blob: 83ea55548405a809ee6155dee4de1049df90c98b [file] [log] [blame]
Michal Vasko086311b2016-01-08 09:53:11 +01001/**
2 * \file session_server.c
3 * \author Michal Vasko <mvasko@cesnet.cz>
4 * \brief libnetconf2 server session manipulation functions
5 *
6 * Copyright (c) 2015 CESNET, z.s.p.o.
7 *
8 * Redistribution and use in source and binary forms, with or without
9 * modification, are permitted provided that the following conditions
10 * are met:
11 * 1. Redistributions of source code must retain the above copyright
12 * notice, this list of conditions and the following disclaimer.
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in
15 * the documentation and/or other materials provided with the
16 * distribution.
17 * 3. Neither the name of the Company nor the names of its contributors
18 * may be used to endorse or promote products derived from this
19 * software without specific prior written permission.
20 *
21 */
22
23#include <stdint.h>
24#include <stdlib.h>
25#include <errno.h>
26#include <string.h>
27#include <poll.h>
28#include <sys/types.h>
29#include <sys/socket.h>
30#include <netinet/in.h>
31#include <arpa/inet.h>
32#include <unistd.h>
Michal Vaskob48aa812016-01-18 14:13:09 +010033#include <pthread.h>
Michal Vasko11d142a2016-01-19 15:58:24 +010034#include <time.h>
Michal Vasko086311b2016-01-08 09:53:11 +010035
Michal Vasko1a38c862016-01-15 15:50:07 +010036#include "libnetconf.h"
Michal Vasko086311b2016-01-08 09:53:11 +010037#include "session_server.h"
38
Michal Vaskob48aa812016-01-18 14:13:09 +010039struct nc_server_opts server_opts = {
Michal Vasko3031aae2016-01-27 16:07:18 +010040 .endpt_array_lock = PTHREAD_RWLOCK_INITIALIZER
Michal Vaskob48aa812016-01-18 14:13:09 +010041};
Michal Vaskoc6b9c7b2016-01-28 11:10:08 +010042
Michal Vasko3031aae2016-01-27 16:07:18 +010043extern struct nc_server_ssh_opts ssh_ch_opts;
Michal Vaskoc6b9c7b2016-01-28 11:10:08 +010044extern pthread_mutex_t ssh_ch_opts_lock;
45
Michal Vasko3031aae2016-01-27 16:07:18 +010046extern struct nc_server_tls_opts tls_ch_opts;
Michal Vaskoc6b9c7b2016-01-28 11:10:08 +010047extern pthread_mutex_t tls_ch_opts_lock;
Michal Vasko3031aae2016-01-27 16:07:18 +010048
49struct nc_endpt *
Michal Vaskoc6b9c7b2016-01-28 11:10:08 +010050nc_server_endpt_lock(const char *name, NC_TRANSPORT_IMPL ti)
Michal Vasko3031aae2016-01-27 16:07:18 +010051{
52 uint16_t i;
Michal Vaskoc6b9c7b2016-01-28 11:10:08 +010053 struct nc_endpt *endpt = NULL;
54
55 /* READ LOCK */
56 pthread_rwlock_rdlock(&server_opts.endpt_array_lock);
Michal Vasko3031aae2016-01-27 16:07:18 +010057
58 for (i = 0; i < server_opts.endpt_count; ++i) {
59 if ((server_opts.binds[i].ti == ti) && !strcmp(server_opts.endpts[i].name, name)) {
Michal Vaskoc6b9c7b2016-01-28 11:10:08 +010060 endpt = &server_opts.endpts[i];
61 break;
Michal Vasko3031aae2016-01-27 16:07:18 +010062 }
63 }
64
Michal Vaskoc6b9c7b2016-01-28 11:10:08 +010065 if (!endpt) {
66 ERR("Endpoint \"%s\" was not found.", name);
67 /* READ UNLOCK */
68 pthread_rwlock_unlock(&server_opts.endpt_array_lock);
69 return NULL;
70 }
71
72 /* ENDPT LOCK */
73 pthread_mutex_lock(&endpt->endpt_lock);
74
75 return endpt;
76}
77
78void
79nc_server_endpt_unlock(struct nc_endpt *endpt)
80{
81 /* ENDPT UNLOCK */
82 pthread_mutex_unlock(&endpt->endpt_lock);
83
84 /* READ UNLOCK */
Michal Vasko27562ad2016-02-02 15:50:39 +010085 pthread_rwlock_unlock(&server_opts.endpt_array_lock);
Michal Vasko3031aae2016-01-27 16:07:18 +010086}
Michal Vasko086311b2016-01-08 09:53:11 +010087
Michal Vasko1a38c862016-01-15 15:50:07 +010088API void
89nc_session_set_term_reason(struct nc_session *session, NC_SESSION_TERM_REASON reason)
90{
91 if (!session || !reason) {
92 ERRARG;
93 return;
94 }
95
96 session->term_reason = reason;
97}
98
Michal Vasko086311b2016-01-08 09:53:11 +010099int
Michal Vaskof05562c2016-01-20 12:06:43 +0100100nc_sock_listen(const char *address, uint16_t port)
Michal Vasko086311b2016-01-08 09:53:11 +0100101{
102 const int optVal = 1;
103 const socklen_t optLen = sizeof(optVal);
104 int is_ipv4, sock;
105 struct sockaddr_storage saddr;
106
107 struct sockaddr_in *saddr4;
108 struct sockaddr_in6 *saddr6;
109
110
111 if (!strchr(address, ':')) {
112 is_ipv4 = 1;
113 } else {
114 is_ipv4 = 0;
115 }
116
117 sock = socket((is_ipv4 ? AF_INET : AF_INET6), SOCK_STREAM, 0);
118 if (sock == -1) {
Michal Vaskod083db62016-01-19 10:31:29 +0100119 ERR("Failed to create socket (%s).", strerror(errno));
Michal Vasko086311b2016-01-08 09:53:11 +0100120 goto fail;
121 }
122
123 if (setsockopt(sock, SOL_SOCKET, SO_REUSEADDR, (void *)&optVal, optLen)) {
Michal Vaskod083db62016-01-19 10:31:29 +0100124 ERR("Could not set socket SO_REUSEADDR socket option (%s).", strerror(errno));
Michal Vasko086311b2016-01-08 09:53:11 +0100125 goto fail;
126 }
127
128 bzero(&saddr, sizeof(struct sockaddr_storage));
129 if (is_ipv4) {
130 saddr4 = (struct sockaddr_in *)&saddr;
131
132 saddr4->sin_family = AF_INET;
133 saddr4->sin_port = htons(port);
134
135 if (inet_pton(AF_INET, address, &saddr4->sin_addr) != 1) {
Michal Vaskod083db62016-01-19 10:31:29 +0100136 ERR("Failed to convert IPv4 address \"%s\".", address);
Michal Vasko086311b2016-01-08 09:53:11 +0100137 goto fail;
138 }
139
140 if (bind(sock, (struct sockaddr *)saddr4, sizeof(struct sockaddr_in)) == -1) {
Michal Vaskod083db62016-01-19 10:31:29 +0100141 ERR("Could not bind \"%s\" port %d (%s).", address, port, strerror(errno));
Michal Vasko086311b2016-01-08 09:53:11 +0100142 goto fail;
143 }
144
145 } else {
146 saddr6 = (struct sockaddr_in6 *)&saddr;
147
148 saddr6->sin6_family = AF_INET6;
149 saddr6->sin6_port = htons(port);
150
151 if (inet_pton(AF_INET6, address, &saddr6->sin6_addr) != 1) {
Michal Vaskod083db62016-01-19 10:31:29 +0100152 ERR("Failed to convert IPv6 address \"%s\".", address);
Michal Vasko086311b2016-01-08 09:53:11 +0100153 goto fail;
154 }
155
156 if (bind(sock, (struct sockaddr *)saddr6, sizeof(struct sockaddr_in6)) == -1) {
Michal Vaskod083db62016-01-19 10:31:29 +0100157 ERR("Could not bind \"%s\" port %d (%s).", address, port, strerror(errno));
Michal Vasko086311b2016-01-08 09:53:11 +0100158 goto fail;
159 }
160 }
161
Michal Vaskofb89d772016-01-08 12:25:35 +0100162 if (listen(sock, NC_REVERSE_QUEUE) == -1) {
Michal Vaskod083db62016-01-19 10:31:29 +0100163 ERR("Unable to start listening on \"%s\" port %d (%s).", address, port, strerror(errno));
Michal Vasko086311b2016-01-08 09:53:11 +0100164 goto fail;
165 }
166
167 return sock;
168
169fail:
170 if (sock > -1) {
171 close(sock);
172 }
173
174 return -1;
175}
176
177int
Michal Vasko3031aae2016-01-27 16:07:18 +0100178nc_sock_accept_binds(struct nc_bind *binds, uint16_t bind_count, int timeout, char **host, uint16_t *port, uint16_t *idx)
Michal Vasko086311b2016-01-08 09:53:11 +0100179{
180 uint16_t i;
181 struct pollfd *pfd;
182 struct sockaddr_storage saddr;
183 socklen_t saddr_len = sizeof(saddr);
184 int ret, sock = -1;
185
186 pfd = malloc(bind_count * sizeof *pfd);
187 for (i = 0; i < bind_count; ++i) {
188 pfd[i].fd = binds[i].sock;
189 pfd[i].events = POLLIN;
190 pfd[i].revents = 0;
191 }
192
193 /* poll for a new connection */
194 errno = 0;
195 ret = poll(pfd, bind_count, timeout);
196 if (!ret) {
197 /* we timeouted */
198 free(pfd);
199 return 0;
200 } else if (ret == -1) {
Michal Vaskod083db62016-01-19 10:31:29 +0100201 ERR("Poll failed (%s).", strerror(errno));
Michal Vasko086311b2016-01-08 09:53:11 +0100202 free(pfd);
203 return -1;
204 }
205
206 for (i = 0; i < bind_count; ++i) {
207 if (pfd[i].revents & POLLIN) {
208 sock = pfd[i].fd;
209 break;
210 }
211 }
212 free(pfd);
213
214 if (sock == -1) {
Michal Vaskod083db62016-01-19 10:31:29 +0100215 ERRINT;
Michal Vasko086311b2016-01-08 09:53:11 +0100216 return -1;
217 }
218
219 ret = accept(sock, (struct sockaddr *)&saddr, &saddr_len);
Michal Vasko3f6cc4a2016-01-21 15:58:53 +0100220 if (ret < 0) {
Michal Vaskod083db62016-01-19 10:31:29 +0100221 ERR("Accept failed (%s).", strerror(errno));
Michal Vasko086311b2016-01-08 09:53:11 +0100222 return -1;
223 }
224
Michal Vasko3031aae2016-01-27 16:07:18 +0100225 if (idx) {
226 *idx = i;
Michal Vasko9e036d52016-01-08 10:49:26 +0100227 }
228
Michal Vasko086311b2016-01-08 09:53:11 +0100229 /* host was requested */
230 if (host) {
231 if (saddr.ss_family == AF_INET) {
232 *host = malloc(15);
233 if (!inet_ntop(AF_INET, &((struct sockaddr_in *)&saddr)->sin_addr.s_addr, *host, 15)) {
Michal Vaskod083db62016-01-19 10:31:29 +0100234 ERR("inet_ntop failed (%s).", strerror(errno));
Michal Vasko086311b2016-01-08 09:53:11 +0100235 free(*host);
236 *host = NULL;
237 }
238
239 if (port) {
240 *port = ntohs(((struct sockaddr_in *)&saddr)->sin_port);
241 }
242 } else if (saddr.ss_family == AF_INET6) {
243 *host = malloc(40);
244 if (!inet_ntop(AF_INET6, ((struct sockaddr_in6 *)&saddr)->sin6_addr.s6_addr, *host, 40)) {
Michal Vaskod083db62016-01-19 10:31:29 +0100245 ERR("inet_ntop failed (%s).", strerror(errno));
Michal Vasko086311b2016-01-08 09:53:11 +0100246 free(*host);
247 *host = NULL;
248 }
249
250 if (port) {
251 *port = ntohs(((struct sockaddr_in6 *)&saddr)->sin6_port);
252 }
253 } else {
Michal Vaskod083db62016-01-19 10:31:29 +0100254 ERR("Source host of an unknown protocol family.");
Michal Vasko086311b2016-01-08 09:53:11 +0100255 }
256 }
257
258 return ret;
259}
260
Michal Vasko05ba9df2016-01-13 14:40:27 +0100261static struct nc_server_reply *
Michal Vasko428087d2016-01-14 16:04:28 +0100262nc_clb_default_get_schema(struct lyd_node *rpc, struct nc_session *UNUSED(session))
Michal Vasko05ba9df2016-01-13 14:40:27 +0100263{
264 const char *identifier = NULL, *version = NULL, *format = NULL;
265 char *model_data = NULL;
266 const struct lys_module *module;
267 struct nc_server_error *err;
268 struct lyd_node *child, *data = NULL;
Michal Vasko11d142a2016-01-19 15:58:24 +0100269 const struct lys_node *sdata = NULL;
Michal Vasko05ba9df2016-01-13 14:40:27 +0100270
271 LY_TREE_FOR(rpc->child, child) {
272 if (!strcmp(child->schema->name, "identifier")) {
273 identifier = ((struct lyd_node_leaf_list *)child)->value_str;
274 } else if (!strcmp(child->schema->name, "version")) {
275 version = ((struct lyd_node_leaf_list *)child)->value_str;
276 } else if (!strcmp(child->schema->name, "format")) {
277 format = ((struct lyd_node_leaf_list *)child)->value_str;
278 }
279 }
280
281 /* check version */
282 if (version && (strlen(version) != 10) && strcmp(version, "1.0")) {
Michal Vasko1a38c862016-01-15 15:50:07 +0100283 err = nc_err(NC_ERR_INVALID_VALUE, NC_ERR_TYPE_APP);
284 nc_err_set_msg(err, "The requested version is not supported.", "en");
285 return nc_server_reply_err(err);
Michal Vasko05ba9df2016-01-13 14:40:27 +0100286 }
287
288 /* check and get module with the name identifier */
289 module = ly_ctx_get_module(server_opts.ctx, identifier, version);
290 if (!module) {
Michal Vasko1a38c862016-01-15 15:50:07 +0100291 err = nc_err(NC_ERR_INVALID_VALUE, NC_ERR_TYPE_APP);
292 nc_err_set_msg(err, "The requested schema was not found.", "en");
293 return nc_server_reply_err(err);
Michal Vasko05ba9df2016-01-13 14:40:27 +0100294 }
295
296 /* check format */
297 if (!format || !strcmp(format, "yang")) {
298 lys_print_mem(&model_data, module, LYS_OUT_YANG, NULL);
299 } else if (!strcmp(format, "yin")) {
300 lys_print_mem(&model_data, module, LYS_OUT_YIN, NULL);
301 } else {
Michal Vasko1a38c862016-01-15 15:50:07 +0100302 err = nc_err(NC_ERR_INVALID_VALUE, NC_ERR_TYPE_APP);
303 nc_err_set_msg(err, "The requested format is not supported.", "en");
304 return nc_server_reply_err(err);
Michal Vasko05ba9df2016-01-13 14:40:27 +0100305 }
306
Michal Vasko0473c4c2016-01-19 10:40:06 +0100307 module = ly_ctx_get_module(server_opts.ctx, "ietf-netconf-monitoring", NULL);
308 if (module) {
309 sdata = lys_get_node(module, "/get-schema/output/data");
310 }
311 if (model_data && sdata) {
Michal Vasko11d142a2016-01-19 15:58:24 +0100312 nc_ctx_lock(-1, NULL);
Michal Vasko05ba9df2016-01-13 14:40:27 +0100313 data = lyd_output_new_anyxml(sdata, model_data);
Michal Vasko11d142a2016-01-19 15:58:24 +0100314 nc_ctx_unlock();
Michal Vasko05ba9df2016-01-13 14:40:27 +0100315 }
316 free(model_data);
317 if (!data) {
318 ERRINT;
319 return NULL;
320 }
321
322 return nc_server_reply_data(data, NC_PARAMTYPE_FREE);
323}
324
325static struct nc_server_reply *
Michal Vasko428087d2016-01-14 16:04:28 +0100326nc_clb_default_close_session(struct lyd_node *UNUSED(rpc), struct nc_session *session)
Michal Vasko05ba9df2016-01-13 14:40:27 +0100327{
Michal Vasko428087d2016-01-14 16:04:28 +0100328 session->term_reason = NC_SESSION_TERM_CLOSED;
329 return nc_server_reply_ok();
Michal Vasko05ba9df2016-01-13 14:40:27 +0100330}
331
Michal Vasko086311b2016-01-08 09:53:11 +0100332API int
333nc_server_init(struct ly_ctx *ctx)
334{
Michal Vasko05ba9df2016-01-13 14:40:27 +0100335 const struct lys_node *rpc;
Michal Vasko0473c4c2016-01-19 10:40:06 +0100336 const struct lys_module *mod;
Michal Vasko05ba9df2016-01-13 14:40:27 +0100337
Michal Vasko086311b2016-01-08 09:53:11 +0100338 if (!ctx) {
339 ERRARG;
340 return -1;
341 }
342
Michal Vasko05ba9df2016-01-13 14:40:27 +0100343 /* set default <get-schema> callback if not specified */
Michal Vasko0473c4c2016-01-19 10:40:06 +0100344 rpc = NULL;
345 mod = ly_ctx_get_module(ctx, "ietf-netconf-monitoring", NULL);
346 if (mod) {
347 rpc = lys_get_node(mod, "/get-schema");
348 }
Michal Vasko05ba9df2016-01-13 14:40:27 +0100349 if (rpc && !rpc->private) {
350 lys_set_private(rpc, nc_clb_default_get_schema);
351 }
352
353 /* set default <close-session> callback if not specififed */
Michal Vasko0473c4c2016-01-19 10:40:06 +0100354 rpc = NULL;
355 mod = ly_ctx_get_module(ctx, "ietf-netconf", NULL);
356 if (mod) {
357 rpc = lys_get_node(mod, "/close-session");
358 }
Michal Vasko05ba9df2016-01-13 14:40:27 +0100359 if (rpc && !rpc->private) {
360 lys_set_private(rpc, nc_clb_default_close_session);
361 }
362
Michal Vasko086311b2016-01-08 09:53:11 +0100363 server_opts.ctx = ctx;
Michal Vaskob48aa812016-01-18 14:13:09 +0100364
365 server_opts.new_session_id = 1;
366 pthread_spin_init(&server_opts.sid_lock, PTHREAD_PROCESS_PRIVATE);
367
Michal Vasko086311b2016-01-08 09:53:11 +0100368 return 0;
369}
370
Michal Vaskob48aa812016-01-18 14:13:09 +0100371API void
372nc_server_destroy(void)
373{
374 pthread_spin_destroy(&server_opts.sid_lock);
375
376#if defined(ENABLE_SSH) || defined(ENABLE_TLS)
Michal Vasko3031aae2016-01-27 16:07:18 +0100377 nc_server_del_endpt(NULL, 0);
Michal Vaskob48aa812016-01-18 14:13:09 +0100378#endif
379}
380
Michal Vasko086311b2016-01-08 09:53:11 +0100381API int
382nc_server_set_capab_withdefaults(NC_WD_MODE basic_mode, int also_supported)
383{
384 if (!basic_mode || (basic_mode == NC_WD_ALL_TAG)
385 || (also_supported && !(also_supported & (NC_WD_ALL | NC_WD_ALL_TAG | NC_WD_TRIM | NC_WD_EXPLICIT)))) {
386 ERRARG;
387 return -1;
388 }
389
390 server_opts.wd_basic_mode = basic_mode;
391 server_opts.wd_also_supported = also_supported;
392 return 0;
393}
394
Michal Vasko1a38c862016-01-15 15:50:07 +0100395API void
Michal Vasko086311b2016-01-08 09:53:11 +0100396nc_server_set_capab_interleave(int interleave_support)
397{
398 if (interleave_support) {
399 server_opts.interleave_capab = 1;
400 } else {
401 server_opts.interleave_capab = 0;
402 }
Michal Vasko086311b2016-01-08 09:53:11 +0100403}
404
Michal Vasko1a38c862016-01-15 15:50:07 +0100405API void
Michal Vasko086311b2016-01-08 09:53:11 +0100406nc_server_set_hello_timeout(uint16_t hello_timeout)
407{
Michal Vasko086311b2016-01-08 09:53:11 +0100408 server_opts.hello_timeout = hello_timeout;
Michal Vasko086311b2016-01-08 09:53:11 +0100409}
410
Michal Vasko1a38c862016-01-15 15:50:07 +0100411API void
Michal Vasko086311b2016-01-08 09:53:11 +0100412nc_server_set_idle_timeout(uint16_t idle_timeout)
413{
Michal Vasko086311b2016-01-08 09:53:11 +0100414 server_opts.idle_timeout = idle_timeout;
Michal Vasko086311b2016-01-08 09:53:11 +0100415}
416
417API int
Michal Vasko1a38c862016-01-15 15:50:07 +0100418nc_accept_inout(int fdin, int fdout, const char *username, struct nc_session **session)
Michal Vasko086311b2016-01-08 09:53:11 +0100419{
Michal Vasko7f1c78b2016-01-19 09:52:14 +0100420 if (!server_opts.ctx || (fdin < 0) || (fdout < 0) || !username || !session) {
Michal Vasko1a38c862016-01-15 15:50:07 +0100421 ERRARG;
422 return -1;
Michal Vasko086311b2016-01-08 09:53:11 +0100423 }
424
425 /* prepare session structure */
Michal Vasko1a38c862016-01-15 15:50:07 +0100426 *session = calloc(1, sizeof **session);
427 if (!(*session)) {
Michal Vasko086311b2016-01-08 09:53:11 +0100428 ERRMEM;
Michal Vasko1a38c862016-01-15 15:50:07 +0100429 return -1;
Michal Vasko086311b2016-01-08 09:53:11 +0100430 }
Michal Vasko1a38c862016-01-15 15:50:07 +0100431 (*session)->status = NC_STATUS_STARTING;
432 (*session)->side = NC_SERVER;
Michal Vasko086311b2016-01-08 09:53:11 +0100433
434 /* transport specific data */
Michal Vasko1a38c862016-01-15 15:50:07 +0100435 (*session)->ti_type = NC_TI_FD;
436 (*session)->ti.fd.in = fdin;
437 (*session)->ti.fd.out = fdout;
Michal Vasko086311b2016-01-08 09:53:11 +0100438
439 /* assign context (dicionary needed for handshake) */
Michal Vasko1a38c862016-01-15 15:50:07 +0100440 (*session)->flags = NC_SESSION_SHAREDCTX;
441 (*session)->ctx = server_opts.ctx;
Michal Vasko086311b2016-01-08 09:53:11 +0100442
Michal Vaskob48aa812016-01-18 14:13:09 +0100443 /* assign new SID atomically */
444 pthread_spin_lock(&server_opts.sid_lock);
445 (*session)->id = server_opts.new_session_id++;
446 pthread_spin_unlock(&server_opts.sid_lock);
447
Michal Vasko086311b2016-01-08 09:53:11 +0100448 /* NETCONF handshake */
Michal Vasko1a38c862016-01-15 15:50:07 +0100449 if (nc_handshake(*session)) {
Michal Vasko086311b2016-01-08 09:53:11 +0100450 goto fail;
451 }
Michal Vasko1a38c862016-01-15 15:50:07 +0100452 (*session)->status = NC_STATUS_RUNNING;
Michal Vasko5e6f4cc2016-01-20 13:27:44 +0100453 (*session)->last_rpc = time(NULL);
Michal Vasko086311b2016-01-08 09:53:11 +0100454
Michal Vasko1a38c862016-01-15 15:50:07 +0100455 return 0;
Michal Vasko086311b2016-01-08 09:53:11 +0100456
457fail:
Michal Vasko1a38c862016-01-15 15:50:07 +0100458 nc_session_free(*session);
459 *session = NULL;
460 return -1;
Michal Vasko086311b2016-01-08 09:53:11 +0100461}
Michal Vasko9e036d52016-01-08 10:49:26 +0100462
Michal Vasko428087d2016-01-14 16:04:28 +0100463API struct nc_pollsession *
464nc_ps_new(void)
465{
466 return calloc(1, sizeof(struct nc_pollsession));
467}
468
469API void
470nc_ps_free(struct nc_pollsession *ps)
471{
Michal Vasko7f1c78b2016-01-19 09:52:14 +0100472 if (!ps) {
473 return;
474 }
475
Michal Vasko3a715132016-01-21 15:40:31 +0100476 free(ps->pfds);
Michal Vasko428087d2016-01-14 16:04:28 +0100477 free(ps->sessions);
478 free(ps);
479}
480
481API int
482nc_ps_add_session(struct nc_pollsession *ps, struct nc_session *session)
483{
484 if (!ps || !session) {
485 ERRARG;
486 return -1;
487 }
488
489 ++ps->session_count;
Michal Vasko3a715132016-01-21 15:40:31 +0100490 ps->pfds = realloc(ps->pfds, ps->session_count * sizeof *ps->pfds);
Michal Vasko428087d2016-01-14 16:04:28 +0100491 ps->sessions = realloc(ps->sessions, ps->session_count * sizeof *ps->sessions);
492
493 switch (session->ti_type) {
494 case NC_TI_FD:
Michal Vasko3a715132016-01-21 15:40:31 +0100495 ps->pfds[ps->session_count - 1].fd = session->ti.fd.in;
Michal Vasko428087d2016-01-14 16:04:28 +0100496 break;
497
498#ifdef ENABLE_SSH
499 case NC_TI_LIBSSH:
Michal Vasko3a715132016-01-21 15:40:31 +0100500 ps->pfds[ps->session_count - 1].fd = ssh_get_fd(session->ti.libssh.session);
Michal Vasko428087d2016-01-14 16:04:28 +0100501 break;
502#endif
503
504#ifdef ENABLE_TLS
505 case NC_TI_OPENSSL:
Michal Vasko3a715132016-01-21 15:40:31 +0100506 ps->pfds[ps->session_count - 1].fd = SSL_get_rfd(session->ti.tls);
Michal Vasko428087d2016-01-14 16:04:28 +0100507 break;
508#endif
509
510 default:
511 ERRINT;
512 return -1;
513 }
Michal Vasko3a715132016-01-21 15:40:31 +0100514 ps->pfds[ps->session_count - 1].events = POLLIN;
515 ps->pfds[ps->session_count - 1].revents = 0;
516 ps->sessions[ps->session_count - 1] = session;
Michal Vasko428087d2016-01-14 16:04:28 +0100517
518 return 0;
519}
520
521API int
522nc_ps_del_session(struct nc_pollsession *ps, struct nc_session *session)
523{
524 uint16_t i;
525
526 if (!ps || !session) {
527 ERRARG;
528 return -1;
529 }
530
531 for (i = 0; i < ps->session_count; ++i) {
Michal Vasko3a715132016-01-21 15:40:31 +0100532 if (ps->sessions[i] == session) {
Michal Vasko428087d2016-01-14 16:04:28 +0100533 --ps->session_count;
Michal Vasko58005732016-02-02 15:50:52 +0100534 if (i < ps->session_count) {
535 ps->sessions[i] = ps->sessions[ps->session_count];
536 memcpy(&ps->pfds[i], &ps->pfds[ps->session_count], sizeof *ps->pfds);
537 } else if (!ps->session_count) {
538 free(ps->sessions);
539 ps->sessions = NULL;
540 free(ps->pfds);
541 ps->pfds = NULL;
542 }
Michal Vasko428087d2016-01-14 16:04:28 +0100543 return 0;
544 }
545 }
546
Michal Vaskof0537d82016-01-29 14:42:38 +0100547 return -1;
Michal Vasko428087d2016-01-14 16:04:28 +0100548}
549
550/* must be called holding the session lock! */
551static NC_MSG_TYPE
552nc_recv_rpc(struct nc_session *session, struct nc_server_rpc **rpc)
553{
554 struct lyxml_elem *xml = NULL;
555 NC_MSG_TYPE msgtype;
556
557 if (!session || !rpc) {
558 ERRARG;
559 return NC_MSG_ERROR;
560 } else if ((session->status != NC_STATUS_RUNNING) || (session->side != NC_SERVER)) {
Michal Vaskod083db62016-01-19 10:31:29 +0100561 ERR("Session %u: invalid session to receive RPCs.", session->id);
Michal Vasko428087d2016-01-14 16:04:28 +0100562 return NC_MSG_ERROR;
563 }
564
565 msgtype = nc_read_msg(session, &xml);
566
567 switch (msgtype) {
568 case NC_MSG_RPC:
569 *rpc = malloc(sizeof **rpc);
Michal Vaskoca4a2422016-02-02 12:17:14 +0100570
Michal Vasko11d142a2016-01-19 15:58:24 +0100571 nc_ctx_lock(-1, NULL);
Michal Vasko428087d2016-01-14 16:04:28 +0100572 (*rpc)->tree = lyd_parse_xml(server_opts.ctx, &xml->child, LYD_OPT_DESTRUCT | LYD_OPT_RPC);
Michal Vasko51e514d2016-02-02 15:51:52 +0100573 nc_ctx_unlock();
574
Michal Vaskoca4a2422016-02-02 12:17:14 +0100575 if (!(*rpc)->tree) {
576 ERR("Session %u: received message failed to be parsed into a known RPC.", session->id);
577 msgtype = NC_MSG_NONE;
578 }
Michal Vasko428087d2016-01-14 16:04:28 +0100579 (*rpc)->root = xml;
580 break;
581 case NC_MSG_HELLO:
Michal Vaskod083db62016-01-19 10:31:29 +0100582 ERR("Session %u: received another <hello> message.", session->id);
Michal Vasko428087d2016-01-14 16:04:28 +0100583 goto error;
584 case NC_MSG_REPLY:
Michal Vasko81614ee2016-02-02 12:20:14 +0100585 ERR("Session %u: received <rpc-reply> from a NETCONF client.", session->id);
Michal Vasko428087d2016-01-14 16:04:28 +0100586 goto error;
587 case NC_MSG_NOTIF:
Michal Vasko81614ee2016-02-02 12:20:14 +0100588 ERR("Session %u: received <notification> from a NETCONF client.", session->id);
Michal Vasko428087d2016-01-14 16:04:28 +0100589 goto error;
590 default:
591 /* NC_MSG_ERROR - pass it out;
592 * NC_MSG_WOULDBLOCK and NC_MSG_NONE is not returned by nc_read_msg()
593 */
594 break;
595 }
596
597 return msgtype;
598
599error:
600 /* cleanup */
601 lyxml_free(server_opts.ctx, xml);
602
603 return NC_MSG_ERROR;
604}
605
606/* must be called holding the session lock! */
607static NC_MSG_TYPE
608nc_send_reply(struct nc_session *session, struct nc_server_rpc *rpc)
609{
610 nc_rpc_clb clb;
611 struct nc_server_reply *reply;
612 int ret;
613
614 /* no callback, reply with a not-implemented error */
Michal Vaskoca4a2422016-02-02 12:17:14 +0100615 if (!rpc->tree || !rpc->tree->schema->private) {
Michal Vasko1a38c862016-01-15 15:50:07 +0100616 reply = nc_server_reply_err(nc_err(NC_ERR_OP_NOT_SUPPORTED, NC_ERR_TYPE_PROT));
Michal Vasko428087d2016-01-14 16:04:28 +0100617 } else {
618 clb = (nc_rpc_clb)rpc->tree->schema->private;
619 reply = clb(rpc->tree, session);
620 }
621
622 if (!reply) {
Michal Vasko1a38c862016-01-15 15:50:07 +0100623 reply = nc_server_reply_err(nc_err(NC_ERR_OP_FAILED, NC_ERR_TYPE_APP));
Michal Vasko428087d2016-01-14 16:04:28 +0100624 }
625
626 ret = nc_write_msg(session, NC_MSG_REPLY, rpc->root, reply);
627
628 /* special case if term_reason was set in callback, last reply was sent (needed for <close-session> if nothing else) */
629 if ((session->status == NC_STATUS_RUNNING) && (session->term_reason != NC_SESSION_TERM_NONE)) {
630 session->status = NC_STATUS_INVALID;
631 }
632
633 if (ret == -1) {
Michal Vaskod083db62016-01-19 10:31:29 +0100634 ERR("Session %u: failed to write reply.", session->id);
Michal Vasko428087d2016-01-14 16:04:28 +0100635 nc_server_reply_free(reply);
636 return NC_MSG_ERROR;
637 }
638 nc_server_reply_free(reply);
639
640 return NC_MSG_REPLY;
641}
642
643API int
644nc_ps_poll(struct nc_pollsession *ps, int timeout)
645{
646 int ret;
Michal Vasko3512e402016-01-28 16:22:34 +0100647 uint16_t i;
Michal Vasko5e6f4cc2016-01-20 13:27:44 +0100648 time_t cur_time;
Michal Vasko428087d2016-01-14 16:04:28 +0100649 NC_MSG_TYPE msgtype;
650 struct nc_session *session;
651 struct nc_server_rpc *rpc;
Michal Vasko96164bf2016-01-21 15:41:58 +0100652 struct timespec old_ts;
Michal Vasko428087d2016-01-14 16:04:28 +0100653
654 if (!ps || !ps->session_count) {
655 ERRARG;
656 return -1;
657 }
658
Michal Vasko5e6f4cc2016-01-20 13:27:44 +0100659 cur_time = time(NULL);
660
Michal Vasko428087d2016-01-14 16:04:28 +0100661 for (i = 0; i < ps->session_count; ++i) {
Michal Vasko3a715132016-01-21 15:40:31 +0100662 if (ps->sessions[i]->status != NC_STATUS_RUNNING) {
663 ERR("Session %u: session not running.", ps->sessions[i]->id);
Michal Vasko428087d2016-01-14 16:04:28 +0100664 return -1;
665 }
Michal Vaskobd8ef262016-01-20 11:09:27 +0100666
Michal Vasko5e6f4cc2016-01-20 13:27:44 +0100667 /* TODO invalidate only sessions without subscription */
Michal Vasko3a715132016-01-21 15:40:31 +0100668 if (server_opts.idle_timeout && (ps->sessions[i]->last_rpc + server_opts.idle_timeout >= cur_time)) {
669 ERR("Session %u: session idle timeout elapsed.", ps->sessions[i]->id);
670 ps->sessions[i]->status = NC_STATUS_INVALID;
671 ps->sessions[i]->term_reason = NC_SESSION_TERM_TIMEOUT;
Michal Vasko5e6f4cc2016-01-20 13:27:44 +0100672 return 3;
673 }
674
Michal Vasko3a715132016-01-21 15:40:31 +0100675 if (ps->pfds[i].revents) {
Michal Vaskobd8ef262016-01-20 11:09:27 +0100676 break;
677 }
Michal Vasko428087d2016-01-14 16:04:28 +0100678 }
679
680 if (timeout > 0) {
681 clock_gettime(CLOCK_MONOTONIC_RAW, &old_ts);
682 }
683
Michal Vaskobd8ef262016-01-20 11:09:27 +0100684 if (i == ps->session_count) {
Michal Vasko3512e402016-01-28 16:22:34 +0100685#ifdef ENABLE_SSH
Michal Vasko3a715132016-01-21 15:40:31 +0100686retry_poll:
Michal Vasko3512e402016-01-28 16:22:34 +0100687#endif
Michal Vaskobd8ef262016-01-20 11:09:27 +0100688 /* no leftover event */
689 i = 0;
Michal Vasko3a715132016-01-21 15:40:31 +0100690 ret = poll(ps->pfds, ps->session_count, timeout);
Michal Vaskobd8ef262016-01-20 11:09:27 +0100691 if (ret < 1) {
692 return ret;
693 }
Michal Vasko428087d2016-01-14 16:04:28 +0100694 }
695
Michal Vaskobd8ef262016-01-20 11:09:27 +0100696 /* find the first fd with POLLIN, we don't care if there are more now */
697 for (; i < ps->session_count; ++i) {
Michal Vasko3a715132016-01-21 15:40:31 +0100698 if (ps->pfds[i].revents & POLLHUP) {
699 ERR("Session %u: communication socket unexpectedly closed.", ps->sessions[i]->id);
700 ps->sessions[i]->status = NC_STATUS_INVALID;
701 ps->sessions[i]->term_reason = NC_SESSION_TERM_DROPPED;
Michal Vaskobd8ef262016-01-20 11:09:27 +0100702 return 3;
Michal Vasko3a715132016-01-21 15:40:31 +0100703 } else if (ps->pfds[i].revents & POLLERR) {
704 ERR("Session %u: communication socket error.", ps->sessions[i]->id);
705 ps->sessions[i]->status = NC_STATUS_INVALID;
706 ps->sessions[i]->term_reason = NC_SESSION_TERM_OTHER;
Michal Vaskobd8ef262016-01-20 11:09:27 +0100707 return 3;
Michal Vasko3a715132016-01-21 15:40:31 +0100708 } else if (ps->pfds[i].revents & POLLIN) {
Michal Vasko428087d2016-01-14 16:04:28 +0100709#ifdef ENABLE_SSH
Michal Vasko96164bf2016-01-21 15:41:58 +0100710 if (ps->sessions[i]->ti_type == NC_TI_LIBSSH) {
Michal Vasko3512e402016-01-28 16:22:34 +0100711 uint16_t j;
712
Michal Vasko96164bf2016-01-21 15:41:58 +0100713 /* things are not that simple with SSH... */
714 ret = nc_ssh_pollin(ps->sessions[i], &timeout);
715
716 /* clear POLLIN on sessions sharing this session's SSH session */
717 if ((ret == 1) || (ret >= 4)) {
718 for (j = i + 1; j < ps->session_count; ++j) {
719 if (ps->pfds[j].fd == ps->pfds[i].fd) {
720 ps->pfds[j].revents = 0;
721 }
722 }
723 }
724
725 /* actual event happened */
726 if ((ret <= 0) || (ret >= 3)) {
727 ps->pfds[i].revents = 0;
728 return ret;
729
730 /* event occurred on some other channel */
731 } else if (ret == 2) {
732 ps->pfds[i].revents = 0;
Michal Vasko428087d2016-01-14 16:04:28 +0100733 if (i == ps->session_count - 1) {
734 /* last session and it is not the right channel, ... */
Michal Vasko8c748832016-02-03 15:32:16 +0100735 if (!timeout) {
Michal Vasko428087d2016-01-14 16:04:28 +0100736 /* ... timeout is 0, so that is it */
737 return 0;
Michal Vasko428087d2016-01-14 16:04:28 +0100738 }
Michal Vasko8c748832016-02-03 15:32:16 +0100739 /* ... retry polling reasonable time apart ... */
740 usleep(NC_TIMEOUT_STEP);
741 if (timeout > 0) {
742 /* ... and decrease timeout, if not -1 */
743 nc_subtract_elapsed(&timeout, &old_ts);
744 }
745 goto retry_poll;
Michal Vasko428087d2016-01-14 16:04:28 +0100746 }
747 /* check other sessions */
748 continue;
Michal Vasko428087d2016-01-14 16:04:28 +0100749 }
750 }
751#endif /* ENABLE_SSH */
752
Michal Vaskobd8ef262016-01-20 11:09:27 +0100753 /* we are going to process it now */
Michal Vasko3a715132016-01-21 15:40:31 +0100754 ps->pfds[i].revents = 0;
Michal Vasko428087d2016-01-14 16:04:28 +0100755 break;
756 }
757 }
758
759 if (i == ps->session_count) {
760 ERRINT;
761 return -1;
762 }
763
764 /* this is the session with some data available for reading */
Michal Vasko3a715132016-01-21 15:40:31 +0100765 session = ps->sessions[i];
Michal Vasko428087d2016-01-14 16:04:28 +0100766
767 if (timeout > 0) {
Michal Vasko96164bf2016-01-21 15:41:58 +0100768 nc_subtract_elapsed(&timeout, &old_ts);
Michal Vasko428087d2016-01-14 16:04:28 +0100769 }
770
Michal Vaskobd8ef262016-01-20 11:09:27 +0100771 /* reading an RPC and sending a reply must be atomic (no other RPC should be read) */
Michal Vasko7f1c78b2016-01-19 09:52:14 +0100772 ret = nc_timedlock(session->ti_lock, timeout, NULL);
773 if (ret != 1) {
774 /* error or timeout */
775 return ret;
Michal Vasko428087d2016-01-14 16:04:28 +0100776 }
777
778 msgtype = nc_recv_rpc(session, &rpc);
779 if (msgtype == NC_MSG_ERROR) {
Michal Vasko7f1c78b2016-01-19 09:52:14 +0100780 pthread_mutex_unlock(session->ti_lock);
Michal Vasko428087d2016-01-14 16:04:28 +0100781 if (session->status != NC_STATUS_RUNNING) {
Michal Vaskobd8ef262016-01-20 11:09:27 +0100782 return 3;
Michal Vasko428087d2016-01-14 16:04:28 +0100783 }
784 return -1;
785 }
786
Michal Vaskoca4a2422016-02-02 12:17:14 +0100787 /* NC_MSG_NONE is not a real (known) RPC */
788 if (msgtype == NC_MSG_RPC) {
789 session->last_rpc = time(NULL);
790 }
791
Michal Vasko428087d2016-01-14 16:04:28 +0100792 /* process RPC */
793 msgtype = nc_send_reply(session, rpc);
794
Michal Vasko7f1c78b2016-01-19 09:52:14 +0100795 pthread_mutex_unlock(session->ti_lock);
Michal Vasko428087d2016-01-14 16:04:28 +0100796
797 if (msgtype == NC_MSG_ERROR) {
Michal Vaskoca4a2422016-02-02 12:17:14 +0100798 nc_server_rpc_free(rpc, server_opts.ctx);
Michal Vasko428087d2016-01-14 16:04:28 +0100799 return -1;
800 }
Michal Vaskoca4a2422016-02-02 12:17:14 +0100801 nc_server_rpc_free(rpc, server_opts.ctx);
Michal Vaskobd8ef262016-01-20 11:09:27 +0100802
Michal Vaskobd8b4e12016-01-22 16:11:20 +0100803 /* status change takes precedence over leftover events (return 2) */
804 if (session->status != NC_STATUS_RUNNING) {
805 return 3;
806 }
807
Michal Vaskobd8ef262016-01-20 11:09:27 +0100808 /* is there some other socket waiting? */
809 for (++i; i < ps->session_count; ++i) {
Michal Vasko3a715132016-01-21 15:40:31 +0100810 if (ps->pfds[i].revents) {
Michal Vaskobd8ef262016-01-20 11:09:27 +0100811 return 2;
812 }
813 }
814
Michal Vasko428087d2016-01-14 16:04:28 +0100815 return 1;
816}
817
Michal Vaskod09eae62016-02-01 10:32:52 +0100818API void
819nc_ps_clear(struct nc_pollsession *ps)
820{
821 uint16_t i;
822 struct nc_session *session;
823
Michal Vasko9a25e932016-02-01 10:36:42 +0100824 if (!ps) {
825 ERRARG;
826 return;
827 }
828
Michal Vaskod09eae62016-02-01 10:32:52 +0100829 for (i = 0; i < ps->session_count; ) {
830 if (ps->sessions[i]->status != NC_STATUS_RUNNING) {
831 session = ps->sessions[i];
832 nc_ps_del_session(ps, session);
833 nc_session_free(session);
834 continue;
835 }
836
837 ++i;
838 }
839}
840
Michal Vasko11d142a2016-01-19 15:58:24 +0100841API int
842nc_ctx_lock(int timeout, int *elapsed)
843{
844 return nc_timedlock(&server_opts.ctx_lock, timeout, elapsed);
845}
846
847API int
848nc_ctx_unlock(void)
849{
850 int ret;
851
852 ret = pthread_mutex_unlock(&server_opts.ctx_lock);
853
854 if (ret) {
855 ERR("Mutex unlock failed (%s).", strerror(ret));
856 return -1;
857 }
858
859 return 0;
860}
861
Michal Vasko9e036d52016-01-08 10:49:26 +0100862#if defined(ENABLE_SSH) || defined(ENABLE_TLS)
863
Michal Vasko3031aae2016-01-27 16:07:18 +0100864int
865nc_server_add_endpt_listen(const char *name, const char *address, uint16_t port, NC_TRANSPORT_IMPL ti)
Michal Vasko9e036d52016-01-08 10:49:26 +0100866{
867 int sock;
Michal Vasko3031aae2016-01-27 16:07:18 +0100868 uint16_t i;
Michal Vasko08a629a2016-02-02 12:20:47 +0100869#ifdef ENABLE_SSH
870 struct nc_server_ssh_opts *ssh_opts;
871#endif
Michal Vasko9e036d52016-01-08 10:49:26 +0100872
Michal Vasko3031aae2016-01-27 16:07:18 +0100873 if (!name || !address || !port) {
Michal Vasko9e036d52016-01-08 10:49:26 +0100874 ERRARG;
875 return -1;
876 }
877
Michal Vasko51e514d2016-02-02 15:51:52 +0100878 /* WRITE LOCK */
879 pthread_rwlock_wrlock(&server_opts.endpt_array_lock);
Michal Vasko3031aae2016-01-27 16:07:18 +0100880
881 /* check name uniqueness */
882 for (i = 0; i < server_opts.endpt_count; ++i) {
Michal Vaskod4c03a82016-02-08 15:27:26 +0100883 if ((server_opts.binds[i].ti == ti) && !strcmp(server_opts.endpts[i].name, name)) {
Michal Vasko3031aae2016-01-27 16:07:18 +0100884 ERR("Endpoint \"%s\" already exists.", name);
Michal Vasko51e514d2016-02-02 15:51:52 +0100885 /* WRITE UNLOCK */
Michal Vasko9faf1c82016-02-01 13:26:19 +0100886 pthread_rwlock_unlock(&server_opts.endpt_array_lock);
Michal Vasko3031aae2016-01-27 16:07:18 +0100887 return -1;
888 }
889 }
890
Michal Vasko9e036d52016-01-08 10:49:26 +0100891 sock = nc_sock_listen(address, port);
892 if (sock == -1) {
Michal Vasko51e514d2016-02-02 15:51:52 +0100893 /* WRITE UNLOCK */
894 pthread_rwlock_unlock(&server_opts.endpt_array_lock);
Michal Vasko9e036d52016-01-08 10:49:26 +0100895 return -1;
896 }
897
Michal Vasko3031aae2016-01-27 16:07:18 +0100898 ++server_opts.endpt_count;
899 server_opts.binds = realloc(server_opts.binds, server_opts.endpt_count * sizeof *server_opts.binds);
900 server_opts.endpts = realloc(server_opts.endpts, server_opts.endpt_count * sizeof *server_opts.endpts);
Michal Vasko9e036d52016-01-08 10:49:26 +0100901
Michal Vasko11d142a2016-01-19 15:58:24 +0100902 nc_ctx_lock(-1, NULL);
Michal Vasko3031aae2016-01-27 16:07:18 +0100903 server_opts.endpts[server_opts.endpt_count - 1].name = lydict_insert(server_opts.ctx, name, 0);
904 server_opts.binds[server_opts.endpt_count - 1].address = lydict_insert(server_opts.ctx, address, 0);
Michal Vasko11d142a2016-01-19 15:58:24 +0100905 nc_ctx_unlock();
Michal Vasko3031aae2016-01-27 16:07:18 +0100906 server_opts.binds[server_opts.endpt_count - 1].port = port;
907 server_opts.binds[server_opts.endpt_count - 1].sock = sock;
908 server_opts.binds[server_opts.endpt_count - 1].ti = ti;
909 switch (ti) {
910#ifdef ENABLE_SSH
911 case NC_TI_LIBSSH:
Michal Vasko08a629a2016-02-02 12:20:47 +0100912 ssh_opts = calloc(1, sizeof *ssh_opts);
913 /* set default values */
914 ssh_opts->auth_methods = NC_SSH_AUTH_PUBLICKEY | NC_SSH_AUTH_PASSWORD | NC_SSH_AUTH_INTERACTIVE;
915 ssh_opts->auth_attempts = 3;
916 ssh_opts->auth_timeout = 10;
917
918 server_opts.endpts[server_opts.endpt_count - 1].ti_opts = ssh_opts;
Michal Vasko3031aae2016-01-27 16:07:18 +0100919 break;
920#endif
921#ifdef ENABLE_TLS
922 case NC_TI_OPENSSL:
923 server_opts.endpts[server_opts.endpt_count - 1].ti_opts = calloc(1, sizeof(struct nc_server_tls_opts));
924 break;
925#endif
926 default:
927 ERRINT;
928 server_opts.endpts[server_opts.endpt_count - 1].ti_opts = NULL;
929 break;
930 }
931 pthread_mutex_init(&server_opts.endpts[server_opts.endpt_count - 1].endpt_lock, NULL);
Michal Vasko9e036d52016-01-08 10:49:26 +0100932
Michal Vasko3031aae2016-01-27 16:07:18 +0100933 /* WRITE UNLOCK */
934 pthread_rwlock_unlock(&server_opts.endpt_array_lock);
Michal Vaskob48aa812016-01-18 14:13:09 +0100935
Michal Vasko9e036d52016-01-08 10:49:26 +0100936 return 0;
937}
938
Michal Vasko3031aae2016-01-27 16:07:18 +0100939int
Michal Vaskoda514772016-02-01 11:32:01 +0100940nc_server_endpt_set_address_port(const char *endpt_name, const char *address, uint16_t port, NC_TRANSPORT_IMPL ti)
941{
942 struct nc_endpt *endpt;
943 struct nc_bind *bind = NULL;
944 uint16_t i;
945 int sock;
946
947 if (!endpt_name || (!address && !port) || (address && port) || !ti) {
948 ERRARG;
949 return -1;
950 }
951
Michal Vasko51e514d2016-02-02 15:51:52 +0100952 /* LOCK */
Michal Vaskoda514772016-02-01 11:32:01 +0100953 endpt = nc_server_endpt_lock(endpt_name, ti);
954 if (!endpt) {
955 return -1;
956 }
957
958 /* we need to learn the index, to get the bind :-/ */
959 for (i = 0; i < server_opts.endpt_count; ++i) {
960 if (&server_opts.endpts[i] == endpt) {
961 bind = &server_opts.binds[i];
962 }
963 }
964 if (!bind) {
965 ERRINT;
Michal Vasko51e514d2016-02-02 15:51:52 +0100966 goto fail;
Michal Vaskoda514772016-02-01 11:32:01 +0100967 }
968
969 if (address) {
970 sock = nc_sock_listen(address, bind->port);
971 } else {
972 sock = nc_sock_listen(bind->address, port);
973 }
974 if (sock == -1) {
Michal Vasko51e514d2016-02-02 15:51:52 +0100975 goto fail;
Michal Vaskoda514772016-02-01 11:32:01 +0100976 }
977
978 /* close old socket, update parameters */
979 close(bind->sock);
980 bind->sock = sock;
981 if (address) {
982 lydict_remove(server_opts.ctx, bind->address);
983 bind->address = lydict_insert(server_opts.ctx, address, 0);
984 } else {
985 bind->port = port;
986 }
987
Michal Vasko51e514d2016-02-02 15:51:52 +0100988 /* UNLOCK */
Michal Vasko7a93af72016-02-01 16:00:15 +0100989 nc_server_endpt_unlock(endpt);
Michal Vaskoda514772016-02-01 11:32:01 +0100990 return 0;
Michal Vasko51e514d2016-02-02 15:51:52 +0100991
992fail:
993 /* UNLOCK */
994 nc_server_endpt_unlock(endpt);
995 return -1;
Michal Vaskoda514772016-02-01 11:32:01 +0100996}
997
998int
Michal Vasko3031aae2016-01-27 16:07:18 +0100999nc_server_del_endpt(const char *name, NC_TRANSPORT_IMPL ti)
Michal Vasko9e036d52016-01-08 10:49:26 +01001000{
1001 uint32_t i;
1002 int ret = -1;
1003
Michal Vasko3031aae2016-01-27 16:07:18 +01001004 /* WRITE LOCK */
1005 pthread_rwlock_wrlock(&server_opts.endpt_array_lock);
Michal Vaskob48aa812016-01-18 14:13:09 +01001006
Michal Vasko3031aae2016-01-27 16:07:18 +01001007 if (!name && !ti) {
1008 /* remove all */
Michal Vasko3031aae2016-01-27 16:07:18 +01001009 for (i = 0; i < server_opts.endpt_count; ++i) {
Michal Vasko51e514d2016-02-02 15:51:52 +01001010 nc_ctx_lock(-1, NULL);
Michal Vasko3031aae2016-01-27 16:07:18 +01001011 lydict_remove(server_opts.ctx, server_opts.endpts[i].name);
Michal Vasko11d142a2016-01-19 15:58:24 +01001012 lydict_remove(server_opts.ctx, server_opts.binds[i].address);
Michal Vasko51e514d2016-02-02 15:51:52 +01001013 nc_ctx_unlock();
1014
Michal Vasko3031aae2016-01-27 16:07:18 +01001015 close(server_opts.binds[i].sock);
1016 pthread_mutex_destroy(&server_opts.endpts[i].endpt_lock);
1017 switch (server_opts.binds[i].ti) {
1018#ifdef ENABLE_SSH
1019 case NC_TI_LIBSSH:
Michal Vaskoc6b9c7b2016-01-28 11:10:08 +01001020 nc_server_ssh_clear_opts(server_opts.endpts[i].ti_opts);
Michal Vasko3031aae2016-01-27 16:07:18 +01001021 break;
1022#endif
1023#ifdef ENABLE_TLS
1024 case NC_TI_OPENSSL:
Michal Vaskoc6b9c7b2016-01-28 11:10:08 +01001025 nc_server_tls_clear_opts(server_opts.endpts[i].ti_opts);
Michal Vasko3031aae2016-01-27 16:07:18 +01001026 break;
1027#endif
1028 default:
1029 ERRINT;
1030 break;
1031 }
1032 free(server_opts.endpts[i].ti_opts);
Michal Vasko9e036d52016-01-08 10:49:26 +01001033
Michal Vasko9e036d52016-01-08 10:49:26 +01001034 ret = 0;
1035 }
Michal Vasko3031aae2016-01-27 16:07:18 +01001036 free(server_opts.endpts);
1037 server_opts.endpts = NULL;
1038 server_opts.endpt_count = 0;
1039
Michal Vasko1a38c862016-01-15 15:50:07 +01001040 } else {
Michal Vasko3031aae2016-01-27 16:07:18 +01001041 /* remove one name endpoint or all ti endpoints */
1042 for (i = 0; i < server_opts.endpt_count; ++i) {
1043 if ((server_opts.binds[i].ti == ti) &&
1044 (!name || !strcmp(server_opts.endpts[i].name, name))) {
1045
Michal Vasko11d142a2016-01-19 15:58:24 +01001046 nc_ctx_lock(-1, NULL);
Michal Vasko3031aae2016-01-27 16:07:18 +01001047 lydict_remove(server_opts.ctx, server_opts.endpts[i].name);
Michal Vasko11d142a2016-01-19 15:58:24 +01001048 lydict_remove(server_opts.ctx, server_opts.binds[i].address);
1049 nc_ctx_unlock();
Michal Vasko51e514d2016-02-02 15:51:52 +01001050
Michal Vasko3031aae2016-01-27 16:07:18 +01001051 close(server_opts.binds[i].sock);
1052 pthread_mutex_destroy(&server_opts.endpts[i].endpt_lock);
1053 switch (server_opts.binds[i].ti) {
1054#ifdef ENABLE_SSH
1055 case NC_TI_LIBSSH:
Michal Vaskoc6b9c7b2016-01-28 11:10:08 +01001056 nc_server_ssh_clear_opts(server_opts.endpts[i].ti_opts);
Michal Vasko3031aae2016-01-27 16:07:18 +01001057 break;
1058#endif
1059#ifdef ENABLE_TLS
1060 case NC_TI_OPENSSL:
Michal Vaskoc6b9c7b2016-01-28 11:10:08 +01001061 nc_server_tls_clear_opts(server_opts.endpts[i].ti_opts);
Michal Vasko3031aae2016-01-27 16:07:18 +01001062 break;
1063#endif
1064 default:
1065 ERRINT;
1066 break;
1067 }
1068 free(server_opts.endpts[i].ti_opts);
Michal Vasko1a38c862016-01-15 15:50:07 +01001069
Michal Vasko3031aae2016-01-27 16:07:18 +01001070 --server_opts.endpt_count;
Michal Vaskoc0256492016-02-02 12:19:06 +01001071 if (i < server_opts.endpt_count) {
1072 memcpy(&server_opts.binds[i], &server_opts.binds[server_opts.endpt_count], sizeof *server_opts.binds);
1073 memcpy(&server_opts.endpts[i], &server_opts.endpts[server_opts.endpt_count], sizeof *server_opts.endpts);
1074 } else if (!server_opts.endpt_count) {
1075 free(server_opts.binds);
1076 server_opts.binds = NULL;
1077 free(server_opts.endpts);
1078 server_opts.endpts = NULL;
1079 }
Michal Vasko1a38c862016-01-15 15:50:07 +01001080
1081 ret = 0;
Michal Vasko3031aae2016-01-27 16:07:18 +01001082
1083 if (name) {
1084 /* one name endpoint removed, they are unique, we're done */
1085 break;
1086 }
Michal Vasko1a38c862016-01-15 15:50:07 +01001087 }
1088 }
Michal Vasko9e036d52016-01-08 10:49:26 +01001089 }
1090
Michal Vasko3031aae2016-01-27 16:07:18 +01001091 /* WRITE UNLOCK */
1092 pthread_rwlock_unlock(&server_opts.endpt_array_lock);
Michal Vaskob48aa812016-01-18 14:13:09 +01001093
Michal Vasko9e036d52016-01-08 10:49:26 +01001094 return ret;
1095}
1096
Michal Vasko1a38c862016-01-15 15:50:07 +01001097API int
1098nc_accept(int timeout, struct nc_session **session)
Michal Vasko9e036d52016-01-08 10:49:26 +01001099{
Michal Vasko1a38c862016-01-15 15:50:07 +01001100 int sock, ret;
Michal Vasko5c2f7952016-01-22 13:16:31 +01001101 char *host = NULL;
Michal Vasko3031aae2016-01-27 16:07:18 +01001102 uint16_t port, idx;
Michal Vasko9e036d52016-01-08 10:49:26 +01001103
Michal Vasko51e514d2016-02-02 15:51:52 +01001104 if (!server_opts.ctx || !session) {
Michal Vasko9e036d52016-01-08 10:49:26 +01001105 ERRARG;
Michal Vasko1a38c862016-01-15 15:50:07 +01001106 return -1;
Michal Vasko9e036d52016-01-08 10:49:26 +01001107 }
1108
Michal Vasko51e514d2016-02-02 15:51:52 +01001109 /* we have to hold WRITE for the whole time, since there is not
1110 * a way of downgrading the lock to READ */
1111 /* WRITE LOCK */
1112 pthread_rwlock_wrlock(&server_opts.endpt_array_lock);
1113
1114 if (!server_opts.endpt_count) {
1115 ERRARG;
1116 /* WRITE UNLOCK */
1117 pthread_rwlock_unlock(&server_opts.endpt_array_lock);
1118 return -1;
1119 }
Michal Vaskob48aa812016-01-18 14:13:09 +01001120
Michal Vasko3031aae2016-01-27 16:07:18 +01001121 ret = nc_sock_accept_binds(server_opts.binds, server_opts.endpt_count, timeout, &host, &port, &idx);
Michal Vaskob48aa812016-01-18 14:13:09 +01001122
Michal Vasko50456e82016-02-02 12:16:08 +01001123 if (ret < 1) {
Michal Vasko51e514d2016-02-02 15:51:52 +01001124 /* WRITE UNLOCK */
Michal Vasko3031aae2016-01-27 16:07:18 +01001125 pthread_rwlock_unlock(&server_opts.endpt_array_lock);
Michal Vaskob48aa812016-01-18 14:13:09 +01001126 return ret;
Michal Vasko9e036d52016-01-08 10:49:26 +01001127 }
Michal Vaskob48aa812016-01-18 14:13:09 +01001128 sock = ret;
Michal Vasko9e036d52016-01-08 10:49:26 +01001129
Michal Vasko1a38c862016-01-15 15:50:07 +01001130 *session = calloc(1, sizeof **session);
Michal Vasko686aa312016-01-21 15:58:18 +01001131 if (!(*session)) {
Michal Vasko9e036d52016-01-08 10:49:26 +01001132 ERRMEM;
Michal Vaskoc14e3c82016-01-11 16:14:30 +01001133 close(sock);
Michal Vasko5c2f7952016-01-22 13:16:31 +01001134 free(host);
Michal Vasko3031aae2016-01-27 16:07:18 +01001135 ret = -1;
1136 goto fail;
Michal Vasko9e036d52016-01-08 10:49:26 +01001137 }
Michal Vasko1a38c862016-01-15 15:50:07 +01001138 (*session)->status = NC_STATUS_STARTING;
1139 (*session)->side = NC_SERVER;
1140 (*session)->ctx = server_opts.ctx;
1141 (*session)->flags = NC_SESSION_SHAREDCTX;
Michal Vasko11d142a2016-01-19 15:58:24 +01001142 nc_ctx_lock(-1, NULL);
Michal Vasko1a38c862016-01-15 15:50:07 +01001143 (*session)->host = lydict_insert_zc(server_opts.ctx, host);
Michal Vasko11d142a2016-01-19 15:58:24 +01001144 nc_ctx_unlock();
Michal Vasko1a38c862016-01-15 15:50:07 +01001145 (*session)->port = port;
Michal Vasko9e036d52016-01-08 10:49:26 +01001146
1147 /* transport lock */
Michal Vasko1a38c862016-01-15 15:50:07 +01001148 (*session)->ti_lock = malloc(sizeof *(*session)->ti_lock);
1149 if (!(*session)->ti_lock) {
Michal Vasko9e036d52016-01-08 10:49:26 +01001150 ERRMEM;
Michal Vaskoc14e3c82016-01-11 16:14:30 +01001151 close(sock);
Michal Vasko1a38c862016-01-15 15:50:07 +01001152 ret = -1;
Michal Vasko9e036d52016-01-08 10:49:26 +01001153 goto fail;
1154 }
Michal Vasko1a38c862016-01-15 15:50:07 +01001155 pthread_mutex_init((*session)->ti_lock, NULL);
Michal Vasko9e036d52016-01-08 10:49:26 +01001156
Michal Vasko3031aae2016-01-27 16:07:18 +01001157 (*session)->ti_opts = server_opts.endpts[idx].ti_opts;
1158
Michal Vaskoc14e3c82016-01-11 16:14:30 +01001159 /* sock gets assigned to session or closed */
Michal Vasko3d865d22016-01-28 16:00:53 +01001160#ifdef ENABLE_SSH
Michal Vasko3031aae2016-01-27 16:07:18 +01001161 if (server_opts.binds[idx].ti == NC_TI_LIBSSH) {
1162 ret = nc_accept_ssh_session(*session, sock, timeout);
Michal Vasko1a38c862016-01-15 15:50:07 +01001163 if (ret < 1) {
Michal Vasko9e036d52016-01-08 10:49:26 +01001164 goto fail;
1165 }
Michal Vasko3d865d22016-01-28 16:00:53 +01001166 } else
1167#endif
1168#ifdef ENABLE_TLS
1169 if (server_opts.binds[idx].ti == NC_TI_OPENSSL) {
Michal Vasko3031aae2016-01-27 16:07:18 +01001170 ret = nc_accept_tls_session(*session, sock, timeout);
Michal Vasko1a38c862016-01-15 15:50:07 +01001171 if (ret < 1) {
Michal Vasko9e036d52016-01-08 10:49:26 +01001172 goto fail;
1173 }
Michal Vasko3d865d22016-01-28 16:00:53 +01001174 } else
1175#endif
1176 {
Michal Vasko9e036d52016-01-08 10:49:26 +01001177 ERRINT;
Michal Vaskoc14e3c82016-01-11 16:14:30 +01001178 close(sock);
Michal Vasko1a38c862016-01-15 15:50:07 +01001179 ret = -1;
Michal Vasko9e036d52016-01-08 10:49:26 +01001180 goto fail;
1181 }
1182
Michal Vasko51e514d2016-02-02 15:51:52 +01001183 /* WRITE UNLOCK */
Michal Vasko3031aae2016-01-27 16:07:18 +01001184 pthread_rwlock_unlock(&server_opts.endpt_array_lock);
1185
Michal Vaskob48aa812016-01-18 14:13:09 +01001186 /* assign new SID atomically */
1187 /* LOCK */
1188 pthread_spin_lock(&server_opts.sid_lock);
1189 (*session)->id = server_opts.new_session_id++;
1190 /* UNLOCK */
1191 pthread_spin_unlock(&server_opts.sid_lock);
1192
Michal Vasko9e036d52016-01-08 10:49:26 +01001193 /* NETCONF handshake */
Michal Vasko1a38c862016-01-15 15:50:07 +01001194 if (nc_handshake(*session)) {
Michal Vasko3031aae2016-01-27 16:07:18 +01001195 nc_session_free(*session);
1196 *session = NULL;
1197 return -1;
Michal Vasko9e036d52016-01-08 10:49:26 +01001198 }
Michal Vasko1a38c862016-01-15 15:50:07 +01001199 (*session)->status = NC_STATUS_RUNNING;
Michal Vasko9e036d52016-01-08 10:49:26 +01001200
Michal Vasko1a38c862016-01-15 15:50:07 +01001201 return 1;
Michal Vasko9e036d52016-01-08 10:49:26 +01001202
1203fail:
Michal Vasko3031aae2016-01-27 16:07:18 +01001204 /* WRITE UNLOCK */
1205 pthread_rwlock_unlock(&server_opts.endpt_array_lock);
1206
Michal Vasko1a38c862016-01-15 15:50:07 +01001207 nc_session_free(*session);
1208 *session = NULL;
Michal Vaskoc61c4492016-01-25 11:13:34 +01001209 return ret;
Michal Vasko9e036d52016-01-08 10:49:26 +01001210}
1211
Michal Vasko3031aae2016-01-27 16:07:18 +01001212int
Michal Vaskob05053d2016-01-22 16:12:06 +01001213nc_connect_callhome(const char *host, uint16_t port, NC_TRANSPORT_IMPL ti, int timeout, struct nc_session **session)
1214{
1215 int sock, ret;
1216
Michal Vaskoc61c4492016-01-25 11:13:34 +01001217 if (!host || !port || !ti || !session) {
1218 ERRARG;
1219 return -1;
1220 }
1221
Michal Vaskob05053d2016-01-22 16:12:06 +01001222 sock = nc_sock_connect(host, port);
Michal Vaskoc61c4492016-01-25 11:13:34 +01001223 if (sock < 0) {
1224 return -1;
Michal Vaskob05053d2016-01-22 16:12:06 +01001225 }
1226
1227 *session = calloc(1, sizeof **session);
1228 if (!(*session)) {
1229 ERRMEM;
1230 close(sock);
1231 return -1;
1232 }
1233 (*session)->status = NC_STATUS_STARTING;
1234 (*session)->side = NC_SERVER;
1235 (*session)->ctx = server_opts.ctx;
1236 (*session)->flags = NC_SESSION_SHAREDCTX | NC_SESSION_CALLHOME;
1237 nc_ctx_lock(-1, NULL);
1238 (*session)->host = lydict_insert(server_opts.ctx, host, 0);
1239 nc_ctx_unlock();
1240 (*session)->port = port;
1241
1242 /* transport lock */
1243 (*session)->ti_lock = malloc(sizeof *(*session)->ti_lock);
1244 if (!(*session)->ti_lock) {
1245 ERRMEM;
1246 close(sock);
1247 ret = -1;
1248 goto fail;
1249 }
1250 pthread_mutex_init((*session)->ti_lock, NULL);
1251
1252 /* sock gets assigned to session or closed */
Michal Vasko3d865d22016-01-28 16:00:53 +01001253#ifdef ENABLE_SSH
Michal Vaskob05053d2016-01-22 16:12:06 +01001254 if (ti == NC_TI_LIBSSH) {
Michal Vaskoc6b9c7b2016-01-28 11:10:08 +01001255 /* OPTS LOCK */
1256 pthread_mutex_lock(&ssh_ch_opts_lock);
1257
Michal Vasko3031aae2016-01-27 16:07:18 +01001258 (*session)->ti_opts = &ssh_ch_opts;
1259 ret = nc_accept_ssh_session(*session, sock, timeout);
Michal Vaskoc6b9c7b2016-01-28 11:10:08 +01001260 (*session)->ti_opts = NULL;
1261
1262 /* OPTS UNLOCK */
1263 pthread_mutex_unlock(&ssh_ch_opts_lock);
1264
Michal Vaskob05053d2016-01-22 16:12:06 +01001265 if (ret < 1) {
1266 goto fail;
1267 }
Michal Vasko3d865d22016-01-28 16:00:53 +01001268 } else
1269#endif
1270#ifdef ENABLE_TLS
1271 if (ti == NC_TI_OPENSSL) {
Michal Vaskoc6b9c7b2016-01-28 11:10:08 +01001272 /* OPTS LOCK */
1273 pthread_mutex_lock(&tls_ch_opts_lock);
1274
Michal Vasko3031aae2016-01-27 16:07:18 +01001275 (*session)->ti_opts = &tls_ch_opts;
1276 ret = nc_accept_tls_session(*session, sock, timeout);
Michal Vaskoc6b9c7b2016-01-28 11:10:08 +01001277 (*session)->ti_opts = NULL;
1278
1279 /* OPTS UNLOCK */
1280 pthread_mutex_unlock(&tls_ch_opts_lock);
1281
Michal Vaskob05053d2016-01-22 16:12:06 +01001282 if (ret < 1) {
1283 goto fail;
1284 }
Michal Vasko3d865d22016-01-28 16:00:53 +01001285 } else
1286#endif
1287 {
Michal Vaskob05053d2016-01-22 16:12:06 +01001288 ERRINT;
1289 close(sock);
1290 ret = -1;
1291 goto fail;
1292 }
1293
1294 /* assign new SID atomically */
1295 /* LOCK */
1296 pthread_spin_lock(&server_opts.sid_lock);
1297 (*session)->id = server_opts.new_session_id++;
1298 /* UNLOCK */
1299 pthread_spin_unlock(&server_opts.sid_lock);
1300
1301 /* NETCONF handshake */
1302 if (nc_handshake(*session)) {
1303 ret = -1;
1304 goto fail;
1305 }
1306 (*session)->status = NC_STATUS_RUNNING;
1307
1308 return 1;
1309
1310fail:
1311 nc_session_free(*session);
1312 *session = NULL;
Michal Vaskoc61c4492016-01-25 11:13:34 +01001313 return ret;
Michal Vaskob05053d2016-01-22 16:12:06 +01001314}
1315
Michal Vasko9e036d52016-01-08 10:49:26 +01001316#endif /* ENABLE_SSH || ENABLE_TLS */