2 * Copyright 2001-2007 Internet2
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
8 * http://www.apache.org/licenses/LICENSE-2.0
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
18 * XMLToolingConfig.cpp
20 * Library configuration
24 #include "exceptions.h"
26 #include "XMLToolingConfig.h"
27 #include "encryption/Encryption.h"
28 #include "encryption/Encrypter.h"
29 #include "io/HTTPRequest.h"
30 #include "io/HTTPResponse.h"
31 #include "impl/UnknownElement.h"
32 #include "security/TrustEngine.h"
33 #include "security/OpenSSLCryptoX509CRL.h"
34 #include "security/CredentialResolver.h"
35 #include "security/KeyInfoResolver.h"
36 #include "signature/Signature.h"
37 #include "soap/SOAP.h"
38 #include "soap/SOAPTransport.h"
40 #include "util/PathResolver.h"
41 #include "util/ReplayCache.h"
42 #include "util/StorageService.h"
43 #include "util/TemplateEngine.h"
44 #include "util/URLEncoder.h"
45 #include "util/XMLConstants.h"
46 #include "validation/ValidatorSuite.h"
53 #if defined(XMLTOOLING_LOG4SHIB)
54 # include <log4shib/PropertyConfigurator.hh>
55 # include <log4shib/OstreamAppender.hh>
56 #elif defined(XMLTOOLING_LOG4CPP)
57 # include <log4cpp/PropertyConfigurator.hh>
58 # include <log4cpp/OstreamAppender.hh>
60 #include <xercesc/util/PlatformUtils.hpp>
61 #ifndef XMLTOOLING_NO_XMLSEC
62 # include <curl/curl.h>
63 # include <openssl/err.h>
64 # include <xsec/framework/XSECProvider.hpp>
67 using namespace soap11;
68 using namespace xmlencryption;
69 using namespace xmlsignature;
70 using namespace xmltooling::logging;
71 using namespace xmltooling;
74 DECL_XMLTOOLING_EXCEPTION_FACTORY(XMLParserException,xmltooling);
75 DECL_XMLTOOLING_EXCEPTION_FACTORY(XMLObjectException,xmltooling);
76 DECL_XMLTOOLING_EXCEPTION_FACTORY(MarshallingException,xmltooling);
77 DECL_XMLTOOLING_EXCEPTION_FACTORY(UnmarshallingException,xmltooling);
78 DECL_XMLTOOLING_EXCEPTION_FACTORY(UnknownElementException,xmltooling);
79 DECL_XMLTOOLING_EXCEPTION_FACTORY(UnknownAttributeException,xmltooling);
80 DECL_XMLTOOLING_EXCEPTION_FACTORY(UnknownExtensionException,xmltooling);
81 DECL_XMLTOOLING_EXCEPTION_FACTORY(ValidationException,xmltooling);
82 DECL_XMLTOOLING_EXCEPTION_FACTORY(IOException,xmltooling);
84 #ifndef XMLTOOLING_NO_XMLSEC
85 DECL_XMLTOOLING_EXCEPTION_FACTORY(XMLSecurityException,xmltooling);
86 DECL_XMLTOOLING_EXCEPTION_FACTORY(SignatureException,xmlsignature);
87 DECL_XMLTOOLING_EXCEPTION_FACTORY(EncryptionException,xmlencryption);
90 namespace xmltooling {
91 static XMLToolingInternalConfig g_config;
92 #ifndef XMLTOOLING_NO_XMLSEC
93 static vector<Mutex*> g_openssl_locks;
95 extern "C" void openssl_locking_callback(int mode,int n,const char *file,int line)
97 if (mode & CRYPTO_LOCK)
98 g_openssl_locks[n]->lock();
100 g_openssl_locks[n]->unlock();
104 extern "C" unsigned long openssl_thread_id(void)
106 return (unsigned long)(pthread_self());
112 XMLToolingConfig& XMLToolingConfig::getConfig()
117 XMLToolingInternalConfig& XMLToolingInternalConfig::getInternalConfig()
122 bool XMLToolingInternalConfig::log_config(const char* config)
125 if (!config || !*config)
126 config=getenv("XMLTOOLING_LOG_CONFIG");
127 if (!config || !*config)
131 Category& root = Category::getRoot();
132 if (!strcmp(config,"DEBUG")) {
133 root.setPriority(Priority::DEBUG);
136 else if (!strcmp(config,"INFO")) {
137 root.setPriority(Priority::INFO);
140 else if (!strcmp(config,"NOTICE")) {
141 root.setPriority(Priority::NOTICE);
144 else if (!strcmp(config,"WARN")) {
145 root.setPriority(Priority::WARN);
148 else if (!strcmp(config,"ERROR")) {
149 root.setPriority(Priority::ERROR);
152 else if (!strcmp(config,"CRIT")) {
153 root.setPriority(Priority::CRIT);
156 else if (!strcmp(config,"ALERT")) {
157 root.setPriority(Priority::ALERT);
160 else if (!strcmp(config,"EMERG")) {
161 root.setPriority(Priority::EMERG);
164 else if (!strcmp(config,"FATAL")) {
165 root.setPriority(Priority::FATAL);
169 root.setAppender(new OstreamAppender("default",&cerr));
171 PropertyConfigurator::configure(config);
173 catch (const ConfigureFailure& e) {
174 Category::getInstance(XMLTOOLING_LOGCAT".Logging").crit("failed to initialize log4cpp: %s", e.what());
181 #ifndef XMLTOOLING_LITE
182 void XMLToolingConfig::setReplayCache(ReplayCache* replayCache)
184 delete m_replayCache;
185 m_replayCache = replayCache;
189 void XMLToolingConfig::setPathResolver(PathResolver* pathResolver)
191 delete m_pathResolver;
192 m_pathResolver = pathResolver;
195 void XMLToolingConfig::setTemplateEngine(TemplateEngine* templateEngine)
197 delete m_templateEngine;
198 m_templateEngine = templateEngine;
201 void XMLToolingConfig::setURLEncoder(URLEncoder* urlEncoder)
204 m_urlEncoder = urlEncoder;
207 bool XMLToolingInternalConfig::init()
210 xmltooling::NDC ndc("init");
212 Category& log=Category::getInstance(XMLTOOLING_LOGCAT".XMLToolingConfig");
214 log.debug("library initialization started");
216 #ifndef XMLTOOLING_NO_XMLSEC
217 if (curl_global_init(CURL_GLOBAL_ALL)) {
218 log.fatal("failed to initialize libcurl, OpenSSL, or Winsock");
221 log.debug("libcurl %s initialization complete", LIBCURL_VERSION);
224 XMLPlatformUtils::Initialize();
225 log.debug("Xerces %s initialization complete", XERCES_FULLVERSIONDOT);
227 #ifndef XMLTOOLING_NO_XMLSEC
228 XSECPlatformUtils::Initialise();
229 m_xsecProvider=new XSECProvider();
230 log.debug("XML-Security %s initialization complete", XSEC_FULLVERSIONDOT);
233 m_parserPool=new ParserPool();
234 m_validatingPool=new ParserPool(true,true);
235 m_lock=XMLPlatformUtils::makeMutex();
237 // Load catalogs from path.
238 if (!catalog_path.empty()) {
239 char* catpath=strdup(catalog_path.c_str());
242 while (start && *start) {
243 sep=strchr(start,PATH_SEPARATOR_CHAR);
246 auto_ptr_XMLCh temp(start);
247 m_validatingPool->loadCatalog(temp.get());
248 start = sep ? sep + 1 : NULL;
253 // default registrations
254 XMLObjectBuilder::registerDefaultBuilder(new UnknownElementBuilder());
256 registerKeyInfoClasses();
257 registerEncryptionClasses();
258 registerSOAPClasses();
260 REGISTER_XMLTOOLING_EXCEPTION_FACTORY(XMLParserException,xmltooling);
261 REGISTER_XMLTOOLING_EXCEPTION_FACTORY(XMLObjectException,xmltooling);
262 REGISTER_XMLTOOLING_EXCEPTION_FACTORY(MarshallingException,xmltooling);
263 REGISTER_XMLTOOLING_EXCEPTION_FACTORY(UnmarshallingException,xmltooling);
264 REGISTER_XMLTOOLING_EXCEPTION_FACTORY(UnknownElementException,xmltooling);
265 REGISTER_XMLTOOLING_EXCEPTION_FACTORY(UnknownAttributeException,xmltooling);
266 REGISTER_XMLTOOLING_EXCEPTION_FACTORY(ValidationException,xmltooling);
267 REGISTER_XMLTOOLING_EXCEPTION_FACTORY(IOException,xmltooling);
269 #ifndef XMLTOOLING_NO_XMLSEC
270 XMLObjectBuilder::registerBuilder(QName(xmlconstants::XMLSIG_NS,Signature::LOCAL_NAME),new SignatureBuilder());
271 REGISTER_XMLTOOLING_EXCEPTION_FACTORY(XMLSecurityException,xmltooling);
272 REGISTER_XMLTOOLING_EXCEPTION_FACTORY(SignatureException,xmlsignature);
273 REGISTER_XMLTOOLING_EXCEPTION_FACTORY(EncryptionException,xmlencryption);
274 registerKeyInfoResolvers();
275 registerCredentialResolvers();
276 registerTrustEngines();
277 registerXMLAlgorithms();
278 registerSOAPTransports();
279 initSOAPTransports();
280 registerStorageServices();
281 m_keyInfoResolver = KeyInfoResolverManager.newPlugin(INLINE_KEYINFO_RESOLVER,NULL);
284 m_pathResolver = new PathResolver();
285 m_urlEncoder = new URLEncoder();
287 // Register xml:id as an ID attribute.
288 static const XMLCh xmlid[] = UNICODE_LITERAL_2(i,d);
289 AttributeExtensibleXMLObject::registerIDAttribute(QName(xmlconstants::XML_NS, xmlid));
291 catch (const xercesc::XMLException&) {
292 log.fatal("caught exception while initializing Xerces");
293 #ifndef XMLTOOLING_NO_XMLSEC
294 curl_global_cleanup();
299 #ifndef XMLTOOLING_NO_XMLSEC
300 // Set up OpenSSL locking.
301 for (int i=0; i<CRYPTO_num_locks(); i++)
302 g_openssl_locks.push_back(Mutex::create());
303 CRYPTO_set_locking_callback(openssl_locking_callback);
305 CRYPTO_set_id_callback(openssl_thread_id);
309 log.info("%s library initialization complete", PACKAGE_STRING);
313 void XMLToolingInternalConfig::term()
315 #ifndef XMLTOOLING_NO_XMLSEC
316 CRYPTO_set_locking_callback(NULL);
317 for_each(g_openssl_locks.begin(), g_openssl_locks.end(), xmltooling::cleanup<Mutex>());
318 g_openssl_locks.clear();
321 SchemaValidators.destroyValidators();
322 XMLObjectBuilder::destroyBuilders();
323 XMLToolingException::deregisterFactories();
324 AttributeExtensibleXMLObject::deregisterIDAttributes();
326 #ifndef XMLTOOLING_NO_XMLSEC
327 StorageServiceManager.deregisterFactories();
328 termSOAPTransports();
329 SOAPTransportManager.deregisterFactories();
330 TrustEngineManager.deregisterFactories();
331 CredentialResolverManager.deregisterFactories();
332 KeyInfoResolverManager.deregisterFactories();
333 m_algorithmMap.clear();
335 delete m_keyInfoResolver;
336 m_keyInfoResolver = NULL;
338 delete m_replayCache;
339 m_replayCache = NULL;
342 delete m_pathResolver;
343 m_pathResolver = NULL;
345 delete m_templateEngine;
346 m_templateEngine = NULL;
351 for (vector<void*>::reverse_iterator i=m_libhandles.rbegin(); i!=m_libhandles.rend(); i++) {
353 FARPROC fn=GetProcAddress(static_cast<HMODULE>(*i),"xmltooling_extension_term");
356 FreeLibrary(static_cast<HMODULE>(*i));
357 #elif defined(HAVE_DLFCN_H)
358 void (*fn)()=(void (*)())dlsym(*i,"xmltooling_extension_term");
363 # error "Don't know about dynamic loading on this platform!"
366 m_libhandles.clear();
370 delete m_validatingPool;
371 m_validatingPool=NULL;
373 #ifndef XMLTOOLING_NO_XMLSEC
374 delete m_xsecProvider;
376 XSECPlatformUtils::Terminate();
379 XMLPlatformUtils::closeMutex(m_lock);
381 XMLPlatformUtils::Terminate();
383 #ifndef XMLTOOLING_NO_XMLSEC
384 curl_global_cleanup();
387 xmltooling::NDC ndc("term");
389 Category::getInstance(XMLTOOLING_LOGCAT".XMLToolingConfig").info("%s library shutdown complete", PACKAGE_STRING);
392 Lockable* XMLToolingInternalConfig::lock()
394 xercesc::XMLPlatformUtils::lockMutex(m_lock);
398 void XMLToolingInternalConfig::unlock()
400 xercesc::XMLPlatformUtils::unlockMutex(m_lock);
403 bool XMLToolingInternalConfig::load_library(const char* path, void* context)
406 xmltooling::NDC ndc("LoadLibrary");
408 Category& log=Category::getInstance(XMLTOOLING_LOGCAT".XMLToolingConfig");
409 log.info("loading extension: %s", path);
415 char* fixed=const_cast<char*>(path);
416 if (strchr(fixed,'/')) {
419 while (p=strchr(p,'/'))
423 UINT em=SetErrorMode(SEM_FAILCRITICALERRORS);
425 handle=LoadLibraryEx(fixed,NULL,LOAD_WITH_ALTERED_SEARCH_PATH);
427 handle=LoadLibraryEx(fixed,NULL,0);
429 throw runtime_error(string("unable to load extension library: ") + fixed);
430 FARPROC fn=GetProcAddress(handle,"xmltooling_extension_init");
432 throw runtime_error(string("unable to locate xmltooling_extension_init entry point: ") + fixed);
433 if (reinterpret_cast<int(*)(void*)>(fn)(context)!=0)
434 throw runtime_error(string("detected error in xmltooling_extension_init: ") + fixed);
439 catch(runtime_error& e) {
449 #elif defined(HAVE_DLFCN_H)
450 void* handle=dlopen(path,RTLD_LAZY);
452 throw runtime_error(string("unable to load extension library '") + path + "': " + dlerror());
453 int (*fn)(void*)=(int (*)(void*))(dlsym(handle,"xmltooling_extension_init"));
457 string("unable to locate xmltooling_extension_init entry point in '") + path + "': " +
458 (dlerror() ? dlerror() : "unknown error")
463 throw runtime_error(string("detected error in xmltooling_extension_init in ") + path);
465 catch(runtime_error& e) {
472 # error "Don't know about dynamic loading on this platform!"
474 m_libhandles.push_back(handle);
475 log.info("loaded extension: %s", path);
479 #ifndef XMLTOOLING_NO_XMLSEC
480 void xmltooling::log_openssl()
486 unsigned long code=ERR_get_error_line_data(&file,&line,&data,&flags);
488 Category& log=Category::getInstance("OpenSSL");
489 log.errorStream() << "error code: " << code << " in " << file << ", line " << line << logging::eol;
490 if (data && (flags & ERR_TXT_STRING))
491 log.errorStream() << "error data: " << data << logging::eol;
492 code=ERR_get_error_line_data(&file,&line,&data,&flags);
496 XSECCryptoX509CRL* XMLToolingInternalConfig::X509CRL() const
498 return new OpenSSLCryptoX509CRL();
501 void XMLToolingInternalConfig::registerXMLAlgorithms()
503 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIRSA_MD5, "RSA", 0);
504 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIRSA_SHA1, "RSA", 0);
505 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIRSA_SHA224, "RSA", 0);
506 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIRSA_SHA256, "RSA", 0);
507 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIRSA_SHA384, "RSA", 0);
508 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIRSA_SHA512, "RSA", 0);
510 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIRSA_1_5, "RSA", 0);
511 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIRSA_OAEP_MGFP1, "RSA", 0);
513 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIDSA_SHA1, "DSA", 0);
515 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIHMAC_SHA1, "HMAC", 0);
516 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIHMAC_SHA224, "HMAC", 0);
517 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIHMAC_SHA256, "HMAC", 0);
518 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIHMAC_SHA384, "HMAC", 0);
519 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIHMAC_SHA512, "HMAC", 0);
521 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURI3DES_CBC, "DESede", 192);
522 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIKW_3DES, "DESede", 192);
524 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIAES128_CBC, "AES", 128);
525 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIKW_AES128, "AES", 128);
527 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIAES192_CBC, "AES", 192);
528 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIKW_AES192, "AES", 192);
530 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIAES256_CBC, "AES", 256);
531 registerXMLAlgorithm(DSIGConstants::s_unicodeStrURIKW_AES256, "AES", 256);