module-newcamd.c

#define MODULE_LOG_PREFIX "newcamd"

#include "globals.h"
#ifdef MODULE_NEWCAMD
#include "cscrypt/des.h"
#include "cscrypt/md5.h"
#include "module-newcamd.h"
#include "module-newcamd-des.h"
#include "oscam-array.h"
#include "oscam-conf-chk.h"
#include "oscam-chk.h"
#include "oscam-client.h"
#include "oscam-ecm.h"
#include "oscam-emm.h"
#include "oscam-net.h"
#include "oscam-reader.h"
#include "oscam-string.h"
#include "oscam-time.h"

const int32_t CWS_NETMSGSIZE = 500;  //csp 0.8.9 (default: 400). This is CWS_NETMSGSIZE. The old default was 240

#define NCD_CLIENT_ID 0x8888

#define CWS_FIRSTCMDNO 0xe0
typedef enum
{
	MSG_CLIENT_2_SERVER_LOGIN = CWS_FIRSTCMDNO,
	MSG_CLIENT_2_SERVER_LOGIN_ACK,
	MSG_CLIENT_2_SERVER_LOGIN_NAK,
	MSG_CARD_DATA_REQ,
	MSG_CARD_DATA,
	MSG_SERVER_2_CLIENT_NAME,
	MSG_SERVER_2_CLIENT_NAME_ACK,
	MSG_SERVER_2_CLIENT_NAME_NAK,
	MSG_SERVER_2_CLIENT_LOGIN,
	MSG_SERVER_2_CLIENT_LOGIN_ACK,
	MSG_SERVER_2_CLIENT_LOGIN_NAK,
	MSG_ADMIN,
	MSG_ADMIN_ACK,
	MSG_ADMIN_LOGIN,
	MSG_ADMIN_LOGIN_ACK,
	MSG_ADMIN_LOGIN_NAK,
	MSG_ADMIN_COMMAND,
	MSG_ADMIN_COMMAND_ACK,
	MSG_ADMIN_COMMAND_NAK,
	MSG_KEEPALIVE = CWS_FIRSTCMDNO + 0x1d,
	MSG_SERVER_2_CLIENT_OSD = 0xd1,
	MSG_SERVER_2_CLIENT_ALLCARDS = 0xd2,
	MSG_SERVER_2_CLIENT_ADDCARD = 0xd3,
	MSG_SERVER_2_CLIENT_REMOVECARD = 0xd4,
	MSG_SERVER_2_CLIENT_CHANGE_KEY = 0xd5,
	MSG_SERVER_2_CLIENT_GET_VERSION = 0xd6,
	MSG_SERVER_2_CLIENT_ADDSID = 0xd7,
	MSG_CLIENT_2_SERVER_CARDDISCOVER = 0xd8
} net_msg_type_t;

typedef enum
{
	COMMTYPE_CLIENT,
	COMMTYPE_SERVER
} comm_type_t;


typedef struct custom_data
{
	uint16_t sid;
	uint16_t caid;
	int32_t provid;
	uchar x;
} custom_data_t;

#define REQ_SIZE  2


static int32_t network_message_send(int32_t handle, uint16_t *netMsgId, uint8_t *buffer,
									int32_t len, uint8_t *deskey, comm_type_t commType,
									uint16_t sid, custom_data_t *cd)
{
	uint8_t netbuf[CWS_NETMSGSIZE];
	int32_t head_size;
	struct s_client *cl = cur_client();

	head_size = (cl->ncd_proto == NCD_524) ? 8 : 12;

	if(len < 3 || len + head_size > CWS_NETMSGSIZE || handle < 0)
		{ return -1; }
	buffer[1] = (buffer[1] & 0xf0) | (((len - 3) >> 8) & 0x0f);
	buffer[2] = (len - 3) & 0xff;
	memcpy(netbuf + head_size, buffer, len);
	len += head_size;
	if(netMsgId)
	{
		if(commType == COMMTYPE_CLIENT) { (*netMsgId)++; }
		netbuf[2] = (*netMsgId) >> 8;
		netbuf[3] = (*netMsgId) & 0xff;
	}
	else
		{ netbuf[2] = netbuf[3] = 0; }
	memset(netbuf + 4, 0, (cl->ncd_proto == NCD_524) ? 4 : 8);
	if(sid)
	{
		if(cl->reader && cl->reader->ncd_disable_server_filt &&
				sid != NCD_CLIENT_ID && cl->ncd_proto != NCD_524) //mgclient send header
		{
			memcpy(netbuf + 4, cl->ncd_header + 4, 7);
		}
		netbuf[(cl->ncd_proto == NCD_524) ? 6 : 4] = (uchar)(sid >> 8); //sid
		netbuf[(cl->ncd_proto == NCD_524) ? 7 : 5] = (uchar)(sid);
	}
	//if ((!ncd_proto==NCD_524) && (buffer[0] >= 0xd1) && (buffer[0]<= 0xd8)) { // extended proto for mg
	//cs_log_dbg(D_CLIENT, "newcamd: extended: msg");
	if(cd)
	{
		cs_log_dbg(D_CLIENT, "newcamd: has cd");
		netbuf[4] = cd->sid >> 8;
		netbuf[5] = cd->sid & 0xff;
		netbuf[6] = cd->caid >> 8;
		netbuf[7] = cd->caid & 0xff;
		netbuf[8] = (cd->provid >> 16) & 0xFF;
		netbuf[9] = (cd->provid >> 8) & 0xff;
		netbuf[10] = cd->provid & 0xff;
	}
	//}
	if(NCD_525 == cl->ncd_proto && cfg.ncd_mgclient &&
			MSG_CLIENT_2_SERVER_LOGIN_ACK == buffer[0])
	{
		netbuf[4] = 0x6E; //From ExtNewcamSession.java CSP line 65-66 getLoginOkMsg()
		netbuf[5] = 0x73;
		netbuf[11] = 0x14;
	}
	if(NCD_525 == cl->ncd_proto &&
			MSG_SERVER_2_CLIENT_ADDSID == buffer[0])
	{
		netbuf[11] = 0x14;
	}
	//  if (buffer[0]==MSG_CLIENT_2_SERVER_LOGIN && cur_client()->reader->ncd_disable_server_filt) {
	//        netbuf[11] = 0x11; //From ChameleonCwsConnector.java CSP line 59-61 run()
	//    }

	netbuf[0] = (len - 2) >> 8;
	netbuf[1] = (len - 2) & 0xff;
	cs_log_dump_dbg(D_CLIENT, netbuf, len, "send %d bytes to %s", len, remote_txt());
	if((len = nc_des_encrypt(netbuf, len, deskey)) < 0)
		{ return -1; }
	netbuf[0] = (len - 2) >> 8;
	netbuf[1] = (len - 2) & 0xff;
	return send(handle, netbuf, len, 0);
}

static int32_t send_sid_list(void)
{
	struct s_client *cl = cur_client();

	if(1 != cl->ftab.nfilts || !cl->sidtabs.no || !cfg.ncd_ptab.ports[cl->port_idx].ncd)
	{
		cs_log("SID list will not be send to mgcamd client.");
		return 0;
	}

	uchar mbuf[CWS_NETMSGSIZE];
	int32_t n = 0, nr = 0, portion_sid_num = 0, i = 0, sid_num = 0,
			portion_num = 0;
	SIDTAB *sidtab = 0;
	custom_data_t cd;

	cs_log_dbg(D_TRACE, "Send SID list to mgcamd client.");
	memset(&cd, 0, sizeof(cd));
	FILTER *pfilts = cfg.ncd_ptab.ports[cl->port_idx].ncd->ncd_ftab.filts;

	/*memset(mbuf, 0, sizeof(mbuf));*/ // not nessesery

	for(nr = 0, sidtab = cfg.sidtab; sidtab; sidtab = sidtab->next, nr++)
		if((cl->sidtabs.no & ((SIDTABBITS)1 << nr)) && (sidtab->num_caid | sidtab->num_provid | sidtab->num_srvid))
		{
			for(n = 0; n < pfilts[0].nprids; n++)
			{
				if(chk_srvid_match_by_caid_prov(pfilts[0].caid, pfilts[0].prids[n], sidtab))
				{
					for(i = 0; i < sidtab->num_srvid; i++)
					{
						// First SID goes to header
						if(0 == portion_sid_num)
						{
							cd.sid = sidtab->srvid[i]; // first sid
							cd.caid = cfg.ncd_ptab.ports[cl->port_idx].s_port;   //assigned port
							cd.provid = 0x1; // mark as deny
						}
						mbuf[portion_sid_num * 3] = (uchar)(sidtab->srvid[i] >> 8);
						mbuf[portion_sid_num * 3 + 1] = (uchar)(sidtab->srvid[i] & 0xFF);
						mbuf[portion_sid_num * 3 + 2] = 0x1; // mark as deny

						++sid_num;
						++portion_sid_num;

						if(portion_sid_num >= 50)
						{
							++portion_num;
							cs_log_dump_dbg(0x0800, mbuf, (portion_sid_num) * 3, "Portion %d contains %d SIDs", portion_num, portion_sid_num);
							mbuf[0] = MSG_SERVER_2_CLIENT_ADDSID;
							mbuf[1] = 0x0;
							mbuf[2] = 0x0;
							network_message_send(cl->udp_fd, &cl->ncd_msgid,
												 mbuf, portion_sid_num * 3, cl->ncd_skey, COMMTYPE_SERVER, 0, &cd);
							portion_sid_num = 0;
						}
					}

					break;
				}
			}
		}

	if(portion_sid_num)
	{
		++portion_num;
		cs_log_dump_dbg(0x0800, mbuf, (portion_sid_num) * 3, "Portion %d contains %d SIDs", portion_num, portion_sid_num);
		mbuf[0] = MSG_SERVER_2_CLIENT_ADDSID;
		mbuf[1] = 0x0;
		mbuf[2] = 0x0;
		network_message_send(cl->udp_fd, &cl->ncd_msgid, mbuf, portion_sid_num * 3, cl->ncd_skey, COMMTYPE_SERVER, 0, &cd);
		portion_sid_num = 0;
	}

	cs_log("%d deny SIDs in the %d messages were sent to the client.", sid_num, portion_num);
	return sid_num;
}

static int32_t network_message_receive(int32_t handle, uint16_t *netMsgId, uint8_t *buffer,
									   uint8_t *deskey, comm_type_t commType)
{
	int32_t len, ncd_off, msgid;
	uint8_t netbuf[CWS_NETMSGSIZE];
	int32_t returnLen;
	struct s_client *cl = cur_client();

	if(!buffer || handle < 0)
		{ return -1; }
	len = cs_recv(handle, netbuf, 2, 0);
	cs_log_dbg(D_CLIENT, "nmr(): len=%d, errno=%d", len, (len == -1) ? errno : 0);
	if(!len)
	{
		cs_log_dbg(D_CLIENT, "nmr: 1 return 0");
		if(commType == COMMTYPE_CLIENT)
			{ network_tcp_connection_close(cl->reader, "receive error1"); }
		else
			{ cs_disconnect_client(cl); }
		return 0;
	}
	if(len != 2)
	{
		cs_log_dbg(D_CLIENT, "nmr: len!=2");
		if(commType == COMMTYPE_CLIENT)
			{ network_tcp_connection_close(cl->reader, "receive error2"); }
		else
			{ cs_disconnect_client(cl); }
		return -1;
	}
	if(((netbuf[0] << 8) | netbuf[1]) > CWS_NETMSGSIZE - 2)
	{
		cs_log_dbg(D_CLIENT, "nmr: received data len=%d longer than CWS_NETMSGSIZE=%d", ((netbuf[0] << 8) | netbuf[1]), CWS_NETMSGSIZE);
		cs_log_dbg(D_CLIENT, "nmr: 1 return -1");
		return -1;
	}

	len = cs_recv(handle, netbuf + 2, (netbuf[0] << 8) | netbuf[1], 0);
	if(!len)
	{
		cs_log_dbg(D_CLIENT, "nmr: 2 return 0");
		return 0;
	}
	if(len != ((netbuf[0] << 8) | netbuf[1]))
	{
		cs_log_dbg(D_CLIENT, "nmr: 2 return -1");
		return -1;
	}
	len += 2;
	if((len = nc_des_decrypt(netbuf, len, deskey)) < 11)      // 15(newcamd525) or 11 ???
	{
		cs_log_dbg(D_CLIENT, "nmr: can't decrypt, invalid des key?");
		cs_sleepms(2000);
		return -1;
	}
	//cs_log_dump_dbg(D_CLIENT, netbuf, len, "nmr: decrypted data, len=%d", len);
	msgid = (netbuf[2] << 8) | netbuf[3];

	if(cl->ncd_proto == NCD_AUTO)
	{
		// auto detect
		int32_t l5 = (((netbuf[13] & 0x0f) << 8) | netbuf[14]) + 3;
		int32_t l4 = (((netbuf[9] & 0x0f) << 8) | netbuf[10]) + 3;

		if((l5 <= len - 12) && ((netbuf[12] & 0xF0) == 0xE0 || (netbuf[12] & 0xF0) == 0x80))
			{ cl->ncd_proto = NCD_525; }
		else if((l4 <= len - 8) && ((netbuf[8] & 0xF0) == 0xE0 || (netbuf[9] & 0xF0) == 0x80))
			{ cl->ncd_proto = NCD_524; }
		else
		{
			cs_log_dbg(D_CLIENT, "nmr: 4 return -1");
			return -1;
		}

		cs_log_dbg(D_CLIENT, "nmr: autodetect: newcamd52%d used", (cl->ncd_proto == NCD_525) ? 5 : 4);
	}

	ncd_off = (cl->ncd_proto == NCD_525) ? 4 : 0;

	returnLen = (((netbuf[9 + ncd_off] & 0x0f) << 8) | netbuf[10 + ncd_off]) + 3;
	if(returnLen > (len - (8 + ncd_off)))
	{
		cs_log_dbg(D_CLIENT, "nmr: 4 return -1");
		return -1;
	}

	//cs_log_dump_dbg(D_CLIENT, netbuf, len, "nmr: decrypted data");
	if(netMsgId)
	{
		switch(commType)
		{
		case COMMTYPE_SERVER:
			*netMsgId = msgid;
			break;

		case COMMTYPE_CLIENT:
			//if (*netMsgId != ((netbuf[2] << 8) | netbuf[3])) {
			cs_log_dbg(D_CLIENT, "nmr: netMsgId=%d, from server=%d, ", *netMsgId, msgid);
			//return -2;
			//}
			break;

		default:
			cs_log_dbg(D_CLIENT, "nmr: 5 return -1");
			return -1;
			break;
		}
	}
	switch(commType)
	{
	case COMMTYPE_SERVER:
		memcpy(cl->ncd_header, netbuf, (8 + ncd_off));
		buffer[0] = (cl->ncd_proto == NCD_525) ? netbuf[4] : netbuf[6]; // sid
		buffer[1] = (cl->ncd_proto == NCD_525) ? netbuf[5] : netbuf[7];
		break;
	case COMMTYPE_CLIENT:
		memcpy(cl->ncd_header, netbuf, (8 + ncd_off));
		buffer[0] = netbuf[2]; // msgid
		buffer[1] = netbuf[3];
		break;
	}

	memcpy(buffer + 2, netbuf + (8 + ncd_off), returnLen);
	return returnLen + 2;
}

static void network_cmd_no_data_send(int32_t handle, uint16_t *netMsgId,
									 net_msg_type_t cmd, uint8_t *deskey,
									 comm_type_t commType)
{
	uint8_t buffer[3];

	buffer[0] = cmd;
	buffer[1] = 0;
	buffer[2] = 0;
	network_message_send(handle, netMsgId, buffer, 3, deskey, commType, 0, NULL);
}

static int32_t network_cmd_no_data_receive(int32_t handle, uint16_t *netMsgId,
		uint8_t *deskey, comm_type_t commType)
{
	uint8_t buffer[CWS_NETMSGSIZE];

	if(network_message_receive(handle, netMsgId, buffer, deskey, commType) != 3 + 2)
		{ return -1; }
	return buffer[2];
}

void newcamd_reply_ka(void)
{
	struct s_client *cl = cur_client();

	if(!cl) { return; }

	if(!cl->udp_fd)
	{
		cs_log_dbg(D_CLIENT, "invalid client fd=%d", cl->udp_fd);
		return;
	}

	cs_log_dbg(D_CLIENT, "send keepalive to client fd=%d", cl->udp_fd);

	if(cl->reader)
		{ cl->reader->last_s = time((time_t *)0); }

	network_cmd_no_data_send(cl->udp_fd, &cl->ncd_msgid, MSG_KEEPALIVE, cl->ncd_skey, COMMTYPE_SERVER);
}

static int32_t connect_newcamd_server(void)
{
	int32_t i;
	uint8_t buf[CWS_NETMSGSIZE];
	uint8_t keymod[14];
	uint8_t key[16];
	int32_t handle = 0;

	uint32_t idx;
	uchar passwdcrypt[120];
	uint8_t login_answer;
	int32_t bytes_received;
	struct s_client *cl = cur_client();

	if(cl->reader->device[0] == 0 || cl->reader->r_pwd[0] == 0 ||
			cl->reader->r_usr[0] == 0 || cl->reader->r_port == 0)
		{ return -5; }

	// 1. Connect
	handle = network_tcp_connection_open(cl->reader);
	if(handle < 0) { return -1; }

	// 2. Get init sequence
	cl->ncd_msgid = 0;
	if(read(handle, keymod, sizeof(keymod)) != sizeof(keymod))
	{
		cs_log("server does not return 14 bytes");
		network_tcp_connection_close(cl->reader, "connect error");
		return -2;
	}
	cs_log_dump_dbg(D_CLIENT, keymod, sizeof(cl->reader->ncd_key), "server init sequence:");
	nc_des_login_key_get(keymod, cl->reader->ncd_key, sizeof(cl->reader->ncd_key), key);

	// 3. Send login info
	idx = 3;
	buf[0] = MSG_CLIENT_2_SERVER_LOGIN;
	buf[1] = 0;
	cs_strncpy((char *)buf + idx, cl->reader->r_usr, sizeof(buf) - idx);
	__md5_crypt(cl->reader->r_pwd, "$1$abcdefgh$", (char *)passwdcrypt);
	idx += strlen(cl->reader->r_usr) + 1;
	cs_strncpy((char *)buf + idx, (const char *)passwdcrypt, sizeof(buf) - idx);

	network_message_send(handle, 0, buf, idx + strlen((char *)passwdcrypt) + 1, key,
						 COMMTYPE_CLIENT, NCD_CLIENT_ID, NULL);

	// 3.1 Get login answer
	login_answer = network_cmd_no_data_receive(handle, &cl->ncd_msgid,
				   key, COMMTYPE_CLIENT);
	if(login_answer == MSG_CLIENT_2_SERVER_LOGIN_NAK)
	{
		cs_log("login failed for user '%s'", cl->reader->r_usr);
		network_tcp_connection_close(cl->reader, "login error1");
		return -3;
	}
	if(login_answer != MSG_CLIENT_2_SERVER_LOGIN_ACK)
	{
		cs_log("expected MSG_CLIENT_2_SERVER_LOGIN_ACK (%02X), received %02X",
			   MSG_CLIENT_2_SERVER_LOGIN_ACK, login_answer);
		network_tcp_connection_close(cl->reader, "login error2");
		return -3;
	}

	// 3.2 Set connection info
	cl->reader->tcp_connected = 1;
	cl->crypted = 1;

	// 4. Send MSG_CARD_DATE_REQ
	nc_des_login_key_get(cl->reader->ncd_key, passwdcrypt, strlen((char *)passwdcrypt), key);

	network_cmd_no_data_send(handle, &cl->ncd_msgid, MSG_CARD_DATA_REQ,
							 key, COMMTYPE_CLIENT);
	bytes_received = network_message_receive(handle, &cl->ncd_msgid, buf,
					 key, COMMTYPE_CLIENT);
	if(bytes_received < 16 || buf[2] != MSG_CARD_DATA)
	{
		cs_log("expected MSG_CARD_DATA (%02X), received %02X",
			   MSG_CARD_DATA, buf[2]);
		network_tcp_connection_close(cl->reader, "receive error");
		return -4;
	}

	// 5. Parse CAID and PROVID(s)
	cl->reader->caid = (uint16_t)((buf[6] << 8) | buf[7]);

	/* handle special serial format in newcamd. See newcamd_auth_client */
	newcamd_to_hexserial(buf + 10, cl->reader->hexserial, cl->reader->caid);
	cs_log("Newcamd Server: %s:%d - UserID: %i", cl->reader->device, cl->reader->r_port, buf[3 + 2]);
	cs_log("CAID: %04X - UA: %02X%02X%02X%02X%02X%02X%02X%02X - Provider # %i", cl->reader->caid, cl->reader->hexserial[0], cl->reader->hexserial[1], cl->reader->hexserial[2], cl->reader->hexserial[3], cl->reader->hexserial[4], cl->reader->hexserial[5], cl->reader->hexserial[6], cl->reader->hexserial[7], buf[14 + 2]);
	cl->reader->nprov = buf[14 + 2];
	memset(cl->reader->prid, 0x00, sizeof(cl->reader->prid));
	for(i = 0; i < cl->reader->nprov; i++)
	{
		if(caid_is_betacrypt(cl->reader->caid) || caid_is_irdeto(cl->reader->caid))
		{
			memcpy(&cl->reader->prid[i], buf + 22 + 2 + 11 * i, 4);
		}
		else
		{
			cl->reader->prid[i][1] = buf[15 + 2 + 11 * i];
			cl->reader->prid[i][2] = buf[16 + 2 + 11 * i];
			cl->reader->prid[i][3] = buf[17 + 2 + 11 * i];
		}
		memcpy(&cl->reader->sa[i], buf + 22 + 2 + 11 * i, 4); // the 4 first bytes are not read
		cs_log("Provider ID: %02X%02X%02X - SA: %02X%02X%02X%02X", cl->reader->prid[i][1],  cl->reader->prid[i][2], cl->reader->prid[i][3], cl->reader->sa[i][0], cl->reader->sa[i][1], cl->reader->sa[i][2], cl->reader->sa[i][3]);
	}
	memcpy(cl->reader->ncd_skey, key, 16);

	// 6. Set card inserted
	cl->reader->tcp_connected = 2;
	cl->reader->card_status = CARD_INSERTED;
	cl->reader->last_g = cl->reader->last_s = time((time_t *)0);

	// Only after connect() on cl->udp_fd (Linux)
	cl->pfd = cl->udp_fd;

	if(cl->reader->ncd_disable_server_filt)    //act like mgclient
	{
		network_cmd_no_data_send(handle, &cl->ncd_msgid, MSG_SERVER_2_CLIENT_GET_VERSION,
								 key, COMMTYPE_CLIENT);
	}

	return 0;
}

static int32_t newcamd_connect(void)
{
	struct s_client *cl = cur_client();

	if(cl->reader->tcp_connected < 2 && connect_newcamd_server() < 0)
		{ return 0; }

	if(!cl->udp_fd)
		{ return 0; }

	return 1;
}


static int32_t newcamd_send(uchar *buf, int32_t ml, uint16_t sid)
{
	struct s_client *cl = cur_client();

	if(!newcamd_connect())
		{ return (-1); }

	return (network_message_send(cl->udp_fd, &cl->ncd_msgid,
								 buf, ml, cl->reader->ncd_skey, COMMTYPE_CLIENT, sid, NULL));
}

static int32_t newcamd_recv(struct s_client *client, uchar *buf, int32_t UNUSED(l))
{
	int32_t rc, rs;

	if(client->typ == 'c')
	{
		rs = network_message_receive(client->udp_fd,
									 &client->ncd_msgid, buf,
									 client->ncd_skey, COMMTYPE_SERVER);
	}
	else
	{
		if(!client->udp_fd) { return (-1); }
		rs = network_message_receive(client->udp_fd,
									 &client->ncd_msgid, buf,
									 client->reader->ncd_skey, COMMTYPE_CLIENT);
	}

	if(rs < 5) { rc = (-1); }
	else { rc = rs; }

	cs_log_dump_dbg(D_CLIENT, buf, rs, "received %d bytes from %s", rs, remote_txt());
	client->last = time((time_t *) 0);

	if(rc == -1)
	{
		if(rs > 0)
			{ cs_log("packet is too small (%d bytes)", rs); }
		else
			{ cs_log("Connection closed to %s", remote_txt()); }
	}
	return (rc);
}

static void mk_user_au_ftab(struct s_reader *aureader, FILTER *filt)
{
	int32_t i, j, found;
	FILTER old_filter;

	memcpy(&old_filter, filt, sizeof(old_filter));
	memset(filt, 0, sizeof(*filt));

	filt->caid = aureader->caid;
	if(filt->caid == 0)
		filt->caid = old_filter.caid;

	for(i = 0; i < aureader->nprov && filt->nprids < CS_MAXPROV; i++)
		{ filt->prids[filt->nprids++] = b2i(3, &aureader->prid[i][1]); }

	for(i = 0; i < old_filter.nprids && filt->nprids < CS_MAXPROV; i++)
	{
		for(j = found = 0; (!found) && (j < filt->nprids); j++)
			if(old_filter.prids[i] == filt->prids[j]) { found = 1; }
		if(!found)
			{ filt->prids[filt->nprids++] = old_filter.prids[i]; }
	}
}

static void mk_user_ftab(FILTER *filt)
{
	int32_t port_idx, i, j, k, c;
	struct s_client *cl = cur_client();

	memset(filt, 0, sizeof(*filt));

	port_idx = cl->port_idx;
	if(!cfg.ncd_ptab.ports[port_idx].ncd)
		return;
	FILTER *psfilt = &cfg.ncd_ptab.ports[port_idx].ncd->ncd_ftab.filts[0];

	// 1. CAID
	// search server CAID in client CAID
	for(c = i = 0; i < cl->ctab.ctnum; i++)
	{
		CAIDTAB_DATA *d = &cl->ctab.ctdata[i];
		int32_t ctab_caid = d->caid & d->mask;
		if(ctab_caid) { c++; }

		if(psfilt->caid == ctab_caid)
		{
			filt->caid = ctab_caid;
			break;
		}
	}
	if(c && !filt->caid)
	{
		cs_log("no valid CAID found in CAID for user '%s'", cl->account->usr);
		return;
	}

	// search CAID in client IDENT
	cs_log_dbg(D_CLIENT, "client[%8lX].%s nfilts=%d, filt.caid=%04X", (unsigned long)pthread_self(),
				  cl->account->usr, cl->ftab.nfilts, filt->caid);

	if(!filt->caid && cl->ftab.nfilts)
	{
		int32_t fcaids;
		for(i = fcaids = 0; i < cl->ftab.nfilts; i++)
		{
			uint16_t ucaid = cl->ftab.filts[i].caid;
			if(ucaid) { fcaids++; }
			if(ucaid && psfilt->caid == ucaid)
			{
				filt->caid = ucaid;
				break;
			}
		}
		if(fcaids == cl->ftab.nfilts && !filt->caid)
		{
			cs_log("no valid CAID found in IDENT for user '%s'", cl->account->usr);
			//cs_disconnect_client();
			return;
		}
	}
	// empty client CAID - use server CAID
	if(!filt->caid) { filt->caid = psfilt->caid; }

	// 2. PROVID
	if(!cl->ftab.nfilts)
	{
		int32_t add;
		for(i = 0; i < psfilt->nprids && filt->nprids < CS_MAXPROV; i++)
		{
			// use server PROVID(s) (and only those which are in user's groups)
			add = 0;
			struct s_reader *rdr;
			for(rdr = first_active_reader; rdr ; rdr = rdr->next)
				if(rdr->grp & cl->grp)
				{
					if(!rdr->ftab.nfilts)
					{
						if(is_network_reader(rdr)) { add = 1; }
						for(j = 0; !add && j < rdr->nprov; j++)
							if(b2i(3, &rdr->prid[j][1]) == psfilt->prids[i]) { add = 1; }
					}
					else
					{
						for(j = 0; !add && j < rdr->ftab.nfilts; j++)
						{
							uint32_t rcaid = rdr->ftab.filts[j].caid;
							if(!rcaid || rcaid == filt->caid)
							{
								for(k = 0; !add && k < rdr->ftab.filts[j].nprids; k++)
									if(rdr->ftab.filts[j].prids[k] == psfilt->prids[i]) { add = 1; }
							}
						}
					}
				}
			if(add) { filt->prids[filt->nprids++] = psfilt->prids[i]; }
		}
		memcpy(filt, psfilt, sizeof(*filt));
		return;
	}

	// search in client IDENT
	for(j = 0; j < cl->ftab.nfilts; j++)
	{
		uint32_t ucaid = cl->ftab.filts[j].caid;
		cs_log_dbg(D_CLIENT, "client caid %d: %04X", j, ucaid);
		if(!ucaid || ucaid == filt->caid)
		{
			for(i = 0; i < psfilt->nprids && filt->nprids < CS_MAXPROV; i++)
			{
				cs_log_dbg(D_CLIENT, "search server provid %d: %06X", i, psfilt->prids[i]);
				if(cl->ftab.filts[j].nprids)
				{
					for(k = 0; k < cl->ftab.filts[j].nprids && filt->nprids < CS_MAXPROV; k++)
						if(cl->ftab.filts[j].prids[k] == psfilt->prids[i])
							{ filt->prids[filt->nprids++] = cl->ftab.filts[j].prids[k]; }
				}
				else
				{
					filt->prids[filt->nprids++] = psfilt->prids[i];
					// allow server PROVID(s) if no PROVID(s) specified in IDENT
				}
			}
		}
	}

	if(!filt->nprids)
	{
		cs_log("no valid PROVID(s) found in CAID for user '%s'", cl->account->usr);
		//cs_disconnect_client();
	}
}

static int8_t newcamd_auth_client(IN_ADDR_T ip, uint8_t *deskey)
{
	int32_t i, ok, rc, sid_list;
	uchar *usr = NULL, *pwd = NULL;
	struct s_auth *account;
	uchar buf[14];
	uchar key[16];
	uchar passwdcrypt[120];
	struct s_reader *aureader = NULL, *rdr = NULL;
	struct s_client *cl = cur_client();
	uchar mbuf[CWS_NETMSGSIZE];

	sid_list = 0;

	ok = cfg.ncd_allowed ? check_ip(cfg.ncd_allowed, ip) : 1;

	if(!ok)
	{
		cs_auth_client(cl, (struct s_auth *)0, NULL);
		return -1;
	}

	// make random 14 bytes
	get_random_bytes(buf, 14);

	// send init sequence
	send(cl->udp_fd, buf, 14, 0);
	nc_des_login_key_get(buf, deskey, 14, key);
	memcpy(cl->ncd_skey, key, 16);
	cl->ncd_msgid = 0;

	i = process_input(mbuf, sizeof(mbuf), cfg.cmaxidle);
	if(i > 0)
	{
		if(mbuf[2] != MSG_CLIENT_2_SERVER_LOGIN)
		{
			cs_log_dbg(D_CLIENT, "expected MSG_CLIENT_2_SERVER_LOGIN (%02X), received %02X",
						  MSG_CLIENT_2_SERVER_LOGIN, mbuf[2]);
			return -1;
		}
		usr = mbuf + 5;
		pwd = usr + strlen((char *)usr) + 1;
	}
	else
	{
		cs_log_dbg(D_CLIENT, "bad client login request");
		return -1;
	}

	cl->ncd_client_id = (mbuf[0] << 8) | mbuf[1];
	const char *client_name = newcamd_get_client_name(cl->ncd_client_id);
#if defined(TCP_KEEPIDLE)
	if(cl->ncd_client_id == 0x4453)     // DiabloWifi has problems with TCPKeepAlive
	{
		int32_t flag = 600;
		if(setsockopt(cl->udp_fd, IPPROTO_TCP, TCP_KEEPIDLE, &flag, sizeof(flag)) && errno != EBADF)    //send first keepalive packet after 600 seconds of last package received (keepalive packets included)
		{
			cs_log("Setting TCP_KEEPIDLE failed, errno=%d, %s", errno, strerror(errno));
		}
		else { cs_log("WARNING: Setting TCP_KEEPIDLE to 10 minutes for bugged DiabloWifi. Note that this might lead to not detected broken connections or multiple connections."); }
	}
#endif

	if(cl->ncd_proto == NCD_525 && 0x6D == mbuf[0]
			&& 0x67 == mbuf[1] && 0x11 == cl->ncd_header[11])
	{
		sid_list = 1;
	}

	for(ok = 0, account = cfg.account; (usr) && (account) && (!ok); account = account->next)
	{
		cs_log_dbg(D_CLIENT, "account->usr=%s", account->usr);
		if(strcmp((char *)usr, account->usr) == 0)
		{
			__md5_crypt(ESTR(account->pwd), "$1$abcdefgh$", (char *)passwdcrypt);
			cs_log_dbg(D_CLIENT, "account->pwd=%s", passwdcrypt);
			if(strcmp((char *)pwd, (const char *)passwdcrypt) == 0)
			{
				cl->crypted = 1;
				char e_txt[20];
				snprintf(e_txt, 20, "%s:%d", "newcamd", cfg.ncd_ptab.ports[cl->port_idx].s_port);
				if((rc = cs_auth_client(cl, account, e_txt)) == 2)
				{
					cs_log("hostname or ip mismatch for user %s (%s)", usr, client_name);
					break;
				}
				else if(rc != 0)
				{
					cs_log("account is invalid for user %s (%s)", usr, client_name);
					break;
				}
				else
				{
					cs_log("user %s authenticated successfully (%s)", usr, client_name);
					ok = 1;
					break;
				}
			}
			else
				{ cs_log("user %s is providing a wrong password (%s)", usr, client_name); }
		}
	}

	if(!ok && !account)
	{
		cs_log("user %s is trying to connect but doesnt exist ! (%s)", usr, client_name);
		usr = 0;
	}

	// check for non ready reader and reject client
	for(rdr = first_active_reader; rdr ; rdr = rdr->next)
	{
		if(!cfg.ncd_ptab.ports[cl->port_idx].ncd)
			{ continue; }
		if(rdr->caid == cfg.ncd_ptab.ports[cl->port_idx].ncd->ncd_ftab.filts[0].caid)
		{
			if(rdr->card_status == CARD_NEED_INIT)
			{
				cs_log("init for reader %s not finished -> reject client", rdr->label);
				ok = 0;
			}
			break;
		}
	}

	if(ok)
	{
		LL_ITER itr = ll_iter_create(cl->aureader_list);
		while((rdr = ll_iter_next(&itr)))
		{
			int32_t n;
			if(!cfg.ncd_ptab.ports[cl->port_idx].ncd)
				{ continue; }
			
			if(cfg.ncd_ptab.ports[cl->port_idx].ncd->ncd_ftab.filts[0].caid == 0
				&& !rdr->audisabled && (is_network_reader(rdr) || rdr->card_status == CARD_INSERTED) )
			{			
				aureader = rdr;
				break;				
			}
			
			for(n = 0; n < cfg.ncd_ptab.ports[cl->port_idx].ncd->ncd_ftab.filts[0].nprids; n++)
			{
				if(emm_reader_match(rdr, cfg.ncd_ptab.ports[cl->port_idx].ncd->ncd_ftab.filts[0].caid, cfg.ncd_ptab.ports[cl->port_idx].ncd->ncd_ftab.filts[0].prids[n]))
				{
					aureader = rdr;
					break;
				}
			}
			if(aureader)
				{ break; }
		}

		if(aureader)
		{
			cs_log("AU enabled for user %s on reader %s", usr, aureader->label);
		}
		else
		{
			cs_log("AU disabled for user %s", usr);
		}
	}

	network_cmd_no_data_send(cl->udp_fd, &cl->ncd_msgid,
							 (ok) ? MSG_CLIENT_2_SERVER_LOGIN_ACK : MSG_CLIENT_2_SERVER_LOGIN_NAK,
							 cl->ncd_skey, COMMTYPE_SERVER);

	if(ok)
	{
		FILTER usr_filter;
		FILTER *pufilt = &usr_filter;
		
		nc_des_login_key_get(deskey, passwdcrypt, strlen((char *)passwdcrypt), key);
		memcpy(cl->ncd_skey, key, 16);

		i = process_input(mbuf, sizeof(mbuf), cfg.cmaxidle);
		if(i > 0)
		{
			int32_t j, len = 15;
			if(mbuf[2] != MSG_CARD_DATA_REQ)
			{
				cs_log_dbg(D_CLIENT, "expected MSG_CARD_DATA_REQ (%02X), received %02X",
							  MSG_CARD_DATA_REQ, mbuf[2]);
				return -1;
			}
			
			mk_user_ftab(&usr_filter);
			
			// set userfilter for au enabled clients
			if(aureader)
			{
				mk_user_au_ftab(aureader, &usr_filter);
			}
			
			ftab_clear(&cl->ftab);

			if(!cfg.ncd_mgclient)
			{
				ftab_add(&cl->ftab, &usr_filter);
			}

			mbuf[0] = MSG_CARD_DATA;
			mbuf[1] = 0x00;
			mbuf[2] = 0x00;

			if(aureader)
				{ mbuf[3] = 1; }
			else
				{ mbuf[3] = get_threadnum(cl) + 10; } // Unique user number

			mbuf[4] = (uchar)(pufilt->caid >> 8);
			mbuf[5] = (uchar)(pufilt->caid);
			mbuf[6] = 0x00;
			mbuf[7] = 0x00;

			if(aureader)
				{ hexserial_to_newcamd(aureader->hexserial, mbuf + 8, pufilt->caid); }
			else
				{ memset(&mbuf[8], 0, 6); } //mbuf[8] - mbuf[13]

			mbuf[14] = pufilt->nprids;
			for(j = 0; j < pufilt->nprids; j++)
			{
				if(caid_is_betacrypt(pufilt->caid) || caid_is_irdeto(pufilt->caid))
				{
					mbuf[15 + 11 * j] = 0;
					mbuf[16 + 11 * j] = 0;
					mbuf[17 + 11 * j] = j;
				}
				else
				{
					mbuf[15 + 11 * j] = (uchar)(pufilt->prids[j] >> 16);
					mbuf[16 + 11 * j] = (uchar)(pufilt->prids[j] >> 8);
					mbuf[17 + 11 * j] = (uchar)(pufilt->prids[j]);
				}
				mbuf[18 + 11 * j] = 0x00;
				mbuf[19 + 11 * j] = 0x00;
				mbuf[20 + 11 * j] = 0x00;
				mbuf[21 + 11 * j] = 0x00;
				if(aureader)
				{
					// check if user provid from IDENT exists on card
					int32_t k, found;
					uint32_t rprid;
					found = 0;
					if(pufilt->caid == aureader->caid)
					{
						for(k = 0; (k < aureader->nprov); k++)
						{
							rprid = b2i(3, &aureader->prid[k][1]);
							if(rprid == pufilt->prids[j])
							{
								if(caid_is_betacrypt(pufilt->caid) || caid_is_irdeto(pufilt->caid))
								{
									mbuf[22 + 11 * j] = aureader->prid[k][0];
									mbuf[23 + 11 * j] = aureader->prid[k][1];
									mbuf[24 + 11 * j] = aureader->prid[k][2];
									mbuf[25 + 11 * j] = aureader->prid[k][3];
								}
								else
								{
									mbuf[22 + 11 * j] = aureader->sa[k][0];
									mbuf[23 + 11 * j] = aureader->sa[k][1];
									mbuf[24 + 11 * j] = aureader->sa[k][2];
									mbuf[25 + 11 * j] = aureader->sa[k][3];
								}
								found = 1;
								break;
							}
						}
					}
					if(!found)
					{
						mbuf[22 + 11 * j] = 0x00;
						mbuf[23 + 11 * j] = 0x00;
						mbuf[24 + 11 * j] = 0x00;
						mbuf[25 + 11 * j] = 0x00;
					}
				}
				else
				{
					if(caid_is_betacrypt(pufilt->caid) || caid_is_irdeto(pufilt->caid))
					{
						mbuf[22 + 11 * j] = 0x00;
						mbuf[23 + 11 * j] = (uchar)(pufilt->prids[j] >> 16);
						mbuf[24 + 11 * j] = (uchar)(pufilt->prids[j] >> 8);
						mbuf[25 + 11 * j] = (uchar)(pufilt->prids[j]);
					}
					else
					{
						mbuf[22 + 11 * j] = 0x00;
						mbuf[23 + 11 * j] = 0x00;
						mbuf[24 + 11 * j] = 0x00;
						mbuf[25 + 11 * j] = 0x00;
					}
				}
				len += 11;
			}

			custom_data_t cd;
			memset(&cd, 0, sizeof(cd));

			if(aureader)
			{
				if(aureader->blockemm & EMM_GLOBAL && !(aureader->saveemm & EMM_GLOBAL))
					{ cd.sid |= 4; }
				if(aureader->blockemm & EMM_SHARED && !(aureader->saveemm & EMM_SHARED))
					{ cd.sid |= 2; }
				if(aureader->blockemm & EMM_UNIQUE && !(aureader->saveemm & EMM_UNIQUE))
					{ cd.sid |= 1; }
			}

			if(network_message_send(cl->udp_fd, &cl->ncd_msgid,
									mbuf, len, key, COMMTYPE_SERVER, 0, &cd) < 0)
			{
				return -1;
			}
		}

		// send SID list
		if(sid_list)
			{ send_sid_list(); }
	}
	else
	{
		cs_auth_client(cl, 0, usr ? "login failure" : "no such user");
		return -1;
	}
	return 0;
}

static void newcamd_send_dcw(struct s_client *client, ECM_REQUEST *er)
{
	int32_t len;
	uint16_t cl_msgid;
	uchar mbuf[19];

	if(!client->udp_fd)
	{
		cs_log_dbg(D_CLIENT, "ncd_send_dcw: error: client->udp_fd=%d", client->udp_fd);
		return;
	}

	cl_msgid = er->msgid;
	mbuf[0] = er->ecm[0];
	if(er->rc >= E_NOTFOUND /*not found*/)
	{
		len = 3;
		mbuf[1] = mbuf[2] = 0x00;
	}
	else
	{
		len = 19;
		mbuf[1] = mbuf[2] = 0x10;
		memcpy(mbuf + 3, er->cw, 16);
	}

	cs_log_dbg(D_CLIENT, "ncd_send_dcw: er->msgid=%d, cl_msgid=%d, %02X", er->msgid, cl_msgid, mbuf[0]);

	network_message_send(client->udp_fd, &cl_msgid, mbuf, len,
						 client->ncd_skey, COMMTYPE_SERVER, 0, NULL);
}

static void newcamd_process_ecm(struct s_client *cl, uchar *buf, int32_t len)
{
	int32_t pi;
	ECM_REQUEST *er;
	uint16_t ecmlen;

	if(len < 5)
		{ return; }

	ecmlen = SCT_LEN((&buf[2]));
	if(ecmlen < 3 || ecmlen > MAX_ECM_SIZE || ecmlen+2 > len)
	{
		return;
	}
	
	if(!(er = get_ecmtask()))
	{
		return;
	}
	
	// save client ncd_msgid
	er->msgid = cl->ncd_msgid;
	er->ecmlen = ecmlen;
	cs_log_dbg(D_CLIENT, "ncd_process_ecm: er->msgid=%d len=%d ecmlen=%d", er->msgid, len, er->ecmlen);
	er->srvid = cl->ncd_header[4] << 8 | cl->ncd_header[5];
	er->caid = cl->ncd_header[6] << 8 | cl->ncd_header[7];
	er->prid = cl->ncd_header[8] << 16 | cl->ncd_header[9] << 8 | cl->ncd_header[10];
	if(!er->caid)
	{
		pi = cl->port_idx;
		if(cfg.ncd_ptab.nports && cfg.ncd_ptab.nports >= pi && cfg.ncd_ptab.ports[pi].ncd)
			{ er->caid = cfg.ncd_ptab.ports[pi].ncd->ncd_ftab.filts[0].caid; }
	}
	memcpy(er->ecm, buf + 2, er->ecmlen);
	get_cw(cl, er);
}

static void newcamd_process_emm(uchar *buf, int32_t len)
{
	int32_t ok = 1;
	uint16_t caid = 0;
	struct s_client *cl = cur_client();
	EMM_PACKET epg;

	if(len < 3)
		{ return; }
	
	memset(&epg, 0, sizeof(epg));

	epg.emmlen = SCT_LEN(buf);
	if(epg.emmlen > MAX_EMM_SIZE || epg.emmlen > len)
		{ return; }
	
	caid = cfg.ncd_ptab.ports[cl->port_idx].ncd->ncd_ftab.filts[0].caid;
	epg.caid[0] = (uchar)(caid >> 8);
	epg.caid[1] = (uchar)(caid);

	/*
	  epg.provid[0] = (uchar)(aureader->auprovid>>24);
	  epg.provid[1] = (uchar)(aureader->auprovid>>16);
	  epg.provid[2] = (uchar)(aureader->auprovid>>8);
	  epg.provid[3] = (uchar)(aureader->auprovid);
	*/
	/*  if (caid == 0x0500)
	  {
	    uint16_t emm_head;

	    emm_head = (buf[0]<<8) | buf[1];
	    switch( emm_head )
	    {
	      case 0x8e70:  // EMM-S
	        memcpy(epg.hexserial+1, buf+3, 4);
	        epg.hexserial[4]=aureader->hexserial[4];
	        break;
	      case 0x8870:  // EMM-U
	      case 0x8c70:  // confidential ?
	      default:
	        cs_log("unsupported emm type: %04X", emm_head);
	        ok=0;
	    }
	    if( !ok ) cs_log("only EMM-S supported");
	  }
	  else*/

	memcpy(epg.emm, buf, epg.emmlen);
	if(ok)
		{ do_emm(cl, &epg); }

	// Should always send an answer to client (also if au is disabled),
	// some clients will disconnect if they get no answer
	buf[1] = 0x10;
	buf[2] = 0x00;
	network_message_send(cl->udp_fd, &cl->ncd_msgid, buf, 3,
						 cl->ncd_skey, COMMTYPE_SERVER, 0, NULL);
}

static void newcamd_report_cards(struct s_client *client)
{
	int32_t j, k, l;
	uint8_t buf[512];
	custom_data_t *cd;
	if(!cs_malloc(&cd, sizeof(struct custom_data)))
		{ return; }
	memset(buf, 0, sizeof(buf));

	cd->sid = cfg.ncd_ptab.ports[client->port_idx].s_port;

	buf[0] = MSG_SERVER_2_CLIENT_ADDCARD;
	struct s_reader *rdr;
	for(rdr = first_active_reader; rdr ; rdr = rdr->next)
	{
		int32_t flt = 0;
		if(!(rdr->grp & client->grp)) { continue; }  //test - skip unaccesible readers
		if(rdr->ftab.filts)
		{
			for(j = 0; j < rdr->ftab.nfilts; j++)
			{
				if(rdr->ftab.filts[j].caid)
				{
					cd->caid = rdr->ftab.filts[j].caid;
					if(!rdr->ftab.filts[j].nprids)
					{
						cd->provid = 0;
						cs_log_dbg(D_CLIENT, "newcamd: extended: report card %04X@%06X svc", cd->caid, cd->provid);
						network_message_send(client->udp_fd, &client->ncd_msgid, buf, 3, client->ncd_skey, COMMTYPE_SERVER, 0, cd);
					}
					for(k = 0; k < rdr->ftab.filts[j].nprids; k++)
					{
						cd->provid = rdr->ftab.filts[j].prids[k];
						cs_log_dbg(D_CLIENT, "newcamd: extended: report card %04X@%06X svc", cd->caid, cd->provid);
						network_message_send(client->udp_fd, &client->ncd_msgid, buf, 3, client->ncd_skey, COMMTYPE_SERVER, 0, cd);
						flt = 1;
					}
				}
			}
		}

		if(rdr->caid && !flt)
		{
			if((rdr->tcp_connected || rdr->card_status == CARD_INSERTED))
			{
				cd->caid = rdr->caid;
				if(!rdr->nprov)
				{
					cd->provid = 0;
					cs_log_dbg(D_CLIENT, "newcamd: extended: report card %04X@%06X caid", cd->caid, cd->provid);
					network_message_send(client->udp_fd, &client->ncd_msgid, buf, 3, client->ncd_skey, COMMTYPE_SERVER, 0, cd);
				}
				for(j = 0; j < rdr->nprov; j++)
				{
					cd->provid = (rdr->prid[j][1]) << 16 | (rdr->prid[j][2] << 8) | rdr->prid[j][3];
					cs_log_dbg(D_CLIENT, "newcamd: extended: report card %04X@%06X caid", cd->caid, cd->provid);
					network_message_send(client->udp_fd, &client->ncd_msgid, buf, 3, client->ncd_skey, COMMTYPE_SERVER, 0, cd);
				}
			}
		}
	}
	if(cfg.sidtab && client->account)
	{
		struct s_sidtab *ptr;
		for(j = 0, ptr = cfg.sidtab; ptr; ptr = ptr->next, j++)
		{
			if(client->account->sidtabs.ok & ((SIDTABBITS)1 << j))
				for(k = 0; k < ptr->num_caid; k++)
				{
					cd->caid = ptr->caid[k];
					if(!ptr->num_provid)
					{
						cd->provid = 0;
						cs_log_dbg(D_CLIENT, "newcamd: extended: report card %04X@%06X acs", cd->caid, cd->provid);
						network_message_send(client->udp_fd, &client->ncd_msgid, buf, 3, client->ncd_skey, COMMTYPE_SERVER, 0, cd);
					}
					for(l = 0; l < ptr->num_provid; l++)
					{
						cd->provid = ptr->provid[l];
						cs_log_dbg(D_CLIENT, "newcamd: extended: report card %04X@%06X acs", cd->caid, cd->provid);
						network_message_send(client->udp_fd, &client->ncd_msgid, buf, 3, client->ncd_skey, COMMTYPE_SERVER, 0, cd);
					}
				}
		}
	}
	NULLFREE(cd);

}

static void newcamd_server_init(struct s_client *client)
{
	int8_t res = 0;

	client->ncd_server = 1;
	cs_log("client connected to %d port", cfg.ncd_ptab.ports[client->port_idx].s_port);

	if(cfg.ncd_ptab.ports[client->port_idx].ncd && cfg.ncd_ptab.ports[client->port_idx].ncd->ncd_key_is_set)
	{
		//port has a des key specified
		res = newcamd_auth_client(client->ip, cfg.ncd_ptab.ports[client->port_idx].ncd->ncd_key);
	}
	else
	{
		//default global des key
		res = newcamd_auth_client(client->ip, cfg.ncd_key);
	}

	if(res == -1)
	{
		cs_disconnect_client(client);
		return;
	}

	// report all cards if using extended mg proto
	if(cfg.ncd_mgclient)
	{
		cs_log_dbg(D_CLIENT, "newcamd: extended: report all available cards");
		newcamd_report_cards(client);
	}

}

#define EXT_VERSION_STR "1.67"
#define EXT_VERSION_LEN 4

static void newcamd_send_version(struct s_client *client)
{
	uchar buf[30];
	memset(buf, 0, sizeof(buf));
	buf[0] = MSG_SERVER_2_CLIENT_GET_VERSION;
	buf[1] = EXT_VERSION_LEN >> 8;
	buf[2] = EXT_VERSION_LEN & 0xFF;
	memcpy(buf + 3, EXT_VERSION_STR, EXT_VERSION_LEN);
	network_message_send(client->udp_fd, &client->ncd_msgid, buf, EXT_VERSION_LEN + 3, client->ncd_skey, COMMTYPE_SERVER, 0, NULL);
}

static void *newcamd_server(struct s_client *client, uchar *mbuf, int32_t len)
{
	// check for clienttimeout, if timeout occurs try to send keepalive / wait for answer
	// befor client was disconnected. If keepalive was disabled, exit after clienttimeout

	if(len < 3)
		{ return NULL; }

	cs_log_dbg(D_CLIENT, "newcamd: got cmd %d", mbuf[2]);

	switch(mbuf[2])
	{
	case 0x80:
	case 0x81:
		newcamd_process_ecm(client, mbuf, len);
		break;

	case MSG_SERVER_2_CLIENT_GET_VERSION:
		cs_log_dbg(D_CLIENT, "newcamd: extended: send Version 1.67");
		newcamd_send_version(client);
		break;

	case MSG_KEEPALIVE:
		newcamd_reply_ka();
		break;

	default:
		if(mbuf[2] > 0x81 && mbuf[2] < 0x90)
			{ newcamd_process_emm(mbuf + 2, len - 2); }
		else
		{
			cs_log_dbg(D_CLIENT, "unknown newcamd command! (%d)", mbuf[2]);
		}
	}

	return NULL;
}

void newcamd_idle(void)
{
	struct s_client *client = cur_client();
	struct s_reader *rdr = client->reader;

	if(!rdr) { return; }

	if(rdr->tcp_ito > 0)
	{
		// inactivitytimeout > 0 enables protocol keepalive packages
		time_t now;
		int32_t time_diff;
		time(&now);
		time_diff = llabs(now - rdr->last_s);
		if(time_diff > (rdr->tcp_ito))
		{
			if(client->ncd_keepalive)
				{ newcamd_reply_ka(); }
			else
				{ network_tcp_connection_close(client->reader, "inactivity"); }
		}
	}
	else if(rdr->tcp_ito == -1)
	{
		// idle reconnect
		newcamd_connect();
	}
}

/*
* client functions
*/

int32_t newcamd_client_init(struct s_client *client)
{

	char ptxt[1] = { "\0" };

	client->ncd_proto = client->reader->ncd_proto;

	cs_log("proxy %s:%d newcamd52%d (fd=%d%s)",
		   client->reader->device, client->reader->r_port,
		   (client->reader->ncd_proto == NCD_525) ? 5 : 4, client->udp_fd, ptxt);

	// try to connect. ignore possible failures
	// idle reconnect (tcp_ito = -1) will trigger an additional connect anyway
	if(client->reader->ncd_connect_on_init && client->reader->tcp_ito != -1)
		{ newcamd_connect(); }

	return (0);
}

static int32_t newcamd_send_ecm(struct s_client *client, ECM_REQUEST *er)
{
	struct s_reader *rdr = client->reader;

	if(!newcamd_connect())
		{ return (-1); }

	// check server filters
	if(!chk_rsfilter(rdr, er))
		{ return (-1); }
	
	uint8_t *buf;
	if(!cs_malloc(&buf, er->ecmlen))
	{ return (-1); }

	memcpy(buf, er->ecm, er->ecmlen);

	client->ncd_header[4] = er->srvid >> 8;
	client->ncd_header[5] = er->srvid & 0xFF;
	client->ncd_header[6] = er->caid >> 8;
	client->ncd_header[7] = er->caid & 0xFF;
	client->ncd_header[8] = er->prid >> 16;
	client->ncd_header[9] = er->prid >> 8;
	client->ncd_header[10] = er->prid & 0xFF;

	int32_t rc = ((newcamd_send(buf, er->ecmlen, er->srvid) < 1) ? (-1) : 0);
	
	NULLFREE(buf);
	return (rc);
}


static int32_t newcamd_send_emm(EMM_PACKET *ep)
{
	uchar buf[ep->emmlen];

	if(!newcamd_connect())
		{ return (-1); }

	memcpy(buf, ep->emm, ep->emmlen);
	return ((newcamd_send(buf, ep->emmlen, 0) < 1) ? 0 : 1);
}

static int32_t newcamd_recv_chk(struct s_client *client, uchar *dcw, int32_t *rc, uchar *buf, int32_t n)
{
	uint16_t idx = -1;

	if(n < 5)
		{ return -1; }

	switch(buf[2])
	{
	case 0x80:
	case 0x81:
		idx = (buf[0] << 8) | buf[1];
		if(n == 5)  //not found on server
		{
			*rc = 0;
			memset(dcw, 0, 16);
			break;
		}

		if(n < 21)
		{
			cs_log_dbg(D_CLIENT, "invalid newcamd answer");
			return (-1);
		}

		*rc = 1;
		memcpy(dcw, buf + 5, 16);
		break;

	case MSG_KEEPALIVE:
		return -1;

	case MSG_SERVER_2_CLIENT_ADDCARD:
		if(client->reader)
		{
			client->reader->ncd_disable_server_filt = 1;
		}
		return -1;

	default:
		if(buf[2] > 0x81 && buf[2] < 0x90)  //answer to emm
		{
			return -1;
		}
		cs_log_dbg(D_CLIENT, "unknown newcamd command from server");
		return -1;
	}
	return (idx);
}

/*
 * resolve client type for newcamd protocol
 */
const char *newcamd_get_client_name(uint16_t client_id)
{
	// When adding new entries keep the list sorted!
	static const struct
	{
		uint16_t id;
		const char *client;
	} ncd_service_ids[] =
	{
		{ 0x0000, "generic" },
		{ 0x02C2, "Opticum" },
		{ 0x0665, "rq-sssp-client-CS" },
		{ 0x0666, "rqcamd" },
		{ 0x0667, "rq-echo-client" },
		{ 0x0669, "rq-sssp-client-CW" },
		{ 0x0769, "JlsRq" },
		{ 0x414C, "AlexCS" },
		{ 0x4333, "camd3" },
		{ 0x4343, "CCcam" },
		{ 0x434C, "Cardlink" },
		{ 0x4453, "DiabloCam-UW" },
		{ 0x4543, "eyetvCamd" },
		{ 0x4765, "Octagon" },
		{ 0x4C43, "LCE" },
		{ 0x4E58, "NextYE2k" },
		{ 0x5342, "SBCL" },
		{ 0x5456, "Tecview" },
		{ 0x5644, "vdr-sc" },
		{ 0x5743, "WiCard" },
		{ 0x6378, "cx" },
		{ 0x6502, "Tvheadend" },
		{ 0x6576, "evocamd" },
		{ 0x6762, "gbox2CS" },
		{ 0x6B61, "Kaffeine" },
		{ 0x6B63, "kpcs" },
		{ 0x6D63, "mpcs" },
		{ 0x6D67, "mgcamd" },
		{ 0x6E65, "NextYE2k" },
		{ 0x6E73, "NewCS" },
		{ 0x7264, "radegast" },
		{ 0x7363, "Scam" },
		{ 0x7763, "WinCSC" },
		{ 0x7878, "tsdecrypt" },
		{ 0x8888, "OSCam" },
		{ 0x9911, "ACamd" },
		{ 0x9922, "DVBplug" },
		{ 0xFFFF, NULL }
	};
	int i = 0;
	while(1)
	{
		if(!ncd_service_ids[i].client)
			{ break; }
		if(ncd_service_ids[i].id == client_id)
			{ return ncd_service_ids[i].client; }
		i++;
	}
	return "unknown - please report";
}

void module_newcamd(struct s_module *ph)
{
	ph->desc = "newcamd";
	ph->type = MOD_CONN_TCP;
	ph->large_ecm_support = 1;
	ph->listenertype = LIS_NEWCAMD;
	IP_ASSIGN(ph->s_ip, cfg.ncd_srvip);
	ph->s_handler = newcamd_server;
	ph->s_init = newcamd_server_init;
	ph->recv = newcamd_recv;
	ph->send_dcw = newcamd_send_dcw;
	ph->ptab = cfg.ncd_ptab;
	ph->c_init = newcamd_client_init;
	ph->c_recv_chk = newcamd_recv_chk;
	ph->c_send_ecm = newcamd_send_ecm;
	ph->c_send_emm = newcamd_send_emm;
	ph->c_idle = newcamd_idle;
	ph->num = R_NEWCAMD;
}
#endif