rlm_pap.c File Reference

Hashes plaintext passwords to compare against a prehashed reference. More...

#include <freeradius-devel/server/base.h>
#include <freeradius-devel/server/module_rlm.h>
#include <freeradius-devel/server/password.h>
#include <freeradius-devel/tls/base.h>
#include <freeradius-devel/tls/log.h>
#include <freeradius-devel/util/base64.h>
#include <freeradius-devel/util/debug.h>
#include <freeradius-devel/util/base16.h>
#include <freeradius-devel/util/md5.h>
#include <freeradius-devel/util/sha1.h>
#include <freeradius-devel/unlang/action.h>
#include <freeradius-devel/unlang/call_env.h>
#include <freeradius-devel/protocol/freeradius/freeradius.internal.password.h>
#include <ctype.h>
#include <unistd.h>
#include <pthread.h>

Include dependency graph for rlm_pap.c:

Go to the source code of this file.

Data Structures
struct	pap_call_env_t
struct	rlm_pap_t

Typedefs
typedef unlang_action_t(*	pap_auth_func_t) (unlang_result_t *p_result, rlm_pap_t const *inst, request_t *request, fr_pair_t const *, fr_value_box_t const *)

Functions
static unlang_action_t	mod_authenticate (unlang_result_t *p_result, module_ctx_t const *mctx, request_t *request)
static unlang_action_t	mod_authorize (unlang_result_t *p_result, module_ctx_t const *mctx, request_t *request)
static int	mod_instantiate (module_inst_ctx_t const *mctx)
static int	mod_load (void)
static void	mod_unload (void)
static unlang_action_t	pap_auth_clear (unlang_result_t *p_result, UNUSED rlm_pap_t const *inst, request_t *request, fr_pair_t const *known_good, fr_value_box_t const *password)
static unlang_action_t	pap_auth_dummy (unlang_result_t *p_result, UNUSED rlm_pap_t const *inst, UNUSED request_t *request, UNUSED fr_pair_t const *known_good, UNUSED fr_value_box_t const *password)
	Auth func for password types that should have been normalised away.
static unlang_action_t	pap_auth_md5 (unlang_result_t *p_result, UNUSED rlm_pap_t const *inst, request_t *request, fr_pair_t const *known_good, fr_value_box_t const *password)
static unlang_action_t	pap_auth_ns_mta_md5 (unlang_result_t *p_result, UNUSED rlm_pap_t const *inst, request_t *request, fr_pair_t const *known_good, fr_value_box_t const *password)
static unlang_action_t	pap_auth_nt (unlang_result_t *p_result, UNUSED rlm_pap_t const *inst, request_t *request, fr_pair_t const *known_good, fr_value_box_t const *password)
static unlang_action_t	pap_auth_sha1 (unlang_result_t *p_result, UNUSED rlm_pap_t const *inst, request_t *request, fr_pair_t const *known_good, fr_value_box_t const *password)
static unlang_action_t	pap_auth_smd5 (unlang_result_t *p_result, UNUSED rlm_pap_t const *inst, request_t *request, fr_pair_t const *known_good, fr_value_box_t const *password)
static unlang_action_t	pap_auth_ssha1 (unlang_result_t *p_result, UNUSED rlm_pap_t const *inst, request_t *request, fr_pair_t const *known_good, fr_value_box_t const *password)

Variables
static fr_dict_attr_t const *	attr_auth_type
static fr_dict_attr_t const *	attr_root
static const pap_auth_func_t	auth_func_table []
	Table of password types we can process.
static fr_dict_t const *	dict_freeradius
static USES_APPLE_DEPRECATED_API pthread_mutex_t	fr_crypt_mutex = PTHREAD_MUTEX_INITIALIZER
static const conf_parser_t	module_config []
static fr_dict_attr_t const **	pap_alloweds
static const call_env_method_t	pap_method_env
module_rlm_t	rlm_pap
static fr_dict_autoload_t	rlm_pap_dict []
static fr_dict_attr_autoload_t	rlm_pap_dict_attr []

Detailed Description

Hashes plaintext passwords to compare against a prehashed reference.

Id

632c90b783e8d40950670331dcbccc99f129570e

Copyright

2001-2012 The FreeRADIUS server project.

2012 Matthew Newton (matth.nosp@m.ew@n.nosp@m.ewton.nosp@m.comp.nosp@m.uting.nosp@m..co..nosp@m.uk)

2001 Kostas Kalevras (kkale.nosp@m.v@no.nosp@m.c.ntu.nosp@m.a.gr)

Definition in file rlm_pap.c.

---

Data Structure Documentation

pap_call_env_t

struct pap_call_env_t

Definition at line 86 of file rlm_pap.c.

Collaboration diagram for pap_call_env_t:

Data Fields
fr_value_box_t	password
tmpl_t *	password_tmpl

rlm_pap_t

struct rlm_pap_t

Definition at line 74 of file rlm_pap.c.

Collaboration diagram for rlm_pap_t:

Data Fields
fr_dict_enum_value_t const *	auth_type
bool	normify

Typedef Documentation

pap_auth_func_t

typedef unlang_action_t(* pap_auth_func_t) (unlang_result_t *p_result, rlm_pap_t const *inst, request_t *request, fr_pair_t const *, fr_value_box_t const *)

Definition at line 79 of file rlm_pap.c.

Function Documentation

mod_authenticate()

static unlang_action_t mod_authenticate ( unlang_result_t *  p_result, module_ctx_t const *  mctx, request_t *  request  )

static

Definition at line 1096 of file rlm_pap.c.

Here is the call graph for this function:

mod_authorize()

static unlang_action_t mod_authorize ( unlang_result_t *  p_result, module_ctx_t const *  mctx, request_t *  request  )

static

Definition at line 149 of file rlm_pap.c.

Here is the call graph for this function:

mod_instantiate()

static int mod_instantiate ( module_inst_ctx_t const *  mctx )

static

Definition at line 1173 of file rlm_pap.c.

Here is the call graph for this function:

mod_load()

static int mod_load ( void  )

static

Definition at line 1186 of file rlm_pap.c.

Here is the call graph for this function:

mod_unload()

static void mod_unload ( void  )

static

Definition at line 1237 of file rlm_pap.c.

Here is the call graph for this function:

pap_auth_clear()

static unlang_action_t pap_auth_clear ( unlang_result_t *  p_result, UNUSED rlm_pap_t const *  inst, request_t *  request, fr_pair_t const *  known_good, fr_value_box_t const *  password  )

static

Definition at line 179 of file rlm_pap.c.

Here is the call graph for this function:

pap_auth_dummy()

static unlang_action_t pap_auth_dummy ( unlang_result_t *  p_result, UNUSED rlm_pap_t const *  inst, UNUSED request_t *  request, UNUSED fr_pair_t const *  known_good, UNUSED fr_value_box_t const *  password  )

static

Auth func for password types that should have been normalised away.

Definition at line 1042 of file rlm_pap.c.

pap_auth_md5()

static unlang_action_t pap_auth_md5 ( unlang_result_t *  p_result, UNUSED rlm_pap_t const *  inst, request_t *  request, fr_pair_t const *  known_good, fr_value_box_t const *  password  )

static

Definition at line 235 of file rlm_pap.c.

Here is the call graph for this function:

pap_auth_ns_mta_md5()

static unlang_action_t pap_auth_ns_mta_md5 ( unlang_result_t *  p_result, UNUSED rlm_pap_t const *  inst, request_t *  request, fr_pair_t const *  known_good, fr_value_box_t const *  password  )

static

Definition at line 977 of file rlm_pap.c.

Here is the call graph for this function:

pap_auth_nt()

static unlang_action_t pap_auth_nt ( unlang_result_t *  p_result, UNUSED rlm_pap_t const *  inst, request_t *  request, fr_pair_t const *  known_good, fr_value_box_t const *  password  )

static

Definition at line 942 of file rlm_pap.c.

Here is the call graph for this function:

pap_auth_sha1()

static unlang_action_t pap_auth_sha1 ( unlang_result_t *  p_result, UNUSED rlm_pap_t const *  inst, request_t *  request, fr_pair_t const *  known_good, fr_value_box_t const *  password  )

static

Definition at line 294 of file rlm_pap.c.

Here is the call graph for this function:

pap_auth_smd5()

static unlang_action_t pap_auth_smd5 ( unlang_result_t *  p_result, UNUSED rlm_pap_t const *  inst, request_t *  request, fr_pair_t const *  known_good, fr_value_box_t const *  password  )

static

Definition at line 261 of file rlm_pap.c.

Here is the call graph for this function:

pap_auth_ssha1()

static unlang_action_t pap_auth_ssha1 ( unlang_result_t *  p_result, UNUSED rlm_pap_t const *  inst, request_t *  request, fr_pair_t const *  known_good, fr_value_box_t const *  password  )

static

Definition at line 322 of file rlm_pap.c.

Here is the call graph for this function:

Variable Documentation

attr_auth_type

fr_dict_attr_t const* attr_auth_type

static

Definition at line 109 of file rlm_pap.c.

attr_root

fr_dict_attr_t const* attr_root

static

Definition at line 110 of file rlm_pap.c.

auth_func_table

const pap_auth_func_t auth_func_table[]

static

Table of password types we can process.

Definition at line 1052 of file rlm_pap.c.

dict_freeradius

fr_dict_t const* dict_freeradius

static

Definition at line 102 of file rlm_pap.c.

fr_crypt_mutex

USES_APPLE_DEPRECATED_API pthread_mutex_t fr_crypt_mutex = PTHREAD_MUTEX_INITIALIZER

static

Definition at line 64 of file rlm_pap.c.

module_config

const conf_parser_t module_config[]

static

Initial value:

= {
        { FR_CONF_OFFSET("normalise", rlm_pap_t, normify), .dflt = "yes" },
        CONF_PARSER_TERMINATOR
}

Definition at line 81 of file rlm_pap.c.

pap_alloweds

fr_dict_attr_t const** pap_alloweds

static

Definition at line 141 of file rlm_pap.c.

pap_method_env

const call_env_method_t pap_method_env

static

Initial value:

= {
        .inst_size = sizeof(pap_call_env_t),
        .inst_type = "pap_call_env_t",
        .env = (call_env_parser_t[]) {
                { FR_CALL_ENV_PARSE_OFFSET("password_attribute", FR_TYPE_STRING,
                                          CALL_ENV_FLAG_ATTRIBUTE | CALL_ENV_FLAG_REQUIRED | CALL_ENV_FLAG_NULLABLE,
                                          pap_call_env_t, password, password_tmpl), .pair.dflt = "User-Password", .pair.dflt_quote = T_BARE_WORD },
                CALL_ENV_TERMINATOR
        }
}

Definition at line 91 of file rlm_pap.c.

rlm_pap

module_rlm_t rlm_pap

Initial value:

= {
        .common = {
                .magic          = MODULE_MAGIC_INIT,
                .name           = "pap",
                .inst_size      = sizeof(rlm_pap_t),
                .onload         = mod_load,
                .unload         = mod_unload,
                .config         = module_config,
                .instantiate    = mod_instantiate
        },
        .method_group = {
                .bindings = (module_method_binding_t[]){
                        
                        { .section = SECTION_NAME("authenticate", CF_IDENT_ANY), .method = mod_authenticate, .method_env = &pap_method_env },
                        { .section = SECTION_NAME("authorize", CF_IDENT_ANY), .method = mod_authorize, .method_env = &pap_method_env },
                        { .section = SECTION_NAME(CF_IDENT_ANY, CF_IDENT_ANY), .method = mod_authorize, .method_env = &pap_method_env },
 
                        MODULE_BINDING_TERMINATOR
                }
        }
}

Definition at line 1253 of file rlm_pap.c.

rlm_pap_dict

fr_dict_autoload_t rlm_pap_dict[]

static

Initial value:

= {
        { .out = &dict_freeradius, .proto = "freeradius" },
        DICT_AUTOLOAD_TERMINATOR
}

Definition at line 104 of file rlm_pap.c.

rlm_pap_dict_attr

fr_dict_attr_autoload_t rlm_pap_dict_attr[]

static

Initial value:

= {
        { .out = &attr_auth_type, .name = "Auth-Type", .type = FR_TYPE_UINT32, .dict = &dict_freeradius },
        { .out = &attr_root, .name = "Password", .type = FR_TYPE_TLV, .dict = &dict_freeradius },
 
        DICT_AUTOLOAD_TERMINATOR
}

Definition at line 112 of file rlm_pap.c.