intermediate

TODO

@@ -1,4 +1,9 @@
-Remove pam.cl once it is integrated into the base lisp.
+Make a standard function that can be called to determine if a client
+is trusted based on IP address.  This function will use 127.0.0.1 and
+*relay-access* as its initial basis, but also needs to be able to
+include data from other sources (such as drac).  There should be a
+list of functions that are called.  Add-ons would simply add to the
+list.
 
 Improve logging.
  * Output should be in a more consistent format.  

config.cl

@@ -1,4 +1,4 @@
-;; $Id: config.cl,v 1.42 2006/08/28 01:02:22 dancy Exp $
+;; $Id: config.cl,v 1.43 2006/09/14 15:09:43 dancy Exp $
 
 (in-package :user)
 
@@ -52,6 +52,10 @@
 ;; included implicitly so you don't need to add them.
 (defparameter *localdomains* nil)
 
+(defparameter *trusted-client-checkers* nil)
+
+(defparameter *trusted-clients* '("127.0.0.1"))
+
 ;; List of functions to call to determine if the client is allowed to
 ;; relay through this server.  Function is called with arguments:
 ;;  1) ip address of client 

utils.cl

@@ -14,7 +14,7 @@
 ;; Commercial Software developed at private expense as specified in
 ;; DOD FAR Supplement 52.227-7013 (c) (1) (ii), as applicable.
 ;;
-;; $Id: utils.cl,v 1.20 2006/04/09 17:21:50 dancy Exp $
+;; $Id: utils.cl,v 1.21 2006/09/14 15:09:43 dancy Exp $
 
 (in-package :user)
 
@@ -180,6 +180,15 @@
 	   (ash (logand ip #x0000ff00) 8)
 	   (ash (logand ip #x000000ff) 24))))
 
+(defun trusted-client-p (addr)
+  )
+
+(defun addr-in-relay-access-list-p (addr)
+  (dolist (check *relay-access*)
+    (if (addr-in-network-p cliaddr (parse-addr check))
+	(return t))))
+
+
 (defun relaying-allowed-p (addr from to)
   (dolist (checker *relay-checkers*)
     (if (funcall checker addr from to)