/* Serval Distributed Numbering Architecture (DNA) Copyright (C) 2010-2012 Paul Gardner-Stephen This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. */ #include #include #include #include #include #ifdef HAVE_STRINGS_H #include #endif #include #include #include #include #include #include #ifdef HAVE_JNI_H #include #endif #include "serval.h" #include "conf.h" #include "rhizome.h" #include "strbuf.h" #include "strbuf_helpers.h" #include "str.h" #include "mdp_client.h" #include "cli.h" #include "overlay_address.h" extern struct cli_schema command_line_options[]; int commandline_usage(const struct cli_parsed *parsed, void *context) { printf("Serval Mesh version .\n"); return cli_usage(command_line_options); } /* Data structures for accumulating output of a single JNI call. */ #ifdef HAVE_JNI_H #define OUTV_BUFFER_ALLOCSIZE (8192) JNIEnv *jni_env = NULL; int jni_exception = 0; jobject jniResults = NULL; jclass IJniResults = NULL; jmethodID startResultSet, setColumnName, putString, putBlob, putLong, putDouble, totalRowCount; char *outv_buffer = NULL; char *outv_current = NULL; char *outv_limit = NULL; static int outv_growbuf(size_t needed) { size_t newsize = (outv_limit - outv_current < needed) ? (outv_limit - outv_buffer) + needed : 0; if (newsize) { // Round up to nearest multiple of OUTV_BUFFER_ALLOCSIZE. newsize = newsize + OUTV_BUFFER_ALLOCSIZE - ((newsize - 1) % OUTV_BUFFER_ALLOCSIZE + 1); size_t length = outv_current - outv_buffer; outv_buffer = realloc(outv_buffer, newsize); if (outv_buffer == NULL) return WHYF("Out of memory allocating %lu bytes", (unsigned long) newsize); outv_current = outv_buffer + length; outv_limit = outv_buffer + newsize; } return 0; } static int put_blob(jbyte *value, jsize length){ jbyteArray arr = NULL; if (value && length>0){ arr = (*jni_env)->NewByteArray(jni_env, length); if (arr == NULL || (*jni_env)->ExceptionOccurred(jni_env)) { jni_exception = 1; return WHY("Exception thrown from NewByteArray()"); } (*jni_env)->SetByteArrayRegion(jni_env, arr, 0, length, value); if ((*jni_env)->ExceptionOccurred(jni_env)) { jni_exception = 1; return WHYF("Exception thrown from SetByteArrayRegion()"); } } (*jni_env)->CallVoidMethod(jni_env, jniResults, putBlob, arr); if ((*jni_env)->ExceptionOccurred(jni_env)) { jni_exception = 1; return WHY("Exception thrown from CallVoidMethod()"); } if (arr) (*jni_env)->DeleteLocalRef(jni_env, arr); return 0; } static int outv_end_field() { jsize length = outv_current - outv_buffer; outv_current = outv_buffer; return put_blob((jbyte *)outv_buffer, length); } int Throw(JNIEnv *env, const char *class, const char *msg){ jclass exceptionClass = NULL; if ((exceptionClass = (*env)->FindClass(env, class)) == NULL) return -1; // exception (*env)->ThrowNew(env, exceptionClass, msg); return -1; } /* JNI entry point to command line. See org.servalproject.servald.ServalD class for the Java side. JNI method descriptor: "(Ljava/util/List;[Ljava/lang/String;)I" */ JNIEXPORT jint JNICALL Java_org_servalproject_servald_ServalD_rawCommand(JNIEnv *env, jobject this, jobject outv, jobjectArray args) { if (!IJniResults){ IJniResults = (*env)->FindClass(env, "org/servalproject/servald/IJniResults"); if (IJniResults==NULL) return Throw(env, "java/lang/IllegalStateException", "Unable to locate class org.servalproject.servald.IJniResults"); startResultSet = (*env)->GetMethodID(env, IJniResults, "startResultSet", "(I)V"); if (startResultSet==NULL) return Throw(env, "java/lang/IllegalStateException", "Unable to locate method startResultSet"); setColumnName = (*env)->GetMethodID(env, IJniResults, "setColumnName", "(ILjava/lang/String;)V"); if (setColumnName==NULL) return Throw(env, "java/lang/IllegalStateException", "Unable to locate method setColumnName"); putString = (*env)->GetMethodID(env, IJniResults, "putString", "(Ljava/lang/String;)V"); if (putString==NULL) return Throw(env, "java/lang/IllegalStateException", "Unable to locate method putString"); putBlob = (*env)->GetMethodID(env, IJniResults, "putBlob", "([B)V"); if (putBlob==NULL) return Throw(env, "java/lang/IllegalStateException", "Unable to locate method putBlob"); putLong = (*env)->GetMethodID(env, IJniResults, "putLong", "(J)V"); if (putLong==NULL) return Throw(env, "java/lang/IllegalStateException", "Unable to locate method putLong"); putDouble = (*env)->GetMethodID(env, IJniResults, "putDouble", "(D)V"); if (putDouble==NULL) return Throw(env, "java/lang/IllegalStateException", "Unable to locate method putDouble"); totalRowCount = (*env)->GetMethodID(env, IJniResults, "totalRowCount", "(I)V"); if (totalRowCount==NULL) return Throw(env, "java/lang/IllegalStateException", "Unable to locate method totalRowCount"); } unsigned char status = 0; // to match what the shell gets: 0..255 if (jni_env) return Throw(env, "java/lang/IllegalStateException", "re-entrancy not supported"); // Construct argv, argc from this method's arguments. jsize len = (*env)->GetArrayLength(env, args); const char **argv = alloca(sizeof(char*) * (len + 1)); if (argv == NULL) return Throw(env, "java/lang/OutOfMemoryError", "alloca returned NULL"); argv[len]=NULL; jsize i; int argc = len; // From now on, in case of an exception we have to free some resources before // returning. jni_exception = 0; const char *empty=""; for (i = 0; i < len; ++i) { const jstring arg = (jstring)(*env)->GetObjectArrayElement(env, args, i); if ((*env)->ExceptionOccurred(env)) jni_exception = 1; argv[i] = empty; if (arg != NULL && !jni_exception){ const char *str = (*env)->GetStringUTFChars(env, arg, NULL); if (str == NULL){ jni_exception = 1; }else argv[i] = str; } } if (!jni_exception) { // Set up the output buffer. jniResults = outv; outv_current = outv_buffer; // Execute the command. jni_env = env; status = parseCommandLine(NULL, argc, argv); jni_env = NULL; } // Release argv Java string buffers. for (i = 0; i < len; ++i) { if (argv[i] && argv[i]!=empty) { const jstring arg = (jstring)(*env)->GetObjectArrayElement(env, args, i); (*env)->ReleaseStringUTFChars(env, arg, argv[i]); } } // Deal with Java exceptions: NewStringUTF out of memory in outv_end_field(). if (jni_exception || (outv_current != outv_buffer && outv_end_field() == -1)) return -1; return (jint) status; } #endif /* HAVE_JNI_H */ /* The argc and argv arguments must be passed verbatim from main(argc, argv), so argv[0] is path to executable. */ int parseCommandLine(const char *argv0, int argc, const char *const *args) { fd_clearstats(); IN(); struct cli_parsed parsed; int result = cli_parse(argc, args, command_line_options, &parsed); if (result != -1) { // Do not run the command if the configuration does not load ok if (((parsed.command->flags & CLIFLAG_PERMISSIVE_CONFIG) ? cf_reload_permissive() : cf_reload()) != -1) result = cli_invoke(&parsed, NULL); else { strbuf b = strbuf_alloca(160); strbuf_append_argv(b, argc, args); result = WHYF("configuration unavailable, not running command: %s", strbuf_str(b)); } } else { // Load configuration so that "unsupported command" log message can get out cf_reload_permissive(); } /* clean up after ourselves */ overlay_mdp_client_done(); rhizome_close_db(); OUT(); if (config.debug.timing) fd_showstats(); return result; } /* Write a single character to output. If in a JNI call, then this appends the character to the current output field. Returns the character written cast to an unsigned char then to int, or EOF on error. */ int cli_putchar(char c) { #ifdef HAVE_JNI_H if (jni_env) { if (outv_current == outv_limit && outv_growbuf(1) == -1) return EOF; *outv_current++ = c; return (unsigned char) c; } #endif return putchar(c); } /* Write a buffer of data to output. If in a JNI call, then this appends the data to the current output field, including any embedded nul characters. Returns a non-negative integer on success, EOF on error. */ int cli_write(const unsigned char *buf, size_t len) { #ifdef HAVE_JNI_H if (jni_env) { size_t avail = outv_limit - outv_current; if (avail < len) { memcpy(outv_current, buf, avail); outv_current = outv_limit; if (outv_growbuf(len) == -1) return EOF; len -= avail; buf += avail; } memcpy(outv_current, buf, len); outv_current += len; return 0; } #endif return fwrite(buf, len, 1, stdout); } /* Write a null-terminated string to output. If in a JNI call, then this appends the string to the current output field. The terminating null is not included. Returns a non-negative integer on success, EOF on error. */ int cli_puts(const char *str) { #ifdef HAVE_JNI_H if (jni_env) return cli_write((const unsigned char *) str, strlen(str)); else #endif return fputs(str, stdout); } /* Write a formatted string to output. If in a JNI call, then this appends the string to the current output field, excluding the terminating null. Returns the number of bytes written/appended, or -1 on error. */ int cli_printf(const char *fmt, ...) { int ret = 0; va_list ap; #ifdef HAVE_JNI_H if (jni_env) { size_t avail = outv_limit - outv_current; va_start(ap, fmt); int count = vsnprintf(outv_current, avail, fmt, ap); va_end(ap); if (count >= avail) { if (outv_growbuf(count) == -1) return -1; va_start(ap, fmt); vsprintf(outv_current, fmt, ap); va_end(ap); } outv_current += count; ret = count; } else #endif { va_start(ap, fmt); ret = vfprintf(stdout, fmt, ap); va_end(ap); } return ret; } void cli_columns(int columns, const char *names[]){ #ifdef HAVE_JNI_H if (jni_env) { (*jni_env)->CallVoidMethod(jni_env, jniResults, startResultSet, columns); if ((*jni_env)->ExceptionOccurred(jni_env)) { jni_exception = 1; WHY("Exception thrown from CallVoidMethod()"); return; } int i; for (i=0;iNewStringUTF(jni_env, names[i]); if (str == NULL) { jni_exception = 1; WHY("Exception thrown from NewStringUTF()"); return; } (*jni_env)->CallVoidMethod(jni_env, jniResults, setColumnName, i, str); (*jni_env)->DeleteLocalRef(jni_env, str); } return; } #endif cli_printf("%d",columns); cli_delim("\n"); int i; for (i=0;iNewStringUTF(jni_env, name); if (str == NULL) { jni_exception = 1; WHY("Exception thrown from NewStringUTF()"); return; } (*jni_env)->CallVoidMethod(jni_env, jniResults, setColumnName, -1, str); (*jni_env)->DeleteLocalRef(jni_env, str); return; } #endif cli_puts(name); cli_delim(delim); } void cli_put_long(int64_t value, const char *delim){ #ifdef HAVE_JNI_H if (jni_env) { (*jni_env)->CallVoidMethod(jni_env, jniResults, putLong, value); return; } #endif cli_printf("%lld",value); cli_delim(delim); } void cli_put_string(const char *value, const char *delim){ #ifdef HAVE_JNI_H if (jni_env) { jstring str = NULL; if (value){ str = (jstring)(*jni_env)->NewStringUTF(jni_env, value); if (str == NULL) { jni_exception = 1; WHY("Exception thrown from NewStringUTF()"); return; } } (*jni_env)->CallVoidMethod(jni_env, jniResults, putString, str); (*jni_env)->DeleteLocalRef(jni_env, str); return; } #endif if (value) cli_puts(value); cli_delim(delim); } void cli_put_hexvalue(const unsigned char *value, int length, const char *delim){ #ifdef HAVE_JNI_H if (jni_env) { put_blob((jbyte*)value, length); return; } #endif if (value) cli_puts(alloca_tohex(value, length)); cli_delim(delim); } void cli_row_count(int rows){ #ifdef HAVE_JNI_H if (jni_env) { (*jni_env)->CallVoidMethod(jni_env, jniResults, totalRowCount, rows); if ((*jni_env)->ExceptionOccurred(jni_env)) { jni_exception = 1; WHY("Exception thrown from CallVoidMethod()"); return; } } #endif } /* Delimit the current output field. This closes the current field, so that the next cli_ output function will start appending to a new field. Returns 0 on success, -1 on error. If not in a JNI call, then this simply writes a newline to standard output (or the value of the SERVALD_OUTPUT_DELIMITER env var if set). */ int cli_delim(const char *opt) { #ifdef HAVE_JNI_H if (jni_env) return outv_end_field(); #endif const char *delim = getenv("SERVALD_OUTPUT_DELIMITER"); if (delim == NULL) delim = opt ? opt : "\n"; fputs(delim, stdout); return 0; } /* Flush the output fields if they are being written to standard output. */ void cli_flush() { #ifdef HAVE_JNI_H if (jni_env) return; #endif fflush(stdout); } int app_echo(const struct cli_parsed *parsed, void *context) { if (config.debug.verbose) DEBUG_cli_parsed(parsed); int escapes = !cli_arg(parsed, "-e", NULL, NULL, NULL); int i; for (i = parsed->varargi; i < parsed->argc; ++i) { const char *arg = parsed->args[i]; if (config.debug.verbose) DEBUGF("echo:argv[%d]=\"%s\"", i, arg); if (escapes) { unsigned char buf[strlen(arg)]; size_t len = str_fromprint(buf, arg); cli_write(buf, len); } else cli_puts(arg); cli_delim(NULL); } return 0; } void lookup_send_request(unsigned char *srcsid, int srcport, unsigned char *dstsid, const char *did){ int i; overlay_mdp_frame mdp; bzero(&mdp,sizeof(mdp)); /* set source address to a local address, and pick a random port */ mdp.out.src.port=srcport; bcopy(srcsid,mdp.out.src.sid,SID_SIZE); /* Send to destination address and DNA lookup port */ if (dstsid){ /* Send an encrypted unicast packet */ mdp.packetTypeAndFlags=MDP_TX; bcopy(dstsid, mdp.out.dst.sid, SID_SIZE); }else{ /* Send a broadcast packet, flooding across the local mesh network */ mdp.packetTypeAndFlags=MDP_TX|MDP_NOCRYPT; for(i=0;i (now = gettime_ms())) { if ((last_tx+interval)>1; } time_ms_t short_timeout=125; while(short_timeout>0) { if (overlay_mdp_client_poll(short_timeout)) { overlay_mdp_frame rx; int ttl; if (overlay_mdp_recv(&rx, port, &ttl)==0) { if (rx.packetTypeAndFlags==MDP_ERROR) { WHYF(" Error message: %s", rx.error.message); } else if ((rx.packetTypeAndFlags&MDP_TYPE_MASK)==MDP_TX) { /* Extract DID, Name, URI from response. */ if (strlen((char *)rx.in.payload)<512) { char sidhex[SID_STRLEN + 1]; char did[DID_MAXSIZE + 1]; char name[64]; char uri[512]; if ( !parseDnaReply((char *)rx.in.payload, rx.in.payload_length, sidhex, did, name, uri, NULL) || !str_is_subscriber_id(sidhex) || !str_is_did(did) || !str_is_uri(uri) ) { WHYF("Received malformed DNA reply: %s", alloca_toprint(160, (const char *)rx.in.payload, rx.in.payload_length)); } else { /* Have we seen this response before? */ int i; for(i=0;i int status=server_probe(&pid); switch(status) { case SERVER_NOTRESPONDING: /* server is not responding, and we have been asked to start, so try to kill it? */ WHYF("Serval process already running (pid=%d), but no responding.", pid); if (pid>-1) { kill(pid,SIGHUP); sleep(1); status=server_probe(&pid); if (status!=SERVER_NOTRUNNING) { WHY("Tried to stop stuck servald process, but attempt failed."); return -1; } WHY("Killed stuck servald process, so will try to start"); pid=-1; } break; case SERVER_NOTRUNNING: /* all is well */ break; case SERVER_RUNNING: /* instance running */ break; default: /* no idea what is going on, so try to start anyway */ break; } #endif const char *execpath, *instancepath; char *tmp; int foregroundP = parsed->argc >= 2 && !strcasecmp(parsed->args[1], "foreground"); if (cli_arg(parsed, "instance path", &instancepath, cli_absolute_path, NULL) == -1 || cli_arg(parsed, "exec path", &execpath, cli_absolute_path, NULL) == -1) return -1; if (instancepath != NULL) serval_setinstancepath(instancepath); if (execpath == NULL) { #ifdef HAVE_JNI_H if (jni_env) return WHY("Must supply argument when invoked via JNI"); #endif if ((tmp = malloc(PATH_MAX)) == NULL) return WHY("Out of memory"); if (get_self_executable_path(tmp, PATH_MAX) == -1) return WHY("unable to determine own executable name"); execpath = tmp; } /* Create the instance directory if it does not yet exist */ if (create_serval_instance_dir() == -1) return -1; /* Now that we know our instance path, we can ask for the default set of network interfaces that we will take interest in. */ if (config.interfaces.ac == 0) WARN("No network interfaces configured (empty 'interfaces' config option)"); if (pid == -1) pid = server_pid(); if (pid < 0) return -1; int ret = -1; // If the pidfile identifies this process, it probably means we are re-spawning after a SEGV, so // go ahead and do the fork/exec. if (pid > 0 && pid != getpid()) { INFOF("Server already running (pid=%d)", pid); ret = 10; } else { if (foregroundP) INFOF("Foreground server process %s", execpath ? execpath : "without exec"); else INFOF("Starting background server %s", execpath ? execpath : "without exec"); /* Start the Serval process. All server settings will be read by the server process from the instance directory when it starts up. */ if (server_remove_stopfile() == -1) return -1; overlayMode = 1; if (foregroundP) return server(NULL); const char *dir = getenv("SERVALD_SERVER_CHDIR"); if (!dir) dir = config.server.chdir; switch (cpid = fork()) { case -1: /* Main process. Fork failed. There is no child process. */ return WHY_perror("fork"); case 0: { /* Child process. Fork then exit, to disconnect daemon from parent process, so that when daemon exits it does not live on as a zombie. N.B. Do not return from within this process; that will unroll the JNI call stack and cause havoc. Use _exit(). */ switch (fork()) { case -1: exit(WHY_perror("fork")); case 0: { /* Grandchild process. Close logfile (so that it gets re-opened again on demand, with our own file pointer), disconnect from current directory, disconnect standard I/O streams, and start a new process session so that if we are being started by an adb shell session, then we don't receive a SIGHUP when the adb shell process ends. */ close_logging(); int fd; if ((fd = open("/dev/null", O_RDWR, 0)) == -1) _exit(WHY_perror("open")); if (setsid() == -1) _exit(WHY_perror("setsid")); (void)chdir(dir); (void)dup2(fd, 0); (void)dup2(fd, 1); (void)dup2(fd, 2); if (fd > 2) (void)close(fd); /* The execpath option is provided so that a JNI call to "start" can be made which creates a new server daemon process with the correct argv[0]. Otherwise, the servald process appears as a process with argv[0] = "org.servalproject". */ if (execpath) { /* Need the cast on Solaris because it defines NULL as 0L and gcc doesn't see it as a sentinal. */ execl(execpath, execpath, "start", "foreground", (void *)NULL); _exit(-1); } _exit(server(NULL)); // NOT REACHED } } _exit(0); // Main process is waitpid()-ing for this. } } /* Main process. Wait for the child process to fork the grandchild and exit. */ waitpid(cpid, NULL, 0); /* Allow a few seconds for the grandchild process to report for duty. */ time_ms_t timeout = gettime_ms() + 5000; do { sleep_ms(200); // 5 Hz } while ((pid = server_pid()) == 0 && gettime_ms() < timeout); if (pid == -1) return -1; if (pid == 0) return WHY("Server process did not start"); ret = 0; } cli_puts("instancepath"); cli_delim(":"); cli_puts(serval_instancepath()); cli_delim("\n"); cli_puts("pid"); cli_delim(":"); cli_printf("%d", pid); cli_delim("\n"); cli_flush(); /* Sleep before returning if env var is set. This is used in testing, to simulate the situation on Android phones where the "start" command is invoked via the JNI interface and the calling process does not die. */ const char *post_sleep = getenv("SERVALD_START_POST_SLEEP"); if (post_sleep) { time_ms_t milliseconds = atof(post_sleep) * 1000; if (milliseconds > 0) { INFOF("Sleeping for %lld milliseconds", (long long) milliseconds); sleep_ms(milliseconds); } } return ret; } int app_server_stop(const struct cli_parsed *parsed, void *context) { if (config.debug.verbose) DEBUG_cli_parsed(parsed); int pid, tries, running; const char *instancepath; time_ms_t timeout; if (cli_arg(parsed, "instance path", &instancepath, cli_absolute_path, NULL) == -1) return WHY("Unable to determine instance path"); if (instancepath != NULL) serval_setinstancepath(instancepath); instancepath = serval_instancepath(); cli_puts("instancepath"); cli_delim(":"); cli_puts(instancepath); cli_delim("\n"); pid = server_pid(); /* Not running, nothing to stop */ if (pid <= 0) return 1; INFOF("Stopping server (pid=%d)", pid); /* Set the stop file and signal the process */ cli_puts("pid"); cli_delim(":"); cli_printf("%d", pid); cli_delim("\n"); tries = 0; running = pid; while (running == pid) { if (tries >= 5) return WHYF( "Servald pid=%d for instance '%s' did not stop after %d SIGHUP signals", pid, instancepath, tries ); ++tries; /* Create the stopfile, which causes the server process's signal handler to exit instead of restarting. */ server_create_stopfile(); if (kill(pid, SIGHUP) == -1) { // ESRCH means process is gone, possibly we are racing with another stop, or servald just // died voluntarily. if (errno == ESRCH) { serverCleanUp(); break; } WHY_perror("kill"); return WHYF("Error sending SIGHUP to Servald pid=%d for instance '%s'", pid, instancepath); } /* Allow a few seconds for the process to die. */ timeout = gettime_ms() + 2000; do sleep_ms(200); // 5 Hz while ((running = server_pid()) == pid && gettime_ms() < timeout); } server_remove_stopfile(); cli_puts("tries"); cli_delim(":"); cli_printf("%d", tries); cli_delim("\n"); return 0; } int app_server_status(const struct cli_parsed *parsed, void *context) { if (config.debug.verbose) DEBUG_cli_parsed(parsed); int pid; const char *instancepath; if (cli_arg(parsed, "instance path", &instancepath, cli_absolute_path, NULL) == -1) return WHY("Unable to determine instance path"); if (instancepath != NULL) serval_setinstancepath(instancepath); pid = server_pid(); cli_puts("instancepath"); cli_delim(":"); cli_puts(serval_instancepath()); cli_delim("\n"); cli_puts("status"); cli_delim(":"); cli_printf("%s", pid > 0 ? "running" : "stopped"); cli_delim("\n"); if (pid > 0) { cli_puts("pid"); cli_delim(":"); cli_printf("%d", pid); cli_delim("\n"); } return pid > 0 ? 0 : 1; } int app_mdp_ping(const struct cli_parsed *parsed, void *context) { if (config.debug.verbose) DEBUG_cli_parsed(parsed); const char *sid, *count; if (cli_arg(parsed, "SID|broadcast", &sid, str_is_subscriber_id, "broadcast") == -1) return -1; if (cli_arg(parsed, "count", &count, NULL, "0") == -1) return -1; // assume we wont hear any responses int ret=-1; int icount=atoi(count); overlay_mdp_frame mdp; bzero(&mdp, sizeof(overlay_mdp_frame)); /* Bind to MDP socket and await confirmation */ unsigned char srcsid[SID_SIZE]; int port=32768+(random()&32767); if (overlay_mdp_getmyaddr(0,srcsid)) return WHY("Could not get local address"); if (overlay_mdp_bind(srcsid,port)) return WHY("Could not bind to MDP socket"); /* First sequence number in the echo frames */ unsigned int firstSeq=random(); unsigned int sequence_number=firstSeq; /* Get SID that we want to ping. XXX - allow lookup of SID prefixes and telephone numbers (that would require MDP lookup of phone numbers, which doesn't yet occur) */ int i; int broadcast=0; unsigned char ping_sid[SID_SIZE]; if (strcasecmp(sid,"broadcast")) { stowSid(ping_sid,0,sid); } else { for(i=0;i0) { int ttl=-1; if (overlay_mdp_recv(&mdp, port, &ttl)==0) { switch(mdp.packetTypeAndFlags&MDP_TYPE_MASK) { case MDP_ERROR: WHYF("mdpping: overlay_mdp_recv: %s (code %d)", mdp.error.message, mdp.error.error); break; case MDP_TX: { int *rxseq=(int *)&mdp.in.payload; long long *txtime=(long long *)&mdp.in.payload[4]; int hop_count = 64 - mdp.in.ttl; time_ms_t delay = gettime_ms() - *txtime; printf("%s: seq=%d time=%lldms hops=%d %s%s\n", alloca_tohex_sid(mdp.in.src.sid), (*rxseq)-firstSeq+1, delay, hop_count, mdp.packetTypeAndFlags&MDP_NOCRYPT?"":" ENCRYPTED", mdp.packetTypeAndFlags&MDP_NOSIGN?"":" SIGNED"); // TODO Put duplicate pong detection here so that stats work properly. rx_count++; ret=0; rx_ms+=delay; if (rx_mintime>delay||rx_mintime==-1) rx_mintime=delay; if (delay>rx_maxtime) rx_maxtime=delay; rx_times[rx_count%1024]=delay; } break; default: WHYF("mdpping: overlay_mdp_recv: Unexpected MDP frame type 0x%x", mdp.packetTypeAndFlags); break; } } } now=gettime_ms(); if (servalShutdown) break; } sequence_number++; timeout=now+1000; } { float rx_stddev=0; float rx_mean=rx_ms*1.0/rx_count; int samples=rx_count; if (samples>1024) samples=1024; int i; for(i=0;itext || it.node->nodc == 0) { cli_puts(it.node->fullkey); cli_delim("="); if (it.node->text) cli_puts(it.node->text); cli_delim("\n"); } return 0; } int app_config_set(const struct cli_parsed *parsed, void *context) { if (config.debug.verbose) DEBUG_cli_parsed(parsed); if (create_serval_instance_dir() == -1) return -1; // // This fixes a subtle bug in when upgrading the Batphone app: the servald.conf file does // not get upgraded. The bug goes like this: // 1. new Batphone APK is installed, but prior servald.conf is not overwritten because it // comes in serval.zip; // 2. new Batphone is started, which calls JNI "stop" command, which reads the old servald.conf // into memory buffer; // 3. new Batphone unpacks serval.zip, overwriting servald.conf with new version; // 4. new Batphone calls JNI "config set rhizome.enable 1", which sets the "rhizome.enable" // config option in the existing memory buffer and overwrites servald.conf; // Bingo, the old version of servald.conf is what remains. This kludge intervenes in step 4, by // reading the new servald.conf into the memory buffer before applying the "rhizome.enable" set // value and overwriting. if (cf_om_reload() == -1) return -1; // const char *var[parsed->argc - 1]; const char *val[parsed->argc - 1]; int nvar = 0; int i; for (i = 1; i < parsed->argc; ++i) { const char *arg = parsed->args[i]; int iv; if (strcmp(arg, "set") == 0) { if (i + 2 > parsed->argc) return WHYF("malformed command at args[%d]: 'set' not followed by two arguments", i); var[nvar] = parsed->args[iv = ++i]; val[nvar] = parsed->args[++i]; } else if (strcmp(arg, "del") == 0) { if (i + 1 > parsed->argc) return WHYF("malformed command at args[%d]: 'del' not followed by one argument", i); var[nvar] = parsed->args[iv = ++i]; val[nvar] = NULL; } else return WHYF("malformed command at args[%d]: unsupported action '%s'", i, arg); if (!is_configvarname(var[nvar])) return WHYF("malformed command at args[%d]: '%s' is not a valid config option name", iv, var[nvar]); ++nvar; } for (i = 0; i < nvar; ++i) if (cf_om_set(&cf_om_root, var[i], val[i]) == -1) return -1; if (cf_om_save() == -1) return -1; if (cf_reload() == -1) // logs an error if the new config is bad return 2; return 0; } int app_config_get(const struct cli_parsed *parsed, void *context) { if (config.debug.verbose) DEBUG_cli_parsed(parsed); const char *var; if (cli_arg(parsed, "variable", &var, is_configvarpattern, NULL) == -1) return -1; if (create_serval_instance_dir() == -1) return -1; if (cf_om_reload() == -1) return -1; if (var && is_configvarname(var)) { const char *value = cf_om_get(cf_om_root, var); if (value) { cli_puts(var); cli_delim("="); cli_puts(value); cli_delim("\n"); } } else { struct cf_om_iterator it; for (cf_om_iter_start(&it, cf_om_root); it.node; cf_om_iter_next(&it)) { if (var && cf_om_match(var, it.node) <= 0) continue; if (it.node->text) { cli_puts(it.node->fullkey); cli_delim("="); cli_puts(it.node->text); cli_delim("\n"); } } } return 0; } int app_rhizome_hash_file(const struct cli_parsed *parsed, void *context) { if (config.debug.verbose) DEBUG_cli_parsed(parsed); /* compute hash of file. We do this without a manifest, so it will necessarily return the hash of the file unencrypted. */ const char *filepath; cli_arg(parsed, "filepath", &filepath, NULL, ""); char hexhash[RHIZOME_FILEHASH_STRLEN + 1]; if (rhizome_hash_file(NULL,filepath, hexhash)) return -1; cli_puts(hexhash); cli_delim("\n"); return 0; } int app_rhizome_add_file(const struct cli_parsed *parsed, void *context) { if (config.debug.verbose) DEBUG_cli_parsed(parsed); const char *filepath, *manifestpath, *authorSidHex, *bskhex; cli_arg(parsed, "filepath", &filepath, NULL, ""); if (cli_arg(parsed, "author_sid", &authorSidHex, cli_optional_sid, "") == -1) return -1; cli_arg(parsed, "manifestpath", &manifestpath, NULL, ""); if (cli_arg(parsed, "bsk", &bskhex, cli_optional_bundle_key, NULL) == -1) return -1; sid_t authorSid; if (authorSidHex[0] && fromhexstr(authorSid.binary, authorSidHex, SID_SIZE) == -1) return WHYF("invalid author_sid: %s", authorSidHex); rhizome_bk_t bsk; // treat empty string the same as null if (bskhex && !*bskhex) bskhex=NULL; if (bskhex && fromhexstr(bsk.binary, bskhex, RHIZOME_BUNDLE_KEY_BYTES) == -1) return WHYF("invalid bsk: \"%s\"", bskhex); if (create_serval_instance_dir() == -1) return -1; if (!(keyring = keyring_open_instance_cli(parsed))) return -1; if (rhizome_opendb() == -1) return -1; /* Create a new manifest that will represent the file. If a manifest file was supplied, then read * it, otherwise create a blank manifest. */ rhizome_manifest *m = rhizome_new_manifest(); if (!m) return WHY("Manifest struct could not be allocated -- not added to rhizome"); if (manifestpath[0] && access(manifestpath, R_OK) == 0) { if (config.debug.rhizome) DEBUGF("reading manifest from %s", manifestpath); /* Don't verify the manifest, because it will fail if it is incomplete. This is okay, because we fill in any missing bits and sanity check before trying to write it out. */ if (rhizome_read_manifest_file(m, manifestpath, 0) == -1) { rhizome_manifest_free(m); return WHY("Manifest file could not be loaded -- not added to rhizome"); } } else { if (config.debug.rhizome) DEBUGF("manifest file %s does not exist -- creating new manifest", manifestpath); } if (rhizome_stat_file(m, filepath)){ rhizome_manifest_free(m); return -1; } if (rhizome_fill_manifest(m, filepath, *authorSidHex?&authorSid:NULL, bskhex?&bsk:NULL)){ rhizome_manifest_free(m); return -1; } if (m->fileLength){ if (rhizome_add_file(m, filepath)){ rhizome_manifest_free(m); return -1; } } rhizome_manifest *mout = NULL; int ret=rhizome_manifest_finalise(m,&mout); if (ret<0){ rhizome_manifest_free(m); return -1; } if (manifestpath[0] && rhizome_write_manifest_file(mout, manifestpath, 0) == -1) ret = WHY("Could not overwrite manifest file."); const char *service = rhizome_manifest_get(mout, "service", NULL, 0); if (service) { cli_puts("service"); cli_delim(":"); cli_puts(service); cli_delim("\n"); } { char bid[RHIZOME_MANIFEST_ID_STRLEN + 1]; rhizome_bytes_to_hex_upper(mout->cryptoSignPublic, bid, RHIZOME_MANIFEST_ID_BYTES); cli_puts("manifestid"); cli_delim(":"); cli_puts(bid); cli_delim("\n"); } { char secret[RHIZOME_BUNDLE_KEY_STRLEN + 1]; rhizome_bytes_to_hex_upper(mout->cryptoSignSecret, secret, RHIZOME_BUNDLE_KEY_BYTES); cli_puts("secret"); cli_delim(":"); cli_puts(secret); cli_delim("\n"); } cli_puts("version"); cli_delim(":"); cli_printf("%lld", m->version); cli_delim("\n"); cli_puts("filesize"); cli_delim(":"); cli_printf("%lld", mout->fileLength); cli_delim("\n"); if (mout->fileLength != 0) { cli_puts("filehash"); cli_delim(":"); cli_puts(mout->fileHexHash); cli_delim("\n"); } const char *name = rhizome_manifest_get(mout, "name", NULL, 0); if (name) { cli_puts("name"); cli_delim(":"); cli_puts(name); cli_delim("\n"); } if (mout != m) rhizome_manifest_free(mout); rhizome_manifest_free(m); return ret; } int app_rhizome_import_bundle(const struct cli_parsed *parsed, void *context) { if (config.debug.verbose) DEBUG_cli_parsed(parsed); const char *filepath, *manifestpath; cli_arg(parsed, "filepath", &filepath, NULL, ""); cli_arg(parsed, "manifestpath", &manifestpath, NULL, ""); if (rhizome_opendb() == -1) return -1; rhizome_manifest *m = rhizome_new_manifest(); if (!m) return WHY("Out of manifests."); int status=rhizome_bundle_import_files(m, manifestpath, filepath); if (status<0) goto cleanup; // TODO generalise the way we dump manifest details from add, import & export // so callers can also generalise their parsing const char *service = rhizome_manifest_get(m, "service", NULL, 0); if (service) { cli_puts("service"); cli_delim(":"); cli_puts(service); cli_delim("\n"); } { cli_puts("manifestid"); cli_delim(":"); cli_puts(alloca_tohex(m->cryptoSignPublic, RHIZOME_MANIFEST_ID_BYTES)); cli_delim("\n"); } cli_puts("version"); cli_delim(":"); cli_printf("%lld", m->version); cli_delim("\n"); cli_puts("filesize"); cli_delim(":"); cli_printf("%lld", m->fileLength); cli_delim("\n"); if (m->fileLength != 0) { cli_puts("filehash"); cli_delim(":"); cli_puts(m->fileHexHash); cli_delim("\n"); } const char *name = rhizome_manifest_get(m, "name", NULL, 0); if (name) { cli_puts("name"); cli_delim(":"); cli_puts(name); cli_delim("\n"); } cleanup: rhizome_manifest_free(m); return status; } int app_rhizome_append_manifest(const struct cli_parsed *parsed, void *context) { if (config.debug.verbose) DEBUG_cli_parsed(parsed); const char *manifestpath, *filepath; if ( cli_arg(parsed, "manifestpath", &manifestpath, NULL, "") == -1 || cli_arg(parsed, "filepath", &filepath, NULL, "") == -1) return -1; rhizome_manifest *m = rhizome_new_manifest(); if (!m) return WHY("Out of manifests."); int ret=0; if (rhizome_read_manifest_file(m, manifestpath, 0)) ret=-1; // TODO why doesn't read manifest file set finalised??? m->finalised=1; if (ret==0 && rhizome_write_manifest_file(m, filepath, 1) == -1) ret = -1; if (m) rhizome_manifest_free(m); return ret; } int app_rhizome_extract_bundle(const struct cli_parsed *parsed, void *context) { if (config.debug.verbose) DEBUG_cli_parsed(parsed); const char *manifestpath, *filepath, *manifestid, *bskhex; if ( cli_arg(parsed, "manifestid", &manifestid, cli_manifestid, "") == -1 || cli_arg(parsed, "manifestpath", &manifestpath, NULL, "") == -1 || cli_arg(parsed, "filepath", &filepath, NULL, "") == -1 || cli_arg(parsed, "bsk", &bskhex, cli_optional_bundle_key, NULL) == -1) return -1; /* Ensure the Rhizome database exists and is open */ if (create_serval_instance_dir() == -1) return -1; if (rhizome_opendb() == -1) return -1; if (!(keyring = keyring_open_instance_cli(parsed))) return -1; int ret=0; unsigned char manifest_id[RHIZOME_MANIFEST_ID_BYTES]; if (fromhexstr(manifest_id, manifestid, RHIZOME_MANIFEST_ID_BYTES) == -1) return WHY("Invalid manifest ID"); char manifestIdUpper[RHIZOME_MANIFEST_ID_STRLEN + 1]; tohex(manifestIdUpper, manifest_id, RHIZOME_MANIFEST_ID_BYTES); // treat empty string the same as null if (bskhex && !*bskhex) bskhex=NULL; rhizome_bk_t bsk; if (bskhex && fromhexstr(bsk.binary, bskhex, RHIZOME_BUNDLE_KEY_BYTES) == -1) return WHYF("invalid bsk: \"%s\"", bskhex); rhizome_manifest *m = rhizome_new_manifest(); if (m==NULL) return WHY("Out of manifests"); ret = rhizome_retrieve_manifest(manifestIdUpper, m); if (ret==0){ // ignore errors rhizome_extract_privatekey(m, NULL); const char *blob_service = rhizome_manifest_get(m, "service", NULL, 0); cli_puts("service"); cli_delim(":"); cli_puts(blob_service); cli_delim("\n"); cli_puts("manifestid"); cli_delim(":"); cli_puts(manifestIdUpper); cli_delim("\n"); cli_puts("version"); cli_delim(":"); cli_printf("%lld", m->version); cli_delim("\n"); cli_puts("inserttime"); cli_delim(":"); cli_printf("%lld", m->inserttime); cli_delim("\n"); if (m->haveSecret) { cli_puts(".author"); cli_delim(":"); cli_puts(alloca_tohex_sid(m->author)); cli_delim("\n"); } cli_puts(".readonly"); cli_delim(":"); cli_printf("%d", m->haveSecret?0:1); cli_delim("\n"); cli_puts("filesize"); cli_delim(":"); cli_printf("%lld", (long long) m->fileLength); cli_delim("\n"); if (m->fileLength != 0) { cli_puts("filehash"); cli_delim(":"); cli_puts(m->fileHexHash); cli_delim("\n"); } } int retfile=0; if (ret==0 && m->fileLength != 0 && filepath && *filepath){ // TODO, this may cause us to search for an author a second time if the above call to rhizome_extract_privatekey failed retfile = rhizome_extract_file(m, filepath, bskhex?&bsk:NULL); } if (ret==0 && manifestpath && *manifestpath){ if (strcmp(manifestpath, "-") == 0) { // always extract a manifest to stdout, even if writing the file itself failed. cli_puts("manifest"); cli_delim(":"); cli_write(m->manifestdata, m->manifest_all_bytes); cli_delim("\n"); } else { int append = (strcmp(manifestpath, filepath)==0)?1:0; // don't write out the manifest if we were asked to append it and writing the file failed. if ((!append) || retfile==0){ /* If the manifest has been read in from database, the blob is there, and we can lie and say we are finalised and just want to write it out. TODO: really should have a dirty/clean flag, so that write works if clean but not finalised. */ m->finalised=1; if (rhizome_write_manifest_file(m, manifestpath, append) == -1) ret = -1; } } } if (retfile) ret=retfile; if (m) rhizome_manifest_free(m); return ret; } int app_rhizome_dump_file(const struct cli_parsed *parsed, void *context) { if (config.debug.verbose) DEBUG_cli_parsed(parsed); const char *fileid, *filepath; if ( cli_arg(parsed, "filepath", &filepath, NULL, "") == -1 || cli_arg(parsed, "fileid", &fileid, cli_fileid, NULL) == -1) return -1; if (create_serval_instance_dir() == -1) return -1; if (rhizome_opendb() == -1) return -1; if (!rhizome_exists(fileid)) return 1; int64_t length; if (rhizome_dump_file(fileid, filepath, &length)) return -1; cli_puts("filehash"); cli_delim(":"); cli_puts(fileid); cli_delim("\n"); cli_puts("filesize"); cli_delim(":"); cli_printf("%lld", length); cli_delim("\n"); return 0; } int app_rhizome_list(const struct cli_parsed *parsed, void *context) { if (config.debug.verbose) DEBUG_cli_parsed(parsed); const char *service, *name, *sender_sid, *recipient_sid, *offset, *limit; cli_arg(parsed, "service", &service, NULL, ""); cli_arg(parsed, "name", &name, NULL, ""); cli_arg(parsed, "sender_sid", &sender_sid, cli_optional_sid, ""); cli_arg(parsed, "recipient_sid", &recipient_sid, cli_optional_sid, ""); cli_arg(parsed, "offset", &offset, cli_uint, "0"); cli_arg(parsed, "limit", &limit, cli_uint, "0"); /* Create the instance directory if it does not yet exist */ if (create_serval_instance_dir() == -1) return -1; if (!(keyring = keyring_open_instance_cli(parsed))) return -1; if (rhizome_opendb() == -1) return -1; return rhizome_list_manifests(service, name, sender_sid, recipient_sid, atoi(offset), atoi(limit), 0); } int app_keyring_create(const struct cli_parsed *parsed, void *context) { if (config.debug.verbose) DEBUG_cli_parsed(parsed); if (!keyring_open_instance()) return -1; return 0; } int app_keyring_list(const struct cli_parsed *parsed, void *context) { if (config.debug.verbose) DEBUG_cli_parsed(parsed); keyring_file *k = keyring_open_instance_cli(parsed); if (!k) return -1; int cn, in; for (cn = 0; cn < k->context_count; ++cn) for (in = 0; in < k->contexts[cn]->identity_count; ++in) { const unsigned char *sid = NULL; const char *did = NULL; const char *name = NULL; keyring_identity_extract(k->contexts[cn]->identities[in], &sid, &did, &name); if (sid || did) { if (sid) cli_printf("%s", alloca_tohex_sid(sid)); cli_delim(":"); if (did) cli_puts(did); cli_delim(":"); if (name) cli_puts(name); cli_delim("\n"); } } return 0; } int app_keyring_add(const struct cli_parsed *parsed, void *context) { if (config.debug.verbose) DEBUG_cli_parsed(parsed); const char *pin; cli_arg(parsed, "pin", &pin, NULL, ""); keyring_file *k = keyring_open_instance_cli(parsed); if (!k) return -1; keyring_enter_pin(k, pin); const keyring_identity *id = keyring_create_identity(k, k->contexts[k->context_count - 1], pin); if (id == NULL) { keyring_free(k); return WHY("Could not create new identity"); } const unsigned char *sid = NULL; const char *did = ""; const char *name = ""; keyring_identity_extract(id, &sid, &did, &name); if (!sid) { keyring_free(k); return WHY("New identity has no SID"); } if (keyring_commit(k) == -1) { keyring_free(k); return WHY("Could not write new identity"); } cli_puts("sid"); cli_delim(":"); cli_printf("%s", alloca_tohex_sid(sid)); cli_delim("\n"); if (did) { cli_puts("did"); cli_delim(":"); cli_puts(did); cli_delim("\n"); } if (name) { cli_puts("name"); cli_delim(":"); cli_puts(name); cli_delim("\n"); } keyring_free(k); return 0; } int app_keyring_set_did(const struct cli_parsed *parsed, void *context) { if (config.debug.verbose) DEBUG_cli_parsed(parsed); const char *sidhex, *did, *name; cli_arg(parsed, "sid", &sidhex, str_is_subscriber_id, ""); cli_arg(parsed, "did", &did, cli_optional_did, ""); cli_arg(parsed, "name", &name, NULL, ""); if (strlen(name)>63) return WHY("Name too long (31 char max)"); if (!(keyring = keyring_open_instance_cli(parsed))) return -1; sid_t sid; if (str_to_sid_t(&sid, sidhex) == -1) return WHY("str_to_sid_t() failed"); int cn=0,in=0,kp=0; int r=keyring_find_sid(keyring, &cn, &in, &kp, sid.binary); if (!r) return WHY("No matching SID"); if (keyring_set_did(keyring->contexts[cn]->identities[in], did, name)) return WHY("Could not set DID"); if (keyring_commit(keyring)) return WHY("Could not write updated keyring record"); cli_puts("sid"); cli_delim(":"); cli_printf("%s", alloca_tohex_sid_t(sid)); cli_delim("\n"); if (did) { cli_puts("did"); cli_delim(":"); cli_puts(did); cli_delim("\n"); } if (name) { cli_puts("name"); cli_delim(":"); cli_puts(name); cli_delim("\n"); } keyring_free(keyring); return 0; } int app_id_self(const struct cli_parsed *parsed, void *context) { if (config.debug.verbose) DEBUG_cli_parsed(parsed); /* List my own identities */ overlay_mdp_frame a; bzero(&a, sizeof(overlay_mdp_frame)); int result; int count=0; a.packetTypeAndFlags=MDP_GETADDRS; const char *arg = parsed->argc >= 2 ? parsed->args[1] : ""; if (!strcasecmp(arg,"self")) a.addrlist.mode = MDP_ADDRLIST_MODE_SELF; /* get own identities */ else if (!strcasecmp(arg,"allpeers")) a.addrlist.mode = MDP_ADDRLIST_MODE_ALL_PEERS; /* get all known peers */ else if (!strcasecmp(arg,"peers")) a.addrlist.mode = MDP_ADDRLIST_MODE_ROUTABLE_PEERS; /* get routable (reachable) peers */ else return WHYF("unsupported arg '%s'", arg); a.addrlist.first_sid=0; do{ result=overlay_mdp_send(&a,MDP_AWAITREPLY,5000); if (result) { if (a.packetTypeAndFlags==MDP_ERROR) { WHYF(" MDP Server error #%d: '%s'", a.error.error,a.error.message); } else WHYF("Could not get list of local MDP addresses"); return WHY("Failed to get local address list"); } if ((a.packetTypeAndFlags&MDP_TYPE_MASK)!=MDP_ADDRLIST) return WHY("MDP Server returned something other than an address list"); int i; for(i=0;i1.00) count/=2; } printf("Benchmarking CryptoSign signature verification:\n"); { unsigned char sign_pk[crypto_sign_edwards25519sha512batch_PUBLICKEYBYTES]; unsigned char sign_sk[crypto_sign_edwards25519sha512batch_SECRETKEYBYTES]; if (crypto_sign_edwards25519sha512batch_keypair(sign_pk,sign_sk)) { fprintf(stderr,"crypto_sign_curve25519xsalsa20poly1305_keypair() failed.\n"); exit(-1); } unsigned char plainTextIn[1024]; unsigned char cipherText[1024]; unsigned char plainTextOut[1024]; unsigned long long cipherLen=0; unsigned long long plainLenOut; bzero(plainTextIn,1024); bzero(cipherText,1024); snprintf((char *)&plainTextIn[0],1024,"%s","No casaba melons allowed in the lab."); int plainLenIn=64; time_ms_t start = gettime_ms(); for(i=0;i<10;i++) { int r=crypto_sign_edwards25519sha512batch(cipherText,&cipherLen, plainTextIn,plainLenIn, sign_sk); if (r) { fprintf(stderr,"crypto_sign_edwards25519sha512batch() failed.\n"); exit(-1); } } time_ms_t end=gettime_ms(); printf("mean signature generation time = %.2fms\n", (end-start)*1.0/i); start = gettime_ms(); for(i=0;i<10;i++) { bzero(&plainTextOut,1024); plainLenOut=0; int r=crypto_sign_edwards25519sha512batch_open(plainTextOut,&plainLenOut, &cipherText[0],cipherLen, sign_pk); if (r) { fprintf(stderr,"crypto_sign_edwards25519sha512batch_open() failed (r=%d, i=%d).\n", r,i); exit(-1); } } end = gettime_ms(); printf("mean signature verification time = %.2fms\n", (end-start)*1.0/i); } /* We can't do public signing with a crypto_box key, but we should be able to do shared-secret generation using crypto_sign keys. */ { printf("Testing supercop-20120525 Ed25519 CryptoSign implementation:\n"); unsigned char sign1_pk[crypto_sign_edwards25519sha512batch_PUBLICKEYBYTES]; unsigned char sign1_sk[crypto_sign_edwards25519sha512batch_SECRETKEYBYTES]; if (crypto_sign_edwards25519sha512batch_keypair(sign1_pk,sign1_sk)) { fprintf(stderr,"crypto_sign_edwards25519sha512batch_keypair() failed.\n"); exit(-1); } /* Try calculating public key from secret key */ unsigned char pk[crypto_sign_edwards25519sha512batch_PUBLICKEYBYTES]; /* New Ed25519 implementation has public key as 2nd half of private key. */ bcopy(&sign1_sk[32],pk,32); if (memcmp(pk, sign1_pk, crypto_sign_edwards25519sha512batch_PUBLICKEYBYTES)) { fprintf(stderr,"Could not calculate public key from private key.\n"); dump("calculated",&pk,sizeof(pk)); dump("original",&sign1_pk,sizeof(sign1_pk)); // exit(-1); } else printf("Can calculate public key from private key.\n"); /* Now use a pre-tested keypair and make sure that we can sign and verify with it, and that the signatures are as expected. */ unsigned char key[64]={ 0xf6,0x70,0x6b,0x8a,0x4e,0x1e,0x4b,0x01, 0x11,0x56,0x85,0xac,0x63,0x46,0x67,0x5f, 0xc1,0x44,0xcf,0xdf,0x98,0x5c,0x2b,0x8b, 0x18,0xff,0x70,0x9c,0x12,0x71,0x48,0xb9, 0x32,0x2a,0x88,0xba,0x9c,0xdd,0xed,0x35, 0x8f,0x01,0x18,0xf7,0x60,0x1b,0xfb,0x80, 0xaf,0xce,0x74,0xe0,0x85,0x39,0xac,0x13, 0x15,0xf6,0x79,0xaa,0x68,0xef,0x5d,0xc6}; unsigned char plainTextIn[1024]; unsigned char plainTextOut[1024]; unsigned char cipherText[1024]; unsigned long long cipherLen=0; unsigned long long plainLenOut; bzero(plainTextIn,1024); bzero(cipherText,1024); snprintf((char *)&plainTextIn[0],1024,"%s","No casaba melons allowed in the lab."); int plainLenIn=64; int r=crypto_sign_edwards25519sha512batch(cipherText,&cipherLen, plainTextIn,plainLenIn, key); if (r) { fprintf(stderr,"crypto_sign_edwards25519sha512batch() failed.\n"); exit(-1); } dump("signature",cipherText,cipherLen); unsigned char casabamelons[128]={ 0xa4,0xea,0xd0,0x7f,0x11,0x65,0x28,0x3f,0x90,0x45,0x87,0xbf,0xe5,0xb9,0x15,0x2a,0x9a,0x2d,0x99,0x35,0x0d,0x0e,0x7b,0xb0,0xcd,0x15,0x2e,0xe8,0xeb,0xb3,0xc2,0xb1,0x13,0x8e,0xe3,0x82,0x55,0x6c,0x6e,0x34,0x44,0xe4,0xbc,0xa3,0xd5,0xe0,0x7a,0x6a,0x67,0x61,0xda,0x79,0x67,0xb6,0x1c,0x2e,0x48,0xc7,0x28,0x5b,0xd8,0xd0,0x54,0x0c,0x4e,0x6f,0x20,0x63,0x61,0x73,0x61,0x62,0x61,0x20,0x6d,0x65,0x6c,0x6f,0x6e,0x73,0x20,0x61,0x6c,0x6c,0x6f,0x77,0x65,0x64,0x20,0x69,0x6e,0x20,0x74,0x68,0x65,0x20,0x6c,0x61,0x62,0x2e,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00, 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0 }; if (cipherLen!=128||memcmp(casabamelons, cipherText, 128)) { fprintf(stderr,"Computed signature for stored key+message does not match expected value.\n"); dump("expected signature",casabamelons,sizeof(casabamelons)); // exit(-1); } bzero(&plainTextOut,1024); plainLenOut=0; r=crypto_sign_edwards25519sha512batch_open(plainTextOut,&plainLenOut, &casabamelons[0],128, /* the public key, which is the 2nd half of the secret key. */ &key[32]); if (r) { fprintf(stderr,"Cannot open rearranged ref/ version of signature.\n"); } else printf("Signature open fine.\n"); } return 0; } int app_node_info(const struct cli_parsed *parsed, void *context) { if (config.debug.verbose) DEBUG_cli_parsed(parsed); const char *sid; cli_arg(parsed, "sid", &sid, NULL, ""); overlay_mdp_frame mdp; bzero(&mdp,sizeof(mdp)); mdp.packetTypeAndFlags=MDP_NODEINFO; /* get SID or SID prefix XXX - Doesn't correctly handle odd-lengthed SID prefixes (ignores last digit). The matching code in overlay_route.c also has a similar problem with the last digit of an odd-length prefix being ignored. */ int i; mdp.nodeinfo.sid_prefix_length=0; for(i = 0; (i != SID_SIZE)&&sid[i<<1]&&sid[(i<<1)+1]; i++) { mdp.nodeinfo.sid[mdp.nodeinfo.sid_prefix_length] = hexvalue(sid[i<<1]) << 4; mdp.nodeinfo.sid[mdp.nodeinfo.sid_prefix_length++] |= hexvalue(sid[(i<<1)+1]); } mdp.nodeinfo.sid_prefix_length*=2; int result=overlay_mdp_send(&mdp,MDP_AWAITREPLY,5000); if (result) { if (mdp.packetTypeAndFlags==MDP_ERROR) { overlay_mdp_client_done(); return WHYF(" MDP Server error #%d: '%s'",mdp.error.error,mdp.error.message); } else { overlay_mdp_client_done(); return WHYF("Could not get information about node."); } } cli_printf("record"); cli_delim(":"); cli_printf("%s",mdp.nodeinfo.foundP?"found":"noresult"); cli_delim(":"); cli_printf("%s", alloca_tohex_sid(mdp.nodeinfo.sid)); cli_delim(":"); cli_printf("%s",mdp.nodeinfo.localP?"self":"peer"); cli_delim(":"); cli_printf("%s",mdp.nodeinfo.neighbourP?"direct":"indirect"); cli_delim(":"); cli_printf("%d",mdp.nodeinfo.score); cli_delim(":"); cli_printf("%d",mdp.nodeinfo.interface_number); cli_delim("\n"); return 0; } int app_route_print(const struct cli_parsed *parsed, void *context) { if (config.debug.verbose) DEBUG_cli_parsed(parsed); overlay_mdp_frame mdp; bzero(&mdp,sizeof(mdp)); mdp.packetTypeAndFlags=MDP_ROUTING_TABLE; overlay_mdp_send(&mdp,0,0); while(overlay_mdp_client_poll(200)){ overlay_mdp_frame rx; int ttl; if (overlay_mdp_recv(&rx, 0, &ttl)) continue; int ofs=0; while(ofs + sizeof(struct overlay_route_record) <= rx.out.payload_length){ struct overlay_route_record *p=(struct overlay_route_record *)&rx.out.payload[ofs]; ofs+=sizeof(struct overlay_route_record); cli_printf(alloca_tohex_sid(p->sid)); cli_delim(":"); if (p->reachable==REACHABLE_NONE) cli_printf("NONE"); if (p->reachable & REACHABLE_SELF) cli_printf("SELF "); if (p->reachable & REACHABLE_ASSUMED) cli_printf("ASSUMED "); if (p->reachable & REACHABLE_BROADCAST) cli_printf("BROADCAST "); if (p->reachable & REACHABLE_UNICAST) cli_printf("UNICAST "); if (p->reachable & REACHABLE_INDIRECT) cli_printf("INDIRECT "); cli_delim(":"); cli_printf(alloca_tohex_sid(p->neighbour)); cli_delim("\n"); } } return 0; } int app_reverse_lookup(const struct cli_parsed *parsed, void *context) { if (config.debug.verbose) DEBUG_cli_parsed(parsed); const char *sid, *delay; if (cli_arg(parsed, "sid", &sid, str_is_subscriber_id, "") == -1) return -1; if (cli_arg(parsed, "timeout", &delay, NULL, "3000") == -1) return -1; int port=32768+(random()&0xffff); unsigned char srcsid[SID_SIZE]; unsigned char dstsid[SID_SIZE]; stowSid(dstsid,0,(char *)sid); if (overlay_mdp_getmyaddr(0,srcsid)) return WHY("Unable to get my address"); if (overlay_mdp_bind(srcsid,port)) return WHY("Unable to bind port"); time_ms_t now = gettime_ms(); time_ms_t timeout = now + atoi(delay); time_ms_t next_send = now; overlay_mdp_frame mdp_reply; while(now < timeout){ now=gettime_ms(); if (now >= next_send){ /* Send a unicast packet to this node, asking for any did */ lookup_send_request(srcsid, port, dstsid, ""); next_send+=125; continue; } time_ms_t poll_timeout = (next_send>timeout?timeout:next_send) - now; if (overlay_mdp_client_poll(poll_timeout)<=0) continue; int ttl=-1; if (overlay_mdp_recv(&mdp_reply, port, &ttl)) continue; if ((mdp_reply.packetTypeAndFlags&MDP_TYPE_MASK)==MDP_ERROR){ // TODO log error? continue; } if (mdp_reply.packetTypeAndFlags!=MDP_TX) { WHYF("MDP returned an unexpected message (type=0x%x)", mdp_reply.packetTypeAndFlags); if (mdp_reply.packetTypeAndFlags==MDP_ERROR) WHYF("MDP message is return/error: %d:%s", mdp_reply.error.error,mdp_reply.error.message); continue; } // we might receive a late response from an ealier request on the same socket, ignore it if (memcmp(mdp_reply.in.src.sid, dstsid, SID_SIZE)){ WHYF("Unexpected result from SID %s", alloca_tohex_sid(mdp_reply.in.src.sid)); continue; } { char sidhex[SID_STRLEN + 1]; char did[DID_MAXSIZE + 1]; char name[64]; char uri[512]; if ( !parseDnaReply((char *)mdp_reply.in.payload, mdp_reply.in.payload_length, sidhex, did, name, uri, NULL) || !str_is_subscriber_id(sidhex) || !str_is_did(did) || !str_is_uri(uri) ) { WHYF("Received malformed DNA reply: %s", alloca_toprint(160, (const char *)mdp_reply.in.payload, mdp_reply.in.payload_length)); continue; } /* Got a good DNA reply, copy it into place and stop polling */ cli_puts("did"); cli_delim(":"); cli_puts(did); cli_delim("\n"); cli_puts("name"); cli_delim(":"); cli_puts(name); cli_delim("\n"); break; } } return 0; } int app_network_scan(const struct cli_parsed *parsed, void *context) { if (config.debug.verbose) DEBUG_cli_parsed(parsed); overlay_mdp_frame mdp; bzero(&mdp,sizeof(mdp)); mdp.packetTypeAndFlags=MDP_SCAN; struct overlay_mdp_scan *scan = (struct overlay_mdp_scan *)&mdp.raw; const char *address; if (cli_arg(parsed, "address", &address, NULL, NULL) == -1) return -1; if (address){ DEBUGF("Parsing arg %s", address); if (!inet_aton(address, &scan->addr)) return WHY("Unable to parse the address"); }else DEBUGF("Scanning local networks"); overlay_mdp_send(&mdp,MDP_AWAITREPLY,5000); if (mdp.packetTypeAndFlags!=MDP_ERROR) return -1; cli_puts(mdp.error.message); cli_delim("\n"); return mdp.error.error; } /* NULL marks ends of command structure. "" marks an arg that can take any value. "[]" marks an optional arg that can take any value. All args following the first optional arg are optional, whether marked or not. Only exactly matching prototypes will be used. Together with the description, this makes it easy for us to auto-generate the list of valid command line formats for display to the user if they try an invalid one. It also means we can do away with getopt() etc. The CLIFLAG_STANDALONE means that they cannot be used with a running servald instance, but act as an instance. In other words, don't call these from the serval frontend, e.g, Java application on Android. There are various reasons, such as some will try to fork() and exec() (bad for a Java thread to do), while others manipulate files that the running instance may be using. Keep this list alphabetically sorted for user convenience. */ #define KEYRING_PIN_OPTIONS ,"[--keyring-pin=]","[--entry-pin=]..." struct cli_schema command_line_options[]={ {app_dna_lookup,{"dna","lookup","","[]",NULL},0, "Lookup the SIP/MDP address of the supplied telephone number (DID)."}, {commandline_usage,{"help",NULL},CLIFLAG_PERMISSIVE_CONFIG, "Display command usage."}, {app_echo,{"echo","[-e]","[--]","...",NULL},CLIFLAG_STANDALONE, "Output the supplied string."}, {app_server_start,{"start",NULL},CLIFLAG_STANDALONE, "Start Serval Mesh node process with instance path taken from SERVALINSTANCE_PATH environment variable."}, {app_server_start,{"start","in","",NULL},CLIFLAG_STANDALONE, "Start Serval Mesh node process with given instance path."}, {app_server_start,{"start","exec","",NULL},CLIFLAG_STANDALONE, "Start Serval Mesh node process with instance path taken from SERVALINSTANCE_PATH environment variable."}, {app_server_start,{"start","exec","","in","",NULL},CLIFLAG_STANDALONE, "Start Serval Mesh node process with given instance path."}, {app_server_start,{"start","foreground",NULL},CLIFLAG_STANDALONE, "Start Serval Mesh node process without detatching from foreground."}, {app_server_start,{"start","foreground","in","",NULL},CLIFLAG_STANDALONE, "Start Serval Mesh node process with given instance path, without detatching from foreground."}, {app_server_stop,{"stop",NULL},CLIFLAG_PERMISSIVE_CONFIG, "Stop a running Serval Mesh node process with instance path taken from SERVALINSTANCE_PATH environment variable."}, {app_server_stop,{"stop","in","",NULL},CLIFLAG_PERMISSIVE_CONFIG, "Stop a running Serval Mesh node process with given instance path."}, {app_server_status,{"status",NULL},CLIFLAG_PERMISSIVE_CONFIG, "Display information about any running Serval Mesh node."}, {app_mdp_ping,{"mdp","ping","","[]",NULL},CLIFLAG_STANDALONE, "Attempts to ping specified node via Mesh Datagram Protocol (MDP)."}, {app_config_schema,{"config","schema",NULL},CLIFLAG_STANDALONE|CLIFLAG_PERMISSIVE_CONFIG, "Dump configuration schema."}, {app_config_set,{"config","set","","","...",NULL},CLIFLAG_STANDALONE|CLIFLAG_PERMISSIVE_CONFIG, "Set and del specified configuration variables."}, {app_config_set,{"config","del","","...",NULL},CLIFLAG_STANDALONE|CLIFLAG_PERMISSIVE_CONFIG, "Del and set specified configuration variables."}, {app_config_get,{"config","get","[]",NULL},CLIFLAG_STANDALONE|CLIFLAG_PERMISSIVE_CONFIG, "Get specified configuration variable."}, {app_vomp_console,{"console",NULL},0, "Test phone call life-cycle from the console"}, {app_rhizome_append_manifest, {"rhizome", "append", "manifest", "", "", NULL}, CLIFLAG_STANDALONE, "Append a manifest to the end of the file it belongs to."}, {app_rhizome_hash_file,{"rhizome","hash","file","",NULL},CLIFLAG_STANDALONE, "Compute the Rhizome hash of a file"}, {app_rhizome_add_file,{"rhizome","add","file" KEYRING_PIN_OPTIONS,"","","[]","[]",NULL},CLIFLAG_STANDALONE, "Add a file to Rhizome and optionally write its manifest to the given path"}, {app_rhizome_import_bundle,{"rhizome","import","bundle","","",NULL},CLIFLAG_STANDALONE, "Import a payload/manifest pair into Rhizome"}, {app_rhizome_list,{"rhizome","list" KEYRING_PIN_OPTIONS,"[]","[]","[]","[]","[]","[]",NULL},CLIFLAG_STANDALONE, "List all manifests and files in Rhizome"}, {app_rhizome_extract_bundle,{"rhizome","extract","bundle" KEYRING_PIN_OPTIONS, "","[]","[]","[]",NULL},CLIFLAG_STANDALONE, "Extract a manifest and decrypted file to the given paths."}, {app_rhizome_extract_bundle,{"rhizome","extract","manifest" KEYRING_PIN_OPTIONS, "","[]",NULL},CLIFLAG_STANDALONE, "Extract a manifest from Rhizome and write it to the given path"}, {app_rhizome_extract_bundle,{"rhizome","extract","file" KEYRING_PIN_OPTIONS, "","[]","[]",NULL},CLIFLAG_STANDALONE, "Extract a file from Rhizome and write it to the given path"}, {app_rhizome_dump_file,{"rhizome","dump","file","","[]",NULL},CLIFLAG_STANDALONE, "Extract a file from Rhizome and write it to the given path without attempting decryption"}, {app_rhizome_direct_sync,{"rhizome","direct","sync","[peer url]",NULL}, CLIFLAG_STANDALONE, "Synchronise with the specified Rhizome Direct server. Return when done."}, {app_rhizome_direct_sync,{"rhizome","direct","push","[peer url]",NULL}, CLIFLAG_STANDALONE, "Deliver all new content to the specified Rhizome Direct server. Return when done."}, {app_rhizome_direct_sync,{"rhizome","direct","pull","[peer url]",NULL}, CLIFLAG_STANDALONE, "Fetch all new content from the specified Rhizome Direct server. Return when done."}, {app_keyring_create,{"keyring","create",NULL},0, "Create a new keyring file."}, {app_keyring_list,{"keyring","list" KEYRING_PIN_OPTIONS,NULL},CLIFLAG_STANDALONE, "List identites in specified key ring that can be accessed using the specified PINs"}, {app_keyring_add,{"keyring","add" KEYRING_PIN_OPTIONS,"[]",NULL},CLIFLAG_STANDALONE, "Create a new identity in the keyring protected by the provided PIN"}, {app_keyring_set_did,{"keyring", "set","did" KEYRING_PIN_OPTIONS,"","","",NULL},CLIFLAG_STANDALONE, "Set the DID for the specified SID. Optionally supply PIN to unlock the SID record in the keyring."}, {app_id_self,{"id","self",NULL},0, "Return my own identity(s) as URIs"}, {app_id_self,{"id","peers",NULL},0, "Return identity of known routable peers as URIs"}, {app_id_self,{"id","allpeers",NULL},0, "Return identity of all known peers as URIs"}, {app_route_print, {"route","print",NULL},0, "Print the routing table"}, {app_network_scan, {"scan","[
]",NULL},0, "Scan the network for serval peers. If no argument is supplied, all local addresses will be scanned."}, {app_node_info,{"node","info","",NULL},0, "Return routing information about a SID"}, {app_count_peers,{"peer","count",NULL},0, "Return a count of routable peers on the network"}, {app_reverse_lookup, {"reverse", "lookup", "", "[]", NULL}, 0, "Lookup the phone number and name of a given subscriber"}, {app_monitor_cli,{"monitor",NULL},0, "Interactive servald monitor interface."}, {app_crypt_test,{"crypt","test",NULL},0, "Run cryptography speed test"}, #ifdef HAVE_VOIPTEST {app_pa_phone,{"phone",NULL},0, "Run phone test application"}, #endif {NULL,{NULL}} };