Remove VLC_OBJECT_GLOBAL

[vlc] / modules / misc / gnutls.c
diff --git a/modules/misc/gnutls.c b/modules/misc/gnutls.c

index 46224bb46910b02864d613ea8ac95c64d7792c9e..88fcc32700d9fcffe84e50cf49d8dda05145ed44 100644 (file)
--- a/modules/misc/gnutls.c
+++ b/modules/misc/gnutls.c
@@ -25,6 +25,10 @@
   * Preamble
   *****************************************************************************/
  
+#ifdef HAVE_CONFIG_H
+# include "config.h"
+#endif
+
  #include <vlc/vlc.h>
  #include <errno.h>
  #include <time.h>
@@ -42,13 +46,15 @@
  #endif
  
  
-#include "vlc_tls.h"
+#include <vlc_tls.h>
  #include <vlc_charset.h>
  
  #include <gcrypt.h>
  #include <gnutls/gnutls.h>
  #include <gnutls/x509.h>
  
+#include <vlc_gcrypt.h>
+
  #define CACHE_TIMEOUT     3600
  #define CACHE_SIZE          64
  
@@ -72,11 +78,6 @@ static void CloseServer (vlc_object_t *);
      "This is the maximum number of resumed TLS sessions that " \
      "the cache will hold." )
  
-#define CHECK_CERT_TEXT N_("Check TLS/SSL server certificate validity")
-#define CHECK_CERT_LONGTEXT N_( \
-    "This ensures that the server certificate is valid " \
-    "(i.e. signed by an approved Certification Authority)." )
-
  vlc_module_begin();
      set_shortname( "GnuTLS" );
      set_description( _("GnuTLS transport layer security") );
@@ -85,8 +86,7 @@ vlc_module_begin();
      set_category( CAT_ADVANCED );
      set_subcategory( SUBCAT_ADVANCED_MISC );
  
-    add_bool( "tls-check-cert", VLC_TRUE, NULL, CHECK_CERT_TEXT,
-              CHECK_CERT_LONGTEXT, VLC_FALSE );
+    add_obsolete_bool( "tls-check-cert" );
      add_obsolete_bool( "tls-check-hostname" );
  
      add_submodule();
@@ -98,72 +98,11 @@ vlc_module_begin();
  
          add_obsolete_integer( "gnutls-dh-bits" );
          add_integer( "gnutls-cache-timeout", CACHE_TIMEOUT, NULL,
-                    CACHE_TIMEOUT_TEXT, CACHE_TIMEOUT_LONGTEXT, VLC_TRUE );
+                    CACHE_TIMEOUT_TEXT, CACHE_TIMEOUT_LONGTEXT, true );
          add_integer( "gnutls-cache-size", CACHE_SIZE, NULL, CACHE_SIZE_TEXT,
-                    CACHE_SIZE_LONGTEXT, VLC_TRUE );
+                    CACHE_SIZE_LONGTEXT, true );
  vlc_module_end();
  
-
-
-#ifdef LIBVLC_USE_PTHREAD
-GCRY_THREAD_OPTION_PTHREAD_IMPL;
-# define gcry_threads_vlc gcry_threads_pthread
-#else
-/**
- * gcrypt thread option VLC implementation
- */
-
-# define NEED_THREAD_CONTEXT 1
-static vlc_object_t *__p_gcry_data = NULL;
-
-static int gcry_vlc_mutex_init( void **p_sys )
-{
-    int i_val;
-    vlc_mutex_t *p_lock = (vlc_mutex_t *)malloc( sizeof( vlc_mutex_t ) );
-
-    if( p_lock == NULL)
-        return ENOMEM;
-
-    i_val = vlc_mutex_init( __p_gcry_data, p_lock );
-    if( i_val )
-        free( p_lock );
-    else
-        *p_sys = p_lock;
-    return i_val;
-}
-
-static int gcry_vlc_mutex_destroy( void **p_sys )
-{
-    int i_val;
-    vlc_mutex_t *p_lock = (vlc_mutex_t *)*p_sys;
-
-    i_val = vlc_mutex_destroy( p_lock );
-    free( p_lock );
-    return i_val;
-}
-
-static int gcry_vlc_mutex_lock( void **p_sys )
-{
-    return vlc_mutex_lock( (vlc_mutex_t *)*p_sys );
-}
-
-static int gcry_vlc_mutex_unlock( void **lock )
-{
-    return vlc_mutex_unlock( (vlc_mutex_t *)*lock );
-}
-
-static struct gcry_thread_cbs gcry_threads_vlc =
-{
-    GCRY_THREAD_OPTION_USER,
-    NULL,
-    gcry_vlc_mutex_init,
-    gcry_vlc_mutex_destroy,
-    gcry_vlc_mutex_lock,
-    gcry_vlc_mutex_unlock
-};
-#endif
-
-
  /**
   * Initializes GnuTLS with proper locking.
   * @return VLC_SUCCESS on success, a VLC error code otherwise.
@@ -172,15 +111,9 @@ static int gnutls_Init (vlc_object_t *p_this)
  {
      int ret = VLC_EGENERIC;
  
-    vlc_mutex_t *lock = var_AcquireMutex ("gnutls_mutex");
-
-    /* This should probably be removed/fixed. It will screw up with multiple
-     * LibVLC instances. */
-#ifdef NEED_THREAD_CONTEXT
-    __p_gcry_data = VLC_OBJECT (p_this->p_libvlc);
-#endif
+    vlc_gcrypt_init (); /* GnuTLS depends on gcrypt */
  
-    gcry_control (GCRYCTL_SET_THREAD_CBS, &gcry_threads_vlc);
+    vlc_mutex_t *lock = var_AcquireMutex ("gnutls_mutex");
      if (gnutls_global_init ())
      {
          msg_Err (p_this, "cannot initialize GnuTLS");
@@ -256,7 +189,7 @@ struct tls_session_sys_t
  {
      gnutls_session_t session;
      char            *psz_hostname;
-    vlc_bool_t       b_handshaked;
+    bool       b_handshaked;
  };
  
  
@@ -322,7 +255,7 @@ gnutls_ContinueHandshake (tls_session_t *p_session)
          return -1;
      }
  
-    p_sys->b_handshaked = VLC_TRUE;
+    p_sys->b_handshaked = true;
      return 0;
  }
  
@@ -561,13 +494,13 @@ gnutls_SessionPrioritize (vlc_object_t *obj, gnutls_session_t session)
  static int
  gnutls_Addx509File( vlc_object_t *p_this,
                      gnutls_certificate_credentials_t cred,
-                    const char *psz_path, vlc_bool_t b_priv );
+                    const char *psz_path, bool b_priv );
  
  static int
  gnutls_Addx509Directory( vlc_object_t *p_this,
                           gnutls_certificate_credentials_t cred,
                           const char *psz_dirname,
-                         vlc_bool_t b_priv )
+                         bool b_priv )
  {
      DIR* dir;
  
@@ -633,7 +566,7 @@ gnutls_Addx509Directory( vlc_object_t *p_this,
  static int
  gnutls_Addx509File( vlc_object_t *p_this,
                      gnutls_certificate_credentials cred,
-                    const char *psz_path, vlc_bool_t b_priv )
+                    const char *psz_path, bool b_priv )
  {
      struct stat st;
  
@@ -708,7 +641,7 @@ static int OpenClient (vlc_object_t *obj)
      p_session->sock.pf_recv = gnutls_Recv;
      p_session->pf_set_fd = gnutls_SetFD;
  
-    p_sys->session.b_handshaked = VLC_FALSE;
+    p_sys->session.b_handshaked = false;
  
      const char *homedir = obj->p_libvlc->psz_datadir,
                 *datadir = config_GetDataDir ();
@@ -728,23 +661,19 @@ static int OpenClient (vlc_object_t *obj)
      sprintf (path, "%s/ssl", homedir);
      utf8_mkdir (path, 0755);
  
-    if (var_CreateGetBool (obj, "tls-check-cert"))
-    {
-        sprintf (path, "%s/ssl/certs", homedir);
-        gnutls_Addx509Directory (VLC_OBJECT (p_session),
-                                  p_sys->x509_cred, path, VLC_FALSE);
-
-        sprintf (path, "%s/ca-certificates.crt", datadir);
-        gnutls_Addx509File (VLC_OBJECT (p_session),
-                            p_sys->x509_cred, path, VLC_FALSE);
-        p_session->pf_handshake = gnutls_HandshakeAndValidate;
-    }
-    else
-        p_session->pf_handshake = gnutls_ContinueHandshake;
+    sprintf (path, "%s/ssl/certs", homedir);
+    gnutls_Addx509Directory (VLC_OBJECT (p_session),
+                             p_sys->x509_cred, path, false);
+
+    sprintf (path, "%s/ca-certificates.crt", datadir);
+    gnutls_Addx509File (VLC_OBJECT (p_session),
+                        p_sys->x509_cred, path, false);
+    p_session->pf_handshake = gnutls_HandshakeAndValidate;
+    /*p_session->pf_handshake = gnutls_ContinueHandshake;*/
  
      sprintf (path, "%s/ssl/private", homedir);
      gnutls_Addx509Directory (VLC_OBJECT (p_session), p_sys->x509_cred,
-                             path, VLC_TRUE);
+                             path, true);
  
      i_val = gnutls_init (&p_sys->session.session, GNUTLS_CLIENT);
      if (i_val != 0)
@@ -797,7 +726,7 @@ static void CloseClient (vlc_object_t *obj)
      tls_session_t *client = (tls_session_t *)obj;
      tls_client_sys_t *p_sys = (tls_client_sys_t *)(client->p_sys);
  
-    if (p_sys->session.b_handshaked == VLC_TRUE)
+    if (p_sys->session.b_handshaked == true)
          gnutls_bye (p_sys->session.session, GNUTLS_SHUT_WR);
      gnutls_deinit (p_sys->session.session);
      /* credentials must be free'd *after* gnutls_deinit() */
@@ -946,12 +875,12 @@ gnutls_SessionClose (tls_server_t *p_server, tls_session_t *p_session)
      tls_session_sys_t *p_sys = p_session->p_sys;
      (void)p_server;
  
-    if( p_sys->b_handshaked == VLC_TRUE )
+    if( p_sys->b_handshaked == true )
          gnutls_bye( p_sys->session, GNUTLS_SHUT_WR );
      gnutls_deinit( p_sys->session );
  
      vlc_object_detach( p_session );
-    vlc_object_destroy( p_session );
+    vlc_object_release( p_session );
  
      free( p_sys );
  }
@@ -975,7 +904,7 @@ gnutls_ServerSessionPrepare( tls_server_t *p_server )
      p_session->p_sys = malloc( sizeof(struct tls_session_sys_t) );
      if( p_session->p_sys == NULL )
      {
-        vlc_object_destroy( p_session );
+        vlc_object_release( p_session );
          return NULL;
      }
  
@@ -986,7 +915,7 @@ gnutls_ServerSessionPrepare( tls_server_t *p_server )
      p_session->pf_set_fd = gnutls_SetFD;
      p_session->pf_handshake = p_server_sys->pf_handshake;
  
-    p_session->p_sys->b_handshaked = VLC_FALSE;
+    p_session->p_sys->b_handshaked = false;
      p_session->p_sys->psz_hostname = NULL;
  
      i_val = gnutls_init( &session, GNUTLS_SERVER );
@@ -1031,7 +960,7 @@ gnutls_ServerSessionPrepare( tls_server_t *p_server )
  error:
      free( p_session->p_sys );
      vlc_object_detach( p_session );
-    vlc_object_destroy( p_session );
+    vlc_object_release( p_session );
      return NULL;
  }
  
@@ -1138,7 +1067,7 @@ static int OpenServer (vlc_object_t *obj)
      /* No certificate validation by default */
      p_sys->pf_handshake  = gnutls_ContinueHandshake;
  
-    vlc_mutex_init( p_server, &p_sys->cache_lock );
+    vlc_mutex_init( &p_sys->cache_lock );
  
      /* Sets server's credentials */
      val = gnutls_certificate_allocate_credentials( &p_sys->x509_cred );