2 * conffile.c Read the radiusd.conf file.
4 * Yep I should learn to use lex & yacc, or at least
5 * write a decent parser. I know how to do that, really :)
10 * This program is free software; you can redistribute it and/or modify
11 * it under the terms of the GNU General Public License as published by
12 * the Free Software Foundation; either version 2 of the License, or
13 * (at your option) any later version.
15 * This program is distributed in the hope that it will be useful,
16 * but WITHOUT ANY WARRANTY; without even the implied warranty of
17 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
18 * GNU General Public License for more details.
20 * You should have received a copy of the GNU General Public License
21 * along with this program; if not, write to the Free Software
22 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA
24 * Copyright 2000,2006 The FreeRADIUS server project
25 * Copyright 2000 Miquel van Smoorenburg <miquels@cistron.nl>
26 * Copyright 2000 Alan DeKok <aland@ox.org>
29 #include <freeradius-devel/ident.h>
32 #include <freeradius-devel/radiusd.h>
33 #include <freeradius-devel/rad_assert.h>
39 #ifdef HAVE_SYS_STAT_H
45 typedef enum conf_type {
46 CONF_ITEM_INVALID = 0,
53 struct conf_item *next;
54 struct conf_part *parent;
70 struct conf_item *children;
71 struct conf_item *tail; /* for speed */
72 CONF_SECTION *template;
73 rbtree_t *pair_tree; /* and a partridge.. */
74 rbtree_t *section_tree; /* no jokes here */
75 rbtree_t *name2_tree; /* for sections of the same name2 */
79 const CONF_PARSER *variables;
84 * Internal data that is associated with a configuration section,
85 * so that we don't have to track it separately.
91 void *data; /* user data */
92 void (*free)(void *); /* free user data function */
96 static int cf_data_add_internal(CONF_SECTION *cs, const char *name,
97 void *data, void (*data_free)(void *),
99 static void *cf_data_find_internal(CONF_SECTION *cs, const char *name,
102 int cf_log_config = 1;
103 int cf_log_modules = 1;
106 * Isolate the scary casts in these tiny provably-safe functions
108 CONF_PAIR *cf_itemtopair(CONF_ITEM *ci)
112 rad_assert(ci->type == CONF_ITEM_PAIR);
113 return (CONF_PAIR *)ci;
115 CONF_SECTION *cf_itemtosection(CONF_ITEM *ci)
119 rad_assert(ci->type == CONF_ITEM_SECTION);
120 return (CONF_SECTION *)ci;
122 CONF_ITEM *cf_pairtoitem(CONF_PAIR *cp)
126 return (CONF_ITEM *)cp;
128 CONF_ITEM *cf_sectiontoitem(CONF_SECTION *cs)
132 return (CONF_ITEM *)cs;
135 static CONF_DATA *cf_itemtodata(CONF_ITEM *ci)
139 rad_assert(ci->type == CONF_ITEM_DATA);
140 return (CONF_DATA *)ci;
142 static CONF_ITEM *cf_datatoitem(CONF_DATA *cd)
146 return (CONF_ITEM *)cd;
150 * Create a new CONF_PAIR
152 static CONF_PAIR *cf_pair_alloc(const char *attr, const char *value,
153 FR_TOKEN operator, FR_TOKEN value_type,
154 CONF_SECTION *parent)
157 size_t attr_len, value_len = 0;
160 if (!attr) return NULL;
161 attr_len = strlen(attr) + 1;
162 if (value) value_len = strlen(value) + 1;
164 p = rad_malloc(sizeof(*cp) + attr_len + value_len);
166 cp = (CONF_PAIR *) p;
167 memset(cp, 0, sizeof(*cp));
168 cp->item.type = CONF_ITEM_PAIR;
169 cp->item.parent = parent;
172 memcpy(p, attr, attr_len);
177 memcpy(p, value, value_len);
180 cp->value_type = value_type;
181 cp->operator = operator;
189 void cf_pair_free(CONF_PAIR **cp)
191 if (!cp || !*cp) return;
194 * attr && value are allocated contiguous with cp.
198 memset(*cp, 0, sizeof(*cp));
206 static void cf_data_free(CONF_DATA **cd)
208 if (!cd || !*cd) return;
210 /* name is allocated contiguous with cd */
214 ((*cd)->free)((*cd)->data);
217 memset(*cd, 0, sizeof(*cd));
224 * rbtree callback function
226 static int pair_cmp(const void *a, const void *b)
228 const CONF_PAIR *one = a;
229 const CONF_PAIR *two = b;
231 return strcmp(one->attr, two->attr);
236 * rbtree callback function
238 static int section_cmp(const void *a, const void *b)
240 const CONF_SECTION *one = a;
241 const CONF_SECTION *two = b;
243 return strcmp(one->name1, two->name1);
248 * rbtree callback function
250 static int name2_cmp(const void *a, const void *b)
252 const CONF_SECTION *one = a;
253 const CONF_SECTION *two = b;
255 rad_assert(strcmp(one->name1, two->name1) == 0);
257 if (!one->name2 && !two->name2) return 0;
258 if (!one->name2) return -1;
259 if (!two->name2) return +1;
261 return strcmp(one->name2, two->name2);
266 * rbtree callback function
268 static int data_cmp(const void *a, const void *b)
272 const CONF_DATA *one = a;
273 const CONF_DATA *two = b;
275 rcode = one->flag - two->flag;
276 if (rcode != 0) return rcode;
278 return strcmp(one->name, two->name);
283 * Free strings we've parsed into data structures.
285 void cf_section_parse_free(CONF_SECTION *cs, void *base)
288 const CONF_PARSER *variables = cs->variables;
291 * Don't automatically free the strings if we're being
292 * called from a module. This is also for clients.c,
293 * where client_free() expects to be able to free the
294 * client structure. If we moved everything to key off
295 * of the config files, we might solve some problems...
297 if (!variables) return;
300 * Free up dynamically allocated string pointers.
302 for (i = 0; variables[i].name != NULL; i++) {
305 if ((variables[i].type != PW_TYPE_STRING_PTR) &&
306 (variables[i].type != PW_TYPE_FILENAME)) {
311 * No base struct offset, data must be the pointer.
312 * If data doesn't exist, ignore the entry, there
313 * must be something wrong.
316 if (!variables[i].data) {
320 p = (char **) variables[i].data;;
322 } else if (variables[i].data) {
323 p = (char **) variables[i].data;;
326 p = (char **) (((char *)base) + variables[i].offset);
336 * Free a CONF_SECTION
338 void cf_section_free(CONF_SECTION **cs)
340 CONF_ITEM *ci, *next;
342 if (!cs || !*cs) return;
344 cf_section_parse_free(*cs, (*cs)->base);
346 for (ci = (*cs)->children; ci; ci = next) {
350 case CONF_ITEM_PAIR: {
351 CONF_PAIR *pair = cf_itemtopair(ci);
356 case CONF_ITEM_SECTION: {
357 CONF_SECTION *section = cf_itemtosection(ci);
358 cf_section_free(§ion);
362 case CONF_ITEM_DATA: {
363 CONF_DATA *data = cf_itemtodata(ci);
368 default: /* should really be an error. */
374 * Name1 and name2 are allocated contiguous with
377 if ((*cs)->pair_tree)
378 rbtree_free((*cs)->pair_tree);
379 if ((*cs)->section_tree)
380 rbtree_free((*cs)->section_tree);
381 if ((*cs)->name2_tree)
382 rbtree_free((*cs)->name2_tree);
383 if ((*cs)->data_tree)
384 rbtree_free((*cs)->data_tree);
387 * And free the section
390 memset(*cs, 0, sizeof(*cs));
399 * Allocate a CONF_SECTION
401 static CONF_SECTION *cf_section_alloc(const char *name1, const char *name2,
402 CONF_SECTION *parent)
404 size_t name1_len, name2_len = 0;
408 if (!name1) return NULL;
410 name1_len = strlen(name1) + 1;
411 if (name2) name2_len = strlen(name2) + 1;
413 p = rad_malloc(sizeof(*cs) + name1_len + name2_len);
415 cs = (CONF_SECTION *) p;
416 memset(cs, 0, sizeof(*cs));
417 cs->item.type = CONF_ITEM_SECTION;
418 cs->item.parent = parent;
421 memcpy(p, name1, name1_len);
424 if (name2 && *name2) {
426 memcpy(p, name2, name2_len);
430 cs->pair_tree = rbtree_create(pair_cmp, NULL, 0);
431 if (!cs->pair_tree) {
432 cf_section_free(&cs);
437 * Don't create a data tree, it may not be needed.
441 * Don't create the section tree here, it may not
445 if (parent) cs->depth = parent->depth + 1;
452 * Add an item to a configuration section.
454 static void cf_item_add(CONF_SECTION *cs, CONF_ITEM *ci)
457 rad_assert(cs->tail == NULL);
460 rad_assert(cs->tail != NULL);
465 * Update the trees (and tail) for each item added.
467 for (/* nothing */; ci != NULL; ci = ci->next) {
471 * For fast lookups, pair's and sections get
476 rbtree_insert(cs->pair_tree, ci);
479 case CONF_ITEM_SECTION: {
480 CONF_SECTION *cs_new = cf_itemtosection(ci);
482 if (!cs->section_tree) {
483 cs->section_tree = rbtree_create(section_cmp, NULL, 0);
484 /* ignore any errors */
487 if (cs->section_tree) {
488 rbtree_insert(cs->section_tree, cs_new); }
491 * Two names: find the named instance.
494 CONF_SECTION *old_cs;
498 * CONF_SECTION having
499 * the given name1, and
503 old_cs = rbtree_finddata(cs->section_tree, cs_new);
504 if (!old_cs) return; /* this is a bad error! */
506 if (!old_cs->name2_tree) {
507 old_cs->name2_tree = rbtree_create(name2_cmp,
510 if (old_cs->name2_tree) {
511 rbtree_insert(old_cs->name2_tree, cs_new);
515 } /* was a section */
518 if (!cs->data_tree) {
519 cs->data_tree = rbtree_create(data_cmp, NULL, 0);
522 rbtree_insert(cs->data_tree, ci);
526 default: /* FIXME: assert & error! */
529 } /* switch over conf types */
534 CONF_ITEM *cf_reference_item(const CONF_SECTION *parentcs,
535 CONF_SECTION *outercs,
540 const CONF_SECTION *cs = outercs;
544 strlcpy(name, ptr, sizeof(name));
548 * ".foo" means "foo from the current section"
554 * ..foo means "foo from the section
555 * enclosing this section" (etc.)
559 cs = cs->item.parent;
564 * "foo.bar.baz" means "from the root"
566 } else if (strchr(p, '.') != NULL) {
577 if (r && q > r) q = NULL;
578 if (q && q < r) r = NULL;
584 q = strchr(r + 1, ']');
585 if (!q) return NULL; /* parse error */
588 * Points to foo[bar]xx: parse error,
589 * it should be foo[bar] or foo[bar].baz
591 if (q[1] && q[1] != '.') goto no_such_item;
595 next = cf_section_sub_find_name2(cs, p, r + 1);
600 * Points to a named instance of a section.
603 if (!next) goto no_such_item;
604 return cf_sectiontoitem(next);
607 q++; /* ensure we skip the ']' and '.' */
611 next = cf_section_sub_find(cs, p);
615 if (!next) break; /* it MAY be a pair in this section! */
621 if (!*p) goto no_such_item;
625 * Find it in the current referenced
628 cp = cf_pair_find(cs, p);
629 if (cp) return cf_pairtoitem(cp);
631 next = cf_section_sub_find(cs, p);
632 if (next) return cf_sectiontoitem(next);
635 * "foo" is "in the current section, OR in main".
637 if ((p == name) && (cs != parentcs)) {
643 DEBUG2("WARNING: No such configuration item %s", ptr);
648 CONF_SECTION *cf_top_section(CONF_SECTION *cs)
650 while (cs->item.parent != NULL) {
651 cs = cs->item.parent;
659 * Expand the variables in an input string.
661 static const char *cf_expand_variables(const char *cf, int *lineno,
662 CONF_SECTION *outercs,
663 char *output, const char *input)
666 const char *end, *ptr;
667 const CONF_SECTION *parentcs;
671 * Find the master parent conf section.
672 * We can't use mainconfig.config, because we're in the
673 * process of re-building it, and it isn't set up yet...
675 parentcs = cf_top_section(outercs);
681 * Ignore anything other than "${"
683 if ((*ptr == '$') && (ptr[1] == '{')) {
688 * FIXME: Add support for ${foo:-bar},
693 * Look for trailing '}', and log a
694 * warning for anything that doesn't match,
695 * and exit with a fatal error.
697 end = strchr(ptr, '}');
700 radlog(L_INFO, "%s[%d]: Variable expansion missing }",
708 * Can't really happen because input lines are
709 * capped at 8k, which is sizeof(name)
711 if ((size_t) (end - ptr) >= sizeof(name)) {
712 radlog(L_ERR, "%s[%d]: Reference string is too large",
717 memcpy(name, ptr, end - ptr);
718 name[end - ptr] = '\0';
720 ci = cf_reference_item(parentcs, outercs, name);
721 if (!ci || (ci->type != CONF_ITEM_PAIR)) {
722 radlog(L_ERR, "%s[%d]: Reference \"%s\" not found",
728 * Substitute the value of the variable.
730 cp = cf_itemtopair(ci);
731 strcpy(p, cp->value);
735 } else if (memcmp(ptr, "$ENV{", 5) == 0) {
741 * Look for trailing '}', and log a
742 * warning for anything that doesn't match,
743 * and exit with a fatal error.
745 end = strchr(ptr, '}');
748 radlog(L_INFO, "%s[%d]: Environment variable expansion missing }",
754 * Can't really happen because input lines are
755 * capped at 8k, which is sizeof(name)
757 if ((size_t) (end - ptr) >= sizeof(name)) {
758 radlog(L_ERR, "%s[%d]: Environment variable name is too large",
763 memcpy(name, ptr, end - ptr);
764 name[end - ptr] = '\0';
767 * Get the environment variable.
768 * If none exists, then make it an empty string.
782 * Copy it over verbatim.
786 } /* loop over all of the input string. */
795 * Parses an item (not a CONF_ITEM) into the specified format,
796 * with a default value.
798 * Returns -1 on error, 0 for correctly parsed, and 1 if the
799 * default value was used. Note that the default value will be
800 * used ONLY if the CONF_PAIR is NULL.
802 int cf_item_parse(CONF_SECTION *cs, const char *name,
803 int type, void *data, const char *dflt)
812 cp = cf_pair_find(cs, name);
817 return 1; /* nothing to parse, return default value */
829 case PW_TYPE_BOOLEAN:
831 * Allow yes/no and on/off
833 if ((strcasecmp(value, "yes") == 0) ||
834 (strcasecmp(value, "on") == 0)) {
836 } else if ((strcasecmp(value, "no") == 0) ||
837 (strcasecmp(value, "off") == 0)) {
841 radlog(L_ERR, "Bad value \"%s\" for boolean variable %s", value, name);
844 cf_log_info(cs, "\t%s = %s", name, value);
847 case PW_TYPE_INTEGER:
848 *(int *)data = strtol(value, 0, 0);
849 cf_log_info(cs, "\t%s = %d", name, *(int *)data);
852 case PW_TYPE_STRING_PTR:
859 * Expand variables which haven't already been
860 * expanded automagically when the configuration
866 int lineno = cs->item.lineno;
869 * FIXME: sizeof(buffer)?
871 value = cf_expand_variables("?",
874 if (!value) return -1;
877 cf_log_info(cs, "\t%s = \"%s\"", name, value ? value : "(null)");
878 *q = value ? strdup(value) : NULL;
882 * This is the same as PW_TYPE_STRING_PTR,
883 * except that we also "stat" the file, and
886 case PW_TYPE_FILENAME:
893 * Expand variables which haven't already been
894 * expanded automagically when the configuration
900 int lineno = cs->item.lineno;
903 * FIXME: sizeof(buffer)?
905 value = cf_expand_variables("?",
908 if (!value) return -1;
911 cf_log_info(cs, "\t%s = \"%s\"", name, value ? value : "(null)");
912 *q = value ? strdup(value) : NULL;
915 * And now we "stat" the file.
917 * FIXME: This appears to leak memory on exit,
918 * and we don't use this information. So it's
919 * commented out for now.
924 if (stat(*q, &buf) == 0) {
927 mtime = rad_malloc(sizeof(*mtime));
928 *mtime = buf.st_mtime;
930 cf_data_add_internal(cs, *q, mtime, free,
938 * Allow '*' as any address
940 if (strcmp(value, "*") == 0) {
941 *(uint32_t *) data = htonl(INADDR_ANY);
942 cf_log_info(cs, "\t%s = *", name);
945 if (ip_hton(value, AF_INET, &ipaddr) < 0) {
946 radlog(L_ERR, "Can't find IP address for host %s", value);
950 if (strspn(value, "0123456789.") == strlen(value)) {
951 cf_log_info(cs, "\t%s = %s", name, value);
953 cf_log_info(cs, "\t%s = %s IP address [%s]", name, value,
954 ip_ntoh(&ipaddr, ipbuf, sizeof(ipbuf)));
956 *(uint32_t *) data = ipaddr.ipaddr.ip4addr.s_addr;
959 case PW_TYPE_IPV6ADDR:
960 if (ip_hton(value, AF_INET6, &ipaddr) < 0) {
961 radlog(L_ERR, "Can't find IPv6 address for host %s", value);
964 cf_log_info(cs, "\t%s = %s IPv6 address [%s]", name, value,
965 ip_ntoh(&ipaddr, ipbuf, sizeof(ipbuf)));
966 memcpy(data, &ipaddr.ipaddr.ip6addr,
967 sizeof(ipaddr.ipaddr.ip6addr));
971 radlog(L_ERR, "type %d not supported yet", type);
974 } /* switch over variable type */
979 static const char *parse_spaces = " ";
982 * Parse a configuration section into user-supplied variables.
984 int cf_section_parse(CONF_SECTION *cs, void *base,
985 const CONF_PARSER *variables)
990 cs->variables = variables; /* this doesn't hurt anything */
993 cf_log_info(cs, "%.*s%s {", cs->depth, parse_spaces,
996 cf_log_info(cs, "%.*s%s %s {", cs->depth, parse_spaces,
997 cs->name1, cs->name2);
1001 * Handle the known configuration parameters.
1003 for (i = 0; variables[i].name != NULL; i++) {
1005 * Handle subsections specially
1007 if (variables[i].type == PW_TYPE_SUBSECTION) {
1008 CONF_SECTION *subcs;
1009 subcs = cf_section_sub_find(cs, variables[i].name);
1012 * If the configuration section is NOT there,
1015 * FIXME! This is probably wrong... we should
1016 * probably set the items to their default values.
1018 if (!subcs) continue;
1020 if (!variables[i].dflt) {
1021 DEBUG2("Internal sanity check 1 failed in cf_section_parse");
1025 if (cf_section_parse(subcs, base,
1026 (const CONF_PARSER *) variables[i].dflt) < 0) {
1030 } /* else it's a CONF_PAIR */
1032 if (variables[i].data) {
1033 data = variables[i].data; /* prefer this. */
1035 data = ((char *)base) + variables[i].offset;
1037 DEBUG2("Internal sanity check 2 failed in cf_section_parse");
1042 * Parse the pair we found, or a default value.
1044 if (cf_item_parse(cs, variables[i].name, variables[i].type,
1045 data, variables[i].dflt) < 0) {
1048 } /* for all variables in the configuration section */
1050 cf_log_info(cs, "%.*s}", cs->depth, parse_spaces);
1057 cf_log_info(cs, "%.*s}", cs->depth, parse_spaces);
1058 cf_section_parse_free(cs, base);
1064 * Sanity check the "if" or "elsif", presuming that the first '('
1065 * has already been eaten.
1067 * We're not really parsing it here, just checking if it's mostly
1070 static int condition_looks_ok(const char **ptr)
1074 const char *p = *ptr;
1086 return 0; /* no trailing slash */
1098 return 0; /* no trailing slash */
1109 if (num_braces == 1) {
1110 const char *q = p + 1;
1113 * Validate that there isn't much
1114 * else after the closing brace.
1116 while ((*q == ' ') || (*q == '\t')) q++;
1125 *ptr = p + 1; /* include the trailing ')' */
1149 static const char *cf_local_file(CONF_SECTION *cs, const char *local,
1150 char *buffer, size_t bufsize)
1154 CONF_SECTION *parentcs = cf_top_section(cs);
1156 p = strrchr(parentcs->item.filename, FR_DIR_SEP);
1157 if (!p) return local;
1159 dirsize = (p - parentcs->item.filename) + 1;
1161 if ((dirsize + strlen(local)) >= bufsize) {
1165 memcpy(buffer, parentcs->item.filename, dirsize);
1166 strlcpy(buffer + dirsize, local, bufsize - dirsize);
1173 * Read a part of the config file.
1175 static int cf_section_read(const char *filename, int *lineno, FILE *fp,
1176 CONF_SECTION *current)
1179 CONF_SECTION *this, *css;
1191 this = current; /* add items here */
1194 * Read, checking for line continuations ('\\' at EOL)
1200 * Get data, and remember if we are at EOF.
1202 eof = (fgets(cbuf, sizeof(buf) - (cbuf - buf), fp) == NULL);
1206 * We read the entire 8k worth of data: complain.
1207 * Note that we don't care if the last character
1208 * is \n: it's still forbidden. This means that
1209 * the maximum allowed length of text is 8k-1, which
1213 if ((cbuf + len + 1) >= (buf + sizeof(buf))) {
1214 radlog(L_ERR, "%s[%d]: Line too long",
1220 * Not doing continuations: check for edge
1227 while (*ptr && isspace((int) *ptr)) ptr++;
1229 if (!*ptr || (*ptr == '#')) continue;
1231 } else if (eof || (len == 0)) {
1232 radlog(L_ERR, "%s[%d]: Continuation at EOF is illegal",
1238 * See if there's a continuation.
1241 ((cbuf[len - 1] == '\n') || (cbuf[len - 1] == '\r'))) {
1246 if ((len > 0) && (cbuf[len - 1] == '\\')) {
1247 cbuf[len - 1] = '\0';
1255 * The parser is getting to be evil.
1257 while ((*ptr == ' ') || (*ptr == '\t')) ptr++;
1259 if (((ptr[0] == '%') && (ptr[1] == '{')) ||
1263 if (ptr[0] == '%') {
1264 hack = rad_copy_variable(buf1, ptr);
1266 hack = rad_copy_string(buf1, ptr);
1269 radlog(L_ERR, "%s[%d]: Invalid expansion: %s",
1270 filename, *lineno, ptr);
1277 t2 = gettoken(&ptr, buf2, sizeof(buf2));
1284 radlog(L_ERR, "%s[%d]: Invalid expansion: %s",
1285 filename, *lineno, ptr);
1289 t1 = gettoken(&ptr, buf1, sizeof(buf1));
1293 * The caller eats "name1 name2 {", and calls us
1294 * for the data inside of the section. So if we
1295 * receive a closing brace, then it must mean the
1296 * end of the section.
1298 if (t1 == T_RCBRACE) {
1299 if (this == current) {
1300 radlog(L_ERR, "%s[%d]: Too many closing braces",
1305 this = this->item.parent;
1310 * Allow for $INCLUDE files
1312 * This *SHOULD* work for any level include.
1313 * I really really really hate this file. -cparker
1315 if ((strcasecmp(buf1, "$INCLUDE") == 0) ||
1316 (strcasecmp(buf1, "$-INCLUDE") == 0)) {
1319 t2 = getword(&ptr, buf2, sizeof(buf2));
1321 if (buf2[0] == '$') relative = 0;
1323 value = cf_expand_variables(filename, lineno, this, buf, buf2);
1324 if (!value) return -1;
1326 if (!FR_DIR_IS_RELATIVE(value)) relative = 0;
1329 value = cf_local_file(current, value, buf3,
1332 radlog(L_ERR, "%s[%d]: Directories too deep.",
1339 #ifdef HAVE_DIRENT_H
1343 * Include ALL non-"dot" files in the directory.
1346 if (value[strlen(value) - 1] == '/') {
1349 struct stat stat_buf;
1351 DEBUG2("including files in directory %s", value );
1352 dir = opendir(value);
1354 radlog(L_ERR, "%s[%d]: Error reading directory %s: %s",
1355 filename, *lineno, value,
1361 * Read the directory, ignoring "." files.
1363 while ((dp = readdir(dir)) != NULL) {
1366 if (dp->d_name[0] == '.') continue;
1369 * Check for valid characters
1371 for (p = dp->d_name; *p != '\0'; p++) {
1372 if (isalpha((int)*p) ||
1376 (*p == '.')) continue;
1379 if (*p != '\0') continue;
1381 snprintf(buf2, sizeof(buf2), "%s%s",
1383 if ((stat(buf2, &stat_buf) != 0) ||
1384 S_ISDIR(stat_buf.st_mode)) continue;
1386 * Read the file into the current
1387 * configuration sectoin.
1389 if (cf_file_include(buf2, this) < 0) {
1397 { /* it was a normal file */
1398 if (buf1[1] == '-') {
1399 struct stat statbuf;
1401 if (stat(value, &statbuf) < 0) {
1402 DEBUG("WARNING: Not including file %s: %s", value, strerror(errno));
1407 if (cf_file_include(value, this) < 0) {
1412 } /* we were in an include */
1414 if (strcasecmp(buf1, "$template") == 0) {
1416 CONF_SECTION *parentcs;
1417 t2 = getword(&ptr, buf2, sizeof(buf2));
1419 parentcs = cf_top_section(current);
1421 ci = cf_reference_item(parentcs, this, buf2);
1422 if (!ci || (ci->type != CONF_ITEM_SECTION)) {
1423 radlog(L_ERR, "%s[%d]: Reference \"%s\" not found",
1424 filename, *lineno, buf2);
1428 if (this->template) {
1429 radlog(L_ERR, "%s[%d]: Section already has a template",
1434 this->template = cf_itemtosection(ci);
1439 * Ensure that the user can't add CONF_PAIRs
1440 * with 'internal' names;
1442 if (buf1[0] == '_') {
1443 radlog(L_ERR, "%s[%d]: Illegal configuration pair name \"%s\"",
1444 filename, *lineno, buf1);
1449 * Grab the next token.
1451 t2 = gettoken(&ptr, buf2, sizeof(buf2));
1465 if (!this || (strcmp(this->name1, "update") != 0)) {
1466 radlog(L_ERR, "%s[%d]: Invalid operator in assignment",
1474 t3 = getstring(&ptr, buf3, sizeof(buf3));
1477 * Handle variable substitution via ${foo}
1479 if ((t3 == T_BARE_WORD) ||
1480 (t3 == T_DOUBLE_QUOTED_STRING)) {
1481 value = cf_expand_variables(filename, lineno, this,
1483 if (!value) return -1;
1484 } else if ((t3 == T_EOL) ||
1492 * Add this CONF_PAIR to our CONF_SECTION
1494 cpn = cf_pair_alloc(buf1, value, t2, t3, this);
1495 cpn->item.filename = filename;
1496 cpn->item.lineno = *lineno;
1497 cf_item_add(this, cf_pairtoitem(cpn));
1501 * This horrible code is here to support
1502 * if/then/else failover in the
1503 * authorize, etc. sections. It makes no
1504 * sense anywhere else.
1507 if ((strcmp(buf1, "if") == 0) ||
1508 (strcmp(buf1, "elsif") == 0)) {
1509 const char *end = ptr;
1510 CONF_SECTION *server;
1512 if (!condition_looks_ok(&end)) {
1513 radlog(L_ERR, "%s[%d]: Parse error in condition at: %s",
1514 filename, *lineno, ptr);
1518 if ((size_t) (end - ptr) >= (sizeof(buf2) - 1)) {
1519 radlog(L_ERR, "%s[%d]: Statement too complicated after \"%s\"",
1520 filename, *lineno, buf1);
1525 * More sanity checking. This is
1526 * getting to be a horrible hack.
1530 if (strcmp(server->name1, "server") == 0) break;
1531 server = server->item.parent;
1535 radlog(L_ERR, "%s[%d]: Processing directives such as \"%s\" cannot be used here.",
1536 filename, *lineno, buf1);
1541 memcpy(buf2 + 1, ptr, end - ptr);
1542 buf2[end - ptr + 1] = '\0';
1548 radlog(L_ERR, "%s[%d]: Parse error after \"%s\"",
1549 filename, *lineno, buf1);
1556 * No '=', must be a section or sub-section.
1559 case T_DOUBLE_QUOTED_STRING:
1560 case T_SINGLE_QUOTED_STRING:
1561 t3 = gettoken(&ptr, buf3, sizeof(buf3));
1562 if (t3 != T_LCBRACE) {
1563 radlog(L_ERR, "%s[%d]: Expecting section start brace '{' after \"%s %s\"",
1564 filename, *lineno, buf1, buf2);
1570 css = cf_section_alloc(buf1,
1571 t2 == T_LCBRACE ? NULL : buf2,
1574 radlog(L_ERR, "%s[%d]: Failed allocating memory for section",
1578 cf_item_add(this, cf_sectiontoitem(css));
1579 css->item.filename = filename;
1580 css->item.lineno = *lineno;
1583 * The current section is now the child section.
1589 radlog(L_ERR, "%s[%d]: Parse error after \"%s\"",
1590 filename, *lineno, buf1);
1596 * See if EOF was unexpected ..
1598 if (feof(fp) && (this != current)) {
1599 radlog(L_ERR, "%s[%d]: EOF reached without closing brace for section %s starting at line %d",
1601 cf_section_name1(this), cf_section_lineno(this));
1609 * Include one config file in another.
1611 int cf_file_include(const char *filename, CONF_SECTION *cs)
1615 struct stat statbuf;
1619 DEBUG2( "including configuration file %s", filename);
1621 if (stat(filename, &statbuf) == 0) {
1623 if ((statbuf.st_mode & S_IWOTH) != 0) {
1624 radlog(L_ERR|L_CONS, "Configuration file %s is globally writable. Refusing to start due to insecure configuration.",
1631 if (0 && (statbuf.st_mode & S_IROTH) != 0) {
1632 radlog(L_ERR|L_CONS, "Configuration file %s is globally readable. Refusing to start due to insecure configuration.",
1639 fp = fopen(filename, "r");
1641 radlog(L_ERR|L_CONS, "Unable to open file \"%s\": %s",
1642 filename, strerror(errno));
1647 * Add the filename to the section
1649 mtime = rad_malloc(sizeof(*mtime));
1650 *mtime = statbuf.st_mtime;
1652 if (cf_data_add_internal(cs, filename, mtime, free,
1653 PW_TYPE_FILENAME) < 0) {
1655 radlog(L_ERR|L_CONS, "Internal error open file \"%s\"",
1660 cd = cf_data_find_internal(cs, filename, PW_TYPE_FILENAME);
1663 radlog(L_ERR|L_CONS, "Internal error open file \"%s\"",
1668 if (!cs->item.filename) cs->item.filename = filename;
1671 * Read the section. It's OK to have EOF without a
1672 * matching close brace.
1674 if (cf_section_read(cd->name, &lineno, fp, cs) < 0) {
1684 * Bootstrap a config file.
1686 CONF_SECTION *cf_file_read(const char *filename)
1692 cs = cf_section_alloc("main", NULL, NULL);
1693 if (!cs) return NULL;
1695 cp = cf_pair_alloc("confdir", filename, T_OP_SET, T_BARE_WORD, cs);
1696 if (!cp) return NULL;
1698 p = strrchr(cp->value, FR_DIR_SEP);
1701 cp->item.filename = "internal";
1702 cp->item.lineno = 0;
1703 cf_item_add(cs, cf_pairtoitem(cp));
1705 if (cf_file_include(filename, cs) < 0) {
1706 cf_section_free(&cs);
1714 * Return a CONF_PAIR within a CONF_SECTION.
1716 CONF_PAIR *cf_pair_find(const CONF_SECTION *cs, const char *name)
1719 CONF_PAIR *cp = NULL;
1721 if (!cs) return NULL;
1724 * Find the name in the tree, for speed.
1730 cp = rbtree_finddata(cs->pair_tree, &mycp);
1733 * Else find the first one that matches
1735 for (ci = cs->children; ci; ci = ci->next) {
1736 if (ci->type == CONF_ITEM_PAIR) {
1737 return cf_itemtopair(ci);
1742 if (cp || !cs->template) return cp;
1744 return cf_pair_find(cs->template, name);
1748 * Return the attr of a CONF_PAIR
1751 const char *cf_pair_attr(CONF_PAIR *pair)
1753 return (pair ? pair->attr : NULL);
1757 * Return the value of a CONF_PAIR
1760 const char *cf_pair_value(CONF_PAIR *pair)
1762 return (pair ? pair->value : NULL);
1766 * Copied here for error reporting.
1768 extern void librad_log(const char *, ...);
1771 * Turn a CONF_PAIR into a VALUE_PAIR
1772 * For now, ignore the "value_type" field...
1774 VALUE_PAIR *cf_pairtovp(CONF_PAIR *pair)
1779 librad_log("Internal error");
1784 librad_log("No value given for attribute %s", pair->attr);
1789 * pairmake handles tags. pairalloc() doesn't.
1791 vp = pairmake(pair->attr, NULL, pair->operator);
1796 if (pair->value_type == T_BARE_WORD) {
1797 if ((vp->type == PW_TYPE_STRING) &&
1798 (pair->value[0] == '0') && (pair->value[1] == 'x')) {
1799 vp->type = PW_TYPE_OCTETS;
1801 if (!pairparsevalue(vp, pair->value)) {
1805 vp->flags.do_xlat = 0;
1807 } else if (pair->value_type == T_SINGLE_QUOTED_STRING) {
1808 if (!pairparsevalue(vp, pair->value)) {
1812 vp->flags.do_xlat = 0;
1814 vp->flags.do_xlat = 1;
1821 * Return the first label of a CONF_SECTION
1824 const char *cf_section_name1(const CONF_SECTION *cs)
1826 return (cs ? cs->name1 : NULL);
1830 * Return the second label of a CONF_SECTION
1833 const char *cf_section_name2(const CONF_SECTION *cs)
1835 return (cs ? cs->name2 : NULL);
1839 * Find a value in a CONF_SECTION
1841 const char *cf_section_value_find(const CONF_SECTION *cs, const char *attr)
1845 cp = cf_pair_find(cs, attr);
1847 return (cp ? cp->value : NULL);
1851 * Return the next pair after a CONF_PAIR
1852 * with a certain name (char *attr) If the requested
1853 * attr is NULL, any attr matches.
1856 CONF_PAIR *cf_pair_find_next(const CONF_SECTION *cs,
1857 CONF_PAIR *pair, const char *attr)
1862 * If pair is NULL this must be a first time run
1863 * Find the pair with correct name
1867 return cf_pair_find(cs, attr);
1870 ci = cf_pairtoitem(pair)->next;
1872 for (; ci; ci = ci->next) {
1873 if (ci->type != CONF_ITEM_PAIR)
1875 if (attr == NULL || strcmp(cf_itemtopair(ci)->attr, attr) == 0)
1879 return cf_itemtopair(ci);
1883 * Find a CONF_SECTION, or return the root if name is NULL
1886 CONF_SECTION *cf_section_find(const char *name)
1889 return cf_section_sub_find(mainconfig.config, name);
1891 return mainconfig.config;
1895 * Find a sub-section in a section
1898 CONF_SECTION *cf_section_sub_find(const CONF_SECTION *cs, const char *name)
1903 * Do the fast lookup if possible.
1905 if (name && cs->section_tree) {
1910 return rbtree_finddata(cs->section_tree, &mycs);
1913 for (ci = cs->children; ci; ci = ci->next) {
1914 if (ci->type != CONF_ITEM_SECTION)
1916 if (strcmp(cf_itemtosection(ci)->name1, name) == 0)
1920 return cf_itemtosection(ci);
1926 * Find a CONF_SECTION with both names.
1928 CONF_SECTION *cf_section_sub_find_name2(const CONF_SECTION *cs,
1929 const char *name1, const char *name2)
1933 if (!cs) cs = mainconfig.config;
1935 if (name1 && (cs->section_tree)) {
1936 CONF_SECTION mycs, *master_cs;
1941 master_cs = rbtree_finddata(cs->section_tree, &mycs);
1943 return rbtree_finddata(master_cs->name2_tree, &mycs);
1948 * Else do it the old-fashioned way.
1950 for (ci = cs->children; ci; ci = ci->next) {
1951 CONF_SECTION *subcs;
1953 if (ci->type != CONF_ITEM_SECTION)
1956 subcs = cf_itemtosection(ci);
1958 if (!subcs->name2) {
1959 if (strcmp(subcs->name1, name2) == 0) break;
1961 if (strcmp(subcs->name2, name2) == 0) break;
1963 continue; /* don't do the string comparisons below */
1966 if ((strcmp(subcs->name1, name1) == 0) &&
1967 (subcs->name2 != NULL) &&
1968 (strcmp(subcs->name2, name2) == 0))
1972 return cf_itemtosection(ci);
1976 * Return the next subsection after a CONF_SECTION
1977 * with a certain name1 (char *name1). If the requested
1978 * name1 is NULL, any name1 matches.
1981 CONF_SECTION *cf_subsection_find_next(CONF_SECTION *section,
1982 CONF_SECTION *subsection,
1988 * If subsection is NULL this must be a first time run
1989 * Find the subsection with correct name
1992 if (subsection == NULL){
1993 ci = section->children;
1995 ci = cf_sectiontoitem(subsection)->next;
1998 for (; ci; ci = ci->next) {
1999 if (ci->type != CONF_ITEM_SECTION)
2001 if ((name1 == NULL) ||
2002 (strcmp(cf_itemtosection(ci)->name1, name1) == 0))
2006 return cf_itemtosection(ci);
2011 * Return the next section after a CONF_SECTION
2012 * with a certain name1 (char *name1). If the requested
2013 * name1 is NULL, any name1 matches.
2016 CONF_SECTION *cf_section_find_next(CONF_SECTION *section,
2017 CONF_SECTION *subsection,
2020 if (!section->item.parent) return NULL;
2022 return cf_subsection_find_next(section->item.parent, subsection, name1);
2026 * Return the next item after a CONF_ITEM.
2029 CONF_ITEM *cf_item_find_next(CONF_SECTION *section, CONF_ITEM *item)
2032 * If item is NULL this must be a first time run
2033 * Return the first item
2037 return section->children;
2043 int cf_section_lineno(CONF_SECTION *section)
2045 return cf_sectiontoitem(section)->lineno;
2048 const char *cf_pair_filename(CONF_PAIR *pair)
2050 return cf_pairtoitem(pair)->filename;
2053 const char *cf_section_filename(CONF_SECTION *section)
2055 return cf_sectiontoitem(section)->filename;
2058 int cf_pair_lineno(CONF_PAIR *pair)
2060 return cf_pairtoitem(pair)->lineno;
2063 int cf_item_is_section(CONF_ITEM *item)
2065 return item->type == CONF_ITEM_SECTION;
2067 int cf_item_is_pair(CONF_ITEM *item)
2069 return item->type == CONF_ITEM_PAIR;
2073 static CONF_DATA *cf_data_alloc(CONF_SECTION *parent, const char *name,
2074 void *data, void (*data_free)(void *))
2080 name_len = strlen(name) + 1;
2082 p = rad_malloc(sizeof(*cd) + name_len);
2083 cd = (CONF_DATA *) p;
2084 memset(cd, 0, sizeof(*cd));
2086 cd->item.type = CONF_ITEM_DATA;
2087 cd->item.parent = parent;
2089 cd->free = data_free;
2092 memcpy(p, name, name_len);
2098 static void *cf_data_find_internal(CONF_SECTION *cs, const char *name,
2101 if (!cs || !name) return NULL;
2104 * Find the name in the tree, for speed.
2106 if (cs->data_tree) {
2111 return rbtree_finddata(cs->data_tree, &mycd);
2118 * Find data from a particular section.
2120 void *cf_data_find(CONF_SECTION *cs, const char *name)
2122 CONF_DATA *cd = cf_data_find_internal(cs, name, 0);
2124 if (cd) return cd->data;
2130 * Add named data to a configuration section.
2132 static int cf_data_add_internal(CONF_SECTION *cs, const char *name,
2133 void *data, void (*data_free)(void *),
2138 if (!cs || !name) return -1;
2141 * Already exists. Can't add it.
2143 if (cf_data_find_internal(cs, name, flag) != NULL) return -1;
2145 cd = cf_data_alloc(cs, name, data, data_free);
2149 cf_item_add(cs, cf_datatoitem(cd));
2155 * Add named data to a configuration section.
2157 int cf_data_add(CONF_SECTION *cs, const char *name,
2158 void *data, void (*data_free)(void *))
2160 return cf_data_add_internal(cs, name, data, data_free, 0);
2165 * Copy CONF_DATA from src to dst
2167 static void cf_section_copy_data(CONF_SECTION *s, CONF_SECTION *d)
2170 CONF_ITEM *cd, *next, **last;
2173 * Don't check if s->data_tree is NULL. It's child
2174 * sections may have data, even if this section doesn't.
2177 rad_assert(d->data_tree == NULL);
2178 d->data_tree = s->data_tree;
2179 s->data_tree = NULL;
2182 * Walk through src, moving CONF_ITEM_DATA
2185 last = &(s->children);
2186 for (cd = s->children; cd != NULL; cd = next) {
2190 * Recursively copy data from child sections.
2192 if (cd->type == CONF_ITEM_SECTION) {
2193 CONF_SECTION *s1, *d1;
2195 s1 = cf_itemtosection(cd);
2196 d1 = cf_section_sub_find_name2(d, s1->name1, s1->name2);
2198 cf_section_copy_data(s1, d1);
2205 * Not conf data, remember last ptr.
2207 if (cd->type != CONF_ITEM_DATA) {
2213 * Remove it from the src list
2219 * Add it to the dst list
2222 rad_assert(d->tail == NULL);
2225 rad_assert(d->tail != NULL);
2233 * For a CONF_DATA element, stat the filename, if necessary.
2235 static int filename_stat(void *context, void *data)
2238 CONF_DATA *cd = data;
2240 context = context; /* -Wunused */
2242 if (cd->flag != PW_TYPE_FILENAME) return 0;
2244 if (stat(cd->name, &buf) < 0) return -1;
2246 if (buf.st_mtime != *(time_t *) cd->data) return -1;
2253 * Compare two CONF_SECTIONS. The items MUST be in the same
2256 static int cf_section_cmp(CONF_SECTION *a, CONF_SECTION *b)
2258 CONF_ITEM *ca = a->children;
2259 CONF_ITEM *cb = b->children;
2267 if (!ca && !cb) break;
2272 if (ca && ca->type == CONF_ITEM_DATA) {
2276 if (cb && cb->type == CONF_ITEM_DATA) {
2282 * One is smaller than the other. Exit.
2284 if (!ca || !cb) return 0;
2286 if (ca->type != cb->type) return 0;
2289 * Deal with subsections.
2291 if (ca->type == CONF_ITEM_SECTION) {
2292 CONF_SECTION *sa = cf_itemtosection(ca);
2293 CONF_SECTION *sb = cf_itemtosection(cb);
2295 if (!cf_section_cmp(sa, sb)) return 0;
2299 rad_assert(ca->type == CONF_ITEM_PAIR);
2301 pa = cf_itemtopair(ca);
2302 pb = cf_itemtopair(cb);
2305 * Different attr and/or value, Exit.
2307 if ((strcmp(pa->attr, pb->attr) != 0) ||
2308 (strcmp(pa->value, pb->value) != 0)) return 0;
2312 * And go to the next element.
2320 * Walk over the CONF_DATA, stat'ing PW_TYPE_FILENAME.
2323 (rbtree_walk(a->data_tree, InOrder, filename_stat, NULL) != 0)) {
2328 * They must be the same, say so.
2335 * Migrate CONF_DATA from one section to another.
2337 int cf_section_migrate(CONF_SECTION *dst, CONF_SECTION *src)
2340 CONF_SECTION *s, *d;
2342 for (ci = src->children; ci != NULL; ci = ci->next) {
2343 if (ci->type != CONF_ITEM_SECTION)
2346 s = cf_itemtosection(ci);
2347 d = cf_section_sub_find_name2(dst, s->name1, s->name2);
2349 if (!d) continue; /* not in new one, don't migrate it */
2352 * A section of the same name is in BOTH src & dst,
2353 * compare the CONF_PAIR's. If they're all the same,
2354 * then copy the CONF_DATA from one to the other.
2356 if (cf_section_cmp(s, d)) {
2357 cf_section_copy_data(s, d);
2361 return 1; /* rcode means anything? */
2365 int cf_section_template(CONF_SECTION *cs, CONF_SECTION *template)
2367 if (!cs || !template || cs->template || template->template) return -1;
2369 cs->template = template;
2376 * This is here to make the rest of the code easier to read. It
2377 * ties conffile.c to log.c, but it means we don't have to
2378 * pollute every other function with the knowledge of the
2379 * configuration internals.
2381 void cf_log_err(CONF_ITEM *ci, const char *fmt, ...)
2387 vsnprintf(buffer, sizeof(buffer), fmt, ap);
2390 radlog(L_ERR, "%s[%d]: %s", ci->filename, ci->lineno, buffer);
2394 void cf_log_info(UNUSED CONF_SECTION *cs, const char *fmt, ...)
2399 if (debug_flag > 1 && cf_log_config) vradlog(L_DBG, fmt, ap);
2404 * Wrapper to simplify the code.
2406 void cf_log_module(UNUSED CONF_SECTION *cs, const char *fmt, ...)
2412 if (debug_flag > 1 && cf_log_modules) {
2413 vsnprintf(buffer, sizeof(buffer), fmt, ap);
2415 radlog(L_DBG, " Module: %s", buffer);
2423 * JMG dump_config tries to dump the config structure in a readable format
2427 static int dump_config_section(CONF_SECTION *cs, int indent)
2433 /* The DEBUG macro doesn't let me
2434 * for(i=0;i<indent;++i) debugputchar('\t');
2435 * so I had to get creative. --Pac. */
2437 for (ci = cs->children; ci; ci = ci->next) {
2439 case CONF_ITEM_PAIR:
2440 cp=cf_itemtopair(ci);
2441 DEBUG("%.*s%s = %s",
2442 indent, "\t\t\t\t\t\t\t\t\t\t\t",
2443 cp->attr, cp->value);
2446 case CONF_ITEM_SECTION:
2447 scs=cf_itemtosection(ci);
2448 DEBUG("%.*s%s %s%s{",
2449 indent, "\t\t\t\t\t\t\t\t\t\t\t",
2451 scs->name2 ? scs->name2 : "",
2452 scs->name2 ? " " : "");
2453 dump_config_section(scs, indent+1);
2455 indent, "\t\t\t\t\t\t\t\t\t\t\t");
2458 default: /* FIXME: Do more! */
2466 int dump_config(CONF_SECTION *cs)
2468 return dump_config_section(cs, 0);
projects / freeradius.git / blob