strongswan/src/libstrongswan/library.c

/*
 * Copyright (C) 2009 Tobias Brunner
 * Copyright (C) 2008 Martin Willi
 * Hochschule fuer Technik Rapperswil
 *
 * This program is free software; you can redistribute it and/or modify it
 * under the terms of the GNU General Public License as published by the
 * Free Software Foundation; either version 2 of the License, or (at your
 * option) any later version.  See <http://www.fsf.org/copyleft/gpl.txt>.
 *
 * This program is distributed in the hope that it will be useful, but
 * WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
 * or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License
 * for more details.
 */

#include "library.h"

#include <stdlib.h>

#include "debug.h"
#include "threading/thread.h"
#include "utils/identification.h"
#include "utils/host.h"
#ifdef LEAK_DETECTIVE
#include "utils/leak_detective.h"
#endif

#define CHECKSUM_LIBRARY IPSEC_DIR"/libchecksum.so"

typedef struct private_library_t private_library_t;

/**
 * private data of library
 */
struct private_library_t {

	/**
	 * public functions
	 */
	library_t public;

#ifdef LEAK_DETECTIVE
	/**
	 * Memory leak detective, if enabled
	 */
	leak_detective_t *detective;
#endif /* LEAK_DETECTIVE */
};

/**
 * library instance
 */
library_t *lib;

/**
 * Implementation of library_t.destroy
 */
void library_deinit()
{
	private_library_t *this = (private_library_t*)lib;

	this->public.plugins->destroy(this->public.plugins);
	this->public.settings->destroy(this->public.settings);
	this->public.creds->destroy(this->public.creds);
	this->public.encoding->destroy(this->public.encoding);
	this->public.crypto->destroy(this->public.crypto);
	this->public.fetcher->destroy(this->public.fetcher);
	this->public.db->destroy(this->public.db);
	this->public.printf_hook->destroy(this->public.printf_hook);
	if (this->public.integrity)
	{
		this->public.integrity->destroy(this->public.integrity);
	}

#ifdef LEAK_DETECTIVE
	if (this->detective)
	{
		this->detective->destroy(this->detective);
	}
#endif /* LEAK_DETECTIVE */

	threads_deinit();

	free(this);
	lib = NULL;
}

/*
 * see header file
 */
bool library_init(char *settings)
{
	printf_hook_t *pfh;
	private_library_t *this = malloc_thing(private_library_t);
	lib = &this->public;

	threads_init();

	lib->leak_detective = FALSE;

#ifdef LEAK_DETECTIVE
	this->detective = leak_detective_create();
#endif /* LEAK_DETECTIVE */

	pfh = printf_hook_create();
	this->public.printf_hook = pfh;

	pfh->add_handler(pfh, 'b', mem_printf_hook,
					 PRINTF_HOOK_ARGTYPE_POINTER, PRINTF_HOOK_ARGTYPE_INT,
					 PRINTF_HOOK_ARGTYPE_END);
	pfh->add_handler(pfh, 'B', chunk_printf_hook,
					 PRINTF_HOOK_ARGTYPE_POINTER, PRINTF_HOOK_ARGTYPE_END);
	pfh->add_handler(pfh, 'H', host_printf_hook,
					 PRINTF_HOOK_ARGTYPE_POINTER, PRINTF_HOOK_ARGTYPE_END);
	pfh->add_handler(pfh, 'N', enum_printf_hook,
					 PRINTF_HOOK_ARGTYPE_POINTER, PRINTF_HOOK_ARGTYPE_INT,
					 PRINTF_HOOK_ARGTYPE_END);
	pfh->add_handler(pfh, 'T', time_printf_hook,
					 PRINTF_HOOK_ARGTYPE_POINTER, PRINTF_HOOK_ARGTYPE_INT,
					 PRINTF_HOOK_ARGTYPE_END);
	pfh->add_handler(pfh, 'V', time_delta_printf_hook,
					 PRINTF_HOOK_ARGTYPE_POINTER, PRINTF_HOOK_ARGTYPE_POINTER,
					 PRINTF_HOOK_ARGTYPE_END);
	pfh->add_handler(pfh, 'Y', identification_printf_hook,
					 PRINTF_HOOK_ARGTYPE_POINTER, PRINTF_HOOK_ARGTYPE_END);

	this->public.settings = settings_create(settings);
	this->public.crypto = crypto_factory_create();
	this->public.creds = credential_factory_create();
	this->public.encoding = key_encoding_create();
	this->public.fetcher = fetcher_manager_create();
	this->public.db = database_factory_create();
	this->public.plugins = plugin_loader_create();
	this->public.integrity = NULL;

	if (lib->settings->get_bool(lib->settings,
								"libstrongswan.integrity_test", FALSE))
	{
#ifdef INTEGRITY_TEST
		this->public.integrity = integrity_checker_create(CHECKSUM_LIBRARY);
		if (!lib->integrity->check(lib->integrity, "libstrongswan", library_init))
		{
			DBG1("integrity check of libstrongswan failed");
			return FALSE;
		}
#else /* !INTEGRITY_TEST */
		DBG1("integrity test enabled, but not supported");
		return FALSE;
#endif /* INTEGRITY_TEST */
	}
	return TRUE;
}
- library initialization done at a central point (library.c) - some leak_detective fixes 2006-04-20 11:48:57 +00:00			`/*`
printf hooks refactored to increase portability (i.e. support for platforms without glibc-compatible customizable printf - the Vstr string library is currently required on such platforms). 2009-03-12 18:07:32 +00:00			`* Copyright (C) 2009 Tobias Brunner`
merged the modularization branch (credentials) back to trunk 2008-03-13 14:14:44 +00:00			`* Copyright (C) 2008 Martin Willi`
- library initialization done at a central point (library.c) - some leak_detective fixes 2006-04-20 11:48:57 +00:00			`* Hochschule fuer Technik Rapperswil`
			`*`
			`* This program is free software; you can redistribute it and/or modify it`
			`* under the terms of the GNU General Public License as published by the`
			`* Free Software Foundation; either version 2 of the License, or (at your`
			`* option) any later version. See <http://www.fsf.org/copyleft/gpl.txt>.`
			`*`
			`* This program is distributed in the hope that it will be useful, but`
			`* WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY`
			`* or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License`
			`* for more details.`
			`*/`

introduced new logging subsystem using bus: passive listeners can register on the bus active listeners wait for signals actively multiplexing allows multiple listeners to receive debug signals a lot more... 2006-10-18 11:46:13 +00:00			`#include "library.h"`
- library initialization done at a central point (library.c) - some leak_detective fixes 2006-04-20 11:48:57 +00:00
merged the modularization branch (credentials) back to trunk 2008-03-13 14:14:44 +00:00			`#include <stdlib.h>`
better split up of library files "types.h" & "definitions.h" centralized all printf specifier character definitions reuse of arginfo handlers more cleanups fixed more AMD64 issues added DEBUG_LEVEL compile flag to exclude DBGn() statements 2006-10-31 12:27:59 +00:00
Fixing some includes by replacing <> with "". I changed only the includes needed to fix the build on Android, which has an utils.h system header file, but we should probably change all the local includes in libstrongswan to "" and relative paths. 2010-03-01 15:03:18 +00:00			`#include "debug.h"`
			`#include "threading/thread.h"`
			`#include "utils/identification.h"`
			`#include "utils/host.h"`
do not build leak_detective.o if not enabled 2008-04-04 11:38:16 +00:00			`#ifdef LEAK_DETECTIVE`
Fixing some includes by replacing <> with "". I changed only the includes needed to fix the build on Android, which has an utils.h system header file, but we should probably change all the local includes in libstrongswan to "" and relative paths. 2010-03-01 15:03:18 +00:00			`#include "utils/leak_detective.h"`
do not build leak_detective.o if not enabled 2008-04-04 11:38:16 +00:00			`#endif`
better split up of library files "types.h" & "definitions.h" centralized all printf specifier character definitions reuse of arginfo handlers more cleanups fixed more AMD64 issues added DEBUG_LEVEL compile flag to exclude DBGn() statements 2006-10-31 12:27:59 +00:00
integrity checker accepts an option checksum library on construction 2009-06-19 09:40:41 +00:00			`#define CHECKSUM_LIBRARY IPSEC_DIR"/libchecksum.so"`

merged the modularization branch (credentials) back to trunk 2008-03-13 14:14:44 +00:00			`typedef struct private_library_t private_library_t;`
better split up of library files "types.h" & "definitions.h" centralized all printf specifier character definitions reuse of arginfo handlers more cleanups fixed more AMD64 issues added DEBUG_LEVEL compile flag to exclude DBGn() statements 2006-10-31 12:27:59 +00:00
merged EAP framework from branch into trunk includes a lot of other modifications 2007-02-12 15:56:47 +00:00			`/**`
merged the modularization branch (credentials) back to trunk 2008-03-13 14:14:44 +00:00			`* private data of library`
merged EAP framework from branch into trunk includes a lot of other modifications 2007-02-12 15:56:47 +00:00			`*/`
merged the modularization branch (credentials) back to trunk 2008-03-13 14:14:44 +00:00			`struct private_library_t {`
merged EAP framework from branch into trunk includes a lot of other modifications 2007-02-12 15:56:47 +00:00
merged the modularization branch (credentials) back to trunk 2008-03-13 14:14:44 +00:00			`/**`
			`* public functions`
			`*/`
			`library_t public;`
better split up of library files "types.h" & "definitions.h" centralized all printf specifier character definitions reuse of arginfo handlers more cleanups fixed more AMD64 issues added DEBUG_LEVEL compile flag to exclude DBGn() statements 2006-10-31 12:27:59 +00:00
merged the modularization branch (credentials) back to trunk 2008-03-13 14:14:44 +00:00			`#ifdef LEAK_DETECTIVE`
			`/**`
			`* Memory leak detective, if enabled`
			`*/`
			`leak_detective_t *detective;`
			`#endif /* LEAK_DETECTIVE */`
			`};`
introduced new logging subsystem using bus: passive listeners can register on the bus active listeners wait for signals actively multiplexing allows multiple listeners to receive debug signals a lot more... 2006-10-18 11:46:13 +00:00
better split up of library files "types.h" & "definitions.h" centralized all printf specifier character definitions reuse of arginfo handlers more cleanups fixed more AMD64 issues added DEBUG_LEVEL compile flag to exclude DBGn() statements 2006-10-31 12:27:59 +00:00			`/**`
merged the modularization branch (credentials) back to trunk 2008-03-13 14:14:44 +00:00			`* library instance`
better split up of library files "types.h" & "definitions.h" centralized all printf specifier character definitions reuse of arginfo handlers more cleanups fixed more AMD64 issues added DEBUG_LEVEL compile flag to exclude DBGn() statements 2006-10-31 12:27:59 +00:00			`*/`
merged the modularization branch (credentials) back to trunk 2008-03-13 14:14:44 +00:00			`library_t *lib;`
better split up of library files "types.h" & "definitions.h" centralized all printf specifier character definitions reuse of arginfo handlers more cleanups fixed more AMD64 issues added DEBUG_LEVEL compile flag to exclude DBGn() statements 2006-10-31 12:27:59 +00:00
			`/**`
merged the modularization branch (credentials) back to trunk 2008-03-13 14:14:44 +00:00			`* Implementation of library_t.destroy`
better split up of library files "types.h" & "definitions.h" centralized all printf specifier character definitions reuse of arginfo handlers more cleanups fixed more AMD64 issues added DEBUG_LEVEL compile flag to exclude DBGn() statements 2006-10-31 12:27:59 +00:00			`*/`
merged the modularization branch (credentials) back to trunk 2008-03-13 14:14:44 +00:00			`void library_deinit()`
better split up of library files "types.h" & "definitions.h" centralized all printf specifier character definitions reuse of arginfo handlers more cleanups fixed more AMD64 issues added DEBUG_LEVEL compile flag to exclude DBGn() statements 2006-10-31 12:27:59 +00:00			`{`
merged the modularization branch (credentials) back to trunk 2008-03-13 14:14:44 +00:00			`private_library_t this = (private_library_t)lib;`

			`this->public.plugins->destroy(this->public.plugins);`
			`this->public.settings->destroy(this->public.settings);`
			`this->public.creds->destroy(this->public.creds);`
added a facility to hand out fingerprinting/key encoding to the pkcs1/pgp/... plugins 2009-08-18 15:48:34 +00:00			`this->public.encoding->destroy(this->public.encoding);`
merged the modularization branch (credentials) back to trunk 2008-03-13 14:14:44 +00:00			`this->public.crypto->destroy(this->public.crypto);`
			`this->public.fetcher->destroy(this->public.fetcher);`
			`this->public.db->destroy(this->public.db);`
			`this->public.printf_hook->destroy(this->public.printf_hook);`
check integrity of plugins before loading 2009-06-18 15:50:28 +00:00			`if (this->public.integrity)`
			`{`
			`this->public.integrity->destroy(this->public.integrity);`
			`}`
removed trailing spaces ([[:space:]]+$) 2009-09-04 11:46:09 +00:00
merged the modularization branch (credentials) back to trunk 2008-03-13 14:14:44 +00:00			`#ifdef LEAK_DETECTIVE`
			`if (this->detective)`
better split up of library files "types.h" & "definitions.h" centralized all printf specifier character definitions reuse of arginfo handlers more cleanups fixed more AMD64 issues added DEBUG_LEVEL compile flag to exclude DBGn() statements 2006-10-31 12:27:59 +00:00			`{`
merged the modularization branch (credentials) back to trunk 2008-03-13 14:14:44 +00:00			`this->detective->destroy(this->detective);`
better split up of library files "types.h" & "definitions.h" centralized all printf specifier character definitions reuse of arginfo handlers more cleanups fixed more AMD64 issues added DEBUG_LEVEL compile flag to exclude DBGn() statements 2006-10-31 12:27:59 +00:00			`}`
merged the modularization branch (credentials) back to trunk 2008-03-13 14:14:44 +00:00			`#endif /* LEAK_DETECTIVE */`
Using the thread wrapper in charon, libstrongswan and their plugins. 2009-12-17 14:58:12 +00:00
			`threads_deinit();`

merged the modularization branch (credentials) back to trunk 2008-03-13 14:14:44 +00:00			`free(this);`
			`lib = NULL;`
better split up of library files "types.h" & "definitions.h" centralized all printf specifier character definitions reuse of arginfo handlers more cleanups fixed more AMD64 issues added DEBUG_LEVEL compile flag to exclude DBGn() statements 2006-10-31 12:27:59 +00:00			`}`

merged the modularization branch (credentials) back to trunk 2008-03-13 14:14:44 +00:00			`/*`
			`* see header file`
better split up of library files "types.h" & "definitions.h" centralized all printf specifier character definitions reuse of arginfo handlers more cleanups fixed more AMD64 issues added DEBUG_LEVEL compile flag to exclude DBGn() statements 2006-10-31 12:27:59 +00:00			`*/`
library initialization fails if libstrongswan checksum is invalid 2009-06-19 10:01:52 +00:00			`bool library_init(char *settings)`
better split up of library files "types.h" & "definitions.h" centralized all printf specifier character definitions reuse of arginfo handlers more cleanups fixed more AMD64 issues added DEBUG_LEVEL compile flag to exclude DBGn() statements 2006-10-31 12:27:59 +00:00			`{`
merged the modularization branch (credentials) back to trunk 2008-03-13 14:14:44 +00:00			`printf_hook_t *pfh;`
			`private_library_t *this = malloc_thing(private_library_t);`
			`lib = &this->public;`
removed trailing spaces ([[:space:]]+$) 2009-09-04 11:46:09 +00:00
Using the thread wrapper in charon, libstrongswan and their plugins. 2009-12-17 14:58:12 +00:00			`threads_init();`

capability API to allow plugin-controlled capability set 2008-08-28 16:27:48 +00:00			`lib->leak_detective = FALSE;`
removed trailing spaces ([[:space:]]+$) 2009-09-04 11:46:09 +00:00
merged the modularization branch (credentials) back to trunk 2008-03-13 14:14:44 +00:00			`#ifdef LEAK_DETECTIVE`
			`this->detective = leak_detective_create();`
			`#endif /* LEAK_DETECTIVE */`
fixed 64 bit issue with print time 2007-01-20 15:13:05 +00:00
merged the modularization branch (credentials) back to trunk 2008-03-13 14:14:44 +00:00			`pfh = printf_hook_create();`
			`this->public.printf_hook = pfh;`
removed trailing spaces ([[:space:]]+$) 2009-09-04 11:46:09 +00:00
printf hooks refactored to increase portability (i.e. support for platforms without glibc-compatible customizable printf - the Vstr string library is currently required on such platforms). 2009-03-12 18:07:32 +00:00			`pfh->add_handler(pfh, 'b', mem_printf_hook,`
			`PRINTF_HOOK_ARGTYPE_POINTER, PRINTF_HOOK_ARGTYPE_INT,`
			`PRINTF_HOOK_ARGTYPE_END);`
			`pfh->add_handler(pfh, 'B', chunk_printf_hook,`
			`PRINTF_HOOK_ARGTYPE_POINTER, PRINTF_HOOK_ARGTYPE_END);`
			`pfh->add_handler(pfh, 'H', host_printf_hook,`
			`PRINTF_HOOK_ARGTYPE_POINTER, PRINTF_HOOK_ARGTYPE_END);`
			`pfh->add_handler(pfh, 'N', enum_printf_hook,`
			`PRINTF_HOOK_ARGTYPE_POINTER, PRINTF_HOOK_ARGTYPE_INT,`
			`PRINTF_HOOK_ARGTYPE_END);`
			`pfh->add_handler(pfh, 'T', time_printf_hook,`
			`PRINTF_HOOK_ARGTYPE_POINTER, PRINTF_HOOK_ARGTYPE_INT,`
			`PRINTF_HOOK_ARGTYPE_END);`
			`pfh->add_handler(pfh, 'V', time_delta_printf_hook,`
			`PRINTF_HOOK_ARGTYPE_POINTER, PRINTF_HOOK_ARGTYPE_POINTER,`
			`PRINTF_HOOK_ARGTYPE_END);`
merging changes from portability branch back to trunk important change for developers: %Y replaces %D to print identities! 2009-04-30 11:37:54 +00:00			`pfh->add_handler(pfh, 'Y', identification_printf_hook,`
			`PRINTF_HOOK_ARGTYPE_POINTER, PRINTF_HOOK_ARGTYPE_END);`
removed trailing spaces ([[:space:]]+$) 2009-09-04 11:46:09 +00:00
make use of the crypto_tester in the crypto_factory libstrongswan.crypto.test.on_add to test algorithms during initialization libstrongswan.crypto.test.on_create to test algorithms on each instantiation 2009-06-10 09:22:43 +00:00			`this->public.settings = settings_create(settings);`
merged the modularization branch (credentials) back to trunk 2008-03-13 14:14:44 +00:00			`this->public.crypto = crypto_factory_create();`
			`this->public.creds = credential_factory_create();`
added a facility to hand out fingerprinting/key encoding to the pkcs1/pgp/... plugins 2009-08-18 15:48:34 +00:00			`this->public.encoding = key_encoding_create();`
merged the modularization branch (credentials) back to trunk 2008-03-13 14:14:44 +00:00			`this->public.fetcher = fetcher_manager_create();`
			`this->public.db = database_factory_create();`
			`this->public.plugins = plugin_loader_create();`
check integrity of plugins before loading 2009-06-18 15:50:28 +00:00			`this->public.integrity = NULL;`
removed trailing spaces ([[:space:]]+$) 2009-09-04 11:46:09 +00:00
check integrity of plugins before loading 2009-06-18 15:50:28 +00:00			`if (lib->settings->get_bool(lib->settings,`
			`"libstrongswan.integrity_test", FALSE))`
			`{`
build integrity_checker.c only if --enable-integrity-test set 2009-06-19 15:37:08 +00:00			`#ifdef INTEGRITY_TEST`
integrity checker accepts an option checksum library on construction 2009-06-19 09:40:41 +00:00			`this->public.integrity = integrity_checker_create(CHECKSUM_LIBRARY);`
check on-disk and loaded segment integrity of libstrongswan 2009-06-19 15:27:57 +00:00			`if (!lib->integrity->check(lib->integrity, "libstrongswan", library_init))`
check integrity of libstrongswan 2009-06-18 15:51:22 +00:00			`{`
			`DBG1("integrity check of libstrongswan failed");`
library initialization fails if libstrongswan checksum is invalid 2009-06-19 10:01:52 +00:00			`return FALSE;`
check integrity of libstrongswan 2009-06-18 15:51:22 +00:00			`}`
build integrity_checker.c only if --enable-integrity-test set 2009-06-19 15:37:08 +00:00			`#else /* !INTEGRITY_TEST */`
			`DBG1("integrity test enabled, but not supported");`
			`return FALSE;`
			`#endif /* INTEGRITY_TEST */`
check integrity of plugins before loading 2009-06-18 15:50:28 +00:00			`}`
library initialization fails if libstrongswan checksum is invalid 2009-06-19 10:01:52 +00:00			`return TRUE;`
better split up of library files "types.h" & "definitions.h" centralized all printf specifier character definitions reuse of arginfo handlers more cleanups fixed more AMD64 issues added DEBUG_LEVEL compile flag to exclude DBGn() statements 2006-10-31 12:27:59 +00:00			`}`