Skip to content

Proxy

Proxy

Bases: Server

Base class for RADIUS proxies. This class extends tha RADIUS server class with the capability to handle communication with other RADIUS servers as well.

Attributes:

Name Type Description
_proxyfd socket

network socket used to communicate with other servers
Source code in pyrad2/proxy.py 
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
class Proxy(Server):
    """Base class for RADIUS proxies.
    This class extends tha RADIUS server class with the capability to
    handle communication with other RADIUS servers as well.

    Attributes:
        _proxyfd (socket.socket): network socket used to communicate with other servers
    """

    def _PrepareSockets(self):
        super()._PrepareSockets()
        self._proxyfd = socket.socket(socket.AF_INET, socket.SOCK_DGRAM)
        self._fdmap[self._proxyfd.fileno()] = self._proxyfd
        self._poll.register(
            self._proxyfd.fileno(), (select.POLLIN | select.POLLPRI | select.POLLERR)
        )

    def _HandleProxyPacket(self, pkt: packet.Packet) -> None:
        """Process a packet received on the reply socket.
        If this packet should be dropped instead of processed a
        :obj:`ServerPacketError` exception should be raised. The main loop
        will drop the packet and log the reason.

        Args:
            pkt (packet.Packet): Packet to process
        """
        if pkt.source[0] not in self.hosts:
            raise ServerPacketError("Received packet from unknown host")
        pkt.secret = self.hosts[pkt.source[0]].secret

        if pkt.code not in [
            PacketType.AccessAccept,
            PacketType.AccessReject,
            PacketType.AccountingResponse,
        ]:
            raise ServerPacketError("Received non-response on proxy socket")

    def _ProcessInput(self, fd: socket.socket) -> None:
        """Process available data.
        If this packet should be dropped instead of processed a
        `ServerPacketError` exception should be raised. The main loop
        will drop the packet and log the reason.

        This function calls either :obj:`HandleAuthPacket`,
        :obj:`HandleAcctPacket` or :obj:`_HandleProxyPacket` depending on
        which socket is being processed.

        Args:
            fd (socket.socket): socket to read packet from
        """
        if fd.fileno() == self._proxyfd.fileno():
            pkt = self._GrabPacket(lambda data, s=self: s.CreatePacket(packet=data), fd)
            self._HandleProxyPacket(pkt)
        else:
            Server._ProcessInput(self, fd)