Kea 3.1.7
radius_status.cc
Go to the documentation of this file.
1// Copyright (C) 2020-2026 Internet Systems Consortium, Inc. ("ISC")
2//
3// This Source Code Form is subject to the terms of the Mozilla Public
4// License, v. 2.0. If a copy of the MPL was not distributed with this
5// file, You can obtain one at http://mozilla.org/MPL/2.0/.
6
7#include <config.h>
8
9#include <radius_access.h>
10#include <radius_accounting.h>
11#include <radius_status.h>
12#include <radius_log.h>
13#include <radius_tls.h>
14#include <sstream>
15
16using namespace isc::asiolink;
17using namespace isc::dhcp;
18using namespace isc::radius;
19using namespace std;
20namespace ph = std::placeholders;
21
22namespace isc {
23namespace radius {
24
25RadiusAuthStatus::RadiusAuthStatus(const AttributesPtr& send_attrs,
26 const CallbackStatus& handler)
27 : RadiusStatus() {
28 AttributesPtr attrs;
29 if (send_attrs) {
30 attrs.reset(new Attributes(*send_attrs));
31 } else {
32 attrs.reset(new Attributes());
33 }
34 MessagePtr request(new Message(PW_STATUS_SERVER, 0, vector<uint8_t>(),
35 "to-be-set", attrs));
36 unsigned maxretries = RadiusImpl::instance().retries_;
37 Servers servers = RadiusImpl::instance().auth_->servers_;
38 exchange_ = Exchange::create(RadiusImpl::instance().getIOContext(),
39 request, maxretries, servers,
40 std::bind(&RadiusAuthStatus::invokeCallback,
41 handler, ph::_1),
42 RadiusImpl::instance().proto_);
43}
44
45void
46RadiusAuthStatus::start() {
47 AttributesPtr send_attrs;
48 MessagePtr request = exchange_->getRequest();
49 if (request) {
50 send_attrs = request->getAttributes();
51 }
52 LOG_DEBUG(radius_logger, RADIUS_DBG_TRACE, RADIUS_AUTHENTICATION_STATUS)
53 .arg(send_attrs ? send_attrs->toText() : "no attributes");
54
55 RadiusStatus::start();
56}
57
58void
59RadiusAuthStatus::invokeCallback(const CallbackAcct& callback,
60 const ExchangePtr exchange) {
61 // Should not happen...
62 if (!exchange) {
63 return;
64 }
65 int result = exchange->getRC();
66 if (result == OK_RC) {
67 LOG_DEBUG(radius_logger, RADIUS_DBG_TRACE,
68 RADIUS_AUTHENTICATION_STATUS_SUCCEED);
69 RadiusImpl::instance().setAccessIdleTimer();
70
71 MessagePtr response = exchange->getResponse();
72 AttributesPtr resp_attrs;
73 uint8_t code = 0;
74 if (response) {
75 resp_attrs = response->getAttributes();
76 code = response->getCode();
77 }
78 if (((code != 0) && (code != PW_ACCESS_ACCEPT)) ||
79 (resp_attrs && (resp_attrs->count(PW_ERROR_CAUSE) > 0))) {
80 LOG_ERROR(radius_logger, RADIUS_AUTHENTICATION_STATUS_ERROR)
81 .arg(msgCodeToText(code))
82 .arg(static_cast<unsigned>(code))
83 .arg(resp_attrs ? resp_attrs->toText() : "no attributes");
84 }
85 } else {
86 LOG_DEBUG(radius_logger, RADIUS_DBG_TRACE,
87 RADIUS_AUTHENTICATION_STATUS_FAILED)
88 .arg(result)
89 .arg(exchangeRCtoText(result));
90 }
91
92 if (callback) {
93 try {
94 callback(result);
95 } catch (...) {
96 }
97 }
98 exchange->shutdown();
99 RadiusImpl::instance().unregisterExchange(exchange);
100}
101
102RadiusAcctStatus::RadiusAcctStatus(const AttributesPtr& send_attrs,
103 const CallbackStatus& handler)
104 : RadiusStatus() {
105 AttributesPtr attrs;
106 if (send_attrs) {
107 attrs.reset(new Attributes(*send_attrs));
108 } else {
109 attrs.reset(new Attributes());
110 }
111 MessagePtr request(new Message(PW_STATUS_SERVER, 0, vector<uint8_t>(),
112 "to-be-set", attrs));
113 unsigned maxretries = RadiusImpl::instance().retries_;
114 Servers servers = RadiusImpl::instance().acct_->servers_;
115 exchange_ = Exchange::create(RadiusImpl::instance().getIOContext(),
116 request, maxretries, servers,
117 std::bind(&RadiusAcctStatus::invokeCallback,
118 handler, ph::_1),
119 RadiusImpl::instance().proto_);
120}
121
122void
123RadiusAcctStatus::start() {
124 AttributesPtr send_attrs;
125 MessagePtr request = exchange_->getRequest();
126 if (request) {
127 send_attrs = request->getAttributes();
128 }
129 LOG_DEBUG(radius_logger, RADIUS_DBG_TRACE, RADIUS_ACCOUNTING_STATUS)
130 .arg(send_attrs ? send_attrs->toText() : "no attributes");
131
132 RadiusStatus::start();
133}
134
135void
136RadiusAcctStatus::invokeCallback(const CallbackAcct& callback,
137 const ExchangePtr exchange) {
138 // Should not happen...
139 if (!exchange) {
140 return;
141 }
142 int result = exchange->getRC();
143 if (result == OK_RC) {
144 LOG_DEBUG(radius_logger, RADIUS_DBG_TRACE,
145 RADIUS_ACCOUNTING_STATUS_SUCCEED);
146 RadiusImpl::instance().setAccountingIdleTimer();
147
148 MessagePtr response = exchange->getResponse();
149 AttributesPtr resp_attrs;
150 uint8_t code = 0;
151 if (response) {
152 resp_attrs = response->getAttributes();
153 code = response->getCode();
154 }
155 if (((code != 0) && (code != PW_ACCOUNTING_RESPONSE)) ||
156 (resp_attrs && (resp_attrs->count(PW_ERROR_CAUSE) > 0))) {
157 LOG_ERROR(radius_logger, RADIUS_ACCOUNTING_STATUS_ERROR)
158 .arg(msgCodeToText(code))
159 .arg(static_cast<unsigned>(code))
160 .arg(resp_attrs ? resp_attrs->toText() : "no attributes");
161 }
162 } else {
163 LOG_DEBUG(radius_logger, RADIUS_DBG_TRACE,
164 RADIUS_ACCOUNTING_STATUS_FAILED)
165 .arg(result)
166 .arg(exchangeRCtoText(result));
167 }
168
169 if (callback) {
170 try {
171 callback(result);
172 } catch (...) {
173 }
174 }
175 exchange->shutdown();
176 RadiusImpl::instance().unregisterExchange(exchange);
177}
178
179RadiusTlsStatus::RadiusTlsStatus(const AttributesPtr& send_attrs,
180 const CallbackStatus& handler)
181 : RadiusStatus() {
182 AttributesPtr attrs;
183 if (send_attrs) {
184 attrs.reset(new Attributes(*send_attrs));
185 } else {
186 attrs.reset(new Attributes());
187 }
188 MessagePtr request(new Message(PW_STATUS_SERVER, 0, vector<uint8_t>(),
189 "to-be-set", attrs));
190 unsigned maxretries = RadiusImpl::instance().retries_;
191 Servers servers = RadiusImpl::instance().tls_->servers_;
192 exchange_ = Exchange::create(RadiusImpl::instance().getIOContext(),
193 request, maxretries, servers,
194 std::bind(&RadiusTlsStatus::invokeCallback,
195 handler, ph::_1),
196 PW_PROTO_TLS);
197}
198
199void
200RadiusTlsStatus::start() {
201 AttributesPtr send_attrs;
202 MessagePtr request = exchange_->getRequest();
203 if (request) {
204 send_attrs = request->getAttributes();
205 }
206 LOG_DEBUG(radius_logger, RADIUS_DBG_TRACE, RADIUS_TLS_STATUS)
207 .arg(send_attrs ? send_attrs->toText() : "no attributes");
208
209 RadiusStatus::start();
210}
211
212void
213RadiusTlsStatus::invokeCallback(const CallbackAcct& callback,
214 const ExchangePtr exchange) {
215 // Should not happen...
216 if (!exchange) {
217 return;
218 }
219 int result = exchange->getRC();
220 if (result == OK_RC) {
221 LOG_DEBUG(radius_logger, RADIUS_DBG_TRACE, RADIUS_TLS_STATUS_SUCCEED);
222 RadiusImpl::instance().setAccessIdleTimer();
223
224 MessagePtr response = exchange->getResponse();
225 AttributesPtr resp_attrs;
226 uint8_t code = 0;
227 if (response) {
228 resp_attrs = response->getAttributes();
229 code = response->getCode();
230 }
231 if (((code != 0) && (code != PW_ACCESS_ACCEPT)) ||
232 (resp_attrs && (resp_attrs->count(PW_ERROR_CAUSE) > 0))) {
233 LOG_ERROR(radius_logger, RADIUS_TLS_STATUS_ERROR)
234 .arg(msgCodeToText(code))
235 .arg(static_cast<unsigned>(code))
236 .arg(resp_attrs ? resp_attrs->toText() : "no attributes");
237 }
238 } else {
239 LOG_DEBUG(radius_logger, RADIUS_DBG_TRACE, RADIUS_TLS_STATUS_FAILED)
240 .arg(result)
241 .arg(exchangeRCtoText(result));
242 }
243
244 if (callback) {
245 try {
246 callback(result);
247 } catch (...) {
248 }
249 }
250}
251
252} // end of namespace radius
253} // end of namespace isc
isc::radius::Attributes
Collection of attributes.
Definition client_attribute.h:819
isc::radius::Exchange::create
static ExchangePtr create(const asiolink::IOServicePtr io_service, const MessagePtr &request, unsigned maxretries, const Servers &servers, Handler handler, RadiusProtocol protocol=PW_PROTO_UDP)
Factory.
Definition client_exchange.cc:94
isc::radius::Message
RADIUS Message.
Definition client_message.h:56
isc::radius::RadiusAcctStatus::RadiusAcctStatus
RadiusAcctStatus(const AttributesPtr &send_attrs, const CallbackStatus &handler)
Constructor.
Definition radius_status.cc:102
isc::radius::RadiusAcctStatus::start
virtual void start() override
Start communication.
Definition radius_status.cc:123
isc::radius::RadiusAcctStatus::invokeCallback
static void invokeCallback(const CallbackStatus &callback, const ExchangePtr exchange)
Invoke accounting status callback.
Definition radius_status.cc:136
isc::radius::RadiusAuthStatus::invokeCallback
static void invokeCallback(const CallbackStatus &callback, const ExchangePtr exchange)
Invoke access status callback.
Definition radius_status.cc:59
isc::radius::RadiusAuthStatus::RadiusAuthStatus
RadiusAuthStatus(const AttributesPtr &send_attrs, const CallbackStatus &handler)
Constructor.
Definition radius_status.cc:25
isc::radius::RadiusAuthStatus::start
virtual void start() override
Start communication.
Definition radius_status.cc:46
isc::radius::RadiusImpl::tls_
boost::shared_ptr< RadiusTls > tls_
Pointer to tls (never null).
Definition radius.h:281
isc::radius::RadiusImpl::setAccountingIdleTimer
void setAccountingIdleTimer()
Set the accounting idle timer.
Definition radius.cc:420
isc::radius::RadiusImpl::unregisterExchange
void unregisterExchange(ExchangePtr exchange)
Unregister Exchange.
Definition radius.cc:202
isc::radius::RadiusImpl::auth_
boost::shared_ptr< RadiusAccess > auth_
Pointer to access (never null).
Definition radius.h:284
isc::radius::RadiusImpl::acct_
boost::shared_ptr< RadiusAccounting > acct_
Pointer to accounting (never null).
Definition radius.h:287
isc::radius::RadiusImpl::retries_
unsigned retries_
Retries.
Definition radius.h:320
isc::radius::RadiusImpl::setAccessIdleTimer
void setAccessIdleTimer()
Set the access idle timer.
Definition radius.cc:408
isc::radius::RadiusImpl::instance
static RadiusImpl & instance()
RadiusImpl is a singleton class.
Definition radius.cc:163
isc::radius::RadiusStatus::start
virtual void start()
Start communication.
Definition radius_status.h:41
isc::radius::RadiusStatus::exchange_
ExchangePtr exchange_
Exchange.
Definition radius_status.h:81
isc::radius::RadiusTlsStatus::RadiusTlsStatus
RadiusTlsStatus(const AttributesPtr &send_attrs, const CallbackStatus &handler)
Constructor.
Definition radius_status.cc:179
isc::radius::RadiusTlsStatus::invokeCallback
static void invokeCallback(const CallbackStatus &callback, const ExchangePtr exchange)
Invoke access status callback.
Definition radius_status.cc:213
isc::radius::RadiusTlsStatus::start
virtual void start() override
Start communication.
Definition radius_status.cc:200
LOG_ERROR
#define LOG_ERROR(LOGGER, MESSAGE)
Macro to conveniently test error output and log it.
Definition macros.h:32
LOG_DEBUG
#define LOG_DEBUG(LOGGER, LEVEL, MESSAGE)
Macro to conveniently test debug output and log it.
Definition macros.h:14
isc::radius::CallbackStatus
std::function< void(int)> CallbackStatus
Type of callback for status termination.
Definition radius_status.h:25
isc::radius::RADIUS_AUTHENTICATION_STATUS
const isc::log::MessageID RADIUS_AUTHENTICATION_STATUS
Definition radius_messages.h:43
isc::radius::AttributesPtr
boost::shared_ptr< Attributes > AttributesPtr
Shared pointers to attribute collection.
Definition client_attribute.h:963
isc::radius::RADIUS_TLS_STATUS_SUCCEED
const isc::log::MessageID RADIUS_TLS_STATUS_SUCCEED
Definition radius_messages.h:99
isc::radius::RADIUS_ACCOUNTING_STATUS_FAILED
const isc::log::MessageID RADIUS_ACCOUNTING_STATUS_FAILED
Definition radius_messages.h:34
isc::radius::CallbackAcct
std::function< void(int)> CallbackAcct
Type of callback for accounting termination.
Definition radius_request.h:31
isc::radius::RADIUS_TLS_STATUS_FAILED
const isc::log::MessageID RADIUS_TLS_STATUS_FAILED
Definition radius_messages.h:98
isc::radius::exchangeRCtoText
string exchangeRCtoText(const int rc)
ExchangeRC value -> name function.
Definition client_exchange.cc:38
isc::radius::RADIUS_ACCOUNTING_STATUS
const isc::log::MessageID RADIUS_ACCOUNTING_STATUS
Definition radius_messages.h:32
isc::radius::Servers
std::vector< ServerPtr > Servers
Type of RADIUS server collection.
Definition client_server.h:228
isc::radius::ExchangePtr
boost::shared_ptr< Exchange > ExchangePtr
Type of shared pointers to RADIUS exchange object.
Definition client_exchange.h:55
isc::radius::msgCodeToText
string msgCodeToText(const uint8_t code)
MsgCode value -> name function.
Definition client_message.cc:30
isc::radius::RADIUS_DBG_TRACE
const int RADIUS_DBG_TRACE
Radius logging levels.
Definition radius_log.h:26
isc::radius::RADIUS_AUTHENTICATION_STATUS_ERROR
const isc::log::MessageID RADIUS_AUTHENTICATION_STATUS_ERROR
Definition radius_messages.h:44
isc::radius::RADIUS_AUTHENTICATION_STATUS_SUCCEED
const isc::log::MessageID RADIUS_AUTHENTICATION_STATUS_SUCCEED
Definition radius_messages.h:46
isc::radius::RADIUS_ACCOUNTING_STATUS_ERROR
const isc::log::MessageID RADIUS_ACCOUNTING_STATUS_ERROR
Definition radius_messages.h:33
isc::radius::RADIUS_ACCOUNTING_STATUS_SUCCEED
const isc::log::MessageID RADIUS_ACCOUNTING_STATUS_SUCCEED
Definition radius_messages.h:35
isc::radius::RADIUS_TLS_STATUS
const isc::log::MessageID RADIUS_TLS_STATUS
Definition radius_messages.h:96
isc::radius::radius_logger
isc::log::Logger radius_logger("radius-hooks")
Radius Logger.
Definition radius_log.h:35
isc::radius::MessagePtr
boost::shared_ptr< Message > MessagePtr
Shared pointers to message.
Definition client_message.h:262
isc::radius::RADIUS_AUTHENTICATION_STATUS_FAILED
const isc::log::MessageID RADIUS_AUTHENTICATION_STATUS_FAILED
Definition radius_messages.h:45
isc::radius::RADIUS_TLS_STATUS_ERROR
const isc::log::MessageID RADIUS_TLS_STATUS_ERROR
Definition radius_messages.h:97
isc
Defines the logger used by the top-level component of kea-lfc.
Definition agent_parser.cc:148
radius_access.h
radius_accounting.h
radius_log.h
radius_status.h
radius_tls.h