| /* GIO - GLib Input, Output and Streaming Library |
| * |
| * Copyright (C) 2010 Red Hat, Inc. |
| * Copyright © 2015 Collabora, Ltd. |
| * |
| * SPDX-License-Identifier: LGPL-2.1-or-later |
| * |
| * This library is free software; you can redistribute it and/or |
| * modify it under the terms of the GNU Lesser General Public |
| * License as published by the Free Software Foundation; either |
| * version 2.1 of the License, or (at your option) any later version. |
| * |
| * This library is distributed in the hope that it will be useful, |
| * but WITHOUT ANY WARRANTY; without even the implied warranty of |
| * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU |
| * Lesser General Public License for more details. |
| * |
| * You should have received a copy of the GNU Lesser General |
| * Public License along with this library; if not, see <http://www.gnu.org/licenses/>. |
| */ |
| |
| #include "config.h" |
| |
| #include "gdummytlsbackend.h" |
| |
| #include <glib.h> |
| |
| #include "gasyncresult.h" |
| #include "gcancellable.h" |
| #include "ginitable.h" |
| #include "gdtlsclientconnection.h" |
| #include "gdtlsconnection.h" |
| #include "gdtlsserverconnection.h" |
| #include "gtlsbackend.h" |
| #include "gtlscertificate.h" |
| #include "gtlsclientconnection.h" |
| #include "gtlsdatabase.h" |
| #include "gtlsfiledatabase.h" |
| #include "gtlsserverconnection.h" |
| |
| #include "giomodule.h" |
| #include "giomodule-priv.h" |
| |
| #include "glibintl.h" |
| |
| static GType _g_dummy_tls_certificate_get_type (void); |
| static GType _g_dummy_tls_connection_get_type (void); |
| static GType _g_dummy_dtls_connection_get_type (void); |
| static GType _g_dummy_tls_database_get_type (void); |
| |
| struct _GDummyTlsBackend { |
| GObject parent_instance; |
| GTlsDatabase *database; |
| }; |
| |
| static void g_dummy_tls_backend_iface_init (GTlsBackendInterface *iface); |
| |
| #define g_dummy_tls_backend_get_type _g_dummy_tls_backend_get_type |
| G_DEFINE_TYPE_WITH_CODE (GDummyTlsBackend, g_dummy_tls_backend, G_TYPE_OBJECT, |
| G_IMPLEMENT_INTERFACE (G_TYPE_TLS_BACKEND, |
| g_dummy_tls_backend_iface_init) |
| _g_io_modules_ensure_extension_points_registered (); |
| g_io_extension_point_implement (G_TLS_BACKEND_EXTENSION_POINT_NAME, |
| g_define_type_id, |
| "dummy", |
| -100);) |
| |
| static void |
| g_dummy_tls_backend_init (GDummyTlsBackend *dummy) |
| { |
| } |
| |
| static void |
| g_dummy_tls_backend_finalize (GObject *object) |
| { |
| GDummyTlsBackend *dummy = G_DUMMY_TLS_BACKEND (object); |
| |
| g_clear_object (&dummy->database); |
| |
| G_OBJECT_CLASS (g_dummy_tls_backend_parent_class)->finalize (object); |
| } |
| |
| static void |
| g_dummy_tls_backend_class_init (GDummyTlsBackendClass *backend_class) |
| { |
| GObjectClass *object_class = G_OBJECT_CLASS (backend_class); |
| |
| object_class->finalize = g_dummy_tls_backend_finalize; |
| } |
| |
| static GTlsDatabase * |
| g_dummy_tls_backend_get_default_database (GTlsBackend *backend) |
| { |
| GDummyTlsBackend *dummy = G_DUMMY_TLS_BACKEND (backend); |
| |
| if (g_once_init_enter_pointer (&dummy->database)) |
| { |
| GTlsDatabase *tlsdb; |
| |
| tlsdb = g_object_new (_g_dummy_tls_database_get_type (), NULL); |
| g_once_init_leave_pointer (&dummy->database, tlsdb); |
| } |
| |
| return g_object_ref (dummy->database); |
| } |
| |
| static void |
| g_dummy_tls_backend_iface_init (GTlsBackendInterface *iface) |
| { |
| iface->get_certificate_type = _g_dummy_tls_certificate_get_type; |
| iface->get_client_connection_type = _g_dummy_tls_connection_get_type; |
| iface->get_server_connection_type = _g_dummy_tls_connection_get_type; |
| iface->get_dtls_client_connection_type = _g_dummy_dtls_connection_get_type; |
| iface->get_dtls_server_connection_type = _g_dummy_dtls_connection_get_type; |
| iface->get_file_database_type = _g_dummy_tls_database_get_type; |
| iface->get_default_database = g_dummy_tls_backend_get_default_database; |
| } |
| |
| /* Dummy certificate type */ |
| |
| typedef struct _GDummyTlsCertificate GDummyTlsCertificate; |
| typedef struct _GDummyTlsCertificateClass GDummyTlsCertificateClass; |
| |
| struct _GDummyTlsCertificate { |
| GTlsCertificate parent_instance; |
| }; |
| |
| struct _GDummyTlsCertificateClass { |
| GTlsCertificateClass parent_class; |
| }; |
| |
| enum |
| { |
| PROP_CERTIFICATE_0, |
| |
| PROP_CERT_CERTIFICATE, |
| PROP_CERT_CERTIFICATE_PEM, |
| PROP_CERT_PRIVATE_KEY, |
| PROP_CERT_PRIVATE_KEY_PEM, |
| PROP_CERT_ISSUER |
| }; |
| |
| static void g_dummy_tls_certificate_initable_iface_init (GInitableIface *iface); |
| |
| #define g_dummy_tls_certificate_get_type _g_dummy_tls_certificate_get_type |
| G_DEFINE_TYPE_WITH_CODE (GDummyTlsCertificate, g_dummy_tls_certificate, G_TYPE_TLS_CERTIFICATE, |
| G_IMPLEMENT_INTERFACE (G_TYPE_INITABLE, |
| g_dummy_tls_certificate_initable_iface_init)) |
| |
| static void |
| g_dummy_tls_certificate_get_property (GObject *object, |
| guint prop_id, |
| GValue *value, |
| GParamSpec *pspec) |
| { |
| /* We need to define this method to make GObject happy, but it will |
| * never be possible to construct a working GDummyTlsCertificate, so |
| * it doesn't have to do anything useful. |
| */ |
| } |
| |
| static void |
| g_dummy_tls_certificate_set_property (GObject *object, |
| guint prop_id, |
| const GValue *value, |
| GParamSpec *pspec) |
| { |
| /* Just ignore all attempts to set properties. */ |
| } |
| |
| static void |
| g_dummy_tls_certificate_class_init (GDummyTlsCertificateClass *certificate_class) |
| { |
| GObjectClass *gobject_class = G_OBJECT_CLASS (certificate_class); |
| |
| gobject_class->get_property = g_dummy_tls_certificate_get_property; |
| gobject_class->set_property = g_dummy_tls_certificate_set_property; |
| |
| g_object_class_override_property (gobject_class, PROP_CERT_CERTIFICATE, "certificate"); |
| g_object_class_override_property (gobject_class, PROP_CERT_CERTIFICATE_PEM, "certificate-pem"); |
| g_object_class_override_property (gobject_class, PROP_CERT_PRIVATE_KEY, "private-key"); |
| g_object_class_override_property (gobject_class, PROP_CERT_PRIVATE_KEY_PEM, "private-key-pem"); |
| g_object_class_override_property (gobject_class, PROP_CERT_ISSUER, "issuer"); |
| } |
| |
| static void |
| g_dummy_tls_certificate_init (GDummyTlsCertificate *certificate) |
| { |
| } |
| |
| static gboolean |
| g_dummy_tls_certificate_initable_init (GInitable *initable, |
| GCancellable *cancellable, |
| GError **error) |
| { |
| g_set_error_literal (error, G_TLS_ERROR, G_TLS_ERROR_UNAVAILABLE, |
| _("TLS support is not available")); |
| return FALSE; |
| } |
| |
| static void |
| g_dummy_tls_certificate_initable_iface_init (GInitableIface *iface) |
| { |
| iface->init = g_dummy_tls_certificate_initable_init; |
| } |
| |
| /* Dummy connection type; since GTlsClientConnection and |
| * GTlsServerConnection are just interfaces, we can implement them |
| * both on a single object. |
| */ |
| |
| typedef struct _GDummyTlsConnection GDummyTlsConnection; |
| typedef struct _GDummyTlsConnectionClass GDummyTlsConnectionClass; |
| |
| struct _GDummyTlsConnection { |
| GTlsConnection parent_instance; |
| }; |
| |
| struct _GDummyTlsConnectionClass { |
| GTlsConnectionClass parent_class; |
| }; |
| |
| enum |
| { |
| PROP_CONNECTION_0, |
| |
| PROP_CONN_BASE_IO_STREAM, |
| PROP_CONN_USE_SYSTEM_CERTDB, |
| PROP_CONN_REQUIRE_CLOSE_NOTIFY, |
| PROP_CONN_REHANDSHAKE_MODE, |
| PROP_CONN_CERTIFICATE, |
| PROP_CONN_DATABASE, |
| PROP_CONN_INTERACTION, |
| PROP_CONN_PEER_CERTIFICATE, |
| PROP_CONN_PEER_CERTIFICATE_ERRORS, |
| PROP_CONN_VALIDATION_FLAGS, |
| PROP_CONN_SERVER_IDENTITY, |
| PROP_CONN_USE_SSL3, |
| PROP_CONN_ACCEPTED_CAS, |
| PROP_CONN_AUTHENTICATION_MODE, |
| PROP_CONN_ADVERTISED_PROTOCOLS, |
| PROP_CONN_NEGOTIATED_PROTOCOL, |
| }; |
| |
| static void g_dummy_tls_connection_initable_iface_init (GInitableIface *iface); |
| |
| #define g_dummy_tls_connection_get_type _g_dummy_tls_connection_get_type |
| G_DEFINE_TYPE_WITH_CODE (GDummyTlsConnection, g_dummy_tls_connection, G_TYPE_TLS_CONNECTION, |
| G_IMPLEMENT_INTERFACE (G_TYPE_TLS_CLIENT_CONNECTION, NULL) |
| G_IMPLEMENT_INTERFACE (G_TYPE_TLS_SERVER_CONNECTION, NULL) |
| G_IMPLEMENT_INTERFACE (G_TYPE_INITABLE, |
| g_dummy_tls_connection_initable_iface_init)) |
| |
| static void |
| g_dummy_tls_connection_get_property (GObject *object, |
| guint prop_id, |
| GValue *value, |
| GParamSpec *pspec) |
| { |
| } |
| |
| static void |
| g_dummy_tls_connection_set_property (GObject *object, |
| guint prop_id, |
| const GValue *value, |
| GParamSpec *pspec) |
| { |
| } |
| |
| static gboolean |
| g_dummy_tls_connection_close (GIOStream *stream, |
| GCancellable *cancellable, |
| GError **error) |
| { |
| return TRUE; |
| } |
| |
| static void |
| g_dummy_tls_connection_class_init (GDummyTlsConnectionClass *connection_class) |
| { |
| GObjectClass *gobject_class = G_OBJECT_CLASS (connection_class); |
| GIOStreamClass *io_stream_class = G_IO_STREAM_CLASS (connection_class); |
| |
| gobject_class->get_property = g_dummy_tls_connection_get_property; |
| gobject_class->set_property = g_dummy_tls_connection_set_property; |
| |
| /* Need to override this because when initable_init fails it will |
| * dispose the connection, which will close it, which would |
| * otherwise try to close its input/output streams, which don't |
| * exist. |
| */ |
| io_stream_class->close_fn = g_dummy_tls_connection_close; |
| |
| g_object_class_override_property (gobject_class, PROP_CONN_BASE_IO_STREAM, "base-io-stream"); |
| g_object_class_override_property (gobject_class, PROP_CONN_USE_SYSTEM_CERTDB, "use-system-certdb"); |
| g_object_class_override_property (gobject_class, PROP_CONN_REQUIRE_CLOSE_NOTIFY, "require-close-notify"); |
| g_object_class_override_property (gobject_class, PROP_CONN_REHANDSHAKE_MODE, "rehandshake-mode"); |
| g_object_class_override_property (gobject_class, PROP_CONN_CERTIFICATE, "certificate"); |
| g_object_class_override_property (gobject_class, PROP_CONN_DATABASE, "database"); |
| g_object_class_override_property (gobject_class, PROP_CONN_INTERACTION, "interaction"); |
| g_object_class_override_property (gobject_class, PROP_CONN_PEER_CERTIFICATE, "peer-certificate"); |
| g_object_class_override_property (gobject_class, PROP_CONN_PEER_CERTIFICATE_ERRORS, "peer-certificate-errors"); |
| g_object_class_override_property (gobject_class, PROP_CONN_VALIDATION_FLAGS, "validation-flags"); |
| g_object_class_override_property (gobject_class, PROP_CONN_SERVER_IDENTITY, "server-identity"); |
| g_object_class_override_property (gobject_class, PROP_CONN_USE_SSL3, "use-ssl3"); |
| g_object_class_override_property (gobject_class, PROP_CONN_ACCEPTED_CAS, "accepted-cas"); |
| g_object_class_override_property (gobject_class, PROP_CONN_AUTHENTICATION_MODE, "authentication-mode"); |
| g_object_class_override_property (gobject_class, PROP_CONN_ADVERTISED_PROTOCOLS, "advertised-protocols"); |
| g_object_class_override_property (gobject_class, PROP_CONN_NEGOTIATED_PROTOCOL, "negotiated-protocol"); |
| } |
| |
| static void |
| g_dummy_tls_connection_init (GDummyTlsConnection *connection) |
| { |
| } |
| |
| static gboolean |
| g_dummy_tls_connection_initable_init (GInitable *initable, |
| GCancellable *cancellable, |
| GError **error) |
| { |
| g_set_error_literal (error, G_TLS_ERROR, G_TLS_ERROR_UNAVAILABLE, |
| _("TLS support is not available")); |
| return FALSE; |
| } |
| |
| static void |
| g_dummy_tls_connection_initable_iface_init (GInitableIface *iface) |
| { |
| iface->init = g_dummy_tls_connection_initable_init; |
| } |
| |
| /* Dummy DTLS connection type; since GDtlsClientConnection and |
| * GDtlsServerConnection are just interfaces, we can implement them |
| * both on a single object. |
| */ |
| |
| typedef struct _GDummyDtlsConnection GDummyDtlsConnection; |
| typedef struct _GDummyDtlsConnectionClass GDummyDtlsConnectionClass; |
| |
| struct _GDummyDtlsConnection { |
| GObject parent_instance; |
| }; |
| |
| struct _GDummyDtlsConnectionClass { |
| GObjectClass parent_class; |
| }; |
| |
| enum |
| { |
| PROP_DTLS_CONN_BASE_SOCKET = 1, |
| PROP_DTLS_CONN_REQUIRE_CLOSE_NOTIFY, |
| PROP_DTLS_CONN_REHANDSHAKE_MODE, |
| PROP_DTLS_CONN_CERTIFICATE, |
| PROP_DTLS_CONN_DATABASE, |
| PROP_DTLS_CONN_INTERACTION, |
| PROP_DTLS_CONN_PEER_CERTIFICATE, |
| PROP_DTLS_CONN_PEER_CERTIFICATE_ERRORS, |
| PROP_DTLS_CONN_VALIDATION_FLAGS, |
| PROP_DTLS_CONN_SERVER_IDENTITY, |
| PROP_DTLS_CONN_ENABLE_NEGOTIATION, |
| PROP_DTLS_CONN_ACCEPTED_CAS, |
| PROP_DTLS_CONN_AUTHENTICATION_MODE, |
| }; |
| |
| static void g_dummy_dtls_connection_initable_iface_init (GInitableIface *iface); |
| |
| #define g_dummy_dtls_connection_get_type _g_dummy_dtls_connection_get_type |
| G_DEFINE_TYPE_WITH_CODE (GDummyDtlsConnection, g_dummy_dtls_connection, G_TYPE_OBJECT, |
| G_IMPLEMENT_INTERFACE (G_TYPE_DTLS_CONNECTION, NULL); |
| G_IMPLEMENT_INTERFACE (G_TYPE_DTLS_CLIENT_CONNECTION, NULL); |
| G_IMPLEMENT_INTERFACE (G_TYPE_DTLS_SERVER_CONNECTION, NULL); |
| G_IMPLEMENT_INTERFACE (G_TYPE_INITABLE, |
| g_dummy_dtls_connection_initable_iface_init);) |
| |
| static void |
| g_dummy_dtls_connection_get_property (GObject *object, |
| guint prop_id, |
| GValue *value, |
| GParamSpec *pspec) |
| { |
| } |
| |
| static void |
| g_dummy_dtls_connection_set_property (GObject *object, |
| guint prop_id, |
| const GValue *value, |
| GParamSpec *pspec) |
| { |
| } |
| |
| static void |
| g_dummy_dtls_connection_class_init (GDummyDtlsConnectionClass *connection_class) |
| { |
| GObjectClass *gobject_class = G_OBJECT_CLASS (connection_class); |
| |
| gobject_class->get_property = g_dummy_dtls_connection_get_property; |
| gobject_class->set_property = g_dummy_dtls_connection_set_property; |
| |
| g_object_class_override_property (gobject_class, PROP_DTLS_CONN_BASE_SOCKET, "base-socket"); |
| g_object_class_override_property (gobject_class, PROP_DTLS_CONN_REQUIRE_CLOSE_NOTIFY, "require-close-notify"); |
| g_object_class_override_property (gobject_class, PROP_DTLS_CONN_REHANDSHAKE_MODE, "rehandshake-mode"); |
| g_object_class_override_property (gobject_class, PROP_DTLS_CONN_CERTIFICATE, "certificate"); |
| g_object_class_override_property (gobject_class, PROP_DTLS_CONN_DATABASE, "database"); |
| g_object_class_override_property (gobject_class, PROP_DTLS_CONN_INTERACTION, "interaction"); |
| g_object_class_override_property (gobject_class, PROP_DTLS_CONN_PEER_CERTIFICATE, "peer-certificate"); |
| g_object_class_override_property (gobject_class, PROP_DTLS_CONN_PEER_CERTIFICATE_ERRORS, "peer-certificate-errors"); |
| g_object_class_override_property (gobject_class, PROP_DTLS_CONN_VALIDATION_FLAGS, "validation-flags"); |
| g_object_class_override_property (gobject_class, PROP_DTLS_CONN_SERVER_IDENTITY, "server-identity"); |
| g_object_class_override_property (gobject_class, PROP_DTLS_CONN_ACCEPTED_CAS, "accepted-cas"); |
| g_object_class_override_property (gobject_class, PROP_DTLS_CONN_AUTHENTICATION_MODE, "authentication-mode"); |
| } |
| |
| static void |
| g_dummy_dtls_connection_init (GDummyDtlsConnection *connection) |
| { |
| } |
| |
| static gboolean |
| g_dummy_dtls_connection_initable_init (GInitable *initable, |
| GCancellable *cancellable, |
| GError **error) |
| { |
| g_set_error_literal (error, G_TLS_ERROR, G_TLS_ERROR_UNAVAILABLE, |
| _("DTLS support is not available")); |
| return FALSE; |
| } |
| |
| static void |
| g_dummy_dtls_connection_initable_iface_init (GInitableIface *iface) |
| { |
| iface->init = g_dummy_dtls_connection_initable_init; |
| } |
| |
| /* Dummy database type. |
| */ |
| |
| typedef struct _GDummyTlsDatabase GDummyTlsDatabase; |
| typedef struct _GDummyTlsDatabaseClass GDummyTlsDatabaseClass; |
| |
| struct _GDummyTlsDatabase { |
| GTlsDatabase parent_instance; |
| }; |
| |
| struct _GDummyTlsDatabaseClass { |
| GTlsDatabaseClass parent_class; |
| }; |
| |
| enum |
| { |
| PROP_DATABASE_0, |
| |
| PROP_ANCHORS, |
| }; |
| |
| static void g_dummy_tls_database_file_database_iface_init (GTlsFileDatabaseInterface *iface); |
| static void g_dummy_tls_database_initable_iface_init (GInitableIface *iface); |
| |
| #define g_dummy_tls_database_get_type _g_dummy_tls_database_get_type |
| G_DEFINE_TYPE_WITH_CODE (GDummyTlsDatabase, g_dummy_tls_database, G_TYPE_TLS_DATABASE, |
| G_IMPLEMENT_INTERFACE (G_TYPE_TLS_FILE_DATABASE, |
| g_dummy_tls_database_file_database_iface_init) |
| G_IMPLEMENT_INTERFACE (G_TYPE_INITABLE, |
| g_dummy_tls_database_initable_iface_init)) |
| |
| |
| static void |
| g_dummy_tls_database_get_property (GObject *object, |
| guint prop_id, |
| GValue *value, |
| GParamSpec *pspec) |
| { |
| /* We need to define this method to make GObject happy, but it will |
| * never be possible to construct a working GDummyTlsDatabase, so |
| * it doesn't have to do anything useful. |
| */ |
| } |
| |
| static void |
| g_dummy_tls_database_set_property (GObject *object, |
| guint prop_id, |
| const GValue *value, |
| GParamSpec *pspec) |
| { |
| /* Just ignore all attempts to set properties. */ |
| } |
| |
| static void |
| g_dummy_tls_database_class_init (GDummyTlsDatabaseClass *database_class) |
| { |
| GObjectClass *gobject_class = G_OBJECT_CLASS (database_class); |
| |
| gobject_class->get_property = g_dummy_tls_database_get_property; |
| gobject_class->set_property = g_dummy_tls_database_set_property; |
| |
| g_object_class_override_property (gobject_class, PROP_ANCHORS, "anchors"); |
| } |
| |
| static void |
| g_dummy_tls_database_init (GDummyTlsDatabase *database) |
| { |
| } |
| |
| static void |
| g_dummy_tls_database_file_database_iface_init (GTlsFileDatabaseInterface *iface) |
| { |
| } |
| |
| static gboolean |
| g_dummy_tls_database_initable_init (GInitable *initable, |
| GCancellable *cancellable, |
| GError **error) |
| { |
| g_set_error_literal (error, G_TLS_ERROR, G_TLS_ERROR_UNAVAILABLE, |
| _("TLS support is not available")); |
| return FALSE; |
| } |
| |
| static void |
| g_dummy_tls_database_initable_iface_init (GInitableIface *iface) |
| { |
| iface->init = g_dummy_tls_database_initable_init; |
| } |