| /* |
| * Licensed to the Apache Software Foundation (ASF) under one |
| * or more contributor license agreements. See the NOTICE file |
| * distributed with this work for additional information |
| * regarding copyright ownership. The ASF licenses this file |
| * to you under the Apache License, Version 2.0 (the |
| * "License"); you may not use this file except in compliance |
| * with the License. You may obtain a copy of the License at |
| * |
| * http://www.apache.org/licenses/LICENSE-2.0 |
| * |
| * Unless required by applicable law or agreed to in writing, |
| * software distributed under the License is distributed on an |
| * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY |
| * KIND, either express or implied. See the License for the |
| * specific language governing permissions and limitations |
| * under the License. |
| */ |
| package org.apache.sshd.agent.unix; |
| |
| import java.io.File; |
| import java.io.IOException; |
| |
| import org.apache.sshd.common.util.OsUtils; |
| import org.apache.tomcat.jni.Library; |
| import org.apache.tomcat.jni.Pool; |
| |
| /** |
| * <p> |
| * Internal singleton used for initializing correctly the APR native library and the associated root memory pool. |
| * </p> |
| * |
| * <p> |
| * It'll finalize nicely the native resources (libraries and memory pools). |
| * </p> |
| * |
| * Each memory pool used in the APR transport module needs to be children of the root pool |
| * {@link AprLibrary#getRootPool()}. |
| * |
| * @author <a href="http://mina.apache.org">Apache MINA Project</a> |
| */ |
| public final class AprLibrary { |
| // is APR library was initialized (load of native libraries) |
| private static AprLibrary library; |
| |
| // APR memory pool (package wide mother pool) |
| private final long pool; |
| |
| /** |
| * APR library singleton constructor. Called only when accessing the singleton the first time. It is initializing an |
| * APR memory pool for the whole package (a.k.a mother or root pool). |
| * |
| * @throws RuntimeException if failed to load the library. <B>Note:</B> callers should inspect the <U>cause</U> of |
| * the exception in case an {@link Error} was thrown (e.g., {@code UnsatisfiedLinkError}). |
| */ |
| private AprLibrary() { |
| try { |
| Library.initialize(null); |
| } catch (RuntimeException e) { |
| throw e; |
| } catch (Throwable e) { |
| throw new RuntimeException("Error loading Apache Portable Runtime (APR).", e); |
| } |
| pool = Pool.create(0); |
| } |
| |
| /** |
| * get the shared instance of APR library, if none, initialize one |
| * |
| * @return the current APR library singleton |
| */ |
| public static synchronized AprLibrary getInstance() { |
| if (!isInitialized()) { |
| initialize(); |
| } |
| return library; |
| } |
| |
| /** |
| * initialize the APR Library by loading the associated native libraries and creating the associated singleton |
| */ |
| private static synchronized void initialize() { |
| if (library == null) { |
| library = new AprLibrary(); |
| } |
| } |
| |
| /** |
| * is the APR library was initialized. |
| * |
| * @return true if the Library is initialized, false otherwise |
| */ |
| public static synchronized boolean isInitialized() { |
| return library != null; |
| } |
| |
| @Override |
| @SuppressWarnings({ "checkstyle:NoFinalizer", "deprecation" }) |
| protected void finalize() throws Throwable { |
| library = null; |
| Pool.destroy(pool); |
| Library.terminate(); |
| super.finalize(); |
| } |
| |
| /** |
| * get the package wide root pool, the mother of all the pool created in APR transport module. |
| * |
| * @return number identifying the root pool |
| */ |
| long getRootPool() { |
| return pool; |
| } |
| |
| static String createLocalSocketAddress() throws IOException { |
| initialize(); |
| |
| String name; |
| if (OsUtils.isUNIX()) { |
| // Since there is a race condition between bind and when |
| // we can mark the socket readable only by its owner, make |
| // the socket in a temporary directory that is visible only |
| // to the owner. |
| // |
| File dir = File.createTempFile("mina", "apr"); |
| if (!dir.delete() || !dir.mkdir()) { |
| throw new IOException("Cannot create secure temp directory"); |
| } |
| chmodOwner(dir.getAbsolutePath(), true); |
| |
| File socket = File.createTempFile("mina", "apr", dir); |
| socket.delete(); |
| name = socket.getAbsolutePath(); |
| } else { |
| File socket = File.createTempFile("mina", "apr"); |
| socket.delete(); |
| name = "\\\\.\\pipe\\" + socket.getName(); |
| } |
| return name; |
| } |
| |
| static void secureLocalSocket(String authSocket, long handle) throws IOException { |
| // should be ok on windows |
| if (OsUtils.isUNIX()) { |
| chmodOwner(authSocket, false); |
| } |
| } |
| |
| private static void chmodOwner(String authSocket, boolean execute) throws IOException { |
| int perms = org.apache.tomcat.jni.File.APR_FPROT_UREAD |
| | org.apache.tomcat.jni.File.APR_FPROT_UWRITE; |
| if (execute) { |
| perms |= org.apache.tomcat.jni.File.APR_FPROT_UEXECUTE; |
| } |
| if (org.apache.tomcat.jni.File.permsSet(authSocket, perms) != org.apache.tomcat.jni.Status.APR_SUCCESS) { |
| throw new IOException("Unable to secure local socket"); |
| } |
| } |
| } |