2 * ngIRCd -- The Next Generation IRC Daemon
3 * Copyright (c)2001-2010 Alexander Barton <alex@barton.de>
5 * This program is free software; you can redistribute it and/or modify
6 * it under the terms of the GNU General Public License as published by
7 * the Free Software Foundation; either version 2 of the License, or
8 * (at your option) any later version.
9 * Please read the file COPYING, README and AUTHORS for more information.
11 * Connection management
33 #include <sys/socket.h>
35 #include <sys/types.h>
37 #include <netinet/in.h>
39 #ifdef HAVE_NETINET_IP_H
40 # ifdef HAVE_NETINET_IN_SYSTM_H
41 # include <netinet/in_systm.h>
43 # include <netinet/ip.h>
47 # include <stdint.h> /* e.g. for Mac OS X */
51 # include <tcpd.h> /* for TCP Wrappers */
67 #include "conn-func.h"
69 #include "ng_ipaddr.h"
75 # include "rendezvous.h"
81 #define SERVER_WAIT (NONE - 1)
83 #define MAX_COMMANDS 3
84 #define MAX_COMMANDS_SERVER 10
87 static bool Handle_Write PARAMS(( CONN_ID Idx ));
88 static bool Conn_Write PARAMS(( CONN_ID Idx, char *Data, size_t Len ));
89 static int New_Connection PARAMS(( int Sock ));
90 static CONN_ID Socket2Index PARAMS(( int Sock ));
91 static void Read_Request PARAMS(( CONN_ID Idx ));
92 static unsigned int Handle_Buffer PARAMS(( CONN_ID Idx ));
93 static void Check_Connections PARAMS(( void ));
94 static void Check_Servers PARAMS(( void ));
95 static void Init_Conn_Struct PARAMS(( CONN_ID Idx ));
96 static bool Init_Socket PARAMS(( int Sock ));
97 static void New_Server PARAMS(( int Server, ng_ipaddr_t *dest ));
98 static void Simple_Message PARAMS(( int Sock, const char *Msg ));
99 static int NewListener PARAMS(( const char *listen_addr, UINT16 Port ));
100 static void Account_Connection PARAMS((void));
103 static array My_Listeners;
104 static array My_ConnArray;
105 static size_t NumConnections, NumConnectionsMax, NumConnectionsAccepted;
108 int allow_severity = LOG_INFO;
109 int deny_severity = LOG_ERR;
112 static void server_login PARAMS((CONN_ID idx));
115 extern struct SSLOptions Conf_SSLOptions;
116 static void cb_connserver_login_ssl PARAMS((int sock, short what));
117 static void cb_clientserver_ssl PARAMS((int sock, short what));
119 static void cb_Read_Resolver_Result PARAMS((int sock, UNUSED short what));
120 static void cb_Connect_to_Server PARAMS((int sock, UNUSED short what));
121 static void cb_clientserver PARAMS((int sock, short what));
125 * IO callback for listening sockets: handle new connections. This callback
126 * gets called when a new non-SSL connection should be accepted.
127 * @param sock Socket descriptor
128 * @param irrelevant (ignored IO specification)
131 cb_listen(int sock, short irrelevant)
134 (void) New_Connection(sock);
140 * IO callback for listening SSL sockets: handle new connections. This callback
141 * gets called when a new SSL-enabled connection should be accepted.
142 * @param sock Socket descriptor
143 * @param irrelevant (ignored IO specification)
146 cb_listen_ssl(int sock, short irrelevant)
151 fd = New_Connection(sock);
154 io_event_setcb(My_Connections[fd].sock, cb_clientserver_ssl);
160 * IO callback for new outgoing non-SSL server connections.
161 * @param sock Socket descriptor
162 * @param what IO specification (IO_WANTREAD/IO_WANTWRITE/...)
165 cb_connserver(int sock, UNUSED short what)
167 int res, err, server;
169 CONN_ID idx = Socket2Index( sock );
172 LogDebug("cb_connserver wants to write on unknown socket?!");
177 assert(what & IO_WANTWRITE);
179 /* Make sure that the server is still configured; it could have been
180 * removed in the meantime! */
181 server = Conf_GetServer(idx);
183 Log(LOG_ERR, "Connection on socket %d to \"%s\" aborted!",
184 sock, My_Connections[idx].host);
185 Conn_Close(idx, "Connection aborted!", NULL, false);
189 /* connect() finished, get result. */
190 sock_len = (socklen_t)sizeof(err);
191 res = getsockopt(My_Connections[idx].sock, SOL_SOCKET, SO_ERROR,
193 assert(sock_len == sizeof(err));
195 /* Error while connecting? */
196 if ((res != 0) || (err != 0)) {
198 Log(LOG_CRIT, "getsockopt (connection %d): %s!",
199 idx, strerror(errno));
202 "Can't connect socket to \"%s:%d\" (connection %d): %s!",
203 My_Connections[idx].host, Conf_Server[server].port,
206 Conn_Close(idx, "Can't connect!", NULL, false);
208 if (ng_ipaddr_af(&Conf_Server[server].dst_addr[0])) {
209 /* more addresses to try... */
210 New_Server(server, &Conf_Server[server].dst_addr[0]);
211 /* connection to dst_addr[0] is now in progress, so
212 * remove this address... */
213 Conf_Server[server].dst_addr[0] =
214 Conf_Server[server].dst_addr[1];
215 memset(&Conf_Server[server].dst_addr[1], 0,
216 sizeof(Conf_Server[server].dst_addr[1]));
221 /* connect() succeeded, remove all additional addresses */
222 memset(&Conf_Server[server].dst_addr, 0,
223 sizeof(Conf_Server[server].dst_addr));
225 Conn_OPTION_DEL( &My_Connections[idx], CONN_ISCONNECTING );
227 if ( Conn_OPTION_ISSET( &My_Connections[idx], CONN_SSL_CONNECT )) {
228 io_event_setcb( sock, cb_connserver_login_ssl );
229 io_event_add( sock, IO_WANTWRITE|IO_WANTREAD );
238 * Login to a remote server.
239 * @param idx Connection index
242 server_login(CONN_ID idx)
244 Log( LOG_INFO, "Connection %d with \"%s:%d\" established. Now logging in ...", idx,
245 My_Connections[idx].host, Conf_Server[Conf_GetServer( idx )].port );
247 io_event_setcb( My_Connections[idx].sock, cb_clientserver);
248 io_event_add( My_Connections[idx].sock, IO_WANTREAD|IO_WANTWRITE);
250 /* Send PASS and SERVER command to peer */
251 Conn_WriteStr( idx, "PASS %s %s", Conf_Server[Conf_GetServer( idx )].pwd_out, NGIRCd_ProtoID );
252 Conn_WriteStr( idx, "SERVER %s :%s", Conf_ServerName, Conf_ServerInfo );
258 * IO callback for new outgoing SSL-enabled server connections.
259 * @param sock Socket descriptor
260 * @param what IO specification (IO_WANTREAD/IO_WANTWRITE/...)
263 cb_connserver_login_ssl(int sock, short unused)
265 CONN_ID idx = Socket2Index(sock);
273 switch (ConnSSL_Connect( &My_Connections[idx])) {
275 case 0: LogDebug("ConnSSL_Connect: not ready");
278 Log(LOG_ERR, "SSL connection on socket %d failed!", sock);
279 Conn_Close(idx, "Can't connect!", NULL, false);
283 Log( LOG_INFO, "SSL connection %d with \"%s:%d\" established.", idx,
284 My_Connections[idx].host, Conf_Server[Conf_GetServer( idx )].port );
292 * IO callback for established non-SSL client and server connections.
293 * @param sock Socket descriptor
294 * @param what IO specification (IO_WANTREAD/IO_WANTWRITE/...)
297 cb_clientserver(int sock, short what)
299 CONN_ID idx = Socket2Index(sock);
308 if (what & IO_WANTREAD
309 || (Conn_OPTION_ISSET(&My_Connections[idx], CONN_SSL_WANT_WRITE))) {
310 /* if TLS layer needs to write additional data, call
311 * Read_Request() instead so that SSL/TLS can continue */
315 if (what & IO_WANTREAD)
318 if (what & IO_WANTWRITE)
325 * IO callback for established SSL-enabled client and server connections.
326 * @param sock Socket descriptor
327 * @param what IO specification (IO_WANTREAD/IO_WANTWRITE/...)
330 cb_clientserver_ssl(int sock, short what)
332 CONN_ID idx = Socket2Index(sock);
341 switch (ConnSSL_Accept(&My_Connections[idx])) {
345 return; /* EAGAIN: callback will be invoked again by IO layer */
347 Conn_Close(idx, "SSL accept error, closing socket", "SSL accept error", false);
350 if (what & IO_WANTREAD)
353 if (what & IO_WANTWRITE)
356 io_event_setcb(sock, cb_clientserver); /* SSL handshake completed */
362 * Initialite connecion module.
369 /* Speicher fuer Verbindungs-Pool anfordern */
370 Pool_Size = CONNECTION_POOL;
371 if ((Conf_MaxConnections > 0) &&
372 (Pool_Size > Conf_MaxConnections))
373 Pool_Size = Conf_MaxConnections;
375 if (!array_alloc(&My_ConnArray, sizeof(CONNECTION), (size_t)Pool_Size)) {
376 Log(LOG_EMERG, "Can't allocate memory! [Conn_Init]");
380 /* FIXME: My_Connetions/Pool_Size is needed by other parts of the
381 * code; remove them! */
382 My_Connections = (CONNECTION*) array_start(&My_ConnArray);
384 LogDebug("Allocated connection pool for %d items (%ld bytes).",
385 array_length(&My_ConnArray, sizeof(CONNECTION)),
386 array_bytes(&My_ConnArray));
388 assert(array_length(&My_ConnArray, sizeof(CONNECTION)) >= (size_t)Pool_Size);
390 array_free( &My_Listeners );
392 for (i = 0; i < Pool_Size; i++)
398 * Clean up connection module.
405 Conn_ExitListeners();
407 LogDebug("Shutting down all connections ..." );
408 for( idx = 0; idx < Pool_Size; idx++ ) {
409 if( My_Connections[idx].sock > NONE ) {
410 Conn_Close( idx, NULL, NGIRCd_SignalRestart ?
411 "Server going down (restarting)":"Server going down", true );
415 array_free(&My_ConnArray);
416 My_Connections = NULL;
418 io_library_shutdown();
423 * Close all sockets (file descriptors) of open connections.
424 * This is useful in forked child processes, for example, to make sure that
425 * they don't hold connections open that the main process wants to close.
428 Conn_CloseAllSockets(void)
432 for(idx = 0; idx < Pool_Size; idx++) {
433 if(My_Connections[idx].sock > NONE)
434 close(My_Connections[idx].sock);
440 ports_initlisteners(array *a, const char *listen_addr, void (*func)(int,short))
442 unsigned int created = 0;
447 len = array_length(a, sizeof (UINT16));
448 port = array_start(a);
450 fd = NewListener(listen_addr, *port);
455 if (!io_event_create( fd, IO_WANTREAD, func )) {
456 Log( LOG_ERR, "io_event_create(): Could not add listening fd %d (port %u): %s!",
457 fd, (unsigned int) *port, strerror(errno));
470 * Initialize all listening sockets.
471 * @return Number of created listening sockets
474 Conn_InitListeners( void )
476 /* Initialize ports on which the server should accept connections */
477 unsigned int created = 0;
478 char *copy, *listen_addr;
480 assert(Conf_ListenAddress);
482 /* can't use Conf_ListenAddress directly, see below */
483 copy = strdup(Conf_ListenAddress);
485 Log(LOG_CRIT, "Cannot copy %s: %s", Conf_ListenAddress, strerror(errno));
488 listen_addr = strtok(copy, ",");
490 while (listen_addr) {
491 ngt_TrimStr(listen_addr);
493 created += ports_initlisteners(&Conf_ListenPorts, listen_addr, cb_listen);
495 created += ports_initlisteners(&Conf_SSLOptions.ListenPorts, listen_addr, cb_listen_ssl);
499 listen_addr = strtok(NULL, ",");
502 /* Can't free() Conf_ListenAddress here: on REHASH, if the config file
503 * cannot be re-loaded, we'd end up with a NULL Conf_ListenAddress.
504 * Instead, free() takes place in conf.c, before the config file
505 * is being parsed. */
509 } /* Conn_InitListeners */
513 Conn_ExitListeners( void )
515 /* Close down all listening sockets */
519 Rendezvous_UnregisterListeners( );
522 arraylen = array_length(&My_Listeners, sizeof (int));
524 "Shutting down all listening sockets (%d total) ...", arraylen);
525 fd = array_start(&My_Listeners);
530 LogDebug("Listening socket %d closed.", *fd );
533 array_free(&My_Listeners);
534 } /* Conn_ExitListeners */
538 InitSinaddrListenAddr(ng_ipaddr_t *addr, const char *listen_addrstr, UINT16 Port)
542 ret = ng_ipaddr_init(addr, listen_addrstr, Port);
544 assert(listen_addrstr);
545 Log(LOG_CRIT, "Can't bind to [%s]:%u: can't convert ip address \"%s\"",
546 listen_addrstr, Port, listen_addrstr);
553 set_v6_only(int af, int sock)
555 #if defined(IPV6_V6ONLY) && defined(WANT_IPV6)
561 if (setsockopt(sock, IPPROTO_IPV6, IPV6_V6ONLY, &on, (socklen_t)sizeof(on)))
562 Log(LOG_ERR, "Could not set IPV6_V6ONLY: %s", strerror(errno));
570 /* return new listening port file descriptor or -1 on failure */
572 NewListener(const char *listen_addr, UINT16 Port)
574 /* Create new listening socket on specified port */
578 char name[CLIENT_ID_LEN], *info;
580 if (!InitSinaddrListenAddr(&addr, listen_addr, Port))
583 af = ng_ipaddr_af(&addr);
584 sock = socket(af, SOCK_STREAM, 0);
586 Log(LOG_CRIT, "Can't create socket (af %d) : %s!", af, strerror(errno));
590 set_v6_only(af, sock);
592 if (!Init_Socket(sock))
595 if (bind(sock, (struct sockaddr *)&addr, ng_ipaddr_salen(&addr)) != 0) {
596 Log(LOG_CRIT, "Can't bind socket to address %s:%d - %s",
597 ng_ipaddr_tostr(&addr), Port, strerror(errno));
602 if( listen( sock, 10 ) != 0 ) {
603 Log( LOG_CRIT, "Can't listen on socket: %s!", strerror( errno ));
608 /* keep fd in list so we can close it when ngircd restarts/shuts down */
609 if (!array_catb( &My_Listeners,(char*) &sock, sizeof(int) )) {
610 Log( LOG_CRIT, "Can't add socket to My_Listeners array: %s!", strerror( errno ));
615 Log(LOG_INFO, "Now listening on [%s]:%d (socket %d).", ng_ipaddr_tostr(&addr), Port, sock);
618 /* Get best server description text */
619 if( ! Conf_ServerInfo[0] ) info = Conf_ServerName;
622 /* Use server info string */
624 if( Conf_ServerInfo[0] == '[' )
626 /* Cut off leading hostname part in "[]" */
627 info = strchr( Conf_ServerInfo, ']' );
631 while( *info == ' ' ) info++;
634 if( ! info ) info = Conf_ServerInfo;
637 /* Add port number to description if non-standard */
639 snprintf(name, sizeof name, "%s (port %u)", info,
642 strlcpy(name, info, sizeof name);
644 /* Register service */
645 Rendezvous_Register( name, MDNS_TYPE, Port );
653 * SSL/TLS connections require extra treatment:
654 * When either CONN_SSL_WANT_WRITE or CONN_SSL_WANT_READ is set, we
655 * need to take care of that first, before checking read/write buffers.
656 * For instance, while we might have data in our write buffer, the
657 * TLS/SSL protocol might need to read internal data first for TLS/SSL
660 * If this function returns true, such a condition is met and we have
661 * to reverse the condition (check for read even if we've data to write,
662 * do not check for read but writeability even if write-buffer is empty).
665 SSL_WantRead(const CONNECTION *c)
667 if (Conn_OPTION_ISSET(c, CONN_SSL_WANT_READ)) {
668 io_event_add(c->sock, IO_WANTREAD);
674 SSL_WantWrite(const CONNECTION *c)
676 if (Conn_OPTION_ISSET(c, CONN_SSL_WANT_WRITE)) {
677 io_event_add(c->sock, IO_WANTWRITE);
684 SSL_WantRead(UNUSED const CONNECTION *c)
687 SSL_WantWrite(UNUSED const CONNECTION *c)
693 * "Main Loop": Loop until shutdown or restart is signalled.
694 * This function loops until a shutdown or restart of ngIRCd is signalled and
695 * calls io_dispatch() to check for readable and writable sockets every second.
696 * It checks for status changes on pending connections (e. g. when a hostname
697 * has been resolved), checks for "penalties" and timeouts, and handles the
704 unsigned int wdatalen, bytes_processed;
708 while (!NGIRCd_SignalQuit && !NGIRCd_SignalRestart) {
712 Rendezvous_Handler();
715 /* Check configured servers and established links */
719 /* Look for non-empty read buffers ... */
720 for (i = 0; i < Pool_Size; i++) {
721 if ((My_Connections[i].sock > NONE)
722 && (array_bytes(&My_Connections[i].rbuf) > 0)
723 && (My_Connections[i].delaytime <= t)) {
724 /* ... and try to handle the received data */
725 bytes_processed = Handle_Buffer(i);
726 /* if we processed data, and there might be
727 * more commands in the input buffer, do not
728 * try to read any more data now */
729 if (bytes_processed &&
730 array_bytes(&My_Connections[i].rbuf) > 2) {
732 ("Throttling connection %d: command limit reached!",
734 Conn_SetPenalty(i, 1);
739 /* Look for non-empty write buffers ... */
740 for (i = 0; i < Pool_Size; i++) {
741 if (My_Connections[i].sock <= NONE)
744 wdatalen = (unsigned int)array_bytes(&My_Connections[i].wbuf);
747 array_bytes(&My_Connections[i].zip.wbuf) > 0)
752 if (SSL_WantRead(&My_Connections[i]))
754 io_event_add(My_Connections[i].sock,
759 /* Check from which sockets we possibly could read ... */
760 for (i = 0; i < Pool_Size; i++) {
761 if (My_Connections[i].sock <= NONE)
764 if (SSL_WantWrite(&My_Connections[i]))
765 continue; /* TLS/SSL layer needs to write data; deal with this first */
767 if (Proc_InProgress(&My_Connections[i].proc_stat)) {
768 /* Wait for completion of forked subprocess
769 * and ignore the socket in the meantime ... */
770 io_event_del(My_Connections[i].sock,
775 if (Conn_OPTION_ISSET(&My_Connections[i], CONN_ISCONNECTING))
776 /* Wait for completion of connect() ... */
779 if (My_Connections[i].delaytime > t) {
780 /* There is a "penalty time" set: ignore socket! */
781 io_event_del(My_Connections[i].sock,
786 io_event_add(My_Connections[i].sock, IO_WANTREAD);
789 /* Set the timeout for reading from the network to 1 second,
790 * which is the granularity with witch we handle "penalty
791 * times" for example.
792 * Note: tv_sec/usec are undefined(!) after io_dispatch()
793 * returns, so we have to set it beforce each call to it! */
797 /* Wait for activity ... */
798 i = io_dispatch(&tv);
799 if (i == -1 && errno != EINTR) {
800 Log(LOG_EMERG, "Conn_Handler(): io_dispatch(): %s!",
802 Log(LOG_ALERT, "%s exiting due to fatal errors!",
808 if (NGIRCd_SignalQuit)
809 Log(LOG_NOTICE | LOG_snotice, "Server going down NOW!");
810 else if (NGIRCd_SignalRestart)
811 Log(LOG_NOTICE | LOG_snotice, "Server restarting NOW!");
816 * Write a text string into the socket of a connection.
817 * This function automatically appends CR+LF to the string and validates that
818 * the result is a valid IRC message (oversized messages are shortened, for
819 * example). Then it calls the Conn_Write() function to do the actual sending.
820 * @param Idx Index fo the connection.
821 * @param Format Format string, see printf().
822 * @return true on success, false otherwise.
826 Conn_WriteStr(CONN_ID Idx, const char *Format, ...)
829 Conn_WriteStr(Idx, Format, va_alist)
835 char buffer[COMMAND_LEN];
840 assert( Idx > NONE );
841 assert( Format != NULL );
844 va_start( ap, Format );
848 if (vsnprintf( buffer, COMMAND_LEN - 2, Format, ap ) >= COMMAND_LEN - 2 ) {
850 * The string that should be written to the socket is longer
851 * than the allowed size of COMMAND_LEN bytes (including both
852 * the CR and LF characters). This can be caused by the
853 * IRC_WriteXXX() functions when the prefix of this server had
854 * to be added to an already "quite long" command line which
855 * has been received from a regular IRC client, for example.
857 * We are not allowed to send such "oversized" messages to
858 * other servers and clients, see RFC 2812 2.3 and 2813 3.3
859 * ("these messages SHALL NOT exceed 512 characters in length,
860 * counting all characters including the trailing CR-LF").
862 * So we have a big problem here: we should send more bytes
863 * to the network than we are allowed to and we don't know
864 * the originator (any more). The "old" behaviour of blaming
865 * the receiver ("next hop") is a bad idea (it could be just
866 * an other server only routing the message!), so the only
867 * option left is to shorten the string and to hope that the
868 * result is still somewhat useful ...
872 strcpy (buffer + sizeof(buffer) - strlen(CUT_TXTSUFFIX) - 2 - 1,
878 Log(LOG_DEBUG, " -> connection %d: '%s'.", Idx, buffer);
881 len = strlcat( buffer, "\r\n", sizeof( buffer ));
882 ok = Conn_Write(Idx, buffer, len);
883 My_Connections[Idx].msg_out++;
887 } /* Conn_WriteStr */
891 * Append Data to the outbound write buffer of a connection.
892 * @param Idx Index of the connection.
893 * @param Data pointer to the data.
894 * @param Len length of Data.
895 * @return true on success, false otherwise.
898 Conn_Write( CONN_ID Idx, char *Data, size_t Len )
901 size_t writebuf_limit = WRITEBUFFER_LEN;
902 assert( Idx > NONE );
903 assert( Data != NULL );
906 c = Conn_GetClient(Idx);
909 /* Servers do get special write buffer limits, so they can generate
910 * all the messages that are required while peering. */
911 if (Client_Type(c) == CLIENT_SERVER)
912 writebuf_limit = WRITEBUFFER_SLINK_LEN;
914 /* Is the socket still open? A previous call to Conn_Write()
915 * may have closed the connection due to a fatal error.
916 * In this case it is sufficient to return an error, as well. */
917 if( My_Connections[Idx].sock <= NONE ) {
918 LogDebug("Skipped write on closed socket (connection %d).", Idx);
923 if ( Conn_OPTION_ISSET( &My_Connections[Idx], CONN_ZIP )) {
925 * Zip_Buffer() does all the dirty work for us: it flushes
926 * the (pre-)compression buffers if required and handles
927 * all error conditions. */
928 if (!Zip_Buffer(Idx, Data, Len))
934 /* Uncompressed link:
935 * Check if outbound buffer has enough space for the data. */
936 if (array_bytes(&My_Connections[Idx].wbuf) + Len >=
938 /* Buffer is full, flush it. Handle_Write deals with
939 * low-level errors, if any. */
940 if (!Handle_Write(Idx))
944 /* When the write buffer is still too big after flushing it,
945 * the connection will be killed. */
946 if (array_bytes(&My_Connections[Idx].wbuf) + Len >=
949 "Write buffer overflow (connection %d, size %lu byte)!",
951 (unsigned long)array_bytes(&My_Connections[Idx].wbuf));
952 Conn_Close(Idx, "Write buffer overflow!", NULL, false);
956 /* Copy data to write buffer */
957 if (!array_catb(&My_Connections[Idx].wbuf, Data, Len))
960 My_Connections[Idx].bytes_out += Len;
963 /* Adjust global write counter */
971 Conn_Close( CONN_ID Idx, const char *LogMsg, const char *FwdMsg, bool InformClient )
973 /* Close connection. Open pipes of asyncronous resolver
974 * sub-processes are closed down. */
980 double in_z_k, out_z_k;
984 assert( Idx > NONE );
986 /* Is this link already shutting down? */
987 if( Conn_OPTION_ISSET( &My_Connections[Idx], CONN_ISCLOSING )) {
988 /* Conn_Close() has been called recursively for this link;
989 * probabe reason: Handle_Write() failed -- see below. */
990 LogDebug("Recursive request to close connection: %d", Idx );
994 assert( My_Connections[Idx].sock > NONE );
996 /* Mark link as "closing" */
997 Conn_OPTION_ADD( &My_Connections[Idx], CONN_ISCLOSING );
999 port = ng_ipaddr_getport(&My_Connections[Idx].addr);
1000 Log(LOG_INFO, "Shutting down connection %d (%s) with %s:%d ...", Idx,
1001 LogMsg ? LogMsg : FwdMsg, My_Connections[Idx].host, port);
1003 /* Search client, if any */
1004 c = Conn_GetClient( Idx );
1006 /* Should the client be informed? */
1009 /* Send statistics to client if registered as user: */
1010 if ((c != NULL) && (Client_Type(c) == CLIENT_USER)) {
1012 ":%s NOTICE %s :%sConnection statistics: client %.1f kb, server %.1f kb.",
1013 Client_ID(Client_ThisServer()), Client_ID(c),
1015 (double)My_Connections[Idx].bytes_in / 1024,
1016 (double)My_Connections[Idx].bytes_out / 1024);
1019 /* Send ERROR to client (see RFC 2812, section 3.1.7) */
1021 Conn_WriteStr(Idx, "ERROR :%s", FwdMsg);
1023 Conn_WriteStr(Idx, "ERROR :Closing connection.");
1026 /* Try to write out the write buffer. Note: Handle_Write() eventually
1027 * removes the CLIENT structure associated with this connection if an
1028 * error occurs! So we have to re-check if there is still an valid
1029 * CLIENT structure after calling Handle_Write() ...*/
1030 (void)Handle_Write( Idx );
1032 /* Search client, if any (re-check!) */
1033 c = Conn_GetClient( Idx );
1035 if ( Conn_OPTION_ISSET( &My_Connections[Idx], CONN_SSL )) {
1036 Log(LOG_INFO, "SSL connection %d shutting down ...", Idx);
1037 ConnSSL_Free(&My_Connections[Idx]);
1040 /* Shut down socket */
1041 if (! io_close(My_Connections[Idx].sock)) {
1042 /* Oops, we can't close the socket!? This is ... ugly! */
1044 "Error closing connection %d (socket %d) with %s:%d - %s! (ignored)",
1045 Idx, My_Connections[Idx].sock, My_Connections[Idx].host,
1046 port, strerror(errno));
1049 /* Mark socket as invalid: */
1050 My_Connections[Idx].sock = NONE;
1052 /* If there is still a client, unregister it now */
1054 Client_Destroy(c, LogMsg, FwdMsg, true);
1056 /* Calculate statistics and log information */
1057 in_k = (double)My_Connections[Idx].bytes_in / 1024;
1058 out_k = (double)My_Connections[Idx].bytes_out / 1024;
1060 if (Conn_OPTION_ISSET( &My_Connections[Idx], CONN_ZIP)) {
1061 in_z_k = (double)My_Connections[Idx].zip.bytes_in / 1024;
1062 out_z_k = (double)My_Connections[Idx].zip.bytes_out / 1024;
1063 /* Make sure that no division by zero can occur during
1064 * the calculation of in_p and out_p: in_z_k and out_z_k
1065 * are non-zero, that's guaranteed by the protocol until
1066 * compression can be enabled. */
1071 in_p = (int)(( in_k * 100 ) / in_z_k );
1072 out_p = (int)(( out_k * 100 ) / out_z_k );
1074 "Connection %d with %s:%d closed (in: %.1fk/%.1fk/%d%%, out: %.1fk/%.1fk/%d%%).",
1075 Idx, My_Connections[Idx].host, port,
1076 in_k, in_z_k, in_p, out_k, out_z_k, out_p);
1082 "Connection %d with %s:%d closed (in: %.1fk, out: %.1fk).",
1083 Idx, My_Connections[Idx].host, port,
1087 /* Servers: Modify time of next connect attempt? */
1088 Conf_UnsetServer( Idx );
1091 /* Clean up zlib, if link was compressed */
1092 if ( Conn_OPTION_ISSET( &My_Connections[Idx], CONN_ZIP )) {
1093 inflateEnd( &My_Connections[Idx].zip.in );
1094 deflateEnd( &My_Connections[Idx].zip.out );
1095 array_free(&My_Connections[Idx].zip.rbuf);
1096 array_free(&My_Connections[Idx].zip.wbuf);
1100 array_free(&My_Connections[Idx].rbuf);
1101 array_free(&My_Connections[Idx].wbuf);
1103 /* Clean up connection structure (=free it) */
1104 Init_Conn_Struct( Idx );
1106 assert(NumConnections > 0);
1109 LogDebug("Shutdown of connection %d completed, %ld connection%s left.",
1110 Idx, NumConnections, NumConnections != 1 ? "s" : "");
1117 return NumConnections;
1124 return NumConnectionsMax;
1125 } /* Conn_CountMax */
1129 Conn_CountAccepted(void)
1131 return NumConnectionsAccepted;
1132 } /* Conn_CountAccepted */
1136 * Synchronize established connections and configured server structures
1137 * after a configuration update and store the correct connection IDs, if any.
1140 Conn_SyncServerStruct(void)
1146 for (i = 0; i < Pool_Size; i++) {
1147 if (My_Connections[i].sock == NONE)
1151 client = Conn_GetClient(i);
1152 if (!client || Client_Type(client) != CLIENT_SERVER)
1155 for (c = 0; c < MAX_SERVERS; c++) {
1156 /* Configured server? */
1157 if (!Conf_Server[c].host[0])
1160 if (strcasecmp(Conf_Server[c].name, Client_ID(client)) == 0)
1161 Conf_Server[c].conn_id = i;
1164 } /* SyncServerStruct */
1168 * Send out data of write buffer; connect new sockets.
1171 Handle_Write( CONN_ID Idx )
1176 assert( Idx > NONE );
1177 if ( My_Connections[Idx].sock < 0 ) {
1178 LogDebug("Handle_Write() on closed socket, connection %d", Idx);
1181 assert( My_Connections[Idx].sock > NONE );
1183 wdatalen = array_bytes(&My_Connections[Idx].wbuf );
1186 if (wdatalen == 0) {
1187 /* Write buffer is empty, so we try to flush the compression
1188 * buffer and get some data to work with from there :-) */
1189 if (!Zip_Flush(Idx))
1192 /* Now the write buffer most probably has changed: */
1193 wdatalen = array_bytes(&My_Connections[Idx].wbuf);
1197 if (wdatalen == 0) {
1198 /* Still no data, fine. */
1199 io_event_del(My_Connections[Idx].sock, IO_WANTWRITE );
1204 ("Handle_Write() called for connection %d, %ld bytes pending ...",
1208 if ( Conn_OPTION_ISSET( &My_Connections[Idx], CONN_SSL )) {
1209 len = ConnSSL_Write(&My_Connections[Idx], array_start(&My_Connections[Idx].wbuf), wdatalen);
1213 len = write(My_Connections[Idx].sock,
1214 array_start(&My_Connections[Idx].wbuf), wdatalen );
1217 if (errno == EAGAIN || errno == EINTR)
1220 Log(LOG_ERR, "Write error on connection %d (socket %d): %s!",
1221 Idx, My_Connections[Idx].sock, strerror(errno));
1222 Conn_Close(Idx, "Write error!", NULL, false);
1226 /* move any data not yet written to beginning */
1227 array_moveleft(&My_Connections[Idx].wbuf, 1, (size_t)len);
1230 } /* Handle_Write */
1234 Count_Connections(ng_ipaddr_t *a)
1239 for (i = 0; i < Pool_Size; i++) {
1240 if (My_Connections[i].sock <= NONE)
1242 if (ng_ipaddr_ipequal(&My_Connections[i].addr, a))
1246 } /* Count_Connections */
1250 * Initialize new client connection on a listening socket.
1251 * @param Sock Listening socket descriptor
1252 * @return Accepted socket descriptor or -1 on error
1255 New_Connection(int Sock)
1258 struct request_info req;
1260 ng_ipaddr_t new_addr;
1261 char ip_str[NG_INET_ADDRSTRLEN];
1262 int new_sock, new_sock_len, identsock;
1266 assert(Sock > NONE);
1268 new_sock_len = (int)sizeof(new_addr);
1269 new_sock = accept(Sock, (struct sockaddr *)&new_addr,
1270 (socklen_t *)&new_sock_len);
1272 Log(LOG_CRIT, "Can't accept connection: %s!", strerror(errno));
1275 NumConnectionsAccepted++;
1277 if (!ng_ipaddr_tostr_r(&new_addr, ip_str)) {
1278 Log(LOG_CRIT, "fd %d: Can't convert IP address!", new_sock);
1279 Simple_Message(new_sock, "ERROR :Internal Server Error");
1285 /* Validate socket using TCP Wrappers */
1286 request_init(&req, RQ_DAEMON, PACKAGE_NAME, RQ_FILE, new_sock,
1287 RQ_CLIENT_SIN, &new_addr, NULL);
1289 if (!hosts_access(&req)) {
1291 "Refused connection from %s (by TCP Wrappers)!", ip_str);
1292 Simple_Message(new_sock, "ERROR :Connection refused");
1298 if (!Init_Socket(new_sock))
1301 /* Check global connection limit */
1302 if ((Conf_MaxConnections > 0) &&
1303 (NumConnections >= (size_t) Conf_MaxConnections)) {
1304 Log(LOG_ALERT, "Can't accept connection: limit (%d) reached!",
1305 Conf_MaxConnections);
1306 Simple_Message(new_sock, "ERROR :Connection limit reached");
1311 /* Check IP-based connection limit */
1312 cnt = Count_Connections(&new_addr);
1313 if ((Conf_MaxConnectionsIP > 0) && (cnt >= Conf_MaxConnectionsIP)) {
1314 /* Access denied, too many connections from this IP address! */
1316 "Refused connection from %s: too may connections (%ld) from this IP address!",
1318 Simple_Message(new_sock,
1319 "ERROR :Connection refused, too many connections from your IP address!");
1324 if (new_sock >= Pool_Size) {
1325 if (!array_alloc(&My_ConnArray, sizeof(CONNECTION),
1326 (size_t) new_sock)) {
1328 "Can't allocate memory! [New_Connection]");
1329 Simple_Message(new_sock, "ERROR: Internal error");
1333 LogDebug("Bumped connection pool to %ld items (internal: %ld items, %ld bytes)",
1334 new_sock, array_length(&My_ConnArray,
1335 sizeof(CONNECTION)), array_bytes(&My_ConnArray));
1337 /* Adjust pointer to new block */
1338 My_Connections = array_start(&My_ConnArray);
1339 while (Pool_Size <= new_sock)
1340 Init_Conn_Struct(Pool_Size++);
1343 /* register callback */
1344 if (!io_event_create(new_sock, IO_WANTREAD, cb_clientserver)) {
1346 "Can't accept connection: io_event_create failed!");
1347 Simple_Message(new_sock, "ERROR :Internal error");
1352 c = Client_NewLocal(new_sock, ip_str, CLIENT_UNKNOWN, false);
1355 "Can't accept connection: can't create client structure!");
1356 Simple_Message(new_sock, "ERROR :Internal error");
1361 Init_Conn_Struct(new_sock);
1362 My_Connections[new_sock].sock = new_sock;
1363 My_Connections[new_sock].addr = new_addr;
1364 My_Connections[new_sock].client = c;
1366 /* Set initial hostname to IP address. This becomes overwritten when
1367 * the DNS lookup is enabled and succeeds, but is used otherwise. */
1368 if (ng_ipaddr_af(&new_addr) != AF_INET)
1369 snprintf(My_Connections[new_sock].host,
1370 sizeof(My_Connections[new_sock].host), "[%s]", ip_str);
1372 strlcpy(My_Connections[new_sock].host, ip_str,
1373 sizeof(My_Connections[new_sock].host));
1375 Client_SetHostname(c, My_Connections[new_sock].host);
1377 Log(LOG_INFO, "Accepted connection %d from %s:%d on socket %d.",
1378 new_sock, My_Connections[new_sock].host,
1379 ng_ipaddr_getport(&new_addr), Sock);
1381 identsock = new_sock;
1387 Resolve_Addr(&My_Connections[new_sock].proc_stat, &new_addr,
1388 identsock, cb_Read_Resolver_Result);
1390 Account_Connection();
1392 } /* New_Connection */
1396 Account_Connection(void)
1399 if (NumConnections > NumConnectionsMax)
1400 NumConnectionsMax = NumConnections;
1401 LogDebug("Total number of connections now %lu (max %lu).",
1402 NumConnections, NumConnectionsMax);
1403 } /* Account_Connection */
1407 Socket2Index( int Sock )
1409 assert( Sock >= 0 );
1411 if( Sock >= Pool_Size || My_Connections[Sock].sock != Sock ) {
1412 /* the Connection was already closed again, likely due to
1414 LogDebug("Socket2Index: can't get connection for socket %d!", Sock);
1418 } /* Socket2Index */
1422 * Read data from the network to the read buffer. If an error occures,
1423 * the socket of this connection will be shut down.
1426 Read_Request( CONN_ID Idx )
1429 static const unsigned int maxbps = COMMAND_LEN / 2;
1430 char readbuf[READBUFFER_LEN];
1433 assert( Idx > NONE );
1434 assert( My_Connections[Idx].sock > NONE );
1437 if ((array_bytes(&My_Connections[Idx].rbuf) >= READBUFFER_LEN) ||
1438 (array_bytes(&My_Connections[Idx].zip.rbuf) >= READBUFFER_LEN))
1440 if (array_bytes(&My_Connections[Idx].rbuf) >= READBUFFER_LEN)
1443 /* Read buffer is full */
1445 "Receive buffer overflow (connection %d): %d bytes!",
1446 Idx, array_bytes(&My_Connections[Idx].rbuf));
1447 Conn_Close( Idx, "Receive buffer overflow!", NULL, false );
1452 if (Conn_OPTION_ISSET(&My_Connections[Idx], CONN_SSL))
1453 len = ConnSSL_Read( &My_Connections[Idx], readbuf, sizeof(readbuf));
1456 len = read(My_Connections[Idx].sock, readbuf, sizeof(readbuf));
1458 Log(LOG_INFO, "%s:%u (%s) is closing the connection ...",
1459 My_Connections[Idx].host,
1460 (unsigned int) ng_ipaddr_getport(&My_Connections[Idx].addr),
1461 ng_ipaddr_tostr(&My_Connections[Idx].addr));
1463 "Socket closed!", "Client closed connection",
1469 if( errno == EAGAIN ) return;
1470 Log(LOG_ERR, "Read error on connection %d (socket %d): %s!",
1471 Idx, My_Connections[Idx].sock, strerror(errno));
1472 Conn_Close(Idx, "Read error!", "Client closed connection",
1477 if (Conn_OPTION_ISSET(&My_Connections[Idx], CONN_ZIP)) {
1478 if (!array_catb(&My_Connections[Idx].zip.rbuf, readbuf,
1481 "Could not append recieved data to zip input buffer (connn %d): %d bytes!",
1483 Conn_Close(Idx, "Receive buffer overflow!", NULL,
1490 if (!array_catb( &My_Connections[Idx].rbuf, readbuf, len)) {
1491 Log( LOG_ERR, "Could not append recieved data to input buffer (connn %d): %d bytes!", Idx, len );
1492 Conn_Close( Idx, "Receive buffer overflow!", NULL, false );
1496 /* Update connection statistics */
1497 My_Connections[Idx].bytes_in += len;
1499 /* Update timestamp of last data received if this connection is
1500 * registered as a user, server or service connection. Don't update
1501 * otherwise, so users have at least Conf_PongTimeout seconds time to
1502 * register with the IRC server -- see Check_Connections().
1503 * Update "lastping", too, if time shifted backwards ... */
1504 c = Conn_GetClient(Idx);
1505 if (c && (Client_Type(c) == CLIENT_USER
1506 || Client_Type(c) == CLIENT_SERVER
1507 || Client_Type(c) == CLIENT_SERVICE)) {
1509 if (My_Connections[Idx].lastdata != t)
1510 My_Connections[Idx].bps = 0;
1512 My_Connections[Idx].lastdata = t;
1513 if (My_Connections[Idx].lastping > t)
1514 My_Connections[Idx].lastping = t;
1517 /* Look at the data in the (read-) buffer of this connection */
1518 My_Connections[Idx].bps += Handle_Buffer(Idx);
1519 if (Client_Type(c) != CLIENT_SERVER
1520 && Client_Type(c) != CLIENT_UNKNOWNSERVER
1521 && Client_Type(c) != CLIENT_SERVICE
1522 && My_Connections[Idx].bps >= maxbps) {
1523 LogDebug("Throttling connection %d: BPS exceeded! (%u >= %u)",
1524 Idx, My_Connections[Idx].bps, maxbps);
1525 Conn_SetPenalty(Idx, 1);
1527 } /* Read_Request */
1531 * Handle all data in the connection read-buffer.
1532 * Data is processed until no complete command is left in the read buffer,
1533 * or MAX_COMMANDS[_SERVER] commands were processed.
1534 * When a fatal error occurs, the connection is shut down.
1535 * @param Idx Index of the connection.
1536 * @return number of bytes processed.
1539 Handle_Buffer(CONN_ID Idx)
1542 char *ptr1, *ptr2, *first_eol;
1550 unsigned int i, maxcmd = MAX_COMMANDS, len_processed = 0;
1553 c = Conn_GetClient(Idx);
1556 /* Servers do get special command limits, so they can process
1557 * all the messages that are required while peering. */
1558 if (Client_Type(c) == CLIENT_SERVER)
1559 maxcmd = MAX_COMMANDS_SERVER;
1561 starttime = time(NULL);
1562 for (i=0; i < maxcmd; i++) {
1564 if (My_Connections[Idx].delaytime > starttime)
1567 /* Unpack compressed data, if compression is in use */
1568 if (Conn_OPTION_ISSET(&My_Connections[Idx], CONN_ZIP)) {
1569 /* When unzipping fails, Unzip_Buffer() shuts
1570 * down the connection itself */
1571 if (!Unzip_Buffer(Idx))
1576 if (0 == array_bytes(&My_Connections[Idx].rbuf))
1579 /* Make sure that the buffer is NULL terminated */
1580 if (!array_cat0_temporary(&My_Connections[Idx].rbuf)) {
1581 Conn_Close(Idx, NULL,
1582 "Can't allocate memory [Handle_Buffer]",
1587 /* RFC 2812, section "2.3 Messages", 5th paragraph:
1588 * "IRC messages are always lines of characters terminated
1589 * with a CR-LF (Carriage Return - Line Feed) pair [...]". */
1591 ptr = strstr(array_start(&My_Connections[Idx].rbuf), "\r\n");
1594 /* Check for non-RFC-compliant request (only CR or LF)?
1595 * Unfortunately, there are quite a few clients out there
1596 * that do this -- e. g. mIRC, BitchX, and Trillian :-( */
1597 ptr1 = strchr(array_start(&My_Connections[Idx].rbuf), '\r');
1598 ptr2 = strchr(array_start(&My_Connections[Idx].rbuf), '\n');
1600 /* Check if there is a single CR or LF _before_ the
1601 * corerct CR+LF line terminator: */
1602 first_eol = ptr1 < ptr2 ? ptr1 : ptr2;
1603 if (first_eol < ptr) {
1604 /* Single CR or LF before CR+LF found */
1608 } else if (ptr1 || ptr2) {
1609 /* No CR+LF terminated command found, but single
1610 * CR or LF found ... */
1612 ptr = ptr1 < ptr2 ? ptr1 : ptr2;
1614 ptr = ptr1 ? ptr1 : ptr2;
1622 /* Complete (=line terminated) request found, handle it! */
1625 len = ptr - (char *)array_start(&My_Connections[Idx].rbuf) + delta;
1627 if (len > (COMMAND_LEN - 1)) {
1628 /* Request must not exceed 512 chars (incl. CR+LF!),
1629 * see RFC 2812. Disconnect Client if this happens. */
1631 "Request too long (connection %d): %d bytes (max. %d expected)!",
1632 Idx, array_bytes(&My_Connections[Idx].rbuf),
1634 Conn_Close(Idx, NULL, "Request too long", true);
1638 len_processed += (unsigned int)len;
1640 /* Request is empty (only '\r\n', '\r' or '\n');
1641 * delta is 2 ('\r\n') or 1 ('\r' or '\n'), see above */
1642 array_moveleft(&My_Connections[Idx].rbuf, 1, len);
1646 /* remember if stream is already compressed */
1647 old_z = My_Connections[Idx].options & CONN_ZIP;
1650 My_Connections[Idx].msg_in++;
1652 (Idx, (char *)array_start(&My_Connections[Idx].rbuf)))
1653 return 0; /* error -> connection has been closed */
1655 array_moveleft(&My_Connections[Idx].rbuf, 1, len);
1656 LogDebug("Connection %d: %d bytes left in read buffer.",
1657 Idx, array_bytes(&My_Connections[Idx].rbuf));
1659 if ((!old_z) && (My_Connections[Idx].options & CONN_ZIP) &&
1660 (array_bytes(&My_Connections[Idx].rbuf) > 0)) {
1661 /* The last command activated socket compression.
1662 * Data that was read after that needs to be copied
1663 * to the unzip buffer for decompression: */
1665 (&My_Connections[Idx].zip.rbuf,
1666 &My_Connections[Idx].rbuf)) {
1667 Conn_Close(Idx, NULL,
1668 "Can't allocate memory [Handle_Buffer]",
1673 array_trunc(&My_Connections[Idx].rbuf);
1675 ("Moved already received data (%u bytes) to uncompression buffer.",
1676 array_bytes(&My_Connections[Idx].zip.rbuf));
1680 return len_processed;
1681 } /* Handle_Buffer */
1685 * Check whether established connections are still alive or not.
1686 * If not, play PING-PONG first; and if that doesn't help either,
1687 * disconnect the respective peer.
1690 Check_Connections(void)
1696 for (i = 0; i < Pool_Size; i++) {
1697 if (My_Connections[i].sock < 0)
1700 c = Conn_GetClient(i);
1701 if (c && ((Client_Type(c) == CLIENT_USER)
1702 || (Client_Type(c) == CLIENT_SERVER)
1703 || (Client_Type(c) == CLIENT_SERVICE))) {
1704 /* connected User, Server or Service */
1705 if (My_Connections[i].lastping >
1706 My_Connections[i].lastdata) {
1707 /* We already sent a ping */
1708 if (My_Connections[i].lastping <
1709 time(NULL) - Conf_PongTimeout) {
1712 ("Connection %d: Ping timeout: %d seconds.",
1713 i, Conf_PongTimeout);
1714 snprintf(msg, sizeof(msg), "Ping timeout: %d seconds", Conf_PongTimeout);
1715 Conn_Close(i, NULL, msg, true);
1717 } else if (My_Connections[i].lastdata <
1718 time(NULL) - Conf_PingTimeout) {
1719 /* We need to send a PING ... */
1720 LogDebug("Connection %d: sending PING ...", i);
1721 My_Connections[i].lastping = time(NULL);
1722 Conn_WriteStr(i, "PING :%s",
1723 Client_ID(Client_ThisServer()));
1726 /* The connection is not fully established yet, so
1727 * we don't do the PING-PONG game here but instead
1728 * disconnect the client after "a short time" if it's
1729 * still not registered. */
1731 if (My_Connections[i].lastdata <
1732 time(NULL) - Conf_PongTimeout) {
1734 ("Unregistered connection %d timed out ...",
1736 Conn_Close(i, NULL, "Timeout", false);
1740 } /* Check_Connections */
1744 * Check if further server links should be established.
1752 time_now = time(NULL);
1754 /* Check all configured servers */
1755 for (i = 0; i < MAX_SERVERS; i++) {
1756 if (Conf_Server[i].conn_id != NONE)
1757 continue; /* Already establishing or connected */
1758 if (!Conf_Server[i].host[0] || !Conf_Server[i].port > 0)
1759 continue; /* No host and/or port configured */
1760 if (Conf_Server[i].flags & CONF_SFLAG_DISABLED)
1761 continue; /* Disabled configuration entry */
1762 if (Conf_Server[i].lasttry > (time_now - Conf_ConnectRetry))
1763 continue; /* We have to wait a little bit ... */
1765 /* Is there already a connection in this group? */
1766 if (Conf_Server[i].group > NONE) {
1767 for (n = 0; n < MAX_SERVERS; n++) {
1770 if ((Conf_Server[n].conn_id != NONE) &&
1771 (Conf_Server[n].group == Conf_Server[i].group))
1774 if (n < MAX_SERVERS)
1778 /* Okay, try to connect now */
1780 "Preparing to establish a new server link for \"%s\" ...",
1781 Conf_Server[i].name);
1782 Conf_Server[i].lasttry = time_now;
1783 Conf_Server[i].conn_id = SERVER_WAIT;
1784 assert(Proc_GetPipeFd(&Conf_Server[i].res_stat) < 0);
1785 Resolve_Name(&Conf_Server[i].res_stat, Conf_Server[i].host,
1786 cb_Connect_to_Server);
1788 } /* Check_Servers */
1792 New_Server( int Server , ng_ipaddr_t *dest)
1794 /* Establish new server link */
1795 char ip_str[NG_INET_ADDRSTRLEN];
1796 int af_dest, res, new_sock;
1799 assert( Server > NONE );
1801 if (!ng_ipaddr_tostr_r(dest, ip_str)) {
1802 Log(LOG_WARNING, "New_Server: Could not convert IP to string");
1806 Log(LOG_INFO, "Establishing connection for \"%s\" to \"%s\" (%s) port %d ... ",
1807 Conf_Server[Server].name, Conf_Server[Server].host, ip_str,
1808 Conf_Server[Server].port);
1810 af_dest = ng_ipaddr_af(dest);
1811 new_sock = socket(af_dest, SOCK_STREAM, 0);
1813 Log( LOG_CRIT, "Can't create socket (af %d) : %s!", af_dest, strerror( errno ));
1817 if (!Init_Socket(new_sock))
1820 /* is a bind address configured? */
1821 res = ng_ipaddr_af(&Conf_Server[Server].bind_addr);
1822 /* if yes, bind now. If it fails, warn and let connect() pick a source address */
1823 if (res && bind(new_sock, (struct sockaddr *) &Conf_Server[Server].bind_addr,
1824 ng_ipaddr_salen(&Conf_Server[Server].bind_addr)))
1826 ng_ipaddr_tostr_r(&Conf_Server[Server].bind_addr, ip_str);
1827 Log(LOG_WARNING, "Can't bind socket to %s: %s!", ip_str, strerror(errno));
1829 ng_ipaddr_setport(dest, Conf_Server[Server].port);
1830 res = connect(new_sock, (struct sockaddr *) dest, ng_ipaddr_salen(dest));
1831 if(( res != 0 ) && ( errno != EINPROGRESS )) {
1832 Log( LOG_CRIT, "Can't connect socket: %s!", strerror( errno ));
1837 if (!array_alloc(&My_ConnArray, sizeof(CONNECTION), (size_t)new_sock)) {
1839 "Cannot allocate memory for server connection (socket %d)",
1845 My_Connections = array_start(&My_ConnArray);
1847 assert(My_Connections[new_sock].sock <= 0);
1849 Init_Conn_Struct(new_sock);
1851 ng_ipaddr_tostr_r(dest, ip_str);
1852 c = Client_NewLocal(new_sock, ip_str, CLIENT_UNKNOWNSERVER, false);
1854 Log( LOG_ALERT, "Can't establish connection: can't create client structure!" );
1859 /* Conn_Close() decrements this counter again */
1860 Account_Connection();
1861 Client_SetIntroducer( c, c );
1862 Client_SetToken( c, TOKEN_OUTBOUND );
1864 /* Register connection */
1865 Conf_Server[Server].conn_id = new_sock;
1866 My_Connections[new_sock].sock = new_sock;
1867 My_Connections[new_sock].addr = *dest;
1868 My_Connections[new_sock].client = c;
1869 strlcpy( My_Connections[new_sock].host, Conf_Server[Server].host,
1870 sizeof(My_Connections[new_sock].host ));
1872 /* Register new socket */
1873 if (!io_event_create( new_sock, IO_WANTWRITE, cb_connserver)) {
1874 Log( LOG_ALERT, "io_event_create(): could not add fd %d", strerror(errno));
1875 Conn_Close( new_sock, "io_event_create() failed", NULL, false );
1876 Init_Conn_Struct( new_sock );
1877 Conf_Server[Server].conn_id = NONE;
1880 if (Conf_Server[Server].SSLConnect && !ConnSSL_PrepareConnect( &My_Connections[new_sock],
1881 &Conf_Server[Server] ))
1883 Log(LOG_ALERT, "Could not initialize SSL for outgoing connection");
1884 Conn_Close( new_sock, "Could not initialize SSL for outgoing connection", NULL, false );
1885 Init_Conn_Struct( new_sock );
1886 Conf_Server[Server].conn_id = NONE;
1890 LogDebug("Registered new connection %d on socket %d (%ld in total).",
1891 new_sock, My_Connections[new_sock].sock, NumConnections);
1892 Conn_OPTION_ADD( &My_Connections[new_sock], CONN_ISCONNECTING );
1897 * Initialize connection structure.
1900 Init_Conn_Struct(CONN_ID Idx)
1902 time_t now = time(NULL);
1904 memset(&My_Connections[Idx], 0, sizeof(CONNECTION));
1905 My_Connections[Idx].sock = -1;
1906 My_Connections[Idx].signon = now;
1907 My_Connections[Idx].lastdata = now;
1908 My_Connections[Idx].lastprivmsg = now;
1909 Proc_InitStruct(&My_Connections[Idx].proc_stat);
1910 } /* Init_Conn_Struct */
1914 Init_Socket( int Sock )
1916 /* Initialize socket (set options) */
1920 if (!io_setnonblock(Sock)) {
1921 Log( LOG_CRIT, "Can't enable non-blocking mode for socket: %s!", strerror( errno ));
1926 /* Don't block this port after socket shutdown */
1928 if( setsockopt( Sock, SOL_SOCKET, SO_REUSEADDR, &value, (socklen_t)sizeof( value )) != 0 )
1930 Log( LOG_ERR, "Can't set socket option SO_REUSEADDR: %s!", strerror( errno ));
1931 /* ignore this error */
1934 /* Set type of service (TOS) */
1935 #if defined(IPPROTO_IP) && defined(IPTOS_LOWDELAY)
1936 value = IPTOS_LOWDELAY;
1937 LogDebug("Setting IP_TOS on socket %d to IPTOS_LOWDELAY.", Sock);
1938 if (setsockopt(Sock, IPPROTO_IP, IP_TOS, &value,
1939 (socklen_t) sizeof(value))) {
1940 LogDebug("Can't set socket option IP_TOS: %s!",
1942 /* ignore this error */
1951 cb_Connect_to_Server(int fd, UNUSED short events)
1953 /* Read result of resolver sub-process from pipe and start connection */
1956 ng_ipaddr_t dest_addrs[4]; /* we can handle at most 3; but we read up to
1957 four so we can log the 'more than we can handle'
1958 condition. First result is tried immediately, rest
1959 is saved for later if needed. */
1961 LogDebug("Resolver: Got forward lookup callback on fd %d, events %d", fd, events);
1963 for (i=0; i < MAX_SERVERS; i++) {
1964 if (Proc_GetPipeFd(&Conf_Server[i].res_stat) == fd )
1968 if( i >= MAX_SERVERS) {
1969 /* Ops, no matching server found?! */
1971 LogDebug("Resolver: Got Forward Lookup callback for unknown server!?");
1975 /* Read result from pipe */
1976 len = Proc_Read(&Conf_Server[i].res_stat, dest_addrs, sizeof(dest_addrs));
1978 /* Error resolving hostname: reset server structure */
1979 Conf_Server[i].conn_id = NONE;
1983 assert((len % sizeof(ng_ipaddr_t)) == 0);
1985 LogDebug("Got result from resolver: %u structs (%u bytes).", len/sizeof(ng_ipaddr_t), len);
1987 memset(&Conf_Server[i].dst_addr, 0, sizeof(Conf_Server[i].dst_addr));
1988 if (len > sizeof(ng_ipaddr_t)) {
1989 /* more than one address for this hostname, remember them
1990 * in case first address is unreachable/not available */
1991 len -= sizeof(ng_ipaddr_t);
1992 if (len > sizeof(Conf_Server[i].dst_addr)) {
1993 len = sizeof(Conf_Server[i].dst_addr);
1995 "Notice: Resolver returned more IP Addresses for host than we can handle, additional addresses dropped.");
1997 memcpy(&Conf_Server[i].dst_addr, &dest_addrs[1], len);
2000 New_Server(i, dest_addrs);
2001 } /* cb_Read_Forward_Lookup */
2005 cb_Read_Resolver_Result( int r_fd, UNUSED short events )
2007 /* Read result of resolver sub-process from pipe and update the
2008 * apropriate connection/client structure(s): hostname and/or
2009 * IDENT user name.*/
2016 char readbuf[HOST_LEN + 2 + CLIENT_USER_LEN];
2018 char readbuf[HOST_LEN + 1];
2021 LogDebug("Resolver: Got callback on fd %d, events %d", r_fd, events );
2022 i = Conn_GetFromProc(r_fd);
2024 /* Ops, none found? Probably the connection has already
2025 * been closed!? We'll ignore that ... */
2027 LogDebug("Resolver: Got callback for unknown connection!?");
2031 /* Read result from pipe */
2032 len = Proc_Read(&My_Connections[i].proc_stat, readbuf, sizeof readbuf -1);
2036 readbuf[len] = '\0';
2037 identptr = strchr(readbuf, '\n');
2038 assert(identptr != NULL);
2040 Log( LOG_CRIT, "Resolver: Got malformed result!");
2045 LogDebug("Got result from resolver: \"%s\" (%u bytes read).", readbuf, len);
2046 /* Okay, we got a complete result: this is a host name for outgoing
2047 * connections and a host name and IDENT user name (if enabled) for
2048 * incoming connections.*/
2049 assert ( My_Connections[i].sock >= 0 );
2050 /* Incoming connection. Search client ... */
2051 c = Conn_GetClient( i );
2052 assert( c != NULL );
2054 /* Only update client information of unregistered clients.
2055 * Note: user commands (e. g. WEBIRC) are always read _after_ reading
2056 * the resolver results, so we don't have to worry to override settings
2057 * from these commands here. */
2058 if(Client_Type(c) == CLIENT_UNKNOWN) {
2059 strlcpy(My_Connections[i].host, readbuf,
2060 sizeof(My_Connections[i].host));
2061 Client_SetHostname(c, readbuf);
2065 Log(LOG_INFO, "IDENT lookup for connection %d: \"%s\".", i, identptr);
2066 Client_SetUser(c, identptr, true);
2068 Log(LOG_INFO, "IDENT lookup for connection %d: no result.", i);
2073 else Log( LOG_DEBUG, "Resolver: discarding result for already registered connection %d.", i );
2075 } /* cb_Read_Resolver_Result */
2079 * Write a "simple" (error) message to a socket.
2080 * The message is sent without using the connection write buffers, without
2081 * compression/encryption, and even without any error reporting. It is
2082 * designed for error messages of e.g. New_Connection(). */
2084 Simple_Message(int Sock, const char *Msg)
2086 char buf[COMMAND_LEN];
2089 assert(Sock > NONE);
2090 assert(Msg != NULL);
2092 strlcpy(buf, Msg, sizeof buf - 2);
2093 len = strlcat(buf, "\r\n", sizeof buf);
2094 if (write(Sock, buf, len) < 0) {
2095 /* Because this function most probably got called to log
2096 * an error message, any write error is ignored here to
2097 * avoid an endless loop. But casting the result of write()
2098 * to "void" doesn't satisfy the GNU C code attribute
2099 * "warn_unused_result" which is used by some versions of
2100 * glibc (e.g. 2.11.1), therefore this silly error
2101 * "handling" code here :-( */
2104 } /* Simple_Error */
2108 * Get CLIENT structure that belongs to a local connection identified by its
2109 * index number. Each connection belongs to a client by definition, so it is
2110 * not required that the caller checks for NULL return values.
2111 * @param Idx Connection index number
2112 * @return Pointer to CLIENT structure
2115 Conn_GetClient( CONN_ID Idx )
2120 c = array_get(&My_ConnArray, sizeof (CONNECTION), (size_t)Idx);
2122 return c ? c->client : NULL;
2126 * Get PROC_STAT sub-process structure of a connection.
2127 * @param Idx Connection index number
2128 * @return PROC_STAT structure
2131 Conn_GetProcStat(CONN_ID Idx)
2136 c = array_get(&My_ConnArray, sizeof (CONNECTION), (size_t)Idx);
2138 return &c->proc_stat;
2139 } /* Conn_GetProcStat */
2143 * Get CONN_ID from file descriptor associated to a subprocess structure.
2144 * @param fd File descriptor
2145 * @return CONN_ID or NONE (-1)
2148 Conn_GetFromProc(int fd)
2153 for (i = 0; i < Pool_Size; i++) {
2154 if ((My_Connections[i].sock != NONE)
2155 && (Proc_GetPipeFd(&My_Connections[i].proc_stat) == fd))
2159 } /* Conn_GetFromProc */
2165 * Get information about used SSL chiper.
2166 * @param Idx Connection index number
2167 * @param buf Buffer for returned information text
2168 * @param len Size of return buffer "buf"
2169 * @return true on success, false otherwise
2172 Conn_GetCipherInfo(CONN_ID Idx, char *buf, size_t len)
2176 assert(Idx < (int) array_length(&My_ConnArray, sizeof(CONNECTION)));
2177 return ConnSSL_GetCipherInfo(&My_Connections[Idx], buf, len);
2182 * Check if a connection is SSL-enabled or not.
2183 * @param Idx Connection index number
2184 * @return true if connection is SSL-enabled, false otherwise.
2187 Conn_UsesSSL(CONN_ID Idx)
2191 assert(Idx < (int) array_length(&My_ConnArray, sizeof(CONNECTION)));
2192 return Conn_OPTION_ISSET(&My_Connections[Idx], CONN_SSL);
2201 Conn_DebugDump(void)
2205 Log(LOG_DEBUG, "Connection status:");
2206 for (i = 0; i < Pool_Size; i++) {
2207 if (My_Connections[i].sock == NONE)
2210 " - %d: host=%s, lastdata=%ld, lastping=%ld, delaytime=%ld, flag=%d, options=%d, bps=%d, client=%s",
2211 My_Connections[i].sock, My_Connections[i].host,
2212 My_Connections[i].lastdata, My_Connections[i].lastping,
2213 My_Connections[i].delaytime, My_Connections[i].flag,
2214 My_Connections[i].options, My_Connections[i].bps,
2215 My_Connections[i].client ? Client_ID(My_Connections[i].client) : "-");
2217 } /* Conn_DumpClients */