/// Compare the request ids of two different ResourceCmds using
/// GCompareFunc style arguments for use with g_queue_find_custom()
FSTATIC gint
_queue_compare_requestid (gconstpointer a, gconstpointer b)
{
const RscQElem* acmd = CASTTOCONSTCLASS(RscQElem, a);
const RscQElem* bcmd = CASTTOCONSTCLASS(RscQElem, b);
return acmd->requestid == bcmd->requestid;
}
FSTATIC char *
_seqnoframe_toString(gconstpointer vself)
{
const SeqnoFrame* self = CASTTOCONSTCLASS(SeqnoFrame, vself);
return g_strdup_printf("SeqnoFrame(type=%d, (%d,%d,"FMT_64BIT"d))", self->baseclass.type, self->_sessionid
, self->_qid, self->_reqid);
}
FSTATIC char *
_childprocess_toString(gconstpointer aself)
{
const ChildProcess* self = CASTTOCONSTCLASS(ChildProcess, aself);
ConfigContext* cfg = configcontext_new(0);
char* ret;
cfg->setint(cfg, "child_pid", self->child_pid);
cfg->setint(cfg, "timeout", self->timeout);
cfg->setint(cfg, "timeoutsrc_id", self->timeoutsrc_id);
cfg->setint(cfg, "childsrc_id", self->childsrc_id);
cfg->setint(cfg, "child_state", self->child_state);
cfg->setstring(cfg, "loggingname", self->loggingname);
ret = cfg->baseclass.toString(&cfg->baseclass);
UNREF(cfg);
return ret;
}
/// @ref CryptCurve25519 'isvalid' member function (checks for valid cryptcurve25519 objects)
FSTATIC gboolean
_cryptcurve25519_default_isvalid(const Frame * fself, ///<[in] CryptCurve25519 object ('this')
gconstpointer tlvstart, ///<[in] Pointer to the TLV for this CryptCurve25519
gconstpointer pktend) ///<[in] Pointer to one byte past the end of the packet
{
const CryptCurve25519* self = CASTTOCONSTCLASS(CryptCurve25519, fself);
const guint8* valptr;
const char* key_id;
guint namelen;
gsize pktlen;
int j;
// Validate "object" only
if (NULL == tlvstart) {
namelen = strnlen(self->baseclass.receiver_key_id, MAXCRYPTNAMELENGTH+1);
if (fself->length != TLVLEN(self->baseclass.receiver_key_id, self->baseclass.sender_key_id)) {
return FALSE;
}
namelen = strnlen(self->baseclass.receiver_key_id, MAXCRYPTNAMELENGTH+1);
if (namelen >= MAXCRYPTNAMELENGTH || namelen < 1 ){
return FALSE;
}
if (!_is_valid_curve25519_key_id(self->baseclass.receiver_key_id, self->forsending? PUBLICKEY: PRIVATEKEY)) {
return FALSE;
}
namelen = strnlen(self->baseclass.sender_key_id, MAXCRYPTNAMELENGTH+1);
if (namelen >= MAXCRYPTNAMELENGTH || namelen < 1 ){
return FALSE;
}
if (!_is_valid_curve25519_key_id(self->baseclass.sender_key_id, self->forsending ? PRIVATEKEY: PUBLICKEY)) {
return FALSE;
}
return TRUE;
}
// Validate TLV
pktlen = get_generic_tlv_len(tlvstart, pktend);
// 6 == two 1-byte lengths, and two NUL-terminated strings of at least 2 bytes each
if (pktlen < (crypto_box_NONCEBYTES + crypto_box_MACBYTES+6)) {
return FALSE;
}
valptr = get_generic_tlv_value(tlvstart, pktend);
// Validate both key names in the packet...
for (j=0; j < 2; ++ j) {
if ((gconstpointer)(valptr+3) >= pktend) {
return FALSE;
}
namelen = tlv_get_guint8(valptr, pktend);
if (namelen < 2 || (namelen-1) > MAXCRYPTNAMELENGTH) {
return FALSE;
}
valptr += 1;
if ((gconstpointer)(valptr+namelen) > pktend) {
return FALSE;
}
key_id = (const char *)(valptr);
if (strnlen(key_id, namelen) != (namelen-1)) {
return FALSE;
}
// We say PUBLICKEY since we don't know whether we're validating this
// on the sender or the receiver end - and whether should be a public
// or a private key will depend on which end we're at - and everyone
// needs a public key. If we have a public key but need a private
// key that will get caught when we try and decrypt it.
// At least this catches garbage and unknown keys
if (!_is_valid_curve25519_key_id(key_id, PUBLICKEY)) {
g_warning("%s.%d: Packet encrypted using unknown key [%s]", __FUNCTION__, __LINE__
, key_id);
return FALSE;
}
valptr += namelen;
}
return TRUE;
}
