freeDiameter: libfdcore/p

annotate libfdcore/p_ce.c @ 882:ae96ae28f3dd 1.1.5

Limit python version to avoid using python3 (not compatible)

author	Sebastien Decugis <sdecugis@freediameter.net>
date	Sat, 03 Nov 2012 18:45:41 +0100
parents	1d2721778c7a
children	6072619402a3

rev	line source
35 6486e97f56ae Added test for modified message parsing Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	1 /*********************************************************************************************************
6486e97f56ae Added test for modified message parsing Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	2 * Software License Agreement (BSD License) *
740 4a9f08d6b6ba Updated my mail address Sebastien Decugis <sdecugis@nict.go.jp> parents: 738 diff changeset	3 * Author: Sebastien Decugis <sdecugis@freediameter.net> *
35 6486e97f56ae Added test for modified message parsing Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	4 * *
837 1d2721778c7a Updated copyright information Sebastien Decugis <sdecugis@freediameter.net> parents: 827 diff changeset	5 * Copyright (c) 2012, WIDE Project and NICT *
35 6486e97f56ae Added test for modified message parsing Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	6 * All rights reserved. *
6486e97f56ae Added test for modified message parsing Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	7 * *
6486e97f56ae Added test for modified message parsing Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	8 * Redistribution and use of this software in source and binary forms, with or without modification, are *
6486e97f56ae Added test for modified message parsing Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	9 * permitted provided that the following conditions are met: *
6486e97f56ae Added test for modified message parsing Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	10 * *
6486e97f56ae Added test for modified message parsing Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	11 * * Redistributions of source code must retain the above *
6486e97f56ae Added test for modified message parsing Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	12 * copyright notice, this list of conditions and the *
6486e97f56ae Added test for modified message parsing Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	13 * following disclaimer. *
6486e97f56ae Added test for modified message parsing Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	14 * *
6486e97f56ae Added test for modified message parsing Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	15 * * Redistributions in binary form must reproduce the above *
6486e97f56ae Added test for modified message parsing Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	16 * copyright notice, this list of conditions and the *
6486e97f56ae Added test for modified message parsing Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	17 * following disclaimer in the documentation and/or other *
6486e97f56ae Added test for modified message parsing Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	18 * materials provided with the distribution. *
6486e97f56ae Added test for modified message parsing Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	19 * *
6486e97f56ae Added test for modified message parsing Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	20 * * Neither the name of the WIDE Project or NICT nor the *
6486e97f56ae Added test for modified message parsing Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	21 * names of its contributors may be used to endorse or *
6486e97f56ae Added test for modified message parsing Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	22 * promote products derived from this software without *
6486e97f56ae Added test for modified message parsing Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	23 * specific prior written permission of WIDE Project and *
6486e97f56ae Added test for modified message parsing Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	24 * NICT. *
6486e97f56ae Added test for modified message parsing Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	25 * *
6486e97f56ae Added test for modified message parsing Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	26 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED *
6486e97f56ae Added test for modified message parsing Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	27 * WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A *
6486e97f56ae Added test for modified message parsing Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	28 * PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR *
6486e97f56ae Added test for modified message parsing Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	29 * ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT *
6486e97f56ae Added test for modified message parsing Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	30 * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS *
6486e97f56ae Added test for modified message parsing Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	31 * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR *
6486e97f56ae Added test for modified message parsing Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	32 * TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF *
6486e97f56ae Added test for modified message parsing Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	33 * ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. *
6486e97f56ae Added test for modified message parsing Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	34 *********************************************************************************************************/
6486e97f56ae Added test for modified message parsing Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	35
658 f198d16fa7f4 Initial commit for 1.1.0: Sebastien Decugis <sdecugis@nict.go.jp> parents: 454 diff changeset	36 #include "fdcore-internal.h"
35 6486e97f56ae Added test for modified message parsing Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	37
40 7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	38 /* This file contains code to handle Capabilities Exchange messages (CER and CEA) and election process */
35 6486e97f56ae Added test for modified message parsing Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	39
40 7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	40 /* Save a connection as peer's principal */
7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	41 static int set_peer_cnx(struct fd_peer * peer, struct cnxctx **cnx)
35 6486e97f56ae Added test for modified message parsing Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	42 {
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	43 CHECK_PARAMS( peer->p_cnxctx == NULL );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	44
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	45 /* Save the connection in peer */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	46 peer->p_cnxctx = *cnx;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	47 *cnx = NULL;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	48
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	49 /* Set the events to be sent to the PSM */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	50 CHECK_FCT( fd_cnx_recv_setaltfifo(peer->p_cnxctx, peer->p_events) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	51
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	52 /* Read the credentials if possible */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	53 if (fd_cnx_getTLS(peer->p_cnxctx)) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	54 CHECK_FCT( fd_cnx_getcred(peer->p_cnxctx, &peer->p_hdr.info.runtime.pir_cert_list, &peer->p_hdr.info.runtime.pir_cert_list_size) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	55 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	56
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	57 /* Read the endpoints, maybe used to reconnect to the peer later */
378 41e3c2a3721c Replaced old mechanism to discover local addresses by a call to getifaddrs, lot cleaner! Sebastien Decugis <sdecugis@nict.go.jp> parents: 332 diff changeset	58 CHECK_FCT( fd_cnx_getremoteeps(peer->p_cnxctx, &peer->p_hdr.info.pi_endpoints) );
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	59
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	60 /* Read the protocol */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	61 peer->p_hdr.info.runtime.pir_proto = fd_cnx_getproto(peer->p_cnxctx);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	62
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	63 return 0;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	64 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	65
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	66 /* Delete the peer connection, and cleanup associated information */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	67 void fd_p_ce_clear_cnx(struct fd_peer * peer, struct cnxctx ** cnx_kept)
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	68 {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	69 peer->p_hdr.info.runtime.pir_cert_list = NULL;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	70 peer->p_hdr.info.runtime.pir_cert_list_size = 0;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	71 peer->p_hdr.info.runtime.pir_proto = 0;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	72
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	73 if (peer->p_cnxctx) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	74 if (cnx_kept != NULL) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	75 *cnx_kept = peer->p_cnxctx;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	76 } else {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	77 fd_cnx_destroy(peer->p_cnxctx);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	78 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	79 peer->p_cnxctx = NULL;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	80 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	81 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	82
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	83 /* Election: compare the Diameter Ids by lexical order, return true if the election is won */
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	84 static __inline__ int election_result(struct fd_peer * peer)
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	85 {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	86 int ret = (strcasecmp(peer->p_hdr.info.pi_diamid, fd_g_config->cnf_diamid) < 0);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	87 if (ret) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	88 TRACE_DEBUG(INFO, "Election WON against peer '%s'", peer->p_hdr.info.pi_diamid);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	89 } else {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	90 TRACE_DEBUG(INFO, "Election LOST against peer '%s'", peer->p_hdr.info.pi_diamid);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	91 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	92 return ret;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	93 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	94
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	95 /* Add AVPs about local information in a CER or CEA */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	96 static int add_CE_info(struct msg msg, struct cnxctx cnx, int isi_tls, int isi_none)
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	97 {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	98 struct dict_object * dictobj = NULL;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	99 struct avp * avp = NULL;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	100 union avp_value val;
378 41e3c2a3721c Replaced old mechanism to discover local addresses by a call to getifaddrs, lot cleaner! Sebastien Decugis <sdecugis@nict.go.jp> parents: 332 diff changeset	101 struct fd_list *li;
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	102
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	103 /* Add the Origin-* AVPs */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	104 CHECK_FCT( fd_msg_add_origin ( msg, 1 ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	105
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	106 /* Find the model for Host-IP-Address AVP */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	107 CHECK_FCT( fd_dict_search( fd_g_config->cnf_dict, DICT_AVP, AVP_BY_NAME, "Host-IP-Address", &dictobj, ENOENT ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	108
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	109 /* Add the AVP(s) -- not sure what is the purpose... We could probably only add the primary one ? */
378 41e3c2a3721c Replaced old mechanism to discover local addresses by a call to getifaddrs, lot cleaner! Sebastien Decugis <sdecugis@nict.go.jp> parents: 332 diff changeset	110 for (li = fd_g_config->cnf_endpoints.next; li != &fd_g_config->cnf_endpoints; li = li->next) {
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	111 struct fd_endpoint * ep = (struct fd_endpoint *)li;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	112
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	113 CHECK_FCT( fd_msg_avp_new ( dictobj, 0, &avp ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	114 CHECK_FCT( fd_msg_avp_value_encode ( &ep->ss, avp ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	115 CHECK_FCT( fd_msg_avp_add( msg, MSG_BRW_LAST_CHILD, avp ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	116 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	117
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	118 /* Vendor-Id, Product-Name, and Firmware-Revision AVPs */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	119 CHECK_FCT( fd_dict_search( fd_g_config->cnf_dict, DICT_AVP, AVP_BY_NAME, "Vendor-Id", &dictobj, ENOENT ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	120 CHECK_FCT( fd_msg_avp_new ( dictobj, 0, &avp ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	121 val.u32 = MY_VENDOR_ID;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	122 CHECK_FCT( fd_msg_avp_setvalue( avp, &val ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	123 CHECK_FCT( fd_msg_avp_add( msg, MSG_BRW_LAST_CHILD, avp ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	124
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	125 CHECK_FCT( fd_dict_search( fd_g_config->cnf_dict, DICT_AVP, AVP_BY_NAME, "Product-Name", &dictobj, ENOENT ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	126 CHECK_FCT( fd_msg_avp_new ( dictobj, 0, &avp ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	127 val.os.data = (unsigned char *)FD_PROJECT_NAME;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	128 val.os.len = strlen(FD_PROJECT_NAME);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	129 CHECK_FCT( fd_msg_avp_setvalue( avp, &val ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	130 CHECK_FCT( fd_msg_avp_add( msg, MSG_BRW_LAST_CHILD, avp ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	131
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	132 CHECK_FCT( fd_dict_search( fd_g_config->cnf_dict, DICT_AVP, AVP_BY_NAME, "Firmware-Revision", &dictobj, ENOENT ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	133 CHECK_FCT( fd_msg_avp_new ( dictobj, 0, &avp ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	134 val.u32 = (uint32_t)(FD_PROJECT_VERSION_MAJOR * 10000 + FD_PROJECT_VERSION_MINOR * 100 + FD_PROJECT_VERSION_REV);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	135 CHECK_FCT( fd_msg_avp_setvalue( avp, &val ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	136 CHECK_FCT( fd_msg_avp_add( msg, MSG_BRW_LAST_CHILD, avp ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	137
35 6486e97f56ae Added test for modified message parsing Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	138
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	139 /* Add the Inband-Security-Id AVP if needed */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	140 if (isi_tls \|\| isi_none) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	141 CHECK_FCT( fd_dict_search( fd_g_config->cnf_dict, DICT_AVP, AVP_BY_NAME, "Inband-Security-Id", &dictobj, ENOENT ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	142
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	143 if (isi_none) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	144 CHECK_FCT( fd_msg_avp_new ( dictobj, 0, &avp ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	145 val.u32 = ACV_ISI_NO_INBAND_SECURITY;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	146 CHECK_FCT( fd_msg_avp_setvalue( avp, &val ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	147 CHECK_FCT( fd_msg_avp_add( msg, MSG_BRW_LAST_CHILD, avp ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	148 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	149
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	150 if (isi_tls) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	151 CHECK_FCT( fd_msg_avp_new ( dictobj, 0, &avp ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	152 val.u32 = ACV_ISI_TLS;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	153 CHECK_FCT( fd_msg_avp_setvalue( avp, &val ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	154 CHECK_FCT( fd_msg_avp_add( msg, MSG_BRW_LAST_CHILD, avp ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	155 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	156 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	157
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	158 /* List of local applications */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	159 {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	160 struct dict_object * dictobj_auth = NULL;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	161 struct dict_object * dictobj_acct = NULL;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	162 struct dict_object * dictobj_vid = NULL;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	163
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	164 CHECK_FCT( fd_dict_search( fd_g_config->cnf_dict, DICT_AVP, AVP_BY_NAME, "Vendor-Specific-Application-Id", &dictobj, ENOENT ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	165 CHECK_FCT( fd_dict_search( fd_g_config->cnf_dict, DICT_AVP, AVP_BY_NAME, "Vendor-Id", &dictobj_vid, ENOENT ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	166 CHECK_FCT( fd_dict_search( fd_g_config->cnf_dict, DICT_AVP, AVP_BY_NAME, "Auth-Application-Id", &dictobj_auth, ENOENT ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	167 CHECK_FCT( fd_dict_search( fd_g_config->cnf_dict, DICT_AVP, AVP_BY_NAME, "Acct-Application-Id", &dictobj_acct, ENOENT ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	168
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	169 for (li = fd_g_config->cnf_apps.next; li != &fd_g_config->cnf_apps; li = li->next) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	170 struct fd_app * a = (struct fd_app *)(li);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	171
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	172 if (a->flags.auth) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	173 CHECK_FCT( fd_msg_avp_new ( dictobj_auth, 0, &avp ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	174 val.u32 = a->appid;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	175 CHECK_FCT( fd_msg_avp_setvalue( avp, &val ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	176 if (a->vndid != 0) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	177 struct avp * avp2 = NULL;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	178 CHECK_FCT( fd_msg_avp_new ( dictobj, 0, &avp2 ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	179 CHECK_FCT( fd_msg_avp_add( avp2, MSG_BRW_LAST_CHILD, avp ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	180 avp = avp2;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	181 CHECK_FCT( fd_msg_avp_new ( dictobj_vid, 0, &avp2 ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	182 val.u32 = a->vndid;
110 0e21b85edf85 Fix buggy CE info function for vendor-specific application id Sebastien Decugis <sdecugis@nict.go.jp> parents: 105 diff changeset	183 CHECK_FCT( fd_msg_avp_setvalue( avp2, &val ) );
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	184 CHECK_FCT( fd_msg_avp_add( avp, MSG_BRW_LAST_CHILD, avp2 ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	185 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	186 CHECK_FCT( fd_msg_avp_add( msg, MSG_BRW_LAST_CHILD, avp ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	187 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	188 if (a->flags.acct) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	189 CHECK_FCT( fd_msg_avp_new ( dictobj_acct, 0, &avp ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	190 val.u32 = a->appid;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	191 CHECK_FCT( fd_msg_avp_setvalue( avp, &val ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	192 if (a->vndid != 0) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	193 struct avp * avp2 = NULL;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	194 CHECK_FCT( fd_msg_avp_new ( dictobj, 0, &avp2 ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	195 CHECK_FCT( fd_msg_avp_add( avp2, MSG_BRW_LAST_CHILD, avp ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	196 avp = avp2;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	197 CHECK_FCT( fd_msg_avp_new ( dictobj_vid, 0, &avp2 ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	198 val.u32 = a->vndid;
110 0e21b85edf85 Fix buggy CE info function for vendor-specific application id Sebastien Decugis <sdecugis@nict.go.jp> parents: 105 diff changeset	199 CHECK_FCT( fd_msg_avp_setvalue( avp2, &val ) );
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	200 CHECK_FCT( fd_msg_avp_add( avp, MSG_BRW_LAST_CHILD, avp2 ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	201 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	202 CHECK_FCT( fd_msg_avp_add( msg, MSG_BRW_LAST_CHILD, avp ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	203 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	204 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	205
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	206 /* do not forget the relay application */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	207 if (! fd_g_config->cnf_flags.no_fwd) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	208 CHECK_FCT( fd_msg_avp_new ( dictobj_auth, 0, &avp ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	209 val.u32 = AI_RELAY;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	210 CHECK_FCT( fd_msg_avp_setvalue( avp, &val ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	211 CHECK_FCT( fd_msg_avp_add( msg, MSG_BRW_LAST_CHILD, avp ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	212 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	213 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	214
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	215 /* Add the list of supported vendors */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	216 {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	217 uint32_t * array = fd_dict_get_vendorid_list(fd_g_config->cnf_dict);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	218 if (array) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	219 int i = 0;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	220 CHECK_FCT( fd_dict_search( fd_g_config->cnf_dict, DICT_AVP, AVP_BY_NAME, "Supported-Vendor-Id", &dictobj, ENOENT ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	221
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	222 while (array[i] != 0) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	223 CHECK_FCT( fd_msg_avp_new ( dictobj, 0, &avp ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	224 val.u32 = array[i];
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	225 CHECK_FCT( fd_msg_avp_setvalue( avp, &val ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	226 CHECK_FCT( fd_msg_avp_add( msg, MSG_BRW_LAST_CHILD, avp ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	227 i++;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	228 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	229
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	230 free(array);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	231 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	232 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	233
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	234 return 0;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	235 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	236
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	237 /* Remove any information saved from a previous CER/CEA exchange */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	238 static void cleanup_remote_CE_info(struct fd_peer * peer)
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	239 {
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	240 /* free linked information */
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	241 free(peer->p_hdr.info.runtime.pir_realm);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	242 free(peer->p_hdr.info.runtime.pir_prodname);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	243 while (!FD_IS_LIST_EMPTY(&peer->p_hdr.info.runtime.pir_apps)) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	244 struct fd_list * li = peer->p_hdr.info.runtime.pir_apps.next;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	245 fd_list_unlink(li);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	246 free(li);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	247 }
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	248 /* note: pir_cert_list needs not be freed (belongs to gnutls) */
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	249
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	250 /* cleanup the area */
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	251 memset(&peer->p_hdr.info.runtime, 0, sizeof(peer->p_hdr.info.runtime));
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	252
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	253 /* reinit the list */
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	254 fd_list_init(&peer->p_hdr.info.runtime.pir_apps, peer);
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	255
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	256 /* Remove previously advertised endpoints */
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	257 fd_ep_clearflags( &peer->p_hdr.info.pi_endpoints, EP_FL_ADV );
35 6486e97f56ae Added test for modified message parsing Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	258 }
36 1498b3c7304c Backup Sebastien Decugis <sdecugis@nict.go.jp> parents: 35 diff changeset	259
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	260 /* Extract information sent by the remote peer and save it in our peer structure */
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	261 static int save_remote_CE_info(struct msg * msg, struct fd_peer * peer, struct fd_pei * error, uint32_t *rc)
40 7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	262 {
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	263 struct avp * avp = NULL;
40 7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	264
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	265 cleanup_remote_CE_info(peer);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	266
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	267 CHECK_FCT( fd_msg_browse( msg, MSG_BRW_FIRST_CHILD, &avp, NULL) );
40 7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	268
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	269 /* Loop on all AVPs and save what we are interrested into */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	270 while (avp) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	271 struct avp_hdr * hdr;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	272
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	273 CHECK_FCT( fd_msg_avp_hdr( avp, &hdr ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	274
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	275 if (hdr->avp_flags & AVP_FLAG_VENDOR) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	276 /* Ignore all vendor-specific AVPs in CER/CEA because we don't support any currently */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	277 TRACE_DEBUG(FULL, "Ignored a vendor AVP in CER / CEA");
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	278 fd_msg_dump_one(FULL, avp);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	279 goto next;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	280 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	281
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	282 switch (hdr->avp_code) {
130 a16504d20ed1 Handle CEA with error result codes Sebastien Decugis <sdecugis@nict.go.jp> parents: 129 diff changeset	283 case AC_RESULT_CODE: /* Result-Code */
a16504d20ed1 Handle CEA with error result codes Sebastien Decugis <sdecugis@nict.go.jp> parents: 129 diff changeset	284 if (hdr->avp_value == NULL) {
a16504d20ed1 Handle CEA with error result codes Sebastien Decugis <sdecugis@nict.go.jp> parents: 129 diff changeset	285 /* This is a sanity check */
a16504d20ed1 Handle CEA with error result codes Sebastien Decugis <sdecugis@nict.go.jp> parents: 129 diff changeset	286 TRACE_DEBUG(NONE, "Ignored an AVP with unset value in CER/CEA");
a16504d20ed1 Handle CEA with error result codes Sebastien Decugis <sdecugis@nict.go.jp> parents: 129 diff changeset	287 fd_msg_dump_one(NONE, avp);
a16504d20ed1 Handle CEA with error result codes Sebastien Decugis <sdecugis@nict.go.jp> parents: 129 diff changeset	288 ASSERT(0); /* To check if this really happens, and understand why... */
a16504d20ed1 Handle CEA with error result codes Sebastien Decugis <sdecugis@nict.go.jp> parents: 129 diff changeset	289 goto next;
a16504d20ed1 Handle CEA with error result codes Sebastien Decugis <sdecugis@nict.go.jp> parents: 129 diff changeset	290 }
a16504d20ed1 Handle CEA with error result codes Sebastien Decugis <sdecugis@nict.go.jp> parents: 129 diff changeset	291
131 50d1dc19b221 Hopefully removed infinite loop Sebastien Decugis <sdecugis@nict.go.jp> parents: 130 diff changeset	292 if (rc)
50d1dc19b221 Hopefully removed infinite loop Sebastien Decugis <sdecugis@nict.go.jp> parents: 130 diff changeset	293 *rc = hdr->avp_value->u32;
130 a16504d20ed1 Handle CEA with error result codes Sebastien Decugis <sdecugis@nict.go.jp> parents: 129 diff changeset	294 break;
a16504d20ed1 Handle CEA with error result codes Sebastien Decugis <sdecugis@nict.go.jp> parents: 129 diff changeset	295
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	296 case AC_ORIGIN_HOST: /* Origin-Host */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	297 if (hdr->avp_value == NULL) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	298 /* This is a sanity check */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	299 TRACE_DEBUG(NONE, "Ignored an AVP with unset value in CER/CEA");
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	300 fd_msg_dump_one(NONE, avp);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	301 ASSERT(0); /* To check if this really happens, and understand why... */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	302 goto next;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	303 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	304
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	305 /* We check that the value matches what we know, otherwise disconnect the peer */
738 d666051658bd Fix broken 'almostcasecmp' logic Sebastien Decugis <sdecugis@nict.go.jp> parents: 725 diff changeset	306 if (fd_os_almostcasesrch(hdr->avp_value->os.data, hdr->avp_value->os.len,
d666051658bd Fix broken 'almostcasecmp' logic Sebastien Decugis <sdecugis@nict.go.jp> parents: 725 diff changeset	307 peer->p_hdr.info.pi_diamid, peer->p_hdr.info.pi_diamidlen, NULL)) {
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	308 TRACE_DEBUG(INFO, "Received a message with Origin-Host set to '%.*s' while expecting '%s'\n",
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	309 hdr->avp_value->os.len, hdr->avp_value->os.data, peer->p_hdr.info.pi_diamid);
827 a8ed055a9253 Fix name of the constant errors used for rescode Sebastien Decugis <sdecugis@freediameter.net> parents: 740 diff changeset	310 error->pei_errcode = "DIAMETER_AVP_NOT_ALLOWED";
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	311 error->pei_message = "Your Origin-Host value does not match my configuration.";
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	312 error->pei_avp = avp;
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	313 return EINVAL;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	314 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	315
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	316 break;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	317
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	318 case AC_ORIGIN_REALM: /* Origin-Realm */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	319 if (hdr->avp_value == NULL) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	320 /* This is a sanity check */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	321 TRACE_DEBUG(NONE, "Ignored an AVP with unset value in CER/CEA");
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	322 fd_msg_dump_one(NONE, avp);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	323 ASSERT(0); /* To check if this really happens, and understand why... */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	324 goto next;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	325 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	326
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	327 /* In case of multiple AVPs */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	328 if (peer->p_hdr.info.runtime.pir_realm) {
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	329 TRACE_DEBUG(INFO, "Multiple instances of the Origin-Realm AVP");
827 a8ed055a9253 Fix name of the constant errors used for rescode Sebastien Decugis <sdecugis@freediameter.net> parents: 740 diff changeset	330 error->pei_errcode = "DIAMETER_AVP_OCCURS_TOO_MANY_TIMES";
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	331 error->pei_message = "I found several Origin-Realm AVPs";
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	332 error->pei_avp = avp;
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	333 return EINVAL;
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	334 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	335
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	336 /* If the octet string contains a \0 */
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	337 if (!fd_os_is_valid_DiameterIdentity(hdr->avp_value->os.data, hdr->avp_value->os.len)) {
827 a8ed055a9253 Fix name of the constant errors used for rescode Sebastien Decugis <sdecugis@freediameter.net> parents: 740 diff changeset	338 error->pei_errcode = "DIAMETER_INVALID_AVP_VALUE";
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	339 error->pei_message = "Your Origin-Realm contains invalid characters.";
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	340 error->pei_avp = avp;
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	341 return EINVAL;
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	342 }
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	343
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	344 /* Save the value */
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	345 CHECK_MALLOC( peer->p_hdr.info.runtime.pir_realm = os0dup( hdr->avp_value->os.data, hdr->avp_value->os.len ) );
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	346 peer->p_hdr.info.runtime.pir_realmlen = hdr->avp_value->os.len;
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	347 break;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	348
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	349 case AC_HOST_IP_ADDRESS: /* Host-IP-Address */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	350 if (hdr->avp_value == NULL) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	351 /* This is a sanity check */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	352 TRACE_DEBUG(NONE, "Ignored an AVP with unset value in CER/CEA");
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	353 fd_msg_dump_one(NONE, avp);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	354 ASSERT(0); /* To check if this really happens, and understand why... */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	355 goto next;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	356 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	357 {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	358 sSS ss;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	359
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	360 /* Get the sockaddr value */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	361 memset(&ss, 0, sizeof(ss));
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	362 CHECK_FCT_DO( fd_msg_avp_value_interpret( avp, &ss),
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	363 {
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	364 /* in case of error, assume the AVP value was wrong */
827 a8ed055a9253 Fix name of the constant errors used for rescode Sebastien Decugis <sdecugis@freediameter.net> parents: 740 diff changeset	365 error->pei_errcode = "DIAMETER_INVALID_AVP_VALUE";
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	366 error->pei_avp = avp;
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	367 return EINVAL;
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	368 } );
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	369
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	370 /* Save this endpoint in the list as advertized */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	371 CHECK_FCT( fd_ep_add_merge( &peer->p_hdr.info.pi_endpoints, (sSA *)&ss, sizeof(sSS), EP_FL_ADV ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	372 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	373 break;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	374
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	375 case AC_VENDOR_ID: /* Vendor-Id */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	376 if (hdr->avp_value == NULL) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	377 /* This is a sanity check */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	378 TRACE_DEBUG(NONE, "Ignored an AVP with unset value in CER/CEA");
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	379 fd_msg_dump_one(NONE, avp);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	380 ASSERT(0); /* To check if this really happens, and understand why... */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	381 goto next;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	382 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	383
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	384 /* In case of multiple AVPs */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	385 if (peer->p_hdr.info.runtime.pir_vendorid) {
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	386 TRACE_DEBUG(INFO, "Multiple instances of the Vendor-Id AVP");
827 a8ed055a9253 Fix name of the constant errors used for rescode Sebastien Decugis <sdecugis@freediameter.net> parents: 740 diff changeset	387 error->pei_errcode = "DIAMETER_AVP_OCCURS_TOO_MANY_TIMES";
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	388 error->pei_message = "I found several Vendor-Id AVPs";
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	389 error->pei_avp = avp;
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	390 return EINVAL;
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	391 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	392
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	393 peer->p_hdr.info.runtime.pir_vendorid = hdr->avp_value->u32;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	394 break;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	395
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	396 case AC_PRODUCT_NAME: /* Product-Name */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	397 if (hdr->avp_value == NULL) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	398 /* This is a sanity check */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	399 TRACE_DEBUG(NONE, "Ignored an AVP with unset value in CER/CEA");
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	400 fd_msg_dump_one(NONE, avp);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	401 ASSERT(0); /* To check if this really happens, and understand why... */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	402 goto next;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	403 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	404
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	405 /* In case of multiple AVPs */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	406 if (peer->p_hdr.info.runtime.pir_prodname) {
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	407 TRACE_DEBUG(INFO, "Multiple instances of the Product-Name AVP");
827 a8ed055a9253 Fix name of the constant errors used for rescode Sebastien Decugis <sdecugis@freediameter.net> parents: 740 diff changeset	408 error->pei_errcode = "DIAMETER_AVP_OCCURS_TOO_MANY_TIMES";
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	409 error->pei_message = "I found several Product-Name AVPs";
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	410 error->pei_avp = avp;
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	411 return EINVAL;
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	412 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	413
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	414 CHECK_MALLOC( peer->p_hdr.info.runtime.pir_prodname = calloc( hdr->avp_value->os.len + 1, 1 ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	415 memcpy(peer->p_hdr.info.runtime.pir_prodname, hdr->avp_value->os.data, hdr->avp_value->os.len);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	416 break;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	417
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	418 case AC_ORIGIN_STATE_ID: /* Origin-State-Id */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	419 if (hdr->avp_value == NULL) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	420 /* This is a sanity check */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	421 TRACE_DEBUG(NONE, "Ignored an AVP with unset value in CER/CEA");
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	422 fd_msg_dump_one(NONE, avp);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	423 ASSERT(0); /* To check if this really happens, and understand why... */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	424 goto next;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	425 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	426
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	427 /* In case of multiple AVPs */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	428 if (peer->p_hdr.info.runtime.pir_orstate) {
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	429 TRACE_DEBUG(INFO, "Multiple instances of the Origin-State-Id AVP");
827 a8ed055a9253 Fix name of the constant errors used for rescode Sebastien Decugis <sdecugis@freediameter.net> parents: 740 diff changeset	430 error->pei_errcode = "DIAMETER_AVP_OCCURS_TOO_MANY_TIMES";
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	431 error->pei_message = "I found several Origin-State-Id AVPs";
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	432 error->pei_avp = avp;
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	433 return EINVAL;
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	434 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	435
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	436 peer->p_hdr.info.runtime.pir_orstate = hdr->avp_value->u32;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	437 break;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	438
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	439 case AC_SUPPORTED_VENDOR_ID: /* Supported-Vendor-Id */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	440 if (hdr->avp_value == NULL) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	441 /* This is a sanity check */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	442 TRACE_DEBUG(NONE, "Ignored an AVP with unset value in CER/CEA");
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	443 fd_msg_dump_one(NONE, avp);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	444 ASSERT(0); /* To check if this really happens, and understand why... */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	445 goto next;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	446 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	447
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	448 TRACE_DEBUG(FULL, "'%s' claims support for a subset of vendor %d features.", peer->p_hdr.info.pi_diamid, hdr->avp_value->u32);
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	449 /* not that it makes a difference for us...
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	450 -- if an application actually needs this info, we could save it somewhere.
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	451 */
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	452 break;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	453
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	454 case AC_VENDOR_SPECIFIC_APPLICATION_ID: /* Vendor-Specific-Application-Id (grouped)*/
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	455 {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	456 struct avp * inavp = NULL;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	457 application_id_t aid = 0;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	458 vendor_id_t vid = 0;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	459 int auth = 0;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	460 int acct = 0;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	461
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	462 /* get the first child AVP */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	463 CHECK_FCT( fd_msg_browse(avp, MSG_BRW_FIRST_CHILD, &inavp, NULL) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	464
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	465 while (inavp) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	466 struct avp_hdr * inhdr;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	467 CHECK_FCT( fd_msg_avp_hdr( inavp, &inhdr ) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	468
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	469 if (inhdr->avp_flags & AVP_FLAG_VENDOR) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	470 TRACE_DEBUG(FULL, "Ignored a vendor AVP inside Vendor-Specific-Application-Id AVP");
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	471 fd_msg_dump_one(FULL, avp);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	472 goto innext;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	473 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	474
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	475 if (inhdr->avp_value == NULL) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	476 /* This is a sanity check */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	477 TRACE_DEBUG(NONE, "Ignored an AVP with unset value in CER/CEA");
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	478 fd_msg_dump_one(NONE, avp);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	479 ASSERT(0); /* To check if this really happens, and understand why... */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	480 goto innext;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	481 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	482 switch (inhdr->avp_code) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	483 case AC_VENDOR_ID: /* Vendor-Id */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	484 vid = inhdr->avp_value->u32;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	485 break;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	486 case AC_AUTH_APPLICATION_ID: /* Auth-Application-Id */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	487 aid = inhdr->avp_value->u32;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	488 auth += 1;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	489 break;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	490 case AC_ACCT_APPLICATION_ID: /* Acct-Application-Id */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	491 aid = inhdr->avp_value->u32;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	492 acct += 1;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	493 break;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	494 /* ignore other AVPs */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	495 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	496
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	497 innext:
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	498 /* Go to next in AVP */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	499 CHECK_FCT( fd_msg_browse(inavp, MSG_BRW_NEXT, &inavp, NULL) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	500 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	501
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	502 if (auth + acct != 1) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	503 TRACE_DEBUG(FULL, "Invalid Vendor-Specific-Application-Id AVP received, ignored");
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	504 fd_msg_dump_one(FULL, avp);
827 a8ed055a9253 Fix name of the constant errors used for rescode Sebastien Decugis <sdecugis@freediameter.net> parents: 740 diff changeset	505 error->pei_errcode = "DIAMETER_INVALID_AVP_VALUE";
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	506 error->pei_avp = avp;
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	507 return EINVAL;
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	508 } else {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	509 /* Add an entry in the list */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	510 CHECK_FCT( fd_app_merge(&peer->p_hdr.info.runtime.pir_apps, aid, vid, auth, acct) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	511 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	512 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	513 break;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	514
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	515 case AC_AUTH_APPLICATION_ID: /* Auth-Application-Id */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	516 if (hdr->avp_value == NULL) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	517 /* This is a sanity check */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	518 TRACE_DEBUG(NONE, "Ignored an AVP with unset value in CER/CEA");
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	519 fd_msg_dump_one(NONE, avp);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	520 ASSERT(0); /* To check if this really happens, and understand why... */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	521 goto next;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	522 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	523
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	524 if (hdr->avp_value->u32 == AI_RELAY) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	525 peer->p_hdr.info.runtime.pir_relay = 1;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	526 } else {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	527 CHECK_FCT( fd_app_merge(&peer->p_hdr.info.runtime.pir_apps, hdr->avp_value->u32, 0, 1, 0) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	528 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	529 break;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	530
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	531 case AC_ACCT_APPLICATION_ID: /* Acct-Application-Id */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	532 if (hdr->avp_value == NULL) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	533 /* This is a sanity check */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	534 TRACE_DEBUG(NONE, "Ignored an AVP with unset value in CER/CEA");
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	535 fd_msg_dump_one(NONE, avp);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	536 ASSERT(0); /* To check if this really happens, and understand why... */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	537 goto next;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	538 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	539
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	540 if (hdr->avp_value->u32 == AI_RELAY) {
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	541 /* Not clear if the relay application can be inside this AVP... */
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	542 peer->p_hdr.info.runtime.pir_relay = 1;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	543 } else {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	544 CHECK_FCT( fd_app_merge(&peer->p_hdr.info.runtime.pir_apps, hdr->avp_value->u32, 0, 0, 1) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	545 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	546 break;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	547
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	548 case AC_FIRMWARE_REVISION: /* Firmware-Revision */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	549 if (hdr->avp_value == NULL) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	550 /* This is a sanity check */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	551 TRACE_DEBUG(NONE, "Ignored an AVP with unset value in CER/CEA");
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	552 fd_msg_dump_one(NONE, avp);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	553 ASSERT(0); /* To check if this really happens, and understand why... */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	554 goto next;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	555 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	556
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	557 peer->p_hdr.info.runtime.pir_firmrev = hdr->avp_value->u32;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	558 break;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	559
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	560 case AC_INBAND_SECURITY_ID: /* Inband-Security-Id */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	561 if (hdr->avp_value == NULL) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	562 /* This is a sanity check */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	563 TRACE_DEBUG(NONE, "Ignored an AVP with unset value in CER/CEA");
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	564 fd_msg_dump_one(NONE, avp);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	565 ASSERT(0); /* To check if this really happens, and understand why... */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	566 goto next;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	567 }
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	568 if (hdr->avp_value->u32 >= 32 ) {
827 a8ed055a9253 Fix name of the constant errors used for rescode Sebastien Decugis <sdecugis@freediameter.net> parents: 740 diff changeset	569 error->pei_errcode = "DIAMETER_INVALID_AVP_VALUE";
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	570 error->pei_message = "I don't support this Inband-Security-Id value (yet).";
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	571 error->pei_avp = avp;
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	572 return EINVAL;
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	573 }
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	574 peer->p_hdr.info.runtime.pir_isi \|= (1 << hdr->avp_value->u32);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	575 break;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	576 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	577
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	578 next:
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	579 /* Go to next AVP */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	580 CHECK_FCT( fd_msg_browse(avp, MSG_BRW_NEXT, &avp, NULL) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	581 }
40 7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	582
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	583 return 0;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	584 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	585
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	586 /* Create a CER message for sending */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	587 static int create_CER(struct fd_peer * peer, struct cnxctx * cnx, struct msg ** cer)
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	588 {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	589 int isi_tls = 0;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	590 int isi_none = 0;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	591
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	592 /* Find CER dictionary object and create an instance */
66 dcbd5b5ee55c Added handling for DWR/DWA Sebastien Decugis <sdecugis@nict.go.jp> parents: 63 diff changeset	593 CHECK_FCT( fd_msg_new ( fd_dict_cmd_CER, MSGFL_ALLOC_ETEID, cer ) );
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	594
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	595 /* Do we need Inband-Security-Id AVPs ? If we're already using TLS, we don't... */
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	596 if (!fd_cnx_getTLS(cnx)) {
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	597 isi_none = peer->p_hdr.info.config.pic_flags.sec & PI_SEC_NONE; /* we add it even if the peer does not use the old mechanism, it is impossible to distinguish */
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	598 isi_tls = peer->p_hdr.info.config.pic_flags.sec & PI_SEC_TLS_OLD;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	599 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	600
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	601 /* Add the information about the local peer */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	602 CHECK_FCT( add_CE_info(*cer, cnx, isi_tls, isi_none) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	603
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	604 /* Done! */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	605 return 0;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	606 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	607
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	608
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	609 /* Continue with the initiator side */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	610 static int to_waitcea(struct fd_peer * peer, struct cnxctx * cnx)
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	611 {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	612 /* We sent a CER on the connection, set the event queue so that we receive the CEA */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	613 CHECK_FCT( set_peer_cnx(peer, &cnx) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	614
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	615 /* Change state and reset the timer */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	616 CHECK_FCT( fd_psm_change_state(peer, STATE_WAITCEA) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	617 fd_psm_next_timeout(peer, 0, CEA_TIMEOUT);
40 7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	618
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	619 return 0;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	620 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	621
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	622 /* Reject an incoming connection attempt */
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	623 static void receiver_reject(struct cnxctx recv_cnx, struct msg cer, struct fd_pei * error)
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	624 {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	625 /* Create and send the CEA with appropriate error code */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	626 CHECK_FCT_DO( fd_msg_new_answer_from_req ( fd_g_config->cnf_dict, cer, MSGFL_ANSW_ERROR ), goto destroy );
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	627 CHECK_FCT_DO( fd_msg_rescode_set(*cer, error->pei_errcode, error->pei_message, error->pei_avp, 1 ), goto destroy );
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	628 CHECK_FCT_DO( fd_out_send(cer, *recv_cnx, NULL, FD_CNX_ORDERED), goto destroy );
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	629
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	630 /* And now destroy this connection */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	631 destroy:
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	632 fd_cnx_destroy(*recv_cnx);
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	633 *recv_cnx = NULL;
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	634 if (*cer) {
688 8c3dc8584dab Prepared capability for messages logging to separate files / folders Sebastien Decugis <sdecugis@nict.go.jp> parents: 662 diff changeset	635 fd_msg_log(FD_MSG_LOG_DROPPED, *cer, "An error occurred while rejecting a CER.");
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	636 fd_msg_free(*cer);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	637 *cer = NULL;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	638 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	639 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	640
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	641 /* We have established a new connection to the remote peer, send CER and eventually process the election */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	642 int fd_p_ce_handle_newcnx(struct fd_peer * peer, struct cnxctx * initiator)
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	643 {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	644 struct msg * cer = NULL;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	645
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	646 /* Send CER on the new connection */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	647 CHECK_FCT( create_CER(peer, initiator, &cer) );
229 965f5971dc23 Broadcast CEA over all streams to avoid possible race condition Sebastien Decugis <sdecugis@nict.go.jp> parents: 225 diff changeset	648 CHECK_FCT( fd_out_send(&cer, initiator, peer, FD_CNX_ORDERED) );
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	649
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	650 /* Are we doing an election ? */
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	651 if (fd_peer_getstate(peer) == STATE_WAITCNXACK_ELEC) {
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	652 if (election_result(peer)) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	653 /* Close initiator connection */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	654 fd_cnx_destroy(initiator);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	655
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	656 /* Process with the receiver side */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	657 CHECK_FCT( fd_p_ce_process_receiver(peer) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	658
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	659 } else {
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	660 struct fd_pei pei;
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	661 memset(&pei, 0, sizeof(pei));
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	662 pei.pei_errcode = "ELECTION_LOST";
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	663
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	664 /* Answer an ELECTION LOST to the receiver side */
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	665 receiver_reject(&peer->p_receiver, &peer->p_cer, &pei);
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	666 CHECK_FCT( to_waitcea(peer, initiator) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	667 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	668 } else {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	669 /* No election (yet) */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	670 CHECK_FCT( to_waitcea(peer, initiator) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	671 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	672
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	673 return 0;
40 7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	674 }
7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	675
7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	676 /* We have received a Capabilities Exchange message on the peer connection */
7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	677 int fd_p_ce_msgrcv(struct msg ** msg, int req, struct fd_peer * peer)
7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	678 {
131 50d1dc19b221 Hopefully removed infinite loop Sebastien Decugis <sdecugis@nict.go.jp> parents: 130 diff changeset	679 uint32_t rc = 0;
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	680 int st;
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	681 struct fd_pei pei;
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	682
40 7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	683 TRACE_ENTRY("%p %p", msg, peer);
7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	684 CHECK_PARAMS( msg && *msg && CHECK_PEER(peer) );
7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	685
130 a16504d20ed1 Handle CEA with error result codes Sebastien Decugis <sdecugis@nict.go.jp> parents: 129 diff changeset	686 /* The only valid situation where we are called is in WAITCEA and we receive a CEA (we may have won an election) */
40 7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	687
7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	688 /* Note : to implement Capabilities Update, we would need to change here */
7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	689
7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	690 /* If it is a CER, just reply an error */
7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	691 if (req) {
7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	692 /* Create the error message */
7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	693 CHECK_FCT( fd_msg_new_answer_from_req ( fd_g_config->cnf_dict, msg, MSGFL_ANSW_ERROR ) );
7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	694
7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	695 /* Set the error code */
827 a8ed055a9253 Fix name of the constant errors used for rescode Sebastien Decugis <sdecugis@freediameter.net> parents: 740 diff changeset	696 CHECK_FCT( fd_msg_rescode_set(*msg, "DIAMETER_UNABLE_TO_COMPLY", "No CER allowed in current state", NULL, 1 ) );
40 7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	697
7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	698 /* msg now contains an answer message to send back */
229 965f5971dc23 Broadcast CEA over all streams to avoid possible race condition Sebastien Decugis <sdecugis@nict.go.jp> parents: 225 diff changeset	699 CHECK_FCT_DO( fd_out_send(msg, NULL, peer, FD_CNX_ORDERED), /* In case of error the message has already been dumped */ );
40 7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	700 }
7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	701
7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	702 /* If the state is not WAITCEA, just discard the message */
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	703 if (req \|\| ((st = fd_peer_getstate(peer)) != STATE_WAITCEA)) {
40 7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	704 if (*msg) {
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	705 fd_msg_log( FD_MSG_LOG_DROPPED, *msg, "Received CER/CEA while in '%s' state.\n", STATE_STR(st));
40 7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	706 CHECK_FCT_DO( fd_msg_free(msg), / continue */);
7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	707 *msg = NULL;
7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	708 }
7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	709
7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	710 return 0;
7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	711 }
7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	712
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	713 memset(&pei, 0, sizeof(pei));
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	714
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	715 /* Save info from the CEA into the peer */
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	716 CHECK_FCT_DO( save_remote_CE_info(*msg, peer, &pei, &rc), goto cleanup );
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	717
62 a57a7133fe89 Dispose sent CEA Sebastien Decugis <sdecugis@nict.go.jp> parents: 56 diff changeset	718 /* Dispose of the message, we don't need it anymore */
63 56dd4efdf6e8 Fix compilation error Sebastien Decugis <sdecugis@nict.go.jp> parents: 62 diff changeset	719 CHECK_FCT_DO( fd_msg_free(msg), / continue */ );
62 a57a7133fe89 Dispose sent CEA Sebastien Decugis <sdecugis@nict.go.jp> parents: 56 diff changeset	720 *msg = NULL;
a57a7133fe89 Dispose sent CEA Sebastien Decugis <sdecugis@nict.go.jp> parents: 56 diff changeset	721
131 50d1dc19b221 Hopefully removed infinite loop Sebastien Decugis <sdecugis@nict.go.jp> parents: 130 diff changeset	722 /* Check the Result-Code */
50d1dc19b221 Hopefully removed infinite loop Sebastien Decugis <sdecugis@nict.go.jp> parents: 130 diff changeset	723 switch (rc) {
50d1dc19b221 Hopefully removed infinite loop Sebastien Decugis <sdecugis@nict.go.jp> parents: 130 diff changeset	724 case ER_DIAMETER_SUCCESS:
50d1dc19b221 Hopefully removed infinite loop Sebastien Decugis <sdecugis@nict.go.jp> parents: 130 diff changeset	725 /* No problem, we can continue */
50d1dc19b221 Hopefully removed infinite loop Sebastien Decugis <sdecugis@nict.go.jp> parents: 130 diff changeset	726 break;
50d1dc19b221 Hopefully removed infinite loop Sebastien Decugis <sdecugis@nict.go.jp> parents: 130 diff changeset	727
50d1dc19b221 Hopefully removed infinite loop Sebastien Decugis <sdecugis@nict.go.jp> parents: 130 diff changeset	728 case ER_DIAMETER_TOO_BUSY:
50d1dc19b221 Hopefully removed infinite loop Sebastien Decugis <sdecugis@nict.go.jp> parents: 130 diff changeset	729 /* Retry later */
50d1dc19b221 Hopefully removed infinite loop Sebastien Decugis <sdecugis@nict.go.jp> parents: 130 diff changeset	730 TRACE_DEBUG(INFO, "Peer %s replied a CEA with Result-Code AVP DIAMETER_TOO_BUSY, will retry later.", peer->p_hdr.info.pi_diamid);
50d1dc19b221 Hopefully removed infinite loop Sebastien Decugis <sdecugis@nict.go.jp> parents: 130 diff changeset	731 fd_psm_cleanup(peer, 0);
50d1dc19b221 Hopefully removed infinite loop Sebastien Decugis <sdecugis@nict.go.jp> parents: 130 diff changeset	732 fd_psm_next_timeout(peer, 0, 300);
50d1dc19b221 Hopefully removed infinite loop Sebastien Decugis <sdecugis@nict.go.jp> parents: 130 diff changeset	733 return 0;
50d1dc19b221 Hopefully removed infinite loop Sebastien Decugis <sdecugis@nict.go.jp> parents: 130 diff changeset	734
50d1dc19b221 Hopefully removed infinite loop Sebastien Decugis <sdecugis@nict.go.jp> parents: 130 diff changeset	735 case ER_ELECTION_LOST:
50d1dc19b221 Hopefully removed infinite loop Sebastien Decugis <sdecugis@nict.go.jp> parents: 130 diff changeset	736 /* Ok, just wait for a little while for the CER to be processed on the other connection. */
50d1dc19b221 Hopefully removed infinite loop Sebastien Decugis <sdecugis@nict.go.jp> parents: 130 diff changeset	737 TRACE_DEBUG(FULL, "Peer %s replied a CEA with Result-Code AVP ELECTION_LOST, waiting for events.", peer->p_hdr.info.pi_diamid);
50d1dc19b221 Hopefully removed infinite loop Sebastien Decugis <sdecugis@nict.go.jp> parents: 130 diff changeset	738 return 0;
50d1dc19b221 Hopefully removed infinite loop Sebastien Decugis <sdecugis@nict.go.jp> parents: 130 diff changeset	739
50d1dc19b221 Hopefully removed infinite loop Sebastien Decugis <sdecugis@nict.go.jp> parents: 130 diff changeset	740 default:
50d1dc19b221 Hopefully removed infinite loop Sebastien Decugis <sdecugis@nict.go.jp> parents: 130 diff changeset	741 /* In any other case, we abort all attempts to connect to this peer */
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	742 TRACE_DEBUG(INFO, "Peer %s replied a CEA with Result-Code %d, aborting connection attempts.", peer->p_hdr.info.pi_diamid, rc);
131 50d1dc19b221 Hopefully removed infinite loop Sebastien Decugis <sdecugis@nict.go.jp> parents: 130 diff changeset	743 return EINVAL;
50d1dc19b221 Hopefully removed infinite loop Sebastien Decugis <sdecugis@nict.go.jp> parents: 130 diff changeset	744 }
50d1dc19b221 Hopefully removed infinite loop Sebastien Decugis <sdecugis@nict.go.jp> parents: 130 diff changeset	745
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	746 /* Handshake if needed, start clear otherwise */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	747 if ( ! fd_cnx_getTLS(peer->p_cnxctx) ) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	748 int todo = peer->p_hdr.info.config.pic_flags.sec & peer->p_hdr.info.runtime.pir_isi ;
267 51d224448024 Workaround to allow interop with (bad) opendiameter Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	749 /* Special case: if the peer did not send a ISI AVP */
51d224448024 Workaround to allow interop with (bad) opendiameter Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	750 if (peer->p_hdr.info.runtime.pir_isi == 0)
51d224448024 Workaround to allow interop with (bad) opendiameter Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	751 todo = peer->p_hdr.info.config.pic_flags.sec;
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	752
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	753 if (todo == PI_SEC_NONE) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	754 /* Ok for clear connection */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	755 TRACE_DEBUG(INFO, "No TLS protection negotiated with peer '%s'.", peer->p_hdr.info.pi_diamid);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	756 CHECK_FCT( fd_cnx_start_clear(peer->p_cnxctx, 1) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	757 } else {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	758
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	759 fd_psm_change_state(peer, STATE_OPEN_HANDSHAKE);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	760 CHECK_FCT_DO( fd_cnx_handshake(peer->p_cnxctx, GNUTLS_CLIENT, peer->p_hdr.info.config.pic_priority, NULL),
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	761 {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	762 /* Handshake failed ... */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	763 fd_log_debug("TLS Handshake failed with peer '%s', resetting the connection\n", peer->p_hdr.info.pi_diamid);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	764 goto cleanup;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	765 } );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	766
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	767 /* Retrieve the credentials */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	768 CHECK_FCT( fd_cnx_getcred(peer->p_cnxctx, &peer->p_hdr.info.runtime.pir_cert_list, &peer->p_hdr.info.runtime.pir_cert_list_size) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	769 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	770 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	771
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	772 /* Move to next state */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	773 if (peer->p_flags.pf_cnx_pb) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	774 fd_psm_change_state(peer, STATE_REOPEN );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	775 CHECK_FCT( fd_p_dw_reopen(peer) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	776 } else {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	777 fd_psm_change_state(peer, STATE_OPEN );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	778 fd_psm_next_timeout(peer, 1, peer->p_hdr.info.config.pic_twtimer ?: fd_g_config->cnf_timer_tw);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	779 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	780
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	781 return 0;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	782
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	783 cleanup:
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	784 fd_p_ce_clear_cnx(peer, NULL);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	785
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	786 /* Send the error to the peer */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	787 CHECK_FCT( fd_event_send(peer->p_events, FDEVP_CNX_ERROR, 0, NULL) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	788
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	789 return 0;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	790 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	791
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	792 /* Handle the receiver side to go to OPEN or OPEN_NEW state (any election is resolved) */
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	793 int fd_p_ce_process_receiver(struct fd_peer * peer)
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	794 {
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	795 struct fd_pei pei;
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	796 struct msg * msg = NULL;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	797 int isi = 0;
105 0d9c9e004be0 Compute common applications after CER reception Sebastien Decugis <sdecugis@nict.go.jp> parents: 87 diff changeset	798 int fatal = 0;
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	799 int tls_sync=0;
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	800
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	801 TRACE_ENTRY("%p", peer);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	802
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	803 CHECK_FCT( set_peer_cnx(peer, &peer->p_receiver) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	804 msg = peer->p_cer;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	805 peer->p_cer = NULL;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	806
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	807 memset(&pei, 0, sizeof(pei));
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	808
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	809 /* Parse the content of the received CER */
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	810 CHECK_FCT_DO( save_remote_CE_info(msg, peer, &pei, NULL), goto error_abort );
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	811
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	812 /* Validate the realm if needed */
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	813 if (peer->p_hdr.info.config.pic_realm) {
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	814 size_t len = strlen(peer->p_hdr.info.config.pic_realm);
738 d666051658bd Fix broken 'almostcasecmp' logic Sebastien Decugis <sdecugis@nict.go.jp> parents: 725 diff changeset	815 if (fd_os_almostcasesrch(peer->p_hdr.info.config.pic_realm, len, peer->p_hdr.info.runtime.pir_realm, peer->p_hdr.info.runtime.pir_realmlen, NULL)) {
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	816 TRACE_DEBUG(INFO, "Rejected CER from peer '%s', realm mismatch with configured value (returning DIAMETER_UNKNOWN_PEER).\n", peer->p_hdr.info.pi_diamid);
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	817 pei.pei_errcode = "DIAMETER_UNKNOWN_PEER"; /* maybe AVP_NOT_ALLOWED would be better fit? */
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	818 goto error_abort;
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	819 }
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	820 }
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	821
725 8b03c672261f Fix a small bug in peers validation process Sebastien Decugis <sdecugis@nict.go.jp> parents: 706 diff changeset	822 /* Save the credentials if handshake already occurred */
8b03c672261f Fix a small bug in peers validation process Sebastien Decugis <sdecugis@nict.go.jp> parents: 706 diff changeset	823 if ( fd_cnx_getTLS(peer->p_cnxctx) ) {
8b03c672261f Fix a small bug in peers validation process Sebastien Decugis <sdecugis@nict.go.jp> parents: 706 diff changeset	824 CHECK_FCT( fd_cnx_getcred(peer->p_cnxctx, &peer->p_hdr.info.runtime.pir_cert_list, &peer->p_hdr.info.runtime.pir_cert_list_size) );
8b03c672261f Fix a small bug in peers validation process Sebastien Decugis <sdecugis@nict.go.jp> parents: 706 diff changeset	825 }
8b03c672261f Fix a small bug in peers validation process Sebastien Decugis <sdecugis@nict.go.jp> parents: 706 diff changeset	826
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	827 /* Validate the peer if needed */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	828 if (peer->p_flags.pf_responder) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	829 int res = fd_peer_validate( peer );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	830 if (res < 0) {
160 3577f20319c1 Added trace for rejected peers Sebastien Decugis <sdecugis@nict.go.jp> parents: 131 diff changeset	831 TRACE_DEBUG(INFO, "Rejected CER from peer '%s', validation failed (returning DIAMETER_UNKNOWN_PEER).\n", peer->p_hdr.info.pi_diamid);
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	832 pei.pei_errcode = "DIAMETER_UNKNOWN_PEER";
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	833 goto error_abort;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	834 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	835 CHECK_FCT( res );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	836 }
40 7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	837
87 c1c0f8a45c67 Backup Sebastien Decugis <sdecugis@nict.go.jp> parents: 78 diff changeset	838 /* Check if we have common applications */
105 0d9c9e004be0 Compute common applications after CER reception Sebastien Decugis <sdecugis@nict.go.jp> parents: 87 diff changeset	839 if ( fd_g_config->cnf_flags.no_fwd && (! peer->p_hdr.info.runtime.pir_relay) ) {
0d9c9e004be0 Compute common applications after CER reception Sebastien Decugis <sdecugis@nict.go.jp> parents: 87 diff changeset	840 int got_common;
0d9c9e004be0 Compute common applications after CER reception Sebastien Decugis <sdecugis@nict.go.jp> parents: 87 diff changeset	841 CHECK_FCT( fd_app_check_common( &fd_g_config->cnf_apps, &peer->p_hdr.info.runtime.pir_apps, &got_common) );
0d9c9e004be0 Compute common applications after CER reception Sebastien Decugis <sdecugis@nict.go.jp> parents: 87 diff changeset	842 if (!got_common) {
0d9c9e004be0 Compute common applications after CER reception Sebastien Decugis <sdecugis@nict.go.jp> parents: 87 diff changeset	843 TRACE_DEBUG(INFO, "No common application with peer '%s', sending DIAMETER_NO_COMMON_APPLICATION", peer->p_hdr.info.pi_diamid);
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	844 pei.pei_errcode = "DIAMETER_NO_COMMON_APPLICATION";
105 0d9c9e004be0 Compute common applications after CER reception Sebastien Decugis <sdecugis@nict.go.jp> parents: 87 diff changeset	845 fatal = 1;
0d9c9e004be0 Compute common applications after CER reception Sebastien Decugis <sdecugis@nict.go.jp> parents: 87 diff changeset	846 goto error_abort;
0d9c9e004be0 Compute common applications after CER reception Sebastien Decugis <sdecugis@nict.go.jp> parents: 87 diff changeset	847 }
0d9c9e004be0 Compute common applications after CER reception Sebastien Decugis <sdecugis@nict.go.jp> parents: 87 diff changeset	848 }
87 c1c0f8a45c67 Backup Sebastien Decugis <sdecugis@nict.go.jp> parents: 78 diff changeset	849
162 79768bf7d208 Completed whitelist extension Sebastien Decugis <sdecugis@nict.go.jp> parents: 160 diff changeset	850 /* Do we agree on ISI ? */
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	851 if ( ! fd_cnx_getTLS(peer->p_cnxctx) ) {
332 e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	852
162 79768bf7d208 Completed whitelist extension Sebastien Decugis <sdecugis@nict.go.jp> parents: 160 diff changeset	853 /* In case of responder, the validate callback must have set the config.pic_flags.sec value already */
332 e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	854
e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	855 /* First case: we are not using old mechanism: ISI are deprecated, we ignore it. */
e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	856 if ( ! (peer->p_hdr.info.config.pic_flags.sec & PI_SEC_TLS_OLD)) {
e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	857 /* Just check then that the peer configuration allows for IPsec protection */
e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	858 if (peer->p_hdr.info.config.pic_flags.sec & PI_SEC_NONE) {
e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	859 isi = PI_SEC_NONE;
e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	860 } else {
e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	861 /* otherwise, we should have already been protected. Reject */
e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	862 TRACE_DEBUG(INFO, "Non TLS-protected CER/CEA exchanges are not allowed with this peer, rejecting.");
e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	863 }
e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	864 } else {
e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	865 /* The old mechanism is allowed with this peer. Now, look into the ISI AVP values */
e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	866
e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	867 /* In case no ISI was present anyway: */
e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	868 if (!peer->p_hdr.info.runtime.pir_isi) {
e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	869 TRACE_DEBUG(INFO, "Inband-Security-Id AVP is missing in received CER.");
e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	870 if (peer->p_hdr.info.config.pic_flags.sec & PI_SEC_NONE) {
e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	871 isi = PI_SEC_NONE;
e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	872 TRACE_DEBUG(INFO, "IPsec protection allowed by configuration, allowing this mechanism to be used.");
e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	873 } else {
e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	874 /* otherwise, we should have already been protected. Reject */
e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	875 TRACE_DEBUG(INFO, "Rejecting the peer connection (please allow IPsec here or configure TLS in the remote peer).");
e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	876 }
e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	877 } else {
e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	878 /* OK, the remote peer did send the ISI AVP. */
e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	879 if ((peer->p_hdr.info.config.pic_flags.sec & PI_SEC_NONE) && (peer->p_hdr.info.runtime.pir_isi & PI_SEC_NONE)) {
e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	880 /* We have allowed IPsec */
e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	881 isi = PI_SEC_NONE;
e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	882 } else if (peer->p_hdr.info.runtime.pir_isi & PI_SEC_TLS_OLD) {
e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	883 /* We can agree on TLS */
e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	884 isi = PI_SEC_TLS_OLD;
e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	885 } else {
e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	886 TRACE_DEBUG(INFO, "Remote peer requested IPsec protection, but local configuration forbids it.");
e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	887 }
e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	888 }
162 79768bf7d208 Completed whitelist extension Sebastien Decugis <sdecugis@nict.go.jp> parents: 160 diff changeset	889 }
332 e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	890
162 79768bf7d208 Completed whitelist extension Sebastien Decugis <sdecugis@nict.go.jp> parents: 160 diff changeset	891 /* If we did not find an agreement */
79768bf7d208 Completed whitelist extension Sebastien Decugis <sdecugis@nict.go.jp> parents: 160 diff changeset	892 if (!isi) {
79768bf7d208 Completed whitelist extension Sebastien Decugis <sdecugis@nict.go.jp> parents: 160 diff changeset	893 TRACE_DEBUG(INFO, "No common security mechanism with '%s', sending DIAMETER_NO_COMMON_SECURITY", peer->p_hdr.info.pi_diamid);
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	894 pei.pei_errcode = "DIAMETER_NO_COMMON_SECURITY";
162 79768bf7d208 Completed whitelist extension Sebastien Decugis <sdecugis@nict.go.jp> parents: 160 diff changeset	895 fatal = 1;
79768bf7d208 Completed whitelist extension Sebastien Decugis <sdecugis@nict.go.jp> parents: 160 diff changeset	896 goto error_abort;
79768bf7d208 Completed whitelist extension Sebastien Decugis <sdecugis@nict.go.jp> parents: 160 diff changeset	897 }
332 e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	898
e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	899 /* Do not send the ISI IPsec if we are using the new mechanism */
e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	900 if ((isi == PI_SEC_NONE) && (! (peer->p_hdr.info.config.pic_flags.sec & PI_SEC_TLS_OLD)))
e624fa5f85ca Attempt to fix a bug reported by Alexey Berdnikov (CER without ISI AVP) Sebastien Decugis <sdecugis@nict.go.jp> parents: 267 diff changeset	901 isi = 0;
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	902 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	903
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	904 /* Reply a CEA */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	905 CHECK_FCT( fd_msg_new_answer_from_req ( fd_g_config->cnf_dict, &msg, 0 ) );
56 299507847ef9 Fixed duplicate Origin-Host AVPs in CEA Sebastien Decugis <sdecugis@nict.go.jp> parents: 43 diff changeset	906 CHECK_FCT( fd_msg_rescode_set(msg, "DIAMETER_SUCCESS", NULL, NULL, 0 ) );
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	907 CHECK_FCT( add_CE_info(msg, peer->p_cnxctx, isi & PI_SEC_TLS_OLD, isi & PI_SEC_NONE) );
233 87ca7b66a90c Make the CEA broadcast optional Sebastien Decugis <sdecugis@nict.go.jp> parents: 230 diff changeset	908 CHECK_FCT( fd_out_send(&msg, peer->p_cnxctx, peer, FD_CNX_ORDERED ) );
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	909
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	910 /* Handshake if needed */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	911 if (isi & PI_SEC_TLS_OLD) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	912 fd_psm_change_state(peer, STATE_OPEN_HANDSHAKE);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	913 CHECK_FCT_DO( fd_cnx_handshake(peer->p_cnxctx, GNUTLS_SERVER, peer->p_hdr.info.config.pic_priority, NULL),
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	914 {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	915 /* Handshake failed ... */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	916 fd_log_debug("TLS Handshake failed with peer '%s', resetting the connection\n", peer->p_hdr.info.pi_diamid);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	917 goto cleanup;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	918 } );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	919
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	920 /* Retrieve the credentials */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	921 CHECK_FCT( fd_cnx_getcred(peer->p_cnxctx, &peer->p_hdr.info.runtime.pir_cert_list, &peer->p_hdr.info.runtime.pir_cert_list_size) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	922
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	923 /* Call second validation callback if needed */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	924 if (peer->p_cb2) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	925 TRACE_DEBUG(FULL, "Calling second validation callback for %s", peer->p_hdr.info.pi_diamid);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	926 CHECK_FCT_DO( (*peer->p_cb2)( &peer->p_hdr.info ),
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	927 {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	928 TRACE_DEBUG(INFO, "Validation callback rejected the peer %s after handshake", peer->p_hdr.info.pi_diamid);
78 a58f0757c06a Added code for DPR/DPA Sebastien Decugis <sdecugis@nict.go.jp> parents: 66 diff changeset	929 CHECK_FCT( fd_psm_terminate( peer, "DO_NOT_WANT_TO_TALK_TO_YOU" ) );
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	930 return 0;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	931 } );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	932 }
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	933 tls_sync = 1;
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	934 } else {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	935 if ( ! fd_cnx_getTLS(peer->p_cnxctx) ) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	936 TRACE_DEBUG(INFO, "No TLS protection negotiated with peer '%s'.", peer->p_hdr.info.pi_diamid);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	937 CHECK_FCT( fd_cnx_start_clear(peer->p_cnxctx, 1) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	938 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	939 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	940
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	941 /* Move to OPEN or REOPEN state */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	942 if (peer->p_flags.pf_cnx_pb) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	943 fd_psm_change_state(peer, STATE_REOPEN );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	944 CHECK_FCT( fd_p_dw_reopen(peer) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	945 } else {
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	946 if ((!tls_sync) && (fd_cnx_isMultichan(peer->p_cnxctx))) {
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	947 fd_psm_change_state(peer, STATE_OPEN_NEW );
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	948 /* send DWR */
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	949 CHECK_FCT( fd_p_dw_timeout(peer) );
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	950 } else {
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	951
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	952 fd_psm_change_state(peer, STATE_OPEN );
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	953 fd_psm_next_timeout(peer, 1, peer->p_hdr.info.config.pic_twtimer ?: fd_g_config->cnf_timer_tw);
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	954 }
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	955 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	956
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	957 return 0;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	958
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	959 error_abort:
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	960 if (pei.pei_errcode) {
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	961 /* Send the error */
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	962 receiver_reject(&peer->p_cnxctx, &msg, &pei);
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	963 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	964
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	965 cleanup:
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	966 if (msg) {
688 8c3dc8584dab Prepared capability for messages logging to separate files / folders Sebastien Decugis <sdecugis@nict.go.jp> parents: 662 diff changeset	967 fd_msg_log(FD_MSG_LOG_DROPPED, msg, "An error occurred while processing a CER.");
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	968 fd_msg_free(msg);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	969 }
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	970 fd_p_ce_clear_cnx(peer, NULL);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	971
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	972 /* Send the error to the peer */
105 0d9c9e004be0 Compute common applications after CER reception Sebastien Decugis <sdecugis@nict.go.jp> parents: 87 diff changeset	973 CHECK_FCT( fd_event_send(peer->p_events, fatal ? FDEVP_TERMINATE : FDEVP_CNX_ERROR, 0, NULL) );
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	974
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	975 return 0;
40 7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	976 }
7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	977
7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	978 /* We have received a CER on a new connection for this peer */
36 1498b3c7304c Backup Sebastien Decugis <sdecugis@nict.go.jp> parents: 35 diff changeset	979 int fd_p_ce_handle_newCER(struct msg ** msg, struct fd_peer * peer, struct cnxctx ** cnx, int valid)
1498b3c7304c Backup Sebastien Decugis <sdecugis@nict.go.jp> parents: 35 diff changeset	980 {
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	981 struct fd_pei pei;
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	982 int cur_state = fd_peer_getstate(peer);
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	983 memset(&pei, 0, sizeof(pei));
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	984
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	985 switch (cur_state) {
36 1498b3c7304c Backup Sebastien Decugis <sdecugis@nict.go.jp> parents: 35 diff changeset	986 case STATE_CLOSED:
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	987 peer->p_receiver = *cnx;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	988 *cnx = NULL;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	989 peer->p_cer = *msg;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	990 *msg = NULL;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	991 CHECK_FCT( fd_p_ce_process_receiver(peer) );
36 1498b3c7304c Backup Sebastien Decugis <sdecugis@nict.go.jp> parents: 35 diff changeset	992 break;
1498b3c7304c Backup Sebastien Decugis <sdecugis@nict.go.jp> parents: 35 diff changeset	993
1498b3c7304c Backup Sebastien Decugis <sdecugis@nict.go.jp> parents: 35 diff changeset	994 case STATE_WAITCNXACK:
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	995 /* Save the parameters in the peer, move to STATE_WAITCNXACK_ELEC */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	996 peer->p_receiver = *cnx;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	997 *cnx = NULL;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	998 peer->p_cer = *msg;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	999 *msg = NULL;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	1000 CHECK_FCT( fd_psm_change_state(peer, STATE_WAITCNXACK_ELEC) );
40 7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	1001 break;
7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	1002
36 1498b3c7304c Backup Sebastien Decugis <sdecugis@nict.go.jp> parents: 35 diff changeset	1003 case STATE_WAITCEA:
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	1004 if (election_result(peer)) {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	1005
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	1006 /* Close initiator connection (was already set as principal) */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	1007 fd_p_ce_clear_cnx(peer, NULL);
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	1008
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	1009 /* and go on with the receiver side */
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	1010 peer->p_receiver = *cnx;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	1011 *cnx = NULL;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	1012 peer->p_cer = *msg;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	1013 *msg = NULL;
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	1014 CHECK_FCT( fd_p_ce_process_receiver(peer) );
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	1015
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	1016 } else {
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	1017
2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	1018 /* Answer an ELECTION LOST to the receiver side and continue */
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	1019 pei.pei_errcode = "ELECTION_LOST";
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	1020 pei.pei_message = "Please answer my CER instead, you won the election.";
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	1021 receiver_reject(cnx, msg, &pei);
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	1022 }
36 1498b3c7304c Backup Sebastien Decugis <sdecugis@nict.go.jp> parents: 35 diff changeset	1023 break;
1498b3c7304c Backup Sebastien Decugis <sdecugis@nict.go.jp> parents: 35 diff changeset	1024
1498b3c7304c Backup Sebastien Decugis <sdecugis@nict.go.jp> parents: 35 diff changeset	1025 default:
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	1026 pei.pei_errcode = "DIAMETER_UNABLE_TO_COMPLY"; /* INVALID COMMAND? in case of Capabilities-Updates? */
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	1027 pei.pei_message = "Invalid state to receive a new connection attempt.";
4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 688 diff changeset	1028 receiver_reject(cnx, msg, &pei);
36 1498b3c7304c Backup Sebastien Decugis <sdecugis@nict.go.jp> parents: 35 diff changeset	1029 }
1498b3c7304c Backup Sebastien Decugis <sdecugis@nict.go.jp> parents: 35 diff changeset	1030
43 2db15632a63d Added a large part of connection establishment logic, to test Sebastien Decugis <sdecugis@nict.go.jp> parents: 40 diff changeset	1031 return 0;
40 7e1deaa89540 Some progress on the PSM Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	1032 }

Mercurial > hg > freeDiameter

annotate libfdcore/p_ce.c @ 882:ae96ae28f3dd 1.1.5