2008-10-24 08:06:22 +00:00
|
|
|
/*
|
|
|
|
|
* Copyright (C) 2008 Martin Willi
|
|
|
|
|
* Hochschule fuer Technik Rapperswil
|
|
|
|
|
*
|
|
|
|
|
* This program is free software; you can redistribute it and/or modify it
|
|
|
|
|
* under the terms of the GNU General Public License as published by the
|
|
|
|
|
* Free Software Foundation; either version 2 of the License, or (at your
|
|
|
|
|
* option) any later version. See <http://www.fsf.org/copyleft/gpl.txt>.
|
|
|
|
|
*
|
|
|
|
|
* This program is distributed in the hope that it will be useful, but
|
|
|
|
|
* WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
|
|
|
|
|
* or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
|
|
|
|
|
* for more details.
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
#include "ha_sync_plugin.h"
|
2008-11-12 13:28:18 +00:00
|
|
|
#include "ha_sync_ike.h"
|
2008-10-24 12:42:06 +00:00
|
|
|
#include "ha_sync_child.h"
|
2008-11-12 13:28:18 +00:00
|
|
|
#include "ha_sync_socket.h"
|
2009-09-15 12:52:56 +00:00
|
|
|
#include "ha_sync_tunnel.h"
|
2008-11-13 16:01:06 +00:00
|
|
|
#include "ha_sync_dispatcher.h"
|
2008-11-28 15:45:17 +00:00
|
|
|
#include "ha_sync_segments.h"
|
2008-11-27 09:57:31 +00:00
|
|
|
#include "ha_sync_ctl.h"
|
2008-10-24 08:06:22 +00:00
|
|
|
|
|
|
|
|
#include <daemon.h>
|
|
|
|
|
#include <config/child_cfg.h>
|
|
|
|
|
|
|
|
|
|
typedef struct private_ha_sync_plugin_t private_ha_sync_plugin_t;
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* private data of ha_sync plugin
|
|
|
|
|
*/
|
|
|
|
|
struct private_ha_sync_plugin_t {
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* implements plugin interface
|
|
|
|
|
*/
|
|
|
|
|
ha_sync_plugin_t public;
|
|
|
|
|
|
|
|
|
|
/**
|
2008-11-12 13:28:18 +00:00
|
|
|
* Communication socket
|
|
|
|
|
*/
|
|
|
|
|
ha_sync_socket_t *socket;
|
|
|
|
|
|
2009-09-15 12:52:56 +00:00
|
|
|
/**
|
|
|
|
|
* Tunnel securing sync messages.
|
|
|
|
|
*/
|
|
|
|
|
ha_sync_tunnel_t *tunnel;
|
|
|
|
|
|
2008-11-12 13:28:18 +00:00
|
|
|
/**
|
|
|
|
|
* IKE_SA synchronization
|
|
|
|
|
*/
|
|
|
|
|
ha_sync_ike_t *ike;
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* CHILD_SA synchronization
|
2008-10-24 08:06:22 +00:00
|
|
|
*/
|
2008-10-24 12:42:06 +00:00
|
|
|
ha_sync_child_t *child;
|
2008-11-13 16:01:06 +00:00
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Dispatcher to process incoming messages
|
|
|
|
|
*/
|
|
|
|
|
ha_sync_dispatcher_t *dispatcher;
|
2008-11-17 15:58:39 +00:00
|
|
|
|
|
|
|
|
/**
|
2008-11-28 15:45:17 +00:00
|
|
|
* Active/Passive segment management
|
2008-11-17 15:58:39 +00:00
|
|
|
*/
|
2008-11-28 15:45:17 +00:00
|
|
|
ha_sync_segments_t *segments;
|
2008-11-27 09:57:31 +00:00
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Segment control interface via FIFO
|
|
|
|
|
*/
|
|
|
|
|
ha_sync_ctl_t *ctl;
|
2008-10-24 08:06:22 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Implementation of plugin_t.destroy
|
|
|
|
|
*/
|
|
|
|
|
static void destroy(private_ha_sync_plugin_t *this)
|
|
|
|
|
{
|
2009-09-15 12:52:56 +00:00
|
|
|
DESTROY_IF(this->ctl);
|
2008-11-12 13:28:18 +00:00
|
|
|
charon->bus->remove_listener(charon->bus, &this->ike->listener);
|
2008-10-24 12:42:06 +00:00
|
|
|
charon->bus->remove_listener(charon->bus, &this->child->listener);
|
2008-11-12 13:28:18 +00:00
|
|
|
this->ike->destroy(this->ike);
|
2008-10-24 12:42:06 +00:00
|
|
|
this->child->destroy(this->child);
|
2008-11-13 16:01:06 +00:00
|
|
|
this->dispatcher->destroy(this->dispatcher);
|
2008-11-28 15:45:17 +00:00
|
|
|
this->segments->destroy(this->segments);
|
2008-11-12 13:28:18 +00:00
|
|
|
this->socket->destroy(this->socket);
|
2009-09-15 12:52:56 +00:00
|
|
|
DESTROY_IF(this->tunnel);
|
2008-10-24 08:06:22 +00:00
|
|
|
free(this);
|
|
|
|
|
}
|
|
|
|
|
|
2009-09-22 12:53:03 +00:00
|
|
|
/**
|
|
|
|
|
* Convert segment string to mask
|
|
|
|
|
*/
|
|
|
|
|
static segment_mask_t parse_active(char *active)
|
|
|
|
|
{
|
|
|
|
|
enumerator_t *enumerator;
|
|
|
|
|
u_int segment;
|
|
|
|
|
segment_mask_t mask = 0;
|
|
|
|
|
|
|
|
|
|
enumerator = enumerator_create_token(active, ",", " ");
|
|
|
|
|
while (enumerator->enumerate(enumerator, &active))
|
|
|
|
|
{
|
|
|
|
|
segment = atoi(active);
|
|
|
|
|
if (segment > 0 && segment < SEGMENTS_MAX)
|
|
|
|
|
{
|
|
|
|
|
mask |= SEGMENTS_BIT(segment);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
enumerator->destroy(enumerator);
|
|
|
|
|
|
|
|
|
|
return mask;
|
|
|
|
|
}
|
|
|
|
|
|
2008-10-24 08:06:22 +00:00
|
|
|
/*
|
|
|
|
|
* see header file
|
|
|
|
|
*/
|
|
|
|
|
plugin_t *plugin_create()
|
|
|
|
|
{
|
2009-09-15 12:52:56 +00:00
|
|
|
private_ha_sync_plugin_t *this;
|
|
|
|
|
char *local, *remote, *secret;
|
2009-09-22 12:53:03 +00:00
|
|
|
segment_mask_t active;
|
|
|
|
|
u_int count;
|
2009-09-15 12:52:56 +00:00
|
|
|
bool fifo;
|
|
|
|
|
|
|
|
|
|
local = lib->settings->get_str(lib->settings,
|
|
|
|
|
"charon.plugins.ha_sync.local", NULL);
|
|
|
|
|
remote = lib->settings->get_str(lib->settings,
|
|
|
|
|
"charon.plugins.ha_sync.remote", NULL);
|
|
|
|
|
secret = lib->settings->get_str(lib->settings,
|
|
|
|
|
"charon.plugins.ha_sync.secret", NULL);
|
|
|
|
|
fifo = lib->settings->get_bool(lib->settings,
|
|
|
|
|
"charon.plugins.ha_sync.fifo_interface", FALSE);
|
2009-09-22 12:53:03 +00:00
|
|
|
count = min(SEGMENTS_MAX, lib->settings->get_int(lib->settings,
|
|
|
|
|
"charon.plugins.ha_sync.segment_count", 1));
|
|
|
|
|
active = parse_active(lib->settings->get_str(lib->settings,
|
|
|
|
|
"charon.plugins.ha_sync.active_segments", "1"));
|
2009-09-15 12:52:56 +00:00
|
|
|
if (!local || !remote)
|
|
|
|
|
{
|
|
|
|
|
DBG1(DBG_CFG, "HA sync config misses local/remote address");
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
this = malloc_thing(private_ha_sync_plugin_t);
|
2008-10-24 08:06:22 +00:00
|
|
|
|
|
|
|
|
this->public.plugin.destroy = (void(*)(plugin_t*))destroy;
|
2009-09-15 12:52:56 +00:00
|
|
|
this->tunnel = NULL;
|
|
|
|
|
this->ctl = NULL;
|
2008-10-24 08:06:22 +00:00
|
|
|
|
2009-09-15 12:52:56 +00:00
|
|
|
this->socket = ha_sync_socket_create(local, remote);
|
2008-11-12 13:28:18 +00:00
|
|
|
if (!this->socket)
|
|
|
|
|
{
|
|
|
|
|
free(this);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
2009-09-22 12:53:03 +00:00
|
|
|
this->segments = ha_sync_segments_create(this->socket, count, active);
|
2009-09-15 12:52:56 +00:00
|
|
|
if (secret)
|
|
|
|
|
{
|
|
|
|
|
this->tunnel = ha_sync_tunnel_create(secret, local, remote);
|
|
|
|
|
}
|
|
|
|
|
if (fifo)
|
2009-09-15 11:53:06 +00:00
|
|
|
{
|
|
|
|
|
this->ctl = ha_sync_ctl_create(this->segments);
|
|
|
|
|
}
|
2009-09-22 12:33:38 +00:00
|
|
|
this->dispatcher = ha_sync_dispatcher_create(this->socket, this->segments);
|
2009-09-15 12:52:56 +00:00
|
|
|
this->ike = ha_sync_ike_create(this->socket, this->tunnel);
|
|
|
|
|
this->child = ha_sync_child_create(this->socket, this->tunnel);
|
|
|
|
|
charon->bus->add_listener(charon->bus, &this->ike->listener);
|
|
|
|
|
charon->bus->add_listener(charon->bus, &this->child->listener);
|
2008-10-24 08:06:22 +00:00
|
|
|
|
|
|
|
|
return &this->public.plugin;
|
|
|
|
|
}
|
|
|
|
|
|
