summaryrefslogtreecommitdiff
path: root/lib/include/radsec/radsec-impl.h
Commit message (Collapse)AuthorAgeFilesLines
* WIP commit moving towards working server support.Linus Nordberg2013-05-151-10/+9
|
* Revamping for listeners.Linus Nordberg2013-03-011-41/+59
| | | | | | | | | | | | | | Split rs_connection into rs_baseconn plus rs_connection and rs_listener. Connections now has a state variable. Connect buffer event and fd of _source_ connection, not that of conn->active_peer. The connection object referred to by a peer is not meant for using as a connection, only for reporting errors on. Make sure things are sane even when not using a config file. Bump library interface version to 1.0.0 since it's changed.
* WIP commit for listener support.Linus Nordberg2013-02-191-12/+64
|
* Parenthesise arguments to helper macros.Linus Nordberg2013-02-141-9/+10
|
* Add support for configuring client connections too.Linus Nordberg2013-02-111-6/+11
| | | | | | | | We're moving x509 and psk config from rs_realm to rs_peer while allowing these to be configured on the realm level and overriden at peer level. Also, add support for printing the read configuration, for debugging.
* Rename most 'package' to 'message'.Linus Nordberg2013-01-241-7/+7
| | | | | | | | | | | | | RADIUS (RFC2865) is defined to be transported over UDP so the term "radius packet" makes a lot of sense. RADIUS/TCP (RFC6613) and RADIUS/TLS (RFC6614), a.k.a. RadSec, use stream transport protocols though. The term "message" doesn't imply any kind of transport -- a message can be sent using datagrams as well as in a stream. This (large) commit changes 'package' to 'message' where it makes sense. It does not touch the 'radius' subdirectory. It includes preprocessor directives (#define) to make the public interface compatible with previous releases of the library.
* Rename rs_packet_flags members.Linus Nordberg2013-01-241-3/+3
| | | | | | | | | Uppercase to make them appear as the constants they are, as opposed to variables. Remove 'flag' suffix, typically used for variables. Spell out HEADER.
* Rename COPYING -> LICENSE.Linus Nordberg2012-12-191-1/+1
| | | | And distribute LICENSE and HACKING.
* Merge libradsec-new-client.Linus Nordberg2012-04-271-4/+8
|\
| * remove dictionary configuration parameterLuke Howard2011-11-141-1/+0
| |
| * remove rs_packet_frpktLuke Howard2011-11-141-3/+0
| |
| * port to new RADIUS client libraryLuke Howard2011-11-141-3/+12
| |
* | Postpone resolving of DNS names of server.Linus Nordberg2012-04-251-6/+3
| | | | | | | | | | | | | | | | | | | | We used to resolve DNS names when reading configuration. We now do it in event_init_socket() and cache the result in the connection object. The imminent need for changing this is to keep host names around for X509 certificate verification (CNAME and subjectAltName). This will also help later when we implement server failover (and later, when people want to do more dynamic configuration, f.ex. NAPTR).
* | Implement TLS-PSK.Linus Nordberg2012-01-311-0/+8
| |
* | Add TLS PSK configuration options.Linus Nordberg2012-01-241-3/+6
|/
* API AND CONFIG CHANGE: rs_context_create() doesn't take DICT any more.Linus Nordberg2011-03-211-4/+12
| | | | | | | Use rs_context_create() to read FreeRADIUS dictionary, possibly by taking dict file from configuration file. CONFIG CHANGE: s/config/realm/g.
* Remove struct rs_attr and all use of it.Linus Nordberg2011-03-141-6/+1
| | | | | | | A new API for attributes will be added once we've decided how to deal with RADIUS packets internally. For now, removing the half baked wrapping seems more sensible than trying to free rs_attr objects and their VALUE_PAIR's.
* Rename and move around a few helper functions.Linus Nordberg2011-03-091-11/+4
|
* Timeout implemented in request objects, supported by TCP.Linus Nordberg2011-03-081-0/+1
| | | | TODO: UDP.
* Clean up struct rs_error somewhat.Linus Nordberg2011-03-081-1/+0
| | | | More to be done here!
* Move verification of response packets up to a level where it makes sense.Linus Nordberg2011-03-071-6/+8
| | | | | | | | | | | | | | | | | | | | | Replace the user_dispatch_flag on connections with conn_user_dispatch_p(). Remove the 'original' member from packet and instead have an upper layer verify. Rename packet valid_flag --> received_flag to reflect that we don't verify. Move _close_conn() --> conn_close(). Move packet flags into a single unsigned int, for portability. (_read_packet): Don't verify packet. (rs_conn_receive_packet): Don't touch PKT_OUT if there isn't a packet. (rs_conn_receive_packet): Verify packet using packet_verify_response().
* UDP w/o bufferevents, part 1.Linus Nordberg2011-03-061-3/+10
| | | | Sending, no retransmitting and no receiving.
* Don't free config object until we destroy the context.Linus Nordberg2011-03-061-0/+2
|
* Get rid of loopbreak as a mean for signalling successful packet handling.Linus Nordberg2011-02-251-0/+2
| | | | | | | | | | | | | In blocking mode, breaking the event loop with loopbreak will probably be needed for exceptions like timeout so we shouldn't use it for breaking the loop and signalling success. In the user callbaks used in blocking mode (_rcb and _wcb), disable read and write events on the event buffer. This will stop the loop. Also, set a flag in the packet struct to signal success. In the "low level callbacks" (_read_cb and _write_cb), enable read or write, accordingly.
* Config file changes and small API changes.Linus Nordberg2011-02-241-12/+14
| | | | | | | | 'timeout' and 'tries' move from 'server' stanza to top. 'tries' is now 'retries'. Moving around in internal data structs, making struct peer strictly config. Bug fixes in configuration code. Adding some more cleanup code, freeing allocated memory (still not done!).
* Add extern "C" guards to all header files.Linus Nordberg2010-11-111-0/+8
|
* Bringing up TLS connections working.Linus Nordberg2010-11-111-0/+12
| | | | | | | NOTE: Clean up of resources not yet sane. Expect resource leakages. NOTE: Most failure cases are not handled properly. With the wind at your back and the sun shining, it might work.
* Have rad_decode() verify responses.Luke Howard2010-10-111-0/+1
|
* Request object implementation and bug fixes by Luke Howard.Linus Nordberg2010-10-111-0/+1
|
* Robustness fixes (and some callback invocation) by Luke Howard.Linus Nordberg2010-10-101-0/+2
| | | | | | | | | | | | * lib/packet.c (_packet_create): Set packet identity properly. (_do_send): Return an int. (_do_send): Don't ignore rad_encode() errors. (_do_send): Do invoke rad_sign(). (_event_cb): Invoke callbacks. (_event_cb): Honour _do_send() return code. (_read_cb): Check packet (by invoking rad_packet_ok()). (_read_cb): Don't ignore rad_decode() errors. (_read_cb): Invoke callbacks.
* Rename struct rs_handle --> rs_context.Linus Nordberg2010-10-051-9/+14
|
* WIP -- reading configuration.Linus Nordberg2010-10-041-0/+8
|
* WIPLinus Nordberg2010-10-031-0/+1
|
* WIPLinus Nordberg2010-10-031-8/+13
|
* WIPLinus Nordberg2010-10-031-1/+1
|
* WIPLinus Nordberg2010-10-031-2/+2
|
* WIP.Linus Nordberg2010-10-021-0/+88