2 * This file is part of secnet.
3 * See README for full list of copyright holders.
5 * secnet is free software; you can redistribute it and/or modify it
6 * under the terms of the GNU General Public License as published by
7 * the Free Software Foundation; either version 3 of the License, or
8 * (at your option) any later version.
10 * secnet is distributed in the hope that it will be useful, but
11 * WITHOUT ANY WARRANTY; without even the implied warranty of
12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
13 * General Public License for more details.
15 * You should have received a copy of the GNU General Public License
16 * version 3 along with secnet; if not, see
17 * https://www.gnu.org/licenses/gpl.html.
23 #define DEFAULT_SIZE 5
27 struct sigprivkey_if *sigpriv; /* 0 means none such */
32 struct privcache_if ops;
34 struct pathprefix_template path;
36 struct buffer_if databuf;
37 struct hash_if *defhash;
40 static struct sigprivkey_if *uncached_get(struct privcache *st,
41 const struct sigkeyid *id, struct log_if *log)
46 sprintf(st->path.write_here, SIGKEYID_PR_FMT, SIGKEYID_PR_VAL(id));
48 f = fopen(st->path.buffer,"rb");
50 if (errno == ENOENT) {
51 slilog(log,M_DEBUG,"private key %s not found\n",
54 slilog(log,M_ERR,"failed to open private key file %s\n",
61 buffer_init(&st->databuf,0);
62 ssize_t got=fread(st->databuf.base,1,st->databuf.alloclen,f);
64 slilog(log,M_ERR,"failed to read private-key file %s\n",
69 slilog(log,M_ERR,"private key file %s longer than max %d\n",
70 st->path.buffer, (int)st->databuf.alloclen);
75 struct sigprivkey_if *sigpriv=0;
76 for (const struct sigscheme_info *scheme=sigschemes;
79 st->databuf.start=st->databuf.base;
81 ok=scheme->loadpriv(scheme, &st->databuf, &sigpriv, log);
83 if (sigpriv->sethash) {
86 "private key %s requires `hash' config key for privcache to load",
88 sigpriv->dispose(sigpriv->st);
92 sigpriv->sethash(sigpriv->st,st->defhash);
98 slilog(log,M_ERR,"private key file %s not loaded (not recognised?)\n",
103 return ok ? sigpriv : 0;
106 static struct sigprivkey_if *privcache_lookup(void *sst,
107 const struct sigkeyid *id,
108 struct log_if *log) {
109 struct privcache *st = sst;
113 for (was=0; was<st->used; was++) {
114 if (sigkeyid_equal(id, &st->ents[was].id)) {
115 result = st->ents[was];
120 if (st->used < st->alloc) {
125 if (st->ents[was].sigpriv) {
126 st->ents[was].sigpriv->dispose(st->ents[was].sigpriv->st);
130 COPY_OBJ(result.id, *id);
131 result.sigpriv=uncached_get(st,id,log);
134 memmove(&st->ents[1], &st->ents[0], sizeof(st->ents[0]) * was);
135 st->ents[0] = result;
136 return result.sigpriv;
139 static list_t *privcache_apply(closure_t *self, struct cloc loc,
140 dict_t *context, list_t *args)
142 struct privcache *st;
147 st->cl.description="privcache";
148 st->cl.type=CL_PRIVCACHE;
150 st->cl.interface=&st->ops;
152 st->ops.lookup=privcache_lookup;
155 st->used=st->alloc=0;
158 item=list_elem(args,0);
159 if (!item || item->type!=t_dict)
160 cfgfatal(loc,"privcache","parameter must be a dictionary\n");
162 dict=item->data.dict;
164 st->alloc=dict_read_number(dict,"privcache-size",False,"privcache",loc,
166 NEW_ARY(st->ents,st->alloc);
169 int32_t buflen=dict_read_number(dict,"privkey-max",False,"privcache",loc,
171 buffer_new(&st->databuf,buflen+1);
173 const char *path=dict_read_string(dict,"privkeys",True,"privcache",loc);
175 NEW_ARY(st->path.buffer,l+KEYIDSZ*2+1);
176 strcpy(st->path.buffer,path);
177 st->path.write_here=st->path.buffer+l;
179 st->defhash=find_cl_if(dict,"hash",CL_HASH,False,"site",loc);
181 return new_closure(&st->cl);
184 void privcache_module(dict_t *dict)
186 add_closure(dict,"priv-cache",privcache_apply);
~ianmdlvl / secnet.git / blob