ksslcsessioncache.cpp

/* This file is part of the KDE project
 *
 * Copyright (C) 2003 Stefan Rompf <sux@loplof.de>
 *
 * This library is free software; you can redistribute it and/or
 * modify it under the terms of the GNU Library General Public
 * License as published by the Free Software Foundation; either
 * version 2 of the License, or (at your option) any later version.
 *
 * This library is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
 * Library General Public License for more details.
 *
 * You should have received a copy of the GNU Library General Public License
 * along with this library; see the file COPYING.LIB.  If not, write to
 * the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor,
 * Boston, MA 02110-1301, USA.
 */
 
#include <tqpair.h>
#include <tqstring.h>
#include <tqptrlist.h>
 
#include <kdebug.h>
#include <kstaticdeleter.h>
#include <kurl.h>
 
#ifdef TQ_WS_WIN
#include "ksslconfig_win.h"
#else
#include "ksslconfig.h"
#endif
 
#include "ksslcsessioncache.h"
 
/* 
 * Operation:
 *
 * Sessions will be stored per running application, not KDE
 * wide, to avoid security problems with hostile programs
 * that negotiate sessions with weak cryptographic keys and store
 * them for everybody to use - I really don't want that.
 *
 * Retrieval is organised similiar to George's thoughts in the KSSLD
 * certificate cache: The cache is organised as a list, with the
 * recently fetched (or stored) session first.
 *
 * The cache has an artificial limit of 32 sessions (should really
 * be enough), and relies on the peer server for timeouts
 *
 */
#define MAX_ENTRIES 32
 
#ifdef KSSL_HAVE_SSL
 
typedef TQPair<TQString,TQString> KSSLCSession;
typedef TQPtrList<KSSLCSession> KSSLCSessions;
 
static KSSLCSessions *sessions = 0L;
static KStaticDeleter<KSSLCSessions> med;
 
 
static TQString URLtoKey(const KURL &kurl) {
    return kurl.host() + ":" + kurl.protocol() + ":" + TQString::number(kurl.port());
}
 
 
static void setup() {
    KSSLCSessions *ses = new KSSLCSessions;
    ses->setAutoDelete(true);
    med.setObject(sessions, ses);
}
 
#endif
 
TQString KSSLCSessionCache::getSessionForURL(const KURL &kurl) {
#ifdef KSSL_HAVE_SSL
    if (!sessions) return TQString::null;
    TQString key = URLtoKey(kurl);
 
    for(KSSLCSession *it = sessions->first(); it; it=sessions->next()) {
    if (it->first == key) {
        sessions->take();
        sessions->prepend(it);
        return it->second;
    }
    }
 
    // Negative caching disabled: cache pollution
#if 0 
    kdDebug(7029) <<"Negative caching " <<key <<endl;
    if (sessions->count() >= MAX_ENTRIES) sessions->removeLast();
    sessions->prepend(new KSSLCSession(key, TQString::null));
#endif
 
#endif
    return TQString::null;
}
 
 
void KSSLCSessionCache::putSessionForURL(const KURL &kurl, const TQString &session) {
#ifdef KSSL_HAVE_SSL
    if (!sessions) setup();
    TQString key = URLtoKey(kurl);
    KSSLCSession *it;
 
    for(it = sessions->first(); it && it->first != key; it=sessions->next());
 
    if (it) {
    sessions->take();
    it->second = session;
    } else {
    it = new KSSLCSession(key, session);
    if (sessions->count() >= MAX_ENTRIES) sessions->removeLast();
    }
 
    sessions->prepend(it);
#endif
}