/*
protocol.c -- handle the meta-protocol, basic functions
- Copyright (C) 1999-2001 Ivo Timmermans <itimmermans@bigfoot.com>,
- 2000,2001 Guus Sliepen <guus@sliepen.warande.net>
+ Copyright (C) 1999-2005 Ivo Timmermans,
+ 2000-2006 Guus Sliepen <guus@tinc-vpn.org>
This program is free software; you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
along with this program; if not, write to the Free Software
Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
- $Id: protocol.c,v 1.30 2002/04/09 15:26:00 zarq Exp $
+ $Id$
*/
-#include "config.h"
+#include "system.h"
-#include <sys/types.h>
+#include "conf.h"
+#include "connection.h"
+#include "logger.h"
+#include "meta.h"
+#include "protocol.h"
+#include "utils.h"
+#include "xalloc.h"
-#include <stdlib.h>
-#include <string.h>
-#include <syslog.h>
-#include <stdio.h>
-#include <stdarg.h>
-#include <errno.h>
+bool tunnelserver = false;
-#include <utils.h>
-#include <xalloc.h>
+/* Jumptable for the request handlers */
-#include "conf.h"
-#include "protocol.h"
-#include "meta.h"
-#include "connection.h"
+static bool (*request_handlers[])(connection_t *, char *) = {
+ id_h, metakey_h, challenge_h, chal_reply_h, ack_h,
+ status_h, error_h, termreq_h,
+ ping_h, pong_h,
+ add_subnet_h, del_subnet_h,
+ add_edge_h, del_edge_h,
+ key_changed_h, req_key_h, ans_key_h, tcppacket_h,
+};
-#include "system.h"
+/* Request names */
+
+static char (*request_name[]) = {
+ "ID", "METAKEY", "CHALLENGE", "CHAL_REPLY", "ACK",
+ "STATUS", "ERROR", "TERMREQ",
+ "PING", "PONG",
+ "ADD_SUBNET", "DEL_SUBNET",
+ "ADD_EDGE", "DEL_EDGE", "KEY_CHANGED", "REQ_KEY", "ANS_KEY", "PACKET",
+};
-avl_tree_t *past_request_tree;
+static splay_tree_t *past_request_tree;
-int check_id(char *id)
-{
- int i;
+bool check_id(const char *id) {
+ for(; *id; id++)
+ if(!isalnum(*id) && *id != '_')
+ return false;
- for (i = 0; i < strlen(id); i++)
- if(!isalnum(id[i]) && id[i] != '_')
- return -1;
-
- return 0;
+ return true;
}
/* Generic request routines - takes care of logging and error
detection as well */
-int send_request(connection_t *c, const char *format, ...)
-{
- va_list args;
- char buffer[MAXBUFSIZE];
- int len, request;
-
-cp
- /* Use vsnprintf instead of vasprintf: faster, no memory
- fragmentation, cleanup is automatic, and there is a limit on the
- input buffer anyway */
-
- va_start(args, format);
- len = vsnprintf(buffer, MAXBUFSIZE, format, args);
- va_end(args);
-
- if(len < 0 || len > MAXBUFSIZE-1)
- {
- syslog(LOG_ERR, _("Output buffer overflow while sending request to %s (%s)"), c->name, c->hostname);
- return -1;
- }
-
- if(debug_lvl >= DEBUG_PROTOCOL)
- {
- sscanf(buffer, "%d", &request);
- if(debug_lvl >= DEBUG_META)
- syslog(LOG_DEBUG, _("Sending %s to %s (%s): %s"), request_name[request], c->name, c->hostname, buffer);
- else
- syslog(LOG_DEBUG, _("Sending %s to %s (%s)"), request_name[request], c->name, c->hostname);
- }
-
- buffer[len++] = '\n';
-cp
- return send_meta(c, buffer, len);
-}
+bool send_request(connection_t *c, const char *format, ...) {
+ va_list args;
+ char request[MAXBUFSIZE];
+ int len;
+
+ cp();
+
+ /* Use vsnprintf instead of vasprintf: faster, no memory
+ fragmentation, cleanup is automatic, and there is a limit on the
+ input buffer anyway */
-int receive_request(connection_t *c)
-{
- int request;
-cp
- if(sscanf(c->buffer, "%d", &request) == 1)
- {
- if((request < 0) || (request >= LAST) || (request_handlers[request] == NULL))
- {
- if(debug_lvl >= DEBUG_META)
- syslog(LOG_DEBUG, _("Unknown request from %s (%s): %s"),
- c->name, c->hostname, c->buffer);
- else
- syslog(LOG_ERR, _("Unknown request from %s (%s)"),
- c->name, c->hostname);
-
- return -1;
- }
- else
- {
- if(debug_lvl >= DEBUG_PROTOCOL)
- {
- if(debug_lvl >= DEBUG_META)
- syslog(LOG_DEBUG, _("Got %s from %s (%s): %s"),
- request_name[request], c->name, c->hostname, c->buffer);
- else
- syslog(LOG_DEBUG, _("Got %s from %s (%s)"),
- request_name[request], c->name, c->hostname);
- }
+ va_start(args, format);
+ len = vsnprintf(request, MAXBUFSIZE, format, args);
+ va_end(args);
+
+ if(len < 0 || len > MAXBUFSIZE - 1) {
+ logger(LOG_ERR, _("Output buffer overflow while sending request to %s (%s)"),
+ c->name, c->hostname);
+ return false;
+ }
+
+ ifdebug(PROTOCOL) {
+ ifdebug(META)
+ logger(LOG_DEBUG, _("Sending %s to %s (%s): %s"),
+ request_name[atoi(request)], c->name, c->hostname, request);
+ else
+ logger(LOG_DEBUG, _("Sending %s to %s (%s)"), request_name[atoi(request)],
+ c->name, c->hostname);
}
- if((c->allow_request != ALL) && (c->allow_request != request))
- {
- syslog(LOG_ERR, _("Unauthorized request from %s (%s)"), c->name, c->hostname);
- return -1;
- }
-
- if(request_handlers[request](c))
- /* Something went wrong. Probably scriptkiddies. Terminate. */
- {
- syslog(LOG_ERR, _("Error while processing %s from %s (%s)"),
- request_name[request], c->name, c->hostname);
- return -1;
- }
- }
- else
- {
- syslog(LOG_ERR, _("Bogus data received from %s (%s)"),
- c->name, c->hostname);
- return -1;
- }
-cp
- return 0;
+ request[len++] = '\n';
+
+ if(c == broadcast) {
+ broadcast_meta(NULL, request, len);
+ return true;
+ } else
+ return send_meta(c, request, len);
}
-int past_request_compare(past_request_t *a, past_request_t *b)
-{
-cp
- return strcmp(a->request, b->request);
+void forward_request(connection_t *from, char *request) {
+ cp();
+
+ ifdebug(PROTOCOL) {
+ ifdebug(META)
+ logger(LOG_DEBUG, _("Forwarding %s from %s (%s): %s"),
+ request_name[atoi(request)], from->name, from->hostname, request);
+ else
+ logger(LOG_DEBUG, _("Forwarding %s from %s (%s)"),
+ request_name[atoi(request)], from->name, from->hostname);
+ }
+
+ int len = strlen(request);
+ request[len] = '\n';
+ broadcast_meta(from, request, len);
}
-void free_past_request(past_request_t *r)
-{
-cp
- if(r->request)
- free(r->request);
- free(r);
-cp
+bool receive_request(connection_t *c, char *request) {
+ int reqno = atoi(request);
+
+ cp();
+
+ if(reqno || *request == '0') {
+ if((reqno < 0) || (reqno >= LAST) || !request_handlers[reqno]) {
+ ifdebug(META)
+ logger(LOG_DEBUG, _("Unknown request from %s (%s): %s"),
+ c->name, c->hostname, request);
+ else
+ logger(LOG_ERR, _("Unknown request from %s (%s)"),
+ c->name, c->hostname);
+
+ return false;
+ } else {
+ ifdebug(PROTOCOL) {
+ ifdebug(META)
+ logger(LOG_DEBUG, _("Got %s from %s (%s): %s"),
+ request_name[reqno], c->name, c->hostname, request);
+ else
+ logger(LOG_DEBUG, _("Got %s from %s (%s)"),
+ request_name[reqno], c->name, c->hostname);
+ }
+ }
+
+ if((c->allow_request != ALL) && (c->allow_request != reqno)) {
+ logger(LOG_ERR, _("Unauthorized request from %s (%s)"), c->name,
+ c->hostname);
+ return false;
+ }
+
+ if(!request_handlers[reqno](c, request)) {
+ /* Something went wrong. Probably scriptkiddies. Terminate. */
+
+ logger(LOG_ERR, _("Error while processing %s from %s (%s)"),
+ request_name[reqno], c->name, c->hostname);
+ return false;
+ }
+ } else {
+ logger(LOG_ERR, _("Bogus data received from %s (%s)"),
+ c->name, c->hostname);
+ return false;
+ }
+
+ return true;
}
-void init_requests(void)
-{
-cp
- past_request_tree = avl_alloc_tree((avl_compare_t)past_request_compare, (avl_action_t)free_past_request);
-cp
+static int past_request_compare(const past_request_t *a, const past_request_t *b) {
+ return strcmp(a->request, b->request);
}
-void exit_requests(void)
-{
-cp
- avl_delete_tree(past_request_tree);
-cp
+static void free_past_request(past_request_t *r) {
+ cp();
+
+ if(r->request)
+ free(r->request);
+
+ free(r);
}
-int seen_request(char *request)
-{
- past_request_t p, *new;
-cp
- p.request = request;
-
- if(avl_search(past_request_tree, &p))
- {
- if(debug_lvl >= DEBUG_SCARY_THINGS)
- syslog(LOG_DEBUG, _("Already seen request"));
- return 1;
- }
- else
- {
- new = (past_request_t *)xmalloc(sizeof(*new));
- new->request = xstrdup(request);
- new->firstseen = now;
- avl_insert(past_request_tree, new);
- return 0;
- }
-cp
+static struct event past_request_event;
+
+bool seen_request(char *request) {
+ past_request_t *new, p = {0};
+
+ cp();
+
+ p.request = request;
+
+ if(splay_search(past_request_tree, &p)) {
+ ifdebug(SCARY_THINGS) logger(LOG_DEBUG, _("Already seen request"));
+ return true;
+ } else {
+ new = xmalloc(sizeof(*new));
+ new->request = xstrdup(request);
+ new->firstseen = time(NULL);
+ splay_insert(past_request_tree, new);
+ event_add(&past_request_event, &(struct timeval){10, 0});
+ return false;
+ }
}
-void age_past_requests(void)
-{
- avl_node_t *node, *next;
- past_request_t *p;
- int left = 0, deleted = 0;
-cp
- for(node = past_request_tree->head; node; node = next)
- {
- next = node->next;
- p = (past_request_t *)node->data;
- if(p->firstseen + pingtimeout < now)
- avl_delete_node(past_request_tree, node), deleted++;
- else
- left++;
- }
-
- if(debug_lvl >= DEBUG_SCARY_THINGS && left + deleted)
- syslog(LOG_DEBUG, _("Aging past requests: deleted %d, left %d\n"), deleted, left);
-cp
+void age_past_requests(int fd, short events, void *data) {
+ splay_node_t *node, *next;
+ past_request_t *p;
+ int left = 0, deleted = 0;
+ time_t now = time(NULL);
+
+ cp();
+
+ for(node = past_request_tree->head; node; node = next) {
+ next = node->next;
+ p = node->data;
+
+ if(p->firstseen + pinginterval < now)
+ splay_delete_node(past_request_tree, node), deleted++;
+ else
+ left++;
+ }
+
+ if(left || deleted)
+ ifdebug(SCARY_THINGS) logger(LOG_DEBUG, _("Aging past requests: deleted %d, left %d"),
+ deleted, left);
+
+ if(left)
+ event_add(&past_request_event, &(struct timeval){10, 0});
}
-/* Jumptable for the request handlers */
+void init_requests(void) {
+ cp();
-int (*request_handlers[])(connection_t*) = {
- id_h, metakey_h, challenge_h, chal_reply_h, ack_h,
- status_h, error_h, termreq_h,
- ping_h, pong_h,
- add_subnet_h, del_subnet_h,
- add_edge_h, del_edge_h,
- key_changed_h, req_key_h, ans_key_h,
- tcppacket_h,
-};
+ past_request_tree = splay_alloc_tree((splay_compare_t) past_request_compare, (splay_action_t) free_past_request);
-/* Request names */
+ timeout_set(&past_request_event, age_past_requests, NULL);
+}
-char (*request_name[]) = {
- "ID", "METAKEY", "CHALLENGE", "CHAL_REPLY", "ACK",
- "STATUS", "ERROR", "TERMREQ",
- "PING", "PONG",
- "ADD_SUBNET", "DEL_SUBNET",
- "ADD_EDGE", "DEL_EDGE",
- "KEY_CHANGED", "REQ_KEY", "ANS_KEY",
- "PACKET",
-};
+void exit_requests(void) {
+ cp();
+
+ splay_delete_tree(past_request_tree);
+
+ event_del(&past_request_event);
+}