1 /* Copyright 2010, 2011 NORDUnet A/S. All rights reserved.
2 See the file COPYING for licensing information. */
4 #if defined HAVE_CONFIG_H
10 #include <radsec/radsec.h>
11 #include <radsec/radsec-impl.h>
16 # client config options
18 type = "UDP"|"TCP"|"TLS"|"DTLS"
34 rs_context_read_config(struct rs_context *ctx, const char *config_file)
36 /* FIXME: Missing some error handling in rs_context_read_config(). */
38 cfg_t *cfg, *cfg_config, *cfg_server;
42 cfg_opt_t server_opts[] =
44 CFG_STR ("hostname", NULL, CFGF_NONE),
45 CFG_STR ("service", "2083", CFGF_NONE),
46 CFG_STR ("secret", "radsec", CFGF_NONE),
49 cfg_opt_t config_opts[] =
51 CFG_STR ("type", "UDP", CFGF_NONE),
52 CFG_INT ("timeout", 2, CFGF_NONE), /* FIXME: Remove? */
53 CFG_INT ("retries", 2, CFGF_NONE), /* FIXME: Remove? */
54 CFG_STR ("cacertfile", NULL, CFGF_NONE),
55 /*CFG_STR ("cacertpath", NULL, CFGF_NONE),*/
56 CFG_STR ("certfile", NULL, CFGF_NONE),
57 CFG_STR ("certkeyfile", NULL, CFGF_NONE),
58 CFG_SEC ("server", server_opts, CFGF_MULTI),
63 CFG_SEC ("config", config_opts, CFGF_TITLE | CFGF_MULTI),
67 cfg = cfg_init (opts, CFGF_NONE);
68 if (cfg_parse (cfg, config_file) == CFG_PARSE_ERROR)
69 return rs_err_ctx_push (ctx, RSE_CONFIG, "%s: invalid configuration file",
71 for (i = 0; i < cfg_size (cfg, "config"); i++)
73 struct rs_realm *r = rs_malloc (ctx, sizeof(*r));
77 return rs_err_ctx_push_fl (ctx, RSE_NOMEM, __FILE__, __LINE__, NULL);
78 memset (r, 0, sizeof(*r));
81 r->next = ctx->realms->next;
82 ctx->realms->next = r;
86 cfg_config = cfg_getnsec (cfg, "config", i);
87 s = cfg_title (cfg_config);
89 return rs_err_ctx_push_fl (ctx, RSE_CONFIG, __FILE__, __LINE__,
90 "missing config name");
93 return rs_err_ctx_push_fl (ctx, RSE_NOMEM, __FILE__, __LINE__, NULL);
95 typestr = cfg_getstr (cfg_config, "type");
96 if (!strcmp (typestr, "UDP"))
97 r->type = RS_CONN_TYPE_UDP;
98 else if (!strcmp (typestr, "TCP"))
99 r->type = RS_CONN_TYPE_TCP;
100 else if (!strcmp (typestr, "TLS"))
101 r->type = RS_CONN_TYPE_TLS;
102 else if (!strcmp (typestr, "DTLS"))
103 r->type = RS_CONN_TYPE_DTLS;
105 return rs_err_ctx_push_fl (ctx, RSE_CONFIG, __FILE__, __LINE__,
106 "invalid connection type: %s", typestr);
107 r->timeout = cfg_getint (cfg_config, "timeout");
108 r->retries = cfg_getint (cfg_config, "retries");
110 r->cacertfile = cfg_getstr (cfg_config, "cacertfile");
111 /*r->cacertpath = cfg_getstr (cfg_config, "cacertpath");*/
112 r->certfile = cfg_getstr (cfg_config, "certfile");
113 r->certkeyfile = cfg_getstr (cfg_config, "certkeyfile");
115 /* Add peers, one per server stanza. */
116 for (j = 0; j < cfg_size (cfg_config, "server"); j++)
118 struct rs_peer *p = peer_create (ctx, &r->peers);
120 return rs_err_ctx_push_fl (ctx, RSE_NOMEM, __FILE__, __LINE__,
124 cfg_server = cfg_getnsec (cfg_config, "server", j);
125 rs_resolv (&p->addr, r->type, cfg_getstr (cfg_server, "hostname"),
126 cfg_getstr (cfg_server, "service"));
127 p->secret = cfg_getstr (cfg_server, "secret");
131 /* Save config object in context, for freeing in
132 rs_context_destroy(). */
138 rs_conf_find_realm(struct rs_context *ctx, const char *name)
142 for (r = ctx->realms; r; r = r->next)
143 if (!strcmp (r->name, name))