5 Author: Pekka Riikonen <priikone@silcnet.org>
7 Copyright (C) 1997 - 2001 Pekka Riikonen
9 This program is free software; you can redistribute it and/or modify
10 it under the terms of the GNU General Public License as published by
11 the Free Software Foundation; either version 2 of the License, or
12 (at your option) any later version.
14 This program is distributed in the hope that it will be useful,
15 but WITHOUT ANY WARRANTY; without even the implied warranty of
16 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 GNU General Public License for more details.
21 * This is the actual SILC server than handles everything relating to
22 * servicing the SILC connections. This is also a SILC router as a router
23 * is also normal server.
27 #include "serverincludes.h"
28 #include "server_internal.h"
30 /* Static prototypes */
31 SILC_TASK_CALLBACK(silc_server_connect_router);
32 SILC_TASK_CALLBACK(silc_server_connect_to_router);
33 SILC_TASK_CALLBACK(silc_server_connect_to_router_second);
34 SILC_TASK_CALLBACK(silc_server_connect_to_router_final);
35 SILC_TASK_CALLBACK(silc_server_accept_new_connection);
36 SILC_TASK_CALLBACK(silc_server_accept_new_connection_second);
37 SILC_TASK_CALLBACK(silc_server_accept_new_connection_final);
38 SILC_TASK_CALLBACK(silc_server_packet_process);
39 SILC_TASK_CALLBACK(silc_server_packet_parse_real);
40 SILC_TASK_CALLBACK(silc_server_timeout_remote);
41 SILC_TASK_CALLBACK(silc_server_failure_callback);
42 SILC_TASK_CALLBACK(silc_server_rekey_callback);
44 /* Allocates a new SILC server object. This has to be done before the server
45 can be used. After allocation one must call silc_server_init to initialize
46 the server. The new allocated server object is returned to the new_server
49 int silc_server_alloc(SilcServer *new_server)
53 SILC_LOG_DEBUG(("Allocating new server object"));
55 server = silc_calloc(1, sizeof(*server));
56 server->server_type = SILC_SERVER;
57 server->standalone = TRUE;
58 server->local_list = silc_calloc(1, sizeof(*server->local_list));
59 server->global_list = silc_calloc(1, sizeof(*server->global_list));
60 server->pending_commands = silc_dlist_init();
62 server->sim = silc_dlist_init();
70 /* Free's the SILC server object. This is called at the very end before
73 void silc_server_free(SilcServer server)
80 silc_free(server->local_list);
81 silc_free(server->global_list);
83 silc_rng_free(server->rng);
86 silc_pkcs_free(server->pkcs);
89 while ((sim = silc_dlist_get(server->sim)) != SILC_LIST_END) {
90 silc_dlist_del(server->sim, sim);
93 silc_dlist_uninit(server->sim);
96 silc_free(server->params);
98 if (server->pending_commands)
99 silc_dlist_uninit(server->pending_commands);
105 /* Initializes the entire SILC server. This is called always before running
106 the server. This is called only once at the initialization of the program.
107 This binds the server to its listenning port. After this function returns
108 one should call silc_server_run to start the server. This returns TRUE
109 when everything is ok to run the server. Configuration file must be
110 read and parsed before calling this. */
112 int silc_server_init(SilcServer server)
114 int *sock = NULL, sock_count, i;
116 SilcServerEntry id_entry;
117 SilcIDListPurge purge;
118 SilcServerConfigSectionListenPort *listen;
120 SILC_LOG_DEBUG(("Initializing server"));
122 assert(server->config);
124 /* Set public and private keys */
125 if (!server->config->server_keys ||
126 !server->config->server_keys->public_key ||
127 !server->config->server_keys->private_key) {
128 SILC_LOG_ERROR(("Server public key and/or private key does not exist"));
131 server->public_key = server->config->server_keys->public_key;
132 server->private_key = server->config->server_keys->private_key;
134 /* XXX After server is made as Silc Server Library this can be given
135 as argument, for now this is hard coded */
136 server->params = silc_calloc(1, sizeof(*server->params));
137 server->params->retry_count = SILC_SERVER_RETRY_COUNT;
138 server->params->retry_interval_min = SILC_SERVER_RETRY_INTERVAL_MIN;
139 server->params->retry_interval_max = SILC_SERVER_RETRY_INTERVAL_MAX;
140 server->params->retry_keep_trying = FALSE;
141 server->params->protocol_timeout = 60;
142 server->params->require_reverse_mapping = FALSE;
144 /* Set log files where log message should be saved. */
145 server->config->server = server;
146 silc_server_config_setlogfiles(server->config);
148 /* Register all configured ciphers, PKCS and hash functions. */
149 if (!silc_server_config_register_ciphers(server->config))
150 silc_cipher_register_default();
151 if (!silc_server_config_register_pkcs(server->config))
152 silc_pkcs_register_default();
153 if (!silc_server_config_register_hashfuncs(server->config))
154 silc_hash_register_default();
155 if (!silc_server_config_register_hmacs(server->config))
156 silc_hmac_register_default();
158 /* Initialize random number generator for the server. */
159 server->rng = silc_rng_alloc();
160 silc_rng_init(server->rng);
161 silc_rng_global_init(server->rng);
163 /* Initialize hash functions for server to use */
164 silc_hash_alloc("md5", &server->md5hash);
165 silc_hash_alloc("sha1", &server->sha1hash);
167 /* Initialize none cipher */
168 silc_cipher_alloc("none", &server->none_cipher);
170 /* Allocate PKCS context for local public and private keys */
171 silc_pkcs_alloc(server->public_key->name, &server->pkcs);
172 silc_pkcs_public_key_set(server->pkcs, server->public_key);
173 silc_pkcs_private_key_set(server->pkcs, server->private_key);
175 /* Create a listening server. Note that our server can listen on multiple
176 ports. All listeners are created here and now. */
178 listen = server->config->listen_port;
182 tmp = silc_net_create_server(server->config->listen_port->port,
183 server->config->listen_port->listener_ip);
186 SILC_LOG_ERROR(("Could not create server listener: %s on %d",
187 server->config->listen_port->listener_ip,
188 server->config->listen_port->port));
192 sock = silc_realloc(sock, sizeof(*sock) * (sock_count + 1));
193 sock[sock_count] = tmp;
195 listen = listen->next;
198 /* Initialize ID caches */
199 server->local_list->clients =
200 silc_idcache_alloc(0, SILC_ID_CLIENT, silc_idlist_client_destructor);
201 server->local_list->servers = silc_idcache_alloc(0, SILC_ID_SERVER, NULL);
202 server->local_list->channels = silc_idcache_alloc(0, SILC_ID_CHANNEL, NULL);
204 /* These are allocated for normal server as well as these hold some
205 global information that the server has fetched from its router. For
206 router these are used as they are supposed to be used on router. */
207 server->global_list->clients =
208 silc_idcache_alloc(0, SILC_ID_CLIENT, silc_idlist_client_destructor);
209 server->global_list->servers = silc_idcache_alloc(0, SILC_ID_SERVER, NULL);
210 server->global_list->channels = silc_idcache_alloc(0, SILC_ID_CHANNEL, NULL);
212 /* Allocate the entire socket list that is used in server. Eventually
213 all connections will have entry in this table (it is a table of
214 pointers to the actual object that is allocated individually
216 server->sockets = silc_calloc(SILC_SERVER_MAX_CONNECTIONS,
217 sizeof(*server->sockets));
219 for (i = 0; i < sock_count; i++) {
220 SilcSocketConnection newsocket = NULL;
222 /* Set socket to non-blocking mode */
223 silc_net_set_socket_nonblock(sock[i]);
224 server->sock = sock[i];
226 /* Add ourselves also to the socket table. The entry allocated above
227 is sent as argument for fast referencing in the future. */
228 silc_socket_alloc(sock[i], SILC_SOCKET_TYPE_SERVER, NULL, &newsocket);
229 server->sockets[sock[i]] = newsocket;
231 /* Perform name and address lookups to resolve the listenning address
233 if (!silc_net_check_local_by_sock(sock[i], &newsocket->hostname,
235 if ((server->params->require_reverse_mapping && !newsocket->hostname) ||
237 SILC_LOG_ERROR(("IP/DNS lookup failed for local host %s",
238 newsocket->hostname ? newsocket->hostname :
239 newsocket->ip ? newsocket->ip : ""));
240 server->stat.conn_failures++;
243 if (!newsocket->hostname)
244 newsocket->hostname = strdup(newsocket->ip);
246 newsocket->port = silc_net_get_local_port(sock[i]);
248 /* Create a Server ID for the server. */
249 silc_id_create_server_id(newsocket->ip, newsocket->port, server->rng, &id);
254 server->id_string = silc_id_id2str(id, SILC_ID_SERVER);
255 server->id_string_len = silc_id_get_len(id, SILC_ID_SERVER);
256 server->id_type = SILC_ID_SERVER;
257 server->server_name = server->config->server_info->server_name;
259 /* Add ourselves to the server list. We don't have a router yet
260 beacuse we haven't established a route yet. It will be done later.
261 For now, NULL is sent as router. This allocates new entry to
264 silc_idlist_add_server(server->local_list,
265 server->config->server_info->server_name,
266 server->server_type, server->id, NULL, NULL);
268 SILC_LOG_ERROR(("Could not add ourselves to cache"));
271 id_entry->data.status |= SILC_IDLIST_STATUS_REGISTERED;
273 /* Put the allocated socket pointer also to the entry allocated above
274 for fast back-referencing to the socket list. */
275 newsocket->user_data = (void *)id_entry;
276 id_entry->connection = (void *)newsocket;
277 server->id_entry = id_entry;
280 /* Register protocols */
281 silc_server_protocols_register();
283 /* Initialize the scheduler. */
284 server->schedule = silc_schedule_init(SILC_SERVER_MAX_CONNECTIONS);
285 if (!server->schedule)
288 /* Add the first task to the scheduler. This is task that is executed by
289 timeout. It expires as soon as the caller calls silc_server_run. This
290 task performs authentication protocol and key exchange with our
292 silc_schedule_task_add(server->schedule, sock[0],
293 silc_server_connect_to_router,
294 (void *)server, 0, 1,
296 SILC_TASK_PRI_NORMAL);
298 /* Add listener task to the scheduler. This task receives new connections
299 to the server. This task remains on the queue until the end of the
301 silc_schedule_task_add(server->schedule, sock[0],
302 silc_server_accept_new_connection,
303 (void *)server, 0, 0,
305 SILC_TASK_PRI_NORMAL);
306 server->listenning = TRUE;
308 /* If server connections has been configured then we must be router as
309 normal server cannot have server connections, only router connections. */
310 if (server->config->servers) {
311 SilcServerConfigSectionServerConnection *ptr = server->config->servers;
313 server->server_type = SILC_ROUTER;
315 if (ptr->backup_router) {
316 server->server_type = SILC_BACKUP_ROUTER;
317 server->backup_router = TRUE;
318 server->id_entry->server_type = SILC_BACKUP_ROUTER;
325 /* Register the ID Cache purge task. This periodically purges the ID cache
326 and removes the expired cache entries. */
328 /* Clients local list */
329 purge = silc_calloc(1, sizeof(*purge));
330 purge->cache = server->local_list->clients;
331 purge->schedule = server->schedule;
332 purge->timeout = 600;
333 silc_schedule_task_add(purge->schedule, 0,
335 (void *)purge, purge->timeout, 0,
336 SILC_TASK_TIMEOUT, SILC_TASK_PRI_LOW);
338 /* Clients global list */
339 purge = silc_calloc(1, sizeof(*purge));
340 purge->cache = server->global_list->clients;
341 purge->schedule = server->schedule;
342 purge->timeout = 300;
343 silc_schedule_task_add(purge->schedule, 0,
345 (void *)purge, purge->timeout, 0,
346 SILC_TASK_TIMEOUT, SILC_TASK_PRI_LOW);
348 SILC_LOG_DEBUG(("Server initialized"));
350 /* We are done here, return succesfully */
354 for (i = 0; i < sock_count; i++)
355 silc_net_close_server(sock[i]);
360 /* Fork server to background */
362 void silc_server_daemonise(SilcServer server)
366 SILC_LOG_DEBUG(("Forking SILC server to background"));
371 SILC_LOG_DEBUG(("fork() failed, cannot proceed"));
376 SILC_LOG_DEBUG(("Server started as user"));
378 SILC_LOG_DEBUG(("Server started as root. Dropping privileges."));
384 /* Drop root privligies. If this cannot be done, die. */
386 void silc_server_drop(SilcServer server)
388 /* Are we executing silcd as root or a regular user? */
394 if (!server->config->identity || !server->config->identity->user ||
395 !server->config->identity->group) {
396 fprintf(stderr, "Error:"
397 "\tSILC server must not be run as root. For the security of your\n"
398 "\tsystem it is strongly suggested that you run SILC under dedicated\n"
399 "\tuser account. Modify the [Identity] configuration section to run\n"
400 "\tthe server as non-root user.\n");
404 /* Get the values given for user and group in configuration file */
405 user=server->config->identity->user;
406 group=server->config->identity->group;
408 /* Check whether the user/group information is text */
409 if (atoi(user)!=0 || atoi(group)!=0) {
410 SILC_LOG_DEBUG(("Invalid user and/or group information"));
411 SILC_LOG_DEBUG(("User and/or group given as number"));
412 fprintf(stderr, "Invalid user and/or group information\n");
413 fprintf(stderr, "Please assign them as names, not numbers\n");
417 /* Catch the nasty incident of string "0" returning 0 from atoi */
418 if (strcmp("0", user)==0 || strcmp("0", group)==0) {
419 SILC_LOG_DEBUG(("User and/or group configured to 0. Unacceptable"));
420 fprintf(stderr, "User and/or group configured to 0. Exiting\n");
424 if (!(pw=getpwnam(user))) {
425 fprintf(stderr, "No such user %s found\n", user);
429 if (!(gr=getgrnam(group))) {
430 fprintf(stderr, "No such group %s found\n", group);
434 /* Check whether user and/or group is set to root. If yes, exit
435 immediately. Otherwise, setgid and setuid server to user.group */
436 if (gr->gr_gid==0 || pw->pw_uid==0) {
437 fprintf(stderr, "Error:"
438 "\tSILC server must not be run as root. For the security of your\n"
439 "\tsystem it is strongly suggested that you run SILC under dedicated\n"
440 "\tuser account. Modify the [Identity] configuration section to run\n"
441 "\tthe server as non-root user.\n");
444 SILC_LOG_DEBUG(("Changing to group %s", group));
445 if (setgid(gr->gr_gid)==0) {
446 SILC_LOG_DEBUG(("Setgid to %s", group));
448 SILC_LOG_DEBUG(("Setgid to %s failed", group));
449 fprintf(stderr, "Tried to setgid %s but no such group. Exiting\n",
453 #if defined HAVE_SETGROUPS && defined HAVE_INITGROUPS
454 if (setgroups(0, NULL)!=0) {
455 SILC_LOG_DEBUG(("Setgroups to NULL failed"));
456 fprintf(stderr, "Tried to setgroups NULL but failed. Exiting\n");
459 if (initgroups(user, gr->gr_gid)!=0) {
460 SILC_LOG_DEBUG(("Initgroups to user %s (gid=%d) failed", user, gr->gr_gid));
461 fprintf(stderr, "Tried to initgroups %s (gid=%d) but no such user. Exiting\n",
466 SILC_LOG_DEBUG(("Changing to user %s", user));
467 if (setuid(pw->pw_uid)==0) {
468 SILC_LOG_DEBUG(("Setuid to %s", user));
470 SILC_LOG_DEBUG(("Setuid to %s failed", user));
471 fprintf(stderr, "Tried to setuid %s but no such user. Exiting\n",
479 /* The heart of the server. This runs the scheduler thus runs the server.
480 When this returns the server has been stopped and the program will
483 void silc_server_run(SilcServer server)
485 SILC_LOG_DEBUG(("Running server"));
487 SILC_LOG_INFO(("SILC Server started"));
489 /* Start the scheduler, the heart of the SILC server. When this returns
490 the program will be terminated. */
491 silc_schedule(server->schedule);
494 /* Stops the SILC server. This function is used to shutdown the server.
495 This is usually called after the scheduler has returned. After stopping
496 the server one should call silc_server_free. */
498 void silc_server_stop(SilcServer server)
500 SILC_LOG_DEBUG(("Stopping server"));
502 silc_schedule_stop(server->schedule);
503 silc_schedule_uninit(server->schedule);
505 silc_server_protocols_unregister();
507 SILC_LOG_DEBUG(("Server stopped"));
510 /* Function that is called when the network connection to a router has
511 been established. This will continue with the key exchange protocol
512 with the remote router. */
514 void silc_server_start_key_exchange(SilcServer server,
515 SilcServerConnection sconn,
518 SilcSocketConnection newsocket;
519 SilcProtocol protocol;
520 SilcServerKEInternalContext *proto_ctx;
523 /* Set socket options */
524 silc_net_set_socket_nonblock(sock);
525 silc_net_set_socket_opt(sock, SOL_SOCKET, SO_REUSEADDR, 1);
527 /* Create socket connection for the connection. Even though we
528 know that we are connecting to a router we will mark the socket
529 to be unknown connection until we have executed authentication
531 silc_socket_alloc(sock, SILC_SOCKET_TYPE_UNKNOWN, NULL, &newsocket);
532 server->sockets[sock] = newsocket;
533 newsocket->hostname = strdup(sconn->remote_host);
534 newsocket->ip = strdup(sconn->remote_host);
535 newsocket->port = sconn->remote_port;
536 sconn->sock = newsocket;
538 /* Allocate internal protocol context. This is sent as context
540 proto_ctx = silc_calloc(1, sizeof(*proto_ctx));
541 proto_ctx->server = (void *)server;
542 proto_ctx->context = (void *)sconn;
543 proto_ctx->sock = newsocket;
544 proto_ctx->rng = server->rng;
545 proto_ctx->responder = FALSE;
547 /* Perform key exchange protocol. silc_server_connect_to_router_second
548 will be called after the protocol is finished. */
549 silc_protocol_alloc(SILC_PROTOCOL_SERVER_KEY_EXCHANGE,
550 &protocol, proto_ctx,
551 silc_server_connect_to_router_second);
552 newsocket->protocol = protocol;
554 /* Register a timeout task that will be executed if the protocol
555 is not executed within set limit. */
556 proto_ctx->timeout_task =
557 silc_schedule_task_add(server->schedule, sock,
558 silc_server_timeout_remote,
559 server, server->params->protocol_timeout,
560 server->params->protocol_timeout_usec,
564 /* Register the connection for network input and output. This sets
565 that scheduler will listen for incoming packets for this connection
566 and sets that outgoing packets may be sent to this connection as
567 well. However, this doesn't set the scheduler for outgoing traffic,
568 it will be set separately by calling SILC_SET_CONNECTION_FOR_OUTPUT,
569 later when outgoing data is available. */
570 context = (void *)server;
571 SILC_REGISTER_CONNECTION_FOR_IO(sock);
573 /* Run the protocol */
574 silc_protocol_execute(protocol, server->schedule, 0, 0);
577 /* Timeout callback that will be called to retry connecting to remote
578 router. This is used by both normal and router server. This will wait
579 before retrying the connecting. The timeout is generated by exponential
580 backoff algorithm. */
582 SILC_TASK_CALLBACK(silc_server_connect_to_router_retry)
584 SilcServerConnection sconn = (SilcServerConnection)context;
585 SilcServer server = sconn->server;
587 SILC_LOG_INFO(("Retrying connecting to a router"));
589 /* Calculate next timeout */
590 if (sconn->retry_count >= 1) {
591 sconn->retry_timeout = sconn->retry_timeout * SILC_SERVER_RETRY_MULTIPLIER;
592 if (sconn->retry_timeout > SILC_SERVER_RETRY_INTERVAL_MAX)
593 sconn->retry_timeout = SILC_SERVER_RETRY_INTERVAL_MAX;
595 sconn->retry_timeout = server->params->retry_interval_min;
597 sconn->retry_count++;
598 sconn->retry_timeout = sconn->retry_timeout +
599 silc_rng_get_rn32(server->rng) % SILC_SERVER_RETRY_RANDOMIZER;
601 /* If we've reached max retry count, give up. */
602 if (sconn->retry_count > server->params->retry_count &&
603 server->params->retry_keep_trying == FALSE) {
604 SILC_LOG_ERROR(("Could not connect to router, giving up"));
605 silc_free(sconn->remote_host);
610 /* Wait one before retrying */
611 silc_schedule_task_add(server->schedule, fd, silc_server_connect_router,
612 context, sconn->retry_timeout,
613 server->params->retry_interval_min_usec,
614 SILC_TASK_TIMEOUT, SILC_TASK_PRI_NORMAL);
617 /* Generic routine to use connect to a router. */
619 SILC_TASK_CALLBACK(silc_server_connect_router)
621 SilcServerConnection sconn = (SilcServerConnection)context;
622 SilcServer server = sconn->server;
625 SILC_LOG_INFO(("Connecting to the %s %s on port %d",
626 (sconn->backup ? "backup router" : "router"),
627 sconn->remote_host, sconn->remote_port));
629 server->router_connect = time(0);
631 /* Connect to remote host */
632 sock = silc_net_create_connection(server->config->listen_port->local_ip,
636 SILC_LOG_ERROR(("Could not connect to router"));
637 silc_schedule_task_add(server->schedule, fd,
638 silc_server_connect_to_router_retry,
639 context, 0, 1, SILC_TASK_TIMEOUT,
640 SILC_TASK_PRI_NORMAL);
644 /* Continue with key exchange protocol */
645 silc_server_start_key_exchange(server, sconn, sock);
648 /* This function connects to our primary router or if we are a router this
649 establishes all our primary routes. This is called at the start of the
650 server to do authentication and key exchange with our router - called
653 SILC_TASK_CALLBACK(silc_server_connect_to_router)
655 SilcServer server = (SilcServer)context;
656 SilcServerConnection sconn;
657 SilcServerConfigSectionServerConnection *ptr;
659 SILC_LOG_DEBUG(("Connecting to router(s)"));
661 if (server->server_type == SILC_SERVER) {
662 SILC_LOG_DEBUG(("We are normal server"));
663 } else if (server->server_type == SILC_ROUTER) {
664 SILC_LOG_DEBUG(("We are router"));
666 SILC_LOG_DEBUG(("We are backup router/normal server"));
669 /* Create the connections to all our routes */
670 ptr = server->config->routers;
673 SILC_LOG_DEBUG(("%s connection [%s] %s:%d",
674 ptr->backup_router ? "Backup router" : "Router",
675 ptr->initiator ? "Initiator" : "Responder",
676 ptr->host, ptr->port));
678 if (ptr->initiator) {
679 /* Allocate connection object for hold connection specific stuff. */
680 sconn = silc_calloc(1, sizeof(*sconn));
681 sconn->server = server;
682 sconn->remote_host = strdup(ptr->host);
683 sconn->remote_port = ptr->port;
684 sconn->backup = ptr->backup_router;
686 sconn->backup_replace_ip = strdup(ptr->backup_replace_ip);
687 sconn->backup_replace_port = ptr->backup_replace_port;
690 if (!server->router_conn && !sconn->backup)
691 server->router_conn = sconn;
693 silc_schedule_task_add(server->schedule, fd,
694 silc_server_connect_router,
695 (void *)sconn, 0, 1, SILC_TASK_TIMEOUT,
696 SILC_TASK_PRI_NORMAL);
705 SILC_LOG_DEBUG(("No router(s), server will be standalone"));
707 /* There wasn't a configured router, we will continue but we don't
708 have a connection to outside world. We will be standalone server. */
709 server->standalone = TRUE;
712 /* Second part of connecting to router(s). Key exchange protocol has been
713 executed and now we will execute authentication protocol. */
715 SILC_TASK_CALLBACK(silc_server_connect_to_router_second)
717 SilcProtocol protocol = (SilcProtocol)context;
718 SilcServerKEInternalContext *ctx =
719 (SilcServerKEInternalContext *)protocol->context;
720 SilcServer server = (SilcServer)ctx->server;
721 SilcServerConnection sconn = (SilcServerConnection)ctx->context;
722 SilcSocketConnection sock = ctx->sock;
723 SilcServerConnAuthInternalContext *proto_ctx;
724 SilcServerConfigSectionServerConnection *conn = NULL;
726 SILC_LOG_DEBUG(("Start"));
728 if (protocol->state == SILC_PROTOCOL_STATE_ERROR ||
729 protocol->state == SILC_PROTOCOL_STATE_FAILURE) {
730 /* Error occured during protocol */
731 silc_protocol_free(protocol);
732 sock->protocol = NULL;
733 silc_ske_free_key_material(ctx->keymat);
735 silc_packet_context_free(ctx->packet);
737 silc_ske_free(ctx->ske);
738 silc_free(ctx->dest_id);
740 silc_schedule_task_del_by_callback(server->schedule,
741 silc_server_failure_callback);
742 silc_server_disconnect_remote(server, sock, "Server closed connection: "
743 "Key exchange failed");
747 /* We now have the key material as the result of the key exchange
748 protocol. Take the key material into use. Free the raw key material
749 as soon as we've set them into use. */
750 if (!silc_server_protocol_ke_set_keys(server, ctx->ske,
751 ctx->sock, ctx->keymat,
752 ctx->ske->prop->cipher,
753 ctx->ske->prop->pkcs,
754 ctx->ske->prop->hash,
755 ctx->ske->prop->hmac,
756 ctx->ske->prop->group,
758 silc_protocol_free(protocol);
759 sock->protocol = NULL;
760 silc_ske_free_key_material(ctx->keymat);
762 silc_packet_context_free(ctx->packet);
764 silc_ske_free(ctx->ske);
765 silc_free(ctx->dest_id);
767 silc_schedule_task_del_by_callback(server->schedule,
768 silc_server_failure_callback);
769 silc_server_disconnect_remote(server, sock, "Server closed connection: "
770 "Key exchange failed");
773 silc_ske_free_key_material(ctx->keymat);
775 /* Allocate internal context for the authentication protocol. This
776 is sent as context for the protocol. */
777 proto_ctx = silc_calloc(1, sizeof(*proto_ctx));
778 proto_ctx->server = (void *)server;
779 proto_ctx->context = (void *)sconn;
780 proto_ctx->sock = sock;
781 proto_ctx->ske = ctx->ske; /* Save SKE object from previous protocol */
782 proto_ctx->dest_id_type = ctx->dest_id_type;
783 proto_ctx->dest_id = ctx->dest_id;
785 /* Resolve the authentication method used in this connection. Check if
786 we find a match from user configured connections */
787 conn = silc_server_config_find_router_conn(server->config,
791 /* Match found. Use the configured authentication method */
792 proto_ctx->auth_meth = conn->auth_meth;
793 if (conn->auth_data) {
794 proto_ctx->auth_data = strdup(conn->auth_data);
795 proto_ctx->auth_data_len = strlen(conn->auth_data);
798 SILC_LOG_ERROR(("Could not find connection data for %s (%s) on port",
799 sock->hostname, sock->ip, sock->port));
800 silc_protocol_free(protocol);
801 sock->protocol = NULL;
803 silc_packet_context_free(ctx->packet);
805 silc_ske_free(ctx->ske);
806 silc_free(ctx->dest_id);
808 silc_schedule_task_del_by_callback(server->schedule,
809 silc_server_failure_callback);
810 silc_server_disconnect_remote(server, sock, "Server closed connection: "
811 "Key exchange failed");
815 /* Free old protocol as it is finished now */
816 silc_protocol_free(protocol);
818 silc_packet_context_free(ctx->packet);
820 sock->protocol = NULL;
822 /* Allocate the authentication protocol. This is allocated here
823 but we won't start it yet. We will be receiving party of this
824 protocol thus we will wait that connecting party will make
826 silc_protocol_alloc(SILC_PROTOCOL_SERVER_CONNECTION_AUTH,
827 &sock->protocol, proto_ctx,
828 silc_server_connect_to_router_final);
830 /* Register timeout task. If the protocol is not executed inside
831 this timelimit the connection will be terminated. Currently
832 this is 15 seconds and is hard coded limit (XXX). */
833 proto_ctx->timeout_task =
834 silc_schedule_task_add(server->schedule, sock->sock,
835 silc_server_timeout_remote,
836 (void *)server, 15, 0,
840 /* Run the protocol */
841 silc_protocol_execute(sock->protocol, server->schedule, 0, 0);
844 /* Finalizes the connection to router. Registers a server task to the
845 queue so that we can accept new connections. */
847 SILC_TASK_CALLBACK(silc_server_connect_to_router_final)
849 SilcProtocol protocol = (SilcProtocol)context;
850 SilcServerConnAuthInternalContext *ctx =
851 (SilcServerConnAuthInternalContext *)protocol->context;
852 SilcServer server = (SilcServer)ctx->server;
853 SilcServerConnection sconn = (SilcServerConnection)ctx->context;
854 SilcSocketConnection sock = ctx->sock;
855 SilcServerEntry id_entry;
857 SilcServerHBContext hb_context;
858 unsigned char *id_string;
860 SilcIDListData idata;
862 SILC_LOG_DEBUG(("Start"));
864 if (protocol->state == SILC_PROTOCOL_STATE_ERROR ||
865 protocol->state == SILC_PROTOCOL_STATE_FAILURE) {
866 /* Error occured during protocol */
867 silc_free(ctx->dest_id);
868 silc_server_disconnect_remote(server, sock, "Server closed connection: "
869 "Authentication failed");
873 /* Add a task to the queue. This task receives new connections to the
874 server. This task remains on the queue until the end of the program. */
875 if (!server->listenning && !sconn->backup) {
876 silc_schedule_task_add(server->schedule, server->sock,
877 silc_server_accept_new_connection,
878 (void *)server, 0, 0,
880 SILC_TASK_PRI_NORMAL);
881 server->listenning = TRUE;
884 /* Send NEW_SERVER packet to the router. We will become registered
885 to the SILC network after sending this packet. */
886 id_string = silc_id_id2str(server->id, SILC_ID_SERVER);
887 id_len = silc_id_get_len(server->id, SILC_ID_SERVER);
888 packet = silc_buffer_alloc(2 + 2 + id_len + strlen(server->server_name));
889 silc_buffer_pull_tail(packet, SILC_BUFFER_END(packet));
890 silc_buffer_format(packet,
891 SILC_STR_UI_SHORT(id_len),
892 SILC_STR_UI_XNSTRING(id_string, id_len),
893 SILC_STR_UI_SHORT(strlen(server->server_name)),
894 SILC_STR_UI_XNSTRING(server->server_name,
895 strlen(server->server_name)),
898 /* Send the packet */
899 silc_server_packet_send(server, ctx->sock, SILC_PACKET_NEW_SERVER, 0,
900 packet->data, packet->len, TRUE);
901 silc_buffer_free(packet);
902 silc_free(id_string);
904 SILC_LOG_INFO(("Connected to router %s", sock->hostname));
906 /* Check that we do not have this ID already */
907 id_entry = silc_idlist_find_server_by_id(server->local_list,
908 ctx->dest_id, TRUE, NULL);
910 silc_idcache_del_by_context(server->local_list->servers, id_entry);
912 id_entry = silc_idlist_find_server_by_id(server->global_list,
913 ctx->dest_id, TRUE, NULL);
915 silc_idcache_del_by_context(server->global_list->servers, id_entry);
918 SILC_LOG_DEBUG(("New server id(%s)",
919 silc_id_render(ctx->dest_id, SILC_ID_SERVER)));
921 /* Add the connected router to global server list */
922 id_entry = silc_idlist_add_server(server->global_list,
923 strdup(sock->hostname),
924 SILC_ROUTER, ctx->dest_id, NULL, sock);
926 silc_free(ctx->dest_id);
927 silc_server_disconnect_remote(server, sock, "Server closed connection: "
928 "Authentication failed");
932 silc_idlist_add_data(id_entry, (SilcIDListData)sock->user_data);
933 silc_free(sock->user_data);
934 sock->user_data = (void *)id_entry;
935 sock->type = SILC_SOCKET_TYPE_ROUTER;
936 idata = (SilcIDListData)sock->user_data;
937 idata->status |= SILC_IDLIST_STATUS_REGISTERED;
939 /* Perform keepalive. The `hb_context' will be freed automatically
940 when finally calling the silc_socket_free function. XXX hardcoded
942 hb_context = silc_calloc(1, sizeof(*hb_context));
943 hb_context->server = server;
944 silc_socket_set_heartbeat(sock, 600, hb_context,
945 silc_server_perform_heartbeat,
948 /* Register re-key timeout */
949 idata->rekey->timeout = 3600; /* XXX hardcoded */
950 idata->rekey->context = (void *)server;
951 silc_schedule_task_add(server->schedule, sock->sock,
952 silc_server_rekey_callback,
953 (void *)sock, idata->rekey->timeout, 0,
954 SILC_TASK_TIMEOUT, SILC_TASK_PRI_NORMAL);
956 if (!sconn->backup) {
957 /* Mark this router our primary router if we're still standalone */
958 if (server->standalone) {
959 server->id_entry->router = id_entry;
960 server->router = id_entry;
961 server->standalone = FALSE;
963 /* If we are router then announce our possible servers. */
964 if (server->server_type == SILC_ROUTER)
965 silc_server_announce_servers(server, FALSE, 0,
966 server->router->connection);
968 /* Announce our clients and channels to the router */
969 silc_server_announce_clients(server, 0, server->router->connection);
970 silc_server_announce_channels(server, 0, server->router->connection);
973 /* Add this server to be our backup router */
974 silc_server_backup_add(server, id_entry, sconn->backup_replace_ip,
975 sconn->backup_replace_port, FALSE);
978 sock->protocol = NULL;
980 /* Call the completion callback to indicate that we've connected to
983 (*sconn->callback)(server, id_entry, sconn->callback_context);
986 /* Free the temporary connection data context */
988 silc_free(sconn->remote_host);
989 silc_free(sconn->backup_replace_ip);
992 if (sconn == server->router_conn)
993 server->router_conn = NULL;
995 /* Free the protocol object */
996 if (sock->protocol == protocol)
997 sock->protocol = NULL;
998 silc_protocol_free(protocol);
1000 silc_packet_context_free(ctx->packet);
1002 silc_ske_free(ctx->ske);
1003 silc_free(ctx->auth_data);
1007 /* Host lookup callbcak that is called after the incoming connection's
1008 IP and FQDN lookup is performed. This will actually check the acceptance
1009 of the incoming connection and will register the key exchange protocol
1010 for this connection. */
1013 silc_server_accept_new_connection_lookup(SilcSocketConnection sock,
1016 SilcServer server = (SilcServer)context;
1017 SilcServerKEInternalContext *proto_ctx;
1018 void *cconfig, *sconfig, *rconfig;
1019 SilcServerConfigSectionDenyConnection *deny;
1022 SILC_LOG_DEBUG(("Start"));
1024 /* Check whether we could resolve both IP and FQDN. */
1025 if (!sock->ip || (!strcmp(sock->ip, sock->hostname) &&
1026 server->params->require_reverse_mapping)) {
1027 SILC_LOG_ERROR(("IP/DNS lookup failed %s",
1028 sock->hostname ? sock->hostname :
1029 sock->ip ? sock->ip : ""));
1030 server->stat.conn_failures++;
1031 silc_server_disconnect_remote(server, sock,
1032 "Server closed connection: Unknown host");
1036 /* Register the connection for network input and output. This sets
1037 that scheduler will listen for incoming packets for this connection
1038 and sets that outgoing packets may be sent to this connection as well.
1039 However, this doesn't set the scheduler for outgoing traffic, it
1040 will be set separately by calling SILC_SET_CONNECTION_FOR_OUTPUT,
1041 later when outgoing data is available. */
1042 SILC_REGISTER_CONNECTION_FOR_IO(sock->sock);
1044 SILC_LOG_INFO(("Incoming connection from %s (%s)", sock->hostname,
1047 port = server->sockets[server->sock]->port; /* Listenning port */
1049 /* Check whether this connection is denied to connect to us. */
1050 deny = silc_server_config_denied_conn(server->config, sock->ip, port);
1052 deny = silc_server_config_denied_conn(server->config, sock->hostname,
1055 /* The connection is denied */
1056 SILC_LOG_INFO(("Connection %s (%s) is denied",
1057 sock->hostname, sock->ip));
1058 silc_server_disconnect_remote(server, sock, deny->comment ?
1060 "Server closed connection: "
1061 "Connection refused");
1062 server->stat.conn_failures++;
1066 /* Check whether we have configred this sort of connection at all. We
1067 have to check all configurations since we don't know what type of
1068 connection this is. */
1069 if (!(cconfig = silc_server_config_find_client_conn(server->config,
1071 cconfig = silc_server_config_find_client_conn(server->config,
1074 if (!(sconfig = silc_server_config_find_server_conn(server->config,
1077 sconfig = silc_server_config_find_server_conn(server->config,
1080 if (!(rconfig = silc_server_config_find_router_conn(server->config,
1082 rconfig = silc_server_config_find_router_conn(server->config,
1085 if (!cconfig && !sconfig && !rconfig) {
1086 SILC_LOG_INFO(("Connection %s (%s) is not allowed",
1087 sock->hostname, sock->ip));
1088 silc_server_disconnect_remote(server, sock,
1089 "Server closed connection: "
1090 "Connection refused");
1091 server->stat.conn_failures++;
1095 /* The connection is allowed */
1097 /* Allocate internal context for key exchange protocol. This is
1098 sent as context for the protocol. */
1099 proto_ctx = silc_calloc(1, sizeof(*proto_ctx));
1100 proto_ctx->server = context;
1101 proto_ctx->sock = sock;
1102 proto_ctx->rng = server->rng;
1103 proto_ctx->responder = TRUE;
1104 proto_ctx->cconfig = cconfig;
1105 proto_ctx->sconfig = sconfig;
1106 proto_ctx->rconfig = rconfig;
1108 /* Prepare the connection for key exchange protocol. We allocate the
1109 protocol but will not start it yet. The connector will be the
1110 initiator of the protocol thus we will wait for initiation from
1111 there before we start the protocol. */
1112 server->stat.auth_attempts++;
1113 silc_protocol_alloc(SILC_PROTOCOL_SERVER_KEY_EXCHANGE,
1114 &sock->protocol, proto_ctx,
1115 silc_server_accept_new_connection_second);
1117 /* Register a timeout task that will be executed if the connector
1118 will not start the key exchange protocol within 60 seconds. For
1119 now, this is a hard coded limit. After 60 secs the connection will
1120 be closed if the key exchange protocol has not been started. */
1121 proto_ctx->timeout_task =
1122 silc_schedule_task_add(server->schedule, sock->sock,
1123 silc_server_timeout_remote,
1129 /* Accepts new connections to the server. Accepting new connections are
1130 done in three parts to make it async. */
1132 SILC_TASK_CALLBACK(silc_server_accept_new_connection)
1134 SilcServer server = (SilcServer)context;
1135 SilcSocketConnection newsocket;
1138 SILC_LOG_DEBUG(("Accepting new connection"));
1140 server->stat.conn_attempts++;
1142 sock = silc_net_accept_connection(server->sock);
1144 SILC_LOG_ERROR(("Could not accept new connection: %s", strerror(errno)));
1145 server->stat.conn_failures++;
1149 /* Check max connections */
1150 if (sock > SILC_SERVER_MAX_CONNECTIONS) {
1151 SILC_LOG_ERROR(("Refusing connection, server is full"));
1152 server->stat.conn_failures++;
1156 /* Set socket options */
1157 silc_net_set_socket_nonblock(sock);
1158 silc_net_set_socket_opt(sock, SOL_SOCKET, SO_REUSEADDR, 1);
1160 /* We don't create a ID yet, since we don't know what type of connection
1161 this is yet. But, we do add the connection to the socket table. */
1162 silc_socket_alloc(sock, SILC_SOCKET_TYPE_UNKNOWN, NULL, &newsocket);
1163 server->sockets[sock] = newsocket;
1165 /* Perform asynchronous host lookup. This will lookup the IP and the
1166 FQDN of the remote connection. After the lookup is done the connection
1167 is accepted further. */
1168 silc_socket_host_lookup(newsocket, TRUE,
1169 silc_server_accept_new_connection_lookup, context,
1173 /* Second part of accepting new connection. Key exchange protocol has been
1174 performed and now it is time to do little connection authentication
1175 protocol to figure out whether this connection is client or server
1176 and whether it has right to access this server (especially server
1177 connections needs to be authenticated). */
1179 SILC_TASK_CALLBACK(silc_server_accept_new_connection_second)
1181 SilcProtocol protocol = (SilcProtocol)context;
1182 SilcServerKEInternalContext *ctx =
1183 (SilcServerKEInternalContext *)protocol->context;
1184 SilcServer server = (SilcServer)ctx->server;
1185 SilcSocketConnection sock = ctx->sock;
1186 SilcServerConnAuthInternalContext *proto_ctx;
1188 SILC_LOG_DEBUG(("Start"));
1190 if (protocol->state == SILC_PROTOCOL_STATE_ERROR ||
1191 protocol->state == SILC_PROTOCOL_STATE_FAILURE) {
1192 /* Error occured during protocol */
1193 silc_protocol_free(protocol);
1194 sock->protocol = NULL;
1195 silc_ske_free_key_material(ctx->keymat);
1197 silc_packet_context_free(ctx->packet);
1199 silc_ske_free(ctx->ske);
1200 silc_free(ctx->dest_id);
1202 silc_schedule_task_del_by_callback(server->schedule,
1203 silc_server_failure_callback);
1204 silc_server_disconnect_remote(server, sock, "Server closed connection: "
1205 "Key exchange failed");
1206 server->stat.auth_failures++;
1210 /* We now have the key material as the result of the key exchange
1211 protocol. Take the key material into use. Free the raw key material
1212 as soon as we've set them into use. */
1213 if (!silc_server_protocol_ke_set_keys(server, ctx->ske,
1214 ctx->sock, ctx->keymat,
1215 ctx->ske->prop->cipher,
1216 ctx->ske->prop->pkcs,
1217 ctx->ske->prop->hash,
1218 ctx->ske->prop->hmac,
1219 ctx->ske->prop->group,
1221 silc_protocol_free(protocol);
1222 sock->protocol = NULL;
1223 silc_ske_free_key_material(ctx->keymat);
1225 silc_packet_context_free(ctx->packet);
1227 silc_ske_free(ctx->ske);
1228 silc_free(ctx->dest_id);
1230 silc_schedule_task_del_by_callback(server->schedule,
1231 silc_server_failure_callback);
1232 silc_server_disconnect_remote(server, sock, "Server closed connection: "
1233 "Key exchange failed");
1234 server->stat.auth_failures++;
1237 silc_ske_free_key_material(ctx->keymat);
1239 /* Allocate internal context for the authentication protocol. This
1240 is sent as context for the protocol. */
1241 proto_ctx = silc_calloc(1, sizeof(*proto_ctx));
1242 proto_ctx->server = (void *)server;
1243 proto_ctx->sock = sock;
1244 proto_ctx->ske = ctx->ske; /* Save SKE object from previous protocol */
1245 proto_ctx->responder = TRUE;
1246 proto_ctx->dest_id_type = ctx->dest_id_type;
1247 proto_ctx->dest_id = ctx->dest_id;
1248 proto_ctx->cconfig = ctx->cconfig;
1249 proto_ctx->sconfig = ctx->sconfig;
1250 proto_ctx->rconfig = ctx->rconfig;
1252 /* Free old protocol as it is finished now */
1253 silc_protocol_free(protocol);
1255 silc_packet_context_free(ctx->packet);
1257 sock->protocol = NULL;
1259 /* Allocate the authentication protocol. This is allocated here
1260 but we won't start it yet. We will be receiving party of this
1261 protocol thus we will wait that connecting party will make
1262 their first move. */
1263 silc_protocol_alloc(SILC_PROTOCOL_SERVER_CONNECTION_AUTH,
1264 &sock->protocol, proto_ctx,
1265 silc_server_accept_new_connection_final);
1267 /* Register timeout task. If the protocol is not executed inside
1268 this timelimit the connection will be terminated. Currently
1269 this is 60 seconds and is hard coded limit (XXX). */
1270 proto_ctx->timeout_task =
1271 silc_schedule_task_add(server->schedule, sock->sock,
1272 silc_server_timeout_remote,
1273 (void *)server, 60, 0,
1278 /* Final part of accepting new connection. The connection has now
1279 been authenticated and keys has been exchanged. We also know whether
1280 this is client or server connection. */
1282 SILC_TASK_CALLBACK(silc_server_accept_new_connection_final)
1284 SilcProtocol protocol = (SilcProtocol)context;
1285 SilcServerConnAuthInternalContext *ctx =
1286 (SilcServerConnAuthInternalContext *)protocol->context;
1287 SilcServer server = (SilcServer)ctx->server;
1288 SilcSocketConnection sock = ctx->sock;
1289 SilcServerHBContext hb_context;
1290 SilcUnknownEntry entry = (SilcUnknownEntry)sock->user_data;
1291 void *id_entry = NULL;
1293 SILC_LOG_DEBUG(("Start"));
1295 if (protocol->state == SILC_PROTOCOL_STATE_ERROR ||
1296 protocol->state == SILC_PROTOCOL_STATE_FAILURE) {
1297 /* Error occured during protocol */
1298 silc_protocol_free(protocol);
1299 sock->protocol = NULL;
1301 silc_packet_context_free(ctx->packet);
1303 silc_ske_free(ctx->ske);
1304 silc_free(ctx->dest_id);
1306 silc_schedule_task_del_by_callback(server->schedule,
1307 silc_server_failure_callback);
1308 silc_server_disconnect_remote(server, sock, "Server closed connection: "
1309 "Authentication failed");
1310 server->stat.auth_failures++;
1314 entry->data.last_receive = time(NULL);
1316 switch (ctx->conn_type) {
1317 case SILC_SOCKET_TYPE_CLIENT:
1319 SilcClientEntry client;
1321 SILC_LOG_DEBUG(("Remote host is client"));
1322 SILC_LOG_INFO(("Connection from %s (%s) is client", sock->hostname,
1325 /* Add the client to the client ID cache. The nickname and Client ID
1326 and other information is created after we have received NEW_CLIENT
1327 packet from client. */
1328 client = silc_idlist_add_client(server->local_list,
1329 NULL, NULL, NULL, NULL, NULL, sock, 0);
1331 SILC_LOG_ERROR(("Could not add new client to cache"));
1332 silc_free(sock->user_data);
1333 silc_server_disconnect_remote(server, sock,
1334 "Server closed connection: "
1335 "Authentication failed");
1336 server->stat.auth_failures++;
1341 server->stat.my_clients++;
1342 server->stat.clients++;
1343 if (server->server_type == SILC_ROUTER)
1344 server->stat.cell_clients++;
1346 id_entry = (void *)client;
1349 case SILC_SOCKET_TYPE_SERVER:
1350 case SILC_SOCKET_TYPE_ROUTER:
1352 SilcServerEntry new_server;
1353 SilcServerConfigSectionServerConnection *conn =
1354 ctx->conn_type == SILC_SOCKET_TYPE_SERVER ?
1355 ctx->sconfig : ctx->rconfig;
1357 SILC_LOG_DEBUG(("Remote host is %s",
1358 ctx->conn_type == SILC_SOCKET_TYPE_SERVER ?
1359 "server" : (conn->backup_router ?
1360 "backup router" : "router")));
1361 SILC_LOG_INFO(("Connection from %s (%s) is %s", sock->hostname,
1362 sock->ip, ctx->conn_type == SILC_SOCKET_TYPE_SERVER ?
1363 "server" : (conn->backup_router ?
1364 "backup router" : "router")));
1366 /* Add the server into server cache. The server name and Server ID
1367 is updated after we have received NEW_SERVER packet from the
1368 server. We mark ourselves as router for this server if we really
1371 silc_idlist_add_server((ctx->conn_type == SILC_SOCKET_TYPE_SERVER ?
1372 server->local_list : (conn->backup_router ?
1373 server->local_list :
1374 server->global_list)),
1376 (ctx->conn_type == SILC_SOCKET_TYPE_SERVER ?
1377 SILC_SERVER : SILC_ROUTER),
1379 (ctx->conn_type == SILC_SOCKET_TYPE_SERVER ?
1380 server->id_entry : (conn->backup_router ?
1381 server->id_entry : NULL)),
1384 SILC_LOG_ERROR(("Could not add new server to cache"));
1385 silc_free(sock->user_data);
1386 silc_server_disconnect_remote(server, sock,
1387 "Server closed connection: "
1388 "Authentication failed");
1389 server->stat.auth_failures++;
1394 if (ctx->conn_type == SILC_SOCKET_TYPE_SERVER)
1395 server->stat.my_servers++;
1397 server->stat.my_routers++;
1398 server->stat.servers++;
1400 id_entry = (void *)new_server;
1402 /* If the incoming connection is router and marked as backup router
1403 then add it to be one of our backups */
1404 if (ctx->conn_type == SILC_SOCKET_TYPE_ROUTER && conn->backup_router) {
1405 silc_server_backup_add(server, new_server, conn->backup_replace_ip,
1406 conn->backup_replace_port, conn->backup_local);
1408 /* Change it back to SERVER type since that's what it really is. */
1409 if (conn->backup_local)
1410 ctx->conn_type = SILC_SOCKET_TYPE_SERVER;
1412 new_server->server_type = SILC_BACKUP_ROUTER;
1415 /* Check whether this connection is to be our primary router connection
1416 if we do not already have the primary route. */
1417 if (server->standalone && ctx->conn_type == SILC_SOCKET_TYPE_ROUTER) {
1418 if (silc_server_config_is_primary_route(server->config) &&
1422 SILC_LOG_DEBUG(("We are not standalone server anymore"));
1423 server->standalone = FALSE;
1424 if (!server->id_entry->router) {
1425 server->id_entry->router = id_entry;
1426 server->router = id_entry;
1436 sock->type = ctx->conn_type;
1438 /* Add the common data structure to the ID entry. */
1440 silc_idlist_add_data(id_entry, (SilcIDListData)sock->user_data);
1442 /* Add to sockets internal pointer for fast referencing */
1443 silc_free(sock->user_data);
1444 sock->user_data = id_entry;
1446 /* Connection has been fully established now. Everything is ok. */
1447 SILC_LOG_DEBUG(("New connection authenticated"));
1449 /* Perform keepalive. The `hb_context' will be freed automatically
1450 when finally calling the silc_socket_free function. XXX hardcoded
1452 hb_context = silc_calloc(1, sizeof(*hb_context));
1453 hb_context->server = server;
1454 silc_socket_set_heartbeat(sock, 600, hb_context,
1455 silc_server_perform_heartbeat,
1459 silc_schedule_task_del_by_callback(server->schedule,
1460 silc_server_failure_callback);
1461 silc_protocol_free(protocol);
1463 silc_packet_context_free(ctx->packet);
1465 silc_ske_free(ctx->ske);
1466 silc_free(ctx->dest_id);
1468 sock->protocol = NULL;
1471 /* This function is used to read packets from network and send packets to
1472 network. This is usually a generic task. */
1474 SILC_TASK_CALLBACK(silc_server_packet_process)
1476 SilcServer server = (SilcServer)context;
1477 SilcSocketConnection sock = server->sockets[fd];
1478 SilcIDListData idata;
1479 SilcCipher cipher = NULL;
1480 SilcHmac hmac = NULL;
1481 uint32 sequence = 0;
1487 SILC_LOG_DEBUG(("Processing packet"));
1489 /* Packet sending */
1491 if (type == SILC_TASK_WRITE) {
1492 /* Do not send data to disconnected connection */
1493 if (SILC_IS_DISCONNECTED(sock))
1496 server->stat.packets_sent++;
1498 if (sock->outbuf->data - sock->outbuf->head)
1499 silc_buffer_push(sock->outbuf, sock->outbuf->data - sock->outbuf->head);
1501 /* Send the packet */
1502 ret = silc_packet_send(sock, TRUE);
1504 /* If returned -2 could not write to connection now, will do
1510 SILC_LOG_ERROR(("Error sending packet to connection "
1511 "%s:%d [%s]", sock->hostname, sock->port,
1512 (sock->type == SILC_SOCKET_TYPE_UNKNOWN ? "Unknown" :
1513 sock->type == SILC_SOCKET_TYPE_CLIENT ? "Client" :
1514 sock->type == SILC_SOCKET_TYPE_SERVER ? "Server" :
1519 /* The packet has been sent and now it is time to set the connection
1520 back to only for input. When there is again some outgoing data
1521 available for this connection it will be set for output as well.
1522 This call clears the output setting and sets it only for input. */
1523 SILC_SET_CONNECTION_FOR_INPUT(server->schedule, fd);
1524 SILC_UNSET_OUTBUF_PENDING(sock);
1526 silc_buffer_clear(sock->outbuf);
1530 /* Packet receiving */
1532 /* Read some data from connection */
1533 ret = silc_packet_receive(sock);
1537 SILC_LOG_ERROR(("Error receiving packet from connection "
1538 "%s:%d [%s] %s", sock->hostname, sock->port,
1539 (sock->type == SILC_SOCKET_TYPE_UNKNOWN ? "Unknown" :
1540 sock->type == SILC_SOCKET_TYPE_CLIENT ? "Client" :
1541 sock->type == SILC_SOCKET_TYPE_SERVER ? "Server" :
1542 "Router"), strerror(errno)));
1548 SILC_LOG_DEBUG(("Read EOF"));
1550 /* If connection is disconnecting already we will finally
1551 close the connection */
1552 if (SILC_IS_DISCONNECTING(sock)) {
1553 if (sock->user_data)
1554 silc_server_free_sock_user_data(server, sock);
1555 silc_server_close_connection(server, sock);
1559 SILC_LOG_DEBUG(("Premature EOF from connection %d", sock->sock));
1560 SILC_SET_DISCONNECTING(sock);
1562 if (sock->user_data)
1563 silc_server_free_sock_user_data(server, sock);
1564 else if (server->router_conn && server->router_conn->sock == sock &&
1565 !server->router && server->standalone)
1566 silc_schedule_task_add(server->schedule, 0,
1567 silc_server_connect_to_router,
1570 SILC_TASK_PRI_NORMAL);
1572 silc_server_close_connection(server, sock);
1576 /* If connection is disconnecting or disconnected we will ignore
1578 if (SILC_IS_DISCONNECTING(sock) || SILC_IS_DISCONNECTED(sock)) {
1579 SILC_LOG_DEBUG(("Ignoring read data from disonnected connection"));
1583 server->stat.packets_received++;
1585 /* Get keys and stuff from ID entry */
1586 idata = (SilcIDListData)sock->user_data;
1588 cipher = idata->receive_key;
1589 hmac = idata->hmac_receive;
1590 sequence = idata->psn_receive;
1593 /* Process the packet. This will call the parser that will then
1594 decrypt and parse the packet. */
1595 ret = silc_packet_receive_process(sock, server->server_type == SILC_ROUTER ?
1596 TRUE : FALSE, cipher, hmac, sequence,
1597 silc_server_packet_parse, server);
1599 /* If this socket connection is not authenticated yet and the packet
1600 processing failed we will drop the connection since it can be
1601 a malicious flooder. */
1602 if (sock->type == SILC_SOCKET_TYPE_UNKNOWN && ret == FALSE &&
1603 (!sock->protocol || sock->protocol->protocol->type ==
1604 SILC_PROTOCOL_SERVER_KEY_EXCHANGE)) {
1605 SILC_LOG_DEBUG(("Bad data sent from unknown connection %d", sock->sock));
1606 SILC_SET_DISCONNECTING(sock);
1608 if (sock->user_data)
1609 silc_server_free_sock_user_data(server, sock);
1610 silc_server_close_connection(server, sock);
1614 /* Parses whole packet, received earlier. */
1616 SILC_TASK_CALLBACK(silc_server_packet_parse_real)
1618 SilcPacketParserContext *parse_ctx = (SilcPacketParserContext *)context;
1619 SilcServer server = (SilcServer)parse_ctx->context;
1620 SilcSocketConnection sock = parse_ctx->sock;
1621 SilcPacketContext *packet = parse_ctx->packet;
1622 SilcIDListData idata = (SilcIDListData)sock->user_data;
1625 SILC_LOG_DEBUG(("Start"));
1627 /* Parse the packet */
1628 if (parse_ctx->normal)
1629 ret = silc_packet_parse(packet, idata ? idata->receive_key : NULL);
1631 ret = silc_packet_parse_special(packet, idata ? idata->receive_key : NULL);
1633 /* If entry is disabled ignore what we got. */
1634 if (ret != SILC_PACKET_RESUME_ROUTER &&
1635 idata && idata->status & SILC_IDLIST_STATUS_DISABLED) {
1636 SILC_LOG_DEBUG(("Connection is disabled"));
1640 if (ret == SILC_PACKET_NONE)
1643 /* Check that the the current client ID is same as in the client's packet. */
1644 if (sock->type == SILC_SOCKET_TYPE_CLIENT) {
1645 SilcClientEntry client = (SilcClientEntry)sock->user_data;
1646 if (client && client->id) {
1647 void *id = silc_id_str2id(packet->src_id, packet->src_id_len,
1648 packet->src_id_type);
1649 if (!id || !SILC_ID_CLIENT_COMPARE(client->id, id)) {
1657 if (server->server_type == SILC_ROUTER) {
1658 /* Route the packet if it is not destined to us. Other ID types but
1659 server are handled separately after processing them. */
1660 if (!(packet->flags & SILC_PACKET_FLAG_BROADCAST) &&
1661 packet->dst_id_type == SILC_ID_SERVER &&
1662 sock->type != SILC_SOCKET_TYPE_CLIENT &&
1663 memcmp(packet->dst_id, server->id_string, server->id_string_len)) {
1665 /* Route the packet to fastest route for the destination ID */
1666 void *id = silc_id_str2id(packet->dst_id, packet->dst_id_len,
1667 packet->dst_id_type);
1670 silc_server_packet_route(server,
1671 silc_server_route_get(server, id,
1672 packet->dst_id_type),
1679 /* Parse the incoming packet type */
1680 silc_server_packet_parse_type(server, sock, packet);
1682 if (server->server_type == SILC_ROUTER) {
1683 /* Broadcast packet if it is marked as broadcast packet and it is
1684 originated from router and we are router. */
1685 if (sock->type == SILC_SOCKET_TYPE_ROUTER &&
1686 packet->flags & SILC_PACKET_FLAG_BROADCAST &&
1687 !server->standalone) {
1688 /* Broadcast to our primary route */
1689 silc_server_packet_broadcast(server, server->router->connection, packet);
1691 /* If we have backup routers then we need to feed all broadcast
1692 data to those servers. */
1693 silc_server_backup_broadcast(server, sock, packet);
1698 silc_packet_context_free(packet);
1699 silc_free(parse_ctx);
1702 /* Parser callback called by silc_packet_receive_process. This merely
1703 registers timeout that will handle the actual parsing when appropriate. */
1705 bool silc_server_packet_parse(SilcPacketParserContext *parser_context,
1708 SilcServer server = (SilcServer)context;
1709 SilcSocketConnection sock = parser_context->sock;
1710 SilcIDListData idata = (SilcIDListData)sock->user_data;
1713 idata->psn_receive = parser_context->packet->sequence + 1;
1715 /* If protocol for this connection is key exchange or rekey then we'll
1716 process all packets synchronously, since there might be packets in
1717 queue that we are not able to decrypt without first processing the
1718 packets before them. */
1719 if ((parser_context->packet->type == SILC_PACKET_REKEY ||
1720 parser_context->packet->type == SILC_PACKET_REKEY_DONE) ||
1721 (sock->protocol && sock->protocol->protocol &&
1722 (sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_KEY_EXCHANGE ||
1723 sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_REKEY))) {
1724 silc_server_packet_parse_real(server->schedule, 0, sock->sock,
1727 /* Reprocess data since we'll return FALSE here. This is because
1728 the idata->receive_key might have become valid in the last packet
1729 and we want to call this processor with valid cipher. */
1731 silc_packet_receive_process(sock, server->server_type == SILC_ROUTER ?
1732 TRUE : FALSE, idata->receive_key,
1733 idata->hmac_receive, idata->psn_receive,
1734 silc_server_packet_parse, server);
1736 silc_packet_receive_process(sock, server->server_type == SILC_ROUTER ?
1737 TRUE : FALSE, NULL, NULL, 0,
1738 silc_server_packet_parse, server);
1742 switch (sock->type) {
1743 case SILC_SOCKET_TYPE_UNKNOWN:
1744 case SILC_SOCKET_TYPE_CLIENT:
1745 /* Parse the packet with timeout */
1746 silc_schedule_task_add(server->schedule, sock->sock,
1747 silc_server_packet_parse_real,
1748 (void *)parser_context, 0, 100000,
1750 SILC_TASK_PRI_NORMAL);
1752 case SILC_SOCKET_TYPE_SERVER:
1753 case SILC_SOCKET_TYPE_ROUTER:
1754 /* Packets from servers are parsed immediately */
1755 silc_server_packet_parse_real(server->schedule, 0, sock->sock,
1765 /* Parses the packet type and calls what ever routines the packet type
1766 requires. This is done for all incoming packets. */
1768 void silc_server_packet_parse_type(SilcServer server,
1769 SilcSocketConnection sock,
1770 SilcPacketContext *packet)
1772 SilcPacketType type = packet->type;
1773 SilcIDListData idata = (SilcIDListData)sock->user_data;
1775 SILC_LOG_DEBUG(("Parsing packet type %d", type));
1777 /* Parse the packet type */
1779 case SILC_PACKET_DISCONNECT:
1780 SILC_LOG_DEBUG(("Disconnect packet"));
1781 if (packet->flags & SILC_PACKET_FLAG_LIST)
1785 case SILC_PACKET_SUCCESS:
1787 * Success received for something. For now we can have only
1788 * one protocol for connection executing at once hence this
1789 * success message is for whatever protocol is executing currently.
1791 SILC_LOG_DEBUG(("Success packet"));
1792 if (packet->flags & SILC_PACKET_FLAG_LIST)
1795 silc_protocol_execute(sock->protocol, server->schedule, 0, 0);
1798 case SILC_PACKET_FAILURE:
1800 * Failure received for something. For now we can have only
1801 * one protocol for connection executing at once hence this
1802 * failure message is for whatever protocol is executing currently.
1804 SILC_LOG_DEBUG(("Failure packet"));
1805 if (packet->flags & SILC_PACKET_FLAG_LIST)
1807 if (sock->protocol) {
1808 SilcServerFailureContext f;
1809 f = silc_calloc(1, sizeof(*f));
1813 /* We will wait 5 seconds to process this failure packet */
1814 silc_schedule_task_add(server->schedule, sock->sock,
1815 silc_server_failure_callback, (void *)f, 5, 0,
1816 SILC_TASK_TIMEOUT, SILC_TASK_PRI_NORMAL);
1820 case SILC_PACKET_REJECT:
1821 SILC_LOG_DEBUG(("Reject packet"));
1822 if (packet->flags & SILC_PACKET_FLAG_LIST)
1827 case SILC_PACKET_NOTIFY:
1829 * Received notify packet. Server can receive notify packets from
1830 * router. Server then relays the notify messages to clients if needed.
1832 SILC_LOG_DEBUG(("Notify packet"));
1833 if (packet->flags & SILC_PACKET_FLAG_LIST)
1834 silc_server_notify_list(server, sock, packet);
1836 silc_server_notify(server, sock, packet);
1842 case SILC_PACKET_CHANNEL_MESSAGE:
1844 * Received channel message. Channel messages are special packets
1845 * (although probably most common ones) thus they are handled
1848 SILC_LOG_DEBUG(("Channel Message packet"));
1849 if (packet->flags & SILC_PACKET_FLAG_LIST)
1851 idata->last_receive = time(NULL);
1852 silc_server_channel_message(server, sock, packet);
1855 case SILC_PACKET_CHANNEL_KEY:
1857 * Received key for channel. As channels are created by the router
1858 * the keys are as well. We will distribute the key to all of our
1859 * locally connected clients on the particular channel. Router
1860 * never receives this channel and thus is ignored.
1862 SILC_LOG_DEBUG(("Channel Key packet"));
1863 if (packet->flags & SILC_PACKET_FLAG_LIST)
1865 silc_server_channel_key(server, sock, packet);
1871 case SILC_PACKET_COMMAND:
1873 * Recived command. Processes the command request and allocates the
1874 * command context and calls the command.
1876 SILC_LOG_DEBUG(("Command packet"));
1877 if (packet->flags & SILC_PACKET_FLAG_LIST)
1879 silc_server_command_process(server, sock, packet);
1882 case SILC_PACKET_COMMAND_REPLY:
1884 * Received command reply packet. Received command reply to command. It
1885 * may be reply to command sent by us or reply to command sent by client
1886 * that we've routed further.
1888 SILC_LOG_DEBUG(("Command Reply packet"));
1889 if (packet->flags & SILC_PACKET_FLAG_LIST)
1891 silc_server_command_reply(server, sock, packet);
1895 * Private Message packets
1897 case SILC_PACKET_PRIVATE_MESSAGE:
1899 * Received private message packet. The packet is coming from either
1902 SILC_LOG_DEBUG(("Private Message packet"));
1903 if (packet->flags & SILC_PACKET_FLAG_LIST)
1905 idata->last_receive = time(NULL);
1906 silc_server_private_message(server, sock, packet);
1909 case SILC_PACKET_PRIVATE_MESSAGE_KEY:
1911 * Private message key packet.
1913 if (packet->flags & SILC_PACKET_FLAG_LIST)
1915 silc_server_private_message_key(server, sock, packet);
1919 * Key Exchange protocol packets
1921 case SILC_PACKET_KEY_EXCHANGE:
1922 SILC_LOG_DEBUG(("KE packet"));
1923 if (packet->flags & SILC_PACKET_FLAG_LIST)
1926 if (sock->protocol && sock->protocol->protocol &&
1927 sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_KEY_EXCHANGE) {
1929 SilcServerKEInternalContext *proto_ctx =
1930 (SilcServerKEInternalContext *)sock->protocol->context;
1932 proto_ctx->packet = silc_packet_context_dup(packet);
1934 /* Let the protocol handle the packet */
1935 silc_protocol_execute(sock->protocol, server->schedule, 0, 100000);
1937 SILC_LOG_ERROR(("Received Key Exchange packet but no key exchange "
1938 "protocol active, packet dropped."));
1942 case SILC_PACKET_KEY_EXCHANGE_1:
1943 SILC_LOG_DEBUG(("KE 1 packet"));
1944 if (packet->flags & SILC_PACKET_FLAG_LIST)
1947 if (sock->protocol && sock->protocol->protocol &&
1948 (sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_KEY_EXCHANGE ||
1949 sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_REKEY)) {
1951 if (sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_REKEY) {
1952 SilcServerRekeyInternalContext *proto_ctx =
1953 (SilcServerRekeyInternalContext *)sock->protocol->context;
1955 if (proto_ctx->packet)
1956 silc_packet_context_free(proto_ctx->packet);
1958 proto_ctx->packet = silc_packet_context_dup(packet);
1960 /* Let the protocol handle the packet */
1961 silc_protocol_execute(sock->protocol, server->schedule, 0, 0);
1963 SilcServerKEInternalContext *proto_ctx =
1964 (SilcServerKEInternalContext *)sock->protocol->context;
1966 if (proto_ctx->packet)
1967 silc_packet_context_free(proto_ctx->packet);
1969 proto_ctx->packet = silc_packet_context_dup(packet);
1970 proto_ctx->dest_id_type = packet->src_id_type;
1971 proto_ctx->dest_id = silc_id_str2id(packet->src_id, packet->src_id_len,
1972 packet->src_id_type);
1973 if (!proto_ctx->dest_id)
1976 /* Let the protocol handle the packet */
1977 silc_protocol_execute(sock->protocol, server->schedule,
1981 SILC_LOG_ERROR(("Received Key Exchange 1 packet but no key exchange "
1982 "protocol active, packet dropped."));
1986 case SILC_PACKET_KEY_EXCHANGE_2:
1987 SILC_LOG_DEBUG(("KE 2 packet"));
1988 if (packet->flags & SILC_PACKET_FLAG_LIST)
1991 if (sock->protocol && sock->protocol->protocol &&
1992 (sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_KEY_EXCHANGE ||
1993 sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_REKEY)) {
1995 if (sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_REKEY) {
1996 SilcServerRekeyInternalContext *proto_ctx =
1997 (SilcServerRekeyInternalContext *)sock->protocol->context;
1999 if (proto_ctx->packet)
2000 silc_packet_context_free(proto_ctx->packet);
2002 proto_ctx->packet = silc_packet_context_dup(packet);
2004 /* Let the protocol handle the packet */
2005 silc_protocol_execute(sock->protocol, server->schedule, 0, 0);
2007 SilcServerKEInternalContext *proto_ctx =
2008 (SilcServerKEInternalContext *)sock->protocol->context;
2010 if (proto_ctx->packet)
2011 silc_packet_context_free(proto_ctx->packet);
2013 proto_ctx->packet = silc_packet_context_dup(packet);
2014 proto_ctx->dest_id_type = packet->src_id_type;
2015 proto_ctx->dest_id = silc_id_str2id(packet->src_id, packet->src_id_len,
2016 packet->src_id_type);
2017 if (!proto_ctx->dest_id)
2020 /* Let the protocol handle the packet */
2021 silc_protocol_execute(sock->protocol, server->schedule,
2025 SILC_LOG_ERROR(("Received Key Exchange 2 packet but no key exchange "
2026 "protocol active, packet dropped."));
2030 case SILC_PACKET_CONNECTION_AUTH_REQUEST:
2032 * Connection authentication request packet. When we receive this packet
2033 * we will send to the other end information about our mandatory
2034 * authentication method for the connection. This packet maybe received
2037 SILC_LOG_DEBUG(("Connection authentication request packet"));
2038 if (packet->flags & SILC_PACKET_FLAG_LIST)
2040 silc_server_connection_auth_request(server, sock, packet);
2044 * Connection Authentication protocol packets
2046 case SILC_PACKET_CONNECTION_AUTH:
2047 /* Start of the authentication protocol. We receive here the
2048 authentication data and will verify it. */
2049 SILC_LOG_DEBUG(("Connection auth packet"));
2050 if (packet->flags & SILC_PACKET_FLAG_LIST)
2053 if (sock->protocol && sock->protocol->protocol->type
2054 == SILC_PROTOCOL_SERVER_CONNECTION_AUTH) {
2056 SilcServerConnAuthInternalContext *proto_ctx =
2057 (SilcServerConnAuthInternalContext *)sock->protocol->context;
2059 proto_ctx->packet = silc_packet_context_dup(packet);
2061 /* Let the protocol handle the packet */
2062 silc_protocol_execute(sock->protocol, server->schedule, 0, 0);
2064 SILC_LOG_ERROR(("Received Connection Auth packet but no authentication "
2065 "protocol active, packet dropped."));
2069 case SILC_PACKET_NEW_ID:
2071 * Received New ID packet. This includes some new ID that has been
2072 * created. It may be for client, server or channel. This is the way
2073 * to distribute information about new registered entities in the
2076 SILC_LOG_DEBUG(("New ID packet"));
2077 if (packet->flags & SILC_PACKET_FLAG_LIST)
2078 silc_server_new_id_list(server, sock, packet);
2080 silc_server_new_id(server, sock, packet);
2083 case SILC_PACKET_NEW_CLIENT:
2085 * Received new client packet. This includes client information that
2086 * we will use to create initial client ID. After creating new
2087 * ID we will send it to the client.
2089 SILC_LOG_DEBUG(("New Client packet"));
2090 if (packet->flags & SILC_PACKET_FLAG_LIST)
2092 silc_server_new_client(server, sock, packet);
2095 case SILC_PACKET_NEW_SERVER:
2097 * Received new server packet. This includes Server ID and some other
2098 * information that we may save. This is received after server has
2101 SILC_LOG_DEBUG(("New Server packet"));
2102 if (packet->flags & SILC_PACKET_FLAG_LIST)
2104 silc_server_new_server(server, sock, packet);
2107 case SILC_PACKET_NEW_CHANNEL:
2109 * Received new channel packet. Information about new channel in the
2110 * network are distributed using this packet.
2112 SILC_LOG_DEBUG(("New Channel packet"));
2113 if (packet->flags & SILC_PACKET_FLAG_LIST)
2114 silc_server_new_channel_list(server, sock, packet);
2116 silc_server_new_channel(server, sock, packet);
2119 case SILC_PACKET_HEARTBEAT:
2121 * Received heartbeat.
2123 SILC_LOG_DEBUG(("Heartbeat packet"));
2124 if (packet->flags & SILC_PACKET_FLAG_LIST)
2128 case SILC_PACKET_KEY_AGREEMENT:
2130 * Received heartbeat.
2132 SILC_LOG_DEBUG(("Key agreement packet"));
2133 if (packet->flags & SILC_PACKET_FLAG_LIST)
2135 silc_server_key_agreement(server, sock, packet);
2138 case SILC_PACKET_REKEY:
2140 * Received re-key packet. The sender wants to regenerate the session
2143 SILC_LOG_DEBUG(("Re-key packet"));
2144 if (packet->flags & SILC_PACKET_FLAG_LIST)
2146 silc_server_rekey(server, sock, packet);
2149 case SILC_PACKET_REKEY_DONE:
2151 * The re-key is done.
2153 SILC_LOG_DEBUG(("Re-key done packet"));
2154 if (packet->flags & SILC_PACKET_FLAG_LIST)
2157 if (sock->protocol && sock->protocol->protocol &&
2158 sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_REKEY) {
2160 SilcServerRekeyInternalContext *proto_ctx =
2161 (SilcServerRekeyInternalContext *)sock->protocol->context;
2163 if (proto_ctx->packet)
2164 silc_packet_context_free(proto_ctx->packet);
2166 proto_ctx->packet = silc_packet_context_dup(packet);
2168 /* Let the protocol handle the packet */
2169 silc_protocol_execute(sock->protocol, server->schedule, 0, 0);
2171 SILC_LOG_ERROR(("Received Re-key done packet but no re-key "
2172 "protocol active, packet dropped."));
2176 case SILC_PACKET_FTP:
2178 SILC_LOG_DEBUG(("FTP packet"));
2179 if (packet->flags & SILC_PACKET_FLAG_LIST)
2181 silc_server_ftp(server, sock, packet);
2184 case SILC_PACKET_RESUME_ROUTER:
2185 /* Resume router packet received. This packet is received for backup
2186 router resuming protocol. */
2187 SILC_LOG_DEBUG(("Resume router packet"));
2188 if (packet->flags & SILC_PACKET_FLAG_LIST)
2190 silc_server_backup_resume_router(server, sock, packet);
2194 SILC_LOG_ERROR(("Incorrect packet type %d, packet dropped", type));
2200 /* Creates connection to a remote router. */
2202 void silc_server_create_connection(SilcServer server,
2203 char *remote_host, uint32 port)
2205 SilcServerConnection sconn;
2207 /* Allocate connection object for hold connection specific stuff. */
2208 sconn = silc_calloc(1, sizeof(*sconn));
2209 sconn->server = server;
2210 sconn->remote_host = strdup(remote_host);
2211 sconn->remote_port = port;
2213 silc_schedule_task_add(server->schedule, 0,
2214 silc_server_connect_router,
2215 (void *)sconn, 0, 1, SILC_TASK_TIMEOUT,
2216 SILC_TASK_PRI_NORMAL);
2219 SILC_TASK_CALLBACK(silc_server_close_connection_final)
2221 silc_socket_free((SilcSocketConnection)context);
2224 /* Closes connection to socket connection */
2226 void silc_server_close_connection(SilcServer server,
2227 SilcSocketConnection sock)
2229 if (!server->sockets[sock->sock])
2232 SILC_LOG_INFO(("Closing connection %s:%d [%s]", sock->hostname,
2234 (sock->type == SILC_SOCKET_TYPE_UNKNOWN ? "Unknown" :
2235 sock->type == SILC_SOCKET_TYPE_CLIENT ? "Client" :
2236 sock->type == SILC_SOCKET_TYPE_SERVER ? "Server" :
2239 /* We won't listen for this connection anymore */
2240 silc_schedule_unset_listen_fd(server->schedule, sock->sock);
2242 /* Unregister all tasks */
2243 silc_schedule_task_del_by_fd(server->schedule, sock->sock);
2245 /* Close the actual connection */
2246 silc_net_close_connection(sock->sock);
2247 server->sockets[sock->sock] = NULL;
2249 /* If sock->user_data is NULL then we'll check for active protocols
2250 here since the silc_server_free_sock_user_data has not been called
2251 for this connection. */
2252 if (!sock->user_data) {
2253 /* If any protocol is active cancel its execution. It will call
2254 the final callback which will finalize the disconnection. */
2255 if (sock->protocol) {
2256 silc_protocol_cancel(sock->protocol, server->schedule);
2257 sock->protocol->state = SILC_PROTOCOL_STATE_ERROR;
2258 silc_protocol_execute_final(sock->protocol, server->schedule);
2259 sock->protocol = NULL;
2264 silc_schedule_task_add(server->schedule, 0,
2265 silc_server_close_connection_final,
2266 (void *)sock, 0, 1, SILC_TASK_TIMEOUT,
2267 SILC_TASK_PRI_NORMAL);
2270 /* Sends disconnect message to remote connection and disconnects the
2273 void silc_server_disconnect_remote(SilcServer server,
2274 SilcSocketConnection sock,
2275 const char *fmt, ...)
2278 unsigned char buf[4096];
2283 memset(buf, 0, sizeof(buf));
2285 vsprintf(buf, fmt, ap);
2288 SILC_LOG_DEBUG(("Disconnecting remote host"));
2290 /* Notify remote end that the conversation is over. The notify message
2291 is tried to be sent immediately. */
2292 silc_server_packet_send(server, sock, SILC_PACKET_DISCONNECT, 0,
2293 buf, strlen(buf), TRUE);
2295 /* Mark the connection to be disconnected */
2296 SILC_SET_DISCONNECTED(sock);
2297 silc_server_close_connection(server, sock);
2302 SilcClientEntry client;
2303 } *FreeClientInternal;
2305 SILC_TASK_CALLBACK(silc_server_free_client_data_timeout)
2307 FreeClientInternal i = (FreeClientInternal)context;
2309 silc_idlist_del_data(i->client);
2310 silc_idcache_purge_by_context(i->server->local_list->clients, i->client);
2314 /* Frees client data and notifies about client's signoff. */
2316 void silc_server_free_client_data(SilcServer server,
2317 SilcSocketConnection sock,
2318 SilcClientEntry client,
2322 FreeClientInternal i = silc_calloc(1, sizeof(*i));
2324 /* If there is pending outgoing data for the client then purge it
2325 to the network before removing the client entry. */
2326 silc_server_packet_queue_purge(server, sock);
2331 /* Send SIGNOFF notify to routers. */
2332 if (notify && !server->standalone && server->router)
2333 silc_server_send_notify_signoff(server, server->router->connection,
2334 server->server_type == SILC_SERVER ?
2335 FALSE : TRUE, client->id, signoff);
2337 /* Remove client from all channels */
2339 silc_server_remove_from_channels(server, NULL, client,
2340 TRUE, signoff, TRUE);
2342 silc_server_remove_from_channels(server, NULL, client,
2343 FALSE, NULL, FALSE);
2345 /* We will not delete the client entry right away. We will take it
2346 into history (for WHOWAS command) for 5 minutes */
2349 silc_schedule_task_add(server->schedule, 0,
2350 silc_server_free_client_data_timeout,
2352 SILC_TASK_TIMEOUT, SILC_TASK_PRI_LOW);
2353 client->data.status &= ~SILC_IDLIST_STATUS_REGISTERED;
2354 client->router = NULL;
2355 client->connection = NULL;
2357 /* Free the client entry and everything in it */
2358 server->stat.my_clients--;
2359 server->stat.clients--;
2360 if (server->server_type == SILC_ROUTER)
2361 server->stat.cell_clients--;
2364 /* Frees user_data pointer from socket connection object. This also sends
2365 appropriate notify packets to the network to inform about leaving
2368 void silc_server_free_sock_user_data(SilcServer server,
2369 SilcSocketConnection sock)
2371 SILC_LOG_DEBUG(("Start"));
2373 switch (sock->type) {
2374 case SILC_SOCKET_TYPE_CLIENT:
2376 SilcClientEntry user_data = (SilcClientEntry)sock->user_data;
2377 silc_server_free_client_data(server, sock, user_data, TRUE, NULL);
2380 case SILC_SOCKET_TYPE_SERVER:
2381 case SILC_SOCKET_TYPE_ROUTER:
2383 SilcServerEntry user_data = (SilcServerEntry)sock->user_data;
2384 SilcServerEntry backup_router = NULL;
2387 backup_router = silc_server_backup_get(server, user_data->id);
2389 /* If this was our primary router connection then we're lost to
2390 the outside world. */
2391 if (server->router == user_data) {
2392 /* Check whether we have a backup router connection */
2393 if (!backup_router || backup_router == user_data) {
2394 silc_schedule_task_add(server->schedule, 0,
2395 silc_server_connect_to_router,
2398 SILC_TASK_PRI_NORMAL);
2400 server->id_entry->router = NULL;
2401 server->router = NULL;
2402 server->standalone = TRUE;
2403 backup_router = NULL;
2405 SILC_LOG_INFO(("New primary router is backup router %s",
2406 backup_router->server_name));
2407 SILC_LOG_DEBUG(("New primary router is backup router %s",
2408 backup_router->server_name));
2409 server->id_entry->router = backup_router;
2410 server->router = backup_router;
2411 server->router_connect = time(0);
2412 server->backup_primary = TRUE;
2413 if (server->server_type == SILC_BACKUP_ROUTER) {
2414 server->server_type = SILC_ROUTER;
2416 /* We'll need to constantly try to reconnect to the primary
2417 router so that we'll see when it comes back online. */
2418 silc_server_backup_reconnect(server, sock->ip, sock->port,
2419 silc_server_backup_connected,
2423 /* Mark this connection as replaced */
2424 silc_server_backup_replaced_add(server, user_data->id,
2427 } else if (backup_router) {
2428 SILC_LOG_INFO(("Enabling the use of backup router %s",
2429 backup_router->server_name));
2430 SILC_LOG_DEBUG(("Enabling the use of backup router %s",
2431 backup_router->server_name));
2433 /* Mark this connection as replaced */
2434 silc_server_backup_replaced_add(server, user_data->id,
2438 if (!backup_router) {
2439 /* Free all client entries that this server owns as they will
2440 become invalid now as well. */
2442 silc_server_remove_clients_by_server(server, user_data, TRUE);
2443 if (server->server_type == SILC_SERVER)
2444 silc_server_remove_channels_by_server(server, user_data);
2446 /* Update the client entries of this server to the new backup
2447 router. This also removes the clients that *really* was owned
2448 by the primary router and went down with the router. */
2449 silc_server_update_clients_by_server(server, user_data, backup_router,
2451 silc_server_update_servers_by_server(server, user_data, backup_router);
2452 if (server->server_type == SILC_SERVER)
2453 silc_server_update_channels_by_server(server, user_data,
2457 /* Free the server entry */
2458 silc_server_backup_del(server, user_data);
2459 silc_server_backup_replaced_del(server, user_data);
2460 silc_idlist_del_data(user_data);
2461 if (!silc_idlist_del_server(server->local_list, user_data))
2462 silc_idlist_del_server(server->global_list, user_data);
2463 server->stat.my_servers--;
2464 server->stat.servers--;
2465 if (server->server_type == SILC_ROUTER)
2466 server->stat.cell_servers--;
2468 if (backup_router) {
2469 /* Announce all of our stuff that was created about 5 minutes ago.
2470 The backup router knows all the other stuff already. */
2471 if (server->server_type == SILC_ROUTER)
2472 silc_server_announce_servers(server, FALSE, time(0) - 300,
2473 backup_router->connection);
2475 /* Announce our clients and channels to the router */
2476 silc_server_announce_clients(server, time(0) - 300,
2477 backup_router->connection);
2478 silc_server_announce_channels(server, time(0) - 300,
2479 backup_router->connection);
2485 SilcUnknownEntry user_data = (SilcUnknownEntry)sock->user_data;
2487 silc_idlist_del_data(user_data);
2488 silc_free(user_data);
2493 /* If any protocol is active cancel its execution */
2494 if (sock->protocol) {
2495 silc_protocol_cancel(sock->protocol, server->schedule);
2496 sock->protocol->state = SILC_PROTOCOL_STATE_ERROR;
2497 silc_protocol_execute_final(sock->protocol, server->schedule);
2498 sock->protocol = NULL;
2501 sock->user_data = NULL;
2504 /* Removes client from all channels it has joined. This is used when client
2505 connection is disconnected. If the client on a channel is last, the
2506 channel is removed as well. This sends the SIGNOFF notify types. */
2508 void silc_server_remove_from_channels(SilcServer server,
2509 SilcSocketConnection sock,
2510 SilcClientEntry client,
2512 char *signoff_message,
2515 SilcChannelEntry channel;
2516 SilcChannelClientEntry chl;
2517 SilcHashTableList htl;
2520 SILC_LOG_DEBUG(("Start"));
2522 if (!client || !client->id)
2525 clidp = silc_id_payload_encode(client->id, SILC_ID_CLIENT);
2527 /* Remove the client from all channels. The client is removed from
2528 the channels' user list. */
2529 silc_hash_table_list(client->channels, &htl);
2530 while (silc_hash_table_get(&htl, NULL, (void *)&chl)) {
2531 channel = chl->channel;
2533 /* Remove channel from client's channel list */
2534 silc_hash_table_del(client->channels, channel);
2536 /* Remove channel if there is no users anymore */
2537 if (server->server_type == SILC_ROUTER &&
2538 silc_hash_table_count(channel->user_list) < 2) {
2540 silc_schedule_task_del_by_context(server->schedule, channel->rekey);
2541 if (silc_idlist_del_channel(server->local_list, channel))
2542 server->stat.my_channels--;
2544 silc_idlist_del_channel(server->global_list, channel);
2548 /* Remove client from channel's client list */
2549 silc_hash_table_del(channel->user_list, chl->client);
2551 /* If there is no global users on the channel anymore mark the channel
2552 as local channel. Do not check if the removed client is local client. */
2553 if (server->server_type != SILC_ROUTER && channel->global_users &&
2554 chl->client->router && !silc_server_channel_has_global(channel))
2555 channel->global_users = FALSE;
2558 server->stat.my_chanclients--;
2560 /* If there is not at least one local user on the channel then we don't
2561 need the channel entry anymore, we can remove it safely. */
2562 if (server->server_type != SILC_ROUTER &&
2563 !silc_server_channel_has_local(channel)) {
2564 /* Notify about leaving client if this channel has global users. */
2565 if (notify && channel->global_users)
2566 silc_server_send_notify_to_channel(server, NULL, channel, FALSE,
2567 SILC_NOTIFY_TYPE_SIGNOFF,
2568 signoff_message ? 2 : 1,
2569 clidp->data, clidp->len,
2570 signoff_message, signoff_message ?
2571 strlen(signoff_message) : 0);
2574 silc_schedule_task_del_by_context(server->schedule, channel->rekey);
2576 if (channel->founder_key) {
2577 /* The founder auth data exists, do not remove the channel entry */
2578 SilcChannelClientEntry chl2;
2579 SilcHashTableList htl2;
2581 channel->disabled = TRUE;
2583 silc_hash_table_list(channel->user_list, &htl2);
2584 while (silc_hash_table_get(&htl2, NULL, (void *)&chl2)) {
2585 silc_hash_table_del(chl2->client->channels, channel);
2586 silc_hash_table_del(channel->user_list, chl2->client);
2592 /* Remove the channel entry */
2593 if (silc_idlist_del_channel(server->local_list, channel))
2594 server->stat.my_channels--;
2596 silc_idlist_del_channel(server->global_list, channel);
2600 /* Send notify to channel about client leaving SILC and thus
2601 the entire channel. */
2603 silc_server_send_notify_to_channel(server, NULL, channel, FALSE,
2604 SILC_NOTIFY_TYPE_SIGNOFF,
2605 signoff_message ? 2 : 1,
2606 clidp->data, clidp->len,
2607 signoff_message, signoff_message ?
2608 strlen(signoff_message) : 0);
2610 if (keygen && !(channel->mode & SILC_CHANNEL_MODE_PRIVKEY)) {
2611 /* Re-generate channel key */
2612 if (!silc_server_create_channel_key(server, channel, 0))
2615 /* Send the channel key to the channel. The key of course is not sent
2616 to the client who was removed from the channel. */
2617 silc_server_send_channel_key(server, client->connection, channel,
2618 server->server_type == SILC_ROUTER ?
2619 FALSE : !server->standalone);
2623 silc_buffer_free(clidp);
2626 /* Removes client from one channel. This is used for example when client
2627 calls LEAVE command to remove itself from the channel. Returns TRUE
2628 if channel still exists and FALSE if the channel is removed when
2629 last client leaves the channel. If `notify' is FALSE notify messages
2632 int silc_server_remove_from_one_channel(SilcServer server,
2633 SilcSocketConnection sock,
2634 SilcChannelEntry channel,
2635 SilcClientEntry client,
2638 SilcChannelClientEntry chl;
2641 SILC_LOG_DEBUG(("Start"));
2643 /* Get the entry to the channel, if this client is not on the channel
2645 if (!silc_hash_table_find(client->channels, channel, NULL, (void *)&chl))
2648 /* Remove the client from the channel. The client is removed from
2649 the channel's user list. */
2651 clidp = silc_id_payload_encode(client->id, SILC_ID_CLIENT);
2653 /* Remove channel from client's channel list */
2654 silc_hash_table_del(client->channels, chl->channel);
2656 /* Remove channel if there is no users anymore */
2657 if (server->server_type == SILC_ROUTER &&
2658 silc_hash_table_count(channel->user_list) < 2) {
2660 silc_schedule_task_del_by_context(server->schedule, channel->rekey);
2661 if (silc_idlist_del_channel(server->local_list, channel))
2662 server->stat.my_channels--;
2664 silc_idlist_del_channel(server->global_list, channel);
2665 silc_buffer_free(clidp);
2669 /* Remove client from channel's client list */
2670 silc_hash_table_del(channel->user_list, chl->client);
2672 /* If there is no global users on the channel anymore mark the channel
2673 as local channel. Do not check if the client is local client. */
2674 if (server->server_type != SILC_ROUTER && channel->global_users &&
2675 chl->client->router && !silc_server_channel_has_global(channel))
2676 channel->global_users = FALSE;
2679 server->stat.my_chanclients--;
2681 /* If there is not at least one local user on the channel then we don't
2682 need the channel entry anymore, we can remove it safely. */
2683 if (server->server_type != SILC_ROUTER &&
2684 !silc_server_channel_has_local(channel)) {
2685 /* Notify about leaving client if this channel has global users. */
2686 if (notify && channel->global_users)
2687 silc_server_send_notify_to_channel(server, NULL, channel, FALSE,
2688 SILC_NOTIFY_TYPE_LEAVE, 1,
2689 clidp->data, clidp->len);
2691 silc_buffer_free(clidp);
2694 silc_schedule_task_del_by_context(server->schedule, channel->rekey);
2696 if (channel->founder_key) {
2697 /* The founder auth data exists, do not remove the channel entry */
2698 SilcChannelClientEntry chl2;
2699 SilcHashTableList htl2;
2701 channel->disabled = TRUE;
2703 silc_hash_table_list(channel->user_list, &htl2);
2704 while (silc_hash_table_get(&htl2, NULL, (void *)&chl2)) {
2705 silc_hash_table_del(chl2->client->channels, channel);
2706 silc_hash_table_del(channel->user_list, chl2->client);
2712 /* Remove the channel entry */
2713 if (silc_idlist_del_channel(server->local_list, channel))
2714 server->stat.my_channels--;
2716 silc_idlist_del_channel(server->global_list, channel);
2720 /* Send notify to channel about client leaving the channel */
2722 silc_server_send_notify_to_channel(server, NULL, channel, FALSE,
2723 SILC_NOTIFY_TYPE_LEAVE, 1,
2724 clidp->data, clidp->len);
2726 silc_buffer_free(clidp);
2730 /* Timeout callback. This is called if connection is idle or for some
2731 other reason is not responding within some period of time. This
2732 disconnects the remote end. */
2734 SILC_TASK_CALLBACK(silc_server_timeout_remote)
2736 SilcServer server = (SilcServer)context;
2737 SilcSocketConnection sock = server->sockets[fd];
2739 SILC_LOG_DEBUG(("Start"));
2744 /* If we have protocol active we must assure that we call the protocol's
2745 final callback so that all the memory is freed. */
2746 if (sock->protocol) {
2747 silc_protocol_cancel(sock->protocol, server->schedule);
2748 sock->protocol->state = SILC_PROTOCOL_STATE_ERROR;
2749 silc_protocol_execute_final(sock->protocol, server->schedule);
2750 sock->protocol = NULL;
2754 if (sock->user_data)
2755 silc_server_free_sock_user_data(server, sock);
2757 silc_server_disconnect_remote(server, sock, "Server closed connection: "
2758 "Connection timeout");
2761 /* Creates new channel. Sends NEW_CHANNEL packet to primary route. This
2762 function may be used only by router. In real SILC network all channels
2763 are created by routers thus this function is never used by normal
2766 SilcChannelEntry silc_server_create_new_channel(SilcServer server,
2767 SilcServerID *router_id,
2773 SilcChannelID *channel_id;
2774 SilcChannelEntry entry;
2778 SILC_LOG_DEBUG(("Creating new channel"));
2781 cipher = SILC_DEFAULT_CIPHER;
2783 hmac = SILC_DEFAULT_HMAC;
2785 /* Allocate cipher */
2786 if (!silc_cipher_alloc(cipher, &key))
2790 if (!silc_hmac_alloc(hmac, NULL, &newhmac)) {
2791 silc_cipher_free(key);
2795 channel_name = strdup(channel_name);
2797 /* Create the channel */
2798 if (!silc_id_create_channel_id(server, router_id, server->rng,
2800 silc_free(channel_name);
2801 silc_cipher_free(key);
2802 silc_hmac_free(newhmac);
2805 entry = silc_idlist_add_channel(server->local_list, channel_name,
2806 SILC_CHANNEL_MODE_NONE, channel_id,
2807 NULL, key, newhmac, 0);
2809 silc_free(channel_name);
2810 silc_cipher_free(key);
2811 silc_hmac_free(newhmac);
2815 entry->cipher = strdup(cipher);
2816 entry->hmac_name = strdup(hmac);
2818 /* Now create the actual key material */
2819 if (!silc_server_create_channel_key(server, entry,
2820 silc_cipher_get_key_len(key) / 8)) {
2821 silc_free(channel_name);
2822 silc_cipher_free(key);
2823 silc_hmac_free(newhmac);
2824 silc_free(entry->cipher);
2825 silc_free(entry->hmac_name);
2829 /* Notify other routers about the new channel. We send the packet
2830 to our primary route. */
2831 if (broadcast && server->standalone == FALSE)
2832 silc_server_send_new_channel(server, server->router->connection, TRUE,
2833 channel_name, entry->id,
2834 silc_id_get_len(entry->id, SILC_ID_CHANNEL),
2837 server->stat.my_channels++;
2842 /* Same as above but creates the channel with Channel ID `channel_id. */
2845 silc_server_create_new_channel_with_id(SilcServer server,
2849 SilcChannelID *channel_id,
2852 SilcChannelEntry entry;
2856 SILC_LOG_DEBUG(("Creating new channel"));
2859 cipher = SILC_DEFAULT_CIPHER;
2861 hmac = SILC_DEFAULT_HMAC;
2863 /* Allocate cipher */
2864 if (!silc_cipher_alloc(cipher, &key))
2868 if (!silc_hmac_alloc(hmac, NULL, &newhmac)) {
2869 silc_cipher_free(key);
2873 channel_name = strdup(channel_name);
2875 /* Create the channel */
2876 entry = silc_idlist_add_channel(server->local_list, channel_name,
2877 SILC_CHANNEL_MODE_NONE, channel_id,
2878 NULL, key, newhmac, 0);
2880 silc_free(channel_name);
2884 /* Now create the actual key material */
2885 if (!silc_server_create_channel_key(server, entry,
2886 silc_cipher_get_key_len(key) / 8)) {
2887 silc_free(channel_name);
2891 /* Notify other routers about the new channel. We send the packet
2892 to our primary route. */
2893 if (broadcast && server->standalone == FALSE)
2894 silc_server_send_new_channel(server, server->router->connection, TRUE,
2895 channel_name, entry->id,
2896 silc_id_get_len(entry->id, SILC_ID_CHANNEL),
2899 server->stat.my_channels++;
2904 /* Channel's key re-key timeout callback. */
2906 SILC_TASK_CALLBACK(silc_server_channel_key_rekey)
2908 SilcServerChannelRekey rekey = (SilcServerChannelRekey)context;
2909 SilcServer server = (SilcServer)rekey->context;
2913 if (!silc_server_create_channel_key(server, rekey->channel, rekey->key_len))
2916 silc_server_send_channel_key(server, NULL, rekey->channel, FALSE);
2919 /* Generates new channel key. This is used to create the initial channel key
2920 but also to re-generate new key for channel. If `key_len' is provided
2921 it is the bytes of the key length. */
2923 bool silc_server_create_channel_key(SilcServer server,
2924 SilcChannelEntry channel,
2928 unsigned char channel_key[32], hash[32];
2931 SILC_LOG_DEBUG(("Generating channel key"));
2933 if (channel->mode & SILC_CHANNEL_MODE_PRIVKEY) {
2934 SILC_LOG_DEBUG(("Channel has private keys, will not generate new key"));
2938 if (!channel->channel_key)
2939 if (!silc_cipher_alloc(SILC_DEFAULT_CIPHER, &channel->channel_key)) {
2940 channel->channel_key = NULL;
2946 else if (channel->key_len)
2947 len = channel->key_len / 8;
2949 len = silc_cipher_get_key_len(channel->channel_key) / 8;
2951 /* Create channel key */
2952 for (i = 0; i < len; i++) channel_key[i] = silc_rng_get_byte(server->rng);
2955 silc_cipher_set_key(channel->channel_key, channel_key, len * 8);
2957 /* Remove old key if exists */
2959 memset(channel->key, 0, channel->key_len / 8);
2960 silc_free(channel->key);
2964 channel->key_len = len * 8;
2965 channel->key = silc_calloc(len, sizeof(*channel->key));
2966 memcpy(channel->key, channel_key, len);
2967 memset(channel_key, 0, sizeof(channel_key));
2969 /* Generate HMAC key from the channel key data and set it */
2971 silc_hmac_alloc(SILC_DEFAULT_HMAC, NULL, &channel->hmac);
2972 silc_hash_make(silc_hmac_get_hash(channel->hmac), channel->key, len, hash);
2973 silc_hmac_set_key(channel->hmac, hash,
2974 silc_hash_len(silc_hmac_get_hash(channel->hmac)));
2975 memset(hash, 0, sizeof(hash));
2977 if (server->server_type == SILC_ROUTER) {
2978 if (!channel->rekey)
2979 channel->rekey = silc_calloc(1, sizeof(*channel->rekey));
2980 channel->rekey->context = (void *)server;
2981 channel->rekey->channel = channel;
2982 channel->rekey->key_len = key_len;
2983 if (channel->rekey->task)
2984 silc_schedule_task_del(server->schedule, channel->rekey->task);
2986 channel->rekey->task =
2987 silc_schedule_task_add(server->schedule, 0,
2988 silc_server_channel_key_rekey,
2989 (void *)channel->rekey, 3600, 0,
2991 SILC_TASK_PRI_NORMAL);
2997 /* Saves the channel key found in the encoded `key_payload' buffer. This
2998 function is used when we receive Channel Key Payload and also when we're
2999 processing JOIN command reply. Returns entry to the channel. */
3001 SilcChannelEntry silc_server_save_channel_key(SilcServer server,
3002 SilcBuffer key_payload,
3003 SilcChannelEntry channel)
3005 SilcChannelKeyPayload payload = NULL;
3006 SilcChannelID *id = NULL;
3007 unsigned char *tmp, hash[32];
3011 SILC_LOG_DEBUG(("Start"));
3013 /* Decode channel key payload */
3014 payload = silc_channel_key_payload_parse(key_payload->data,
3017 SILC_LOG_ERROR(("Bad channel key payload, dropped"));
3022 /* Get the channel entry */
3025 /* Get channel ID */
3026 tmp = silc_channel_key_get_id(payload, &tmp_len);
3027 id = silc_id_str2id(tmp, tmp_len, SILC_ID_CHANNEL);
3033 channel = silc_idlist_find_channel_by_id(server->local_list, id, NULL);
3035 channel = silc_idlist_find_channel_by_id(server->global_list, id, NULL);
3037 SILC_LOG_ERROR(("Received key for non-existent channel"));
3043 tmp = silc_channel_key_get_key(payload, &tmp_len);
3049 cipher = silc_channel_key_get_cipher(payload, NULL);
3055 /* Remove old key if exists */
3057 memset(channel->key, 0, channel->key_len / 8);
3058 silc_free(channel->key);
3059 silc_cipher_free(channel->channel_key);
3062 /* Create new cipher */
3063 if (!silc_cipher_alloc(cipher, &channel->channel_key)) {
3064 channel->channel_key = NULL;
3069 if (channel->cipher)
3070 silc_free(channel->cipher);
3071 channel->cipher = strdup(cipher);
3074 channel->key_len = tmp_len * 8;
3075 channel->key = silc_calloc(tmp_len, sizeof(unsigned char));
3076 memcpy(channel->key, tmp, tmp_len);
3077 silc_cipher_set_key(channel->channel_key, tmp, channel->key_len);
3079 /* Generate HMAC key from the channel key data and set it */
3081 silc_hmac_alloc(SILC_DEFAULT_HMAC, NULL, &channel->hmac);
3082 silc_hash_make(silc_hmac_get_hash(channel->hmac), tmp, tmp_len, hash);
3083 silc_hmac_set_key(channel->hmac, hash,
3084 silc_hash_len(silc_hmac_get_hash(channel->hmac)));
3086 memset(hash, 0, sizeof(hash));
3087 memset(tmp, 0, tmp_len);
3089 if (server->server_type == SILC_ROUTER) {
3090 if (!channel->rekey)
3091 channel->rekey = silc_calloc(1, sizeof(*channel->rekey));
3092 channel->rekey->context = (void *)server;
3093 channel->rekey->channel = channel;
3094 if (channel->rekey->task)
3095 silc_schedule_task_del(server->schedule, channel->rekey->task);
3097 channel->rekey->task =
3098 silc_schedule_task_add(server->schedule, 0,
3099 silc_server_channel_key_rekey,
3100 (void *)channel->rekey, 3600, 0,
3102 SILC_TASK_PRI_NORMAL);
3108 silc_channel_key_payload_free(payload);
3113 /* Heartbeat callback. This function is set as argument for the
3114 silc_socket_set_heartbeat function. The library will call this function
3115 at the set time interval. */
3117 void silc_server_perform_heartbeat(SilcSocketConnection sock,
3120 SilcServerHBContext hb = (SilcServerHBContext)hb_context;
3122 SILC_LOG_DEBUG(("Sending heartbeat to %s (%s)", sock->hostname,
3125 /* Send the heartbeat */
3126 silc_server_send_heartbeat(hb->server, sock);
3129 /* Returns assembled of all servers in the given ID list. The packet's
3130 form is dictated by the New ID payload. */
3132 static void silc_server_announce_get_servers(SilcServer server,
3133 SilcServerEntry remote,
3135 SilcBuffer *servers,
3136 unsigned long creation_time)
3138 SilcIDCacheList list;
3139 SilcIDCacheEntry id_cache;
3140 SilcServerEntry entry;
3143 /* Go through all clients in the list */
3144 if (silc_idcache_get_all(id_list->servers, &list)) {
3145 if (silc_idcache_list_first(list, &id_cache)) {
3147 entry = (SilcServerEntry)id_cache->context;
3149 /* Do not announce the one we've sending our announcements and
3150 do not announce ourself. Also check the creation time if it's
3152 if ((entry == remote) || (entry == server->id_entry) ||
3153 (creation_time && entry->data.created < creation_time)) {
3154 if (!silc_idcache_list_next(list, &id_cache))
3159 idp = silc_id_payload_encode(entry->id, SILC_ID_SERVER);
3161 *servers = silc_buffer_realloc(*servers,
3163 (*servers)->truelen + idp->len :
3165 silc_buffer_pull_tail(*servers, ((*servers)->end - (*servers)->data));
3166 silc_buffer_put(*servers, idp->data, idp->len);
3167 silc_buffer_pull(*servers, idp->len);
3168 silc_buffer_free(idp);
3170 if (!silc_idcache_list_next(list, &id_cache))
3175 silc_idcache_list_free(list);
3180 silc_server_announce_encode_notify(SilcNotifyType notify, uint32 argc, ...)
3186 p = silc_notify_payload_encode(notify, argc, ap);
3192 /* This function is used by router to announce existing servers to our
3193 primary router when we've connected to it. If `creation_time' is non-zero
3194 then only the servers that has been created after the `creation_time'
3195 will be announced. */
3197 void silc_server_announce_servers(SilcServer server, bool global,
3198 unsigned long creation_time,
3199 SilcSocketConnection remote)
3201 SilcBuffer servers = NULL;
3203 SILC_LOG_DEBUG(("Announcing servers"));
3205 /* Get servers in local list */
3206 silc_server_announce_get_servers(server, remote->user_data,
3207 server->local_list, &servers,
3211 /* Get servers in global list */
3212 silc_server_announce_get_servers(server, remote->user_data,
3213 server->global_list, &servers,
3217 silc_buffer_push(servers, servers->data - servers->head);
3218 SILC_LOG_HEXDUMP(("servers"), servers->data, servers->len);
3220 /* Send the packet */
3221 silc_server_packet_send(server, remote,
3222 SILC_PACKET_NEW_ID, SILC_PACKET_FLAG_LIST,
3223 servers->data, servers->len, TRUE);
3225 silc_buffer_free(servers);
3229 /* Returns assembled packet of all clients in the given ID list. The
3230 packet's form is dictated by the New ID Payload. */
3232 static void silc_server_announce_get_clients(SilcServer server,
3234 SilcBuffer *clients,
3236 unsigned long creation_time)
3238 SilcIDCacheList list;
3239 SilcIDCacheEntry id_cache;
3240 SilcClientEntry client;
3243 unsigned char mode[4];
3245 /* Go through all clients in the list */
3246 if (silc_idcache_get_all(id_list->clients, &list)) {
3247 if (silc_idcache_list_first(list, &id_cache)) {
3249 client = (SilcClientEntry)id_cache->context;
3251 if (creation_time && client->data.created < creation_time) {
3252 if (!silc_idcache_list_next(list, &id_cache))
3257 idp = silc_id_payload_encode(client->id, SILC_ID_CLIENT);
3259 *clients = silc_buffer_realloc(*clients,
3261 (*clients)->truelen + idp->len :
3263 silc_buffer_pull_tail(*clients, ((*clients)->end - (*clients)->data));
3264 silc_buffer_put(*clients, idp->data, idp->len);
3265 silc_buffer_pull(*clients, idp->len);
3267 SILC_PUT32_MSB(client->mode, mode);
3268 tmp = silc_server_announce_encode_notify(SILC_NOTIFY_TYPE_UMODE_CHANGE,
3269 2, idp->data, idp->len,
3271 *umodes = silc_buffer_realloc(*umodes,
3273 (*umodes)->truelen + tmp->len :
3275 silc_buffer_pull_tail(*umodes, ((*umodes)->end - (*umodes)->data));
3276 silc_buffer_put(*umodes, tmp->data, tmp->len);
3277 silc_buffer_pull(*umodes, tmp->len);
3278 silc_buffer_free(tmp);
3280 silc_buffer_free(idp);
3282 if (!silc_idcache_list_next(list, &id_cache))
3287 silc_idcache_list_free(list);
3291 /* This function is used to announce our existing clients to our router
3292 when we've connected to it. If `creation_time' is non-zero then only
3293 the clients that has been created after the `creation_time' will be
3296 void silc_server_announce_clients(SilcServer server,
3297 unsigned long creation_time,
3298 SilcSocketConnection remote)
3300 SilcBuffer clients = NULL;
3301 SilcBuffer umodes = NULL;
3303 SILC_LOG_DEBUG(("Announcing clients"));
3305 /* Get clients in local list */
3306 silc_server_announce_get_clients(server, server->local_list,
3307 &clients, &umodes, creation_time);
3309 /* As router we announce our global list as well */
3310 if (server->server_type == SILC_ROUTER)
3311 silc_server_announce_get_clients(server, server->global_list,
3312 &clients, &umodes, creation_time);
3315 silc_buffer_push(clients, clients->data - clients->head);
3316 SILC_LOG_HEXDUMP(("clients"), clients->data, clients->len);
3318 /* Send the packet */
3319 silc_server_packet_send(server, remote,
3320 SILC_PACKET_NEW_ID, SILC_PACKET_FLAG_LIST,
3321 clients->data, clients->len, TRUE);
3323 silc_buffer_free(clients);
3327 silc_buffer_push(umodes, umodes->data - umodes->head);
3328 SILC_LOG_HEXDUMP(("umodes"), umodes->data, umodes->len);
3330 /* Send the packet */
3331 silc_server_packet_send(server, remote,
3332 SILC_PACKET_NOTIFY, SILC_PACKET_FLAG_LIST,
3333 umodes->data, umodes->len, TRUE);
3335 silc_buffer_free(umodes);
3339 /* Returns channel's topic for announcing it */
3341 void silc_server_announce_get_channel_topic(SilcServer server,
3342 SilcChannelEntry channel,
3347 if (channel->topic) {
3348 chidp = silc_id_payload_encode(channel->id, SILC_ID_CHANNEL);
3349 *topic = silc_server_announce_encode_notify(SILC_NOTIFY_TYPE_TOPIC_SET, 2,
3350 chidp->data, chidp->len,
3352 strlen(channel->topic));
3353 silc_buffer_free(chidp);
3357 /* Returns assembled packets for channel users of the `channel'. */
3359 void silc_server_announce_get_channel_users(SilcServer server,
3360 SilcChannelEntry channel,
3361 SilcBuffer *channel_users,
3362 SilcBuffer *channel_users_modes)
3364 SilcChannelClientEntry chl;
3365 SilcHashTableList htl;
3366 SilcBuffer chidp, clidp;
3369 unsigned char mode[4];
3371 SILC_LOG_DEBUG(("Start"));
3373 /* Now find all users on the channel */
3374 chidp = silc_id_payload_encode(channel->id, SILC_ID_CHANNEL);
3375 silc_hash_table_list(channel->user_list, &htl);
3376 while (silc_hash_table_get(&htl, NULL, (void *)&chl)) {
3377 clidp = silc_id_payload_encode(chl->client->id, SILC_ID_CLIENT);
3380 tmp = silc_server_announce_encode_notify(SILC_NOTIFY_TYPE_JOIN, 2,
3381 clidp->data, clidp->len,
3382 chidp->data, chidp->len);
3385 silc_buffer_realloc(*channel_users,
3387 (*channel_users)->truelen + len : len));
3388 silc_buffer_pull_tail(*channel_users,
3389 ((*channel_users)->end -
3390 (*channel_users)->data));
3392 silc_buffer_put(*channel_users, tmp->data, tmp->len);
3393 silc_buffer_pull(*channel_users, len);
3394 silc_buffer_free(tmp);
3396 /* CUMODE notify for mode change on the channel */
3397 SILC_PUT32_MSB(chl->mode, mode);
3398 tmp = silc_server_announce_encode_notify(SILC_NOTIFY_TYPE_CUMODE_CHANGE,
3399 3, clidp->data, clidp->len,
3401 clidp->data, clidp->len);
3403 *channel_users_modes =
3404 silc_buffer_realloc(*channel_users_modes,
3405 (*channel_users_modes ?
3406 (*channel_users_modes)->truelen + len : len));
3407 silc_buffer_pull_tail(*channel_users_modes,
3408 ((*channel_users_modes)->end -
3409 (*channel_users_modes)->data));
3411 silc_buffer_put(*channel_users_modes, tmp->data, tmp->len);
3412 silc_buffer_pull(*channel_users_modes, len);
3413 silc_buffer_free(tmp);
3415 silc_buffer_free(clidp);
3417 silc_buffer_free(chidp);
3420 /* Returns assembled packets for all channels and users on those channels
3421 from the given ID List. The packets are in the form dictated by the
3422 New Channel and New Channel User payloads. */
3424 void silc_server_announce_get_channels(SilcServer server,
3426 SilcBuffer *channels,
3427 SilcBuffer *channel_users,
3428 SilcBuffer **channel_users_modes,
3429 uint32 *channel_users_modes_c,
3430 SilcBuffer **channel_topics,
3431 SilcChannelID ***channel_ids,
3432 unsigned long creation_time)
3434 SilcIDCacheList list;
3435 SilcIDCacheEntry id_cache;
3436 SilcChannelEntry channel;
3441 int i = *channel_users_modes_c;
3444 SILC_LOG_DEBUG(("Start"));
3446 /* Go through all channels in the list */
3447 if (silc_idcache_get_all(id_list->channels, &list)) {
3448 if (silc_idcache_list_first(list, &id_cache)) {
3450 channel = (SilcChannelEntry)id_cache->context;
3452 if (creation_time && channel->created < creation_time)
3457 cid = silc_id_id2str(channel->id, SILC_ID_CHANNEL);
3458 id_len = silc_id_get_len(channel->id, SILC_ID_CHANNEL);
3459 name_len = strlen(channel->channel_name);
3462 len = 4 + name_len + id_len + 4;
3464 silc_buffer_realloc(*channels,
3465 (*channels ? (*channels)->truelen +
3467 silc_buffer_pull_tail(*channels,
3468 ((*channels)->end - (*channels)->data));
3469 silc_buffer_format(*channels,
3470 SILC_STR_UI_SHORT(name_len),
3471 SILC_STR_UI_XNSTRING(channel->channel_name,
3473 SILC_STR_UI_SHORT(id_len),
3474 SILC_STR_UI_XNSTRING(cid, id_len),
3475 SILC_STR_UI_INT(channel->mode),
3477 silc_buffer_pull(*channels, len);
3480 /* Channel user modes */
3481 *channel_users_modes = silc_realloc(*channel_users_modes,
3482 sizeof(**channel_users_modes) *
3484 (*channel_users_modes)[i] = NULL;
3485 *channel_ids = silc_realloc(*channel_ids,
3486 sizeof(**channel_ids) * (i + 1));
3487 (*channel_ids)[i] = NULL;
3488 silc_server_announce_get_channel_users(server, channel,
3490 &(*channel_users_modes)[i]);
3491 (*channel_ids)[i] = channel->id;
3493 /* Channel's topic */
3494 *channel_topics = silc_realloc(*channel_topics,
3495 sizeof(**channel_topics) * (i + 1));
3496 (*channel_topics)[i] = NULL;
3497 silc_server_announce_get_channel_topic(server, channel,
3498 &(*channel_topics)[i]);
3501 if (!silc_idcache_list_next(list, &id_cache))
3505 *channel_users_modes_c += i;
3508 silc_idcache_list_free(list);
3512 /* This function is used to announce our existing channels to our router
3513 when we've connected to it. This also announces the users on the
3514 channels to the router. If the `creation_time' is non-zero only the
3515 channels that was created after the `creation_time' are announced.
3516 Note that the channel users are still announced even if the `creation_time'
3519 void silc_server_announce_channels(SilcServer server,
3520 unsigned long creation_time,
3521 SilcSocketConnection remote)
3523 SilcBuffer channels = NULL, channel_users = NULL;
3524 SilcBuffer *channel_users_modes = NULL;
3525 SilcBuffer *channel_topics = NULL;
3526 uint32 channel_users_modes_c = 0;
3527 SilcChannelID **channel_ids = NULL;
3529 SILC_LOG_DEBUG(("Announcing channels and channel users"));
3531 /* Get channels and channel users in local list */
3532 silc_server_announce_get_channels(server, server->local_list,
3533 &channels, &channel_users,
3534 &channel_users_modes,
3535 &channel_users_modes_c,
3537 &channel_ids, creation_time);
3539 /* Get channels and channel users in global list */
3540 if (server->server_type != SILC_SERVER)
3541 silc_server_announce_get_channels(server, server->global_list,
3542 &channels, &channel_users,
3543 &channel_users_modes,
3544 &channel_users_modes_c,
3546 &channel_ids, creation_time);
3549 silc_buffer_push(channels, channels->data - channels->head);
3550 SILC_LOG_HEXDUMP(("channels"), channels->data, channels->len);
3552 /* Send the packet */
3553 silc_server_packet_send(server, remote,
3554 SILC_PACKET_NEW_CHANNEL, SILC_PACKET_FLAG_LIST,
3555 channels->data, channels->len,
3558 silc_buffer_free(channels);
3561 if (channel_users) {
3562 silc_buffer_push(channel_users, channel_users->data - channel_users->head);
3563 SILC_LOG_HEXDUMP(("channel users"), channel_users->data,
3564 channel_users->len);
3566 /* Send the packet */
3567 silc_server_packet_send(server, remote,
3568 SILC_PACKET_NOTIFY, SILC_PACKET_FLAG_LIST,
3569 channel_users->data, channel_users->len,
3572 silc_buffer_free(channel_users);
3575 if (channel_users_modes) {
3578 for (i = 0; i < channel_users_modes_c; i++) {
3579 silc_buffer_push(channel_users_modes[i],
3580 channel_users_modes[i]->data -
3581 channel_users_modes[i]->head);
3582 SILC_LOG_HEXDUMP(("channel users modes"), channel_users_modes[i]->data,
3583 channel_users_modes[i]->len);
3584 silc_server_packet_send_dest(server, remote,
3585 SILC_PACKET_NOTIFY, SILC_PACKET_FLAG_LIST,
3586 channel_ids[i], SILC_ID_CHANNEL,
3587 channel_users_modes[i]->data,
3588 channel_users_modes[i]->len,
3590 silc_buffer_free(channel_users_modes[i]);
3592 silc_free(channel_users_modes);
3595 if (channel_topics) {
3598 for (i = 0; i < channel_users_modes_c; i++) {
3599 if (!channel_topics[i])
3602 silc_buffer_push(channel_topics[i],
3603 channel_topics[i]->data -
3604 channel_topics[i]->head);
3605 SILC_LOG_HEXDUMP(("channel topic"), channel_topics[i]->data,
3606 channel_topics[i]->len);
3607 silc_server_packet_send_dest(server, remote,
3608 SILC_PACKET_NOTIFY, SILC_PACKET_FLAG_LIST,
3609 channel_ids[i], SILC_ID_CHANNEL,
3610 channel_topics[i]->data,
3611 channel_topics[i]->len,
3613 silc_buffer_free(channel_topics[i]);
3615 silc_free(channel_topics);
3618 silc_free(channel_ids);
3621 /* Failure timeout callback. If this is called then we will immediately
3622 process the received failure. We always process the failure with timeout
3623 since we do not want to blindly trust to received failure packets.
3624 This won't be called (the timeout is cancelled) if the failure was
3625 bogus (it is bogus if remote does not close the connection after sending
3628 SILC_TASK_CALLBACK(silc_server_failure_callback)
3630 SilcServerFailureContext f = (SilcServerFailureContext)context;
3632 if (f->sock->protocol) {
3633 f->sock->protocol->state = SILC_PROTOCOL_STATE_FAILURE;
3634 silc_protocol_execute(f->sock->protocol, f->server->schedule, 0, 0);
3640 /* Assembles user list and users mode list from the `channel'. */
3642 void silc_server_get_users_on_channel(SilcServer server,
3643 SilcChannelEntry channel,
3644 SilcBuffer *user_list,
3645 SilcBuffer *mode_list,
3648 SilcChannelClientEntry chl;
3649 SilcHashTableList htl;
3650 SilcBuffer client_id_list;
3651 SilcBuffer client_mode_list;
3653 uint32 list_count = 0, len = 0;
3655 silc_hash_table_list(channel->user_list, &htl);
3656 while (silc_hash_table_get(&htl, NULL, (void *)&chl))
3657 len += (silc_id_get_len(chl->client->id, SILC_ID_CLIENT) + 4);
3659 client_id_list = silc_buffer_alloc(len);
3661 silc_buffer_alloc(4 * silc_hash_table_count(channel->user_list));
3662 silc_buffer_pull_tail(client_id_list, SILC_BUFFER_END(client_id_list));
3663 silc_buffer_pull_tail(client_mode_list, SILC_BUFFER_END(client_mode_list));
3665 silc_hash_table_list(channel->user_list, &htl);
3666 while (silc_hash_table_get(&htl, NULL, (void *)&chl)) {
3668 idp = silc_id_payload_encode(chl->client->id, SILC_ID_CLIENT);
3669 silc_buffer_put(client_id_list, idp->data, idp->len);
3670 silc_buffer_pull(client_id_list, idp->len);
3671 silc_buffer_free(idp);
3673 /* Client's mode on channel */
3674 SILC_PUT32_MSB(chl->mode, client_mode_list->data);
3675 silc_buffer_pull(client_mode_list, 4);
3679 silc_buffer_push(client_id_list,
3680 client_id_list->data - client_id_list->head);
3681 silc_buffer_push(client_mode_list,
3682 client_mode_list->data - client_mode_list->head);
3684 *user_list = client_id_list;
3685 *mode_list = client_mode_list;
3686 *user_count = list_count;
3689 /* Saves users and their modes to the `channel'. */
3691 void silc_server_save_users_on_channel(SilcServer server,
3692 SilcSocketConnection sock,
3693 SilcChannelEntry channel,
3694 SilcClientID *noadd,
3695 SilcBuffer user_list,
3696 SilcBuffer mode_list,
3702 SilcClientID *client_id;
3703 SilcClientEntry client;
3704 SilcIDCacheEntry cache;
3707 for (i = 0; i < user_count; i++) {
3709 SILC_GET16_MSB(idp_len, user_list->data + 2);
3711 client_id = silc_id_payload_parse_id(user_list->data, idp_len);
3712 silc_buffer_pull(user_list, idp_len);
3717 SILC_GET32_MSB(mode, mode_list->data);
3718 silc_buffer_pull(mode_list, 4);
3720 if (noadd && SILC_ID_CLIENT_COMPARE(client_id, noadd)) {
3721 silc_free(client_id);
3727 /* Check if we have this client cached already. */
3728 client = silc_idlist_find_client_by_id(server->local_list, client_id,
3729 server->server_type, &cache);
3731 client = silc_idlist_find_client_by_id(server->global_list,
3732 client_id, server->server_type,
3737 /* If router did not find such Client ID in its lists then this must
3738 be bogus client or some router in the net is buggy. */
3739 if (server->server_type == SILC_ROUTER) {
3740 silc_free(client_id);
3744 /* We don't have that client anywhere, add it. The client is added
3745 to global list since server didn't have it in the lists so it must be
3747 client = silc_idlist_add_client(server->global_list, NULL, NULL, NULL,
3748 silc_id_dup(client_id, SILC_ID_CLIENT),
3749 sock->user_data, NULL, 0);
3751 SILC_LOG_ERROR(("Could not add new client to the ID Cache"));
3752 silc_free(client_id);
3756 client->data.status |= SILC_IDLIST_STATUS_REGISTERED;
3758 /* Found, if it is from global list we'll assure that we won't
3759 expire it now that the entry is on channel. */
3764 silc_free(client_id);
3766 if (!silc_server_client_on_channel(client, channel)) {
3767 /* Client was not on the channel, add it. */
3768 SilcChannelClientEntry chl = silc_calloc(1, sizeof(*chl));
3769 chl->client = client;
3771 chl->channel = channel;
3772 silc_hash_table_add(channel->user_list, chl->client, chl);
3773 silc_hash_table_add(client->channels, chl->channel, chl);
3778 /* Lookups route to the client indicated by the `id_data'. The connection
3779 object and internal data object is returned. Returns NULL if route
3780 could not be found to the client. If the `client_id' is specified then
3781 it is used and the `id_data' is ignored. */
3783 SilcSocketConnection silc_server_get_client_route(SilcServer server,
3784 unsigned char *id_data,
3786 SilcClientID *client_id,
3787 SilcIDListData *idata)
3790 SilcClientEntry client;
3792 SILC_LOG_DEBUG(("Start"));
3794 /* Decode destination Client ID */
3796 id = silc_id_str2id(id_data, id_len, SILC_ID_CLIENT);
3798 SILC_LOG_ERROR(("Could not decode destination Client ID, dropped"));
3802 id = silc_id_dup(client_id, SILC_ID_CLIENT);
3805 /* If the destination belongs to our server we don't have to route
3806 the packet anywhere but to send it to the local destination. */
3807 client = silc_idlist_find_client_by_id(server->local_list, id, TRUE, NULL);
3811 /* If we are router and the client has router then the client is in
3812 our cell but not directly connected to us. */
3813 if (server->server_type == SILC_ROUTER && client->router) {
3814 /* We are of course in this case the client's router thus the route
3815 to the client is the server who owns the client. So, we will send
3816 the packet to that server. */
3818 *idata = (SilcIDListData)client->router;
3819 return client->router->connection;
3822 /* Seems that client really is directly connected to us */
3824 *idata = (SilcIDListData)client;
3825 return client->connection;
3828 /* Destination belongs to someone not in this server. If we are normal
3829 server our action is to send the packet to our router. */
3830 if (server->server_type != SILC_ROUTER && !server->standalone) {
3833 *idata = (SilcIDListData)server->router;
3834 return server->router->connection;
3837 /* We are router and we will perform route lookup for the destination
3838 and send the packet to fastest route. */
3839 if (server->server_type == SILC_ROUTER && !server->standalone) {
3840 /* Check first that the ID is valid */
3841 client = silc_idlist_find_client_by_id(server->global_list, id,
3844 SilcSocketConnection dst_sock;
3846 dst_sock = silc_server_route_get(server, id, SILC_ID_CLIENT);
3850 *idata = (SilcIDListData)dst_sock->user_data;
3859 /* Encodes and returns channel list of channels the `client' has joined.
3860 Secret channels are not put to the list. */
3862 SilcBuffer silc_server_get_client_channel_list(SilcServer server,
3863 SilcClientEntry client)
3865 SilcBuffer buffer = NULL;
3866 SilcChannelEntry channel;
3867 SilcChannelClientEntry chl;
3868 SilcHashTableList htl;
3874 silc_hash_table_list(client->channels, &htl);
3875 while (silc_hash_table_get(&htl, NULL, (void *)&chl)) {
3876 channel = chl->channel;
3878 if (channel->mode & SILC_CHANNEL_MODE_SECRET ||
3879 channel->mode & SILC_CHANNEL_MODE_PRIVATE)
3882 cid = silc_id_id2str(channel->id, SILC_ID_CHANNEL);
3883 id_len = silc_id_get_len(channel->id, SILC_ID_CHANNEL);
3884 name_len = strlen(channel->channel_name);
3886 len = 4 + name_len + id_len + 4;
3887 buffer = silc_buffer_realloc(buffer,
3888 (buffer ? (buffer)->truelen + len : len));
3889 silc_buffer_pull_tail(buffer, ((buffer)->end - (buffer)->data));
3890 silc_buffer_format(buffer,
3891 SILC_STR_UI_SHORT(name_len),
3892 SILC_STR_UI_XNSTRING(channel->channel_name,
3894 SILC_STR_UI_SHORT(id_len),
3895 SILC_STR_UI_XNSTRING(cid, id_len),
3896 SILC_STR_UI_INT(chl->mode), /* Client's mode */
3898 silc_buffer_pull(buffer, len);
3903 silc_buffer_push(buffer, buffer->data - buffer->head);
3908 /* Finds client entry by Client ID and if it is not found then resolves
3909 it using WHOIS command. */
3911 SilcClientEntry silc_server_get_client_resolve(SilcServer server,
3912 SilcClientID *client_id)
3914 SilcClientEntry client;
3916 client = silc_idlist_find_client_by_id(server->local_list, client_id,
3919 client = silc_idlist_find_client_by_id(server->global_list,
3920 client_id, TRUE, NULL);
3921 if (!client && server->server_type == SILC_ROUTER)
3925 if (!client && server->standalone)
3928 if (!client || !client->nickname || !client->username) {
3929 SilcBuffer buffer, idp;
3931 client->data.status |= SILC_IDLIST_STATUS_RESOLVING;
3932 client->data.status &= ~SILC_IDLIST_STATUS_RESOLVED;
3933 client->resolve_cmd_ident = ++server->cmd_ident;
3935 idp = silc_id_payload_encode(client_id, SILC_ID_CLIENT);
3936 buffer = silc_command_payload_encode_va(SILC_COMMAND_WHOIS,
3937 server->cmd_ident, 1,
3938 3, idp->data, idp->len);
3939 silc_server_packet_send(server, client ? client->router->connection :
3940 server->router->connection,
3941 SILC_PACKET_COMMAND, 0,
3942 buffer->data, buffer->len, FALSE);
3943 silc_buffer_free(idp);
3944 silc_buffer_free(buffer);
3951 /* A timeout callback for the re-key. We will be the initiator of the
3954 SILC_TASK_CALLBACK(silc_server_rekey_callback)
3956 SilcSocketConnection sock = (SilcSocketConnection)context;
3957 SilcIDListData idata = (SilcIDListData)sock->user_data;
3958 SilcServer server = (SilcServer)idata->rekey->context;
3959 SilcProtocol protocol;
3960 SilcServerRekeyInternalContext *proto_ctx;
3962 SILC_LOG_DEBUG(("Start"));
3964 /* Allocate internal protocol context. This is sent as context
3966 proto_ctx = silc_calloc(1, sizeof(*proto_ctx));
3967 proto_ctx->server = (void *)server;
3968 proto_ctx->sock = sock;
3969 proto_ctx->responder = FALSE;
3970 proto_ctx->pfs = idata->rekey->pfs;
3972 /* Perform rekey protocol. Will call the final callback after the
3973 protocol is over. */
3974 silc_protocol_alloc(SILC_PROTOCOL_SERVER_REKEY,
3975 &protocol, proto_ctx, silc_server_rekey_final);
3976 sock->protocol = protocol;
3978 /* Run the protocol */
3979 silc_protocol_execute(protocol, server->schedule, 0, 0);
3981 /* Re-register re-key timeout */
3982 silc_schedule_task_add(server->schedule, sock->sock,
3983 silc_server_rekey_callback,
3984 context, idata->rekey->timeout, 0,
3985 SILC_TASK_TIMEOUT, SILC_TASK_PRI_NORMAL);
3988 /* The final callback for the REKEY protocol. This will actually take the
3989 new key material into use. */
3991 SILC_TASK_CALLBACK_GLOBAL(silc_server_rekey_final)
3993 SilcProtocol protocol = (SilcProtocol)context;
3994 SilcServerRekeyInternalContext *ctx =
3995 (SilcServerRekeyInternalContext *)protocol->context;
3996 SilcServer server = (SilcServer)ctx->server;
3997 SilcSocketConnection sock = ctx->sock;
3999 SILC_LOG_DEBUG(("Start"));
4001 if (protocol->state == SILC_PROTOCOL_STATE_ERROR ||
4002 protocol->state == SILC_PROTOCOL_STATE_FAILURE) {
4003 /* Error occured during protocol */
4004 SILC_LOG_ERROR(("Error occurred during rekey protocol"));
4005 silc_protocol_cancel(protocol, server->schedule);
4006 silc_protocol_free(protocol);
4007 sock->protocol = NULL;
4009 silc_packet_context_free(ctx->packet);
4011 silc_ske_free(ctx->ske);
4016 /* Purge the outgoing data queue to assure that all rekey packets really
4017 go to the network before we quit the protocol. */
4018 silc_server_packet_queue_purge(server, sock);
4021 silc_protocol_free(protocol);
4022 sock->protocol = NULL;
4024 silc_packet_context_free(ctx->packet);
4026 silc_ske_free(ctx->ske);