILC_SOCKET_TYPE_SERVER ?
1347 SILC_SERVER : SILC_ROUTER),
1349 (ctx->conn_type == SILC_SOCKET_TYPE_SERVER ?
1350 server->id_entry : (conn->backup_router ?
1351 server->id_entry : NULL)),
1354 SILC_LOG_ERROR(("Could not add new server to cache"));
1355 silc_free(sock->user_data);
1356 silc_server_disconnect_remote(server, sock,
1357 "Server closed connection: "
1358 "Authentication failed");
1359 server->stat.auth_failures++;
1364 if (ctx->conn_type == SILC_SOCKET_TYPE_SERVER)
1365 server->stat.my_servers++;
1367 server->stat.my_routers++;
1368 server->stat.servers++;
1370 id_entry = (void *)new_server;
1372 /* If the incoming connection is router and marked as backup router
1373 then add it to be one of our backups */
1374 if (ctx->conn_type == SILC_SOCKET_TYPE_ROUTER && conn->backup_router) {
1375 silc_server_backup_add(server, new_server, conn->backup_replace_ip,
1376 conn->backup_replace_port, conn->backup_local);
1378 /* Change it back to SERVER type since that's what it really is. */
1379 if (conn->backup_local)
1380 ctx->conn_type = SILC_SOCKET_TYPE_SERVER;
1382 new_server->server_type = SILC_BACKUP_ROUTER;
1385 /* Check whether this connection is to be our primary router connection
1386 if we do not already have the primary route. */
1387 if (server->standalone && ctx->conn_type == SILC_SOCKET_TYPE_ROUTER) {
1388 if (silc_server_config_is_primary_route(server->config) &&
1392 SILC_LOG_DEBUG(("We are not standalone server anymore"));
1393 server->standalone = FALSE;
1394 if (!server->id_entry->router) {
1395 server->id_entry->router = id_entry;
1396 server->router = id_entry;
1406 sock->type = ctx->conn_type;
1408 /* Add the common data structure to the ID entry. */
1410 silc_idlist_add_data(id_entry, (SilcIDListData)sock->user_data);
1412 /* Add to sockets internal pointer for fast referencing */
1413 silc_free(sock->user_data);
1414 sock->user_data = id_entry;
1416 /* Connection has been fully established now. Everything is ok. */
1417 SILC_LOG_DEBUG(("New connection authenticated"));
1419 /* Perform keepalive. The `hb_context' will be freed automatically
1420 when finally calling the silc_socket_free function. XXX hardcoded
1422 hb_context = silc_calloc(1, sizeof(*hb_context));
1423 hb_context->server = server;
1424 silc_socket_set_heartbeat(sock, 600, hb_context,
1425 silc_server_perform_heartbeat,
1429 silc_schedule_task_del_by_callback(server->schedule,
1430 silc_server_failure_callback);
1431 silc_protocol_free(protocol);
1433 silc_packet_context_free(ctx->packet);
1435 silc_ske_free(ctx->ske);
1436 silc_free(ctx->dest_id);
1438 sock->protocol = NULL;
1441 /* This function is used to read packets from network and send packets to
1442 network. This is usually a generic task. */
1444 SILC_TASK_CALLBACK(silc_server_packet_process)
1446 SilcServer server = (SilcServer)context;
1447 SilcSocketConnection sock = server->sockets[fd];
1448 SilcIDListData idata;
1449 SilcCipher cipher = NULL;
1450 SilcHmac hmac = NULL;
1456 SILC_LOG_DEBUG(("Processing packet"));
1458 /* Packet sending */
1460 if (type == SILC_TASK_WRITE) {
1461 /* Do not send data to disconnected connection */
1462 if (SILC_IS_DISCONNECTED(sock))
1465 server->stat.packets_sent++;
1467 if (sock->outbuf->data - sock->outbuf->head)
1468 silc_buffer_push(sock->outbuf, sock->outbuf->data - sock->outbuf->head);
1470 /* Send the packet */
1471 ret = silc_packet_send(sock, TRUE);
1473 /* If returned -2 could not write to connection now, will do
1479 SILC_LOG_ERROR(("Error sending packet to connection "
1480 "%s:%d [%s]", sock->hostname, sock->port,
1481 (sock->type == SILC_SOCKET_TYPE_UNKNOWN ? "Unknown" :
1482 sock->type == SILC_SOCKET_TYPE_CLIENT ? "Client" :
1483 sock->type == SILC_SOCKET_TYPE_SERVER ? "Server" :
1488 /* The packet has been sent and now it is time to set the connection
1489 back to only for input. When there is again some outgoing data
1490 available for this connection it will be set for output as well.
1491 This call clears the output setting and sets it only for input. */
1492 SILC_SET_CONNECTION_FOR_INPUT(server->schedule, fd);
1493 SILC_UNSET_OUTBUF_PENDING(sock);
1495 silc_buffer_clear(sock->outbuf);
1499 /* Packet receiving */
1501 /* Read some data from connection */
1502 ret = silc_packet_receive(sock);
1506 SILC_LOG_ERROR(("Error receiving packet from connection "
1507 "%s:%d [%s]", sock->hostname, sock->port,
1508 (sock->type == SILC_SOCKET_TYPE_UNKNOWN ? "Unknown" :
1509 sock->type == SILC_SOCKET_TYPE_CLIENT ? "Client" :
1510 sock->type == SILC_SOCKET_TYPE_SERVER ? "Server" :
1517 SILC_LOG_DEBUG(("Read EOF"));
1519 /* If connection is disconnecting already we will finally
1520 close the connection */
1521 if (SILC_IS_DISCONNECTING(sock)) {
1522 if (sock->user_data)
1523 silc_server_free_sock_user_data(server, sock);
1524 silc_server_close_connection(server, sock);
1528 SILC_LOG_DEBUG(("Premature EOF from connection %d", sock->sock));
1529 SILC_SET_DISCONNECTING(sock);
1531 if (sock->user_data)
1532 silc_server_free_sock_user_data(server, sock);
1533 silc_server_close_connection(server, sock);
1537 /* If connection is disconnecting or disconnected we will ignore
1539 if (SILC_IS_DISCONNECTING(sock) || SILC_IS_DISCONNECTED(sock)) {
1540 SILC_LOG_DEBUG(("Ignoring read data from disonnected connection"));
1544 server->stat.packets_received++;
1546 /* Get keys and stuff from ID entry */
1547 idata = (SilcIDListData)sock->user_data;
1549 cipher = idata->receive_key;
1550 hmac = idata->hmac_receive;
1553 /* Process the packet. This will call the parser that will then
1554 decrypt and parse the packet. */
1555 silc_packet_receive_process(sock, cipher, hmac, silc_server_packet_parse,
1559 /* Callback function that the silc_packet_decrypt will call to make the
1560 decision whether the packet is normal or special packet. We will
1561 return TRUE if it is normal and FALSE if it is special */
1563 static int silc_server_packet_decrypt_check(SilcPacketType packet_type,
1565 SilcPacketContext *packet,
1568 SilcPacketParserContext *parse_ctx = (SilcPacketParserContext *)context;
1569 SilcServer server = (SilcServer)parse_ctx->context;
1571 /* Packet is normal packet, if:
1573 1) packet is private message packet and does not have private key set
1574 2) is other packet than channel message packet
1575 3) is channel message packet and remote is router and we are router
1577 all other packets are special packets
1580 if (packet_type == SILC_PACKET_PRIVATE_MESSAGE &&
1581 (buffer->data[2] & SILC_PACKET_FLAG_PRIVMSG_KEY))
1584 if (packet_type != SILC_PACKET_CHANNEL_MESSAGE ||
1585 (packet_type == SILC_PACKET_CHANNEL_MESSAGE &&
1586 parse_ctx->sock->type == SILC_SOCKET_TYPE_ROUTER &&
1587 server->server_type == SILC_ROUTER))
1593 /* Parses whole packet, received earlier. */
1595 SILC_TASK_CALLBACK(silc_server_packet_parse_real)
1597 SilcPacketParserContext *parse_ctx = (SilcPacketParserContext *)context;
1598 SilcServer server = (SilcServer)parse_ctx->context;
1599 SilcSocketConnection sock = parse_ctx->sock;
1600 SilcPacketContext *packet = parse_ctx->packet;
1601 SilcIDListData idata = (SilcIDListData)sock->user_data;
1604 SILC_LOG_DEBUG(("Start"));
1606 /* Decrypt the received packet */
1607 ret = silc_packet_decrypt(idata ? idata->receive_key : NULL,
1608 idata ? idata->hmac_receive : NULL,
1609 packet->buffer, packet,
1610 silc_server_packet_decrypt_check, parse_ctx);
1612 SILC_LOG_WARNING(("Packet decryption failed for connection "
1613 "%s:%d [%s]", sock->hostname, sock->port,
1614 (sock->type == SILC_SOCKET_TYPE_UNKNOWN ? "Unknown" :
1615 sock->type == SILC_SOCKET_TYPE_CLIENT ? "Client" :
1616 sock->type == SILC_SOCKET_TYPE_SERVER ? "Server" :
1622 /* Parse the packet. Packet type is returned. */
1623 ret = silc_packet_parse(packet);
1625 /* Parse the packet header in special way as this is "special"
1627 ret = silc_packet_parse_special(packet);
1630 /* If entry is disabled ignore what we got. */
1631 if (ret != SILC_PACKET_RESUME_ROUTER &&
1632 idata && idata->status & SILC_IDLIST_STATUS_DISABLED) {
1633 SILC_LOG_DEBUG(("Connection is disabled"));
1637 if (ret == SILC_PACKET_NONE)
1640 /* Check that the the current client ID is same as in the client's packet. */
1641 if (sock->type == SILC_SOCKET_TYPE_CLIENT) {
1642 SilcClientEntry client = (SilcClientEntry)sock->user_data;
1643 if (client && client->id) {
1644 void *id = silc_id_str2id(packet->src_id, packet->src_id_len,
1645 packet->src_id_type);
1646 if (!id || !SILC_ID_CLIENT_COMPARE(client->id, id)) {
1654 if (server->server_type == SILC_ROUTER) {
1655 /* Route the packet if it is not destined to us. Other ID types but
1656 server are handled separately after processing them. */
1657 if (!(packet->flags & SILC_PACKET_FLAG_BROADCAST) &&
1658 packet->dst_id_type == SILC_ID_SERVER &&
1659 sock->type != SILC_SOCKET_TYPE_CLIENT &&
1660 memcmp(packet->dst_id, server->id_string, packet->dst_id_len)) {
1662 /* Route the packet to fastest route for the destination ID */
1663 void *id = silc_id_str2id(packet->dst_id, packet->dst_id_len,
1664 packet->dst_id_type);
1667 silc_server_packet_route(server,
1668 silc_server_route_get(server, id,
1669 packet->dst_id_type),
1676 /* Parse the incoming packet type */
1677 silc_server_packet_parse_type(server, sock, packet);
1679 if (server->server_type == SILC_ROUTER) {
1680 /* Broadcast packet if it is marked as broadcast packet and it is
1681 originated from router and we are router. */
1682 if (sock->type == SILC_SOCKET_TYPE_ROUTER &&
1683 packet->flags & SILC_PACKET_FLAG_BROADCAST &&
1684 !server->standalone) {
1685 /* Broadcast to our primary route */
1686 silc_server_packet_broadcast(server, server->router->connection, packet);
1688 /* If we have backup routers then we need to feed all broadcast
1689 data to those servers. */
1690 silc_server_backup_broadcast(server, sock, packet);
1695 silc_packet_context_free(packet);
1696 silc_free(parse_ctx);
1699 /* Parser callback called by silc_packet_receive_process. This merely
1700 registers timeout that will handle the actual parsing when appropriate. */
1702 void silc_server_packet_parse(SilcPacketParserContext *parser_context)
1704 SilcServer server = (SilcServer)parser_context->context;
1705 SilcSocketConnection sock = parser_context->sock;
1707 switch (sock->type) {
1708 case SILC_SOCKET_TYPE_UNKNOWN:
1709 case SILC_SOCKET_TYPE_CLIENT:
1710 /* Parse the packet with timeout */
1711 silc_schedule_task_add(server->schedule, sock->sock,
1712 silc_server_packet_parse_real,
1713 (void *)parser_context, 0, 100000,
1715 SILC_TASK_PRI_NORMAL);
1717 case SILC_SOCKET_TYPE_SERVER:
1718 case SILC_SOCKET_TYPE_ROUTER:
1719 /* Packets from servers are parsed as soon as possible */
1720 silc_schedule_task_add(server->schedule, sock->sock,
1721 silc_server_packet_parse_real,
1722 (void *)parser_context, 0, 1,
1724 SILC_TASK_PRI_NORMAL);
1731 /* Parses the packet type and calls what ever routines the packet type
1732 requires. This is done for all incoming packets. */
1734 void silc_server_packet_parse_type(SilcServer server,
1735 SilcSocketConnection sock,
1736 SilcPacketContext *packet)
1738 SilcPacketType type = packet->type;
1739 SilcIDListData idata = (SilcIDListData)sock->user_data;
1741 SILC_LOG_DEBUG(("Parsing packet type %d", type));
1743 /* Parse the packet type */
1745 case SILC_PACKET_DISCONNECT:
1746 SILC_LOG_DEBUG(("Disconnect packet"));
1747 if (packet->flags & SILC_PACKET_FLAG_LIST)
1751 case SILC_PACKET_SUCCESS:
1753 * Success received for something. For now we can have only
1754 * one protocol for connection executing at once hence this
1755 * success message is for whatever protocol is executing currently.
1757 SILC_LOG_DEBUG(("Success packet"));
1758 if (packet->flags & SILC_PACKET_FLAG_LIST)
1761 silc_protocol_execute(sock->protocol, server->schedule, 0, 0);
1764 case SILC_PACKET_FAILURE:
1766 * Failure received for something. For now we can have only
1767 * one protocol for connection executing at once hence this
1768 * failure message is for whatever protocol is executing currently.
1770 SILC_LOG_DEBUG(("Failure packet"));
1771 if (packet->flags & SILC_PACKET_FLAG_LIST)
1773 if (sock->protocol) {
1774 SilcServerFailureContext f;
1775 f = silc_calloc(1, sizeof(*f));
1779 /* We will wait 5 seconds to process this failure packet */
1780 silc_schedule_task_add(server->schedule, sock->sock,
1781 silc_server_failure_callback, (void *)f, 5, 0,
1782 SILC_TASK_TIMEOUT, SILC_TASK_PRI_NORMAL);
1786 case SILC_PACKET_REJECT:
1787 SILC_LOG_DEBUG(("Reject packet"));
1788 if (packet->flags & SILC_PACKET_FLAG_LIST)
1793 case SILC_PACKET_NOTIFY:
1795 * Received notify packet. Server can receive notify packets from
1796 * router. Server then relays the notify messages to clients if needed.
1798 SILC_LOG_DEBUG(("Notify packet"));
1799 if (packet->flags & SILC_PACKET_FLAG_LIST)
1800 silc_server_notify_list(server, sock, packet);
1802 silc_server_notify(server, sock, packet);
1808 case SILC_PACKET_CHANNEL_MESSAGE:
1810 * Received channel message. Channel messages are special packets
1811 * (although probably most common ones) thus they are handled
1814 SILC_LOG_DEBUG(("Channel Message packet"));
1815 if (packet->flags & SILC_PACKET_FLAG_LIST)
1817 idata->last_receive = time(NULL);
1818 silc_server_channel_message(server, sock, packet);
1821 case SILC_PACKET_CHANNEL_KEY:
1823 * Received key for channel. As channels are created by the router
1824 * the keys are as well. We will distribute the key to all of our
1825 * locally connected clients on the particular channel. Router
1826 * never receives this channel and thus is ignored.
1828 SILC_LOG_DEBUG(("Channel Key packet"));
1829 if (packet->flags & SILC_PACKET_FLAG_LIST)
1831 silc_server_channel_key(server, sock, packet);
1837 case SILC_PACKET_COMMAND:
1839 * Recived command. Processes the command request and allocates the
1840 * command context and calls the command.
1842 SILC_LOG_DEBUG(("Command packet"));
1843 if (packet->flags & SILC_PACKET_FLAG_LIST)
1845 silc_server_command_process(server, sock, packet);
1848 case SILC_PACKET_COMMAND_REPLY:
1850 * Received command reply packet. Received command reply to command. It
1851 * may be reply to command sent by us or reply to command sent by client
1852 * that we've routed further.
1854 SILC_LOG_DEBUG(("Command Reply packet"));
1855 if (packet->flags & SILC_PACKET_FLAG_LIST)
1857 silc_server_command_reply(server, sock, packet);
1861 * Private Message packets
1863 case SILC_PACKET_PRIVATE_MESSAGE:
1865 * Received private message packet. The packet is coming from either
1868 SILC_LOG_DEBUG(("Private Message packet"));
1869 if (packet->flags & SILC_PACKET_FLAG_LIST)
1871 idata->last_receive = time(NULL);
1872 silc_server_private_message(server, sock, packet);
1875 case SILC_PACKET_PRIVATE_MESSAGE_KEY:
1877 * Private message key packet.
1879 if (packet->flags & SILC_PACKET_FLAG_LIST)
1881 silc_server_private_message_key(server, sock, packet);
1885 * Key Exchange protocol packets
1887 case SILC_PACKET_KEY_EXCHANGE:
1888 SILC_LOG_DEBUG(("KE packet"));
1889 if (packet->flags & SILC_PACKET_FLAG_LIST)
1892 if (sock->protocol && sock->protocol->protocol &&
1893 sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_KEY_EXCHANGE) {
1895 SilcServerKEInternalContext *proto_ctx =
1896 (SilcServerKEInternalContext *)sock->protocol->context;
1898 proto_ctx->packet = silc_packet_context_dup(packet);
1900 /* Let the protocol handle the packet */
1901 silc_protocol_execute(sock->protocol, server->schedule, 0, 100000);
1903 SILC_LOG_ERROR(("Received Key Exchange packet but no key exchange "
1904 "protocol active, packet dropped."));
1908 case SILC_PACKET_KEY_EXCHANGE_1:
1909 SILC_LOG_DEBUG(("KE 1 packet"));
1910 if (packet->flags & SILC_PACKET_FLAG_LIST)
1913 if (sock->protocol && sock->protocol->protocol &&
1914 (sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_KEY_EXCHANGE ||
1915 sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_REKEY)) {
1917 if (sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_REKEY) {
1918 SilcServerRekeyInternalContext *proto_ctx =
1919 (SilcServerRekeyInternalContext *)sock->protocol->context;
1921 if (proto_ctx->packet)
1922 silc_packet_context_free(proto_ctx->packet);
1924 proto_ctx->packet = silc_packet_context_dup(packet);
1926 /* Let the protocol handle the packet */
1927 silc_protocol_execute(sock->protocol, server->schedule, 0, 0);
1929 SilcServerKEInternalContext *proto_ctx =
1930 (SilcServerKEInternalContext *)sock->protocol->context;
1932 if (proto_ctx->packet)
1933 silc_packet_context_free(proto_ctx->packet);
1935 proto_ctx->packet = silc_packet_context_dup(packet);
1936 proto_ctx->dest_id_type = packet->src_id_type;
1937 proto_ctx->dest_id = silc_id_str2id(packet->src_id, packet->src_id_len,
1938 packet->src_id_type);
1939 if (!proto_ctx->dest_id)
1942 /* Let the protocol handle the packet */
1943 silc_protocol_execute(sock->protocol, server->schedule,
1947 SILC_LOG_ERROR(("Received Key Exchange 1 packet but no key exchange "
1948 "protocol active, packet dropped."));
1952 case SILC_PACKET_KEY_EXCHANGE_2:
1953 SILC_LOG_DEBUG(("KE 2 packet"));
1954 if (packet->flags & SILC_PACKET_FLAG_LIST)
1957 if (sock->protocol && sock->protocol->protocol &&
1958 (sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_KEY_EXCHANGE ||
1959 sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_REKEY)) {
1961 if (sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_REKEY) {
1962 SilcServerRekeyInternalContext *proto_ctx =
1963 (SilcServerRekeyInternalContext *)sock->protocol->context;
1965 if (proto_ctx->packet)
1966 silc_packet_context_free(proto_ctx->packet);
1968 proto_ctx->packet = silc_packet_context_dup(packet);
1970 /* Let the protocol handle the packet */
1971 silc_protocol_execute(sock->protocol, server->schedule, 0, 0);
1973 SilcServerKEInternalContext *proto_ctx =
1974 (SilcServerKEInternalContext *)sock->protocol->context;
1976 if (proto_ctx->packet)
1977 silc_packet_context_free(proto_ctx->packet);
1979 proto_ctx->packet = silc_packet_context_dup(packet);
1980 proto_ctx->dest_id_type = packet->src_id_type;
1981 proto_ctx->dest_id = silc_id_str2id(packet->src_id, packet->src_id_len,
1982 packet->src_id_type);
1983 if (!proto_ctx->dest_id)
1986 /* Let the protocol handle the packet */
1987 silc_protocol_execute(sock->protocol, server->schedule,
1991 SILC_LOG_ERROR(("Received Key Exchange 2 packet but no key exchange "
1992 "protocol active, packet dropped."));
1996 case SILC_PACKET_CONNECTION_AUTH_REQUEST:
1998 * Connection authentication request packet. When we receive this packet
1999 * we will send to the other end information about our mandatory
2000 * authentication method for the connection. This packet maybe received
2003 SILC_LOG_DEBUG(("Connection authentication request packet"));
2004 if (packet->flags & SILC_PACKET_FLAG_LIST)
2006 silc_server_connection_auth_request(server, sock, packet);
2010 * Connection Authentication protocol packets
2012 case SILC_PACKET_CONNECTION_AUTH:
2013 /* Start of the authentication protocol. We receive here the
2014 authentication data and will verify it. */
2015 SILC_LOG_DEBUG(("Connection auth packet"));
2016 if (packet->flags & SILC_PACKET_FLAG_LIST)
2019 if (sock->protocol && sock->protocol->protocol->type
2020 == SILC_PROTOCOL_SERVER_CONNECTION_AUTH) {
2022 SilcServerConnAuthInternalContext *proto_ctx =
2023 (SilcServerConnAuthInternalContext *)sock->protocol->context;
2025 proto_ctx->packet = silc_packet_context_dup(packet);
2027 /* Let the protocol handle the packet */
2028 silc_protocol_execute(sock->protocol, server->schedule, 0, 0);
2030 SILC_LOG_ERROR(("Received Connection Auth packet but no authentication "
2031 "protocol active, packet dropped."));
2035 case SILC_PACKET_NEW_ID:
2037 * Received New ID packet. This includes some new ID that has been
2038 * created. It may be for client, server or channel. This is the way
2039 * to distribute information about new registered entities in the
2042 SILC_LOG_DEBUG(("New ID packet"));
2043 if (packet->flags & SILC_PACKET_FLAG_LIST)
2044 silc_server_new_id_list(server, sock, packet);
2046 silc_server_new_id(server, sock, packet);
2049 case SILC_PACKET_NEW_CLIENT:
2051 * Received new client packet. This includes client information that
2052 * we will use to create initial client ID. After creating new
2053 * ID we will send it to the client.
2055 SILC_LOG_DEBUG(("New Client packet"));
2056 if (packet->flags & SILC_PACKET_FLAG_LIST)
2058 silc_server_new_client(server, sock, packet);
2061 case SILC_PACKET_NEW_SERVER:
2063 * Received new server packet. This includes Server ID and some other
2064 * information that we may save. This is received after server has
2067 SILC_LOG_DEBUG(("New Server packet"));
2068 if (packet->flags & SILC_PACKET_FLAG_LIST)
2070 silc_server_new_server(server, sock, packet);
2073 case SILC_PACKET_NEW_CHANNEL:
2075 * Received new channel packet. Information about new channel in the
2076 * network are distributed using this packet.
2078 SILC_LOG_DEBUG(("New Channel packet"));
2079 if (packet->flags & SILC_PACKET_FLAG_LIST)
2080 silc_server_new_channel_list(server, sock, packet);
2082 silc_server_new_channel(server, sock, packet);
2085 case SILC_PACKET_HEARTBEAT:
2087 * Received heartbeat.
2089 SILC_LOG_DEBUG(("Heartbeat packet"));
2090 if (packet->flags & SILC_PACKET_FLAG_LIST)
2094 case SILC_PACKET_KEY_AGREEMENT:
2096 * Received heartbeat.
2098 SILC_LOG_DEBUG(("Key agreement packet"));
2099 if (packet->flags & SILC_PACKET_FLAG_LIST)
2101 silc_server_key_agreement(server, sock, packet);
2104 case SILC_PACKET_REKEY:
2106 * Received re-key packet. The sender wants to regenerate the session
2109 SILC_LOG_DEBUG(("Re-key packet"));
2110 if (packet->flags & SILC_PACKET_FLAG_LIST)
2112 silc_server_rekey(server, sock, packet);
2115 case SILC_PACKET_REKEY_DONE:
2117 * The re-key is done.
2119 SILC_LOG_DEBUG(("Re-key done packet"));
2120 if (packet->flags & SILC_PACKET_FLAG_LIST)
2123 if (sock->protocol && sock->protocol->protocol &&
2124 sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_REKEY) {
2126 SilcServerRekeyInternalContext *proto_ctx =
2127 (SilcServerRekeyInternalContext *)sock->protocol->context;
2129 if (proto_ctx->packet)
2130 silc_packet_context_free(proto_ctx->packet);
2132 proto_ctx->packet = silc_packet_context_dup(packet);
2134 /* Let the protocol handle the packet */
2135 silc_protocol_execute(sock->protocol, server->schedule, 0, 0);
2137 SILC_LOG_ERROR(("Received Re-key done packet but no re-key "
2138 "protocol active, packet dropped."));
2142 case SILC_PACKET_FTP:
2146 case SILC_PACKET_RESUME_ROUTER:
2147 /* Resume router packet received. This packet is received for backup
2148 router resuming protocol. */
2149 SILC_LOG_DEBUG(("Resume router packet"));
2150 if (packet->flags & SILC_PACKET_FLAG_LIST)
2152 silc_server_backup_resume_router(server, sock, packet);
2156 SILC_LOG_ERROR(("Incorrect packet type %d, packet dropped", type));
2162 /* Creates connection to a remote router. */
2164 void silc_server_create_connection(SilcServer server,
2165 char *remote_host, uint32 port)
2167 SilcServerConnection sconn;
2169 /* Allocate connection object for hold connection specific stuff. */
2170 sconn = silc_calloc(1, sizeof(*sconn));
2171 sconn->server = server;
2172 sconn->remote_host = strdup(remote_host);
2173 sconn->remote_port = port;
2175 silc_schedule_task_add(server->schedule, 0,
2176 silc_server_connect_router,
2177 (void *)sconn, 0, 1, SILC_TASK_TIMEOUT,
2178 SILC_TASK_PRI_NORMAL);
2181 SILC_TASK_CALLBACK(silc_server_close_connection_final)
2183 silc_socket_free((SilcSocketConnection)context);
2186 /* Closes connection to socket connection */
2188 void silc_server_close_connection(SilcServer server,
2189 SilcSocketConnection sock)
2191 SILC_LOG_INFO(("Closing connection %s:%d [%s]", sock->hostname,
2193 (sock->type == SILC_SOCKET_TYPE_UNKNOWN ? "Unknown" :
2194 sock->type == SILC_SOCKET_TYPE_CLIENT ? "Client" :
2195 sock->type == SILC_SOCKET_TYPE_SERVER ? "Server" :
2198 /* We won't listen for this connection anymore */
2199 silc_schedule_unset_listen_fd(server->schedule, sock->sock);
2201 /* Unregister all tasks */
2202 silc_schedule_task_del_by_fd(server->schedule, sock->sock);
2204 /* Close the actual connection */
2205 silc_net_close_connection(sock->sock);
2206 server->sockets[sock->sock] = NULL;
2208 /* If sock->user_data is NULL then we'll check for active protocols
2209 here since the silc_server_free_sock_user_data has not been called
2210 for this connection. */
2211 if (!sock->user_data) {
2212 /* If any protocol is active cancel its execution. It will call
2213 the final callback which will finalize the disconnection. */
2214 if (sock->protocol) {
2215 silc_protocol_cancel(sock->protocol, server->schedule);
2216 sock->protocol->state = SILC_PROTOCOL_STATE_ERROR;
2217 silc_protocol_execute_final(sock->protocol, server->schedule);
2218 sock->protocol = NULL;
2223 silc_schedule_task_add(server->schedule, 0,
2224 silc_server_close_connection_final,
2225 (void *)sock, 0, 1, SILC_TASK_TIMEOUT,
2226 SILC_TASK_PRI_NORMAL);
2229 /* Sends disconnect message to remote connection and disconnects the
2232 void silc_server_disconnect_remote(SilcServer server,
2233 SilcSocketConnection sock,
2234 const char *fmt, ...)
2237 unsigned char buf[4096];
2242 memset(buf, 0, sizeof(buf));
2244 vsprintf(buf, fmt, ap);
2247 SILC_LOG_DEBUG(("Disconnecting remote host"));
2249 /* Notify remote end that the conversation is over. The notify message
2250 is tried to be sent immediately. */
2251 silc_server_packet_send(server, sock, SILC_PACKET_DISCONNECT, 0,
2252 buf, strlen(buf), TRUE);
2254 /* Mark the connection to be disconnected */
2255 SILC_SET_DISCONNECTED(sock);
2256 silc_server_close_connection(server, sock);
2261 SilcClientEntry client;
2262 } *FreeClientInternal;
2264 SILC_TASK_CALLBACK(silc_server_free_client_data_timeout)
2266 FreeClientInternal i = (FreeClientInternal)context;
2268 silc_idlist_del_data(i->client);
2269 silc_idcache_purge_by_context(i->server->local_list->clients, i->client);
2273 /* Frees client data and notifies about client's signoff. */
2275 void silc_server_free_client_data(SilcServer server,
2276 SilcSocketConnection sock,
2277 SilcClientEntry client,
2281 FreeClientInternal i = silc_calloc(1, sizeof(*i));
2283 /* If there is pending outgoing data for the client then purge it
2284 to the network before removing the client entry. */
2285 silc_server_packet_queue_purge(server, sock);
2287 /* Send SIGNOFF notify to routers. */
2288 if (notify && !server->standalone && server->router)
2289 silc_server_send_notify_signoff(server, server->router->connection,
2290 server->server_type == SILC_SERVER ?
2291 FALSE : TRUE, client->id, signoff);
2293 /* Remove client from all channels */
2295 silc_server_remove_from_channels(server, NULL, client,
2296 TRUE, signoff, TRUE);
2298 silc_server_remove_from_channels(server, NULL, client,
2299 FALSE, NULL, FALSE);
2301 /* We will not delete the client entry right away. We will take it
2302 into history (for WHOWAS command) for 5 minutes */
2305 silc_schedule_task_add(server->schedule, 0,
2306 silc_server_free_client_data_timeout,
2308 SILC_TASK_TIMEOUT, SILC_TASK_PRI_LOW);
2309 client->data.status &= ~SILC_IDLIST_STATUS_REGISTERED;
2310 client->router = NULL;
2311 client->connection = NULL;
2313 /* Free the client entry and everything in it */
2314 server->stat.my_clients--;
2315 server->stat.clients--;
2316 if (server->server_type == SILC_ROUTER)
2317 server->stat.cell_clients--;
2320 /* Frees user_data pointer from socket connection object. This also sends
2321 appropriate notify packets to the network to inform about leaving
2324 void silc_server_free_sock_user_data(SilcServer server,
2325 SilcSocketConnection sock)
2327 SILC_LOG_DEBUG(("Start"));
2329 switch (sock->type) {
2330 case SILC_SOCKET_TYPE_CLIENT:
2332 SilcClientEntry user_data = (SilcClientEntry)sock->user_data;
2333 silc_server_free_client_data(server, sock, user_data, TRUE, NULL);
2336 case SILC_SOCKET_TYPE_SERVER:
2337 case SILC_SOCKET_TYPE_ROUTER:
2339 SilcServerEntry user_data = (SilcServerEntry)sock->user_data;
2340 SilcServerEntry backup_router = NULL;
2343 backup_router = silc_server_backup_get(server, user_data->id);
2345 /* If this was our primary router connection then we're lost to
2346 the outside world. */
2347 if (server->router == user_data) {
2348 /* Check whether we have a backup router connection */
2349 if (!backup_router || backup_router == user_data) {
2350 silc_schedule_task_add(server->schedule, 0,
2351 silc_server_connect_to_router,
2354 SILC_TASK_PRI_NORMAL);
2356 server->id_entry->router = NULL;
2357 server->router = NULL;
2358 server->standalone = TRUE;
2359 backup_router = NULL;
2361 SILC_LOG_INFO(("New primary router is backup router %s",
2362 backup_router->server_name));
2363 SILC_LOG_DEBUG(("New primary router is backup router %s",
2364 backup_router->server_name));
2365 server->id_entry->router = backup_router;
2366 server->router = backup_router;
2367 server->router_connect = time(0);
2368 server->backup_primary = TRUE;
2369 if (server->server_type == SILC_BACKUP_ROUTER) {
2370 server->server_type = SILC_ROUTER;
2372 /* We'll need to constantly try to reconnect to the primary
2373 router so that we'll see when it comes back online. */
2374 silc_server_backup_reconnect(server, sock->ip, sock->port,
2375 silc_server_backup_connected,
2379 /* Mark this connection as replaced */
2380 silc_server_backup_replaced_add(server, user_data->id,
2383 } else if (backup_router) {
2384 SILC_LOG_INFO(("Enabling the use of backup router %s",
2385 backup_router->server_name));
2386 SILC_LOG_DEBUG(("Enabling the use of backup router %s",
2387 backup_router->server_name));
2389 /* Mark this connection as replaced */
2390 silc_server_backup_replaced_add(server, user_data->id,
2394 if (!backup_router) {
2395 /* Free all client entries that this server owns as they will
2396 become invalid now as well. */
2398 silc_server_remove_clients_by_server(server, user_data, TRUE);
2400 /* Update the client entries of this server to the new backup
2401 router. This also removes the clients that *really* was owned
2402 by the primary router and went down with the router. */
2403 silc_server_update_clients_by_server(server, user_data, backup_router,
2405 silc_server_update_servers_by_server(server, user_data, backup_router);
2408 /* Free the server entry */
2409 silc_server_backup_del(server, user_data);
2410 silc_server_backup_replaced_del(server, user_data);
2411 silc_idlist_del_data(user_data);
2412 if (!silc_idlist_del_server(server->local_list, user_data))
2413 silc_idlist_del_server(server->global_list, user_data);
2414 server->stat.my_servers--;
2415 server->stat.servers--;
2416 if (server->server_type == SILC_ROUTER)
2417 server->stat.cell_servers--;
2419 if (backup_router) {
2420 /* Announce all of our stuff that was created about 5 minutes ago.
2421 The backup router knows all the other stuff already. */
2422 if (server->server_type == SILC_ROUTER)
2423 silc_server_announce_servers(server, FALSE, time(0) - 300,
2424 backup_router->connection);
2426 /* Announce our clients and channels to the router */
2427 silc_server_announce_clients(server, time(0) - 300,
2428 backup_router->connection);
2429 silc_server_announce_channels(server, time(0) - 300,
2430 backup_router->connection);
2436 SilcUnknownEntry user_data = (SilcUnknownEntry)sock->user_data;
2438 silc_idlist_del_data(user_data);
2439 silc_free(user_data);
2444 /* If any protocol is active cancel its execution */
2445 if (sock->protocol) {
2446 silc_protocol_cancel(sock->protocol, server->schedule);
2447 sock->protocol->state = SILC_PROTOCOL_STATE_ERROR;
2448 silc_protocol_execute_final(sock->protocol, server->schedule);
2449 sock->protocol = NULL;
2452 sock->user_data = NULL;
2455 /* Removes client from all channels it has joined. This is used when client
2456 connection is disconnected. If the client on a channel is last, the
2457 channel is removed as well. This sends the SIGNOFF notify types. */
2459 void silc_server_remove_from_channels(SilcServer server,
2460 SilcSocketConnection sock,
2461 SilcClientEntry client,
2463 char *signoff_message,
2466 SilcChannelEntry channel;
2467 SilcChannelClientEntry chl;
2468 SilcHashTableList htl;
2471 SILC_LOG_DEBUG(("Start"));
2473 if (!client || !client->id)
2476 clidp = silc_id_payload_encode(client->id, SILC_ID_CLIENT);
2478 /* Remove the client from all channels. The client is removed from
2479 the channels' user list. */
2480 silc_hash_table_list(client->channels, &htl);
2481 while (silc_hash_table_get(&htl, NULL, (void *)&chl)) {
2482 channel = chl->channel;
2484 /* Remove channel from client's channel list */
2485 silc_hash_table_del(client->channels, channel);
2487 /* Remove channel if there is no users anymore */
2488 if (server->server_type == SILC_ROUTER &&
2489 silc_hash_table_count(channel->user_list) < 2) {
2491 silc_schedule_task_del_by_context(server->schedule, channel->rekey);
2492 if (silc_idlist_del_channel(server->local_list, channel))
2493 server->stat.my_channels--;
2494 else if (silc_idlist_del_channel(server->global_list, channel))
2495 server->stat.my_channels--;
2499 /* Remove client from channel's client list */
2500 silc_hash_table_del(channel->user_list, chl->client);
2502 /* If there is no global users on the channel anymore mark the channel
2503 as local channel. Do not check if the removed client is local client. */
2504 if (server->server_type != SILC_ROUTER && channel->global_users &&
2505 chl->client->router && !silc_server_channel_has_global(channel))
2506 channel->global_users = FALSE;
2509 server->stat.my_chanclients--;
2511 /* If there is not at least one local user on the channel then we don't
2512 need the channel entry anymore, we can remove it safely. */
2513 if (server->server_type != SILC_ROUTER &&
2514 !silc_server_channel_has_local(channel)) {
2515 /* Notify about leaving client if this channel has global users. */
2516 if (notify && channel->global_users)
2517 silc_server_send_notify_to_channel(server, NULL, channel, FALSE,
2518 SILC_NOTIFY_TYPE_SIGNOFF,
2519 signoff_message ? 2 : 1,
2520 clidp->data, clidp->len,
2521 signoff_message, signoff_message ?
2522 strlen(signoff_message) : 0);
2525 silc_schedule_task_del_by_context(server->schedule, channel->rekey);
2527 if (channel->founder_key) {
2528 /* The founder auth data exists, do not remove the channel entry */
2529 SilcChannelClientEntry chl2;
2530 SilcHashTableList htl2;
2534 silc_hash_table_list(channel->user_list, &htl2);
2535 while (silc_hash_table_get(&htl2, NULL, (void *)&chl2)) {
2536 silc_hash_table_del(chl2->client->channels, channel);
2537 silc_hash_table_del(channel->user_list, chl2->client);
2543 /* Remove the channel entry */
2544 if (silc_idlist_del_channel(server->local_list, channel))
2545 server->stat.my_channels--;
2546 else if (silc_idlist_del_channel(server->global_list, channel))
2547 server->stat.my_channels--;
2551 /* Send notify to channel about client leaving SILC and thus
2552 the entire channel. */
2554 silc_server_send_notify_to_channel(server, NULL, channel, FALSE,
2555 SILC_NOTIFY_TYPE_SIGNOFF,
2556 signoff_message ? 2 : 1,
2557 clidp->data, clidp->len,
2558 signoff_message, signoff_message ?
2559 strlen(signoff_message) : 0);
2561 if (keygen && !(channel->mode & SILC_CHANNEL_MODE_PRIVKEY)) {
2562 /* Re-generate channel key */
2563 if (!silc_server_create_channel_key(server, channel, 0))
2566 /* Send the channel key to the channel. The key of course is not sent
2567 to the client who was removed from the channel. */
2568 silc_server_send_channel_key(server, client->connection, channel,
2569 server->server_type == SILC_ROUTER ?
2570 FALSE : !server->standalone);
2574 silc_buffer_free(clidp);
2577 /* Removes client from one channel. This is used for example when client
2578 calls LEAVE command to remove itself from the channel. Returns TRUE
2579 if channel still exists and FALSE if the channel is removed when
2580 last client leaves the channel. If `notify' is FALSE notify messages
2583 int silc_server_remove_from_one_channel(SilcServer server,
2584 SilcSocketConnection sock,
2585 SilcChannelEntry channel,
2586 SilcClientEntry client,
2589 SilcChannelClientEntry chl;
2592 SILC_LOG_DEBUG(("Start"));
2594 /* Get the entry to the channel, if this client is not on the channel
2596 if (!silc_hash_table_find(client->channels, channel, NULL, (void *)&chl))
2599 /* Remove the client from the channel. The client is removed from
2600 the channel's user list. */
2602 clidp = silc_id_payload_encode(client->id, SILC_ID_CLIENT);
2604 /* Remove channel from client's channel list */
2605 silc_hash_table_del(client->channels, chl->channel);
2607 /* Remove channel if there is no users anymore */
2608 if (server->server_type == SILC_ROUTER &&
2609 silc_hash_table_count(channel->user_list) < 2) {
2611 silc_schedule_task_del_by_context(server->schedule, channel->rekey);
2612 if (silc_idlist_del_channel(server->local_list, channel))
2613 server->stat.my_channels--;
2614 else if (silc_idlist_del_channel(server->global_list, channel))
2615 server->stat.my_channels--;
2616 silc_buffer_free(clidp);
2620 /* Remove client from channel's client list */
2621 silc_hash_table_del(channel->user_list, chl->client);
2623 /* If there is no global users on the channel anymore mark the channel
2624 as local channel. Do not check if the client is local client. */
2625 if (server->server_type != SILC_ROUTER && channel->global_users &&
2626 chl->client->router && !silc_server_channel_has_global(channel))
2627 channel->global_users = FALSE;
2630 server->stat.my_chanclients--;
2632 /* If there is not at least one local user on the channel then we don't
2633 need the channel entry anymore, we can remove it safely. */
2634 if (server->server_type != SILC_ROUTER &&
2635 !silc_server_channel_has_local(channel)) {
2636 /* Notify about leaving client if this channel has global users. */
2637 if (notify && channel->global_users)
2638 silc_server_send_notify_to_channel(server, NULL, channel, FALSE,
2639 SILC_NOTIFY_TYPE_LEAVE, 1,
2640 clidp->data, clidp->len);
2642 silc_buffer_free(clidp);
2645 silc_schedule_task_del_by_context(server->schedule, channel->rekey);
2647 if (channel->founder_key) {
2648 /* The founder auth data exists, do not remove the channel entry */
2649 SilcChannelClientEntry chl2;
2650 SilcHashTableList htl2;
2654 silc_hash_table_list(channel->user_list, &htl2);
2655 while (silc_hash_table_get(&htl2, NULL, (void *)&chl2)) {
2656 silc_hash_table_del(chl2->client->channels, channel);
2657 silc_hash_table_del(channel->user_list, chl2->client);
2663 /* Remove the channel entry */
2664 if (silc_idlist_del_channel(server->local_list, channel))
2665 server->stat.my_channels--;
2666 else if (silc_idlist_del_channel(server->global_list, channel))
2667 server->stat.my_channels--;
2671 /* Send notify to channel about client leaving the channel */
2673 silc_server_send_notify_to_channel(server, NULL, channel, FALSE,
2674 SILC_NOTIFY_TYPE_LEAVE, 1,
2675 clidp->data, clidp->len);
2677 silc_buffer_free(clidp);
2681 /* Timeout callback. This is called if connection is idle or for some
2682 other reason is not responding within some period of time. This
2683 disconnects the remote end. */
2685 SILC_TASK_CALLBACK(silc_server_timeout_remote)
2687 SilcServer server = (SilcServer)context;
2688 SilcSocketConnection sock = server->sockets[fd];
2690 SILC_LOG_DEBUG(("Start"));
2695 /* If we have protocol active we must assure that we call the protocol's
2696 final callback so that all the memory is freed. */
2697 if (sock->protocol) {
2698 sock->protocol->state = SILC_PROTOCOL_STATE_ERROR;
2699 silc_protocol_execute_final(sock->protocol, server->schedule);
2703 if (sock->user_data)
2704 silc_server_free_sock_user_data(server, sock);
2706 silc_server_disconnect_remote(server, sock, "Server closed connection: "
2707 "Connection timeout");
2710 /* Creates new channel. Sends NEW_CHANNEL packet to primary route. This
2711 function may be used only by router. In real SILC network all channels
2712 are created by routers thus this function is never used by normal
2715 SilcChannelEntry silc_server_create_new_channel(SilcServer server,
2716 SilcServerID *router_id,
2722 SilcChannelID *channel_id;
2723 SilcChannelEntry entry;
2727 SILC_LOG_DEBUG(("Creating new channel"));
2730 cipher = SILC_DEFAULT_CIPHER;
2732 hmac = SILC_DEFAULT_HMAC;
2734 /* Allocate cipher */
2735 if (!silc_cipher_alloc(cipher, &key))
2739 if (!silc_hmac_alloc(hmac, NULL, &newhmac)) {
2740 silc_cipher_free(key);
2744 channel_name = strdup(channel_name);
2746 /* Create the channel */
2747 if (!silc_id_create_channel_id(server, router_id, server->rng,
2749 silc_free(channel_name);
2750 silc_cipher_free(key);
2751 silc_hmac_free(newhmac);
2754 entry = silc_idlist_add_channel(server->local_list, channel_name,
2755 SILC_CHANNEL_MODE_NONE, channel_id,
2756 NULL, key, newhmac);
2758 silc_free(channel_name);
2759 silc_cipher_free(key);
2760 silc_hmac_free(newhmac);
2764 entry->cipher = strdup(cipher);
2765 entry->hmac_name = strdup(hmac);
2767 /* Now create the actual key material */
2768 if (!silc_server_create_channel_key(server, entry,
2769 silc_cipher_get_key_len(key) / 8)) {
2770 silc_free(channel_name);
2771 silc_cipher_free(key);
2772 silc_hmac_free(newhmac);
2773 silc_free(entry->cipher);
2774 silc_free(entry->hmac_name);
2778 /* Notify other routers about the new channel. We send the packet
2779 to our primary route. */
2780 if (broadcast && server->standalone == FALSE)
2781 silc_server_send_new_channel(server, server->router->connection, TRUE,
2782 channel_name, entry->id,
2783 silc_id_get_len(entry->id, SILC_ID_CHANNEL),
2786 server->stat.my_channels++;
2791 /* Same as above but creates the channel with Channel ID `channel_id. */
2794 silc_server_create_new_channel_with_id(SilcServer server,
2798 SilcChannelID *channel_id,
2801 SilcChannelEntry entry;
2805 SILC_LOG_DEBUG(("Creating new channel"));
2808 cipher = SILC_DEFAULT_CIPHER;
2810 hmac = SILC_DEFAULT_HMAC;
2812 /* Allocate cipher */
2813 if (!silc_cipher_alloc(cipher, &key))
2817 if (!silc_hmac_alloc(hmac, NULL, &newhmac)) {
2818 silc_cipher_free(key);
2822 channel_name = strdup(channel_name);
2824 /* Create the channel */
2825 entry = silc_idlist_add_channel(server->local_list, channel_name,
2826 SILC_CHANNEL_MODE_NONE, channel_id,
2827 NULL, key, newhmac);
2829 silc_free(channel_name);
2833 /* Now create the actual key material */
2834 if (!silc_server_create_channel_key(server, entry,
2835 silc_cipher_get_key_len(key) / 8)) {
2836 silc_free(channel_name);
2840 /* Notify other routers about the new channel. We send the packet
2841 to our primary route. */
2842 if (broadcast && server->standalone == FALSE)
2843 silc_server_send_new_channel(server, server->router->connection, TRUE,
2844 channel_name, entry->id,
2845 silc_id_get_len(entry->id, SILC_ID_CHANNEL),
2848 server->stat.my_channels++;
2853 /* Channel's key re-key timeout callback. */
2855 SILC_TASK_CALLBACK(silc_server_channel_key_rekey)
2857 SilcServerChannelRekey rekey = (SilcServerChannelRekey)context;
2858 SilcServer server = (SilcServer)rekey->context;
2862 if (!silc_server_create_channel_key(server, rekey->channel, rekey->key_len))
2865 silc_server_send_channel_key(server, NULL, rekey->channel, FALSE);
2868 /* Generates new channel key. This is used to create the initial channel key
2869 but also to re-generate new key for channel. If `key_len' is provided
2870 it is the bytes of the key length. */
2872 bool silc_server_create_channel_key(SilcServer server,
2873 SilcChannelEntry channel,
2877 unsigned char channel_key[32], hash[32];
2880 SILC_LOG_DEBUG(("Generating channel key"));
2882 if (channel->mode & SILC_CHANNEL_MODE_PRIVKEY) {
2883 SILC_LOG_DEBUG(("Channel has private keys, will not generate new key"));
2887 if (!channel->channel_key)
2888 if (!silc_cipher_alloc(SILC_DEFAULT_CIPHER, &channel->channel_key))
2893 else if (channel->key_len)
2894 len = channel->key_len / 8;
2896 len = silc_cipher_get_key_len(channel->channel_key) / 8;
2898 /* Create channel key */
2899 for (i = 0; i < len; i++) channel_key[i] = silc_rng_get_byte(server->rng);
2902 silc_cipher_set_key(channel->channel_key, channel_key, len * 8);
2904 /* Remove old key if exists */
2906 memset(channel->key, 0, channel->key_len / 8);
2907 silc_free(channel->key);
2911 channel->key_len = len * 8;
2912 channel->key = silc_calloc(len, sizeof(*channel->key));
2913 memcpy(channel->key, channel_key, len);
2914 memset(channel_key, 0, sizeof(channel_key));
2916 /* Generate HMAC key from the channel key data and set it */
2918 silc_hmac_alloc(SILC_DEFAULT_HMAC, NULL, &channel->hmac);
2919 silc_hash_make(silc_hmac_get_hash(channel->hmac), channel->key, len, hash);
2920 silc_hmac_set_key(channel->hmac, hash,
2921 silc_hash_len(silc_hmac_get_hash(channel->hmac)));
2922 memset(hash, 0, sizeof(hash));
2924 if (server->server_type == SILC_ROUTER) {
2925 if (!channel->rekey)
2926 channel->rekey = silc_calloc(1, sizeof(*channel->rekey));
2927 channel->rekey->context = (void *)server;
2928 channel->rekey->channel = channel;
2929 channel->rekey->key_len = key_len;
2930 if (channel->rekey->task)
2931 silc_schedule_task_del(server->schedule, channel->rekey->task);
2933 channel->rekey->task =
2934 silc_schedule_task_add(server->schedule, 0,
2935 silc_server_channel_key_rekey,
2936 (void *)channel->rekey, 3600, 0,
2938 SILC_TASK_PRI_NORMAL);
2944 /* Saves the channel key found in the encoded `key_payload' buffer. This
2945 function is used when we receive Channel Key Payload and also when we're
2946 processing JOIN command reply. Returns entry to the channel. */
2948 SilcChannelEntry silc_server_save_channel_key(SilcServer server,
2949 SilcBuffer key_payload,
2950 SilcChannelEntry channel)
2952 SilcChannelKeyPayload payload = NULL;
2953 SilcChannelID *id = NULL;
2954 unsigned char *tmp, hash[32];
2958 SILC_LOG_DEBUG(("Start"));
2960 /* Decode channel key payload */
2961 payload = silc_channel_key_payload_parse(key_payload);
2963 SILC_LOG_ERROR(("Bad channel key payload, dropped"));
2968 /* Get the channel entry */
2971 /* Get channel ID */
2972 tmp = silc_channel_key_get_id(payload, &tmp_len);
2973 id = silc_id_str2id(tmp, tmp_len, SILC_ID_CHANNEL);
2979 channel = silc_idlist_find_channel_by_id(server->local_list, id, NULL);
2981 channel = silc_idlist_find_channel_by_id(server->global_list, id, NULL);
2983 SILC_LOG_ERROR(("Received key for non-existent channel"));
2989 tmp = silc_channel_key_get_key(payload, &tmp_len);
2995 cipher = silc_channel_key_get_cipher(payload, NULL);
3001 /* Remove old key if exists */
3003 memset(channel->key, 0, channel->key_len / 8);
3004 silc_free(channel->key);
3005 silc_cipher_free(channel->channel_key);
3008 /* Create new cipher */
3009 if (!silc_cipher_alloc(cipher, &channel->channel_key)) {
3014 if (channel->cipher)
3015 silc_free(channel->cipher);
3016 channel->cipher = strdup(cipher);
3019 channel->key_len = tmp_len * 8;
3020 channel->key = silc_calloc(tmp_len, sizeof(unsigned char));
3021 memcpy(channel->key, tmp, tmp_len);
3022 silc_cipher_set_key(channel->channel_key, tmp, channel->key_len);
3024 /* Generate HMAC key from the channel key data and set it */
3026 silc_hmac_alloc(SILC_DEFAULT_HMAC, NULL, &channel->hmac);
3027 silc_hash_make(silc_hmac_get_hash(channel->hmac), tmp, tmp_len, hash);
3028 silc_hmac_set_key(channel->hmac, hash,
3029 silc_hash_len(silc_hmac_get_hash(channel->hmac)));
3031 memset(hash, 0, sizeof(hash));
3032 memset(tmp, 0, tmp_len);
3034 if (server->server_type == SILC_ROUTER) {
3035 if (!channel->rekey)
3036 channel->rekey = silc_calloc(1, sizeof(*channel->rekey));
3037 channel->rekey->context = (void *)server;
3038 channel->rekey->channel = channel;
3039 if (channel->rekey->task)
3040 silc_schedule_task_del(server->schedule, channel->rekey->task);
3042 channel->rekey->task =
3043 silc_schedule_task_add(server->schedule, 0,
3044 silc_server_channel_key_rekey,
3045 (void *)channel->rekey, 3600, 0,
3047 SILC_TASK_PRI_NORMAL);
3053 silc_channel_key_payload_free(payload);
3058 /* Heartbeat callback. This function is set as argument for the
3059 silc_socket_set_heartbeat function. The library will call this function
3060 at the set time interval. */
3062 void silc_server_perform_heartbeat(SilcSocketConnection sock,
3065 SilcServerHBContext hb = (SilcServerHBContext)hb_context;
3067 SILC_LOG_DEBUG(("Sending heartbeat to %s (%s)", sock->hostname,
3070 /* Send the heartbeat */
3071 silc_server_send_heartbeat(hb->server, sock);
3074 /* Returns assembled of all servers in the given ID list. The packet's
3075 form is dictated by the New ID payload. */
3077 static void silc_server_announce_get_servers(SilcServer server,
3078 SilcServerEntry remote,
3080 SilcBuffer *servers,
3081 unsigned long creation_time)
3083 SilcIDCacheList list;
3084 SilcIDCacheEntry id_cache;
3085 SilcServerEntry entry;
3088 /* Go through all clients in the list */
3089 if (silc_idcache_get_all(id_list->servers, &list)) {
3090 if (silc_idcache_list_first(list, &id_cache)) {
3092 entry = (SilcServerEntry)id_cache->context;
3094 /* Do not announce the one we've sending our announcements and
3095 do not announce ourself. Also check the creation time if it's
3097 if ((entry == remote) || (entry == server->id_entry) ||
3098 (creation_time && entry->data.created < creation_time)) {
3099 if (!silc_idcache_list_next(list, &id_cache))
3104 idp = silc_id_payload_encode(entry->id, SILC_ID_SERVER);
3106 *servers = silc_buffer_realloc(*servers,
3108 (*servers)->truelen + idp->len :
3110 silc_buffer_pull_tail(*servers, ((*servers)->end - (*servers)->data));
3111 silc_buffer_put(*servers, idp->data, idp->len);
3112 silc_buffer_pull(*servers, idp->len);
3113 silc_buffer_free(idp);
3115 if (!silc_idcache_list_next(list, &id_cache))
3120 silc_idcache_list_free(list);
3124 /* This function is used by router to announce existing servers to our
3125 primary router when we've connected to it. If `creation_time' is non-zero
3126 then only the servers that has been created after the `creation_time'
3127 will be announced. */
3129 void silc_server_announce_servers(SilcServer server, bool global,
3130 unsigned long creation_time,
3131 SilcSocketConnection remote)
3133 SilcBuffer servers = NULL;
3135 SILC_LOG_DEBUG(("Announcing servers"));
3137 /* Get servers in local list */
3138 silc_server_announce_get_servers(server, remote->user_data,
3139 server->local_list, &servers,
3143 /* Get servers in global list */
3144 silc_server_announce_get_servers(server, remote->user_data,
3145 server->global_list, &servers,
3149 silc_buffer_push(servers, servers->data - servers->head);
3150 SILC_LOG_HEXDUMP(("servers"), servers->data, servers->len);
3152 /* Send the packet */
3153 silc_server_packet_send(server, remote,
3154 SILC_PACKET_NEW_ID, SILC_PACKET_FLAG_LIST,
3155 servers->data, servers->len, TRUE);
3157 silc_buffer_free(servers);
3161 /* Returns assembled packet of all clients in the given ID list. The
3162 packet's form is dictated by the New ID Payload. */
3164 static void silc_server_announce_get_clients(SilcServer server,
3166 SilcBuffer *clients,
3167 unsigned long creation_time)
3169 SilcIDCacheList list;
3170 SilcIDCacheEntry id_cache;
3171 SilcClientEntry client;
3174 /* Go through all clients in the list */
3175 if (silc_idcache_get_all(id_list->clients, &list)) {
3176 if (silc_idcache_list_first(list, &id_cache)) {
3178 client = (SilcClientEntry)id_cache->context;
3180 if (creation_time && client->data.created < creation_time) {
3181 if (!silc_idcache_list_next(list, &id_cache))
3186 idp = silc_id_payload_encode(client->id, SILC_ID_CLIENT);
3188 *clients = silc_buffer_realloc(*clients,
3190 (*clients)->truelen + idp->len :
3192 silc_buffer_pull_tail(*clients, ((*clients)->end - (*clients)->data));
3193 silc_buffer_put(*clients, idp->data, idp->len);
3194 silc_buffer_pull(*clients, idp->len);
3195 silc_buffer_free(idp);
3197 if (!silc_idcache_list_next(list, &id_cache))
3202 silc_idcache_list_free(list);
3206 /* This function is used to announce our existing clients to our router
3207 when we've connected to it. If `creation_time' is non-zero then only
3208 the clients that has been created after the `creation_time' will be
3211 void silc_server_announce_clients(SilcServer server,
3212 unsigned long creation_time,
3213 SilcSocketConnection remote)
3215 SilcBuffer clients = NULL;
3217 SILC_LOG_DEBUG(("Announcing clients"));
3219 /* Get clients in local list */
3220 silc_server_announce_get_clients(server, server->local_list,
3221 &clients, creation_time);
3223 /* As router we announce our global list as well */
3224 if (server->server_type == SILC_ROUTER)
3225 silc_server_announce_get_clients(server, server->global_list,
3226 &clients, creation_time);
3229 silc_buffer_push(clients, clients->data - clients->head);
3230 SILC_LOG_HEXDUMP(("clients"), clients->data, clients->len);
3232 /* Send the packet */
3233 silc_server_packet_send(server, remote,
3234 SILC_PACKET_NEW_ID, SILC_PACKET_FLAG_LIST,
3235 clients->data, clients->len, TRUE);
3237 silc_buffer_free(clients);
3242 silc_server_announce_encode_notify(SilcNotifyType notify, uint32 argc, ...)
3248 p = silc_notify_payload_encode(notify, argc, ap);
3254 /* Returns assembled packets for channel users of the `channel'. */
3256 void silc_server_announce_get_channel_users(SilcServer server,
3257 SilcChannelEntry channel,
3258 SilcBuffer *channel_users,
3259 SilcBuffer *channel_users_modes)
3261 SilcChannelClientEntry chl;
3262 SilcHashTableList htl;
3263 SilcBuffer chidp, clidp;
3266 unsigned char mode[4];
3268 SILC_LOG_DEBUG(("Start"));
3270 /* Now find all users on the channel */
3271 chidp = silc_id_payload_encode(channel->id, SILC_ID_CHANNEL);
3272 silc_hash_table_list(channel->user_list, &htl);
3273 while (silc_hash_table_get(&htl, NULL, (void *)&chl)) {
3274 clidp = silc_id_payload_encode(chl->client->id, SILC_ID_CLIENT);
3277 tmp = silc_server_announce_encode_notify(SILC_NOTIFY_TYPE_JOIN, 2,
3278 clidp->data, clidp->len,
3279 chidp->data, chidp->len);
3282 silc_buffer_realloc(*channel_users,
3284 (*channel_users)->truelen + len : len));
3285 silc_buffer_pull_tail(*channel_users,
3286 ((*channel_users)->end -
3287 (*channel_users)->data));
3289 silc_buffer_put(*channel_users, tmp->data, tmp->len);
3290 silc_buffer_pull(*channel_users, len);
3291 silc_buffer_free(tmp);
3293 /* CUMODE notify for mode change on the channel */
3294 SILC_PUT32_MSB(chl->mode, mode);
3295 tmp = silc_server_announce_encode_notify(SILC_NOTIFY_TYPE_CUMODE_CHANGE,
3296 3, clidp->data, clidp->len,
3298 clidp->data, clidp->len);
3300 *channel_users_modes =
3301 silc_buffer_realloc(*channel_users_modes,
3302 (*channel_users_modes ?
3303 (*channel_users_modes)->truelen + len : len));
3304 silc_buffer_pull_tail(*channel_users_modes,
3305 ((*channel_users_modes)->end -
3306 (*channel_users_modes)->data));
3308 silc_buffer_put(*channel_users_modes, tmp->data, tmp->len);
3309 silc_buffer_pull(*channel_users_modes, len);
3310 silc_buffer_free(tmp);
3312 silc_buffer_free(clidp);
3314 silc_buffer_free(chidp);
3317 /* Returns assembled packets for all channels and users on those channels
3318 from the given ID List. The packets are in the form dictated by the
3319 New Channel and New Channel User payloads. */
3321 void silc_server_announce_get_channels(SilcServer server,
3323 SilcBuffer *channels,
3324 SilcBuffer *channel_users,
3325 SilcBuffer **channel_users_modes,
3326 uint32 *channel_users_modes_c,
3327 SilcChannelID ***channel_ids,
3328 unsigned long creation_time)
3330 SilcIDCacheList list;
3331 SilcIDCacheEntry id_cache;
3332 SilcChannelEntry channel;
3337 int i = *channel_users_modes_c;
3340 SILC_LOG_DEBUG(("Start"));
3342 /* Go through all channels in the list */
3343 if (silc_idcache_get_all(id_list->channels, &list)) {
3344 if (silc_idcache_list_first(list, &id_cache)) {
3346 channel = (SilcChannelEntry)id_cache->context;
3348 if (creation_time && channel->created < creation_time)
3353 cid = silc_id_id2str(channel->id, SILC_ID_CHANNEL);
3354 id_len = silc_id_get_len(channel->id, SILC_ID_CHANNEL);
3355 name_len = strlen(channel->channel_name);
3358 len = 4 + name_len + id_len + 4;
3360 silc_buffer_realloc(*channels,
3361 (*channels ? (*channels)->truelen +
3363 silc_buffer_pull_tail(*channels,
3364 ((*channels)->end - (*channels)->data));
3365 silc_buffer_format(*channels,
3366 SILC_STR_UI_SHORT(name_len),
3367 SILC_STR_UI_XNSTRING(channel->channel_name,
3369 SILC_STR_UI_SHORT(id_len),
3370 SILC_STR_UI_XNSTRING(cid, id_len),
3371 SILC_STR_UI_INT(channel->mode),
3373 silc_buffer_pull(*channels, len);
3376 *channel_users_modes = silc_realloc(*channel_users_modes,
3377 sizeof(**channel_users_modes) *
3379 (*channel_users_modes)[i] = NULL;
3380 *channel_ids = silc_realloc(*channel_ids,
3381 sizeof(**channel_ids) * (i + 1));
3382 (*channel_ids)[i] = NULL;
3383 silc_server_announce_get_channel_users(server, channel,
3385 channel_users_modes[i]);
3386 (*channel_ids)[i] = channel->id;
3389 if (!silc_idcache_list_next(list, &id_cache))
3393 *channel_users_modes_c += i;
3396 silc_idcache_list_free(list);
3400 /* This function is used to announce our existing channels to our router
3401 when we've connected to it. This also announces the users on the
3402 channels to the router. If the `creation_time' is non-zero only the
3403 channels that was created after the `creation_time' are announced.
3404 Note that the channel users are still announced even if the `creation_time'
3407 void silc_server_announce_channels(SilcServer server,
3408 unsigned long creation_time,
3409 SilcSocketConnection remote)
3411 SilcBuffer channels = NULL, channel_users = NULL;
3412 SilcBuffer *channel_users_modes = NULL;
3413 uint32 channel_users_modes_c = 0;
3414 SilcChannelID **channel_ids = NULL;
3416 SILC_LOG_DEBUG(("Announcing channels and channel users"));
3418 /* Get channels and channel users in local list */
3419 silc_server_announce_get_channels(server, server->local_list,
3420 &channels, &channel_users,
3421 &channel_users_modes,
3422 &channel_users_modes_c,
3423 &channel_ids, creation_time);
3425 /* Get channels and channel users in global list */
3426 silc_server_announce_get_channels(server, server->global_list,
3427 &channels, &channel_users,
3428 &channel_users_modes,
3429 &channel_users_modes_c,
3430 &channel_ids, creation_time);
3433 silc_buffer_push(channels, channels->data - channels->head);
3434 SILC_LOG_HEXDUMP(("channels"), channels->data, channels->len);
3436 /* Send the packet */
3437 silc_server_packet_send(server, remote,
3438 SILC_PACKET_NEW_CHANNEL, SILC_PACKET_FLAG_LIST,
3439 channels->data, channels->len,
3442 silc_buffer_free(channels);
3445 if (channel_users) {
3446 silc_buffer_push(channel_users, channel_users->data - channel_users->head);
3447 SILC_LOG_HEXDUMP(("channel users"), channel_users->data,
3448 channel_users->len);
3450 /* Send the packet */
3451 silc_server_packet_send(server, remote,
3452 SILC_PACKET_NOTIFY, SILC_PACKET_FLAG_LIST,
3453 channel_users->data, channel_users->len,
3456 silc_buffer_free(channel_users);
3459 if (channel_users_modes) {
3462 for (i = 0; i < channel_users_modes_c; i++) {
3463 silc_buffer_push(channel_users_modes[i],
3464 channel_users_modes[i]->data -
3465 channel_users_modes[i]->head);
3466 SILC_LOG_HEXDUMP(("channel users modes"), channel_users_modes[i]->data,
3467 channel_users_modes[i]->len);
3468 silc_server_packet_send_dest(server, remote,
3469 SILC_PACKET_NOTIFY, SILC_PACKET_FLAG_LIST,
3470 channel_ids[i], SILC_ID_CHANNEL,
3471 channel_users_modes[i]->data,
3472 channel_users_modes[i]->len,
3474 silc_buffer_free(channel_users_modes[i]);
3476 silc_free(channel_users_modes);
3477 silc_free(channel_ids);
3481 /* Failure timeout callback. If this is called then we will immediately
3482 process the received failure. We always process the failure with timeout
3483 since we do not want to blindly trust to received failure packets.
3484 This won't be called (the timeout is cancelled) if the failure was
3485 bogus (it is bogus if remote does not close the connection after sending
3488 SILC_TASK_CALLBACK(silc_server_failure_callback)
3490 SilcServerFailureContext f = (SilcServerFailureContext)context;
3492 if (f->sock->protocol) {
3493 f->sock->protocol->state = SILC_PROTOCOL_STATE_FAILURE;
3494 silc_protocol_execute(f->sock->protocol, f->server->schedule, 0, 0);
3500 /* Assembles user list and users mode list from the `channel'. */
3502 void silc_server_get_users_on_channel(SilcServer server,
3503 SilcChannelEntry channel,
3504 SilcBuffer *user_list,
3505 SilcBuffer *mode_list,
3508 SilcChannelClientEntry chl;
3509 SilcHashTableList htl;
3510 SilcBuffer client_id_list;
3511 SilcBuffer client_mode_list;
3513 uint32 list_count = 0, len = 0;
3515 silc_hash_table_list(channel->user_list, &htl);
3516 while (silc_hash_table_get(&htl, NULL, (void *)&chl))
3517 len += (silc_id_get_len(chl->client->id, SILC_ID_CLIENT) + 4);
3519 client_id_list = silc_buffer_alloc(len);
3521 silc_buffer_alloc(4 * silc_hash_table_count(channel->user_list));
3522 silc_buffer_pull_tail(client_id_list, SILC_BUFFER_END(client_id_list));
3523 silc_buffer_pull_tail(client_mode_list, SILC_BUFFER_END(client_mode_list));
3525 silc_hash_table_list(channel->user_list, &htl);
3526 while (silc_hash_table_get(&htl, NULL, (void *)&chl)) {
3528 idp = silc_id_payload_encode(chl->client->id, SILC_ID_CLIENT);
3529 silc_buffer_put(client_id_list, idp->data, idp->len);
3530 silc_buffer_pull(client_id_list, idp->len);
3531 silc_buffer_free(idp);
3533 /* Client's mode on channel */
3534 SILC_PUT32_MSB(chl->mode, client_mode_list->data);
3535 silc_buffer_pull(client_mode_list, 4);
3539 silc_buffer_push(client_id_list,
3540 client_id_list->data - client_id_list->head);
3541 silc_buffer_push(client_mode_list,
3542 client_mode_list->data - client_mode_list->head);
3544 *user_list = client_id_list;
3545 *mode_list = client_mode_list;
3546 *user_count = list_count;
3549 /* Saves users and their modes to the `channel'. */
3551 void silc_server_save_users_on_channel(SilcServer server,
3552 SilcSocketConnection sock,
3553 SilcChannelEntry channel,
3554 SilcClientID *noadd,
3555 SilcBuffer user_list,
3556 SilcBuffer mode_list,
3561 for (i = 0; i < user_count; i++) {
3564 SilcClientID *client_id;
3565 SilcClientEntry client;
3568 SILC_GET16_MSB(idp_len, user_list->data + 2);
3570 client_id = silc_id_payload_parse_id(user_list->data, idp_len);
3571 silc_buffer_pull(user_list, idp_len);
3576 SILC_GET32_MSB(mode, mode_list->data);
3577 silc_buffer_pull(mode_list, 4);
3579 if (noadd && SILC_ID_CLIENT_COMPARE(client_id, noadd)) {
3580 silc_free(client_id);
3584 /* Check if we have this client cached already. */
3585 client = silc_idlist_find_client_by_id(server->local_list, client_id,
3586 server->server_type, NULL);
3588 client = silc_idlist_find_client_by_id(server->global_list,
3589 client_id, server->server_type,
3592 /* If router did not find such Client ID in its lists then this must
3593 be bogus client or some router in the net is buggy. */
3594 if (server->server_type == SILC_ROUTER) {
3595 silc_free(client_id);
3599 /* We don't have that client anywhere, add it. The client is added
3600 to global list since server didn't have it in the lists so it must be
3602 client = silc_idlist_add_client(server->global_list, NULL, NULL, NULL,
3603 silc_id_dup(client_id, SILC_ID_CLIENT),
3604 sock->user_data, NULL);
3606 SILC_LOG_ERROR(("Could not add new client to the ID Cache"));
3607 silc_free(client_id);
3611 client->data.status |= SILC_IDLIST_STATUS_REGISTERED;
3614 silc_free(client_id);
3616 if (!silc_server_client_on_channel(client, channel)) {
3617 /* Client was not on the channel, add it. */
3618 SilcChannelClientEntry chl = silc_calloc(1, sizeof(*chl));
3619 chl->client = client;
3621 chl->channel = channel;
3622 silc_hash_table_add(channel->user_list, chl->client, chl);
3623 silc_hash_table_add(client->channels, chl->channel, chl);
3628 /* Lookups route to the client indicated by the `id_data'. The connection
3629 object and internal data object is returned. Returns NULL if route
3630 could not be found to the client. If the `client_id' is specified then
3631 it is used and the `id_data' is ignored. */
3633 SilcSocketConnection silc_server_get_client_route(SilcServer server,
3634 unsigned char *id_data,
3636 SilcClientID *client_id,
3637 SilcIDListData *idata)
3640 SilcClientEntry client;
3642 SILC_LOG_DEBUG(("Start"));
3644 /* Decode destination Client ID */
3646 id = silc_id_str2id(id_data, id_len, SILC_ID_CLIENT);
3648 SILC_LOG_ERROR(("Could not decode destination Client ID, dropped"));
3652 id = silc_id_dup(client_id, SILC_ID_CLIENT);
3655 /* If the destination belongs to our server we don't have to route
3656 the packet anywhere but to send it to the local destination. */
3657 client = silc_idlist_find_client_by_id(server->local_list, id, TRUE, NULL);
3661 /* If we are router and the client has router then the client is in
3662 our cell but not directly connected to us. */
3663 if (server->server_type == SILC_ROUTER && client->router) {
3664 /* We are of course in this case the client's router thus the route
3665 to the client is the server who owns the client. So, we will send
3666 the packet to that server. */
3668 *idata = (SilcIDListData)client->router;
3669 return client->router->connection;
3672 /* Seems that client really is directly connected to us */
3674 *idata = (SilcIDListData)client;
3675 return client->connection;
3678 /* Destination belongs to someone not in this server. If we are normal
3679 server our action is to send the packet to our router. */
3680 if (server->server_type != SILC_ROUTER && !server->standalone) {
3683 *idata = (SilcIDListData)server->router;
3684 return server->router->connection;
3687 /* We are router and we will perform route lookup for the destination
3688 and send the packet to fastest route. */
3689 if (server->server_type == SILC_ROUTER && !server->standalone) {
3690 /* Check first that the ID is valid */
3691 client = silc_idlist_find_client_by_id(server->global_list, id,
3694 SilcSocketConnection dst_sock;
3696 dst_sock = silc_server_route_get(server, id, SILC_ID_CLIENT);
3700 *idata = (SilcIDListData)dst_sock->user_data;
3709 /* Encodes and returns channel list of channels the `client' has joined.
3710 Secret channels are not put to the list. */
3712 SilcBuffer silc_server_get_client_channel_list(SilcServer server,
3713 SilcClientEntry client)
3715 SilcBuffer buffer = NULL;
3716 SilcChannelEntry channel;
3717 SilcChannelClientEntry chl;
3718 SilcHashTableList htl;
3724 silc_hash_table_list(client->channels, &htl);
3725 while (silc_hash_table_get(&htl, NULL, (void *)&chl)) {
3726 channel = chl->channel;
3728 if (channel->mode & SILC_CHANNEL_MODE_SECRET ||
3729 channel->mode & SILC_CHANNEL_MODE_PRIVATE)
3732 cid = silc_id_id2str(channel->id, SILC_ID_CHANNEL);
3733 id_len = silc_id_get_len(channel->id, SILC_ID_CHANNEL);
3734 name_len = strlen(channel->channel_name);
3736 len = 4 + name_len + id_len + 4;
3737 buffer = silc_buffer_realloc(buffer,
3738 (buffer ? (buffer)->truelen + len : len));
3739 silc_buffer_pull_tail(buffer, ((buffer)->end - (buffer)->data));
3740 silc_buffer_format(buffer,
3741 SILC_STR_UI_SHORT(name_len),
3742 SILC_STR_UI_XNSTRING(channel->channel_name,
3744 SILC_STR_UI_SHORT(id_len),
3745 SILC_STR_UI_XNSTRING(cid, id_len),
3746 SILC_STR_UI_INT(chl->mode), /* Client's mode */
3748 silc_buffer_pull(buffer, len);
3753 silc_buffer_push(buffer, buffer->data - buffer->head);
3758 /* Finds client entry by Client ID and if it is not found then resolves
3759 it using WHOIS command. */
3761 SilcClientEntry silc_server_get_client_resolve(SilcServer server,
3762 SilcClientID *client_id)
3764 SilcClientEntry client;
3766 client = silc_idlist_find_client_by_id(server->local_list, client_id,
3769 client = silc_idlist_find_client_by_id(server->global_list,
3770 client_id, TRUE, NULL);
3771 if (!client && server->server_type == SILC_ROUTER)
3775 if (!client && server->standalone)
3778 if (!client || !client->nickname || !client->username) {
3779 SilcBuffer buffer, idp;
3781 client->data.status |= SILC_IDLIST_STATUS_RESOLVING;
3782 client->data.status &= ~SILC_IDLIST_STATUS_RESOLVED;
3783 client->resolve_cmd_ident = ++server->cmd_ident;
3785 idp = silc_id_payload_encode(client_id, SILC_ID_CLIENT);
3786 buffer = silc_command_payload_encode_va(SILC_COMMAND_WHOIS,
3787 server->cmd_ident, 1,
3788 3, idp->data, idp->len);
3789 silc_server_packet_send(server, client ? client->router->connection :
3790 server->router->connection,
3791 SILC_PACKET_COMMAND, 0,
3792 buffer->data, buffer->len, FALSE);
3793 silc_buffer_free(idp);
3794 silc_buffer_free(buffer);
3801 /* A timeout callback for the re-key. We will be the initiator of the
3804 SILC_TASK_CALLBACK(silc_server_rekey_callback)
3806 SilcSocketConnection sock = (SilcSocketConnection)context;
3807 SilcIDListData idata = (SilcIDListData)sock->user_data;
3808 SilcServer server = (SilcServer)idata->rekey->context;
3809 SilcProtocol protocol;
3810 SilcServerRekeyInternalContext *proto_ctx;
3812 SILC_LOG_DEBUG(("Start"));
3814 /* Allocate internal protocol context. This is sent as context
3816 proto_ctx = silc_calloc(1, sizeof(*proto_ctx));
3817 proto_ctx->server = (void *)server;
3818 proto_ctx->sock = sock;
3819 proto_ctx->responder = FALSE;
3820 proto_ctx->pfs = idata->rekey->pfs;
3822 /* Perform rekey protocol. Will call the final callback after the
3823 protocol is over. */
3824 silc_protocol_alloc(SILC_PROTOCOL_SERVER_REKEY,
3825 &protocol, proto_ctx, silc_server_rekey_final);
3826 sock->protocol = protocol;
3828 /* Run the protocol */
3829 silc_protocol_execute(protocol, server->schedule, 0, 0);
3831 /* Re-register re-key timeout */
3832 silc_schedule_task_add(server->schedule, sock->sock,
3833 silc_server_rekey_callback,
3834 context, idata->rekey->timeout, 0,
3835 SILC_TASK_TIMEOUT, SILC_TASK_PRI_NORMAL);
3838 /* The final callback for the REKEY protocol. This will actually take the
3839 new key material into use. */
3841 SILC_TASK_CALLBACK_GLOBAL(silc_server_rekey_final)
3843 SilcProtocol protocol = (SilcProtocol)context;
3844 SilcServerRekeyInternalContext *ctx =
3845 (SilcServerRekeyInternalContext *)protocol->context;
3846 SilcServer server = (SilcServer)ctx->server;
3847 SilcSocketConnection sock = ctx->sock;
3849 SILC_LOG_DEBUG(("Start"));
3851 if (protocol->state == SILC_PROTOCOL_STATE_ERROR ||
3852 protocol->state == SILC_PROTOCOL_STATE_FAILURE) {
3853 /* Error occured during protocol */
3854 SILC_LOG_ERROR(("Error occurred during rekey protocol"));
3855 silc_protocol_cancel(protocol, server->schedule);
3856 silc_protocol_free(protocol);
3857 sock->protocol = NULL;
3859 silc_packet_context_free(ctx->packet);
3861 silc_ske_free(ctx->ske);
3866 /* Purge the outgoing data queue to assure that all rekey packets really
3867 go to the network before we quit the protocol. */
3868 silc_server_packet_queue_purge(server, sock);
3871 silc_protocol_free(protocol);
3872 sock->protocol = NULL;
3874 silc_packet_context_free(ctx->packet);
3876 silc_ske_free(ctx->ske);
projects / silc.git / blob