TACACS+ module. More...

#include <freeradius-devel/io/listen.h>
#include <freeradius-devel/io/master.h>
#include <freeradius-devel/util/debug.h>
#include <freeradius-devel/tacacs/tacacs.h>
#include "proto_tacacs.h"

Include dependency graph for proto_tacacs.c:

Go to the source code of this file.

Functions
static int	mod_decode (UNUSED void const instance, request_t request, uint8_t *const data, size_t data_len)
	Decode the packet. More...

static ssize_t	mod_encode (UNUSED void const instance, request_t request, uint8_t *buffer, size_t buffer_len)

static int	mod_instantiate (module_inst_ctx_t const *mctx)
	Instantiate the application. More...

static int	mod_load (void)

static int	mod_open (void instance, fr_schedule_t sc, UNUSED CONF_SECTION *conf)
	Open listen sockets/connect to external event source. More...

static int	mod_priority_set (void const instance, uint8_t const buffer, UNUSED size_t buflen)

static void	mod_unload (void)

static int	transport_parse (TALLOC_CTX ctx, void out, void parent, CONF_ITEM ci, conf_parser_t const *rule)

static int	type_parse (TALLOC_CTX ctx, void out, void parent, CONF_ITEM ci, UNUSED conf_parser_t const *rule)

static int	type_parse (UNUSED TALLOC_CTX ctx, void out, void parent, CONF_ITEM ci, UNUSED conf_parser_t const *rule)
	Translates the packet-type into a submodule name. More...

Variables
static fr_dict_attr_t const *	attr_packet_type

static fr_dict_attr_t const *	attr_tacacs_user_name

static fr_dict_t const *	dict_tacacs

static conf_parser_t const	limit_config []

static const conf_parser_t	priority_config []

fr_app_t	proto_tacacs

static const conf_parser_t	proto_tacacs_config []

fr_dict_autoload_t	proto_tacacs_dict []

fr_dict_attr_autoload_t	proto_tacacs_dict_attr []

Detailed Description

TACACS+ module.

Id: 79a73c6ee2af4c9de8084ad681be46e012273eab

Copyright: 2020 The FreeRADIUS server project.; 2020 Network RADIUS SAS (legal.nosp@m.@net.nosp@m.workr.nosp@m.adiu.nosp@m.s.com)

Definition in file proto_tacacs.c.

Function Documentation

◆ mod_decode()

static int mod_decode	(	UNUSED void const *	instance,
		request_t *	request,
		uint8_t *const	data,
		size_t	data_len
	)

static

Decode the packet.

Definition at line 151 of file proto_tacacs.c.

Here is the call graph for this function:

◆ mod_encode()

static ssize_t mod_encode	(	UNUSED void const *	instance,
		request_t *	request,
		uint8_t *	buffer,
		size_t	buffer_len
	)

static

Definition at line 316 of file proto_tacacs.c.

Here is the call graph for this function:

◆ mod_instantiate()

static int mod_instantiate ( module_inst_ctx_t const * mctx )

static

Instantiate the application.

Instantiate I/O and type submodules.

Returns

0 on success.
-1 on failure.

Definition at line 469 of file proto_tacacs.c.

Here is the call graph for this function:

◆ mod_load()

static int mod_load ( void )

static

Definition at line 531 of file proto_tacacs.c.

Here is the call graph for this function:

◆ mod_open()

static int mod_open	(	void *	instance,
		fr_schedule_t *	sc,
		UNUSED CONF_SECTION *	conf
	)

static

Open listen sockets/connect to external event source.

Parameters

[in]	instance	Ctx data for this application.
[in]	sc	to add our file descriptor to.
[in]	conf	Listen section parsed to give us instance.

Returns

0 on success.
-1 on failure.

Definition at line 448 of file proto_tacacs.c.

Here is the call graph for this function:

◆ mod_priority_set()

static int mod_priority_set	(	void const *	instance,
		uint8_t const *	buffer,
		UNUSED size_t	buflen
	)

static

Definition at line 415 of file proto_tacacs.c.

Here is the call graph for this function:

◆ mod_unload()

static void mod_unload ( void )

static

Definition at line 541 of file proto_tacacs.c.

Here is the call graph for this function:

◆ transport_parse()

static int transport_parse	(	TALLOC_CTX *	ctx,
		void *	out,
		void *	parent,
		CONF_ITEM *	ci,
		conf_parser_t const *	rule
	)

static

Definition at line 95 of file proto_tacacs.c.

Here is the call graph for this function:

◆ type_parse() [1/2]

static int type_parse	(	TALLOC_CTX *	ctx,
		void *	out,
		void *	parent,
		CONF_ITEM *	ci,
		UNUSED conf_parser_t const *	rule
	)

static

◆ type_parse() [2/2]

static int type_parse	(	UNUSED TALLOC_CTX *	ctx,
		void *	out,
		void *	parent,
		CONF_ITEM *	ci,
		UNUSED conf_parser_t const *	rule
	)

static

Translates the packet-type into a submodule name.

If we found a Packet-Type = Authentication-Start CONF_PAIR for example, here's we'd load the proto_tacacs_auth module.

Parameters

[in]	ctx	to allocate data in (instance of proto_tacacs).
[out]	out	Where to write a module_instance_t containing the module handle and instance.
[in]	parent	Base structure address.
[in]	ci	CONF_PAIR specifying the name of the type module.
[in]	rule	unused.

Returns

0 on success.
-1 on failure.

Definition at line 126 of file proto_tacacs.c.

Here is the call graph for this function:

Variable Documentation

◆ attr_packet_type

fr_dict_attr_t const* attr_packet_type

static

Definition at line 85 of file proto_tacacs.c.

◆ attr_tacacs_user_name

fr_dict_attr_t const* attr_tacacs_user_name

static

Definition at line 86 of file proto_tacacs.c.

◆ dict_tacacs

fr_dict_t const* dict_tacacs

static

Definition at line 76 of file proto_tacacs.c.

◆ limit_config

conf_parser_t const limit_config[]

static

Initial value:

= {
        { FR_CONF_OFFSET("idle_timeout", proto_tacacs_t, io.idle_timeout), .dflt = "30.0" } ,
 
        { FR_CONF_OFFSET("max_connections", proto_tacacs_t, io.max_connections), .dflt = "1024" } ,
 
        
        { FR_CONF_OFFSET("max_packet_size", proto_tacacs_t, max_packet_size) } ,
        { FR_CONF_OFFSET("num_messages", proto_tacacs_t, num_messages) } ,
 
        CONF_PARSER_TERMINATOR
}

Definition at line 39 of file proto_tacacs.c.

◆ priority_config

const conf_parser_t priority_config[]

static

Initial value:

= {
        { FR_CONF_OFFSET("Authentication-Start", proto_tacacs_t, priorities[FR_TAC_PLUS_AUTHEN]),
          .func = cf_table_parse_int, .uctx = &(cf_table_parse_ctx_t){ .table = channel_packet_priority, .len = &channel_packet_priority_len }, .dflt = "high" },
        { FR_CONF_OFFSET("Authentication-Continue", proto_tacacs_t, priorities[FR_TAC_PLUS_AUTHEN]),
          .func = cf_table_parse_int, .uctx = &(cf_table_parse_ctx_t){ .table = channel_packet_priority, .len = &channel_packet_priority_len }, .dflt = "high" },
        { FR_CONF_OFFSET("Authorization-Request", proto_tacacs_t, priorities[FR_TAC_PLUS_AUTHOR]),
          .func = cf_table_parse_int, .uctx = &(cf_table_parse_ctx_t){ .table = channel_packet_priority, .len = &channel_packet_priority_len }, .dflt = "normal" },
        { FR_CONF_OFFSET("Accounting-Request", proto_tacacs_t, priorities[FR_TAC_PLUS_ACCT]),
          .func = cf_table_parse_int, .uctx = &(cf_table_parse_ctx_t){ .table = channel_packet_priority, .len = &channel_packet_priority_len }, .dflt = "low" },
 
        CONF_PARSER_TERMINATOR
}

Definition at line 53 of file proto_tacacs.c.

◆ proto_tacacs

fr_app_t proto_tacacs

Initial value:

= {
        .common = {
                .magic                  = MODULE_MAGIC_INIT,
                .name                   = "tacacs",
                .config                 = proto_tacacs_config,
                .inst_size              = sizeof(proto_tacacs_t),
 
                .onload                 = mod_load,
                .unload                 = mod_unload,
                .instantiate            = mod_instantiate
        },
        .dict                   = &dict_tacacs,
        .open                   = mod_open,
        .decode                 = mod_decode,
        .encode                 = mod_encode,
        .priority               = mod_priority_set
}

Definition at line 546 of file proto_tacacs.c.

◆ proto_tacacs_config

const conf_parser_t proto_tacacs_config[]

static

Initial value:

= {
        { FR_CONF_OFFSET_FLAGS("type", CONF_FLAG_NOT_EMPTY, proto_tacacs_t, allowed_types), .func = type_parse },
        { FR_CONF_OFFSET_TYPE_FLAGS("transport", FR_TYPE_VOID, 0, proto_tacacs_t, io.submodule), .func = transport_parse },
 
        { FR_CONF_POINTER("limit", 0, CONF_FLAG_SUBSECTION, NULL), .subcs = (void const *) limit_config },
        { FR_CONF_POINTER("priority", 0, CONF_FLAG_SUBSECTION, NULL), .subcs = (void const *) priority_config },
 
        CONF_PARSER_TERMINATOR
}

Definition at line 66 of file proto_tacacs.c.

◆ proto_tacacs_dict

fr_dict_autoload_t proto_tacacs_dict

Initial value:

= {
        { .out = &dict_tacacs, .proto = "tacacs" },
        { NULL }
}

Definition at line 79 of file proto_tacacs.c.

◆ proto_tacacs_dict_attr

fr_dict_attr_autoload_t proto_tacacs_dict_attr

Initial value:

= {
        { .out = &attr_packet_type, .name = "Packet-Type", .type = FR_TYPE_UINT32, .dict = &dict_tacacs},
        { .out = &attr_tacacs_user_name, .name = "User-Name", .type = FR_TYPE_STRING, .dict = &dict_tacacs },
        { NULL }
}

Definition at line 89 of file proto_tacacs.c.

Functions

Variables

Detailed Description

Function Documentation

◆ mod_decode()

◆ mod_encode()

◆ mod_instantiate()

◆ mod_load()

◆ mod_open()

◆ mod_priority_set()

◆ mod_unload()

◆ transport_parse()

◆ type_parse() [1/2]

◆ type_parse() [2/2]

Variable Documentation

◆ attr_packet_type

◆ attr_tacacs_user_name

◆ dict_tacacs

◆ limit_config

◆ priority_config

◆ proto_tacacs

◆ proto_tacacs_config

◆ proto_tacacs_dict

◆ proto_tacacs_dict_attr