msg_err_dkim ("DKIM key is too short to be valid");
return NULL;
}
+
key = g_slice_alloc0 (sizeof (rspamd_dkim_key_t));
key->keydata = g_slice_alloc (keylen + 1);
rspamd_strlcpy (key->keydata, keydata, keylen + 1);
#else
g_base64_decode_inplace (key->keydata, &key->decoded_len);
#endif
+ REF_INIT_RETAIN (key, rspamd_dkim_key_free);
+
#ifdef HAVE_OPENSSL
key->key_bio = BIO_new_mem_buf (key->keydata, key->decoded_len);
if (key->key_bio == NULL) {
DKIM_ERROR,
DKIM_SIGERROR_KEYFAIL,
"cannot make ssl bio from key");
- rspamd_dkim_key_free (key);
+ REF_RELEASE (key);
+
return NULL;
}
DKIM_ERROR,
DKIM_SIGERROR_KEYFAIL,
"cannot extract pubkey from bio");
- rspamd_dkim_key_free (key);
+ REF_RELEASE (key);
+
return NULL;
}
DKIM_ERROR,
DKIM_SIGERROR_KEYFAIL,
"cannot extract rsa key from evp key");
- rspamd_dkim_key_free (key);
+ REF_RELEASE (key);
+
return NULL;
}
-
#endif
return key;
rspamd_dkim_key_free (rspamd_dkim_key_t *key)
{
#ifdef HAVE_OPENSSL
- if (key->key_rsa) {
- RSA_free (key->key_rsa);
- }
if (key->key_evp) {
EVP_PKEY_free (key->key_evp);
}
+ if (key->key_rsa) {
+ RSA_free (key->key_rsa);
+ }
if (key->key_bio) {
BIO_free (key->key_bio);
}
}
static rspamd_dkim_key_t *
-rspamd_dkim_parse_key (rspamd_dkim_context_t *ctx, const gchar *txt, gsize
-*keylen, GError **err)
+rspamd_dkim_parse_key (rspamd_dkim_context_t *ctx, const gchar *txt,
+ gsize *keylen, GError **err)
{
const gchar *c, *p, *end;
gint state = 0;
/* State when we got p= and looking for some public key */
if ((*p == ';' || p == end) && p > c) {
len = p - c;
+
+ if (keylen) {
+ *keylen = len;
+ }
+
return rspamd_dkim_make_key (ctx, c, len, err);
}
else {
NULL
};
+static void
+dkim_module_key_dtor (gpointer k)
+{
+ rspamd_dkim_key_t *key = k;
+
+ REF_RELEASE (key);
+}
+
gint
dkim_module_init (struct rspamd_config *cfg, struct module_ctx **ctx)
{
dkim_module_ctx->dkim_hash = rspamd_lru_hash_new (
cache_size,
cache_expire,
- g_free,
- (GDestroyNotify)rspamd_dkim_key_free);
+ g_free, /* Keys are just C-strings */
+ dkim_module_key_dtor);
msg_info_config ("init internal dkim module");
#ifndef HAVE_OPENSSL
struct dkim_check_result *res = ud;
if (key != NULL) {
- /* Add new key to the lru cache */
+ /*
+ * We actually receive key with refcount = 1, so we just assume that
+ * lru hash owns this object now
+ */
rspamd_lru_hash_insert (dkim_module_ctx->dkim_hash,
g_strdup (ctx->dns_key),
key, res->task->tv.tv_sec, key->ttl);
+ /* Another ref belongs to the check context */
res->key = key;
+ REF_RETAIN (res->key);
+ /* Release key when task is processed */
+ rspamd_mempool_add_destructor (res->task->task_pool,
+ dkim_module_key_dtor, res->key);
}
else {
/* Insert tempfail symbol */
if (key != NULL) {
debug_task ("found key for %s in cache", ctx->dns_key);
cur->key = key;
+ REF_RETAIN (cur->key);
+ /* Release key when task is processed */
+ rspamd_mempool_add_destructor (task->task_pool,
+ dkim_module_key_dtor, cur->key);
}
else {
debug_task ("request key for %s from DNS", ctx->dns_key);
projects / rspamd.git / commitdiff