#include <stdio.h>
#include <stdlib.h>
#include <stdarg.h>
#include <unistd.h>
#include <sys/utsname.h>
#include <openconnect.h>

#include "vpn.h"

void *g_user_data;

static int g_cmd_pipe_fd;
const char *g_vpnc_script;

/* Validate the peer certificate */
static int validate_peer_cert(__attribute__((unused)) void *_vpninfo, const char *reason)
{
    INFO("Validating peer cert: %s", reason);
    return 0;
}

/* Print progress messages */
static void print_progress(__attribute__((unused)) void *_vpninfo, int level, const char *format, ...)
{
    va_list args;
    va_start(args, format);
    char *message = format_message(format, args);
    va_end(args);

    if (message == NULL)
    {
        ERROR("Failed to format log message");
    }
    else
    {
        LOG(level, message);
        free(message);
    }
}

static void setup_tun_handler(void *_vpninfo)
{
    openconnect_setup_tun_device(_vpninfo, g_vpnc_script, NULL);
    on_vpn_connected(g_cmd_pipe_fd, g_user_data);
}

/* Initialize VPN connection */
int vpn_connect(const vpn_options *options)
{
    struct openconnect_info *vpninfo;
    struct utsname utsbuf;

    g_user_data = options->user_data;
    g_vpnc_script = options->script;

    vpninfo = openconnect_vpninfo_new(options->user_agent, validate_peer_cert, NULL, NULL, print_progress, NULL);

    if (!vpninfo)
    {
        ERROR("openconnect_vpninfo_new failed");
        return 1;
    }

    openconnect_set_loglevel(vpninfo, 1);
    openconnect_init_ssl();
    openconnect_set_protocol(vpninfo, "gp");
    openconnect_set_hostname(vpninfo, options->server);
    openconnect_set_cookie(vpninfo, options->cookie);

    if (options->certificate)
    {
        INFO("Setting client certificate: %s", options->certificate);
        openconnect_set_client_cert(vpninfo, options->certificate, NULL);
    }

    if (options->servercert) {
        INFO("Setting server certificate: %s", options->servercert);
        openconnect_set_system_trust(vpninfo, 0);
    }

    g_cmd_pipe_fd = openconnect_setup_cmd_pipe(vpninfo);
    if (g_cmd_pipe_fd < 0)
    {
        ERROR("openconnect_setup_cmd_pipe failed");
        return 1;
    }

    if (!uname(&utsbuf))
    {
        openconnect_set_localname(vpninfo, utsbuf.nodename);
    }

    // Essential step
    if (openconnect_make_cstp_connection(vpninfo) != 0)
    {
        ERROR("openconnect_make_cstp_connection failed");
        return 1;
    }

    if (openconnect_setup_dtls(vpninfo, 60) != 0)
    {
        openconnect_disable_dtls(vpninfo);
    }

    // Essential step
    openconnect_set_setup_tun_handler(vpninfo, setup_tun_handler);

    while (1)
    {
        int ret = openconnect_mainloop(vpninfo, 300, 10);

        if (ret)
        {
            INFO("openconnect_mainloop returned %d, exiting", ret);
            openconnect_vpninfo_free(vpninfo);
            return ret;
        }

        INFO("openconnect_mainloop returned 0, reconnecting");
    }
}

/* Stop the VPN connection */
void vpn_disconnect()
{
    char cmd = OC_CMD_CANCEL;
    if (write(g_cmd_pipe_fd, &cmd, 1) < 0)
    {
        ERROR("Failed to write to command pipe, VPN connection may not be stopped");
    }
}