Update copyright headers after acquisition by secunet

[thirdparty/strongswan.git] / src / libradius / radius_config.c

/*
 * Copyright (C) 2010 Martin Willi
 *
 * Copyright (C) secunet Security Networks AG
 *
 * This program is free software; you can redistribute it and/or modify it
 * under the terms of the GNU General Public License as published by the
 * Free Software Foundation; either version 2 of the License, or (at your
 * option) any later version.  See <http://www.fsf.org/copyleft/gpl.txt>.
 *
 * This program is distributed in the hope that it will be useful, but
 * WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
 * or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License
 * for more details.
 */

/*
 * Copyright (C) 2015 Thom Troy
 *
 * Permission is hereby granted, free of charge, to any person obtaining a copy
 * of this software and associated documentation files (the "Software"), to deal
 * in the Software without restriction, including without limitation the rights
 * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
 * copies of the Software, and to permit persons to whom the Software is
 * furnished to do so, subject to the following conditions:
 *
 * The above copyright notice and this permission notice shall be included in
 * all copies or substantial portions of the Software.
 *
 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
 * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
 * THE SOFTWARE.
 */

#include "radius_config.h"

#include <threading/mutex.h>
#include <threading/condvar.h>
#include <collections/linked_list.h>

typedef struct private_radius_config_t private_radius_config_t;

/**
 * Private data of an radius_config_t object.
 */
struct private_radius_config_t {

        /**
         * Public radius_config_t interface.
         */
        radius_config_t public;

        /**
         * list of radius sockets, as radius_socket_t
         */
        linked_list_t *sockets;

        /**
         * Total number of sockets, in list + currently in use
         */
        int socket_count;

        /**
         * mutex to lock sockets list
         */
        mutex_t *mutex;

        /**
         * condvar to wait for sockets
         */
        condvar_t *condvar;

        /**
         * Server name
         */
        char *name;

        /**
         * NAS-Identifier
         */
        chunk_t nas_identifier;

        /**
         * Preference boost for this server
         */
        int preference;

        /**
         * Is the server currently reachable
         */
        bool reachable;

        /**
         * Retry counter for unreachable servers
         */
        int retry;

        /**
         * reference count
         */
        refcount_t ref;
};

METHOD(radius_config_t, get_socket, radius_socket_t*,
        private_radius_config_t *this)
{
        radius_socket_t *skt;

        this->mutex->lock(this->mutex);
        while (this->sockets->remove_first(this->sockets, (void**)&skt) != SUCCESS)
        {
                this->condvar->wait(this->condvar, this->mutex);
        }
        this->mutex->unlock(this->mutex);
        return skt;
}

METHOD(radius_config_t, put_socket, void,
        private_radius_config_t *this, radius_socket_t *skt, bool result)
{
        this->mutex->lock(this->mutex);
        this->sockets->insert_last(this->sockets, skt);
        this->mutex->unlock(this->mutex);
        this->condvar->signal(this->condvar);
        this->reachable = result;
}

METHOD(radius_config_t, get_nas_identifier, chunk_t,
        private_radius_config_t *this)
{
        return this->nas_identifier;
}

METHOD(radius_config_t, get_preference, int,
        private_radius_config_t *this)
{
        int pref;

        if (this->socket_count == 0)
        {       /* don't have sockets, huh? */
                return -1;
        }
        /* calculate preference between 0-100 + boost */
        pref = this->preference;
        pref += this->sockets->get_count(this->sockets) * 100 / this->socket_count;
        if (this->reachable)
        {       /* reachable server get a boost: pref = 110-210 + boost */
                return pref + 110;
        }
        /* Not reachable. Increase preference randomly to let it retry from
         * time to time, especially if other servers have high load. */
        this->retry++;
        if (this->retry % 128 == 0)
        {       /* every 64th request gets 210, same as unloaded reachable */
                return pref + 110;
        }
        if (this->retry % 32 == 0)
        {       /* every 32th request gets 190, wins against average loaded */
                return pref + 90;
        }
        if (this->retry % 8 == 0)
        {       /* every 8th request gets 110, same as server under load */
                return pref + 10;
        }
        /* other get ~100, less than fully loaded */
        return pref;
}

METHOD(radius_config_t, get_name, char*,
        private_radius_config_t *this)
{
        return this->name;
}

METHOD(radius_config_t, get_ref, radius_config_t*,
        private_radius_config_t *this)
{
        ref_get(&this->ref);
        return &this->public;
}


METHOD(radius_config_t, destroy, void,
        private_radius_config_t *this)
{
        if (ref_put(&this->ref))
        {
                this->mutex->destroy(this->mutex);
                this->condvar->destroy(this->condvar);
                this->sockets->destroy_offset(this->sockets,
                                                                          offsetof(radius_socket_t, destroy));
                free(this);
        }
}

/**
 * See header
 */
radius_config_t *radius_config_create(char *name, char *address,
                                                                          uint16_t auth_port, uint16_t acct_port,
                                                                          char *nas_identifier, char *secret,
                                                                          int sockets, int preference,
                                                                          u_int tries, double timeout, double base)
{
        private_radius_config_t *this;
        radius_socket_t *socket;

        INIT(this,
                .public = {
                        .get_socket = _get_socket,
                        .put_socket = _put_socket,
                        .get_nas_identifier = _get_nas_identifier,
                        .get_preference = _get_preference,
                        .get_name = _get_name,
                        .get_ref = _get_ref,
                        .destroy = _destroy,
                },
                .reachable = TRUE,
                .nas_identifier = chunk_create(nas_identifier, strlen(nas_identifier)),
                .socket_count = sockets,
                .sockets = linked_list_create(),
                .mutex = mutex_create(MUTEX_TYPE_DEFAULT),
                .condvar = condvar_create(CONDVAR_TYPE_DEFAULT),
                .name = name,
                .preference = preference,
                .ref = 1,
        );

        while (sockets--)
        {
                socket = radius_socket_create(address, auth_port, acct_port,
                                                                          chunk_create(secret, strlen(secret)),
                                                                          tries, timeout, base);
                if (!socket)
                {
                        destroy(this);
                        return NULL;
                }
                this->sockets->insert_last(this->sockets, socket);
        }
        return &this->public;
}