#include <string.h>
-#include <malloc.h>
-#include <stdlib.h>
-#include <sys/wait.h>
-#include <sys/types.h>
+#include <netinet/ip6.h>
+#include "dhcp6.h"
#include "l2tpns.h"
#include "plugin.h"
-#include "control.h"
-int __plugin_api_version = 1;
-struct pluginfuncs *p;
+/* set up throttling based on RADIUS reply */
+
+/*
+ * lcp:interface-config#1=service-policy input N
+ * lcp:interface-config#2=service-policy output N
+ *
+ * throttle=N
+ * throttle=yes (use throttle_speed from config)
+ * throttle=no
+ */
+
+int plugin_api_version = PLUGIN_API_VERSION;
+static struct pluginfuncs *f = 0;
#define THROTTLE_KEY "lcp:interface-config"
int plugin_radius_response(struct param_radius_response *data)
{
- char *t;
- int i = 0;
+ if (!strncmp(data->key, THROTTLE_KEY, sizeof(THROTTLE_KEY) - 1))
+ {
+ char *sp = strchr(data->value, ' ');
+ char type;
int rate;
- if (strncmp(data->key, THROTTLE_KEY, strlen(THROTTLE_KEY)) == 0)
+ if (!sp || sp - data->value < 4 ||
+ strncmp("service-policy", data->value, sp - data->value))
+ return PLUGIN_RET_OK;
+
+ while (*sp == ' ') sp++;
+ data->value = sp;
+
+ if (!(sp = strchr(data->value, ' ')) ||
+ (strncmp("input", data->value, sp - data->value) &&
+ strncmp("output", data->value, sp - data->value)))
{
- char *pt = strdup(data->value);
- while ((t = strsep(&pt, " ")) != NULL)
- {
- if (strcmp(t, "serv") == 0)
- i = 1;
- else if (strcmp(t, "o") && i == 1)
- i = 2;
- else if (strcmp(t, "i") && i == 1)
- i = 3;
- else if (i > 1 && (rate = atoi(t)) > 0)
- {
- switch (i)
- {
- case 2: // output
- data->s->throttle_out = rate;
- free(pt);
- p->_log(3, 0, p->get_id_by_session(data->s), data->s->tunnel, " Set output throttle rate %dkb/s\n", rate);
- return PLUGIN_RET_OK;
-
- case 3: //input
- data->s->throttle_in = rate;
- free(pt);
- p->_log(3, 0, p->get_id_by_session(data->s), data->s->tunnel, " Set input throttle rate %dkb/s\n", rate);
- return PLUGIN_RET_OK;
-
- default:
- p->_log(1, 0, p->get_id_by_session(data->s), data->s->tunnel, "Syntax error in rate limit AV pair: %s=%s\n", data->key, data->value);
- free(pt);
- return PLUGIN_RET_OK;
- }
- }
- else
- {
- free(pt);
- p->_log(1, 0, p->get_id_by_session(data->s), data->s->tunnel, "Syntax error in rate limit AV pair: %s=%s\n",
- data->key, data->value);
- return PLUGIN_RET_OK;
- }
- }
- free(pt);
+ f->log(3, f->get_id_by_session(data->s), data->s->tunnel,
+ " Not throttling user (invalid type %.*s)\n",
+ sp - data->value, data->value);
+
+ return PLUGIN_RET_OK;
}
- else if (strcmp(data->key, "throttle") == 0)
+
+ type = *data->value;
+
+ while (*sp == ' ') sp++;
+ data->value = sp;
+
+ if ((rate = strtol(data->value, &sp, 10)) < 0 || *sp)
+ {
+ f->log(3, f->get_id_by_session(data->s), data->s->tunnel,
+ " Not throttling user (invalid rate %s)\n",
+ data->value);
+
+ return PLUGIN_RET_OK;
+ }
+
+ if (type == 'i')
+ {
+ data->s->throttle_in = rate;
+ f->log(3, f->get_id_by_session(data->s), data->s->tunnel,
+ " Throttling user input to %dkb/s\n", rate);
+ }
+ else
+ {
+ data->s->throttle_out = rate;
+ f->log(3, f->get_id_by_session(data->s), data->s->tunnel,
+ " Throttling user output to %dkb/s\n", rate);
+ }
+ }
+ else if (!strcmp(data->key, "throttle"))
+ {
+ char *e;
+ int rate;
+
+ if ((rate = strtol(data->value, &e, 10)) < 0 || *e)
{
- if (strcmp(data->value, "yes") == 0)
- {
- p->_log(3, 0, p->get_id_by_session(data->s), data->s->tunnel, " Throttling user\n");
- data->s->throttle_in = data->s->throttle_out = config->rl_rate;
- }
- else if (strcmp(data->value, "no") == 0)
- {
- p->_log(3, 0, p->get_id_by_session(data->s), data->s->tunnel, " Not throttling user\n");
- data->s->throttle_in = data->s->throttle_out = 0;
- }
+ rate = -1;
+ if (!strcmp(data->value, "yes"))
+ {
+ unsigned long *ts = f->getconfig("throttle_speed", UNSIGNED_LONG);
+ if (ts)
+ rate = *ts;
+ }
+ else if (!strcmp(data->value, "no"))
+ rate = 0;
}
- p->_log(4, 0, p->get_id_by_session(data->s), data->s->tunnel, "autothrottle module ignoring AV pair %s=%s\n",
- data->key, data->value);
+ if (rate < 0)
+ return PLUGIN_RET_OK;
+
+ if (rate)
+ f->log(3, f->get_id_by_session(data->s), data->s->tunnel,
+ " Throttling user to %dkb/s\n", rate);
+ else
+ f->log(3, f->get_id_by_session(data->s), data->s->tunnel,
+ " Not throttling user\n");
+
+ data->s->throttle_in = data->s->throttle_out = rate;
+ }
- return PLUGIN_RET_OK;
+ return PLUGIN_RET_OK;
}
-int plugin_init(struct pluginfuncs *funcs)
+int plugin_radius_reset(struct param_radius_reset *data)
{
- return ((p = funcs)) ? 1 : 0;
+ f->throttle(f->get_id_by_session(data->s), 0, 0);
+ return PLUGIN_RET_OK;
}
-void plugin_done()
+int plugin_radius_account(struct param_radius_account *data)
{
+ if (data->s->throttle_in || data->s->throttle_out)
+ {
+ uint8_t *p = *data->packet;
+ int i = 1;
+
+ if (data->s->throttle_in)
+ {
+ *p = 26; // vendor-specific
+ *(uint32_t *) (p + 2) = htonl(9); // Cisco
+ p[6] = 1; // Cisco-AVPair
+ p[7] = 2 + sprintf((char *) p + 8,
+ "lcp:interface-config#%d=service-policy input %d", i++,
+ data->s->throttle_in);
+
+ p[1] = p[7] + 6;
+ p += p[1];
+ }
+
+ if (data->s->throttle_out)
+ {
+ *p = 26; // vendor-specific
+ *(uint32_t *) (p + 2) = htonl(9); // Cisco
+ p[6] = 1; // Cisco-AVPair
+ p[7] = 2 + sprintf((char *) p + 8,
+ "lcp:interface-config#%d=service-policy output %d", i++,
+ data->s->throttle_out);
+
+ p[1] = p[7] + 6;
+ p += p[1];
+ }
+
+ *data->packet = p;
+ }
+
+ return PLUGIN_RET_OK;
}
+int plugin_init(struct pluginfuncs *funcs)
+{
+ return ((f = funcs)) ? 1 : 0;
+}