rlm__rediswho_8c_source.html

/*

 *   This program is is free software; you can redistribute it and/or modify

 *   it under the terms of the GNU General Public License as published by

 *   the Free Software Foundation; either version 2 of the License, or (at

 *   your option) any later version.

 *

 *   This program is distributed in the hope that it will be useful,

 *   but WITHOUT ANY WARRANTY; without even the implied warranty of

 *   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

 *   GNU General Public License for more details.

 *

 *   You should have received a copy of the GNU General Public License

 *   along with this program; if not, write to the Free Software

 *   Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA

 */


/**

 * $Id: 1c8a9200957305b9d3be94ddf8a30077c6fad248 $

 * @file rlm_rediswho.c

 * @brief Session tracking using redis.

 *

 * @author Gabriel Blanchard

 *

 * @copyright 2015 Arran Cudbard-Bell (a.cudbardb@freeradius.org)

 * @copyright 2011 TekSavvy Solutions (gabe@teksavvy.com)

 * @copyright 2000,2006 The FreeRADIUS server project

 */


RCSID("$Id: 1c8a9200957305b9d3be94ddf8a30077c6fad248 $")


#include <freeradius-devel/server/base.h>

#include <freeradius-devel/server/module_rlm.h>

#include <freeradius-devel/server/modpriv.h>

#include <freeradius-devel/util/debug.h>


#include <freeradius-devel/redis/base.h>

#include <freeradius-devel/redis/cluster.h>


typedef struct {

        fr_redis_conf_t         conf;           //!< Connection parameters for the Redis server.

                                                //!< Must be first field in this struct.


        fr_redis_cluster_t      *cluster;       //!< Pool O pools


        int                     expiry_time;    //!< Expiry time in seconds if no updates are received for a user


        int                     trim_count;     //!< How many session updates to keep track of per user.


        char const              *insert;        //!< Command for inserting session data

        char const              *trim;          //!< Command for trimming the session list.

        char const              *expire;        //!< Command for expiring entries.

} rlm_rediswho_t;


static conf_parser_t section_config[] = {

        { FR_CONF_OFFSET_FLAGS("insert", CONF_FLAG_REQUIRED | CONF_FLAG_XLAT, rlm_rediswho_t, insert) },

        { FR_CONF_OFFSET_FLAGS("trim", CONF_FLAG_XLAT, rlm_rediswho_t, trim) }, /* required only if trim_count > 0 */

        { FR_CONF_OFFSET_FLAGS("expire", CONF_FLAG_REQUIRED, rlm_rediswho_t, expire) },

        CONF_PARSER_TERMINATOR

};


static conf_parser_t module_config[] = {

        REDIS_COMMON_CONFIG,


        { FR_CONF_OFFSET("trim_count", rlm_rediswho_t, trim_count), .dflt = "-1" },


        /*

         *      These all smash the same variables, because we don't care about them right now.

         *      In 3.1, we should have a way of saying "parse a set of sub-sections according to a template"

         */

        { FR_CONF_POINTER("Start", 0, CONF_FLAG_SUBSECTION, NULL), .subcs = section_config },

        { FR_CONF_POINTER("Interim-Update", 0, CONF_FLAG_SUBSECTION, NULL), .subcs = section_config },

        { FR_CONF_POINTER("Stop", 0, CONF_FLAG_SUBSECTION, NULL), .subcs = section_config },

        { FR_CONF_POINTER("Accounting-On", 0, CONF_FLAG_SUBSECTION, NULL), .subcs = section_config },

        { FR_CONF_POINTER("Accounting-Off", 0, CONF_FLAG_SUBSECTION, NULL), .subcs = section_config },

        { FR_CONF_POINTER("Failed", 0, CONF_FLAG_SUBSECTION, NULL), .subcs = section_config },


        CONF_PARSER_TERMINATOR

};


static fr_dict_t const *dict_radius;


extern fr_dict_autoload_t rlm_rediswho_dict[];


fr_dict_autoload_t rlm_rediswho_dict[] = {

        { .out = &dict_radius, .proto = "radius" },

        { NULL }

};


static fr_dict_attr_t const *attr_acct_status_type;


extern fr_dict_attr_autoload_t rlm_rediswho_dict_attr[];


fr_dict_attr_autoload_t rlm_rediswho_dict_attr[] = {

        { .out = &attr_acct_status_type, .name = "Acct-Status-Type", .type = FR_TYPE_UINT32, .dict = &dict_radius },

        { NULL }

};


/*

 *      Query the database executing a command with no result rows

 */


static int rediswho_command(rlm_rediswho_t const *inst, request_t *request, char const *fmt)

{

        fr_redis_conn_t         *conn;


        int                     ret = -1;


        fr_redis_cluster_state_t        state;

        fr_redis_rcode_t                status;

        redisReply              *reply = NULL;

        int                     s_ret;


        uint8_t const           *key = NULL;

        size_t                  key_len = 0;


        int                     argc;

        char const              *argv[MAX_REDIS_ARGS];

        char                    argv_buf[MAX_REDIS_COMMAND_LEN];


        if (!fmt || !*fmt) return 0;


        argc = rad_expand_xlat(request, fmt, MAX_REDIS_ARGS, argv, false, sizeof(argv_buf), argv_buf);

        if (argc < 0) {

                RPEDEBUG("Invalid command: %s", fmt);

                return -1;

        }


        /*

         *      If we've got multiple arguments, the second one is usually the key.

         *      The Redis docs say commands should be analysed first to get key

         *      positions, but this involves sending them to the server, which is

         *      just as expensive as sending them to the wrong server and receiving

         *      a redirect.

         */

        if (argc > 1) {

                key = (uint8_t const *)argv[1];

                key_len = strlen((char const *)key);

        }


        for (s_ret = fr_redis_cluster_state_init(&state, &conn, inst->cluster, request, key, key_len, false);

             s_ret == REDIS_RCODE_TRY_AGAIN;    /* Continue */

             s_ret = fr_redis_cluster_state_next(&state, &conn, inst->cluster, request, status, &reply)) {

                reply = redisCommandArgv(conn->handle, argc, argv, NULL);

                status = fr_redis_command_status(conn, reply);

        }

        if (s_ret != REDIS_RCODE_SUCCESS) {

                RERROR("Failed inserting accounting data");

        error:

                fr_redis_reply_free(&reply);

                return -1;

        }

        if (!fr_cond_assert(reply)) goto error;


        /*

         *      Write the response to the debug log

         */

        fr_redis_reply_print(L_DBG_LVL_2, reply, request, 0);


        switch (reply->type) {

        case REDIS_REPLY_ERROR:

                break;


        case REDIS_REPLY_INTEGER:

                if (reply->integer > 0) ret = reply->integer;

                break;


        /*

         *      We don't know to interpret this, the user has probably messed

         *      up the queries, so print an error message and fail.

         */

        default:

                REDEBUG("Expected type \"integer\" got type \"%s\"",

                        fr_table_str_by_value(redis_reply_types, reply->type, "<UNKNOWN>"));

                break;

        }

        fr_redis_reply_free(&reply);


        return ret;

}


static unlang_action_t mod_accounting_all(rlm_rcode_t *p_result, rlm_rediswho_t const *inst, request_t *request,

                                          char const *insert,

                                          char const *trim,

                                          char const *expire)

{

        int ret;


        ret = rediswho_command(inst, request, insert);

        if (ret < 0) RETURN_MODULE_FAIL;


        /* Only trim if necessary */

        if ((inst->trim_count >= 0) && (ret > inst->trim_count)) {

                if (rediswho_command(inst, request, trim) < 0) RETURN_MODULE_FAIL;

        }


        if (rediswho_command(inst, request, expire) < 0) RETURN_MODULE_FAIL;

        RETURN_MODULE_OK;

}


static unlang_action_t CC_HINT(nonnull) mod_accounting(rlm_rcode_t *p_result, module_ctx_t const *mctx, request_t *request)

{

        rlm_rediswho_t const    *inst = talloc_get_type_abort_const(mctx->mi->data, rlm_rediswho_t);

        CONF_SECTION            *conf = mctx->mi->conf;

        rlm_rcode_t             rcode;

        fr_pair_t               *vp;

        fr_dict_enum_value_t    *dv;

        CONF_SECTION            *cs;

        char const              *insert, *trim, *expire;


        vp = fr_pair_find_by_da(&request->request_pairs, NULL, attr_acct_status_type);

        if (!vp) {

                RDEBUG2("Could not find account status type in packet");

                RETURN_MODULE_NOOP;

        }


        dv = fr_dict_enum_by_value(vp->da, &vp->data);

        if (!dv) {

                RDEBUG2("Unknown Acct-Status-Type %u", vp->vp_uint32);

                RETURN_MODULE_NOOP;

        }


        cs = cf_section_find(conf, dv->name, NULL);

        if (!cs) {

                RDEBUG2("No subsection %s", dv->name);

                RETURN_MODULE_NOOP;

        }


        insert = cf_pair_value(cf_pair_find(cs, "insert"));

        trim = cf_pair_value(cf_pair_find(cs, "trim"));

        expire = cf_pair_value(cf_pair_find(cs, "expire"));


        return mod_accounting_all(&rcode, inst, request, insert, trim, expire);

}


static int mod_instantiate(module_inst_ctx_t const *mctx)

{

        rlm_rediswho_t  *inst = talloc_get_type_abort(mctx->mi->data, rlm_rediswho_t);

        CONF_SECTION    *conf = mctx->mi->conf;


        inst->cluster = fr_redis_cluster_alloc(inst, conf, &inst->conf, true, NULL, NULL, NULL);

        if (!inst->cluster) return -1;


        return 0;

}


static int mod_load(void)

{

        fr_redis_version_print();


        return 0;

}


extern module_rlm_t rlm_rediswho;


module_rlm_t rlm_rediswho = {

        .common = {

                .magic          = MODULE_MAGIC_INIT,

                .name           = "rediswho",

                .inst_size      = sizeof(rlm_rediswho_t),

                .config         = module_config,

                .onload         = mod_load,

                .instantiate    = mod_instantiate

        },

        .method_group = {

                .bindings = (module_method_binding_t[]){

                        { .section = SECTION_NAME("accounting", CF_IDENT_ANY), .method = mod_accounting },

                        MODULE_BINDING_TERMINATOR

                }

        }

};


unlang_action_t
unlang_action_t
Returned by unlang_op_t calls, determine the next action of the interpreter.
Definition action.h:35

fmt
static int const char * fmt
Definition acutest.h:573

RCSID
#define RCSID(id)
Definition build.h:483

CONF_PARSER_TERMINATOR
#define CONF_PARSER_TERMINATOR
Definition cf_parse.h:642

FR_CONF_OFFSET
#define FR_CONF_OFFSET(_name, _struct, _field)
conf_parser_t which parses a single CONF_PAIR, writing the result to a field in a struct
Definition cf_parse.h:268

FR_CONF_POINTER
#define FR_CONF_POINTER(_name, _type, _flags, _res_p)
conf_parser_t which parses a single CONF_PAIR producing a single global result
Definition cf_parse.h:323

FR_CONF_OFFSET_FLAGS
#define FR_CONF_OFFSET_FLAGS(_name, _flags, _struct, _field)
conf_parser_t which parses a single CONF_PAIR, writing the result to a field in a struct
Definition cf_parse.h:256

CONF_FLAG_REQUIRED
@ CONF_FLAG_REQUIRED
Error out if no matching CONF_PAIR is found, and no dflt value is set.
Definition cf_parse.h:418

CONF_FLAG_XLAT
@ CONF_FLAG_XLAT
string will be dynamically expanded.
Definition cf_parse.h:429

CONF_FLAG_SUBSECTION
@ CONF_FLAG_SUBSECTION
Instead of putting the information into a configuration structure, the configuration file routines MA...
Definition cf_parse.h:412

conf_parser_s
Defines a CONF_PAIR to C data type mapping.
Definition cf_parse.h:579

cf_section
A section grouping multiple CONF_PAIR.
Definition cf_priv.h:101

cf_section_find
CONF_SECTION * cf_section_find(CONF_SECTION const *cs, char const *name1, char const *name2)
Find a CONF_SECTION with name1 and optionally name2.
Definition cf_util.c:1028

cf_pair_find
CONF_PAIR * cf_pair_find(CONF_SECTION const *cs, char const *attr)
Search for a CONF_PAIR with a specific name.
Definition cf_util.c:1439

cf_pair_value
char const * cf_pair_value(CONF_PAIR const *pair)
Return the value of a CONF_PAIR.
Definition cf_util.c:1594

CF_IDENT_ANY
#define CF_IDENT_ANY
Definition cf_util.h:78

fr_redis_cluster_alloc
fr_redis_cluster_t * fr_redis_cluster_alloc(TALLOC_CTX *ctx, CONF_SECTION *module, fr_redis_conf_t *conf, bool triggers_enabled, char const *log_prefix, char const *trigger_prefix, fr_pair_list_t *trigger_args)
Allocate and initialise a new cluster structure.
Definition cluster.c:2261

fr_redis_cluster_state_next
fr_redis_rcode_t fr_redis_cluster_state_next(fr_redis_cluster_state_t *state, fr_redis_conn_t **conn, fr_redis_cluster_t *cluster, request_t *request, fr_redis_rcode_t status, redisReply **reply)
Get the next connection to attempt a command against.
Definition cluster.c:1863

fr_redis_cluster_state_init
fr_redis_rcode_t fr_redis_cluster_state_init(fr_redis_cluster_state_t *state, fr_redis_conn_t **conn, fr_redis_cluster_t *cluster, request_t *request, uint8_t const *key, size_t key_len, bool read_only)
Resolve a key to a pool, and reserve a connection in that pool.
Definition cluster.c:1741

fr_redis_cluster
A redis cluster.
Definition cluster.c:251

fr_redis_cluster_state_t
Redis connection sequence state.
Definition cluster.h:49

fr_cond_assert
#define fr_cond_assert(_x)
Calls panic_action ifndef NDEBUG, else logs error and evaluates to value of _x.
Definition debug.h:139

fr_dict_enum_by_value
fr_dict_enum_value_t * fr_dict_enum_by_value(fr_dict_attr_t const *da, fr_value_box_t const *value)
Lookup the structure representing an enum value in a fr_dict_attr_t.
Definition dict_util.c:3349

fr_dict_attr_autoload_t::out
fr_dict_attr_t const  ** out
Where to write a pointer to the resolved fr_dict_attr_t.
Definition dict.h:268

fr_dict_autoload_t::out
fr_dict_t const  ** out
Where to write a pointer to the loaded/resolved fr_dict_t.
Definition dict.h:281

fr_dict_enum_value_t::name
char const  * name
Enum name.
Definition dict.h:228

fr_dict_attr_autoload_t
Specifies an attribute which must be present for the module to function.
Definition dict.h:267

fr_dict_autoload_t
Specifies a dictionary which must be loaded/loadable for the module to function.
Definition dict.h:280

fr_dict_enum_value_t
Value of an enumerated attribute.
Definition dict.h:227

MODULE_MAGIC_INIT
#define MODULE_MAGIC_INIT
Stop people using different module/library/server versions together.
Definition dl_module.h:63

RERROR
#define RERROR(fmt,...)
Definition log.h:298

RPEDEBUG
#define RPEDEBUG(fmt,...)
Definition log.h:376

rad_expand_xlat
int rad_expand_xlat(request_t *request, char const *cmd, int max_argc, char const *argv[], bool can_fail, size_t argv_buflen, char *argv_buf)
Split string into words and expand each one.
Definition util.c:599

L_DBG_LVL_2
@ L_DBG_LVL_2
2nd highest priority debug messages (-xx | -X).
Definition log.h:71

FR_TYPE_UINT32
@ FR_TYPE_UINT32
32 Bit unsigned integer.
Definition merged_model.c:99

uint8_t
unsigned char uint8_t
Definition merged_model.c:30

fr_dict_attr_t
Definition merged_model.c:133

fr_dict_t
Definition merged_model.c:198

request_t
Definition merged_model.c:210

module_ctx_t::mi
module_instance_t const  * mi
Instance of the module being instantiated.
Definition module_ctx.h:42

module_inst_ctx_t::mi
module_instance_t * mi
Instance of the module being instantiated.
Definition module_ctx.h:51

module_ctx_t
Temporary structure to hold arguments for module calls.
Definition module_ctx.h:41

module_inst_ctx_t
Temporary structure to hold arguments for instantiation calls.
Definition module_ctx.h:50

module_rlm_s::common
module_t common
Common fields presented by all modules.
Definition module_rlm.h:39

module_rlm_s
Definition module_rlm.h:38

fr_pair_find_by_da
fr_pair_t * fr_pair_find_by_da(fr_pair_list_t const *list, fr_pair_t const *prev, fr_dict_attr_t const *da)
Find the first pair with a matching da.
Definition pair.c:693

config
static const conf_parser_t config[]
Definition base.c:183

REDEBUG
#define REDEBUG(fmt,...)
Definition radclient.h:52

RDEBUG2
#define RDEBUG2(fmt,...)
Definition radclient.h:54

conf
static rs_t * conf
Definition radsniff.c:53

RETURN_MODULE_NOOP
#define RETURN_MODULE_NOOP
Definition rcode.h:62

RETURN_MODULE_OK
#define RETURN_MODULE_OK
Definition rcode.h:57

RETURN_MODULE_FAIL
#define RETURN_MODULE_FAIL
Definition rcode.h:56

rlm_rcode_t
rlm_rcode_t
Return codes indicating the result of the module call.
Definition rcode.h:40

MAX_REDIS_COMMAND_LEN
#define MAX_REDIS_COMMAND_LEN
Definition base.h:43

fr_redis_conn_t::handle
redisContext * handle
Hiredis context used when issuing commands.
Definition base.h:101

REDIS_COMMON_CONFIG
#define REDIS_COMMON_CONFIG
Definition base.h:133

MAX_REDIS_ARGS
#define MAX_REDIS_ARGS
Definition base.h:44

fr_redis_reply_print
void fr_redis_reply_print(fr_log_lvl_t lvl, redisReply *reply, request_t *request, int idx)
Print the response data in a useful treelike form.
Definition redis.c:141

fr_redis_reply_free
static void fr_redis_reply_free(redisReply **reply)
Wrap freeReplyObject so we consistently check for NULL pointers.
Definition base.h:64

fr_redis_version_print
void fr_redis_version_print(void)
Print the version of libhiredis the server was built against.
Definition redis.c:53

fr_redis_command_status
fr_redis_rcode_t fr_redis_command_status(fr_redis_conn_t *conn, redisReply *reply)
Check the reply for errors.
Definition redis.c:71

redis_reply_types
fr_table_num_sorted_t const redis_reply_types[]
Definition redis.c:30

fr_redis_rcode_t
fr_redis_rcode_t
Codes are ordered inversely by priority.
Definition base.h:87

REDIS_RCODE_SUCCESS
@ REDIS_RCODE_SUCCESS
Operation was successful.
Definition base.h:88

REDIS_RCODE_TRY_AGAIN
@ REDIS_RCODE_TRY_AGAIN
Try the operation again.
Definition base.h:90

fr_redis_conf_t
Configuration parameters for a redis connection.
Definition base.h:109

fr_redis_conn_t
Connection handle, holding a redis context.
Definition base.h:100

mod_load
static int mod_load(void)
Definition rlm_rediswho.c:243

rlm_rediswho_dict
fr_dict_autoload_t rlm_rediswho_dict[]
Definition rlm_rediswho.c:83

rlm_rediswho_dict_attr
fr_dict_attr_autoload_t rlm_rediswho_dict_attr[]
Definition rlm_rediswho.c:91

rlm_rediswho_t::trim_count
int trim_count
How many session updates to keep track of per user.
Definition rlm_rediswho.c:47

rlm_rediswho_t::expiry_time
int expiry_time
Expiry time in seconds if no updates are received for a user.
Definition rlm_rediswho.c:45

rlm_rediswho_t::conf
fr_redis_conf_t conf
Connection parameters for the Redis server.
Definition rlm_rediswho.c:40

rlm_rediswho_t::insert
char const  * insert
Command for inserting session data.
Definition rlm_rediswho.c:49

dict_radius
static fr_dict_t const  * dict_radius
Definition rlm_rediswho.c:80

rlm_rediswho_t::cluster
fr_redis_cluster_t * cluster
Pool O pools.
Definition rlm_rediswho.c:43

rlm_rediswho
module_rlm_t rlm_rediswho
Definition rlm_rediswho.c:251

mod_accounting
static unlang_action_t mod_accounting(rlm_rcode_t *p_result, module_ctx_t const *mctx, request_t *request)
Definition rlm_rediswho.c:197

section_config
static conf_parser_t section_config[]
Definition rlm_rediswho.c:54

attr_acct_status_type
static fr_dict_attr_t const  * attr_acct_status_type
Definition rlm_rediswho.c:88

rediswho_command
static int rediswho_command(rlm_rediswho_t const *inst, request_t *request, char const *fmt)
Definition rlm_rediswho.c:99

rlm_rediswho_t::expire
char const  * expire
Command for expiring entries.
Definition rlm_rediswho.c:51

mod_instantiate
static int mod_instantiate(module_inst_ctx_t const *mctx)
Definition rlm_rediswho.c:232

rlm_rediswho_t::trim
char const  * trim
Command for trimming the session list.
Definition rlm_rediswho.c:50

module_config
static conf_parser_t module_config[]
Definition rlm_rediswho.c:61

mod_accounting_all
static unlang_action_t mod_accounting_all(rlm_rcode_t *p_result, rlm_rediswho_t const *inst, request_t *request, char const *insert, char const *trim, char const *expire)
Definition rlm_rediswho.c:178

rlm_rediswho_t
Definition rlm_rediswho.c:39

instantiate
static int instantiate(module_inst_ctx_t const *mctx)
Definition rlm_rest.c:1310

SECTION_NAME
#define SECTION_NAME(_name1, _name2)
Define a section name consisting of a verb and a noun.
Definition section.h:40

module_instance_s::conf
CONF_SECTION * conf
Module's instance configuration.
Definition module.h:329

module_s::inst_size
size_t inst_size
Size of the module's instance data.
Definition module.h:203

module_instance_s::data
void * data
Module's instance data.
Definition module.h:271

MODULE_BINDING_TERMINATOR
#define MODULE_BINDING_TERMINATOR
Terminate a module binding list.
Definition module.h:151

module_method_binding_s
Named methods exported by a module.
Definition module.h:173

inst
eap_aka_sim_process_conf_t * inst
Definition state_machine.c:3620

vp
fr_pair_t * vp
Definition state_machine.c:2262

value_pair_s
Stores an attribute, a value and various bits of other data.
Definition pair.h:68

value_pair_s::da
fr_dict_attr_t const  *_CONST da
Dictionary attribute defines the attribute number, vendor and type of the pair.
Definition pair.h:69

fr_table_str_by_value
#define fr_table_str_by_value(_table, _number, _def)
Convert an integer to a string.
Definition table.h:772

talloc_get_type_abort_const
#define talloc_get_type_abort_const
Definition talloc.h:282

nonnull
int nonnull(2, 5))