The FreeRADIUS server $Id: 15bac2a4c627c01d1aa2047687b3418955ac7f00 $
Loading...
Searching...
No Matches
base.c
Go to the documentation of this file.
1/*
2 * This program is free software; you can redistribute it and/or modify
3 * it under the terms of the GNU General Public License as published by
4 * the Free Software Foundation; either version 2 of the License, or
5 * (at your option) any later version.
6 *
7 * This program is distributed in the hope that it will be useful,
8 * but WITHOUT ANY WARRANTY; without even the implied warranty of
9 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
10 * GNU General Public License for more details.
11 *
12 * You should have received a copy of the GNU General Public License
13 * along with this program; if not, write to the Free Software
14 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA
15 */
16
17/**
18 * $Id: c2b8cabf9d1562138cd5a1b5f668746c2857100d $
19 * @file src/process/arp/base.c
20 * @brief ARP processing.
21 *
22 * @copyright 2020 Network RADIUS SAS (legal@networkradius.com)
23 */
24#include <freeradius-devel/server/protocol.h>
25#include <freeradius-devel/util/debug.h>
26#include <freeradius-devel/arp/arp.h>
27
28static fr_dict_t const *dict_arp;
29
30extern fr_dict_autoload_t process_arp_dict[];
31fr_dict_autoload_t process_arp_dict[] = {
32 { .out = &dict_arp, .proto = "arp" },
33 { NULL }
34};
35
36static fr_dict_attr_t const *attr_packet_type;
37
38extern fr_dict_attr_autoload_t process_arp_dict_attr[];
39fr_dict_attr_autoload_t process_arp_dict_attr[] = {
40 { .out = &attr_packet_type, .name = "Packet-Type", .type = FR_TYPE_UINT32, .dict = &dict_arp},
41 { NULL }
42};
43
54
60
61#define PROCESS_PACKET_TYPE fr_arp_packet_code_t
62#define PROCESS_CODE_MAX FR_ARP_CODE_MAX
63#define PROCESS_CODE_DO_NOT_RESPOND FR_ARP_DO_NOT_RESPOND
64#define PROCESS_PACKET_CODE_VALID FR_ARP_PACKET_CODE_VALID
65#define PROCESS_INST process_arp_t
66#include <freeradius-devel/server/process.h>
67
68static fr_process_state_t const process_state[] = {
69 [ FR_ARP_REQUEST ] = {
70 .packet_type = {
71 [RLM_MODULE_NOOP] = FR_ARP_REPLY,
72 [RLM_MODULE_OK] = FR_ARP_REPLY,
73 [RLM_MODULE_UPDATED] = FR_ARP_REPLY,
74
75 [RLM_MODULE_REJECT] = FR_ARP_DO_NOT_RESPOND,
76 [RLM_MODULE_FAIL] = FR_ARP_DO_NOT_RESPOND,
77 [RLM_MODULE_INVALID] = FR_ARP_DO_NOT_RESPOND,
78 [RLM_MODULE_DISALLOW] = FR_ARP_DO_NOT_RESPOND,
79 [RLM_MODULE_NOTFOUND] = FR_ARP_DO_NOT_RESPOND,
80 },
81 .rcode = RLM_MODULE_NOOP,
82 .recv = recv_generic,
83 .resume = resume_recv_generic,
84 .section_offset = PROCESS_CONF_OFFSET(request),
85 },
86 [ FR_ARP_REPLY ] = {
87 .packet_type = {
88 [RLM_MODULE_NOOP] = FR_ARP_REPLY,
89 [RLM_MODULE_OK] = FR_ARP_REPLY,
90 [RLM_MODULE_UPDATED] = FR_ARP_REPLY,
91
92 [RLM_MODULE_REJECT] = FR_ARP_DO_NOT_RESPOND,
93 [RLM_MODULE_FAIL] = FR_ARP_DO_NOT_RESPOND,
94 [RLM_MODULE_INVALID] = FR_ARP_DO_NOT_RESPOND,
95 [RLM_MODULE_DISALLOW] = FR_ARP_DO_NOT_RESPOND,
96 [RLM_MODULE_NOTFOUND] = FR_ARP_DO_NOT_RESPOND,
97 },
98 .rcode = RLM_MODULE_NOOP,
99 .send = send_generic,
100 .resume = resume_send_generic,
101 .section_offset = PROCESS_CONF_OFFSET(reply),
102 },
103
104 [ FR_ARP_REVERSE_REQUEST ] = {
105 .packet_type = {
106 [RLM_MODULE_NOOP] = FR_ARP_REVERSE_REPLY,
107 [RLM_MODULE_OK] = FR_ARP_REVERSE_REPLY,
108 [RLM_MODULE_UPDATED] = FR_ARP_REVERSE_REPLY,
109
110 [RLM_MODULE_REJECT] = FR_ARP_DO_NOT_RESPOND,
111 [RLM_MODULE_FAIL] = FR_ARP_DO_NOT_RESPOND,
112 [RLM_MODULE_INVALID] = FR_ARP_DO_NOT_RESPOND,
113 [RLM_MODULE_DISALLOW] = FR_ARP_DO_NOT_RESPOND,
114 [RLM_MODULE_NOTFOUND] = FR_ARP_DO_NOT_RESPOND,
115 },
116 .rcode = RLM_MODULE_NOOP,
117 .recv = recv_generic,
118 .resume = resume_recv_generic,
119 .section_offset = PROCESS_CONF_OFFSET(reverse_request),
120 },
121 [ FR_ARP_REVERSE_REPLY ] = {
122 .packet_type = {
123 [RLM_MODULE_NOOP] = FR_ARP_REVERSE_REPLY,
124 [RLM_MODULE_OK] = FR_ARP_REVERSE_REPLY,
125 [RLM_MODULE_UPDATED] = FR_ARP_REVERSE_REPLY,
126
127 [RLM_MODULE_REJECT] = FR_ARP_DO_NOT_RESPOND,
128 [RLM_MODULE_FAIL] = FR_ARP_DO_NOT_RESPOND,
129 [RLM_MODULE_INVALID] = FR_ARP_DO_NOT_RESPOND,
130 [RLM_MODULE_DISALLOW] = FR_ARP_DO_NOT_RESPOND,
131 [RLM_MODULE_NOTFOUND] = FR_ARP_DO_NOT_RESPOND,
132 },
133 .rcode = RLM_MODULE_NOOP,
134 .send = send_generic,
135 .resume = resume_send_generic,
136 .section_offset = PROCESS_CONF_OFFSET(reverse_reply),
137 },
138
139 // @todo - recv reply, to look at other replies.
140
141 [ FR_ARP_DO_NOT_RESPOND ] = {
142 .packet_type = {
143 [RLM_MODULE_NOOP] = FR_ARP_DO_NOT_RESPOND,
144 [RLM_MODULE_OK] = FR_ARP_DO_NOT_RESPOND,
145 [RLM_MODULE_UPDATED] = FR_ARP_DO_NOT_RESPOND,
146
147 [RLM_MODULE_REJECT] = FR_ARP_DO_NOT_RESPOND,
148 [RLM_MODULE_FAIL] = FR_ARP_DO_NOT_RESPOND,
149 [RLM_MODULE_INVALID] = FR_ARP_DO_NOT_RESPOND,
150 [RLM_MODULE_DISALLOW] = FR_ARP_DO_NOT_RESPOND,
151 [RLM_MODULE_NOTFOUND] = FR_ARP_DO_NOT_RESPOND,
152 },
153 .rcode = RLM_MODULE_NOOP,
154 .send = send_generic,
155 .resume = resume_send_generic,
156 .section_offset = PROCESS_CONF_OFFSET(do_not_respond),
157 },
158};
159
160/*
161 * Debug the packet if requested.
162 */
163static void arp_packet_debug(request_t *request, fr_packet_t const *packet, fr_pair_list_t const *list, bool received)
164{
165 if (!packet) return;
166 if (!RDEBUG_ENABLED) return;
167
168 log_request(L_DBG, L_DBG_LVL_1, request, __FILE__, __LINE__, "%s %s",
169 received ? "Received" : "Sending",
170 fr_arp_packet_codes[packet->code]);
171
172 if (received || request->parent) {
173 log_request_pair_list(L_DBG_LVL_1, request, NULL, list, NULL);
174 } else {
175 log_request_proto_pair_list(L_DBG_LVL_1, request, NULL, list, NULL);
176 }
177}
178
179static unlang_action_t mod_process(rlm_rcode_t *p_result, module_ctx_t const *mctx, request_t *request)
180{
181 fr_process_state_t const *state;
182
183 PROCESS_TRACE;
184
185 (void)talloc_get_type_abort_const(mctx->mi->data, process_arp_t);
186 fr_assert(PROCESS_PACKET_CODE_VALID(request->packet->code));
187
188 request->component = "arp";
189 request->module = NULL;
190 fr_assert(request->dict == dict_arp);
191
192 UPDATE_STATE(packet);
193
194 if (!state->recv) {
195 REDEBUG("Invalid packet type (%u)", request->packet->code);
196 RETURN_MODULE_FAIL;
197 }
198
199 arp_packet_debug(request, request->packet, &request->request_pairs, true);
200
201 return state->recv(p_result, mctx, request);
202}
203
204
205static const virtual_server_compile_t compile_list[] = {
206 {
207 .section = SECTION_NAME("recv", "Request"),
208 .actions = &mod_actions_postauth,
209 .offset = PROCESS_CONF_OFFSET(request),
210 },
211 {
212 .section = SECTION_NAME("send", "Reply"),
213 .actions = &mod_actions_postauth,
214 .offset = PROCESS_CONF_OFFSET(reply),
215 },
216 { /* we can listen for others ARP replies, too */
217 .section = SECTION_NAME("recv", "Reply"),
218 .actions = &mod_actions_postauth,
219 .offset = PROCESS_CONF_OFFSET(recv_reply),
220 },
221 {
222 .section = SECTION_NAME("recv", "Reverse-Request"),
223 .actions = &mod_actions_postauth,
224 .offset = PROCESS_CONF_OFFSET(reverse_request),
225 },
226 {
227 .section = SECTION_NAME("send", "Reverse-Reply"),
228 .actions = &mod_actions_postauth,
229 .offset = PROCESS_CONF_OFFSET(reverse_reply),
230 },
231 {
232 .section = SECTION_NAME("send", "Do-Not-Respond"),
233 .actions = &mod_actions_postauth,
234 .offset = PROCESS_CONF_OFFSET(do_not_respond),
235 },
236 COMPILE_TERMINATOR
237};
238
239
240extern fr_process_module_t process_arp;
241fr_process_module_t process_arp = {
242 .common = {
243 .magic = MODULE_MAGIC_INIT,
244 .name = "arp",
245 .inst_size = sizeof(process_arp_t)
246 },
247 .process = mod_process,
248 .compile_list = compile_list,
249 .dict = &dict_arp,
250};
unlang_action_t
unlang_action_t
Returned by unlang_op_t calls, determine the next action of the interpreter.
Definition action.h:35
FR_ARP_REVERSE_REQUEST
@ FR_ARP_REVERSE_REQUEST
Definition arp.h:67
FR_ARP_REQUEST
@ FR_ARP_REQUEST
Definition arp.h:65
FR_ARP_DO_NOT_RESPOND
@ FR_ARP_DO_NOT_RESPOND
Definition arp.h:70
FR_ARP_REVERSE_REPLY
@ FR_ARP_REVERSE_REPLY
Definition arp.h:68
FR_ARP_REPLY
@ FR_ARP_REPLY
Definition arp.h:66
fr_arp_packet_codes
char const * fr_arp_packet_codes[FR_ARP_CODE_MAX]
Definition base.c:63
cf_section
A section grouping multiple CONF_PAIR.
Definition cf_priv.h:101
fr_dict_attr_autoload_t::out
fr_dict_attr_t const ** out
Where to write a pointer to the resolved fr_dict_attr_t.
Definition dict.h:268
fr_dict_autoload_t::out
fr_dict_t const ** out
Where to write a pointer to the loaded/resolved fr_dict_t.
Definition dict.h:281
fr_dict_attr_autoload_t
Specifies an attribute which must be present for the module to function.
Definition dict.h:267
fr_dict_autoload_t
Specifies a dictionary which must be loaded/loadable for the module to function.
Definition dict.h:280
MODULE_MAGIC_INIT
#define MODULE_MAGIC_INIT
Stop people using different module/library/server versions together.
Definition dl_module.h:63
attr_packet_type
fr_dict_attr_t const * attr_packet_type
Definition base.c:93
log_request_proto_pair_list
void log_request_proto_pair_list(fr_log_lvl_t lvl, request_t *request, fr_pair_t const *parent, fr_pair_list_t const *vps, char const *prefix)
Print a list of protocol fr_pair_ts.
Definition log.c:854
log_request
void log_request(fr_log_type_t type, fr_log_lvl_t lvl, request_t *request, char const *file, int line, char const *fmt,...)
Marshal variadic log arguments into a va_list and pass to normal logging functions.
Definition log.c:612
log_request_pair_list
void log_request_pair_list(fr_log_lvl_t lvl, request_t *request, fr_pair_t const *parent, fr_pair_list_t const *vps, char const *prefix)
Print a fr_pair_list_t.
Definition log.c:830
L_DBG_LVL_1
@ L_DBG_LVL_1
Highest priority debug messages (-x).
Definition log.h:70
L_DBG
@ L_DBG
Only displayed when debugging is enabled.
Definition log.h:59
FR_TYPE_UINT32
@ FR_TYPE_UINT32
32 Bit unsigned integer.
Definition merged_model.c:99
fr_dict_attr_t
Definition merged_model.c:133
fr_dict_t
Definition merged_model.c:198
request_t
Definition merged_model.c:210
mod_actions_postauth
unlang_mod_actions_t const mod_actions_postauth
Definition mod_action.c:88
unlang_mod_actions_t::actions
unlang_mod_action_t actions[RLM_MODULE_NUMCODES]
Definition mod_action.h:62
module_ctx_t::mi
module_instance_t const * mi
Instance of the module being instantiated.
Definition module_ctx.h:42
module_ctx_t
Temporary structure to hold arguments for module calls.
Definition module_ctx.h:41
process_arp_t::test
bool test
Definition base.c:56
mod_process
static unlang_action_t mod_process(rlm_rcode_t *p_result, module_ctx_t const *mctx, request_t *request)
Definition base.c:179
process_arp_sections_t::nothing
uint64_t nothing
Definition base.c:45
process_arp_t::sections
process_arp_sections_t sections
Definition base.c:58
process_arp_sections_t::request
CONF_SECTION * request
Definition base.c:47
process_arp_sections_t::reverse_reply
CONF_SECTION * reverse_reply
Definition base.c:51
arp_packet_debug
static void arp_packet_debug(request_t *request, fr_packet_t const *packet, fr_pair_list_t const *list, bool received)
Definition base.c:163
process_arp_dict
fr_dict_autoload_t process_arp_dict[]
Definition base.c:31
process_arp_dict_attr
fr_dict_attr_autoload_t process_arp_dict_attr[]
Definition base.c:39
compile_list
static const virtual_server_compile_t compile_list[]
Definition base.c:205
process_arp_sections_t::reply
CONF_SECTION * reply
Definition base.c:48
process_state
static fr_process_state_t const process_state[]
Definition base.c:68
process_arp_sections_t::recv_reply
CONF_SECTION * recv_reply
Definition base.c:49
dict_arp
static fr_dict_t const * dict_arp
Definition base.c:28
process_arp_sections_t::reverse_request
CONF_SECTION * reverse_request
Definition base.c:50
process_arp
fr_process_module_t process_arp
Definition base.c:241
PROCESS_PACKET_CODE_VALID
#define PROCESS_PACKET_CODE_VALID
Definition base.c:64
process_arp_sections_t::do_not_respond
CONF_SECTION * do_not_respond
Definition base.c:52
process_arp_sections_t
Definition base.c:44
process_arp_t
Definition base.c:55
PROCESS_TRACE
#define PROCESS_TRACE
Trace each state function as it's entered.
Definition process.h:65
fr_process_module_s::common
module_t common
Common fields for all loadable modules.
Definition process.h:55
fr_process_module_s
Common public symbol definition for all process modules.
Definition process.h:54
fr_assert
#define fr_assert(_expr)
Definition rad_assert.h:38
REDEBUG
#define REDEBUG(fmt,...)
Definition radclient.h:52
RDEBUG_ENABLED
#define RDEBUG_ENABLED()
Definition radclient.h:49
RETURN_MODULE_FAIL
#define RETURN_MODULE_FAIL
Definition rcode.h:56
rlm_rcode_t
rlm_rcode_t
Return codes indicating the result of the module call.
Definition rcode.h:40
RLM_MODULE_INVALID
@ RLM_MODULE_INVALID
The module considers the request invalid.
Definition rcode.h:45
RLM_MODULE_OK
@ RLM_MODULE_OK
The module is OK, continue.
Definition rcode.h:43
RLM_MODULE_FAIL
@ RLM_MODULE_FAIL
Module failed, don't reply.
Definition rcode.h:42
RLM_MODULE_DISALLOW
@ RLM_MODULE_DISALLOW
Reject the request (user is locked out).
Definition rcode.h:46
RLM_MODULE_REJECT
@ RLM_MODULE_REJECT
Immediately reject the request.
Definition rcode.h:41
RLM_MODULE_NOTFOUND
@ RLM_MODULE_NOTFOUND
User not found.
Definition rcode.h:47
RLM_MODULE_UPDATED
@ RLM_MODULE_UPDATED
OK (pairs modified).
Definition rcode.h:49
RLM_MODULE_NOOP
@ RLM_MODULE_NOOP
Module succeeded without doing anything.
Definition rcode.h:48
SECTION_NAME
#define SECTION_NAME(_name1, _name2)
Define a section name consisting of a verb and a noun.
Definition section.h:40
module_s::inst_size
size_t inst_size
Size of the module's instance data.
Definition module.h:203
module_instance_s::data
void * data
Module's instance data.
Definition module.h:271
pair_list_s
Definition pair.h:52
talloc_get_type_abort_const
#define talloc_get_type_abort_const
Definition talloc.h:282
fr_packet_t::code
unsigned int code
Packet code (type).
Definition packet.h:61
fr_packet_t
Definition packet.h:56
COMPILE_TERMINATOR
#define COMPILE_TERMINATOR
Definition virtual_servers.h:111
virtual_server_compile_t::section
section_name_t const * section
Identifier for the section.
Definition virtual_servers.h:101
virtual_server_compile_t
Processing sections which are allowed in this virtual server.
Definition virtual_servers.h:100
Generated by   doxygen 1.9.8