Lines Matching full:radius
2 * RADIUS client
12 #include "radius.h"
16 /* Defaults for RADIUS retransmit values (exponential backoff) */
19 * RADIUS_CLIENT_FIRST_WAIT - RADIUS client timeout for first retry in seconds
24 * RADIUS_CLIENT_MAX_WAIT - RADIUS client maximum retry timeout in seconds
29 * RADIUS_CLIENT_MAX_RETRIES - RADIUS client maximum retries
37 * RADIUS_CLIENT_MAX_ENTRIES - RADIUS client maximum pending messages
45 * RADIUS_CLIENT_NUM_FAILOVER - RADIUS client failover point
47 * The number of failed retry attempts after which the RADIUS server will be
54 * struct radius_rx_handler - RADIUS client RX handler
56 * This data structure is used internally inside the RADIUS client module to
58 * radius_client_register() and unregistered when the RADIUS client is
63 * handler - Received RADIUS message handler
79 * struct radius_msg_list - RADIUS client message retransmit list
81 * This data structure is used internally inside the RADIUS client module to
82 * store pending RADIUS requests that may still need to be retransmitted.
88 * This is used to find RADIUS messages for the same STA.
93 * msg - RADIUS message
128 * shared_secret - Shared secret with the target RADIUS server
147 * struct radius_client_data - Internal RADIUS client data
149 * This data structure is used internally inside the RADIUS client module.
152 * calls to other functions as an identifier for the RADIUS client instance.
161 * conf - RADIUS client configuration (list of RADIUS servers to use)
166 * auth_serv_sock - IPv4 socket for RADIUS authentication messages
171 * acct_serv_sock - IPv4 socket for RADIUS accounting messages
176 * auth_serv_sock6 - IPv6 socket for RADIUS authentication messages
181 * acct_serv_sock6 - IPv6 socket for RADIUS accounting messages
186 * auth_sock - Currently used socket for RADIUS authentication server
191 * acct_sock - Currently used socket for RADIUS accounting server
216 * msgs - Pending outgoing RADIUS messages
226 * next_radius_identifier - Next RADIUS message identifier to use
243 radius_change_server(struct radius_client_data *radius,
247 static int radius_client_init_acct(struct radius_client_data *radius);
248 static int radius_client_init_auth(struct radius_client_data *radius);
249 static void radius_client_auth_failover(struct radius_client_data *radius);
250 static void radius_client_acct_failover(struct radius_client_data *radius);
261 * radius_client_register - Register a RADIUS client RX handler
262 * @radius: RADIUS client context from radius_client_init()
263 * @msg_type: RADIUS client type (RADIUS_AUTH or RADIUS_ACCT)
264 * @handler: Handler for received RADIUS messages
268 * This function is used to register a handler for processing received RADIUS
270 * be called whenever a RADIUS message is received from the active server.
272 * There can be multiple registered RADIUS message handlers. The handlers will
276 int radius_client_register(struct radius_client_data *radius, in radius_client_register() argument
289 handlers = &radius->acct_handlers; in radius_client_register()
290 num = &radius->num_acct_handlers; in radius_client_register()
292 handlers = &radius->auth_handlers; in radius_client_register()
293 num = &radius->num_auth_handlers; in radius_client_register()
312 * @radius: RADIUS client context from radius_client_init()
320 void radius_client_set_interim_error_cb(struct radius_client_data *radius, in radius_client_set_interim_error_cb() argument
324 radius->interim_error_cb = cb; in radius_client_set_interim_error_cb()
325 radius->interim_error_cb_ctx = ctx; in radius_client_set_interim_error_cb()
333 static int radius_client_handle_send_error(struct radius_client_data *radius, in radius_client_handle_send_error() argument
338 wpa_printf(MSG_INFO, "send[RADIUS,s=%d]: %s", s, strerror(errno)); in radius_client_handle_send_error()
341 hostapd_logger(radius->ctx, NULL, HOSTAPD_MODULE_RADIUS, in radius_client_handle_send_error()
347 radius_client_init_acct(radius); in radius_client_handle_send_error()
350 radius_client_init_auth(radius); in radius_client_handle_send_error()
360 static int radius_client_retransmit(struct radius_client_data *radius, in radius_client_retransmit() argument
364 struct hostapd_radius_servers *conf = radius->conf; in radius_client_retransmit()
373 if (radius->acct_sock < 0) in radius_client_retransmit()
374 radius_client_init_acct(radius); in radius_client_retransmit()
375 if (radius->acct_sock < 0 && conf->num_acct_servers > 1) { in radius_client_retransmit()
376 prev_num_msgs = radius->num_msgs; in radius_client_retransmit()
377 radius_client_acct_failover(radius); in radius_client_retransmit()
378 if (prev_num_msgs != radius->num_msgs) in radius_client_retransmit()
381 s = radius->acct_sock; in radius_client_retransmit()
389 if (radius->auth_sock < 0) in radius_client_retransmit()
390 radius_client_init_auth(radius); in radius_client_retransmit()
391 if (radius->auth_sock < 0 && conf->num_auth_servers > 1) { in radius_client_retransmit()
392 prev_num_msgs = radius->num_msgs; in radius_client_retransmit()
393 radius_client_auth_failover(radius); in radius_client_retransmit()
394 if (prev_num_msgs != radius->num_msgs) in radius_client_retransmit()
397 s = radius->auth_sock; in radius_client_retransmit()
408 "RADIUS: Failed to transmit interim accounting update to " in radius_client_retransmit()
411 if (radius->interim_error_cb) in radius_client_retransmit()
412 radius->interim_error_cb(entry->addr, in radius_client_retransmit()
413 radius->interim_error_cb_ctx); in radius_client_retransmit()
419 "RADIUS: No valid socket for retransmission"); in radius_client_retransmit()
436 hdr->identifier = radius_client_get_id(radius); in radius_client_retransmit()
443 "RADIUS: Updated Acct-Delay-Time to %u for retransmission", in radius_client_retransmit()
447 if (radius->conf->msg_dumps) in radius_client_retransmit()
453 hostapd_logger(radius->ctx, entry->addr, HOSTAPD_MODULE_RADIUS, in radius_client_retransmit()
454 HOSTAPD_LEVEL_DEBUG, "Resending RADIUS message (id=%d)", in radius_client_retransmit()
460 if (radius_client_handle_send_error(radius, s, entry->msg_type) in radius_client_retransmit()
470 …wpa_printf(MSG_INFO, "RADIUS: Removing un-ACKed message due to too many failed retransmit attempts… in radius_client_retransmit()
480 struct radius_client_data *radius = eloop_ctx; in radius_client_timer() local
488 entry = radius->msgs; in radius_client_timer()
497 prev_num_msgs = radius->num_msgs; in radius_client_timer()
499 radius_client_retransmit(radius, entry, now.sec)) { in radius_client_timer()
503 radius->msgs = entry->next; in radius_client_timer()
508 radius->num_msgs--; in radius_client_timer()
512 if (prev_num_msgs != radius->num_msgs) { in radius_client_timer()
514 "RADIUS: Message removed from queue - restart from beginning"); in radius_client_timer()
515 entry = radius->msgs; in radius_client_timer()
520 s = entry->msg_type == RADIUS_AUTH ? radius->auth_sock : in radius_client_timer()
521 radius->acct_sock; in radius_client_timer()
538 if (radius->msgs) { in radius_client_timer()
542 radius_client_timer, radius, NULL); in radius_client_timer()
543 hostapd_logger(radius->ctx, NULL, HOSTAPD_MODULE_RADIUS, in radius_client_timer()
544 HOSTAPD_LEVEL_DEBUG, "Next RADIUS client " in radius_client_timer()
550 radius_client_auth_failover(radius); in radius_client_timer()
553 radius_client_acct_failover(radius); in radius_client_timer()
557 static void radius_client_auth_failover(struct radius_client_data *radius) in radius_client_auth_failover() argument
559 struct hostapd_radius_servers *conf = radius->conf; in radius_client_auth_failover()
565 hostapd_logger(radius->ctx, NULL, HOSTAPD_MODULE_RADIUS, in radius_client_auth_failover()
571 for (entry = radius->msgs; entry; entry = entry->next) { in radius_client_auth_failover()
580 radius_change_server(radius, next, old, in radius_client_auth_failover()
581 radius->auth_serv_sock, in radius_client_auth_failover()
582 radius->auth_serv_sock6, 1); in radius_client_auth_failover()
586 static void radius_client_acct_failover(struct radius_client_data *radius) in radius_client_acct_failover() argument
588 struct hostapd_radius_servers *conf = radius->conf; in radius_client_acct_failover()
594 hostapd_logger(radius->ctx, NULL, HOSTAPD_MODULE_RADIUS, in radius_client_acct_failover()
600 for (entry = radius->msgs; entry; entry = entry->next) { in radius_client_acct_failover()
610 radius_change_server(radius, next, old, in radius_client_acct_failover()
611 radius->acct_serv_sock, in radius_client_acct_failover()
612 radius->acct_serv_sock6, 0); in radius_client_acct_failover()
616 static void radius_client_update_timeout(struct radius_client_data *radius) in radius_client_update_timeout() argument
622 eloop_cancel_timeout(radius_client_timer, radius, NULL); in radius_client_update_timeout()
624 if (radius->msgs == NULL) { in radius_client_update_timeout()
629 for (entry = radius->msgs; entry; entry = entry->next) { in radius_client_update_timeout()
637 eloop_register_timeout(first - now.sec, 0, radius_client_timer, radius, in radius_client_update_timeout()
639 hostapd_logger(radius->ctx, NULL, HOSTAPD_MODULE_RADIUS, in radius_client_update_timeout()
640 HOSTAPD_LEVEL_DEBUG, "Next RADIUS client retransmit in" in radius_client_update_timeout()
645 static void radius_client_list_add(struct radius_client_data *radius, in radius_client_list_add() argument
662 wpa_printf(MSG_INFO, "RADIUS: Failed to add packet into retransmit list"); in radius_client_list_add()
678 entry->next = radius->msgs; in radius_client_list_add()
679 radius->msgs = entry; in radius_client_list_add()
680 radius_client_update_timeout(radius); in radius_client_list_add()
682 if (radius->num_msgs >= RADIUS_CLIENT_MAX_ENTRIES) { in radius_client_list_add()
683 wpa_printf(MSG_INFO, "RADIUS: Removing the oldest un-ACKed packet due to retransmit list limits"); in radius_client_list_add()
694 radius->num_msgs++; in radius_client_list_add()
699 * radius_client_send - Send a RADIUS request
700 * @radius: RADIUS client context from radius_client_init()
701 * @msg: RADIUS message to be sent
706 * This function is used to transmit a RADIUS authentication (RADIUS_AUTH) or
723 int radius_client_send(struct radius_client_data *radius, in radius_client_send() argument
727 struct hostapd_radius_servers *conf = radius->conf; in radius_client_send()
735 if (conf->acct_server && radius->acct_sock < 0) in radius_client_send()
736 radius_client_init_acct(radius); in radius_client_send()
738 if (conf->acct_server == NULL || radius->acct_sock < 0 || in radius_client_send()
740 hostapd_logger(radius->ctx, NULL, in radius_client_send()
750 s = radius->acct_sock; in radius_client_send()
753 if (conf->auth_server && radius->auth_sock < 0) in radius_client_send()
754 radius_client_init_auth(radius); in radius_client_send()
756 if (conf->auth_server == NULL || radius->auth_sock < 0 || in radius_client_send()
758 hostapd_logger(radius->ctx, NULL, in radius_client_send()
768 s = radius->auth_sock; in radius_client_send()
772 hostapd_logger(radius->ctx, NULL, HOSTAPD_MODULE_RADIUS, in radius_client_send()
773 HOSTAPD_LEVEL_DEBUG, "Sending RADIUS message to %s " in radius_client_send()
781 radius_client_handle_send_error(radius, s, msg_type); in radius_client_send()
783 radius_client_list_add(radius, msg, msg_type, shared_secret, in radius_client_send()
792 struct radius_client_data *radius = eloop_ctx; in radius_client_receive() local
793 struct hostapd_radius_servers *conf = radius->conf; in radius_client_receive()
807 handlers = radius->acct_handlers; in radius_client_receive()
808 num_handlers = radius->num_acct_handlers; in radius_client_receive()
811 handlers = radius->auth_handlers; in radius_client_receive()
812 num_handlers = radius->num_auth_handlers; in radius_client_receive()
818 wpa_printf(MSG_INFO, "recv[RADIUS]: %s", strerror(errno)); in radius_client_receive()
821 hostapd_logger(radius->ctx, NULL, HOSTAPD_MODULE_RADIUS, in radius_client_receive()
822 HOSTAPD_LEVEL_DEBUG, "Received %d bytes from RADIUS " in radius_client_receive()
825 wpa_printf(MSG_INFO, "RADIUS: Possibly too long UDP frame for our buffer - dropping it"); in radius_client_receive()
831 wpa_printf(MSG_INFO, "RADIUS: Parsing incoming frame failed"); in radius_client_receive()
837 hostapd_logger(radius->ctx, NULL, HOSTAPD_MODULE_RADIUS, in radius_client_receive()
838 HOSTAPD_LEVEL_DEBUG, "Received RADIUS message"); in radius_client_receive()
858 req = radius->msgs; in radius_client_receive()
861 * alternative RADIUS servers (?) */ in radius_client_receive()
874 hostapd_logger(radius->ctx, NULL, HOSTAPD_MODULE_RADIUS, in radius_client_receive()
876 "No matching RADIUS request found (type=%d " in radius_client_receive()
885 hostapd_logger(radius->ctx, req->addr, HOSTAPD_MODULE_RADIUS, in radius_client_receive()
887 "Received RADIUS packet matched with a pending " in radius_client_receive()
892 /* Remove ACKed RADIUS packet from retransmit list */ in radius_client_receive()
896 radius->msgs = req->next; in radius_client_receive()
897 radius->num_msgs--; in radius_client_receive()
924 hostapd_logger(radius->ctx, req->addr, HOSTAPD_MODULE_RADIUS, in radius_client_receive()
925 HOSTAPD_LEVEL_DEBUG, "No RADIUS RX handler found " in radius_client_receive()
938 * radius_client_get_id - Get an identifier for a new RADIUS message
939 * @radius: RADIUS client context from radius_client_init()
943 * for a new RADIUS message.
945 u8 radius_client_get_id(struct radius_client_data *radius) in radius_client_get_id() argument
948 u8 id = radius->next_radius_identifier++; in radius_client_get_id()
951 * using new reply from the RADIUS server with an old request */ in radius_client_get_id()
952 entry = radius->msgs; in radius_client_get_id()
956 hostapd_logger(radius->ctx, entry->addr, in radius_client_get_id()
959 "Removing pending RADIUS message, " in radius_client_get_id()
964 radius->msgs = entry->next; in radius_client_get_id()
981 * radius_client_flush - Flush all pending RADIUS client messages
982 * @radius: RADIUS client context from radius_client_init()
985 void radius_client_flush(struct radius_client_data *radius, int only_auth) in radius_client_flush() argument
989 if (!radius) in radius_client_flush()
993 entry = radius->msgs; in radius_client_flush()
1000 radius->msgs = entry->next; in radius_client_flush()
1005 radius->num_msgs--; in radius_client_flush()
1012 if (radius->msgs == NULL) in radius_client_flush()
1013 eloop_cancel_timeout(radius_client_timer, radius, NULL); in radius_client_flush()
1017 static void radius_client_update_acct_msgs(struct radius_client_data *radius, in radius_client_update_acct_msgs() argument
1023 if (!radius) in radius_client_update_acct_msgs()
1026 for (entry = radius->msgs; entry; entry = entry->next) { in radius_client_update_acct_msgs()
1038 radius_change_server(struct radius_client_data *radius, in radius_change_server() argument
1052 struct hostapd_radius_servers *conf = radius->conf; in radius_change_server()
1057 hostapd_logger(radius->ctx, NULL, HOSTAPD_MODULE_RADIUS, in radius_change_server()
1067 radius_client_flush(radius, 1); in radius_change_server()
1074 /* Pending RADIUS packets used different shared secret, so in radius_change_server()
1077 * since they would require more changes and the new RADIUS in radius_change_server()
1082 radius_client_flush(radius, 1); in radius_change_server()
1085 radius, nserv->shared_secret, in radius_change_server()
1091 for (entry = radius->msgs; oserv && oserv != nserv && entry; in radius_change_server()
1101 if (radius->msgs) { in radius_change_server()
1102 eloop_cancel_timeout(radius_client_timer, radius, NULL); in radius_change_server()
1104 radius_client_timer, radius, NULL); in radius_change_server()
1135 "RADIUS: No server socket available (af=%d sock=%d sock6=%d auth=%d", in radius_change_server()
1166 wpa_printf(MSG_INFO, "bind[radius]: %s", in radius_change_server()
1175 wpa_printf(MSG_INFO, "disconnect[radius]: %s", strerror(errno)); in radius_change_server()
1178 wpa_printf(MSG_INFO, "connect[radius]: %s", strerror(errno)); in radius_change_server()
1188 wpa_printf(MSG_DEBUG, "RADIUS local address: %s:%u", in radius_change_server()
1198 wpa_printf(MSG_DEBUG, "RADIUS local address: %s:%u", in radius_change_server()
1210 radius->auth_sock = sel_sock; in radius_change_server()
1212 radius->acct_sock = sel_sock; in radius_change_server()
1220 struct radius_client_data *radius = eloop_ctx; in radius_retry_primary_timer() local
1221 struct hostapd_radius_servers *conf = radius->conf; in radius_retry_primary_timer()
1224 if (radius->auth_sock >= 0 && conf->auth_servers && in radius_retry_primary_timer()
1228 if (radius_change_server(radius, conf->auth_server, oserv, in radius_retry_primary_timer()
1229 radius->auth_serv_sock, in radius_retry_primary_timer()
1230 radius->auth_serv_sock6, 1) < 0) { in radius_retry_primary_timer()
1232 radius_change_server(radius, oserv, conf->auth_server, in radius_retry_primary_timer()
1233 radius->auth_serv_sock, in radius_retry_primary_timer()
1234 radius->auth_serv_sock6, 1); in radius_retry_primary_timer()
1238 if (radius->acct_sock >= 0 && conf->acct_servers && in radius_retry_primary_timer()
1242 if (radius_change_server(radius, conf->acct_server, oserv, in radius_retry_primary_timer()
1243 radius->acct_serv_sock, in radius_retry_primary_timer()
1244 radius->acct_serv_sock6, 0) < 0) { in radius_retry_primary_timer()
1246 radius_change_server(radius, oserv, conf->acct_server, in radius_retry_primary_timer()
1247 radius->acct_serv_sock, in radius_retry_primary_timer()
1248 radius->acct_serv_sock6, 0); in radius_retry_primary_timer()
1254 radius_retry_primary_timer, radius, in radius_retry_primary_timer()
1268 wpa_printf(MSG_ERROR, "RADIUS: Failed to set IP_MTU_DISCOVER: %s", in radius_client_disable_pmtu_discovery()
1275 static void radius_close_auth_sockets(struct radius_client_data *radius) in radius_close_auth_sockets() argument
1277 radius->auth_sock = -1; in radius_close_auth_sockets()
1279 if (radius->auth_serv_sock >= 0) { in radius_close_auth_sockets()
1280 eloop_unregister_read_sock(radius->auth_serv_sock); in radius_close_auth_sockets()
1281 close(radius->auth_serv_sock); in radius_close_auth_sockets()
1282 radius->auth_serv_sock = -1; in radius_close_auth_sockets()
1285 if (radius->auth_serv_sock6 >= 0) { in radius_close_auth_sockets()
1286 eloop_unregister_read_sock(radius->auth_serv_sock6); in radius_close_auth_sockets()
1287 close(radius->auth_serv_sock6); in radius_close_auth_sockets()
1288 radius->auth_serv_sock6 = -1; in radius_close_auth_sockets()
1294 static void radius_close_acct_sockets(struct radius_client_data *radius) in radius_close_acct_sockets() argument
1296 radius->acct_sock = -1; in radius_close_acct_sockets()
1298 if (radius->acct_serv_sock >= 0) { in radius_close_acct_sockets()
1299 eloop_unregister_read_sock(radius->acct_serv_sock); in radius_close_acct_sockets()
1300 close(radius->acct_serv_sock); in radius_close_acct_sockets()
1301 radius->acct_serv_sock = -1; in radius_close_acct_sockets()
1304 if (radius->acct_serv_sock6 >= 0) { in radius_close_acct_sockets()
1305 eloop_unregister_read_sock(radius->acct_serv_sock6); in radius_close_acct_sockets()
1306 close(radius->acct_serv_sock6); in radius_close_acct_sockets()
1307 radius->acct_serv_sock6 = -1; in radius_close_acct_sockets()
1313 static int radius_client_init_auth(struct radius_client_data *radius) in radius_client_init_auth() argument
1315 struct hostapd_radius_servers *conf = radius->conf; in radius_client_init_auth()
1318 radius_close_auth_sockets(radius); in radius_client_init_auth()
1320 radius->auth_serv_sock = socket(PF_INET, SOCK_DGRAM, 0); in radius_client_init_auth()
1321 if (radius->auth_serv_sock < 0) in radius_client_init_auth()
1322 wpa_printf(MSG_INFO, "RADIUS: socket[PF_INET,SOCK_DGRAM]: %s", in radius_client_init_auth()
1325 radius_client_disable_pmtu_discovery(radius->auth_serv_sock); in radius_client_init_auth()
1330 radius->auth_serv_sock6 = socket(PF_INET6, SOCK_DGRAM, 0); in radius_client_init_auth()
1331 if (radius->auth_serv_sock6 < 0) in radius_client_init_auth()
1332 wpa_printf(MSG_INFO, "RADIUS: socket[PF_INET6,SOCK_DGRAM]: %s", in radius_client_init_auth()
1341 radius_change_server(radius, conf->auth_server, NULL, in radius_client_init_auth()
1342 radius->auth_serv_sock, radius->auth_serv_sock6, in radius_client_init_auth()
1345 if (radius->auth_serv_sock >= 0 && in radius_client_init_auth()
1346 eloop_register_read_sock(radius->auth_serv_sock, in radius_client_init_auth()
1347 radius_client_receive, radius, in radius_client_init_auth()
1349 wpa_printf(MSG_INFO, "RADIUS: Could not register read socket for authentication server"); in radius_client_init_auth()
1350 radius_close_auth_sockets(radius); in radius_client_init_auth()
1355 if (radius->auth_serv_sock6 >= 0 && in radius_client_init_auth()
1356 eloop_register_read_sock(radius->auth_serv_sock6, in radius_client_init_auth()
1357 radius_client_receive, radius, in radius_client_init_auth()
1359 wpa_printf(MSG_INFO, "RADIUS: Could not register read socket for authentication server"); in radius_client_init_auth()
1360 radius_close_auth_sockets(radius); in radius_client_init_auth()
1369 static int radius_client_init_acct(struct radius_client_data *radius) in radius_client_init_acct() argument
1371 struct hostapd_radius_servers *conf = radius->conf; in radius_client_init_acct()
1374 radius_close_acct_sockets(radius); in radius_client_init_acct()
1376 radius->acct_serv_sock = socket(PF_INET, SOCK_DGRAM, 0); in radius_client_init_acct()
1377 if (radius->acct_serv_sock < 0) in radius_client_init_acct()
1378 wpa_printf(MSG_INFO, "RADIUS: socket[PF_INET,SOCK_DGRAM]: %s", in radius_client_init_acct()
1381 radius_client_disable_pmtu_discovery(radius->acct_serv_sock); in radius_client_init_acct()
1386 radius->acct_serv_sock6 = socket(PF_INET6, SOCK_DGRAM, 0); in radius_client_init_acct()
1387 if (radius->acct_serv_sock6 < 0) in radius_client_init_acct()
1388 wpa_printf(MSG_INFO, "RADIUS: socket[PF_INET6,SOCK_DGRAM]: %s", in radius_client_init_acct()
1397 radius_change_server(radius, conf->acct_server, NULL, in radius_client_init_acct()
1398 radius->acct_serv_sock, radius->acct_serv_sock6, in radius_client_init_acct()
1401 if (radius->acct_serv_sock >= 0 && in radius_client_init_acct()
1402 eloop_register_read_sock(radius->acct_serv_sock, in radius_client_init_acct()
1403 radius_client_receive, radius, in radius_client_init_acct()
1405 wpa_printf(MSG_INFO, "RADIUS: Could not register read socket for accounting server"); in radius_client_init_acct()
1406 radius_close_acct_sockets(radius); in radius_client_init_acct()
1411 if (radius->acct_serv_sock6 >= 0 && in radius_client_init_acct()
1412 eloop_register_read_sock(radius->acct_serv_sock6, in radius_client_init_acct()
1413 radius_client_receive, radius, in radius_client_init_acct()
1415 wpa_printf(MSG_INFO, "RADIUS: Could not register read socket for accounting server"); in radius_client_init_acct()
1416 radius_close_acct_sockets(radius); in radius_client_init_acct()
1426 * radius_client_init - Initialize RADIUS client
1428 * @conf: RADIUS client configuration (RADIUS servers)
1429 * Returns: Pointer to private RADIUS client context or %NULL on failure
1432 * the lifetime of the RADIUS client, i.e., until radius_client_deinit() is
1438 struct radius_client_data *radius; in radius_client_init() local
1440 radius = os_zalloc(sizeof(struct radius_client_data)); in radius_client_init()
1441 if (radius == NULL) in radius_client_init()
1444 radius->ctx = ctx; in radius_client_init()
1445 radius->conf = conf; in radius_client_init()
1446 radius->auth_serv_sock = radius->acct_serv_sock = in radius_client_init()
1447 radius->auth_serv_sock6 = radius->acct_serv_sock6 = in radius_client_init()
1448 radius->auth_sock = radius->acct_sock = -1; in radius_client_init()
1450 if (conf->auth_server && radius_client_init_auth(radius)) { in radius_client_init()
1451 radius_client_deinit(radius); in radius_client_init()
1455 if (conf->acct_server && radius_client_init_acct(radius)) { in radius_client_init()
1456 radius_client_deinit(radius); in radius_client_init()
1462 radius_retry_primary_timer, radius, in radius_client_init()
1465 return radius; in radius_client_init()
1470 * radius_client_deinit - Deinitialize RADIUS client
1471 * @radius: RADIUS client context from radius_client_init()
1473 void radius_client_deinit(struct radius_client_data *radius) in radius_client_deinit() argument
1475 if (!radius) in radius_client_deinit()
1478 radius_close_auth_sockets(radius); in radius_client_deinit()
1479 radius_close_acct_sockets(radius); in radius_client_deinit()
1481 eloop_cancel_timeout(radius_retry_primary_timer, radius, NULL); in radius_client_deinit()
1483 radius_client_flush(radius, 0); in radius_client_deinit()
1484 os_free(radius->auth_handlers); in radius_client_deinit()
1485 os_free(radius->acct_handlers); in radius_client_deinit()
1486 os_free(radius); in radius_client_deinit()
1491 * radius_client_flush_auth - Flush pending RADIUS messages for an address
1492 * @radius: RADIUS client context from radius_client_init()
1495 * This function can be used to remove pending RADIUS authentication messages
1500 void radius_client_flush_auth(struct radius_client_data *radius, in radius_client_flush_auth() argument
1506 entry = radius->msgs; in radius_client_flush_auth()
1510 hostapd_logger(radius->ctx, addr, in radius_client_flush_auth()
1513 "Removing pending RADIUS authentication" in radius_client_flush_auth()
1519 radius->msgs = entry->next; in radius_client_flush_auth()
1524 radius->num_msgs--; in radius_client_flush_auth()
1630 * radius_client_get_mib - Get RADIUS client MIB information
1631 * @radius: RADIUS client context from radius_client_init()
1636 int radius_client_get_mib(struct radius_client_data *radius, char *buf, in radius_client_get_mib() argument
1639 struct hostapd_radius_servers *conf = radius->conf; in radius_client_get_mib()
1650 radius : NULL); in radius_client_get_mib()
1660 radius : NULL); in radius_client_get_mib()
1668 void radius_client_reconfig(struct radius_client_data *radius, in radius_client_reconfig() argument
1671 if (radius) in radius_client_reconfig()
1672 radius->conf = conf; in radius_client_reconfig()