From af754e596a8dbb05ed8580c342e7fe02e08b28e0 Mon Sep 17 00:00:00 2001 From: Daniel Baumann Date: Sat, 13 Apr 2024 16:11:00 +0200 Subject: Adding upstream version 3.2.3+dfsg. Signed-off-by: Daniel Baumann --- src/tests/tls/proxy/proxy.conf | 59 +++++++++++++++++++++++++++++++++++++ src/tests/tls/proxy/radiusd.conf | 63 ++++++++++++++++++++++++++++++++++++++++ 2 files changed, 122 insertions(+) create mode 100644 src/tests/tls/proxy/proxy.conf create mode 100644 src/tests/tls/proxy/radiusd.conf (limited to 'src/tests/tls/proxy') diff --git a/src/tests/tls/proxy/proxy.conf b/src/tests/tls/proxy/proxy.conf new file mode 100644 index 0000000..e2631c4 --- /dev/null +++ b/src/tests/tls/proxy/proxy.conf @@ -0,0 +1,59 @@ +home_server home { + ipaddr = 127.0.0.1 + port = $ENV{FR_LOCAL_PREFIX}2083 + type = auth + secret = radsec + proto = tcp + status_check = none + + nonblock = yes + + revive_interval = 10 + + tls { + private_key_password = whatever + private_key_file = ${certdir}/client.pem + certificate_file = ${certdir}/client.pem + ca_file = ${cadir}/ca.pem + fragment_size = 8192 + ca_path = ${cadir} + cipher_list = "DEFAULT" + tls_min_version = "1.2" + tls_max_version = "1.2" + } +} + +home_server_pool home { + type = fail-over + home_server = home +} + +home_server home_acct { + ipaddr = 127.0.0.1 + port = $ENV{FR_LOCAL_PREFIX}2084 + type = acct + secret = radsec + proto = tcp + status_check = none + +# nonblock = yes + + revive_interval = 10 + + tls { + private_key_password = whatever + private_key_file = ${certdir}/client.pem + certificate_file = ${certdir}/client.pem + ca_file = ${cadir}/ca.pem + fragment_size = 8192 + ca_path = ${cadir} + cipher_list = "DEFAULT" + tls_min_version = "1.3" + tls_max_version = "1.3" + } +} + +home_server_pool home_acct { + type = fail-over + home_server = home_acct +} diff --git a/src/tests/tls/proxy/radiusd.conf b/src/tests/tls/proxy/radiusd.conf new file mode 100644 index 0000000..8e0577d --- /dev/null +++ b/src/tests/tls/proxy/radiusd.conf @@ -0,0 +1,63 @@ +raddb = $ENV{RADDB} +modconfdir = ${raddb}/mods-config +testdir = $ENV{TEST_PATH}/proxy +pidfile = ${testdir}/radiusd.pid +panic_action = "gdb -batch -x ${raddb}/panic.gdb %e %p > ${testdir}/gdb-radiusd.log 2>&1; cat ${testdir}/gdb-radiusd.log" +certdir = ${raddb}/certs +cadir = ${raddb}/certs +libdir = $ENV{LIB_PATH} + +max_requests = 1048576 + +thread pool { + start_servers = 5 + max_servers = 32 + min_spare_servers = 3 + max_spare_servers = 10 + max_requests_per_server = 0 + cleanup_delay = 5 + max_queue_size = 65536 + auto_limit_acct = no +} + +# +# Minimum configuration for Proxy Server -> SRADIUSD +# +$INCLUDE ${testdir}/proxy.conf + +client local_test { + ipaddr = 127.0.0.1 + secret = testing123 + proto = * +} + +listen { + type = auth + ipaddr = 127.0.0.1 + port = $ENV{FR_LOCAL_PREFIX}1812 + proto = udp + virtual_server = default +} + +listen { + type = acct + ipaddr = 127.0.0.1 + port = $ENV{FR_LOCAL_PREFIX}1813 + proto = udp + virtual_server = default +} + + +server default { + authorize { + update control { + &Home-Server-Pool = "home" + } + } + + preacct { + update control { + &Home-Server-Pool = "home_acct" + } + } +} -- cgit v1.2.3