8 #include <trp_internal.h>
10 /* Threading note: mutex lock is only used for protecting get_status() and set_status().
11 * If needed, locking for other operations (notably adding/removing connections) must be managed
12 * by whomever is holding on to the connection list. */
14 int trp_connection_lock(TRP_CONNECTION *conn)
16 return pthread_mutex_lock(&(conn->mutex));
19 int trp_connection_unlock(TRP_CONNECTION *conn)
21 return pthread_mutex_unlock(&(conn->mutex));
24 int trp_connection_get_fd(TRP_CONNECTION *conn)
29 void trp_connection_set_fd(TRP_CONNECTION *conn, int fd)
34 /* we use the gss name of the peer to identify it */
35 static TRP_RC trp_connection_set_peer(TRP_CONNECTION *conn)
37 OM_uint32 major_status=0;
38 OM_uint32 minor_status=0;
39 gss_name_t source_name=GSS_C_NO_NAME;
40 gss_name_t target_name=GSS_C_NO_NAME;
41 gss_buffer_desc peer_display_name={0,NULL};
44 tr_debug("gssctx = %p", trp_connection_get_gssctx(conn));
45 tr_debug("*gssctx = %p", *trp_connection_get_gssctx(conn));
46 major_status=gss_inquire_context(&minor_status,
47 *trp_connection_get_gssctx(conn),
56 if (major_status != GSS_S_COMPLETE) {
57 tr_err("trp_connection_set_peer: unable to identify GSS peer.");
58 if (source_name!=GSS_C_NO_NAME)
59 gss_release_name(&minor_status, &source_name);
60 if (target_name!=GSS_C_NO_NAME)
61 gss_release_name(&minor_status, &target_name);
66 /* we are the source, peer is the target */
67 major_status=gss_display_name(&minor_status, target_name, &peer_display_name, NULL);
69 /* we are the target, peer is the source */
70 major_status=gss_display_name(&minor_status, source_name, &peer_display_name, NULL);
72 gss_release_name(&minor_status, &source_name);
73 gss_release_name(&minor_status, &target_name);
75 conn->peer=tr_new_name(peer_display_name.value);
77 tr_err("trp_connection_set_peer: unable to allocate peer name.");
79 if (conn->peer->len != peer_display_name.length) {
80 tr_err("trp_connection_set_peer: error converting GSS display name to TR_NAME.");
81 tr_free_name(conn->peer);
85 gss_release_buffer(&minor_status, &peer_display_name);
93 TR_NAME *trp_connection_get_peer(TRP_CONNECTION *conn)
98 TR_NAME *trp_connection_get_gssname(TRP_CONNECTION *conn)
100 return conn->gssname;
103 void trp_connection_set_gssname(TRP_CONNECTION *conn, TR_NAME *gssname)
105 conn->gssname=gssname;
108 gss_ctx_id_t *trp_connection_get_gssctx(TRP_CONNECTION *conn)
113 void trp_connection_set_gssctx(TRP_CONNECTION *conn, gss_ctx_id_t *gssctx)
118 TRP_CONNECTION_STATUS trp_connection_get_status(TRP_CONNECTION *conn)
120 TRP_CONNECTION_STATUS status=TRP_CONNECTION_UNKNOWN;
121 trp_connection_lock(conn);
123 trp_connection_unlock(conn);
127 static void trp_connection_set_status(TRP_CONNECTION *conn, TRP_CONNECTION_STATUS status)
129 TRP_CONNECTION_STATUS old_status=TRP_CONNECTION_UNKNOWN;
130 trp_connection_lock(conn);
131 old_status=conn->status;
133 trp_connection_unlock(conn);
134 if ((status!=old_status) && (conn->status_change_cb!=NULL))
135 conn->status_change_cb(conn, conn->status_change_cookie);
138 pthread_t *trp_connection_get_thread(TRP_CONNECTION *conn)
143 void trp_connection_set_thread(TRP_CONNECTION *conn, pthread_t *thread)
148 TRP_CONNECTION *trp_connection_get_next(TRP_CONNECTION *conn)
153 static void trp_connection_set_next(TRP_CONNECTION *conn, TRP_CONNECTION *next)
158 /* Ok to call more than once; guarantees connection no longer in the list. Does not free removed element.
159 * Returns handle to new list, you must replace your old handle on the list with this. */
160 TRP_CONNECTION *trp_connection_remove(TRP_CONNECTION *conn, TRP_CONNECTION *remove)
162 TRP_CONNECTION *cur=conn;
163 TRP_CONNECTION *last=NULL;
168 /* first element is a special case */
170 conn=trp_connection_get_next(cur); /* advance list head */
172 /* it was not the first element */
174 cur=trp_connection_get_next(cur);
177 trp_connection_set_next(last, trp_connection_get_next(cur));
181 cur=trp_connection_get_next(cur);
187 static TRP_CONNECTION *trp_connection_get_tail(TRP_CONNECTION *conn)
189 while((conn!=NULL)&&(trp_connection_get_next(conn)!=NULL))
190 conn=trp_connection_get_next(conn);
194 void trp_connection_append(TRP_CONNECTION *conn, TRP_CONNECTION *new)
196 trp_connection_set_next(trp_connection_get_tail(conn), new);
199 static void trp_connection_mutex_init(TRP_CONNECTION *conn)
201 pthread_mutex_init(&(conn->mutex), NULL);
204 /* talloc destructor for a connection: ensures connection is closed, memory freed */
205 static int trp_connection_destructor(void *object)
207 TRP_CONNECTION *conn=talloc_get_type_abort(object, TRP_CONNECTION); /* aborts on wrong type */
208 if ((trp_connection_get_status(conn)!=TRP_CONNECTION_DOWN)
209 && (trp_connection_get_fd(conn)!=-1))
210 close(trp_connection_get_fd(conn));
211 if (conn->peer!=NULL)
212 tr_free_name(conn->peer);
213 if (conn->gssname!=NULL)
214 tr_free_name(conn->gssname);
218 TRP_CONNECTION *trp_connection_new(TALLOC_CTX *mem_ctx)
220 TRP_CONNECTION *new_conn=talloc(mem_ctx, TRP_CONNECTION);
221 gss_ctx_id_t *gssctx=NULL;
222 pthread_t *thread=NULL;
225 if (new_conn != NULL) {
226 trp_connection_set_next(new_conn, NULL);
227 trp_connection_set_fd(new_conn, -1);
228 trp_connection_set_gssname(new_conn, NULL);
229 trp_connection_mutex_init(new_conn);
230 new_conn->peer=NULL; /* no true set function for this */
231 new_conn->status_change_cb=NULL;
232 new_conn->status_change_cookie=NULL;
233 new_conn->status=TRP_CONNECTION_DOWN; /* set directly in the constructor */
235 thread=talloc(new_conn, pthread_t);
237 talloc_free(new_conn);
240 trp_connection_set_thread(new_conn, thread);
242 gssctx=talloc(new_conn, gss_ctx_id_t);
244 talloc_free(new_conn);
247 trp_connection_set_gssctx(new_conn, gssctx);
248 talloc_set_destructor((void *)new_conn, trp_connection_destructor);
253 void trp_connection_free(TRP_CONNECTION *conn)
258 void trp_connection_close(TRP_CONNECTION *conn)
260 close(trp_connection_get_fd(conn));
261 trp_connection_set_fd(conn, -1);
262 trp_connection_set_status(conn, TRP_CONNECTION_DOWN);
265 /* returns 0 on authorization success, 1 on failure, or -1 in case of error */
266 int trp_connection_auth(TRP_CONNECTION *conn, TRP_AUTH_FUNC auth_callback, void *callback_data)
269 int auth, autherr = 0;
270 gss_buffer_desc nameBuffer = {0, NULL};
271 gss_ctx_id_t *gssctx=trp_connection_get_gssctx(conn);
273 /* TODO: shouldn't really peek into TR_NAME... */
274 nameBuffer.length = trp_connection_get_gssname(conn)->len;
275 nameBuffer.value = trp_connection_get_gssname(conn)->buf;
277 tr_debug("trp_connection_auth: beginning passive authentication");
278 rc = gsscon_passive_authenticate(trp_connection_get_fd(conn), nameBuffer, gssctx, auth_callback, callback_data);
279 gss_release_buffer(NULL, &nameBuffer);
281 tr_debug("trp_connection_auth: Error from gsscon_passive_authenticate(), rc = 0x%08X.", rc);
285 tr_debug("trp_connection_auth: beginning second stage authentication");
286 if (rc = gsscon_authorize(*gssctx, &auth, &autherr)) {
287 tr_debug("trp_connection_auth: Error from gsscon_authorize, rc = %d, autherr = %d.",
292 trp_connection_set_peer(conn);
293 trp_connection_set_status(conn, TRP_CONNECTION_UP);
296 tr_debug("trp_connection_auth: Connection authenticated, fd = %d.", trp_connection_get_fd(conn));
298 tr_debug("trp_connection_auth: Authentication failed, fd = %d.", trp_connection_get_fd(conn));
303 /* Accept connection */
304 TRP_CONNECTION *trp_connection_accept(TALLOC_CTX *mem_ctx, int listen, TR_NAME *gssname)
307 TRP_CONNECTION *conn=NULL;
309 conn_fd = accept(listen, NULL, NULL);
312 tr_notice("trp_connection_accept: accept() returned error.");
315 conn=trp_connection_new(mem_ctx);
316 trp_connection_set_fd(conn, conn_fd);
317 trp_connection_set_gssname(conn, gssname);
321 /* Initiate connection */
322 TRP_RC trp_connection_initiate(TRP_CONNECTION *conn, char *server, unsigned int port)
326 unsigned int use_port=0;
334 tr_err("trp_connection_initiate: null TRP_CONNECTION");
338 tr_debug("trp_connection_initiate: opening GSS connection to %s:%d",
341 err = gsscon_connect(server,
345 trp_connection_get_gssctx(conn));
347 tr_debug("trp_connection_initiate: connection failed.");
351 tr_debug("trp_connection_initiate: connected.");
352 trp_connection_set_fd(conn, fd);
353 trp_connection_set_peer(conn);
354 trp_connection_set_status(conn, TRP_CONNECTION_UP);