freeDiameter: libfdcore/fdd.y annotate

annotate libfdcore/fdd.y @ 974:2091bf698fb1

Remove newlines from fd_log_debug, TRACE_DEBUG, TRACE_ERROR, and TRACE_DEBUG_ERROR (as far as sed could find them) with manual fixing afterwards.

author	Thomas Klausner <tk@giga.or.at>
date	Thu, 14 Mar 2013 18:14:35 +0100
parents	6808de455810
children	cafdcbcb5e79

rev	line source
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	1 /*********************************************************************************************************
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	2 * Software License Agreement (BSD License) *
740 4a9f08d6b6ba Updated my mail address Sebastien Decugis <sdecugis@nict.go.jp> parents: 706 diff changeset	3 * Author: Sebastien Decugis <sdecugis@freediameter.net> *
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	4 * *
928 5053f1abcf5d Updated copyright information Sebastien Decugis <sdecugis@freediameter.net> parents: 918 diff changeset	5 * Copyright (c) 2013, WIDE Project and NICT *
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	6 * All rights reserved. *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	7 * *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	8 * Redistribution and use of this software in source and binary forms, with or without modification, are *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	9 * permitted provided that the following conditions are met: *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	10 * *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	11 * * Redistributions of source code must retain the above *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	12 * copyright notice, this list of conditions and the *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	13 * following disclaimer. *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	14 * *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	15 * * Redistributions in binary form must reproduce the above *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	16 * copyright notice, this list of conditions and the *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	17 * following disclaimer in the documentation and/or other *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	18 * materials provided with the distribution. *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	19 * *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	20 * * Neither the name of the WIDE Project or NICT nor the *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	21 * names of its contributors may be used to endorse or *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	22 * promote products derived from this software without *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	23 * specific prior written permission of WIDE Project and *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	24 * NICT. *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	25 * *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	26 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	27 * WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	28 * PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	29 * ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	30 * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	31 * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	32 * TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	33 * ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	34 *********************************************************************************************************/
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	35
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	36 /* Yacc configuration parser.
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	37 *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	38 * This file defines the grammar of the configuration file.
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	39 * Note that each extension has a separate independant configuration file.
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	40 *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	41 * Note : This module is NOT thread-safe. All processing must be done from one thread only.
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	42 */
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	43
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	44 /* For development only : */
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	45 %debug
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	46 %error-verbose
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	47
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	48 %parse-param {struct fd_config * conf}
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	49
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	50 /* Keep track of location */
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	51 %locations
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	52 %pure-parser
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	53
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	54 %{
658 f198d16fa7f4 Initial commit for 1.1.0: Sebastien Decugis <sdecugis@nict.go.jp> parents: 578 diff changeset	55 #include "fdcore-internal.h"
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	56 #include "fdd.tab.h" /* bug : bison does not define the YYLTYPE before including this bloc, so... */
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	57
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	58 /* The Lex parser prototype */
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	59 int fddlex(YYSTYPE lvalp, YYLTYPE llocp);
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	60
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	61 /* Function to report error */
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	62 void yyerror (YYLTYPE ploc, struct fd_config conf, char const *s)
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	63 {
918 46f9982b7d26 Use logging routines for configuration file parsing (based on patch by Thomas) Sebastien Decugis <sdecugis@freediameter.net> parents: 808 diff changeset	64 if (ploc->first_line != ploc->last_line) {
974 2091bf698fb1 Remove newlines from fd_log_debug, TRACE_DEBUG, TRACE_ERROR, and TRACE_DEBUG_ERROR Thomas Klausner <tk@giga.or.at> parents: 969 diff changeset	65 TRACE_ERROR("%s:%d.%d-%d.%d : %s", conf->cnf_file, ploc->first_line, ploc->first_column, ploc->last_line, ploc->last_column, s);
918 46f9982b7d26 Use logging routines for configuration file parsing (based on patch by Thomas) Sebastien Decugis <sdecugis@freediameter.net> parents: 808 diff changeset	66 } else if (ploc->first_column != ploc->last_column) {
974 2091bf698fb1 Remove newlines from fd_log_debug, TRACE_DEBUG, TRACE_ERROR, and TRACE_DEBUG_ERROR Thomas Klausner <tk@giga.or.at> parents: 969 diff changeset	67 TRACE_ERROR("%s:%d.%d-%d : %s", conf->cnf_file, ploc->first_line, ploc->first_column, ploc->last_column, s);
918 46f9982b7d26 Use logging routines for configuration file parsing (based on patch by Thomas) Sebastien Decugis <sdecugis@freediameter.net> parents: 808 diff changeset	68 } else {
974 2091bf698fb1 Remove newlines from fd_log_debug, TRACE_DEBUG, TRACE_ERROR, and TRACE_DEBUG_ERROR Thomas Klausner <tk@giga.or.at> parents: 969 diff changeset	69 TRACE_ERROR("%s:%d.%d : %s", conf->cnf_file, ploc->first_line, ploc->first_column, s);
918 46f9982b7d26 Use logging routines for configuration file parsing (based on patch by Thomas) Sebastien Decugis <sdecugis@freediameter.net> parents: 808 diff changeset	70 }
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	71 }
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	72
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	73 int got_peer_noip = 0;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	74 int got_peer_noipv6 = 0;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	75 int got_peer_notcp = 0;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	76 int got_peer_nosctp = 0;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	77
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	78 struct peer_info fddpi;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	79
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	80 %}
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	81
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	82 /* Values returned by lex for token */
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	83 %union {
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	84 char string; / The string is allocated by strdup in lex.*/
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	85 int integer; /* Store integer values */
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	86 }
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	87
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	88 /* In case of error in the lexical analysis */
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	89 %token LEX_ERROR
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	90
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	91 %token <string> QSTRING
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	92 %token <integer> INTEGER
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	93
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	94 %type <string> extconf
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	95
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	96 %token IDENTITY
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	97 %token REALM
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	98 %token PORT
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	99 %token SECPORT
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	100 %token NOIP
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	101 %token NOIP6
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	102 %token NOTCP
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	103 %token NOSCTP
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	104 %token PREFERTCP
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	105 %token OLDTLS
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	106 %token NOTLS
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	107 %token SCTPSTREAMS
253 ad6c0118fb50 Configurable number of server threads Sebastien Decugis <sdecugis@nict.go.jp> parents: 142 diff changeset	108 %token APPSERVTHREADS
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	109 %token LISTENON
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	110 %token TCTIMER
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	111 %token TWTIMER
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	112 %token NORELAY
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	113 %token LOADEXT
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	114 %token CONNPEER
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	115 %token CONNTO
18 e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	116 %token TLS_CRED
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	117 %token TLS_CA
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	118 %token TLS_CRL
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	119 %token TLS_PRIO
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	120 %token TLS_DH_BITS
578 7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	121 %token TLS_DH_FILE
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	122
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	123
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	124 /* -------------------------------------- */
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	125 %%
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	126
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	127 /* The grammar definition - Sections blocs. */
18 e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	128 conffile: /* Empty is OK -- for simplicity here, we reject in daemon later */
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	129 \| conffile identity
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	130 \| conffile realm
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	131 \| conffile tctimer
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	132 \| conffile twtimer
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	133 \| conffile port
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	134 \| conffile secport
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	135 \| conffile sctpstreams
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	136 \| conffile listenon
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	137 \| conffile norelay
253 ad6c0118fb50 Configurable number of server threads Sebastien Decugis <sdecugis@nict.go.jp> parents: 142 diff changeset	138 \| conffile appservthreads
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	139 \| conffile noip
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	140 \| conffile noip6
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	141 \| conffile notcp
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	142 \| conffile nosctp
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	143 \| conffile prefertcp
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	144 \| conffile oldtls
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	145 \| conffile loadext
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	146 \| conffile connpeer
18 e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	147 \| conffile tls_cred
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	148 \| conffile tls_ca
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	149 \| conffile tls_crl
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	150 \| conffile tls_prio
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	151 \| conffile tls_dh
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	152 \| conffile errors
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	153 {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	154 yyerror(&yylloc, conf, "An error occurred while parsing the configuration file");
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	155 return EINVAL;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	156 }
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	157 ;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	158
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	159 /* Lexical or syntax error */
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	160 errors: LEX_ERROR
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	161 \| error
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	162 ;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	163
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	164 identity: IDENTITY '=' QSTRING ';'
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	165 {
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	166 conf->cnf_diamid = $3;
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	167 }
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	168 ;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	169
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	170 realm: REALM '=' QSTRING ';'
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	171 {
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	172 conf->cnf_diamrlm = $3;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	173 }
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	174 ;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	175
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	176 tctimer: TCTIMER '=' INTEGER ';'
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	177 {
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	178 CHECK_PARAMS_DO( ($3 > 0),
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	179 { yyerror (&yylloc, conf, "Invalid value"); YYERROR; } );
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	180 conf->cnf_timer_tc = (unsigned int)$3;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	181 }
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	182 ;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	183
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	184 twtimer: TWTIMER '=' INTEGER ';'
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	185 {
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	186 CHECK_PARAMS_DO( ($3 > 5),
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	187 { yyerror (&yylloc, conf, "Invalid value"); YYERROR; } );
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	188 conf->cnf_timer_tw = (unsigned int)$3;
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	189 }
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	190 ;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	191
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	192 port: PORT '=' INTEGER ';'
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	193 {
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	194 CHECK_PARAMS_DO( ($3 > 0) && ($3 < 1<<16),
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	195 { yyerror (&yylloc, conf, "Invalid value"); YYERROR; } );
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	196 conf->cnf_port = (uint16_t)$3;
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	197 }
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	198 ;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	199
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	200 secport: SECPORT '=' INTEGER ';'
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	201 {
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	202 CHECK_PARAMS_DO( ($3 > 0) && ($3 < 1<<16),
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	203 { yyerror (&yylloc, conf, "Invalid value"); YYERROR; } );
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	204 conf->cnf_port_tls = (uint16_t)$3;
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	205 }
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	206 ;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	207
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	208 sctpstreams: SCTPSTREAMS '=' INTEGER ';'
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	209 {
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	210 CHECK_PARAMS_DO( ($3 > 0) && ($3 < 1<<16),
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	211 { yyerror (&yylloc, conf, "Invalid value"); YYERROR; } );
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	212 conf->cnf_sctp_str = (uint16_t)$3;
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	213 }
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	214 ;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	215
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	216 listenon: LISTENON '=' QSTRING ';'
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	217 {
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	218 struct addrinfo hints, *ai;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	219 int ret;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	220
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	221 memset(&hints, 0, sizeof(hints));
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	222 hints.ai_flags = AI_PASSIVE \| AI_NUMERICHOST;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	223 ret = getaddrinfo($3, NULL, &hints, &ai);
23 db6c40b8b307 Added some code in cnxctx.c mainly Sebastien Decugis <sdecugis@nict.go.jp> parents: 22 diff changeset	224 if (ret) { yyerror (&yylloc, conf, gai_strerror(ret)); YYERROR; }
24 bd83ce9328ed Cleanups and completed sctp code (not finished) Sebastien Decugis <sdecugis@nict.go.jp> parents: 23 diff changeset	225 CHECK_FCT_DO( fd_ep_add_merge( &conf->cnf_endpoints, ai->ai_addr, ai->ai_addrlen, EP_FL_CONF ), YYERROR );
23 db6c40b8b307 Added some code in cnxctx.c mainly Sebastien Decugis <sdecugis@nict.go.jp> parents: 22 diff changeset	226 freeaddrinfo(ai);
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	227 free($3);
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	228 }
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	229 ;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	230
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	231 norelay: NORELAY ';'
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	232 {
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	233 conf->cnf_flags.no_fwd = 1;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	234 }
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	235 ;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	236
253 ad6c0118fb50 Configurable number of server threads Sebastien Decugis <sdecugis@nict.go.jp> parents: 142 diff changeset	237 appservthreads: APPSERVTHREADS '=' INTEGER ';'
ad6c0118fb50 Configurable number of server threads Sebastien Decugis <sdecugis@nict.go.jp> parents: 142 diff changeset	238 {
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 662 diff changeset	239 CHECK_PARAMS_DO( ($3 > 0) && ($3 < 256),
253 ad6c0118fb50 Configurable number of server threads Sebastien Decugis <sdecugis@nict.go.jp> parents: 142 diff changeset	240 { yyerror (&yylloc, conf, "Invalid value"); YYERROR; } );
ad6c0118fb50 Configurable number of server threads Sebastien Decugis <sdecugis@nict.go.jp> parents: 142 diff changeset	241 conf->cnf_dispthr = (uint16_t)$3;
ad6c0118fb50 Configurable number of server threads Sebastien Decugis <sdecugis@nict.go.jp> parents: 142 diff changeset	242 }
ad6c0118fb50 Configurable number of server threads Sebastien Decugis <sdecugis@nict.go.jp> parents: 142 diff changeset	243 ;
ad6c0118fb50 Configurable number of server threads Sebastien Decugis <sdecugis@nict.go.jp> parents: 142 diff changeset	244
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	245 noip: NOIP ';'
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	246 {
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	247 if (got_peer_noipv6) {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	248 yyerror (&yylloc, conf, "No_IP conflicts with a ConnectPeer directive No_IPv6.");
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	249 YYERROR;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	250 }
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	251 conf->cnf_flags.no_ip4 = 1;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	252 }
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	253 ;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	254
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	255 noip6: NOIP6 ';'
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	256 {
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	257 if (got_peer_noip) {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	258 yyerror (&yylloc, conf, "No_IP conflicts with a ConnectPeer directive No_IP.");
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	259 YYERROR;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	260 }
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	261 conf->cnf_flags.no_ip6 = 1;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	262 }
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	263 ;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	264
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	265 notcp: NOTCP ';'
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	266 {
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	267 #ifdef DISABLE_SCTP
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	268 yyerror (&yylloc, conf, "No_TCP cannot be specified for daemon compiled with DISABLE_SCTP option.");
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	269 YYERROR;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	270 #endif
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	271 if (conf->cnf_flags.no_sctp)
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	272 {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	273 yyerror (&yylloc, conf, "No_TCP conflicts with No_SCTP directive." );
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	274 YYERROR;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	275 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	276 if (got_peer_nosctp) {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	277 yyerror (&yylloc, conf, "No_TCP conflicts with a ConnectPeer directive No_SCTP.");
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	278 YYERROR;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	279 }
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	280 conf->cnf_flags.no_tcp = 1;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	281 }
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	282 ;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	283
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	284 nosctp: NOSCTP ';'
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	285 {
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	286 if (conf->cnf_flags.no_tcp)
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	287 {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	288 yyerror (&yylloc, conf, "No_SCTP conflicts with No_TCP directive." );
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	289 YYERROR;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	290 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	291 if (got_peer_notcp) {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	292 yyerror (&yylloc, conf, "No_SCTP conflicts with a ConnectPeer directive No_TCP.");
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	293 YYERROR;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	294 }
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	295 conf->cnf_flags.no_sctp = 1;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	296 }
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	297 ;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	298
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	299 prefertcp: PREFERTCP ';'
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	300 {
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	301 conf->cnf_flags.pr_tcp = 1;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	302 }
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	303 ;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	304
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	305 oldtls: OLDTLS ';'
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	306 {
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	307 conf->cnf_flags.tls_alg = 1;
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	308 }
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	309 ;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	310
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	311 loadext: LOADEXT '=' QSTRING extconf ';'
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	312 {
304 ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	313 char * fname;
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	314 char * cfname;
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	315 FILE * fd;
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	316
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	317 /* Try and open the extension file */
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	318 fname = $3;
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	319 fd = fopen(fname, "r");
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	320 if ((fd == NULL) && (*fname != '/')) {
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	321 char * bkp = fname;
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	322 CHECK_MALLOC_DO( fname = malloc( strlen(bkp) + strlen(DEFAULT_EXTENSIONS_PATH) + 2 ),
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	323 { yyerror (&yylloc, conf, "Not enough memory"); YYERROR; } );
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	324 sprintf(fname, DEFAULT_EXTENSIONS_PATH "/%s", bkp);
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	325 fd = fopen(fname, "r");
937 6e7437162f26 Do not change the default file name if extension is not found during configuration parsing, so that dl_open can use LD_LIBRARY_PATH successfully Sebastien Decugis <sdecugis@freediameter.net> parents: 936 diff changeset	326 if (fd == NULL) {
6e7437162f26 Do not change the default file name if extension is not found during configuration parsing, so that dl_open can use LD_LIBRARY_PATH successfully Sebastien Decugis <sdecugis@freediameter.net> parents: 936 diff changeset	327 free(fname);
6e7437162f26 Do not change the default file name if extension is not found during configuration parsing, so that dl_open can use LD_LIBRARY_PATH successfully Sebastien Decugis <sdecugis@freediameter.net> parents: 936 diff changeset	328 fname = bkp;
6e7437162f26 Do not change the default file name if extension is not found during configuration parsing, so that dl_open can use LD_LIBRARY_PATH successfully Sebastien Decugis <sdecugis@freediameter.net> parents: 936 diff changeset	329 } else {
6e7437162f26 Do not change the default file name if extension is not found during configuration parsing, so that dl_open can use LD_LIBRARY_PATH successfully Sebastien Decugis <sdecugis@freediameter.net> parents: 936 diff changeset	330 free(bkp);
6e7437162f26 Do not change the default file name if extension is not found during configuration parsing, so that dl_open can use LD_LIBRARY_PATH successfully Sebastien Decugis <sdecugis@freediameter.net> parents: 936 diff changeset	331 }
304 ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	332 }
937 6e7437162f26 Do not change the default file name if extension is not found during configuration parsing, so that dl_open can use LD_LIBRARY_PATH successfully Sebastien Decugis <sdecugis@freediameter.net> parents: 936 diff changeset	333 if (fd != NULL) {
936 8ee9f8183ab8 Allow freeDiameter extensions to be found by dl_open via the LD_LIBRARY_PATH method rather than default freeDiameter mechanism. Sebastien Decugis <sdecugis@freediameter.net> parents: 928 diff changeset	334 fclose(fd);
937 6e7437162f26 Do not change the default file name if extension is not found during configuration parsing, so that dl_open can use LD_LIBRARY_PATH successfully Sebastien Decugis <sdecugis@freediameter.net> parents: 936 diff changeset	335 } /* otherwise, LD_LIBRARY_PATH will be tested by dl_open.
6e7437162f26 Do not change the default file name if extension is not found during configuration parsing, so that dl_open can use LD_LIBRARY_PATH successfully Sebastien Decugis <sdecugis@freediameter.net> parents: 936 diff changeset	336 This should not give any security issue, otherwise we can add an "else fail" here. */
304 ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	337
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	338 /* Try and open the configuration file (optional) */
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	339 cfname = $4;
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	340 if (cfname) {
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	341 fd = fopen(cfname, "r");
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	342 if ((fd == NULL) && (*cfname != '/')) {
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	343 char * test;
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	344 CHECK_MALLOC_DO( test = malloc( strlen(cfname) + strlen(DEFAULT_CONF_PATH) + 2 ),
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	345 { yyerror (&yylloc, conf, "Not enough memory"); YYERROR; } );
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	346 sprintf(test, DEFAULT_CONF_PATH "/%s", cfname);
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	347 fd = fopen(test, "r");
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	348 if (fd) {
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	349 free(cfname);
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	350 cfname=test;
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	351 } else {
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	352 /* This is not an error, we allow an extension to wait for something else than a real conf file. */
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	353 free(test);
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	354 }
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	355 }
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	356 if (fd)
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	357 fclose(fd);
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	358 }
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	359
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	360 CHECK_FCT_DO( fd_ext_add( fname, cfname ),
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	361 { yyerror (&yylloc, conf, "Error adding extension"); YYERROR; } );
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	362 }
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	363 ;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	364
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	365 extconf: /* empty */
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	366 {
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	367 $$ = NULL;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	368 }
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	369 \| ':' QSTRING
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	370 {
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	371 $$ = $2;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	372 }
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	373 ;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	374
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	375 connpeer: {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	376 memset(&fddpi, 0, sizeof(fddpi));
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	377 fddpi.config.pic_flags.persist = PI_PRST_ALWAYS;
14 14cf6daf716d Some progress on peers module Sebastien Decugis <sdecugis@nict.go.jp> parents: 13 diff changeset	378 fd_list_init( &fddpi.pi_endpoints, NULL );
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	379 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	380 CONNPEER '=' QSTRING peerinfo ';'
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	381 {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	382 fddpi.pi_diamid = $4;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	383 CHECK_FCT_DO( fd_peer_add ( &fddpi, conf->cnf_file, NULL, NULL ),
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	384 { yyerror (&yylloc, conf, "Error adding ConnectPeer information"); YYERROR; } );
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	385
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	386 /* Now destroy any content in the structure */
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	387 free(fddpi.pi_diamid);
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	388 free(fddpi.config.pic_realm);
cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	389 free(fddpi.config.pic_priority);
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	390 while (!FD_IS_LIST_EMPTY(&fddpi.pi_endpoints)) {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	391 struct fd_list * li = fddpi.pi_endpoints.next;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	392 fd_list_unlink(li);
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	393 free(li);
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	394 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	395 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	396 ;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	397
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	398 peerinfo: /* empty */
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	399 \| '{' peerparams '}'
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	400 ;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	401
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	402 peerparams: /* empty */
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	403 \| peerparams NOIP ';'
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	404 {
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	405 if ((conf->cnf_flags.no_ip6) \|\| (fddpi.config.pic_flags.pro3 == PI_P3_IP)) {
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	406 yyerror (&yylloc, conf, "No_IP conflicts with a No_IPv6 directive.");
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	407 YYERROR;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	408 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	409 got_peer_noip++;
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	410 fddpi.config.pic_flags.pro3 = PI_P3_IPv6;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	411 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	412 \| peerparams NOIP6 ';'
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	413 {
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	414 if ((conf->cnf_flags.no_ip4) \|\| (fddpi.config.pic_flags.pro3 == PI_P3_IPv6)) {
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	415 yyerror (&yylloc, conf, "No_IPv6 conflicts with a No_IP directive.");
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	416 YYERROR;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	417 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	418 got_peer_noipv6++;
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	419 fddpi.config.pic_flags.pro3 = PI_P3_IP;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	420 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	421 \| peerparams NOTCP ';'
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	422 {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	423 #ifdef DISABLE_SCTP
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	424 yyerror (&yylloc, conf, "No_TCP cannot be specified in daemon compiled with DISABLE_SCTP option.");
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	425 YYERROR;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	426 #endif
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	427 if ((conf->cnf_flags.no_sctp) \|\| (fddpi.config.pic_flags.pro4 == PI_P4_TCP)) {
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	428 yyerror (&yylloc, conf, "No_TCP conflicts with a No_SCTP directive.");
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	429 YYERROR;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	430 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	431 got_peer_notcp++;
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	432 fddpi.config.pic_flags.pro4 = PI_P4_SCTP;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	433 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	434 \| peerparams NOSCTP ';'
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	435 {
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	436 if ((conf->cnf_flags.no_tcp) \|\| (fddpi.config.pic_flags.pro4 == PI_P4_SCTP)) {
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	437 yyerror (&yylloc, conf, "No_SCTP conflicts with a No_TCP directive.");
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	438 YYERROR;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	439 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	440 got_peer_nosctp++;
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	441 fddpi.config.pic_flags.pro4 = PI_P4_TCP;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	442 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	443 \| peerparams PREFERTCP ';'
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	444 {
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	445 fddpi.config.pic_flags.alg = PI_ALGPREF_TCP;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	446 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	447 \| peerparams OLDTLS ';'
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	448 {
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	449 fddpi.config.pic_flags.sec \|= PI_SEC_TLS_OLD;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	450 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	451 \| peerparams NOTLS ';'
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	452 {
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	453 fddpi.config.pic_flags.sec \|= PI_SEC_NONE;
cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	454 }
cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	455 \| peerparams REALM '=' QSTRING ';'
cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	456 {
cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	457 fddpi.config.pic_realm = $4;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	458 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	459 \| peerparams PORT '=' INTEGER ';'
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	460 {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	461 CHECK_PARAMS_DO( ($4 > 0) && ($4 < 1<<16),
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	462 { yyerror (&yylloc, conf, "Invalid port value"); YYERROR; } );
cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	463 fddpi.config.pic_port = (uint16_t)$4;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	464 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	465 \| peerparams TCTIMER '=' INTEGER ';'
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	466 {
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	467 fddpi.config.pic_tctimer = $4;
cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	468 }
cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	469 \| peerparams TWTIMER '=' INTEGER ';'
cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	470 {
cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	471 fddpi.config.pic_twtimer = $4;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	472 }
22 0b3b46da2c12 Progress on server code Sebastien Decugis <sdecugis@nict.go.jp> parents: 20 diff changeset	473 \| peerparams TLS_PRIO '=' QSTRING ';'
0b3b46da2c12 Progress on server code Sebastien Decugis <sdecugis@nict.go.jp> parents: 20 diff changeset	474 {
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	475 fddpi.config.pic_priority = $4;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	476 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	477 \| peerparams CONNTO '=' QSTRING ';'
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	478 {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	479 struct addrinfo hints, *ai;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	480 int ret;
23 db6c40b8b307 Added some code in cnxctx.c mainly Sebastien Decugis <sdecugis@nict.go.jp> parents: 22 diff changeset	481 int disc = 0;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	482
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	483 memset(&hints, 0, sizeof(hints));
13 ef9ef3bf4752 Progress on peer state machine Sebastien Decugis <sdecugis@nict.go.jp> parents: 12 diff changeset	484 hints.ai_flags = AI_ADDRCONFIG \| AI_NUMERICHOST;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	485 ret = getaddrinfo($4, NULL, &hints, &ai);
13 ef9ef3bf4752 Progress on peer state machine Sebastien Decugis <sdecugis@nict.go.jp> parents: 12 diff changeset	486 if (ret == EAI_NONAME) {
ef9ef3bf4752 Progress on peer state machine Sebastien Decugis <sdecugis@nict.go.jp> parents: 12 diff changeset	487 /* The name was maybe not numeric, try again */
24 bd83ce9328ed Cleanups and completed sctp code (not finished) Sebastien Decugis <sdecugis@nict.go.jp> parents: 23 diff changeset	488 disc = EP_FL_DISC;
13 ef9ef3bf4752 Progress on peer state machine Sebastien Decugis <sdecugis@nict.go.jp> parents: 12 diff changeset	489 hints.ai_flags &= ~ AI_NUMERICHOST;
ef9ef3bf4752 Progress on peer state machine Sebastien Decugis <sdecugis@nict.go.jp> parents: 12 diff changeset	490 ret = getaddrinfo($4, NULL, &hints, &ai);
ef9ef3bf4752 Progress on peer state machine Sebastien Decugis <sdecugis@nict.go.jp> parents: 12 diff changeset	491 }
23 db6c40b8b307 Added some code in cnxctx.c mainly Sebastien Decugis <sdecugis@nict.go.jp> parents: 22 diff changeset	492 if (ret) { yyerror (&yylloc, conf, gai_strerror(ret)); YYERROR; }
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	493
756 36caa2c02d1e Enable running two freeDiameter instances on a single host Sebastien Decugis <sdecugis@nict.go.jp> parents: 740 diff changeset	494 CHECK_FCT_DO( fd_ep_add_merge( &fddpi.pi_endpoints, ai->ai_addr, ai->ai_addrlen, EP_FL_CONF \| (disc ?: EP_ACCEPTALL) ), YYERROR );
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	495 free($4);
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	496 freeaddrinfo(ai);
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	497 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	498 ;
18 e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	499
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	500 tls_cred: TLS_CRED '=' QSTRING ',' QSTRING ';'
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	501 {
308 5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	502 FILE * fd;
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	503 fd = fopen($3, "r");
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	504 if (fd == NULL) {
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	505 int ret = errno;
974 2091bf698fb1 Remove newlines from fd_log_debug, TRACE_DEBUG, TRACE_ERROR, and TRACE_DEBUG_ERROR Thomas Klausner <tk@giga.or.at> parents: 969 diff changeset	506 TRACE_ERROR("Unable to open certificate file %s for reading: %s", $3, strerror(ret));
308 5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	507 yyerror (&yylloc, conf, "Error on file name");
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	508 YYERROR;
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	509 }
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	510 fclose(fd);
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	511 fd = fopen($5, "r");
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	512 if (fd == NULL) {
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	513 int ret = errno;
974 2091bf698fb1 Remove newlines from fd_log_debug, TRACE_DEBUG, TRACE_ERROR, and TRACE_DEBUG_ERROR Thomas Klausner <tk@giga.or.at> parents: 969 diff changeset	514 TRACE_ERROR("Unable to open private key file %s for reading: %s", $5, strerror(ret));
308 5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	515 yyerror (&yylloc, conf, "Error on file name");
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	516 YYERROR;
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	517 }
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	518 fclose(fd);
18 e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	519 conf->cnf_sec_data.cert_file = $3;
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	520 conf->cnf_sec_data.key_file = $5;
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	521
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	522 CHECK_GNUTLS_DO( gnutls_certificate_set_x509_key_file(
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	523 conf->cnf_sec_data.credentials,
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	524 conf->cnf_sec_data.cert_file,
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	525 conf->cnf_sec_data.key_file,
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	526 GNUTLS_X509_FMT_PEM),
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	527 { yyerror (&yylloc, conf, "Error opening certificate or private key file."); YYERROR; } );
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	528 }
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	529 ;
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	530
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	531 tls_ca: TLS_CA '=' QSTRING ';'
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	532 {
308 5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	533 FILE * fd;
805 fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	534 fd = fopen($3, "rb");
308 5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	535 if (fd == NULL) {
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	536 int ret = errno;
974 2091bf698fb1 Remove newlines from fd_log_debug, TRACE_DEBUG, TRACE_ERROR, and TRACE_DEBUG_ERROR Thomas Klausner <tk@giga.or.at> parents: 969 diff changeset	537 TRACE_ERROR("Unable to open CA file %s for reading: %s", $3, strerror(ret));
308 5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	538 yyerror (&yylloc, conf, "Error on file name");
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	539 YYERROR;
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	540 }
805 fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	541 #ifdef GNUTLS_VERSION_300
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	542 {
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	543 /* We import these CA in the trust list */
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	544 gnutls_x509_crt_t * calist;
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	545 unsigned int cacount;
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	546 gnutls_datum_t cafile;
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	547
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	548 CHECK_FCT_DO( fd_conf_stream_to_gnutls_datum(fd, &cafile),
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	549 { yyerror (&yylloc, conf, "Error reading CA file."); YYERROR; } );
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	550
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	551 CHECK_GNUTLS_DO( gnutls_x509_crt_list_import2(&calist, &cacount, &cafile, GNUTLS_X509_FMT_PEM,
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	552 GNUTLS_X509_CRT_LIST_FAIL_IF_UNSORTED),
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	553 { yyerror (&yylloc, conf, "Error importing CA file."); YYERROR; } );
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	554 free(cafile.data);
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	555
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	556 CHECK_GNUTLS_DO( gnutls_x509_trust_list_add_cas (fd_g_config->cnf_sec_data.trustlist, calist, cacount, 0),
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	557 { yyerror (&yylloc, conf, "Error saving CA in trust list."); YYERROR; } );
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	558 }
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	559 #endif /* GNUTLS_VERSION_300 */
308 5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	560 fclose(fd);
18 e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	561 conf->cnf_sec_data.ca_file = $3;
142 dee0a871abcd Added number of CA certificates for debug Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	562 CHECK_GNUTLS_DO( conf->cnf_sec_data.ca_file_nr += gnutls_certificate_set_x509_trust_file(
18 e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	563 conf->cnf_sec_data.credentials,
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	564 conf->cnf_sec_data.ca_file,
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	565 GNUTLS_X509_FMT_PEM),
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	566 { yyerror (&yylloc, conf, "Error setting CA parameters."); YYERROR; } );
805 fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	567
18 e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	568 }
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	569 ;
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	570
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	571 tls_crl: TLS_CRL '=' QSTRING ';'
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	572 {
308 5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	573 FILE * fd;
805 fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	574 fd = fopen($3, "rb");
308 5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	575 if (fd == NULL) {
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	576 int ret = errno;
974 2091bf698fb1 Remove newlines from fd_log_debug, TRACE_DEBUG, TRACE_ERROR, and TRACE_DEBUG_ERROR Thomas Klausner <tk@giga.or.at> parents: 969 diff changeset	577 TRACE_ERROR("Unable to open CRL file %s for reading: %s", $3, strerror(ret));
308 5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	578 yyerror (&yylloc, conf, "Error on file name");
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	579 YYERROR;
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	580 }
805 fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	581 #ifdef GNUTLS_VERSION_300
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	582 {
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	583 /* We import these CRL in the trust list */
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	584 gnutls_x509_crl_t * crllist;
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	585 unsigned int crlcount;
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	586 gnutls_datum_t crlfile;
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	587
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	588 CHECK_FCT_DO( fd_conf_stream_to_gnutls_datum(fd, &crlfile),
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	589 { yyerror (&yylloc, conf, "Error reading CRL file."); YYERROR; } );
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	590
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	591 CHECK_GNUTLS_DO( gnutls_x509_crl_list_import2(&crllist, &crlcount, &crlfile, GNUTLS_X509_FMT_PEM, 0),
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	592 { yyerror (&yylloc, conf, "Error importing CRL file."); YYERROR; } );
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	593 free(crlfile.data);
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	594
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	595 CHECK_GNUTLS_DO( gnutls_x509_trust_list_add_crls (fd_g_config->cnf_sec_data.trustlist, crllist, crlcount,
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	596 GNUTLS_TL_VERIFY_CRL,
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	597 0),
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	598 { yyerror (&yylloc, conf, "Error importing CRL in trust list."); YYERROR; } );
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	599 }
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	600 #endif /* GNUTLS_VERSION_300 */
308 5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	601 fclose(fd);
18 e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	602 conf->cnf_sec_data.crl_file = $3;
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	603 CHECK_GNUTLS_DO( gnutls_certificate_set_x509_crl_file(
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	604 conf->cnf_sec_data.credentials,
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	605 conf->cnf_sec_data.ca_file,
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	606 GNUTLS_X509_FMT_PEM),
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	607 { yyerror (&yylloc, conf, "Error setting CRL parameters."); YYERROR; } );
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	608 }
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	609 ;
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	610
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	611 tls_prio: TLS_PRIO '=' QSTRING ';'
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	612 {
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	613 const char * err_pos = NULL;
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	614 conf->cnf_sec_data.prio_string = $3;
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	615 CHECK_GNUTLS_DO( gnutls_priority_init(
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	616 &conf->cnf_sec_data.prio_cache,
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	617 conf->cnf_sec_data.prio_string,
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	618 &err_pos),
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	619 { yyerror (&yylloc, conf, "Error setting Priority parameter.");
974 2091bf698fb1 Remove newlines from fd_log_debug, TRACE_DEBUG, TRACE_ERROR, and TRACE_DEBUG_ERROR Thomas Klausner <tk@giga.or.at> parents: 969 diff changeset	620 TRACE_ERROR("Error at position : %s", err_pos);
18 e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	621 YYERROR; } );
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	622 }
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	623 ;
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	624
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	625 tls_dh: TLS_DH_BITS '=' INTEGER ';'
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	626 {
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	627 conf->cnf_sec_data.dh_bits = $3;
578 7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	628 }
7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	629 \| TLS_DH_FILE '=' QSTRING ';'
7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	630 {
7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	631 FILE * fd;
7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	632 free(conf->cnf_sec_data.dh_file);
7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	633 conf->cnf_sec_data.dh_file = $3;
7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	634 fd = fopen($3, "r");
7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	635 if (fd == NULL) {
7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	636 int ret = errno;
974 2091bf698fb1 Remove newlines from fd_log_debug, TRACE_DEBUG, TRACE_ERROR, and TRACE_DEBUG_ERROR Thomas Klausner <tk@giga.or.at> parents: 969 diff changeset	637 TRACE_ERROR("Unable to open DH file %s for reading: %s", $3, strerror(ret));
578 7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	638 yyerror (&yylloc, conf, "Error on file name");
7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	639 YYERROR;
7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	640 }
7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	641 fclose(fd);
18 e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	642 }
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	643 ;

Mercurial > hg > freeDiameter

annotate libfdcore/fdd.y @ 974:2091bf698fb1