freeDiameter: libfdcore/fdd.y annotate

annotate libfdcore/fdd.y @ 1281:ab6457399be2 1.2.1-rc1

Updated copyright information

author	Sebastien Decugis <sdecugis@freediameter.net>
date	Sat, 03 Jan 2015 02:23:28 +0800
parents	25fad6714991
children	afe0ecdb0692

rev	line source
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	1 /*********************************************************************************************************
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	2 * Software License Agreement (BSD License) *
740 4a9f08d6b6ba Updated my mail address Sebastien Decugis <sdecugis@nict.go.jp> parents: 706 diff changeset	3 * Author: Sebastien Decugis <sdecugis@freediameter.net> *
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	4 * *
1281 ab6457399be2 Updated copyright information Sebastien Decugis <sdecugis@freediameter.net> parents: 1268 diff changeset	5 * Copyright (c) 2015, WIDE Project and NICT *
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	6 * All rights reserved. *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	7 * *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	8 * Redistribution and use of this software in source and binary forms, with or without modification, are *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	9 * permitted provided that the following conditions are met: *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	10 * *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	11 * * Redistributions of source code must retain the above *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	12 * copyright notice, this list of conditions and the *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	13 * following disclaimer. *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	14 * *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	15 * * Redistributions in binary form must reproduce the above *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	16 * copyright notice, this list of conditions and the *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	17 * following disclaimer in the documentation and/or other *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	18 * materials provided with the distribution. *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	19 * *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	20 * * Neither the name of the WIDE Project or NICT nor the *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	21 * names of its contributors may be used to endorse or *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	22 * promote products derived from this software without *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	23 * specific prior written permission of WIDE Project and *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	24 * NICT. *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	25 * *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	26 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	27 * WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	28 * PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	29 * ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	30 * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	31 * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	32 * TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	33 * ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	34 *********************************************************************************************************/
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	35
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	36 /* Yacc configuration parser.
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	37 *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	38 * This file defines the grammar of the configuration file.
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	39 * Note that each extension has a separate independant configuration file.
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	40 *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	41 * Note : This module is NOT thread-safe. All processing must be done from one thread only.
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	42 */
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	43
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	44 /* For development only : */
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	45 %debug
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	46 %error-verbose
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	47
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	48 %parse-param {struct fd_config * conf}
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	49
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	50 /* Keep track of location */
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	51 %locations
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	52 %pure-parser
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	53
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	54 %{
658 f198d16fa7f4 Initial commit for 1.1.0: Sebastien Decugis <sdecugis@nict.go.jp> parents: 578 diff changeset	55 #include "fdcore-internal.h"
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	56 #include "fdd.tab.h" /* bug : bison does not define the YYLTYPE before including this bloc, so... */
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	57
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	58 /* The Lex parser prototype */
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	59 int fddlex(YYSTYPE lvalp, YYLTYPE llocp);
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	60
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	61 /* Function to report error */
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	62 void yyerror (YYLTYPE ploc, struct fd_config conf, char const *s)
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	63 {
918 46f9982b7d26 Use logging routines for configuration file parsing (based on patch by Thomas) Sebastien Decugis <sdecugis@freediameter.net> parents: 808 diff changeset	64 if (ploc->first_line != ploc->last_line) {
974 2091bf698fb1 Remove newlines from fd_log_debug, TRACE_DEBUG, TRACE_ERROR, and TRACE_DEBUG_ERROR Thomas Klausner <tk@giga.or.at> parents: 969 diff changeset	65 TRACE_ERROR("%s:%d.%d-%d.%d : %s", conf->cnf_file, ploc->first_line, ploc->first_column, ploc->last_line, ploc->last_column, s);
918 46f9982b7d26 Use logging routines for configuration file parsing (based on patch by Thomas) Sebastien Decugis <sdecugis@freediameter.net> parents: 808 diff changeset	66 } else if (ploc->first_column != ploc->last_column) {
974 2091bf698fb1 Remove newlines from fd_log_debug, TRACE_DEBUG, TRACE_ERROR, and TRACE_DEBUG_ERROR Thomas Klausner <tk@giga.or.at> parents: 969 diff changeset	67 TRACE_ERROR("%s:%d.%d-%d : %s", conf->cnf_file, ploc->first_line, ploc->first_column, ploc->last_column, s);
918 46f9982b7d26 Use logging routines for configuration file parsing (based on patch by Thomas) Sebastien Decugis <sdecugis@freediameter.net> parents: 808 diff changeset	68 } else {
974 2091bf698fb1 Remove newlines from fd_log_debug, TRACE_DEBUG, TRACE_ERROR, and TRACE_DEBUG_ERROR Thomas Klausner <tk@giga.or.at> parents: 969 diff changeset	69 TRACE_ERROR("%s:%d.%d : %s", conf->cnf_file, ploc->first_line, ploc->first_column, s);
918 46f9982b7d26 Use logging routines for configuration file parsing (based on patch by Thomas) Sebastien Decugis <sdecugis@freediameter.net> parents: 808 diff changeset	70 }
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	71 }
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	72
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	73 int got_peer_noip = 0;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	74 int got_peer_noipv6 = 0;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	75 int got_peer_notcp = 0;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	76 int got_peer_nosctp = 0;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	77
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	78 struct peer_info fddpi;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	79
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	80 %}
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	81
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	82 /* Values returned by lex for token */
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	83 %union {
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	84 char string; / The string is allocated by strdup in lex.*/
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	85 int integer; /* Store integer values */
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	86 }
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	87
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	88 /* In case of error in the lexical analysis */
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	89 %token LEX_ERROR
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	90
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	91 %token <string> QSTRING
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	92 %token <integer> INTEGER
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	93
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	94 %type <string> extconf
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	95
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	96 %token IDENTITY
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	97 %token REALM
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	98 %token PORT
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	99 %token SECPORT
1180 773498f59520 Preparing for future DTLS/SCTP support Sebastien Decugis <sdecugis@freediameter.net> parents: 1012 diff changeset	100 %token SEC3436
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	101 %token NOIP
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	102 %token NOIP6
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	103 %token NOTCP
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	104 %token NOSCTP
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	105 %token PREFERTCP
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	106 %token OLDTLS
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	107 %token NOTLS
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	108 %token SCTPSTREAMS
253 ad6c0118fb50 Configurable number of server threads Sebastien Decugis <sdecugis@nict.go.jp> parents: 142 diff changeset	109 %token APPSERVTHREADS
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	110 %token LISTENON
1189 50bf33dc8fe0 Limit number of incoming connections under processing to configurable value Sebastien Decugis <sdecugis@freediameter.net> parents: 1180 diff changeset	111 %token THRPERSRV
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	112 %token TCTIMER
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	113 %token TWTIMER
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	114 %token NORELAY
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	115 %token LOADEXT
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	116 %token CONNPEER
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	117 %token CONNTO
18 e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	118 %token TLS_CRED
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	119 %token TLS_CA
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	120 %token TLS_CRL
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	121 %token TLS_PRIO
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	122 %token TLS_DH_BITS
578 7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	123 %token TLS_DH_FILE
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	124
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	125
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	126 /* -------------------------------------- */
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	127 %%
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	128
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	129 /* The grammar definition - Sections blocs. */
18 e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	130 conffile: /* Empty is OK -- for simplicity here, we reject in daemon later */
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	131 \| conffile identity
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	132 \| conffile realm
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	133 \| conffile tctimer
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	134 \| conffile twtimer
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	135 \| conffile port
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	136 \| conffile secport
1180 773498f59520 Preparing for future DTLS/SCTP support Sebastien Decugis <sdecugis@freediameter.net> parents: 1012 diff changeset	137 \| conffile sec3436
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	138 \| conffile sctpstreams
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	139 \| conffile listenon
1189 50bf33dc8fe0 Limit number of incoming connections under processing to configurable value Sebastien Decugis <sdecugis@freediameter.net> parents: 1180 diff changeset	140 \| conffile thrpersrv
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	141 \| conffile norelay
253 ad6c0118fb50 Configurable number of server threads Sebastien Decugis <sdecugis@nict.go.jp> parents: 142 diff changeset	142 \| conffile appservthreads
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	143 \| conffile noip
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	144 \| conffile noip6
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	145 \| conffile notcp
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	146 \| conffile nosctp
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	147 \| conffile prefertcp
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	148 \| conffile oldtls
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	149 \| conffile loadext
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	150 \| conffile connpeer
18 e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	151 \| conffile tls_cred
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	152 \| conffile tls_ca
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	153 \| conffile tls_crl
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	154 \| conffile tls_prio
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	155 \| conffile tls_dh
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	156 \| conffile errors
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	157 {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	158 yyerror(&yylloc, conf, "An error occurred while parsing the configuration file");
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	159 return EINVAL;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	160 }
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	161 ;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	162
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	163 /* Lexical or syntax error */
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	164 errors: LEX_ERROR
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	165 \| error
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	166 ;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	167
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	168 identity: IDENTITY '=' QSTRING ';'
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	169 {
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	170 conf->cnf_diamid = $3;
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	171 }
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	172 ;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	173
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	174 realm: REALM '=' QSTRING ';'
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	175 {
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	176 conf->cnf_diamrlm = $3;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	177 }
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	178 ;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	179
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	180 tctimer: TCTIMER '=' INTEGER ';'
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	181 {
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	182 CHECK_PARAMS_DO( ($3 > 0),
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	183 { yyerror (&yylloc, conf, "Invalid value"); YYERROR; } );
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	184 conf->cnf_timer_tc = (unsigned int)$3;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	185 }
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	186 ;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	187
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	188 twtimer: TWTIMER '=' INTEGER ';'
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	189 {
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	190 CHECK_PARAMS_DO( ($3 > 5),
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	191 { yyerror (&yylloc, conf, "Invalid value"); YYERROR; } );
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	192 conf->cnf_timer_tw = (unsigned int)$3;
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	193 }
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	194 ;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	195
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	196 port: PORT '=' INTEGER ';'
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	197 {
1012 cafdcbcb5e79 Allow port value 0 in the configuration to disable a server Sebastien Decugis <sdecugis@freediameter.net> parents: 974 diff changeset	198 CHECK_PARAMS_DO( ($3 >= 0) && ($3 < 1<<16),
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	199 { yyerror (&yylloc, conf, "Invalid value"); YYERROR; } );
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	200 conf->cnf_port = (uint16_t)$3;
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	201 }
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	202 ;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	203
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	204 secport: SECPORT '=' INTEGER ';'
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	205 {
1012 cafdcbcb5e79 Allow port value 0 in the configuration to disable a server Sebastien Decugis <sdecugis@freediameter.net> parents: 974 diff changeset	206 CHECK_PARAMS_DO( ($3 >= 0) && ($3 < 1<<16),
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	207 { yyerror (&yylloc, conf, "Invalid value"); YYERROR; } );
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	208 conf->cnf_port_tls = (uint16_t)$3;
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	209 }
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	210 ;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	211
1180 773498f59520 Preparing for future DTLS/SCTP support Sebastien Decugis <sdecugis@freediameter.net> parents: 1012 diff changeset	212 sec3436: SEC3436 '=' INTEGER ';'
773498f59520 Preparing for future DTLS/SCTP support Sebastien Decugis <sdecugis@freediameter.net> parents: 1012 diff changeset	213 {
773498f59520 Preparing for future DTLS/SCTP support Sebastien Decugis <sdecugis@freediameter.net> parents: 1012 diff changeset	214 CHECK_PARAMS_DO( ($3 >= 0) && ($3 < 1<<16),
773498f59520 Preparing for future DTLS/SCTP support Sebastien Decugis <sdecugis@freediameter.net> parents: 1012 diff changeset	215 { yyerror (&yylloc, conf, "Invalid value"); YYERROR; } );
773498f59520 Preparing for future DTLS/SCTP support Sebastien Decugis <sdecugis@freediameter.net> parents: 1012 diff changeset	216 conf->cnf_port_3436 = (uint16_t)$3;
773498f59520 Preparing for future DTLS/SCTP support Sebastien Decugis <sdecugis@freediameter.net> parents: 1012 diff changeset	217 }
773498f59520 Preparing for future DTLS/SCTP support Sebastien Decugis <sdecugis@freediameter.net> parents: 1012 diff changeset	218 ;
773498f59520 Preparing for future DTLS/SCTP support Sebastien Decugis <sdecugis@freediameter.net> parents: 1012 diff changeset	219
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	220 sctpstreams: SCTPSTREAMS '=' INTEGER ';'
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	221 {
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	222 CHECK_PARAMS_DO( ($3 > 0) && ($3 < 1<<16),
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	223 { yyerror (&yylloc, conf, "Invalid value"); YYERROR; } );
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	224 conf->cnf_sctp_str = (uint16_t)$3;
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	225 }
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	226 ;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	227
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	228 listenon: LISTENON '=' QSTRING ';'
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	229 {
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	230 struct addrinfo hints, *ai;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	231 int ret;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	232
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	233 memset(&hints, 0, sizeof(hints));
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	234 hints.ai_flags = AI_PASSIVE \| AI_NUMERICHOST;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	235 ret = getaddrinfo($3, NULL, &hints, &ai);
23 db6c40b8b307 Added some code in cnxctx.c mainly Sebastien Decugis <sdecugis@nict.go.jp> parents: 22 diff changeset	236 if (ret) { yyerror (&yylloc, conf, gai_strerror(ret)); YYERROR; }
24 bd83ce9328ed Cleanups and completed sctp code (not finished) Sebastien Decugis <sdecugis@nict.go.jp> parents: 23 diff changeset	237 CHECK_FCT_DO( fd_ep_add_merge( &conf->cnf_endpoints, ai->ai_addr, ai->ai_addrlen, EP_FL_CONF ), YYERROR );
23 db6c40b8b307 Added some code in cnxctx.c mainly Sebastien Decugis <sdecugis@nict.go.jp> parents: 22 diff changeset	238 freeaddrinfo(ai);
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	239 free($3);
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	240 }
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	241 ;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	242
1189 50bf33dc8fe0 Limit number of incoming connections under processing to configurable value Sebastien Decugis <sdecugis@freediameter.net> parents: 1180 diff changeset	243 thrpersrv: THRPERSRV '=' INTEGER ';'
50bf33dc8fe0 Limit number of incoming connections under processing to configurable value Sebastien Decugis <sdecugis@freediameter.net> parents: 1180 diff changeset	244 {
50bf33dc8fe0 Limit number of incoming connections under processing to configurable value Sebastien Decugis <sdecugis@freediameter.net> parents: 1180 diff changeset	245 CHECK_PARAMS_DO( ($3 > 0),
50bf33dc8fe0 Limit number of incoming connections under processing to configurable value Sebastien Decugis <sdecugis@freediameter.net> parents: 1180 diff changeset	246 { yyerror (&yylloc, conf, "Invalid value"); YYERROR; } );
50bf33dc8fe0 Limit number of incoming connections under processing to configurable value Sebastien Decugis <sdecugis@freediameter.net> parents: 1180 diff changeset	247 conf->cnf_thr_srv = $3;
50bf33dc8fe0 Limit number of incoming connections under processing to configurable value Sebastien Decugis <sdecugis@freediameter.net> parents: 1180 diff changeset	248 }
50bf33dc8fe0 Limit number of incoming connections under processing to configurable value Sebastien Decugis <sdecugis@freediameter.net> parents: 1180 diff changeset	249 ;
50bf33dc8fe0 Limit number of incoming connections under processing to configurable value Sebastien Decugis <sdecugis@freediameter.net> parents: 1180 diff changeset	250
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	251 norelay: NORELAY ';'
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	252 {
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	253 conf->cnf_flags.no_fwd = 1;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	254 }
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	255 ;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	256
253 ad6c0118fb50 Configurable number of server threads Sebastien Decugis <sdecugis@nict.go.jp> parents: 142 diff changeset	257 appservthreads: APPSERVTHREADS '=' INTEGER ';'
ad6c0118fb50 Configurable number of server threads Sebastien Decugis <sdecugis@nict.go.jp> parents: 142 diff changeset	258 {
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 662 diff changeset	259 CHECK_PARAMS_DO( ($3 > 0) && ($3 < 256),
253 ad6c0118fb50 Configurable number of server threads Sebastien Decugis <sdecugis@nict.go.jp> parents: 142 diff changeset	260 { yyerror (&yylloc, conf, "Invalid value"); YYERROR; } );
ad6c0118fb50 Configurable number of server threads Sebastien Decugis <sdecugis@nict.go.jp> parents: 142 diff changeset	261 conf->cnf_dispthr = (uint16_t)$3;
ad6c0118fb50 Configurable number of server threads Sebastien Decugis <sdecugis@nict.go.jp> parents: 142 diff changeset	262 }
ad6c0118fb50 Configurable number of server threads Sebastien Decugis <sdecugis@nict.go.jp> parents: 142 diff changeset	263 ;
ad6c0118fb50 Configurable number of server threads Sebastien Decugis <sdecugis@nict.go.jp> parents: 142 diff changeset	264
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	265 noip: NOIP ';'
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	266 {
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	267 if (got_peer_noipv6) {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	268 yyerror (&yylloc, conf, "No_IP conflicts with a ConnectPeer directive No_IPv6.");
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	269 YYERROR;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	270 }
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	271 conf->cnf_flags.no_ip4 = 1;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	272 }
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	273 ;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	274
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	275 noip6: NOIP6 ';'
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	276 {
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	277 if (got_peer_noip) {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	278 yyerror (&yylloc, conf, "No_IP conflicts with a ConnectPeer directive No_IP.");
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	279 YYERROR;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	280 }
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	281 conf->cnf_flags.no_ip6 = 1;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	282 }
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	283 ;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	284
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	285 notcp: NOTCP ';'
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	286 {
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	287 #ifdef DISABLE_SCTP
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	288 yyerror (&yylloc, conf, "No_TCP cannot be specified for daemon compiled with DISABLE_SCTP option.");
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	289 YYERROR;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	290 #endif
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	291 if (conf->cnf_flags.no_sctp)
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	292 {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	293 yyerror (&yylloc, conf, "No_TCP conflicts with No_SCTP directive." );
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	294 YYERROR;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	295 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	296 if (got_peer_nosctp) {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	297 yyerror (&yylloc, conf, "No_TCP conflicts with a ConnectPeer directive No_SCTP.");
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	298 YYERROR;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	299 }
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	300 conf->cnf_flags.no_tcp = 1;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	301 }
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	302 ;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	303
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	304 nosctp: NOSCTP ';'
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	305 {
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	306 if (conf->cnf_flags.no_tcp)
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	307 {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	308 yyerror (&yylloc, conf, "No_SCTP conflicts with No_TCP directive." );
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	309 YYERROR;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	310 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	311 if (got_peer_notcp) {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	312 yyerror (&yylloc, conf, "No_SCTP conflicts with a ConnectPeer directive No_TCP.");
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	313 YYERROR;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	314 }
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	315 conf->cnf_flags.no_sctp = 1;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	316 }
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	317 ;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	318
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	319 prefertcp: PREFERTCP ';'
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	320 {
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	321 conf->cnf_flags.pr_tcp = 1;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	322 }
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	323 ;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	324
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	325 oldtls: OLDTLS ';'
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	326 {
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	327 conf->cnf_flags.tls_alg = 1;
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	328 }
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	329 ;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	330
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	331 loadext: LOADEXT '=' QSTRING extconf ';'
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	332 {
304 ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	333 char * fname;
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	334 char * cfname;
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	335 FILE * fd;
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	336
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	337 /* Try and open the extension file */
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	338 fname = $3;
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	339 fd = fopen(fname, "r");
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	340 if ((fd == NULL) && (*fname != '/')) {
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	341 char * bkp = fname;
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	342 CHECK_MALLOC_DO( fname = malloc( strlen(bkp) + strlen(DEFAULT_EXTENSIONS_PATH) + 2 ),
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	343 { yyerror (&yylloc, conf, "Not enough memory"); YYERROR; } );
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	344 sprintf(fname, DEFAULT_EXTENSIONS_PATH "/%s", bkp);
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	345 fd = fopen(fname, "r");
937 6e7437162f26 Do not change the default file name if extension is not found during configuration parsing, so that dl_open can use LD_LIBRARY_PATH successfully Sebastien Decugis <sdecugis@freediameter.net> parents: 936 diff changeset	346 if (fd == NULL) {
6e7437162f26 Do not change the default file name if extension is not found during configuration parsing, so that dl_open can use LD_LIBRARY_PATH successfully Sebastien Decugis <sdecugis@freediameter.net> parents: 936 diff changeset	347 free(fname);
6e7437162f26 Do not change the default file name if extension is not found during configuration parsing, so that dl_open can use LD_LIBRARY_PATH successfully Sebastien Decugis <sdecugis@freediameter.net> parents: 936 diff changeset	348 fname = bkp;
6e7437162f26 Do not change the default file name if extension is not found during configuration parsing, so that dl_open can use LD_LIBRARY_PATH successfully Sebastien Decugis <sdecugis@freediameter.net> parents: 936 diff changeset	349 } else {
6e7437162f26 Do not change the default file name if extension is not found during configuration parsing, so that dl_open can use LD_LIBRARY_PATH successfully Sebastien Decugis <sdecugis@freediameter.net> parents: 936 diff changeset	350 free(bkp);
6e7437162f26 Do not change the default file name if extension is not found during configuration parsing, so that dl_open can use LD_LIBRARY_PATH successfully Sebastien Decugis <sdecugis@freediameter.net> parents: 936 diff changeset	351 }
304 ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	352 }
937 6e7437162f26 Do not change the default file name if extension is not found during configuration parsing, so that dl_open can use LD_LIBRARY_PATH successfully Sebastien Decugis <sdecugis@freediameter.net> parents: 936 diff changeset	353 if (fd != NULL) {
936 8ee9f8183ab8 Allow freeDiameter extensions to be found by dl_open via the LD_LIBRARY_PATH method rather than default freeDiameter mechanism. Sebastien Decugis <sdecugis@freediameter.net> parents: 928 diff changeset	354 fclose(fd);
937 6e7437162f26 Do not change the default file name if extension is not found during configuration parsing, so that dl_open can use LD_LIBRARY_PATH successfully Sebastien Decugis <sdecugis@freediameter.net> parents: 936 diff changeset	355 } /* otherwise, LD_LIBRARY_PATH will be tested by dl_open.
6e7437162f26 Do not change the default file name if extension is not found during configuration parsing, so that dl_open can use LD_LIBRARY_PATH successfully Sebastien Decugis <sdecugis@freediameter.net> parents: 936 diff changeset	356 This should not give any security issue, otherwise we can add an "else fail" here. */
304 ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	357
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	358 /* Try and open the configuration file (optional) */
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	359 cfname = $4;
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	360 if (cfname) {
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	361 fd = fopen(cfname, "r");
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	362 if ((fd == NULL) && (*cfname != '/')) {
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	363 char * test;
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	364 CHECK_MALLOC_DO( test = malloc( strlen(cfname) + strlen(DEFAULT_CONF_PATH) + 2 ),
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	365 { yyerror (&yylloc, conf, "Not enough memory"); YYERROR; } );
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	366 sprintf(test, DEFAULT_CONF_PATH "/%s", cfname);
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	367 fd = fopen(test, "r");
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	368 if (fd) {
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	369 free(cfname);
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	370 cfname=test;
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	371 } else {
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	372 /* This is not an error, we allow an extension to wait for something else than a real conf file. */
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	373 free(test);
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	374 }
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	375 }
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	376 if (fd)
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	377 fclose(fd);
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	378 }
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	379
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	380 CHECK_FCT_DO( fd_ext_add( fname, cfname ),
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	381 { yyerror (&yylloc, conf, "Error adding extension"); YYERROR; } );
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	382 }
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	383 ;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	384
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	385 extconf: /* empty */
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	386 {
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	387 $$ = NULL;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	388 }
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	389 \| ':' QSTRING
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	390 {
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	391 $$ = $2;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	392 }
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	393 ;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	394
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	395 connpeer: {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	396 memset(&fddpi, 0, sizeof(fddpi));
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	397 fddpi.config.pic_flags.persist = PI_PRST_ALWAYS;
14 14cf6daf716d Some progress on peers module Sebastien Decugis <sdecugis@nict.go.jp> parents: 13 diff changeset	398 fd_list_init( &fddpi.pi_endpoints, NULL );
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	399 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	400 CONNPEER '=' QSTRING peerinfo ';'
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	401 {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	402 fddpi.pi_diamid = $4;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	403 CHECK_FCT_DO( fd_peer_add ( &fddpi, conf->cnf_file, NULL, NULL ),
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	404 { yyerror (&yylloc, conf, "Error adding ConnectPeer information"); YYERROR; } );
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	405
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	406 /* Now destroy any content in the structure */
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	407 free(fddpi.pi_diamid);
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	408 free(fddpi.config.pic_realm);
cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	409 free(fddpi.config.pic_priority);
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	410 while (!FD_IS_LIST_EMPTY(&fddpi.pi_endpoints)) {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	411 struct fd_list * li = fddpi.pi_endpoints.next;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	412 fd_list_unlink(li);
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	413 free(li);
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	414 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	415 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	416 ;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	417
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	418 peerinfo: /* empty */
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	419 \| '{' peerparams '}'
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	420 ;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	421
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	422 peerparams: /* empty */
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	423 \| peerparams NOIP ';'
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	424 {
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	425 if ((conf->cnf_flags.no_ip6) \|\| (fddpi.config.pic_flags.pro3 == PI_P3_IP)) {
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	426 yyerror (&yylloc, conf, "No_IP conflicts with a No_IPv6 directive.");
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	427 YYERROR;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	428 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	429 got_peer_noip++;
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	430 fddpi.config.pic_flags.pro3 = PI_P3_IPv6;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	431 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	432 \| peerparams NOIP6 ';'
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	433 {
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	434 if ((conf->cnf_flags.no_ip4) \|\| (fddpi.config.pic_flags.pro3 == PI_P3_IPv6)) {
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	435 yyerror (&yylloc, conf, "No_IPv6 conflicts with a No_IP directive.");
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	436 YYERROR;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	437 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	438 got_peer_noipv6++;
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	439 fddpi.config.pic_flags.pro3 = PI_P3_IP;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	440 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	441 \| peerparams NOTCP ';'
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	442 {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	443 #ifdef DISABLE_SCTP
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	444 yyerror (&yylloc, conf, "No_TCP cannot be specified in daemon compiled with DISABLE_SCTP option.");
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	445 YYERROR;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	446 #endif
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	447 if ((conf->cnf_flags.no_sctp) \|\| (fddpi.config.pic_flags.pro4 == PI_P4_TCP)) {
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	448 yyerror (&yylloc, conf, "No_TCP conflicts with a No_SCTP directive.");
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	449 YYERROR;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	450 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	451 got_peer_notcp++;
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	452 fddpi.config.pic_flags.pro4 = PI_P4_SCTP;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	453 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	454 \| peerparams NOSCTP ';'
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	455 {
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	456 if ((conf->cnf_flags.no_tcp) \|\| (fddpi.config.pic_flags.pro4 == PI_P4_SCTP)) {
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	457 yyerror (&yylloc, conf, "No_SCTP conflicts with a No_TCP directive.");
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	458 YYERROR;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	459 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	460 got_peer_nosctp++;
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	461 fddpi.config.pic_flags.pro4 = PI_P4_TCP;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	462 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	463 \| peerparams PREFERTCP ';'
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	464 {
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	465 fddpi.config.pic_flags.alg = PI_ALGPREF_TCP;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	466 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	467 \| peerparams OLDTLS ';'
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	468 {
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	469 fddpi.config.pic_flags.sec \|= PI_SEC_TLS_OLD;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	470 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	471 \| peerparams NOTLS ';'
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	472 {
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	473 fddpi.config.pic_flags.sec \|= PI_SEC_NONE;
cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	474 }
1180 773498f59520 Preparing for future DTLS/SCTP support Sebastien Decugis <sdecugis@freediameter.net> parents: 1012 diff changeset	475 \| peerparams SEC3436 ';'
773498f59520 Preparing for future DTLS/SCTP support Sebastien Decugis <sdecugis@freediameter.net> parents: 1012 diff changeset	476 {
773498f59520 Preparing for future DTLS/SCTP support Sebastien Decugis <sdecugis@freediameter.net> parents: 1012 diff changeset	477 fddpi.config.pic_flags.sctpsec \|= PI_SCTPSEC_3436;
773498f59520 Preparing for future DTLS/SCTP support Sebastien Decugis <sdecugis@freediameter.net> parents: 1012 diff changeset	478 }
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	479 \| peerparams REALM '=' QSTRING ';'
cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	480 {
cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	481 fddpi.config.pic_realm = $4;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	482 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	483 \| peerparams PORT '=' INTEGER ';'
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	484 {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	485 CHECK_PARAMS_DO( ($4 > 0) && ($4 < 1<<16),
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	486 { yyerror (&yylloc, conf, "Invalid port value"); YYERROR; } );
cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	487 fddpi.config.pic_port = (uint16_t)$4;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	488 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	489 \| peerparams TCTIMER '=' INTEGER ';'
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	490 {
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	491 fddpi.config.pic_tctimer = $4;
cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	492 }
cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	493 \| peerparams TWTIMER '=' INTEGER ';'
cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	494 {
cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	495 fddpi.config.pic_twtimer = $4;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	496 }
22 0b3b46da2c12 Progress on server code Sebastien Decugis <sdecugis@nict.go.jp> parents: 20 diff changeset	497 \| peerparams TLS_PRIO '=' QSTRING ';'
0b3b46da2c12 Progress on server code Sebastien Decugis <sdecugis@nict.go.jp> parents: 20 diff changeset	498 {
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	499 fddpi.config.pic_priority = $4;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	500 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	501 \| peerparams CONNTO '=' QSTRING ';'
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	502 {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	503 struct addrinfo hints, *ai;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	504 int ret;
23 db6c40b8b307 Added some code in cnxctx.c mainly Sebastien Decugis <sdecugis@nict.go.jp> parents: 22 diff changeset	505 int disc = 0;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	506
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	507 memset(&hints, 0, sizeof(hints));
13 ef9ef3bf4752 Progress on peer state machine Sebastien Decugis <sdecugis@nict.go.jp> parents: 12 diff changeset	508 hints.ai_flags = AI_ADDRCONFIG \| AI_NUMERICHOST;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	509 ret = getaddrinfo($4, NULL, &hints, &ai);
13 ef9ef3bf4752 Progress on peer state machine Sebastien Decugis <sdecugis@nict.go.jp> parents: 12 diff changeset	510 if (ret == EAI_NONAME) {
ef9ef3bf4752 Progress on peer state machine Sebastien Decugis <sdecugis@nict.go.jp> parents: 12 diff changeset	511 /* The name was maybe not numeric, try again */
24 bd83ce9328ed Cleanups and completed sctp code (not finished) Sebastien Decugis <sdecugis@nict.go.jp> parents: 23 diff changeset	512 disc = EP_FL_DISC;
13 ef9ef3bf4752 Progress on peer state machine Sebastien Decugis <sdecugis@nict.go.jp> parents: 12 diff changeset	513 hints.ai_flags &= ~ AI_NUMERICHOST;
ef9ef3bf4752 Progress on peer state machine Sebastien Decugis <sdecugis@nict.go.jp> parents: 12 diff changeset	514 ret = getaddrinfo($4, NULL, &hints, &ai);
ef9ef3bf4752 Progress on peer state machine Sebastien Decugis <sdecugis@nict.go.jp> parents: 12 diff changeset	515 }
23 db6c40b8b307 Added some code in cnxctx.c mainly Sebastien Decugis <sdecugis@nict.go.jp> parents: 22 diff changeset	516 if (ret) { yyerror (&yylloc, conf, gai_strerror(ret)); YYERROR; }
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	517
756 36caa2c02d1e Enable running two freeDiameter instances on a single host Sebastien Decugis <sdecugis@nict.go.jp> parents: 740 diff changeset	518 CHECK_FCT_DO( fd_ep_add_merge( &fddpi.pi_endpoints, ai->ai_addr, ai->ai_addrlen, EP_FL_CONF \| (disc ?: EP_ACCEPTALL) ), YYERROR );
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	519 free($4);
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	520 freeaddrinfo(ai);
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	521 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	522 ;
18 e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	523
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	524 tls_cred: TLS_CRED '=' QSTRING ',' QSTRING ';'
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	525 {
308 5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	526 FILE * fd;
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	527 fd = fopen($3, "r");
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	528 if (fd == NULL) {
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	529 int ret = errno;
974 2091bf698fb1 Remove newlines from fd_log_debug, TRACE_DEBUG, TRACE_ERROR, and TRACE_DEBUG_ERROR Thomas Klausner <tk@giga.or.at> parents: 969 diff changeset	530 TRACE_ERROR("Unable to open certificate file %s for reading: %s", $3, strerror(ret));
308 5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	531 yyerror (&yylloc, conf, "Error on file name");
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	532 YYERROR;
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	533 }
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	534 fclose(fd);
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	535 fd = fopen($5, "r");
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	536 if (fd == NULL) {
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	537 int ret = errno;
974 2091bf698fb1 Remove newlines from fd_log_debug, TRACE_DEBUG, TRACE_ERROR, and TRACE_DEBUG_ERROR Thomas Klausner <tk@giga.or.at> parents: 969 diff changeset	538 TRACE_ERROR("Unable to open private key file %s for reading: %s", $5, strerror(ret));
308 5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	539 yyerror (&yylloc, conf, "Error on file name");
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	540 YYERROR;
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	541 }
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	542 fclose(fd);
18 e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	543 conf->cnf_sec_data.cert_file = $3;
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	544 conf->cnf_sec_data.key_file = $5;
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	545
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	546 CHECK_GNUTLS_DO( gnutls_certificate_set_x509_key_file(
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	547 conf->cnf_sec_data.credentials,
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	548 conf->cnf_sec_data.cert_file,
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	549 conf->cnf_sec_data.key_file,
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	550 GNUTLS_X509_FMT_PEM),
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	551 { yyerror (&yylloc, conf, "Error opening certificate or private key file."); YYERROR; } );
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	552 }
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	553 ;
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	554
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	555 tls_ca: TLS_CA '=' QSTRING ';'
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	556 {
308 5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	557 FILE * fd;
805 fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	558 fd = fopen($3, "rb");
308 5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	559 if (fd == NULL) {
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	560 int ret = errno;
974 2091bf698fb1 Remove newlines from fd_log_debug, TRACE_DEBUG, TRACE_ERROR, and TRACE_DEBUG_ERROR Thomas Klausner <tk@giga.or.at> parents: 969 diff changeset	561 TRACE_ERROR("Unable to open CA file %s for reading: %s", $3, strerror(ret));
308 5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	562 yyerror (&yylloc, conf, "Error on file name");
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	563 YYERROR;
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	564 }
805 fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	565 #ifdef GNUTLS_VERSION_300
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	566 {
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	567 /* We import these CA in the trust list */
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	568 gnutls_x509_crt_t * calist;
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	569 unsigned int cacount;
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	570 gnutls_datum_t cafile;
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	571
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	572 CHECK_FCT_DO( fd_conf_stream_to_gnutls_datum(fd, &cafile),
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	573 { yyerror (&yylloc, conf, "Error reading CA file."); YYERROR; } );
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	574
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	575 CHECK_GNUTLS_DO( gnutls_x509_crt_list_import2(&calist, &cacount, &cafile, GNUTLS_X509_FMT_PEM,
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	576 GNUTLS_X509_CRT_LIST_FAIL_IF_UNSORTED),
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	577 { yyerror (&yylloc, conf, "Error importing CA file."); YYERROR; } );
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	578 free(cafile.data);
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	579
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	580 CHECK_GNUTLS_DO( gnutls_x509_trust_list_add_cas (fd_g_config->cnf_sec_data.trustlist, calist, cacount, 0),
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	581 { yyerror (&yylloc, conf, "Error saving CA in trust list."); YYERROR; } );
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	582 }
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	583 #endif /* GNUTLS_VERSION_300 */
308 5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	584 fclose(fd);
18 e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	585 conf->cnf_sec_data.ca_file = $3;
142 dee0a871abcd Added number of CA certificates for debug Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	586 CHECK_GNUTLS_DO( conf->cnf_sec_data.ca_file_nr += gnutls_certificate_set_x509_trust_file(
18 e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	587 conf->cnf_sec_data.credentials,
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	588 conf->cnf_sec_data.ca_file,
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	589 GNUTLS_X509_FMT_PEM),
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	590 { yyerror (&yylloc, conf, "Error setting CA parameters."); YYERROR; } );
805 fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	591
18 e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	592 }
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	593 ;
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	594
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	595 tls_crl: TLS_CRL '=' QSTRING ';'
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	596 {
308 5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	597 FILE * fd;
805 fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	598 fd = fopen($3, "rb");
308 5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	599 if (fd == NULL) {
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	600 int ret = errno;
974 2091bf698fb1 Remove newlines from fd_log_debug, TRACE_DEBUG, TRACE_ERROR, and TRACE_DEBUG_ERROR Thomas Klausner <tk@giga.or.at> parents: 969 diff changeset	601 TRACE_ERROR("Unable to open CRL file %s for reading: %s", $3, strerror(ret));
308 5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	602 yyerror (&yylloc, conf, "Error on file name");
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	603 YYERROR;
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	604 }
805 fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	605 #ifdef GNUTLS_VERSION_300
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	606 {
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	607 /* We import these CRL in the trust list */
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	608 gnutls_x509_crl_t * crllist;
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	609 unsigned int crlcount;
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	610 gnutls_datum_t crlfile;
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	611
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	612 CHECK_FCT_DO( fd_conf_stream_to_gnutls_datum(fd, &crlfile),
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	613 { yyerror (&yylloc, conf, "Error reading CRL file."); YYERROR; } );
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	614
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	615 CHECK_GNUTLS_DO( gnutls_x509_crl_list_import2(&crllist, &crlcount, &crlfile, GNUTLS_X509_FMT_PEM, 0),
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	616 { yyerror (&yylloc, conf, "Error importing CRL file."); YYERROR; } );
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	617 free(crlfile.data);
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	618
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	619 CHECK_GNUTLS_DO( gnutls_x509_trust_list_add_crls (fd_g_config->cnf_sec_data.trustlist, crllist, crlcount,
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	620 GNUTLS_TL_VERIFY_CRL,
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	621 0),
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	622 { yyerror (&yylloc, conf, "Error importing CRL in trust list."); YYERROR; } );
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	623 }
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	624 #endif /* GNUTLS_VERSION_300 */
308 5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	625 fclose(fd);
18 e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	626 conf->cnf_sec_data.crl_file = $3;
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	627 CHECK_GNUTLS_DO( gnutls_certificate_set_x509_crl_file(
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	628 conf->cnf_sec_data.credentials,
1255 c6a4bda62ccc Fix typo on TLS_CRL parsing Sebastien Decugis <sdecugis@freediameter.net> parents: 1189 diff changeset	629 conf->cnf_sec_data.crl_file,
18 e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	630 GNUTLS_X509_FMT_PEM),
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	631 { yyerror (&yylloc, conf, "Error setting CRL parameters."); YYERROR; } );
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	632 }
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	633 ;
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	634
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	635 tls_prio: TLS_PRIO '=' QSTRING ';'
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	636 {
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	637 const char * err_pos = NULL;
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	638 conf->cnf_sec_data.prio_string = $3;
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	639 CHECK_GNUTLS_DO( gnutls_priority_init(
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	640 &conf->cnf_sec_data.prio_cache,
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	641 conf->cnf_sec_data.prio_string,
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	642 &err_pos),
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	643 { yyerror (&yylloc, conf, "Error setting Priority parameter.");
974 2091bf698fb1 Remove newlines from fd_log_debug, TRACE_DEBUG, TRACE_ERROR, and TRACE_DEBUG_ERROR Thomas Klausner <tk@giga.or.at> parents: 969 diff changeset	644 TRACE_ERROR("Error at position : %s", err_pos);
18 e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	645 YYERROR; } );
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	646 }
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	647 ;
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	648
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	649 tls_dh: TLS_DH_BITS '=' INTEGER ';'
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	650 {
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	651 conf->cnf_sec_data.dh_bits = $3;
578 7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	652 }
7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	653 \| TLS_DH_FILE '=' QSTRING ';'
7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	654 {
7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	655 FILE * fd;
7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	656 free(conf->cnf_sec_data.dh_file);
7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	657 conf->cnf_sec_data.dh_file = $3;
7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	658 fd = fopen($3, "r");
7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	659 if (fd == NULL) {
7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	660 int ret = errno;
974 2091bf698fb1 Remove newlines from fd_log_debug, TRACE_DEBUG, TRACE_ERROR, and TRACE_DEBUG_ERROR Thomas Klausner <tk@giga.or.at> parents: 969 diff changeset	661 TRACE_ERROR("Unable to open DH file %s for reading: %s", $3, strerror(ret));
578 7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	662 yyerror (&yylloc, conf, "Error on file name");
7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	663 YYERROR;
7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	664 }
7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	665 fclose(fd);
18 e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	666 }
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	667 ;

Mercurial > hg > freeDiameter

annotate libfdcore/fdd.y @ 1281:ab6457399be2 1.2.1-rc1