eap-radius: Forward Cisco and Microsoft specific DNS/NBNS attributes

Fixes #677.
author: Tobias Brunner <tobias@strongswan.org> 2014-08-19 14:34:28 +0200
committer: Tobias Brunner <tobias@strongswan.org> 2014-09-09 10:56:16 +0200
commit: de622eb1f99961fb5035a61e238155b0da1f4b70 (patch)
tree: c1cd0292e55ea0732a61ccdfced0f6edc8b970c8 /src
parent: 2d38a03d77096467f32ca6b3baad4a8d5110313c (diff)
download: strongswan-de622eb1f99961fb5035a61e238155b0da1f4b70.tar.bz2
strongswan-de622eb1f99961fb5035a61e238155b0da1f4b70.tar.xz
1 files changed, 50 insertions, 0 deletions
diff --git a/src/libcharon/plugins/eap_radius/eap_radius.c b/src/libcharon/plugins/eap_radius/eap_radius.c
index 6719497d3..60d12dc1d 100644
--- a/src/libcharon/plugins/eap_radius/eap_radius.c
+++ b/src/libcharon/plugins/eap_radius/eap_radius.c
@@ -414,6 +414,30 @@ static void add_unity_attribute(eap_radius_provider_t *provider, u_int32_t id,
 }
 
 /**
+ * Add a DNS/NBNS configuration attribute
+ */
+static void add_nameserver_attribute(eap_radius_provider_t *provider,
+									 u_int32_t id, int type, chunk_t data)
+{
+	/* these are from different vendors, but there is currently no conflict */
+	switch (type)
+	{
+		case  5: /* CVPN3000-Primary-DNS */
+		case  6: /* CVPN3000-Secondary-DNS */
+		case 28: /* MS-Primary-DNS-Server */
+		case 29: /* MS-Secondary-DNS-Server */
+			provider->add_attribute(provider, id, INTERNAL_IP4_DNS, data);
+			break;
+		case  7: /* CVPN3000-Primary-WINS */
+		case  8: /* CVPN3000-Secondary-WINS */
+		case 30: /* MS-Primary-NBNS-Server */
+		case 31: /* MS-Secondary-NBNS-Server */
+			provider->add_attribute(provider, id, INTERNAL_IP4_NBNS, data);
+			break;
+	}
+}
+
+/**
  * Add a UNITY_LOCAL_LAN or UNITY_SPLIT_INCLUDE attribute
  */
 static void add_unity_split_attribute(eap_radius_provider_t *provider,
@@ -515,6 +539,16 @@ static void process_cfg_attributes(radius_message_t *msg)
 			{
 				switch (type)
 				{
+					case  5: /* CVPN3000-Primary-DNS */
+					case  6: /* CVPN3000-Secondary-DNS */
+					case  7: /* CVPN3000-Primary-WINS */
+					case  8: /* CVPN3000-Secondary-WINS */
+						if (data.len == 4)
+						{
+							add_nameserver_attribute(provider,
+									ike_sa->get_unique_id(ike_sa), type, data);
+						}
+						break;
 					case 15: /* CVPN3000-IPSec-Banner1 */
 					case 28: /* CVPN3000-IPSec-Default-Domain */
 					case 29: /* CVPN3000-IPSec-Split-DNS-Names */
@@ -546,6 +580,22 @@ static void process_cfg_attributes(radius_message_t *msg)
 						break;
 				}
 			}
+			if (vendor == PEN_MICROSOFT)
+			{
+				switch (type)
+				{
+					case 28: /* MS-Primary-DNS-Server */
+					case 29: /* MS-Secondary-DNS-Server */
+					case 30: /* MS-Primary-NBNS-Server */
+					case 31: /* MS-Secondary-NBNS-Server */
+						if (data.len == 4)
+						{
+							add_nameserver_attribute(provider,
+									ike_sa->get_unique_id(ike_sa), type, data);
+						}
+						break;
+				}
+			}
 		}
 		enumerator->destroy(enumerator);
author	Tobias Brunner <tobias@strongswan.org>	2014-08-19 14:34:28 +0200
committer	Tobias Brunner <tobias@strongswan.org>	2014-09-09 10:56:16 +0200
commit	de622eb1f99961fb5035a61e238155b0da1f4b70 (patch)
tree	c1cd0292e55ea0732a61ccdfced0f6edc8b970c8 /src
parent	2d38a03d77096467f32ca6b3baad4a8d5110313c (diff)
download	strongswan-de622eb1f99961fb5035a61e238155b0da1f4b70.tar.bz2 strongswan-de622eb1f99961fb5035a61e238155b0da1f4b70.tar.xz