1 /* See the file COPYING for licensing information. */
3 #if defined HAVE_CONFIG_H
12 #include <freeradius/libradius.h>
13 #include <event2/event.h>
14 #include <event2/bufferevent.h>
15 #include <radsec/radsec.h>
16 #include <radsec/radsec-impl.h>
19 #if defined (RS_ENABLE_TLS)
20 #include <event2/bufferevent_ssl.h>
21 #include <openssl/err.h>
25 #include <sys/socket.h>
26 #include <event2/buffer.h>
30 _do_send (struct rs_packet *pkt)
36 assert (!pkt->original);
38 vp = paircreate (PW_MESSAGE_AUTHENTICATOR, PW_TYPE_OCTETS);
40 return rs_err_conn_push_fl (pkt->conn, RSE_NOMEM, __FILE__, __LINE__,
41 "paircreate: %s", fr_strerror ());
42 pairadd (&pkt->rpkt->vps, vp);
44 if (rad_encode (pkt->rpkt, NULL, pkt->conn->active_peer->secret))
45 return rs_err_conn_push_fl (pkt->conn, RSE_FR, __FILE__, __LINE__,
46 "rad_encode: %s", fr_strerror ());
47 if (rad_sign (pkt->rpkt, NULL, pkt->conn->active_peer->secret))
48 return rs_err_conn_push_fl (pkt->conn, RSE_FR, __FILE__, __LINE__,
49 "rad_sign: %s", fr_strerror ());
52 char host[80], serv[80];
54 getnameinfo (pkt->conn->active_peer->addr->ai_addr,
55 pkt->conn->active_peer->addr->ai_addrlen,
56 host, sizeof(host), serv, sizeof(serv),
57 0 /* NI_NUMERICHOST|NI_NUMERICSERV*/);
58 rs_debug (("%s: about to send this to %s:%s:\n", __func__, host, serv));
63 err = bufferevent_write (pkt->conn->bev, pkt->rpkt->data,
66 return rs_err_conn_push_fl (pkt->conn, RSE_EVENT, __FILE__, __LINE__,
67 "bufferevent_write: %s",
68 evutil_gai_strerror (err));
73 _on_connect (struct rs_connection *conn)
75 conn->is_connected = 1;
76 rs_debug (("%s: %p connected\n", __func__, conn->active_peer));
77 if (conn->callbacks.connected_cb)
78 conn->callbacks.connected_cb (conn->user_data);
82 _on_disconnect (struct rs_connection *conn)
84 conn->is_connecting = 0;
85 conn->is_connected = 0;
86 rs_debug (("%s: %p disconnected\n", __func__, conn->active_peer));
87 if (conn->callbacks.disconnected_cb)
88 conn->callbacks.disconnected_cb (conn->user_data);
92 _event_cb (struct bufferevent *bev, short events, void *ctx)
94 struct rs_packet *pkt = (struct rs_packet *)ctx;
95 struct rs_connection *conn = NULL;
96 struct rs_peer *p = NULL;
98 #if defined (RS_ENABLE_TLS)
99 unsigned long tlserr = 0;
104 assert (pkt->conn->active_peer);
106 p = conn->active_peer;
108 conn->is_connecting = 0;
109 if (events & BEV_EVENT_CONNECTED)
113 rs_debug (("%s: error sending\n", __func__));
115 else if (events & BEV_EVENT_EOF)
117 _on_disconnect (conn);
119 else if (events & BEV_EVENT_TIMEOUT)
121 rs_debug (("%s: %p times out on %s\n", __func__, p,
122 (events & BEV_EVENT_READING) ? "read" : "write"));
123 rs_err_conn_push_fl (pkt->conn, RSE_IOTIMEOUT, __FILE__, __LINE__, NULL);
125 else if (events & BEV_EVENT_ERROR)
127 sockerr = evutil_socket_geterror (conn->active_peer->fd);
128 if (sockerr == 0) /* FIXME: True that errno == 0 means closed? */
130 _on_disconnect (conn);
134 rs_err_conn_push_fl (pkt->conn, RSE_SOCKERR, __FILE__, __LINE__,
135 "%d: socket error %d (%s)",
138 evutil_socket_error_to_string (sockerr));
139 rs_debug (("%s: socket error on fd %d: %s (%d)\n", __func__,
141 evutil_socket_error_to_string (sockerr),
144 #if defined (RS_ENABLE_TLS)
145 if (conn->tls_ssl) /* FIXME: correct check? */
147 for (tlserr = bufferevent_get_openssl_error (conn->bev);
149 tlserr = bufferevent_get_openssl_error (conn->bev))
151 rs_debug (("%s: openssl error: %s\n", __func__,
152 ERR_error_string (tlserr, NULL)));
153 rs_err_conn_push_fl (pkt->conn, RSE_SSLERR, __FILE__, __LINE__,
154 ERR_error_string (tlserr, NULL));
157 #endif /* RS_ENABLE_TLS */
161 if (events & BEV_EVENT_ERROR && events != BEV_EVENT_ERROR)
162 rs_debug (("%s: BEV_EVENT_ERROR and more: 0x%x\n", __func__, events));
167 _write_cb (struct bufferevent *bev, void *ctx)
169 struct rs_packet *pkt = (struct rs_packet *) ctx;
174 if (pkt->conn->callbacks.sent_cb)
175 pkt->conn->callbacks.sent_cb (pkt->conn->user_data);
178 /* Read one RADIUS packet header. Return !0 on error. A return value
179 of 0 means that we need more data. */
181 _read_header (struct rs_packet *pkt)
185 n = bufferevent_read (pkt->conn->bev, pkt->hdr, RS_HEADER_LEN);
186 if (n == RS_HEADER_LEN)
188 pkt->hdr_read_flag = 1;
189 pkt->rpkt->data_len = (pkt->hdr[2] << 8) + pkt->hdr[3];
190 if (pkt->rpkt->data_len < 20 || pkt->rpkt->data_len > 4096)
192 bufferevent_free (pkt->conn->bev); /* Close connection. */
193 return rs_err_conn_push (pkt->conn, RSE_INVALID_PKT,
194 "invalid packet length: %d",
195 pkt->rpkt->data_len);
197 pkt->rpkt->data = rs_malloc (pkt->conn->ctx, pkt->rpkt->data_len);
198 if (!pkt->rpkt->data)
200 bufferevent_free (pkt->conn->bev); /* Close connection. */
201 return rs_err_conn_push_fl (pkt->conn, RSE_NOMEM, __FILE__, __LINE__,
204 memcpy (pkt->rpkt->data, pkt->hdr, RS_HEADER_LEN);
205 bufferevent_setwatermark (pkt->conn->bev, EV_READ,
206 pkt->rpkt->data_len - RS_HEADER_LEN, 0);
207 rs_debug (("%s: packet header read, total pkt len=%d\n",
208 __func__, pkt->rpkt->data_len));
212 rs_debug (("%s: buffer frozen while reading header\n", __func__));
214 else /* Error: libevent gave us less than the low watermark. */
216 bufferevent_free (pkt->conn->bev); /* Close connection. */
217 return rs_err_conn_push_fl (pkt->conn, RSE_INTERNAL, __FILE__, __LINE__,
218 "got %d octets reading header", n);
225 _read_packet (struct rs_packet *pkt)
229 rs_debug (("%s: trying to read %d octets of packet data\n", __func__,
230 pkt->rpkt->data_len - RS_HEADER_LEN));
232 n = bufferevent_read (pkt->conn->bev,
233 pkt->rpkt->data + RS_HEADER_LEN,
234 pkt->rpkt->data_len - RS_HEADER_LEN);
236 rs_debug (("%s: read %ld octets of packet data\n", __func__, n));
238 if (n == pkt->rpkt->data_len - RS_HEADER_LEN)
240 bufferevent_disable (pkt->conn->bev, EV_READ);
241 rs_debug (("%s: complete packet read\n", __func__));
242 pkt->hdr_read_flag = 0;
243 memset (pkt->hdr, 0, sizeof(*pkt->hdr));
245 /* Checks done by rad_packet_ok:
246 - lenghts (FIXME: checks really ok for tcp?)
248 - attribute lengths >= 2
249 - attribute sizes adding up correctly */
250 if (!rad_packet_ok (pkt->rpkt, 0) != 0)
252 bufferevent_free (pkt->conn->bev); /* Close connection. */
253 return rs_err_conn_push_fl (pkt->conn, RSE_FR, __FILE__, __LINE__,
254 "invalid packet: %s", fr_strerror ());
257 /* TODO: Verify that reception of an unsolicited response packet
258 results in connection being closed. */
260 /* If we have a request to match this response against, verify
261 and decode the response. */
264 /* Verify header and message authenticator. */
265 if (rad_verify (pkt->rpkt, pkt->original->rpkt,
266 pkt->conn->active_peer->secret))
268 bufferevent_free (pkt->conn->bev); /* Close connection. */
269 return rs_err_conn_push_fl (pkt->conn, RSE_FR, __FILE__, __LINE__,
270 "rad_verify: %s", fr_strerror ());
273 /* Decode and decrypt. */
274 if (rad_decode (pkt->rpkt, pkt->original->rpkt,
275 pkt->conn->active_peer->secret))
277 bufferevent_free (pkt->conn->bev); /* Close connection. */
278 return rs_err_conn_push_fl (pkt->conn, RSE_FR, __FILE__, __LINE__,
279 "rad_decode: %s", fr_strerror ());
284 /* Find out what happens if there's data left in the buffer. */
287 rest = evbuffer_get_length (bufferevent_get_input (pkt->conn->bev));
289 rs_debug (("%s: returning with %d octets left in buffer\n", __func__,
294 /* Hand over message to user, changes ownership of pkt. Don't
295 touch it afterwards -- it might have been freed. */
296 if (pkt->conn->callbacks.received_cb)
297 pkt->conn->callbacks.received_cb (pkt, pkt->conn->user_data);
299 else if (n < 0) /* Buffer frozen. */
300 rs_debug (("%s: buffer frozen when reading packet\n", __func__));
301 else /* Short packet. */
302 rs_debug (("%s: waiting for another %d octets\n", __func__,
303 pkt->rpkt->data_len - RS_HEADER_LEN - n));
308 /* Read callback for TCP.
310 Read exactly one RADIUS message from BEV and store it in struct
311 rs_packet passed in CTX (hereby called 'pkt').
313 Verify the received packet against pkt->original, if !NULL.
315 Inform upper layer about successful reception of valid RADIUS
316 message by invoking conn->callbacks.recevied_cb(), if !NULL. */
318 _read_cb (struct bufferevent *bev, void *ctx)
320 struct rs_packet *pkt = (struct rs_packet *) ctx;
326 pkt->rpkt->sockfd = pkt->conn->fd;
327 pkt->rpkt->vps = NULL;
329 if (!pkt->hdr_read_flag)
330 if (_read_header (pkt))
336 _evlog_cb (int severity, const char *msg)
341 case _EVENT_LOG_DEBUG:
342 #if !defined (DEBUG_LEVENT)
350 case _EVENT_LOG_WARN:
360 fprintf (stderr, "libevent: [%s] %s\n", sevstr, msg); /* FIXME: stderr? */
364 _init_evb (struct rs_connection *conn)
370 event_enable_debug_mode ();
372 event_set_log_callback (_evlog_cb);
373 conn->evb = event_base_new ();
375 return rs_err_conn_push_fl (conn, RSE_EVENT, __FILE__, __LINE__,
382 _init_socket (struct rs_connection *conn, struct rs_peer *p)
388 conn->fd = socket (p->addr->ai_family, p->addr->ai_socktype,
389 p->addr->ai_protocol);
391 return rs_err_conn_push_fl (conn, RSE_SOME_ERROR, __FILE__, __LINE__,
393 if (evutil_make_socket_nonblocking (conn->fd) < 0)
395 evutil_closesocket (conn->fd);
397 return rs_err_conn_push_fl (conn, RSE_SOME_ERROR, __FILE__, __LINE__,
403 static struct rs_peer *
404 _pick_peer (struct rs_connection *conn)
408 if (conn->active_peer)
409 conn->active_peer = conn->active_peer->next; /* Next. */
410 if (!conn->active_peer)
411 conn->active_peer = conn->peers; /* From the top. */
413 return conn->active_peer;
417 _init_bev (struct rs_connection *conn, struct rs_peer *peer)
422 switch (conn->realm->type)
424 case RS_CONN_TYPE_UDP:
426 /* NOTE: We know this is wrong for several reasons, most notably
427 because libevent doesn't work as expected with UDP. The
428 timeout handling is wrong too. */
429 case RS_CONN_TYPE_TCP:
430 conn->bev = bufferevent_socket_new (conn->evb, conn->fd, 0);
432 return rs_err_conn_push_fl (conn, RSE_EVENT, __FILE__, __LINE__,
433 "bufferevent_socket_new");
436 #if defined (RS_ENABLE_TLS)
437 case RS_CONN_TYPE_TLS:
438 if (rs_tls_init (conn))
440 /* Would be convenient to pass BEV_OPT_CLOSE_ON_FREE but things
441 seem to break when be_openssl_ctrl() (in libevent) calls
442 SSL_set_bio() after BIO_new_socket() with flag=1. */
444 bufferevent_openssl_socket_new (conn->evb, conn->fd, conn->tls_ssl,
445 BUFFEREVENT_SSL_CONNECTING, 0);
447 return rs_err_conn_push_fl (conn, RSE_EVENT, __FILE__, __LINE__,
448 "bufferevent_openssl_socket_new");
451 case RS_CONN_TYPE_DTLS:
452 return rs_err_conn_push_fl (conn, RSE_NOSYS, __FILE__, __LINE__,
453 "%s: NYI", __func__);
454 #endif /* RS_ENABLE_TLS */
457 return rs_err_conn_push_fl (conn, RSE_INTERNAL, __FILE__, __LINE__,
458 "%s: unknown connection type: %d", __func__,
466 _do_connect (struct rs_connection *conn)
472 assert (conn->active_peer);
473 p = conn->active_peer;
477 char host[80], serv[80];
479 getnameinfo (p->addr->ai_addr,
481 host, sizeof(host), serv, sizeof(serv),
482 0 /* NI_NUMERICHOST|NI_NUMERICSERV*/);
483 rs_debug (("%s: connecting to %s:%s\n", __func__, host, serv));
487 err = bufferevent_socket_connect (p->conn->bev, p->addr->ai_addr,
488 p->addr->ai_addrlen);
490 rs_err_conn_push_fl (p->conn, RSE_EVENT, __FILE__, __LINE__,
491 "bufferevent_socket_connect: %s",
492 evutil_gai_strerror (err));
494 p->conn->is_connecting = 1;
498 _conn_open(struct rs_connection *conn, struct rs_packet *pkt)
500 if (_init_evb (conn))
503 if (!conn->active_peer)
505 if (!conn->active_peer)
506 return rs_err_conn_push_fl (conn, RSE_NOPEER, __FILE__, __LINE__, NULL);
508 if (_init_socket (conn, conn->active_peer))
511 if (_init_bev (conn, conn->active_peer))
514 if (!conn->is_connected)
515 if (!conn->is_connecting)
522 _conn_is_open_p (struct rs_connection *conn)
524 return conn->active_peer && conn->is_connected;
527 /* Public functions. */
529 rs_packet_create (struct rs_connection *conn, struct rs_packet **pkt_out)
536 rpkt = rad_alloc (1);
538 return rs_err_conn_push (conn, RSE_NOMEM, __func__);
539 rpkt->id = conn->nextid++;
541 p = (struct rs_packet *) malloc (sizeof (struct rs_packet));
545 return rs_err_conn_push (conn, RSE_NOMEM, __func__);
547 memset (p, 0, sizeof (struct rs_packet));
556 rs_packet_create_auth_request (struct rs_connection *conn,
557 struct rs_packet **pkt_out,
558 const char *user_name, const char *user_pw)
560 struct rs_packet *pkt;
561 struct rs_attr *attr;
563 if (rs_packet_create (conn, pkt_out))
566 pkt->rpkt->code = PW_AUTHENTICATION_REQUEST;
570 if (rs_attr_create (conn, &attr, "User-Name", user_name))
572 rs_packet_add_attr (pkt, attr);
576 if (rs_attr_create (conn, &attr, "User-Password", user_pw))
578 rs_packet_add_attr (pkt, attr);
585 /* User callback used when we're dispatching for user. */
587 _wcb (void *user_data)
589 struct rs_connection *conn = (struct rs_connection *) user_data;
594 /* When we're running the event loop for the user, we must break
595 it in order to give the control back to the user. */
596 err = event_base_loopbreak (conn->evb);
598 rs_err_conn_push_fl (conn, RSE_EVENT, __FILE__, __LINE__,
599 "event_base_loopbreak: %s",
600 evutil_gai_strerror (err));
604 rs_packet_send (struct rs_packet *pkt, void *user_data)
606 struct rs_connection *conn = NULL;
613 if (_conn_is_open_p (conn))
616 if (_conn_open (conn, pkt))
621 assert (conn->active_peer);
622 assert (conn->fd >= 0);
624 conn->user_data = user_data;
625 bufferevent_setcb (conn->bev, NULL, _write_cb, _event_cb, pkt);
627 /* Do dispatch, unless the user wants to do it herself. */
628 if (!conn->user_dispatch_flag)
630 conn->callbacks.sent_cb = _wcb;
631 conn->user_data = conn;
632 rs_debug (("%s: entering event loop\n", __func__));
633 err = event_base_dispatch (conn->evb);
635 return rs_err_conn_push_fl (pkt->conn, RSE_EVENT, __FILE__, __LINE__,
636 "event_base_dispatch: %s",
637 evutil_gai_strerror (err));
638 rs_debug (("%s: event loop done\n", __func__));
639 conn->callbacks.sent_cb = NULL;
640 conn->user_data = NULL;
642 if (!event_base_got_break (conn->evb))
650 _rcb (struct rs_packet *packet, void *user_data)
654 /* When we're running the event loop for the user, we must break it
655 in order to give the control back to the user. */
656 err = event_base_loopbreak (packet->conn->evb);
658 rs_err_conn_push_fl (packet->conn, RSE_EVENT, __FILE__, __LINE__,
659 "event_base_loopbreak: %s",
660 evutil_gai_strerror (err));
663 /* Special function used in libradsec blocking dispatching mode,
664 i.e. with socket set to block on read/write and with no libradsec
665 callbacks registered.
667 For any other use of libradsec, a the received_cb callback should
668 be registered in the callbacks member of struct rs_connection.
670 On successful reception, verification and decoding of a RADIUS
671 message, PKT_OUT will upon return point at a pointer to a struct
672 rs_packet containing the message.
674 If anything goes wrong or if the read times out (TODO: explain),
675 PKT_OUT will point at the NULL pointer and one or more errors are
676 pushed on the connection (available through rs_err_conn_pop()). */
679 rs_conn_receive_packet (struct rs_connection *conn,
680 struct rs_packet *request,
681 struct rs_packet **pkt_out)
684 struct rs_packet *pkt = NULL;
687 assert (conn->realm);
688 assert (!conn->user_dispatch_flag); /* Dispatching mode only. */
690 if (rs_packet_create (conn, pkt_out))
694 pkt->original = request;
698 assert (conn->active_peer);
699 assert (conn->fd >= 0);
701 /* Install callbacks with libevent. */
702 bufferevent_setwatermark (conn->bev, EV_READ, RS_HEADER_LEN, 0);
703 bufferevent_enable (conn->bev, EV_READ);
704 bufferevent_setcb (conn->bev, _read_cb, NULL, _event_cb, pkt);
706 /* Install read callback with ourselves, for breaking event
707 loop upon reception of a valid packet. */
708 conn->callbacks.received_cb = _rcb;
711 rs_debug (("%s: entering event loop\n", __func__));
712 err = event_base_dispatch (conn->evb);
713 conn->callbacks.received_cb = NULL;
715 return rs_err_conn_push_fl (pkt->conn, RSE_EVENT, __FILE__, __LINE__,
716 "event_base_dispatch: %s",
717 evutil_gai_strerror (err));
718 rs_debug (("%s: event loop done\n", __func__));
720 if (!event_base_got_break (conn->evb))
724 rs_dump_packet (pkt);
727 pkt->original = NULL; /* FIXME: Why? */
732 rs_packet_add_attr(struct rs_packet *pkt, struct rs_attr *attr)
734 pairadd (&pkt->rpkt->vps, attr->vp);
738 struct radius_packet *
739 rs_packet_frpkt(struct rs_packet *pkt)
746 rs_packet_destroy(struct rs_packet *pkt)
750 // FIXME: memory leak! TODO: free all attributes
751 rad_free (&pkt->rpkt);
752 rs_free (pkt->conn->ctx, pkt);