Главная Обзор Помощь
Вход
yosoyhendrix
/
badvpn
1
0
Ответвить 0
Файлы Задачи 0 Запросы на слияние 0 Вики
Дерево: 97c6d3f2a8
Ветки Метки
badvpn
/
client
/
client.c

client.c 84 KB
История Исходник

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902903904905906907908909910911912913914915916917918919920921922923924925926927928929930931932933934935936937938939940941942943944945946947948949950951952953954955956957958959960961962963964965966967968969970971972973974975976977978979980981982983984985986987988989990991992993994995996997998999100010011002100310041005100610071008100910101011101210131014101510161017101810191020102110221023102410251026102710281029103010311032103310341035103610371038103910401041104210431044104510461047104810491050105110521053105410551056105710581059106010611062106310641065106610671068106910701071107210731074107510761077107810791080108110821083108410851086108710881089109010911092109310941095109610971098109911001101110211031104110511061107110811091110111111121113111411151116111711181119112011211122112311241125112611271128112911301131113211331134113511361137113811391140114111421143114411451146114711481149115011511152115311541155115611571158115911601161116211631164116511661167116811691170117111721173117411751176117711781179118011811182118311841185118611871188118911901191119211931194119511961197119811991200120112021203120412051206120712081209121012111212121312141215121612171218121912201221122212231224122512261227122812291230123112321233123412351236123712381239124012411242124312441245124612471248124912501251125212531254125512561257125812591260126112621263126412651266126712681269127012711272127312741275127612771278127912801281128212831284128512861287128812891290129112921293129412951296129712981299130013011302130313041305130613071308130913101311131213131314131513161317131813191320132113221323132413251326132713281329133013311332133313341335133613371338133913401341134213431344134513461347134813491350135113521353135413551356135713581359136013611362136313641365136613671368136913701371137213731374137513761377137813791380138113821383138413851386138713881389139013911392139313941395139613971398139914001401140214031404140514061407140814091410141114121413141414151416141714181419142014211422142314241425142614271428142914301431143214331434143514361437143814391440144114421443144414451446144714481449145014511452145314541455145614571458145914601461146214631464146514661467146814691470147114721473147414751476147714781479148014811482148314841485148614871488148914901491149214931494149514961497149814991500150115021503150415051506150715081509151015111512151315141515151615171518151915201521152215231524152515261527152815291530153115321533153415351536153715381539154015411542154315441545154615471548154915501551155215531554155515561557155815591560156115621563156415651566156715681569157015711572157315741575157615771578157915801581158215831584158515861587158815891590159115921593159415951596159715981599160016011602160316041605160616071608160916101611161216131614161516161617161816191620162116221623162416251626162716281629163016311632163316341635163616371638163916401641164216431644164516461647164816491650165116521653165416551656165716581659166016611662166316641665166616671668166916701671167216731674167516761677167816791680168116821683168416851686168716881689169016911692169316941695169616971698169917001701170217031704170517061707170817091710171117121713171417151716171717181719172017211722172317241725172617271728172917301731173217331734173517361737173817391740174117421743174417451746174717481749175017511752175317541755175617571758175917601761176217631764176517661767176817691770177117721773177417751776177717781779178017811782178317841785178617871788178917901791179217931794179517961797179817991800180118021803180418051806180718081809181018111812181318141815181618171818181918201821182218231824182518261827182818291830183118321833183418351836183718381839184018411842184318441845184618471848184918501851185218531854185518561857185818591860186118621863186418651866186718681869187018711872187318741875187618771878187918801881188218831884188518861887188818891890189118921893189418951896189718981899190019011902190319041905190619071908190919101911191219131914191519161917191819191920192119221923192419251926192719281929193019311932193319341935193619371938193919401941194219431944194519461947194819491950195119521953195419551956195719581959196019611962196319641965196619671968196919701971197219731974197519761977197819791980198119821983198419851986198719881989199019911992199319941995199619971998199920002001200220032004200520062007200820092010201120122013201420152016201720182019202020212022202320242025202620272028202920302031203220332034203520362037203820392040204120422043204420452046204720482049205020512052205320542055205620572058205920602061206220632064206520662067206820692070207120722073207420752076207720782079208020812082208320842085208620872088208920902091209220932094209520962097209820992100210121022103210421052106210721082109211021112112211321142115211621172118211921202121212221232124212521262127212821292130213121322133213421352136213721382139214021412142214321442145214621472148214921502151215221532154215521562157215821592160216121622163216421652166216721682169217021712172217321742175217621772178217921802181218221832184218521862187218821892190219121922193219421952196219721982199220022012202220322042205220622072208220922102211221222132214221522162217221822192220222122222223222422252226222722282229223022312232223322342235223622372238223922402241224222432244224522462247224822492250225122522253225422552256225722582259226022612262226322642265226622672268226922702271227222732274227522762277227822792280228122822283228422852286228722882289229022912292229322942295229622972298229923002301230223032304230523062307230823092310231123122313231423152316231723182319232023212322232323242325232623272328232923302331233223332334233523362337233823392340234123422343234423452346234723482349235023512352235323542355235623572358235923602361236223632364236523662367236823692370237123722373237423752376237723782379238023812382238323842385238623872388238923902391239223932394239523962397239823992400240124022403240424052406240724082409241024112412241324142415241624172418241924202421242224232424242524262427242824292430243124322433243424352436243724382439244024412442244324442445244624472448244924502451245224532454245524562457245824592460246124622463246424652466246724682469247024712472247324742475247624772478247924802481248224832484248524862487248824892490249124922493249424952496249724982499250025012502250325042505250625072508250925102511251225132514251525162517251825192520252125222523252425252526252725282529253025312532253325342535253625372538253925402541254225432544254525462547254825492550255125522553255425552556255725582559256025612562256325642565256625672568256925702571257225732574257525762577257825792580258125822583258425852586258725882589259025912592259325942595259625972598259926002601260226032604260526062607260826092610261126122613261426152616261726182619262026212622262326242625262626272628262926302631263226332634263526362637263826392640264126422643264426452646264726482649265026512652265326542655265626572658265926602661266226632664266526662667266826692670267126722673267426752676267726782679268026812682268326842685268626872688268926902691269226932694269526962697269826992700270127022703270427052706270727082709271027112712271327142715271627172718271927202721272227232724272527262727272827292730273127322733273427352736273727382739274027412742274327442745274627472748274927502751275227532754275527562757275827592760276127622763276427652766276727682769277027712772277327742775277627772778277927802781278227832784278527862787278827892790279127922793279427952796279727982799280028012802280328042805280628072808280928102811281228132814281528162817281828192820282128222823282428252826282728282829283028312832283328342835283628372838283928402841284228432844284528462847284828492850285128522853285428552856285728582859286028612862 
  1. /**
    2. 

  2.  * @file client.c
    3. 

  3.  * @author Ambroz Bizjak <ambrop7@gmail.com>
    4. 

  4.  * 
    5. 

  5.  * @section LICENSE
    6. 

  6.  * 
    7. 

  7.  * This file is part of BadVPN.
    8. 

  8.  * 
    9. 

  9.  * BadVPN is free software: you can redistribute it and/or modify
    10. 

  10.  * it under the terms of the GNU General Public License version 2
    11. 

  11.  * as published by the Free Software Foundation.
    12. 

  12.  * 
    13. 

  13.  * BadVPN is distributed in the hope that it will be useful,
    14. 

  14.  * but WITHOUT ANY WARRANTY; without even the implied warranty of
    15. 

  15.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    16. 

  16.  * GNU General Public License for more details.
    17. 

  17.  * 
    18. 

  18.  * You should have received a copy of the GNU General Public License along
    19. 

  19.  * with this program; if not, write to the Free Software Foundation, Inc.,
    20. 

  20.  * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
    21. 

  21.  */
    22. 

  22. 

  23. /*
    24. 

  24.  NOTE:
    25. 

  25.  This program works with I/O inside the BPending job environment.
    26. 

  26.  A consequence of this is that in response to an input, we can't
    27. 

  27.  directly do any output, but instead have to schedule outputs.
    28. 

  28.  Because all the buffers used (e.g. server send buffer, data buffers in DataProto)
    29. 

  29.  are based on flow components, it is impossible to directly write two or more
    30. 

  30.  packets to a buffer.
    31. 

  31.  To, for instance, send two packets to a buffer, we have to first schedule
    32. 

  32.  writing the second packet (using BPending), then send the first one.
    33. 

  33. */
    34. 

  34. 

  35. #include <inttypes.h>
    36. 

  36. #include <stdlib.h>
    37. 

  37. #include <string.h>
    38. 

  38. #include <stdio.h>
    39. 

  39. 

  40. #include <protocol/msgproto.h>
    41. 

  41. #include <protocol/addr.h>
    42. 

  42. #include <protocol/dataproto.h>
    43. 

  43. #include <misc/version.h>
    44. 

  44. #include <misc/debug.h>
    45. 

  45. #include <misc/offset.h>
    46. 

  46. #include <misc/jenkins_hash.h>
    47. 

  47. #include <misc/byteorder.h>
    48. 

  48. #include <misc/ethernet_proto.h>
    49. 

  49. #include <misc/nsskey.h>
    50. 

  50. #include <misc/loglevel.h>
    51. 

  51. #include <misc/loggers_string.h>
    52. 

  52. #include <structure/LinkedList2.h>
    53. 

  53. #include <security/BRandom.h>
    54. 

  54. #include <nspr_support/DummyPRFileDesc.h>
    55. 

  55. #include <nspr_support/BSocketPRFileDesc.h>
    56. 

  56. #include <system/BLog.h>
    57. 

  57. #include <system/BSignal.h>
    58. 

  58. #include <system/BTime.h>
    59. 

  59. #include <system/DebugObject.h>
    60. 

  60. #include <server_connection/ServerConnection.h>
    61. 

  61. 

  62. #ifndef BADVPN_USE_WINAPI
    63. 

  63. #include <system/BLog_syslog.h>
    64. 

  64. #endif
    65. 

  65. 

  66. #include <client/client.h>
    67. 

  67. 

  68. #include <generated/blog_channel_client.h>
    69. 

  69. 

  70. #define TRANSPORT_MODE_UDP 0
    71. 

  71. #define TRANSPORT_MODE_TCP 1
    72. 

  72. 

  73. #define LOGGER_STDOUT 1
    74. 

  74. #define LOGGER_SYSLOG 2
    75. 

  75. 

  76. // declares and initializes a pointer x to y
    77. 

  77. #define POINTER(x, y) typeof (y) *(x) = &(y);
    78. 

  78. 

  79. // command-line options
    80. 

  80. struct {
    81. 

  81.     int help;
    82. 

  82.     int version;
    83. 

  83.     int logger;
    84. 

  84.     #ifndef BADVPN_USE_WINAPI
    85. 

  85.     char *logger_syslog_facility;
    86. 

  86.     char *logger_syslog_ident;
    87. 

  87.     #endif
    88. 

  88.     int loglevel;
    89. 

  89.     int loglevels[BLOG_NUM_CHANNELS];
    90. 

  90.     int ssl;
    91. 

  91.     char *nssdb;
    92. 

  92.     char *client_cert_name;
    93. 

  93.     char *server_name;
    94. 

  94.     char *server_addr;
    95. 

  95.     int num_bind_addrs;
    96. 

  96.     struct {
    97. 

  97.         char *addr;
    98. 

  98.         int num_ports;
    99. 

  99.         int num_ext_addrs;
    100. 

  100.         struct {
    101. 

  101.             char *addr;
    102. 

  102.             char *scope;
    103. 

  103.         } ext_addrs[MAX_EXT_ADDRS];
    104. 

  104.     } bind_addrs[MAX_BIND_ADDRS];
    105. 

  105.     char *tapdev;
    106. 

  106.     int transport_mode;
    107. 

  107.     int encryption_mode;
    108. 

  108.     int hash_mode;
    109. 

  109.     int otp_mode;
    110. 

  110.     int otp_num;
    111. 

  111.     int otp_num_warn;
    112. 

  112.     int fragmentation_latency;
    113. 

  113.     int peer_ssl;
    114. 

  114.     char *scopes[MAX_SCOPES];
    115. 

  115.     int num_scopes;
    116. 

  116.     int send_buffer_size;
    117. 

  117.     int send_buffer_relay_size;
    118. 

  118. } options;
    119. 

  119. 

  120. // bind addresses
    121. 

  121. int num_bind_addrs;
    122. 

  122. struct {
    123. 

  123.     BAddr addr;
    124. 

  124.     int num_ports;
    125. 

  125.     int num_ext_addrs;
    126. 

  126.     struct {
    127. 

  127.         int server_reported_port;
    128. 

  128.         BAddr addr; // if server_reported_port>=0, defined only after hello received
    129. 

  129.         char scope[64];
    130. 

  130.     } ext_addrs[MAX_EXT_ADDRS];
    131. 

  131. } bind_addrs[MAX_BIND_ADDRS];
    132. 

  132. 

  133. // TCP listeners
    134. 

  134. PasswordListener listeners[MAX_BIND_ADDRS];
    135. 

  135. 

  136. // SPProto parameters (UDP only)
    137. 

  137. struct spproto_security_params sp_params;
    138. 

  138. 

  139. // server address we connect to
    140. 

  140. BAddr server_addr;
    141. 

  141. 

  142. // server name to use for SSL
    143. 

  143. char server_name[256];
    144. 

  144. 

  145. // reactor
    146. 

  146. BReactor ss;
    147. 

  147. 

  148. // client certificate if using SSL
    149. 

  149. CERTCertificate *client_cert;
    150. 

  150. 

  151. // client private key if using SSL
    152. 

  152. SECKEYPrivateKey *client_key;
    153. 

  153. 

  154. // device data
    155. 

  155. struct device_data device;
    156. 

  156. 

  157. // data communication MTU
    158. 

  158. int data_mtu;
    159. 

  159. 

  160. // peers list
    161. 

  161. LinkedList2 peers;
    162. 

  162. int num_peers;
    163. 

  163. 

  164. // peers by ID hash table
    165. 

  165. HashTable peers_by_id;
    166. 

  166. uint32_t peers_by_id_initval;
    167. 

  167. 

  168. // frame decider
    169. 

  169. FrameDecider frame_decider;
    170. 

  170. 

  171. // peers that can be user as relays
    172. 

  172. LinkedList2 relays;
    173. 

  173. 

  174. // peers than need a relay
    175. 

  175. LinkedList2 waiting_relay_peers;
    176. 

  176. 

  177. // server connection
    178. 

  178. ServerConnection server;
    179. 

  179. 

  180. // whether server is ready
    181. 

  181. int server_ready;
    182. 

  182. 

  183. // my ID, defined only after server_ready
    184. 

  184. peerid_t my_id;
    185. 

  185. 

  186. // cleans everything up that can be cleaned in order to return
    187. 

  187. // from the event loop and exit
    188. 

  188. static void terminate (void);
    189. 

  189. 

  190. // prints program name and version to standard output
    191. 

  191. static void print_help (const char *name);
    192. 

  192. 

  193. // prints program name and version to standard output
    194. 

  194. static void print_version (void);
    195. 

  195. 

  196. // parses the command line
    197. 

  197. static int parse_arguments (int argc, char *argv[]);
    198. 

  198. 

  199. // processes certain command line options
    200. 

  200. static int process_arguments (void);
    201. 

  201. 

  202. // handler for program termination request
    203. 

  203. static void signal_handler (void *unused);
    204. 

  204. 

  205. // provides a buffer for sending a packet to the server
    206. 

  206. static int server_start_msg (void **data, peerid_t peer_id, int type, int len);
    207. 

  207. 

  208. // submits a written packet to the server
    209. 

  209. static void server_end_msg (void);
    210. 

  210. 

  211. // adds a new peer
    212. 

  212. static int peer_add (peerid_t id, int flags, const uint8_t *cert, int cert_len);
    213. 

  213. 

  214. // removes a peer
    215. 

  215. static void peer_remove (struct peer_data *peer);
    216. 

  216. 

  217. // deallocates peer resources
    218. 

  218. static void peer_dealloc (struct peer_data *peer);
    219. 

  219. 

  220. // passes a message to the logger, prepending it info about the peer
    221. 

  221. static void peer_log (struct peer_data *peer, int level, const char *fmt, ...);
    222. 

  222. 

  223. // see if we are the master relative to this peer
    224. 

  224. static int peer_am_master (struct peer_data *peer);
    225. 

  225. 

  226. // initializes the link
    227. 

  227. static int peer_init_link (struct peer_data *peer);
    228. 

  228. 

  229. // frees link resources
    230. 

  230. static void peer_free_link (struct peer_data *peer);
    231. 

  231. 

  232. // creates a fresh link
    233. 

  233. static int peer_new_link (struct peer_data *peer);
    234. 

  234. 

  235. // registers the peer as a relay provider
    236. 

  236. static void peer_enable_relay_provider (struct peer_data *peer);
    237. 

  237. 

  238. // unregisters the peer as a relay provider
    239. 

  239. static void peer_disable_relay_provider (struct peer_data *peer);
    240. 

  240. 

  241. // deallocates peer relay provider resources. Inserts relay users to the
    242. 

  242. // need relay list. Used while freeing a peer.
    243. 

  243. static void peer_dealloc_relay_provider (struct peer_data *peer);
    244. 

  244. 

  245. // install relaying for a peer
    246. 

  246. static void peer_install_relay (struct peer_data *peer, struct peer_data *relay);
    247. 

  247. 

  248. // uninstall relaying for a peer
    249. 

  249. static void peer_uninstall_relay (struct peer_data *peer);
    250. 

  250. 

  251. // deallocates relaying for a peer. Used when the relay is beeing freed,
    252. 

  252. // and when uninstalling relaying after having released the connection.
    253. 

  253. static void peer_dealloc_relay (struct peer_data *peer);
    254. 

  254. 

  255. // handle a peer that needs a relay
    256. 

  256. static void peer_need_relay (struct peer_data *peer);
    257. 

  257. 

  258. // inserts the peer into the need relay list
    259. 

  259. static void peer_register_need_relay (struct peer_data *peer);
    260. 

  260. 

  261. // removes the peer from the need relay list
    262. 

  262. static void peer_unregister_need_relay (struct peer_data *peer);
    263. 

  263. 

  264. // handle a link setup failure
    265. 

  265. static int peer_reset (struct peer_data *peer);
    266. 

  266. 

  267. // handle incoming peer messages
    268. 

  268. static void peer_msg (struct peer_data *peer, uint8_t *data, int data_len);
    269. 

  269. 

  270. // handlers for different message types
    271. 

  271. static void peer_msg_youconnect (struct peer_data *peer, uint8_t *data, int data_len);
    272. 

  272. static void peer_msg_cannotconnect (struct peer_data *peer, uint8_t *data, int data_len);
    273. 

  273. static void peer_msg_cannotbind (struct peer_data *peer, uint8_t *data, int data_len);
    274. 

  274. static void peer_msg_seed (struct peer_data *peer, uint8_t *data, int data_len);
    275. 

  275. static void peer_msg_confirmseed (struct peer_data *peer, uint8_t *data, int data_len);
    276. 

  276. static void peer_msg_youretry (struct peer_data *peer, uint8_t *data, int data_len);
    277. 

  277. 

  278. // handler from DatagramPeerIO when we should generate a new OTP send seed
    279. 

  279. static void peer_udp_pio_handler_seed_warning (struct peer_data *peer);
    280. 

  280. 

  281. // handler from StreamPeerIO when an error occurs on the connection
    282. 

  282. static void peer_tcp_pio_handler_error (struct peer_data *peer);
    283. 

  283. 

  284. // peer retry timer handler. The timer is used only on the master side,
    285. 

  285. // wither when we detect an error, or the peer reports an error.
    286. 

  286. static void peer_reset_timer_handler (struct peer_data *peer);
    287. 

  287. 

  288. // PacketPassInterface handler for receiving packets from the link 
    289. 

  289. static void peer_recv_handler_send (struct peer_data *peer, uint8_t *data, int data_len);
    290. 

  290. 

  291. static void local_recv_qflow_output_handler_done (struct peer_data *peer);
    292. 

  292. 

  293. // start binding, according to the protocol
    294. 

  294. static int peer_start_binding (struct peer_data *peer);
    295. 

  295. 

  296. // tries binding on one address, according to the protocol
    297. 

  297. static int peer_bind (struct peer_data *peer);
    298. 

  298. 

  299. static int peer_bind_one_address (struct peer_data *peer, int addr_index, int *cont);
    300. 

  300. 

  301. static int peer_connect (struct peer_data *peer, BAddr addr, uint8_t *encryption_key, uint64_t password);
    302. 

  302. 

  303. // sends a message with no payload to the peer
    304. 

  304. static int peer_send_simple (struct peer_data *peer, int msgid);
    305. 

  305. 

  306. static int peer_send_conectinfo (struct peer_data *peer, int addr_index, int port_adjust, uint8_t *enckey, uint64_t pass);
    307. 

  307. 

  308. static int peer_udp_send_seed (struct peer_data *peer);
    309. 

  309. 

  310. static int peer_send_confirmseed (struct peer_data *peer, uint16_t seed_id);
    311. 

  311. 

  312. // submits a relayed frame for sending to the peer
    313. 

  313. static void peer_submit_relayed_frame (struct peer_data *peer, struct peer_data *source_peer, uint8_t *frame, int frame_len);
    314. 

  314. 

  315. // handler for peer DataProto up state changes
    316. 

  316. static void peer_dataproto_handler (struct peer_data *peer, int up);
    317. 

  317. 

  318. // looks for a peer with the given ID
    319. 

  319. static struct peer_data * find_peer_by_id (peerid_t id);
    320. 

  320. 

  321. // hash table callback functions
    322. 

  322. static int peers_by_id_key_comparator (peerid_t *id1, peerid_t *id2);
    323. 

  323. static int peers_by_id_hash_function (peerid_t *id, int modulo);
    324. 

  324. 

  325. // device error handler
    326. 

  326. static void device_error_handler (void *unused);
    327. 

  327. 

  328. // PacketPassInterfacre handler for packets from the device
    329. 

  329. static void device_input_handler_send (void *unused, uint8_t *data, int data_len);
    330. 

  330. 

  331. // submits a local frame for sending to the peer. The frame is taken from the device frame buffer.
    332. 

  332. static void submit_frame_to_peer (struct peer_data *peer, uint8_t *data, int data_len);
    333. 

  333. 

  334. // assign relays to clients waiting for them
    335. 

  335. static void assign_relays (void);
    336. 

  336. 

  337. // checks if the given address scope is known (i.e. we can connect to an address in it)
    338. 

  338. static char * address_scope_known (uint8_t *name, int name_len);
    339. 

  339. 

  340. // handlers for server messages
    341. 

  341. static void server_handler_error (void *user);
    342. 

  342. static void server_handler_ready (void *user, peerid_t param_my_id, uint32_t ext_ip);
    343. 

  343. static void server_handler_newclient (void *user, peerid_t peer_id, int flags, const uint8_t *cert, int cert_len);
    344. 

  344. static void server_handler_endclient (void *user, peerid_t peer_id);
    345. 

  345. static void server_handler_message (void *user, peerid_t peer_id, uint8_t *data, int data_len);
    346. 

  346. 

  347. // process job handlers
    348. 

  348. static void peer_job_send_seed_after_binding (struct peer_data *peer);
    349. 

  349. 

  350. int main (int argc, char *argv[])
    351. 

  351. {
    352. 

  352.     if (argc <= 0) {
    353. 

  353.         return 1;
    354. 

  354.     }
    355. 

  355.     
    356. 

  356.     // parse command-line arguments
    357. 

  357.     if (!parse_arguments(argc, argv)) {
    358. 

  358.         fprintf(stderr, "Failed to parse arguments\n");
    359. 

  359.         print_help(argv[0]);
    360. 

  360.         goto fail0;
    361. 

  361.     }
    362. 

  362.     
    363. 

  363.     // handle --help and --version
    364. 

  364.     if (options.help) {
    365. 

  365.         print_version();
    366. 

  366.         print_help(argv[0]);
    367. 

  367.         return 0;
    368. 

  368.     }
    369. 

  369.     if (options.version) {
    370. 

  370.         print_version();
    371. 

  371.         return 0;
    372. 

  372.     }
    373. 

  373.     
    374. 

  374.     // initialize logger
    375. 

  375.     switch (options.logger) {
    376. 

  376.         case LOGGER_STDOUT:
    377. 

  377.             BLog_InitStdout();
    378. 

  378.             break;
    379. 

  379.         #ifndef BADVPN_USE_WINAPI
    380. 

  380.         case LOGGER_SYSLOG:
    381. 

  381.             if (!BLog_InitSyslog(options.logger_syslog_ident, options.logger_syslog_facility)) {
    382. 

  382.                 fprintf(stderr, "Failed to initialize syslog logger\n");
    383. 

  383.                 goto fail0;
    384. 

  384.             }
    385. 

  385.             break;
    386. 

  386.         #endif
    387. 

  387.         default:
    388. 

  388.             ASSERT(0);
    389. 

  389.     }
    390. 

  390.     
    391. 

  391.     // configure logger channels
    392. 

  392.     for (int i = 0; i < BLOG_NUM_CHANNELS; i++) {
    393. 

  393.         if (options.loglevels[i] >= 0) {
    394. 

  394.             BLog_SetChannelLoglevel(i, options.loglevels[i]);
    395. 

  395.         }
    396. 

  396.         else if (options.loglevel >= 0) {
    397. 

  397.             BLog_SetChannelLoglevel(i, options.loglevel);
    398. 

  398.         }
    399. 

  399.     }
    400. 

  400.     
    401. 

  401.     BLog(BLOG_NOTICE, "initializing "GLOBAL_PRODUCT_NAME" client "GLOBAL_VERSION);
    402. 

  402.     
    403. 

  403.     // initialize sockets
    404. 

  404.     if (BSocket_GlobalInit() < 0) {
    405. 

  405.         BLog(BLOG_ERROR, "BSocket_GlobalInit failed");
    406. 

  406.         goto fail1;
    407. 

  407.     }
    408. 

  408.     
    409. 

  409.     // init time
    410. 

  410.     BTime_Init();
    411. 

  411.     
    412. 

  412.     // process arguments
    413. 

  413.     if (!process_arguments()) {
    414. 

  414.         BLog(BLOG_ERROR, "Failed to process arguments");
    415. 

  415.         goto fail1;
    416. 

  416.     }
    417. 

  417.     
    418. 

  418.     // init reactor
    419. 

  419.     if (!BReactor_Init(&ss)) {
    420. 

  420.         BLog(BLOG_ERROR, "BReactor_Init failed");
    421. 

  421.         goto fail1;
    422. 

  422.     }
    423. 

  423.     
    424. 

  424.     // setup signal handler
    425. 

  425.     if (!BSignal_Init()) {
    426. 

  426.         BLog(BLOG_ERROR, "BSignal_Init failed");
    427. 

  427.         goto fail1b;
    428. 

  428.     }
    429. 

  429.     BSignal_Capture();
    430. 

  430.     if (!BSignal_SetHandler(&ss, signal_handler, NULL)) {
    431. 

  431.         BLog(BLOG_ERROR, "BSignal_SetHandler failed");
    432. 

  432.         goto fail1b;
    433. 

  433.     }
    434. 

  434.     
    435. 

  435.     if (options.ssl) {
    436. 

  436.         // init NSPR
    437. 

  437.         PR_Init(PR_USER_THREAD, PR_PRIORITY_NORMAL, 0);
    438. 

  438.         
    439. 

  439.         // register local NSPR file types
    440. 

  440.         if (!DummyPRFileDesc_GlobalInit()) {
    441. 

  441.             BLog(BLOG_ERROR, "DummyPRFileDesc_GlobalInit failed");
    442. 

  442.             goto fail2;
    443. 

  443.         }
    444. 

  444.         if (!BSocketPRFileDesc_GlobalInit()) {
    445. 

  445.             BLog(BLOG_ERROR, "BSocketPRFileDesc_GlobalInit failed");
    446. 

  446.             goto fail2;
    447. 

  447.         }
    448. 

  448.         
    449. 

  449.         // init NSS
    450. 

  450.         if (NSS_Init(options.nssdb) != SECSuccess) {
    451. 

  451.             BLog(BLOG_ERROR, "NSS_Init failed (%d)", (int)PR_GetError());
    452. 

  452.             goto fail2;
    453. 

  453.         }
    454. 

  454.         
    455. 

  455.         // set cipher policy
    456. 

  456.         if (NSS_SetDomesticPolicy() != SECSuccess) {
    457. 

  457.             BLog(BLOG_ERROR, "NSS_SetDomesticPolicy failed (%d)", (int)PR_GetError());
    458. 

  458.             goto fail3;
    459. 

  459.         }
    460. 

  460.         
    461. 

  461.         // init server cache
    462. 

  462.         if (SSL_ConfigServerSessionIDCache(0, 0, 0, NULL) != SECSuccess) {
    463. 

  463.             BLog(BLOG_ERROR, "SSL_ConfigServerSessionIDCache failed (%d)", (int)PR_GetError());
    464. 

  464.             goto fail3;
    465. 

  465.         }
    466. 

  466.         
    467. 

  467.         // open server certificate and private key
    468. 

  468.         if (!open_nss_cert_and_key(options.client_cert_name, &client_cert, &client_key)) {
    469. 

  469.             BLog(BLOG_ERROR, "Cannot open certificate and key");
    470. 

  470.             goto fail4;
    471. 

  471.         }
    472. 

  472.     }
    473. 

  473.     
    474. 

  474.     // init listeners
    475. 

  475.     int num_listeners = 0;
    476. 

  476.     if (options.transport_mode == TRANSPORT_MODE_TCP) {
    477. 

  477.         while (num_listeners < num_bind_addrs) {
    478. 

  478.             POINTER(addr, bind_addrs[num_listeners])
    479. 

  479.             if (!PasswordListener_Init(
    480. 

  480.                 &listeners[num_listeners], &ss, addr->addr, 50, options.peer_ssl,
    481. 

  481.                 (options.peer_ssl ? client_cert : NULL),
    482. 

  482.                 (options.peer_ssl ? client_key : NULL)
    483. 

  483.             )) {
    484. 

  484.                 BLog(BLOG_ERROR, "PasswordListener_Init failed");
    485. 

  485.                 goto fail5;
    486. 

  486.             }
    487. 

  487.             num_listeners++;
    488. 

  488.         }
    489. 

  489.     }
    490. 

  490.     
    491. 

  491.     // init device
    492. 

  492.     if (!BTap_Init(&device.btap, &ss, options.tapdev, device_error_handler, NULL)) {
    493. 

  493.         BLog(BLOG_ERROR, "BTap_Init failed");
    494. 

  494.         goto fail5;
    495. 

  495.     }
    496. 

  496.     
    497. 

  497.     // remember device MTU
    498. 

  498.     device.mtu = sizeof(struct ethernet_header) + BTap_GetDeviceMTU(&device.btap);
    499. 

  499.     
    500. 

  500.     BLog(BLOG_INFO, "device MTU is %d", device.mtu);
    501. 

  501.     
    502. 

  502.     // init device input
    503. 

  503.     PacketPassInterface_Init(&device.input_interface, device.mtu, device_input_handler_send, NULL, BReactor_PendingGroup(&ss));
    504. 

  504.     if (!SinglePacketBuffer_Init(&device.input_buffer, BTap_GetOutput(&device.btap), &device.input_interface, BReactor_PendingGroup(&ss))) {
    505. 

  505.         goto fail5a;
    506. 

  506.     }
    507. 

  507.     
    508. 

  508.     // init device output
    509. 

  509.     PacketPassFairQueue_Init(&device.output_queue, BTap_GetInput(&device.btap), BReactor_PendingGroup(&ss), 1);
    510. 

  510.     
    511. 

  511.     // calculate data MTU
    512. 

  512.     data_mtu = DATAPROTO_MAX_OVERHEAD + device.mtu;
    513. 

  513.     
    514. 

  514.     // init peers list
    515. 

  515.     LinkedList2_Init(&peers);
    516. 

  516.     num_peers = 0;
    517. 

  517.     
    518. 

  518.     // init peers by ID hash table
    519. 

  519.     BRandom_randomize((uint8_t *)&peers_by_id_initval, sizeof(peers_by_id_initval));
    520. 

  520.     if (!HashTable_Init(
    521. 

  521.         &peers_by_id,
    522. 

  522.         OFFSET_DIFF(struct peer_data, id, table_node),
    523. 

  523.         (HashTable_comparator)peers_by_id_key_comparator,
    524. 

  524.         (HashTable_hash_function)peers_by_id_hash_function,
    525. 

  525.         MAX_PEERS
    526. 

  526.     )) {
    527. 

  527.         BLog(BLOG_ERROR, "HashTable_Init failed");
    528. 

  528.         goto fail7;
    529. 

  529.     }
    530. 

  530.     
    531. 

  531.     // init frame decider
    532. 

  532.     FrameDecider_Init(&frame_decider, PEER_MAX_MACS, PEER_MAX_GROUPS, IGMP_GROUP_MEMBERSHIP_INTERVAL, IGMP_LAST_MEMBER_QUERY_TIME, &ss);
    533. 

  533.     
    534. 

  534.     // init relays list
    535. 

  535.     LinkedList2_Init(&relays);
    536. 

  536.     
    537. 

  537.     // init need relay list
    538. 

  538.     LinkedList2_Init(&waiting_relay_peers);
    539. 

  539.     
    540. 

  540.     // start connecting to server
    541. 

  541.     if (!ServerConnection_Init(
    542. 

  542.         &server, &ss, server_addr, SC_KEEPALIVE_INTERVAL, SERVER_BUFFER_MIN_PACKETS, options.ssl, client_cert, client_key, server_name, NULL,
    543. 

  543.         server_handler_error, server_handler_ready, server_handler_newclient, server_handler_endclient, server_handler_message
    544. 

  544.     )) {
    545. 

  545.         BLog(BLOG_ERROR, "ServerConnection_Init failed");
    546. 

  546.         goto fail10;
    547. 

  547.     }
    548. 

  548.     
    549. 

  549.     // set server not ready
    550. 

  550.     server_ready = 0;
    551. 

  551.     
    552. 

  552.     goto event_loop;
    553. 

  553.     
    554. 

  554.     // cleanup on error
    555. 

  555. fail10:
    556. 

  556.     FrameDecider_Free(&frame_decider);
    557. 

  557.     HashTable_Free(&peers_by_id);
    558. 

  558. fail7:
    559. 

  559.     PacketPassFairQueue_Free(&device.output_queue);
    560. 

  560.     SinglePacketBuffer_Free(&device.input_buffer);
    561. 

  561. fail5a:
    562. 

  562.     PacketPassInterface_Free(&device.input_interface);
    563. 

  563.     BTap_Free(&device.btap);
    564. 

  564. fail5:
    565. 

  565.     if (options.transport_mode == TRANSPORT_MODE_TCP) {
    566. 

  566.         while (num_listeners-- > 0) {
    567. 

  567.             PasswordListener_Free(&listeners[num_listeners]);
    568. 

  568.         }
    569. 

  569.     }
    570. 

  570. fail4a:
    571. 

  571.     if (options.ssl) {
    572. 

  572.         CERT_DestroyCertificate(client_cert);
    573. 

  573.         SECKEY_DestroyPrivateKey(client_key);
    574. 

  574. fail4:
    575. 

  575.         SSL_ShutdownServerSessionIDCache();
    576. 

  576. fail3:
    577. 

  577.         SSL_ClearSessionCache();
    578. 

  578.         ASSERT_FORCE(NSS_Shutdown() == SECSuccess)
    579. 

  579. fail2:
    580. 

  580.         ASSERT_FORCE(PR_Cleanup() == PR_SUCCESS)
    581. 

  581.         PL_ArenaFinish();
    582. 

  582.     }
    583. 

  583.     BSignal_RemoveHandler();
    584. 

  584. fail1b:
    585. 

  585.     BReactor_Free(&ss);
    586. 

  586. fail1:
    587. 

  587.     BLog(BLOG_ERROR, "initialization failed");
    588. 

  588.     BLog_Free();
    589. 

  589. fail0:
    590. 

  590.     // finish objects
    591. 

  591.     DebugObjectGlobal_Finish();
    592. 

  592.     return 1;
    593. 

  593.     
    594. 

  594. event_loop:
    595. 

  595.     // enter event loop
    596. 

  596.     BLog(BLOG_NOTICE, "entering event loop");
    597. 

  597.     int ret = BReactor_Exec(&ss);
    598. 

  598.     
    599. 

  599.     // free reactor
    600. 

  600.     BReactor_Free(&ss);
    601. 

  601.     
    602. 

  602.     // free logger
    603. 

  603.     BLog(BLOG_NOTICE, "exiting");
    604. 

  604.     BLog_Free();
    605. 

  605.     
    606. 

  606.     // finish objects
    607. 

  607.     DebugObjectGlobal_Finish();
    608. 

  608.     
    609. 

  609.     return ret;
    610. 

  610. }
    611. 

  611. 

  612. void terminate (void)
    613. 

  613. {
    614. 

  614.     BLog(BLOG_NOTICE, "tearing down");
    615. 

  615.     
    616. 

  616.     // allow freeing local receive flows
    617. 

  617.     PacketPassFairQueue_PrepareFree(&device.output_queue);
    618. 

  618.     
    619. 

  619.     // free peers
    620. 

  620.     LinkedList2Node *node;
    621. 

  621.     while (node = LinkedList2_GetFirst(&peers)) {
    622. 

  622.         struct peer_data *peer = UPPER_OBJECT(node, struct peer_data, list_node);
    623. 

  623.         
    624. 

  624.         // free relaying
    625. 

  625.         if (peer->have_relaying) {
    626. 

  626.             struct peer_data *relay = peer->relaying_peer;
    627. 

  627.             ASSERT(relay->is_relay)
    628. 

  628.             ASSERT(relay->have_link)
    629. 

  629.             
    630. 

  630.             // free relay provider
    631. 

  631.             peer_dealloc_relay_provider(relay);
    632. 

  632.         }
    633. 

  633.         
    634. 

  634.         // free relay provider
    635. 

  635.         if (peer->is_relay) {
    636. 

  636.             peer_dealloc_relay_provider(peer);
    637. 

  637.         }
    638. 

  638.         
    639. 

  639.         // free relay source
    640. 

  640.         DataProtoRelaySource_FreeRelease(&peer->relay_source);
    641. 

  641.         
    642. 

  642.         // deallocate peer
    643. 

  643.         peer_dealloc(peer);
    644. 

  644.     }
    645. 

  645.     
    646. 

  646.     // free server
    647. 

  647.     ServerConnection_Free(&server);
    648. 

  648.     
    649. 

  649.     // free frame decider
    650. 

  650.     FrameDecider_Free(&frame_decider);
    651. 

  651.     
    652. 

  652.     // free hash tables
    653. 

  653.     HashTable_Free(&peers_by_id);
    654. 

  654.     
    655. 

  655.     // free device output
    656. 

  656.     PacketPassFairQueue_Free(&device.output_queue);
    657. 

  657.     
    658. 

  658.     // free device input
    659. 

  659.     SinglePacketBuffer_Free(&device.input_buffer);
    660. 

  660.     PacketPassInterface_Free(&device.input_interface);
    661. 

  661.     
    662. 

  662.     // free device
    663. 

  663.     BTap_Free(&device.btap);
    664. 

  664.     
    665. 

  665.     // free listeners
    666. 

  666.     if (options.transport_mode == TRANSPORT_MODE_TCP) {
    667. 

  667.         for (int i = num_bind_addrs - 1; i >= 0; i--) {
    668. 

  668.             PasswordListener_Free(&listeners[i]);
    669. 

  669.         }
    670. 

  670.     }
    671. 

  671.     
    672. 

  672.     if (options.ssl) {
    673. 

  673.         // free client certificate and private key
    674. 

  674.         CERT_DestroyCertificate(client_cert);
    675. 

  675.         SECKEY_DestroyPrivateKey(client_key);
    676. 

  676.         
    677. 

  677.         // free server cache
    678. 

  678.         ASSERT_FORCE(SSL_ShutdownServerSessionIDCache() == SECSuccess)
    679. 

  679.         
    680. 

  680.         // free client cache
    681. 

  681.         SSL_ClearSessionCache();
    682. 

  682.         
    683. 

  683.         // free NSS
    684. 

  684.         ASSERT_FORCE(NSS_Shutdown() == SECSuccess)
    685. 

  685.         
    686. 

  686.         // free NSPR
    687. 

  687.         ASSERT_FORCE(PR_Cleanup() == PR_SUCCESS)
    688. 

  688.         PL_ArenaFinish();
    689. 

  689.     }
    690. 

  690.     
    691. 

  691.     // remove signal handler
    692. 

  692.     BSignal_RemoveHandler();
    693. 

  693.     
    694. 

  694.     // exit reactor
    695. 

  695.     BReactor_Quit(&ss, 1);
    696. 

  696. }
    697. 

  697. 

  698. void print_help (const char *name)
    699. 

  699. {
    700. 

  700.     printf(
    701. 

  701.         "Usage:\n"
    702. 

  702.         "    %s\n"
    703. 

  703.         "        [--help]\n"
    704. 

  704.         "        [--version]\n"
    705. 

  705.         "        [--logger <"LOGGERS_STRING">]\n"
    706. 

  706.         #ifndef BADVPN_USE_WINAPI
    707. 

  707.         "        (logger=syslog?\n"
    708. 

  708.         "            [--syslog-facility <string>]\n"
    709. 

  709.         "            [--syslog-ident <string>]\n"
    710. 

  710.         "        )\n"
    711. 

  711.         #endif
    712. 

  712.         "        [--loglevel <0-5/none/error/warning/notice/info/debug>]\n"
    713. 

  713.         "        [--channel-loglevel <channel-name> <0-5/none/error/warning/notice/info/debug>] ...\n"
    714. 

  714.         "        [--ssl --nssdb <string> --client-cert-name <string>]\n"
    715. 

  715.         "        [--server-name <string>]\n"
    716. 

  716.         "        --server-addr <addr>\n"
    717. 

  717.         "        [--tapdev <name>]\n"
    718. 

  718.         "        [--scope <scope_name>] ...\n"
    719. 

  719.         "        [\n"
    720. 

  720.         "            --bind-addr <addr>\n"
    721. 

  721.         "            (transport-mode=udp? --num-ports <num>)\n"
    722. 

  722.         "            [--ext-addr <addr / {server_reported}:port> <scope_name>] ...\n"
    723. 

  723.         "        ] ...\n"
    724. 

  724.         "        --transport-mode <udp/tcp>\n"
    725. 

  725.         "        (transport-mode=udp?\n"
    726. 

  726.         "            --encryption-mode <blowfish/aes/none>\n"
    727. 

  727.         "            --hash-mode <md5/sha1/none>\n"
    728. 

  728.         "            [--otp <blowfish/aes> <num> <num-warn>]\n"
    729. 

  729.         "            [--fragmentation-latency <milliseconds>]\n"
    730. 

  730.         "        )\n"
    731. 

  731.         "        (transport-mode=tcp?\n"
    732. 

  732.         "            (ssl? [--peer-ssl])\n"
    733. 

  733.         "        )\n"
    734. 

  734.         "        [--send-buffer-size <num-packets>]\n"
    735. 

  735.         "        [--send-buffer-relay-size <num-packets>]\n"
    736. 

  736.         "Address format is a.b.c.d:port (IPv4) or [addr]:port (IPv6).\n",
    737. 

  737.         name
    738. 

  738.     );
    739. 

  739. }
    740. 

  740. 

  741. void print_version (void)
    742. 

  742. {
    743. 

  743.     printf(GLOBAL_PRODUCT_NAME" "PROGRAM_NAME" "GLOBAL_VERSION"\n"GLOBAL_COPYRIGHT_NOTICE"\n");
    744. 

  744. }
    745. 

  745. 

  746. int parse_arguments (int argc, char *argv[])
    747. 

  747. {
    748. 

  748.     if (argc <= 0) {
    749. 

  749.         return 0;
    750. 

  750.     }
    751. 

  751.     
    752. 

  752.     options.help = 0;
    753. 

  753.     options.version = 0;
    754. 

  754.     options.logger = LOGGER_STDOUT;
    755. 

  755.     #ifndef BADVPN_USE_WINAPI
    756. 

  756.     options.logger_syslog_facility = "daemon";
    757. 

  757.     options.logger_syslog_ident = argv[0];
    758. 

  758.     #endif
    759. 

  759.     options.loglevel = -1;
    760. 

  760.     for (int i = 0; i < BLOG_NUM_CHANNELS; i++) {
    761. 

  761.         options.loglevels[i] = -1;
    762. 

  762.     }
    763. 

  763.     options.ssl = 0;
    764. 

  764.     options.nssdb = NULL;
    765. 

  765.     options.client_cert_name = NULL;
    766. 

  766.     options.server_name = NULL;
    767. 

  767.     options.server_addr = NULL;
    768. 

  768.     options.tapdev = NULL;
    769. 

  769.     options.num_scopes = 0;
    770. 

  770.     options.num_bind_addrs = 0;
    771. 

  771.     options.transport_mode = -1;
    772. 

  772.     options.encryption_mode = -1;
    773. 

  773.     options.hash_mode = -1;
    774. 

  774.     options.otp_mode = SPPROTO_OTP_MODE_NONE;
    775. 

  775.     options.fragmentation_latency = PEER_DEFAULT_FRAGMENTATION_LATENCY;
    776. 

  776.     options.peer_ssl = 0;
    777. 

  777.     options.send_buffer_size = PEER_DEFAULT_SEND_BUFFER_SIZE;
    778. 

  778.     options.send_buffer_relay_size = PEER_DEFAULT_SEND_BUFFER_RELAY_SIZE;
    779. 

  779.     
    780. 

  780.     int have_fragmentation_latency = 0;
    781. 

  781.     
    782. 

  782.     int i;
    783. 

  783.     for (i = 1; i < argc; i++) {
    784. 

  784.         char *arg = argv[i];
    785. 

  785.         if (!strcmp(arg, "--help")) {
    786. 

  786.             options.help = 1;
    787. 

  787.         }
    788. 

  788.         else if (!strcmp(arg, "--version")) {
    789. 

  789.             options.version = 1;
    790. 

  790.         }
    791. 

  791.         else if (!strcmp(arg, "--logger")) {
    792. 

  792.             if (1 >= argc - i) {
    793. 

  793.                 fprintf(stderr, "%s: requires an argument\n", arg);
    794. 

  794.                 return 0;
    795. 

  795.             }
    796. 

  796.             char *arg2 = argv[i + 1];
    797. 

  797.             if (!strcmp(arg2, "stdout")) {
    798. 

  798.                 options.logger = LOGGER_STDOUT;
    799. 

  799.             }
    800. 

  800.             #ifndef BADVPN_USE_WINAPI
    801. 

  801.             else if (!strcmp(arg2, "syslog")) {
    802. 

  802.                 options.logger = LOGGER_SYSLOG;
    803. 

  803.             }
    804. 

  804.             #endif
    805. 

  805.             else {
    806. 

  806.                 fprintf(stderr, "%s: wrong argument\n", arg);
    807. 

  807.                 return 0;
    808. 

  808.             }
    809. 

  809.             i++;
    810. 

  810.         }
    811. 

  811.         #ifndef BADVPN_USE_WINAPI
    812. 

  812.         else if (!strcmp(arg, "--syslog-facility")) {
    813. 

  813.             if (1 >= argc - i) {
    814. 

  814.                 fprintf(stderr, "%s: requires an argument\n", arg);
    815. 

  815.                 return 0;
    816. 

  816.             }
    817. 

  817.             options.logger_syslog_facility = argv[i + 1];
    818. 

  818.             i++;
    819. 

  819.         }
    820. 

  820.         else if (!strcmp(arg, "--syslog-ident")) {
    821. 

  821.             if (1 >= argc - i) {
    822. 

  822.                 fprintf(stderr, "%s: requires an argument\n", arg);
    823. 

  823.                 return 0;
    824. 

  824.             }
    825. 

  825.             options.logger_syslog_ident = argv[i + 1];
    826. 

  826.             i++;
    827. 

  827.         }
    828. 

  828.         #endif
    829. 

  829.         else if (!strcmp(arg, "--loglevel")) {
    830. 

  830.             if (1 >= argc - i) {
    831. 

  831.                 fprintf(stderr, "%s: requires an argument\n", arg);
    832. 

  832.                 return 0;
    833. 

  833.             }
    834. 

  834.             if ((options.loglevel = parse_loglevel(argv[i + 1])) < 0) {
    835. 

  835.                 fprintf(stderr, "%s: wrong argument\n", arg);
    836. 

  836.                 return 0;
    837. 

  837.             }
    838. 

  838.             i++;
    839. 

  839.         }
    840. 

  840.         else if (!strcmp(arg, "--channel-loglevel")) {
    841. 

  841.             if (2 >= argc - i) {
    842. 

  842.                 fprintf(stderr, "%s: requires two arguments\n", arg);
    843. 

  843.                 return 0;
    844. 

  844.             }
    845. 

  845.             int channel = BLogGlobal_GetChannelByName(argv[i + 1]);
    846. 

  846.             if (channel < 0) {
    847. 

  847.                 fprintf(stderr, "%s: wrong channel argument\n", arg);
    848. 

  848.                 return 0;
    849. 

  849.             }
    850. 

  850.             int loglevel = parse_loglevel(argv[i + 2]);
    851. 

  851.             if (loglevel < 0) {
    852. 

  852.                 fprintf(stderr, "%s: wrong loglevel argument\n", arg);
    853. 

  853.                 return 0;
    854. 

  854.             }
    855. 

  855.             options.loglevels[channel] = loglevel;
    856. 

  856.             i += 2;
    857. 

  857.         }
    858. 

  858.         else if (!strcmp(arg, "--ssl")) {
    859. 

  859.             options.ssl = 1;
    860. 

  860.         }
    861. 

  861.         else if (!strcmp(arg, "--nssdb")) {
    862. 

  862.             if (1 >= argc - i) {
    863. 

  863.                 fprintf(stderr, "%s: requires an argument\n", arg);
    864. 

  864.                 return 0;
    865. 

  865.             }
    866. 

  866.             options.nssdb = argv[i + 1];
    867. 

  867.             i++;
    868. 

  868.         }
    869. 

  869.         else if (!strcmp(arg, "--client-cert-name")) {
    870. 

  870.             if (1 >= argc - i) {
    871. 

  871.                 fprintf(stderr, "%s: requires an argument\n", arg);
    872. 

  872.                 return 0;
    873. 

  873.             }
    874. 

  874.             options.client_cert_name = argv[i + 1];
    875. 

  875.             i++;
    876. 

  876.         }
    877. 

  877.         else if (!strcmp(arg, "--server-name")) {
    878. 

  878.             if (1 >= argc - i) {
    879. 

  879.                 fprintf(stderr, "%s: requires an argument\n", arg);
    880. 

  880.                 return 0;
    881. 

  881.             }
    882. 

  882.             options.server_name = argv[i + 1];
    883. 

  883.             i++;
    884. 

  884.         }
    885. 

  885.         else if (!strcmp(arg, "--server-addr")) {
    886. 

  886.             if (1 >= argc - i) {
    887. 

  887.                 fprintf(stderr, "%s: requires an argument\n", arg);
    888. 

  888.                 return 0;
    889. 

  889.             }
    890. 

  890.             options.server_addr = argv[i + 1];
    891. 

  891.             i++;
    892. 

  892.         }
    893. 

  893.         else if (!strcmp(arg, "--tapdev")) {
    894. 

  894.             if (1 >= argc - i) {
    895. 

  895.                 fprintf(stderr, "%s: requires an argument\n", arg);
    896. 

  896.                 return 0;
    897. 

  897.             }
    898. 

  898.             options.tapdev = argv[i + 1];
    899. 

  899.             i++;
    900. 

  900.         }
    901. 

  901.         else if (!strcmp(arg, "--scope")) {
    902. 

  902.             if (1 >= argc - i) {
    903. 

  903.                 fprintf(stderr, "%s: requires an argument\n", arg);
    904. 

  904.                 return 0;
    905. 

  905.             }
    906. 

  906.             if (options.num_scopes == MAX_SCOPES) {
    907. 

  907.                 fprintf(stderr, "%s: too many\n", arg);
    908. 

  908.                 return 0;
    909. 

  909.             }
    910. 

  910.             options.scopes[options.num_scopes] = argv[i + 1];
    911. 

  911.             options.num_scopes++;
    912. 

  912.             i++;
    913. 

  913.         }
    914. 

  914.         else if (!strcmp(arg, "--bind-addr")) {
    915. 

  915.             if (1 >= argc - i) {
    916. 

  916.                 fprintf(stderr, "%s: requires an argument\n", arg);
    917. 

  917.                 return 0;
    918. 

  918.             }
    919. 

  919.             if (options.num_bind_addrs == MAX_BIND_ADDRS) {
    920. 

  920.                 fprintf(stderr, "%s: too many\n", arg);
    921. 

  921.                 return 0;
    922. 

  922.             }
    923. 

  923.             POINTER(addr, options.bind_addrs[options.num_bind_addrs])
    924. 

  924.             addr->addr = argv[i + 1];
    925. 

  925.             addr->num_ports = -1;
    926. 

  926.             addr->num_ext_addrs = 0;
    927. 

  927.             options.num_bind_addrs++;
    928. 

  928.             i++;
    929. 

  929.         }
    930. 

  930.         else if (!strcmp(arg, "--num-ports")) {
    931. 

  931.             if (1 >= argc - i) {
    932. 

  932.                 fprintf(stderr, "%s: requires an argument\n", arg);
    933. 

  933.                 return 0;
    934. 

  934.             }
    935. 

  935.             if (options.num_bind_addrs == 0) {
    936. 

  936.                 fprintf(stderr, "%s: must folow --bind-addr\n", arg);
    937. 

  937.                 return 0;
    938. 

  938.             }
    939. 

  939.             POINTER(addr, options.bind_addrs[options.num_bind_addrs - 1])
    940. 

  940.             if ((addr->num_ports = atoi(argv[i + 1])) < 0) {
    941. 

  941.                 fprintf(stderr, "%s: wrong argument\n", arg);
    942. 

  942.                 return 0;
    943. 

  943.             }
    944. 

  944.             i++;
    945. 

  945.         }
    946. 

  946.         else if (!strcmp(arg, "--ext-addr")) {
    947. 

  947.             if (2 >= argc - i) {
    948. 

  948.                 fprintf(stderr, "%s: requires two arguments\n", arg);
    949. 

  949.                 return 0;
    950. 

  950.             }
    951. 

  951.             if (options.num_bind_addrs == 0) {
    952. 

  952.                 fprintf(stderr, "%s: must folow --bind-addr\n", arg);
    953. 

  953.                 return 0;
    954. 

  954.             }
    955. 

  955.             POINTER(addr, options.bind_addrs[options.num_bind_addrs - 1])
    956. 

  956.             if (addr->num_ext_addrs == MAX_EXT_ADDRS) {
    957. 

  957.                 fprintf(stderr, "%s: too many\n", arg);
    958. 

  958.                 return 0;
    959. 

  959.             }
    960. 

  960.             POINTER(eaddr, addr->ext_addrs[addr->num_ext_addrs])
    961. 

  961.             eaddr->addr = argv[i + 1];
    962. 

  962.             eaddr->scope = argv[i + 2];
    963. 

  963.             addr->num_ext_addrs++;
    964. 

  964.             i += 2;
    965. 

  965.         }
    966. 

  966.         else if (!strcmp(arg, "--transport-mode")) {
    967. 

  967.             if (1 >= argc - i) {
    968. 

  968.                 fprintf(stderr, "%s: requires an argument\n", arg);
    969. 

  969.                 return 0;
    970. 

  970.             }
    971. 

  971.             char *arg2 = argv[i + 1];
    972. 

  972.             if (!strcmp(arg2, "udp")) {
    973. 

  973.                 options.transport_mode = TRANSPORT_MODE_UDP;
    974. 

  974.             }
    975. 

  975.             else if (!strcmp(arg2, "tcp")) {
    976. 

  976.                 options.transport_mode = TRANSPORT_MODE_TCP;
    977. 

  977.             }
    978. 

  978.             else {
    979. 

  979.                 fprintf(stderr, "%s: wrong argument\n", arg);
    980. 

  980.                 return 0;
    981. 

  981.             }
    982. 

  982.             i++;
    983. 

  983.         }
    984. 

  984.         else if (!strcmp(arg, "--encryption-mode")) {
    985. 

  985.             if (1 >= argc - i) {
    986. 

  986.                 fprintf(stderr, "%s: requires an argument\n", arg);
    987. 

  987.                 return 0;
    988. 

  988.             }
    989. 

  989.             char *arg2 = argv[i + 1];
    990. 

  990.             if (!strcmp(arg2, "none")) {
    991. 

  991.                 options.encryption_mode = SPPROTO_ENCRYPTION_MODE_NONE;
    992. 

  992.             }
    993. 

  993.             else if (!strcmp(arg2, "blowfish")) {
    994. 

  994.                 options.encryption_mode = BENCRYPTION_CIPHER_BLOWFISH;
    995. 

  995.             }
    996. 

  996.             else if (!strcmp(arg2, "aes")) {
    997. 

  997.                 options.encryption_mode = BENCRYPTION_CIPHER_AES;
    998. 

  998.             }
    999. 

  999.             else {
    1000. 

  1000.                 fprintf(stderr, "%s: wrong argument\n", arg);
    1001. 

  1001.                 return 0;
    1002. 

  1002.             }
    1003. 

  1003.             i++;
    1004. 

  1004.         }
    1005. 

  1005.         else if (!strcmp(arg, "--hash-mode")) {
    1006. 

  1006.             if (1 >= argc - i) {
    1007. 

  1007.                 fprintf(stderr, "%s: requires an argument\n", arg);
    1008. 

  1008.                 return 0;
    1009. 

  1009.             }
    1010. 

  1010.             char *arg2 = argv[i + 1];
    1011. 

  1011.             if (!strcmp(arg2, "none")) {
    1012. 

  1012.                 options.hash_mode = SPPROTO_HASH_MODE_NONE;
    1013. 

  1013.             }
    1014. 

  1014.             else if (!strcmp(arg2, "md5")) {
    1015. 

  1015.                 options.hash_mode = BHASH_TYPE_MD5;
    1016. 

  1016.             }
    1017. 

  1017.             else if (!strcmp(arg2, "sha1")) {
    1018. 

  1018.                 options.hash_mode = BHASH_TYPE_SHA1;
    1019. 

  1019.             }
    1020. 

  1020.             else {
    1021. 

  1021.                 fprintf(stderr, "%s: wrong argument\n", arg);
    1022. 

  1022.                 return 0;
    1023. 

  1023.             }
    1024. 

  1024.             i++;
    1025. 

  1025.         }
    1026. 

  1026.         else if (!strcmp(arg, "--otp")) {
    1027. 

  1027.             if (3 >= argc - i) {
    1028. 

  1028.                 fprintf(stderr, "%s: requires three arguments\n", arg);
    1029. 

  1029.                 return 0;
    1030. 

  1030.             }
    1031. 

  1031.             char *otp_mode = argv[i + 1];
    1032. 

  1032.             char *otp_num = argv[i + 2];
    1033. 

  1033.             char *otp_num_warn = argv[i + 3];
    1034. 

  1034.             if (!strcmp(otp_mode, "blowfish")) {
    1035. 

  1035.                 options.otp_mode = BENCRYPTION_CIPHER_BLOWFISH;
    1036. 

  1036.             }
    1037. 

  1037.             else if (!strcmp(otp_mode, "aes")) {
    1038. 

  1038.                 options.otp_mode = BENCRYPTION_CIPHER_AES;
    1039. 

  1039.             }
    1040. 

  1040.             else {
    1041. 

  1041.                 fprintf(stderr, "%s: wrong mode\n", arg);
    1042. 

  1042.                 return 0;
    1043. 

  1043.             }
    1044. 

  1044.             if ((options.otp_num = atoi(otp_num)) <= 0) {
    1045. 

  1045.                 fprintf(stderr, "%s: wrong num\n", arg);
    1046. 

  1046.                 return 0;
    1047. 

  1047.             }
    1048. 

  1048.             options.otp_num_warn = atoi(otp_num_warn);
    1049. 

  1049.             if (options.otp_num_warn <= 0 || options.otp_num_warn > options.otp_num) {
    1050. 

  1050.                 fprintf(stderr, "%s: wrong num warn\n", arg);
    1051. 

  1051.                 return 0;
    1052. 

  1052.             }
    1053. 

  1053.             i += 3;
    1054. 

  1054.         }
    1055. 

  1055.         else if (!strcmp(arg, "--fragmentation-latency")) {
    1056. 

  1056.             if (1 >= argc - i) {
    1057. 

  1057.                 fprintf(stderr, "%s: requires an argument\n", arg);
    1058. 

  1058.                 return 0;
    1059. 

  1059.             }
    1060. 

  1060.             options.fragmentation_latency = atoi(argv[i + 1]);
    1061. 

  1061.             have_fragmentation_latency = 1;
    1062. 

  1062.             i++;
    1063. 

  1063.         }
    1064. 

  1064.         else if (!strcmp(arg, "--peer-ssl")) {
    1065. 

  1065.             options.peer_ssl = 1;
    1066. 

  1066.         }
    1067. 

  1067.         else if (!strcmp(arg, "--send-buffer-size")) {
    1068. 

  1068.             if (1 >= argc - i) {
    1069. 

  1069.                 fprintf(stderr, "%s: requires an argument\n", arg);
    1070. 

  1070.                 return 0;
    1071. 

  1071.             }
    1072. 

  1072.             if ((options.send_buffer_size = atoi(argv[i + 1])) <= 0) {
    1073. 

  1073.                 fprintf(stderr, "%s: wrong argument\n", arg);
    1074. 

  1074.                 return 0;
    1075. 

  1075.             }
    1076. 

  1076.             i++;
    1077. 

  1077.         }
    1078. 

  1078.         else if (!strcmp(arg, "--send-buffer-relay-size")) {
    1079. 

  1079.             if (1 >= argc - i) {
    1080. 

  1080.                 fprintf(stderr, "%s: requires an argument\n", arg);
    1081. 

  1081.                 return 0;
    1082. 

  1082.             }
    1083. 

  1083.             if ((options.send_buffer_relay_size = atoi(argv[i + 1])) <= 0) {
    1084. 

  1084.                 fprintf(stderr, "%s: wrong argument\n", arg);
    1085. 

  1085.                 return 0;
    1086. 

  1086.             }
    1087. 

  1087.             i++;
    1088. 

  1088.         }
    1089. 

  1089.         else {
    1090. 

  1090.             fprintf(stderr, "unknown option: %s\n", arg);
    1091. 

  1091.             return 0;
    1092. 

  1092.         }
    1093. 

  1093.     }
    1094. 

  1094.     
    1095. 

  1095.     if (options.help || options.version) {
    1096. 

  1096.         return 1;
    1097. 

  1097.     }
    1098. 

  1098.     
    1099. 

  1099.     if (options.ssl != !!options.nssdb) {
    1100. 

  1100.         fprintf(stderr, "False: --ssl <=> --nssdb\n");
    1101. 

  1101.         return 0;
    1102. 

  1102.     }
    1103. 

  1103.     
    1104. 

  1104.     if (options.ssl != !!options.client_cert_name) {
    1105. 

  1105.         fprintf(stderr, "False: --ssl <=> --client-cert-name\n");
    1106. 

  1106.         return 0;
    1107. 

  1107.     }
    1108. 

  1108.     
    1109. 

  1109.     if (!options.server_addr) {
    1110. 

  1110.         fprintf(stderr, "False: --server-addr\n");
    1111. 

  1111.         return 0;
    1112. 

  1112.     }
    1113. 

  1113.     
    1114. 

  1114.     if (options.transport_mode < 0) {
    1115. 

  1115.         fprintf(stderr, "False: --transport-mode\n");
    1116. 

  1116.         return 0;
    1117. 

  1117.     }
    1118. 

  1118.     
    1119. 

  1119.     if ((options.transport_mode == TRANSPORT_MODE_UDP) != (options.encryption_mode >= 0)) {
    1120. 

  1120.         fprintf(stderr, "False: UDP <=> --encryption-mode\n");
    1121. 

  1121.         return 0;
    1122. 

  1122.     }
    1123. 

  1123.     
    1124. 

  1124.     if ((options.transport_mode == TRANSPORT_MODE_UDP) != (options.hash_mode >= 0)) {
    1125. 

  1125.         fprintf(stderr, "False: UDP <=> --hash-mode\n");
    1126. 

  1126.         return 0;
    1127. 

  1127.     }
    1128. 

  1128.     
    1129. 

  1129.     if (!(!(options.otp_mode != SPPROTO_OTP_MODE_NONE) || (options.transport_mode == TRANSPORT_MODE_UDP))) {
    1130. 

  1130.         fprintf(stderr, "False: --otp => UDP\n");
    1131. 

  1131.         return 0;
    1132. 

  1132.     }
    1133. 

  1133.     
    1134. 

  1134.     if (!(!have_fragmentation_latency || (options.transport_mode == TRANSPORT_MODE_UDP))) {
    1135. 

  1135.         fprintf(stderr, "False: --fragmentation-latency => UDP\n");
    1136. 

  1136.         return 0;
    1137. 

  1137.     }
    1138. 

  1138.     
    1139. 

  1139.     if (!(!options.peer_ssl || (options.ssl && options.transport_mode == TRANSPORT_MODE_TCP))) {
    1140. 

  1140.         fprintf(stderr, "False: --peer-ssl => (--ssl && TCP)\n");
    1141. 

  1141.         return 0;
    1142. 

  1142.     }
    1143. 

  1143.     
    1144. 

  1144.     return 1;
    1145. 

  1145. }
    1146. 

  1146. 

  1147. int process_arguments (void)
    1148. 

  1148. {
    1149. 

  1149.     // resolve server address
    1150. 

  1150.     ASSERT(options.server_addr)
    1151. 

  1151.     if (!BAddr_Parse(&server_addr, options.server_addr, server_name, sizeof(server_name))) {
    1152. 

  1152.         BLog(BLOG_ERROR, "server addr: BAddr_Parse failed");
    1153. 

  1153.         return 0;
    1154. 

  1154.     }
    1155. 

  1155.     if (!addr_supported(server_addr)) {
    1156. 

  1156.         BLog(BLOG_ERROR, "server addr: not supported");
    1157. 

  1157.         return 0;
    1158. 

  1158.     }
    1159. 

  1159.     
    1160. 

  1160.     // override server name if requested
    1161. 

  1161.     if (options.server_name) {
    1162. 

  1162.         snprintf(server_name, sizeof(server_name), "%s", options.server_name);
    1163. 

  1163.     }
    1164. 

  1164.     
    1165. 

  1165.     // resolve bind addresses and external addresses
    1166. 

  1166.     num_bind_addrs = 0;
    1167. 

  1167.     for (int i = 0; i < options.num_bind_addrs; i++) {
    1168. 

  1168.         POINTER(addr, options.bind_addrs[i])
    1169. 

  1169.         POINTER(out, bind_addrs[num_bind_addrs])
    1170. 

  1170.         
    1171. 

  1171.         // read addr
    1172. 

  1172.         if (!BAddr_Parse(&out->addr, addr->addr, NULL, 0)) {
    1173. 

  1173.             BLog(BLOG_ERROR, "bind addr: BAddr_Parse failed");
    1174. 

  1174.             return 0;
    1175. 

  1175.         }
    1176. 

  1176.         
    1177. 

  1177.         // read num ports
    1178. 

  1178.         if (options.transport_mode == TRANSPORT_MODE_UDP) {
    1179. 

  1179.             if (addr->num_ports < 0) {
    1180. 

  1180.                 BLog(BLOG_ERROR, "bind addr: num ports missing");
    1181. 

  1181.                 return 0;
    1182. 

  1182.             }
    1183. 

  1183.             out->num_ports = addr->num_ports;
    1184. 

  1184.         }
    1185. 

  1185.         else if (addr->num_ports >= 0) {
    1186. 

  1186.             BLog(BLOG_ERROR, "bind addr: num ports given, but not using UDP");
    1187. 

  1187.             return 0;
    1188. 

  1188.         }
    1189. 

  1189.         
    1190. 

  1190.         // read ext addrs
    1191. 

  1191.         out->num_ext_addrs = 0;
    1192. 

  1192.         for (int j = 0; j < addr->num_ext_addrs; j++) {
    1193. 

  1193.             POINTER(eaddr, addr->ext_addrs[j])
    1194. 

  1194.             POINTER(eout, out->ext_addrs[out->num_ext_addrs])
    1195. 

  1195.             
    1196. 

  1196.             // read addr
    1197. 

  1197.             char *colon = strstr(eaddr->addr, ":");
    1198. 

  1198.             if (!colon) {
    1199. 

  1199.                 BLog(BLOG_ERROR, "ext addr: no colon");
    1200. 

  1200.                 return 0;
    1201. 

  1201.             }
    1202. 

  1202.             char addrstr[colon - eaddr->addr + 1];
    1203. 

  1203.             memcpy(addrstr, eaddr->addr, colon - eaddr->addr);
    1204. 

  1204.             addrstr[colon - eaddr->addr] = '\0';
    1205. 

  1205.             if (!strcmp(addrstr, "{server_reported}")) {
    1206. 

  1206.                 if ((eout->server_reported_port = atoi(colon + 1)) < 0) {
    1207. 

  1207.                     BLog(BLOG_ERROR, "ext addr: wrong port");
    1208. 

  1208.                     return 0;
    1209. 

  1209.                 }
    1210. 

  1210.             } else {
    1211. 

  1211.                 eout->server_reported_port = -1;
    1212. 

  1212.                 if (!BAddr_Parse(&eout->addr, eaddr->addr, NULL, 0)) {
    1213. 

  1213.                     BLog(BLOG_ERROR, "ext addr: BAddr_Parse failed");
    1214. 

  1214.                     return 0;
    1215. 

  1215.                 }
    1216. 

  1216.             }
    1217. 

  1217.             
    1218. 

  1218.             // read scope
    1219. 

  1219.             snprintf(eout->scope, sizeof(eout->scope), "%s", eaddr->scope);
    1220. 

  1220.             
    1221. 

  1221.             out->num_ext_addrs++;
    1222. 

  1222.         }
    1223. 

  1223.         
    1224. 

  1224.         num_bind_addrs++;
    1225. 

  1225.     }
    1226. 

  1226.     
    1227. 

  1227.     // initialize SPProto parameters
    1228. 

  1228.     if (options.transport_mode == TRANSPORT_MODE_UDP) {
    1229. 

  1229.         sp_params.encryption_mode = options.encryption_mode;
    1230. 

  1230.         sp_params.hash_mode = options.hash_mode;
    1231. 

  1231.         sp_params.otp_mode = options.otp_mode;
    1232. 

  1232.         if (options.otp_mode > 0) {
    1233. 

  1233.             sp_params.otp_num = options.otp_num;
    1234. 

  1234.         }
    1235. 

  1235.     }
    1236. 

  1236.     
    1237. 

  1237.     return 1;
    1238. 

  1238. }
    1239. 

  1239. 

  1240. void signal_handler (void *unused)
    1241. 

  1241. {
    1242. 

  1242.     BLog(BLOG_NOTICE, "termination requested");
    1243. 

  1243.     
    1244. 

  1244.     terminate();
    1245. 

  1245.     return;
    1246. 

  1246. }
    1247. 

  1247. 

  1248. int server_start_msg (void **data, peerid_t peer_id, int type, int len)
    1249. 

  1249. {
    1250. 

  1250.     ASSERT(server_ready)
    1251. 

  1251.     ASSERT(len >= 0)
    1252. 

  1252.     ASSERT(len <= MSG_MAX_PAYLOAD)
    1253. 

  1253.     ASSERT(!(len > 0) || data)
    1254. 

  1254.     
    1255. 

  1255.     uint8_t *packet;
    1256. 

  1256.     if (!ServerConnection_StartMessage(&server, (void **)&packet, peer_id, msg_SIZEtype + msg_SIZEpayload(len))) {
    1257. 

  1257.         BLog(BLOG_ERROR, "out of server buffer, exiting");
    1258. 

  1258.         terminate();
    1259. 

  1259.         return -1;
    1260. 

  1260.     }
    1261. 

  1261.     
    1262. 

  1262.     msgWriter writer;
    1263. 

  1263.     msgWriter_Init(&writer, packet);
    1264. 

  1264.     msgWriter_Addtype(&writer, type);
    1265. 

  1265.     uint8_t *payload_dst = msgWriter_Addpayload(&writer, len);
    1266. 

  1266.     msgWriter_Finish(&writer);
    1267. 

  1267.     
    1268. 

  1268.     if (data) {
    1269. 

  1269.         *data = payload_dst;
    1270. 

  1270.     }
    1271. 

  1271.     
    1272. 

  1272.     return 0;
    1273. 

  1273. }
    1274. 

  1274. 

  1275. void server_end_msg (void)
    1276. 

  1276. {
    1277. 

  1277.     ASSERT(server_ready)
    1278. 

  1278.     
    1279. 

  1279.     ServerConnection_EndMessage(&server);
    1280. 

  1280. }
    1281. 

  1281. 

  1282. int peer_add (peerid_t id, int flags, const uint8_t *cert, int cert_len)
    1283. 

  1283. {
    1284. 

  1284.     ASSERT(server_ready)
    1285. 

  1285.     ASSERT(num_peers < MAX_PEERS)
    1286. 

  1286.     ASSERT(!find_peer_by_id(id))
    1287. 

  1287.     ASSERT(id != my_id)
    1288. 

  1288.     ASSERT(cert_len >= 0)
    1289. 

  1289.     ASSERT(cert_len <= SCID_NEWCLIENT_MAX_CERT_LEN)
    1290. 

  1290.     
    1291. 

  1291.     // allocate structure
    1292. 

  1292.     struct peer_data *peer = malloc(sizeof(*peer));
    1293. 

  1293.     if (!peer) {
    1294. 

  1294.         BLog(BLOG_ERROR, "peer %d: failed to allocate memory", (int)id);
    1295. 

  1295.         goto fail0;
    1296. 

  1296.     }
    1297. 

  1297.     
    1298. 

  1298.     // remember id
    1299. 

  1299.     peer->id = id;
    1300. 

  1300.     
    1301. 

  1301.     // remember flags
    1302. 

  1302.     peer->flags = flags;
    1303. 

  1303.     
    1304. 

  1304.     // remember certificate if using SSL
    1305. 

  1305.     if (options.ssl) {
    1306. 

  1306.         memcpy(peer->cert, cert, cert_len);
    1307. 

  1307.         peer->cert_len = cert_len;
    1308. 

  1308.     }
    1309. 

  1309.     
    1310. 

  1310.     // init local flow
    1311. 

  1311.     if (!DataProtoLocalSource_Init(&peer->local_dpflow, device.mtu, my_id, peer->id, options.send_buffer_size, &ss)) {
    1312. 

  1312.         peer_log(peer, BLOG_ERROR, "DataProtoLocalSource_Init failed");
    1313. 

  1313.         goto fail1;
    1314. 

  1314.     }
    1315. 

  1315.     
    1316. 

  1316.     // init local receive flow
    1317. 

  1317.     PacketPassFairQueueFlow_Init(&peer->local_recv_qflow, &device.output_queue);
    1318. 

  1318.     peer->local_recv_if = PacketPassFairQueueFlow_GetInput(&peer->local_recv_qflow);
    1319. 

  1319.     PacketPassInterface_Sender_Init(peer->local_recv_if, (PacketPassInterface_handler_done)local_recv_qflow_output_handler_done, peer);
    1320. 

  1320.     
    1321. 

  1321.     // init relay source
    1322. 

  1322.     DataProtoRelaySource_Init(&peer->relay_source, peer->id);
    1323. 

  1323.     
    1324. 

  1324.     // have no link
    1325. 

  1325.     peer->have_link = 0;
    1326. 

  1326.     
    1327. 

  1327.     // allocate OTP seed buffers
    1328. 

  1328.     if (options.transport_mode == TRANSPORT_MODE_UDP && SPPROTO_HAVE_OTP(sp_params)) {
    1329. 

  1329.         if (!(peer->pio.udp.sendseed_sent_key = malloc(BEncryption_cipher_key_size(sp_params.otp_mode)))) {
    1330. 

  1330.             goto fail3;
    1331. 

  1331.         }
    1332. 

  1332.         if (!(peer->pio.udp.sendseed_sent_iv = malloc(BEncryption_cipher_block_size(sp_params.otp_mode)))) {
    1333. 

  1333.             goto fail4;
    1334. 

  1334.         }
    1335. 

  1335.     }
    1336. 

  1336.     
    1337. 

  1337.     // have no relaying
    1338. 

  1338.     peer->have_relaying = 0;
    1339. 

  1339.     
    1340. 

  1340.     // not waiting for relay
    1341. 

  1341.     peer->waiting_relay = 0;
    1342. 

  1342.     
    1343. 

  1343.     // init retry timer
    1344. 

  1344.     BTimer_Init(&peer->reset_timer, PEER_RETRY_TIME, (BTimer_handler)peer_reset_timer_handler, peer);
    1345. 

  1345.     
    1346. 

  1346.     // init frame decider peer
    1347. 

  1347.     if (!FrameDeciderPeer_Init(&peer->decider_peer, &frame_decider)) {
    1348. 

  1348.         goto fail5;
    1349. 

  1349.     }
    1350. 

  1350.     
    1351. 

  1351.     // is not relay server
    1352. 

  1352.     peer->is_relay = 0;
    1353. 

  1353.     
    1354. 

  1354.     // init binding
    1355. 

  1355.     peer->binding = 0;
    1356. 

  1356.     
    1357. 

  1357.     // init jobs
    1358. 

  1358.     BPending_Init(&peer->job_send_seed_after_binding, BReactor_PendingGroup(&ss), (BPending_handler)peer_job_send_seed_after_binding, peer);
    1359. 

  1359.     
    1360. 

  1360.     // add to peers linked list
    1361. 

  1361.     LinkedList2_Append(&peers, &peer->list_node);
    1362. 

  1362.     
    1363. 

  1363.     // add to peers-by-ID hash table
    1364. 

  1364.     ASSERT_EXECUTE(HashTable_Insert(&peers_by_id, &peer->table_node))
    1365. 

  1365.     
    1366. 

  1366.     // increment number of peers
    1367. 

  1367.     num_peers++;
    1368. 

  1368.     
    1369. 

  1369.     peer_log(peer, BLOG_INFO, "initialized");
    1370. 

  1370.     
    1371. 

  1371.     // start setup process
    1372. 

  1372.     if (peer_am_master(peer)) {
    1373. 

  1373.         return peer_start_binding(peer);
    1374. 

  1374.     } else {
    1375. 

  1375.         return 0;
    1376. 

  1376.     }
    1377. 

  1377.     
    1378. 

  1378. fail5:
    1379. 

  1379.     if (options.transport_mode == TRANSPORT_MODE_UDP && SPPROTO_HAVE_OTP(sp_params)) {
    1380. 

  1380.         free(peer->pio.udp.sendseed_sent_iv);
    1381. 

  1381. fail4:
    1382. 

  1382.         free(peer->pio.udp.sendseed_sent_key);
    1383. 

  1383.     }
    1384. 

  1384. fail3:
    1385. 

  1385.     DataProtoRelaySource_Free(&peer->relay_source);
    1386. 

  1386.     PacketPassFairQueueFlow_Free(&peer->local_recv_qflow);
    1387. 

  1387.     DataProtoLocalSource_Free(&peer->local_dpflow);
    1388. 

  1388. fail1:
    1389. 

  1389.     free(peer);
    1390. 

  1390. fail0:
    1391. 

  1391.     return 0;
    1392. 

  1392. }
    1393. 

  1393. 

  1394. void peer_remove (struct peer_data *peer)
    1395. 

  1395. {
    1396. 

  1396.     peer_log(peer, BLOG_INFO, "removing");
    1397. 

  1397.     
    1398. 

  1398.     // uninstall relaying
    1399. 

  1399.     if (peer->have_relaying) {
    1400. 

  1400.         peer_uninstall_relay(peer);
    1401. 

  1401.     }
    1402. 

  1402.     
    1403. 

  1403.     // disable relay provider
    1404. 

  1404.     // this inserts former relay users into the need relay list
    1405. 

  1405.     if (peer->is_relay) {
    1406. 

  1406.         peer_dealloc_relay_provider(peer);
    1407. 

  1407.     }
    1408. 

  1408.     
    1409. 

  1409.     // release relay flows
    1410. 

  1410.     DataProtoRelaySource_Release(&peer->relay_source);
    1411. 

  1411.     
    1412. 

  1412.     // release local receive flow
    1413. 

  1413.     if (PacketPassFairQueueFlow_IsBusy(&peer->local_recv_qflow)) {
    1414. 

  1414.         PacketPassFairQueueFlow_Release(&peer->local_recv_qflow);
    1415. 

  1415.     }
    1416. 

  1416.     
    1417. 

  1417.     // deallocate peer
    1418. 

  1418.     peer_dealloc(peer);
    1419. 

  1419.     
    1420. 

  1420.     // assign relays because former relay users are disconnected above
    1421. 

  1421.     assign_relays();
    1422. 

  1422. }
    1423. 

  1423. 

  1424. void peer_dealloc (struct peer_data *peer)
    1425. 

  1425. {
    1426. 

  1426.     ASSERT(!peer->have_relaying)
    1427. 

  1427.     ASSERT(!peer->is_relay)
    1428. 

  1428.     ASSERT(DataProtoRelaySource_IsEmpty(&peer->relay_source))
    1429. 

  1429.     PacketPassFairQueueFlow_AssertFree(&peer->local_recv_qflow);
    1430. 

  1430.     
    1431. 

  1431.     LinkedList2Iterator it;
    1432. 

  1432.     LinkedList2Node *node;
    1433. 

  1433.     
    1434. 

  1434.     // remove from waiting relay list
    1435. 

  1435.     if (peer->waiting_relay) {
    1436. 

  1436.         peer_unregister_need_relay(peer);
    1437. 

  1437.     }
    1438. 

  1438.     
    1439. 

  1439.     // free link
    1440. 

  1440.     if (peer->have_link) {
    1441. 

  1441.         peer_free_link(peer);
    1442. 

  1442.     }
    1443. 

  1443.     
    1444. 

  1444.     // decrement number of peers
    1445. 

  1445.     num_peers--;
    1446. 

  1446.     
    1447. 

  1447.     // remove from peers-by-ID hash table
    1448. 

  1448.     ASSERT_EXECUTE(HashTable_Remove(&peers_by_id, &peer->id))
    1449. 

  1449.     
    1450. 

  1450.     // remove from peers linked list
    1451. 

  1451.     LinkedList2_Remove(&peers, &peer->list_node);
    1452. 

  1452.     
    1453. 

  1453.     // free jobs
    1454. 

  1454.     BPending_Free(&peer->job_send_seed_after_binding);
    1455. 

  1455.     
    1456. 

  1456.     // free frame decider
    1457. 

  1457.     FrameDeciderPeer_Free(&peer->decider_peer);
    1458. 

  1458.     
    1459. 

  1459.     // free retry timer
    1460. 

  1460.     BReactor_RemoveTimer(&ss, &peer->reset_timer);
    1461. 

  1461.     
    1462. 

  1462.     // free OTP seed buffers
    1463. 

  1463.     if (options.transport_mode == TRANSPORT_MODE_UDP && SPPROTO_HAVE_OTP(sp_params)) {
    1464. 

  1464.         free(peer->pio.udp.sendseed_sent_iv);
    1465. 

  1465.         free(peer->pio.udp.sendseed_sent_key);
    1466. 

  1466.     }
    1467. 

  1467.     
    1468. 

  1468.     // free relay source
    1469. 

  1469.     DataProtoRelaySource_Free(&peer->relay_source);
    1470. 

  1470.     
    1471. 

  1471.     // free local receive flow
    1472. 

  1472.     PacketPassFairQueueFlow_Free(&peer->local_recv_qflow);
    1473. 

  1473.     
    1474. 

  1474.     // free local flow
    1475. 

  1475.     DataProtoLocalSource_Free(&peer->local_dpflow);
    1476. 

  1476.     
    1477. 

  1477.     // free peer structure
    1478. 

  1478.     free(peer);
    1479. 

  1479. }
    1480. 

  1480. 

  1481. void peer_log (struct peer_data *peer, int level, const char *fmt, ...)
    1482. 

  1482. {
    1483. 

  1483.     va_list vl;
    1484. 

  1484.     va_start(vl, fmt);
    1485. 

  1485.     BLog_Append("peer %d: ", (int)peer->id);
    1486. 

  1486.     BLog_LogToChannelVarArg(BLOG_CURRENT_CHANNEL, level, fmt, vl);
    1487. 

  1487.     va_end(vl);
    1488. 

  1488. }
    1489. 

  1489. 

  1490. int peer_am_master (struct peer_data *peer)
    1491. 

  1491. {
    1492. 

  1492.     return (my_id > peer->id);
    1493. 

  1493. }
    1494. 

  1494. 

  1495. int peer_init_link (struct peer_data *peer)
    1496. 

  1496. {
    1497. 

  1497.     ASSERT(!peer->have_link)
    1498. 

  1498.     ASSERT(!peer->have_relaying)
    1499. 

  1499.     ASSERT(!peer->waiting_relay)
    1500. 

  1500.     
    1501. 

  1501.     ASSERT(!peer->is_relay)
    1502. 

  1502.     
    1503. 

  1503.     // init link receive interface
    1504. 

  1504.     PacketPassInterface_Init(&peer->recv_ppi, data_mtu, (PacketPassInterface_handler_send)peer_recv_handler_send, peer,  BReactor_PendingGroup(&ss));
    1505. 

  1505.     
    1506. 

  1506.     // init transport-specific link objects
    1507. 

  1507.     PacketPassInterface *link_if;
    1508. 

  1508.     if (options.transport_mode == TRANSPORT_MODE_UDP) {
    1509. 

  1509.         // init DatagramPeerIO
    1510. 

  1510.         if (!DatagramPeerIO_Init(
    1511. 

  1511.             &peer->pio.udp.pio, &ss, data_mtu, CLIENT_UDP_MTU,
    1512. 

  1512.             sp_params, options.fragmentation_latency,
    1513. 

  1513.             &peer->recv_ppi
    1514. 

  1514.         )) {
    1515. 

  1515.             peer_log(peer, BLOG_ERROR, "DatagramPeerIO_Init failed");
    1516. 

  1516.             goto fail1;
    1517. 

  1517.         }
    1518. 

  1518.         
    1519. 

  1519.         // init OTP warning handler
    1520. 

  1520.         if (SPPROTO_HAVE_OTP(sp_params)) {
    1521. 

  1521.             DatagramPeerIO_SetOTPWarningHandler(&peer->pio.udp.pio, (DatagramPeerIO_handler_otp_warning)peer_udp_pio_handler_seed_warning, peer, options.otp_num_warn);
    1522. 

  1522.         }
    1523. 

  1523.         
    1524. 

  1524.         // init send seed state
    1525. 

  1525.         if (SPPROTO_HAVE_OTP(sp_params)) {
    1526. 

  1526.             peer->pio.udp.sendseed_nextid = 0;
    1527. 

  1527.             peer->pio.udp.sendseed_sent = 0;
    1528. 

  1528.         }
    1529. 

  1529.         
    1530. 

  1530.         link_if = DatagramPeerIO_GetSendInput(&peer->pio.udp.pio);
    1531. 

  1531.     } else {
    1532. 

  1532.         // init StreamPeerIO
    1533. 

  1533.         if (!StreamPeerIO_Init(
    1534. 

  1534.             &peer->pio.tcp.pio, &ss, options.peer_ssl,
    1535. 

  1535.             (options.peer_ssl ? peer->cert : NULL),
    1536. 

  1536.             (options.peer_ssl ? peer->cert_len : -1),
    1537. 

  1537.             data_mtu, &peer->recv_ppi,
    1538. 

  1538.             (StreamPeerIO_handler_error)peer_tcp_pio_handler_error, peer
    1539. 

  1539.         )) {
    1540. 

  1540.             peer_log(peer, BLOG_ERROR, "StreamPeerIO_Init failed");
    1541. 

  1541.             goto fail1;
    1542. 

  1542.         }
    1543. 

  1543.         
    1544. 

  1544.         link_if = StreamPeerIO_GetSendInput(&peer->pio.tcp.pio);
    1545. 

  1545.     }
    1546. 

  1546.     
    1547. 

  1547.     // init sending
    1548. 

  1548.     if (!DataProtoDest_Init(&peer->send_dp, &ss, peer->id, link_if, PEER_KEEPALIVE_INTERVAL, PEER_KEEPALIVE_RECEIVE_TIMER, (DataProtoDest_handler)peer_dataproto_handler, peer)) {
    1549. 

  1549.         peer_log(peer, BLOG_ERROR, "DataProto_Init failed");
    1550. 

  1550.         goto fail2;
    1551. 

  1551.     }
    1552. 

  1552.     
    1553. 

  1553.     // attach local flow to our DataProto
    1554. 

  1554.     DataProtoLocalSource_Attach(&peer->local_dpflow, &peer->send_dp);
    1555. 

  1555.     
    1556. 

  1556.     peer->have_link = 1;
    1557. 

  1557.     
    1558. 

  1558.     return 1;
    1559. 

  1559.     
    1560. 

  1560. fail2:
    1561. 

  1561.     if (options.transport_mode == TRANSPORT_MODE_UDP) {
    1562. 

  1562.         DatagramPeerIO_Free(&peer->pio.udp.pio);
    1563. 

  1563.     } else {
    1564. 

  1564.         StreamPeerIO_Free(&peer->pio.tcp.pio);
    1565. 

  1565.     }
    1566. 

  1566. fail1:
    1567. 

  1567.     PacketPassInterface_Free(&peer->recv_ppi);
    1568. 

  1568.     return 0;
    1569. 

  1569. }
    1570. 

  1570. 

  1571. void peer_free_link (struct peer_data *peer)
    1572. 

  1572. {
    1573. 

  1573.     ASSERT(peer->have_link)
    1574. 

  1574.     ASSERT(!peer->is_relay)
    1575. 

  1575.     
    1576. 

  1576.     ASSERT(!peer->have_relaying)
    1577. 

  1577.     ASSERT(!peer->waiting_relay)
    1578. 

  1578.     
    1579. 

  1579.     // allow detaching DataProto flows
    1580. 

  1580.     DataProtoDest_PrepareFree(&peer->send_dp);
    1581. 

  1581.     
    1582. 

  1582.     // detach local flow from our DataProto
    1583. 

  1583.     DataProtoLocalSource_Detach(&peer->local_dpflow);
    1584. 

  1584.     
    1585. 

  1585.     // free sending
    1586. 

  1586.     DataProtoDest_Free(&peer->send_dp);
    1587. 

  1587.     
    1588. 

  1588.     // free transport-specific link objects
    1589. 

  1589.     if (options.transport_mode == TRANSPORT_MODE_UDP) {
    1590. 

  1590.         // free DatagramPeerIO
    1591. 

  1591.         DatagramPeerIO_Free(&peer->pio.udp.pio);
    1592. 

  1592.     } else {
    1593. 

  1593.         // free StreamPeerIO
    1594. 

  1594.         StreamPeerIO_Free(&peer->pio.tcp.pio);
    1595. 

  1595.     }
    1596. 

  1596.     
    1597. 

  1597.     // free common link objects
    1598. 

  1598.     PacketPassInterface_Free(&peer->recv_ppi);
    1599. 

  1599.     
    1600. 

  1600.     peer->have_link = 0;
    1601. 

  1601. }
    1602. 

  1602. 

  1603. int peer_new_link (struct peer_data *peer)
    1604. 

  1604. {
    1605. 

  1605.     if (peer->have_link) {
    1606. 

  1606.         if (peer->is_relay) {
    1607. 

  1607.             peer_disable_relay_provider(peer);
    1608. 

  1608.         }
    1609. 

  1609.         
    1610. 

  1610.         peer_free_link(peer);
    1611. 

  1611.     }
    1612. 

  1612.     else if (peer->have_relaying) {
    1613. 

  1613.         peer_uninstall_relay(peer);
    1614. 

  1614.     }
    1615. 

  1615.     else if (peer->waiting_relay) {
    1616. 

  1616.         peer_unregister_need_relay(peer);
    1617. 

  1617.     }
    1618. 

  1618.     
    1619. 

  1619.     if (!peer_init_link(peer)) {
    1620. 

  1620.         return 0;
    1621. 

  1621.     }
    1622. 

  1622.     
    1623. 

  1623.     return 1;
    1624. 

  1624. }
    1625. 

  1625. 

  1626. void peer_enable_relay_provider (struct peer_data *peer)
    1627. 

  1627. {
    1628. 

  1628.     ASSERT(peer->have_link)
    1629. 

  1629.     ASSERT(!peer->is_relay)
    1630. 

  1630.     
    1631. 

  1631.     ASSERT(!peer->have_relaying)
    1632. 

  1632.     ASSERT(!peer->waiting_relay)
    1633. 

  1633.     
    1634. 

  1634.     // add to relays list
    1635. 

  1635.     LinkedList2_Append(&relays, &peer->relay_list_node);
    1636. 

  1636.     
    1637. 

  1637.     // init users list
    1638. 

  1638.     LinkedList2_Init(&peer->relay_users);
    1639. 

  1639.     
    1640. 

  1640.     peer->is_relay = 1;
    1641. 

  1641.     
    1642. 

  1642.     // assign relays
    1643. 

  1643.     assign_relays();
    1644. 

  1644. }
    1645. 

  1645. 

  1646. void peer_disable_relay_provider (struct peer_data *peer)
    1647. 

  1647. {
    1648. 

  1648.     ASSERT(peer->is_relay)
    1649. 

  1649.     
    1650. 

  1650.     ASSERT(peer->have_link)
    1651. 

  1651.     ASSERT(!peer->have_relaying)
    1652. 

  1652.     ASSERT(!peer->waiting_relay)
    1653. 

  1653.     
    1654. 

  1654.     // disconnect relay users
    1655. 

  1655.     LinkedList2Node *list_node;
    1656. 

  1656.     while (list_node = LinkedList2_GetFirst(&peer->relay_users)) {
    1657. 

  1657.         struct peer_data *relay_user = UPPER_OBJECT(list_node, struct peer_data, relaying_list_node);
    1658. 

  1658.         ASSERT(relay_user->have_relaying)
    1659. 

  1659.         ASSERT(relay_user->relaying_peer == peer)
    1660. 

  1660.         
    1661. 

  1661.         // disconnect relay user
    1662. 

  1662.         peer_uninstall_relay(relay_user);
    1663. 

  1663.         
    1664. 

  1664.         // add it to need relay list
    1665. 

  1665.         peer_register_need_relay(relay_user);
    1666. 

  1666.     }
    1667. 

  1667.     
    1668. 

  1668.     // remove from relays list
    1669. 

  1669.     LinkedList2_Remove(&relays, &peer->relay_list_node);
    1670. 

  1670.     
    1671. 

  1671.     peer->is_relay = 0;
    1672. 

  1672.     
    1673. 

  1673.     // assign relays
    1674. 

  1674.     assign_relays();
    1675. 

  1675. }
    1676. 

  1676. 

  1677. void peer_dealloc_relay_provider (struct peer_data *peer)
    1678. 

  1678. {
    1679. 

  1679.     ASSERT(peer->is_relay)
    1680. 

  1680.     
    1681. 

  1681.     ASSERT(peer->have_link)
    1682. 

  1682.     ASSERT(!peer->have_relaying)
    1683. 

  1683.     ASSERT(!peer->waiting_relay)
    1684. 

  1684.     
    1685. 

  1685.     // allow detaching DataProto flows from the relay peer
    1686. 

  1686.     DataProtoDest_PrepareFree(&peer->send_dp);
    1687. 

  1687.     
    1688. 

  1688.     // disconnect relay users
    1689. 

  1689.     LinkedList2Node *list_node;
    1690. 

  1690.     while (list_node = LinkedList2_GetFirst(&peer->relay_users)) {
    1691. 

  1691.         struct peer_data *relay_user = UPPER_OBJECT(list_node, struct peer_data, relaying_list_node);
    1692. 

  1692.         ASSERT(relay_user->have_relaying)
    1693. 

  1693.         ASSERT(relay_user->relaying_peer == peer)
    1694. 

  1694.         
    1695. 

  1695.         // disconnect relay user
    1696. 

  1696.         peer_dealloc_relay(relay_user);
    1697. 

  1697.         
    1698. 

  1698.         // add it to need relay list
    1699. 

  1699.         peer_register_need_relay(relay_user);
    1700. 

  1700.     }
    1701. 

  1701.     
    1702. 

  1702.     // remove from relays list
    1703. 

  1703.     LinkedList2_Remove(&relays, &peer->relay_list_node);
    1704. 

  1704.     
    1705. 

  1705.     peer->is_relay = 0;
    1706. 

  1706. }
    1707. 

  1707. 

  1708. void peer_install_relay (struct peer_data *peer, struct peer_data *relay)
    1709. 

  1709. {
    1710. 

  1710.     ASSERT(!peer->have_relaying)
    1711. 

  1711.     ASSERT(!peer->have_link)
    1712. 

  1712.     ASSERT(!peer->waiting_relay)
    1713. 

  1713.     ASSERT(relay->is_relay)
    1714. 

  1714.     
    1715. 

  1715.     ASSERT(!peer->is_relay)
    1716. 

  1716.     ASSERT(relay->have_link)
    1717. 

  1717.     
    1718. 

  1718.     peer_log(peer, BLOG_INFO, "installing relaying through %d", (int)relay->id);
    1719. 

  1719.     
    1720. 

  1720.     // remember relaying peer
    1721. 

  1721.     peer->relaying_peer = relay;
    1722. 

  1722.     
    1723. 

  1723.     // add to relay's users list
    1724. 

  1724.     LinkedList2_Append(&relay->relay_users, &peer->relaying_list_node);
    1725. 

  1725.     
    1726. 

  1726.     // attach local flow to relay
    1727. 

  1727.     DataProtoLocalSource_Attach(&peer->local_dpflow, &relay->send_dp);
    1728. 

  1728.     
    1729. 

  1729.     peer->have_relaying = 1;
    1730. 

  1730. }
    1731. 

  1731. 

  1732. void peer_uninstall_relay (struct peer_data *peer)
    1733. 

  1733. {
    1734. 

  1734.     ASSERT(peer->have_relaying)
    1735. 

  1735.     
    1736. 

  1736.     ASSERT(!peer->have_link)
    1737. 

  1737.     ASSERT(!peer->waiting_relay)
    1738. 

  1738.     
    1739. 

  1739.     struct peer_data *relay = peer->relaying_peer;
    1740. 

  1740.     ASSERT(relay->is_relay)
    1741. 

  1741.     ASSERT(relay->have_link)
    1742. 

  1742.     
    1743. 

  1743.     peer_log(peer, BLOG_INFO, "uninstalling relaying through %d", (int)relay->id);
    1744. 

  1744.     
    1745. 

  1745.     // release local flow before detaching it
    1746. 

  1746.     DataProtoLocalSource_Release(&peer->local_dpflow);
    1747. 

  1747.     
    1748. 

  1748.     // link out relay
    1749. 

  1749.     peer_dealloc_relay(peer);
    1750. 

  1750. }
    1751. 

  1751. 

  1752. void peer_dealloc_relay (struct peer_data *peer)
    1753. 

  1753. {
    1754. 

  1754.     ASSERT(peer->have_relaying)
    1755. 

  1755.     
    1756. 

  1756.     ASSERT(!peer->have_link)
    1757. 

  1757.     ASSERT(!peer->waiting_relay)
    1758. 

  1758.     
    1759. 

  1759.     struct peer_data *relay = peer->relaying_peer;
    1760. 

  1760.     ASSERT(relay->is_relay)
    1761. 

  1761.     ASSERT(relay->have_link)
    1762. 

  1762.     
    1763. 

  1763.     // detach local flow from relay
    1764. 

  1764.     DataProtoLocalSource_Detach(&peer->local_dpflow);
    1765. 

  1765.     
    1766. 

  1766.     // remove from relay's users list
    1767. 

  1767.     LinkedList2_Remove(&relay->relay_users, &peer->relaying_list_node);
    1768. 

  1768.     
    1769. 

  1769.     peer->have_relaying = 0;
    1770. 

  1770. }
    1771. 

  1771. 

  1772. void peer_need_relay (struct peer_data *peer)
    1773. 

  1773. {
    1774. 

  1774.     ASSERT(!peer->is_relay)
    1775. 

  1775.     
    1776. 

  1776.     if (peer->have_link) {
    1777. 

  1777.         peer_free_link(peer);
    1778. 

  1778.     }
    1779. 

  1779.     
    1780. 

  1780.     if (peer->have_relaying) {
    1781. 

  1781.         peer_uninstall_relay(peer);
    1782. 

  1782.     }
    1783. 

  1783.     
    1784. 

  1784.     if (peer->waiting_relay) {
    1785. 

  1785.         // already waiting for relay, do nothing
    1786. 

  1786.         return;
    1787. 

  1787.     }
    1788. 

  1788.     
    1789. 

  1789.     // register the peer as needing a relay
    1790. 

  1790.     peer_register_need_relay(peer);
    1791. 

  1791.     
    1792. 

  1792.     // assign relays
    1793. 

  1793.     assign_relays();
    1794. 

  1794. }
    1795. 

  1795. 

  1796. void peer_register_need_relay (struct peer_data *peer)
    1797. 

  1797. {
    1798. 

  1798.     ASSERT(!peer->waiting_relay)
    1799. 

  1799.     ASSERT(!peer->have_link)
    1800. 

  1800.     ASSERT(!peer->have_relaying)
    1801. 

  1801.     
    1802. 

  1802.     ASSERT(!peer->is_relay)
    1803. 

  1803.     
    1804. 

  1804.     // add to need relay list
    1805. 

  1805.     LinkedList2_Append(&waiting_relay_peers, &peer->waiting_relay_list_node);
    1806. 

  1806.     
    1807. 

  1807.     peer->waiting_relay = 1;
    1808. 

  1808. }
    1809. 

  1809. 

  1810. void peer_unregister_need_relay (struct peer_data *peer)
    1811. 

  1811. {
    1812. 

  1812.     ASSERT(peer->waiting_relay)
    1813. 

  1813.     
    1814. 

  1814.     ASSERT(!peer->have_link)
    1815. 

  1815.     ASSERT(!peer->have_relaying)
    1816. 

  1816.     ASSERT(!peer->is_relay)
    1817. 

  1817.     
    1818. 

  1818.     // remove from need relay list
    1819. 

  1819.     LinkedList2_Remove(&waiting_relay_peers, &peer->waiting_relay_list_node);
    1820. 

  1820.     
    1821. 

  1821.     peer->waiting_relay = 0;
    1822. 

  1822. }
    1823. 

  1823. 

  1824. int peer_reset (struct peer_data *peer)
    1825. 

  1825. {
    1826. 

  1826.     peer_log(peer, BLOG_NOTICE, "resetting");
    1827. 

  1827.     
    1828. 

  1828.     if (peer_am_master(peer)) {
    1829. 

  1829.         // if we're the master, schedule retry
    1830. 

  1830.         BReactor_SetTimer(&ss, &peer->reset_timer);
    1831. 

  1831.     } else {
    1832. 

  1832.         // if we're the slave, report to master
    1833. 

  1833.         if (peer_send_simple(peer, MSGID_YOURETRY) < 0) {
    1834. 

  1834.             return -1;
    1835. 

  1835.         }
    1836. 

  1836.     }
    1837. 

  1837.     
    1838. 

  1838.     return 0;
    1839. 

  1839. }
    1840. 

  1840. 

  1841. void peer_msg (struct peer_data *peer, uint8_t *data, int data_len)
    1842. 

  1842. {
    1843. 

  1843.     ASSERT(server_ready)
    1844. 

  1844.     ASSERT(data_len >= 0)
    1845. 

  1845.     ASSERT(data_len <= SC_MAX_MSGLEN)
    1846. 

  1846.     
    1847. 

  1847.     // parse message
    1848. 

  1848.     msgParser parser;
    1849. 

  1849.     if (!msgParser_Init(&parser, data, data_len)) {
    1850. 

  1850.         peer_log(peer, BLOG_NOTICE, "msg: failed to parse");
    1851. 

  1851.         return;
    1852. 

  1852.     }
    1853. 

  1853.     
    1854. 

  1854.     // read message
    1855. 

  1855.     uint16_t type;
    1856. 

  1856.     ASSERT_EXECUTE(msgParser_Gettype(&parser, &type))
    1857. 

  1857.     uint8_t *payload;
    1858. 

  1858.     int payload_len;
    1859. 

  1859.     ASSERT_EXECUTE(msgParser_Getpayload(&parser, &payload, &payload_len))
    1860. 

  1860.     
    1861. 

  1861.     // dispatch according to message type
    1862. 

  1862.     switch (type) {
    1863. 

  1863.         case MSGID_YOUCONNECT:
    1864. 

  1864.             peer_msg_youconnect(peer, payload, payload_len);
    1865. 

  1865.             return;
    1866. 

  1866.         case MSGID_CANNOTCONNECT:
    1867. 

  1867.             peer_msg_cannotconnect(peer, payload, payload_len);
    1868. 

  1868.             return;
    1869. 

  1869.         case MSGID_CANNOTBIND:
    1870. 

  1870.             peer_msg_cannotbind(peer, payload, payload_len);
    1871. 

  1871.             return;
    1872. 

  1872.         case MSGID_YOURETRY:
    1873. 

  1873.             peer_msg_youretry(peer, payload, payload_len);
    1874. 

  1874.             return;
    1875. 

  1875.         case MSGID_SEED:
    1876. 

  1876.             peer_msg_seed(peer, payload, payload_len);
    1877. 

  1877.             return;
    1878. 

  1878.         case MSGID_CONFIRMSEED:
    1879. 

  1879.             peer_msg_confirmseed(peer, payload, payload_len);
    1880. 

  1880.             return;
    1881. 

  1881.         default:
    1882. 

  1882.             BLog(BLOG_NOTICE, "msg: unknown type");
    1883. 

  1883.             return;
    1884. 

  1884.     }
    1885. 

  1885. }
    1886. 

  1886. 

  1887. void peer_msg_youconnect (struct peer_data *peer, uint8_t *data, int data_len)
    1888. 

  1888. {
    1889. 

  1889.     // init parser
    1890. 

  1890.     msg_youconnectParser parser;
    1891. 

  1891.     if (!msg_youconnectParser_Init(&parser, data, data_len)) {
    1892. 

  1892.         peer_log(peer, BLOG_WARNING, "msg_youconnect: failed to parse");
    1893. 

  1893.         return;
    1894. 

  1894.     }
    1895. 

  1895.     
    1896. 

  1896.     // try addresses
    1897. 

  1897.     BAddr addr;
    1898. 

  1898.     while (1) {
    1899. 

  1899.         // get address message
    1900. 

  1900.         uint8_t *addrmsg_data;
    1901. 

  1901.         int addrmsg_len;
    1902. 

  1902.         if (!msg_youconnectParser_Getaddr(&parser, &addrmsg_data, &addrmsg_len)) {
    1903. 

  1903.             peer_log(peer, BLOG_NOTICE, "msg_youconnect: no usable addresses");
    1904. 

  1904.             peer_send_simple(peer, MSGID_CANNOTCONNECT);
    1905. 

  1905.             return;
    1906. 

  1906.         }
    1907. 

  1907.         
    1908. 

  1908.         // parse address message
    1909. 

  1909.         msg_youconnect_addrParser aparser;
    1910. 

  1910.         if (!msg_youconnect_addrParser_Init(&aparser, addrmsg_data, addrmsg_len)) {
    1911. 

  1911.             peer_log(peer, BLOG_WARNING, "msg_youconnect: failed to parse address message");
    1912. 

  1912.             return;
    1913. 

  1913.         }
    1914. 

  1914.         
    1915. 

  1915.         // check if the address scope is known
    1916. 

  1916.         uint8_t *name_data;
    1917. 

  1917.         int name_len;
    1918. 

  1918.         ASSERT_EXECUTE(msg_youconnect_addrParser_Getname(&aparser, &name_data, &name_len))
    1919. 

  1919.         char *name;
    1920. 

  1920.         if (!(name = address_scope_known(name_data, name_len))) {
    1921. 

  1921.             continue;
    1922. 

  1922.         }
    1923. 

  1923.         
    1924. 

  1924.         // read address
    1925. 

  1925.         uint8_t *addr_data;
    1926. 

  1926.         int addr_len;
    1927. 

  1927.         ASSERT_EXECUTE(msg_youconnect_addrParser_Getaddr(&aparser, &addr_data, &addr_len))
    1928. 

  1928.         if (!addr_read(addr_data, addr_len, &addr)) {
    1929. 

  1929.             peer_log(peer, BLOG_WARNING, "msg_youconnect: failed to read address");
    1930. 

  1930.             return;
    1931. 

  1931.         }
    1932. 

  1932.         
    1933. 

  1933.         peer_log(peer, BLOG_NOTICE, "msg_youconnect: using address in scope '%s'", name);
    1934. 

  1934.         break;
    1935. 

  1935.     }
    1936. 

  1936.     
    1937. 

  1937.     // discard further addresses
    1938. 

  1938.     msg_youconnectParser_Forwardaddr(&parser);
    1939. 

  1939.     
    1940. 

  1940.     uint8_t *key = NULL;
    1941. 

  1941.     uint64_t password = 0;
    1942. 

  1942.     
    1943. 

  1943.     // read additonal parameters
    1944. 

  1944.     if (options.transport_mode == TRANSPORT_MODE_UDP) {
    1945. 

  1945.         if (SPPROTO_HAVE_ENCRYPTION(sp_params)) {
    1946. 

  1946.             int key_len;
    1947. 

  1947.             if (!msg_youconnectParser_Getkey(&parser, &key, &key_len)) {
    1948. 

  1948.                 peer_log(peer, BLOG_WARNING, "msg_youconnect: no key");
    1949. 

  1949.                 return;
    1950. 

  1950.             }
    1951. 

  1951.             if (key_len != BEncryption_cipher_key_size(sp_params.encryption_mode)) {
    1952. 

  1952.                 peer_log(peer, BLOG_WARNING, "msg_youconnect: wrong key size");
    1953. 

  1953.                 return;
    1954. 

  1954.             }
    1955. 

  1955.         }
    1956. 

  1956.     } else {
    1957. 

  1957.         if (!msg_youconnectParser_Getpassword(&parser, &password)) {
    1958. 

  1958.             peer_log(peer, BLOG_WARNING, "msg_youconnect: no password");
    1959. 

  1959.             return;
    1960. 

  1960.         }
    1961. 

  1961.     }
    1962. 

  1962.     
    1963. 

  1963.     if (!msg_youconnectParser_GotEverything(&parser)) {
    1964. 

  1964.         peer_log(peer, BLOG_WARNING, "msg_youconnect: stray data");
    1965. 

  1965.         return;
    1966. 

  1966.     }
    1967. 

  1967.     
    1968. 

  1968.     peer_log(peer, BLOG_INFO, "connecting");
    1969. 

  1969.     
    1970. 

  1970.     peer_connect(peer, addr, key, password);
    1971. 

  1971.     return;
    1972. 

  1972. }
    1973. 

  1973. 

  1974. void peer_msg_cannotconnect (struct peer_data *peer, uint8_t *data, int data_len)
    1975. 

  1975. {
    1976. 

  1976.     if (data_len != 0) {
    1977. 

  1977.         peer_log(peer, BLOG_WARNING, "msg_cannotconnect: invalid length");
    1978. 

  1978.         return;
    1979. 

  1979.     }
    1980. 

  1980.     
    1981. 

  1981.     if (!peer->binding) {
    1982. 

  1982.         peer_log(peer, BLOG_WARNING, "msg_cannotconnect: not binding");
    1983. 

  1983.         return;
    1984. 

  1984.     }
    1985. 

  1985.     
    1986. 

  1986.     peer_log(peer, BLOG_INFO, "peer could not connect");
    1987. 

  1987.     
    1988. 

  1988.     // continue trying bind addresses
    1989. 

  1989.     peer_bind(peer);
    1990. 

  1990.     return;
    1991. 

  1991. }
    1992. 

  1992. 

  1993. void peer_msg_cannotbind (struct peer_data *peer, uint8_t *data, int data_len)
    1994. 

  1994. {
    1995. 

  1995.     if (data_len != 0) {
    1996. 

  1996.         peer_log(peer, BLOG_WARNING, "msg_cannotbind: invalid length");
    1997. 

  1997.         return;
    1998. 

  1998.     }
    1999. 

  1999.     
    2000. 

  2000.     peer_log(peer, BLOG_INFO, "peer cannot bind");
    2001. 

  2001.     
    2002. 

  2002.     if (!peer_am_master(peer)) {
    2003. 

  2003.         peer_start_binding(peer);
    2004. 

  2004.         return;
    2005. 

  2005.     } else {
    2006. 

  2006.         if (!peer->is_relay) {
    2007. 

  2007.             peer_need_relay(peer);
    2008. 

  2008.         }
    2009. 

  2009.     }
    2010. 

  2010. }
    2011. 

  2011. 

  2012. void peer_msg_seed (struct peer_data *peer, uint8_t *data, int data_len)
    2013. 

  2013. {
    2014. 

  2014.     msg_seedParser parser;
    2015. 

  2015.     if (!msg_seedParser_Init(&parser, data, data_len)) {
    2016. 

  2016.         peer_log(peer, BLOG_WARNING, "msg_seed: failed to parse");
    2017. 

  2017.         return;
    2018. 

  2018.     }
    2019. 

  2019.     
    2020. 

  2020.     // read message
    2021. 

  2021.     uint16_t seed_id;
    2022. 

  2022.     ASSERT_EXECUTE(msg_seedParser_Getseed_id(&parser, &seed_id))
    2023. 

  2023.     uint8_t *key;
    2024. 

  2024.     int key_len;
    2025. 

  2025.     ASSERT_EXECUTE(msg_seedParser_Getkey(&parser, &key, &key_len))
    2026. 

  2026.     uint8_t *iv;
    2027. 

  2027.     int iv_len;
    2028. 

  2028.     ASSERT_EXECUTE(msg_seedParser_Getiv(&parser, &iv, &iv_len))
    2029. 

  2029.     
    2030. 

  2030.     if (options.transport_mode != TRANSPORT_MODE_UDP) {
    2031. 

  2031.         peer_log(peer, BLOG_WARNING, "msg_seed: not in UDP mode");
    2032. 

  2032.         return;
    2033. 

  2033.     }
    2034. 

  2034.     
    2035. 

  2035.     if (!SPPROTO_HAVE_OTP(sp_params)) {
    2036. 

  2036.         peer_log(peer, BLOG_WARNING, "msg_seed: OTPs disabled");
    2037. 

  2037.         return;
    2038. 

  2038.     }
    2039. 

  2039.     
    2040. 

  2040.     if (key_len != BEncryption_cipher_key_size(sp_params.otp_mode)) {
    2041. 

  2041.         peer_log(peer, BLOG_WARNING, "msg_seed: wrong key length");
    2042. 

  2042.         return;
    2043. 

  2043.     }
    2044. 

  2044.     
    2045. 

  2045.     if (iv_len != BEncryption_cipher_block_size(sp_params.otp_mode)) {
    2046. 

  2046.         peer_log(peer, BLOG_WARNING, "msg_seed: wrong IV length");
    2047. 

  2047.         return;
    2048. 

  2048.     }
    2049. 

  2049.     
    2050. 

  2050.     if (!peer->have_link) {
    2051. 

  2051.         peer_log(peer, BLOG_WARNING, "msg_seed: have no link");
    2052. 

  2052.         return;
    2053. 

  2053.     }
    2054. 

  2054.     
    2055. 

  2055.     peer_log(peer, BLOG_DEBUG, "received OTP receive seed");
    2056. 

  2056.     
    2057. 

  2057.     // add receive seed
    2058. 

  2058.     DatagramPeerIO_AddOTPRecvSeed(&peer->pio.udp.pio, seed_id, key, iv);
    2059. 

  2059.     
    2060. 

  2060.     // send confirmation
    2061. 

  2061.     peer_send_confirmseed(peer, seed_id);
    2062. 

  2062.     return;
    2063. 

  2063. }
    2064. 

  2064. 

  2065. void peer_msg_confirmseed (struct peer_data *peer, uint8_t *data, int data_len)
    2066. 

  2066. {
    2067. 

  2067.     msg_confirmseedParser parser;
    2068. 

  2068.     if (!msg_confirmseedParser_Init(&parser, data, data_len)) {
    2069. 

  2069.         peer_log(peer, BLOG_WARNING, "msg_confirmseed: failed to parse");
    2070. 

  2070.         return;
    2071. 

  2071.     }
    2072. 

  2072.     
    2073. 

  2073.     // read message
    2074. 

  2074.     uint16_t seed_id;
    2075. 

  2075.     ASSERT_EXECUTE(msg_confirmseedParser_Getseed_id(&parser, &seed_id))
    2076. 

  2076.     
    2077. 

  2077.     if (options.transport_mode != TRANSPORT_MODE_UDP) {
    2078. 

  2078.         peer_log(peer, BLOG_WARNING, "msg_confirmseed: not in UDP mode");
    2079. 

  2079.         return;
    2080. 

  2080.     }
    2081. 

  2081.     
    2082. 

  2082.     if (!SPPROTO_HAVE_OTP(sp_params)) {
    2083. 

  2083.         peer_log(peer, BLOG_WARNING, "msg_confirmseed: OTPs disabled");
    2084. 

  2084.         return;
    2085. 

  2085.     }
    2086. 

  2086.     
    2087. 

  2087.     if (!peer->have_link) {
    2088. 

  2088.         peer_log(peer, BLOG_WARNING, "msg_confirmseed: have no link");
    2089. 

  2089.         return;
    2090. 

  2090.     }
    2091. 

  2091.     
    2092. 

  2092.     if (!peer->pio.udp.sendseed_sent) {
    2093. 

  2093.         peer_log(peer, BLOG_WARNING, "msg_confirmseed: no seed has been sent");
    2094. 

  2094.         return;
    2095. 

  2095.     }
    2096. 

  2096.     
    2097. 

  2097.     if (seed_id != peer->pio.udp.sendseed_sent_id) {
    2098. 

  2098.         peer_log(peer, BLOG_WARNING, "msg_confirmseed: invalid seed: expecting %d, received %d", (int)peer->pio.udp.sendseed_sent_id, (int)seed_id);
    2099. 

  2099.         return;
    2100. 

  2100.     }
    2101. 

  2101.     
    2102. 

  2102.     peer_log(peer, BLOG_DEBUG, "OTP send seed confirmed");
    2103. 

  2103.     
    2104. 

  2104.     // no longer waiting for confirmation
    2105. 

  2105.     peer->pio.udp.sendseed_sent = 0;
    2106. 

  2106.     
    2107. 

  2107.     // start using the seed
    2108. 

  2108.     DatagramPeerIO_SetOTPSendSeed(&peer->pio.udp.pio, peer->pio.udp.sendseed_sent_id, peer->pio.udp.sendseed_sent_key, peer->pio.udp.sendseed_sent_iv);
    2109. 

  2109. }
    2110. 

  2110. 

  2111. void peer_msg_youretry (struct peer_data *peer, uint8_t *data, int data_len)
    2112. 

  2112. {
    2113. 

  2113.     if (data_len != 0) {
    2114. 

  2114.         peer_log(peer, BLOG_WARNING, "msg_youretry: invalid length");
    2115. 

  2115.         return;
    2116. 

  2116.     }
    2117. 

  2117.     
    2118. 

  2118.     if (!peer_am_master(peer)) {
    2119. 

  2119.         peer_log(peer, BLOG_WARNING, "msg_youretry: we are not master");
    2120. 

  2120.         return;
    2121. 

  2121.     }
    2122. 

  2122.     
    2123. 

  2123.     peer_log(peer, BLOG_NOTICE, "requests reset");
    2124. 

  2124.     
    2125. 

  2125.     peer_reset(peer);
    2126. 

  2126.     return;
    2127. 

  2127. }
    2128. 

  2128. 

  2129. void peer_udp_pio_handler_seed_warning (struct peer_data *peer)
    2130. 

  2130. {
    2131. 

  2131.     ASSERT(options.transport_mode == TRANSPORT_MODE_UDP)
    2132. 

  2132.     ASSERT(SPPROTO_HAVE_OTP(sp_params))
    2133. 

  2133.     ASSERT(peer->have_link)
    2134. 

  2134.     
    2135. 

  2135.     // generate and send a new seed
    2136. 

  2136.     if (!peer->pio.udp.sendseed_sent) {
    2137. 

  2137.         peer_udp_send_seed(peer);
    2138. 

  2138.         return;
    2139. 

  2139.     }
    2140. 

  2140. }
    2141. 

  2141. 

  2142. void peer_tcp_pio_handler_error (struct peer_data *peer)
    2143. 

  2143. {
    2144. 

  2144.     ASSERT(options.transport_mode == TRANSPORT_MODE_TCP)
    2145. 

  2145.     ASSERT(peer->have_link)
    2146. 

  2146.     
    2147. 

  2147.     peer_log(peer, BLOG_NOTICE, "TCP connection failed");
    2148. 

  2148.     
    2149. 

  2149.     peer_reset(peer);
    2150. 

  2150.     return;
    2151. 

  2151. }
    2152. 

  2152. 

  2153. void peer_reset_timer_handler (struct peer_data *peer)
    2154. 

  2154. {
    2155. 

  2155.     ASSERT(peer_am_master(peer))
    2156. 

  2156.     
    2157. 

  2157.     BLog(BLOG_NOTICE, "retry timer expired");
    2158. 

  2158.     
    2159. 

  2159.     // start setup process
    2160. 

  2160.     peer_start_binding(peer);
    2161. 

  2161.     return;
    2162. 

  2162. }
    2163. 

  2163. 

  2164. void peer_recv_handler_send (struct peer_data *peer, uint8_t *data, int data_len)
    2165. 

  2165. {
    2166. 

  2166.     ASSERT(peer->have_link)
    2167. 

  2167.     ASSERT(data_len >= 0)
    2168. 

  2168.     ASSERT(data_len <= data_mtu)
    2169. 

  2169.     
    2170. 

  2170.     uint8_t *orig_data = data;
    2171. 

  2171.     int orig_data_len = data_len;
    2172. 

  2172.     
    2173. 

  2173.     int dp_good = 0;
    2174. 

  2174.     struct peer_data *relay = NULL;
    2175. 

  2175.     int local = 0;
    2176. 

  2176.     
    2177. 

  2177.     // check dataproto header
    2178. 

  2178.     if (data_len < sizeof(struct dataproto_header)) {
    2179. 

  2179.         peer_log(peer, BLOG_NOTICE, "receive: no dataproto header");
    2180. 

  2180.         goto out;
    2181. 

  2181.     }
    2182. 

  2182.     struct dataproto_header *header = (struct dataproto_header *)data;
    2183. 

  2183.     data += sizeof(struct dataproto_header);
    2184. 

  2184.     data_len -= sizeof(struct dataproto_header);
    2185. 

  2185.     uint8_t flags = header->flags;
    2186. 

  2186.     peerid_t from_id = ltoh16(header->from_id);
    2187. 

  2187.     int num_ids = ltoh16(header->num_peer_ids);
    2188. 

  2188.     
    2189. 

  2189.     // check destination IDs
    2190. 

  2190.     if (num_ids > 1) {
    2191. 

  2191.         peer_log(peer, BLOG_NOTICE, "receive: too many destination IDs");
    2192. 

  2192.         goto out;
    2193. 

  2193.     }
    2194. 

  2194.     if (data_len < num_ids * sizeof(struct dataproto_peer_id)) {
    2195. 

  2195.         peer_log(peer, BLOG_NOTICE, "receive: invalid length for destination IDs");
    2196. 

  2196.         goto out;
    2197. 

  2197.     }
    2198. 

  2198.     struct dataproto_peer_id *ids = (struct dataproto_peer_id *)data;
    2199. 

  2199.     data += num_ids * sizeof(struct dataproto_peer_id);
    2200. 

  2200.     data_len -= num_ids * sizeof(struct dataproto_peer_id);
    2201. 

  2201.     
    2202. 

  2202.     // check remaining data
    2203. 

  2203.     if (data_len > device.mtu) {
    2204. 

  2204.         peer_log(peer, BLOG_NOTICE, "receive: frame too large");
    2205. 

  2205.         goto out;
    2206. 

  2206.     }
    2207. 

  2207.     
    2208. 

  2208.     dp_good = 1;
    2209. 

  2209.     
    2210. 

  2210.     if (num_ids == 0) {
    2211. 

  2211.         goto out;
    2212. 

  2212.     }
    2213. 

  2213.     
    2214. 

  2214.     // find source peer
    2215. 

  2215.     struct peer_data *src_peer = find_peer_by_id(from_id);
    2216. 

  2216.     if (!src_peer) {
    2217. 

  2217.         peer_log(peer, BLOG_NOTICE, "receive: source peer %d not known", (int)from_id);
    2218. 

  2218.         goto out;
    2219. 

  2219.     }
    2220. 

  2220.     
    2221. 

  2221.     // find destination
    2222. 

  2222.     peerid_t id = ltoh16(ids[0].id);
    2223. 

  2223.     if (id == my_id) {
    2224. 

  2224.         // frame is for us
    2225. 

  2225.         
    2226. 

  2226.         // let the frame decider analyze the frame
    2227. 

  2227.         FrameDeciderPeer_Analyze(&peer->decider_peer, data, data_len);
    2228. 

  2228.         
    2229. 

  2229.         local = 1;
    2230. 

  2230.     } else {
    2231. 

  2231.         // frame is for someone else
    2232. 

  2232.         
    2233. 

  2233.         // make sure the client is allowed to relay though us
    2234. 

  2234.         if (!(peer->flags & SCID_NEWCLIENT_FLAG_RELAY_CLIENT)) {
    2235. 

  2235.             peer_log(peer, BLOG_NOTICE, "relaying not allowed");
    2236. 

  2236.             goto out;
    2237. 

  2237.         }
    2238. 

  2238.         
    2239. 

  2239.         // lookup destination peer
    2240. 

  2240.         struct peer_data *dest_peer = find_peer_by_id(id);
    2241. 

  2241.         if (!dest_peer) {
    2242. 

  2242.             peer_log(peer, BLOG_NOTICE, "relay destination peer not known");
    2243. 

  2243.             goto out;
    2244. 

  2244.         }
    2245. 

  2245.         
    2246. 

  2246.         // check if the destination peer has link
    2247. 

  2247.         if (!dest_peer->have_link) {
    2248. 

  2248.             peer_log(peer, BLOG_NOTICE, "relay destination peer has no link");
    2249. 

  2249.             goto out;
    2250. 

  2250.         }
    2251. 

  2251.         
    2252. 

  2252.         relay = dest_peer;
    2253. 

  2253.     }
    2254. 

  2254.     
    2255. 

  2255. out:
    2256. 

  2256.     // accept packet
    2257. 

  2257.     if (!local) {
    2258. 

  2258.         PacketPassInterface_Done(&peer->recv_ppi);
    2259. 

  2259.     }
    2260. 

  2260.     
    2261. 

  2261.     // relay frame
    2262. 

  2262.     if (relay) {
    2263. 

  2263.         peer_submit_relayed_frame(relay, src_peer, data, data_len);
    2264. 

  2264.     }
    2265. 

  2265.     
    2266. 

  2266.     // submit to device
    2267. 

  2267.     if (local) {
    2268. 

  2268.         PacketPassInterface_Sender_Send(peer->local_recv_if, data, data_len);
    2269. 

  2269.     }
    2270. 

  2270.     
    2271. 

  2271.     // inform DataProto of received packet
    2272. 

  2272.     if (dp_good) {
    2273. 

  2273.         DataProtoDest_Received(&peer->send_dp, !!(flags & DATAPROTO_FLAGS_RECEIVING_KEEPALIVES));
    2274. 

  2274.     }
    2275. 

  2275. }
    2276. 

  2276. 

  2277. void local_recv_qflow_output_handler_done (struct peer_data *peer)
    2278. 

  2278. {
    2279. 

  2279.     PacketPassInterface_Done(&peer->recv_ppi);
    2280. 

  2280. }
    2281. 

  2281. 

  2282. int peer_start_binding (struct peer_data *peer)
    2283. 

  2283. {
    2284. 

  2284.     peer->binding = 1;
    2285. 

  2285.     peer->binding_addrpos = 0;
    2286. 

  2286.     
    2287. 

  2287.     return peer_bind(peer);
    2288. 

  2288. }
    2289. 

  2289. 

  2290. int peer_bind (struct peer_data *peer)
    2291. 

  2291. {
    2292. 

  2292.     ASSERT(peer->binding)
    2293. 

  2293.     ASSERT(peer->binding_addrpos >= 0)
    2294. 

  2294.     ASSERT(peer->binding_addrpos <= num_bind_addrs)
    2295. 

  2295.     
    2296. 

  2296.     int res;
    2297. 

  2297.     
    2298. 

  2298.     while (peer->binding_addrpos < num_bind_addrs) {
    2299. 

  2299.         // if there are no external addresses, skip bind address
    2300. 

  2300.         if (bind_addrs[peer->binding_addrpos].num_ext_addrs == 0) {
    2301. 

  2301.             peer->binding_addrpos++;
    2302. 

  2302.             continue;
    2303. 

  2303.         }
    2304. 

  2304.         
    2305. 

  2305.         // try to bind
    2306. 

  2306.         int cont;
    2307. 

  2307.         if (peer_bind_one_address(peer, peer->binding_addrpos, &cont) < 0) {
    2308. 

  2308.             return -1;
    2309. 

  2309.         }
    2310. 

  2310.         
    2311. 

  2311.         // increment address counter
    2312. 

  2312.         peer->binding_addrpos++;
    2313. 

  2313.         
    2314. 

  2314.         if (!cont) {
    2315. 

  2315.             return 0;
    2316. 

  2316.         }
    2317. 

  2317.     }
    2318. 

  2318.     
    2319. 

  2319.     peer_log(peer, BLOG_NOTICE, "no more addresses to bind to");
    2320. 

  2320.     
    2321. 

  2321.     // no longer binding
    2322. 

  2322.     peer->binding = 0;
    2323. 

  2323.     
    2324. 

  2324.     // tell the peer we failed to bind
    2325. 

  2325.     if (peer_send_simple(peer, MSGID_CANNOTBIND) < 0) {
    2326. 

  2326.         return -1;
    2327. 

  2327.     }
    2328. 

  2328.     
    2329. 

  2329.     // if we are the slave, setup relaying
    2330. 

  2330.     if (!peer_am_master(peer)) {
    2331. 

  2331.         if (!peer->is_relay) {
    2332. 

  2332.             peer_need_relay(peer);
    2333. 

  2333.         }
    2334. 

  2334.     }
    2335. 

  2335.     
    2336. 

  2336.     return 0;
    2337. 

  2337. }
    2338. 

  2338. 

  2339. int peer_bind_one_address (struct peer_data *peer, int addr_index, int *cont)
    2340. 

  2340. {
    2341. 

  2341.     ASSERT(addr_index >= 0)
    2342. 

  2342.     ASSERT(addr_index < num_bind_addrs)
    2343. 

  2343.     ASSERT(bind_addrs[addr_index].num_ext_addrs > 0)
    2344. 

  2344.     
    2345. 

  2345.     // get a fresh link
    2346. 

  2346.     if (!peer_new_link(peer)) {
    2347. 

  2347.         peer_log(peer, BLOG_ERROR, "cannot get link");
    2348. 

  2348.         *cont = 0;
    2349. 

  2349.         return peer_reset(peer);
    2350. 

  2350.     }
    2351. 

  2351.     
    2352. 

  2352.     if (options.transport_mode == TRANSPORT_MODE_UDP) {
    2353. 

  2353.         // get addr
    2354. 

  2354.         POINTER(addr, bind_addrs[addr_index]);
    2355. 

  2355.         
    2356. 

  2356.         // try binding to all ports in the range
    2357. 

  2357.         int port_add;
    2358. 

  2358.         for (port_add = 0; port_add < addr->num_ports; port_add++) {
    2359. 

  2359.             BAddr tryaddr = addr->addr;
    2360. 

  2360.             BAddr_SetPort(&tryaddr, hton16(ntoh16(BAddr_GetPort(&tryaddr)) + port_add));
    2361. 

  2361.             if (DatagramPeerIO_Bind(&peer->pio.udp.pio, tryaddr)) {
    2362. 

  2362.                 break;
    2363. 

  2363.             }
    2364. 

  2364.         }
    2365. 

  2365.         if (port_add == addr->num_ports) {
    2366. 

  2366.             BLog(BLOG_NOTICE, "failed to bind to any port");
    2367. 

  2367.             *cont = 1;
    2368. 

  2368.             return 0;
    2369. 

  2369.         }
    2370. 

  2370.         
    2371. 

  2371.         uint8_t key[SPPROTO_HAVE_ENCRYPTION(sp_params) ? BEncryption_cipher_key_size(sp_params.encryption_mode) : 0];
    2372. 

  2372.         
    2373. 

  2373.         // generate and set encryption key
    2374. 

  2374.         if (SPPROTO_HAVE_ENCRYPTION(sp_params)) {
    2375. 

  2375.             BRandom_randomize(key, sizeof(key));
    2376. 

  2376.             DatagramPeerIO_SetEncryptionKey(&peer->pio.udp.pio, key);
    2377. 

  2377.         }
    2378. 

  2378.         
    2379. 

  2379.         // schedule sending OTP seed
    2380. 

  2380.         if (SPPROTO_HAVE_OTP(sp_params)) {
    2381. 

  2381.             BPending_Set(&peer->job_send_seed_after_binding);
    2382. 

  2382.         }
    2383. 

  2383.         
    2384. 

  2384.         // send connectinfo
    2385. 

  2385.         if (peer_send_conectinfo(peer, addr_index, port_add, key, 0) < 0) {
    2386. 

  2386.             return -1;
    2387. 

  2387.         }
    2388. 

  2388.     } else {
    2389. 

  2389.         // order StreamPeerIO to listen
    2390. 

  2390.         uint64_t pass;
    2391. 

  2391.         StreamPeerIO_Listen(&peer->pio.tcp.pio, &listeners[addr_index], &pass);
    2392. 

  2392.         
    2393. 

  2393.         // send connectinfo
    2394. 

  2394.         if (peer_send_conectinfo(peer, addr_index, 0, NULL, pass) < 0) {
    2395. 

  2395.             return -1;
    2396. 

  2396.         }
    2397. 

  2397.     }
    2398. 

  2398.     
    2399. 

  2399.     peer_log(peer, BLOG_NOTICE, "bound to address number %d", addr_index);
    2400. 

  2400.     
    2401. 

  2401.     *cont = 0;
    2402. 

  2402.     return 0;
    2403. 

  2403. }
    2404. 

  2404. 

  2405. int peer_connect (struct peer_data *peer, BAddr addr, uint8_t *encryption_key, uint64_t password)
    2406. 

  2406. {
    2407. 

  2407.     ASSERT(!BAddr_IsInvalid(&addr))
    2408. 

  2408.     
    2409. 

  2409.     // get a fresh link
    2410. 

  2410.     if (!peer_new_link(peer)) {
    2411. 

  2411.         peer_log(peer, BLOG_ERROR, "cannot get link");
    2412. 

  2412.         return peer_reset(peer);
    2413. 

  2413.     }
    2414. 

  2414.     
    2415. 

  2415.     if (options.transport_mode == TRANSPORT_MODE_UDP) {
    2416. 

  2416.         // order DatagramPeerIO to connect
    2417. 

  2417.         if (!DatagramPeerIO_Connect(&peer->pio.udp.pio, addr)) {
    2418. 

  2418.             peer_log(peer, BLOG_NOTICE, "DatagramPeerIO_Connect failed");
    2419. 

  2419.             return peer_reset(peer);
    2420. 

  2420.         }
    2421. 

  2421.         
    2422. 

  2422.         // set encryption key
    2423. 

  2423.         if (SPPROTO_HAVE_ENCRYPTION(sp_params)) {
    2424. 

  2424.             DatagramPeerIO_SetEncryptionKey(&peer->pio.udp.pio, encryption_key);
    2425. 

  2425.         }
    2426. 

  2426.         
    2427. 

  2427.         // generate and send a send seed
    2428. 

  2428.         if (SPPROTO_HAVE_OTP(sp_params)) {
    2429. 

  2429.             if (peer_udp_send_seed(peer) < 0) {
    2430. 

  2430.                 return -1;
    2431. 

  2431.             }
    2432. 

  2432.         }
    2433. 

  2433.     } else {
    2434. 

  2434.         // order StreamPeerIO to connect
    2435. 

  2435.         if (!StreamPeerIO_Connect(
    2436. 

  2436.             &peer->pio.tcp.pio, addr, password,
    2437. 

  2437.             (options.peer_ssl ? client_cert : NULL),
    2438. 

  2438.             (options.peer_ssl ? client_key : NULL)
    2439. 

  2439.         )) {
    2440. 

  2440.             peer_log(peer, BLOG_NOTICE, "StreamPeerIO_Connect failed");
    2441. 

  2441.             return peer_reset(peer);
    2442. 

  2442.         }
    2443. 

  2443.     }
    2444. 

  2444.     
    2445. 

  2445.     return 0;
    2446. 

  2446. }
    2447. 

  2447. 

  2448. int peer_send_simple (struct peer_data *peer, int msgid)
    2449. 

  2449. {
    2450. 

  2450.     if (server_start_msg(NULL, peer->id, msgid, 0) < 0) {
    2451. 

  2451.         return -1;
    2452. 

  2452.     }
    2453. 

  2453.     server_end_msg();
    2454. 

  2454.     
    2455. 

  2455.     return 0;
    2456. 

  2456. }
    2457. 

  2457. 

  2458. int peer_send_conectinfo (struct peer_data *peer, int addr_index, int port_adjust, uint8_t *enckey, uint64_t pass)
    2459. 

  2459. {
    2460. 

  2460.     ASSERT(addr_index >= 0)
    2461. 

  2461.     ASSERT(addr_index < num_bind_addrs)
    2462. 

  2462.     ASSERT(bind_addrs[addr_index].num_ext_addrs > 0)
    2463. 

  2463.     
    2464. 

  2464.     // get address
    2465. 

  2465.     POINTER(bind_addr, bind_addrs[addr_index]);
    2466. 

  2466.     
    2467. 

  2467.     // remember encryption key size
    2468. 

  2468.     int key_size;
    2469. 

  2469.     if (options.transport_mode == TRANSPORT_MODE_UDP && SPPROTO_HAVE_ENCRYPTION(sp_params)) {
    2470. 

  2470.         key_size = BEncryption_cipher_key_size(sp_params.encryption_mode);
    2471. 

  2471.     }
    2472. 

  2472.     
    2473. 

  2473.     // calculate message length ..
    2474. 

  2474.     int msg_len = 0;
    2475. 

  2475.     
    2476. 

  2476.     // addresses
    2477. 

  2477.     for (int i = 0; i < bind_addr->num_ext_addrs; i++) {
    2478. 

  2478.         int addrmsg_len =
    2479. 

  2479.             msg_youconnect_addr_SIZEname(strlen(bind_addr->ext_addrs[i].scope)) +
    2480. 

  2480.             msg_youconnect_addr_SIZEaddr(addr_size(bind_addr->ext_addrs[i].addr));
    2481. 

  2481.         msg_len += msg_youconnect_SIZEaddr(addrmsg_len);
    2482. 

  2482.     }
    2483. 

  2483.     
    2484. 

  2484.     // encryption key
    2485. 

  2485.     if (options.transport_mode == TRANSPORT_MODE_UDP && SPPROTO_HAVE_ENCRYPTION(sp_params)) {
    2486. 

  2486.         msg_len += msg_youconnect_SIZEkey(key_size);
    2487. 

  2487.     }
    2488. 

  2488.     
    2489. 

  2489.     // password
    2490. 

  2490.     if (options.transport_mode == TRANSPORT_MODE_TCP) {
    2491. 

  2491.         msg_len += msg_youconnect_SIZEpassword;
    2492. 

  2492.     }
    2493. 

  2493.     
    2494. 

  2494.     // check if it's too big (because of the addresses)
    2495. 

  2495.     if (msg_len > MSG_MAX_PAYLOAD) {
    2496. 

  2496.         BLog(BLOG_ERROR, "cannot send too big youconnect message");
    2497. 

  2497.         return 0;
    2498. 

  2498.     }
    2499. 

  2499.         
    2500. 

  2500.     // start message
    2501. 

  2501.     uint8_t *msg;
    2502. 

  2502.     if (server_start_msg((void **)&msg, peer->id, MSGID_YOUCONNECT, msg_len) < 0) {
    2503. 

  2503.         return -1;
    2504. 

  2504.     }
    2505. 

  2505.         
    2506. 

  2506.     // init writer
    2507. 

  2507.     msg_youconnectWriter writer;
    2508. 

  2508.     msg_youconnectWriter_Init(&writer, msg);
    2509. 

  2509.         
    2510. 

  2510.     // write addresses
    2511. 

  2511.     for (int i = 0; i < bind_addr->num_ext_addrs; i++) {
    2512. 

  2512.         int name_len = strlen(bind_addr->ext_addrs[i].scope);
    2513. 

  2513.         int addr_len = addr_size(bind_addr->ext_addrs[i].addr);
    2514. 

  2514.         
    2515. 

  2515.         // get a pointer for writing the address
    2516. 

  2516.         int addrmsg_len =
    2517. 

  2517.             msg_youconnect_addr_SIZEname(name_len) +
    2518. 

  2518.             msg_youconnect_addr_SIZEaddr(addr_len);
    2519. 

  2519.         uint8_t *addrmsg_dst = msg_youconnectWriter_Addaddr(&writer, addrmsg_len);
    2520. 

  2520.         
    2521. 

  2521.         // init address writer
    2522. 

  2522.         msg_youconnect_addrWriter awriter;
    2523. 

  2523.         msg_youconnect_addrWriter_Init(&awriter, addrmsg_dst);
    2524. 

  2524.         
    2525. 

  2525.         // write scope
    2526. 

  2526.         uint8_t *name_dst = msg_youconnect_addrWriter_Addname(&awriter, name_len);
    2527. 

  2527.         memcpy(name_dst, bind_addr->ext_addrs[i].scope, name_len);
    2528. 

  2528.         
    2529. 

  2529.         // write address with adjusted port
    2530. 

  2530.         BAddr addr = bind_addr->ext_addrs[i].addr;
    2531. 

  2531.         BAddr_SetPort(&addr, hton16(ntoh16(BAddr_GetPort(&addr)) + port_adjust));
    2532. 

  2532.         uint8_t *addr_dst = msg_youconnect_addrWriter_Addaddr(&awriter, addr_len);
    2533. 

  2533.         addr_write(addr_dst, addr);
    2534. 

  2534.         
    2535. 

  2535.         // finish address writer
    2536. 

  2536.         msg_youconnect_addrWriter_Finish(&awriter);
    2537. 

  2537.     }
    2538. 

  2538.     
    2539. 

  2539.     // write encryption key
    2540. 

  2540.     if (options.transport_mode == TRANSPORT_MODE_UDP && SPPROTO_HAVE_ENCRYPTION(sp_params)) {
    2541. 

  2541.         uint8_t *key_dst = msg_youconnectWriter_Addkey(&writer, key_size);
    2542. 

  2542.         memcpy(key_dst, enckey, key_size);
    2543. 

  2543.     }
    2544. 

  2544.     
    2545. 

  2545.     // write password
    2546. 

  2546.     if (options.transport_mode == TRANSPORT_MODE_TCP) {
    2547. 

  2547.         msg_youconnectWriter_Addpassword(&writer, pass);
    2548. 

  2548.     }
    2549. 

  2549.     
    2550. 

  2550.     // finish writer
    2551. 

  2551.     msg_youconnectWriter_Finish(&writer);
    2552. 

  2552.     
    2553. 

  2553.     // end message
    2554. 

  2554.     server_end_msg();
    2555. 

  2555.     
    2556. 

  2556.     return 0;
    2557. 

  2557. }
    2558. 

  2558. 

  2559. int peer_udp_send_seed (struct peer_data *peer)
    2560. 

  2560. {
    2561. 

  2561.     ASSERT(options.transport_mode == TRANSPORT_MODE_UDP)
    2562. 

  2562.     ASSERT(SPPROTO_HAVE_OTP(sp_params))
    2563. 

  2563.     ASSERT(peer->have_link)
    2564. 

  2564.     ASSERT(!peer->pio.udp.sendseed_sent)
    2565. 

  2565.     
    2566. 

  2566.     peer_log(peer, BLOG_DEBUG, "sending OTP send seed");
    2567. 

  2567.     
    2568. 

  2568.     int key_len = BEncryption_cipher_key_size(sp_params.otp_mode);
    2569. 

  2569.     int iv_len = BEncryption_cipher_block_size(sp_params.otp_mode);
    2570. 

  2570.     
    2571. 

  2571.     // generate seed
    2572. 

  2572.     peer->pio.udp.sendseed_sent_id = peer->pio.udp.sendseed_nextid;
    2573. 

  2573.     BRandom_randomize(peer->pio.udp.sendseed_sent_key, key_len);
    2574. 

  2574.     BRandom_randomize(peer->pio.udp.sendseed_sent_iv, iv_len);
    2575. 

  2575.     
    2576. 

  2576.     // set as sent, increment next seed ID
    2577. 

  2577.     peer->pio.udp.sendseed_sent = 1;
    2578. 

  2578.     peer->pio.udp.sendseed_nextid++;
    2579. 

  2579.     
    2580. 

  2580.     // send seed to the peer
    2581. 

  2581.     int msg_len = msg_seed_SIZEseed_id + msg_seed_SIZEkey(key_len) + msg_seed_SIZEiv(iv_len);
    2582. 

  2582.     uint8_t *msg;
    2583. 

  2583.     if (server_start_msg((void **)&msg, peer->id, MSGID_SEED, msg_len) < 0) {
    2584. 

  2584.         return -1;
    2585. 

  2585.     }
    2586. 

  2586.     msg_seedWriter writer;
    2587. 

  2587.     msg_seedWriter_Init(&writer, msg);
    2588. 

  2588.     msg_seedWriter_Addseed_id(&writer, peer->pio.udp.sendseed_sent_id);
    2589. 

  2589.     uint8_t *key_dst = msg_seedWriter_Addkey(&writer, key_len);
    2590. 

  2590.     memcpy(key_dst, peer->pio.udp.sendseed_sent_key, key_len);
    2591. 

  2591.     uint8_t *iv_dst = msg_seedWriter_Addiv(&writer, iv_len);
    2592. 

  2592.     memcpy(iv_dst, peer->pio.udp.sendseed_sent_iv, iv_len);
    2593. 

  2593.     msg_seedWriter_Finish(&writer);
    2594. 

  2594.     server_end_msg();
    2595. 

  2595.     
    2596. 

  2596.     return 0;
    2597. 

  2597. }
    2598. 

  2598. 

  2599. int peer_send_confirmseed (struct peer_data *peer, uint16_t seed_id)
    2600. 

  2600. {
    2601. 

  2601.     ASSERT(options.transport_mode == TRANSPORT_MODE_UDP)
    2602. 

  2602.     ASSERT(SPPROTO_HAVE_OTP(sp_params))
    2603. 

  2603.     
    2604. 

  2604.     // send confirmation
    2605. 

  2605.     int msg_len = msg_confirmseed_SIZEseed_id;
    2606. 

  2606.     uint8_t *msg;
    2607. 

  2607.     if (server_start_msg((void **)&msg, peer->id, MSGID_CONFIRMSEED, msg_len) < 0) {
    2608. 

  2608.         return -1;
    2609. 

  2609.     }
    2610. 

  2610.     msg_confirmseedWriter writer;
    2611. 

  2611.     msg_confirmseedWriter_Init(&writer, msg);
    2612. 

  2612.     msg_confirmseedWriter_Addseed_id(&writer, seed_id);
    2613. 

  2613.     msg_confirmseedWriter_Finish(&writer);
    2614. 

  2614.     server_end_msg();
    2615. 

  2615.     
    2616. 

  2616.     return 0;
    2617. 

  2617. }
    2618. 

  2618. 

  2619. void peer_submit_relayed_frame (struct peer_data *peer, struct peer_data *source_peer, uint8_t *frame, int frame_len)
    2620. 

  2620. {
    2621. 

  2621.     ASSERT(peer->have_link)
    2622. 

  2622.     ASSERT(frame_len >= 0)
    2623. 

  2623.     ASSERT(frame_len <= device.mtu)
    2624. 

  2624.     
    2625. 

  2625.     DataProtoDest_SubmitRelayFrame(&peer->send_dp, &source_peer->relay_source, frame, frame_len, options.send_buffer_relay_size);
    2626. 

  2626. }
    2627. 

  2627. 

  2628. void peer_dataproto_handler (struct peer_data *peer, int up)
    2629. 

  2629. {
    2630. 

  2630.     ASSERT(peer->have_link)
    2631. 

  2631.     
    2632. 

  2632.     // peer_recv_handler_send relies on this not bringing everything down
    2633. 

  2633.     
    2634. 

  2634.     if (up) {
    2635. 

  2635.         peer_log(peer, BLOG_INFO, "up");
    2636. 

  2636.         
    2637. 

  2637.         // if it can be a relay provided, enable it
    2638. 

  2638.         if ((peer->flags&SCID_NEWCLIENT_FLAG_RELAY_SERVER) && !peer->is_relay) {
    2639. 

  2639.             peer_enable_relay_provider(peer);
    2640. 

  2640.         }
    2641. 

  2641.     } else {
    2642. 

  2642.         peer_log(peer, BLOG_INFO, "down");
    2643. 

  2643.         
    2644. 

  2644.         // if it is a relay provider, disable it
    2645. 

  2645.         if (peer->is_relay) {
    2646. 

  2646.             peer_disable_relay_provider(peer);
    2647. 

  2647.         }
    2648. 

  2648.     }
    2649. 

  2649. }
    2650. 

  2650. 

  2651. struct peer_data * find_peer_by_id (peerid_t id)
    2652. 

  2652. {
    2653. 

  2653.     HashTableNode *node;
    2654. 

  2654.     if (!HashTable_Lookup(&peers_by_id, &id, &node)) {
    2655. 

  2655.         return NULL;
    2656. 

  2656.     }
    2657. 

  2657.     struct peer_data *peer = UPPER_OBJECT(node, struct peer_data, table_node);
    2658. 

  2658.     
    2659. 

  2659.     return peer;
    2660. 

  2660. }
    2661. 

  2661. 

  2662. int peers_by_id_key_comparator (peerid_t *id1, peerid_t *id2)
    2663. 

  2663. {
    2664. 

  2664.     return (*id1 == *id2);
    2665. 

  2665. }
    2666. 

  2666. 

  2667. int peers_by_id_hash_function (peerid_t *id, int modulo)
    2668. 

  2668. {
    2669. 

  2669.     return (jenkins_lookup2_hash((uint8_t *)id, sizeof(*id), peers_by_id_initval) % modulo);
    2670. 

  2670. }
    2671. 

  2671. 

  2672. void device_error_handler (void *unused)
    2673. 

  2673. {
    2674. 

  2674.     BLog(BLOG_ERROR, "device error");
    2675. 

  2675.     
    2676. 

  2676.     terminate();
    2677. 

  2677.     return;
    2678. 

  2678. }
    2679. 

  2679. 

  2680. void device_input_handler_send (void *unused, uint8_t *data, int data_len)
    2681. 

  2681. {
    2682. 

  2682.     ASSERT(data_len >= 0)
    2683. 

  2683.     ASSERT(data_len <= device.mtu)
    2684. 

  2684.     
    2685. 

  2685.     // accept packet
    2686. 

  2686.     PacketPassInterface_Done(&device.input_interface);
    2687. 

  2687.     
    2688. 

  2688.     // give frame to decider
    2689. 

  2689.     FrameDecider_AnalyzeAndDecide(&frame_decider, data, data_len);
    2690. 

  2690.     
    2691. 

  2691.     // forward frame to peers
    2692. 

  2692.     FrameDeciderPeer *decider_peer;
    2693. 

  2693.     while (decider_peer = FrameDecider_NextDestination(&frame_decider)) {
    2694. 

  2694.         struct peer_data *peer = UPPER_OBJECT(decider_peer, struct peer_data, decider_peer);
    2695. 

  2695.         submit_frame_to_peer(peer, data, data_len);
    2696. 

  2696.     }
    2697. 

  2697. }
    2698. 

  2698. 

  2699. void submit_frame_to_peer (struct peer_data *peer, uint8_t *data, int data_len)
    2700. 

  2700. {
    2701. 

  2701.     ASSERT(data_len >= 0)
    2702. 

  2702.     ASSERT(data_len <= device.mtu)
    2703. 

  2703.     
    2704. 

  2704.     DataProtoLocalSource_SubmitFrame(&peer->local_dpflow, data, data_len);
    2705. 

  2705. }
    2706. 

  2706. 

  2707. void assign_relays (void)
    2708. 

  2708. {
    2709. 

  2709.     LinkedList2Node *list_node;
    2710. 

  2710.     while (list_node = LinkedList2_GetFirst(&waiting_relay_peers)) {
    2711. 

  2711.         struct peer_data *peer = UPPER_OBJECT(list_node, struct peer_data, waiting_relay_list_node);
    2712. 

  2712.         ASSERT(peer->waiting_relay)
    2713. 

  2713.         
    2714. 

  2714.         ASSERT(!peer->have_relaying)
    2715. 

  2715.         ASSERT(!peer->have_link)
    2716. 

  2716.         
    2717. 

  2717.         // get a relay
    2718. 

  2718.         LinkedList2Node *list_node2 = LinkedList2_GetFirst(&relays);
    2719. 

  2719.         if (!list_node2) {
    2720. 

  2720.             BLog(BLOG_NOTICE, "no relays");
    2721. 

  2721.             return;
    2722. 

  2722.         }
    2723. 

  2723.         struct peer_data *relay = UPPER_OBJECT(list_node2, struct peer_data, relay_list_node);
    2724. 

  2724.         ASSERT(relay->is_relay)
    2725. 

  2725.         
    2726. 

  2726.         // no longer waiting for relay
    2727. 

  2727.         peer_unregister_need_relay(peer);
    2728. 

  2728.         
    2729. 

  2729.         // install the relay
    2730. 

  2730.         peer_install_relay(peer, relay);
    2731. 

  2731.     }
    2732. 

  2732. }
    2733. 

  2733. 

  2734. char * address_scope_known (uint8_t *name, int name_len)
    2735. 

  2735. {
    2736. 

  2736.     ASSERT(name_len >= 0)
    2737. 

  2737.     
    2738. 

  2738.     for (int i = 0; i < options.num_scopes; i++) {
    2739. 

  2739.         if (name_len == strlen(options.scopes[i]) && !memcmp(name, options.scopes[i], name_len)) {
    2740. 

  2740.             return options.scopes[i];
    2741. 

  2741.         }
    2742. 

  2742.     }
    2743. 

  2743.     
    2744. 

  2744.     return NULL;
    2745. 

  2745. }
    2746. 

  2746. 

  2747. void server_handler_error (void *user)
    2748. 

  2748. {
    2749. 

  2749.     BLog(BLOG_ERROR, "server connection failed, exiting");
    2750. 

  2750.     
    2751. 

  2751.     terminate();
    2752. 

  2752.     return;
    2753. 

  2753. }
    2754. 

  2754. 

  2755. void server_handler_ready (void *user, peerid_t param_my_id, uint32_t ext_ip)
    2756. 

  2756. {
    2757. 

  2757.     ASSERT(!server_ready)
    2758. 

  2758.     
    2759. 

  2759.     // remember our ID
    2760. 

  2760.     my_id = param_my_id;
    2761. 

  2761.     
    2762. 

  2762.     // store server reported addresses
    2763. 

  2763.     for (int i = 0; i < num_bind_addrs; i++) {
    2764. 

  2764.         POINTER(addr, bind_addrs[i]);
    2765. 

  2765.         for (int j = 0; j < addr->num_ext_addrs; j++) {
    2766. 

  2766.             POINTER(eaddr, addr->ext_addrs[j]);
    2767. 

  2767.             if (eaddr->server_reported_port >= 0) {
    2768. 

  2768.                 if (ext_ip == 0) {
    2769. 

  2769.                     BLog(BLOG_ERROR, "server did not provide our address");
    2770. 

  2770.                     terminate();
    2771. 

  2771.                     return;
    2772. 

  2772.                 }
    2773. 

  2773.                 BAddr_InitIPv4(&eaddr->addr, ext_ip, hton16(eaddr->server_reported_port));
    2774. 

  2774.                 char str[BADDR_MAX_PRINT_LEN];
    2775. 

  2775.                 BAddr_Print(&eaddr->addr, str);
    2776. 

  2776.                 BLog(BLOG_INFO, "external address (%d,%d): server reported %s", i, j, str);
    2777. 

  2777.             }
    2778. 

  2778.         }
    2779. 

  2779.     }
    2780. 

  2780.     
    2781. 

  2781.     // set server ready
    2782. 

  2782.     server_ready = 1;
    2783. 

  2783.     
    2784. 

  2784.     BLog(BLOG_INFO, "server: ready, my ID is %d", (int)my_id);
    2785. 

  2785. }
    2786. 

  2786. 

  2787. void server_handler_newclient (void *user, peerid_t peer_id, int flags, const uint8_t *cert, int cert_len)
    2788. 

  2788. {
    2789. 

  2789.     ASSERT(server_ready)
    2790. 

  2790.     ASSERT(cert_len >= 0)
    2791. 

  2791.     ASSERT(cert_len <= SCID_NEWCLIENT_MAX_CERT_LEN)
    2792. 

  2792.     
    2793. 

  2793.     // check if the peer already exists
    2794. 

  2794.     if (find_peer_by_id(peer_id)) {
    2795. 

  2795.         BLog(BLOG_WARNING, "server: newclient: peer already known");
    2796. 

  2796.         return;
    2797. 

  2797.     }
    2798. 

  2798.     
    2799. 

  2799.     // make sure it's not the same ID as us
    2800. 

  2800.     if (peer_id == my_id) {
    2801. 

  2801.         BLog(BLOG_WARNING, "server: newclient: peer has our ID");
    2802. 

  2802.         return;
    2803. 

  2803.     }
    2804. 

  2804.     
    2805. 

  2805.     // check if there is spece for the peer
    2806. 

  2806.     if (num_peers >= MAX_PEERS) {
    2807. 

  2807.         BLog(BLOG_WARNING, "server: newclient: no space for new peer (maximum number reached)");
    2808. 

  2808.         return;
    2809. 

  2809.     }
    2810. 

  2810.     
    2811. 

  2811.     if (!options.ssl && cert_len > 0) {
    2812. 

  2812.         BLog(BLOG_WARNING, "server: newclient: certificate supplied, but not using TLS");
    2813. 

  2813.         return;
    2814. 

  2814.     }
    2815. 

  2815.     
    2816. 

  2816.     peer_add(peer_id, flags, cert, cert_len);
    2817. 

  2817.     return;
    2818. 

  2818. }
    2819. 

  2819. 

  2820. void server_handler_endclient (void *user, peerid_t peer_id)
    2821. 

  2821. {
    2822. 

  2822.     ASSERT(server_ready)
    2823. 

  2823.     
    2824. 

  2824.     // find peer
    2825. 

  2825.     struct peer_data *peer = find_peer_by_id(peer_id);
    2826. 

  2826.     if (!peer) {
    2827. 

  2827.         BLog(BLOG_WARNING, "server: endclient: peer %d not known", (int)peer_id);
    2828. 

  2828.         return;
    2829. 

  2829.     }
    2830. 

  2830.     
    2831. 

  2831.     // remove peer
    2832. 

  2832.     peer_remove(peer);
    2833. 

  2833. }
    2834. 

  2834. 

  2835. void server_handler_message (void *user, peerid_t peer_id, uint8_t *data, int data_len)
    2836. 

  2836. {
    2837. 

  2837.     ASSERT(server_ready)
    2838. 

  2838.     ASSERT(data_len >= 0)
    2839. 

  2839.     ASSERT(data_len <= SC_MAX_MSGLEN)
    2840. 

  2840.     
    2841. 

  2841.     // find peer
    2842. 

  2842.     struct peer_data *peer = find_peer_by_id(peer_id);
    2843. 

  2843.     if (!peer) {
    2844. 

  2844.         BLog(BLOG_WARNING, "server: message: peer not known");
    2845. 

  2845.         return;
    2846. 

  2846.     }
    2847. 

  2847.     
    2848. 

  2848.     // process peer message
    2849. 

  2849.     peer_msg(peer, data, data_len);
    2850. 

  2850.     return;
    2851. 

  2851. }
    2852. 

  2852. 

  2853. void peer_job_send_seed_after_binding (struct peer_data *peer)
    2854. 

  2854. {
    2855. 

  2855.     ASSERT(options.transport_mode == TRANSPORT_MODE_UDP)
    2856. 

  2856.     ASSERT(SPPROTO_HAVE_OTP(sp_params))
    2857. 

  2857.     ASSERT(peer->have_link)
    2858. 

  2858.     ASSERT(!peer->pio.udp.sendseed_sent)
    2859. 

  2859.     
    2860. 

  2860.     peer_udp_send_seed(peer);
    2861. 

  2861.     return;
    2862. 

  2862. }
    2863.