Strona główna Odkrywaj Pomoc
Zaloguj się
yosoyhendrix
/
badvpn
1
0
Forkuj 0
Pliki Problemy 0 Oczekujące zmiany 0 Wiki
Drzewo: cb1485dcd3
Gałęzie Tagi
badvpn
/
client
/
client.c

client.c 78 KB
Historia Czysty

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902903904905906907908909910911912913914915916917918919920921922923924925926927928929930931932933934935936937938939940941942943944945946947948949950951952953954955956957958959960961962963964965966967968969970971972973974975976977978979980981982983984985986987988989990991992993994995996997998999100010011002100310041005100610071008100910101011101210131014101510161017101810191020102110221023102410251026102710281029103010311032103310341035103610371038103910401041104210431044104510461047104810491050105110521053105410551056105710581059106010611062106310641065106610671068106910701071107210731074107510761077107810791080108110821083108410851086108710881089109010911092109310941095109610971098109911001101110211031104110511061107110811091110111111121113111411151116111711181119112011211122112311241125112611271128112911301131113211331134113511361137113811391140114111421143114411451146114711481149115011511152115311541155115611571158115911601161116211631164116511661167116811691170117111721173117411751176117711781179118011811182118311841185118611871188118911901191119211931194119511961197119811991200120112021203120412051206120712081209121012111212121312141215121612171218121912201221122212231224122512261227122812291230123112321233123412351236123712381239124012411242124312441245124612471248124912501251125212531254125512561257125812591260126112621263126412651266126712681269127012711272127312741275127612771278127912801281128212831284128512861287128812891290129112921293129412951296129712981299130013011302130313041305130613071308130913101311131213131314131513161317131813191320132113221323132413251326132713281329133013311332133313341335133613371338133913401341134213431344134513461347134813491350135113521353135413551356135713581359136013611362136313641365136613671368136913701371137213731374137513761377137813791380138113821383138413851386138713881389139013911392139313941395139613971398139914001401140214031404140514061407140814091410141114121413141414151416141714181419142014211422142314241425142614271428142914301431143214331434143514361437143814391440144114421443144414451446144714481449145014511452145314541455145614571458145914601461146214631464146514661467146814691470147114721473147414751476147714781479148014811482148314841485148614871488148914901491149214931494149514961497149814991500150115021503150415051506150715081509151015111512151315141515151615171518151915201521152215231524152515261527152815291530153115321533153415351536153715381539154015411542154315441545154615471548154915501551155215531554155515561557155815591560156115621563156415651566156715681569157015711572157315741575157615771578157915801581158215831584158515861587158815891590159115921593159415951596159715981599160016011602160316041605160616071608160916101611161216131614161516161617161816191620162116221623162416251626162716281629163016311632163316341635163616371638163916401641164216431644164516461647164816491650165116521653165416551656165716581659166016611662166316641665166616671668166916701671167216731674167516761677167816791680168116821683168416851686168716881689169016911692169316941695169616971698169917001701170217031704170517061707170817091710171117121713171417151716171717181719172017211722172317241725172617271728172917301731173217331734173517361737173817391740174117421743174417451746174717481749175017511752175317541755175617571758175917601761176217631764176517661767176817691770177117721773177417751776177717781779178017811782178317841785178617871788178917901791179217931794179517961797179817991800180118021803180418051806180718081809181018111812181318141815181618171818181918201821182218231824182518261827182818291830183118321833183418351836183718381839184018411842184318441845184618471848184918501851185218531854185518561857185818591860186118621863186418651866186718681869187018711872187318741875187618771878187918801881188218831884188518861887188818891890189118921893189418951896189718981899190019011902190319041905190619071908190919101911191219131914191519161917191819191920192119221923192419251926192719281929193019311932193319341935193619371938193919401941194219431944194519461947194819491950195119521953195419551956195719581959196019611962196319641965196619671968196919701971197219731974197519761977197819791980198119821983198419851986198719881989199019911992199319941995199619971998199920002001200220032004200520062007200820092010201120122013201420152016201720182019202020212022202320242025202620272028202920302031203220332034203520362037203820392040204120422043204420452046204720482049205020512052205320542055205620572058205920602061206220632064206520662067206820692070207120722073207420752076207720782079208020812082208320842085208620872088208920902091209220932094209520962097209820992100210121022103210421052106210721082109211021112112211321142115211621172118211921202121212221232124212521262127212821292130213121322133213421352136213721382139214021412142214321442145214621472148214921502151215221532154215521562157215821592160216121622163216421652166216721682169217021712172217321742175217621772178217921802181218221832184218521862187218821892190219121922193219421952196219721982199220022012202220322042205220622072208220922102211221222132214221522162217221822192220222122222223222422252226222722282229223022312232223322342235223622372238223922402241224222432244224522462247224822492250225122522253225422552256225722582259226022612262226322642265226622672268226922702271227222732274227522762277227822792280228122822283228422852286228722882289229022912292229322942295229622972298229923002301230223032304230523062307230823092310231123122313231423152316231723182319232023212322232323242325232623272328232923302331233223332334233523362337233823392340234123422343234423452346234723482349235023512352235323542355235623572358235923602361236223632364236523662367236823692370237123722373237423752376237723782379238023812382238323842385238623872388238923902391239223932394239523962397239823992400240124022403240424052406240724082409241024112412241324142415241624172418241924202421242224232424242524262427242824292430243124322433243424352436243724382439244024412442244324442445244624472448244924502451245224532454245524562457245824592460246124622463246424652466246724682469247024712472247324742475247624772478247924802481248224832484248524862487248824892490249124922493249424952496249724982499250025012502250325042505250625072508250925102511251225132514251525162517251825192520252125222523252425252526252725282529253025312532253325342535253625372538253925402541254225432544254525462547254825492550255125522553255425552556255725582559256025612562256325642565256625672568256925702571257225732574257525762577257825792580258125822583258425852586258725882589259025912592259325942595259625972598259926002601 
  1. /**
    2. 

  2.  * @file client.c
    3. 

  3.  * @author Ambroz Bizjak <ambrop7@gmail.com>
    4. 

  4.  * 
    5. 

  5.  * @section LICENSE
    6. 

  6.  * 
    7. 

  7.  * This file is part of BadVPN.
    8. 

  8.  * 
    9. 

  9.  * BadVPN is free software: you can redistribute it and/or modify
    10. 

  10.  * it under the terms of the GNU General Public License version 2
    11. 

  11.  * as published by the Free Software Foundation.
    12. 

  12.  * 
    13. 

  13.  * BadVPN is distributed in the hope that it will be useful,
    14. 

  14.  * but WITHOUT ANY WARRANTY; without even the implied warranty of
    15. 

  15.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    16. 

  16.  * GNU General Public License for more details.
    17. 

  17.  * 
    18. 

  18.  * You should have received a copy of the GNU General Public License along
    19. 

  19.  * with this program; if not, write to the Free Software Foundation, Inc.,
    20. 

  20.  * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
    21. 

  21.  */
    22. 

  22. 

  23. /*
    24. 

  24.  NOTE:
    25. 

  25.  This program works with I/O inside the BPending job environment.
    26. 

  26.  A consequence of this is that in response to an input, we can't
    27. 

  27.  directly do any output, but instead have to schedule outputs.
    28. 

  28.  Because all the buffers used (e.g. server send buffer, data buffers in DataProto)
    29. 

  29.  are based on flow components, it is impossible to directly write two or more
    30. 

  30.  packets to a buffer.
    31. 

  31.  To, for instance, send two packets to a buffer, we have to first schedule
    32. 

  32.  writing the second packet (using BPending), then send the first one.
    33. 

  33. */
    34. 

  34. 

  35. #include <inttypes.h>
    36. 

  36. #include <stdlib.h>
    37. 

  37. #include <string.h>
    38. 

  38. #include <stdio.h>
    39. 

  39. #include <limits.h>
    40. 

  40. 

  41. #include <protocol/msgproto.h>
    42. 

  42. #include <protocol/addr.h>
    43. 

  43. #include <protocol/dataproto.h>
    44. 

  44. #include <misc/version.h>
    45. 

  45. #include <misc/debug.h>
    46. 

  46. #include <misc/offset.h>
    47. 

  47. #include <misc/byteorder.h>
    48. 

  48. #include <misc/nsskey.h>
    49. 

  49. #include <misc/loglevel.h>
    50. 

  50. #include <misc/loggers_string.h>
    51. 

  51. #include <structure/LinkedList2.h>
    52. 

  52. #include <security/BSecurity.h>
    53. 

  53. #include <security/BRandom.h>
    54. 

  54. #include <nspr_support/DummyPRFileDesc.h>
    55. 

  55. #include <nspr_support/BSocketPRFileDesc.h>
    56. 

  56. #include <base/BLog.h>
    57. 

  57. #include <system/BSignal.h>
    58. 

  58. #include <system/BTime.h>
    59. 

  59. #include <base/DebugObject.h>
    60. 

  60. #include <server_connection/ServerConnection.h>
    61. 

  61. #include <tuntap/BTap.h>
    62. 

  62. 

  63. #ifndef BADVPN_USE_WINAPI
    64. 

  64. #include <system/BLog_syslog.h>
    65. 

  65. #endif
    66. 

  66. 

  67. #include <client/client.h>
    68. 

  68. 

  69. #include <generated/blog_channel_client.h>
    70. 

  70. 

  71. #define TRANSPORT_MODE_UDP 0
    72. 

  72. #define TRANSPORT_MODE_TCP 1
    73. 

  73. 

  74. #define LOGGER_STDOUT 1
    75. 

  75. #define LOGGER_SYSLOG 2
    76. 

  76. 

  77. // declares and initializes a pointer x to y
    78. 

  78. #define POINTER(x, y) typeof (y) *(x) = &(y);
    79. 

  79. 

  80. // command-line options
    81. 

  81. struct {
    82. 

  82.     int help;
    83. 

  83.     int version;
    84. 

  84.     int logger;
    85. 

  85.     #ifndef BADVPN_USE_WINAPI
    86. 

  86.     char *logger_syslog_facility;
    87. 

  87.     char *logger_syslog_ident;
    88. 

  88.     #endif
    89. 

  89.     int loglevel;
    90. 

  90.     int loglevels[BLOG_NUM_CHANNELS];
    91. 

  91.     int threads;
    92. 

  92.     int ssl;
    93. 

  93.     char *nssdb;
    94. 

  94.     char *client_cert_name;
    95. 

  95.     char *server_name;
    96. 

  96.     char *server_addr;
    97. 

  97.     int num_bind_addrs;
    98. 

  98.     struct {
    99. 

  99.         char *addr;
    100. 

  100.         int num_ports;
    101. 

  101.         int num_ext_addrs;
    102. 

  102.         struct {
    103. 

  103.             char *addr;
    104. 

  104.             char *scope;
    105. 

  105.         } ext_addrs[MAX_EXT_ADDRS];
    106. 

  106.     } bind_addrs[MAX_BIND_ADDRS];
    107. 

  107.     char *tapdev;
    108. 

  108.     int transport_mode;
    109. 

  109.     int encryption_mode;
    110. 

  110.     int hash_mode;
    111. 

  111.     int otp_mode;
    112. 

  112.     int otp_num;
    113. 

  113.     int otp_num_warn;
    114. 

  114.     int fragmentation_latency;
    115. 

  115.     int peer_ssl;
    116. 

  116.     char *scopes[MAX_SCOPES];
    117. 

  117.     int num_scopes;
    118. 

  118.     int send_buffer_size;
    119. 

  119.     int send_buffer_relay_size;
    120. 

  120.     int max_macs;
    121. 

  121.     int max_groups;
    122. 

  122.     int igmp_group_membership_interval;
    123. 

  123.     int igmp_last_member_query_time;
    124. 

  124. } options;
    125. 

  125. 

  126. // bind addresses
    127. 

  127. int num_bind_addrs;
    128. 

  128. struct {
    129. 

  129.     BAddr addr;
    130. 

  130.     int num_ports;
    131. 

  131.     int num_ext_addrs;
    132. 

  132.     struct {
    133. 

  133.         int server_reported_port;
    134. 

  134.         BAddr addr; // if server_reported_port>=0, defined only after hello received
    135. 

  135.         char scope[64];
    136. 

  136.     } ext_addrs[MAX_EXT_ADDRS];
    137. 

  137. } bind_addrs[MAX_BIND_ADDRS];
    138. 

  138. 

  139. // TCP listeners
    140. 

  140. PasswordListener listeners[MAX_BIND_ADDRS];
    141. 

  141. 

  142. // SPProto parameters (UDP only)
    143. 

  143. struct spproto_security_params sp_params;
    144. 

  144. 

  145. // server address we connect to
    146. 

  146. BAddr server_addr;
    147. 

  147. 

  148. // server name to use for SSL
    149. 

  149. char server_name[256];
    150. 

  150. 

  151. // reactor
    152. 

  152. BReactor ss;
    153. 

  153. 

  154. // thread work dispatcher
    155. 

  155. BThreadWorkDispatcher twd;
    156. 

  156. 

  157. // client certificate if using SSL
    158. 

  158. CERTCertificate *client_cert;
    159. 

  159. 

  160. // client private key if using SSL
    161. 

  161. SECKEYPrivateKey *client_key;
    162. 

  162. 

  163. // device
    164. 

  164. BTap device;
    165. 

  165. int device_mtu;
    166. 

  166. 

  167. // DataProtoSource for device input (reading)
    168. 

  168. DataProtoSource device_input_dpd;
    169. 

  169. 

  170. // DPReceiveDevice for device output (writing)
    171. 

  171. DPReceiveDevice device_output_dprd;
    172. 

  172. 

  173. // data communication MTU
    174. 

  174. int data_mtu;
    175. 

  175. 

  176. // peers list
    177. 

  177. LinkedList2 peers;
    178. 

  178. int num_peers;
    179. 

  179. 

  180. // frame decider
    181. 

  181. FrameDecider frame_decider;
    182. 

  182. 

  183. // peers that can be user as relays
    184. 

  184. LinkedList2 relays;
    185. 

  185. 

  186. // peers than need a relay
    187. 

  187. LinkedList2 waiting_relay_peers;
    188. 

  188. 

  189. // server connection
    190. 

  190. ServerConnection server;
    191. 

  191. 

  192. // my ID, defined only after server_ready
    193. 

  193. peerid_t my_id;
    194. 

  194. 

  195. // stops event processing, causing the program to exit
    196. 

  196. static void terminate (void);
    197. 

  197. 

  198. // prints program name and version to standard output
    199. 

  199. static void print_help (const char *name);
    200. 

  200. 

  201. // prints program name and version to standard output
    202. 

  202. static void print_version (void);
    203. 

  203. 

  204. // parses the command line
    205. 

  205. static int parse_arguments (int argc, char *argv[]);
    206. 

  206. 

  207. // processes certain command line options
    208. 

  208. static int process_arguments (void);
    209. 

  209. 

  210. // handler for program termination request
    211. 

  211. static void signal_handler (void *unused);
    212. 

  212. 

  213. // provides a buffer for sending a packet to the server
    214. 

  214. static int server_start_msg (void **data, peerid_t peer_id, int type, int len);
    215. 

  215. 

  216. // submits a written packet to the server
    217. 

  217. static void server_end_msg (void);
    218. 

  218. 

  219. // adds a new peer
    220. 

  220. static void peer_add (peerid_t id, int flags, const uint8_t *cert, int cert_len);
    221. 

  221. 

  222. // removes a peer
    223. 

  223. static void peer_remove (struct peer_data *peer);
    224. 

  224. 

  225. // passes a message to the logger, prepending it info about the peer
    226. 

  226. static void peer_log (struct peer_data *peer, int level, const char *fmt, ...);
    227. 

  227. 

  228. // see if we are the master relative to this peer
    229. 

  229. static int peer_am_master (struct peer_data *peer);
    230. 

  230. 

  231. // initializes the link
    232. 

  232. static int peer_init_link (struct peer_data *peer);
    233. 

  233. 

  234. // frees link resources
    235. 

  235. static void peer_free_link (struct peer_data *peer);
    236. 

  236. 

  237. // creates a fresh link
    238. 

  238. static int peer_new_link (struct peer_data *peer);
    239. 

  239. 

  240. // registers the peer as a relay provider
    241. 

  241. static void peer_enable_relay_provider (struct peer_data *peer);
    242. 

  242. 

  243. // unregisters the peer as a relay provider
    244. 

  244. static void peer_disable_relay_provider (struct peer_data *peer);
    245. 

  245. 

  246. // install relaying for a peer
    247. 

  247. static void peer_install_relaying (struct peer_data *peer, struct peer_data *relay);
    248. 

  248. 

  249. // uninstall relaying for a peer
    250. 

  250. static void peer_free_relaying (struct peer_data *peer);
    251. 

  251. 

  252. // handle a peer that needs a relay
    253. 

  253. static void peer_need_relay (struct peer_data *peer);
    254. 

  254. 

  255. // inserts the peer into the need relay list
    256. 

  256. static void peer_register_need_relay (struct peer_data *peer);
    257. 

  257. 

  258. // removes the peer from the need relay list
    259. 

  259. static void peer_unregister_need_relay (struct peer_data *peer);
    260. 

  260. 

  261. // handle a link setup failure
    262. 

  262. static void peer_reset (struct peer_data *peer);
    263. 

  263. 

  264. // handle incoming peer messages
    265. 

  265. static void peer_msg (struct peer_data *peer, uint8_t *data, int data_len);
    266. 

  266. 

  267. // handlers for different message types
    268. 

  268. static void peer_msg_youconnect (struct peer_data *peer, uint8_t *data, int data_len);
    269. 

  269. static void peer_msg_cannotconnect (struct peer_data *peer, uint8_t *data, int data_len);
    270. 

  270. static void peer_msg_cannotbind (struct peer_data *peer, uint8_t *data, int data_len);
    271. 

  271. static void peer_msg_seed (struct peer_data *peer, uint8_t *data, int data_len);
    272. 

  272. static void peer_msg_confirmseed (struct peer_data *peer, uint8_t *data, int data_len);
    273. 

  273. static void peer_msg_youretry (struct peer_data *peer, uint8_t *data, int data_len);
    274. 

  274. 

  275. // handler from DatagramPeerIO when we should generate a new OTP send seed
    276. 

  276. static void peer_udp_pio_handler_seed_warning (struct peer_data *peer);
    277. 

  277. 

  278. // handler from DatagramPeerIO when a new OTP seed can be recognized once it was provided to it
    279. 

  279. static void peer_udp_pio_handler_seed_ready (struct peer_data *peer);
    280. 

  280. 

  281. // handler from StreamPeerIO when an error occurs on the connection
    282. 

  282. static void peer_tcp_pio_handler_error (struct peer_data *peer);
    283. 

  283. 

  284. // peer retry timer handler. The timer is used only on the master side,
    285. 

  285. // wither when we detect an error, or the peer reports an error.
    286. 

  286. static void peer_reset_timer_handler (struct peer_data *peer);
    287. 

  287. 

  288. // start binding, according to the protocol
    289. 

  289. static void peer_start_binding (struct peer_data *peer);
    290. 

  290. 

  291. // tries binding on one address, according to the protocol
    292. 

  292. static void peer_bind (struct peer_data *peer);
    293. 

  293. 

  294. static void peer_bind_one_address (struct peer_data *peer, int addr_index, int *cont);
    295. 

  295. 

  296. static void peer_connect (struct peer_data *peer, BAddr addr, uint8_t *encryption_key, uint64_t password);
    297. 

  297. 

  298. // sends a message with no payload to the peer
    299. 

  299. static void peer_send_simple (struct peer_data *peer, int msgid);
    300. 

  300. 

  301. static void peer_send_conectinfo (struct peer_data *peer, int addr_index, int port_adjust, uint8_t *enckey, uint64_t pass);
    302. 

  302. 

  303. static void peer_generate_and_send_seed (struct peer_data *peer);
    304. 

  304. 

  305. static void peer_send_confirmseed (struct peer_data *peer, uint16_t seed_id);
    306. 

  306. 

  307. // handler for peer DataProto up state changes
    308. 

  308. static void peer_dataproto_handler (struct peer_data *peer, int up);
    309. 

  309. 

  310. // looks for a peer with the given ID
    311. 

  311. static struct peer_data * find_peer_by_id (peerid_t id);
    312. 

  312. 

  313. // device error handler
    314. 

  314. static void device_error_handler (void *unused);
    315. 

  315. 

  316. // DataProtoSource handler for packets from the device
    317. 

  317. static void device_input_dpd_handler (void *unused, const uint8_t *frame, int frame_len);
    318. 

  318. 

  319. // assign relays to clients waiting for them
    320. 

  320. static void assign_relays (void);
    321. 

  321. 

  322. // checks if the given address scope is known (i.e. we can connect to an address in it)
    323. 

  323. static char * address_scope_known (uint8_t *name, int name_len);
    324. 

  324. 

  325. // handlers for server messages
    326. 

  326. static void server_handler_error (void *user);
    327. 

  327. static void server_handler_ready (void *user, peerid_t param_my_id, uint32_t ext_ip);
    328. 

  328. static void server_handler_newclient (void *user, peerid_t peer_id, int flags, const uint8_t *cert, int cert_len);
    329. 

  329. static void server_handler_endclient (void *user, peerid_t peer_id);
    330. 

  330. static void server_handler_message (void *user, peerid_t peer_id, uint8_t *data, int data_len);
    331. 

  331. 

  332. // job to generate and send OTP seed after binding
    333. 

  333. static void peer_job_send_seed_after_binding (struct peer_data *peer);
    334. 

  334. 

  335. int main (int argc, char *argv[])
    336. 

  336. {
    337. 

  337.     if (argc <= 0) {
    338. 

  338.         return 1;
    339. 

  339.     }
    340. 

  340.     
    341. 

  341.     // parse command-line arguments
    342. 

  342.     if (!parse_arguments(argc, argv)) {
    343. 

  343.         fprintf(stderr, "Failed to parse arguments\n");
    344. 

  344.         print_help(argv[0]);
    345. 

  345.         goto fail0;
    346. 

  346.     }
    347. 

  347.     
    348. 

  348.     // handle --help and --version
    349. 

  349.     if (options.help) {
    350. 

  350.         print_version();
    351. 

  351.         print_help(argv[0]);
    352. 

  352.         return 0;
    353. 

  353.     }
    354. 

  354.     if (options.version) {
    355. 

  355.         print_version();
    356. 

  356.         return 0;
    357. 

  357.     }
    358. 

  358.     
    359. 

  359.     // initialize logger
    360. 

  360.     switch (options.logger) {
    361. 

  361.         case LOGGER_STDOUT:
    362. 

  362.             BLog_InitStdout();
    363. 

  363.             break;
    364. 

  364.         #ifndef BADVPN_USE_WINAPI
    365. 

  365.         case LOGGER_SYSLOG:
    366. 

  366.             if (!BLog_InitSyslog(options.logger_syslog_ident, options.logger_syslog_facility)) {
    367. 

  367.                 fprintf(stderr, "Failed to initialize syslog logger\n");
    368. 

  368.                 goto fail0;
    369. 

  369.             }
    370. 

  370.             break;
    371. 

  371.         #endif
    372. 

  372.         default:
    373. 

  373.             ASSERT(0);
    374. 

  374.     }
    375. 

  375.     
    376. 

  376.     // configure logger channels
    377. 

  377.     for (int i = 0; i < BLOG_NUM_CHANNELS; i++) {
    378. 

  378.         if (options.loglevels[i] >= 0) {
    379. 

  379.             BLog_SetChannelLoglevel(i, options.loglevels[i]);
    380. 

  380.         }
    381. 

  381.         else if (options.loglevel >= 0) {
    382. 

  382.             BLog_SetChannelLoglevel(i, options.loglevel);
    383. 

  383.         }
    384. 

  384.     }
    385. 

  385.     
    386. 

  386.     BLog(BLOG_NOTICE, "initializing "GLOBAL_PRODUCT_NAME" "PROGRAM_NAME" "GLOBAL_VERSION);
    387. 

  387.     
    388. 

  388.     // initialize sockets
    389. 

  389.     if (BSocket_GlobalInit() < 0) {
    390. 

  390.         BLog(BLOG_ERROR, "BSocket_GlobalInit failed");
    391. 

  391.         goto fail1;
    392. 

  392.     }
    393. 

  393.     
    394. 

  394.     // init time
    395. 

  395.     BTime_Init();
    396. 

  396.     
    397. 

  397.     // process arguments
    398. 

  398.     if (!process_arguments()) {
    399. 

  399.         BLog(BLOG_ERROR, "Failed to process arguments");
    400. 

  400.         goto fail1;
    401. 

  401.     }
    402. 

  402.     
    403. 

  403.     // init reactor
    404. 

  404.     if (!BReactor_Init(&ss)) {
    405. 

  405.         BLog(BLOG_ERROR, "BReactor_Init failed");
    406. 

  406.         goto fail1;
    407. 

  407.     }
    408. 

  408.     
    409. 

  409.     // setup signal handler
    410. 

  410.     if (!BSignal_Init(&ss, signal_handler, NULL)) {
    411. 

  411.         BLog(BLOG_ERROR, "BSignal_Init failed");
    412. 

  412.         goto fail2;
    413. 

  413.     }
    414. 

  414.     
    415. 

  415.     // init thread work dispatcher
    416. 

  416.     if (!BThreadWorkDispatcher_Init(&twd, &ss, options.threads)) {
    417. 

  417.         BLog(BLOG_ERROR, "BThreadWorkDispatcher_Init failed");
    418. 

  418.         goto fail2a;
    419. 

  419.     }
    420. 

  420.     
    421. 

  421.     // init BSecurity
    422. 

  422.     if (BThreadWorkDispatcher_UsingThreads(&twd)) {
    423. 

  423.         if (!BSecurity_GlobalInitThreadSafe()) {
    424. 

  424.             BLog(BLOG_ERROR, "BSecurity_GlobalInitThreadSafe failed");
    425. 

  425.             goto fail2b;
    426. 

  426.         }
    427. 

  427.     }
    428. 

  428.     
    429. 

  429.     if (options.ssl) {
    430. 

  430.         // init NSPR
    431. 

  431.         PR_Init(PR_USER_THREAD, PR_PRIORITY_NORMAL, 0);
    432. 

  432.         
    433. 

  433.         // register local NSPR file types
    434. 

  434.         if (!DummyPRFileDesc_GlobalInit()) {
    435. 

  435.             BLog(BLOG_ERROR, "DummyPRFileDesc_GlobalInit failed");
    436. 

  436.             goto fail3;
    437. 

  437.         }
    438. 

  438.         if (!BSocketPRFileDesc_GlobalInit()) {
    439. 

  439.             BLog(BLOG_ERROR, "BSocketPRFileDesc_GlobalInit failed");
    440. 

  440.             goto fail3;
    441. 

  441.         }
    442. 

  442.         
    443. 

  443.         // init NSS
    444. 

  444.         if (NSS_Init(options.nssdb) != SECSuccess) {
    445. 

  445.             BLog(BLOG_ERROR, "NSS_Init failed (%d)", (int)PR_GetError());
    446. 

  446.             goto fail3;
    447. 

  447.         }
    448. 

  448.         
    449. 

  449.         // set cipher policy
    450. 

  450.         if (NSS_SetDomesticPolicy() != SECSuccess) {
    451. 

  451.             BLog(BLOG_ERROR, "NSS_SetDomesticPolicy failed (%d)", (int)PR_GetError());
    452. 

  452.             goto fail4;
    453. 

  453.         }
    454. 

  454.         
    455. 

  455.         // init server cache
    456. 

  456.         if (SSL_ConfigServerSessionIDCache(0, 0, 0, NULL) != SECSuccess) {
    457. 

  457.             BLog(BLOG_ERROR, "SSL_ConfigServerSessionIDCache failed (%d)", (int)PR_GetError());
    458. 

  458.             goto fail4;
    459. 

  459.         }
    460. 

  460.         
    461. 

  461.         // open server certificate and private key
    462. 

  462.         if (!open_nss_cert_and_key(options.client_cert_name, &client_cert, &client_key)) {
    463. 

  463.             BLog(BLOG_ERROR, "Cannot open certificate and key");
    464. 

  464.             goto fail5;
    465. 

  465.         }
    466. 

  466.     }
    467. 

  467.     
    468. 

  468.     // init listeners
    469. 

  469.     int num_listeners = 0;
    470. 

  470.     if (options.transport_mode == TRANSPORT_MODE_TCP) {
    471. 

  471.         while (num_listeners < num_bind_addrs) {
    472. 

  472.             POINTER(addr, bind_addrs[num_listeners])
    473. 

  473.             if (!PasswordListener_Init(
    474. 

  474.                 &listeners[num_listeners], &ss, addr->addr, 50, options.peer_ssl,
    475. 

  475.                 (options.peer_ssl ? client_cert : NULL),
    476. 

  476.                 (options.peer_ssl ? client_key : NULL)
    477. 

  477.             )) {
    478. 

  478.                 BLog(BLOG_ERROR, "PasswordListener_Init failed");
    479. 

  479.                 goto fail6;
    480. 

  480.             }
    481. 

  481.             num_listeners++;
    482. 

  482.         }
    483. 

  483.     }
    484. 

  484.     
    485. 

  485.     // init device
    486. 

  486.     if (!BTap_Init(&device, &ss, options.tapdev, device_error_handler, NULL, 0)) {
    487. 

  487.         BLog(BLOG_ERROR, "BTap_Init failed");
    488. 

  488.         goto fail6;
    489. 

  489.     }
    490. 

  490.     
    491. 

  491.     // remember device MTU
    492. 

  492.     device_mtu = BTap_GetMTU(&device);
    493. 

  493.     
    494. 

  494.     BLog(BLOG_INFO, "device MTU is %d", device_mtu);
    495. 

  495.     
    496. 

  496.     // init device input
    497. 

  497.     if (!DataProtoSource_Init(&device_input_dpd, BTap_GetOutput(&device), device_input_dpd_handler, NULL, &ss)) {
    498. 

  498.         BLog(BLOG_ERROR, "DataProtoSource_Init failed");
    499. 

  499.         goto fail7;
    500. 

  500.     }
    501. 

  501.     
    502. 

  502.     // init device output
    503. 

  503.     if (!DPReceiveDevice_Init(&device_output_dprd, BTap_GetInput(&device), &ss, options.send_buffer_relay_size, PEER_RELAY_FLOW_INACTIVITY_TIME)) {
    504. 

  504.         BLog(BLOG_ERROR, "DPReceiveDevice_Init failed");
    505. 

  505.         goto fail7a;
    506. 

  506.     }
    507. 

  507.     
    508. 

  508.     // calculate data MTU
    509. 

  509.     if (device_mtu > INT_MAX - DATAPROTO_MAX_OVERHEAD) {
    510. 

  510.         BLog(BLOG_ERROR, "Device MTU is too large");
    511. 

  511.         goto fail8;
    512. 

  512.     }
    513. 

  513.     data_mtu = DATAPROTO_MAX_OVERHEAD + device_mtu;
    514. 

  514.     
    515. 

  515.     // init peers list
    516. 

  516.     LinkedList2_Init(&peers);
    517. 

  517.     num_peers = 0;
    518. 

  518.     
    519. 

  519.     // init frame decider
    520. 

  520.     FrameDecider_Init(&frame_decider, options.max_macs, options.max_groups, options.igmp_group_membership_interval, options.igmp_last_member_query_time, &ss);
    521. 

  521.     
    522. 

  522.     // init relays list
    523. 

  523.     LinkedList2_Init(&relays);
    524. 

  524.     
    525. 

  525.     // init need relay list
    526. 

  526.     LinkedList2_Init(&waiting_relay_peers);
    527. 

  527.     
    528. 

  528.     // start connecting to server
    529. 

  529.     if (!ServerConnection_Init(
    530. 

  530.         &server, &ss, server_addr, SC_KEEPALIVE_INTERVAL, SERVER_BUFFER_MIN_PACKETS, options.ssl, client_cert, client_key, server_name, NULL,
    531. 

  531.         server_handler_error, server_handler_ready, server_handler_newclient, server_handler_endclient, server_handler_message
    532. 

  532.     )) {
    533. 

  533.         BLog(BLOG_ERROR, "ServerConnection_Init failed");
    534. 

  534.         goto fail9;
    535. 

  535.     }
    536. 

  536.     
    537. 

  537.     // enter event loop
    538. 

  538.     BLog(BLOG_NOTICE, "entering event loop");
    539. 

  539.     BReactor_Exec(&ss);
    540. 

  540.     
    541. 

  541.     // allow freeing receive receivers in peers' links
    542. 

  542.     DPReceiveDevice_PrepareFree(&device_output_dprd);
    543. 

  543.     
    544. 

  544.     // free peers
    545. 

  545.     LinkedList2Node *node;
    546. 

  546.     while (node = LinkedList2_GetFirst(&peers)) {
    547. 

  547.         struct peer_data *peer = UPPER_OBJECT(node, struct peer_data, list_node);
    548. 

  548.         peer_remove(peer);
    549. 

  549.     }
    550. 

  550.     
    551. 

  551.     ServerConnection_Free(&server);
    552. 

  552. fail9:
    553. 

  553.     FrameDecider_Free(&frame_decider);
    554. 

  554. fail8:
    555. 

  555.     DPReceiveDevice_Free(&device_output_dprd);
    556. 

  556. fail7a:
    557. 

  557.     DataProtoSource_Free(&device_input_dpd);
    558. 

  558. fail7:
    559. 

  559.     BTap_Free(&device);
    560. 

  560. fail6:
    561. 

  561.     if (options.transport_mode == TRANSPORT_MODE_TCP) {
    562. 

  562.         while (num_listeners-- > 0) {
    563. 

  563.             PasswordListener_Free(&listeners[num_listeners]);
    564. 

  564.         }
    565. 

  565.     }
    566. 

  566.     if (options.ssl) {
    567. 

  567.         CERT_DestroyCertificate(client_cert);
    568. 

  568.         SECKEY_DestroyPrivateKey(client_key);
    569. 

  569. fail5:
    570. 

  570.         ASSERT_FORCE(SSL_ShutdownServerSessionIDCache() == SECSuccess)
    571. 

  571. fail4:
    572. 

  572.         SSL_ClearSessionCache();
    573. 

  573.         ASSERT_FORCE(NSS_Shutdown() == SECSuccess)
    574. 

  574. fail3:
    575. 

  575.         ASSERT_FORCE(PR_Cleanup() == PR_SUCCESS)
    576. 

  576.         PL_ArenaFinish();
    577. 

  577.     }
    578. 

  578.     if (BThreadWorkDispatcher_UsingThreads(&twd)) {
    579. 

  579.         BSecurity_GlobalFreeThreadSafe();
    580. 

  580.     }
    581. 

  581. fail2b:
    582. 

  582.     BThreadWorkDispatcher_Free(&twd);
    583. 

  583. fail2a:
    584. 

  584.     BSignal_Finish();
    585. 

  585. fail2:
    586. 

  586.     BReactor_Free(&ss);
    587. 

  587. fail1:
    588. 

  588.     BLog(BLOG_NOTICE, "exiting");
    589. 

  589.     BLog_Free();
    590. 

  590. fail0:
    591. 

  591.     // finish objects
    592. 

  592.     DebugObjectGlobal_Finish();
    593. 

  593.     return 1;
    594. 

  594. }
    595. 

  595. 

  596. void terminate (void)
    597. 

  597. {
    598. 

  598.     BLog(BLOG_NOTICE, "tearing down");
    599. 

  599.     
    600. 

  600.     // exit event loop
    601. 

  601.     BReactor_Quit(&ss, 0);
    602. 

  602. }
    603. 

  603. 

  604. void print_help (const char *name)
    605. 

  605. {
    606. 

  606.     printf(
    607. 

  607.         "Usage:\n"
    608. 

  608.         "    %s\n"
    609. 

  609.         "        [--help]\n"
    610. 

  610.         "        [--version]\n"
    611. 

  611.         "        [--logger <"LOGGERS_STRING">]\n"
    612. 

  612.         #ifndef BADVPN_USE_WINAPI
    613. 

  613.         "        (logger=syslog?\n"
    614. 

  614.         "            [--syslog-facility <string>]\n"
    615. 

  615.         "            [--syslog-ident <string>]\n"
    616. 

  616.         "        )\n"
    617. 

  617.         #endif
    618. 

  618.         "        [--loglevel <0-5/none/error/warning/notice/info/debug>]\n"
    619. 

  619.         "        [--channel-loglevel <channel-name> <0-5/none/error/warning/notice/info/debug>] ...\n"
    620. 

  620.         "        [--threads <integer>]\n"
    621. 

  621.         "        [--ssl --nssdb <string> --client-cert-name <string>]\n"
    622. 

  622.         "        [--server-name <string>]\n"
    623. 

  623.         "        --server-addr <addr>\n"
    624. 

  624.         "        [--tapdev <name>]\n"
    625. 

  625.         "        [--scope <scope_name>] ...\n"
    626. 

  626.         "        [\n"
    627. 

  627.         "            --bind-addr <addr>\n"
    628. 

  628.         "            (transport-mode=udp? --num-ports <num>)\n"
    629. 

  629.         "            [--ext-addr <addr / {server_reported}:port> <scope_name>] ...\n"
    630. 

  630.         "        ] ...\n"
    631. 

  631.         "        --transport-mode <udp/tcp>\n"
    632. 

  632.         "        (transport-mode=udp?\n"
    633. 

  633.         "            --encryption-mode <blowfish/aes/none>\n"
    634. 

  634.         "            --hash-mode <md5/sha1/none>\n"
    635. 

  635.         "            [--otp <blowfish/aes> <num> <num-warn>]\n"
    636. 

  636.         "            [--fragmentation-latency <milliseconds>]\n"
    637. 

  637.         "        )\n"
    638. 

  638.         "        (transport-mode=tcp?\n"
    639. 

  639.         "            (ssl? [--peer-ssl])\n"
    640. 

  640.         "        )\n"
    641. 

  641.         "        [--send-buffer-size <num-packets>]\n"
    642. 

  642.         "        [--send-buffer-relay-size <num-packets>]\n"
    643. 

  643.         "        [--max-macs <num>]\n"
    644. 

  644.         "        [--max-groups <num>]\n"
    645. 

  645.         "        [--igmp-group-membership-interval <ms>]\n"
    646. 

  646.         "        [--igmp-last-member-query-time <ms>]\n"
    647. 

  647.         "Address format is a.b.c.d:port (IPv4) or [addr]:port (IPv6).\n",
    648. 

  648.         name
    649. 

  649.     );
    650. 

  650. }
    651. 

  651. 

  652. void print_version (void)
    653. 

  653. {
    654. 

  654.     printf(GLOBAL_PRODUCT_NAME" "PROGRAM_NAME" "GLOBAL_VERSION"\n"GLOBAL_COPYRIGHT_NOTICE"\n");
    655. 

  655. }
    656. 

  656. 

  657. int parse_arguments (int argc, char *argv[])
    658. 

  658. {
    659. 

  659.     if (argc <= 0) {
    660. 

  660.         return 0;
    661. 

  661.     }
    662. 

  662.     
    663. 

  663.     options.help = 0;
    664. 

  664.     options.version = 0;
    665. 

  665.     options.logger = LOGGER_STDOUT;
    666. 

  666.     #ifndef BADVPN_USE_WINAPI
    667. 

  667.     options.logger_syslog_facility = "daemon";
    668. 

  668.     options.logger_syslog_ident = argv[0];
    669. 

  669.     #endif
    670. 

  670.     options.loglevel = -1;
    671. 

  671.     for (int i = 0; i < BLOG_NUM_CHANNELS; i++) {
    672. 

  672.         options.loglevels[i] = -1;
    673. 

  673.     }
    674. 

  674.     options.threads = 0;
    675. 

  675.     options.ssl = 0;
    676. 

  676.     options.nssdb = NULL;
    677. 

  677.     options.client_cert_name = NULL;
    678. 

  678.     options.server_name = NULL;
    679. 

  679.     options.server_addr = NULL;
    680. 

  680.     options.tapdev = NULL;
    681. 

  681.     options.num_scopes = 0;
    682. 

  682.     options.num_bind_addrs = 0;
    683. 

  683.     options.transport_mode = -1;
    684. 

  684.     options.encryption_mode = -1;
    685. 

  685.     options.hash_mode = -1;
    686. 

  686.     options.otp_mode = SPPROTO_OTP_MODE_NONE;
    687. 

  687.     options.fragmentation_latency = PEER_DEFAULT_UDP_FRAGMENTATION_LATENCY;
    688. 

  688.     options.peer_ssl = 0;
    689. 

  689.     options.send_buffer_size = PEER_DEFAULT_SEND_BUFFER_SIZE;
    690. 

  690.     options.send_buffer_relay_size = PEER_DEFAULT_SEND_BUFFER_RELAY_SIZE;
    691. 

  691.     options.max_macs = PEER_DEFAULT_MAX_MACS;
    692. 

  692.     options.max_groups = PEER_DEFAULT_MAX_GROUPS;
    693. 

  693.     options.igmp_group_membership_interval = DEFAULT_IGMP_GROUP_MEMBERSHIP_INTERVAL;
    694. 

  694.     options.igmp_last_member_query_time = DEFAULT_IGMP_LAST_MEMBER_QUERY_TIME;
    695. 

  695.     
    696. 

  696.     int have_fragmentation_latency = 0;
    697. 

  697.     
    698. 

  698.     int i;
    699. 

  699.     for (i = 1; i < argc; i++) {
    700. 

  700.         char *arg = argv[i];
    701. 

  701.         if (!strcmp(arg, "--help")) {
    702. 

  702.             options.help = 1;
    703. 

  703.         }
    704. 

  704.         else if (!strcmp(arg, "--version")) {
    705. 

  705.             options.version = 1;
    706. 

  706.         }
    707. 

  707.         else if (!strcmp(arg, "--logger")) {
    708. 

  708.             if (1 >= argc - i) {
    709. 

  709.                 fprintf(stderr, "%s: requires an argument\n", arg);
    710. 

  710.                 return 0;
    711. 

  711.             }
    712. 

  712.             char *arg2 = argv[i + 1];
    713. 

  713.             if (!strcmp(arg2, "stdout")) {
    714. 

  714.                 options.logger = LOGGER_STDOUT;
    715. 

  715.             }
    716. 

  716.             #ifndef BADVPN_USE_WINAPI
    717. 

  717.             else if (!strcmp(arg2, "syslog")) {
    718. 

  718.                 options.logger = LOGGER_SYSLOG;
    719. 

  719.             }
    720. 

  720.             #endif
    721. 

  721.             else {
    722. 

  722.                 fprintf(stderr, "%s: wrong argument\n", arg);
    723. 

  723.                 return 0;
    724. 

  724.             }
    725. 

  725.             i++;
    726. 

  726.         }
    727. 

  727.         #ifndef BADVPN_USE_WINAPI
    728. 

  728.         else if (!strcmp(arg, "--syslog-facility")) {
    729. 

  729.             if (1 >= argc - i) {
    730. 

  730.                 fprintf(stderr, "%s: requires an argument\n", arg);
    731. 

  731.                 return 0;
    732. 

  732.             }
    733. 

  733.             options.logger_syslog_facility = argv[i + 1];
    734. 

  734.             i++;
    735. 

  735.         }
    736. 

  736.         else if (!strcmp(arg, "--syslog-ident")) {
    737. 

  737.             if (1 >= argc - i) {
    738. 

  738.                 fprintf(stderr, "%s: requires an argument\n", arg);
    739. 

  739.                 return 0;
    740. 

  740.             }
    741. 

  741.             options.logger_syslog_ident = argv[i + 1];
    742. 

  742.             i++;
    743. 

  743.         }
    744. 

  744.         #endif
    745. 

  745.         else if (!strcmp(arg, "--loglevel")) {
    746. 

  746.             if (1 >= argc - i) {
    747. 

  747.                 fprintf(stderr, "%s: requires an argument\n", arg);
    748. 

  748.                 return 0;
    749. 

  749.             }
    750. 

  750.             if ((options.loglevel = parse_loglevel(argv[i + 1])) < 0) {
    751. 

  751.                 fprintf(stderr, "%s: wrong argument\n", arg);
    752. 

  752.                 return 0;
    753. 

  753.             }
    754. 

  754.             i++;
    755. 

  755.         }
    756. 

  756.         else if (!strcmp(arg, "--channel-loglevel")) {
    757. 

  757.             if (2 >= argc - i) {
    758. 

  758.                 fprintf(stderr, "%s: requires two arguments\n", arg);
    759. 

  759.                 return 0;
    760. 

  760.             }
    761. 

  761.             int channel = BLogGlobal_GetChannelByName(argv[i + 1]);
    762. 

  762.             if (channel < 0) {
    763. 

  763.                 fprintf(stderr, "%s: wrong channel argument\n", arg);
    764. 

  764.                 return 0;
    765. 

  765.             }
    766. 

  766.             int loglevel = parse_loglevel(argv[i + 2]);
    767. 

  767.             if (loglevel < 0) {
    768. 

  768.                 fprintf(stderr, "%s: wrong loglevel argument\n", arg);
    769. 

  769.                 return 0;
    770. 

  770.             }
    771. 

  771.             options.loglevels[channel] = loglevel;
    772. 

  772.             i += 2;
    773. 

  773.         }
    774. 

  774.         else if (!strcmp(arg, "--threads")) {
    775. 

  775.             if (1 >= argc - i) {
    776. 

  776.                 fprintf(stderr, "%s: requires an argument\n", arg);
    777. 

  777.                 return 0;
    778. 

  778.             }
    779. 

  779.             options.threads = atoi(argv[i + 1]);
    780. 

  780.             i++;
    781. 

  781.         }
    782. 

  782.         else if (!strcmp(arg, "--ssl")) {
    783. 

  783.             options.ssl = 1;
    784. 

  784.         }
    785. 

  785.         else if (!strcmp(arg, "--nssdb")) {
    786. 

  786.             if (1 >= argc - i) {
    787. 

  787.                 fprintf(stderr, "%s: requires an argument\n", arg);
    788. 

  788.                 return 0;
    789. 

  789.             }
    790. 

  790.             options.nssdb = argv[i + 1];
    791. 

  791.             i++;
    792. 

  792.         }
    793. 

  793.         else if (!strcmp(arg, "--client-cert-name")) {
    794. 

  794.             if (1 >= argc - i) {
    795. 

  795.                 fprintf(stderr, "%s: requires an argument\n", arg);
    796. 

  796.                 return 0;
    797. 

  797.             }
    798. 

  798.             options.client_cert_name = argv[i + 1];
    799. 

  799.             i++;
    800. 

  800.         }
    801. 

  801.         else if (!strcmp(arg, "--server-name")) {
    802. 

  802.             if (1 >= argc - i) {
    803. 

  803.                 fprintf(stderr, "%s: requires an argument\n", arg);
    804. 

  804.                 return 0;
    805. 

  805.             }
    806. 

  806.             options.server_name = argv[i + 1];
    807. 

  807.             i++;
    808. 

  808.         }
    809. 

  809.         else if (!strcmp(arg, "--server-addr")) {
    810. 

  810.             if (1 >= argc - i) {
    811. 

  811.                 fprintf(stderr, "%s: requires an argument\n", arg);
    812. 

  812.                 return 0;
    813. 

  813.             }
    814. 

  814.             options.server_addr = argv[i + 1];
    815. 

  815.             i++;
    816. 

  816.         }
    817. 

  817.         else if (!strcmp(arg, "--tapdev")) {
    818. 

  818.             if (1 >= argc - i) {
    819. 

  819.                 fprintf(stderr, "%s: requires an argument\n", arg);
    820. 

  820.                 return 0;
    821. 

  821.             }
    822. 

  822.             options.tapdev = argv[i + 1];
    823. 

  823.             i++;
    824. 

  824.         }
    825. 

  825.         else if (!strcmp(arg, "--scope")) {
    826. 

  826.             if (1 >= argc - i) {
    827. 

  827.                 fprintf(stderr, "%s: requires an argument\n", arg);
    828. 

  828.                 return 0;
    829. 

  829.             }
    830. 

  830.             if (options.num_scopes == MAX_SCOPES) {
    831. 

  831.                 fprintf(stderr, "%s: too many\n", arg);
    832. 

  832.                 return 0;
    833. 

  833.             }
    834. 

  834.             options.scopes[options.num_scopes] = argv[i + 1];
    835. 

  835.             options.num_scopes++;
    836. 

  836.             i++;
    837. 

  837.         }
    838. 

  838.         else if (!strcmp(arg, "--bind-addr")) {
    839. 

  839.             if (1 >= argc - i) {
    840. 

  840.                 fprintf(stderr, "%s: requires an argument\n", arg);
    841. 

  841.                 return 0;
    842. 

  842.             }
    843. 

  843.             if (options.num_bind_addrs == MAX_BIND_ADDRS) {
    844. 

  844.                 fprintf(stderr, "%s: too many\n", arg);
    845. 

  845.                 return 0;
    846. 

  846.             }
    847. 

  847.             POINTER(addr, options.bind_addrs[options.num_bind_addrs])
    848. 

  848.             addr->addr = argv[i + 1];
    849. 

  849.             addr->num_ports = -1;
    850. 

  850.             addr->num_ext_addrs = 0;
    851. 

  851.             options.num_bind_addrs++;
    852. 

  852.             i++;
    853. 

  853.         }
    854. 

  854.         else if (!strcmp(arg, "--num-ports")) {
    855. 

  855.             if (1 >= argc - i) {
    856. 

  856.                 fprintf(stderr, "%s: requires an argument\n", arg);
    857. 

  857.                 return 0;
    858. 

  858.             }
    859. 

  859.             if (options.num_bind_addrs == 0) {
    860. 

  860.                 fprintf(stderr, "%s: must folow --bind-addr\n", arg);
    861. 

  861.                 return 0;
    862. 

  862.             }
    863. 

  863.             POINTER(addr, options.bind_addrs[options.num_bind_addrs - 1])
    864. 

  864.             if ((addr->num_ports = atoi(argv[i + 1])) < 0) {
    865. 

  865.                 fprintf(stderr, "%s: wrong argument\n", arg);
    866. 

  866.                 return 0;
    867. 

  867.             }
    868. 

  868.             i++;
    869. 

  869.         }
    870. 

  870.         else if (!strcmp(arg, "--ext-addr")) {
    871. 

  871.             if (2 >= argc - i) {
    872. 

  872.                 fprintf(stderr, "%s: requires two arguments\n", arg);
    873. 

  873.                 return 0;
    874. 

  874.             }
    875. 

  875.             if (options.num_bind_addrs == 0) {
    876. 

  876.                 fprintf(stderr, "%s: must folow --bind-addr\n", arg);
    877. 

  877.                 return 0;
    878. 

  878.             }
    879. 

  879.             POINTER(addr, options.bind_addrs[options.num_bind_addrs - 1])
    880. 

  880.             if (addr->num_ext_addrs == MAX_EXT_ADDRS) {
    881. 

  881.                 fprintf(stderr, "%s: too many\n", arg);
    882. 

  882.                 return 0;
    883. 

  883.             }
    884. 

  884.             POINTER(eaddr, addr->ext_addrs[addr->num_ext_addrs])
    885. 

  885.             eaddr->addr = argv[i + 1];
    886. 

  886.             eaddr->scope = argv[i + 2];
    887. 

  887.             addr->num_ext_addrs++;
    888. 

  888.             i += 2;
    889. 

  889.         }
    890. 

  890.         else if (!strcmp(arg, "--transport-mode")) {
    891. 

  891.             if (1 >= argc - i) {
    892. 

  892.                 fprintf(stderr, "%s: requires an argument\n", arg);
    893. 

  893.                 return 0;
    894. 

  894.             }
    895. 

  895.             char *arg2 = argv[i + 1];
    896. 

  896.             if (!strcmp(arg2, "udp")) {
    897. 

  897.                 options.transport_mode = TRANSPORT_MODE_UDP;
    898. 

  898.             }
    899. 

  899.             else if (!strcmp(arg2, "tcp")) {
    900. 

  900.                 options.transport_mode = TRANSPORT_MODE_TCP;
    901. 

  901.             }
    902. 

  902.             else {
    903. 

  903.                 fprintf(stderr, "%s: wrong argument\n", arg);
    904. 

  904.                 return 0;
    905. 

  905.             }
    906. 

  906.             i++;
    907. 

  907.         }
    908. 

  908.         else if (!strcmp(arg, "--encryption-mode")) {
    909. 

  909.             if (1 >= argc - i) {
    910. 

  910.                 fprintf(stderr, "%s: requires an argument\n", arg);
    911. 

  911.                 return 0;
    912. 

  912.             }
    913. 

  913.             char *arg2 = argv[i + 1];
    914. 

  914.             if (!strcmp(arg2, "none")) {
    915. 

  915.                 options.encryption_mode = SPPROTO_ENCRYPTION_MODE_NONE;
    916. 

  916.             }
    917. 

  917.             else if (!strcmp(arg2, "blowfish")) {
    918. 

  918.                 options.encryption_mode = BENCRYPTION_CIPHER_BLOWFISH;
    919. 

  919.             }
    920. 

  920.             else if (!strcmp(arg2, "aes")) {
    921. 

  921.                 options.encryption_mode = BENCRYPTION_CIPHER_AES;
    922. 

  922.             }
    923. 

  923.             else {
    924. 

  924.                 fprintf(stderr, "%s: wrong argument\n", arg);
    925. 

  925.                 return 0;
    926. 

  926.             }
    927. 

  927.             i++;
    928. 

  928.         }
    929. 

  929.         else if (!strcmp(arg, "--hash-mode")) {
    930. 

  930.             if (1 >= argc - i) {
    931. 

  931.                 fprintf(stderr, "%s: requires an argument\n", arg);
    932. 

  932.                 return 0;
    933. 

  933.             }
    934. 

  934.             char *arg2 = argv[i + 1];
    935. 

  935.             if (!strcmp(arg2, "none")) {
    936. 

  936.                 options.hash_mode = SPPROTO_HASH_MODE_NONE;
    937. 

  937.             }
    938. 

  938.             else if (!strcmp(arg2, "md5")) {
    939. 

  939.                 options.hash_mode = BHASH_TYPE_MD5;
    940. 

  940.             }
    941. 

  941.             else if (!strcmp(arg2, "sha1")) {
    942. 

  942.                 options.hash_mode = BHASH_TYPE_SHA1;
    943. 

  943.             }
    944. 

  944.             else {
    945. 

  945.                 fprintf(stderr, "%s: wrong argument\n", arg);
    946. 

  946.                 return 0;
    947. 

  947.             }
    948. 

  948.             i++;
    949. 

  949.         }
    950. 

  950.         else if (!strcmp(arg, "--otp")) {
    951. 

  951.             if (3 >= argc - i) {
    952. 

  952.                 fprintf(stderr, "%s: requires three arguments\n", arg);
    953. 

  953.                 return 0;
    954. 

  954.             }
    955. 

  955.             char *otp_mode = argv[i + 1];
    956. 

  956.             char *otp_num = argv[i + 2];
    957. 

  957.             char *otp_num_warn = argv[i + 3];
    958. 

  958.             if (!strcmp(otp_mode, "blowfish")) {
    959. 

  959.                 options.otp_mode = BENCRYPTION_CIPHER_BLOWFISH;
    960. 

  960.             }
    961. 

  961.             else if (!strcmp(otp_mode, "aes")) {
    962. 

  962.                 options.otp_mode = BENCRYPTION_CIPHER_AES;
    963. 

  963.             }
    964. 

  964.             else {
    965. 

  965.                 fprintf(stderr, "%s: wrong mode\n", arg);
    966. 

  966.                 return 0;
    967. 

  967.             }
    968. 

  968.             if ((options.otp_num = atoi(otp_num)) <= 0) {
    969. 

  969.                 fprintf(stderr, "%s: wrong num\n", arg);
    970. 

  970.                 return 0;
    971. 

  971.             }
    972. 

  972.             options.otp_num_warn = atoi(otp_num_warn);
    973. 

  973.             if (options.otp_num_warn <= 0 || options.otp_num_warn > options.otp_num) {
    974. 

  974.                 fprintf(stderr, "%s: wrong num warn\n", arg);
    975. 

  975.                 return 0;
    976. 

  976.             }
    977. 

  977.             i += 3;
    978. 

  978.         }
    979. 

  979.         else if (!strcmp(arg, "--fragmentation-latency")) {
    980. 

  980.             if (1 >= argc - i) {
    981. 

  981.                 fprintf(stderr, "%s: requires an argument\n", arg);
    982. 

  982.                 return 0;
    983. 

  983.             }
    984. 

  984.             options.fragmentation_latency = atoi(argv[i + 1]);
    985. 

  985.             have_fragmentation_latency = 1;
    986. 

  986.             i++;
    987. 

  987.         }
    988. 

  988.         else if (!strcmp(arg, "--peer-ssl")) {
    989. 

  989.             options.peer_ssl = 1;
    990. 

  990.         }
    991. 

  991.         else if (!strcmp(arg, "--send-buffer-size")) {
    992. 

  992.             if (1 >= argc - i) {
    993. 

  993.                 fprintf(stderr, "%s: requires an argument\n", arg);
    994. 

  994.                 return 0;
    995. 

  995.             }
    996. 

  996.             if ((options.send_buffer_size = atoi(argv[i + 1])) <= 0) {
    997. 

  997.                 fprintf(stderr, "%s: wrong argument\n", arg);
    998. 

  998.                 return 0;
    999. 

  999.             }
    1000. 

  1000.             i++;
    1001. 

  1001.         }
    1002. 

  1002.         else if (!strcmp(arg, "--send-buffer-relay-size")) {
    1003. 

  1003.             if (1 >= argc - i) {
    1004. 

  1004.                 fprintf(stderr, "%s: requires an argument\n", arg);
    1005. 

  1005.                 return 0;
    1006. 

  1006.             }
    1007. 

  1007.             if ((options.send_buffer_relay_size = atoi(argv[i + 1])) <= 0) {
    1008. 

  1008.                 fprintf(stderr, "%s: wrong argument\n", arg);
    1009. 

  1009.                 return 0;
    1010. 

  1010.             }
    1011. 

  1011.             i++;
    1012. 

  1012.         }
    1013. 

  1013.         else if (!strcmp(arg, "--max-macs")) {
    1014. 

  1014.             if (1 >= argc - i) {
    1015. 

  1015.                 fprintf(stderr, "%s: requires an argument\n", arg);
    1016. 

  1016.                 return 0;
    1017. 

  1017.             }
    1018. 

  1018.             if ((options.max_macs = atoi(argv[i + 1])) <= 0) {
    1019. 

  1019.                 fprintf(stderr, "%s: wrong argument\n", arg);
    1020. 

  1020.                 return 0;
    1021. 

  1021.             }
    1022. 

  1022.             i++;
    1023. 

  1023.         }
    1024. 

  1024.         else if (!strcmp(arg, "--max-groups")) {
    1025. 

  1025.             if (1 >= argc - i) {
    1026. 

  1026.                 fprintf(stderr, "%s: requires an argument\n", arg);
    1027. 

  1027.                 return 0;
    1028. 

  1028.             }
    1029. 

  1029.             if ((options.max_groups = atoi(argv[i + 1])) <= 0) {
    1030. 

  1030.                 fprintf(stderr, "%s: wrong argument\n", arg);
    1031. 

  1031.                 return 0;
    1032. 

  1032.             }
    1033. 

  1033.             i++;
    1034. 

  1034.         }
    1035. 

  1035.         else if (!strcmp(arg, "--igmp-group-membership-interval")) {
    1036. 

  1036.             if (1 >= argc - i) {
    1037. 

  1037.                 fprintf(stderr, "%s: requires an argument\n", arg);
    1038. 

  1038.                 return 0;
    1039. 

  1039.             }
    1040. 

  1040.             if ((options.igmp_group_membership_interval = atoi(argv[i + 1])) <= 0) {
    1041. 

  1041.                 fprintf(stderr, "%s: wrong argument\n", arg);
    1042. 

  1042.                 return 0;
    1043. 

  1043.             }
    1044. 

  1044.             i++;
    1045. 

  1045.         }
    1046. 

  1046.         else if (!strcmp(arg, "--igmp-last-member-query-time")) {
    1047. 

  1047.             if (1 >= argc - i) {
    1048. 

  1048.                 fprintf(stderr, "%s: requires an argument\n", arg);
    1049. 

  1049.                 return 0;
    1050. 

  1050.             }
    1051. 

  1051.             if ((options.igmp_last_member_query_time = atoi(argv[i + 1])) <= 0) {
    1052. 

  1052.                 fprintf(stderr, "%s: wrong argument\n", arg);
    1053. 

  1053.                 return 0;
    1054. 

  1054.             }
    1055. 

  1055.             i++;
    1056. 

  1056.         }
    1057. 

  1057.         else {
    1058. 

  1058.             fprintf(stderr, "unknown option: %s\n", arg);
    1059. 

  1059.             return 0;
    1060. 

  1060.         }
    1061. 

  1061.     }
    1062. 

  1062.     
    1063. 

  1063.     if (options.help || options.version) {
    1064. 

  1064.         return 1;
    1065. 

  1065.     }
    1066. 

  1066.     
    1067. 

  1067.     if (options.ssl != !!options.nssdb) {
    1068. 

  1068.         fprintf(stderr, "False: --ssl <=> --nssdb\n");
    1069. 

  1069.         return 0;
    1070. 

  1070.     }
    1071. 

  1071.     
    1072. 

  1072.     if (options.ssl != !!options.client_cert_name) {
    1073. 

  1073.         fprintf(stderr, "False: --ssl <=> --client-cert-name\n");
    1074. 

  1074.         return 0;
    1075. 

  1075.     }
    1076. 

  1076.     
    1077. 

  1077.     if (!options.server_addr) {
    1078. 

  1078.         fprintf(stderr, "False: --server-addr\n");
    1079. 

  1079.         return 0;
    1080. 

  1080.     }
    1081. 

  1081.     
    1082. 

  1082.     if (options.transport_mode < 0) {
    1083. 

  1083.         fprintf(stderr, "False: --transport-mode\n");
    1084. 

  1084.         return 0;
    1085. 

  1085.     }
    1086. 

  1086.     
    1087. 

  1087.     if ((options.transport_mode == TRANSPORT_MODE_UDP) != (options.encryption_mode >= 0)) {
    1088. 

  1088.         fprintf(stderr, "False: UDP <=> --encryption-mode\n");
    1089. 

  1089.         return 0;
    1090. 

  1090.     }
    1091. 

  1091.     
    1092. 

  1092.     if ((options.transport_mode == TRANSPORT_MODE_UDP) != (options.hash_mode >= 0)) {
    1093. 

  1093.         fprintf(stderr, "False: UDP <=> --hash-mode\n");
    1094. 

  1094.         return 0;
    1095. 

  1095.     }
    1096. 

  1096.     
    1097. 

  1097.     if (!(!(options.otp_mode != SPPROTO_OTP_MODE_NONE) || (options.transport_mode == TRANSPORT_MODE_UDP))) {
    1098. 

  1098.         fprintf(stderr, "False: --otp => UDP\n");
    1099. 

  1099.         return 0;
    1100. 

  1100.     }
    1101. 

  1101.     
    1102. 

  1102.     if (!(!have_fragmentation_latency || (options.transport_mode == TRANSPORT_MODE_UDP))) {
    1103. 

  1103.         fprintf(stderr, "False: --fragmentation-latency => UDP\n");
    1104. 

  1104.         return 0;
    1105. 

  1105.     }
    1106. 

  1106.     
    1107. 

  1107.     if (!(!options.peer_ssl || (options.ssl && options.transport_mode == TRANSPORT_MODE_TCP))) {
    1108. 

  1108.         fprintf(stderr, "False: --peer-ssl => (--ssl && TCP)\n");
    1109. 

  1109.         return 0;
    1110. 

  1110.     }
    1111. 

  1111.     
    1112. 

  1112.     return 1;
    1113. 

  1113. }
    1114. 

  1114. 

  1115. int process_arguments (void)
    1116. 

  1116. {
    1117. 

  1117.     // resolve server address
    1118. 

  1118.     ASSERT(options.server_addr)
    1119. 

  1119.     if (!BAddr_Parse(&server_addr, options.server_addr, server_name, sizeof(server_name))) {
    1120. 

  1120.         BLog(BLOG_ERROR, "server addr: BAddr_Parse failed");
    1121. 

  1121.         return 0;
    1122. 

  1122.     }
    1123. 

  1123.     if (!addr_supported(server_addr)) {
    1124. 

  1124.         BLog(BLOG_ERROR, "server addr: not supported");
    1125. 

  1125.         return 0;
    1126. 

  1126.     }
    1127. 

  1127.     
    1128. 

  1128.     // override server name if requested
    1129. 

  1129.     if (options.server_name) {
    1130. 

  1130.         snprintf(server_name, sizeof(server_name), "%s", options.server_name);
    1131. 

  1131.     }
    1132. 

  1132.     
    1133. 

  1133.     // resolve bind addresses and external addresses
    1134. 

  1134.     num_bind_addrs = 0;
    1135. 

  1135.     for (int i = 0; i < options.num_bind_addrs; i++) {
    1136. 

  1136.         POINTER(addr, options.bind_addrs[i])
    1137. 

  1137.         POINTER(out, bind_addrs[num_bind_addrs])
    1138. 

  1138.         
    1139. 

  1139.         // read addr
    1140. 

  1140.         if (!BAddr_Parse(&out->addr, addr->addr, NULL, 0)) {
    1141. 

  1141.             BLog(BLOG_ERROR, "bind addr: BAddr_Parse failed");
    1142. 

  1142.             return 0;
    1143. 

  1143.         }
    1144. 

  1144.         
    1145. 

  1145.         // read num ports
    1146. 

  1146.         if (options.transport_mode == TRANSPORT_MODE_UDP) {
    1147. 

  1147.             if (addr->num_ports < 0) {
    1148. 

  1148.                 BLog(BLOG_ERROR, "bind addr: num ports missing");
    1149. 

  1149.                 return 0;
    1150. 

  1150.             }
    1151. 

  1151.             out->num_ports = addr->num_ports;
    1152. 

  1152.         }
    1153. 

  1153.         else if (addr->num_ports >= 0) {
    1154. 

  1154.             BLog(BLOG_ERROR, "bind addr: num ports given, but not using UDP");
    1155. 

  1155.             return 0;
    1156. 

  1156.         }
    1157. 

  1157.         
    1158. 

  1158.         // read ext addrs
    1159. 

  1159.         out->num_ext_addrs = 0;
    1160. 

  1160.         for (int j = 0; j < addr->num_ext_addrs; j++) {
    1161. 

  1161.             POINTER(eaddr, addr->ext_addrs[j])
    1162. 

  1162.             POINTER(eout, out->ext_addrs[out->num_ext_addrs])
    1163. 

  1163.             
    1164. 

  1164.             // read addr
    1165. 

  1165.             char *colon = strstr(eaddr->addr, ":");
    1166. 

  1166.             if (!colon) {
    1167. 

  1167.                 BLog(BLOG_ERROR, "ext addr: no colon");
    1168. 

  1168.                 return 0;
    1169. 

  1169.             }
    1170. 

  1170.             char addrstr[colon - eaddr->addr + 1];
    1171. 

  1171.             memcpy(addrstr, eaddr->addr, colon - eaddr->addr);
    1172. 

  1172.             addrstr[colon - eaddr->addr] = '\0';
    1173. 

  1173.             if (!strcmp(addrstr, "{server_reported}")) {
    1174. 

  1174.                 if ((eout->server_reported_port = atoi(colon + 1)) < 0) {
    1175. 

  1175.                     BLog(BLOG_ERROR, "ext addr: wrong port");
    1176. 

  1176.                     return 0;
    1177. 

  1177.                 }
    1178. 

  1178.             } else {
    1179. 

  1179.                 eout->server_reported_port = -1;
    1180. 

  1180.                 if (!BAddr_Parse(&eout->addr, eaddr->addr, NULL, 0)) {
    1181. 

  1181.                     BLog(BLOG_ERROR, "ext addr: BAddr_Parse failed");
    1182. 

  1182.                     return 0;
    1183. 

  1183.                 }
    1184. 

  1184.             }
    1185. 

  1185.             
    1186. 

  1186.             // read scope
    1187. 

  1187.             snprintf(eout->scope, sizeof(eout->scope), "%s", eaddr->scope);
    1188. 

  1188.             
    1189. 

  1189.             out->num_ext_addrs++;
    1190. 

  1190.         }
    1191. 

  1191.         
    1192. 

  1192.         num_bind_addrs++;
    1193. 

  1193.     }
    1194. 

  1194.     
    1195. 

  1195.     // initialize SPProto parameters
    1196. 

  1196.     if (options.transport_mode == TRANSPORT_MODE_UDP) {
    1197. 

  1197.         sp_params.encryption_mode = options.encryption_mode;
    1198. 

  1198.         sp_params.hash_mode = options.hash_mode;
    1199. 

  1199.         sp_params.otp_mode = options.otp_mode;
    1200. 

  1200.         if (options.otp_mode > 0) {
    1201. 

  1201.             sp_params.otp_num = options.otp_num;
    1202. 

  1202.         }
    1203. 

  1203.     }
    1204. 

  1204.     
    1205. 

  1205.     return 1;
    1206. 

  1206. }
    1207. 

  1207. 

  1208. void signal_handler (void *unused)
    1209. 

  1209. {
    1210. 

  1210.     BLog(BLOG_NOTICE, "termination requested");
    1211. 

  1211.     
    1212. 

  1212.     terminate();
    1213. 

  1213. }
    1214. 

  1214. 

  1215. int server_start_msg (void **data, peerid_t peer_id, int type, int len)
    1216. 

  1216. {
    1217. 

  1217.     ASSERT(ServerConnection_IsReady(&server))
    1218. 

  1218.     ASSERT(len >= 0)
    1219. 

  1219.     ASSERT(len <= MSG_MAX_PAYLOAD)
    1220. 

  1220.     ASSERT(!(len > 0) || data)
    1221. 

  1221.     
    1222. 

  1222.     uint8_t *packet;
    1223. 

  1223.     if (!ServerConnection_StartMessage(&server, &packet, peer_id, msg_SIZEtype + msg_SIZEpayload(len))) {
    1224. 

  1224.         BLog(BLOG_ERROR, "out of server buffer, exiting");
    1225. 

  1225.         terminate();
    1226. 

  1226.         return -1;
    1227. 

  1227.     }
    1228. 

  1228.     
    1229. 

  1229.     msgWriter writer;
    1230. 

  1230.     msgWriter_Init(&writer, packet);
    1231. 

  1231.     msgWriter_Addtype(&writer, type);
    1232. 

  1232.     uint8_t *payload_dst = msgWriter_Addpayload(&writer, len);
    1233. 

  1233.     msgWriter_Finish(&writer);
    1234. 

  1234.     
    1235. 

  1235.     if (data) {
    1236. 

  1236.         *data = payload_dst;
    1237. 

  1237.     }
    1238. 

  1238.     
    1239. 

  1239.     return 0;
    1240. 

  1240. }
    1241. 

  1241. 

  1242. void server_end_msg (void)
    1243. 

  1243. {
    1244. 

  1244.     ASSERT(ServerConnection_IsReady(&server))
    1245. 

  1245.     
    1246. 

  1246.     ServerConnection_EndMessage(&server);
    1247. 

  1247. }
    1248. 

  1248. 

  1249. void peer_add (peerid_t id, int flags, const uint8_t *cert, int cert_len)
    1250. 

  1250. {
    1251. 

  1251.     ASSERT(ServerConnection_IsReady(&server))
    1252. 

  1252.     ASSERT(num_peers < MAX_PEERS)
    1253. 

  1253.     ASSERT(!find_peer_by_id(id))
    1254. 

  1254.     ASSERT(id != my_id)
    1255. 

  1255.     ASSERT(cert_len >= 0)
    1256. 

  1256.     ASSERT(cert_len <= SCID_NEWCLIENT_MAX_CERT_LEN)
    1257. 

  1257.     
    1258. 

  1258.     // allocate structure
    1259. 

  1259.     struct peer_data *peer = malloc(sizeof(*peer));
    1260. 

  1260.     if (!peer) {
    1261. 

  1261.         BLog(BLOG_ERROR, "peer %d: failed to allocate memory", (int)id);
    1262. 

  1262.         goto fail0;
    1263. 

  1263.     }
    1264. 

  1264.     
    1265. 

  1265.     // remember id
    1266. 

  1266.     peer->id = id;
    1267. 

  1267.     
    1268. 

  1268.     // remember flags
    1269. 

  1269.     peer->flags = flags;
    1270. 

  1270.     
    1271. 

  1271.     // set no common name
    1272. 

  1272.     peer->common_name = NULL;
    1273. 

  1273.     
    1274. 

  1274.     if (options.ssl) {
    1275. 

  1275.         // remember certificate
    1276. 

  1276.         memcpy(peer->cert, cert, cert_len);
    1277. 

  1277.         peer->cert_len = cert_len;
    1278. 

  1278.         
    1279. 

  1279.         // make sure that CERT_DecodeCertFromPackage will interpretet the input as raw DER and not base64,
    1280. 

  1280.         // in which case following workaroud wouldn't help
    1281. 

  1281.         if (!(cert_len > 0 && (cert[0] & 0x1f) == 0x10)) {
    1282. 

  1282.             peer_log(peer, BLOG_ERROR, "certificate does not look like DER");
    1283. 

  1283.             goto fail1;
    1284. 

  1284.         }
    1285. 

  1285.         
    1286. 

  1286.         // copy the certificate and append it a good load of zero bytes,
    1287. 

  1287.         // hopefully preventing the crappy CERT_DecodeCertFromPackage from crashing
    1288. 

  1288.         // by reading past the of its input
    1289. 

  1289.         uint8_t *certbuf = malloc(cert_len + 100);
    1290. 

  1290.         if (!certbuf) {
    1291. 

  1291.             peer_log(peer, BLOG_ERROR, "malloc failed");
    1292. 

  1292.             goto fail1;
    1293. 

  1293.         }
    1294. 

  1294.         memcpy(certbuf, cert, cert_len);
    1295. 

  1295.         memset(certbuf + cert_len, 0, 100);
    1296. 

  1296.         
    1297. 

  1297.         // decode certificate, so we can extract the common name
    1298. 

  1298.         CERTCertificate *nsscert = CERT_DecodeCertFromPackage((char *)certbuf, cert_len);
    1299. 

  1299.         if (!nsscert) {
    1300. 

  1300.             peer_log(peer, BLOG_ERROR, "CERT_DecodeCertFromPackage failed (%d)", PORT_GetError());
    1301. 

  1301.             free(certbuf);
    1302. 

  1302.             goto fail1;
    1303. 

  1303.         }
    1304. 

  1304.         
    1305. 

  1305.         free(certbuf);
    1306. 

  1306.         
    1307. 

  1307.         // remember common name
    1308. 

  1308.         if (!(peer->common_name = CERT_GetCommonName(&nsscert->subject))) {
    1309. 

  1309.             peer_log(peer, BLOG_ERROR, "CERT_GetCommonName failed");
    1310. 

  1310.             CERT_DestroyCertificate(nsscert);
    1311. 

  1311.             goto fail1;
    1312. 

  1312.         }
    1313. 

  1313.         
    1314. 

  1314.         CERT_DestroyCertificate(nsscert);
    1315. 

  1315.     }
    1316. 

  1316.     
    1317. 

  1317.     // init local flow
    1318. 

  1318.     if (!DataProtoFlow_Init(&peer->local_dpflow, &device_input_dpd, my_id, peer->id, options.send_buffer_size, -1, NULL, NULL)) {
    1319. 

  1319.         peer_log(peer, BLOG_ERROR, "DataProtoFlow_Init failed");
    1320. 

  1320.         goto fail2;
    1321. 

  1321.     }
    1322. 

  1322.     
    1323. 

  1323.     // init frame decider peer
    1324. 

  1324.     if (!FrameDeciderPeer_Init(&peer->decider_peer, &frame_decider)) {
    1325. 

  1325.         peer_log(peer, BLOG_ERROR, "FrameDeciderPeer_Init failed");
    1326. 

  1326.         goto fail3;
    1327. 

  1327.     }
    1328. 

  1328.     
    1329. 

  1329.     // init receive peer
    1330. 

  1330.     DPReceivePeer_Init(&peer->receive_peer, &device_output_dprd, peer->id, &peer->decider_peer, !!(peer->flags & SCID_NEWCLIENT_FLAG_RELAY_CLIENT));
    1331. 

  1331.     
    1332. 

  1332.     // have no link
    1333. 

  1333.     peer->have_link = 0;
    1334. 

  1334.     
    1335. 

  1335.     // have no relaying
    1336. 

  1336.     peer->relaying_peer = NULL;
    1337. 

  1337.     
    1338. 

  1338.     // not waiting for relay
    1339. 

  1339.     peer->waiting_relay = 0;
    1340. 

  1340.     
    1341. 

  1341.     // init reset timer
    1342. 

  1342.     BTimer_Init(&peer->reset_timer, PEER_RETRY_TIME, (BTimer_handler)peer_reset_timer_handler, peer);
    1343. 

  1343.     
    1344. 

  1344.     // is not relay server
    1345. 

  1345.     peer->is_relay = 0;
    1346. 

  1346.     
    1347. 

  1347.     // init binding
    1348. 

  1348.     peer->binding = 0;
    1349. 

  1349.     
    1350. 

  1350.     // init send seed job
    1351. 

  1351.     BPending_Init(&peer->job_send_seed_after_binding, BReactor_PendingGroup(&ss), (BPending_handler)peer_job_send_seed_after_binding, peer);
    1352. 

  1352.     
    1353. 

  1353.     // add to peers list
    1354. 

  1354.     LinkedList2_Append(&peers, &peer->list_node);
    1355. 

  1355.     num_peers++;
    1356. 

  1356.     
    1357. 

  1357.     peer_log(peer, BLOG_INFO, "initialized");
    1358. 

  1358.     
    1359. 

  1359.     // start setup process
    1360. 

  1360.     if (peer_am_master(peer)) {
    1361. 

  1361.         peer_start_binding(peer);
    1362. 

  1362.     }
    1363. 

  1363.     
    1364. 

  1364.     return;
    1365. 

  1365.     
    1366. 

  1366. fail3:
    1367. 

  1367.     DataProtoFlow_Free(&peer->local_dpflow);
    1368. 

  1368. fail2:
    1369. 

  1369.     if (peer->common_name) {
    1370. 

  1370.         PORT_Free(peer->common_name);
    1371. 

  1371.     }
    1372. 

  1372. fail1:
    1373. 

  1373.     free(peer);
    1374. 

  1374. fail0:;
    1375. 

  1375. }
    1376. 

  1376. 

  1377. void peer_remove (struct peer_data *peer)
    1378. 

  1378. {
    1379. 

  1379.     peer_log(peer, BLOG_INFO, "removing");
    1380. 

  1380.     
    1381. 

  1381.     // cleanup
    1382. 

  1382.     if (peer->have_link) {
    1383. 

  1383.         if (peer->is_relay) {
    1384. 

  1384.             peer_disable_relay_provider(peer);
    1385. 

  1385.         }
    1386. 

  1386.         peer_free_link(peer);
    1387. 

  1387.     }
    1388. 

  1388.     else if (peer->relaying_peer) {
    1389. 

  1389.         peer_free_relaying(peer);
    1390. 

  1390.     }
    1391. 

  1391.     else if (peer->waiting_relay) {
    1392. 

  1392.         peer_unregister_need_relay(peer);
    1393. 

  1393.     }
    1394. 

  1394.     
    1395. 

  1395.     ASSERT(!peer->relaying_peer)
    1396. 

  1396.     ASSERT(!peer->is_relay)
    1397. 

  1397.     ASSERT(!peer->waiting_relay)
    1398. 

  1398.     ASSERT(!peer->have_link)
    1399. 

  1399.     
    1400. 

  1400.     // remove from peers list
    1401. 

  1401.     LinkedList2_Remove(&peers, &peer->list_node);
    1402. 

  1402.     num_peers--;
    1403. 

  1403.     
    1404. 

  1404.     // free send seed job
    1405. 

  1405.     BPending_Free(&peer->job_send_seed_after_binding);
    1406. 

  1406.     
    1407. 

  1407.     // free reset timer
    1408. 

  1408.     BReactor_RemoveTimer(&ss, &peer->reset_timer);
    1409. 

  1409.     
    1410. 

  1410.     // free receive peer
    1411. 

  1411.     DPReceivePeer_Free(&peer->receive_peer);
    1412. 

  1412.     
    1413. 

  1413.     // free frame decider
    1414. 

  1414.     FrameDeciderPeer_Free(&peer->decider_peer);
    1415. 

  1415.     
    1416. 

  1416.     // free local flow
    1417. 

  1417.     DataProtoFlow_Free(&peer->local_dpflow);
    1418. 

  1418.     
    1419. 

  1419.     // free common name
    1420. 

  1420.     if (peer->common_name) {
    1421. 

  1421.         PORT_Free(peer->common_name);
    1422. 

  1422.     }
    1423. 

  1423.     
    1424. 

  1424.     // free peer structure
    1425. 

  1425.     free(peer);
    1426. 

  1426. }
    1427. 

  1427. 

  1428. void peer_log (struct peer_data *peer, int level, const char *fmt, ...)
    1429. 

  1429. {
    1430. 

  1430.     va_list vl;
    1431. 

  1431.     va_start(vl, fmt);
    1432. 

  1432.     BLog_Append("peer %d", (int)peer->id);
    1433. 

  1433.     if (peer->common_name) {
    1434. 

  1434.         BLog_Append(" (%s)", peer->common_name);
    1435. 

  1435.     }
    1436. 

  1436.     BLog_Append(": ");
    1437. 

  1437.     BLog_LogToChannelVarArg(BLOG_CURRENT_CHANNEL, level, fmt, vl);
    1438. 

  1438.     va_end(vl);
    1439. 

  1439. }
    1440. 

  1440. 

  1441. int peer_am_master (struct peer_data *peer)
    1442. 

  1442. {
    1443. 

  1443.     return (my_id > peer->id);
    1444. 

  1444. }
    1445. 

  1445. 

  1446. int peer_init_link (struct peer_data *peer)
    1447. 

  1447. {
    1448. 

  1448.     ASSERT(!peer->have_link)
    1449. 

  1449.     ASSERT(!peer->relaying_peer)
    1450. 

  1450.     ASSERT(!peer->waiting_relay)
    1451. 

  1451.     
    1452. 

  1452.     ASSERT(!peer->is_relay)
    1453. 

  1453.     
    1454. 

  1454.     // init receive receiver
    1455. 

  1455.     DPReceiveReceiver_Init(&peer->receive_receiver, &peer->receive_peer);
    1456. 

  1456.     PacketPassInterface *recv_if = DPReceiveReceiver_GetInput(&peer->receive_receiver);
    1457. 

  1457.     
    1458. 

  1458.     // init transport-specific link objects
    1459. 

  1459.     PacketPassInterface *link_if;
    1460. 

  1460.     if (options.transport_mode == TRANSPORT_MODE_UDP) {
    1461. 

  1461.         // init DatagramPeerIO
    1462. 

  1462.         if (!DatagramPeerIO_Init(
    1463. 

  1463.             &peer->pio.udp.pio, &ss, data_mtu, CLIENT_UDP_MTU, sp_params,
    1464. 

  1464.             options.fragmentation_latency, PEER_UDP_ASSEMBLER_NUM_FRAMES, recv_if,
    1465. 

  1465.             options.otp_num_warn, &twd
    1466. 

  1466.         )) {
    1467. 

  1467.             peer_log(peer, BLOG_ERROR, "DatagramPeerIO_Init failed");
    1468. 

  1468.             goto fail1;
    1469. 

  1469.         }
    1470. 

  1470.         
    1471. 

  1471.         // set handlers
    1472. 

  1472.         DatagramPeerIO_SetHandlers(
    1473. 

  1473.             &peer->pio.udp.pio,
    1474. 

  1474.             (DatagramPeerIO_handler_otp_warning)peer_udp_pio_handler_seed_warning,
    1475. 

  1475.             (DatagramPeerIO_handler_otp_ready)peer_udp_pio_handler_seed_ready,
    1476. 

  1476.             peer
    1477. 

  1477.         );
    1478. 

  1478.         
    1479. 

  1479.         // init send seed state
    1480. 

  1480.         if (SPPROTO_HAVE_OTP(sp_params)) {
    1481. 

  1481.             peer->pio.udp.sendseed_nextid = 0;
    1482. 

  1482.             peer->pio.udp.sendseed_sent = 0;
    1483. 

  1483.         }
    1484. 

  1484.         
    1485. 

  1485.         link_if = DatagramPeerIO_GetSendInput(&peer->pio.udp.pio);
    1486. 

  1486.     } else {
    1487. 

  1487.         // init StreamPeerIO
    1488. 

  1488.         if (!StreamPeerIO_Init(
    1489. 

  1489.             &peer->pio.tcp.pio, &ss, options.peer_ssl,
    1490. 

  1490.             (options.peer_ssl ? peer->cert : NULL),
    1491. 

  1491.             (options.peer_ssl ? peer->cert_len : -1),
    1492. 

  1492.             data_mtu, recv_if,
    1493. 

  1493.             (StreamPeerIO_handler_error)peer_tcp_pio_handler_error, peer
    1494. 

  1494.         )) {
    1495. 

  1495.             peer_log(peer, BLOG_ERROR, "StreamPeerIO_Init failed");
    1496. 

  1496.             goto fail1;
    1497. 

  1497.         }
    1498. 

  1498.         
    1499. 

  1499.         link_if = StreamPeerIO_GetSendInput(&peer->pio.tcp.pio);
    1500. 

  1500.     }
    1501. 

  1501.     
    1502. 

  1502.     // init sending
    1503. 

  1503.     if (!DataProtoSink_Init(&peer->send_dp, &ss, link_if, PEER_KEEPALIVE_INTERVAL, PEER_KEEPALIVE_RECEIVE_TIMER, (DataProtoSink_handler)peer_dataproto_handler, peer)) {
    1504. 

  1504.         peer_log(peer, BLOG_ERROR, "DataProto_Init failed");
    1505. 

  1505.         goto fail2;
    1506. 

  1506.     }
    1507. 

  1507.     
    1508. 

  1508.     // attach local flow to our DataProtoSink
    1509. 

  1509.     DataProtoFlow_Attach(&peer->local_dpflow, &peer->send_dp);
    1510. 

  1510.     
    1511. 

  1511.     // attach receive peer to our DataProtoSink
    1512. 

  1512.     DPReceivePeer_AttachSink(&peer->receive_peer, &peer->send_dp);
    1513. 

  1513.     
    1514. 

  1514.     peer->have_link = 1;
    1515. 

  1515.     
    1516. 

  1516.     return 1;
    1517. 

  1517.     
    1518. 

  1518. fail2:
    1519. 

  1519.     if (options.transport_mode == TRANSPORT_MODE_UDP) {
    1520. 

  1520.         DatagramPeerIO_Free(&peer->pio.udp.pio);
    1521. 

  1521.     } else {
    1522. 

  1522.         StreamPeerIO_Free(&peer->pio.tcp.pio);
    1523. 

  1523.     }
    1524. 

  1524. fail1:
    1525. 

  1525.     DPReceiveReceiver_Free(&peer->receive_receiver);
    1526. 

  1526.     return 0;
    1527. 

  1527. }
    1528. 

  1528. 

  1529. void peer_free_link (struct peer_data *peer)
    1530. 

  1530. {
    1531. 

  1531.     ASSERT(peer->have_link)
    1532. 

  1532.     ASSERT(!peer->is_relay)
    1533. 

  1533.     
    1534. 

  1534.     ASSERT(!peer->relaying_peer)
    1535. 

  1535.     ASSERT(!peer->waiting_relay)
    1536. 

  1536.     
    1537. 

  1537.     ASSERT(!DPReceiveReceiver_IsBusy(&peer->receive_receiver)) // TODO
    1538. 

  1538.     
    1539. 

  1539.     // detach receive peer from our DataProtoSink
    1540. 

  1540.     DPReceivePeer_DetachSink(&peer->receive_peer);
    1541. 

  1541.     
    1542. 

  1542.     // detach local flow from our DataProtoSink
    1543. 

  1543.     DataProtoFlow_Detach(&peer->local_dpflow);
    1544. 

  1544.     
    1545. 

  1545.     // free sending
    1546. 

  1546.     DataProtoSink_Free(&peer->send_dp);
    1547. 

  1547.     
    1548. 

  1548.     // free transport-specific link objects
    1549. 

  1549.     if (options.transport_mode == TRANSPORT_MODE_UDP) {
    1550. 

  1550.         DatagramPeerIO_Free(&peer->pio.udp.pio);
    1551. 

  1551.     } else {
    1552. 

  1552.         StreamPeerIO_Free(&peer->pio.tcp.pio);
    1553. 

  1553.     }
    1554. 

  1554.     
    1555. 

  1555.     // free receive receiver
    1556. 

  1556.     DPReceiveReceiver_Free(&peer->receive_receiver);
    1557. 

  1557.     
    1558. 

  1558.     peer->have_link = 0;
    1559. 

  1559. }
    1560. 

  1560. 

  1561. int peer_new_link (struct peer_data *peer)
    1562. 

  1562. {
    1563. 

  1563.     if (peer->have_link) {
    1564. 

  1564.         if (peer->is_relay) {
    1565. 

  1565.             peer_disable_relay_provider(peer);
    1566. 

  1566.         }
    1567. 

  1567.         peer_free_link(peer);
    1568. 

  1568.     }
    1569. 

  1569.     else if (peer->relaying_peer) {
    1570. 

  1570.         peer_free_relaying(peer);
    1571. 

  1571.     }
    1572. 

  1572.     else if (peer->waiting_relay) {
    1573. 

  1573.         peer_unregister_need_relay(peer);
    1574. 

  1574.     }
    1575. 

  1575.     
    1576. 

  1576.     if (!peer_init_link(peer)) {
    1577. 

  1577.         return 0;
    1578. 

  1578.     }
    1579. 

  1579.     
    1580. 

  1580.     return 1;
    1581. 

  1581. }
    1582. 

  1582. 

  1583. void peer_enable_relay_provider (struct peer_data *peer)
    1584. 

  1584. {
    1585. 

  1585.     ASSERT(peer->have_link)
    1586. 

  1586.     ASSERT(!peer->is_relay)
    1587. 

  1587.     
    1588. 

  1588.     ASSERT(!peer->relaying_peer)
    1589. 

  1589.     ASSERT(!peer->waiting_relay)
    1590. 

  1590.     
    1591. 

  1591.     // add to relays list
    1592. 

  1592.     LinkedList2_Append(&relays, &peer->relay_list_node);
    1593. 

  1593.     
    1594. 

  1594.     // init users list
    1595. 

  1595.     LinkedList2_Init(&peer->relay_users);
    1596. 

  1596.     
    1597. 

  1597.     peer->is_relay = 1;
    1598. 

  1598.     
    1599. 

  1599.     // assign relays
    1600. 

  1600.     assign_relays();
    1601. 

  1601. }
    1602. 

  1602. 

  1603. void peer_disable_relay_provider (struct peer_data *peer)
    1604. 

  1604. {
    1605. 

  1605.     ASSERT(peer->is_relay)
    1606. 

  1606.     
    1607. 

  1607.     ASSERT(peer->have_link)
    1608. 

  1608.     ASSERT(!peer->relaying_peer)
    1609. 

  1609.     ASSERT(!peer->waiting_relay)
    1610. 

  1610.     
    1611. 

  1611.     // disconnect relay users
    1612. 

  1612.     LinkedList2Node *list_node;
    1613. 

  1613.     while (list_node = LinkedList2_GetFirst(&peer->relay_users)) {
    1614. 

  1614.         struct peer_data *relay_user = UPPER_OBJECT(list_node, struct peer_data, relaying_list_node);
    1615. 

  1615.         ASSERT(relay_user->relaying_peer == peer)
    1616. 

  1616.         
    1617. 

  1617.         // disconnect relay user
    1618. 

  1618.         peer_free_relaying(relay_user);
    1619. 

  1619.         
    1620. 

  1620.         // add it to need relay list
    1621. 

  1621.         peer_register_need_relay(relay_user);
    1622. 

  1622.     }
    1623. 

  1623.     
    1624. 

  1624.     // remove from relays list
    1625. 

  1625.     LinkedList2_Remove(&relays, &peer->relay_list_node);
    1626. 

  1626.     
    1627. 

  1627.     peer->is_relay = 0;
    1628. 

  1628.     
    1629. 

  1629.     // assign relays
    1630. 

  1630.     assign_relays();
    1631. 

  1631. }
    1632. 

  1632. 

  1633. void peer_install_relaying (struct peer_data *peer, struct peer_data *relay)
    1634. 

  1634. {
    1635. 

  1635.     ASSERT(!peer->relaying_peer)
    1636. 

  1636.     ASSERT(!peer->have_link)
    1637. 

  1637.     ASSERT(!peer->waiting_relay)
    1638. 

  1638.     ASSERT(relay->is_relay)
    1639. 

  1639.     
    1640. 

  1640.     ASSERT(!peer->is_relay)
    1641. 

  1641.     ASSERT(relay->have_link)
    1642. 

  1642.     
    1643. 

  1643.     peer_log(peer, BLOG_INFO, "installing relaying through %d", (int)relay->id);
    1644. 

  1644.     
    1645. 

  1645.     // add to relay's users list
    1646. 

  1646.     LinkedList2_Append(&relay->relay_users, &peer->relaying_list_node);
    1647. 

  1647.     
    1648. 

  1648.     // attach local flow to relay
    1649. 

  1649.     DataProtoFlow_Attach(&peer->local_dpflow, &relay->send_dp);
    1650. 

  1650.     
    1651. 

  1651.     peer->relaying_peer = relay;
    1652. 

  1652. }
    1653. 

  1653. 

  1654. void peer_free_relaying (struct peer_data *peer)
    1655. 

  1655. {
    1656. 

  1656.     ASSERT(peer->relaying_peer)
    1657. 

  1657.     
    1658. 

  1658.     ASSERT(!peer->have_link)
    1659. 

  1659.     ASSERT(!peer->waiting_relay)
    1660. 

  1660.     
    1661. 

  1661.     struct peer_data *relay = peer->relaying_peer;
    1662. 

  1662.     ASSERT(relay->is_relay)
    1663. 

  1663.     ASSERT(relay->have_link)
    1664. 

  1664.     
    1665. 

  1665.     peer_log(peer, BLOG_INFO, "uninstalling relaying through %d", (int)relay->id);
    1666. 

  1666.     
    1667. 

  1667.     // detach local flow from relay
    1668. 

  1668.     DataProtoFlow_Detach(&peer->local_dpflow);
    1669. 

  1669.     
    1670. 

  1670.     // remove from relay's users list
    1671. 

  1671.     LinkedList2_Remove(&relay->relay_users, &peer->relaying_list_node);
    1672. 

  1672.     
    1673. 

  1673.     peer->relaying_peer = NULL;
    1674. 

  1674. }
    1675. 

  1675. 

  1676. void peer_need_relay (struct peer_data *peer)
    1677. 

  1677. {
    1678. 

  1678.     ASSERT(!peer->is_relay)
    1679. 

  1679.     
    1680. 

  1680.     if (peer->waiting_relay) {
    1681. 

  1681.         // already waiting for relay, do nothing
    1682. 

  1682.         return;
    1683. 

  1683.     }
    1684. 

  1684.     
    1685. 

  1685.     if (peer->have_link) {
    1686. 

  1686.         peer_free_link(peer);
    1687. 

  1687.     }
    1688. 

  1688.     else if (peer->relaying_peer) {
    1689. 

  1689.         peer_free_relaying(peer);
    1690. 

  1690.     }
    1691. 

  1691.     
    1692. 

  1692.     // register the peer as needing a relay
    1693. 

  1693.     peer_register_need_relay(peer);
    1694. 

  1694.     
    1695. 

  1695.     // assign relays
    1696. 

  1696.     assign_relays();
    1697. 

  1697. }
    1698. 

  1698. 

  1699. void peer_register_need_relay (struct peer_data *peer)
    1700. 

  1700. {
    1701. 

  1701.     ASSERT(!peer->waiting_relay)
    1702. 

  1702.     ASSERT(!peer->have_link)
    1703. 

  1703.     ASSERT(!peer->relaying_peer)
    1704. 

  1704.     
    1705. 

  1705.     ASSERT(!peer->is_relay)
    1706. 

  1706.     
    1707. 

  1707.     // add to need relay list
    1708. 

  1708.     LinkedList2_Append(&waiting_relay_peers, &peer->waiting_relay_list_node);
    1709. 

  1709.     
    1710. 

  1710.     peer->waiting_relay = 1;
    1711. 

  1711. }
    1712. 

  1712. 

  1713. void peer_unregister_need_relay (struct peer_data *peer)
    1714. 

  1714. {
    1715. 

  1715.     ASSERT(peer->waiting_relay)
    1716. 

  1716.     
    1717. 

  1717.     ASSERT(!peer->have_link)
    1718. 

  1718.     ASSERT(!peer->relaying_peer)
    1719. 

  1719.     ASSERT(!peer->is_relay)
    1720. 

  1720.     
    1721. 

  1721.     // remove from need relay list
    1722. 

  1722.     LinkedList2_Remove(&waiting_relay_peers, &peer->waiting_relay_list_node);
    1723. 

  1723.     
    1724. 

  1724.     peer->waiting_relay = 0;
    1725. 

  1725. }
    1726. 

  1726. 

  1727. void peer_reset (struct peer_data *peer)
    1728. 

  1728. {
    1729. 

  1729.     peer_log(peer, BLOG_NOTICE, "resetting");
    1730. 

  1730.     
    1731. 

  1731.     // free link
    1732. 

  1732.     if (peer->have_link) {
    1733. 

  1733.         if (peer->is_relay) {
    1734. 

  1734.             peer_disable_relay_provider(peer);
    1735. 

  1735.         }
    1736. 

  1736.         peer_free_link(peer);
    1737. 

  1737.     }
    1738. 

  1738.     
    1739. 

  1739.     if (peer_am_master(peer)) {
    1740. 

  1740.         // if we're the master, schedule retry
    1741. 

  1741.         BReactor_SetTimer(&ss, &peer->reset_timer);
    1742. 

  1742.     } else {
    1743. 

  1743.         // if we're the slave, report to master
    1744. 

  1744.         peer_send_simple(peer, MSGID_YOURETRY);
    1745. 

  1745.     }
    1746. 

  1746. }
    1747. 

  1747. 

  1748. void peer_msg (struct peer_data *peer, uint8_t *data, int data_len)
    1749. 

  1749. {
    1750. 

  1750.     ASSERT(data_len >= 0)
    1751. 

  1751.     ASSERT(data_len <= SC_MAX_MSGLEN)
    1752. 

  1752.     
    1753. 

  1753.     // parse message
    1754. 

  1754.     msgParser parser;
    1755. 

  1755.     if (!msgParser_Init(&parser, data, data_len)) {
    1756. 

  1756.         peer_log(peer, BLOG_NOTICE, "msg: failed to parse");
    1757. 

  1757.         return;
    1758. 

  1758.     }
    1759. 

  1759.     
    1760. 

  1760.     // read message
    1761. 

  1761.     uint16_t type;
    1762. 

  1762.     ASSERT_EXECUTE(msgParser_Gettype(&parser, &type))
    1763. 

  1763.     uint8_t *payload;
    1764. 

  1764.     int payload_len;
    1765. 

  1765.     ASSERT_EXECUTE(msgParser_Getpayload(&parser, &payload, &payload_len))
    1766. 

  1766.     
    1767. 

  1767.     // dispatch according to message type
    1768. 

  1768.     switch (type) {
    1769. 

  1769.         case MSGID_YOUCONNECT:
    1770. 

  1770.             peer_msg_youconnect(peer, payload, payload_len);
    1771. 

  1771.             return;
    1772. 

  1772.         case MSGID_CANNOTCONNECT:
    1773. 

  1773.             peer_msg_cannotconnect(peer, payload, payload_len);
    1774. 

  1774.             return;
    1775. 

  1775.         case MSGID_CANNOTBIND:
    1776. 

  1776.             peer_msg_cannotbind(peer, payload, payload_len);
    1777. 

  1777.             return;
    1778. 

  1778.         case MSGID_YOURETRY:
    1779. 

  1779.             peer_msg_youretry(peer, payload, payload_len);
    1780. 

  1780.             return;
    1781. 

  1781.         case MSGID_SEED:
    1782. 

  1782.             peer_msg_seed(peer, payload, payload_len);
    1783. 

  1783.             return;
    1784. 

  1784.         case MSGID_CONFIRMSEED:
    1785. 

  1785.             peer_msg_confirmseed(peer, payload, payload_len);
    1786. 

  1786.             return;
    1787. 

  1787.         default:
    1788. 

  1788.             BLog(BLOG_NOTICE, "msg: unknown type");
    1789. 

  1789.             return;
    1790. 

  1790.     }
    1791. 

  1791. }
    1792. 

  1792. 

  1793. void peer_msg_youconnect (struct peer_data *peer, uint8_t *data, int data_len)
    1794. 

  1794. {
    1795. 

  1795.     // init parser
    1796. 

  1796.     msg_youconnectParser parser;
    1797. 

  1797.     if (!msg_youconnectParser_Init(&parser, data, data_len)) {
    1798. 

  1798.         peer_log(peer, BLOG_WARNING, "msg_youconnect: failed to parse");
    1799. 

  1799.         return;
    1800. 

  1800.     }
    1801. 

  1801.     
    1802. 

  1802.     // try addresses
    1803. 

  1803.     BAddr addr;
    1804. 

  1804.     while (1) {
    1805. 

  1805.         // get address message
    1806. 

  1806.         uint8_t *addrmsg_data;
    1807. 

  1807.         int addrmsg_len;
    1808. 

  1808.         if (!msg_youconnectParser_Getaddr(&parser, &addrmsg_data, &addrmsg_len)) {
    1809. 

  1809.             peer_log(peer, BLOG_NOTICE, "msg_youconnect: no usable addresses");
    1810. 

  1810.             peer_send_simple(peer, MSGID_CANNOTCONNECT);
    1811. 

  1811.             return;
    1812. 

  1812.         }
    1813. 

  1813.         
    1814. 

  1814.         // parse address message
    1815. 

  1815.         msg_youconnect_addrParser aparser;
    1816. 

  1816.         if (!msg_youconnect_addrParser_Init(&aparser, addrmsg_data, addrmsg_len)) {
    1817. 

  1817.             peer_log(peer, BLOG_WARNING, "msg_youconnect: failed to parse address message");
    1818. 

  1818.             return;
    1819. 

  1819.         }
    1820. 

  1820.         
    1821. 

  1821.         // check if the address scope is known
    1822. 

  1822.         uint8_t *name_data;
    1823. 

  1823.         int name_len;
    1824. 

  1824.         ASSERT_EXECUTE(msg_youconnect_addrParser_Getname(&aparser, &name_data, &name_len))
    1825. 

  1825.         char *name;
    1826. 

  1826.         if (!(name = address_scope_known(name_data, name_len))) {
    1827. 

  1827.             continue;
    1828. 

  1828.         }
    1829. 

  1829.         
    1830. 

  1830.         // read address
    1831. 

  1831.         uint8_t *addr_data;
    1832. 

  1832.         int addr_len;
    1833. 

  1833.         ASSERT_EXECUTE(msg_youconnect_addrParser_Getaddr(&aparser, &addr_data, &addr_len))
    1834. 

  1834.         if (!addr_read(addr_data, addr_len, &addr)) {
    1835. 

  1835.             peer_log(peer, BLOG_WARNING, "msg_youconnect: failed to read address");
    1836. 

  1836.             continue;
    1837. 

  1837.         }
    1838. 

  1838.         
    1839. 

  1839.         peer_log(peer, BLOG_NOTICE, "msg_youconnect: using address in scope '%s'", name);
    1840. 

  1840.         break;
    1841. 

  1841.     }
    1842. 

  1842.     
    1843. 

  1843.     // discard further addresses
    1844. 

  1844.     msg_youconnectParser_Forwardaddr(&parser);
    1845. 

  1845.     
    1846. 

  1846.     uint8_t *key = NULL;
    1847. 

  1847.     uint64_t password = 0;
    1848. 

  1848.     
    1849. 

  1849.     // read additonal parameters
    1850. 

  1850.     if (options.transport_mode == TRANSPORT_MODE_UDP) {
    1851. 

  1851.         if (SPPROTO_HAVE_ENCRYPTION(sp_params)) {
    1852. 

  1852.             int key_len;
    1853. 

  1853.             if (!msg_youconnectParser_Getkey(&parser, &key, &key_len)) {
    1854. 

  1854.                 peer_log(peer, BLOG_WARNING, "msg_youconnect: no key");
    1855. 

  1855.                 return;
    1856. 

  1856.             }
    1857. 

  1857.             if (key_len != BEncryption_cipher_key_size(sp_params.encryption_mode)) {
    1858. 

  1858.                 peer_log(peer, BLOG_WARNING, "msg_youconnect: wrong key size");
    1859. 

  1859.                 return;
    1860. 

  1860.             }
    1861. 

  1861.         }
    1862. 

  1862.     } else {
    1863. 

  1863.         if (!msg_youconnectParser_Getpassword(&parser, &password)) {
    1864. 

  1864.             peer_log(peer, BLOG_WARNING, "msg_youconnect: no password");
    1865. 

  1865.             return;
    1866. 

  1866.         }
    1867. 

  1867.     }
    1868. 

  1868.     
    1869. 

  1869.     if (!msg_youconnectParser_GotEverything(&parser)) {
    1870. 

  1870.         peer_log(peer, BLOG_WARNING, "msg_youconnect: stray data");
    1871. 

  1871.         return;
    1872. 

  1872.     }
    1873. 

  1873.     
    1874. 

  1874.     peer_log(peer, BLOG_INFO, "connecting");
    1875. 

  1875.     
    1876. 

  1876.     peer_connect(peer, addr, key, password);
    1877. 

  1877. }
    1878. 

  1878. 

  1879. void peer_msg_cannotconnect (struct peer_data *peer, uint8_t *data, int data_len)
    1880. 

  1880. {
    1881. 

  1881.     if (data_len != 0) {
    1882. 

  1882.         peer_log(peer, BLOG_WARNING, "msg_cannotconnect: invalid length");
    1883. 

  1883.         return;
    1884. 

  1884.     }
    1885. 

  1885.     
    1886. 

  1886.     if (!peer->binding) {
    1887. 

  1887.         peer_log(peer, BLOG_WARNING, "msg_cannotconnect: not binding");
    1888. 

  1888.         return;
    1889. 

  1889.     }
    1890. 

  1890.     
    1891. 

  1891.     peer_log(peer, BLOG_INFO, "peer could not connect");
    1892. 

  1892.     
    1893. 

  1893.     // continue trying bind addresses
    1894. 

  1894.     peer_bind(peer);
    1895. 

  1895.     return;
    1896. 

  1896. }
    1897. 

  1897. 

  1898. void peer_msg_cannotbind (struct peer_data *peer, uint8_t *data, int data_len)
    1899. 

  1899. {
    1900. 

  1900.     if (data_len != 0) {
    1901. 

  1901.         peer_log(peer, BLOG_WARNING, "msg_cannotbind: invalid length");
    1902. 

  1902.         return;
    1903. 

  1903.     }
    1904. 

  1904.     
    1905. 

  1905.     peer_log(peer, BLOG_INFO, "peer cannot bind");
    1906. 

  1906.     
    1907. 

  1907.     if (!peer_am_master(peer)) {
    1908. 

  1908.         peer_start_binding(peer);
    1909. 

  1909.     } else {
    1910. 

  1910.         if (!peer->is_relay) {
    1911. 

  1911.             peer_need_relay(peer);
    1912. 

  1912.         }
    1913. 

  1913.     }
    1914. 

  1914. }
    1915. 

  1915. 

  1916. void peer_msg_seed (struct peer_data *peer, uint8_t *data, int data_len)
    1917. 

  1917. {
    1918. 

  1918.     msg_seedParser parser;
    1919. 

  1919.     if (!msg_seedParser_Init(&parser, data, data_len)) {
    1920. 

  1920.         peer_log(peer, BLOG_WARNING, "msg_seed: failed to parse");
    1921. 

  1921.         return;
    1922. 

  1922.     }
    1923. 

  1923.     
    1924. 

  1924.     // read message
    1925. 

  1925.     uint16_t seed_id;
    1926. 

  1926.     ASSERT_EXECUTE(msg_seedParser_Getseed_id(&parser, &seed_id))
    1927. 

  1927.     uint8_t *key;
    1928. 

  1928.     int key_len;
    1929. 

  1929.     ASSERT_EXECUTE(msg_seedParser_Getkey(&parser, &key, &key_len))
    1930. 

  1930.     uint8_t *iv;
    1931. 

  1931.     int iv_len;
    1932. 

  1932.     ASSERT_EXECUTE(msg_seedParser_Getiv(&parser, &iv, &iv_len))
    1933. 

  1933.     
    1934. 

  1934.     if (options.transport_mode != TRANSPORT_MODE_UDP) {
    1935. 

  1935.         peer_log(peer, BLOG_WARNING, "msg_seed: not in UDP mode");
    1936. 

  1936.         return;
    1937. 

  1937.     }
    1938. 

  1938.     
    1939. 

  1939.     if (!SPPROTO_HAVE_OTP(sp_params)) {
    1940. 

  1940.         peer_log(peer, BLOG_WARNING, "msg_seed: OTPs disabled");
    1941. 

  1941.         return;
    1942. 

  1942.     }
    1943. 

  1943.     
    1944. 

  1944.     if (key_len != BEncryption_cipher_key_size(sp_params.otp_mode)) {
    1945. 

  1945.         peer_log(peer, BLOG_WARNING, "msg_seed: wrong key length");
    1946. 

  1946.         return;
    1947. 

  1947.     }
    1948. 

  1948.     
    1949. 

  1949.     if (iv_len != BEncryption_cipher_block_size(sp_params.otp_mode)) {
    1950. 

  1950.         peer_log(peer, BLOG_WARNING, "msg_seed: wrong IV length");
    1951. 

  1951.         return;
    1952. 

  1952.     }
    1953. 

  1953.     
    1954. 

  1954.     if (!peer->have_link) {
    1955. 

  1955.         peer_log(peer, BLOG_WARNING, "msg_seed: have no link");
    1956. 

  1956.         return;
    1957. 

  1957.     }
    1958. 

  1958.     
    1959. 

  1959.     peer_log(peer, BLOG_DEBUG, "received OTP receive seed");
    1960. 

  1960.     
    1961. 

  1961.     // add receive seed
    1962. 

  1962.     DatagramPeerIO_AddOTPRecvSeed(&peer->pio.udp.pio, seed_id, key, iv);
    1963. 

  1963.     
    1964. 

  1964.     // remember seed ID so we can confirm it from peer_udp_pio_handler_seed_ready
    1965. 

  1965.     peer->pio.udp.pending_recvseed_id = seed_id;
    1966. 

  1966. }
    1967. 

  1967. 

  1968. void peer_msg_confirmseed (struct peer_data *peer, uint8_t *data, int data_len)
    1969. 

  1969. {
    1970. 

  1970.     msg_confirmseedParser parser;
    1971. 

  1971.     if (!msg_confirmseedParser_Init(&parser, data, data_len)) {
    1972. 

  1972.         peer_log(peer, BLOG_WARNING, "msg_confirmseed: failed to parse");
    1973. 

  1973.         return;
    1974. 

  1974.     }
    1975. 

  1975.     
    1976. 

  1976.     // read message
    1977. 

  1977.     uint16_t seed_id;
    1978. 

  1978.     ASSERT_EXECUTE(msg_confirmseedParser_Getseed_id(&parser, &seed_id))
    1979. 

  1979.     
    1980. 

  1980.     if (options.transport_mode != TRANSPORT_MODE_UDP) {
    1981. 

  1981.         peer_log(peer, BLOG_WARNING, "msg_confirmseed: not in UDP mode");
    1982. 

  1982.         return;
    1983. 

  1983.     }
    1984. 

  1984.     
    1985. 

  1985.     if (!SPPROTO_HAVE_OTP(sp_params)) {
    1986. 

  1986.         peer_log(peer, BLOG_WARNING, "msg_confirmseed: OTPs disabled");
    1987. 

  1987.         return;
    1988. 

  1988.     }
    1989. 

  1989.     
    1990. 

  1990.     if (!peer->have_link) {
    1991. 

  1991.         peer_log(peer, BLOG_WARNING, "msg_confirmseed: have no link");
    1992. 

  1992.         return;
    1993. 

  1993.     }
    1994. 

  1994.     
    1995. 

  1995.     if (!peer->pio.udp.sendseed_sent) {
    1996. 

  1996.         peer_log(peer, BLOG_WARNING, "msg_confirmseed: no seed has been sent");
    1997. 

  1997.         return;
    1998. 

  1998.     }
    1999. 

  1999.     
    2000. 

  2000.     if (seed_id != peer->pio.udp.sendseed_sent_id) {
    2001. 

  2001.         peer_log(peer, BLOG_WARNING, "msg_confirmseed: invalid seed: expecting %d, received %d", (int)peer->pio.udp.sendseed_sent_id, (int)seed_id);
    2002. 

  2002.         return;
    2003. 

  2003.     }
    2004. 

  2004.     
    2005. 

  2005.     peer_log(peer, BLOG_DEBUG, "OTP send seed confirmed");
    2006. 

  2006.     
    2007. 

  2007.     // no longer waiting for confirmation
    2008. 

  2008.     peer->pio.udp.sendseed_sent = 0;
    2009. 

  2009.     
    2010. 

  2010.     // start using the seed
    2011. 

  2011.     DatagramPeerIO_SetOTPSendSeed(&peer->pio.udp.pio, peer->pio.udp.sendseed_sent_id, peer->pio.udp.sendseed_sent_key, peer->pio.udp.sendseed_sent_iv);
    2012. 

  2012. }
    2013. 

  2013. 

  2014. void peer_msg_youretry (struct peer_data *peer, uint8_t *data, int data_len)
    2015. 

  2015. {
    2016. 

  2016.     if (data_len != 0) {
    2017. 

  2017.         peer_log(peer, BLOG_WARNING, "msg_youretry: invalid length");
    2018. 

  2018.         return;
    2019. 

  2019.     }
    2020. 

  2020.     
    2021. 

  2021.     if (!peer_am_master(peer)) {
    2022. 

  2022.         peer_log(peer, BLOG_WARNING, "msg_youretry: we are not master");
    2023. 

  2023.         return;
    2024. 

  2024.     }
    2025. 

  2025.     
    2026. 

  2026.     peer_log(peer, BLOG_NOTICE, "requests reset");
    2027. 

  2027.     
    2028. 

  2028.     peer_reset(peer);
    2029. 

  2029. }
    2030. 

  2030. 

  2031. void peer_udp_pio_handler_seed_warning (struct peer_data *peer)
    2032. 

  2032. {
    2033. 

  2033.     ASSERT(options.transport_mode == TRANSPORT_MODE_UDP)
    2034. 

  2034.     ASSERT(SPPROTO_HAVE_OTP(sp_params))
    2035. 

  2035.     ASSERT(peer->have_link)
    2036. 

  2036.     
    2037. 

  2037.     // generate and send a new seed
    2038. 

  2038.     if (!peer->pio.udp.sendseed_sent) {
    2039. 

  2039.         peer_generate_and_send_seed(peer);
    2040. 

  2040.     }
    2041. 

  2041. }
    2042. 

  2042. 

  2043. void peer_udp_pio_handler_seed_ready (struct peer_data *peer)
    2044. 

  2044. {
    2045. 

  2045.     ASSERT(options.transport_mode == TRANSPORT_MODE_UDP)
    2046. 

  2046.     ASSERT(SPPROTO_HAVE_OTP(sp_params))
    2047. 

  2047.     ASSERT(peer->have_link)
    2048. 

  2048.     
    2049. 

  2049.     // send confirmation
    2050. 

  2050.     peer_send_confirmseed(peer, peer->pio.udp.pending_recvseed_id);
    2051. 

  2051. }
    2052. 

  2052. 

  2053. void peer_tcp_pio_handler_error (struct peer_data *peer)
    2054. 

  2054. {
    2055. 

  2055.     ASSERT(options.transport_mode == TRANSPORT_MODE_TCP)
    2056. 

  2056.     ASSERT(peer->have_link)
    2057. 

  2057.     
    2058. 

  2058.     peer_log(peer, BLOG_NOTICE, "TCP connection failed");
    2059. 

  2059.     
    2060. 

  2060.     peer_reset(peer);
    2061. 

  2061.     return;
    2062. 

  2062. }
    2063. 

  2063. 

  2064. void peer_reset_timer_handler (struct peer_data *peer)
    2065. 

  2065. {
    2066. 

  2066.     ASSERT(peer_am_master(peer))
    2067. 

  2067.     
    2068. 

  2068.     BLog(BLOG_NOTICE, "retry timer expired");
    2069. 

  2069.     
    2070. 

  2070.     // start setup process
    2071. 

  2071.     peer_start_binding(peer);
    2072. 

  2072. }
    2073. 

  2073. 

  2074. void peer_start_binding (struct peer_data *peer)
    2075. 

  2075. {
    2076. 

  2076.     peer->binding = 1;
    2077. 

  2077.     peer->binding_addrpos = 0;
    2078. 

  2078.     
    2079. 

  2079.     peer_bind(peer);
    2080. 

  2080. }
    2081. 

  2081. 

  2082. void peer_bind (struct peer_data *peer)
    2083. 

  2083. {
    2084. 

  2084.     ASSERT(peer->binding)
    2085. 

  2085.     ASSERT(peer->binding_addrpos >= 0)
    2086. 

  2086.     ASSERT(peer->binding_addrpos <= num_bind_addrs)
    2087. 

  2087.     
    2088. 

  2088.     int res;
    2089. 

  2089.     
    2090. 

  2090.     while (peer->binding_addrpos < num_bind_addrs) {
    2091. 

  2091.         // if there are no external addresses, skip bind address
    2092. 

  2092.         if (bind_addrs[peer->binding_addrpos].num_ext_addrs == 0) {
    2093. 

  2093.             peer->binding_addrpos++;
    2094. 

  2094.             continue;
    2095. 

  2095.         }
    2096. 

  2096.         
    2097. 

  2097.         // try to bind
    2098. 

  2098.         int cont;
    2099. 

  2099.         peer_bind_one_address(peer, peer->binding_addrpos, &cont);
    2100. 

  2100.         
    2101. 

  2101.         // increment address counter
    2102. 

  2102.         peer->binding_addrpos++;
    2103. 

  2103.         
    2104. 

  2104.         if (!cont) {
    2105. 

  2105.             return;
    2106. 

  2106.         }
    2107. 

  2107.     }
    2108. 

  2108.     
    2109. 

  2109.     peer_log(peer, BLOG_NOTICE, "no more addresses to bind to");
    2110. 

  2110.     
    2111. 

  2111.     // no longer binding
    2112. 

  2112.     peer->binding = 0;
    2113. 

  2113.     
    2114. 

  2114.     // tell the peer we failed to bind
    2115. 

  2115.     peer_send_simple(peer, MSGID_CANNOTBIND);
    2116. 

  2116.     
    2117. 

  2117.     // if we are the slave, setup relaying
    2118. 

  2118.     if (!peer_am_master(peer)) {
    2119. 

  2119.         if (!peer->is_relay) {
    2120. 

  2120.             peer_need_relay(peer);
    2121. 

  2121.         }
    2122. 

  2122.     }
    2123. 

  2123. }
    2124. 

  2124. 

  2125. void peer_bind_one_address (struct peer_data *peer, int addr_index, int *cont)
    2126. 

  2126. {
    2127. 

  2127.     ASSERT(addr_index >= 0)
    2128. 

  2128.     ASSERT(addr_index < num_bind_addrs)
    2129. 

  2129.     ASSERT(bind_addrs[addr_index].num_ext_addrs > 0)
    2130. 

  2130.     
    2131. 

  2131.     // get a fresh link
    2132. 

  2132.     if (!peer_new_link(peer)) {
    2133. 

  2133.         peer_log(peer, BLOG_ERROR, "cannot get link");
    2134. 

  2134.         *cont = 0;
    2135. 

  2135.         peer_reset(peer);
    2136. 

  2136.         return;
    2137. 

  2137.     }
    2138. 

  2138.     
    2139. 

  2139.     if (options.transport_mode == TRANSPORT_MODE_UDP) {
    2140. 

  2140.         // get addr
    2141. 

  2141.         POINTER(addr, bind_addrs[addr_index]);
    2142. 

  2142.         
    2143. 

  2143.         // try binding to all ports in the range
    2144. 

  2144.         int port_add;
    2145. 

  2145.         for (port_add = 0; port_add < addr->num_ports; port_add++) {
    2146. 

  2146.             BAddr tryaddr = addr->addr;
    2147. 

  2147.             BAddr_SetPort(&tryaddr, hton16(ntoh16(BAddr_GetPort(&tryaddr)) + port_add));
    2148. 

  2148.             if (DatagramPeerIO_Bind(&peer->pio.udp.pio, tryaddr)) {
    2149. 

  2149.                 break;
    2150. 

  2150.             }
    2151. 

  2151.         }
    2152. 

  2152.         if (port_add == addr->num_ports) {
    2153. 

  2153.             BLog(BLOG_NOTICE, "failed to bind to any port");
    2154. 

  2154.             *cont = 1;
    2155. 

  2155.             return;
    2156. 

  2156.         }
    2157. 

  2157.         
    2158. 

  2158.         uint8_t key[SPPROTO_HAVE_ENCRYPTION(sp_params) ? BEncryption_cipher_key_size(sp_params.encryption_mode) : 0];
    2159. 

  2159.         
    2160. 

  2160.         // generate and set encryption key
    2161. 

  2161.         if (SPPROTO_HAVE_ENCRYPTION(sp_params)) {
    2162. 

  2162.             BRandom_randomize(key, sizeof(key));
    2163. 

  2163.             DatagramPeerIO_SetEncryptionKey(&peer->pio.udp.pio, key);
    2164. 

  2164.         }
    2165. 

  2165.         
    2166. 

  2166.         // schedule sending OTP seed
    2167. 

  2167.         if (SPPROTO_HAVE_OTP(sp_params)) {
    2168. 

  2168.             BPending_Set(&peer->job_send_seed_after_binding);
    2169. 

  2169.         }
    2170. 

  2170.         
    2171. 

  2171.         // send connectinfo
    2172. 

  2172.         peer_send_conectinfo(peer, addr_index, port_add, key, 0);
    2173. 

  2173.     } else {
    2174. 

  2174.         // order StreamPeerIO to listen
    2175. 

  2175.         uint64_t pass;
    2176. 

  2176.         StreamPeerIO_Listen(&peer->pio.tcp.pio, &listeners[addr_index], &pass);
    2177. 

  2177.         
    2178. 

  2178.         // send connectinfo
    2179. 

  2179.         peer_send_conectinfo(peer, addr_index, 0, NULL, pass);
    2180. 

  2180.     }
    2181. 

  2181.     
    2182. 

  2182.     peer_log(peer, BLOG_NOTICE, "bound to address number %d", addr_index);
    2183. 

  2183.     
    2184. 

  2184.     *cont = 0;
    2185. 

  2185. }
    2186. 

  2186. 

  2187. void peer_connect (struct peer_data *peer, BAddr addr, uint8_t* encryption_key, uint64_t password)
    2188. 

  2188. {
    2189. 

  2189.     ASSERT(!BAddr_IsInvalid(&addr))
    2190. 

  2190.     
    2191. 

  2191.     // get a fresh link
    2192. 

  2192.     if (!peer_new_link(peer)) {
    2193. 

  2193.         peer_log(peer, BLOG_ERROR, "cannot get link");
    2194. 

  2194.         peer_reset(peer);
    2195. 

  2195.         return;
    2196. 

  2196.     }
    2197. 

  2197.     
    2198. 

  2198.     if (options.transport_mode == TRANSPORT_MODE_UDP) {
    2199. 

  2199.         // order DatagramPeerIO to connect
    2200. 

  2200.         if (!DatagramPeerIO_Connect(&peer->pio.udp.pio, addr)) {
    2201. 

  2201.             peer_log(peer, BLOG_NOTICE, "DatagramPeerIO_Connect failed");
    2202. 

  2202.             return peer_reset(peer);
    2203. 

  2203.         }
    2204. 

  2204.         
    2205. 

  2205.         // set encryption key
    2206. 

  2206.         if (SPPROTO_HAVE_ENCRYPTION(sp_params)) {
    2207. 

  2207.             DatagramPeerIO_SetEncryptionKey(&peer->pio.udp.pio, encryption_key);
    2208. 

  2208.         }
    2209. 

  2209.         
    2210. 

  2210.         // generate and send a send seed
    2211. 

  2211.         if (SPPROTO_HAVE_OTP(sp_params)) {
    2212. 

  2212.             peer_generate_and_send_seed(peer);
    2213. 

  2213.         }
    2214. 

  2214.     } else {
    2215. 

  2215.         // order StreamPeerIO to connect
    2216. 

  2216.         if (!StreamPeerIO_Connect(
    2217. 

  2217.             &peer->pio.tcp.pio, addr, password,
    2218. 

  2218.             (options.peer_ssl ? client_cert : NULL),
    2219. 

  2219.             (options.peer_ssl ? client_key : NULL)
    2220. 

  2220.         )) {
    2221. 

  2221.             peer_log(peer, BLOG_NOTICE, "StreamPeerIO_Connect failed");
    2222. 

  2222.             return peer_reset(peer);
    2223. 

  2223.         }
    2224. 

  2224.     }
    2225. 

  2225. }
    2226. 

  2226. 

  2227. void peer_send_simple (struct peer_data *peer, int msgid)
    2228. 

  2228. {
    2229. 

  2229.     if (server_start_msg(NULL, peer->id, msgid, 0) < 0) {
    2230. 

  2230.         return;
    2231. 

  2231.     }
    2232. 

  2232.     server_end_msg();
    2233. 

  2233. }
    2234. 

  2234. 

  2235. void peer_send_conectinfo (struct peer_data *peer, int addr_index, int port_adjust, uint8_t *enckey, uint64_t pass)
    2236. 

  2236. {
    2237. 

  2237.     ASSERT(addr_index >= 0)
    2238. 

  2238.     ASSERT(addr_index < num_bind_addrs)
    2239. 

  2239.     ASSERT(bind_addrs[addr_index].num_ext_addrs > 0)
    2240. 

  2240.     
    2241. 

  2241.     // get address
    2242. 

  2242.     POINTER(bind_addr, bind_addrs[addr_index]);
    2243. 

  2243.     
    2244. 

  2244.     // remember encryption key size
    2245. 

  2245.     int key_size;
    2246. 

  2246.     if (options.transport_mode == TRANSPORT_MODE_UDP && SPPROTO_HAVE_ENCRYPTION(sp_params)) {
    2247. 

  2247.         key_size = BEncryption_cipher_key_size(sp_params.encryption_mode);
    2248. 

  2248.     }
    2249. 

  2249.     
    2250. 

  2250.     // calculate message length ..
    2251. 

  2251.     int msg_len = 0;
    2252. 

  2252.     
    2253. 

  2253.     // addresses
    2254. 

  2254.     for (int i = 0; i < bind_addr->num_ext_addrs; i++) {
    2255. 

  2255.         int addrmsg_len =
    2256. 

  2256.             msg_youconnect_addr_SIZEname(strlen(bind_addr->ext_addrs[i].scope)) +
    2257. 

  2257.             msg_youconnect_addr_SIZEaddr(addr_size(bind_addr->ext_addrs[i].addr));
    2258. 

  2258.         msg_len += msg_youconnect_SIZEaddr(addrmsg_len);
    2259. 

  2259.     }
    2260. 

  2260.     
    2261. 

  2261.     // encryption key
    2262. 

  2262.     if (options.transport_mode == TRANSPORT_MODE_UDP && SPPROTO_HAVE_ENCRYPTION(sp_params)) {
    2263. 

  2263.         msg_len += msg_youconnect_SIZEkey(key_size);
    2264. 

  2264.     }
    2265. 

  2265.     
    2266. 

  2266.     // password
    2267. 

  2267.     if (options.transport_mode == TRANSPORT_MODE_TCP) {
    2268. 

  2268.         msg_len += msg_youconnect_SIZEpassword;
    2269. 

  2269.     }
    2270. 

  2270.     
    2271. 

  2271.     // check if it's too big (because of the addresses)
    2272. 

  2272.     if (msg_len > MSG_MAX_PAYLOAD) {
    2273. 

  2273.         BLog(BLOG_ERROR, "cannot send too big youconnect message");
    2274. 

  2274.         return;
    2275. 

  2275.     }
    2276. 

  2276.         
    2277. 

  2277.     // start message
    2278. 

  2278.     uint8_t *msg;
    2279. 

  2279.     if (server_start_msg((void **)&msg, peer->id, MSGID_YOUCONNECT, msg_len) < 0) {
    2280. 

  2280.         return;
    2281. 

  2281.     }
    2282. 

  2282.         
    2283. 

  2283.     // init writer
    2284. 

  2284.     msg_youconnectWriter writer;
    2285. 

  2285.     msg_youconnectWriter_Init(&writer, msg);
    2286. 

  2286.         
    2287. 

  2287.     // write addresses
    2288. 

  2288.     for (int i = 0; i < bind_addr->num_ext_addrs; i++) {
    2289. 

  2289.         int name_len = strlen(bind_addr->ext_addrs[i].scope);
    2290. 

  2290.         int addr_len = addr_size(bind_addr->ext_addrs[i].addr);
    2291. 

  2291.         
    2292. 

  2292.         // get a pointer for writing the address
    2293. 

  2293.         int addrmsg_len =
    2294. 

  2294.             msg_youconnect_addr_SIZEname(name_len) +
    2295. 

  2295.             msg_youconnect_addr_SIZEaddr(addr_len);
    2296. 

  2296.         uint8_t *addrmsg_dst = msg_youconnectWriter_Addaddr(&writer, addrmsg_len);
    2297. 

  2297.         
    2298. 

  2298.         // init address writer
    2299. 

  2299.         msg_youconnect_addrWriter awriter;
    2300. 

  2300.         msg_youconnect_addrWriter_Init(&awriter, addrmsg_dst);
    2301. 

  2301.         
    2302. 

  2302.         // write scope
    2303. 

  2303.         uint8_t *name_dst = msg_youconnect_addrWriter_Addname(&awriter, name_len);
    2304. 

  2304.         memcpy(name_dst, bind_addr->ext_addrs[i].scope, name_len);
    2305. 

  2305.         
    2306. 

  2306.         // write address with adjusted port
    2307. 

  2307.         BAddr addr = bind_addr->ext_addrs[i].addr;
    2308. 

  2308.         BAddr_SetPort(&addr, hton16(ntoh16(BAddr_GetPort(&addr)) + port_adjust));
    2309. 

  2309.         uint8_t *addr_dst = msg_youconnect_addrWriter_Addaddr(&awriter, addr_len);
    2310. 

  2310.         addr_write(addr_dst, addr);
    2311. 

  2311.         
    2312. 

  2312.         // finish address writer
    2313. 

  2313.         msg_youconnect_addrWriter_Finish(&awriter);
    2314. 

  2314.     }
    2315. 

  2315.     
    2316. 

  2316.     // write encryption key
    2317. 

  2317.     if (options.transport_mode == TRANSPORT_MODE_UDP && SPPROTO_HAVE_ENCRYPTION(sp_params)) {
    2318. 

  2318.         uint8_t *key_dst = msg_youconnectWriter_Addkey(&writer, key_size);
    2319. 

  2319.         memcpy(key_dst, enckey, key_size);
    2320. 

  2320.     }
    2321. 

  2321.     
    2322. 

  2322.     // write password
    2323. 

  2323.     if (options.transport_mode == TRANSPORT_MODE_TCP) {
    2324. 

  2324.         msg_youconnectWriter_Addpassword(&writer, pass);
    2325. 

  2325.     }
    2326. 

  2326.     
    2327. 

  2327.     // finish writer
    2328. 

  2328.     msg_youconnectWriter_Finish(&writer);
    2329. 

  2329.     
    2330. 

  2330.     // end message
    2331. 

  2331.     server_end_msg();
    2332. 

  2332. }
    2333. 

  2333. 

  2334. void peer_generate_and_send_seed (struct peer_data *peer)
    2335. 

  2335. {
    2336. 

  2336.     ASSERT(options.transport_mode == TRANSPORT_MODE_UDP)
    2337. 

  2337.     ASSERT(SPPROTO_HAVE_OTP(sp_params))
    2338. 

  2338.     ASSERT(peer->have_link)
    2339. 

  2339.     ASSERT(!peer->pio.udp.sendseed_sent)
    2340. 

  2340.     
    2341. 

  2341.     peer_log(peer, BLOG_DEBUG, "sending OTP send seed");
    2342. 

  2342.     
    2343. 

  2343.     int key_len = BEncryption_cipher_key_size(sp_params.otp_mode);
    2344. 

  2344.     int iv_len = BEncryption_cipher_block_size(sp_params.otp_mode);
    2345. 

  2345.     
    2346. 

  2346.     // generate seed
    2347. 

  2347.     peer->pio.udp.sendseed_sent_id = peer->pio.udp.sendseed_nextid;
    2348. 

  2348.     BRandom_randomize(peer->pio.udp.sendseed_sent_key, key_len);
    2349. 

  2349.     BRandom_randomize(peer->pio.udp.sendseed_sent_iv, iv_len);
    2350. 

  2350.     
    2351. 

  2351.     // set as sent, increment next seed ID
    2352. 

  2352.     peer->pio.udp.sendseed_sent = 1;
    2353. 

  2353.     peer->pio.udp.sendseed_nextid++;
    2354. 

  2354.     
    2355. 

  2355.     // send seed to the peer
    2356. 

  2356.     int msg_len = msg_seed_SIZEseed_id + msg_seed_SIZEkey(key_len) + msg_seed_SIZEiv(iv_len);
    2357. 

  2357.     uint8_t *msg;
    2358. 

  2358.     if (server_start_msg((void **)&msg, peer->id, MSGID_SEED, msg_len) < 0) {
    2359. 

  2359.         return;
    2360. 

  2360.     }
    2361. 

  2361.     msg_seedWriter writer;
    2362. 

  2362.     msg_seedWriter_Init(&writer, msg);
    2363. 

  2363.     msg_seedWriter_Addseed_id(&writer, peer->pio.udp.sendseed_sent_id);
    2364. 

  2364.     uint8_t *key_dst = msg_seedWriter_Addkey(&writer, key_len);
    2365. 

  2365.     memcpy(key_dst, peer->pio.udp.sendseed_sent_key, key_len);
    2366. 

  2366.     uint8_t *iv_dst = msg_seedWriter_Addiv(&writer, iv_len);
    2367. 

  2367.     memcpy(iv_dst, peer->pio.udp.sendseed_sent_iv, iv_len);
    2368. 

  2368.     msg_seedWriter_Finish(&writer);
    2369. 

  2369.     server_end_msg();
    2370. 

  2370. }
    2371. 

  2371. 

  2372. void peer_send_confirmseed (struct peer_data *peer, uint16_t seed_id)
    2373. 

  2373. {
    2374. 

  2374.     ASSERT(options.transport_mode == TRANSPORT_MODE_UDP)
    2375. 

  2375.     ASSERT(SPPROTO_HAVE_OTP(sp_params))
    2376. 

  2376.     
    2377. 

  2377.     // send confirmation
    2378. 

  2378.     int msg_len = msg_confirmseed_SIZEseed_id;
    2379. 

  2379.     uint8_t *msg;
    2380. 

  2380.     if (server_start_msg((void **)&msg, peer->id, MSGID_CONFIRMSEED, msg_len) < 0) {
    2381. 

  2381.         return;
    2382. 

  2382.     }
    2383. 

  2383.     msg_confirmseedWriter writer;
    2384. 

  2384.     msg_confirmseedWriter_Init(&writer, msg);
    2385. 

  2385.     msg_confirmseedWriter_Addseed_id(&writer, seed_id);
    2386. 

  2386.     msg_confirmseedWriter_Finish(&writer);
    2387. 

  2387.     server_end_msg();
    2388. 

  2388. }
    2389. 

  2389. 

  2390. void peer_dataproto_handler (struct peer_data *peer, int up)
    2391. 

  2391. {
    2392. 

  2392.     ASSERT(peer->have_link)
    2393. 

  2393.     
    2394. 

  2394.     if (up) {
    2395. 

  2395.         peer_log(peer, BLOG_INFO, "up");
    2396. 

  2396.         
    2397. 

  2397.         // if it can be a relay provided, enable it
    2398. 

  2398.         if ((peer->flags&SCID_NEWCLIENT_FLAG_RELAY_SERVER) && !peer->is_relay) {
    2399. 

  2399.             peer_enable_relay_provider(peer);
    2400. 

  2400.         }
    2401. 

  2401.     } else {
    2402. 

  2402.         peer_log(peer, BLOG_INFO, "down");
    2403. 

  2403.         
    2404. 

  2404.         // if it is a relay provider, disable it
    2405. 

  2405.         if (peer->is_relay) {
    2406. 

  2406.             peer_disable_relay_provider(peer);
    2407. 

  2407.         }
    2408. 

  2408.     }
    2409. 

  2409. }
    2410. 

  2410. 

  2411. struct peer_data * find_peer_by_id (peerid_t id)
    2412. 

  2412. {
    2413. 

  2413.     LinkedList2Node *node = LinkedList2_GetFirst(&peers);
    2414. 

  2414.     while (node) {
    2415. 

  2415.         struct peer_data *peer = UPPER_OBJECT(node, struct peer_data, list_node);
    2416. 

  2416.         if (peer->id == id) {
    2417. 

  2417.             return peer;
    2418. 

  2418.         }
    2419. 

  2419.         node = LinkedList2Node_Next(node);
    2420. 

  2420.     }
    2421. 

  2421.     
    2422. 

  2422.     return NULL;
    2423. 

  2423. }
    2424. 

  2424. 

  2425. void device_error_handler (void *unused)
    2426. 

  2426. {
    2427. 

  2427.     BLog(BLOG_ERROR, "device error");
    2428. 

  2428.     
    2429. 

  2429.     terminate();
    2430. 

  2430.     return;
    2431. 

  2431. }
    2432. 

  2432. 

  2433. void device_input_dpd_handler (void *unused, const uint8_t *frame, int frame_len)
    2434. 

  2434. {
    2435. 

  2435.     ASSERT(frame_len >= 0)
    2436. 

  2436.     
    2437. 

  2437.     // give frame to decider
    2438. 

  2438.     FrameDecider_AnalyzeAndDecide(&frame_decider, frame, frame_len);
    2439. 

  2439.     
    2440. 

  2440.     // forward frame to peers
    2441. 

  2441.     FrameDeciderPeer *decider_peer = FrameDecider_NextDestination(&frame_decider);
    2442. 

  2442.     while (decider_peer) {
    2443. 

  2443.         FrameDeciderPeer *next = FrameDecider_NextDestination(&frame_decider);
    2444. 

  2444.         struct peer_data *peer = UPPER_OBJECT(decider_peer, struct peer_data, decider_peer);
    2445. 

  2445.         DataProtoFlow_Route(&peer->local_dpflow, !!next);
    2446. 

  2446.         decider_peer = next;
    2447. 

  2447.     }
    2448. 

  2448. }
    2449. 

  2449. 

  2450. void assign_relays (void)
    2451. 

  2451. {
    2452. 

  2452.     LinkedList2Node *list_node;
    2453. 

  2453.     while (list_node = LinkedList2_GetFirst(&waiting_relay_peers)) {
    2454. 

  2454.         struct peer_data *peer = UPPER_OBJECT(list_node, struct peer_data, waiting_relay_list_node);
    2455. 

  2455.         ASSERT(peer->waiting_relay)
    2456. 

  2456.         
    2457. 

  2457.         ASSERT(!peer->relaying_peer)
    2458. 

  2458.         ASSERT(!peer->have_link)
    2459. 

  2459.         
    2460. 

  2460.         // get a relay
    2461. 

  2461.         LinkedList2Node *list_node2 = LinkedList2_GetFirst(&relays);
    2462. 

  2462.         if (!list_node2) {
    2463. 

  2463.             BLog(BLOG_NOTICE, "no relays");
    2464. 

  2464.             return;
    2465. 

  2465.         }
    2466. 

  2466.         struct peer_data *relay = UPPER_OBJECT(list_node2, struct peer_data, relay_list_node);
    2467. 

  2467.         ASSERT(relay->is_relay)
    2468. 

  2468.         
    2469. 

  2469.         // no longer waiting for relay
    2470. 

  2470.         peer_unregister_need_relay(peer);
    2471. 

  2471.         
    2472. 

  2472.         // install the relay
    2473. 

  2473.         peer_install_relaying(peer, relay);
    2474. 

  2474.     }
    2475. 

  2475. }
    2476. 

  2476. 

  2477. char * address_scope_known (uint8_t *name, int name_len)
    2478. 

  2478. {
    2479. 

  2479.     ASSERT(name_len >= 0)
    2480. 

  2480.     
    2481. 

  2481.     for (int i = 0; i < options.num_scopes; i++) {
    2482. 

  2482.         if (name_len == strlen(options.scopes[i]) && !memcmp(name, options.scopes[i], name_len)) {
    2483. 

  2483.             return options.scopes[i];
    2484. 

  2484.         }
    2485. 

  2485.     }
    2486. 

  2486.     
    2487. 

  2487.     return NULL;
    2488. 

  2488. }
    2489. 

  2489. 

  2490. void server_handler_error (void *user)
    2491. 

  2491. {
    2492. 

  2492.     BLog(BLOG_ERROR, "server connection failed, exiting");
    2493. 

  2493.     
    2494. 

  2494.     terminate();
    2495. 

  2495.     return;
    2496. 

  2496. }
    2497. 

  2497. 

  2498. void server_handler_ready (void *user, peerid_t param_my_id, uint32_t ext_ip)
    2499. 

  2499. {
    2500. 

  2500.     // remember our ID
    2501. 

  2501.     my_id = param_my_id;
    2502. 

  2502.     
    2503. 

  2503.     // store server reported addresses
    2504. 

  2504.     for (int i = 0; i < num_bind_addrs; i++) {
    2505. 

  2505.         POINTER(addr, bind_addrs[i]);
    2506. 

  2506.         for (int j = 0; j < addr->num_ext_addrs; j++) {
    2507. 

  2507.             POINTER(eaddr, addr->ext_addrs[j]);
    2508. 

  2508.             if (eaddr->server_reported_port >= 0) {
    2509. 

  2509.                 if (ext_ip == 0) {
    2510. 

  2510.                     BLog(BLOG_ERROR, "server did not provide our address");
    2511. 

  2511.                     terminate();
    2512. 

  2512.                     return;
    2513. 

  2513.                 }
    2514. 

  2514.                 BAddr_InitIPv4(&eaddr->addr, ext_ip, hton16(eaddr->server_reported_port));
    2515. 

  2515.                 char str[BADDR_MAX_PRINT_LEN];
    2516. 

  2516.                 BAddr_Print(&eaddr->addr, str);
    2517. 

  2517.                 BLog(BLOG_INFO, "external address (%d,%d): server reported %s", i, j, str);
    2518. 

  2518.             }
    2519. 

  2519.         }
    2520. 

  2520.     }
    2521. 

  2521.     
    2522. 

  2522.     // give receive device the ID
    2523. 

  2523.     DPReceiveDevice_SetPeerID(&device_output_dprd, my_id);
    2524. 

  2524.     
    2525. 

  2525.     BLog(BLOG_INFO, "server: ready, my ID is %d", (int)my_id);
    2526. 

  2526. }
    2527. 

  2527. 

  2528. void server_handler_newclient (void *user, peerid_t peer_id, int flags, const uint8_t *cert, int cert_len)
    2529. 

  2529. {
    2530. 

  2530.     ASSERT(ServerConnection_IsReady(&server))
    2531. 

  2531.     ASSERT(cert_len >= 0)
    2532. 

  2532.     ASSERT(cert_len <= SCID_NEWCLIENT_MAX_CERT_LEN)
    2533. 

  2533.     
    2534. 

  2534.     // check if the peer already exists
    2535. 

  2535.     if (find_peer_by_id(peer_id)) {
    2536. 

  2536.         BLog(BLOG_WARNING, "server: newclient: peer already known");
    2537. 

  2537.         return;
    2538. 

  2538.     }
    2539. 

  2539.     
    2540. 

  2540.     // make sure it's not the same ID as us
    2541. 

  2541.     if (peer_id == my_id) {
    2542. 

  2542.         BLog(BLOG_WARNING, "server: newclient: peer has our ID");
    2543. 

  2543.         return;
    2544. 

  2544.     }
    2545. 

  2545.     
    2546. 

  2546.     // check if there is spece for the peer
    2547. 

  2547.     if (num_peers >= MAX_PEERS) {
    2548. 

  2548.         BLog(BLOG_WARNING, "server: newclient: no space for new peer (maximum number reached)");
    2549. 

  2549.         return;
    2550. 

  2550.     }
    2551. 

  2551.     
    2552. 

  2552.     if (!options.ssl && cert_len > 0) {
    2553. 

  2553.         BLog(BLOG_WARNING, "server: newclient: certificate supplied, but not using TLS");
    2554. 

  2554.         return;
    2555. 

  2555.     }
    2556. 

  2556.     
    2557. 

  2557.     peer_add(peer_id, flags, cert, cert_len);
    2558. 

  2558. }
    2559. 

  2559. 

  2560. void server_handler_endclient (void *user, peerid_t peer_id)
    2561. 

  2561. {
    2562. 

  2562.     ASSERT(ServerConnection_IsReady(&server))
    2563. 

  2563.     
    2564. 

  2564.     // find peer
    2565. 

  2565.     struct peer_data *peer = find_peer_by_id(peer_id);
    2566. 

  2566.     if (!peer) {
    2567. 

  2567.         BLog(BLOG_WARNING, "server: endclient: peer %d not known", (int)peer_id);
    2568. 

  2568.         return;
    2569. 

  2569.     }
    2570. 

  2570.     
    2571. 

  2571.     // remove peer
    2572. 

  2572.     peer_remove(peer);
    2573. 

  2573. }
    2574. 

  2574. 

  2575. void server_handler_message (void *user, peerid_t peer_id, uint8_t *data, int data_len)
    2576. 

  2576. {
    2577. 

  2577.     ASSERT(ServerConnection_IsReady(&server))
    2578. 

  2578.     ASSERT(data_len >= 0)
    2579. 

  2579.     ASSERT(data_len <= SC_MAX_MSGLEN)
    2580. 

  2580.     
    2581. 

  2581.     // find peer
    2582. 

  2582.     struct peer_data *peer = find_peer_by_id(peer_id);
    2583. 

  2583.     if (!peer) {
    2584. 

  2584.         BLog(BLOG_WARNING, "server: message: peer not known");
    2585. 

  2585.         return;
    2586. 

  2586.     }
    2587. 

  2587.     
    2588. 

  2588.     // process peer message
    2589. 

  2589.     peer_msg(peer, data, data_len);
    2590. 

  2590.     return;
    2591. 

  2591. }
    2592. 

  2592. 

  2593. void peer_job_send_seed_after_binding (struct peer_data *peer)
    2594. 

  2594. {
    2595. 

  2595.     ASSERT(options.transport_mode == TRANSPORT_MODE_UDP)
    2596. 

  2596.     ASSERT(SPPROTO_HAVE_OTP(sp_params))
    2597. 

  2597.     ASSERT(peer->have_link)
    2598. 

  2598.     ASSERT(!peer->pio.udp.sendseed_sent)
    2599. 

  2599.     
    2600. 

  2600.     peer_generate_and_send_seed(peer);
    2601. 

  2601. }
    2602.