5 Author: Pekka Riikonen <priikone@poseidon.pspt.fi>
7 Copyright (C) 1997 - 2001 Pekka Riikonen
9 This program is free software; you can redistribute it and/or modify
10 it under the terms of the GNU General Public License as published by
11 the Free Software Foundation; either version 2 of the License, or
12 (at your option) any later version.
14 This program is distributed in the hope that it will be useful,
15 but WITHOUT ANY WARRANTY; without even the implied warranty of
16 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 GNU General Public License for more details.
21 * This is the actual SILC server than handles everything relating to
22 * servicing the SILC connections. This is also a SILC router as a router
23 * is also normal server.
27 #include "serverincludes.h"
28 #include "server_internal.h"
30 /* Static prototypes */
31 SILC_TASK_CALLBACK(silc_server_connect_router);
32 SILC_TASK_CALLBACK(silc_server_connect_to_router);
33 SILC_TASK_CALLBACK(silc_server_connect_to_router_second);
34 SILC_TASK_CALLBACK(silc_server_connect_to_router_final);
35 SILC_TASK_CALLBACK(silc_server_accept_new_connection);
36 SILC_TASK_CALLBACK(silc_server_accept_new_connection_second);
37 SILC_TASK_CALLBACK(silc_server_accept_new_connection_final);
38 SILC_TASK_CALLBACK(silc_server_packet_process);
39 SILC_TASK_CALLBACK(silc_server_packet_parse_real);
40 SILC_TASK_CALLBACK(silc_server_timeout_remote);
41 SILC_TASK_CALLBACK(silc_server_failure_callback);
42 SILC_TASK_CALLBACK(silc_server_rekey_callback);
44 /* Allocates a new SILC server object. This has to be done before the server
45 can be used. After allocation one must call silc_server_init to initialize
46 the server. The new allocated server object is returned to the new_server
49 int silc_server_alloc(SilcServer *new_server)
53 SILC_LOG_DEBUG(("Allocating new server object"));
55 server = silc_calloc(1, sizeof(*server));
56 server->server_type = SILC_SERVER;
57 server->standalone = TRUE;
58 server->local_list = silc_calloc(1, sizeof(*server->local_list));
59 server->global_list = silc_calloc(1, sizeof(*server->global_list));
60 server->pending_commands = silc_dlist_init();
62 server->sim = silc_dlist_init();
70 /* Free's the SILC server object. This is called at the very end before
73 void silc_server_free(SilcServer server)
80 if (server->local_list)
81 silc_free(server->local_list);
82 if (server->global_list)
83 silc_free(server->global_list);
85 silc_rng_free(server->rng);
88 while ((sim = silc_dlist_get(server->sim)) != SILC_LIST_END) {
89 silc_dlist_del(server->sim, sim);
92 silc_dlist_uninit(server->sim);
96 silc_free(server->params);
98 if (server->pending_commands)
99 silc_dlist_uninit(server->pending_commands);
105 /* Initializes the entire SILC server. This is called always before running
106 the server. This is called only once at the initialization of the program.
107 This binds the server to its listenning port. After this function returns
108 one should call silc_server_run to start the server. This returns TRUE
109 when everything is ok to run the server. Configuration file must be
110 read and parsed before calling this. */
112 int silc_server_init(SilcServer server)
114 int *sock = NULL, sock_count = 0, i;
116 SilcServerEntry id_entry;
117 SilcIDListPurge purge;
119 SILC_LOG_DEBUG(("Initializing server"));
121 assert(server->config);
123 /* Set public and private keys */
124 server->public_key = server->config->server_keys->public_key;
125 server->private_key = server->config->server_keys->private_key;
126 if (!server->public_key || !server->private_key) {
127 SILC_LOG_ERROR(("Server public key and/or private key does not exist"));
131 /* XXX After server is made as Silc Server Library this can be given
132 as argument, for now this is hard coded */
133 server->params = silc_calloc(1, sizeof(*server->params));
134 server->params->retry_count = SILC_SERVER_RETRY_COUNT;
135 server->params->retry_interval_min = SILC_SERVER_RETRY_INTERVAL_MIN;
136 server->params->retry_interval_max = SILC_SERVER_RETRY_INTERVAL_MAX;
137 server->params->retry_keep_trying = FALSE;
138 server->params->protocol_timeout = 60;
139 server->params->require_reverse_mapping = FALSE;
141 /* Set log files where log message should be saved. */
142 server->config->server = server;
143 silc_server_config_setlogfiles(server->config);
145 /* Register all configured ciphers, PKCS and hash functions. */
146 silc_server_config_register_ciphers(server->config);
147 silc_server_config_register_pkcs(server->config);
148 silc_server_config_register_hashfuncs(server->config);
149 silc_server_config_register_hmacs(server->config);
151 /* Initialize random number generator for the server. */
152 server->rng = silc_rng_alloc();
153 silc_rng_init(server->rng);
154 silc_rng_global_init(server->rng);
156 /* Initialize hash functions for server to use */
157 silc_hash_alloc("md5", &server->md5hash);
158 silc_hash_alloc("sha1", &server->sha1hash);
160 /* Initialize none cipher */
161 silc_cipher_alloc("none", &server->none_cipher);
163 /* Create a listening server. Note that our server can listen on
164 multiple ports. All listeners are created here and now. */
165 /* XXX Still check this whether to use server_info or listen_port. */
167 while(server->config->listen_port) {
170 tmp = silc_net_create_server(server->config->listen_port->port,
171 server->config->listen_port->host);
175 sock = silc_realloc(sock, (sizeof(int *) * (sock_count + 1)));
176 sock[sock_count] = tmp;
177 server->config->listen_port = server->config->listen_port->next;
181 /* Initialize ID caches */
182 server->local_list->clients =
183 silc_idcache_alloc(0, silc_idlist_client_destructor);
184 server->local_list->servers = silc_idcache_alloc(0, NULL);
185 server->local_list->channels = silc_idcache_alloc(0, NULL);
187 /* These are allocated for normal server as well as these hold some
188 global information that the server has fetched from its router. For
189 router these are used as they are supposed to be used on router. */
190 server->global_list->clients =
191 silc_idcache_alloc(0, silc_idlist_client_destructor);
192 server->global_list->servers = silc_idcache_alloc(0, NULL);
193 server->global_list->channels = silc_idcache_alloc(0, NULL);
195 /* Allocate the entire socket list that is used in server. Eventually
196 all connections will have entry in this table (it is a table of
197 pointers to the actual object that is allocated individually
199 server->sockets = silc_calloc(SILC_SERVER_MAX_CONNECTIONS,
200 sizeof(*server->sockets));
202 for (i = 0; i < sock_count; i++) {
203 SilcSocketConnection newsocket = NULL;
205 /* Set socket to non-blocking mode */
206 silc_net_set_socket_nonblock(sock[i]);
207 server->sock = sock[i];
209 /* Create a Server ID for the server. */
210 silc_id_create_server_id(sock[i], server->rng, &id);
216 server->id_string = silc_id_id2str(id, SILC_ID_SERVER);
217 server->id_string_len = silc_id_get_len(SILC_ID_SERVER);
218 server->id_type = SILC_ID_SERVER;
219 server->server_name = server->config->server_info->server_name;
221 /* Add ourselves to the server list. We don't have a router yet
222 beacuse we haven't established a route yet. It will be done later.
223 For now, NULL is sent as router. This allocates new entry to
226 silc_idlist_add_server(server->local_list,
227 server->config->server_info->server_name,
228 server->server_type, server->id, NULL, NULL);
230 SILC_LOG_ERROR(("Could not add ourselves to cache"));
234 /* Add ourselves also to the socket table. The entry allocated above
235 is sent as argument for fast referencing in the future. */
236 silc_socket_alloc(sock[i], SILC_SOCKET_TYPE_SERVER, id_entry,
239 server->sockets[sock[i]] = newsocket;
241 /* Put the allocated socket pointer also to the entry allocated above
242 for fast back-referencing to the socket list. */
243 id_entry->connection = (void *)server->sockets[sock[i]];
244 server->id_entry = id_entry;
247 /* Register the task queues. In SILC we have by default three task queues.
248 One task queue for non-timeout tasks which perform different kind of
249 I/O on file descriptors, timeout task queue for timeout tasks, and,
250 generic non-timeout task queue whose tasks apply to all connections. */
251 silc_task_queue_alloc(&server->io_queue, TRUE);
252 if (!server->io_queue) {
255 silc_task_queue_alloc(&server->timeout_queue, TRUE);
256 if (!server->timeout_queue) {
259 silc_task_queue_alloc(&server->generic_queue, TRUE);
260 if (!server->generic_queue) {
264 /* Register protocols */
265 silc_server_protocols_register();
267 /* Initialize the scheduler */
268 silc_schedule_init(&server->io_queue, &server->timeout_queue,
269 &server->generic_queue,
270 SILC_SERVER_MAX_CONNECTIONS);
272 /* Add the first task to the queue. This is task that is executed by
273 timeout. It expires as soon as the caller calls silc_server_run. This
274 task performs authentication protocol and key exchange with our
276 silc_task_register(server->timeout_queue, sock[0],
277 silc_server_connect_to_router,
278 (void *)server, 0, 1,
280 SILC_TASK_PRI_NORMAL);
282 /* Add listener task to the queue. This task receives new connections to the
283 server. This task remains on the queue until the end of the program. */
284 silc_task_register(server->io_queue, sock[0],
285 silc_server_accept_new_connection,
286 (void *)server, 0, 0,
288 SILC_TASK_PRI_NORMAL);
289 server->listenning = TRUE;
291 /* If server connections has been configured then we must be router as
292 normal server cannot have server connections, only router connections. */
293 if (server->config->servers)
294 server->server_type = SILC_ROUTER;
296 /* Register the ID Cache purge task. This periodically purges the ID cache
297 and removes the expired cache entries. */
299 /* Clients local list */
300 purge = silc_calloc(1, sizeof(*purge));
301 purge->cache = server->local_list->clients;
302 purge->timeout_queue = server->timeout_queue;
303 silc_task_register(purge->timeout_queue, 0,
305 (void *)purge, 600, 0,
306 SILC_TASK_TIMEOUT, SILC_TASK_PRI_LOW);
308 /* Clients global list */
309 purge = silc_calloc(1, sizeof(*purge));
310 purge->cache = server->global_list->clients;
311 purge->timeout_queue = server->timeout_queue;
312 silc_task_register(purge->timeout_queue, 0,
314 (void *)purge, 300, 0,
315 SILC_TASK_TIMEOUT, SILC_TASK_PRI_LOW);
317 SILC_LOG_DEBUG(("Server initialized"));
319 /* We are done here, return succesfully */
322 silc_task_queue_free(server->timeout_queue);
324 silc_task_queue_free(server->io_queue);
326 for (i = 0; i < sock_count; i++)
327 silc_net_close_server(sock[i]);
332 /* Fork server to background and set gid+uid to non-root.
333 Silcd will not run as root, so trying to set either user or group to
334 root will cause silcd to exit. */
336 void silc_server_daemonise(SilcServer server)
338 /* Are we executing silcd as root or a regular user? */
345 if (!server->config->identity || !server->config->identity->user ||
346 !server->config->identity->group) {
347 fprintf(stderr, "Error:"
348 "\tSILC server must not be run as root. For the security of your\n"
349 "\tsystem it is strongly suggested that you run SILC under dedicated\n"
350 "\tuser account. Modify the [Identity] configuration section to run\n"
351 "\tthe server as non-root user.\n");
355 /* Get the values given for user and group in configuration file */
356 user=server->config->identity->user;
357 group=server->config->identity->group;
359 /* Check whether the user/group information is text */
360 if (atoi(user)!=0 || atoi(group)!=0) {
361 SILC_LOG_DEBUG(("Invalid user and/or group information"));
362 SILC_LOG_DEBUG(("User and/or group given as number"));
363 fprintf(stderr, "Invalid user and/or group information\n");
364 fprintf(stderr, "Please assign them as names, not numbers\n");
368 /* Catch the nasty incident of string "0" returning 0 from atoi */
369 if (strcmp("0", user)==0 || strcmp("0", group)==0) {
370 SILC_LOG_DEBUG(("User and/or group configured to 0. Unacceptable"));
371 fprintf(stderr, "User and/or group configured to 0. Exiting\n");
379 fprintf(stderr, "No such user %s found\n", user);
384 fprintf(stderr, "No such group %s found\n", group);
388 /* Check whether user and/or group is set to root. If yes, exit
389 immediately. Otherwise, setgid and setuid server to user.group */
390 if (gr->gr_gid==0 || pw->pw_uid==0) {
391 fprintf(stderr, "Error:"
392 "\tSILC server must not be run as root. For the security of your\n"
393 "\tsystem it is strongly suggested that you run SILC under dedicated\n"
394 "\tuser account. Modify the [Identity] configuration section to run\n"
395 "\tthe server as non-root user.\n");
398 /* Fork server to background, making it a daemon */
400 SILC_LOG_DEBUG(("Server started as root. Dropping privileges."));
401 SILC_LOG_DEBUG(("Forking SILC server to background"));
406 SILC_LOG_DEBUG(("Changing to group %s", group));
407 if(setgid(gr->gr_gid)==0) {
408 SILC_LOG_DEBUG(("Setgid to %s", group));
410 SILC_LOG_DEBUG(("Setgid to %s failed", group));
411 fprintf(stderr, "Tried to setgid %s but no such group. Exiting\n",
415 SILC_LOG_DEBUG(("Changing to user nobody"));
416 if(setuid(pw->pw_uid)==0) {
417 SILC_LOG_DEBUG(("Setuid to %s", user));
419 SILC_LOG_DEBUG(("Setuid to %s failed", user));
420 fprintf(stderr, "Tried to setuid %s but no such user. Exiting\n",
426 /* Fork server to background, making it a daemon */
428 SILC_LOG_DEBUG(("Server started as user"));
429 SILC_LOG_DEBUG(("Forking SILC server to background"));
436 /* Stops the SILC server. This function is used to shutdown the server.
437 This is usually called after the scheduler has returned. After stopping
438 the server one should call silc_server_free. */
440 void silc_server_stop(SilcServer server)
442 SILC_LOG_DEBUG(("Stopping server"));
444 /* Stop the scheduler, although it might be already stopped. This
445 doesn't hurt anyone. This removes all the tasks and task queues,
447 silc_schedule_stop();
448 silc_schedule_uninit();
450 silc_server_protocols_unregister();
452 SILC_LOG_DEBUG(("Server stopped"));
455 /* The heart of the server. This runs the scheduler thus runs the server.
456 When this returns the server has been stopped and the program will
459 void silc_server_run(SilcServer server)
461 SILC_LOG_DEBUG(("Running server"));
463 /* Start the scheduler, the heart of the SILC server. When this returns
464 the program will be terminated. */
468 /* Timeout callback that will be called to retry connecting to remote
469 router. This is used by both normal and router server. This will wait
470 before retrying the connecting. The timeout is generated by exponential
471 backoff algorithm. */
473 SILC_TASK_CALLBACK(silc_server_connect_to_router_retry)
475 SilcServerConnection sconn = (SilcServerConnection)context;
476 SilcServer server = sconn->server;
478 SILC_LOG_INFO(("Retrying connecting to a router"));
480 /* Calculate next timeout */
481 if (sconn->retry_count >= 1) {
482 sconn->retry_timeout = sconn->retry_timeout * SILC_SERVER_RETRY_MULTIPLIER;
483 if (sconn->retry_timeout > SILC_SERVER_RETRY_INTERVAL_MAX)
484 sconn->retry_timeout = SILC_SERVER_RETRY_INTERVAL_MAX;
486 sconn->retry_timeout = server->params->retry_interval_min;
488 sconn->retry_count++;
489 sconn->retry_timeout = sconn->retry_timeout +
490 silc_rng_get_rn32(server->rng) % SILC_SERVER_RETRY_RANDOMIZER;
492 /* If we've reached max retry count, give up. */
493 if (sconn->retry_count > server->params->retry_count &&
494 server->params->retry_keep_trying == FALSE) {
495 SILC_LOG_ERROR(("Could not connect to router, giving up"));
499 /* Wait one before retrying */
500 silc_task_register(server->timeout_queue, fd, silc_server_connect_router,
501 context, sconn->retry_timeout,
502 server->params->retry_interval_min_usec,
503 SILC_TASK_TIMEOUT, SILC_TASK_PRI_NORMAL);
506 /* Generic routine to use connect to a router. */
508 SILC_TASK_CALLBACK(silc_server_connect_router)
510 SilcServerConnection sconn = (SilcServerConnection)context;
511 SilcServer server = sconn->server;
512 SilcSocketConnection newsocket;
513 SilcProtocol protocol;
514 SilcServerKEInternalContext *proto_ctx;
517 SILC_LOG_INFO(("Connecting to the router %s on port %d",
518 sconn->remote_host, sconn->remote_port));
520 /* Connect to remote host */
521 sock = silc_net_create_connection(sconn->remote_port,
524 SILC_LOG_ERROR(("Could not connect to router"));
525 silc_task_register(server->timeout_queue, fd,
526 silc_server_connect_to_router_retry,
527 context, 0, 1, SILC_TASK_TIMEOUT,
528 SILC_TASK_PRI_NORMAL);
532 /* Set socket options */
533 silc_net_set_socket_nonblock(sock);
534 silc_net_set_socket_opt(sock, SOL_SOCKET, SO_REUSEADDR, 1);
536 /* Create socket connection for the connection. Even though we
537 know that we are connecting to a router we will mark the socket
538 to be unknown connection until we have executed authentication
540 silc_socket_alloc(sock, SILC_SOCKET_TYPE_UNKNOWN, NULL, &newsocket);
541 server->sockets[sock] = newsocket;
542 newsocket->hostname = strdup(sconn->remote_host);
543 newsocket->ip = strdup(sconn->remote_host);
544 newsocket->port = sconn->remote_port;
545 sconn->sock = newsocket;
547 /* Allocate internal protocol context. This is sent as context
549 proto_ctx = silc_calloc(1, sizeof(*proto_ctx));
550 proto_ctx->server = (void *)server;
551 proto_ctx->context = (void *)sconn;
552 proto_ctx->sock = newsocket;
553 proto_ctx->rng = server->rng;
554 proto_ctx->responder = FALSE;
556 /* Perform key exchange protocol. silc_server_connect_to_router_second
557 will be called after the protocol is finished. */
558 silc_protocol_alloc(SILC_PROTOCOL_SERVER_KEY_EXCHANGE,
559 &protocol, proto_ctx,
560 silc_server_connect_to_router_second);
561 newsocket->protocol = protocol;
563 /* Register a timeout task that will be executed if the protocol
564 is not executed within set limit. */
565 proto_ctx->timeout_task =
566 silc_task_register(server->timeout_queue, sock,
567 silc_server_timeout_remote,
568 server, server->params->protocol_timeout,
569 server->params->protocol_timeout_usec,
573 /* Register the connection for network input and output. This sets
574 that scheduler will listen for incoming packets for this connection
575 and sets that outgoing packets may be sent to this connection as
576 well. However, this doesn't set the scheduler for outgoing traffic,
577 it will be set separately by calling SILC_SET_CONNECTION_FOR_OUTPUT,
578 later when outgoing data is available. */
579 context = (void *)server;
580 SILC_REGISTER_CONNECTION_FOR_IO(sock);
582 /* Run the protocol */
583 protocol->execute(server->timeout_queue, 0, protocol, sock, 0, 0);
586 /* This function connects to our primary router or if we are a router this
587 establishes all our primary routes. This is called at the start of the
588 server to do authentication and key exchange with our router - called
591 SILC_TASK_CALLBACK(silc_server_connect_to_router)
593 SilcServer server = (SilcServer)context;
594 SilcServerConnection sconn;
596 SILC_LOG_DEBUG(("Connecting to router(s)"));
598 /* If we are normal SILC server we need to connect to our cell's
600 if (server->server_type == SILC_SERVER) {
601 SILC_LOG_DEBUG(("We are normal server"));
603 /* Create connection to the router, if configured. */
604 if (server->config->routers) {
606 /* Allocate connection object for hold connection specific stuff. */
607 sconn = silc_calloc(1, sizeof(*sconn));
608 sconn->server = server;
609 sconn->remote_host = strdup(server->config->routers->host);
610 sconn->remote_port = server->config->routers->port;
612 silc_task_register(server->timeout_queue, fd,
613 silc_server_connect_router,
614 (void *)sconn, 0, 1, SILC_TASK_TIMEOUT,
615 SILC_TASK_PRI_NORMAL);
620 /* If we are a SILC router we need to establish all of our primary
622 if (server->server_type == SILC_ROUTER) {
623 SilcServerConfigSectionServerConnection *ptr;
625 SILC_LOG_DEBUG(("We are router"));
627 /* Create the connections to all our routes */
628 ptr = server->config->routers;
631 SILC_LOG_DEBUG(("Router connection [%s] %s:%d",
632 ptr->initiator ? "Initiator" : "Responder",
633 ptr->host, ptr->port));
635 if (ptr->initiator) {
636 /* Allocate connection object for hold connection specific stuff. */
637 sconn = silc_calloc(1, sizeof(*sconn));
638 sconn->server = server;
639 sconn->remote_host = strdup(ptr->host);
640 sconn->remote_port = ptr->port;
642 silc_task_register(server->timeout_queue, fd,
643 silc_server_connect_router,
644 (void *)sconn, 0, 1, SILC_TASK_TIMEOUT,
645 SILC_TASK_PRI_NORMAL);
655 SILC_LOG_DEBUG(("No router(s), server will be standalone"));
657 /* There wasn't a configured router, we will continue but we don't
658 have a connection to outside world. We will be standalone server. */
659 server->standalone = TRUE;
662 /* Second part of connecting to router(s). Key exchange protocol has been
663 executed and now we will execute authentication protocol. */
665 SILC_TASK_CALLBACK(silc_server_connect_to_router_second)
667 SilcProtocol protocol = (SilcProtocol)context;
668 SilcServerKEInternalContext *ctx =
669 (SilcServerKEInternalContext *)protocol->context;
670 SilcServer server = (SilcServer)ctx->server;
671 SilcServerConnection sconn = (SilcServerConnection)ctx->context;
672 SilcSocketConnection sock = server->sockets[fd];
673 SilcServerConnAuthInternalContext *proto_ctx;
674 SilcServerConfigSectionServerConnection *conn = NULL;
676 SILC_LOG_DEBUG(("Start"));
678 if (protocol->state == SILC_PROTOCOL_STATE_ERROR ||
679 protocol->state == SILC_PROTOCOL_STATE_FAILURE) {
680 /* Error occured during protocol */
681 silc_protocol_free(protocol);
682 sock->protocol = NULL;
683 silc_ske_free_key_material(ctx->keymat);
685 silc_packet_context_free(ctx->packet);
687 silc_ske_free(ctx->ske);
689 silc_free(ctx->dest_id);
691 silc_task_unregister_by_callback(server->timeout_queue,
692 silc_server_failure_callback);
693 silc_server_disconnect_remote(server, sock, "Server closed connection: "
694 "Key exchange failed");
698 /* We now have the key material as the result of the key exchange
699 protocol. Take the key material into use. Free the raw key material
700 as soon as we've set them into use. */
701 if (!silc_server_protocol_ke_set_keys(ctx->ske, ctx->sock, ctx->keymat,
702 ctx->ske->prop->cipher,
703 ctx->ske->prop->pkcs,
704 ctx->ske->prop->hash,
705 ctx->ske->prop->hmac,
706 ctx->ske->prop->group,
708 silc_protocol_free(protocol);
709 sock->protocol = NULL;
710 silc_ske_free_key_material(ctx->keymat);
712 silc_packet_context_free(ctx->packet);
714 silc_ske_free(ctx->ske);
716 silc_free(ctx->dest_id);
718 silc_task_unregister_by_callback(server->timeout_queue,
719 silc_server_failure_callback);
720 silc_server_disconnect_remote(server, sock, "Server closed connection: "
721 "Key exchange failed");
724 silc_ske_free_key_material(ctx->keymat);
726 /* Allocate internal context for the authentication protocol. This
727 is sent as context for the protocol. */
728 proto_ctx = silc_calloc(1, sizeof(*proto_ctx));
729 proto_ctx->server = (void *)server;
730 proto_ctx->context = (void *)sconn;
731 proto_ctx->sock = sock;
732 proto_ctx->ske = ctx->ske; /* Save SKE object from previous protocol */
733 proto_ctx->dest_id_type = ctx->dest_id_type;
734 proto_ctx->dest_id = ctx->dest_id;
736 /* Resolve the authentication method used in this connection. Check if
737 we find a match from user configured connections */
738 conn = silc_server_config_find_router_conn(server->config,
742 /* Match found. Use the configured authentication method */
743 proto_ctx->auth_meth = conn->auth_meth;
744 if (conn->auth_data) {
745 proto_ctx->auth_data = strdup(conn->auth_data);
746 proto_ctx->auth_data_len = strlen(conn->auth_data);
749 SILC_LOG_ERROR(("Could not find connection data for %s (%s) on port",
750 sock->hostname, sock->ip, sock->port));
751 silc_protocol_free(protocol);
752 sock->protocol = NULL;
754 silc_packet_context_free(ctx->packet);
756 silc_ske_free(ctx->ske);
758 silc_free(ctx->dest_id);
760 silc_task_unregister_by_callback(server->timeout_queue,
761 silc_server_failure_callback);
762 silc_server_disconnect_remote(server, sock, "Server closed connection: "
763 "Key exchange failed");
767 /* Free old protocol as it is finished now */
768 silc_protocol_free(protocol);
770 silc_packet_context_free(ctx->packet);
772 sock->protocol = NULL;
774 /* Allocate the authentication protocol. This is allocated here
775 but we won't start it yet. We will be receiving party of this
776 protocol thus we will wait that connecting party will make
778 silc_protocol_alloc(SILC_PROTOCOL_SERVER_CONNECTION_AUTH,
779 &sock->protocol, proto_ctx,
780 silc_server_connect_to_router_final);
782 /* Register timeout task. If the protocol is not executed inside
783 this timelimit the connection will be terminated. Currently
784 this is 15 seconds and is hard coded limit (XXX). */
785 proto_ctx->timeout_task =
786 silc_task_register(server->timeout_queue, sock->sock,
787 silc_server_timeout_remote,
788 (void *)server, 15, 0,
792 /* Run the protocol */
793 sock->protocol->execute(server->timeout_queue, 0,
794 sock->protocol, sock->sock, 0, 0);
797 /* Finalizes the connection to router. Registers a server task to the
798 queue so that we can accept new connections. */
800 SILC_TASK_CALLBACK(silc_server_connect_to_router_final)
802 SilcProtocol protocol = (SilcProtocol)context;
803 SilcServerConnAuthInternalContext *ctx =
804 (SilcServerConnAuthInternalContext *)protocol->context;
805 SilcServer server = (SilcServer)ctx->server;
806 SilcServerConnection sconn = (SilcServerConnection)ctx->context;
807 SilcSocketConnection sock = ctx->sock;
808 SilcServerEntry id_entry;
810 SilcServerHBContext hb_context;
811 unsigned char *id_string;
812 SilcIDListData idata;
814 SILC_LOG_DEBUG(("Start"));
816 if (protocol->state == SILC_PROTOCOL_STATE_ERROR ||
817 protocol->state == SILC_PROTOCOL_STATE_FAILURE) {
818 /* Error occured during protocol */
820 silc_free(ctx->dest_id);
821 silc_server_disconnect_remote(server, sock, "Server closed connection: "
822 "Authentication failed");
826 /* Add a task to the queue. This task receives new connections to the
827 server. This task remains on the queue until the end of the program. */
828 if (!server->listenning) {
829 silc_task_register(server->io_queue, server->sock,
830 silc_server_accept_new_connection,
831 (void *)server, 0, 0,
833 SILC_TASK_PRI_NORMAL);
834 server->listenning = TRUE;
837 /* Send NEW_SERVER packet to the router. We will become registered
838 to the SILC network after sending this packet. */
839 id_string = silc_id_id2str(server->id, SILC_ID_SERVER);
840 packet = silc_buffer_alloc(2 + 2 + SILC_ID_SERVER_LEN +
841 strlen(server->server_name));
842 silc_buffer_pull_tail(packet, SILC_BUFFER_END(packet));
843 silc_buffer_format(packet,
844 SILC_STR_UI_SHORT(SILC_ID_SERVER_LEN),
845 SILC_STR_UI_XNSTRING(id_string, SILC_ID_SERVER_LEN),
846 SILC_STR_UI_SHORT(strlen(server->server_name)),
847 SILC_STR_UI_XNSTRING(server->server_name,
848 strlen(server->server_name)),
851 /* Send the packet */
852 silc_server_packet_send(server, ctx->sock, SILC_PACKET_NEW_SERVER, 0,
853 packet->data, packet->len, TRUE);
854 silc_buffer_free(packet);
855 silc_free(id_string);
857 SILC_LOG_DEBUG(("Connected to router %s", sock->hostname));
859 /* Add the connected router to local server list */
860 server->standalone = FALSE;
861 id_entry = silc_idlist_add_server(server->local_list, strdup(sock->hostname),
862 SILC_ROUTER, ctx->dest_id, NULL, sock);
865 silc_free(ctx->dest_id);
866 silc_server_disconnect_remote(server, sock, "Server closed connection: "
867 "Authentication failed");
871 silc_idlist_add_data(id_entry, (SilcIDListData)sock->user_data);
872 silc_free(sock->user_data);
873 sock->user_data = (void *)id_entry;
874 sock->type = SILC_SOCKET_TYPE_ROUTER;
875 server->id_entry->router = id_entry;
876 server->router = id_entry;
877 idata = (SilcIDListData)sock->user_data;
878 idata->registered = TRUE;
880 /* Perform keepalive. The `hb_context' will be freed automatically
881 when finally calling the silc_socket_free function. XXX hardcoded
883 hb_context = silc_calloc(1, sizeof(*hb_context));
884 hb_context->server = server;
885 silc_socket_set_heartbeat(sock, 600, hb_context,
886 silc_server_perform_heartbeat,
887 server->timeout_queue);
889 /* Register re-key timeout */
890 idata->rekey->timeout = 3600; /* XXX hardcoded */
891 idata->rekey->context = (void *)server;
892 silc_task_register(server->timeout_queue, sock->sock,
893 silc_server_rekey_callback,
894 (void *)sock, idata->rekey->timeout, 0,
895 SILC_TASK_TIMEOUT, SILC_TASK_PRI_NORMAL);
897 /* If we are router then announce our possible servers. */
898 if (server->server_type == SILC_ROUTER)
899 silc_server_announce_servers(server);
901 /* Announce our clients and channels to the router */
902 silc_server_announce_clients(server);
903 silc_server_announce_channels(server);
906 /* Free the temporary connection data context */
908 silc_free(sconn->remote_host);
912 /* Free the protocol object */
913 silc_protocol_free(protocol);
915 silc_packet_context_free(ctx->packet);
917 silc_ske_free(ctx->ske);
919 sock->protocol = NULL;
922 /* Accepts new connections to the server. Accepting new connections are
923 done in three parts to make it async. */
925 SILC_TASK_CALLBACK(silc_server_accept_new_connection)
927 SilcServer server = (SilcServer)context;
928 SilcSocketConnection newsocket;
929 SilcServerKEInternalContext *proto_ctx;
932 SILC_LOG_DEBUG(("Accepting new connection"));
934 server->stat.conn_attempts++;
936 sock = silc_net_accept_connection(server->sock);
938 SILC_LOG_ERROR(("Could not accept new connection: %s", strerror(errno)));
939 server->stat.conn_failures++;
943 /* Check max connections */
944 if (sock > SILC_SERVER_MAX_CONNECTIONS) {
945 SILC_LOG_ERROR(("Refusing connection, server is full"));
946 server->stat.conn_failures++;
950 /* Set socket options */
951 silc_net_set_socket_nonblock(sock);
952 silc_net_set_socket_opt(sock, SOL_SOCKET, SO_REUSEADDR, 1);
954 /* We don't create a ID yet, since we don't know what type of connection
955 this is yet. But, we do add the connection to the socket table. */
956 silc_socket_alloc(sock, SILC_SOCKET_TYPE_UNKNOWN, NULL, &newsocket);
957 server->sockets[sock] = newsocket;
959 /* XXX This MUST be done async as this will block the entire server
960 process. Either we have to do our own resolver stuff or in the future
961 we can use threads. */
962 /* Perform name and address lookups for the remote host. */
963 if (!silc_net_check_host_by_sock(sock, &newsocket->hostname,
965 if ((server->params->require_reverse_mapping && !newsocket->hostname) ||
967 SILC_LOG_ERROR(("IP/DNS lookup failed %s",
968 newsocket->hostname ? newsocket->hostname :
969 newsocket->ip ? newsocket->ip : ""));
970 server->stat.conn_failures++;
973 if (!newsocket->hostname)
974 newsocket->hostname = strdup(newsocket->ip);
976 newsocket->port = silc_net_get_remote_port(sock);
978 SILC_LOG_INFO(("Incoming connection from %s (%s)", newsocket->hostname,
981 /* Allocate internal context for key exchange protocol. This is
982 sent as context for the protocol. */
983 proto_ctx = silc_calloc(1, sizeof(*proto_ctx));
984 proto_ctx->server = context;
985 proto_ctx->sock = newsocket;
986 proto_ctx->rng = server->rng;
987 proto_ctx->responder = TRUE;
989 /* Prepare the connection for key exchange protocol. We allocate the
990 protocol but will not start it yet. The connector will be the
991 initiator of the protocol thus we will wait for initiation from
992 there before we start the protocol. */
993 server->stat.auth_attempts++;
994 silc_protocol_alloc(SILC_PROTOCOL_SERVER_KEY_EXCHANGE,
995 &newsocket->protocol, proto_ctx,
996 silc_server_accept_new_connection_second);
998 /* Register a timeout task that will be executed if the connector
999 will not start the key exchange protocol within 60 seconds. For
1000 now, this is a hard coded limit. After 60 secs the connection will
1001 be closed if the key exchange protocol has not been started. */
1002 proto_ctx->timeout_task =
1003 silc_task_register(server->timeout_queue, newsocket->sock,
1004 silc_server_timeout_remote,
1009 /* Register the connection for network input and output. This sets
1010 that scheduler will listen for incoming packets for this connection
1011 and sets that outgoing packets may be sent to this connection as well.
1012 However, this doesn't set the scheduler for outgoing traffic, it
1013 will be set separately by calling SILC_SET_CONNECTION_FOR_OUTPUT,
1014 later when outgoing data is available. */
1015 SILC_REGISTER_CONNECTION_FOR_IO(sock);
1018 /* Second part of accepting new connection. Key exchange protocol has been
1019 performed and now it is time to do little connection authentication
1020 protocol to figure out whether this connection is client or server
1021 and whether it has right to access this server (especially server
1022 connections needs to be authenticated). */
1024 SILC_TASK_CALLBACK(silc_server_accept_new_connection_second)
1026 SilcProtocol protocol = (SilcProtocol)context;
1027 SilcServerKEInternalContext *ctx =
1028 (SilcServerKEInternalContext *)protocol->context;
1029 SilcServer server = (SilcServer)ctx->server;
1030 SilcSocketConnection sock = server->sockets[fd];
1031 SilcServerConnAuthInternalContext *proto_ctx;
1033 SILC_LOG_DEBUG(("Start"));
1035 if (protocol->state == SILC_PROTOCOL_STATE_ERROR ||
1036 protocol->state == SILC_PROTOCOL_STATE_FAILURE) {
1037 /* Error occured during protocol */
1038 silc_protocol_free(protocol);
1039 sock->protocol = NULL;
1040 silc_ske_free_key_material(ctx->keymat);
1042 silc_packet_context_free(ctx->packet);
1044 silc_ske_free(ctx->ske);
1046 silc_free(ctx->dest_id);
1048 silc_task_unregister_by_callback(server->timeout_queue,
1049 silc_server_failure_callback);
1050 silc_server_disconnect_remote(server, sock, "Server closed connection: "
1051 "Key exchange failed");
1052 server->stat.auth_failures++;
1056 /* We now have the key material as the result of the key exchange
1057 protocol. Take the key material into use. Free the raw key material
1058 as soon as we've set them into use. */
1059 if (!silc_server_protocol_ke_set_keys(ctx->ske, ctx->sock, ctx->keymat,
1060 ctx->ske->prop->cipher,
1061 ctx->ske->prop->pkcs,
1062 ctx->ske->prop->hash,
1063 ctx->ske->prop->hmac,
1064 ctx->ske->prop->group,
1066 silc_protocol_free(protocol);
1067 sock->protocol = NULL;
1068 silc_ske_free_key_material(ctx->keymat);
1070 silc_packet_context_free(ctx->packet);
1072 silc_ske_free(ctx->ske);
1074 silc_free(ctx->dest_id);
1076 silc_task_unregister_by_callback(server->timeout_queue,
1077 silc_server_failure_callback);
1078 silc_server_disconnect_remote(server, sock, "Server closed connection: "
1079 "Key exchange failed");
1080 server->stat.auth_failures++;
1083 silc_ske_free_key_material(ctx->keymat);
1085 /* Allocate internal context for the authentication protocol. This
1086 is sent as context for the protocol. */
1087 proto_ctx = silc_calloc(1, sizeof(*proto_ctx));
1088 proto_ctx->server = (void *)server;
1089 proto_ctx->sock = sock;
1090 proto_ctx->ske = ctx->ske; /* Save SKE object from previous protocol */
1091 proto_ctx->responder = TRUE;
1092 proto_ctx->dest_id_type = ctx->dest_id_type;
1093 proto_ctx->dest_id = ctx->dest_id;
1095 /* Free old protocol as it is finished now */
1096 silc_protocol_free(protocol);
1098 silc_packet_context_free(ctx->packet);
1100 sock->protocol = NULL;
1102 /* Allocate the authentication protocol. This is allocated here
1103 but we won't start it yet. We will be receiving party of this
1104 protocol thus we will wait that connecting party will make
1105 their first move. */
1106 silc_protocol_alloc(SILC_PROTOCOL_SERVER_CONNECTION_AUTH,
1107 &sock->protocol, proto_ctx,
1108 silc_server_accept_new_connection_final);
1110 /* Register timeout task. If the protocol is not executed inside
1111 this timelimit the connection will be terminated. Currently
1112 this is 60 seconds and is hard coded limit (XXX). */
1113 proto_ctx->timeout_task =
1114 silc_task_register(server->timeout_queue, sock->sock,
1115 silc_server_timeout_remote,
1116 (void *)server, 60, 0,
1121 /* Final part of accepting new connection. The connection has now
1122 been authenticated and keys has been exchanged. We also know whether
1123 this is client or server connection. */
1125 SILC_TASK_CALLBACK(silc_server_accept_new_connection_final)
1127 SilcProtocol protocol = (SilcProtocol)context;
1128 SilcServerConnAuthInternalContext *ctx =
1129 (SilcServerConnAuthInternalContext *)protocol->context;
1130 SilcServer server = (SilcServer)ctx->server;
1131 SilcSocketConnection sock = ctx->sock;
1132 SilcServerHBContext hb_context;
1133 void *id_entry = NULL;
1135 SILC_LOG_DEBUG(("Start"));
1137 if (protocol->state == SILC_PROTOCOL_STATE_ERROR ||
1138 protocol->state == SILC_PROTOCOL_STATE_FAILURE) {
1139 /* Error occured during protocol */
1140 silc_protocol_free(protocol);
1141 sock->protocol = NULL;
1143 silc_packet_context_free(ctx->packet);
1145 silc_ske_free(ctx->ske);
1147 silc_free(ctx->dest_id);
1150 sock->protocol = NULL;
1151 silc_task_unregister_by_callback(server->timeout_queue,
1152 silc_server_failure_callback);
1153 silc_server_disconnect_remote(server, sock, "Server closed connection: "
1154 "Authentication failed");
1155 server->stat.auth_failures++;
1159 sock->type = ctx->conn_type;
1160 switch(sock->type) {
1161 case SILC_SOCKET_TYPE_CLIENT:
1163 SilcClientEntry client;
1165 SILC_LOG_DEBUG(("Remote host is client"));
1166 SILC_LOG_INFO(("Connection from %s (%s) is client", sock->hostname,
1169 /* Add the client to the client ID cache. The nickname and Client ID
1170 and other information is created after we have received NEW_CLIENT
1171 packet from client. */
1172 client = silc_idlist_add_client(server->local_list,
1173 NULL, 0, NULL, NULL, NULL, NULL, sock);
1175 SILC_LOG_ERROR(("Could not add new client to cache"));
1176 silc_free(sock->user_data);
1181 server->stat.my_clients++;
1182 server->stat.clients++;
1183 if (server->server_type == SILC_ROUTER)
1184 server->stat.cell_clients++;
1186 id_entry = (void *)client;
1189 case SILC_SOCKET_TYPE_SERVER:
1190 case SILC_SOCKET_TYPE_ROUTER:
1192 SilcServerEntry new_server;
1194 SILC_LOG_DEBUG(("Remote host is %s",
1195 sock->type == SILC_SOCKET_TYPE_SERVER ?
1196 "server" : "router"));
1197 SILC_LOG_INFO(("Connection from %s (%s) is %s", sock->hostname,
1198 sock->ip, sock->type == SILC_SOCKET_TYPE_SERVER ?
1199 "server" : "router"));
1201 /* Add the server into server cache. The server name and Server ID
1202 is updated after we have received NEW_SERVER packet from the
1203 server. We mark ourselves as router for this server if we really
1206 silc_idlist_add_server(server->local_list, NULL,
1207 sock->type == SILC_SOCKET_TYPE_SERVER ?
1208 SILC_SERVER : SILC_ROUTER, NULL,
1209 sock->type == SILC_SOCKET_TYPE_SERVER ?
1210 server->id_entry : NULL, sock);
1212 SILC_LOG_ERROR(("Could not add new server to cache"));
1213 silc_free(sock->user_data);
1218 if (sock->type == SILC_SOCKET_TYPE_SERVER)
1219 server->stat.my_servers++;
1221 server->stat.my_routers++;
1222 server->stat.servers++;
1224 id_entry = (void *)new_server;
1226 /* There is connection to other server now, if it is router then
1227 we will have connection to outside world. If we are router but
1228 normal server connected to us then we will remain standalone,
1229 if we are standlone. */
1230 if (server->standalone && sock->type == SILC_SOCKET_TYPE_ROUTER) {
1231 SILC_LOG_DEBUG(("We are not standalone server anymore"));
1232 server->standalone = FALSE;
1233 if (!server->id_entry->router) {
1234 server->id_entry->router = id_entry;
1235 server->router = id_entry;
1244 /* Add the common data structure to the ID entry. */
1246 silc_idlist_add_data(id_entry, (SilcIDListData)sock->user_data);
1248 /* Add to sockets internal pointer for fast referencing */
1249 silc_free(sock->user_data);
1250 sock->user_data = id_entry;
1252 /* Connection has been fully established now. Everything is ok. */
1253 SILC_LOG_DEBUG(("New connection authenticated"));
1255 /* Perform keepalive. The `hb_context' will be freed automatically
1256 when finally calling the silc_socket_free function. XXX hardcoded
1258 hb_context = silc_calloc(1, sizeof(*hb_context));
1259 hb_context->server = server;
1260 silc_socket_set_heartbeat(sock, 600, hb_context,
1261 silc_server_perform_heartbeat,
1262 server->timeout_queue);
1264 silc_task_unregister_by_callback(server->timeout_queue,
1265 silc_server_failure_callback);
1266 silc_protocol_free(protocol);
1268 silc_packet_context_free(ctx->packet);
1270 silc_ske_free(ctx->ske);
1272 silc_free(ctx->dest_id);
1274 sock->protocol = NULL;
1277 /* This function is used to read packets from network and send packets to
1278 network. This is usually a generic task. */
1280 SILC_TASK_CALLBACK(silc_server_packet_process)
1282 SilcServer server = (SilcServer)context;
1283 SilcSocketConnection sock = server->sockets[fd];
1284 SilcIDListData idata;
1285 SilcCipher cipher = NULL;
1286 SilcHmac hmac = NULL;
1292 SILC_LOG_DEBUG(("Processing packet"));
1294 /* Packet sending */
1296 if (type == SILC_TASK_WRITE) {
1297 /* Do not send data to disconnected connection */
1298 if (SILC_IS_DISCONNECTED(sock))
1301 server->stat.packets_sent++;
1303 if (sock->outbuf->data - sock->outbuf->head)
1304 silc_buffer_push(sock->outbuf, sock->outbuf->data - sock->outbuf->head);
1306 /* Send the packet */
1307 ret = silc_packet_send(sock, TRUE);
1309 /* If returned -2 could not write to connection now, will do
1317 /* The packet has been sent and now it is time to set the connection
1318 back to only for input. When there is again some outgoing data
1319 available for this connection it will be set for output as well.
1320 This call clears the output setting and sets it only for input. */
1321 SILC_SET_CONNECTION_FOR_INPUT(fd);
1322 SILC_UNSET_OUTBUF_PENDING(sock);
1324 silc_buffer_clear(sock->outbuf);
1328 /* Packet receiving */
1330 /* Read some data from connection */
1331 ret = silc_packet_receive(sock);
1337 SILC_LOG_DEBUG(("Read EOF"));
1339 /* If connection is disconnecting already we will finally
1340 close the connection */
1341 if (SILC_IS_DISCONNECTING(sock)) {
1342 if (sock->user_data)
1343 silc_server_free_sock_user_data(server, sock);
1344 silc_server_close_connection(server, sock);
1348 SILC_LOG_DEBUG(("Premature EOF from connection %d", sock->sock));
1349 SILC_SET_DISCONNECTING(sock);
1351 /* If the closed connection was our primary router connection the
1352 start re-connecting phase. */
1353 if (!server->standalone && sock->type == SILC_SOCKET_TYPE_ROUTER &&
1354 sock == server->router->connection)
1355 silc_task_register(server->timeout_queue, 0,
1356 silc_server_connect_to_router,
1359 SILC_TASK_PRI_NORMAL);
1361 if (sock->user_data)
1362 silc_server_free_sock_user_data(server, sock);
1363 silc_server_close_connection(server, sock);
1367 /* If connection is disconnecting or disconnected we will ignore
1369 if (SILC_IS_DISCONNECTING(sock) || SILC_IS_DISCONNECTED(sock)) {
1370 SILC_LOG_DEBUG(("Ignoring read data from disonnected connection"));
1374 server->stat.packets_received++;
1376 /* Get keys and stuff from ID entry */
1377 idata = (SilcIDListData)sock->user_data;
1379 idata->last_receive = time(NULL);
1380 cipher = idata->receive_key;
1384 /* Process the packet. This will call the parser that will then
1385 decrypt and parse the packet. */
1386 silc_packet_receive_process(sock, cipher, hmac, silc_server_packet_parse,
1390 /* Callback function that the silc_packet_decrypt will call to make the
1391 decision whether the packet is normal or special packet. We will
1392 return TRUE if it is normal and FALSE if it is special */
1394 static int silc_server_packet_decrypt_check(SilcPacketType packet_type,
1396 SilcPacketContext *packet,
1399 SilcPacketParserContext *parse_ctx = (SilcPacketParserContext *)context;
1400 SilcServer server = (SilcServer)parse_ctx->context;
1402 /* Packet is normal packet, if:
1404 1) packet is private message packet and does not have private key set
1405 2) is other packet than channel message packet
1406 3) is channel message packet and remote is router and we are router
1408 all other packets are special packets
1411 if (packet_type == SILC_PACKET_PRIVATE_MESSAGE &&
1412 (buffer->data[2] & SILC_PACKET_FLAG_PRIVMSG_KEY))
1415 if (packet_type != SILC_PACKET_CHANNEL_MESSAGE ||
1416 (packet_type == SILC_PACKET_CHANNEL_MESSAGE &&
1417 parse_ctx->sock->type == SILC_SOCKET_TYPE_ROUTER &&
1418 server->server_type == SILC_ROUTER))
1424 /* Parses whole packet, received earlier. */
1426 SILC_TASK_CALLBACK(silc_server_packet_parse_real)
1428 SilcPacketParserContext *parse_ctx = (SilcPacketParserContext *)context;
1429 SilcServer server = (SilcServer)parse_ctx->context;
1430 SilcSocketConnection sock = parse_ctx->sock;
1431 SilcPacketContext *packet = parse_ctx->packet;
1434 SILC_LOG_DEBUG(("Start"));
1436 /* Decrypt the received packet */
1437 ret = silc_packet_decrypt(parse_ctx->cipher, parse_ctx->hmac,
1438 packet->buffer, packet,
1439 silc_server_packet_decrypt_check, parse_ctx);
1444 /* Parse the packet. Packet type is returned. */
1445 ret = silc_packet_parse(packet);
1447 /* Parse the packet header in special way as this is "special"
1449 ret = silc_packet_parse_special(packet);
1452 if (ret == SILC_PACKET_NONE)
1455 /* Check that the the current client ID is same as in the client's packet. */
1456 if (sock->type == SILC_SOCKET_TYPE_CLIENT) {
1457 SilcClientEntry client = (SilcClientEntry)sock->user_data;
1458 if (client && client->id) {
1459 void *id = silc_id_str2id(packet->src_id, packet->src_id_len,
1460 packet->src_id_type);
1461 if (SILC_ID_CLIENT_COMPARE(client->id, id)) {
1469 if (server->server_type == SILC_ROUTER) {
1470 /* Route the packet if it is not destined to us. Other ID types but
1471 server are handled separately after processing them. */
1472 if (packet->dst_id_type == SILC_ID_SERVER &&
1473 sock->type != SILC_SOCKET_TYPE_CLIENT &&
1474 SILC_ID_SERVER_COMPARE(packet->dst_id, server->id_string)) {
1476 /* Route the packet to fastest route for the destination ID */
1477 void *id = silc_id_str2id(packet->dst_id, packet->dst_id_len,
1478 packet->dst_id_type);
1481 silc_server_packet_route(server,
1482 silc_server_route_get(server, id,
1483 packet->dst_id_type),
1489 /* Broadcast packet if it is marked as broadcast packet and it is
1490 originated from router and we are router. */
1491 if (sock->type == SILC_SOCKET_TYPE_ROUTER &&
1492 packet->flags & SILC_PACKET_FLAG_BROADCAST) {
1493 silc_server_packet_broadcast(server, server->router->connection, packet);
1497 /* Parse the incoming packet type */
1498 silc_server_packet_parse_type(server, sock, packet);
1501 /* silc_buffer_clear(sock->inbuf); */
1502 silc_packet_context_free(packet);
1503 silc_free(parse_ctx);
1506 /* Parser callback called by silc_packet_receive_process. This merely
1507 registers timeout that will handle the actual parsing when appropriate. */
1509 void silc_server_packet_parse(SilcPacketParserContext *parser_context)
1511 SilcServer server = (SilcServer)parser_context->context;
1512 SilcSocketConnection sock = parser_context->sock;
1514 switch (sock->type) {
1515 case SILC_SOCKET_TYPE_UNKNOWN:
1516 /* Parse the packet with timeout */
1517 silc_task_register(server->timeout_queue, sock->sock,
1518 silc_server_packet_parse_real,
1519 (void *)parser_context, 0, 100000,
1521 SILC_TASK_PRI_NORMAL);
1523 case SILC_SOCKET_TYPE_CLIENT:
1524 /* Parse the packet with timeout (unless protocol is active) */
1525 silc_task_register(server->timeout_queue, sock->sock,
1526 silc_server_packet_parse_real,
1527 (void *)parser_context, 0,
1528 (sock->protocol ? 1 : 100000),
1530 SILC_TASK_PRI_NORMAL);
1532 case SILC_SOCKET_TYPE_SERVER:
1533 case SILC_SOCKET_TYPE_ROUTER:
1534 /* Packets from servers are parsed as soon as possible */
1535 silc_task_register(server->timeout_queue, sock->sock,
1536 silc_server_packet_parse_real,
1537 (void *)parser_context, 0, 1,
1539 SILC_TASK_PRI_NORMAL);
1546 /* Parses the packet type and calls what ever routines the packet type
1547 requires. This is done for all incoming packets. */
1549 void silc_server_packet_parse_type(SilcServer server,
1550 SilcSocketConnection sock,
1551 SilcPacketContext *packet)
1553 SilcPacketType type = packet->type;
1555 SILC_LOG_DEBUG(("Parsing packet type %d", type));
1557 /* Parse the packet type */
1559 case SILC_PACKET_DISCONNECT:
1560 SILC_LOG_DEBUG(("Disconnect packet"));
1561 if (packet->flags & SILC_PACKET_FLAG_LIST)
1565 case SILC_PACKET_SUCCESS:
1567 * Success received for something. For now we can have only
1568 * one protocol for connection executing at once hence this
1569 * success message is for whatever protocol is executing currently.
1571 SILC_LOG_DEBUG(("Success packet"));
1572 if (packet->flags & SILC_PACKET_FLAG_LIST)
1574 if (sock->protocol) {
1575 sock->protocol->execute(server->timeout_queue, 0,
1576 sock->protocol, sock->sock, 0, 0);
1580 case SILC_PACKET_FAILURE:
1582 * Failure received for something. For now we can have only
1583 * one protocol for connection executing at once hence this
1584 * failure message is for whatever protocol is executing currently.
1586 SILC_LOG_DEBUG(("Failure packet"));
1587 if (packet->flags & SILC_PACKET_FLAG_LIST)
1589 if (sock->protocol) {
1590 SilcServerFailureContext f;
1591 f = silc_calloc(1, sizeof(*f));
1595 /* We will wait 5 seconds to process this failure packet */
1596 silc_task_register(server->timeout_queue, sock->sock,
1597 silc_server_failure_callback, (void *)f, 5, 0,
1598 SILC_TASK_TIMEOUT, SILC_TASK_PRI_NORMAL);
1602 case SILC_PACKET_REJECT:
1603 SILC_LOG_DEBUG(("Reject packet"));
1604 if (packet->flags & SILC_PACKET_FLAG_LIST)
1609 case SILC_PACKET_NOTIFY:
1611 * Received notify packet. Server can receive notify packets from
1612 * router. Server then relays the notify messages to clients if needed.
1614 SILC_LOG_DEBUG(("Notify packet"));
1615 if (packet->flags & SILC_PACKET_FLAG_LIST)
1616 silc_server_notify_list(server, sock, packet);
1618 silc_server_notify(server, sock, packet);
1624 case SILC_PACKET_CHANNEL_MESSAGE:
1626 * Received channel message. Channel messages are special packets
1627 * (although probably most common ones) thus they are handled
1630 SILC_LOG_DEBUG(("Channel Message packet"));
1631 if (packet->flags & SILC_PACKET_FLAG_LIST)
1633 silc_server_channel_message(server, sock, packet);
1636 case SILC_PACKET_CHANNEL_KEY:
1638 * Received key for channel. As channels are created by the router
1639 * the keys are as well. We will distribute the key to all of our
1640 * locally connected clients on the particular channel. Router
1641 * never receives this channel and thus is ignored.
1643 SILC_LOG_DEBUG(("Channel Key packet"));
1644 if (packet->flags & SILC_PACKET_FLAG_LIST)
1646 silc_server_channel_key(server, sock, packet);
1652 case SILC_PACKET_COMMAND:
1654 * Recived command. Processes the command request and allocates the
1655 * command context and calls the command.
1657 SILC_LOG_DEBUG(("Command packet"));
1658 if (packet->flags & SILC_PACKET_FLAG_LIST)
1660 silc_server_command_process(server, sock, packet);
1663 case SILC_PACKET_COMMAND_REPLY:
1665 * Received command reply packet. Received command reply to command. It
1666 * may be reply to command sent by us or reply to command sent by client
1667 * that we've routed further.
1669 SILC_LOG_DEBUG(("Command Reply packet"));
1670 if (packet->flags & SILC_PACKET_FLAG_LIST)
1672 silc_server_command_reply(server, sock, packet);
1676 * Private Message packets
1678 case SILC_PACKET_PRIVATE_MESSAGE:
1680 * Received private message packet. The packet is coming from either
1683 SILC_LOG_DEBUG(("Private Message packet"));
1684 if (packet->flags & SILC_PACKET_FLAG_LIST)
1686 silc_server_private_message(server, sock, packet);
1689 case SILC_PACKET_PRIVATE_MESSAGE_KEY:
1691 * Private message key packet.
1693 if (packet->flags & SILC_PACKET_FLAG_LIST)
1695 silc_server_private_message_key(server, sock, packet);
1699 * Key Exchange protocol packets
1701 case SILC_PACKET_KEY_EXCHANGE:
1702 SILC_LOG_DEBUG(("KE packet"));
1703 if (packet->flags & SILC_PACKET_FLAG_LIST)
1706 if (sock->protocol && sock->protocol->protocol &&
1707 sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_KEY_EXCHANGE) {
1709 SilcServerKEInternalContext *proto_ctx =
1710 (SilcServerKEInternalContext *)sock->protocol->context;
1712 proto_ctx->packet = silc_packet_context_dup(packet);
1714 /* Let the protocol handle the packet */
1715 sock->protocol->execute(server->timeout_queue, 0,
1716 sock->protocol, sock->sock, 0, 100000);
1718 SILC_LOG_ERROR(("Received Key Exchange packet but no key exchange "
1719 "protocol active, packet dropped."));
1721 /* XXX Trigger KE protocol?? Rekey actually, maybe. */
1725 case SILC_PACKET_KEY_EXCHANGE_1:
1726 SILC_LOG_DEBUG(("KE 1 packet"));
1727 if (packet->flags & SILC_PACKET_FLAG_LIST)
1730 if (sock->protocol && sock->protocol->protocol &&
1731 (sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_KEY_EXCHANGE ||
1732 sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_REKEY)) {
1734 if (sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_REKEY) {
1735 SilcServerRekeyInternalContext *proto_ctx =
1736 (SilcServerRekeyInternalContext *)sock->protocol->context;
1738 if (proto_ctx->packet)
1739 silc_packet_context_free(proto_ctx->packet);
1741 proto_ctx->packet = silc_packet_context_dup(packet);
1743 /* Let the protocol handle the packet */
1744 sock->protocol->execute(server->timeout_queue, 0,
1745 sock->protocol, sock->sock, 0, 0);
1747 SilcServerKEInternalContext *proto_ctx =
1748 (SilcServerKEInternalContext *)sock->protocol->context;
1750 if (proto_ctx->packet)
1751 silc_packet_context_free(proto_ctx->packet);
1753 proto_ctx->packet = silc_packet_context_dup(packet);
1754 proto_ctx->dest_id_type = packet->src_id_type;
1755 proto_ctx->dest_id = silc_id_str2id(packet->src_id, packet->src_id_len,
1756 packet->src_id_type);
1757 if (!proto_ctx->dest_id)
1760 /* Let the protocol handle the packet */
1761 sock->protocol->execute(server->timeout_queue, 0,
1762 sock->protocol, sock->sock,
1766 SILC_LOG_ERROR(("Received Key Exchange 1 packet but no key exchange "
1767 "protocol active, packet dropped."));
1771 case SILC_PACKET_KEY_EXCHANGE_2:
1772 SILC_LOG_DEBUG(("KE 2 packet"));
1773 if (packet->flags & SILC_PACKET_FLAG_LIST)
1776 if (sock->protocol && sock->protocol->protocol &&
1777 (sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_KEY_EXCHANGE ||
1778 sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_REKEY)) {
1780 if (sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_REKEY) {
1781 SilcServerRekeyInternalContext *proto_ctx =
1782 (SilcServerRekeyInternalContext *)sock->protocol->context;
1784 if (proto_ctx->packet)
1785 silc_packet_context_free(proto_ctx->packet);
1787 proto_ctx->packet = silc_packet_context_dup(packet);
1789 /* Let the protocol handle the packet */
1790 sock->protocol->execute(server->timeout_queue, 0,
1791 sock->protocol, sock->sock, 0, 0);
1793 SilcServerKEInternalContext *proto_ctx =
1794 (SilcServerKEInternalContext *)sock->protocol->context;
1796 if (proto_ctx->packet)
1797 silc_packet_context_free(proto_ctx->packet);
1799 proto_ctx->packet = silc_packet_context_dup(packet);
1800 proto_ctx->dest_id_type = packet->src_id_type;
1801 proto_ctx->dest_id = silc_id_str2id(packet->src_id, packet->src_id_len,
1802 packet->src_id_type);
1803 if (!proto_ctx->dest_id)
1806 /* Let the protocol handle the packet */
1807 sock->protocol->execute(server->timeout_queue, 0,
1808 sock->protocol, sock->sock,
1812 SILC_LOG_ERROR(("Received Key Exchange 2 packet but no key exchange "
1813 "protocol active, packet dropped."));
1817 case SILC_PACKET_CONNECTION_AUTH_REQUEST:
1819 * Connection authentication request packet. When we receive this packet
1820 * we will send to the other end information about our mandatory
1821 * authentication method for the connection. This packet maybe received
1824 SILC_LOG_DEBUG(("Connection authentication request packet"));
1825 if (packet->flags & SILC_PACKET_FLAG_LIST)
1827 silc_server_connection_auth_request(server, sock, packet);
1831 * Connection Authentication protocol packets
1833 case SILC_PACKET_CONNECTION_AUTH:
1834 /* Start of the authentication protocol. We receive here the
1835 authentication data and will verify it. */
1836 SILC_LOG_DEBUG(("Connection auth packet"));
1837 if (packet->flags & SILC_PACKET_FLAG_LIST)
1840 if (sock->protocol && sock->protocol->protocol->type
1841 == SILC_PROTOCOL_SERVER_CONNECTION_AUTH) {
1843 SilcServerConnAuthInternalContext *proto_ctx =
1844 (SilcServerConnAuthInternalContext *)sock->protocol->context;
1846 proto_ctx->packet = silc_packet_context_dup(packet);
1848 /* Let the protocol handle the packet */
1849 sock->protocol->execute(server->timeout_queue, 0,
1850 sock->protocol, sock->sock, 0, 0);
1852 SILC_LOG_ERROR(("Received Connection Auth packet but no authentication "
1853 "protocol active, packet dropped."));
1857 case SILC_PACKET_NEW_ID:
1859 * Received New ID packet. This includes some new ID that has been
1860 * created. It may be for client, server or channel. This is the way
1861 * to distribute information about new registered entities in the
1864 SILC_LOG_DEBUG(("New ID packet"));
1865 if (packet->flags & SILC_PACKET_FLAG_LIST)
1866 silc_server_new_id_list(server, sock, packet);
1868 silc_server_new_id(server, sock, packet);
1871 case SILC_PACKET_NEW_CLIENT:
1873 * Received new client packet. This includes client information that
1874 * we will use to create initial client ID. After creating new
1875 * ID we will send it to the client.
1877 SILC_LOG_DEBUG(("New Client packet"));
1878 if (packet->flags & SILC_PACKET_FLAG_LIST)
1880 silc_server_new_client(server, sock, packet);
1883 case SILC_PACKET_NEW_SERVER:
1885 * Received new server packet. This includes Server ID and some other
1886 * information that we may save. This is received after server has
1889 SILC_LOG_DEBUG(("New Server packet"));
1890 if (packet->flags & SILC_PACKET_FLAG_LIST)
1892 silc_server_new_server(server, sock, packet);
1895 case SILC_PACKET_NEW_CHANNEL:
1897 * Received new channel packet. Information about new channel in the
1898 * network are distributed using this packet.
1900 SILC_LOG_DEBUG(("New Channel packet"));
1901 if (packet->flags & SILC_PACKET_FLAG_LIST)
1902 silc_server_new_channel_list(server, sock, packet);
1904 silc_server_new_channel(server, sock, packet);
1907 case SILC_PACKET_HEARTBEAT:
1909 * Received heartbeat.
1911 SILC_LOG_DEBUG(("Heartbeat packet"));
1912 if (packet->flags & SILC_PACKET_FLAG_LIST)
1916 case SILC_PACKET_KEY_AGREEMENT:
1918 * Received heartbeat.
1920 SILC_LOG_DEBUG(("Key agreement packet"));
1921 if (packet->flags & SILC_PACKET_FLAG_LIST)
1923 silc_server_key_agreement(server, sock, packet);
1926 case SILC_PACKET_REKEY:
1928 * Received re-key packet. The sender wants to regenerate the session
1931 SILC_LOG_DEBUG(("Re-key packet"));
1932 if (packet->flags & SILC_PACKET_FLAG_LIST)
1934 silc_server_rekey(server, sock, packet);
1937 case SILC_PACKET_REKEY_DONE:
1939 * The re-key is done.
1941 SILC_LOG_DEBUG(("Re-key done packet"));
1942 if (packet->flags & SILC_PACKET_FLAG_LIST)
1945 if (sock->protocol && sock->protocol->protocol &&
1946 sock->protocol->protocol->type == SILC_PROTOCOL_SERVER_REKEY) {
1948 SilcServerRekeyInternalContext *proto_ctx =
1949 (SilcServerRekeyInternalContext *)sock->protocol->context;
1951 if (proto_ctx->packet)
1952 silc_packet_context_free(proto_ctx->packet);
1954 proto_ctx->packet = silc_packet_context_dup(packet);
1956 /* Let the protocol handle the packet */
1957 sock->protocol->execute(server->timeout_queue, 0,
1958 sock->protocol, sock->sock,
1961 SILC_LOG_ERROR(("Received Re-key done packet but no re-key "
1962 "protocol active, packet dropped."));
1967 SILC_LOG_ERROR(("Incorrect packet type %d, packet dropped", type));
1973 /* Creates connection to a remote router. */
1975 void silc_server_create_connection(SilcServer server,
1976 char *remote_host, uint32 port)
1978 SilcServerConnection sconn;
1980 /* Allocate connection object for hold connection specific stuff. */
1981 sconn = silc_calloc(1, sizeof(*sconn));
1982 sconn->server = server;
1983 sconn->remote_host = strdup(remote_host);
1984 sconn->remote_port = port;
1986 silc_task_register(server->timeout_queue, 0,
1987 silc_server_connect_router,
1988 (void *)sconn, 0, 1, SILC_TASK_TIMEOUT,
1989 SILC_TASK_PRI_NORMAL);
1992 SILC_TASK_CALLBACK(silc_server_close_connection_final)
1994 silc_socket_free((SilcSocketConnection)context);
1997 /* Closes connection to socket connection */
1999 void silc_server_close_connection(SilcServer server,
2000 SilcSocketConnection sock)
2002 SILC_LOG_INFO(("Closing connection %s:%d [%s] (%d)", sock->hostname,
2004 (sock->type == SILC_SOCKET_TYPE_UNKNOWN ? "Unknown" :
2005 sock->type == SILC_SOCKET_TYPE_CLIENT ? "Client" :
2006 sock->type == SILC_SOCKET_TYPE_SERVER ? "Server" :
2007 "Router"), sock->sock));
2009 /* We won't listen for this connection anymore */
2010 silc_schedule_unset_listen_fd(sock->sock);
2012 /* Unregister all tasks */
2013 silc_task_unregister_by_fd(server->io_queue, sock->sock);
2014 silc_task_unregister_by_fd(server->timeout_queue, sock->sock);
2016 /* Close the actual connection */
2017 silc_net_close_connection(sock->sock);
2018 server->sockets[sock->sock] = NULL;
2020 silc_task_register(server->timeout_queue, 0,
2021 silc_server_close_connection_final,
2022 (void *)sock, 0, 1, SILC_TASK_TIMEOUT,
2023 SILC_TASK_PRI_NORMAL);
2026 /* Sends disconnect message to remote connection and disconnects the
2029 void silc_server_disconnect_remote(SilcServer server,
2030 SilcSocketConnection sock,
2031 const char *fmt, ...)
2034 unsigned char buf[4096];
2039 memset(buf, 0, sizeof(buf));
2041 vsprintf(buf, fmt, ap);
2044 SILC_LOG_DEBUG(("Disconnecting remote host"));
2046 SILC_LOG_INFO(("Disconnecting %s:%d [%s]", sock->hostname,
2048 (sock->type == SILC_SOCKET_TYPE_UNKNOWN ? "Unknown" :
2049 sock->type == SILC_SOCKET_TYPE_CLIENT ? "Client" :
2050 sock->type == SILC_SOCKET_TYPE_SERVER ? "Server" :
2053 /* Notify remote end that the conversation is over. The notify message
2054 is tried to be sent immediately. */
2055 silc_server_packet_send(server, sock, SILC_PACKET_DISCONNECT, 0,
2056 buf, strlen(buf), TRUE);
2058 /* Mark the connection to be disconnected */
2059 SILC_SET_DISCONNECTED(sock);
2060 silc_server_close_connection(server, sock);
2065 SilcClientEntry client;
2066 } *FreeClientInternal;
2068 SILC_TASK_CALLBACK(silc_server_free_client_data_timeout)
2070 FreeClientInternal i = (FreeClientInternal)context;
2072 silc_idlist_del_data(i->client);
2073 silc_idcache_purge_by_context(i->server->local_list->clients, i->client);
2077 /* Frees client data and notifies about client's signoff. */
2079 void silc_server_free_client_data(SilcServer server,
2080 SilcSocketConnection sock,
2081 SilcClientEntry client,
2085 FreeClientInternal i = silc_calloc(1, sizeof(*i));
2087 /* If there is pending outgoing data for the client then purge it
2088 to the network before removing the client entry. */
2089 if (sock && SILC_IS_OUTBUF_PENDING(sock) &&
2090 (SILC_IS_DISCONNECTED(sock) == FALSE)) {
2091 server->stat.packets_sent++;
2093 if (sock->outbuf->data - sock->outbuf->head)
2094 silc_buffer_push(sock->outbuf, sock->outbuf->data - sock->outbuf->head);
2096 silc_server_packet_send_real(server, sock, TRUE);
2098 SILC_SET_CONNECTION_FOR_INPUT(sock->sock);
2099 SILC_UNSET_OUTBUF_PENDING(sock);
2100 silc_buffer_clear(sock->outbuf);
2103 /* Send SIGNOFF notify to routers. */
2104 if (notify && !server->standalone && server->router)
2105 silc_server_send_notify_signoff(server, server->router->connection,
2106 server->server_type == SILC_SERVER ?
2107 FALSE : TRUE, client->id,
2108 SILC_ID_CLIENT_LEN, signoff);
2110 /* Remove client from all channels */
2112 silc_server_remove_from_channels(server, NULL, client,
2113 TRUE, signoff, TRUE);
2115 silc_server_remove_from_channels(server, NULL, client,
2116 FALSE, NULL, FALSE);
2118 /* We will not delete the client entry right away. We will take it
2119 into history (for WHOWAS command) for 5 minutes */
2122 silc_task_register(server->timeout_queue, 0,
2123 silc_server_free_client_data_timeout,
2125 SILC_TASK_TIMEOUT, SILC_TASK_PRI_LOW);
2126 client->data.registered = FALSE;
2128 /* Free the client entry and everything in it */
2129 server->stat.my_clients--;
2130 server->stat.clients--;
2131 if (server->server_type == SILC_ROUTER)
2132 server->stat.cell_clients--;
2135 /* Frees user_data pointer from socket connection object. This also sends
2136 appropriate notify packets to the network to inform about leaving
2139 void silc_server_free_sock_user_data(SilcServer server,
2140 SilcSocketConnection sock)
2142 SILC_LOG_DEBUG(("Start"));
2144 switch(sock->type) {
2145 case SILC_SOCKET_TYPE_CLIENT:
2147 SilcClientEntry user_data = (SilcClientEntry)sock->user_data;
2148 silc_server_free_client_data(server, sock, user_data, TRUE, NULL);
2151 case SILC_SOCKET_TYPE_SERVER:
2152 case SILC_SOCKET_TYPE_ROUTER:
2154 SilcServerEntry user_data = (SilcServerEntry)sock->user_data;
2156 /* Free all client entries that this server owns as they will
2157 become invalid now as well. */
2158 silc_server_remove_clients_by_server(server, user_data, TRUE);
2160 /* If this was our primary router connection then we're lost to
2161 the outside world. */
2162 if (server->router == user_data) {
2163 server->id_entry->router = NULL;
2164 server->router = NULL;
2165 server->standalone = TRUE;
2168 /* Free the server entry */
2169 silc_idlist_del_data(user_data);
2170 silc_idlist_del_server(server->local_list, user_data);
2171 server->stat.my_servers--;
2172 server->stat.servers--;
2173 if (server->server_type == SILC_ROUTER)
2174 server->stat.cell_servers--;
2179 SilcUnknownEntry user_data = (SilcUnknownEntry)sock->user_data;
2181 silc_idlist_del_data(user_data);
2182 silc_free(user_data);
2187 sock->user_data = NULL;
2190 /* This function is used to remove all client entries by the server `entry'.
2191 This is called when the connection is lost to the server. In this case
2192 we must invalidate all the client entries owned by the server `entry'.
2193 If the `server_signoff' is TRUE then the SERVER_SIGNOFF notify is
2194 distributed to our local clients. */
2196 int silc_server_remove_clients_by_server(SilcServer server,
2197 SilcServerEntry entry,
2200 SilcIDCacheList list = NULL;
2201 SilcIDCacheEntry id_cache = NULL;
2202 SilcClientEntry client = NULL;
2204 SilcClientEntry *clients = NULL;
2205 uint32 clients_c = 0;
2206 unsigned char **argv = NULL;
2207 uint32 *argv_lens = NULL, *argv_types = NULL, argc = 0;
2210 SILC_LOG_DEBUG(("Start"));
2212 if (server_signoff) {
2213 idp = silc_id_payload_encode(entry->id, SILC_ID_SERVER);
2214 argv = silc_realloc(argv, sizeof(*argv) * (argc + 1));
2215 argv_lens = silc_realloc(argv_lens, sizeof(*argv_lens) * (argc + 1));
2216 argv_types = silc_realloc(argv_types, sizeof(*argv_types) * (argc + 1));
2217 argv[argc] = idp->data;
2218 argv_lens[argc] = idp->len;
2219 argv_types[argc] = argc + 1;
2221 silc_buffer_free(idp);
2224 if (silc_idcache_find_by_id(server->local_list->clients,
2225 SILC_ID_CACHE_ANY, SILC_ID_CLIENT, &list)) {
2227 if (silc_idcache_list_first(list, &id_cache)) {
2229 client = (SilcClientEntry)id_cache->context;
2230 if (client->data.registered == FALSE) {
2231 if (!silc_idcache_list_next(list, &id_cache))
2237 if (client->router != entry) {
2238 if (server_signoff && client->connection) {
2239 clients = silc_realloc(clients,
2240 sizeof(*clients) * (clients_c + 1));
2241 clients[clients_c] = client;
2245 if (!silc_idcache_list_next(list, &id_cache))
2251 if (server_signoff) {
2252 idp = silc_id_payload_encode(client->id, SILC_ID_CLIENT);
2253 argv = silc_realloc(argv, sizeof(*argv) * (argc + 1));
2254 argv_lens = silc_realloc(argv_lens, sizeof(*argv_lens) *
2256 argv_types = silc_realloc(argv_types, sizeof(*argv_types) *
2258 argv[argc] = silc_calloc(idp->len, sizeof(*argv[0]));
2259 memcpy(argv[argc], idp->data, idp->len);
2260 argv_lens[argc] = idp->len;
2261 argv_types[argc] = argc + 1;
2263 silc_buffer_free(idp);
2266 /* Remove the client entry */
2267 silc_server_remove_from_channels(server, NULL, client, FALSE,
2269 silc_idlist_del_client(server->local_list, client);
2271 if (!silc_idcache_list_next(list, &id_cache))
2275 silc_idcache_list_free(list);
2278 if (silc_idcache_find_by_id(server->global_list->clients,
2279 SILC_ID_CACHE_ANY, SILC_ID_CLIENT, &list)) {
2281 if (silc_idcache_list_first(list, &id_cache)) {
2283 client = (SilcClientEntry)id_cache->context;
2284 if (client->data.registered == FALSE) {
2285 if (!silc_idcache_list_next(list, &id_cache))
2291 if (client->router != entry) {
2292 if (server_signoff && client->connection) {
2293 clients = silc_realloc(clients,
2294 sizeof(*clients) * (clients_c + 1));
2295 clients[clients_c] = client;
2299 if (!silc_idcache_list_next(list, &id_cache))
2305 if (server_signoff) {
2306 idp = silc_id_payload_encode(client->id, SILC_ID_CLIENT);
2307 argv = silc_realloc(argv, sizeof(*argv) * (argc + 1));
2308 argv_lens = silc_realloc(argv_lens, sizeof(*argv_lens) *
2310 argv_types = silc_realloc(argv_types, sizeof(*argv_types) *
2312 argv[argc] = silc_calloc(idp->len, sizeof(*argv[0]));
2313 memcpy(argv[argc], idp->data, idp->len);
2314 argv_lens[argc] = idp->len;
2315 argv_types[argc] = argc + 1;
2317 silc_buffer_free(idp);
2320 /* Remove the client entry */
2321 silc_server_remove_from_channels(server, NULL, client, FALSE,
2323 silc_idlist_del_client(server->global_list, client);
2325 if (!silc_idcache_list_next(list, &id_cache))
2329 silc_idcache_list_free(list);
2332 /* Send the SERVER_SIGNOFF notify */
2333 if (server_signoff) {
2336 /* Send SERVER_SIGNOFF notify to our primary router */
2337 if (!server->standalone && server->router) {
2338 args = silc_argument_payload_encode(1, argv, argv_lens,
2340 silc_server_send_notify_args(server,
2341 server->router->connection,
2342 server->server_type ==
2343 SILC_SERVER ? FALSE : TRUE,
2344 SILC_NOTIFY_TYPE_SERVER_SIGNOFF,
2346 silc_buffer_free(args);
2349 args = silc_argument_payload_encode(argc, argv, argv_lens,
2351 /* Send to local clients */
2352 for (i = 0; i < clients_c; i++) {
2353 silc_server_send_notify_args(server, clients[i]->connection,
2354 FALSE, SILC_NOTIFY_TYPE_SERVER_SIGNOFF,
2359 silc_buffer_free(args);
2361 silc_free(argv_lens);
2362 silc_free(argv_types);
2368 /* Checks whether given channel has global users. If it does this returns
2369 TRUE and FALSE if there is only locally connected clients on the channel. */
2371 int silc_server_channel_has_global(SilcChannelEntry channel)
2373 SilcChannelClientEntry chl;
2375 silc_list_start(channel->user_list);
2376 while ((chl = silc_list_get(channel->user_list)) != SILC_LIST_END) {
2377 if (chl->client->router)
2384 /* Checks whether given channel has locally connected users. If it does this
2385 returns TRUE and FALSE if there is not one locally connected client. */
2387 int silc_server_channel_has_local(SilcChannelEntry channel)
2389 SilcChannelClientEntry chl;
2391 silc_list_start(channel->user_list);
2392 while ((chl = silc_list_get(channel->user_list)) != SILC_LIST_END) {
2393 if (!chl->client->router)
2400 /* Removes client from all channels it has joined. This is used when client
2401 connection is disconnected. If the client on a channel is last, the
2402 channel is removed as well. This sends the SIGNOFF notify types. */
2404 void silc_server_remove_from_channels(SilcServer server,
2405 SilcSocketConnection sock,
2406 SilcClientEntry client,
2408 char *signoff_message,
2411 SilcChannelEntry channel;
2412 SilcChannelClientEntry chl;
2415 SILC_LOG_DEBUG(("Start"));
2417 if (!client || !client->id)
2420 clidp = silc_id_payload_encode(client->id, SILC_ID_CLIENT);
2422 /* Remove the client from all channels. The client is removed from
2423 the channels' user list. */
2424 silc_list_start(client->channels);
2425 while ((chl = silc_list_get(client->channels)) != SILC_LIST_END) {
2426 channel = chl->channel;
2428 /* Remove channel from client's channel list */
2429 silc_list_del(client->channels, chl);
2431 /* Remove channel if there is no users anymore */
2432 if (server->server_type == SILC_ROUTER &&
2433 silc_list_count(channel->user_list) < 2) {
2434 server->stat.my_channels--;
2437 silc_task_unregister_by_context(server->timeout_queue, channel->rekey);
2439 if (channel->founder_key) {
2440 /* The founder auth data exists, do not remove the channel entry */
2441 SilcChannelClientEntry chl2;
2445 silc_list_start(channel->user_list);
2446 while ((chl2 = silc_list_get(channel->user_list)) != SILC_LIST_END) {
2447 silc_list_del(chl2->client->channels, chl2);
2448 silc_list_del(channel->user_list, chl2);
2454 if (!silc_idlist_del_channel(server->local_list, channel))
2455 silc_idlist_del_channel(server->global_list, channel);
2459 /* Remove client from channel's client list */
2460 silc_list_del(channel->user_list, chl);
2462 server->stat.my_chanclients--;
2464 /* If there is no global users on the channel anymore mark the channel
2465 as local channel. */
2466 if (server->server_type == SILC_SERVER &&
2467 !silc_server_channel_has_global(channel))
2468 channel->global_users = FALSE;
2470 /* If there is not at least one local user on the channel then we don't
2471 need the channel entry anymore, we can remove it safely. */
2472 if (server->server_type == SILC_SERVER &&
2473 !silc_server_channel_has_local(channel)) {
2474 /* Notify about leaving client if this channel has global users. */
2475 if (notify && channel->global_users)
2476 silc_server_send_notify_to_channel(server, NULL, channel, FALSE,
2477 SILC_NOTIFY_TYPE_SIGNOFF,
2478 signoff_message ? 2 : 1,
2479 clidp->data, clidp->len,
2480 signoff_message, signoff_message ?
2481 strlen(signoff_message) : 0);
2483 server->stat.my_channels--;
2486 silc_task_unregister_by_context(server->timeout_queue, channel->rekey);
2488 if (channel->founder_key) {
2489 /* The founder auth data exists, do not remove the channel entry */
2490 SilcChannelClientEntry chl2;
2494 silc_list_start(channel->user_list);
2495 while ((chl2 = silc_list_get(channel->user_list)) != SILC_LIST_END) {
2496 silc_list_del(chl2->client->channels, chl2);
2497 silc_list_del(channel->user_list, chl2);
2503 if (!silc_idlist_del_channel(server->local_list, channel))
2504 silc_idlist_del_channel(server->global_list, channel);
2508 /* Send notify to channel about client leaving SILC and thus
2509 the entire channel. */
2511 silc_server_send_notify_to_channel(server, NULL, channel, FALSE,
2512 SILC_NOTIFY_TYPE_SIGNOFF,
2513 signoff_message ? 2 : 1,
2514 clidp->data, clidp->len,
2515 signoff_message, signoff_message ?
2516 strlen(signoff_message) : 0);
2518 if (keygen && !(channel->mode & SILC_CHANNEL_MODE_PRIVKEY)) {
2519 /* Re-generate channel key */
2520 silc_server_create_channel_key(server, channel, 0);
2522 /* Send the channel key to the channel. The key of course is not sent
2523 to the client who was removed from the channel. */
2524 silc_server_send_channel_key(server, client->connection, channel,
2525 server->server_type == SILC_ROUTER ?
2526 FALSE : !server->standalone);
2530 silc_buffer_free(clidp);
2533 /* Removes client from one channel. This is used for example when client
2534 calls LEAVE command to remove itself from the channel. Returns TRUE
2535 if channel still exists and FALSE if the channel is removed when
2536 last client leaves the channel. If `notify' is FALSE notify messages
2539 int silc_server_remove_from_one_channel(SilcServer server,
2540 SilcSocketConnection sock,
2541 SilcChannelEntry channel,
2542 SilcClientEntry client,
2545 SilcChannelEntry ch;
2546 SilcChannelClientEntry chl;
2549 SILC_LOG_DEBUG(("Start"));
2551 clidp = silc_id_payload_encode(client->id, SILC_ID_CLIENT);
2553 /* Remove the client from the channel. The client is removed from
2554 the channel's user list. */
2555 silc_list_start(client->channels);
2556 while ((chl = silc_list_get(client->channels)) != SILC_LIST_END) {
2557 if (chl->channel != channel)
2562 /* Remove channel from client's channel list */
2563 silc_list_del(client->channels, chl);
2565 /* Remove channel if there is no users anymore */
2566 if (server->server_type == SILC_ROUTER &&
2567 silc_list_count(channel->user_list) < 2) {
2569 silc_task_unregister_by_context(server->timeout_queue, channel->rekey);
2570 if (!silc_idlist_del_channel(server->local_list, channel))
2571 silc_idlist_del_channel(server->global_list, channel);
2572 silc_buffer_free(clidp);
2573 server->stat.my_channels--;
2577 /* Remove client from channel's client list */
2578 silc_list_del(channel->user_list, chl);
2580 server->stat.my_chanclients--;
2582 /* If there is no global users on the channel anymore mark the channel
2583 as local channel. */
2584 if (server->server_type == SILC_SERVER &&
2585 !silc_server_channel_has_global(channel))
2586 channel->global_users = FALSE;
2588 /* If there is not at least one local user on the channel then we don't
2589 need the channel entry anymore, we can remove it safely. */
2590 if (server->server_type == SILC_SERVER &&
2591 !silc_server_channel_has_local(channel)) {
2592 /* Notify about leaving client if this channel has global users. */
2593 if (notify && channel->global_users)
2594 silc_server_send_notify_to_channel(server, NULL, channel, FALSE,
2595 SILC_NOTIFY_TYPE_LEAVE, 1,
2596 clidp->data, clidp->len);
2598 server->stat.my_channels--;
2599 silc_buffer_free(clidp);
2602 silc_task_unregister_by_context(server->timeout_queue, channel->rekey);
2604 if (channel->founder_key) {
2605 /* The founder auth data exists, do not remove the channel entry */
2606 SilcChannelClientEntry chl2;
2610 silc_list_start(channel->user_list);
2611 while ((chl2 = silc_list_get(channel->user_list)) != SILC_LIST_END) {
2612 silc_list_del(chl2->client->channels, chl2);
2613 silc_list_del(channel->user_list, chl2);
2619 if (!silc_idlist_del_channel(server->local_list, channel))
2620 silc_idlist_del_channel(server->global_list, channel);
2624 /* Send notify to channel about client leaving the channel */
2626 silc_server_send_notify_to_channel(server, NULL, channel, FALSE,
2627 SILC_NOTIFY_TYPE_LEAVE, 1,
2628 clidp->data, clidp->len);
2632 silc_buffer_free(clidp);
2636 /* Returns TRUE if the given client is on the channel. FALSE if not.
2637 This works because we assure that the user list on the channel is
2638 always in up to date thus we can only check the channel list from
2639 `client' which is faster than checking the user list from `channel'. */
2641 int silc_server_client_on_channel(SilcClientEntry client,
2642 SilcChannelEntry channel)
2644 SilcChannelClientEntry chl;
2646 if (!client || !channel)
2649 silc_list_start(client->channels);
2650 while ((chl = silc_list_get(client->channels)) != SILC_LIST_END)
2651 if (chl->channel == channel)
2657 /* Timeout callback. This is called if connection is idle or for some
2658 other reason is not responding within some period of time. This
2659 disconnects the remote end. */
2661 SILC_TASK_CALLBACK(silc_server_timeout_remote)
2663 SilcServer server = (SilcServer)context;
2664 SilcSocketConnection sock = server->sockets[fd];
2669 if (sock->user_data)
2670 silc_server_free_sock_user_data(server, sock);
2672 silc_server_disconnect_remote(server, sock,
2673 "Server closed connection: "
2674 "Connection timeout");
2677 /* Creates new channel. Sends NEW_CHANNEL packet to primary route. This
2678 function may be used only by router. In real SILC network all channels
2679 are created by routers thus this function is never used by normal
2682 SilcChannelEntry silc_server_create_new_channel(SilcServer server,
2683 SilcServerID *router_id,
2689 SilcChannelID *channel_id;
2690 SilcChannelEntry entry;
2694 SILC_LOG_DEBUG(("Creating new channel"));
2697 cipher = "aes-256-cbc";
2699 hmac = "hmac-sha1-96";
2701 /* Allocate cipher */
2702 if (!silc_cipher_alloc(cipher, &key))
2706 if (!silc_hmac_alloc(hmac, NULL, &newhmac)) {
2707 silc_cipher_free(key);
2711 channel_name = strdup(channel_name);
2713 /* Create the channel */
2714 silc_id_create_channel_id(router_id, server->rng, &channel_id);
2715 entry = silc_idlist_add_channel(server->local_list, channel_name,
2716 SILC_CHANNEL_MODE_NONE, channel_id,
2717 NULL, key, newhmac);
2719 silc_free(channel_name);
2723 entry->cipher = strdup(cipher);
2724 entry->hmac_name = strdup(hmac);
2726 /* Now create the actual key material */
2727 silc_server_create_channel_key(server, entry,
2728 silc_cipher_get_key_len(key) / 8);
2730 /* Notify other routers about the new channel. We send the packet
2731 to our primary route. */
2732 if (broadcast && server->standalone == FALSE)
2733 silc_server_send_new_channel(server, server->router->connection, TRUE,
2734 channel_name, entry->id, SILC_ID_CHANNEL_LEN,
2737 server->stat.my_channels++;
2742 /* Same as above but creates the channel with Channel ID `channel_id. */
2745 silc_server_create_new_channel_with_id(SilcServer server,
2749 SilcChannelID *channel_id,
2752 SilcChannelEntry entry;
2756 SILC_LOG_DEBUG(("Creating new channel"));
2759 cipher = "aes-256-cbc";
2761 hmac = "hmac-sha1-96";
2763 /* Allocate cipher */
2764 if (!silc_cipher_alloc(cipher, &key))
2768 if (!silc_hmac_alloc(hmac, NULL, &newhmac)) {
2769 silc_cipher_free(key);
2773 channel_name = strdup(channel_name);
2775 /* Create the channel */
2776 entry = silc_idlist_add_channel(server->local_list, channel_name,
2777 SILC_CHANNEL_MODE_NONE, channel_id,
2778 NULL, key, newhmac);
2780 silc_free(channel_name);
2784 /* Now create the actual key material */
2785 silc_server_create_channel_key(server, entry,
2786 silc_cipher_get_key_len(key) / 8);
2788 /* Notify other routers about the new channel. We send the packet
2789 to our primary route. */
2790 if (broadcast && server->standalone == FALSE)
2791 silc_server_send_new_channel(server, server->router->connection, TRUE,
2792 channel_name, entry->id, SILC_ID_CHANNEL_LEN,
2795 server->stat.my_channels++;
2800 /* Channel's key re-key timeout callback. */
2802 SILC_TASK_CALLBACK(silc_server_channel_key_rekey)
2804 SilcServerChannelRekey rekey = (SilcServerChannelRekey)context;
2805 SilcServer server = (SilcServer)rekey->context;
2807 silc_server_create_channel_key(server, rekey->channel, rekey->key_len);
2808 silc_server_send_channel_key(server, NULL, rekey->channel, FALSE);
2810 silc_task_register(server->timeout_queue, 0,
2811 silc_server_channel_key_rekey,
2812 (void *)rekey, 3600, 0,
2814 SILC_TASK_PRI_NORMAL);
2817 /* Generates new channel key. This is used to create the initial channel key
2818 but also to re-generate new key for channel. If `key_len' is provided
2819 it is the bytes of the key length. */
2821 void silc_server_create_channel_key(SilcServer server,
2822 SilcChannelEntry channel,
2826 unsigned char channel_key[32], hash[32];
2829 SILC_LOG_DEBUG(("Generating channel key"));
2831 if (channel->mode & SILC_CHANNEL_MODE_PRIVKEY) {
2832 SILC_LOG_DEBUG(("Channel has private keys, will not generate new key"));
2836 if (!channel->channel_key)
2837 if (!silc_cipher_alloc("aes-256-cbc", &channel->channel_key))
2842 else if (channel->key_len)
2843 len = channel->key_len / 8;
2845 len = silc_cipher_get_key_len(channel->channel_key) / 8;
2847 /* Create channel key */
2848 for (i = 0; i < len; i++) channel_key[i] = silc_rng_get_byte(server->rng);
2851 silc_cipher_set_key(channel->channel_key, channel_key, len * 8);
2853 /* Remove old key if exists */
2855 memset(channel->key, 0, channel->key_len / 8);
2856 silc_free(channel->key);
2860 channel->key_len = len * 8;
2861 channel->key = silc_calloc(len, sizeof(*channel->key));
2862 memcpy(channel->key, channel_key, len);
2863 memset(channel_key, 0, sizeof(channel_key));
2865 /* Generate HMAC key from the channel key data and set it */
2867 silc_hmac_alloc("hmac-sha1-96", NULL, &channel->hmac);
2868 silc_hash_make(channel->hmac->hash, channel->key, len, hash);
2869 silc_hmac_set_key(channel->hmac, hash, silc_hash_len(channel->hmac->hash));
2870 memset(hash, 0, sizeof(hash));
2872 if (server->server_type == SILC_ROUTER) {
2873 if (!channel->rekey)
2874 channel->rekey = silc_calloc(1, sizeof(*channel->rekey));
2875 channel->rekey->context = (void *)server;
2876 channel->rekey->channel = channel;
2877 channel->rekey->key_len = key_len;
2879 silc_task_unregister_by_callback(server->timeout_queue,
2880 silc_server_channel_key_rekey);
2881 silc_task_register(server->timeout_queue, 0,
2882 silc_server_channel_key_rekey,
2883 (void *)channel->rekey, 3600, 0,
2885 SILC_TASK_PRI_NORMAL);
2889 /* Saves the channel key found in the encoded `key_payload' buffer. This
2890 function is used when we receive Channel Key Payload and also when we're
2891 processing JOIN command reply. Returns entry to the channel. */
2893 SilcChannelEntry silc_server_save_channel_key(SilcServer server,
2894 SilcBuffer key_payload,
2895 SilcChannelEntry channel)
2897 SilcChannelKeyPayload payload = NULL;
2898 SilcChannelID *id = NULL;
2899 unsigned char *tmp, hash[32];
2903 SILC_LOG_DEBUG(("Start"));
2905 /* Decode channel key payload */
2906 payload = silc_channel_key_payload_parse(key_payload);
2908 SILC_LOG_ERROR(("Bad channel key payload, dropped"));
2913 /* Get the channel entry */
2916 /* Get channel ID */
2917 tmp = silc_channel_key_get_id(payload, &tmp_len);
2918 id = silc_id_str2id(tmp, tmp_len, SILC_ID_CHANNEL);
2924 channel = silc_idlist_find_channel_by_id(server->local_list, id, NULL);
2926 channel = silc_idlist_find_channel_by_id(server->global_list, id, NULL);
2928 SILC_LOG_ERROR(("Received key for non-existent channel"));
2934 tmp = silc_channel_key_get_key(payload, &tmp_len);
2940 cipher = silc_channel_key_get_cipher(payload, NULL);
2946 /* Remove old key if exists */
2948 memset(channel->key, 0, channel->key_len / 8);
2949 silc_free(channel->key);
2950 silc_cipher_free(channel->channel_key);
2953 /* Create new cipher */
2954 if (!silc_cipher_alloc(cipher, &channel->channel_key)) {
2959 if (channel->cipher)
2960 silc_free(channel->cipher);
2961 channel->cipher = strdup(cipher);
2964 channel->key_len = tmp_len * 8;
2965 channel->key = silc_calloc(tmp_len, sizeof(unsigned char));
2966 memcpy(channel->key, tmp, tmp_len);
2967 silc_cipher_set_key(channel->channel_key, tmp, channel->key_len);
2969 /* Generate HMAC key from the channel key data and set it */
2971 silc_hmac_alloc("hmac-sha1-96", NULL, &channel->hmac);
2972 silc_hash_make(channel->hmac->hash, tmp, tmp_len, hash);
2973 silc_hmac_set_key(channel->hmac, hash, silc_hash_len(channel->hmac->hash));
2975 memset(hash, 0, sizeof(hash));
2976 memset(tmp, 0, tmp_len);
2978 if (server->server_type == SILC_ROUTER) {
2979 if (!channel->rekey)
2980 channel->rekey = silc_calloc(1, sizeof(*channel->rekey));
2981 channel->rekey->context = (void *)server;
2982 channel->rekey->channel = channel;
2984 silc_task_unregister_by_callback(server->timeout_queue,
2985 silc_server_channel_key_rekey);
2986 silc_task_register(server->timeout_queue, 0,
2987 silc_server_channel_key_rekey,
2988 (void *)channel->rekey, 3600, 0,
2990 SILC_TASK_PRI_NORMAL);
2997 silc_channel_key_payload_free(payload);
3002 /* Heartbeat callback. This function is set as argument for the
3003 silc_socket_set_heartbeat function. The library will call this function
3004 at the set time interval. */
3006 void silc_server_perform_heartbeat(SilcSocketConnection sock,
3009 SilcServerHBContext hb = (SilcServerHBContext)hb_context;
3011 SILC_LOG_DEBUG(("Sending heartbeat to %s (%s)", sock->hostname,
3014 /* Send the heartbeat */
3015 silc_server_send_heartbeat(hb->server, sock);
3018 /* Returns assembled of all servers in the given ID list. The packet's
3019 form is dictated by the New ID payload. */
3021 static void silc_server_announce_get_servers(SilcServer server,
3023 SilcBuffer *servers)
3025 SilcIDCacheList list;
3026 SilcIDCacheEntry id_cache;
3027 SilcServerEntry entry;
3030 /* Go through all clients in the list */
3031 if (silc_idcache_find_by_id(id_list->clients, SILC_ID_CACHE_ANY,
3032 SILC_ID_SERVER, &list)) {
3033 if (silc_idcache_list_first(list, &id_cache)) {
3035 entry = (SilcServerEntry)id_cache->context;
3037 idp = silc_id_payload_encode(entry->id, SILC_ID_SERVER);
3039 *servers = silc_buffer_realloc(*servers,
3041 (*servers)->truelen + idp->len :
3043 silc_buffer_pull_tail(*servers, ((*servers)->end - (*servers)->data));
3044 silc_buffer_put(*servers, idp->data, idp->len);
3045 silc_buffer_pull(*servers, idp->len);
3046 silc_buffer_free(idp);
3048 if (!silc_idcache_list_next(list, &id_cache))
3053 silc_idcache_list_free(list);
3057 /* This function is used by router to announce existing servers to our
3058 primary router when we've connected to it. */
3060 void silc_server_announce_servers(SilcServer server)
3062 SilcBuffer servers = NULL;
3064 SILC_LOG_DEBUG(("Announcing servers"));
3066 /* Get servers in local list */
3067 silc_server_announce_get_servers(server, server->local_list, &servers);
3069 /* Get servers in global list */
3070 silc_server_announce_get_servers(server, server->global_list, &servers);
3073 silc_buffer_push(servers, servers->data - servers->head);
3074 SILC_LOG_HEXDUMP(("servers"), servers->data, servers->len);
3076 /* Send the packet */
3077 silc_server_packet_send(server, server->router->connection,
3078 SILC_PACKET_NEW_ID, SILC_PACKET_FLAG_LIST,
3079 servers->data, servers->len, TRUE);
3081 silc_buffer_free(servers);
3085 /* Returns assembled packet of all clients in the given ID list. The
3086 packet's form is dictated by the New ID Payload. */
3088 static void silc_server_announce_get_clients(SilcServer server,
3090 SilcBuffer *clients)
3092 SilcIDCacheList list;
3093 SilcIDCacheEntry id_cache;
3094 SilcClientEntry client;
3097 /* Go through all clients in the list */
3098 if (silc_idcache_find_by_id(id_list->clients, SILC_ID_CACHE_ANY,
3099 SILC_ID_CLIENT, &list)) {
3100 if (silc_idcache_list_first(list, &id_cache)) {
3102 client = (SilcClientEntry)id_cache->context;
3104 idp = silc_id_payload_encode(client->id, SILC_ID_CLIENT);
3106 *clients = silc_buffer_realloc(*clients,
3108 (*clients)->truelen + idp->len :
3110 silc_buffer_pull_tail(*clients, ((*clients)->end - (*clients)->data));
3111 silc_buffer_put(*clients, idp->data, idp->len);
3112 silc_buffer_pull(*clients, idp->len);
3113 silc_buffer_free(idp);
3115 if (!silc_idcache_list_next(list, &id_cache))
3120 silc_idcache_list_free(list);
3124 /* This function is used to announce our existing clients to our router
3125 when we've connected to it. */
3127 void silc_server_announce_clients(SilcServer server)
3129 SilcBuffer clients = NULL;
3131 SILC_LOG_DEBUG(("Announcing clients"));
3133 /* Get clients in local list */
3134 silc_server_announce_get_clients(server, server->local_list,
3137 /* As router we announce our global list as well */
3138 if (server->server_type == SILC_ROUTER)
3139 silc_server_announce_get_clients(server, server->global_list,
3143 silc_buffer_push(clients, clients->data - clients->head);
3144 SILC_LOG_HEXDUMP(("clients"), clients->data, clients->len);
3146 /* Send the packet */
3147 silc_server_packet_send(server, server->router->connection,
3148 SILC_PACKET_NEW_ID, SILC_PACKET_FLAG_LIST,
3149 clients->data, clients->len, TRUE);
3151 silc_buffer_free(clients);
3156 silc_server_announce_encode_join(uint32 argc, ...)
3161 return silc_notify_payload_encode(SILC_NOTIFY_TYPE_JOIN, argc, ap);
3164 /* Returns assembled packets for channel users of the `channel'. */
3166 void silc_server_announce_get_channel_users(SilcServer server,
3167 SilcChannelEntry channel,
3168 SilcBuffer *channel_users)
3170 SilcChannelClientEntry chl;
3171 SilcBuffer chidp, clidp;
3175 SILC_LOG_DEBUG(("Start"));
3177 /* Now find all users on the channel */
3178 chidp = silc_id_payload_encode(channel->id, SILC_ID_CHANNEL);
3179 silc_list_start(channel->user_list);
3180 while ((chl = silc_list_get(channel->user_list)) != SILC_LIST_END) {
3181 clidp = silc_id_payload_encode(chl->client->id, SILC_ID_CLIENT);
3182 tmp = silc_server_announce_encode_join(2, clidp->data, clidp->len,
3183 chidp->data, chidp->len);
3186 silc_buffer_realloc(*channel_users,
3188 (*channel_users)->truelen + len : len));
3189 silc_buffer_pull_tail(*channel_users,
3190 ((*channel_users)->end -
3191 (*channel_users)->data));
3193 silc_buffer_put(*channel_users, tmp->data, tmp->len);
3194 silc_buffer_pull(*channel_users, len);
3195 silc_buffer_free(clidp);
3196 silc_buffer_free(tmp);
3198 silc_buffer_free(chidp);
3201 /* Returns assembled packets for all channels and users on those channels
3202 from the given ID List. The packets are in the form dictated by the
3203 New Channel and New Channel User payloads. */
3205 void silc_server_announce_get_channels(SilcServer server,
3207 SilcBuffer *channels,
3208 SilcBuffer *channel_users)
3210 SilcIDCacheList list;
3211 SilcIDCacheEntry id_cache;
3212 SilcChannelEntry channel;
3217 SILC_LOG_DEBUG(("Start"));
3219 /* Go through all channels in the list */
3220 if (silc_idcache_find_by_id(id_list->channels, SILC_ID_CACHE_ANY,
3221 SILC_ID_CHANNEL, &list)) {
3222 if (silc_idcache_list_first(list, &id_cache)) {
3224 channel = (SilcChannelEntry)id_cache->context;
3226 cid = silc_id_id2str(channel->id, SILC_ID_CHANNEL);
3227 name_len = strlen(channel->channel_name);
3229 len = 4 + name_len + SILC_ID_CHANNEL_LEN + 4;
3231 silc_buffer_realloc(*channels,
3232 (*channels ? (*channels)->truelen + len : len));
3233 silc_buffer_pull_tail(*channels,
3234 ((*channels)->end - (*channels)->data));
3235 silc_buffer_format(*channels,
3236 SILC_STR_UI_SHORT(name_len),
3237 SILC_STR_UI_XNSTRING(channel->channel_name,
3239 SILC_STR_UI_SHORT(SILC_ID_CHANNEL_LEN),
3240 SILC_STR_UI_XNSTRING(cid, SILC_ID_CHANNEL_LEN),
3241 SILC_STR_UI_INT(channel->mode),
3243 silc_buffer_pull(*channels, len);
3245 silc_server_announce_get_channel_users(server, channel,
3250 if (!silc_idcache_list_next(list, &id_cache))
3255 silc_idcache_list_free(list);
3259 /* This function is used to announce our existing channels to our router
3260 when we've connected to it. This also announces the users on the
3261 channels to the router. */
3263 void silc_server_announce_channels(SilcServer server)
3265 SilcBuffer channels = NULL, channel_users = NULL;
3267 SILC_LOG_DEBUG(("Announcing channels and channel users"));
3269 /* Get channels and channel users in local list */
3270 silc_server_announce_get_channels(server, server->local_list,
3271 &channels, &channel_users);
3273 /* Get channels and channel users in global list */
3274 silc_server_announce_get_channels(server, server->global_list,
3275 &channels, &channel_users);
3278 silc_buffer_push(channels, channels->data - channels->head);
3279 SILC_LOG_HEXDUMP(("channels"), channels->data, channels->len);
3281 /* Send the packet */
3282 silc_server_packet_send(server, server->router->connection,
3283 SILC_PACKET_NEW_CHANNEL, SILC_PACKET_FLAG_LIST,
3284 channels->data, channels->len,
3287 silc_buffer_free(channels);
3290 if (channel_users) {
3291 silc_buffer_push(channel_users, channel_users->data - channel_users->head);
3292 SILC_LOG_HEXDUMP(("channel users"), channel_users->data,
3293 channel_users->len);
3295 /* Send the packet */
3296 silc_server_packet_send(server, server->router->connection,
3297 SILC_PACKET_NOTIFY, SILC_PACKET_FLAG_LIST,
3298 channel_users->data, channel_users->len,
3301 silc_buffer_free(channel_users);
3305 /* Failure timeout callback. If this is called then we will immediately
3306 process the received failure. We always process the failure with timeout
3307 since we do not want to blindly trust to received failure packets.
3308 This won't be called (the timeout is cancelled) if the failure was
3309 bogus (it is bogus if remote does not close the connection after sending
3312 SILC_TASK_CALLBACK(silc_server_failure_callback)
3314 SilcServerFailureContext f = (SilcServerFailureContext)context;
3316 if (f->sock->protocol) {
3317 f->sock->protocol->state = SILC_PROTOCOL_STATE_FAILURE;
3318 f->sock->protocol->execute(f->server->timeout_queue, 0,
3319 f->sock->protocol, f->sock->sock, 0, 0);
3325 /* Assembles user list and users mode list from the `channel'. */
3327 void silc_server_get_users_on_channel(SilcServer server,
3328 SilcChannelEntry channel,
3329 SilcBuffer *user_list,
3330 SilcBuffer *mode_list,
3333 SilcChannelClientEntry chl;
3334 SilcBuffer client_id_list;
3335 SilcBuffer client_mode_list;
3337 uint32 list_count = 0;
3339 client_id_list = silc_buffer_alloc((SILC_ID_CLIENT_LEN + 4) *
3340 silc_list_count(channel->user_list));
3341 client_mode_list = silc_buffer_alloc(4 *
3342 silc_list_count(channel->user_list));
3343 silc_buffer_pull_tail(client_id_list, SILC_BUFFER_END(client_id_list));
3344 silc_buffer_pull_tail(client_mode_list, SILC_BUFFER_END(client_mode_list));
3345 silc_list_start(channel->user_list);
3346 while ((chl = silc_list_get(channel->user_list)) != SILC_LIST_END) {
3348 idp = silc_id_payload_encode(chl->client->id, SILC_ID_CLIENT);
3349 silc_buffer_put(client_id_list, idp->data, idp->len);
3350 silc_buffer_pull(client_id_list, idp->len);
3351 silc_buffer_free(idp);
3353 /* Client's mode on channel */
3354 SILC_PUT32_MSB(chl->mode, client_mode_list->data);
3355 silc_buffer_pull(client_mode_list, 4);
3359 silc_buffer_push(client_id_list,
3360 client_id_list->data - client_id_list->head);
3361 silc_buffer_push(client_mode_list,
3362 client_mode_list->data - client_mode_list->head);
3364 *user_list = client_id_list;
3365 *mode_list = client_mode_list;
3366 *user_count = list_count;
3369 /* Saves users and their modes to the `channel'. */
3371 void silc_server_save_users_on_channel(SilcServer server,
3372 SilcSocketConnection sock,
3373 SilcChannelEntry channel,
3374 SilcClientID *noadd,
3375 SilcBuffer user_list,
3376 SilcBuffer mode_list,
3381 /* Cache the received Client ID's and modes. This cache expires
3382 whenever server sends notify message to channel. It means two things;
3383 some user has joined or leaved the channel. XXX TODO! */
3384 for (i = 0; i < user_count; i++) {
3387 SilcClientID *client_id;
3388 SilcClientEntry client;
3391 SILC_GET16_MSB(idp_len, user_list->data + 2);
3393 client_id = silc_id_payload_parse_id(user_list->data, idp_len);
3394 silc_buffer_pull(user_list, idp_len);
3399 SILC_GET32_MSB(mode, mode_list->data);
3400 silc_buffer_pull(mode_list, 4);
3402 if (noadd && !SILC_ID_CLIENT_COMPARE(client_id, noadd)) {
3403 silc_free(client_id);
3407 /* Check if we have this client cached already. */
3408 client = silc_idlist_find_client_by_id(server->local_list, client_id,
3411 client = silc_idlist_find_client_by_id(server->global_list,
3414 /* If router did not find such Client ID in its lists then this must
3415 be bogus client or some router in the net is buggy. */
3416 if (server->server_type == SILC_ROUTER) {
3417 silc_free(client_id);
3421 /* We don't have that client anywhere, add it. The client is added
3422 to global list since server didn't have it in the lists so it must be
3424 client = silc_idlist_add_client(server->global_list, NULL, 0, NULL,
3426 silc_id_dup(client_id, SILC_ID_CLIENT),
3427 sock->user_data, NULL);
3429 silc_free(client_id);
3433 client->data.registered = TRUE;
3436 silc_free(client_id);
3438 if (!silc_server_client_on_channel(client, channel)) {
3439 /* Client was not on the channel, add it. */
3440 SilcChannelClientEntry chl = silc_calloc(1, sizeof(*chl));
3441 chl->client = client;
3443 chl->channel = channel;
3444 silc_list_add(channel->user_list, chl);
3445 silc_list_add(client->channels, chl);
3450 /* Lookups route to the client indicated by the `id_data'. The connection
3451 object and internal data object is returned. Returns NULL if route
3452 could not be found to the client. If the `client_id' is specified then
3453 it is used and the `id_data' is ignored. */
3455 SilcSocketConnection silc_server_get_client_route(SilcServer server,
3456 unsigned char *id_data,
3458 SilcClientID *client_id,
3459 SilcIDListData *idata)
3462 SilcClientEntry client;
3464 SILC_LOG_DEBUG(("Start"));
3466 /* Decode destination Client ID */
3468 id = silc_id_str2id(id_data, id_len, SILC_ID_CLIENT);
3470 SILC_LOG_ERROR(("Could not decode destination Client ID, dropped"));
3474 id = silc_id_dup(client_id, SILC_ID_CLIENT);
3477 /* If the destination belongs to our server we don't have to route
3478 the packet anywhere but to send it to the local destination. */
3479 client = silc_idlist_find_client_by_id(server->local_list, id, NULL);
3483 if (client && client->data.registered == FALSE)
3486 /* If we are router and the client has router then the client is in
3487 our cell but not directly connected to us. */
3488 if (server->server_type == SILC_ROUTER && client->router) {
3489 /* We are of course in this case the client's router thus the real
3490 "router" of the client is the server who owns the client. Thus
3491 we will send the packet to that server. */
3493 *idata = (SilcIDListData)client->router;
3494 return client->router->connection;
3497 /* Seems that client really is directly connected to us */
3499 *idata = (SilcIDListData)client;
3500 return client->connection;
3503 /* Destination belongs to someone not in this server. If we are normal
3504 server our action is to send the packet to our router. */
3505 if (server->server_type == SILC_SERVER && !server->standalone) {
3508 *idata = (SilcIDListData)server->router;
3509 return server->router->connection;
3512 /* We are router and we will perform route lookup for the destination
3513 and send the packet to fastest route. */
3514 if (server->server_type == SILC_ROUTER && !server->standalone) {
3515 /* Check first that the ID is valid */
3516 client = silc_idlist_find_client_by_id(server->global_list, id, NULL);
3518 SilcSocketConnection dst_sock;
3520 dst_sock = silc_server_route_get(server, id, SILC_ID_CLIENT);
3524 *idata = (SilcIDListData)dst_sock->user_data;
3533 /* Encodes and returns channel list of channels the `client' has joined.
3534 Secret channels are not put to the list. */
3536 SilcBuffer silc_server_get_client_channel_list(SilcServer server,
3537 SilcClientEntry client)
3539 SilcBuffer buffer = NULL;
3540 SilcChannelEntry channel;
3541 SilcChannelClientEntry chl;
3546 silc_list_start(client->channels);
3547 while ((chl = silc_list_get(client->channels)) != SILC_LIST_END) {
3548 channel = chl->channel;
3550 if (channel->mode & SILC_CHANNEL_MODE_SECRET)
3553 cid = silc_id_id2str(channel->id, SILC_ID_CHANNEL);
3554 name_len = strlen(channel->channel_name);
3556 len = 4 + name_len + SILC_ID_CHANNEL_LEN + 4;
3557 buffer = silc_buffer_realloc(buffer,
3558 (buffer ? (buffer)->truelen + len : len));
3559 silc_buffer_pull_tail(buffer, ((buffer)->end - (buffer)->data));
3560 silc_buffer_format(buffer,
3561 SILC_STR_UI_SHORT(name_len),
3562 SILC_STR_UI_XNSTRING(channel->channel_name,
3564 SILC_STR_UI_SHORT(SILC_ID_CHANNEL_LEN),
3565 SILC_STR_UI_XNSTRING(cid, SILC_ID_CHANNEL_LEN),
3566 SILC_STR_UI_INT(chl->mode), /* Client's mode */
3568 silc_buffer_pull(buffer, len);
3573 silc_buffer_push(buffer, buffer->data - buffer->head);
3578 /* Finds client entry by Client ID and if it is not found then resolves
3579 it using WHOIS command. */
3581 SilcClientEntry silc_server_get_client_resolve(SilcServer server,
3582 SilcClientID *client_id)
3584 SilcClientEntry client;
3586 client = silc_idlist_find_client_by_id(server->local_list, client_id, NULL);
3588 client = silc_idlist_find_client_by_id(server->global_list,
3590 if (!client && server->server_type == SILC_ROUTER)
3594 if (!client && server->standalone)
3597 if (!client || !client->nickname || !client->username) {
3598 SilcBuffer buffer, idp;
3600 idp = silc_id_payload_encode(client_id, SILC_ID_CLIENT);
3601 buffer = silc_command_payload_encode_va(SILC_COMMAND_WHOIS,
3602 ++server->cmd_ident, 1,
3603 3, idp->data, idp->len);
3604 silc_server_packet_send(server, client ? client->router->connection :
3605 server->router->connection,
3606 SILC_PACKET_COMMAND, 0,
3607 buffer->data, buffer->len, FALSE);
3608 silc_buffer_free(idp);
3609 silc_buffer_free(buffer);
3615 /* A timeout callback for the re-key. We will be the initiator of the
3618 SILC_TASK_CALLBACK(silc_server_rekey_callback)
3620 SilcSocketConnection sock = (SilcSocketConnection)context;
3621 SilcIDListData idata = (SilcIDListData)sock->user_data;
3622 SilcServer server = (SilcServer)idata->rekey->context;
3623 SilcProtocol protocol;
3624 SilcServerRekeyInternalContext *proto_ctx;
3626 SILC_LOG_DEBUG(("Start"));
3628 /* Allocate internal protocol context. This is sent as context
3630 proto_ctx = silc_calloc(1, sizeof(*proto_ctx));
3631 proto_ctx->server = (void *)server;
3632 proto_ctx->sock = sock;
3633 proto_ctx->responder = FALSE;
3634 proto_ctx->pfs = idata->rekey->pfs;
3636 /* Perform rekey protocol. Will call the final callback after the
3637 protocol is over. */
3638 silc_protocol_alloc(SILC_PROTOCOL_SERVER_REKEY,
3639 &protocol, proto_ctx, silc_server_rekey_final);
3640 sock->protocol = protocol;
3642 /* Run the protocol */
3643 protocol->execute(server->timeout_queue, 0, protocol,
3646 /* Re-register re-key timeout */
3647 silc_task_register(server->timeout_queue, sock->sock,
3648 silc_server_rekey_callback,
3649 context, idata->rekey->timeout, 0,
3650 SILC_TASK_TIMEOUT, SILC_TASK_PRI_NORMAL);
3653 /* The final callback for the REKEY protocol. This will actually take the
3654 new key material into use. */
3656 SILC_TASK_CALLBACK_GLOBAL(silc_server_rekey_final)
3658 SilcProtocol protocol = (SilcProtocol)context;
3659 SilcServerRekeyInternalContext *ctx =
3660 (SilcServerRekeyInternalContext *)protocol->context;
3661 SilcServer server = (SilcServer)ctx->server;
3662 SilcSocketConnection sock = ctx->sock;
3664 SILC_LOG_DEBUG(("Start"));
3666 if (protocol->state == SILC_PROTOCOL_STATE_ERROR ||
3667 protocol->state == SILC_PROTOCOL_STATE_FAILURE) {
3668 /* Error occured during protocol */
3669 silc_protocol_cancel(server->timeout_queue, protocol);
3670 silc_protocol_free(protocol);
3671 sock->protocol = NULL;
3673 silc_packet_context_free(ctx->packet);
3675 silc_ske_free(ctx->ske);
3680 /* Take the keys into use */
3681 if (ctx->pfs == TRUE)
3682 silc_server_protocol_rekey_generate_pfs(server, ctx);
3684 silc_server_protocol_rekey_generate(server, ctx);
3687 silc_protocol_free(protocol);
3688 sock->protocol = NULL;
3690 silc_packet_context_free(ctx->packet);
3692 silc_ske_free(ctx->ske);
projects / silc.git / blob