Gitiles
Code Review Sign In
gerrit.cesnet.cz / github / CESNET / libnetconf2 / 34137718f524cbe225899a0b5f5ac88096ae9dd7 / . / src / session.c
blob: 2ceb80efae1581d043d81c7fff014ae952f3a059 [file] [log] [blame]
Radek Krejci206fcd62015-10-07 15:42:48 +0200[diff] [blame]1/**
2 * \file session.c
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]3 * \author Michal Vasko <mvasko@cesnet.cz>
4 * \brief libnetconf2 - general session functions
Radek Krejci206fcd62015-10-07 15:42:48 +0200[diff] [blame]5 *
6 * Copyright (c) 2015 CESNET, z.s.p.o.
7 *
Radek Krejci9b81f5b2016-02-24 13:14:49 +0100[diff] [blame]8 * This source code is licensed under BSD 3-Clause License (the "License").
9 * You may not use this file except in compliance with the License.
10 * You may obtain a copy of the License at
Michal Vaskoafd416b2016-02-25 14:51:46 +0100[diff] [blame]11 *
Radek Krejci9b81f5b2016-02-24 13:14:49 +0100[diff] [blame]12 * https://opensource.org/licenses/BSD-3-Clause
Radek Krejci206fcd62015-10-07 15:42:48 +0200[diff] [blame]13 */
14
Radek Krejci206fcd62015-10-07 15:42:48 +0200[diff] [blame]15#include <errno.h>
Radek Krejci952eb862016-01-08 14:22:55 +0100[diff] [blame]16#include <stdlib.h>
Michal Vasko3512e402016-01-28 16:22:34 +0100[diff] [blame]17#include <string.h>
Radek Krejciac6d3472015-10-22 15:47:18 +0200[diff] [blame]18#include <pthread.h>
Radek Krejcid6b73e12016-07-15 12:00:23 +0200[diff] [blame]19#include <sys/time.h>
Michal Vasko58f31552016-01-19 12:39:15 +0100[diff] [blame]20#include <time.h>
Radek Krejci206fcd62015-10-07 15:42:48 +0200[diff] [blame]21#include <libyang/libyang.h>
22
Michal Vasko5e228792016-02-03 15:30:24 +0100[diff] [blame]23#include "session.h"
Michal Vaskob48aa812016-01-18 14:13:09 +0100[diff] [blame]24#include "libnetconf.h"
Michal Vasko11d142a2016-01-19 15:58:24 +0100[diff] [blame]25#include "session_server.h"
Michal Vaskob48aa812016-01-18 14:13:09 +0100[diff] [blame]26
Radek Krejci53691be2016-02-22 13:58:37 +0100[diff] [blame]27#ifdef NC_ENABLED_SSH
Radek Krejci206fcd62015-10-07 15:42:48 +0200[diff] [blame]28
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]29# include <libssh/libssh.h>
Radek Krejci206fcd62015-10-07 15:42:48 +0200[diff] [blame]30
Radek Krejci53691be2016-02-22 13:58:37 +0100[diff] [blame]31#endif /* NC_ENABLED_SSH */
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]32
Radek Krejci53691be2016-02-22 13:58:37 +0100[diff] [blame]33#if defined(NC_ENABLED_SSH) || defined(NC_ENABLED_TLS)
Michal Vaskoc14e3c82016-01-11 16:14:30 +0100[diff] [blame]34
Michal Vasko5e228792016-02-03 15:30:24 +0100[diff] [blame]35# include <openssl/engine.h>
36# include <openssl/conf.h>
Michal Vaskoc14e3c82016-01-11 16:14:30 +0100[diff] [blame]37# include <openssl/err.h>
38
Radek Krejci53691be2016-02-22 13:58:37 +0100[diff] [blame]39#endif /* NC_ENABLED_SSH || NC_ENABLED_TLS */
Michal Vaskoc14e3c82016-01-11 16:14:30 +0100[diff] [blame]40
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]41/* in seconds */
42#define NC_CLIENT_HELLO_TIMEOUT 60
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]43
Michal Vasko05ba9df2016-01-13 14:40:27 +0100[diff] [blame]44/* in milliseconds */
45#define NC_CLOSE_REPLY_TIMEOUT 200
46
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]47extern struct nc_server_opts server_opts;
48
Radek Krejci7ac16052016-07-15 11:48:18 +0200[diff] [blame]49int
50nc_gettimespec(struct timespec *ts)
51{
Michal Vasko0ef46df2016-09-21 14:03:18 +0200[diff] [blame]52#ifdef CLOCK_REALTIME
Radek Krejci7ac16052016-07-15 11:48:18 +0200[diff] [blame]53 return clock_gettime(CLOCK_REALTIME, ts);
54#else
55 int rc;
56 struct timeval tv;
57
58 rc = gettimeofday(&tv, NULL);
59 if (!rc) {
60 ts->tv_sec = (time_t)tv.tv_sec;
61 ts->tv_nsec = 1000L * (long)tv.tv_usec;
62 }
63 return rc;
64#endif
65}
66
Radek Krejci28472922016-07-15 11:51:16 +0200[diff] [blame]67#ifndef HAVE_PTHREAD_MUTEX_TIMEDLOCK
68int
69pthread_mutex_timedlock(pthread_mutex_t *mutex, const struct timespec *abstime)
70{
71 int rc;
72 struct timespec cur, dur;
73
74 /* Try to acquire the lock and, if we fail, sleep for 5ms. */
75 while ((rc = pthread_mutex_trylock(mutex)) == EBUSY) {
76 nc_gettimespec(&cur);
77
78 if ((cur.tv_sec > abstime->tv_sec) || ((cur.tv_sec == abstime->tv_sec) && (cur.tv_nsec >= abstime->tv_nsec))) {
79 break;
80 }
81
82 dur.tv_sec = abstime->tv_sec - cur.tv_sec;
83 dur.tv_nsec = abstime->tv_nsec - cur.tv_nsec;
84 if (dur.tv_nsec < 0) {
85 dur.tv_sec--;
86 dur.tv_nsec += 1000000000;
87 }
88
89 if ((dur.tv_sec != 0) || (dur.tv_nsec > 5000000)) {
90 dur.tv_sec = 0;
91 dur.tv_nsec = 5000000;
92 }
93
94 nanosleep(&dur, NULL);
95 }
96
97 return rc;
98}
99#endif
100
Michal Vasko96164bf2016-01-21 15:41:58 +0100[diff] [blame]101/*
102 * @return 1 - success
103 * 0 - timeout
104 * -1 - error
105 */
106int
Michal vasko50cc94f2016-10-04 13:46:20 +0200[diff] [blame]107nc_timedlock(pthread_mutex_t *lock, int timeout, const char *func)
Michal Vasko96164bf2016-01-21 15:41:58 +0100[diff] [blame]108{
109 int ret;
Michal Vasko62be1ce2016-03-03 13:24:52 +0100[diff] [blame]110 struct timespec ts_timeout;
Michal Vasko96164bf2016-01-21 15:41:58 +0100[diff] [blame]111
112 if (timeout > 0) {
Radek Krejci7ac16052016-07-15 11:48:18 +0200[diff] [blame]113 nc_gettimespec(&ts_timeout);
Michal Vasko96164bf2016-01-21 15:41:58 +0100[diff] [blame]114
Michal Vasko96164bf2016-01-21 15:41:58 +0100[diff] [blame]115 ts_timeout.tv_sec += timeout / 1000;
116 ts_timeout.tv_nsec += (timeout % 1000) * 1000000;
117
118 ret = pthread_mutex_timedlock(lock, &ts_timeout);
Michal Vasko96164bf2016-01-21 15:41:58 +0100[diff] [blame]119 } else if (!timeout) {
120 ret = pthread_mutex_trylock(lock);
Michal vasko2f8e4b52016-10-05 13:04:11 +0200[diff] [blame]121 if (ret == EBUSY) {
122 /* equivalent in this case */
123 ret = ETIMEDOUT;
124 }
Michal Vasko96164bf2016-01-21 15:41:58 +0100[diff] [blame]125 } else { /* timeout == -1 */
126 ret = pthread_mutex_lock(lock);
127 }
128
129 if (ret == ETIMEDOUT) {
130 /* timeout */
131 return 0;
132 } else if (ret) {
133 /* error */
Michal vasko50cc94f2016-10-04 13:46:20 +0200[diff] [blame]134 ERR("Mutex lock failed (%s, %s).", func, strerror(ret));
Michal Vasko96164bf2016-01-21 15:41:58 +0100[diff] [blame]135 return -1;
136 }
137
138 /* ok */
139 return 1;
140}
141
Michal Vasko8dadf782016-01-15 10:29:36 +0100[diff] [blame]142API NC_STATUS
143nc_session_get_status(const struct nc_session *session)
144{
Michal Vasko7f1c78b2016-01-19 09:52:14 +0100[diff] [blame]145 if (!session) {
Michal Vasko45e53ae2016-04-07 11:46:03 +0200[diff] [blame]146 ERRARG("session");
Michal Vasko7f1c78b2016-01-19 09:52:14 +0100[diff] [blame]147 return 0;
148 }
149
Michal Vasko8dadf782016-01-15 10:29:36 +0100[diff] [blame]150 return session->status;
151}
152
Radek Krejci6e36bfb2016-12-01 21:40:16 +0100[diff] [blame]153API NC_SESSION_TERM_REASON
154nc_session_get_termreason(const struct nc_session *session)
155{
156 if (!session) {
157 ERRARG("session");
158 return 0;
159 }
160
161 return session->term_reason;
162}
163
Michal Vasko8dadf782016-01-15 10:29:36 +0100[diff] [blame]164API uint32_t
165nc_session_get_id(const struct nc_session *session)
166{
Michal Vasko7f1c78b2016-01-19 09:52:14 +0100[diff] [blame]167 if (!session) {
Michal Vasko45e53ae2016-04-07 11:46:03 +0200[diff] [blame]168 ERRARG("session");
Michal Vasko7f1c78b2016-01-19 09:52:14 +0100[diff] [blame]169 return 0;
170 }
171
Michal Vasko8dadf782016-01-15 10:29:36 +0100[diff] [blame]172 return session->id;
173}
174
Michal Vasko174fe8e2016-02-17 15:38:09 +0100[diff] [blame]175API int
176nc_session_get_version(const struct nc_session *session)
177{
178 if (!session) {
Michal Vasko45e53ae2016-04-07 11:46:03 +0200[diff] [blame]179 ERRARG("session");
Michal Vasko174fe8e2016-02-17 15:38:09 +0100[diff] [blame]180 return -1;
181 }
182
183 return (session->version == NC_VERSION_10 ? 0 : 1);
184}
185
Michal Vasko8dadf782016-01-15 10:29:36 +0100[diff] [blame]186API NC_TRANSPORT_IMPL
187nc_session_get_ti(const struct nc_session *session)
188{
Michal Vasko7f1c78b2016-01-19 09:52:14 +0100[diff] [blame]189 if (!session) {
Michal Vasko45e53ae2016-04-07 11:46:03 +0200[diff] [blame]190 ERRARG("session");
Michal Vasko7f1c78b2016-01-19 09:52:14 +0100[diff] [blame]191 return 0;
192 }
193
Michal Vasko8dadf782016-01-15 10:29:36 +0100[diff] [blame]194 return session->ti_type;
195}
196
197API const char *
198nc_session_get_username(const struct nc_session *session)
199{
Michal Vasko7f1c78b2016-01-19 09:52:14 +0100[diff] [blame]200 if (!session) {
Michal Vasko45e53ae2016-04-07 11:46:03 +0200[diff] [blame]201 ERRARG("session");
Michal Vasko7f1c78b2016-01-19 09:52:14 +0100[diff] [blame]202 return NULL;
203 }
204
Michal Vasko8dadf782016-01-15 10:29:36 +0100[diff] [blame]205 return session->username;
206}
207
208API const char *
209nc_session_get_host(const struct nc_session *session)
210{
Michal Vasko7f1c78b2016-01-19 09:52:14 +0100[diff] [blame]211 if (!session) {
Michal Vasko45e53ae2016-04-07 11:46:03 +0200[diff] [blame]212 ERRARG("session");
Michal Vasko7f1c78b2016-01-19 09:52:14 +0100[diff] [blame]213 return NULL;
214 }
215
Michal Vasko8dadf782016-01-15 10:29:36 +0100[diff] [blame]216 return session->host;
217}
218
219API uint16_t
220nc_session_get_port(const struct nc_session *session)
221{
Michal Vasko7f1c78b2016-01-19 09:52:14 +0100[diff] [blame]222 if (!session) {
Michal Vasko45e53ae2016-04-07 11:46:03 +0200[diff] [blame]223 ERRARG("session");
Michal Vasko7f1c78b2016-01-19 09:52:14 +0100[diff] [blame]224 return 0;
225 }
226
Michal Vasko8dadf782016-01-15 10:29:36 +0100[diff] [blame]227 return session->port;
228}
229
Michal Vasko9a25e932016-02-01 10:36:42 +0100[diff] [blame]230API struct ly_ctx *
231nc_session_get_ctx(const struct nc_session *session)
232{
233 if (!session) {
Michal Vasko45e53ae2016-04-07 11:46:03 +0200[diff] [blame]234 ERRARG("session");
Michal Vasko9a25e932016-02-01 10:36:42 +0100[diff] [blame]235 return NULL;
236 }
237
238 return session->ctx;
239}
240
Michal Vasko2cc4c682016-03-01 09:16:48 +0100[diff] [blame]241API void
242nc_session_set_data(struct nc_session *session, void *data)
243{
244 if (!session) {
Michal Vasko45e53ae2016-04-07 11:46:03 +0200[diff] [blame]245 ERRARG("session");
Michal Vasko2cc4c682016-03-01 09:16:48 +0100[diff] [blame]246 return;
247 }
248
249 session->data = data;
250}
251
252API void *
253nc_session_get_data(const struct nc_session *session)
254{
255 if (!session) {
Michal Vasko45e53ae2016-04-07 11:46:03 +0200[diff] [blame]256 ERRARG("session");
Michal Vasko2cc4c682016-03-01 09:16:48 +0100[diff] [blame]257 return NULL;
258 }
259
260 return session->data;
261}
262
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]263NC_MSG_TYPE
264nc_send_msg(struct nc_session *session, struct lyd_node *op)
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]265{
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]266 int r;
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]267
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]268 if (session->ctx != op->schema->module->ctx) {
Michal Vaskod083db62016-01-19 10:31:29 +0100[diff] [blame]269 ERR("Session %u: RPC \"%s\" was created in different context than that of the session.",
270 session->id, op->schema->name);
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]271 return NC_MSG_ERROR;
Michal Vasko7df39ec2015-12-09 15:26:24 +0100[diff] [blame]272 }
273
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]274 r = nc_write_msg(session, NC_MSG_RPC, op, NULL);
275
276 if (r) {
277 return NC_MSG_ERROR;
278 }
279
280 return NC_MSG_RPC;
Michal Vasko7df39ec2015-12-09 15:26:24 +0100[diff] [blame]281}
282
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]283API void
Michal Vaskoe1a64ec2016-03-01 12:21:58 +0100[diff] [blame]284nc_session_free(struct nc_session *session, void (*data_free)(void *))
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]285{
Michal Vasko9e99f012016-03-03 13:25:20 +0100[diff] [blame]286 int r, i, locked;
Michal Vasko428087d2016-01-14 16:04:28 +0100[diff] [blame]287 int connected; /* flag to indicate whether the transport socket is still connected */
Michal Vaskob48aa812016-01-18 14:13:09 +0100[diff] [blame]288 int multisession = 0; /* flag for more NETCONF sessions on a single SSH session */
Michal Vaskoa8ad4482016-01-28 14:25:54 +0100[diff] [blame]289 pthread_t tid;
Michal Vasko4589bbe2016-01-29 09:41:30 +0100[diff] [blame]290 struct nc_session *siter;
Michal Vaskoad611702015-12-03 13:41:51 +0100[diff] [blame]291 struct nc_msg_cont *contiter;
Michal Vaskoadd4c792015-10-26 15:36:58 +0100[diff] [blame]292 struct lyxml_elem *rpl, *child;
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]293 struct lyd_node *close_rpc;
Michal Vaskoad611702015-12-03 13:41:51 +0100[diff] [blame]294 const struct lys_module *ietfnc;
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]295 void *p;
296
Michal Vasko428087d2016-01-14 16:04:28 +0100[diff] [blame]297 if (!session || (session->status == NC_STATUS_CLOSING)) {
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]298 return;
299 }
300
Michal Vasko86d357c2016-03-11 13:46:38 +0100[diff] [blame]301 /* stop notifications loop if any */
Michal Vasko2e6defd2016-10-07 15:48:15 +0200[diff] [blame]302 if ((session->side == NC_CLIENT) && session->opts.client.ntf_tid) {
303 tid = *session->opts.client.ntf_tid;
304 free((pthread_t *)session->opts.client.ntf_tid);
305 session->opts.client.ntf_tid = NULL;
Michal Vasko86d357c2016-03-11 13:46:38 +0100[diff] [blame]306 /* the thread now knows it should quit */
307
308 pthread_join(tid, NULL);
309 }
310
Michal Vaskoadd4c792015-10-26 15:36:58 +0100[diff] [blame]311 if (session->ti_lock) {
Michal vasko50cc94f2016-10-04 13:46:20 +0200[diff] [blame]312 r = nc_timedlock(session->ti_lock, NC_READ_TIMEOUT * 1000, __func__);
Michal Vasko7f1c78b2016-01-19 09:52:14 +0100[diff] [blame]313 if (r == -1) {
Michal Vaskoadd4c792015-10-26 15:36:58 +0100[diff] [blame]314 return;
Michal Vasko9e99f012016-03-03 13:25:20 +0100[diff] [blame]315 } else if (!r) {
316 /* we failed to lock it, too bad */
317 locked = 0;
318 } else {
319 locked = 1;
Michal Vaskoadd4c792015-10-26 15:36:58 +0100[diff] [blame]320 }
Michal Vasko5ecbf8c2016-03-29 16:05:22 +0200[diff] [blame]321 } else {
322 ERRINT;
323 return;
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]324 }
325
Michal Vasko9e99f012016-03-03 13:25:20 +0100[diff] [blame]326 if ((session->side == NC_CLIENT) && (session->status == NC_STATUS_RUNNING) && locked) {
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]327 /* cleanup message queues */
328 /* notifications */
Michal Vasko2e6defd2016-10-07 15:48:15 +0200[diff] [blame]329 for (contiter = session->opts.client.notifs; contiter; ) {
Michal Vaskoad611702015-12-03 13:41:51 +0100[diff] [blame]330 lyxml_free(session->ctx, contiter->msg);
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]331
Michal Vaskoad611702015-12-03 13:41:51 +0100[diff] [blame]332 p = contiter;
333 contiter = contiter->next;
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]334 free(p);
335 }
336
337 /* rpc replies */
Michal Vasko2e6defd2016-10-07 15:48:15 +0200[diff] [blame]338 for (contiter = session->opts.client.replies; contiter; ) {
Michal Vaskoad611702015-12-03 13:41:51 +0100[diff] [blame]339 lyxml_free(session->ctx, contiter->msg);
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]340
Michal Vaskoad611702015-12-03 13:41:51 +0100[diff] [blame]341 p = contiter;
342 contiter = contiter->next;
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]343 free(p);
344 }
345
346 /* send closing info to the other side */
347 ietfnc = ly_ctx_get_module(session->ctx, "ietf-netconf", NULL);
348 if (!ietfnc) {
Michal Vasko428087d2016-01-14 16:04:28 +0100[diff] [blame]349 WRN("Session %u: missing ietf-netconf schema in context, unable to send <close-session>.", session->id);
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]350 } else {
351 close_rpc = lyd_new(NULL, ietfnc, "close-session");
Michal Vaskoad611702015-12-03 13:41:51 +0100[diff] [blame]352 nc_send_msg(session, close_rpc);
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]353 lyd_free(close_rpc);
Michal Vasko05ba9df2016-01-13 14:40:27 +0100[diff] [blame]354 switch (nc_read_msg_poll(session, NC_CLOSE_REPLY_TIMEOUT, &rpl)) {
Michal Vaskofad6e912015-10-26 15:37:22 +0100[diff] [blame]355 case NC_MSG_REPLY:
356 LY_TREE_FOR(rpl->child, child) {
357 if (!strcmp(child->name, "ok") && child->ns && !strcmp(child->ns->value, NC_NS_BASE)) {
358 break;
359 }
360 }
361 if (!child) {
Michal Vasko428087d2016-01-14 16:04:28 +0100[diff] [blame]362 WRN("Session %u: the reply to <close-session> was not <ok> as expected.", session->id);
Michal Vaskofad6e912015-10-26 15:37:22 +0100[diff] [blame]363 }
Michal Vaskoad611702015-12-03 13:41:51 +0100[diff] [blame]364 lyxml_free(session->ctx, rpl);
Michal Vaskofad6e912015-10-26 15:37:22 +0100[diff] [blame]365 break;
366 case NC_MSG_WOULDBLOCK:
Michal Vasko428087d2016-01-14 16:04:28 +0100[diff] [blame]367 WRN("Session %u: timeout for receiving a reply to <close-session> elapsed.", session->id);
Michal Vaskofad6e912015-10-26 15:37:22 +0100[diff] [blame]368 break;
369 case NC_MSG_ERROR:
Michal Vaskod083db62016-01-19 10:31:29 +0100[diff] [blame]370 ERR("Session %u: failed to receive a reply to <close-session>.", session->id);
Michal Vaskofad6e912015-10-26 15:37:22 +0100[diff] [blame]371 break;
372 default:
373 /* cannot happen */
374 break;
375 }
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]376 }
377
378 /* list of server's capabilities */
Michal Vasko2e6defd2016-10-07 15:48:15 +0200[diff] [blame]379 if (session->opts.client.cpblts) {
380 for (i = 0; session->opts.client.cpblts[i]; i++) {
381 lydict_remove(session->ctx, session->opts.client.cpblts[i]);
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]382 }
Michal Vasko2e6defd2016-10-07 15:48:15 +0200[diff] [blame]383 free(session->opts.client.cpblts);
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]384 }
385 }
386
Michal Vaskoe1a64ec2016-03-01 12:21:58 +0100[diff] [blame]387 if (session->data && data_free) {
388 data_free(session->data);
389 }
390
Michal Vaskoc4bc5812016-10-13 10:59:36 +0200[diff] [blame]391 if ((session->side == NC_SERVER) && (session->flags & NC_SESSION_CALLHOME)) {
392 /* CH LOCK */
393 pthread_mutex_lock(session->opts.server.ch_lock);
394 }
395
Michal Vasko86d357c2016-03-11 13:46:38 +0100[diff] [blame]396 /* mark session for closing */
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]397 session->status = NC_STATUS_CLOSING;
Michal Vaskoc4bc5812016-10-13 10:59:36 +0200[diff] [blame]398
399 if ((session->side == NC_SERVER) && (session->flags & NC_SESSION_CALLHOME)) {
400 pthread_cond_signal(session->opts.server.ch_cond);
401
402 /* CH UNLOCK */
403 pthread_mutex_unlock(session->opts.server.ch_lock);
404 }
405
Michal Vasko428087d2016-01-14 16:04:28 +0100[diff] [blame]406 connected = nc_session_is_connected(session);
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]407
408 /* transport implementation cleanup */
409 switch (session->ti_type) {
410 case NC_TI_FD:
411 /* nothing needed - file descriptors were provided by caller,
412 * so it is up to the caller to close them correctly
413 * TODO use callbacks
414 */
Michal Vasko3512e402016-01-28 16:22:34 +0100[diff] [blame]415 /* just to avoid compiler warning */
416 (void)connected;
Michal Vasko4589bbe2016-01-29 09:41:30 +0100[diff] [blame]417 (void)siter;
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]418 break;
419
Radek Krejci53691be2016-02-22 13:58:37 +0100[diff] [blame]420#ifdef NC_ENABLED_SSH
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]421 case NC_TI_LIBSSH:
Michal Vasko428087d2016-01-14 16:04:28 +0100[diff] [blame]422 if (connected) {
423 ssh_channel_free(session->ti.libssh.channel);
424 }
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]425 /* There can be multiple NETCONF sessions on the same SSH session (NETCONF session maps to
426 * SSH channel). So destroy the SSH session only if there is no other NETCONF session using
427 * it.
428 */
Michal Vasko96164bf2016-01-21 15:41:58 +0100[diff] [blame]429 multisession = 0;
430 if (session->ti.libssh.next) {
431 for (siter = session->ti.libssh.next; siter != session; siter = siter->ti.libssh.next) {
432 if (siter->status != NC_STATUS_STARTING) {
433 multisession = 1;
434 break;
435 }
436 }
437 }
438
439 if (!multisession) {
440 /* it's not multisession yet, but we still need to free the starting sessions */
441 if (session->ti.libssh.next) {
442 do {
443 siter = session->ti.libssh.next;
444 session->ti.libssh.next = siter->ti.libssh.next;
445
446 /* free starting SSH NETCONF session (channel will be freed in ssh_free()) */
Michal Vasko96164bf2016-01-21 15:41:58 +0100[diff] [blame]447 lydict_remove(session->ctx, session->username);
448 lydict_remove(session->ctx, session->host);
Michal Vasko96164bf2016-01-21 15:41:58 +0100[diff] [blame]449 if (!(session->flags & NC_SESSION_SHAREDCTX)) {
Radek Krejci4ba285b2016-02-04 17:34:06 +0100[diff] [blame]450 ly_ctx_destroy(session->ctx, NULL);
Michal Vasko96164bf2016-01-21 15:41:58 +0100[diff] [blame]451 }
452
453 free(siter);
454 } while (session->ti.libssh.next != session);
455 }
Michal Vasko428087d2016-01-14 16:04:28 +0100[diff] [blame]456 if (connected) {
457 ssh_disconnect(session->ti.libssh.session);
458 }
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]459 ssh_free(session->ti.libssh.session);
460 } else {
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]461 /* remove the session from the list */
462 for (siter = session->ti.libssh.next; siter->ti.libssh.next != session; siter = siter->ti.libssh.next);
Michal Vaskoaec4f212015-10-26 15:37:45 +0100[diff] [blame]463 if (session->ti.libssh.next == siter) {
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]464 /* there will be only one session */
465 siter->ti.libssh.next = NULL;
466 } else {
467 /* there are still multiple sessions, keep the ring list */
468 siter->ti.libssh.next = session->ti.libssh.next;
469 }
Michal Vasko96164bf2016-01-21 15:41:58 +0100[diff] [blame]470 /* change nc_sshcb_msg() argument, we need a RUNNING session and this one will be freed */
471 if (session->flags & NC_SESSION_SSH_MSG_CB) {
472 for (siter = session->ti.libssh.next; siter->status != NC_STATUS_RUNNING; siter = siter->ti.libssh.next) {
473 if (siter->ti.libssh.next == session) {
474 ERRINT;
475 break;
476 }
477 }
478 ssh_set_message_callback(session->ti.libssh.session, nc_sshcb_msg, siter);
479 siter->flags |= NC_SESSION_SSH_MSG_CB;
480 }
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]481 }
482 break;
483#endif
484
Radek Krejci53691be2016-02-22 13:58:37 +0100[diff] [blame]485#ifdef NC_ENABLED_TLS
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]486 case NC_TI_OPENSSL:
Michal Vasko428087d2016-01-14 16:04:28 +0100[diff] [blame]487 if (connected) {
488 SSL_shutdown(session->ti.tls);
489 }
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]490 SSL_free(session->ti.tls);
Michal Vasko06e22432016-01-15 10:30:06 +0100[diff] [blame]491
Michal Vasko2e6defd2016-10-07 15:48:15 +0200[diff] [blame]492 if (session->side == NC_SERVER) {
493 X509_free(session->opts.server.client_cert);
494 }
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]495 break;
496#endif
Michal Vasko428087d2016-01-14 16:04:28 +0100[diff] [blame]497 case NC_TI_NONE:
498 ERRINT;
499 break;
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]500 }
Michal Vasko428087d2016-01-14 16:04:28 +0100[diff] [blame]501
Radek Krejciac6d3472015-10-22 15:47:18 +0200[diff] [blame]502 lydict_remove(session->ctx, session->username);
503 lydict_remove(session->ctx, session->host);
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]504
505 /* final cleanup */
Michal Vaskoadd4c792015-10-26 15:36:58 +0100[diff] [blame]506 if (session->ti_lock) {
Michal Vasko9e99f012016-03-03 13:25:20 +0100[diff] [blame]507 if (locked) {
508 pthread_mutex_unlock(session->ti_lock);
509 }
Michal Vaskob48aa812016-01-18 14:13:09 +0100[diff] [blame]510 if (!multisession) {
Michal Vaskoadd4c792015-10-26 15:36:58 +0100[diff] [blame]511 pthread_mutex_destroy(session->ti_lock);
512 free(session->ti_lock);
513 }
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]514 }
515
516 if (!(session->flags & NC_SESSION_SHAREDCTX)) {
Radek Krejci4ba285b2016-02-04 17:34:06 +0100[diff] [blame]517 ly_ctx_destroy(session->ctx, NULL);
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]518 }
519
Michal Vaskoc4bc5812016-10-13 10:59:36 +0200[diff] [blame]520 if (session->side == NC_SERVER) {
521 if (session->opts.server.ch_cond) {
522 pthread_cond_destroy(session->opts.server.ch_cond);
523 free(session->opts.server.ch_cond);
524 }
525 if (session->opts.server.ch_lock) {
526 pthread_mutex_destroy(session->opts.server.ch_lock);
527 free(session->opts.server.ch_lock);
528 }
529 }
530
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]531 free(session);
532}
533
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]534static void
535add_cpblt(struct ly_ctx *ctx, const char *capab, const char ***cpblts, int *size, int *count)
536{
Radek Krejci658782b2016-12-04 22:04:55 +0100[diff] [blame]537 size_t len;
538 int i;
539 char *p;
540
541 if (capab) {
542 /* check if already present */
543 p = strchr(capab, '?');
544 if (p) {
545 len = p - capab;
546 } else {
547 len = strlen(capab);
548 }
549 for (i = 0; i < *count; i++) {
550 if (!strncmp((*cpblts)[i], capab, len)) {
551 /* already present, do not duplicate it */
552 return;
553 }
554 }
555 }
556
557 /* add another capability */
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]558 if (*count == *size) {
559 *size += 5;
Michal Vasko4eb3c312016-03-01 14:09:37 +0100[diff] [blame]560 *cpblts = nc_realloc(*cpblts, *size * sizeof **cpblts);
561 if (!(*cpblts)) {
562 ERRMEM;
563 return;
564 }
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]565 }
566
567 if (capab) {
568 (*cpblts)[*count] = lydict_insert(ctx, capab, 0);
569 } else {
570 (*cpblts)[*count] = NULL;
571 }
572 ++(*count);
573}
574
Michal Vasko4ffa3b22016-05-24 16:36:25 +0200[diff] [blame]575API const char **
576nc_server_get_cpblts(struct ly_ctx *ctx)
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]577{
578 struct lyd_node *child, *child2, *yanglib;
Michal Vaskodd9fe652016-09-14 09:24:32 +0200[diff] [blame]579 struct lyd_node_leaf_list **features = NULL, **deviations = NULL, *ns = NULL, *rev = NULL, *name = NULL, *module_set_id = NULL;
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]580 const char **cpblts;
581 const struct lys_module *mod;
Michal Vaskoe90e4d12016-06-20 10:05:01 +0200[diff] [blame]582 int size = 10, count, feat_count = 0, dev_count = 0, i, str_len;
Radek Krejci658782b2016-12-04 22:04:55 +0100[diff] [blame]583 unsigned int u;
Michal Vasko2e47ef92016-06-20 10:03:24 +0200[diff] [blame]584#define NC_CPBLT_BUF_LEN 512
585 char str[NC_CPBLT_BUF_LEN];
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]586
Michal Vasko4ffa3b22016-05-24 16:36:25 +0200[diff] [blame]587 if (!ctx) {
588 ERRARG("ctx");
589 return NULL;
590 }
591
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]592 yanglib = ly_ctx_info(ctx);
593 if (!yanglib) {
Michal Vasko4ffa3b22016-05-24 16:36:25 +0200[diff] [blame]594 ERR("Failed to get ietf-yang-library data from the context.");
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]595 return NULL;
596 }
597
598 cpblts = malloc(size * sizeof *cpblts);
Michal Vasko4eb3c312016-03-01 14:09:37 +0100[diff] [blame]599 if (!cpblts) {
600 ERRMEM;
601 return NULL;
602 }
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]603 cpblts[0] = lydict_insert(ctx, "urn:ietf:params:netconf:base:1.0", 0);
604 cpblts[1] = lydict_insert(ctx, "urn:ietf:params:netconf:base:1.1", 0);
605 count = 2;
606
607 /* capabilities */
608
609 mod = ly_ctx_get_module(ctx, "ietf-netconf", NULL);
610 if (mod) {
611 if (lys_features_state(mod, "writable-running") == 1) {
Michal Vasko3031aae2016-01-27 16:07:18 +0100[diff] [blame]612 add_cpblt(ctx, "urn:ietf:params:netconf:capability:writable-running:1.0", &cpblts, &size, &count);
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]613 }
614 if (lys_features_state(mod, "candidate") == 1) {
Michal Vasko3031aae2016-01-27 16:07:18 +0100[diff] [blame]615 add_cpblt(ctx, "urn:ietf:params:netconf:capability:candidate:1.0", &cpblts, &size, &count);
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]616 if (lys_features_state(mod, "confirmed-commit") == 1) {
Michal Vasko3031aae2016-01-27 16:07:18 +0100[diff] [blame]617 add_cpblt(ctx, "urn:ietf:params:netconf:capability:confirmed-commit:1.1", &cpblts, &size, &count);
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]618 }
619 }
620 if (lys_features_state(mod, "rollback-on-error") == 1) {
Michal Vasko3031aae2016-01-27 16:07:18 +0100[diff] [blame]621 add_cpblt(ctx, "urn:ietf:params:netconf:capability:rollback-on-error:1.0", &cpblts, &size, &count);
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]622 }
623 if (lys_features_state(mod, "validate") == 1) {
Michal Vasko3031aae2016-01-27 16:07:18 +0100[diff] [blame]624 add_cpblt(ctx, "urn:ietf:params:netconf:capability:validate:1.1", &cpblts, &size, &count);
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]625 }
626 if (lys_features_state(mod, "startup") == 1) {
Michal Vasko3031aae2016-01-27 16:07:18 +0100[diff] [blame]627 add_cpblt(ctx, "urn:ietf:params:netconf:capability:startup:1.0", &cpblts, &size, &count);
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]628 }
629 if (lys_features_state(mod, "url") == 1) {
Michal Vasko3031aae2016-01-27 16:07:18 +0100[diff] [blame]630 add_cpblt(ctx, "urn:ietf:params:netconf:capability:url:1.0", &cpblts, &size, &count);
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]631 }
632 if (lys_features_state(mod, "xpath") == 1) {
Michal Vasko3031aae2016-01-27 16:07:18 +0100[diff] [blame]633 add_cpblt(ctx, "urn:ietf:params:netconf:capability:xpath:1.0", &cpblts, &size, &count);
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]634 }
635 }
636
637 mod = ly_ctx_get_module(ctx, "ietf-netconf-with-defaults", NULL);
638 if (mod) {
639 if (!server_opts.wd_basic_mode) {
640 VRB("with-defaults capability will not be advertised even though \"ietf-netconf-with-defaults\" model is present, unknown basic-mode.");
641 } else {
Michal Vasko3031aae2016-01-27 16:07:18 +0100[diff] [blame]642 strcpy(str, "urn:ietf:params:netconf:capability:with-defaults:1.0");
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]643 switch (server_opts.wd_basic_mode) {
644 case NC_WD_ALL:
645 strcat(str, "?basic-mode=report-all");
646 break;
647 case NC_WD_TRIM:
648 strcat(str, "?basic-mode=trim");
649 break;
650 case NC_WD_EXPLICIT:
651 strcat(str, "?basic-mode=explicit");
652 break;
653 default:
Michal Vasko9e036d52016-01-08 10:49:26 +0100[diff] [blame]654 ERRINT;
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]655 break;
656 }
657
658 if (server_opts.wd_also_supported) {
Michal Vasko2e47ef92016-06-20 10:03:24 +0200[diff] [blame]659 strcat(str, "&also-supported=");
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]660 if (server_opts.wd_also_supported & NC_WD_ALL) {
661 strcat(str, "report-all,");
662 }
663 if (server_opts.wd_also_supported & NC_WD_ALL_TAG) {
664 strcat(str, "report-all-tagged,");
665 }
666 if (server_opts.wd_also_supported & NC_WD_TRIM) {
667 strcat(str, "trim,");
668 }
669 if (server_opts.wd_also_supported & NC_WD_EXPLICIT) {
670 strcat(str, "explicit,");
671 }
672 str[strlen(str) - 1] = '\0';
673
674 add_cpblt(ctx, str, &cpblts, &size, &count);
675 }
676 }
677 }
678
Radek Krejci658782b2016-12-04 22:04:55 +0100[diff] [blame]679 /* other capabilities */
680 for (u = 0; u < server_opts.capabilities_count; u++) {
681 add_cpblt(ctx, server_opts.capabilities[u], &cpblts, &size, &count);
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]682 }
683
684 /* models */
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]685 LY_TREE_FOR(yanglib->child, child) {
Michal Vaskodd9fe652016-09-14 09:24:32 +0200[diff] [blame]686 if (!module_set_id) {
687 if (strcmp(child->prev->schema->name, "module-set-id")) {
688 ERRINT;
Michal Vaskoa8a66b62016-10-05 14:14:19 +0200[diff] [blame]689 free(cpblts);
690 free(deviations);
Michal Vaskodd9fe652016-09-14 09:24:32 +0200[diff] [blame]691 return NULL;
692 }
693 module_set_id = (struct lyd_node_leaf_list *)child->prev;
694 }
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]695 if (!strcmp(child->schema->name, "module")) {
696 LY_TREE_FOR(child->child, child2) {
697 if (!strcmp(child2->schema->name, "namespace")) {
698 ns = (struct lyd_node_leaf_list *)child2;
699 } else if (!strcmp(child2->schema->name, "name")) {
700 name = (struct lyd_node_leaf_list *)child2;
701 } else if (!strcmp(child2->schema->name, "revision")) {
702 rev = (struct lyd_node_leaf_list *)child2;
703 } else if (!strcmp(child2->schema->name, "feature")) {
Michal Vasko4eb3c312016-03-01 14:09:37 +0100[diff] [blame]704 features = nc_realloc(features, ++feat_count * sizeof *features);
705 if (!features) {
706 ERRMEM;
707 free(cpblts);
Michal Vaskoe90e4d12016-06-20 10:05:01 +0200[diff] [blame]708 free(deviations);
Michal Vasko4eb3c312016-03-01 14:09:37 +0100[diff] [blame]709 return NULL;
710 }
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]711 features[feat_count - 1] = (struct lyd_node_leaf_list *)child2;
Michal Vaskoe90e4d12016-06-20 10:05:01 +0200[diff] [blame]712 } else if (!strcmp(child2->schema->name, "deviation")) {
713 deviations = nc_realloc(deviations, ++dev_count * sizeof *deviations);
714 if (!deviations) {
715 ERRMEM;
716 free(cpblts);
717 free(features);
718 return NULL;
719 }
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]720 }
721 }
722
723 if (!ns || !name || !rev) {
Michal Vasko9e036d52016-01-08 10:49:26 +0100[diff] [blame]724 ERRINT;
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]725 continue;
726 }
727
Radek Krejcidf7ba522016-03-01 16:05:25 +0100[diff] [blame]728 str_len = sprintf(str, "%s?module=%s%s%s", ns->value_str, name->value_str,
Michal Vasko2e47ef92016-06-20 10:03:24 +0200[diff] [blame]729 rev->value_str[0] ? "&revision=" : "", rev->value_str);
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]730 if (feat_count) {
Michal Vasko2e47ef92016-06-20 10:03:24 +0200[diff] [blame]731 strcat(str, "&features=");
732 str_len += 10;
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]733 for (i = 0; i < feat_count; ++i) {
Michal Vasko2e47ef92016-06-20 10:03:24 +0200[diff] [blame]734 if (str_len + 1 + strlen(features[i]->value_str) >= NC_CPBLT_BUF_LEN) {
Michal Vasko11d142a2016-01-19 15:58:24 +0100[diff] [blame]735 ERRINT;
736 break;
737 }
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]738 if (i) {
739 strcat(str, ",");
Michal Vasko11d142a2016-01-19 15:58:24 +0100[diff] [blame]740 ++str_len;
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]741 }
742 strcat(str, features[i]->value_str);
Michal Vasko11d142a2016-01-19 15:58:24 +0100[diff] [blame]743 str_len += strlen(features[i]->value_str);
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]744 }
745 }
Michal Vaskoe90e4d12016-06-20 10:05:01 +0200[diff] [blame]746 if (dev_count) {
747 strcat(str, "&deviations=");
748 str_len += 12;
749 for (i = 0; i < dev_count; ++i) {
750 if (str_len + 1 + strlen(deviations[i]->value_str) >= NC_CPBLT_BUF_LEN) {
751 ERRINT;
752 break;
753 }
754 if (i) {
755 strcat(str, ",");
756 ++str_len;
757 }
758 strcat(str, deviations[i]->value_str);
759 str_len += strlen(deviations[i]->value_str);
760 }
761 }
Michal Vaskodd9fe652016-09-14 09:24:32 +0200[diff] [blame]762 if (!strcmp(name->value_str, "ietf-yang-library")) {
763 str_len += sprintf(str + str_len, "&module-set-id=%s", module_set_id->value_str);
764 }
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]765
766 add_cpblt(ctx, str, &cpblts, &size, &count);
767
768 ns = NULL;
769 name = NULL;
770 rev = NULL;
Michal Vaskoe90e4d12016-06-20 10:05:01 +0200[diff] [blame]771 if (features || feat_count) {
772 free(features);
773 features = NULL;
774 feat_count = 0;
775 }
776 if (deviations || dev_count) {
777 free(deviations);
778 deviations = NULL;
779 dev_count = 0;
780 }
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]781 }
782 }
783
784 lyd_free(yanglib);
785
786 /* ending NULL capability */
787 add_cpblt(ctx, NULL, &cpblts, &size, &count);
788
789 return cpblts;
790}
791
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]792static int
793parse_cpblts(struct lyxml_elem *xml, const char ***list)
794{
795 struct lyxml_elem *cpblt;
796 int ver = -1;
797 int i = 0;
798
799 if (list) {
800 /* get the storage for server's capabilities */
801 LY_TREE_FOR(xml->child, cpblt) {
802 i++;
803 }
Michal Vasko9e2d3a32015-11-10 13:09:18 +0100[diff] [blame]804 /* last item remains NULL */
805 *list = calloc(i + 1, sizeof **list);
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]806 if (!*list) {
807 ERRMEM;
808 return -1;
809 }
810 i = 0;
811 }
812
813 LY_TREE_FOR(xml->child, cpblt) {
814 if (strcmp(cpblt->name, "capability") && cpblt->ns && cpblt->ns->value &&
815 !strcmp(cpblt->ns->value, NC_NS_BASE)) {
816 ERR("Unexpected <%s> element in client's <hello>.", cpblt->name);
817 return -1;
818 } else if (!cpblt->ns || !cpblt->ns->value || strcmp(cpblt->ns->value, NC_NS_BASE)) {
819 continue;
820 }
821
822 /* detect NETCONF version */
823 if (ver < 0 && !strcmp(cpblt->content, "urn:ietf:params:netconf:base:1.0")) {
824 ver = 0;
825 } else if (ver < 1 && !strcmp(cpblt->content, "urn:ietf:params:netconf:base:1.1")) {
826 ver = 1;
827 }
828
829 /* store capabilities */
830 if (list) {
831 (*list)[i] = cpblt->content;
832 cpblt->content = NULL;
833 i++;
834 }
835 }
836
837 if (ver == -1) {
Michal Vaskod083db62016-01-19 10:31:29 +0100[diff] [blame]838 ERR("Peer does not support a compatible NETCONF version.");
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]839 }
840
841 return ver;
842}
843
844static NC_MSG_TYPE
Michal Vasko11d142a2016-01-19 15:58:24 +0100[diff] [blame]845nc_send_client_hello(struct nc_session *session)
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]846{
847 int r, i;
848 const char **cpblts;
849
Michal Vasko11d142a2016-01-19 15:58:24 +0100[diff] [blame]850 /* client side hello - send only NETCONF base capabilities */
851 cpblts = malloc(3 * sizeof *cpblts);
Michal Vasko4eb3c312016-03-01 14:09:37 +0100[diff] [blame]852 if (!cpblts) {
853 ERRMEM;
854 return NC_MSG_ERROR;
855 }
Michal Vasko11d142a2016-01-19 15:58:24 +0100[diff] [blame]856 cpblts[0] = lydict_insert(session->ctx, "urn:ietf:params:netconf:base:1.0", 0);
857 cpblts[1] = lydict_insert(session->ctx, "urn:ietf:params:netconf:base:1.1", 0);
858 cpblts[2] = NULL;
Michal Vasko05ba9df2016-01-13 14:40:27 +0100[diff] [blame]859
Michal Vasko11d142a2016-01-19 15:58:24 +0100[diff] [blame]860 r = nc_write_msg(session, NC_MSG_HELLO, cpblts, NULL);
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]861
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]862 for (i = 0; cpblts[i]; ++i) {
863 lydict_remove(session->ctx, cpblts[i]);
864 }
865 free(cpblts);
866
867 if (r) {
868 return NC_MSG_ERROR;
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]869 }
Michal Vasko11d142a2016-01-19 15:58:24 +0100[diff] [blame]870
871 return NC_MSG_HELLO;
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]872}
873
874static NC_MSG_TYPE
Michal Vasko11d142a2016-01-19 15:58:24 +0100[diff] [blame]875nc_send_server_hello(struct nc_session *session)
876{
877 int r, i;
878 const char **cpblts;
879
Michal Vasko4ffa3b22016-05-24 16:36:25 +0200[diff] [blame]880 cpblts = nc_server_get_cpblts(session->ctx);
Michal Vasko11d142a2016-01-19 15:58:24 +0100[diff] [blame]881
882 r = nc_write_msg(session, NC_MSG_HELLO, cpblts, &session->id);
883
Michal Vasko11d142a2016-01-19 15:58:24 +0100[diff] [blame]884 for (i = 0; cpblts[i]; ++i) {
885 lydict_remove(session->ctx, cpblts[i]);
886 }
Michal Vasko11d142a2016-01-19 15:58:24 +0100[diff] [blame]887 free(cpblts);
888
889 if (r) {
890 return NC_MSG_ERROR;
891 }
892
893 return NC_MSG_HELLO;
894}
895
896static NC_MSG_TYPE
897nc_recv_client_hello(struct nc_session *session)
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]898{
899 struct lyxml_elem *xml = NULL, *node;
900 NC_MSG_TYPE msgtype = 0; /* NC_MSG_ERROR */
901 int ver = -1;
902 char *str;
903 long long int id;
904 int flag = 0;
905
Michal Vasko05ba9df2016-01-13 14:40:27 +0100[diff] [blame]906 msgtype = nc_read_msg_poll(session, NC_CLIENT_HELLO_TIMEOUT * 1000, &xml);
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]907
908 switch(msgtype) {
909 case NC_MSG_HELLO:
910 /* parse <hello> data */
Michal Vasko11d142a2016-01-19 15:58:24 +0100[diff] [blame]911 LY_TREE_FOR(xml->child, node) {
912 if (!node->ns || !node->ns->value || strcmp(node->ns->value, NC_NS_BASE)) {
913 continue;
914 } else if (!strcmp(node->name, "session-id")) {
915 if (!node->content || !strlen(node->content)) {
916 ERR("No value of <session-id> element in server's <hello>.");
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]917 goto error;
918 }
Michal Vasko11d142a2016-01-19 15:58:24 +0100[diff] [blame]919 str = NULL;
920 id = strtoll(node->content, &str, 10);
921 if (*str || id < 1 || id > UINT32_MAX) {
922 ERR("Invalid value of <session-id> element in server's <hello>.");
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]923 goto error;
924 }
Michal Vasko11d142a2016-01-19 15:58:24 +0100[diff] [blame]925 session->id = (uint32_t)id;
926 continue;
927 } else if (strcmp(node->name, "capabilities")) {
928 ERR("Unexpected <%s> element in client's <hello>.", node->name);
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]929 goto error;
930 }
Michal Vasko11d142a2016-01-19 15:58:24 +0100[diff] [blame]931
932 if (flag) {
933 /* multiple capabilities elements */
934 ERR("Invalid <hello> message (multiple <capabilities> elements).");
935 goto error;
936 }
937 flag = 1;
938
Michal Vasko2e6defd2016-10-07 15:48:15 +0200[diff] [blame]939 if ((ver = parse_cpblts(node, &session->opts.client.cpblts)) < 0) {
Michal Vasko11d142a2016-01-19 15:58:24 +0100[diff] [blame]940 goto error;
941 }
942 session->version = ver;
943 }
944
945 if (!session->id) {
946 ERR("Missing <session-id> in server's <hello>.");
947 goto error;
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]948 }
949 break;
Michal Vasko71090fc2016-05-24 16:37:28 +0200[diff] [blame]950 case NC_MSG_WOULDBLOCK:
951 ERR("Server's <hello> timeout elapsed.");
952 break;
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]953 case NC_MSG_ERROR:
954 /* nothing special, just pass it out */
955 break;
956 default:
957 ERR("Unexpected message received instead of <hello>.");
958 msgtype = NC_MSG_ERROR;
Michal Vasko71090fc2016-05-24 16:37:28 +0200[diff] [blame]959 break;
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]960 }
961
962 /* cleanup */
Michal Vaskoad611702015-12-03 13:41:51 +0100[diff] [blame]963 lyxml_free(session->ctx, xml);
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]964
965 return msgtype;
966
967error:
968 /* cleanup */
Michal Vaskoad611702015-12-03 13:41:51 +0100[diff] [blame]969 lyxml_free(session->ctx, xml);
Radek Krejci695d4fa2015-10-22 13:23:54 +0200[diff] [blame]970
971 return NC_MSG_ERROR;
Radek Krejci5686ff72015-10-09 13:33:56 +0200[diff] [blame]972}
973
Michal Vasko11d142a2016-01-19 15:58:24 +0100[diff] [blame]974static NC_MSG_TYPE
975nc_recv_server_hello(struct nc_session *session)
976{
977 struct lyxml_elem *xml = NULL, *node;
Michal Vasko71090fc2016-05-24 16:37:28 +0200[diff] [blame]978 NC_MSG_TYPE msgtype;
Michal Vasko11d142a2016-01-19 15:58:24 +0100[diff] [blame]979 int ver = -1;
980 int flag = 0;
981
Michal Vaskoadb850e2016-01-20 14:06:32 +0100[diff] [blame]982 msgtype = nc_read_msg_poll(session, (server_opts.hello_timeout ? server_opts.hello_timeout * 1000 : -1), &xml);
Michal Vasko11d142a2016-01-19 15:58:24 +0100[diff] [blame]983
Michal Vasko5e6f4cc2016-01-20 13:27:44 +0100[diff] [blame]984 switch (msgtype) {
Michal Vasko11d142a2016-01-19 15:58:24 +0100[diff] [blame]985 case NC_MSG_HELLO:
986 /* get know NETCONF version */
987 LY_TREE_FOR(xml->child, node) {
988 if (!node->ns || !node->ns->value || strcmp(node->ns->value, NC_NS_BASE)) {
989 continue;
990 } else if (strcmp(node->name, "capabilities")) {
991 ERR("Unexpected <%s> element in client's <hello>.", node->name);
Michal Vasko71090fc2016-05-24 16:37:28 +0200[diff] [blame]992 msgtype = NC_MSG_BAD_HELLO;
Michal Vasko11d142a2016-01-19 15:58:24 +0100[diff] [blame]993 goto cleanup;
994 }
995
996 if (flag) {
997 /* multiple capabilities elements */
998 ERR("Invalid <hello> message (multiple <capabilities> elements).");
Michal Vasko71090fc2016-05-24 16:37:28 +0200[diff] [blame]999 msgtype = NC_MSG_BAD_HELLO;
Michal Vasko11d142a2016-01-19 15:58:24 +0100[diff] [blame]1000 goto cleanup;
1001 }
1002 flag = 1;
1003
1004 if ((ver = parse_cpblts(node, NULL)) < 0) {
Michal Vasko71090fc2016-05-24 16:37:28 +0200[diff] [blame]1005 msgtype = NC_MSG_BAD_HELLO;
Michal Vasko11d142a2016-01-19 15:58:24 +0100[diff] [blame]1006 goto cleanup;
1007 }
1008 session->version = ver;
1009 }
1010 break;
1011 case NC_MSG_ERROR:
1012 /* nothing special, just pass it out */
1013 break;
Michal Vasko5e6f4cc2016-01-20 13:27:44 +0100[diff] [blame]1014 case NC_MSG_WOULDBLOCK:
1015 ERR("Client's <hello> timeout elapsed.");
Michal Vasko5e6f4cc2016-01-20 13:27:44 +0100[diff] [blame]1016 break;
Michal Vasko11d142a2016-01-19 15:58:24 +0100[diff] [blame]1017 default:
1018 ERR("Unexpected message received instead of <hello>.");
1019 msgtype = NC_MSG_ERROR;
Michal Vasko71090fc2016-05-24 16:37:28 +0200[diff] [blame]1020 break;
Michal Vasko11d142a2016-01-19 15:58:24 +0100[diff] [blame]1021 }
1022
1023cleanup:
Michal Vasko11d142a2016-01-19 15:58:24 +0100[diff] [blame]1024 lyxml_free(session->ctx, xml);
Michal Vasko11d142a2016-01-19 15:58:24 +0100[diff] [blame]1025
1026 return msgtype;
1027}
1028
Michal Vasko71090fc2016-05-24 16:37:28 +0200[diff] [blame]1029NC_MSG_TYPE
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]1030nc_handshake(struct nc_session *session)
Michal Vasko80cad7f2015-12-08 14:42:27 +0100[diff] [blame]1031{
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]1032 NC_MSG_TYPE type;
Michal Vasko80cad7f2015-12-08 14:42:27 +0100[diff] [blame]1033
Michal Vasko11d142a2016-01-19 15:58:24 +0100[diff] [blame]1034 if (session->side == NC_CLIENT) {
1035 type = nc_send_client_hello(session);
1036 } else {
1037 type = nc_send_server_hello(session);
1038 }
1039
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]1040 if (type != NC_MSG_HELLO) {
Michal Vasko71090fc2016-05-24 16:37:28 +0200[diff] [blame]1041 return type;
Michal Vasko80cad7f2015-12-08 14:42:27 +0100[diff] [blame]1042 }
1043
Michal Vasko11d142a2016-01-19 15:58:24 +0100[diff] [blame]1044 if (session->side == NC_CLIENT) {
1045 type = nc_recv_client_hello(session);
1046 } else {
1047 type = nc_recv_server_hello(session);
1048 }
1049
Michal Vasko71090fc2016-05-24 16:37:28 +0200[diff] [blame]1050 return type;
Michal Vasko80cad7f2015-12-08 14:42:27 +0100[diff] [blame]1051}
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]1052
Radek Krejci53691be2016-02-22 13:58:37 +0100[diff] [blame]1053#ifdef NC_ENABLED_SSH
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]1054
Michal Vasko8f0c0282016-02-29 10:17:14 +0100[diff] [blame]1055static void
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]1056nc_ssh_init(void)
1057{
1058 ssh_threads_set_callbacks(ssh_threads_get_pthread());
1059 ssh_init();
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]1060}
1061
Michal Vasko8f0c0282016-02-29 10:17:14 +0100[diff] [blame]1062static void
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]1063nc_ssh_destroy(void)
1064{
Michal Vasko8f0c0282016-02-29 10:17:14 +0100[diff] [blame]1065 FIPS_mode_set(0);
Michal Vasko5e228792016-02-03 15:30:24 +0100[diff] [blame]1066 ENGINE_cleanup();
1067 CONF_modules_unload(1);
Michal Vaskob6e37262016-02-25 14:49:00 +0100[diff] [blame]1068 nc_thread_destroy();
Michal Vasko086311b2016-01-08 09:53:11 +0100[diff] [blame]1069 ssh_finalize();
1070}
1071
Radek Krejci53691be2016-02-22 13:58:37 +0100[diff] [blame]1072#endif /* NC_ENABLED_SSH */
Michal Vaskoc14e3c82016-01-11 16:14:30 +0100[diff] [blame]1073
Radek Krejci53691be2016-02-22 13:58:37 +0100[diff] [blame]1074#ifdef NC_ENABLED_TLS
Michal Vaskoc14e3c82016-01-11 16:14:30 +0100[diff] [blame]1075
Michal Vaskof0c92c02016-01-29 09:41:45 +0100[diff] [blame]1076struct CRYPTO_dynlock_value {
1077 pthread_mutex_t lock;
1078};
1079
Michal Vaskof0c92c02016-01-29 09:41:45 +0100[diff] [blame]1080static struct CRYPTO_dynlock_value *
1081tls_dyn_create_func(const char *UNUSED(file), int UNUSED(line))
1082{
1083 struct CRYPTO_dynlock_value *value;
1084
1085 value = malloc(sizeof *value);
1086 if (!value) {
1087 ERRMEM;
1088 return NULL;
1089 }
1090 pthread_mutex_init(&value->lock, NULL);
1091
1092 return value;
1093}
1094
1095static void
1096tls_dyn_lock_func(int mode, struct CRYPTO_dynlock_value *l, const char *UNUSED(file), int UNUSED(line))
1097{
1098 /* mode can also be CRYPTO_READ or CRYPTO_WRITE, but all the examples
1099 * I found ignored this fact, what do I know... */
1100 if (mode & CRYPTO_LOCK) {
1101 pthread_mutex_lock(&l->lock);
1102 } else {
1103 pthread_mutex_unlock(&l->lock);
1104 }
1105}
1106
1107static void
1108tls_dyn_destroy_func(struct CRYPTO_dynlock_value *l, const char *UNUSED(file), int UNUSED(line))
1109{
1110 pthread_mutex_destroy(&l->lock);
1111 free(l);
Michal Vaskoc14e3c82016-01-11 16:14:30 +0100[diff] [blame]1112}
1113
Michal Vasko8f0c0282016-02-29 10:17:14 +0100[diff] [blame]1114#endif /* NC_ENABLED_TLS */
1115
1116#if defined(NC_ENABLED_TLS) && !defined(NC_ENABLED_SSH)
1117
1118static pthread_mutex_t *tls_locks;
1119
1120static void
1121tls_thread_locking_func(int mode, int n, const char *UNUSED(file), int UNUSED(line))
1122{
1123 if (mode & CRYPTO_LOCK) {
1124 pthread_mutex_lock(tls_locks + n);
1125 } else {
1126 pthread_mutex_unlock(tls_locks + n);
1127 }
1128}
1129
1130static void
1131tls_thread_id_func(CRYPTO_THREADID *tid)
1132{
1133 CRYPTO_THREADID_set_numeric(tid, (unsigned long)pthread_self());
1134}
1135
1136static void
Michal Vaskoc14e3c82016-01-11 16:14:30 +0100[diff] [blame]1137nc_tls_init(void)
1138{
1139 int i;
1140
1141 SSL_load_error_strings();
Michal Vasko7f1c78b2016-01-19 09:52:14 +0100[diff] [blame]1142 ERR_load_BIO_strings();
Michal Vaskoc14e3c82016-01-11 16:14:30 +0100[diff] [blame]1143 SSL_library_init();
1144
1145 tls_locks = malloc(CRYPTO_num_locks() * sizeof *tls_locks);
Michal Vasko4eb3c312016-03-01 14:09:37 +0100[diff] [blame]1146 if (!tls_locks) {
1147 ERRMEM;
1148 return;
1149 }
Michal Vaskoc14e3c82016-01-11 16:14:30 +0100[diff] [blame]1150 for (i = 0; i < CRYPTO_num_locks(); ++i) {
1151 pthread_mutex_init(tls_locks + i, NULL);
1152 }
1153
Michal Vaskof0c92c02016-01-29 09:41:45 +0100[diff] [blame]1154 CRYPTO_THREADID_set_callback(tls_thread_id_func);
Michal Vaskoc14e3c82016-01-11 16:14:30 +0100[diff] [blame]1155 CRYPTO_set_locking_callback(tls_thread_locking_func);
Michal Vaskof0c92c02016-01-29 09:41:45 +0100[diff] [blame]1156
1157 CRYPTO_set_dynlock_create_callback(tls_dyn_create_func);
1158 CRYPTO_set_dynlock_lock_callback(tls_dyn_lock_func);
1159 CRYPTO_set_dynlock_destroy_callback(tls_dyn_destroy_func);
Michal Vaskoc14e3c82016-01-11 16:14:30 +0100[diff] [blame]1160}
1161
Michal Vasko8f0c0282016-02-29 10:17:14 +0100[diff] [blame]1162static void
Michal Vaskoc14e3c82016-01-11 16:14:30 +0100[diff] [blame]1163nc_tls_destroy(void)
1164{
1165 int i;
Michal Vaskoc14e3c82016-01-11 16:14:30 +0100[diff] [blame]1166
Michal Vasko8f0c0282016-02-29 10:17:14 +0100[diff] [blame]1167 FIPS_mode_set(0);
Michal Vaskoc14e3c82016-01-11 16:14:30 +0100[diff] [blame]1168 CRYPTO_cleanup_all_ex_data();
Michal Vaskob6e37262016-02-25 14:49:00 +0100[diff] [blame]1169 nc_thread_destroy();
Michal Vasko5e228792016-02-03 15:30:24 +0100[diff] [blame]1170 EVP_cleanup();
Michal Vaskoc14e3c82016-01-11 16:14:30 +0100[diff] [blame]1171 ERR_free_strings();
Jan Kundrát47e9e1a2016-11-21 09:41:59 +0100[diff] [blame]1172#if OPENSSL_VERSION_NUMBER >= 0x10100000L // >= 1.1.0
1173 // no de-init needed
1174#elif OPENSSL_VERSION_NUMBER >= 0x10002000L // >= 1.0.2
1175 SSL_COMP_free_compression_methods();
1176#else
Michal Vaskoc14e3c82016-01-11 16:14:30 +0100[diff] [blame]1177 sk_SSL_COMP_free(SSL_COMP_get_compression_methods());
Jan Kundrát47e9e1a2016-11-21 09:41:59 +0100[diff] [blame]1178#endif
Michal Vaskoc14e3c82016-01-11 16:14:30 +0100[diff] [blame]1179
Michal Vaskob6e37262016-02-25 14:49:00 +0100[diff] [blame]1180 CRYPTO_THREADID_set_callback(NULL);
Michal Vaskoc14e3c82016-01-11 16:14:30 +0100[diff] [blame]1181 CRYPTO_set_locking_callback(NULL);
1182 for (i = 0; i < CRYPTO_num_locks(); ++i) {
1183 pthread_mutex_destroy(tls_locks + i);
1184 }
1185 free(tls_locks);
Michal Vaskof0c92c02016-01-29 09:41:45 +0100[diff] [blame]1186
1187 CRYPTO_set_dynlock_create_callback(NULL);
1188 CRYPTO_set_dynlock_lock_callback(NULL);
1189 CRYPTO_set_dynlock_destroy_callback(NULL);
Michal Vaskoc14e3c82016-01-11 16:14:30 +0100[diff] [blame]1190}
1191
Michal Vasko8f0c0282016-02-29 10:17:14 +0100[diff] [blame]1192#endif /* NC_ENABLED_TLS && !NC_ENABLED_SSH */
Michal Vasko5e228792016-02-03 15:30:24 +0100[diff] [blame]1193
Radek Krejci53691be2016-02-22 13:58:37 +0100[diff] [blame]1194#if defined(NC_ENABLED_SSH) && defined(NC_ENABLED_TLS)
Michal Vasko5e228792016-02-03 15:30:24 +0100[diff] [blame]1195
Michal Vasko8f0c0282016-02-29 10:17:14 +0100[diff] [blame]1196static void
Michal Vasko5e228792016-02-03 15:30:24 +0100[diff] [blame]1197nc_ssh_tls_init(void)
1198{
1199 SSL_load_error_strings();
1200 ERR_load_BIO_strings();
1201 SSL_library_init();
1202
1203 nc_ssh_init();
1204
1205 CRYPTO_set_dynlock_create_callback(tls_dyn_create_func);
1206 CRYPTO_set_dynlock_lock_callback(tls_dyn_lock_func);
1207 CRYPTO_set_dynlock_destroy_callback(tls_dyn_destroy_func);
1208}
1209
Michal Vasko8f0c0282016-02-29 10:17:14 +0100[diff] [blame]1210static void
Michal Vasko5e228792016-02-03 15:30:24 +0100[diff] [blame]1211nc_ssh_tls_destroy(void)
1212{
1213 ERR_free_strings();
Jan Kundrát47e9e1a2016-11-21 09:41:59 +0100[diff] [blame]1214#if OPENSSL_VERSION_NUMBER >= 0x10100000L // >= 1.1.0
1215 // no de-init needed
1216#elif OPENSSL_VERSION_NUMBER >= 0x10002000L // >= 1.0.2
1217 SSL_COMP_free_compression_methods();
1218#else
Michal Vasko5e228792016-02-03 15:30:24 +0100[diff] [blame]1219 sk_SSL_COMP_free(SSL_COMP_get_compression_methods());
Jan Kundrát47e9e1a2016-11-21 09:41:59 +0100[diff] [blame]1220#endif
Michal Vasko5e228792016-02-03 15:30:24 +0100[diff] [blame]1221
1222 nc_ssh_destroy();
1223
1224 CRYPTO_set_dynlock_create_callback(NULL);
1225 CRYPTO_set_dynlock_lock_callback(NULL);
1226 CRYPTO_set_dynlock_destroy_callback(NULL);
1227}
1228
Radek Krejci53691be2016-02-22 13:58:37 +0100[diff] [blame]1229#endif /* NC_ENABLED_SSH && NC_ENABLED_TLS */
Michal Vasko8f0c0282016-02-29 10:17:14 +0100[diff] [blame]1230
1231#if defined(NC_ENABLED_SSH) || defined(NC_ENABLED_TLS)
1232
1233API void
1234nc_thread_destroy(void)
1235{
1236 CRYPTO_THREADID crypto_tid;
1237
1238 /* caused data-races and seems not neccessary for avoiding valgrind reachable memory */
1239 //CRYPTO_cleanup_all_ex_data();
1240
1241 CRYPTO_THREADID_current(&crypto_tid);
1242 ERR_remove_thread_state(&crypto_tid);
1243}
1244
Michal Vaskoa7b8ca52016-03-01 12:09:29 +0100[diff] [blame]1245#endif /* NC_ENABLED_SSH || NC_ENABLED_TLS */
1246
1247void
Michal Vasko8f0c0282016-02-29 10:17:14 +0100[diff] [blame]1248nc_init(void)
1249{
1250#if defined(NC_ENABLED_SSH) && defined(NC_ENABLED_TLS)
1251 nc_ssh_tls_init();
1252#elif defined(NC_ENABLED_SSH)
1253 nc_ssh_init();
1254#elif defined(NC_ENABLED_TLS)
1255 nc_tls_init();
1256#endif
1257}
1258
Michal Vaskoa7b8ca52016-03-01 12:09:29 +0100[diff] [blame]1259void
Michal Vasko8f0c0282016-02-29 10:17:14 +0100[diff] [blame]1260nc_destroy(void)
1261{
1262#if defined(NC_ENABLED_SSH) && defined(NC_ENABLED_TLS)
1263 nc_ssh_tls_destroy();
1264#elif defined(NC_ENABLED_SSH)
1265 nc_ssh_destroy();
1266#elif defined(NC_ENABLED_TLS)
1267 nc_tls_destroy();
1268#endif
1269}