2 * Copyright (c) 2012, JANET(UK)
5 * Redistribution and use in source and binary forms, with or without
6 * modification, are permitted provided that the following conditions
9 * 1. Redistributions of source code must retain the above copyright
10 * notice, this list of conditions and the following disclaimer.
12 * 2. Redistributions in binary form must reproduce the above copyright
13 * notice, this list of conditions and the following disclaimer in the
14 * documentation and/or other materials provided with the distribution.
16 * 3. Neither the name of JANET(UK) nor the names of its contributors
17 * may be used to endorse or promote products derived from this software
18 * without specific prior written permission.
20 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
21 * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
22 * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS
23 * FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE
24 * COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT,
25 * INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
26 * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
27 * SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
28 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
29 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
30 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
31 * OF THE POSSIBILITY OF SUCH DAMAGE.
41 #include <trust_router/tr_name.h>
46 /* static prototypes */
47 static TR_NAME *tr_comm_memb_get_realm_id(TR_COMM_MEMB *memb);
50 static int tr_comm_destructor(void *obj)
52 TR_COMM *comm=talloc_get_type_abort(obj, TR_COMM);
54 tr_free_name(comm->id);
55 if (comm->owner_realm!=NULL)
56 tr_free_name(comm->owner_realm);
57 if (comm->owner_contact!=NULL)
58 tr_free_name(comm->owner_contact);
62 TR_COMM *tr_comm_new(TALLOC_CTX *mem_ctx)
64 TR_COMM *comm=talloc(mem_ctx, TR_COMM);
68 comm->type=TR_COMM_UNKNOWN;
70 comm->owner_realm=NULL;
71 comm->owner_contact=NULL;
72 comm->expiration_interval=0;
74 talloc_set_destructor((void *)comm, tr_comm_destructor);
79 void tr_comm_free(TR_COMM *comm)
84 void tr_comm_set_id(TR_COMM *comm, TR_NAME *id)
87 tr_free_name(comm->id);
91 void tr_comm_incref(TR_COMM *comm)
96 void tr_comm_decref(TR_COMM *comm)
102 void tr_comm_set_apcs(TR_COMM *comm, TR_APC *apc)
104 if (comm->apcs!=NULL)
105 tr_apc_free(comm->apcs);
107 talloc_steal(comm, apc);
110 TR_APC *tr_comm_get_apcs(TR_COMM *comm)
115 TR_NAME *tr_comm_get_id(TR_COMM *comm)
120 TR_NAME *tr_comm_dup_id(TR_COMM *comm)
122 return tr_dup_name(comm->id);
125 void tr_comm_set_type(TR_COMM *comm, TR_COMM_TYPE type)
130 TR_COMM_TYPE tr_comm_get_type(TR_COMM *comm)
135 void tr_comm_set_owner_realm(TR_COMM *comm, TR_NAME *realm)
137 if (comm->owner_realm!=NULL)
138 tr_free_name(comm->owner_realm);
139 comm->owner_realm=realm;
142 TR_NAME *tr_comm_get_owner_realm(TR_COMM *comm)
144 return comm->owner_realm;
147 TR_NAME *tr_comm_dup_owner_realm(TR_COMM *comm)
149 return tr_dup_name(comm->owner_realm);
152 void tr_comm_set_owner_contact(TR_COMM *comm, TR_NAME *contact)
154 if (comm->owner_contact != NULL)
155 tr_free_name(comm->owner_contact);
156 comm->owner_contact=contact;
159 TR_NAME *tr_comm_get_owner_contact(TR_COMM *comm)
161 return comm->owner_contact;
164 TR_NAME *tr_comm_dup_owner_contact(TR_COMM *comm)
166 return tr_dup_name(comm->owner_contact);
169 unsigned int tr_comm_get_refcount(TR_COMM *comm)
171 return comm->refcount;
174 /* add to the table if it's a new membership or has a shorter
175 * provenance list than our existing membership */
176 static void tr_comm_add_if_shorter(TR_COMM_TABLE *ctab, TR_COMM_MEMB *existing, TR_COMM_MEMB *newmemb)
178 if (existing==NULL) {
179 /* not in the table */
180 tr_comm_table_add_memb(ctab, newmemb);
182 /* Had an entry. Replace if we have shorter provenance. */
183 if (tr_comm_memb_provenance_len(newmemb) < tr_comm_memb_provenance_len(existing)) {
184 tr_comm_table_remove_memb(ctab, existing);
185 tr_comm_memb_free(existing);
186 tr_comm_table_add_memb(ctab, newmemb);
191 /* does not take responsibility for freeing IDP realm */
192 void tr_comm_add_idp_realm(TR_COMM_TABLE *ctab,
196 struct timespec *expiry)
198 TALLOC_CTX *tmp_ctx=talloc_new(NULL);
199 TR_COMM_MEMB *newmemb=tr_comm_memb_new(tmp_ctx);
200 TR_COMM_MEMB *existing=NULL;
203 tr_err("tr_comm_add_idp_realm: unable to allocate new membership record.");
204 talloc_free(tmp_ctx);
208 tr_comm_memb_set_idp_realm(newmemb, realm);
209 tr_comm_memb_set_comm(newmemb, comm);
210 tr_comm_memb_set_provenance(newmemb, provenance);
211 tr_comm_memb_set_expiry(newmemb, expiry);
213 existing=tr_comm_table_find_idp_memb_origin(ctab,
214 tr_idp_realm_get_id(realm),
215 tr_comm_get_id(comm),
216 tr_comm_memb_get_origin(newmemb));
217 tr_comm_add_if_shorter(ctab, existing, newmemb); /* takes newmemb out of tmp_ctx if needed */
218 talloc_free(tmp_ctx);
221 /* does not take responsibility for freeing RP realm */
222 void tr_comm_add_rp_realm(TR_COMM_TABLE *ctab,
226 struct timespec *expiry)
228 TALLOC_CTX *tmp_ctx=talloc_new(NULL);
229 TR_COMM_MEMB *newmemb=tr_comm_memb_new(tmp_ctx);
230 TR_COMM_MEMB *existing=NULL;
233 tr_err("tr_comm_add_idp_realm: unable to allocate new membership record.");
234 talloc_free(tmp_ctx);
238 tr_comm_memb_set_rp_realm(newmemb, realm);
239 tr_comm_memb_set_comm(newmemb, comm);
240 tr_comm_memb_set_provenance(newmemb, provenance);
241 tr_comm_memb_set_expiry(newmemb, expiry);
243 existing=tr_comm_table_find_rp_memb_origin(ctab,
244 tr_rp_realm_get_id(realm),
245 tr_comm_get_id(comm),
246 tr_comm_memb_get_origin(newmemb));
247 tr_comm_add_if_shorter(ctab, existing, newmemb); /* takes newmemb out of tmp_ctx if needed */
248 talloc_free(tmp_ctx);
251 static TR_COMM *tr_comm_tail(TR_COMM *comm)
256 while (comm->next!=NULL)
261 /* All list members are in the talloc context of the head.
262 * This will require careful thought if entries are ever removed
263 * Call like comms=tr_comm_add_func(comms, new_comm);
264 * or just use the tr_comm_add(comms, new) macro. */
265 #define tr_comm_add(comms, new) ((comms)=tr_comm_add_func((comms), (new)))
266 static TR_COMM *tr_comm_add_func(TR_COMM *comms, TR_COMM *new)
271 tr_comm_tail(comms)->next=new;
273 talloc_steal(comms, new);
280 /* Guarantees comm is not in the list, not an error if it was't there.
281 * Does not free the removed element, nor change its talloc context. */
282 #define tr_comm_remove(comms, c) ((comms)=tr_comm_remove_func((comms), (c)))
283 static TR_COMM *tr_comm_remove_func(TR_COMM *comms, TR_COMM *remove)
285 TALLOC_CTX *list_ctx=talloc_parent(comms); /* in case we need to remove the head */
292 /* if we're removing the head, put the next element (if present) into the context
293 * the list head was in. */
296 talloc_steal(list_ctx, comms->next);
297 /* now put all the other elements in the context of the list head */
298 for (this=comms->next; this!=NULL; this=this->next)
299 talloc_steal(comms, this);
302 /* not removing the head; no need to play with contexts */
303 for (this=comms; this->next!=NULL; this=this->next) {
304 if (this->next==remove)
305 this->next=remove->next;
311 TR_IDP_REALM *tr_comm_find_idp(TR_COMM_TABLE *ctab, TR_COMM *comm, TR_NAME *idp_realm)
313 TALLOC_CTX *tmp_ctx=talloc_new(NULL);
314 TR_COMM_ITER *iter=NULL;
315 TR_IDP_REALM *this_idp=NULL;
317 if ((NULL==ctab) || (NULL==comm) || (NULL==idp_realm)) {
318 talloc_free(tmp_ctx);
322 iter=tr_comm_iter_new(tmp_ctx);
323 for (this_idp=tr_idp_realm_iter_first(iter, ctab, tr_comm_get_id(comm));
325 this_idp=tr_idp_realm_iter_next(iter)) {
326 if (0==tr_name_cmp(idp_realm, tr_idp_realm_get_id(this_idp))) {
327 tr_debug("tr_comm_find_idp: Found IdP %s in community %s.", idp_realm->buf, tr_comm_get_id(comm)->buf);
328 talloc_free(tmp_ctx);
332 tr_debug("tr_comm_find_idp: Unable to find IdP %s in community %s.", idp_realm->buf, tr_comm_get_id(comm)->buf);
333 talloc_free(tmp_ctx);
337 TR_RP_REALM *tr_comm_find_rp (TR_COMM_TABLE *ctab, TR_COMM *comm, TR_NAME *rp_realm)
339 TALLOC_CTX *tmp_ctx=talloc_new(NULL);
340 TR_COMM_ITER *iter=NULL;
341 TR_RP_REALM *this_rp=NULL;
343 if ((NULL==ctab) || (NULL==comm) || (NULL==rp_realm)) {
344 talloc_free(tmp_ctx);
348 iter=tr_comm_iter_new(tmp_ctx);
349 for (this_rp=tr_rp_realm_iter_first(iter, ctab, tr_comm_get_id(comm));
351 this_rp=tr_rp_realm_iter_next(iter)) {
352 if (0==tr_name_cmp(rp_realm, tr_rp_realm_get_id(this_rp))) {
353 tr_debug("tr_comm_find_rp: Found RP %s in community %s.", rp_realm->buf, tr_comm_get_id(comm)->buf);
354 talloc_free(tmp_ctx);
358 tr_debug("tr_comm_find_rp: Unable to find RP %s in community %s.", rp_realm->buf, tr_comm_get_id(comm)->buf);
359 talloc_free(tmp_ctx);
363 static TR_COMM *tr_comm_lookup(TR_COMM *comms, TR_NAME *comm_name)
365 TR_COMM *cfg_comm = NULL;
367 for (cfg_comm = comms; NULL != cfg_comm; cfg_comm = cfg_comm->next) {
368 if (0==tr_name_cmp(cfg_comm->id, comm_name))
374 TR_COMM_ITER *tr_comm_iter_new(TALLOC_CTX *mem_ctx)
376 TR_COMM_ITER *iter=talloc(mem_ctx, TR_COMM_ITER);
386 void tr_comm_iter_free(TR_COMM_ITER *iter)
392 TR_COMM *tr_comm_iter_first(TR_COMM_ITER *iter, TR_COMM_TABLE *ctab, TR_NAME *realm)
396 /* find memberships for this realm */
397 for (iter->cur_memb=ctab->memberships;
398 iter->cur_memb!=NULL;
399 iter->cur_memb=iter->cur_memb->next) {
400 if (0==tr_name_cmp(iter->match, tr_comm_memb_get_realm_id(iter->cur_memb)))
401 return tr_comm_memb_get_comm(iter->cur_memb);
406 TR_COMM *tr_comm_iter_next(TR_COMM_ITER *iter)
408 for (iter->cur_memb=iter->cur_memb->next;
409 iter->cur_memb!=NULL;
410 iter->cur_memb=iter->cur_memb->next) {
411 if (0==tr_name_cmp(iter->match, tr_comm_memb_get_realm_id(iter->cur_memb)))
412 return tr_comm_memb_get_comm(iter->cur_memb);
417 /* iterate only over RPs */
418 TR_COMM *tr_comm_iter_first_rp(TR_COMM_ITER *iter, TR_COMM_TABLE *ctab, TR_NAME *realm)
422 /* find memberships for this realm */
423 for (iter->cur_memb=ctab->memberships;
424 iter->cur_memb!=NULL;
425 iter->cur_memb=iter->cur_memb->next) {
426 if ((tr_comm_memb_get_rp_realm(iter->cur_memb)!=NULL) &&
427 (0==tr_name_cmp(iter->match, tr_comm_memb_get_realm_id(iter->cur_memb))))
428 return tr_comm_memb_get_comm(iter->cur_memb);
433 TR_COMM *tr_comm_iter_next_rp(TR_COMM_ITER *iter)
435 for (iter->cur_memb=iter->cur_memb->next;
436 iter->cur_memb!=NULL;
437 iter->cur_memb=iter->cur_memb->next) {
438 if ((tr_comm_memb_get_rp_realm(iter->cur_memb)!=NULL) &&
439 (0==tr_name_cmp(iter->match, tr_comm_memb_get_realm_id(iter->cur_memb))))
440 return tr_comm_memb_get_comm(iter->cur_memb);
445 /* iterate only over IDPs */
446 TR_COMM *tr_comm_iter_first_idp(TR_COMM_ITER *iter, TR_COMM_TABLE *ctab, TR_NAME *realm)
450 /* find memberships for this realm */
451 for (iter->cur_memb=ctab->memberships;
452 iter->cur_memb!=NULL;
453 iter->cur_memb=iter->cur_memb->next) {
454 if ((tr_comm_memb_get_idp_realm(iter->cur_memb)!=NULL) &&
455 (0==tr_name_cmp(iter->match, tr_comm_memb_get_realm_id(iter->cur_memb))))
456 return tr_comm_memb_get_comm(iter->cur_memb);
461 TR_COMM *tr_comm_iter_next_idp(TR_COMM_ITER *iter)
463 for (iter->cur_memb=iter->cur_memb->next;
464 iter->cur_memb!=NULL;
465 iter->cur_memb=iter->cur_memb->next) {
466 if ((tr_comm_memb_get_idp_realm(iter->cur_memb)!=NULL) &&
467 (0==tr_name_cmp(iter->match, tr_comm_memb_get_realm_id(iter->cur_memb))))
468 return tr_comm_memb_get_comm(iter->cur_memb);
473 static TR_REALM *tr_realm_new(TALLOC_CTX *mem_ctx)
475 TR_REALM *realm=talloc(mem_ctx, TR_REALM);
477 realm->role=TR_ROLE_UNKNOWN;
484 static void tr_realm_free(TR_REALM *realm)
489 static void tr_realm_set_rp(TR_REALM *realm, TR_RP_REALM *rp)
491 if (realm->idp!=NULL)
493 realm->role=TR_ROLE_RP;
497 static void tr_realm_set_idp(TR_REALM *realm, TR_IDP_REALM *idp)
501 realm->role=TR_ROLE_IDP;
505 TR_NAME *tr_realm_get_id(TR_REALM *realm)
507 switch (realm->role) {
509 return tr_rp_realm_get_id(realm->rp);
511 return tr_idp_realm_get_id(realm->idp);
518 TR_NAME *tr_realm_dup_id(TR_REALM *realm)
520 return tr_dup_name(tr_realm_get_id(realm));
523 /* Iterate over either sort of realm. Do not free the TR_REALM returned. It becomes
524 * undefined/invalid after the next operation affecting the iterator. */
525 TR_REALM *tr_realm_iter_first(TR_COMM_ITER *iter, TR_COMM_TABLE *ctab, TR_NAME *comm)
528 if (iter->realm==NULL)
529 iter->realm=tr_realm_new(iter);
530 if (iter->realm==NULL)
533 /* find memberships for this comm */
534 for (iter->cur_memb=ctab->memberships;
535 iter->cur_memb!=NULL;
536 iter->cur_memb=iter->cur_memb->next) {
537 if (0==tr_name_cmp(iter->match,
538 tr_comm_get_id(tr_comm_memb_get_comm(iter->cur_memb)))) {
539 /* found a match, determine whether it's an rp realm or an idp realm */
540 if (tr_comm_memb_get_rp_realm(iter->cur_memb)!=NULL)
541 tr_realm_set_rp(iter->realm, tr_comm_memb_get_rp_realm(iter->cur_memb));
542 else if (tr_comm_memb_get_idp_realm(iter->cur_memb)!=NULL)
543 tr_realm_set_idp(iter->realm, tr_comm_memb_get_idp_realm(iter->cur_memb));
545 if (iter->realm!=NULL)
546 tr_realm_free(iter->realm);
552 if (iter->realm!=NULL)
553 tr_realm_free(iter->realm);
558 TR_REALM *tr_realm_iter_next(TR_COMM_ITER *iter)
560 if (iter->realm==NULL)
563 /* find memberships for this comm */
564 for (iter->cur_memb=iter->cur_memb->next;
565 iter->cur_memb!=NULL;
566 iter->cur_memb=iter->cur_memb->next) {
567 if (0==tr_name_cmp(iter->match,
568 tr_comm_get_id(tr_comm_memb_get_comm(iter->cur_memb)))) {
569 /* found a match, determine whether it's an rp realm or an idp realm */
570 if (tr_comm_memb_get_rp_realm(iter->cur_memb)!=NULL)
571 tr_realm_set_rp(iter->realm, tr_comm_memb_get_rp_realm(iter->cur_memb));
572 else if (tr_comm_memb_get_idp_realm(iter->cur_memb)!=NULL)
573 tr_realm_set_idp(iter->realm, tr_comm_memb_get_idp_realm(iter->cur_memb));
575 if (iter->realm!=NULL)
576 tr_realm_free(iter->realm);
582 if (iter->realm!=NULL)
583 tr_realm_free(iter->realm);
588 TR_RP_REALM *tr_rp_realm_iter_first(TR_COMM_ITER *iter, TR_COMM_TABLE *ctab, TR_NAME *comm)
592 /* find memberships for this comm */
593 for (iter->cur_memb=ctab->memberships;
594 iter->cur_memb!=NULL;
595 iter->cur_memb=iter->cur_memb->next) {
596 if ((tr_comm_memb_get_rp_realm(iter->cur_memb)!=NULL) &&
597 (0==tr_name_cmp(iter->match, tr_comm_get_id(tr_comm_memb_get_comm(iter->cur_memb)))))
598 return tr_comm_memb_get_rp_realm(iter->cur_memb);
603 TR_RP_REALM *tr_rp_realm_iter_next(TR_COMM_ITER *iter)
605 for (iter->cur_memb=iter->cur_memb->next;
606 iter->cur_memb!=NULL;
607 iter->cur_memb=iter->cur_memb->next) {
608 if ((tr_comm_memb_get_rp_realm(iter->cur_memb)!=NULL) &&
609 (0==tr_name_cmp(iter->match, tr_comm_get_id(tr_comm_memb_get_comm(iter->cur_memb)))))
610 return tr_comm_memb_get_rp_realm(iter->cur_memb);
615 TR_IDP_REALM *tr_idp_realm_iter_first(TR_COMM_ITER *iter, TR_COMM_TABLE *ctab, TR_NAME *comm)
619 /* find memberships for this comm */
620 for (iter->cur_memb=ctab->memberships;
621 iter->cur_memb!=NULL;
622 iter->cur_memb=iter->cur_memb->next) {
623 if ((tr_comm_memb_get_idp_realm(iter->cur_memb)!=NULL) &&
624 (0==tr_name_cmp(iter->match, tr_comm_get_id(tr_comm_memb_get_comm(iter->cur_memb)))))
625 return tr_comm_memb_get_idp_realm(iter->cur_memb);
630 TR_IDP_REALM *tr_idp_realm_iter_next(TR_COMM_ITER *iter)
632 for (iter->cur_memb=iter->cur_memb->next;
633 iter->cur_memb!=NULL;
634 iter->cur_memb=iter->cur_memb->next) {
635 if ((tr_comm_memb_get_idp_realm(iter->cur_memb)!=NULL) &&
636 (0==tr_name_cmp(iter->match, tr_comm_get_id(tr_comm_memb_get_comm(iter->cur_memb)))))
637 return tr_comm_memb_get_idp_realm(iter->cur_memb);
642 /* iterators for all communities in a table */
643 TR_COMM *tr_comm_table_iter_first(TR_COMM_ITER *iter, TR_COMM_TABLE *ctab)
645 iter->cur_comm=ctab->comms;
646 return iter->cur_comm;
649 TR_COMM *tr_comm_table_iter_next(TR_COMM_ITER *iter)
651 return iter->cur_comm=iter->cur_comm->next;
654 const char *tr_comm_type_to_str(TR_COMM_TYPE type)
658 case TR_COMM_UNKNOWN:
673 TR_COMM_MEMB *tr_comm_memb_iter_first(TR_COMM_ITER *iter, TR_COMM_MEMB *memb)
676 return iter->cur_memb;
679 TR_COMM_MEMB *tr_comm_memb_iter_next(TR_COMM_ITER *iter)
681 if (iter->cur_memb!=NULL)
682 iter->cur_memb=iter->cur_memb->origin_next;
683 return iter->cur_memb;
686 TR_COMM_TYPE tr_comm_type_from_str(const char *s)
688 if (strcmp(s, "apc")==0)
690 if (strcmp(s,"coi")==0)
692 return TR_COMM_UNKNOWN;
696 static int tr_comm_memb_destructor(void *obj)
698 TR_COMM_MEMB *memb=talloc_get_type_abort(obj, TR_COMM_MEMB);
699 if (memb->origin!=NULL)
700 tr_free_name(memb->origin);
703 tr_rp_realm_decref(memb->rp);
705 tr_idp_realm_decref(memb->idp);
706 if (memb->comm!=NULL)
707 tr_comm_decref(memb->comm);
708 if (memb->provenance!=NULL)
709 json_decref(memb->provenance);
713 TR_COMM_MEMB *tr_comm_memb_new(TALLOC_CTX *mem_ctx)
715 TR_COMM_MEMB *memb=talloc(mem_ctx, TR_COMM_MEMB);
718 memb->origin_next=NULL;
723 memb->provenance=NULL;
726 memb->expiry=talloc(memb, struct timespec);
727 if (memb->expiry==NULL) {
731 *(memb->expiry)=(struct timespec){0,0};
732 talloc_set_destructor(memb, tr_comm_memb_destructor);
737 void tr_comm_memb_free(TR_COMM_MEMB *memb)
742 TR_REALM_ROLE tr_comm_memb_get_role(TR_COMM_MEMB *memb)
748 return TR_ROLE_UNKNOWN;
751 void tr_comm_memb_set_rp_realm(TR_COMM_MEMB *memb, TR_RP_REALM *realm)
753 if (memb->idp!=NULL) {
754 tr_idp_realm_decref(memb->idp);
758 tr_rp_realm_decref(memb->rp);
762 tr_rp_realm_incref(realm);
765 TR_RP_REALM *tr_comm_memb_get_rp_realm(TR_COMM_MEMB *memb)
770 void tr_comm_memb_set_idp_realm(TR_COMM_MEMB *memb, TR_IDP_REALM *realm)
772 if (memb->rp!=NULL) {
773 tr_rp_realm_decref(memb->rp);
777 tr_idp_realm_decref(memb->idp);
780 tr_idp_realm_incref(realm);
783 TR_IDP_REALM *tr_comm_memb_get_idp_realm(TR_COMM_MEMB *memb)
788 void tr_comm_memb_set_comm(TR_COMM_MEMB *memb, TR_COMM *comm)
790 if (memb->comm!=NULL)
791 tr_comm_decref(memb->comm);
793 tr_comm_incref(comm);
796 TR_COMM *tr_comm_memb_get_comm(TR_COMM_MEMB *memb)
801 static void tr_comm_memb_set_origin(TR_COMM_MEMB *memb, TR_NAME *origin)
803 if (memb->origin!=NULL)
804 tr_free_name(memb->origin);
808 TR_NAME *tr_comm_memb_get_origin(TR_COMM_MEMB *memb)
813 TR_NAME *tr_comm_memb_dup_origin(TR_COMM_MEMB *memb)
815 if (memb->origin!=NULL)
816 return tr_dup_name(memb->origin);
820 json_t *tr_comm_memb_get_provenance(TR_COMM_MEMB *memb)
823 return memb->provenance;
827 void tr_comm_memb_set_provenance(TR_COMM_MEMB *memb, json_t *prov)
829 if (memb->provenance)
830 json_decref(memb->provenance);
832 memb->provenance=prov;
836 /* next line sets origin to NULL if provenance is empty because jansson
837 * routines return NULL on error */
838 memb->origin=tr_new_name(json_string_value(json_array_get(prov, 0)));
840 tr_comm_memb_set_origin(memb, NULL);
844 void tr_comm_memb_add_to_provenance(TR_COMM_MEMB *memb, TR_NAME *hop)
846 if (memb->provenance==NULL) {
847 memb->provenance=json_array();
848 if (memb->provenance==NULL) {
849 tr_err("tr_comm_memb_add_to_provenance: unable to allocate provenance list.");
852 /* this is the first entry in the provenance, so it is the origin */
853 tr_comm_memb_set_origin(memb,tr_dup_name(hop));
854 if (memb->origin==NULL) {
855 tr_err("tr_comm_memb_add_to_provenance: unable to allocate origin.");
856 json_decref(memb->provenance);
857 memb->provenance=NULL;
861 if (0!=json_array_append_new(memb->provenance, tr_name_to_json_string(hop)))
862 tr_err("tr_comm_memb_add_to_provenance: unable to extend provenance list.");
865 size_t tr_comm_memb_provenance_len(TR_COMM_MEMB *memb)
867 if (memb->provenance==NULL)
869 return json_array_size(memb->provenance);
872 void tr_comm_memb_set_interval(TR_COMM_MEMB *memb, unsigned int interval)
874 memb->interval=interval;
877 unsigned int tr_comm_memb_get_interval(TR_COMM_MEMB *memb)
879 return memb->interval;
882 void tr_comm_memb_set_expiry(TR_COMM_MEMB *memb, struct timespec *time)
885 *(memb->expiry)=(struct timespec){0,0};
887 memb->expiry->tv_sec=time->tv_sec;
888 memb->expiry->tv_nsec=time->tv_nsec;
892 struct timespec *tr_comm_memb_get_expiry(TR_COMM_MEMB *memb)
897 int tr_comm_memb_is_expired(TR_COMM_MEMB *memb, struct timespec *curtime)
899 return ((curtime->tv_sec > memb->expiry->tv_sec)
900 || ((curtime->tv_sec == memb->expiry->tv_sec)
901 &&(curtime->tv_nsec >= memb->expiry->tv_nsec)));
904 void tr_comm_set_triggered(TR_COMM_MEMB *memb, int trig)
906 memb->triggered=trig;
909 int tr_comm_is_triggered(TR_COMM_MEMB *memb)
911 return memb->triggered;
915 TR_COMM_TABLE *tr_comm_table_new(TALLOC_CTX *mem_ctx)
917 TR_COMM_TABLE *ctab=talloc(mem_ctx, TR_COMM_TABLE);
920 ctab->memberships=NULL;
921 ctab->idp_realms=NULL;
922 ctab->rp_realms=NULL;
927 void tr_comm_table_free(TR_COMM_TABLE *ctab)
932 static TR_REALM_ROLE tr_comm_memb_role(TR_COMM_MEMB *memb)
939 return TR_ROLE_UNKNOWN;
942 void tr_comm_table_add_memb(TR_COMM_TABLE *ctab, TR_COMM_MEMB *new)
944 TR_COMM_MEMB *cur=NULL;
946 /* TODO: validate the member (must have valid comm and realm) */
948 /* handle the empty list case */
949 if (ctab->memberships==NULL) {
950 ctab->memberships=new;
951 talloc_steal(ctab, new);
955 /* The list was not empty. See if we already have a membership for this realm/comm/role */
956 switch (tr_comm_memb_role(new)) {
958 cur=tr_comm_table_find_rp_memb(ctab,
959 tr_rp_realm_get_id(tr_comm_memb_get_rp_realm(new)),
960 tr_comm_get_id(tr_comm_memb_get_comm(new)));
963 cur=tr_comm_table_find_idp_memb(ctab,
964 tr_idp_realm_get_id(tr_comm_memb_get_idp_realm(new)),
965 tr_comm_get_id(tr_comm_memb_get_comm(new)));
967 case TR_ROLE_UNKNOWN:
969 tr_err("tr_comm_table_add_memb: realm with unknown role added.");
974 /* no entry for this realm/comm/role, tack it on the end */
975 for (cur=ctab->memberships; cur->next!=NULL; cur=cur->next) { }
978 /* Found an entry. Add to the end of its same-origin list. */
979 while (cur->origin_next!=NULL) {
980 cur=cur->origin_next;
982 cur->origin_next=new;
985 talloc_steal(ctab, new);
988 /* Remove memb from ctab. Do not free anything. Do nothing if memb not in ctab. */
989 void tr_comm_table_remove_memb(TR_COMM_TABLE *ctab, TR_COMM_MEMB *memb)
991 TR_COMM_MEMB *cur=NULL; /* for walking the main list */
992 TR_COMM_MEMB *orig_cur=NULL; /* for walking the origin list */
994 if ((memb==NULL) || (ctab->memberships==NULL))
997 /* see if it's the first member */
998 if (ctab->memberships==memb) {
999 if (memb->origin_next!=NULL) {
1000 memb->origin_next->next=ctab->memberships->next;
1001 ctab->memberships=memb->origin_next;
1003 ctab->memberships=memb->next;
1008 /* see if it's in first member's origin list */
1009 for (orig_cur=ctab->memberships->origin_next;
1011 orig_cur=ctab->memberships->origin_next) {
1012 if (orig_cur==memb) {
1013 orig_cur->origin_next=memb->origin_next;
1018 /* now we have to walk the rest of the tree */
1019 for (cur=ctab->memberships; cur->next!=NULL; cur=cur->next) {
1020 if (cur->next==memb) {
1021 /* it matched an entry on the main list */
1022 if (memb->origin_next!=NULL) {
1023 /* replace the entry in the main list with the next element on the origin list */
1024 memb->origin_next->next=memb->next;
1025 cur->next=memb->origin_next;
1027 cur->next=memb->next; /* no origin list, just drop memb */
1030 /* it was not on the main list, walk the origin list */
1031 for (orig_cur=cur; orig_cur->next!=NULL; orig_cur=orig_cur->next) {
1032 if (orig_cur->next==memb) {
1033 orig_cur->next=memb->next;
1034 return; /* just drop the element from the origin list */
1041 static TR_NAME *tr_comm_memb_get_realm_id(TR_COMM_MEMB *memb)
1044 return tr_rp_realm_get_id(memb->rp);
1046 return tr_idp_realm_get_id(memb->idp);
1049 /* find a membership from any origin */
1050 TR_COMM_MEMB *tr_comm_table_find_memb(TR_COMM_TABLE *ctab, TR_NAME *realm, TR_NAME *comm)
1052 TR_COMM_MEMB *cur=NULL;
1053 TR_NAME *cur_realm_name=NULL;
1055 for (cur=ctab->memberships; cur!=NULL; cur=cur->next) {
1056 cur_realm_name=tr_comm_memb_get_realm_id(cur);
1057 if (cur_realm_name==NULL) {
1058 tr_warning("tr_comm_table_find: encountered realm with no name.");
1061 if ((0==tr_name_cmp(realm, cur_realm_name)) &&
1062 (0==tr_name_cmp(comm, tr_comm_get_id(tr_comm_memb_get_comm(cur))))) {
1069 /* find a membership from a particular origin */
1070 TR_COMM_MEMB *tr_comm_table_find_memb_origin(TR_COMM_TABLE *ctab, TR_NAME *realm, TR_NAME *comm, TR_NAME *origin)
1072 TR_NAME *cur_orig=NULL;
1073 TR_COMM_MEMB *cur=tr_comm_table_find_memb(ctab, realm, comm);
1075 return NULL; /* no match */
1077 /* had a match for comm/realm; find origin match */
1079 if (((origin==NULL) && (cur_orig==NULL)) ||
1080 ((origin!=NULL) && (cur_orig!=NULL) && (0==tr_name_cmp(origin, cur_orig))))
1081 return cur; /* found a match */
1082 cur=cur->origin_next;
1084 return NULL; /* no match */
1088 /* find an idp membership regardless of its origin */
1089 TR_COMM_MEMB *tr_comm_table_find_idp_memb(TR_COMM_TABLE *ctab, TR_NAME *realm, TR_NAME *comm)
1091 TR_COMM_MEMB *cur=NULL;
1092 TR_IDP_REALM *idp_realm=NULL;
1094 for (cur=ctab->memberships; cur!=NULL; cur=cur->next) {
1095 idp_realm=tr_comm_memb_get_idp_realm(cur);
1096 if (idp_realm==NULL)
1097 continue; /* was not an idp */
1099 if ((0==tr_name_cmp(realm, idp_realm->realm_id)) &&
1100 (0==tr_name_cmp(comm, tr_comm_get_id(tr_comm_memb_get_comm(cur))))) {
1107 /* find an idp membership from a particular origin */
1108 TR_COMM_MEMB *tr_comm_table_find_idp_memb_origin(TR_COMM_TABLE *ctab, TR_NAME *realm, TR_NAME *comm, TR_NAME *origin)
1110 TR_NAME *cur_orig=NULL;
1111 TR_COMM_MEMB *cur=tr_comm_table_find_idp_memb(ctab, realm, comm);
1113 return NULL; /* no match */
1115 /* had a match for comm/realm; find origin match */
1117 cur_orig=tr_comm_memb_get_origin(cur);
1118 if (((origin==NULL) && (cur_orig==NULL)) ||
1119 ((origin!=NULL) && (cur_orig!=NULL) && (0==tr_name_cmp(origin, cur_orig))))
1120 return cur; /* found a match */
1121 cur=cur->origin_next;
1123 return NULL; /* no match */
1126 /* find an rp membership from any origin */
1127 TR_COMM_MEMB *tr_comm_table_find_rp_memb(TR_COMM_TABLE *ctab, TR_NAME *realm, TR_NAME *comm)
1129 TR_COMM_MEMB *cur=NULL;
1130 TR_RP_REALM *rp_realm=NULL;
1132 for (cur=ctab->memberships; cur!=NULL; cur=cur->next) {
1133 rp_realm=tr_comm_memb_get_rp_realm(cur);
1135 continue; /* was not an rp */
1137 if ((0==tr_name_cmp(realm, tr_rp_realm_get_id(rp_realm))) &&
1138 (0==tr_name_cmp(comm, tr_comm_get_id(tr_comm_memb_get_comm(cur))))) {
1145 /* find an rp membership from a particular origin */
1146 TR_COMM_MEMB *tr_comm_table_find_rp_memb_origin(TR_COMM_TABLE *ctab, TR_NAME *realm, TR_NAME *comm, TR_NAME *origin)
1148 TR_NAME *cur_orig=NULL;
1149 TR_COMM_MEMB *cur=tr_comm_table_find_rp_memb(ctab, realm, comm);
1151 return NULL; /* no match */
1153 /* had a match for comm/realm; find origin match */
1155 cur_orig=tr_comm_memb_get_origin(cur);
1156 if (((origin==NULL) && (cur_orig==NULL)) ||
1157 ((origin!=NULL) && (cur_orig!=NULL) && (0==tr_name_cmp(origin, cur_orig))))
1158 return cur; /* found a match */
1159 cur=cur->origin_next;
1161 return NULL; /* no match */
1164 TR_COMM *tr_comm_table_find_comm(TR_COMM_TABLE *ctab, TR_NAME *comm_id)
1166 return tr_comm_lookup(ctab->comms, comm_id);
1169 void tr_comm_table_add_comm(TR_COMM_TABLE *ctab, TR_COMM *new)
1171 tr_comm_add(ctab->comms, new);
1174 void tr_comm_table_remove_comm(TR_COMM_TABLE *ctab, TR_COMM *comm)
1176 tr_comm_remove(ctab->comms, comm);
1179 /* how many communities in the table? */
1180 size_t tr_comm_table_size(TR_COMM_TABLE *ctab)
1183 TR_COMM *this=ctab->comms;
1192 const char *tr_realm_role_to_str(TR_REALM_ROLE role)
1204 TR_REALM_ROLE tr_realm_role_from_str(const char *s)
1206 if (strcmp(s, "idp")==0)
1208 if (strcmp(s, "rp")==0)
1210 return TR_ROLE_UNKNOWN;
projects / trust_router.git / blob