strongswan/src/charon/config/connections/local_connection_store.c

/**
 * @file local_connection_store.c
 *
 * @brief Implementation of local_connection_store_t.
 *
 */

/*
 * Copyright (C) 2006 Martin Willi
 * Hochschule fuer Technik Rapperswil
 *
 * This program is free software; you can redistribute it and/or modify it
 * under the terms of the GNU General Public License as published by the
 * Free Software Foundation; either version 2 of the License, or (at your
 * option) any later version.  See <http://www.fsf.org/copyleft/gpl.txt>.
 *
 * This program is distributed in the hope that it will be useful, but
 * WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
 * or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License
 * for more details.
 */

#include <string.h>

#include "local_connection_store.h"

#include <utils/linked_list.h>
#include <utils/logger_manager.h>


typedef struct private_local_connection_store_t private_local_connection_store_t;

/**
 * Private data of an local_connection_store_t object
 */
struct private_local_connection_store_t {

	/**
	 * Public part
	 */
	local_connection_store_t public;
	
	/**
	 * stored connection
	 */
	linked_list_t *connections;
	
	/**
	 * Mutex to exclusivly access connection list
	 */
	pthread_mutex_t mutex;
	
	/**
	 * Assigned logger
	 */
	logger_t *logger;
};


/**
 * Implementation of connection_store_t.get_connection_by_hosts.
 */
static connection_t *get_connection_by_hosts(private_local_connection_store_t *this, host_t *my_host, host_t *other_host)
{
	typedef enum {
		PRIO_UNDEFINED=		0x00,
		PRIO_ADDR_ANY= 		0x01,
		PRIO_ADDR_MATCH=	0x02
	} prio_t;

	prio_t best_prio = PRIO_UNDEFINED;

	iterator_t *iterator;
	connection_t *candidate;
	connection_t *found = NULL;
	
	this->logger->log(this->logger, CONTROL|LEVEL1, "looking for connection for host pair %s...%s",
					  my_host->get_string(my_host), other_host->get_string(other_host));
	
	pthread_mutex_lock(&(this->mutex));
	iterator = this->connections->create_iterator(this->connections, TRUE);
	/* determine closest matching connection */
	while (iterator->has_next(iterator))
	{
		host_t *candidate_my_host;
		host_t *candidate_other_host;
		
		iterator->current(iterator, (void**)&candidate);

		candidate_my_host    = candidate->get_my_host(candidate);
		candidate_other_host = candidate->get_other_host(candidate);

		/* my_host addresses must match*/
		if (my_host->ip_equals(my_host, candidate_my_host))
		{
			prio_t prio = PRIO_UNDEFINED;

			/* exact match of peer host address or wildcard address? */
			if (other_host->ip_equals(other_host, candidate_other_host))
			{
				prio |= PRIO_ADDR_MATCH;
			}
			else if (candidate_other_host->is_anyaddr(candidate_other_host))
			{
				prio |= PRIO_ADDR_ANY;
			}

			this->logger->log(this->logger, CONTROL|LEVEL2,
							 "candidate connection \"%s\": %s...%s (prio=%d)",
							  candidate->get_name(candidate),
							  candidate_my_host->get_string(candidate_my_host),
							  candidate_other_host->get_string(candidate_other_host),
							  prio);

			if (prio > best_prio)
			{
				found = candidate;
				best_prio = prio;
			}			
		}
	}
	iterator->destroy(iterator);
	
	if (found)
	{
		host_t *found_my_host    = found->get_my_host(found);
		host_t *found_other_host = found->get_other_host(found);
		
		this->logger->log(this->logger, CONTROL,
						 "found matching connection \"%s\": %s...%s (prio=%d)",
						  found->get_name(found),
						  found_my_host->get_string(found_my_host),
						  found_other_host->get_string(found_other_host),
						  best_prio);

		found = found->clone(found);
		if (best_prio & PRIO_ADDR_ANY)
		{
			/* replace %any by the peer's address */
			found->update_other_host(found, other_host->clone(other_host));
		}
	}
	pthread_mutex_unlock(&(this->mutex));
	return found;
}

/**
 * Implementation of connection_store_t.get_connection_by_name.
 */
static connection_t *get_connection_by_name(private_local_connection_store_t *this, char *name)
{
	iterator_t *iterator;
	connection_t *current, *found = NULL;
	
	pthread_mutex_lock(&(this->mutex));
	iterator = this->connections->create_iterator(this->connections, TRUE);
	while (iterator->has_next(iterator))
	{
		iterator->current(iterator, (void**)&current);
		if (strcmp(name, current->get_name(current)) == 0)
		{
			found = current->clone(current);
			break;
		}
	}
	iterator->destroy(iterator);
	pthread_mutex_unlock(&(this->mutex));
	
	return found;
}

/**
 * Implementation of connection_store_t.delete_connection.
 */
static status_t delete_connection(private_local_connection_store_t *this, char *name)
{
	iterator_t *iterator;
	connection_t *current;
	bool found = FALSE;
	
	pthread_mutex_lock(&(this->mutex));
	iterator = this->connections->create_iterator(this->connections, TRUE);
	while (iterator->has_next(iterator))
	{
		iterator->current(iterator, (void **)&current);
		if (strcmp(current->get_name(current), name) == 0)
		{
			/* remove connection from list, and destroy it */
			iterator->remove(iterator);
			current->destroy(current);
			found = TRUE;
			break;
		}
	}
	iterator->destroy(iterator);
	pthread_mutex_unlock(&(this->mutex));
	if (found)
	{
		return SUCCESS;
	}
	return NOT_FOUND;
}

/**
 * Implementation of connection_store_t.add_connection.
 */
static status_t add_connection(private_local_connection_store_t *this, connection_t *connection)
{
	pthread_mutex_lock(&(this->mutex));
	this->connections->insert_last(this->connections, connection);
	pthread_mutex_unlock(&(this->mutex));
	return SUCCESS;
}

/**
 * Implementation of connection_store_t.log_connections.
 */
void log_connections(private_local_connection_store_t *this, logger_t *logger, char *name)
{
	iterator_t *iterator;
	connection_t *current;
	
	if (logger == NULL)
	{
		logger = this->logger;
	}
	
	pthread_mutex_lock(&(this->mutex));

	iterator = this->connections->create_iterator(this->connections, TRUE);

	if (iterator->get_count(iterator))
	{
		logger->log(logger, CONTROL, "Templates:");
	}
	while (iterator->has_next(iterator))
	{
		iterator->current(iterator, (void**)&current);
		if (current->is_ikev2(current) && ( name == NULL || streq(name, current->get_name(current))))
		{
			host_t *my_host = current->get_my_host(current);
			host_t *other_host = current->get_other_host(current);

			logger->log(logger, CONTROL, "  \"%s\": %s...%s",
						current->get_name(current),
						my_host->get_string(my_host),
						other_host->get_string(other_host));
		}
	}
	iterator->destroy(iterator);
	pthread_mutex_unlock(&(this->mutex));
}

/**
 * Implementation of connection_store_t.destroy.
 */
static void destroy (private_local_connection_store_t *this)
{
	connection_t *connection;
	
	pthread_mutex_lock(&(this->mutex));
	while (this->connections->remove_last(this->connections, (void**)&connection) == SUCCESS)
	{
		connection->destroy(connection);
	}
	this->connections->destroy(this->connections);
	pthread_mutex_unlock(&(this->mutex));
	free(this);
}

/**
 * Described in header.
 */
local_connection_store_t * local_connection_store_create(void)
{
	private_local_connection_store_t *this = malloc_thing(private_local_connection_store_t);

	this->public.connection_store.get_connection_by_hosts = (connection_t*(*)(connection_store_t*,host_t*,host_t*))get_connection_by_hosts;
	this->public.connection_store.get_connection_by_name = (connection_t*(*)(connection_store_t*,char*))get_connection_by_name;
	this->public.connection_store.delete_connection = (status_t(*)(connection_store_t*,char*))delete_connection;
	this->public.connection_store.add_connection = (status_t(*)(connection_store_t*,connection_t*))add_connection;
	this->public.connection_store.log_connections = (void(*)(connection_store_t*,logger_t*,char*))log_connections;
	this->public.connection_store.destroy = (void(*)(connection_store_t*))destroy;
	
	/* private variables */
	this->connections = linked_list_create();
	this->logger = logger_manager->get_logger(logger_manager, CONFIG);
	pthread_mutex_init(&(this->mutex), NULL);

	return (&this->public);
}