6 * This program is free software; you can redistribute it and/or modify
7 * it under the terms of the GNU General Public License as published by
8 * the Free Software Foundation; either version 2 of the License, or
9 * (at your option) any later version.
11 * This program is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 * GNU General Public License for more details.
16 * You should have received a copy of the GNU General Public License
17 * along with this program; if not, write to the Free Software
18 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA
20 * Copyright 2002,2006 The FreeRADIUS server project
21 * Copyright 2002 Boian Jordanov <bjordanov@orbitel.bg>
24 #include <freeradius-devel/ident.h>
27 #include <freeradius-devel/autoconf.h>
33 #include <freeradius-devel/radiusd.h>
34 #include <freeradius-devel/modules.h>
48 #include <semaphore.h>
51 extern char **environ;
57 * Pool of Perl's clones (genetically cloned) ;)
60 typedef struct pool_handle {
61 struct pool_handle *next;
62 struct pool_handle *prev;
63 enum {busy, idle} status;
64 unsigned int request_count;
65 PerlInterpreter *clone;
69 typedef struct PERL_POOL {
79 int max_request_per_clone;
83 time_t time_when_last_added;
89 * Define a structure for our module configuration.
91 * These variables do not need to be in a structure, but it's
92 * a lot cleaner to do so, and a pointer to the structure can
93 * be used as the instance handle.
95 typedef struct perl_inst {
96 /* Name of the perl module */
99 /* Name of the functions for each module method */
100 char *func_authorize;
101 char *func_authenticate;
102 char *func_accounting;
103 char *func_start_accounting;
104 char *func_stop_accounting;
106 char *func_checksimul;
109 char *func_pre_proxy;
110 char *func_post_proxy;
111 char *func_post_auth;
114 PerlInterpreter *perl;
116 PERL_POOL *perl_pool;
120 * A mapping of configuration file names to internal variables.
122 * Note that the string is dynamically allocated, so it MUST
123 * be freed. When the configuration file parse re-reads the string,
124 * it free's the old one, and strdup's the new one, placing the pointer
125 * to the strdup'd string into 'config.string'. This gets around
128 static const CONF_PARSER module_config[] = {
129 { "module", PW_TYPE_FILENAME,
130 offsetof(PERL_INST,module), NULL, "module"},
131 { "func_authorize", PW_TYPE_STRING_PTR,
132 offsetof(PERL_INST,func_authorize), NULL, "authorize"},
133 { "func_authenticate", PW_TYPE_STRING_PTR,
134 offsetof(PERL_INST,func_authenticate), NULL, "authenticate"},
135 { "func_accounting", PW_TYPE_STRING_PTR,
136 offsetof(PERL_INST,func_accounting), NULL, "accounting"},
137 { "func_preacct", PW_TYPE_STRING_PTR,
138 offsetof(PERL_INST,func_preacct), NULL, "preacct"},
139 { "func_checksimul", PW_TYPE_STRING_PTR,
140 offsetof(PERL_INST,func_checksimul), NULL, "checksimul"},
141 { "func_detach", PW_TYPE_STRING_PTR,
142 offsetof(PERL_INST,func_detach), NULL, "detach"},
143 { "func_xlat", PW_TYPE_STRING_PTR,
144 offsetof(PERL_INST,func_xlat), NULL, "xlat"},
145 { "func_pre_proxy", PW_TYPE_STRING_PTR,
146 offsetof(PERL_INST,func_pre_proxy), NULL, "pre_proxy"},
147 { "func_post_proxy", PW_TYPE_STRING_PTR,
148 offsetof(PERL_INST,func_post_proxy), NULL, "post_proxy"},
149 { "func_post_auth", PW_TYPE_STRING_PTR,
150 offsetof(PERL_INST,func_post_auth), NULL, "post_auth"},
151 { "perl_flags", PW_TYPE_STRING_PTR,
152 offsetof(PERL_INST,perl_flags), NULL, NULL},
153 { "func_start_accounting", PW_TYPE_STRING_PTR,
154 offsetof(PERL_INST,func_start_accounting), NULL, NULL},
155 { "func_stop_accounting", PW_TYPE_STRING_PTR,
156 offsetof(PERL_INST,func_stop_accounting), NULL, NULL},
158 { NULL, -1, 0, NULL, NULL } /* end the list */
164 EXTERN_C void boot_DynaLoader(pTHX_ CV* cv);
168 * We use one perl to clone from it i.e. main boss
169 * We clone it for every instance if we have perl
170 * with -Duseithreads compiled in
172 static PerlInterpreter *interp = NULL;
174 static const CONF_PARSER pool_conf[] = {
175 { "max_clones", PW_TYPE_INTEGER, offsetof(PERL_POOL, max_clones), NULL, "32"},
176 { "start_clones",PW_TYPE_INTEGER, offsetof(PERL_POOL, start_clones), NULL, "32"},
177 { "min_spare_clones",PW_TYPE_INTEGER, offsetof(PERL_POOL, min_spare_clones),NULL, "0"},
178 { "max_spare_clones",PW_TYPE_INTEGER, offsetof(PERL_POOL,max_spare_clones),NULL, "32"},
179 { "cleanup_delay",PW_TYPE_INTEGER, offsetof(PERL_POOL,cleanup_delay),NULL, "5"},
180 { "max_request_per_clone",PW_TYPE_INTEGER, offsetof(PERL_POOL,max_request_per_clone),NULL, "0"},
181 { NULL, -1, 0, NULL, NULL } /* end the list */
185 #define dl_librefs "DynaLoader::dl_librefs"
186 #define dl_modules "DynaLoader::dl_modules"
187 static void rlm_perl_clear_handles(pTHX)
189 AV *librefs = get_av(dl_librefs, FALSE);
195 static void **rlm_perl_get_handles(pTHX)
198 AV *librefs = get_av(dl_librefs, FALSE);
199 AV *modules = get_av(dl_modules, FALSE);
204 "Could not get @%s for unloading.\n",
209 if (!(AvFILL(librefs) >= 0)) {
213 handles = (void **)rad_malloc(sizeof(void *) * (AvFILL(librefs)+2));
215 for (i=0; i<=AvFILL(librefs); i++) {
217 SV *handle_sv = *av_fetch(librefs, i, FALSE);
221 "Could not fetch $%s[%d]!\n",
225 handle = (void *)SvIV(handle_sv);
235 handles[i] = (void *)0;
240 static void rlm_perl_close_handles(void **handles)
248 for (i=0; handles[i]; i++) {
249 radlog(L_DBG, "close 0x%lx\n", (unsigned long)handles[i]);
256 static PerlInterpreter *rlm_perl_clone(PerlInterpreter *perl)
258 PerlInterpreter *clone;
261 PERL_SET_CONTEXT(perl);
263 clone = perl_clone(perl, clone_flags);
267 #if PERL_REVISION >= 5 && PERL_VERSION <8
270 ptr_table_free(PL_ptr_table);
273 PERL_SET_CONTEXT(aTHX);
274 rlm_perl_clear_handles(aTHX);
279 static void rlm_perl_destruct(PerlInterpreter *perl)
281 char **orig_environ = NULL;
284 PERL_SET_CONTEXT(perl);
286 PL_perl_destruct_level = 2;
288 PL_origenviron = environ;
294 * FIXME: This shouldn't happen
297 while (PL_scopestack_ix > 1 ){
305 environ = orig_environ;
309 static void rlm_destroy_perl(PerlInterpreter *perl)
314 PERL_SET_CONTEXT(perl);
316 handles = rlm_perl_get_handles(aTHX);
317 rlm_perl_destruct(perl);
318 rlm_perl_close_handles(handles);
321 static void delete_pool_handle(POOL_HANDLE *handle, PERL_INST *inst)
330 inst->perl_pool->head = next;
336 inst->perl_pool->tail = prev;
340 inst->perl_pool->current_clones--;
341 MUTEX_DESTROY(&handle->lock);
345 static void move2tail(POOL_HANDLE *handle, PERL_INST *inst)
350 if (inst->perl_pool->head == NULL) {
354 inst->perl_pool->head = handle;
355 inst->perl_pool->tail = handle;
359 if (inst->perl_pool->tail == handle) {
366 if ((next != NULL) ||
373 inst->perl_pool->head = next;
384 prev = inst->perl_pool->tail;
386 inst->perl_pool->tail = handle;
392 static POOL_HANDLE *pool_grow (PERL_INST *inst) {
396 if (inst->perl_pool->max_clones == inst->perl_pool->current_clones) {
399 if (inst->perl_pool->detach == yes ) {
403 handle = (POOL_HANDLE *)rad_malloc(sizeof(POOL_HANDLE));
406 radlog(L_ERR,"Could not find free memory for pool. Aborting");
412 handle->status = idle;
413 handle->clone = rlm_perl_clone(inst->perl);
414 handle->request_count = 0;
415 MUTEX_INIT(&handle->lock);
416 inst->perl_pool->current_clones++;
417 move2tail(handle, inst);
420 inst->perl_pool->time_when_last_added = now;
425 static POOL_HANDLE *pool_pop(PERL_INST *inst)
431 * Lock the pool and be fast other thread maybe
432 * waiting for us to finish
434 MUTEX_LOCK(&inst->perl_pool->mutex);
438 for (handle = inst->perl_pool->head; handle ; handle = tmp) {
441 if (handle->status == idle){
448 if (inst->perl_pool->current_clones < inst->perl_pool->max_clones ) {
450 found = pool_grow(inst);
453 radlog(L_ERR,"Cannot grow pool returning");
454 MUTEX_UNLOCK(&inst->perl_pool->mutex);
458 radlog(L_ERR,"rlm_perl:: reached maximum clones %d cannot grow",
459 inst->perl_pool->current_clones);
460 MUTEX_UNLOCK(&inst->perl_pool->mutex);
465 move2tail(found, inst);
466 found->status = busy;
467 MUTEX_LOCK(&found->lock);
468 inst->perl_pool->active_clones++;
469 found->request_count++;
473 MUTEX_UNLOCK(&inst->perl_pool->mutex);
474 radlog(L_DBG,"perl_pool: item 0x%lx asigned new request. Handled so far: %d",
475 (unsigned long) found->clone, found->request_count);
478 static int pool_release(POOL_HANDLE *handle, PERL_INST *inst) {
480 POOL_HANDLE *tmp, *tmp2;
486 MUTEX_LOCK(&inst->perl_pool->mutex);
489 * If detach is set then just release the mutex
491 if (inst->perl_pool->detach == yes ) {
492 handle->status = idle;
493 MUTEX_UNLOCK(&handle->lock);
494 MUTEX_UNLOCK(&inst->perl_pool->mutex);
498 MUTEX_UNLOCK(&handle->lock);
499 handle->status = idle;
500 inst->perl_pool->active_clones--;
502 spare = inst->perl_pool->current_clones - inst->perl_pool->active_clones;
504 radlog(L_DBG,"perl_pool total/active/spare [%d/%d/%d]"
505 , inst->perl_pool->current_clones, inst->perl_pool->active_clones, spare);
507 if (spare < inst->perl_pool->min_spare_clones) {
508 t = inst->perl_pool->min_spare_clones - spare;
510 if ((tmp = pool_grow(inst)) == NULL) {
511 MUTEX_UNLOCK(&inst->perl_pool->mutex);
515 MUTEX_UNLOCK(&inst->perl_pool->mutex);
519 if ((now - inst->perl_pool->time_when_last_added) < inst->perl_pool->cleanup_delay) {
520 MUTEX_UNLOCK(&inst->perl_pool->mutex);
523 if (spare > inst->perl_pool->max_spare_clones) {
524 spare -= inst->perl_pool->max_spare_clones;
525 for (tmp = inst->perl_pool->head; (tmp !=NULL ) && (spare > 0) ; tmp = tmp2) {
528 if(tmp->status == idle) {
529 rlm_destroy_perl(tmp->clone);
530 delete_pool_handle(tmp,inst);
537 * If the clone have reached max_request_per_clone clean it.
539 if (inst->perl_pool->max_request_per_clone > 0 ) {
540 if (handle->request_count > inst->perl_pool->max_request_per_clone) {
541 rlm_destroy_perl(handle->clone);
542 delete_pool_handle(handle,inst);
548 MUTEX_UNLOCK(&inst->perl_pool->mutex);
551 static int init_pool (CONF_SECTION *conf, PERL_INST *inst) {
557 pool = rad_malloc(sizeof(PERL_POOL));
558 memset(pool,0,sizeof(PERL_POOL));
560 inst->perl_pool = pool;
562 MUTEX_INIT(&pool->mutex);
569 cf_section_parse(conf,pool,pool_conf);
570 inst->perl_pool = pool;
571 inst->perl_pool->detach = no;
573 for(t = 0;t < inst->perl_pool->start_clones ;t++){
574 if ((handle = pool_grow(inst)) == NULL) {
584 static void xs_init(pTHX)
586 char *file = __FILE__;
588 /* DynaLoader is a special case */
589 newXS("DynaLoader::boot_DynaLoader", boot_DynaLoader, file);
594 * This is wrapper for radlog
595 * Now users can call radiusd::radlog(level,msg) wich is the same
596 * calling radlog from C code.
599 static XS(XS_radiusd_radlog)
603 croak("Usage: radiusd::radlog(level, message)");
608 level = (int) SvIV(ST(0));
609 msg = (char *) SvPV(ST(1), PL_na);
612 * Because 'msg' is a 'char *', we don't want '%s', etc.
613 * in it to give us printf-style vulnerabilities.
615 radlog(level, "rlm_perl: %s", msg);
623 static int perl_xlat(void *instance, REQUEST *request, char *fmt, char * out,
624 size_t freespace, RADIUS_ESCAPE_STRING func)
627 PERL_INST *inst= (PERL_INST *) instance;
628 PerlInterpreter *perl;
629 char params[1024], *ptr, *tmp;
634 * Do an xlat on the provided string (nice recursive operation).
636 if (!radius_xlat(params, sizeof(params), fmt, request, func)) {
637 radlog(L_ERR, "rlm_perl: xlat failed.");
646 if ((handle = pool_pop(instance)) == NULL) {
650 perl = handle->clone;
652 radlog(L_DBG,"Found a interpetator 0x%lx",(unsigned long) perl);
657 PERL_SET_CONTEXT(perl);
662 ptr = strtok(params, " ");
666 while (ptr != NULL) {
667 XPUSHs(sv_2mortal(newSVpv(ptr,0)));
668 ptr = strtok(NULL, " ");
673 count = call_pv(inst->func_xlat, G_SCALAR | G_EVAL);
677 radlog(L_ERR, "rlm_perl: perl_xlat exit %s\n",
680 } else if (count > 0) {
682 strlcpy(out, tmp, freespace);
685 radlog(L_DBG,"rlm_perl: Len is %d , out is %s freespace is %d",
695 pool_release(handle, instance);
700 * Do any per-module initialization that is separate to each
701 * configured instance of the module. e.g. set up connections
702 * to external databases, read configuration files, set up
703 * dictionary entries, etc.
705 * If configuration information is given in the config section
706 * that must be referenced in later calls, store a handle to it
707 * in *instance otherwise put a null pointer there.
710 * Setup a hashes wich we will use later
711 * parse a module and give him a chance to live
714 static int perl_instantiate(CONF_SECTION *conf, void **instance)
716 PERL_INST *inst = (PERL_INST *) instance;
721 HV *rad_request_proxy_hv;
722 HV *rad_request_proxy_reply_hv;
726 const char *xlat_name;
727 int exitstatus = 0, argc=0;
730 * Set up a storage area for instance data
732 inst = rad_malloc(sizeof(PERL_INST));
733 memset(inst, 0, sizeof(PERL_INST));
736 * If the configuration parameters can't be parsed, then
739 if (cf_section_parse(conf, inst, module_config) < 0) {
746 if (inst->perl_flags) {
747 embed[1] = inst->perl_flags;
748 embed[2] = inst->module;
752 embed[1] = inst->module;
760 if ((inst->perl = perl_alloc()) == NULL) {
761 radlog(L_DBG, "rlm_perl: No memory for allocating new perl !");
765 perl_construct(inst->perl);
766 PL_perl_destruct_level = 2;
771 PERL_SET_CONTEXT(inst->perl);
773 if ((inst->perl = perl_alloc()) == NULL) {
774 radlog(L_ERR, "rlm_perl: No memory for allocating new perl !");
778 perl_construct(inst->perl);
781 #if PERL_REVISION >= 5 && PERL_VERSION >=8
782 PL_exit_flags |= PERL_EXIT_DESTRUCT_END;
785 exitstatus = perl_parse(inst->perl, xs_init, argc, embed, NULL);
791 exitstatus = perl_run(inst->perl);
793 radlog(L_ERR,"rlm_perl: perl_parse failed: %s not found or has syntax errors. \n", inst->module);
799 newXS("radiusd::radlog",XS_radiusd_radlog, "rlm_perl.c");
801 rad_reply_hv = newHV();
802 rad_check_hv = newHV();
803 rad_config_hv = newHV();
804 rad_request_hv = newHV();
805 rad_request_proxy_hv = newHV();
806 rad_request_proxy_reply_hv = newHV();
808 rad_reply_hv = get_hv("RAD_REPLY",1);
809 rad_check_hv = get_hv("RAD_CHECK",1);
810 rad_config_hv = get_hv("RAD_CONFIG",1);
811 rad_request_hv = get_hv("RAD_REQUEST",1);
812 rad_request_proxy_hv = get_hv("RAD_REQUEST_PROXY",1);
813 rad_request_proxy_reply_hv = get_hv("RAD_REQUEST_PROXY_REPLY",1);
815 xlat_name = cf_section_name2(conf);
816 if (xlat_name == NULL)
817 xlat_name = cf_section_name1(conf);
819 inst->xlat_name = strdup(xlat_name);
820 xlat_register(xlat_name, perl_xlat, inst);
824 if ((init_pool(conf, inst)) == -1) {
825 radlog(L_ERR,"Couldn't init a pool of perl clones. Exiting");
836 * get the vps and put them in perl hash
837 * If one VP have multiple values it is added as array_ref
838 * Example for this is Cisco-AVPair that holds multiple values.
839 * Which will be available as array_ref in $RAD_REQUEST{'Cisco-AVPair'}
841 static void perl_store_vps(VALUE_PAIR *vp, HV *rad_hv)
843 VALUE_PAIR *nvp, *vpa, *vpn;
851 while (nvp != NULL) {
852 attr = nvp->attribute;
853 vpa = paircopy2(nvp,attr);
858 len = vp_prints_value(buffer, sizeof(buffer),
860 av_push(av, newSVpv(buffer, len));
863 hv_store(rad_hv, nvp->name, strlen(nvp->name),
864 newRV_noinc((SV *) av), 0);
866 len = vp_prints_value(buffer, sizeof(buffer),
868 hv_store(rad_hv, vpa->name, strlen(vpa->name),
869 newSVpv(buffer, len), 0);
873 vpa = nvp; while ((vpa != NULL) && (vpa->attribute == attr))
875 pairdelete(&nvp, attr);
882 * Verify that a Perl SV is a string and save it in FreeRadius
886 static int pairadd_sv(VALUE_PAIR **vp, char *key, SV *sv, int operator) {
891 val = SvPV_nolen(sv);
892 vpp = pairmake(key, val, operator);
896 "rlm_perl: Added pair %s = %s", key, val);
900 "rlm_perl: ERROR: Failed to create pair %s = %s",
909 * Gets the content from hashes
911 static int get_hv_content(HV *my_hv, VALUE_PAIR **vp)
916 I32 key_len, len, i, j;
920 for (i = hv_iterinit(my_hv); i > 0; i--) {
921 res_sv = hv_iternextsv(my_hv,&key,&key_len);
922 if (SvROK(res_sv) && (SvTYPE(SvRV(res_sv)) == SVt_PVAV)) {
923 av = (AV*)SvRV(res_sv);
925 for (j = 0; j <= len; j++) {
926 av_sv = av_fetch(av, j, 0);
927 ret = pairadd_sv(vp, key, *av_sv, T_OP_ADD) + ret;
929 } else ret = pairadd_sv(vp, key, res_sv, T_OP_EQ) + ret;
936 * Call the function_name inside the module
937 * Store all vps in hashes %RAD_CHECK %RAD_REPLY %RAD_REQUEST
940 static int rlmperl_call(void *instance, REQUEST *request, char *function_name)
943 PERL_INST *inst = instance;
945 int exitstatus=0, count;
952 HV *rad_request_proxy_hv;
953 HV *rad_request_proxy_reply_hv;
958 if ((handle = pool_pop(instance)) == NULL) {
959 return RLM_MODULE_FAIL;
962 radlog(L_DBG,"found interpetator at address 0x%lx",(unsigned long) handle->clone);
964 dTHXa(handle->clone);
965 PERL_SET_CONTEXT(handle->clone);
968 PERL_SET_CONTEXT(inst->perl);
969 radlog(L_DBG,"Using perl at 0x%lx",(unsigned long) inst->perl);
979 * Radius has told us to call this function, but none
982 if (!function_name) {
983 return RLM_MODULE_FAIL;
986 rad_reply_hv = get_hv("RAD_REPLY",1);
987 rad_check_hv = get_hv("RAD_CHECK",1);
988 rad_config_hv = get_hv("RAD_CONFIG",1);
989 rad_request_hv = get_hv("RAD_REQUEST",1);
990 rad_request_proxy_hv = get_hv("RAD_REQUEST_PROXY",1);
991 rad_request_proxy_reply_hv = get_hv("RAD_REQUEST_PROXY_REPLY",1);
994 perl_store_vps(request->reply->vps, rad_reply_hv);
995 perl_store_vps(request->config_items, rad_check_hv);
996 perl_store_vps(request->packet->vps, rad_request_hv);
997 perl_store_vps(request->config_items, rad_config_hv);
999 if (request->proxy != NULL) {
1000 perl_store_vps(request->proxy->vps, rad_request_proxy_hv);
1002 hv_undef(rad_request_proxy_hv);
1005 if (request->proxy_reply !=NULL) {
1006 perl_store_vps(request->proxy_reply->vps, rad_request_proxy_reply_hv);
1008 hv_undef(rad_request_proxy_reply_hv);
1013 * This way %RAD_xx can be pushed onto stack as sub parameters.
1014 * XPUSHs( newRV_noinc((SV *)rad_request_hv) );
1015 * XPUSHs( newRV_noinc((SV *)rad_reply_hv) );
1016 * XPUSHs( newRV_noinc((SV *)rad_check_hv) );
1020 count = call_pv(function_name, G_SCALAR | G_EVAL | G_NOARGS);
1024 if (SvTRUE(ERRSV)) {
1025 radlog(L_ERR, "rlm_perl: perl_embed:: module = %s , func = %s exit status= %s\n",
1027 function_name, SvPV(ERRSV,n_a));
1033 if (exitstatus >= 100 || exitstatus < 0) {
1034 exitstatus = RLM_MODULE_FAIL;
1044 if ((get_hv_content(rad_request_hv, &vp)) > 0 ) {
1045 pairfree(&request->packet->vps);
1046 request->packet->vps = vp;
1050 * Update cached copies
1052 request->username = pairfind(request->packet->vps,
1054 request->password = pairfind(request->packet->vps,
1056 if (!request->password)
1057 request->password = pairfind(request->packet->vps,
1061 if ((get_hv_content(rad_reply_hv, &vp)) > 0 ) {
1062 pairfree(&request->reply->vps);
1063 request->reply->vps = vp;
1067 if ((get_hv_content(rad_check_hv, &vp)) > 0 ) {
1068 pairfree(&request->config_items);
1069 request->config_items = vp;
1073 if (request->proxy &&
1074 (get_hv_content(rad_request_proxy_hv, &vp) > 0)) {
1075 pairfree(&request->proxy->vps);
1076 request->proxy->vps = vp;
1080 if (request->proxy_reply &&
1081 (get_hv_content(rad_request_proxy_reply_hv, &vp) > 0)) {
1082 pairfree(&request->proxy_reply->vps);
1083 request->proxy_reply->vps = vp;
1089 pool_release(handle,instance);
1090 radlog(L_DBG,"Unreserve perl at address 0x%lx", (unsigned long) handle->clone);
1097 * Find the named user in this modules database. Create the set
1098 * of attribute-value pairs to check and reply with for this user
1099 * from the database. The authentication code only needs to check
1100 * the password, the rest is done here.
1102 static int perl_authorize(void *instance, REQUEST *request)
1104 return rlmperl_call(instance, request,
1105 ((PERL_INST *)instance)->func_authorize);
1109 * Authenticate the user with the given password.
1111 static int perl_authenticate(void *instance, REQUEST *request)
1113 return rlmperl_call(instance, request,
1114 ((PERL_INST *)instance)->func_authenticate);
1117 * Massage the request before recording it or proxying it
1119 static int perl_preacct(void *instance, REQUEST *request)
1121 return rlmperl_call(instance, request,
1122 ((PERL_INST *)instance)->func_preacct);
1125 * Write accounting information to this modules database.
1127 static int perl_accounting(void *instance, REQUEST *request)
1130 int acctstatustype=0;
1132 if ((pair = pairfind(request->packet->vps, PW_ACCT_STATUS_TYPE)) != NULL) {
1133 acctstatustype = pair->lvalue;
1135 radlog(L_ERR, "Invalid Accounting Packet");
1136 return RLM_MODULE_INVALID;
1139 switch (acctstatustype) {
1141 case PW_STATUS_START:
1143 if (((PERL_INST *)instance)->func_start_accounting) {
1144 return rlmperl_call(instance, request,
1145 ((PERL_INST *)instance)->func_start_accounting);
1147 return rlmperl_call(instance, request,
1148 ((PERL_INST *)instance)->func_accounting);
1152 case PW_STATUS_STOP:
1154 if (((PERL_INST *)instance)->func_stop_accounting) {
1155 return rlmperl_call(instance, request,
1156 ((PERL_INST *)instance)->func_stop_accounting);
1158 return rlmperl_call(instance, request,
1159 ((PERL_INST *)instance)->func_accounting);
1163 return rlmperl_call(instance, request,
1164 ((PERL_INST *)instance)->func_accounting);
1169 * Check for simultaneouse-use
1171 static int perl_checksimul(void *instance, REQUEST *request)
1173 return rlmperl_call(instance, request,
1174 ((PERL_INST *)instance)->func_checksimul);
1179 static int perl_pre_proxy(void *instance, REQUEST *request)
1181 return rlmperl_call(instance, request,
1182 ((PERL_INST *)instance)->func_pre_proxy);
1185 * Post-Proxy request
1187 static int perl_post_proxy(void *instance, REQUEST *request)
1189 return rlmperl_call(instance, request,
1190 ((PERL_INST *)instance)->func_post_proxy);
1195 static int perl_post_auth(void *instance, REQUEST *request)
1197 return rlmperl_call(instance, request,
1198 ((PERL_INST *)instance)->func_post_auth);
1201 * Detach a instance give a chance to a module to make some internal setup ...
1203 static int perl_detach(void *instance)
1205 PERL_INST *inst = (PERL_INST *) instance;
1206 int exitstatus = 0, count = 0;
1209 POOL_HANDLE *handle, *tmp, *tmp2;
1211 MUTEX_LOCK(&inst->perl_pool->mutex);
1212 inst->perl_pool->detach = yes;
1213 MUTEX_UNLOCK(&inst->perl_pool->mutex);
1215 for (handle = inst->perl_pool->head; handle != NULL; handle = handle->next) {
1217 radlog(L_DBG,"Detach perl 0x%lx", (unsigned long) handle->clone);
1219 * Wait until clone becomes idle
1221 MUTEX_LOCK(&handle->lock);
1224 * Give a clones chance to run detach function
1227 dTHXa(handle->clone);
1228 PERL_SET_CONTEXT(handle->clone);
1230 dSP; ENTER; SAVETMPS; PUSHMARK(SP);
1231 count = call_pv(inst->func_detach, G_SCALAR | G_EVAL );
1237 * FIXME: bug in perl
1240 if (exitstatus >= 100 || exitstatus < 0) {
1241 exitstatus = RLM_MODULE_FAIL;
1247 radlog(L_DBG,"detach at 0x%lx returned status %d",
1248 (unsigned long) handle->clone, exitstatus);
1251 MUTEX_UNLOCK(&handle->lock);
1257 for (tmp = inst->perl_pool->head; tmp !=NULL ; tmp = tmp2) {
1259 radlog(L_DBG,"rlm_perl:: Destroy perl");
1260 rlm_perl_destruct(tmp->clone);
1261 delete_pool_handle(tmp,inst);
1266 #endif /* USE_ITHREADS */
1267 PERL_SET_CONTEXT(inst->perl);
1269 dSP; ENTER; SAVETMPS;
1272 count = call_pv(inst->func_detach, G_SCALAR | G_EVAL );
1277 if (exitstatus >= 100 || exitstatus < 0) {
1278 exitstatus = RLM_MODULE_FAIL;
1289 xlat_unregister(inst->xlat_name, perl_xlat);
1290 free(inst->xlat_name);
1294 free(inst->perl_pool->head);
1295 free(inst->perl_pool->tail);
1296 MUTEX_DESTROY(&inst->perl_pool->mutex);
1297 free(inst->perl_pool);
1298 rlm_perl_destruct(inst->perl);
1300 perl_destruct(inst->perl);
1301 perl_free(inst->perl);
1308 * The module name should be the only globally exported symbol.
1309 * That is, everything else should be 'static'.
1311 * If the module needs to temporarily modify it's instantiation
1312 * data, the type should be changed to RLM_TYPE_THREAD_UNSAFE.
1313 * The server will then take care of ensuring that the module
1314 * is single-threaded.
1316 module_t rlm_perl = {
1320 RLM_TYPE_THREAD_SAFE, /* type */
1322 RLM_TYPE_THREAD_UNSAFE,
1324 perl_instantiate, /* instantiation */
1325 perl_detach, /* detach */
1327 perl_authenticate, /* authenticate */
1328 perl_authorize, /* authorize */
1329 perl_preacct, /* preacct */
1330 perl_accounting, /* accounting */
1331 perl_checksimul, /* check simul */
1332 perl_pre_proxy, /* pre-proxy */
1333 perl_post_proxy, /* post-proxy */
1334 perl_post_auth /* post-auth */