freeDiameter: libfdcore/fdd.y annotate

annotate libfdcore/fdd.y @ 882:ae96ae28f3dd 1.1.5

Limit python version to avoid using python3 (not compatible)

author	Sebastien Decugis <sdecugis@freediameter.net>
date	Sat, 03 Nov 2012 18:45:41 +0100
parents	c0a88c1bcc1e
children	46f9982b7d26 6cdb2a54aaf6

rev	line source
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	1 /*********************************************************************************************************
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	2 * Software License Agreement (BSD License) *
740 4a9f08d6b6ba Updated my mail address Sebastien Decugis <sdecugis@nict.go.jp> parents: 706 diff changeset	3 * Author: Sebastien Decugis <sdecugis@freediameter.net> *
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	4 * *
808 c0a88c1bcc1e Updated copyright information Sebastien Decugis <sdecugis@freediameter.net> parents: 805 diff changeset	5 * Copyright (c) 2012, WIDE Project and NICT *
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	6 * All rights reserved. *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	7 * *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	8 * Redistribution and use of this software in source and binary forms, with or without modification, are *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	9 * permitted provided that the following conditions are met: *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	10 * *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	11 * * Redistributions of source code must retain the above *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	12 * copyright notice, this list of conditions and the *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	13 * following disclaimer. *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	14 * *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	15 * * Redistributions in binary form must reproduce the above *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	16 * copyright notice, this list of conditions and the *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	17 * following disclaimer in the documentation and/or other *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	18 * materials provided with the distribution. *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	19 * *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	20 * * Neither the name of the WIDE Project or NICT nor the *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	21 * names of its contributors may be used to endorse or *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	22 * promote products derived from this software without *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	23 * specific prior written permission of WIDE Project and *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	24 * NICT. *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	25 * *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	26 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	27 * WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	28 * PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	29 * ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	30 * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	31 * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	32 * TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	33 * ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	34 *********************************************************************************************************/
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	35
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	36 /* Yacc configuration parser.
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	37 *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	38 * This file defines the grammar of the configuration file.
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	39 * Note that each extension has a separate independant configuration file.
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	40 *
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	41 * Note : This module is NOT thread-safe. All processing must be done from one thread only.
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	42 */
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	43
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	44 /* For development only : */
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	45 %debug
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	46 %error-verbose
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	47
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	48 %parse-param {struct fd_config * conf}
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	49
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	50 /* Keep track of location */
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	51 %locations
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	52 %pure-parser
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	53
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	54 %{
658 f198d16fa7f4 Initial commit for 1.1.0: Sebastien Decugis <sdecugis@nict.go.jp> parents: 578 diff changeset	55 #include "fdcore-internal.h"
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	56 #include "fdd.tab.h" /* bug : bison does not define the YYLTYPE before including this bloc, so... */
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	57
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	58 /* The Lex parser prototype */
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	59 int fddlex(YYSTYPE lvalp, YYLTYPE llocp);
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	60
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	61 /* Function to report error */
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	62 void yyerror (YYLTYPE ploc, struct fd_config conf, char const *s)
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	63 {
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	64 if (ploc->first_line != ploc->last_line)
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	65 fprintf(stderr, "%s:%d.%d-%d.%d : %s\n", conf->cnf_file, ploc->first_line, ploc->first_column, ploc->last_line, ploc->last_column, s);
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	66 else if (ploc->first_column != ploc->last_column)
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	67 fprintf(stderr, "%s:%d.%d-%d : %s\n", conf->cnf_file, ploc->first_line, ploc->first_column, ploc->last_column, s);
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	68 else
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	69 fprintf(stderr, "%s:%d.%d : %s\n", conf->cnf_file, ploc->first_line, ploc->first_column, s);
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	70 }
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	71
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	72 int got_peer_noip = 0;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	73 int got_peer_noipv6 = 0;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	74 int got_peer_notcp = 0;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	75 int got_peer_nosctp = 0;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	76
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	77 struct peer_info fddpi;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	78
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	79 %}
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	80
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	81 /* Values returned by lex for token */
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	82 %union {
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	83 char string; / The string is allocated by strdup in lex.*/
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	84 int integer; /* Store integer values */
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	85 }
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	86
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	87 /* In case of error in the lexical analysis */
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	88 %token LEX_ERROR
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	89
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	90 %token <string> QSTRING
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	91 %token <integer> INTEGER
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	92
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	93 %type <string> extconf
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	94
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	95 %token IDENTITY
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	96 %token REALM
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	97 %token PORT
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	98 %token SECPORT
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	99 %token NOIP
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	100 %token NOIP6
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	101 %token NOTCP
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	102 %token NOSCTP
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	103 %token PREFERTCP
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	104 %token OLDTLS
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	105 %token NOTLS
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	106 %token SCTPSTREAMS
253 ad6c0118fb50 Configurable number of server threads Sebastien Decugis <sdecugis@nict.go.jp> parents: 142 diff changeset	107 %token APPSERVTHREADS
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	108 %token LISTENON
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	109 %token TCTIMER
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	110 %token TWTIMER
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	111 %token NORELAY
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	112 %token LOADEXT
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	113 %token CONNPEER
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	114 %token CONNTO
18 e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	115 %token TLS_CRED
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	116 %token TLS_CA
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	117 %token TLS_CRL
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	118 %token TLS_PRIO
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	119 %token TLS_DH_BITS
578 7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	120 %token TLS_DH_FILE
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	121
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	122
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	123 /* -------------------------------------- */
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	124 %%
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	125
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	126 /* The grammar definition - Sections blocs. */
18 e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	127 conffile: /* Empty is OK -- for simplicity here, we reject in daemon later */
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	128 \| conffile identity
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	129 \| conffile realm
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	130 \| conffile tctimer
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	131 \| conffile twtimer
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	132 \| conffile port
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	133 \| conffile secport
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	134 \| conffile sctpstreams
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	135 \| conffile listenon
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	136 \| conffile norelay
253 ad6c0118fb50 Configurable number of server threads Sebastien Decugis <sdecugis@nict.go.jp> parents: 142 diff changeset	137 \| conffile appservthreads
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	138 \| conffile noip
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	139 \| conffile noip6
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	140 \| conffile notcp
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	141 \| conffile nosctp
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	142 \| conffile prefertcp
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	143 \| conffile oldtls
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	144 \| conffile loadext
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	145 \| conffile connpeer
18 e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	146 \| conffile tls_cred
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	147 \| conffile tls_ca
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	148 \| conffile tls_crl
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	149 \| conffile tls_prio
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	150 \| conffile tls_dh
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	151 \| conffile errors
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	152 {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	153 yyerror(&yylloc, conf, "An error occurred while parsing the configuration file");
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	154 return EINVAL;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	155 }
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	156 ;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	157
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	158 /* Lexical or syntax error */
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	159 errors: LEX_ERROR
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	160 \| error
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	161 ;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	162
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	163 identity: IDENTITY '=' QSTRING ';'
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	164 {
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	165 conf->cnf_diamid = $3;
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	166 }
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	167 ;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	168
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	169 realm: REALM '=' QSTRING ';'
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	170 {
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	171 conf->cnf_diamrlm = $3;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	172 }
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	173 ;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	174
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	175 tctimer: TCTIMER '=' INTEGER ';'
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	176 {
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	177 CHECK_PARAMS_DO( ($3 > 0),
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	178 { yyerror (&yylloc, conf, "Invalid value"); YYERROR; } );
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	179 conf->cnf_timer_tc = (unsigned int)$3;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	180 }
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	181 ;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	182
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	183 twtimer: TWTIMER '=' INTEGER ';'
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	184 {
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	185 CHECK_PARAMS_DO( ($3 > 5),
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	186 { yyerror (&yylloc, conf, "Invalid value"); YYERROR; } );
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	187 conf->cnf_timer_tw = (unsigned int)$3;
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	188 }
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	189 ;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	190
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	191 port: PORT '=' INTEGER ';'
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	192 {
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	193 CHECK_PARAMS_DO( ($3 > 0) && ($3 < 1<<16),
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	194 { yyerror (&yylloc, conf, "Invalid value"); YYERROR; } );
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	195 conf->cnf_port = (uint16_t)$3;
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	196 }
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	197 ;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	198
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	199 secport: SECPORT '=' INTEGER ';'
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	200 {
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	201 CHECK_PARAMS_DO( ($3 > 0) && ($3 < 1<<16),
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	202 { yyerror (&yylloc, conf, "Invalid value"); YYERROR; } );
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	203 conf->cnf_port_tls = (uint16_t)$3;
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	204 }
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	205 ;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	206
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	207 sctpstreams: SCTPSTREAMS '=' INTEGER ';'
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	208 {
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	209 CHECK_PARAMS_DO( ($3 > 0) && ($3 < 1<<16),
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	210 { yyerror (&yylloc, conf, "Invalid value"); YYERROR; } );
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	211 conf->cnf_sctp_str = (uint16_t)$3;
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	212 }
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	213 ;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	214
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	215 listenon: LISTENON '=' QSTRING ';'
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	216 {
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	217 struct addrinfo hints, *ai;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	218 int ret;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	219
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	220 memset(&hints, 0, sizeof(hints));
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	221 hints.ai_flags = AI_PASSIVE \| AI_NUMERICHOST;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	222 ret = getaddrinfo($3, NULL, &hints, &ai);
23 db6c40b8b307 Added some code in cnxctx.c mainly Sebastien Decugis <sdecugis@nict.go.jp> parents: 22 diff changeset	223 if (ret) { yyerror (&yylloc, conf, gai_strerror(ret)); YYERROR; }
24 bd83ce9328ed Cleanups and completed sctp code (not finished) Sebastien Decugis <sdecugis@nict.go.jp> parents: 23 diff changeset	224 CHECK_FCT_DO( fd_ep_add_merge( &conf->cnf_endpoints, ai->ai_addr, ai->ai_addrlen, EP_FL_CONF ), YYERROR );
23 db6c40b8b307 Added some code in cnxctx.c mainly Sebastien Decugis <sdecugis@nict.go.jp> parents: 22 diff changeset	225 freeaddrinfo(ai);
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	226 free($3);
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	227 }
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	228 ;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	229
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	230 norelay: NORELAY ';'
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	231 {
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	232 conf->cnf_flags.no_fwd = 1;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	233 }
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	234 ;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	235
253 ad6c0118fb50 Configurable number of server threads Sebastien Decugis <sdecugis@nict.go.jp> parents: 142 diff changeset	236 appservthreads: APPSERVTHREADS '=' INTEGER ';'
ad6c0118fb50 Configurable number of server threads Sebastien Decugis <sdecugis@nict.go.jp> parents: 142 diff changeset	237 {
706 4ffbc9f1e922 Large UNTESTED commit with the following changes: Sebastien Decugis <sdecugis@nict.go.jp> parents: 662 diff changeset	238 CHECK_PARAMS_DO( ($3 > 0) && ($3 < 256),
253 ad6c0118fb50 Configurable number of server threads Sebastien Decugis <sdecugis@nict.go.jp> parents: 142 diff changeset	239 { yyerror (&yylloc, conf, "Invalid value"); YYERROR; } );
ad6c0118fb50 Configurable number of server threads Sebastien Decugis <sdecugis@nict.go.jp> parents: 142 diff changeset	240 conf->cnf_dispthr = (uint16_t)$3;
ad6c0118fb50 Configurable number of server threads Sebastien Decugis <sdecugis@nict.go.jp> parents: 142 diff changeset	241 }
ad6c0118fb50 Configurable number of server threads Sebastien Decugis <sdecugis@nict.go.jp> parents: 142 diff changeset	242 ;
ad6c0118fb50 Configurable number of server threads Sebastien Decugis <sdecugis@nict.go.jp> parents: 142 diff changeset	243
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	244 noip: NOIP ';'
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	245 {
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	246 if (got_peer_noipv6) {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	247 yyerror (&yylloc, conf, "No_IP conflicts with a ConnectPeer directive No_IPv6.");
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	248 YYERROR;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	249 }
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	250 conf->cnf_flags.no_ip4 = 1;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	251 }
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	252 ;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	253
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	254 noip6: NOIP6 ';'
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	255 {
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	256 if (got_peer_noip) {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	257 yyerror (&yylloc, conf, "No_IP conflicts with a ConnectPeer directive No_IP.");
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	258 YYERROR;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	259 }
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	260 conf->cnf_flags.no_ip6 = 1;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	261 }
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	262 ;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	263
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	264 notcp: NOTCP ';'
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	265 {
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	266 #ifdef DISABLE_SCTP
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	267 yyerror (&yylloc, conf, "No_TCP cannot be specified for daemon compiled with DISABLE_SCTP option.");
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	268 YYERROR;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	269 #endif
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	270 if (conf->cnf_flags.no_sctp)
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	271 {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	272 yyerror (&yylloc, conf, "No_TCP conflicts with No_SCTP directive." );
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	273 YYERROR;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	274 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	275 if (got_peer_nosctp) {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	276 yyerror (&yylloc, conf, "No_TCP conflicts with a ConnectPeer directive No_SCTP.");
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	277 YYERROR;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	278 }
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	279 conf->cnf_flags.no_tcp = 1;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	280 }
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	281 ;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	282
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	283 nosctp: NOSCTP ';'
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	284 {
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	285 if (conf->cnf_flags.no_tcp)
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	286 {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	287 yyerror (&yylloc, conf, "No_SCTP conflicts with No_TCP directive." );
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	288 YYERROR;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	289 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	290 if (got_peer_notcp) {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	291 yyerror (&yylloc, conf, "No_SCTP conflicts with a ConnectPeer directive No_TCP.");
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	292 YYERROR;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	293 }
10 c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	294 conf->cnf_flags.no_sctp = 1;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	295 }
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	296 ;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	297
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	298 prefertcp: PREFERTCP ';'
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	299 {
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	300 conf->cnf_flags.pr_tcp = 1;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	301 }
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	302 ;
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	303
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	304 oldtls: OLDTLS ';'
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	305 {
c5c99c73c2bf Added some extensions and functions in the daemon Sebastien Decugis <sdecugis@nict.go.jp> parents: 8 diff changeset	306 conf->cnf_flags.tls_alg = 1;
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	307 }
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	308 ;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	309
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	310 loadext: LOADEXT '=' QSTRING extconf ';'
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	311 {
304 ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	312 char * fname;
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	313 char * cfname;
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	314 FILE * fd;
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	315
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	316 /* Try and open the extension file */
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	317 fname = $3;
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	318 fd = fopen(fname, "r");
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	319 if ((fd == NULL) && (*fname != '/')) {
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	320 char * bkp = fname;
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	321 CHECK_MALLOC_DO( fname = malloc( strlen(bkp) + strlen(DEFAULT_EXTENSIONS_PATH) + 2 ),
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	322 { yyerror (&yylloc, conf, "Not enough memory"); YYERROR; } );
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	323 sprintf(fname, DEFAULT_EXTENSIONS_PATH "/%s", bkp);
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	324 free(bkp);
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	325 fd = fopen(fname, "r");
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	326 }
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	327 if (fd == NULL) {
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	328 int ret = errno;
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	329 TRACE_DEBUG(INFO, "Unable to open extension file %s for reading: %s\n", fname, strerror(ret));
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	330 yyerror (&yylloc, conf, "Error adding extension");
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	331 YYERROR;
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	332 }
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	333 fclose(fd);
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	334
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	335 /* Try and open the configuration file (optional) */
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	336 cfname = $4;
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	337 if (cfname) {
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	338 fd = fopen(cfname, "r");
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	339 if ((fd == NULL) && (*cfname != '/')) {
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	340 char * test;
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	341 CHECK_MALLOC_DO( test = malloc( strlen(cfname) + strlen(DEFAULT_CONF_PATH) + 2 ),
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	342 { yyerror (&yylloc, conf, "Not enough memory"); YYERROR; } );
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	343 sprintf(test, DEFAULT_CONF_PATH "/%s", cfname);
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	344 fd = fopen(test, "r");
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	345 if (fd) {
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	346 free(cfname);
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	347 cfname=test;
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	348 } else {
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	349 /* This is not an error, we allow an extension to wait for something else than a real conf file. */
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	350 free(test);
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	351 }
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	352 }
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	353 if (fd)
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	354 fclose(fd);
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	355 }
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	356
ad3c46016584 Added install directives for cmake; also allow default directory to seek for extensions and configuration files Sebastien Decugis <sdecugis@nict.go.jp> parents: 258 diff changeset	357 CHECK_FCT_DO( fd_ext_add( fname, cfname ),
8 3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	358 { yyerror (&yylloc, conf, "Error adding extension"); YYERROR; } );
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	359 }
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	360 ;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	361
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	362 extconf: /* empty */
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	363 {
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	364 $$ = NULL;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	365 }
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	366 \| ':' QSTRING
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	367 {
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	368 $$ = $2;
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	369 }
3e143f047f78 Backup for the week-end Sebastien Decugis <sdecugis@nict.go.jp> parents: diff changeset	370 ;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	371
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	372 connpeer: {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	373 memset(&fddpi, 0, sizeof(fddpi));
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	374 fddpi.config.pic_flags.persist = PI_PRST_ALWAYS;
14 14cf6daf716d Some progress on peers module Sebastien Decugis <sdecugis@nict.go.jp> parents: 13 diff changeset	375 fd_list_init( &fddpi.pi_endpoints, NULL );
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	376 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	377 CONNPEER '=' QSTRING peerinfo ';'
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	378 {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	379 fddpi.pi_diamid = $4;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	380 CHECK_FCT_DO( fd_peer_add ( &fddpi, conf->cnf_file, NULL, NULL ),
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	381 { yyerror (&yylloc, conf, "Error adding ConnectPeer information"); YYERROR; } );
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	382
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	383 /* Now destroy any content in the structure */
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	384 free(fddpi.pi_diamid);
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	385 free(fddpi.config.pic_realm);
cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	386 free(fddpi.config.pic_priority);
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	387 while (!FD_IS_LIST_EMPTY(&fddpi.pi_endpoints)) {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	388 struct fd_list * li = fddpi.pi_endpoints.next;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	389 fd_list_unlink(li);
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	390 free(li);
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	391 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	392 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	393 ;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	394
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	395 peerinfo: /* empty */
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	396 \| '{' peerparams '}'
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	397 ;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	398
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	399 peerparams: /* empty */
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	400 \| peerparams NOIP ';'
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	401 {
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	402 if ((conf->cnf_flags.no_ip6) \|\| (fddpi.config.pic_flags.pro3 == PI_P3_IP)) {
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	403 yyerror (&yylloc, conf, "No_IP conflicts with a No_IPv6 directive.");
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	404 YYERROR;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	405 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	406 got_peer_noip++;
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	407 fddpi.config.pic_flags.pro3 = PI_P3_IPv6;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	408 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	409 \| peerparams NOIP6 ';'
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	410 {
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	411 if ((conf->cnf_flags.no_ip4) \|\| (fddpi.config.pic_flags.pro3 == PI_P3_IPv6)) {
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	412 yyerror (&yylloc, conf, "No_IPv6 conflicts with a No_IP directive.");
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	413 YYERROR;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	414 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	415 got_peer_noipv6++;
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	416 fddpi.config.pic_flags.pro3 = PI_P3_IP;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	417 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	418 \| peerparams NOTCP ';'
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	419 {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	420 #ifdef DISABLE_SCTP
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	421 yyerror (&yylloc, conf, "No_TCP cannot be specified in daemon compiled with DISABLE_SCTP option.");
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	422 YYERROR;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	423 #endif
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	424 if ((conf->cnf_flags.no_sctp) \|\| (fddpi.config.pic_flags.pro4 == PI_P4_TCP)) {
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	425 yyerror (&yylloc, conf, "No_TCP conflicts with a No_SCTP directive.");
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	426 YYERROR;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	427 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	428 got_peer_notcp++;
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	429 fddpi.config.pic_flags.pro4 = PI_P4_SCTP;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	430 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	431 \| peerparams NOSCTP ';'
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	432 {
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	433 if ((conf->cnf_flags.no_tcp) \|\| (fddpi.config.pic_flags.pro4 == PI_P4_SCTP)) {
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	434 yyerror (&yylloc, conf, "No_SCTP conflicts with a No_TCP directive.");
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	435 YYERROR;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	436 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	437 got_peer_nosctp++;
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	438 fddpi.config.pic_flags.pro4 = PI_P4_TCP;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	439 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	440 \| peerparams PREFERTCP ';'
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	441 {
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	442 fddpi.config.pic_flags.alg = PI_ALGPREF_TCP;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	443 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	444 \| peerparams OLDTLS ';'
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	445 {
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	446 fddpi.config.pic_flags.sec \|= PI_SEC_TLS_OLD;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	447 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	448 \| peerparams NOTLS ';'
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	449 {
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	450 fddpi.config.pic_flags.sec \|= PI_SEC_NONE;
cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	451 }
cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	452 \| peerparams REALM '=' QSTRING ';'
cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	453 {
cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	454 fddpi.config.pic_realm = $4;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	455 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	456 \| peerparams PORT '=' INTEGER ';'
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	457 {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	458 CHECK_PARAMS_DO( ($4 > 0) && ($4 < 1<<16),
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	459 { yyerror (&yylloc, conf, "Invalid port value"); YYERROR; } );
cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	460 fddpi.config.pic_port = (uint16_t)$4;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	461 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	462 \| peerparams TCTIMER '=' INTEGER ';'
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	463 {
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	464 fddpi.config.pic_tctimer = $4;
cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	465 }
cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	466 \| peerparams TWTIMER '=' INTEGER ';'
cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	467 {
cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	468 fddpi.config.pic_twtimer = $4;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	469 }
22 0b3b46da2c12 Progress on server code Sebastien Decugis <sdecugis@nict.go.jp> parents: 20 diff changeset	470 \| peerparams TLS_PRIO '=' QSTRING ';'
0b3b46da2c12 Progress on server code Sebastien Decugis <sdecugis@nict.go.jp> parents: 20 diff changeset	471 {
37 cc3c59fe98fe Lot of cleanups in peer structure management Sebastien Decugis <sdecugis@nict.go.jp> parents: 36 diff changeset	472 fddpi.config.pic_priority = $4;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	473 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	474 \| peerparams CONNTO '=' QSTRING ';'
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	475 {
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	476 struct addrinfo hints, *ai;
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	477 int ret;
23 db6c40b8b307 Added some code in cnxctx.c mainly Sebastien Decugis <sdecugis@nict.go.jp> parents: 22 diff changeset	478 int disc = 0;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	479
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	480 memset(&hints, 0, sizeof(hints));
13 ef9ef3bf4752 Progress on peer state machine Sebastien Decugis <sdecugis@nict.go.jp> parents: 12 diff changeset	481 hints.ai_flags = AI_ADDRCONFIG \| AI_NUMERICHOST;
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	482 ret = getaddrinfo($4, NULL, &hints, &ai);
13 ef9ef3bf4752 Progress on peer state machine Sebastien Decugis <sdecugis@nict.go.jp> parents: 12 diff changeset	483 if (ret == EAI_NONAME) {
ef9ef3bf4752 Progress on peer state machine Sebastien Decugis <sdecugis@nict.go.jp> parents: 12 diff changeset	484 /* The name was maybe not numeric, try again */
24 bd83ce9328ed Cleanups and completed sctp code (not finished) Sebastien Decugis <sdecugis@nict.go.jp> parents: 23 diff changeset	485 disc = EP_FL_DISC;
13 ef9ef3bf4752 Progress on peer state machine Sebastien Decugis <sdecugis@nict.go.jp> parents: 12 diff changeset	486 hints.ai_flags &= ~ AI_NUMERICHOST;
ef9ef3bf4752 Progress on peer state machine Sebastien Decugis <sdecugis@nict.go.jp> parents: 12 diff changeset	487 ret = getaddrinfo($4, NULL, &hints, &ai);
ef9ef3bf4752 Progress on peer state machine Sebastien Decugis <sdecugis@nict.go.jp> parents: 12 diff changeset	488 }
23 db6c40b8b307 Added some code in cnxctx.c mainly Sebastien Decugis <sdecugis@nict.go.jp> parents: 22 diff changeset	489 if (ret) { yyerror (&yylloc, conf, gai_strerror(ret)); YYERROR; }
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	490
756 36caa2c02d1e Enable running two freeDiameter instances on a single host Sebastien Decugis <sdecugis@nict.go.jp> parents: 740 diff changeset	491 CHECK_FCT_DO( fd_ep_add_merge( &fddpi.pi_endpoints, ai->ai_addr, ai->ai_addrlen, EP_FL_CONF \| (disc ?: EP_ACCEPTALL) ), YYERROR );
12 418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	492 free($4);
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	493 freeaddrinfo(ai);
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	494 }
418d2ce80dc8 Added support in configuration file for peers declaration Sebastien Decugis <sdecugis@nict.go.jp> parents: 10 diff changeset	495 ;
18 e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	496
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	497 tls_cred: TLS_CRED '=' QSTRING ',' QSTRING ';'
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	498 {
308 5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	499 FILE * fd;
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	500 fd = fopen($3, "r");
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	501 if (fd == NULL) {
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	502 int ret = errno;
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	503 TRACE_DEBUG(INFO, "Unable to open certificate file %s for reading: %s\n", $3, strerror(ret));
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	504 yyerror (&yylloc, conf, "Error on file name");
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	505 YYERROR;
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	506 }
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	507 fclose(fd);
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	508 fd = fopen($5, "r");
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	509 if (fd == NULL) {
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	510 int ret = errno;
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	511 TRACE_DEBUG(INFO, "Unable to open private key file %s for reading: %s\n", $5, strerror(ret));
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	512 yyerror (&yylloc, conf, "Error on file name");
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	513 YYERROR;
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	514 }
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	515 fclose(fd);
18 e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	516 conf->cnf_sec_data.cert_file = $3;
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	517 conf->cnf_sec_data.key_file = $5;
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	518
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	519 CHECK_GNUTLS_DO( gnutls_certificate_set_x509_key_file(
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	520 conf->cnf_sec_data.credentials,
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	521 conf->cnf_sec_data.cert_file,
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	522 conf->cnf_sec_data.key_file,
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	523 GNUTLS_X509_FMT_PEM),
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	524 { yyerror (&yylloc, conf, "Error opening certificate or private key file."); YYERROR; } );
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	525 }
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	526 ;
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	527
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	528 tls_ca: TLS_CA '=' QSTRING ';'
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	529 {
308 5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	530 FILE * fd;
805 fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	531 fd = fopen($3, "rb");
308 5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	532 if (fd == NULL) {
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	533 int ret = errno;
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	534 TRACE_DEBUG(INFO, "Unable to open CA file %s for reading: %s\n", $3, strerror(ret));
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	535 yyerror (&yylloc, conf, "Error on file name");
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	536 YYERROR;
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	537 }
805 fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	538 #ifdef GNUTLS_VERSION_300
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	539 {
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	540 /* We import these CA in the trust list */
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	541 gnutls_x509_crt_t * calist;
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	542 unsigned int cacount;
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	543 gnutls_datum_t cafile;
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	544
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	545 CHECK_FCT_DO( fd_conf_stream_to_gnutls_datum(fd, &cafile),
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	546 { yyerror (&yylloc, conf, "Error reading CA file."); YYERROR; } );
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	547
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	548 CHECK_GNUTLS_DO( gnutls_x509_crt_list_import2(&calist, &cacount, &cafile, GNUTLS_X509_FMT_PEM,
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	549 GNUTLS_X509_CRT_LIST_FAIL_IF_UNSORTED),
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	550 { yyerror (&yylloc, conf, "Error importing CA file."); YYERROR; } );
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	551 free(cafile.data);
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	552
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	553 CHECK_GNUTLS_DO( gnutls_x509_trust_list_add_cas (fd_g_config->cnf_sec_data.trustlist, calist, cacount, 0),
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	554 { yyerror (&yylloc, conf, "Error saving CA in trust list."); YYERROR; } );
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	555 }
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	556 #endif /* GNUTLS_VERSION_300 */
308 5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	557 fclose(fd);
18 e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	558 conf->cnf_sec_data.ca_file = $3;
142 dee0a871abcd Added number of CA certificates for debug Sebastien Decugis <sdecugis@nict.go.jp> parents: 37 diff changeset	559 CHECK_GNUTLS_DO( conf->cnf_sec_data.ca_file_nr += gnutls_certificate_set_x509_trust_file(
18 e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	560 conf->cnf_sec_data.credentials,
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	561 conf->cnf_sec_data.ca_file,
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	562 GNUTLS_X509_FMT_PEM),
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	563 { yyerror (&yylloc, conf, "Error setting CA parameters."); YYERROR; } );
805 fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	564
18 e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	565 }
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	566 ;
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	567
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	568 tls_crl: TLS_CRL '=' QSTRING ';'
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	569 {
308 5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	570 FILE * fd;
805 fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	571 fd = fopen($3, "rb");
308 5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	572 if (fd == NULL) {
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	573 int ret = errno;
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	574 TRACE_DEBUG(INFO, "Unable to open CRL file %s for reading: %s\n", $3, strerror(ret));
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	575 yyerror (&yylloc, conf, "Error on file name");
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	576 YYERROR;
5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	577 }
805 fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	578 #ifdef GNUTLS_VERSION_300
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	579 {
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	580 /* We import these CRL in the trust list */
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	581 gnutls_x509_crl_t * crllist;
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	582 unsigned int crlcount;
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	583 gnutls_datum_t crlfile;
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	584
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	585 CHECK_FCT_DO( fd_conf_stream_to_gnutls_datum(fd, &crlfile),
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	586 { yyerror (&yylloc, conf, "Error reading CRL file."); YYERROR; } );
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	587
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	588 CHECK_GNUTLS_DO( gnutls_x509_crl_list_import2(&crllist, &crlcount, &crlfile, GNUTLS_X509_FMT_PEM, 0),
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	589 { yyerror (&yylloc, conf, "Error importing CRL file."); YYERROR; } );
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	590 free(crlfile.data);
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	591
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	592 CHECK_GNUTLS_DO( gnutls_x509_trust_list_add_crls (fd_g_config->cnf_sec_data.trustlist, crllist, crlcount,
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	593 GNUTLS_TL_VERIFY_CRL,
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	594 0),
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	595 { yyerror (&yylloc, conf, "Error importing CRL in trust list."); YYERROR; } );
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	596 }
fb5e0fd923ff Updated verification of the local certificate following GnuTLS 3.x guideline Sebastien Decugis <sdecugis@freediameter.net> parents: 756 diff changeset	597 #endif /* GNUTLS_VERSION_300 */
308 5f882de409eb Added test for file access Sebastien Decugis <sdecugis@nict.go.jp> parents: 304 diff changeset	598 fclose(fd);
18 e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	599 conf->cnf_sec_data.crl_file = $3;
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	600 CHECK_GNUTLS_DO( gnutls_certificate_set_x509_crl_file(
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	601 conf->cnf_sec_data.credentials,
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	602 conf->cnf_sec_data.ca_file,
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	603 GNUTLS_X509_FMT_PEM),
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	604 { yyerror (&yylloc, conf, "Error setting CRL parameters."); YYERROR; } );
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	605 }
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	606 ;
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	607
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	608 tls_prio: TLS_PRIO '=' QSTRING ';'
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	609 {
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	610 const char * err_pos = NULL;
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	611 conf->cnf_sec_data.prio_string = $3;
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	612 CHECK_GNUTLS_DO( gnutls_priority_init(
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	613 &conf->cnf_sec_data.prio_cache,
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	614 conf->cnf_sec_data.prio_string,
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	615 &err_pos),
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	616 { yyerror (&yylloc, conf, "Error setting Priority parameter.");
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	617 fprintf(stderr, "Error at position : %s\n", err_pos);
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	618 YYERROR; } );
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	619 }
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	620 ;
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	621
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	622 tls_dh: TLS_DH_BITS '=' INTEGER ';'
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	623 {
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	624 conf->cnf_sec_data.dh_bits = $3;
578 7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	625 }
7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	626 \| TLS_DH_FILE '=' QSTRING ';'
7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	627 {
7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	628 FILE * fd;
7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	629 free(conf->cnf_sec_data.dh_file);
7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	630 conf->cnf_sec_data.dh_file = $3;
7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	631 fd = fopen($3, "r");
7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	632 if (fd == NULL) {
7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	633 int ret = errno;
7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	634 TRACE_DEBUG(INFO, "Unable to open DH file %s for reading: %s\n", $3, strerror(ret));
7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	635 yyerror (&yylloc, conf, "Error on file name");
7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	636 YYERROR;
7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	637 }
7c9a00bfd115 Allow TLS Diffie-Hellmann parameters to be loaded from a file (ticket #17) Sebastien Decugis <sdecugis@nict.go.jp> parents: 308 diff changeset	638 fclose(fd);
18 e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	639 }
e7187583dcf8 Added CA helper script Sebastien Decugis <sdecugis@nict.go.jp> parents: 14 diff changeset	640 ;

Mercurial > hg > freeDiameter

annotate libfdcore/fdd.y @ 882:ae96ae28f3dd 1.1.5