2 * Copyright 2001-2007 Internet2
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
8 * http://www.apache.org/licenses/LICENSE-2.0
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
18 * XMLToolingConfig.cpp
20 * Library configuration
24 #include "exceptions.h"
25 #include "XMLToolingConfig.h"
26 #include "encryption/Encrypter.h"
27 #include "impl/UnknownElement.h"
28 #include "security/TrustEngine.h"
29 #include "security/OpenSSLCryptoX509CRL.h"
30 #include "security/CredentialResolver.h"
31 #include "security/KeyInfoResolver.h"
32 #include "signature/Signature.h"
33 #include "soap/SOAP.h"
34 #include "soap/SOAPTransport.h"
35 #include "util/CurlNetAccessor.h"
37 #include "util/ReplayCache.h"
38 #include "util/StorageService.h"
39 #include "util/TemplateEngine.h"
40 #include "util/URLEncoder.h"
41 #include "util/XMLConstants.h"
42 #include "validation/ValidatorSuite.h"
49 #include <curl/curl.h>
50 #include <log4cpp/Category.hh>
51 #include <log4cpp/PropertyConfigurator.hh>
52 #include <log4cpp/OstreamAppender.hh>
53 #include <xercesc/util/PlatformUtils.hpp>
54 #ifndef XMLTOOLING_NO_XMLSEC
55 #include <xsec/framework/XSECProvider.hpp>
56 #include <openssl/err.h>
59 using namespace soap11;
60 using namespace xmlencryption;
61 using namespace xmlsignature;
62 using namespace xmltooling;
63 using namespace log4cpp;
66 DECL_XMLTOOLING_EXCEPTION_FACTORY(XMLParserException,xmltooling);
67 DECL_XMLTOOLING_EXCEPTION_FACTORY(XMLObjectException,xmltooling);
68 DECL_XMLTOOLING_EXCEPTION_FACTORY(MarshallingException,xmltooling);
69 DECL_XMLTOOLING_EXCEPTION_FACTORY(UnmarshallingException,xmltooling);
70 DECL_XMLTOOLING_EXCEPTION_FACTORY(UnknownElementException,xmltooling);
71 DECL_XMLTOOLING_EXCEPTION_FACTORY(UnknownAttributeException,xmltooling);
72 DECL_XMLTOOLING_EXCEPTION_FACTORY(UnknownExtensionException,xmltooling);
73 DECL_XMLTOOLING_EXCEPTION_FACTORY(ValidationException,xmltooling);
74 DECL_XMLTOOLING_EXCEPTION_FACTORY(IOException,xmltooling);
76 #ifndef XMLTOOLING_NO_XMLSEC
77 DECL_XMLTOOLING_EXCEPTION_FACTORY(XMLSecurityException,xmltooling);
78 DECL_XMLTOOLING_EXCEPTION_FACTORY(SignatureException,xmlsignature);
79 DECL_XMLTOOLING_EXCEPTION_FACTORY(EncryptionException,xmlencryption);
82 namespace xmltooling {
83 static XMLToolingInternalConfig g_config;
84 static vector<Mutex*> g_openssl_locks;
86 extern "C" void openssl_locking_callback(int mode,int n,const char *file,int line)
88 if (mode & CRYPTO_LOCK)
89 g_openssl_locks[n]->lock();
91 g_openssl_locks[n]->unlock();
95 extern "C" unsigned long openssl_thread_id(void)
97 return (unsigned long)(pthread_self());
102 XMLToolingConfig& XMLToolingConfig::getConfig()
107 XMLToolingInternalConfig& XMLToolingInternalConfig::getInternalConfig()
112 bool XMLToolingInternalConfig::log_config(const char* config)
115 if (!config || !*config)
116 config=getenv("XMLTOOLING_LOG_CONFIG");
117 if (!config || !*config)
121 Category& root = Category::getRoot();
122 if (!strcmp(config,"DEBUG")) {
123 root.setPriority(Priority::DEBUG);
126 else if (!strcmp(config,"INFO")) {
127 root.setPriority(Priority::INFO);
130 else if (!strcmp(config,"NOTICE")) {
131 root.setPriority(Priority::NOTICE);
134 else if (!strcmp(config,"WARN")) {
135 root.setPriority(Priority::WARN);
138 else if (!strcmp(config,"ERROR")) {
139 root.setPriority(Priority::ERROR);
142 else if (!strcmp(config,"CRIT")) {
143 root.setPriority(Priority::CRIT);
146 else if (!strcmp(config,"ALERT")) {
147 root.setPriority(Priority::ALERT);
150 else if (!strcmp(config,"EMERG")) {
151 root.setPriority(Priority::EMERG);
154 else if (!strcmp(config,"FATAL")) {
155 root.setPriority(Priority::FATAL);
159 root.setAppender(new OstreamAppender("default",&cerr));
161 PropertyConfigurator::configure(config);
163 catch (const ConfigureFailure& e) {
164 Category::getInstance(XMLTOOLING_LOGCAT".Logging").crit("failed to initialize log4cpp: %s", e.what());
171 void XMLToolingConfig::setReplayCache(ReplayCache* replayCache)
173 delete m_replayCache;
174 m_replayCache = replayCache;
177 void XMLToolingConfig::setTemplateEngine(TemplateEngine* templateEngine)
179 delete m_templateEngine;
180 m_templateEngine = templateEngine;
183 void XMLToolingConfig::setURLEncoder(URLEncoder* urlEncoder)
186 m_urlEncoder = urlEncoder;
189 bool XMLToolingInternalConfig::init()
192 xmltooling::NDC ndc("init");
194 Category& log=Category::getInstance(XMLTOOLING_LOGCAT".XMLToolingConfig");
196 log.debug("library initialization started");
198 if (curl_global_init(CURL_GLOBAL_ALL)) {
199 log.fatal("failed to initialize libcurl, OpenSSL, or Winsock");
202 log.debug("libcurl %s initialization complete", LIBCURL_VERSION);
204 XMLPlatformUtils::Initialize();
205 auto_ptr<XMLNetAccessor> curler(new CurlNetAccessor());
206 delete XMLPlatformUtils::fgNetAccessor;
207 XMLPlatformUtils::fgNetAccessor = curler.release();
208 log.debug("Xerces initialization complete");
210 #ifndef XMLTOOLING_NO_XMLSEC
211 XSECPlatformUtils::Initialise();
212 m_xsecProvider=new XSECProvider();
213 log.debug("XMLSec initialization complete");
216 m_parserPool=new ParserPool();
217 m_validatingPool=new ParserPool(true,true);
218 m_lock=XMLPlatformUtils::makeMutex();
220 // Load catalogs from path.
221 if (!catalog_path.empty()) {
222 char* catpath=strdup(catalog_path.c_str());
225 while (start && *start) {
226 sep=strchr(start,PATH_SEPARATOR_CHAR);
229 auto_ptr_XMLCh temp(start);
230 m_validatingPool->loadCatalog(temp.get());
231 start = sep ? sep + 1 : NULL;
236 // default registrations
237 XMLObjectBuilder::registerDefaultBuilder(new UnknownElementBuilder());
239 registerKeyInfoClasses();
240 registerEncryptionClasses();
241 registerSOAPClasses();
243 REGISTER_XMLTOOLING_EXCEPTION_FACTORY(XMLParserException,xmltooling);
244 REGISTER_XMLTOOLING_EXCEPTION_FACTORY(XMLObjectException,xmltooling);
245 REGISTER_XMLTOOLING_EXCEPTION_FACTORY(MarshallingException,xmltooling);
246 REGISTER_XMLTOOLING_EXCEPTION_FACTORY(UnmarshallingException,xmltooling);
247 REGISTER_XMLTOOLING_EXCEPTION_FACTORY(UnknownElementException,xmltooling);
248 REGISTER_XMLTOOLING_EXCEPTION_FACTORY(UnknownAttributeException,xmltooling);
249 REGISTER_XMLTOOLING_EXCEPTION_FACTORY(ValidationException,xmltooling);
250 REGISTER_XMLTOOLING_EXCEPTION_FACTORY(IOException,xmltooling);
252 #ifndef XMLTOOLING_NO_XMLSEC
253 XMLObjectBuilder::registerBuilder(QName(xmlconstants::XMLSIG_NS,Signature::LOCAL_NAME),new SignatureBuilder());
254 REGISTER_XMLTOOLING_EXCEPTION_FACTORY(XMLSecurityException,xmltooling);
255 REGISTER_XMLTOOLING_EXCEPTION_FACTORY(SignatureException,xmlsignature);
256 REGISTER_XMLTOOLING_EXCEPTION_FACTORY(EncryptionException,xmlencryption);
257 registerKeyInfoResolvers();
258 registerCredentialResolvers();
259 registerTrustEngines();
260 registerXMLAlgorithms();
262 registerSOAPTransports();
263 initSOAPTransports();
264 registerStorageServices();
266 m_urlEncoder = new URLEncoder();
267 m_keyInfoResolver = KeyInfoResolverManager.newPlugin(INLINE_KEYINFO_RESOLVER,NULL);
269 // Register xml:id as an ID attribute.
270 static const XMLCh xmlid[] = UNICODE_LITERAL_2(i,d);
271 AttributeExtensibleXMLObject::registerIDAttribute(QName(xmlconstants::XML_NS, xmlid));
273 catch (const xercesc::XMLException&) {
274 log.fatal("caught exception while initializing Xerces");
275 curl_global_cleanup();
279 // Set up OpenSSL locking.
280 for (int i=0; i<CRYPTO_num_locks(); i++)
281 g_openssl_locks.push_back(Mutex::create());
282 CRYPTO_set_locking_callback(openssl_locking_callback);
284 CRYPTO_set_id_callback(openssl_thread_id);
287 log.info("library initialization complete");
291 void XMLToolingInternalConfig::term()
293 CRYPTO_set_locking_callback(NULL);
294 for_each(g_openssl_locks.begin(), g_openssl_locks.end(), xmltooling::cleanup<Mutex>());
295 g_openssl_locks.clear();
297 SchemaValidators.destroyValidators();
298 XMLObjectBuilder::destroyBuilders();
299 XMLToolingException::deregisterFactories();
300 AttributeExtensibleXMLObject::deregisterIDAttributes();
302 StorageServiceManager.deregisterFactories();
303 termSOAPTransports();
304 SOAPTransportManager.deregisterFactories();
305 #ifndef XMLTOOLING_NO_XMLSEC
306 TrustEngineManager.deregisterFactories();
307 CredentialResolverManager.deregisterFactories();
308 KeyInfoResolverManager.deregisterFactories();
309 m_algorithmMap.clear();
312 delete m_keyInfoResolver;
313 m_keyInfoResolver = NULL;
315 delete m_replayCache;
316 m_replayCache = NULL;
318 delete m_templateEngine;
319 m_templateEngine = NULL;
324 for (vector<void*>::reverse_iterator i=m_libhandles.rbegin(); i!=m_libhandles.rend(); i++) {
326 FARPROC fn=GetProcAddress(static_cast<HMODULE>(*i),"xmltooling_extension_term");
329 FreeLibrary(static_cast<HMODULE>(*i));
330 #elif defined(HAVE_DLFCN_H)
331 void (*fn)()=(void (*)())dlsym(*i,"xmltooling_extension_term");
336 # error "Don't know about dynamic loading on this platform!"
339 m_libhandles.clear();
343 delete m_validatingPool;
344 m_validatingPool=NULL;
346 #ifndef XMLTOOLING_NO_XMLSEC
347 delete m_xsecProvider;
349 XSECPlatformUtils::Terminate();
352 XMLPlatformUtils::closeMutex(m_lock);
354 XMLPlatformUtils::Terminate();
356 curl_global_cleanup();
359 xmltooling::NDC ndc("term");
361 Category::getInstance(XMLTOOLING_LOGCAT".XMLToolingConfig").info("library shutdown complete");
364 Lockable* XMLToolingInternalConfig::lock()
366 xercesc::XMLPlatformUtils::lockMutex(m_lock);
370 void XMLToolingInternalConfig::unlock()
372 xercesc::XMLPlatformUtils::unlockMutex(m_lock);
375 bool XMLToolingInternalConfig::load_library(const char* path, void* context)
378 xmltooling::NDC ndc("LoadLibrary");
380 Category& log=Category::getInstance(XMLTOOLING_LOGCAT".XMLToolingConfig");
381 log.info("loading extension: %s", path);
387 char* fixed=const_cast<char*>(path);
388 if (strchr(fixed,'/')) {
391 while (p=strchr(p,'/'))
395 UINT em=SetErrorMode(SEM_FAILCRITICALERRORS);
397 handle=LoadLibraryEx(fixed,NULL,LOAD_WITH_ALTERED_SEARCH_PATH);
399 handle=LoadLibraryEx(fixed,NULL,0);
401 throw runtime_error(string("unable to load extension library: ") + fixed);
402 FARPROC fn=GetProcAddress(handle,"xmltooling_extension_init");
404 throw runtime_error(string("unable to locate xmltooling_extension_init entry point: ") + fixed);
405 if (reinterpret_cast<int(*)(void*)>(fn)(context)!=0)
406 throw runtime_error(string("detected error in xmltooling_extension_init: ") + fixed);
411 catch(runtime_error& e) {
421 #elif defined(HAVE_DLFCN_H)
422 void* handle=dlopen(path,RTLD_LAZY);
424 throw runtime_error(string("unable to load extension library '") + path + "': " + dlerror());
425 int (*fn)(void*)=(int (*)(void*))(dlsym(handle,"xmltooling_extension_init"));
429 string("unable to locate xmltooling_extension_init entry point in '") + path + "': " +
430 (dlerror() ? dlerror() : "unknown error")
435 throw runtime_error(string("detected error in xmltooling_extension_init in ") + path);
437 catch(runtime_error& e) {
444 # error "Don't know about dynamic loading on this platform!"
446 m_libhandles.push_back(handle);
447 log.info("loaded extension: %s", path);
451 #ifndef XMLTOOLING_NO_XMLSEC
452 void xmltooling::log_openssl()
458 unsigned long code=ERR_get_error_line_data(&file,&line,&data,&flags);
460 Category& log=Category::getInstance("OpenSSL");
461 log.errorStream() << "error code: " << code << " in " << file << ", line " << line << CategoryStream::ENDLINE;
462 if (data && (flags & ERR_TXT_STRING))
463 log.errorStream() << "error data: " << data << CategoryStream::ENDLINE;
464 code=ERR_get_error_line_data(&file,&line,&data,&flags);
468 XSECCryptoX509CRL* XMLToolingInternalConfig::X509CRL() const
470 return new OpenSSLCryptoX509CRL();
473 void XMLToolingInternalConfig::registerXMLAlgorithms()
475 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIRSA_MD5, "RSA", 0);
476 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIRSA_SHA1, "RSA", 0);
477 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIRSA_SHA224, "RSA", 0);
478 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIRSA_SHA256, "RSA", 0);
479 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIRSA_SHA384, "RSA", 0);
480 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIRSA_SHA512, "RSA", 0);
482 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIRSA_1_5, "RSA", 0);
483 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIRSA_OAEP_MGFP1, "RSA", 0);
485 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIDSA_SHA1, "DSA", 0);
487 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIHMAC_SHA1, "HMAC", 0);
488 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIHMAC_SHA224, "HMAC", 0);
489 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIHMAC_SHA256, "HMAC", 0);
490 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIHMAC_SHA384, "HMAC", 0);
491 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIHMAC_SHA512, "HMAC", 0);
493 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURI3DES_CBC, "DESede", 192);
494 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIKW_3DES, "DESede", 192);
496 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIAES128_CBC, "AES", 128);
497 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIKW_AES128, "AES", 128);
499 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIAES192_CBC, "AES", 192);
500 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIKW_AES192, "AES", 192);
502 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIAES256_CBC, "AES", 256);
503 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIKW_AES256, "AES", 256);