res_pjsip: AMI commands and events.

[asterisk/asterisk.git] / res / res_pjsip / config_auth.c

/*
 * Asterisk -- An open source telephony toolkit.
 *
 * Copyright (C) 2013, Digium, Inc.
 *
 * Mark Michelson <mmichelson@digium.com>
 *
 * See http://www.asterisk.org for more information about
 * the Asterisk project. Please do not directly contact
 * any of the maintainers of this project for assistance;
 * the project provides a web site, mailing lists and IRC
 * channels for your use.
 *
 * This program is free software, distributed under the terms of
 * the GNU General Public License Version 2. See the LICENSE file
 * at the top of the source tree.
 */

#include "asterisk.h"

#include <pjsip.h>
#include <pjlib.h>
#include "asterisk/res_pjsip.h"
#include "asterisk/logger.h"
#include "asterisk/sorcery.h"
#include "include/res_pjsip_private.h"

static void auth_destroy(void *obj)
{
        struct ast_sip_auth *auth = obj;
        ast_string_field_free_memory(auth);
}

static void *auth_alloc(const char *name)
{
        struct ast_sip_auth *auth = ast_sorcery_generic_alloc(sizeof(*auth), auth_destroy);

        if (!auth) {
                return NULL;
        }

        if (ast_string_field_init(auth, 64)) {
                ao2_cleanup(auth);
                return NULL;
        }

        return auth;
}

static int auth_type_handler(const struct aco_option *opt, struct ast_variable *var, void *obj)
{
        struct ast_sip_auth *auth = obj;
        if (!strcasecmp(var->value, "userpass")) {
                auth->type = AST_SIP_AUTH_TYPE_USER_PASS;
        } else if (!strcasecmp(var->value, "md5")) {
                auth->type = AST_SIP_AUTH_TYPE_MD5;
        } else {
                ast_log(LOG_WARNING, "Unknown authentication storage type '%s' specified for %s\n",
                                var->value, var->name);
                return -1;
        }
        return 0;
}

static const char *auth_types_map[] = {
        [AST_SIP_AUTH_TYPE_USER_PASS] = "userpass",
        [AST_SIP_AUTH_TYPE_MD5] = "md5"
};

const char *ast_sip_auth_type_to_str(enum ast_sip_auth_type type)
{
        return ARRAY_IN_BOUNDS(type, auth_types_map) ?
                auth_types_map[type] : "";
}

static int auth_type_to_str(const void *obj, const intptr_t *args, char **buf)
{
        const struct ast_sip_auth *auth = obj;
        *buf = ast_strdup(ast_sip_auth_type_to_str(auth->type));
        return 0;
}

static int auth_apply(const struct ast_sorcery *sorcery, void *obj)
{
        struct ast_sip_auth *auth = obj;
        int res = 0;

        if (ast_strlen_zero(auth->auth_user)) {
                ast_log(LOG_ERROR, "No authentication username for auth '%s'\n",
                                ast_sorcery_object_get_id(auth));
                return -1;
        }

        switch (auth->type) {
        case AST_SIP_AUTH_TYPE_USER_PASS:
                if (ast_strlen_zero(auth->auth_pass)) {
                        ast_log(LOG_ERROR, "'userpass' authentication specified but no"
                                        "password specified for auth '%s'\n", ast_sorcery_object_get_id(auth));
                        res = -1;
                }
                break;
        case AST_SIP_AUTH_TYPE_MD5:
                if (ast_strlen_zero(auth->md5_creds)) {
                        ast_log(LOG_ERROR, "'md5' authentication specified but no md5_cred"
                                        "specified for auth '%s'\n", ast_sorcery_object_get_id(auth));
                        res = -1;
                } else if (strlen(auth->md5_creds) != PJSIP_MD5STRLEN) {
                        ast_log(LOG_ERROR, "'md5' authentication requires digest of size '%d', but"
                                "digest is '%d' in size for auth '%s'\n", PJSIP_MD5STRLEN, (int)strlen(auth->md5_creds),
                                ast_sorcery_object_get_id(auth));
                        res = -1;
                }
                break;
        case AST_SIP_AUTH_TYPE_ARTIFICIAL:
                break;
        }

        return res;
}

int ast_sip_for_each_auth(const struct ast_sip_auth_array *array,
                          ao2_callback_fn on_auth, void *arg)
{
        int i;

        if (!array || !array->num) {
                return 0;
        }

        for (i = 0; i < array->num; ++i) {
                RAII_VAR(struct ast_sip_auth *, auth, ast_sorcery_retrieve_by_id(
                                 ast_sip_get_sorcery(), SIP_SORCERY_AUTH_TYPE,
                                 array->names[i]), ao2_cleanup);

                if (!auth) {
                        continue;
                }

                if (on_auth(auth, arg, 0)) {
                        return -1;
                }
        }

        return 0;
}

static int sip_auth_to_ami(const struct ast_sip_auth *auth,
                           struct ast_str **buf)
{
        return ast_sip_sorcery_object_to_ami(auth, buf);
}

static int format_ami_auth_handler(void *obj, void *arg, int flags)
{
        const struct ast_sip_auth *auth = obj;
        struct ast_sip_ami *ami = arg;
        const struct ast_sip_endpoint *endpoint = ami->arg;
        RAII_VAR(struct ast_str *, buf,
                 ast_sip_create_ami_event("AuthDetail", ami), ast_free);

        if (!buf) {
                return -1;
        }

        if (sip_auth_to_ami(auth, &buf)) {
                return -1;
        }

        if (endpoint) {
                ast_str_append(&buf, 0, "EndpointName: %s\r\n",
                       ast_sorcery_object_get_id(endpoint));
        }

        astman_append(ami->s, "%s\r\n", ast_str_buffer(buf));
        return 0;
}

int ast_sip_format_auths_ami(const struct ast_sip_auth_array *auths,
                             struct ast_sip_ami *ami)
{
        return ast_sip_for_each_auth(auths, format_ami_auth_handler, ami);
}

static int format_ami_endpoint_auth(const struct ast_sip_endpoint *endpoint,
                                    struct ast_sip_ami *ami)
{
        ami->arg = (void *)endpoint;
        if (ast_sip_format_auths_ami(&endpoint->inbound_auths, ami)) {
                return -1;
        }

        return ast_sip_format_auths_ami(&endpoint->outbound_auths, ami);
}

static struct ast_sip_endpoint_formatter endpoint_auth_formatter = {
        .format_ami = format_ami_endpoint_auth
};

/*! \brief Initialize sorcery with auth support */
int ast_sip_initialize_sorcery_auth(struct ast_sorcery *sorcery)
{
        ast_sorcery_apply_default(sorcery, SIP_SORCERY_AUTH_TYPE, "config", "pjsip.conf,criteria=type=auth");

        if (ast_sorcery_object_register(sorcery, SIP_SORCERY_AUTH_TYPE, auth_alloc, NULL, auth_apply)) {
                return -1;
        }

        ast_sorcery_object_field_register(sorcery, SIP_SORCERY_AUTH_TYPE, "type", "",
                        OPT_NOOP_T, 0, 0);
        ast_sorcery_object_field_register(sorcery, SIP_SORCERY_AUTH_TYPE, "username",
                        "", OPT_STRINGFIELD_T, 0, STRFLDSET(struct ast_sip_auth, auth_user));
        ast_sorcery_object_field_register(sorcery, SIP_SORCERY_AUTH_TYPE, "password",
                        "", OPT_STRINGFIELD_T, 0, STRFLDSET(struct ast_sip_auth, auth_pass));
        ast_sorcery_object_field_register(sorcery, SIP_SORCERY_AUTH_TYPE, "md5_cred",
                        "", OPT_STRINGFIELD_T, 0, STRFLDSET(struct ast_sip_auth, md5_creds));
        ast_sorcery_object_field_register(sorcery, SIP_SORCERY_AUTH_TYPE, "realm",
                        "", OPT_STRINGFIELD_T, 0, STRFLDSET(struct ast_sip_auth, realm));
        ast_sorcery_object_field_register(sorcery, SIP_SORCERY_AUTH_TYPE, "nonce_lifetime",
                        "32", OPT_UINT_T, 0, FLDSET(struct ast_sip_auth, nonce_lifetime));
        ast_sorcery_object_field_register_custom(sorcery, SIP_SORCERY_AUTH_TYPE, "auth_type",
                        "userpass", auth_type_handler, auth_type_to_str, 0, 0);

        ast_sip_register_endpoint_formatter(&endpoint_auth_formatter);
        return 0;
}