The FreeRADIUS server $Id: 15bac2a4c627c01d1aa2047687b3418955ac7f00 $
Loading...
Searching...
No Matches
base.c
Go to the documentation of this file.
1/*
2 * This program is free software; you can redistribute it and/or modify
3 * it under the terms of the GNU General Public License as published by
4 * the Free Software Foundation; either version 2 of the License, or
5 * (at your option) any later version.
6 *
7 * This program is distributed in the hope that it will be useful,
8 * but WITHOUT ANY WARRANTY; without even the implied warranty of
9 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
10 * GNU General Public License for more details.
11 *
12 * You should have received a copy of the GNU General Public License
13 * along with this program; if not, write to the Free Software
14 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA
15 */
16
17/**
18 * $Id: 161720ab2848a3cb5958f9a737998e763ce78466 $
19 * @file src/process/dhcpv6/base.c
20 * @brief Base DHCPV6 processing.
21 *
22 * This code was originally written under contract for Network RADIUS
23 * but has been substantially modified from its original form outside
24 * of the project that required its creation.
25 *
26 * @copyright 2021 Arran Cudbard-Bell <a.cudbardb@freeradius.org>
27 * @copyright 2020 Network RADIUS SAS (legal@networkradius.com)
28 */
29#define LOG_PREFIX "process_dhcpv6 - "
30
31#include <freeradius-devel/io/application.h>
32#include <freeradius-devel/server/protocol.h>
33#include <freeradius-devel/server/pair.h>
34#include <freeradius-devel/unlang/interpret.h>
35#include <freeradius-devel/util/dict.h>
36#include <freeradius-devel/util/debug.h>
37#include <freeradius-devel/dhcpv6/dhcpv6.h>
38#include <freeradius-devel/protocol/dhcpv6/freeradius.internal.h>
39
40/*
41 * DHCPV6 state machine configuration
42 */
68
69typedef struct {
70 CONF_SECTION *server_cs; //!< Our virtual server.
71 process_dhcpv6_sections_t sections; //!< Pointers to various config sections
72 ///< we need to execute.
73 bool status_code_on_success; //!< Controls whether we add a status-code
74 ///< option to outbound packets if the status
75 ///< code would be 0.
76 ///< This is allowed by RFC 3315, but seems
77 ///< to cause issues with some clients.
78
79 bool send_failure_message; //!< If true, all instances of
80 ///< Module-Failure-Message in the request
81 ///< are concatenated and returned in the
82 ///< status-message field of the status-code
83 ///< option if the status-code is anything
84 ///< other than success.
85 ///< This may leak information about the
86 ///< internal state of the server, so is
87 ///< disabled by default.
88
89 bool move_failure_message_to_parent; //!< If true, and a parent exists, and the
90 ///< parent is a DHCPv6 request, all module
91 ///< failure messages will get copied to the
92 ///< parent and then freed.
93 ///< When combined with send_failure_message
94 ///< this ensures only the outer relay message
95 ///< contains failure data. The outer relay
96 ///< typically being controlled by the admin
97 ///< and not the end user.
98} process_dhcpv6_t;
99
100/** Records fields from the original request so we have a known good copy
101 */
109
110/** Records fields from the original relay-request so we have a known good copy
111 */
118
119static fr_dict_t const *dict_dhcpv6;
120static fr_dict_t const *dict_freeradius;
121
122extern fr_dict_autoload_t process_dhcpv6_dict[];
123fr_dict_autoload_t process_dhcpv6_dict[] = {
124 { .out = &dict_dhcpv6, .proto = "dhcpv6" },
125 { .out = &dict_freeradius, .proto = "freeradius" },
126 DICT_AUTOLOAD_TERMINATOR
127};
128
129static fr_dict_attr_t const *attr_client_id;
130static fr_dict_attr_t const *attr_server_id;
131static fr_dict_attr_t const *attr_hop_count;
132static fr_dict_attr_t const *attr_interface_id;
133static fr_dict_attr_t const *attr_packet_type;
134static fr_dict_attr_t const *attr_relay_link_address;
135static fr_dict_attr_t const *attr_relay_peer_address;
136static fr_dict_attr_t const *attr_transaction_id;
137static fr_dict_attr_t const *attr_status_code_value;
138static fr_dict_attr_t const *attr_status_code_message;
139
140static fr_dict_attr_t const *attr_module_failure_message;
141
142extern fr_dict_attr_autoload_t process_dhcpv6_dict_attr[];
143fr_dict_attr_autoload_t process_dhcpv6_dict_attr[] = {
144 { .out = &attr_client_id, .name = "Client-ID", .type = FR_TYPE_STRUCT, .dict = &dict_dhcpv6 },
145 { .out = &attr_hop_count, .name = "Hop-Count", .type = FR_TYPE_UINT8, .dict = &dict_dhcpv6 },
146 { .out = &attr_interface_id, .name = "Interface-ID", .type = FR_TYPE_OCTETS, .dict = &dict_dhcpv6 },
147 { .out = &attr_packet_type, .name = "Packet-Type", .type = FR_TYPE_UINT32, .dict = &dict_dhcpv6 },
148 { .out = &attr_relay_link_address, .name = "Relay-Link-Address", .type = FR_TYPE_IPV6_ADDR, .dict = &dict_dhcpv6 },
149 { .out = &attr_relay_peer_address, .name = "Relay-Peer-Address", .type = FR_TYPE_IPV6_ADDR, .dict = &dict_dhcpv6 },
150 { .out = &attr_server_id, .name = "Server-ID", .type = FR_TYPE_STRUCT, .dict = &dict_dhcpv6 },
151 { .out = &attr_status_code_value, .name = "Status-Code.Value", .type = FR_TYPE_UINT16, .dict = &dict_dhcpv6 },
152 { .out = &attr_status_code_message, .name = "Status-Code.Message", .type = FR_TYPE_STRING, .dict = &dict_dhcpv6 },
153 { .out = &attr_transaction_id, .name = "Transaction-Id", .type = FR_TYPE_OCTETS, .dict = &dict_dhcpv6 },
154
155 { .out = &attr_module_failure_message, .name = "Module-Failure-Message", .type = FR_TYPE_STRING, .dict = &dict_freeradius },
156 DICT_AUTOLOAD_TERMINATOR
157};
158
159static fr_value_box_t const *enum_status_code_success;
160static fr_value_box_t const *enum_status_code_unspec_fail;
161static fr_value_box_t const *enum_status_code_not_on_link;
162static fr_value_box_t const *enum_status_code_no_binding;
163
164extern fr_dict_enum_autoload_t process_dhcpv6_dict_enum[];
165fr_dict_enum_autoload_t process_dhcpv6_dict_enum[] = {
166 { .out = &enum_status_code_success, .name = "success", .attr = &attr_status_code_value },
167 { .out = &enum_status_code_unspec_fail, .name = "UnspecFail", .attr = &attr_status_code_value },
168 { .out = &enum_status_code_not_on_link, .name = "NotOnLink", .attr = &attr_status_code_value },
169 { .out = &enum_status_code_no_binding, .name = "NoBinding", .attr = &attr_status_code_value },
170 DICT_AUTOLOAD_TERMINATOR
171};
172
173#define FR_DHCPV6_PROCESS_CODE_VALID(_x) (FR_DHCPV6_PACKET_CODE_VALID(_x) || (_x == FR_DHCPV6_DO_NOT_RESPOND))
174
175#define PROCESS_PACKET_TYPE fr_dhcpv6_packet_code_t
176#define PROCESS_CODE_MAX FR_DHCPV6_CODE_MAX
177#define PROCESS_CODE_DO_NOT_RESPOND FR_DHCPV6_DO_NOT_RESPOND
178#define PROCESS_PACKET_CODE_VALID FR_DHCPV6_PROCESS_CODE_VALID
179#define PROCESS_INST process_dhcpv6_t
180#define PROCESS_RCTX process_dhcpv6_rctx_t
181#define PROCESS_CODE_DYNAMIC_CLIENT FR_DHCPV6_REPLY
182
183/*
184 * DHCPv6 is nonstandard in that we reply
185 * to the majority of requests, but include a
186 * status code to indicate failures.
187 */
188#define PROCESS_STATE_EXTRA_FIELDS fr_value_box_t const **status_codes[RLM_MODULE_NUMCODES];
189#include <freeradius-devel/server/process.h>
190
191static conf_parser_t dhcpv6_process_config[] = {
192 { FR_CONF_OFFSET("status_code_on_success", process_dhcpv6_t, status_code_on_success), .dflt = "no" },
193 { FR_CONF_OFFSET("send_failure_message", process_dhcpv6_t, send_failure_message), .dflt = "no" },
194 { FR_CONF_OFFSET("move_failure_message_to_parent", process_dhcpv6_t, move_failure_message_to_parent), .dflt = "yes" },
195 CONF_PARSER_TERMINATOR
196};
197
198static const virtual_server_compile_t compile_list[] = {
199 {
200 .section = SECTION_NAME("recv", "Solicit"),
201 .actions = &mod_actions_postauth,
202 .offset = PROCESS_CONF_OFFSET(recv_solicit)
203 },
204 {
205 .section = SECTION_NAME("recv", "Request"),
206 .actions = &mod_actions_postauth,
207 .offset = PROCESS_CONF_OFFSET(recv_request)
208 },
209 {
210 .section = SECTION_NAME("recv", "Confirm"),
211 .actions = &mod_actions_postauth,
212 .offset = PROCESS_CONF_OFFSET(recv_confirm)
213 },
214 {
215 .section = SECTION_NAME("recv", "Renew"),
216 .actions = &mod_actions_postauth,
217 .offset = PROCESS_CONF_OFFSET(recv_renew)
218 },
219 {
220 .section = SECTION_NAME("recv", "Rebind"),
221 .actions = &mod_actions_postauth,
222 .offset = PROCESS_CONF_OFFSET(recv_rebind)
223 },
224 {
225 .section = SECTION_NAME("recv", "Release"),
226 .actions = &mod_actions_postauth,
227 .offset = PROCESS_CONF_OFFSET(recv_release)
228 },
229 {
230 .section = SECTION_NAME("recv", "Decline"),
231 .actions = &mod_actions_postauth,
232 .offset = PROCESS_CONF_OFFSET(recv_decline)
233 },
234 {
235 .section = SECTION_NAME("recv", "Reconfigure"),
236 .actions = &mod_actions_postauth,
237 .offset = PROCESS_CONF_OFFSET(recv_reconfigure)
238 },
239 {
240 .section = SECTION_NAME("recv", "Information-Request"),
241 .actions = &mod_actions_postauth,
242 .offset = PROCESS_CONF_OFFSET(recv_information_request)
243 },
244 {
245 .section = SECTION_NAME("recv", "Relay-Forward"),
246 .actions = &mod_actions_postauth,
247 .offset = PROCESS_CONF_OFFSET(recv_relay_forward)
248 },
249
250 {
251 .section = SECTION_NAME("send", "Advertise"),
252 .actions = &mod_actions_postauth,
253 .offset = PROCESS_CONF_OFFSET(send_advertise)
254 },
255 {
256 .section = SECTION_NAME("send", "Reply"),
257 .actions = &mod_actions_postauth,
258 .offset = PROCESS_CONF_OFFSET(send_reply)
259 },
260 {
261 .section = SECTION_NAME("send", "Relay-Reply"),
262 .actions = &mod_actions_postauth,
263 .offset = PROCESS_CONF_OFFSET(send_relay_reply)
264 },
265 {
266 .section = SECTION_NAME("send", "Do-Not-Respond"),
267 .actions = &mod_actions_postauth,
268 .offset = PROCESS_CONF_OFFSET(do_not_respond)
269 },
270
271 DYNAMIC_CLIENT_SECTIONS,
272
273 COMPILE_TERMINATOR
274};
275
276/*
277 * Debug the packet if requested.
278 */
279static void dhcpv6_packet_debug(request_t *request, fr_packet_t const *packet, fr_pair_list_t const *list, bool received)
280{
281#ifdef WITH_IFINDEX_NAME_RESOLUTION
282 char if_name[IFNAMSIZ];
283#endif
284 char const *module;
285
286 if (!packet) return;
287 if (!RDEBUG_ENABLED) return;
288
289 /*
290 * Looks better without module prefix
291 */
292 module = request->module;
293 request->module = NULL;
294
295 log_request(L_DBG, L_DBG_LVL_1, request, __FILE__, __LINE__, "%s %s XID %08x from %s%pV%s:%i to %s%pV%s:%i "
296#ifdef WITH_IFINDEX_NAME_RESOLUTION
297 "%s%s%s"
298#endif
299 "",
300 received ? "Received" : "Sending",
301 fr_dhcpv6_packet_names[packet->code],
302 packet->id,
303 packet->socket.inet.src_ipaddr.af == AF_INET6 ? "[" : "",
304 fr_box_ipaddr(packet->socket.inet.src_ipaddr),
305 packet->socket.inet.src_ipaddr.af == AF_INET6 ? "]" : "",
306 packet->socket.inet.src_port,
307 packet->socket.inet.dst_ipaddr.af == AF_INET6 ? "[" : "",
308 fr_box_ipaddr(packet->socket.inet.dst_ipaddr),
309 packet->socket.inet.dst_ipaddr.af == AF_INET6 ? "]" : "",
310 packet->socket.inet.dst_port
311#ifdef WITH_IFINDEX_NAME_RESOLUTION
312 , packet->socket.inet.ifindex ? "via " : "",
313 packet->socket.inet.ifindex ? fr_ifname_from_ifindex(if_name, packet->socket.inet.ifindex) : "",
314 packet->socket.inet.ifindex ? " " : ""
315#endif
316 );
317
318 if (received || request->parent) {
319 log_request_pair_list(L_DBG_LVL_1, request, NULL, list, NULL);
320 } else {
321 log_request_proto_pair_list(L_DBG_LVL_1, request, NULL, list, NULL);
322 }
323
324 request->module = module;
325}
326
327/** Keep a copy of header fields to prevent them being tampered with
328 *
329 */
330static inline CC_HINT(always_inline)
331int dhcpv6_client_fields_store(request_t *request, process_dhcpv6_rctx_t *rctx, bool expect_server_id)
332{
333 fr_pair_t *transaction_id;
334
335 transaction_id = fr_pair_find_by_da(&request->request_pairs, NULL, attr_transaction_id);
336 if (!transaction_id) {
337 REDEBUG("Missing Transaction-ID");
338 return -1;
339 }
340
341 if (transaction_id->vp_length != DHCPV6_TRANSACTION_ID_LEN) {
342 REDEBUG("Invalid Transaction-ID, expected len %u, got len %zu",
343 DHCPV6_TRANSACTION_ID_LEN, transaction_id->vp_length);
344 return -1;
345 }
346
347 rctx->transaction_id = fr_pair_copy(rctx, transaction_id);
348
349 fr_pair_list_init(&rctx->client_id);
350 fr_pair_list_init(&rctx->server_id);
351
352 /*
353 * These should just become straight copies
354 * when the structure pairs are nested.
355 */
356 switch (fr_pair_list_copy_by_ancestor(rctx, &rctx->client_id,
357 &request->request_pairs, attr_client_id)) {
358 case -1:
359 REDEBUG("Error copying Client-ID");
360 error:
361 talloc_free(rctx);
362 return -1;
363
364 case 0:
365 REDEBUG("Missing Client-ID");
366 goto error;
367
368 default:
369 break;
370 }
371
372 switch (fr_pair_list_copy_by_ancestor(rctx, &rctx->server_id,
373 &request->request_pairs, attr_server_id)) {
374 case -1:
375 REDEBUG("Error copying Server-ID");
376 goto error;
377
378 case 0:
379 if (expect_server_id) {
380 REDEBUG("Missing Server-ID");
381 goto error;
382 }
383 break;
384
385 default:
386 if (!expect_server_id) {
387 REDEBUG("Server-ID should not be present");
388 goto error;
389 }
390 break;
391 }
392
393 return 0;
394}
395
396/** Validate a solicit/rebind/confirm message
397 *
398 * Servers MUST discard any solicit/rebind/confirm messages that
399 * do not include a Client Identifier option or that do include a
400 * Server Identifier option.
401 */
402RECV(for_any_server)
403{
404 CONF_SECTION *cs;
405 fr_process_state_t const *state;
406 process_dhcpv6_t const *inst = mctx->mi->data;
407 process_dhcpv6_rctx_t *rctx = talloc_get_type_abort(mctx->rctx, process_dhcpv6_rctx_t);
408
409 PROCESS_TRACE;
410
411 if (dhcpv6_client_fields_store(request, rctx, false) < 0) RETURN_UNLANG_INVALID;
412
413 UPDATE_STATE_CS(packet);
414
415 return unlang_module_yield_to_section(RESULT_P, request,
416 cs, state->default_rcode, state->resume,
417 NULL, 0, rctx);
418}
419
420/** Validate a request/renew/decline/release
421 *
422 * Servers MUST discard any received Request message that meet any of
423 * the following conditions:
424 *
425 * - the message does not include a Server Identifier option.
426 *
427 * - the contents of the Server Identifier option do not match the
428 * server's DUID.
429 *
430 * - the message does not include a Client Identifier option.
431 *
432 * Servers MUST discard any received Confirm messages that do not
433 * include a Client Identifier option or that do include a Server
434 * Identifier option.
435 */
436RECV(for_this_server)
437{
438 CONF_SECTION *cs;
439 fr_process_state_t const *state;
440 process_dhcpv6_t const *inst = mctx->mi->data;
441 process_dhcpv6_rctx_t *rctx = talloc_get_type_abort(mctx->rctx, process_dhcpv6_rctx_t);
442
443 PROCESS_TRACE;
444
445 if (dhcpv6_client_fields_store(request, rctx, true) < 0) RETURN_UNLANG_INVALID;
446
447 UPDATE_STATE_CS(packet);
448
449 return unlang_module_yield_to_section(RESULT_P, request,
450 cs, state->default_rcode, state->resume,
451 NULL, 0, rctx);
452}
453
454/** Copy a reply pair back into the response
455 *
456 */
457static inline CC_HINT(always_inline)
458int restore_field(request_t *request, fr_pair_t **to_restore)
459{
460 fr_pair_t *vp;
461 int ret = 0;
462
463 PAIR_VERIFY(*to_restore);
464
465 vp = fr_pair_find_by_da(&request->reply_pairs, NULL, (*to_restore)->da);
466 if (vp) {
467 if (fr_pair_cmp(vp, *to_restore) != 0) {
468 RWDEBUG("reply.%pP does not match request.%pP", vp, *to_restore);
469 free:
470 talloc_free(*to_restore);
471 *to_restore = NULL;
472 return ret;
473 }
474 } else if (fr_pair_steal_append(request->reply_ctx, &request->reply_pairs, *to_restore) < 0) {
475 RPERROR("Failed adding %s", (*to_restore)->da->name);
476 ret = -1;
477 goto free;
478 }
479 *to_restore = NULL;
480
481 return 0;
482}
483
484static inline CC_HINT(always_inline)
485int restore_field_list(request_t *request, fr_pair_list_t *to_restore)
486{
487 fr_pair_t *vp;
488
489 while ((vp = fr_pair_list_head(to_restore))) {
490 fr_pair_remove(to_restore, vp);
491 if (restore_field(request, &vp) < 0) return -1;
492 }
493
494 return 0;
495}
496
497/** Add a status code if one doesn't already exist
498 *
499 */
500static inline CC_HINT(always_inline)
501void status_code_add(process_dhcpv6_t const *inst, request_t *request, fr_value_box_t const **code)
502{
503 fr_pair_t *vp, *failure_message = NULL;
504 fr_value_box_t const *vb;
505 bool moved_failure_message = false;
506
507 if (!code || !*code) return;
508
509 vb = *code;
510
511 /*
512 * If it's a success save some bytes
513 * in the packet and don't bother
514 * adding the success code unless
515 * explicitly requested to.
516 */
517 if ((vb->vb_uint16 == 0) && !inst->status_code_on_success) return;
518
519 /*
520 * Don't override the user status
521 * code.
522 */
523 if (pair_update_reply(&vp, attr_status_code_value) == 0) {
524 if (unlikely(fr_value_box_copy(vp, &vp->data, vb) < 0)) {
525 RPERROR("Failed copying status code value");
526 pair_delete_reply(vp);
527 return;
528 }
529 }
530
531 /*
532 * Move the module failure messages upwards
533 * if requested to by the user.
534 */
535 if (inst->move_failure_message_to_parent && request->parent && (request->parent->proto_dict == request->proto_dict)) {
536 fr_pair_t const *prev = NULL;
537
538 while ((failure_message = fr_pair_find_by_da(&request->request_pairs,
539 prev, attr_module_failure_message))) {
540 MEM(vp = fr_pair_copy(request->parent->request_ctx, failure_message));
541 fr_pair_append(&request->parent->request_pairs, vp);
542
543 prev = fr_pair_remove(&request->request_pairs, failure_message);
544 talloc_free(failure_message);
545 }
546
547 moved_failure_message = true;
548 }
549
550 /*
551 * Concat all the module failure messages
552 * and place them in the status code
553 * message.
554 */
555 if (inst->send_failure_message && !moved_failure_message &&
556 (failure_message = fr_pair_find_by_da(&request->request_pairs, NULL, attr_module_failure_message)) &&
557 (pair_update_reply(&vp, attr_status_code_message) == 0)) {
558 fr_sbuff_uctx_talloc_t tctx;
559 fr_sbuff_t sbuff;
560
561 do {
562 /*
563 * Create an aggregation buffer up to
564 * the maximum length of a status
565 * message.
566 */
567 fr_sbuff_init_talloc(vp, &sbuff, &tctx, 1024, UINT16_MAX - 2);
568
569 /*
570 * Best effort... it's probably OK
571 * if we truncate really long messages.
572 */
573 if (unlikely(fr_sbuff_in_bstrncpy(&sbuff, failure_message->vp_strvalue,
574 failure_message->vp_length) < 0)) break;
575 } while ((failure_message = fr_pair_find_by_da(&request->request_pairs, failure_message,
576 attr_module_failure_message)) &&
577 (fr_sbuff_in_strcpy_literal(&sbuff, ". ") == 2));
578 fr_sbuff_trim_talloc(&sbuff, SIZE_MAX); /* Fix size */
579 fr_pair_value_bstrndup_shallow(vp, fr_sbuff_start(&sbuff), fr_sbuff_used(&sbuff), false);
580 }
581}
582
583/** Restore our copy of the header fields into the reply list
584 *
585 */
586RESUME(send_to_client)
587{
588 process_dhcpv6_t *inst = talloc_get_type_abort(mctx->mi->data, process_dhcpv6_t);
589 process_dhcpv6_rctx_t *fields = talloc_get_type_abort(mctx->rctx, process_dhcpv6_rctx_t);
590 fr_process_state_t const *state;
591
592
593 UPDATE_STATE(reply);
594
595 /*
596 * Don't bother adding VPs if we're not going
597 * be responding to the client.
598 */
599 if (state->packet_type[RESULT_RCODE] == FR_DHCPV6_DO_NOT_RESPOND) return CALL_RESUME(send_generic);
600
601 /*
602 * Add a status code if we have one
603 */
604 status_code_add(inst, request, state->status_codes[RESULT_RCODE]);
605
606 /*
607 * If we have a status code entry then we'll
608 * be returning something to the client and
609 * need to fill in all these fields
610 */
611 if (unlikely(restore_field(request, &fields->transaction_id) < 0)) {
612 fail:
613 p_result->rcode = RLM_MODULE_FAIL;
614 return CALL_RESUME(send_generic);
615 }
616 if (unlikely(restore_field_list(request, &fields->client_id) < 0)) goto fail;
617 if (unlikely(restore_field_list(request, &fields->server_id) < 0)) goto fail;
618
619 dhcpv6_packet_debug(request, request->reply, &request->reply_pairs, false);
620
621 return CALL_RESUME(send_generic);
622}
623
624/** Record the original hop-count, link-address, peer-address etc...
625 *
626 */
627static inline CC_HINT(always_inline)
628process_dhcpv6_relay_fields_t *dhcpv6_relay_fields_store(request_t *request)
629{
630 fr_pair_t *hop_count, *link_address, *peer_address, *interface_id;
631 process_dhcpv6_relay_fields_t *rctx;
632
633 hop_count = fr_pair_find_by_da(&request->request_pairs, NULL, attr_hop_count);
634 if (!hop_count) {
635 REDEBUG("Missing Hop-Count");
636 return NULL;
637 }
638
639 link_address = fr_pair_find_by_da(&request->request_pairs, NULL, attr_relay_link_address);
640 if (!link_address) {
641 REDEBUG("Missing Link-Address");
642 return NULL;
643 }
644
645 peer_address = fr_pair_find_by_da(&request->request_pairs, NULL, attr_relay_peer_address);
646 if (!peer_address) {
647 REDEBUG("Missing Peer-Address");
648 return NULL;
649 }
650
651 interface_id = fr_pair_find_by_da(&request->request_pairs, NULL, attr_interface_id);
652
653 /*
654 * Remember the relay fields
655 */
656 MEM(rctx = talloc_zero(unlang_interpret_frame_talloc_ctx(request), process_dhcpv6_relay_fields_t)); /* Safer to zero the whole thing */
657 MEM(rctx->hop_count = fr_pair_copy(rctx, hop_count));
658 MEM(rctx->link_address = fr_pair_copy(rctx, link_address));
659 MEM(rctx->peer_address = fr_pair_copy(rctx, peer_address));
660 if (interface_id) MEM(rctx->interface_id = fr_pair_copy(rctx, interface_id)); /* Optional */
661
662 return rctx;
663}
664
665/** Ensure we have the necessary pairs from the relay
666 *
667 */
668RECV(from_relay)
669{
670 CONF_SECTION *cs;
671 fr_process_state_t const *state;
672 process_dhcpv6_t const *inst = mctx->mi->data;
673 process_dhcpv6_relay_fields_t *relay_fields = NULL;
674 process_dhcpv6_rctx_t *rctx = talloc_get_type_abort(mctx->rctx, process_dhcpv6_rctx_t);
675
676 relay_fields = dhcpv6_relay_fields_store(request);
677 if (!relay_fields) RETURN_UNLANG_INVALID;
678 rctx->uctx = relay_fields;
679
680 UPDATE_STATE_CS(packet);
681
682 return unlang_module_yield_to_section(RESULT_P, request,
683 cs, state->default_rcode, state->resume,
684 NULL, 0, rctx);
685}
686
687/** Restore our copy of the header fields into the reply list
688 *
689 */
690RESUME(send_to_relay)
691{
692 process_dhcpv6_t *inst = talloc_get_type_abort(mctx->mi->data, process_dhcpv6_t);
693 process_dhcpv6_rctx_t *rctx = talloc_get_type_abort(mctx->rctx, process_dhcpv6_rctx_t);
694 process_dhcpv6_relay_fields_t *fields = talloc_get_type_abort(rctx->uctx, process_dhcpv6_relay_fields_t);
695 fr_process_state_t const *state;
696
697 UPDATE_STATE(reply);
698
699 /*
700 * Add a status code if we have one
701 */
702 status_code_add(inst, request, state->status_codes[RESULT_RCODE]);
703
704 /*
705 * Restore relay fields
706 */
707 if (unlikely(restore_field(request, &fields->hop_count) < 0)) {
708 fail:
709 p_result->rcode = RLM_MODULE_FAIL;
710 return CALL_RESUME(send_generic);
711 }
712 if (unlikely(restore_field(request, &fields->link_address) < 0)) goto fail;
713 if (unlikely(restore_field(request, &fields->peer_address) < 0)) goto fail;
714 if (fields->interface_id && unlikely(restore_field(request, &fields->interface_id) < 0)) goto fail;
715
716 dhcpv6_packet_debug(request, request->reply, &request->reply_pairs, false);
717
718 return CALL_RESUME(send_generic);
719}
720
721/** Main dispatch function
722 *
723 */
724static unlang_action_t mod_process(unlang_result_t *p_result, module_ctx_t const *mctx, request_t *request)
725{
726 fr_process_state_t const *state;
727
728 PROCESS_TRACE;
729
730 (void)talloc_get_type_abort_const(mctx->mi->data, process_dhcpv6_t);
731 fr_assert(PROCESS_PACKET_CODE_VALID(request->packet->code));
732
733 request->component = "dhcpv6";
734 request->module = NULL;
735 fr_assert(request->proto_dict == dict_dhcpv6);
736
737 UPDATE_STATE(packet);
738
739 if (!state->recv) {
740 REDEBUG("Invalid packet type (%u)", request->packet->code);
741 RETURN_UNLANG_FAIL;
742 }
743
744 dhcpv6_packet_debug(request, request->packet, &request->request_pairs, true);
745
746 if (unlikely(request_is_dynamic_client(request))) {
747 return new_client(p_result, mctx, request);
748 }
749
750 return state->recv(p_result, mctx, request);
751}
752
753static int mod_instantiate(module_inst_ctx_t const *mctx)
754{
755 process_dhcpv6_t *inst = talloc_get_type_abort(mctx->mi->data, process_dhcpv6_t);
756
757 inst->server_cs = cf_item_to_section(cf_parent(mctx->mi->conf));
758
759 return 0;
760}
761
762static fr_process_state_t const process_state[] = {
763 /*
764 * A client sends a Solicit message to locate
765 * servers.
766 */
767 [ FR_DHCPV6_SOLICIT ] = {
768 .recv = recv_for_any_server,
769 .resume = resume_recv_generic,
770 .packet_type = {
771 [RLM_MODULE_NOOP] = FR_DHCPV6_DO_NOT_RESPOND,
772 [RLM_MODULE_OK] = FR_DHCPV6_ADVERTISE,
773 [RLM_MODULE_UPDATED] = FR_DHCPV6_ADVERTISE,
774 /* RLM_MODULE_HANDLED - Requires the user to set packet-type */
775
776 [RLM_MODULE_FAIL] = FR_DHCPV6_DO_NOT_RESPOND,
777 [RLM_MODULE_INVALID] = FR_DHCPV6_DO_NOT_RESPOND,
778 [RLM_MODULE_REJECT] = FR_DHCPV6_DO_NOT_RESPOND,
779 [RLM_MODULE_DISALLOW] = FR_DHCPV6_DO_NOT_RESPOND,
780 [RLM_MODULE_NOTFOUND] = FR_DHCPV6_DO_NOT_RESPOND,
781 [RLM_MODULE_TIMEOUT] = FR_DHCPV6_DO_NOT_RESPOND
782 },
783 .status_codes = {
784 /* RLM_MODULE_NOOP - No response */
785 [RLM_MODULE_OK] = &enum_status_code_success,
786 [RLM_MODULE_UPDATED] = &enum_status_code_success,
787 /* RLM_MODULE_HANDLED - Requires the user to set status-code */
788
789 /* RLM_MODULE_FAIL - No response */
790 /* RLM_MODULE_INVALID - No response */
791 /* RLM_MODULE_REJECT - No response */
792 /* RLM_MODULE_DISALLOW - No response */
793 /* RLM_MODULE_NOTFOUND - No response */
794 },
795 .default_rcode = RLM_MODULE_NOOP,
796 .section_offset = offsetof(process_dhcpv6_sections_t, recv_solicit),
797 },
798
799 /*
800 * A client sends a Request message to request
801 * configuration parameters, including IP
802 * addresses, from a specific server.
803 */
804 [ FR_DHCPV6_REQUEST ] = {
805 .recv = recv_for_this_server,
806 .resume = resume_recv_generic,
807 .packet_type = {
808 [RLM_MODULE_NOOP] = FR_DHCPV6_REPLY,
809 [RLM_MODULE_OK] = FR_DHCPV6_REPLY,
810 [RLM_MODULE_UPDATED] = FR_DHCPV6_REPLY,
811 /* RLM_MODULE_HANDLED - Requires the user to set packet-type */
812
813 [RLM_MODULE_FAIL] = FR_DHCPV6_REPLY,
814 [RLM_MODULE_INVALID] = FR_DHCPV6_REPLY,
815 [RLM_MODULE_REJECT] = FR_DHCPV6_REPLY,
816 [RLM_MODULE_DISALLOW] = FR_DHCPV6_REPLY,
817 [RLM_MODULE_NOTFOUND] = FR_DHCPV6_REPLY,
818 [RLM_MODULE_TIMEOUT] = FR_DHCPV6_DO_NOT_RESPOND
819 },
820 .status_codes = {
821 [RLM_MODULE_NOOP] = &enum_status_code_unspec_fail,
822 [RLM_MODULE_OK] = &enum_status_code_success,
823 [RLM_MODULE_UPDATED] = &enum_status_code_success,
824 /* RLM_MODULE_HANDLED - Requires the user to set status-code */
825
826 [RLM_MODULE_FAIL] = &enum_status_code_unspec_fail,
827 [RLM_MODULE_INVALID] = &enum_status_code_unspec_fail,
828 [RLM_MODULE_REJECT] = &enum_status_code_unspec_fail,
829 [RLM_MODULE_DISALLOW] = &enum_status_code_unspec_fail,
830 [RLM_MODULE_NOTFOUND] = &enum_status_code_unspec_fail
831 },
832 .default_rcode = RLM_MODULE_NOOP,
833 .section_offset = offsetof(process_dhcpv6_sections_t, recv_request),
834 },
835
836 /*
837 * A client sends a Confirm message to any
838 * available server to determine whether the
839 * addresses it was assigned are still appropriate
840 * to the link to which the client is connected.
841 */
842 [ FR_DHCPV6_CONFIRM ] = {
843 .recv = recv_for_any_server,
844 .resume = resume_recv_generic,
845 .packet_type = {
846 [RLM_MODULE_NOOP] = FR_DHCPV6_DO_NOT_RESPOND,
847 [RLM_MODULE_OK] = FR_DHCPV6_REPLY,
848 [RLM_MODULE_UPDATED] = FR_DHCPV6_REPLY,
849 /* RLM_MODULE_HANDLED - Requires the user to set packet-type */
850
851 [RLM_MODULE_FAIL] = FR_DHCPV6_DO_NOT_RESPOND,
852 [RLM_MODULE_INVALID] = FR_DHCPV6_DO_NOT_RESPOND,
853 [RLM_MODULE_REJECT] = FR_DHCPV6_REPLY,
854 [RLM_MODULE_DISALLOW] = FR_DHCPV6_DO_NOT_RESPOND,
855 [RLM_MODULE_NOTFOUND] = FR_DHCPV6_DO_NOT_RESPOND,
856 [RLM_MODULE_TIMEOUT] = FR_DHCPV6_DO_NOT_RESPOND
857 },
858
859 /*
860 * When the server receives a Confirm message, the server determines
861 * whether the addresses in the Confirm message are appropriate for the
862 * link to which the client is attached. If all of the addresses in the
863 * Confirm message pass this test, the server returns a status of
864 * Success. If any of the addresses do not pass this test, the server
865 * returns a status of NotOnLink. If the server is unable to perform
866 * this test (for example, the server does not have information about
867 * prefixes on the link to which the client is connected), or there were
868 * no addresses in any of the IAs sent by the client, the server MUST
869 * NOT send a reply to the client.
870 */
871 .status_codes = {
872 /* RLM_MODULE_NOOP - No response */
873 [RLM_MODULE_OK] = &enum_status_code_success,
874 [RLM_MODULE_UPDATED] = &enum_status_code_success,
875 /* RLM_MODULE_HANDLED - Requires the user to set status-code */
876
877 /* RLM_MODULE_FAIL - No response */
878 /* RLM_MODULE_INVALID - No response */
879 [RLM_MODULE_REJECT] = &enum_status_code_not_on_link,
880 /* RLM_MODULE_DISALLOW - No response */
881 /* RLM_MODULE_NOTFOUND - No response */
882 },
883 .default_rcode = RLM_MODULE_NOOP,
884 .section_offset = offsetof(process_dhcpv6_sections_t, recv_confirm),
885 },
886
887 /*
888 * A client sends a Renew message to the server
889 * that originally provided the client's addresses
890 * and configuration parameters to extend the
891 * lifetimes on the addresses assigned to the
892 * client and to update other configuration
893 * parameters.
894 */
895 [ FR_DHCPV6_RENEW ] = {
896 .recv = recv_for_this_server,
897 .resume = resume_recv_generic,
898 .packet_type = {
899 [RLM_MODULE_NOOP] = FR_DHCPV6_REPLY,
900 [RLM_MODULE_OK] = FR_DHCPV6_REPLY,
901 [RLM_MODULE_UPDATED] = FR_DHCPV6_REPLY,
902 /* RLM_MODULE_HANDLED - Requires the user to set packet-type */
903
904 [RLM_MODULE_FAIL] = FR_DHCPV6_REPLY,
905 [RLM_MODULE_INVALID] = FR_DHCPV6_DO_NOT_RESPOND,
906 [RLM_MODULE_REJECT] = FR_DHCPV6_REPLY,
907 [RLM_MODULE_DISALLOW] = FR_DHCPV6_REPLY,
908 [RLM_MODULE_NOTFOUND] = FR_DHCPV6_REPLY,
909 [RLM_MODULE_TIMEOUT] = FR_DHCPV6_DO_NOT_RESPOND
910 },
911
912 /*
913 * If the server cannot find a client entry for the IA the server
914 * returns the IA containing no addresses with a Status Code option set
915 * to NoBinding in the Reply message.
916 */
917 .status_codes = {
918 [RLM_MODULE_NOOP] = &enum_status_code_unspec_fail,
919 [RLM_MODULE_OK] = &enum_status_code_success,
920 [RLM_MODULE_UPDATED] = &enum_status_code_success,
921 /* RLM_MODULE_HANDLED - Requires the user to set status-code */
922
923 [RLM_MODULE_FAIL] = &enum_status_code_unspec_fail,
924 /* RLM_MODULE_INVALID - No response */
925 [RLM_MODULE_REJECT] = &enum_status_code_no_binding,
926 [RLM_MODULE_DISALLOW] = &enum_status_code_unspec_fail,
927 [RLM_MODULE_NOTFOUND] = &enum_status_code_no_binding
928 },
929 .default_rcode = RLM_MODULE_NOOP,
930 .section_offset = offsetof(process_dhcpv6_sections_t, recv_renew),
931 },
932
933 /*
934 * A client sends a Rebind message to any
935 * available server to extend the lifetimes on the
936 * addresses assigned to the client and to update
937 * other configuration parameters; this message is
938 * sent after a client receives no response to a
939 * Renew message.
940 */
941 [ FR_DHCPV6_REBIND ] = {
942 .recv = recv_for_any_server,
943 .resume = resume_recv_generic,
944 .packet_type = {
945 [RLM_MODULE_NOOP] = FR_DHCPV6_REPLY,
946 [RLM_MODULE_OK] = FR_DHCPV6_REPLY,
947 [RLM_MODULE_UPDATED] = FR_DHCPV6_REPLY,
948 /* RLM_MODULE_HANDLED - Requires the user to set packet-type */
949
950 [RLM_MODULE_FAIL] = FR_DHCPV6_REPLY,
951 [RLM_MODULE_INVALID] = FR_DHCPV6_DO_NOT_RESPOND,
952 [RLM_MODULE_REJECT] = FR_DHCPV6_REPLY,
953 [RLM_MODULE_DISALLOW] = FR_DHCPV6_REPLY,
954 [RLM_MODULE_NOTFOUND] = FR_DHCPV6_REPLY,
955 [RLM_MODULE_TIMEOUT] = FR_DHCPV6_DO_NOT_RESPOND
956 },
957 .status_codes = {
958 [RLM_MODULE_NOOP] = &enum_status_code_unspec_fail,
959 [RLM_MODULE_OK] = &enum_status_code_success,
960 [RLM_MODULE_UPDATED] = &enum_status_code_success,
961 /* RLM_MODULE_HANDLED - Requires the user to set status-code */
962
963 [RLM_MODULE_FAIL] = &enum_status_code_unspec_fail,
964 /* RLM_MODULE_INVALID - No response */
965 [RLM_MODULE_REJECT] = &enum_status_code_unspec_fail,
966 [RLM_MODULE_DISALLOW] = &enum_status_code_unspec_fail,
967 [RLM_MODULE_NOTFOUND] = &enum_status_code_unspec_fail
968 },
969 .default_rcode = RLM_MODULE_NOOP,
970 .section_offset = offsetof(process_dhcpv6_sections_t, recv_rebind),
971 },
972 /*
973 * A client sends an Information-request
974 * message to a server to request configuration
975 * parameters without the assignment of any IP
976 * addresses to the client.
977 */
978 [ FR_DHCPV6_INFORMATION_REQUEST ] = {
979 .recv = recv_for_any_server,
980 .resume = resume_recv_generic,
981 .packet_type = {
982 [RLM_MODULE_NOOP] = FR_DHCPV6_REPLY,
983 [RLM_MODULE_OK] = FR_DHCPV6_REPLY,
984 [RLM_MODULE_UPDATED] = FR_DHCPV6_REPLY,
985 /* RLM_MODULE_HANDLED - Requires the user to set packet-type */
986
987 [RLM_MODULE_FAIL] = FR_DHCPV6_REPLY,
988 [RLM_MODULE_INVALID] = FR_DHCPV6_DO_NOT_RESPOND,
989 [RLM_MODULE_REJECT] = FR_DHCPV6_REPLY,
990 [RLM_MODULE_DISALLOW] = FR_DHCPV6_REPLY,
991 [RLM_MODULE_NOTFOUND] = FR_DHCPV6_REPLY,
992 [RLM_MODULE_TIMEOUT] = FR_DHCPV6_DO_NOT_RESPOND
993 },
994 .status_codes = {
995 [RLM_MODULE_NOOP] = &enum_status_code_unspec_fail,
996 [RLM_MODULE_OK] = &enum_status_code_success,
997 [RLM_MODULE_UPDATED] = &enum_status_code_success,
998 /* RLM_MODULE_HANDLED - Requires the user to set status-code */
999
1000 [RLM_MODULE_FAIL] = &enum_status_code_unspec_fail,
1001 /* RLM_MODULE_INVALID - No response */
1002 [RLM_MODULE_REJECT] = &enum_status_code_unspec_fail,
1003 [RLM_MODULE_DISALLOW] = &enum_status_code_unspec_fail,
1004 [RLM_MODULE_NOTFOUND] = &enum_status_code_unspec_fail
1005 },
1006 .default_rcode = RLM_MODULE_NOOP,
1007 .section_offset = offsetof(process_dhcpv6_sections_t, recv_information_request),
1008 },
1009 /*
1010 * A client sends a Release message to the server
1011 * that assigned addresses to the client to
1012 * indicate that the client will no longer use one
1013 * or more of the assigned addresses.
1014 */
1015 [ FR_DHCPV6_RELEASE ] = {
1016 .recv = recv_for_this_server,
1017 .resume = resume_recv_generic,
1018 .packet_type = {
1019 [RLM_MODULE_NOOP] = FR_DHCPV6_REPLY,
1020 [RLM_MODULE_OK] = FR_DHCPV6_REPLY,
1021 [RLM_MODULE_UPDATED] = FR_DHCPV6_REPLY,
1022 /* RLM_MODULE_HANDLED - Requires the user to set packet-type */
1023
1024 [RLM_MODULE_FAIL] = FR_DHCPV6_REPLY,
1025 [RLM_MODULE_INVALID] = FR_DHCPV6_DO_NOT_RESPOND,
1026 [RLM_MODULE_REJECT] = FR_DHCPV6_REPLY,
1027 [RLM_MODULE_DISALLOW] = FR_DHCPV6_REPLY,
1028 [RLM_MODULE_NOTFOUND] = FR_DHCPV6_REPLY,
1029 [RLM_MODULE_TIMEOUT] = FR_DHCPV6_DO_NOT_RESPOND
1030 },
1031 .status_codes = {
1032 [RLM_MODULE_NOOP] = &enum_status_code_unspec_fail,
1033 [RLM_MODULE_OK] = &enum_status_code_success,
1034 [RLM_MODULE_UPDATED] = &enum_status_code_success,
1035 /* RLM_MODULE_HANDLED - Requires the user to set status-code */
1036
1037 [RLM_MODULE_FAIL] = &enum_status_code_unspec_fail,
1038 /* RLM_MODULE_INVALID - No response */
1039 [RLM_MODULE_REJECT] = &enum_status_code_unspec_fail,
1040 [RLM_MODULE_DISALLOW] = &enum_status_code_unspec_fail,
1041 [RLM_MODULE_NOTFOUND] = &enum_status_code_unspec_fail
1042 },
1043 .default_rcode = RLM_MODULE_NOOP,
1044
1045 .section_offset = offsetof(process_dhcpv6_sections_t, recv_release),
1046 },
1047 /*
1048 *
1049 * A client sends a Decline message to a server to
1050 * indicate that the client has determined that
1051 * one or more addresses assigned by the server
1052 * are already in use on the link to which the
1053 * client is connected.
1054 */
1055 [ FR_DHCPV6_DECLINE ] = {
1056 .recv = recv_for_this_server, /* Need to check for attributes */
1057 .resume = resume_recv_generic,
1058 .packet_type = {
1059 [RLM_MODULE_NOOP] = FR_DHCPV6_REPLY,
1060 [RLM_MODULE_OK] = FR_DHCPV6_REPLY,
1061 [RLM_MODULE_UPDATED] = FR_DHCPV6_REPLY,
1062 /* RLM_MODULE_HANDLED - Requires the user to set packet-type */
1063
1064 [RLM_MODULE_FAIL] = FR_DHCPV6_REPLY,
1065 [RLM_MODULE_INVALID] = FR_DHCPV6_DO_NOT_RESPOND,
1066 [RLM_MODULE_REJECT] = FR_DHCPV6_REPLY,
1067 [RLM_MODULE_DISALLOW] = FR_DHCPV6_REPLY,
1068 [RLM_MODULE_NOTFOUND] = FR_DHCPV6_REPLY,
1069 [RLM_MODULE_TIMEOUT] = FR_DHCPV6_DO_NOT_RESPOND
1070 },
1071 .status_codes = {
1072 [RLM_MODULE_NOOP] = &enum_status_code_unspec_fail,
1073 [RLM_MODULE_OK] = &enum_status_code_success,
1074 [RLM_MODULE_UPDATED] = &enum_status_code_success,
1075 /* RLM_MODULE_HANDLED - Requires the user to set status-code */
1076
1077 [RLM_MODULE_FAIL] = &enum_status_code_unspec_fail,
1078 /* RLM_MODULE_INVALID - No response */
1079 [RLM_MODULE_REJECT] = &enum_status_code_unspec_fail,
1080 [RLM_MODULE_DISALLOW] = &enum_status_code_unspec_fail,
1081 [RLM_MODULE_NOTFOUND] = &enum_status_code_unspec_fail
1082 },
1083 .default_rcode = RLM_MODULE_NOOP,
1084 .result_rcode = RLM_MODULE_REJECT,
1085 .section_offset = offsetof(process_dhcpv6_sections_t, recv_decline),
1086 },
1087 /*
1088 * A relay agent sends a Relay-forward message
1089 * to relay messages to servers, either directly
1090 * or through another relay agent. The received
1091 * message, either a client message or a
1092 * Relay-forward message from another relay
1093 * agent, is encapsulated in an option in the
1094 * Relay-forward message.
1095 */
1096 [ FR_DHCPV6_RELAY_FORWARD ] = {
1097 .recv = recv_from_relay,
1098 .resume = resume_recv_generic,
1099 .packet_type = {
1100 [RLM_MODULE_NOOP] = FR_DHCPV6_RELAY_REPLY,
1101 [RLM_MODULE_OK] = FR_DHCPV6_RELAY_REPLY,
1102 [RLM_MODULE_UPDATED] = FR_DHCPV6_RELAY_REPLY,
1103 /* RLM_MODULE_HANDLED - Requires the user to set packet-type */
1104
1105 [RLM_MODULE_FAIL] = FR_DHCPV6_RELAY_REPLY,
1106 [RLM_MODULE_INVALID] = FR_DHCPV6_DO_NOT_RESPOND,
1107 [RLM_MODULE_REJECT] = FR_DHCPV6_RELAY_REPLY,
1108 [RLM_MODULE_DISALLOW] = FR_DHCPV6_RELAY_REPLY,
1109 [RLM_MODULE_NOTFOUND] = FR_DHCPV6_RELAY_REPLY,
1110 [RLM_MODULE_TIMEOUT] = FR_DHCPV6_DO_NOT_RESPOND
1111 },
1112 .status_codes = {
1113 [RLM_MODULE_NOOP] = &enum_status_code_unspec_fail,
1114 [RLM_MODULE_OK] = &enum_status_code_success,
1115 [RLM_MODULE_UPDATED] = &enum_status_code_success,
1116 /* RLM_MODULE_HANDLED - Requires the user to set status-code */
1117
1118 [RLM_MODULE_FAIL] = &enum_status_code_unspec_fail,
1119 /* RLM_MODULE_INVALID - No response */
1120 [RLM_MODULE_REJECT] = &enum_status_code_unspec_fail,
1121 [RLM_MODULE_DISALLOW] = &enum_status_code_unspec_fail,
1122 [RLM_MODULE_NOTFOUND] = &enum_status_code_unspec_fail
1123 },
1124 .default_rcode = RLM_MODULE_NOOP,
1125 .section_offset = offsetof(process_dhcpv6_sections_t, recv_relay_forward),
1126 },
1127 /*
1128 * A server sends an Advertise message to indicate
1129 * that it is available for DHCP service, in
1130 * response to a Solicit message received from a
1131 * client.
1132 */
1133 [ FR_DHCPV6_ADVERTISE ] = {
1134 .send = send_generic,
1135 .resume = resume_send_to_client,
1136 .packet_type = {
1137 [RLM_MODULE_FAIL] = FR_DHCPV6_DO_NOT_RESPOND,
1138 [RLM_MODULE_INVALID] = FR_DHCPV6_DO_NOT_RESPOND,
1139 [RLM_MODULE_REJECT] = FR_DHCPV6_DO_NOT_RESPOND,
1140 [RLM_MODULE_DISALLOW] = FR_DHCPV6_DO_NOT_RESPOND,
1141 [RLM_MODULE_NOTFOUND] = FR_DHCPV6_DO_NOT_RESPOND,
1142 [RLM_MODULE_TIMEOUT] = FR_DHCPV6_DO_NOT_RESPOND
1143 },
1144 .status_codes = {
1145 [RLM_MODULE_NOOP] = &enum_status_code_success,
1146 [RLM_MODULE_OK] = &enum_status_code_success,
1147 [RLM_MODULE_UPDATED] = &enum_status_code_success,
1148 /* RLM_MODULE_HANDLED - Requires the user to set status-code */
1149
1150 /* RLM_MODULE_FAIL - No response */
1151 /* RLM_MODULE_INVALID - No response */
1152 /* RLM_MODULE_REJECT - No response */
1153 /* RLM_MODULE_DISALLOW - No response */
1154 /* RLM_MODULE_NOTFOUND - No response */
1155 },
1156 .default_rcode = RLM_MODULE_NOOP,
1157 .result_rcode = RLM_MODULE_OK,
1158 .section_offset = offsetof(process_dhcpv6_sections_t, send_advertise),
1159 },
1160 /*
1161 * A server sends a Reply message containing
1162 * assigned addresses and configuration parameters
1163 * in response to a Solicit, Request, Renew,
1164 * Rebind message received from a client. A
1165 * server sends a Reply message containing
1166 * configuration parameters in response to an
1167 * Information-request message. A server sends a
1168 * Reply message in response to a Confirm message
1169 * confirming or denying that the addresses
1170 * assigned to the client are appropriate to the
1171 * link to which the client is connected. A
1172 * server sends a Reply message to acknowledge
1173 * receipt of a Release or Decline message.
1174 */
1175 [ FR_DHCPV6_REPLY ] = {
1176 .send = send_generic,
1177 .resume = resume_send_to_client,
1178 .packet_type = {
1179
1180 [RLM_MODULE_FAIL] = FR_DHCPV6_REPLY,
1181 [RLM_MODULE_INVALID] = FR_DHCPV6_DO_NOT_RESPOND,
1182 [RLM_MODULE_REJECT] = FR_DHCPV6_REPLY,
1183 [RLM_MODULE_DISALLOW] = FR_DHCPV6_REPLY,
1184 [RLM_MODULE_NOTFOUND] = FR_DHCPV6_REPLY,
1185 [RLM_MODULE_TIMEOUT] = FR_DHCPV6_DO_NOT_RESPOND
1186 },
1187 .status_codes = {
1188 [RLM_MODULE_NOOP] = &enum_status_code_success,
1189 [RLM_MODULE_OK] = &enum_status_code_success,
1190 [RLM_MODULE_UPDATED] = &enum_status_code_success,
1191 /* RLM_MODULE_HANDLED - Requires the user to set status-code */
1192
1193 [RLM_MODULE_FAIL] = &enum_status_code_unspec_fail,
1194 /* RLM_MODULE_INVALID - No response */
1195 [RLM_MODULE_REJECT] = &enum_status_code_unspec_fail,
1196 [RLM_MODULE_DISALLOW] = &enum_status_code_unspec_fail,
1197 [RLM_MODULE_NOTFOUND] = &enum_status_code_unspec_fail
1198 },
1199 .default_rcode = RLM_MODULE_NOOP,
1200 .result_rcode = RLM_MODULE_OK,
1201 .section_offset = offsetof(process_dhcpv6_sections_t, send_reply),
1202 },
1203 /*
1204 * A server sends a Relay-reply message to a relay
1205 * agent containing a message that the relay
1206 * agent delivers to a client. The Relay-reply
1207 * message may be relayed by other relay agents
1208 * for delivery to the destination relay agent.
1209 * The server encapsulates the client message as
1210 * an option in the Relay-reply message, which the
1211 * relay agent extracts and relays to the client.
1212 */
1213 [ FR_DHCPV6_RELAY_REPLY ] = {
1214 .send = send_generic,
1215 .resume = resume_send_to_relay,
1216 .packet_type = {
1217 [RLM_MODULE_FAIL] = FR_DHCPV6_RELAY_REPLY,
1218 [RLM_MODULE_INVALID] = FR_DHCPV6_DO_NOT_RESPOND,
1219 [RLM_MODULE_REJECT] = FR_DHCPV6_RELAY_REPLY,
1220 [RLM_MODULE_DISALLOW] = FR_DHCPV6_RELAY_REPLY,
1221 [RLM_MODULE_NOTFOUND] = FR_DHCPV6_RELAY_REPLY,
1222 [RLM_MODULE_TIMEOUT] = FR_DHCPV6_DO_NOT_RESPOND
1223 },
1224 .status_codes = {
1225 [RLM_MODULE_NOOP] = &enum_status_code_success,
1226 [RLM_MODULE_OK] = &enum_status_code_success,
1227 [RLM_MODULE_UPDATED] = &enum_status_code_success,
1228 /* RLM_MODULE_HANDLED - Requires the user to set status-code */
1229
1230 [RLM_MODULE_FAIL] = &enum_status_code_unspec_fail,
1231 /* RLM_MODULE_INVALID - No response */
1232 [RLM_MODULE_REJECT] = &enum_status_code_unspec_fail,
1233 [RLM_MODULE_DISALLOW] = &enum_status_code_unspec_fail,
1234 [RLM_MODULE_NOTFOUND] = &enum_status_code_unspec_fail
1235 },
1236 .default_rcode = RLM_MODULE_NOOP,
1237 .result_rcode = RLM_MODULE_OK,
1238 .section_offset = offsetof(process_dhcpv6_sections_t, send_relay_reply),
1239 },
1240
1241 [ FR_DHCPV6_DO_NOT_RESPOND ] = {
1242 .send = send_generic,
1243 .resume = resume_send_generic,
1244 .packet_type = {
1245 [RLM_MODULE_NOOP] = FR_DHCPV6_DO_NOT_RESPOND,
1246 [RLM_MODULE_OK] = FR_DHCPV6_DO_NOT_RESPOND,
1247 [RLM_MODULE_UPDATED] = FR_DHCPV6_DO_NOT_RESPOND,
1248 [RLM_MODULE_HANDLED] = FR_DHCPV6_DO_NOT_RESPOND,
1249
1250 [RLM_MODULE_FAIL] = FR_DHCPV6_DO_NOT_RESPOND,
1251 [RLM_MODULE_INVALID] = FR_DHCPV6_DO_NOT_RESPOND,
1252 [RLM_MODULE_REJECT] = FR_DHCPV6_DO_NOT_RESPOND,
1253 [RLM_MODULE_DISALLOW] = FR_DHCPV6_DO_NOT_RESPOND,
1254 [RLM_MODULE_NOTFOUND] = FR_DHCPV6_DO_NOT_RESPOND,
1255 [RLM_MODULE_TIMEOUT] = FR_DHCPV6_DO_NOT_RESPOND
1256 },
1257 .default_rcode = RLM_MODULE_NOOP,
1258 .result_rcode = RLM_MODULE_HANDLED,
1259 .section_offset = offsetof(process_dhcpv6_sections_t, do_not_respond),
1260 }
1261};
1262
1263extern fr_process_module_t process_dhcpv6;
1264fr_process_module_t process_dhcpv6 = {
1265 .common = {
1266 .magic = MODULE_MAGIC_INIT,
1267 .name = "dhcpv6",
1268 .config = dhcpv6_process_config,
1269 MODULE_INST(process_dhcpv6_t),
1270 MODULE_RCTX(process_dhcpv6_rctx_t),
1271
1272 .instantiate = mod_instantiate
1273 },
1274 .process = mod_process,
1275 .compile_list = compile_list,
1276 .dict = &dict_dhcpv6,
1277 .packet_type = &attr_packet_type
1278};
unlang_action_t
unlang_action_t
Returned by unlang_op_t calls, determine the next action of the interpreter.
Definition action.h:35
unlikely
#define unlikely(_x)
Definition build.h:383
CONF_PARSER_TERMINATOR
#define CONF_PARSER_TERMINATOR
Definition cf_parse.h:660
FR_CONF_OFFSET
#define FR_CONF_OFFSET(_name, _struct, _field)
conf_parser_t which parses a single CONF_PAIR, writing the result to a field in a struct
Definition cf_parse.h:283
conf_parser_s
Defines a CONF_PAIR to C data type mapping.
Definition cf_parse.h:597
cf_section
A section grouping multiple CONF_PAIR.
Definition cf_priv.h:101
cf_item_to_section
CONF_SECTION * cf_item_to_section(CONF_ITEM const *ci)
Cast a CONF_ITEM to a CONF_SECTION.
Definition cf_util.c:683
cf_parent
#define cf_parent(_cf)
Definition cf_util.h:101
MEM
#define MEM(x)
Definition debug.h:36
FR_DHCPV6_RELEASE
@ FR_DHCPV6_RELEASE
Definition dhcpv6.h:75
FR_DHCPV6_DECLINE
@ FR_DHCPV6_DECLINE
Definition dhcpv6.h:76
FR_DHCPV6_ADVERTISE
@ FR_DHCPV6_ADVERTISE
Definition dhcpv6.h:69
FR_DHCPV6_DO_NOT_RESPOND
@ FR_DHCPV6_DO_NOT_RESPOND
Definition dhcpv6.h:104
FR_DHCPV6_REBIND
@ FR_DHCPV6_REBIND
Definition dhcpv6.h:73
FR_DHCPV6_REPLY
@ FR_DHCPV6_REPLY
Definition dhcpv6.h:74
FR_DHCPV6_CONFIRM
@ FR_DHCPV6_CONFIRM
Definition dhcpv6.h:71
FR_DHCPV6_SOLICIT
@ FR_DHCPV6_SOLICIT
Definition dhcpv6.h:68
FR_DHCPV6_RENEW
@ FR_DHCPV6_RENEW
Definition dhcpv6.h:72
FR_DHCPV6_INFORMATION_REQUEST
@ FR_DHCPV6_INFORMATION_REQUEST
Definition dhcpv6.h:78
FR_DHCPV6_REQUEST
@ FR_DHCPV6_REQUEST
Definition dhcpv6.h:70
FR_DHCPV6_RELAY_FORWARD
@ FR_DHCPV6_RELAY_FORWARD
Definition dhcpv6.h:79
FR_DHCPV6_RELAY_REPLY
@ FR_DHCPV6_RELAY_REPLY
Definition dhcpv6.h:80
DHCPV6_TRANSACTION_ID_LEN
#define DHCPV6_TRANSACTION_ID_LEN
Definition dhcpv6.h:37
fr_dict_enum_autoload_t::out
fr_value_box_t const ** out
Enumeration value.
Definition dict.h:282
fr_dict_attr_autoload_t::out
fr_dict_attr_t const ** out
Where to write a pointer to the resolved fr_dict_attr_t.
Definition dict.h:293
fr_dict_autoload_t::out
fr_dict_t const ** out
Where to write a pointer to the loaded/resolved fr_dict_t.
Definition dict.h:306
DICT_AUTOLOAD_TERMINATOR
#define DICT_AUTOLOAD_TERMINATOR
Definition dict.h:312
fr_dict_attr_autoload_t
Specifies an attribute which must be present for the module to function.
Definition dict.h:292
fr_dict_autoload_t
Specifies a dictionary which must be loaded/loadable for the module to function.
Definition dict.h:305
fr_dict_enum_autoload_t
Specifies a value which must be present for the module to function.
Definition dict.h:281
MODULE_MAGIC_INIT
#define MODULE_MAGIC_INIT
Stop people using different module/library/server versions together.
Definition dl_module.h:63
free
free(array)
unlang_interpret_frame_talloc_ctx
TALLOC_CTX * unlang_interpret_frame_talloc_ctx(request_t *request)
Get a talloc_ctx which is valid only for this frame.
Definition interpret.c:1658
unlang_result_t
Definition interpret.h:133
dict_freeradius
static fr_dict_t const * dict_freeradius
Definition base.c:37
attr_packet_type
fr_dict_attr_t const * attr_packet_type
Definition base.c:93
attr_module_failure_message
static fr_dict_attr_t const * attr_module_failure_message
Definition log.c:206
log_request_proto_pair_list
void log_request_proto_pair_list(fr_log_lvl_t lvl, request_t *request, fr_pair_t const *parent, fr_pair_list_t const *vps, char const *prefix)
Print a list of protocol fr_pair_ts.
Definition log.c:868
log_request
void log_request(fr_log_type_t type, fr_log_lvl_t lvl, request_t *request, char const *file, int line, char const *fmt,...)
Marshal variadic log arguments into a va_list and pass to normal logging functions.
Definition log.c:610
log_request_pair_list
void log_request_pair_list(fr_log_lvl_t lvl, request_t *request, fr_pair_t const *parent, fr_pair_list_t const *vps, char const *prefix)
Print a fr_pair_list_t.
Definition log.c:844
RWDEBUG
#define RWDEBUG(fmt,...)
Definition log.h:361
RPERROR
#define RPERROR(fmt,...)
Definition log.h:302
talloc_free
talloc_free(reap)
L_DBG_LVL_1
@ L_DBG_LVL_1
Highest priority debug messages (-x).
Definition log.h:70
L_DBG
@ L_DBG
Only displayed when debugging is enabled.
Definition log.h:59
FR_TYPE_STRING
@ FR_TYPE_STRING
String of printable characters.
Definition merged_model.c:83
FR_TYPE_UINT16
@ FR_TYPE_UINT16
16 Bit unsigned integer.
Definition merged_model.c:98
FR_TYPE_UINT8
@ FR_TYPE_UINT8
8 Bit unsigned integer.
Definition merged_model.c:97
FR_TYPE_UINT32
@ FR_TYPE_UINT32
32 Bit unsigned integer.
Definition merged_model.c:99
FR_TYPE_STRUCT
@ FR_TYPE_STRUCT
like TLV, but without T or L, and fixed-width children
Definition merged_model.c:119
FR_TYPE_IPV6_ADDR
@ FR_TYPE_IPV6_ADDR
128 Bit IPv6 Address.
Definition merged_model.c:88
FR_TYPE_OCTETS
@ FR_TYPE_OCTETS
Raw octets.
Definition merged_model.c:84
fr_dict_attr_t
Definition merged_model.c:133
fr_dict_t
Definition merged_model.c:198
fr_sbuff_t
Definition merged_model.c:37
fr_value_box_t
Definition merged_model.c:136
request_t
Definition merged_model.c:210
mod_actions_postauth
unlang_mod_actions_t const mod_actions_postauth
Definition mod_action.c:93
unlang_mod_actions_t::actions
unlang_mod_action_t actions[RLM_MODULE_NUMCODES]
Definition mod_action.h:64
module_ctx_t::mi
module_instance_t const * mi
Instance of the module being instantiated.
Definition module_ctx.h:42
module_inst_ctx_t::mi
module_instance_t * mi
Instance of the module being instantiated.
Definition module_ctx.h:51
module_ctx_t
Temporary structure to hold arguments for module calls.
Definition module_ctx.h:41
module_inst_ctx_t
Temporary structure to hold arguments for instantiation calls.
Definition module_ctx.h:50
fr_pair_find_by_da
fr_pair_t * fr_pair_find_by_da(fr_pair_list_t const *list, fr_pair_t const *prev, fr_dict_attr_t const *da)
Find the first pair with a matching da.
Definition pair.c:703
fr_pair_cmp
int fr_pair_cmp(fr_pair_t const *a, fr_pair_t const *b)
Compare two pairs, using the operator from "a".
Definition pair.c:1972
fr_pair_value_bstrndup_shallow
int fr_pair_value_bstrndup_shallow(fr_pair_t *vp, char const *src, size_t len, bool tainted)
Assign a string to a "string" type value pair.
Definition pair.c:2846
fr_pair_append
int fr_pair_append(fr_pair_list_t *list, fr_pair_t *to_add)
Add a VP to the end of the list.
Definition pair.c:1348
fr_pair_list_copy_by_ancestor
int fr_pair_list_copy_by_ancestor(TALLOC_CTX *ctx, fr_pair_list_t *to, fr_pair_list_t const *from, fr_dict_attr_t const *parent_da)
Duplicate pairs in a list where the da is a descendant of parent_da.
Definition pair.c:2465
fr_pair_steal_append
int fr_pair_steal_append(TALLOC_CTX *list_ctx, fr_pair_list_t *list, fr_pair_t *vp)
Change a vp's talloc ctx and insert it into a new list.
Definition pair.c:556
fr_pair_list_init
void fr_pair_list_init(fr_pair_list_t *list)
Initialise a pair list header.
Definition pair.c:46
fr_pair_copy
fr_pair_t * fr_pair_copy(TALLOC_CTX *ctx, fr_pair_t const *vp)
Copy a single valuepair.
Definition pair.c:497
mod_process
static unlang_action_t mod_process(unlang_result_t *p_result, module_ctx_t const *mctx, request_t *request)
Definition base.c:188
compile_list
static const virtual_server_compile_t compile_list[]
Definition base.c:214
process_state
static fr_process_state_t const process_state[]
Definition base.c:69
PROCESS_PACKET_CODE_VALID
#define PROCESS_PACKET_CODE_VALID
Definition base.c:65
process_dhcpv6_sections_t::send_advertise
CONF_SECTION * send_advertise
Definition base.c:58
process_dhcpv6_sections_t::recv_information_request
CONF_SECTION * recv_information_request
Definition base.c:55
attr_hop_count
static fr_dict_attr_t const * attr_hop_count
Definition base.c:131
process_dhcpv6_sections_t::send_reply
CONF_SECTION * send_reply
Definition base.c:59
attr_status_code_message
static fr_dict_attr_t const * attr_status_code_message
Definition base.c:138
process_dhcpv6_sections_t::recv_solicit
CONF_SECTION * recv_solicit
Definition base.c:46
attr_status_code_value
static fr_dict_attr_t const * attr_status_code_value
Definition base.c:137
attr_relay_link_address
static fr_dict_attr_t const * attr_relay_link_address
Definition base.c:134
process_dhcpv6_t::move_failure_message_to_parent
bool move_failure_message_to_parent
If true, and a parent exists, and the parent is a DHCPv6 request, all module failure messages will ge...
Definition base.c:89
process_dhcpv6_sections_t::recv_request
CONF_SECTION * recv_request
Definition base.c:47
restore_field_list
static int restore_field_list(request_t *request, fr_pair_list_t *to_restore)
Definition base.c:485
process_dhcpv6_dict
fr_dict_autoload_t process_dhcpv6_dict[]
Definition base.c:123
process_dhcpv6_dict_enum
fr_dict_enum_autoload_t process_dhcpv6_dict_enum[]
Definition base.c:165
enum_status_code_success
static fr_value_box_t const * enum_status_code_success
Definition base.c:159
process_dhcpv6_rctx_t::server_id
fr_pair_list_t server_id
Definition base.c:105
status_code_add
static void status_code_add(process_dhcpv6_t const *inst, request_t *request, fr_value_box_t const **code)
Add a status code if one doesn't already exist.
Definition base.c:501
process_dhcpv6_t::server_cs
CONF_SECTION * server_cs
Our virtual server.
Definition base.c:70
restore_field
static int restore_field(request_t *request, fr_pair_t **to_restore)
Copy a reply pair back into the response.
Definition base.c:458
process_dhcpv6_sections_t::do_not_respond
CONF_SECTION * do_not_respond
Definition base.c:62
enum_status_code_no_binding
static fr_value_box_t const * enum_status_code_no_binding
Definition base.c:162
process_dhcpv6_rctx_t::client_id
fr_pair_list_t client_id
Definition base.c:104
process_dhcpv6_t::status_code_on_success
bool status_code_on_success
Controls whether we add a status-code option to outbound packets if the status code would be 0.
Definition base.c:73
process_dhcpv6_sections_t::recv_decline
CONF_SECTION * recv_decline
Definition base.c:52
attr_interface_id
static fr_dict_attr_t const * attr_interface_id
Definition base.c:132
attr_server_id
static fr_dict_attr_t const * attr_server_id
Definition base.c:130
process_dhcpv6_sections_t::recv_relay_forward
CONF_SECTION * recv_relay_forward
Definition base.c:56
process_dhcpv6_sections_t::deny_client
CONF_SECTION * deny_client
Definition base.c:66
enum_status_code_unspec_fail
static fr_value_box_t const * enum_status_code_unspec_fail
Definition base.c:160
process_dhcpv6_sections_t::recv_rebind
CONF_SECTION * recv_rebind
Definition base.c:50
dhcpv6_process_config
static conf_parser_t dhcpv6_process_config[]
Definition base.c:191
process_dhcpv6_sections_t::recv_release
CONF_SECTION * recv_release
Definition base.c:51
dhcpv6_client_fields_store
static int dhcpv6_client_fields_store(request_t *request, process_dhcpv6_rctx_t *rctx, bool expect_server_id)
Keep a copy of header fields to prevent them being tampered with.
Definition base.c:331
process_dhcpv6_rctx_t::transaction_id
fr_pair_t * transaction_id
Definition base.c:103
process_dhcpv6_sections_t::recv_renew
CONF_SECTION * recv_renew
Definition base.c:49
dhcpv6_packet_debug
static void dhcpv6_packet_debug(request_t *request, fr_packet_t const *packet, fr_pair_list_t const *list, bool received)
Definition base.c:279
process_dhcpv6_sections_t::new_client
CONF_SECTION * new_client
Definition base.c:64
process_dhcpv6_dict_attr
fr_dict_attr_autoload_t process_dhcpv6_dict_attr[]
Definition base.c:143
process_dhcpv6_rctx_t::result
unlang_result_t result
Definition base.c:106
process_dhcpv6_sections_t::add_client
CONF_SECTION * add_client
Definition base.c:65
process_dhcpv6_t::send_failure_message
bool send_failure_message
If true, all instances of Module-Failure-Message in the request are concatenated and returned in the ...
Definition base.c:79
process_dhcpv6_sections_t::recv_reconfigure
CONF_SECTION * recv_reconfigure
Definition base.c:53
dict_dhcpv6
static fr_dict_t const * dict_dhcpv6
Definition base.c:119
dhcpv6_relay_fields_store
static process_dhcpv6_relay_fields_t * dhcpv6_relay_fields_store(request_t *request)
Record the original hop-count, link-address, peer-address etc...
Definition base.c:628
attr_transaction_id
static fr_dict_attr_t const * attr_transaction_id
Definition base.c:136
attr_client_id
static fr_dict_attr_t const * attr_client_id
Definition base.c:129
enum_status_code_not_on_link
static fr_value_box_t const * enum_status_code_not_on_link
Definition base.c:161
process_dhcpv6_sections_t::recv_confirm
CONF_SECTION * recv_confirm
Definition base.c:48
mod_instantiate
static int mod_instantiate(module_inst_ctx_t const *mctx)
Definition base.c:753
process_dhcpv6_t::sections
process_dhcpv6_sections_t sections
Pointers to various config sections we need to execute.
Definition base.c:71
process_dhcpv6_sections_t::send_relay_reply
CONF_SECTION * send_relay_reply
Definition base.c:60
attr_relay_peer_address
static fr_dict_attr_t const * attr_relay_peer_address
Definition base.c:135
RECV
RECV(for_any_server)
Validate a solicit/rebind/confirm message.
Definition base.c:402
process_dhcpv6
fr_process_module_t process_dhcpv6
Definition base.c:1264
process_dhcpv6_rctx_t
Records fields from the original request so we have a known good copy.
Definition base.c:102
process_dhcpv6_relay_fields_t
Records fields from the original relay-request so we have a known good copy.
Definition base.c:112
process_dhcpv6_sections_t
Definition base.c:43
process_dhcpv6_t
Definition base.c:69
PROCESS_TRACE
#define PROCESS_TRACE
Trace each state function as it's entered.
Definition process.h:55
PROCESS_CONF_OFFSET
#define PROCESS_CONF_OFFSET(_x)
Definition process.h:79
fr_process_module_t::common
module_t common
Common fields for all loadable modules.
Definition process_types.h:39
fr_process_module_t
Common public symbol definition for all process modules.
Definition process_types.h:38
fr_dhcpv6_packet_names
char const * fr_dhcpv6_packet_names[FR_DHCPV6_CODE_MAX]
Definition base.c:72
fr_assert
#define fr_assert(_expr)
Definition rad_assert.h:38
REDEBUG
#define REDEBUG(fmt,...)
Definition radclient.h:52
RDEBUG_ENABLED
#define RDEBUG_ENABLED()
Definition radclient.h:49
send_reply
static void send_reply(int sockfd, fr_channel_data_t *reply)
Definition radius1_test.c:190
RETURN_UNLANG_INVALID
#define RETURN_UNLANG_INVALID
Definition rcode.h:62
RETURN_UNLANG_FAIL
#define RETURN_UNLANG_FAIL
Definition rcode.h:59
RLM_MODULE_INVALID
@ RLM_MODULE_INVALID
The module considers the request invalid.
Definition rcode.h:47
RLM_MODULE_OK
@ RLM_MODULE_OK
The module is OK, continue.
Definition rcode.h:45
RLM_MODULE_FAIL
@ RLM_MODULE_FAIL
Module failed, don't reply.
Definition rcode.h:44
RLM_MODULE_DISALLOW
@ RLM_MODULE_DISALLOW
Reject the request (user is locked out).
Definition rcode.h:48
RLM_MODULE_REJECT
@ RLM_MODULE_REJECT
Immediately reject the request.
Definition rcode.h:43
RLM_MODULE_TIMEOUT
@ RLM_MODULE_TIMEOUT
Module (or section) timed out.
Definition rcode.h:52
RLM_MODULE_NOTFOUND
@ RLM_MODULE_NOTFOUND
User not found.
Definition rcode.h:49
RLM_MODULE_UPDATED
@ RLM_MODULE_UPDATED
OK (pairs modified).
Definition rcode.h:51
RLM_MODULE_NOOP
@ RLM_MODULE_NOOP
Module succeeded without doing anything.
Definition rcode.h:50
RLM_MODULE_HANDLED
@ RLM_MODULE_HANDLED
The module handled the request, so stop.
Definition rcode.h:46
request_is_dynamic_client
#define request_is_dynamic_client(_x)
Definition request.h:188
fr_sbuff_trim_talloc
int fr_sbuff_trim_talloc(fr_sbuff_t *sbuff, size_t len)
Trim a talloced sbuff to the minimum length required to represent the contained string.
Definition sbuff.c:424
fr_sbuff_in_bstrncpy
ssize_t fr_sbuff_in_bstrncpy(fr_sbuff_t *sbuff, char const *str, size_t len)
Copy bytes into the sbuff up to the first \0.
Definition sbuff.c:1483
fr_sbuff_start
#define fr_sbuff_start(_sbuff_or_marker)
fr_sbuff_used
#define fr_sbuff_used(_sbuff_or_marker)
fr_sbuff_in_strcpy_literal
#define fr_sbuff_in_strcpy_literal(_sbuff, _str)
fr_sbuff_uctx_talloc_t
Talloc sbuff extension structure.
Definition sbuff.h:140
SECTION_NAME
#define SECTION_NAME(_name1, _name2)
Define a section name consisting of a verb and a noun.
Definition section.h:40
module_instance_s::conf
CONF_SECTION * conf
Module's instance configuration.
Definition module.h:349
module_instance_s::data
void * data
Module's instance data.
Definition module.h:291
MODULE_RCTX
#define MODULE_RCTX(_ctype)
Definition module.h:257
MODULE_INST
#define MODULE_INST(_ctype)
Definition module.h:255
module_s::config
conf_parser_t const * config
How to convert a CONF_SECTION to a module instance.
Definition module.h:206
pair_update_reply
#define pair_update_reply(_attr, _da)
Return or allocate a fr_pair_t in the reply list.
Definition pair.h:129
pair_delete_reply
#define pair_delete_reply(_pair_or_da)
Delete a fr_pair_t in the reply list.
Definition pair.h:181
unlang_module_yield_to_section
unlang_action_t unlang_module_yield_to_section(unlang_result_t *p_result, request_t *request, CONF_SECTION *subcs, rlm_rcode_t default_rcode, module_method_t resume, unlang_module_signal_t signal, fr_signal_t sigmask, void *rctx)
Definition module.c:236
inst
eap_aka_sim_process_conf_t * inst
Definition state_machine.c:3651
RESUME
#define RESUME(_x)
Definition state_machine.c:52
vp
fr_pair_t * vp
Definition state_machine.c:2293
pair_list_s
Definition pair.h:52
value_pair_s
Stores an attribute, a value and various bits of other data.
Definition pair.h:68
talloc_get_type_abort_const
#define talloc_get_type_abort_const
Definition talloc.h:244
fr_packet_t::code
unsigned int code
Packet code (type).
Definition packet.h:61
fr_packet_t::socket
fr_socket_t socket
This packet was received on.
Definition packet.h:57
fr_packet_t::id
int id
Packet ID (used to link requests/responses).
Definition packet.h:60
fr_packet_t
Definition packet.h:56
PAIR_VERIFY
#define PAIR_VERIFY(_x)
Definition pair.h:202
fr_pair_remove
fr_pair_t * fr_pair_remove(fr_pair_list_t *list, fr_pair_t *vp)
Remove fr_pair_t from a list without freeing.
Definition pair_inline.c:93
fr_pair_list_head
fr_pair_t * fr_pair_list_head(fr_pair_list_t const *list)
Get the head of a valuepair list.
Definition pair_inline.c:42
fr_socket_t::af
int af
AF_INET, AF_INET6, or AF_UNIX.
Definition socket.h:78
fr_value_box_copy
int fr_value_box_copy(TALLOC_CTX *ctx, fr_value_box_t *dst, const fr_value_box_t *src)
Copy value data verbatim duplicating any buffers.
Definition value.c:4174
fr_box_ipaddr
#define fr_box_ipaddr(_val)
Definition value.h:316
virtual_server_compile_s::section
section_name_t const * section
Identifier for the section.
Definition virtual_servers.h:133
COMPILE_TERMINATOR
#define COMPILE_TERMINATOR
Definition virtual_servers.h:143
virtual_server_compile_s
Processing sections which are allowed in this virtual server.
Definition virtual_servers.h:132
Generated by   doxygen 1.9.8