]> The Tcpdump Group git mirrors - tcpdump/blob - print-radius.c
projects / tcpdump / blob
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
Get rid of some includes, and use "u_int8_t" and "u_int16_t" in packet
[tcpdump] / print-radius.c
1 /*
2 * Radius printer routines as specified on:
3 *
4 * RFC 2865:
5 * "Remote Authentication Dial In User Service (RADIUS)"
6 *
7 * RFC 2866:
8 * "RADIUS Accounting"
9 *
10 * RFC 2867:
11 * "RADIUS Accounting Modifications for Tunnel Protocol Support"
12 *
13 * RFC 2868:
14 * "RADIUS Attributes for Tunnel Protocol Support"
15 *
16 * RFC 2869:
17 * "RADIUS Extensions"
18 *
19 * Alfredo Andres Omella (aandres@mfom.es) v0.1 2000/09/15
20 *
21 * TODO: Among other things to print ok MacIntosh and Vendor values
22 */
23
24 #ifndef lint
25 static const char rcsid[] =
26 "$Id: print-radius.c,v 1.3 2000-10-10 05:14:35 guy Exp $";
27 #endif
28
29 #ifdef HAVE_CONFIG_H
30 #include "config.h"
31 #endif
32
33 #include <sys/param.h>
34
35 #include <netinet/in.h>
36
37 #include <stdio.h>
38
39 #include "interface.h"
40 #include "addrtoname.h"
41 #include "extract.h"
42
43 #define TAM_SIZE(x) (sizeof(x)/sizeof(x[0]) )
44
45 #define PRINT_HEX(bytes_len, ptr_data) \
46 while(bytes_len) \
47 { \
48 printf("%02X", *ptr_data ); \
49 ptr_data++; \
50 bytes_len--; \
51 }
52
53
54 /* Radius packet codes */
55 #define RADCMD_ACCESS_REQ 1 /* Access-Request */
56 #define RADCMD_ACCESS_ACC 2 /* Access-Accept */
57 #define RADCMD_ACCESS_REJ 3 /* Access-Reject */
58 #define RADCMD_ACCOUN_REQ 4 /* Accounting-Request */
59 #define RADCMD_ACCOUN_RES 5 /* Accounting-Response */
60 #define RADCMD_ACCESS_CHA 11 /* Access-Challenge */
61 #define RADCMD_STATUS_SER 12 /* Status-Server */
62 #define RADCMD_STATUS_CLI 13 /* Status-Client */
63 #define RADCMD_RESERVED 255 /* Reserved */
64
65
66 /********************************/
67 /* Begin Radius Attribute types */
68 /********************************/
69 #define SERV_TYPE 6
70 #define FRM_IPADDR 8
71 #define LOG_IPHOST 14
72 #define LOG_SERVICE 15
73 #define FRM_IPX 23
74 #define SESSION_TIMEOUT 27
75 #define IDLE_TIMEOUT 28
76 #define FRM_ATALK_LINK 37
77 #define FRM_ATALK_NETWORK 38
78
79 #define ACCT_DELAY 41
80 #define ACCT_SESSION_TIME 46
81
82 #define TUNNEL_TYPE 64
83 #define TUNNEL_MEDIUM 65
84 #define TUNNEL_CLIENT_END 66
85 #define TUNNEL_SERVER_END 67
86 #define TUNNEL_PASS 69
87
88 #define ARAP_PASS 70
89 #define ARAP_FEATURES 71
90
91 #define TUNNEL_PRIV_GROUP 81
92 #define TUNNEL_ASSIGN_ID 82
93 #define TUNNEL_PREFERENCE 83
94
95 #define ARAP_CHALLENGE_RESP 84
96 #define ACCT_INT_INTERVAL 85
97
98 #define TUNNEL_CLIENT_AUTH 90
99 #define TUNNEL_SERVER_AUTH 91
100 /********************************/
101 /* End Radius Attribute types */
102 /********************************/
103
104
105 static void print_attr_string(register u_char *, u_int, u_short );
106 static void print_attr_num(register u_char *, u_int, u_short );
107 static void print_attr_address(register u_char *, u_int, u_short);
108 static void print_attr_time(register u_char *, u_int, u_short);
109 static void print_attr_strange(register u_char *, u_int, u_short);
110
111
112 struct radius_hdr { u_int8_t code; /* Radius packet code */
113 u_int8_t id; /* Radius packet id */
114 u_int16_t len; /* Radius total length */
115 u_int8_t auth[16]; /* Authenticator */
116 };
117
118
119 struct radius_attr { u_int8_t type; /* Attribute type */
120 u_int8_t len; /* Attribute length */
121 };
122
123
124 /* Service-Type Attribute standard values */
125 static const char *serv_type[]={ NULL,
126 "Login",
127 "Framed",
128 "Callback Login",
129 "Callback Framed",
130 "Outbound",
131 "Administrative",
132 "NAS Prompt",
133 "Authenticate Only",
134 "Callback NAS Prompt",
135 "Call Check",
136 "Callback Administrative",
137 };
138
139 /* Framed-Protocol Attribute standard values */
140 static const char *frm_proto[]={ NULL,
141 "PPP",
142 "SLIP",
143 "ARAP",
144 "Gandalf proprietary",
145 "Xylogics IPX/SLIP",
146 "X.75 Synchronous",
147 };
148
149 /* Framed-Routing Attribute standard values */
150 static const char *frm_routing[]={ "None",
151 "Send",
152 "Listen",
153 "Send&Listen",
154 };
155
156 /* Framed-Compression Attribute standard values */
157 static const char *frm_comp[]={ "None",
158 "VJ TCP/IP",
159 "IPX",
160 "Stac-LZS",
161 };
162
163 /* Login-Service Attribute standard values */
164 static const char *login_serv[]={ "Telnet",
165 "Rlogin",
166 "TCP Clear",
167 "PortMaster(proprietary)",
168 "LAT",
169 "X.25-PAD",
170 "X.25-T3POS",
171 "Unassigned",
172 "TCP Clear Quiet",
173 };
174
175
176 /* Termination-Action Attribute standard values */
177 static const char *term_action[]={ "Default",
178 "RADIUS-Request",
179 };
180
181 /* NAS-Port-Type Attribute standard values */
182 static const char *nas_port_type[]={ "Async",
183 "Sync",
184 "ISDN Sync",
185 "ISDN Async V.120",
186 "ISDN Async V.110",
187 "Virtual",
188 "PIAFS",
189 "HDLC Clear Channel",
190 "X.25",
191 "X.75",
192 "G.3 Fax",
193 "SDSL",
194 "ADSL-CAP",
195 "ADSL-DMT",
196 "ISDN-DSL",
197 "Ethernet",
198 "xDSL",
199 "Cable",
200 "Wireless - Other",
201 "Wireless - IEEE 802.11",
202 };
203
204 /* Acct-Status-Type Accounting Attribute standard values */
205 static const char *acct_status[]={ NULL,
206 "Start",
207 "Stop",
208 "Interim-Update",
209 "Unassigned",
210 "Unassigned",
211 "Unassigned",
212 "Accounting-On",
213 "Accounting-Off",
214 "Tunnel-Start",
215 "Tunnel-Stop",
216 "Tunnel-Reject",
217 "Tunnel-Link-Start",
218 "Tunnel-Link-Stop",
219 "Tunnel-Link-Reject",
220 "Failed",
221 };
222
223 /* Acct-Authentic Accounting Attribute standard values */
224 static const char *acct_auth[]={ NULL,
225 "RADIUS",
226 "Local",
227 "Remote",
228 };
229
230 /* Acct-Terminate-Cause Accounting Attribute standard values */
231 static const char *acct_term[]={ NULL,
232 "User Request",
233 "Lost Carrier",
234 "Lost Service",
235 "Idle Timeout",
236 "Session Timeout",
237 "Admin Reset",
238 "Admin Reboot",
239 "Port Error",
240 "NAS Error",
241 "NAS Request",
242 "NAS Reboot",
243 "Port Unneeded",
244 "Port Preempted",
245 "Port Suspended",
246 "Service Unavailable",
247 "Callback",
248 "User Error",
249 "Host Request",
250 };
251
252 /* Tunnel-Type Attribute standard values */
253 static const char *tunnel_type[]={ NULL,
254 "PPTP",
255 "L2F",
256 "L2TP",
257 "ATMP",
258 "VTP",
259 "AH",
260 "IP-IP",
261 "MIN-IP-IP",
262 "ESP",
263 "GRE",
264 "DVS",
265 "IP-in-IP Tunneling",
266 };
267
268 /* Tunnel-Medium-Type Attribute standard values */
269 static const char *tunnel_medium[]={ NULL,
270 "IPv4",
271 "IPv6",
272 "NSAP",
273 "HDLC",
274 "BBN 1822",
275 "802",
276 "E.163",
277 "E.164",
278 "F.69",
279 "X.121",
280 "IPX",
281 "Appletalk",
282 "Decnet IV",
283 "Banyan Vines",
284 "E.164 with NSAP subaddress",
285 };
286
287 /* ARAP-Zone-Access Attribute standard values */
288 static const char *arap_zone[]={ NULL,
289 "Only access to dfl zone",
290 "Use zone filter inc.",
291 "Not used",
292 "Use zone filter exc.",
293 };
294
295 static const char *prompt[]={ "No Echo",
296 "Echo",
297 };
298
299
300 struct attrtype { char *name; /* Attribute name */
301 const char **subtypes; /* Standard Values (if any) */
302 u_char siz_subtypes; /* Size of total standard values */
303 u_char first_subtype; /* First standard value is 0 or 1 */
304 void (*print_func)(register u_char *, u_int, u_short );
305 } attr_type[]=
306 {
307 { NULL, NULL, 0, 0, NULL },
308 { "User", NULL, 0, 0, print_attr_string },
309 { "Pass", NULL, 0, 0, NULL },
310 { "CHAP-Pass", NULL, 0, 0, NULL },
311 { "NAS_ipaddr", NULL, 0, 0, print_attr_address },
312 { "NAS_port", NULL, 0, 0, print_attr_num },
313 { "Service_type", serv_type, TAM_SIZE(serv_type)-1, 1, print_attr_num },
314 { "Framed_proto", frm_proto, TAM_SIZE(frm_proto)-1, 1, print_attr_num },
315 { "Framed_ipaddr", NULL, 0, 0, print_attr_address },
316 { "Framed_ipnet", NULL, 0, 0, print_attr_address },
317 { "Framed_routing", frm_routing, TAM_SIZE(frm_routing), 0,
318 print_attr_num },
319 { "Filter_id", NULL, 0, 0, print_attr_string },
320 { "Framed_mtu", NULL, 0, 0, print_attr_num },
321 { "Framed_compress", frm_comp, TAM_SIZE(frm_comp), 0, print_attr_num },
322 { "Login_iphost", NULL, 0, 0, print_attr_address },
323 { "Login_service", login_serv, TAM_SIZE(login_serv), 0, print_attr_num },
324 { "Login_TCP_port", NULL, 0, 0, print_attr_num },
325 /*17*/ { "Unassigned", NULL, 0, 0, NULL },
326 { "Reply", NULL, 0, 0, print_attr_string },
327 { "Callback-number", NULL, 0, 0, print_attr_string },
328 { "Callback-id", NULL, 0, 0, print_attr_string },
329 /*21*/ { "Unassigned", NULL, 0, 0, NULL },
330 { "Framed_route", NULL, 0, 0, print_attr_string },
331 { "Framed_ipx_net", NULL, 0, 0, print_attr_num },
332 { "State", NULL, 0, 0, print_attr_string },
333 { "Class", NULL, 0, 0, print_attr_string },
334 { "Vendor_specific", NULL, 0, 0, print_attr_string },
335 { "Session_timeout", NULL, 0, 0, print_attr_num },
336 { "Idle_timeout", NULL, 0, 0, print_attr_num },
337 { "Term_action", term_action, TAM_SIZE(term_action), 0, print_attr_num },
338 { "Called_station", NULL, 0, 0, print_attr_string },
339 { "Calling_station", NULL, 0, 0, print_attr_string },
340 { "NAS_id", NULL, 0, 0, print_attr_string },
341 { "Proxy_state", NULL, 0, 0, print_attr_string },
342 { "Login_LAT_service", NULL, 0, 0, print_attr_string },
343 { "Login_LAT_node", NULL, 0, 0, print_attr_string },
344 { "Login_LAT_group", NULL, 0, 0, print_attr_string },
345 { "Framed_atalk_link", NULL, 0, 0, print_attr_num },
346 { "Framed_atalk_net", NULL, 0, 0, print_attr_num },
347 { "Framed_atalk_zone", NULL, 0, 0, print_attr_string },
348 { "Acct_status", acct_status, TAM_SIZE(acct_status)-1, 1, print_attr_num },
349 { "Acct_delay", NULL, 0, 0, print_attr_num },
350 { "Acct_in_octets", NULL, 0, 0, print_attr_num },
351 { "Acct_out_octets", NULL, 0, 0, print_attr_num },
352 { "Acct_session_id", NULL, 0, 0, print_attr_string },
353 { "Acct_authentic", acct_auth, TAM_SIZE(acct_auth)-1, 1, print_attr_num },
354 { "Acct_session_time", NULL, 0, 0, print_attr_num },
355 { "Acct_in_packets", NULL, 0, 0, print_attr_num },
356 { "Acct_out_packets", NULL, 0, 0, print_attr_num },
357 { "Acct_term_cause", acct_term, TAM_SIZE(acct_term)-1, 1, print_attr_num },
358 { "Acct_multi_session_id", NULL, 0, 0, print_attr_string },
359 { "Acct_link_count", NULL, 0, 0, print_attr_num },
360 { "Acct_in_giga", NULL, 0, 0, print_attr_num },
361 { "Acct_out_giga", NULL, 0, 0, print_attr_num },
362 /*54*/ { "Unassigned", NULL, 0, 0, NULL },
363 { "Event_timestamp", NULL, 0, 0, print_attr_time },
364 /*56*/ { "Unassigned", NULL, 0, 0, NULL },
365 /*57*/ { "Unassigned", NULL, 0, 0, NULL },
366 /*58*/ { "Unassigned", NULL, 0, 0, NULL },
367 /*59*/ { "Unassigned", NULL, 0, 0, NULL },
368 { "CHAP_challenge", NULL, 0, 0, print_attr_string },
369 { "NAS_port_type", nas_port_type, TAM_SIZE(nas_port_type), 0,
370 print_attr_num },
371 { "Port_limit", NULL, 0, 0, print_attr_num },
372 /*63*/ { "Login_LAT_port", NULL, 0, 0, print_attr_string },
373 { "Tunnel_type", tunnel_type, TAM_SIZE(tunnel_type)-1, 1, print_attr_num },
374 { "Tunnel_medium", tunnel_medium, TAM_SIZE(tunnel_medium)-1, 1,
375 print_attr_num },
376 { "Tunnel_client_end", NULL, 0, 0, print_attr_string },
377 { "Tunnel_server_end", NULL, 0, 0, print_attr_string },
378 { "Acct_tunnel_connect", NULL, 0, 0, print_attr_string },
379 { "Tunnel_pass", NULL, 0, 0, print_attr_string },
380 { "ARAP_pass", NULL, 0, 0, print_attr_strange },
381 { "ARAP_feature", NULL, 0, 0, print_attr_strange },
382 /*72*/ { "ARAP_zone_acces", arap_zone, TAM_SIZE(arap_zone)-1, 1,
383 print_attr_num },
384 { "ARAP_security", NULL, 0, 0, print_attr_string },
385 { "ARAP_security_data", NULL, 0, 0, print_attr_string },
386 { "Password_retry", NULL, 0, 0, print_attr_num },
387 { "Prompt", prompt, TAM_SIZE(prompt), 0, print_attr_num },
388 { "Connect_info", NULL, 0, 0, print_attr_string },
389 { "Config_token", NULL, 0, 0, print_attr_string },
390 { "EAP_msg", NULL, 0, 0, print_attr_string },
391 /*80*/ { "Message_auth", NULL, 0, 0, print_attr_string },
392 { "Tunnel_priv_group", NULL, 0, 0, print_attr_string },
393 { "Tunnel_assign_id", NULL, 0, 0, print_attr_string },
394 { "Tunnel_pref", NULL, 0, 0, print_attr_num },
395 { "ARAP_challenge_resp", NULL, 0, 0, print_attr_strange },
396 { "Acct_interim_interval", NULL, 0, 0, print_attr_num },
397 /*86*/ { "Acct_tunnel_pack_lost", NULL, 0, 0, print_attr_num },
398 { "NAS_port_id", NULL, 0, 0, print_attr_string },
399 { "Framed_pool", NULL, 0, 0, print_attr_string },
400 { "Unassigned", NULL, 0, 0, NULL },
401 { "Tunnel_client_auth_id", NULL, 0, 0, print_attr_string },
402 { "Tunnel_server_auth_id", NULL, 0, 0, print_attr_string },
403 /*92*/ { "Unassigned", NULL, 0, 0, NULL },
404 /*93*/ { "Unassigned", NULL, 0, 0, NULL }
405 };
406
407
408 /*****************************/
409 /* Print an attribute string */
410 /* value pointed by 'data' */
411 /* and 'length' size. */
412 /*****************************/
413 /* Returns nothing. */
414 /*****************************/
415 static void
416 print_attr_string(register u_char *data, u_int length, u_short attr_code )
417 {
418 register u_int i;
419
420 TCHECK2(data[0],length);
421
422 printf("{");
423 switch(attr_code)
424 {
425 case TUNNEL_PASS:
426 if (*data && (*data <=0x1F) )
427 printf("Tag[%d] ",*data);
428 data++;
429 printf("Salt[%d] ",EXTRACT_16BITS(data) );
430 data+=2;
431 length-=2;
432 break;
433 case TUNNEL_CLIENT_END:
434 case TUNNEL_SERVER_END:
435 case TUNNEL_PRIV_GROUP:
436 case TUNNEL_ASSIGN_ID:
437 case TUNNEL_CLIENT_AUTH:
438 case TUNNEL_SERVER_AUTH:
439 if (*data <= 0x1F)
440 {
441 printf("Tag[%d] ",*data);
442 data++;
443 length--;
444 }
445 break;
446 }
447
448 for (i=0; i < length ; i++, data++)
449 printf("%c",(*data < 32 || *data > 128) ? '.' : *data );
450
451 printf("}");
452
453 return;
454
455 trunc:
456 printf("|radius");
457 }
458
459
460 /******************************/
461 /* Print an attribute numeric */
462 /* value pointed by 'data' */
463 /* and 'length' size. */
464 /******************************/
465 /* Returns nothing. */
466 /******************************/
467 static void
468 print_attr_num(register u_char *data, u_int length, u_short attr_code )
469 {
470 u_int8_t tag;
471 u_int32_t timeout;
472
473 TCHECK2(data[0],4);
474 /* This attribute has standard values */
475 if (attr_type[attr_code].siz_subtypes)
476 {
477 static const char **table;
478 u_int32_t data_value;
479 table = attr_type[attr_code].subtypes;
480
481 if ( (attr_code == TUNNEL_TYPE) || (attr_code == TUNNEL_MEDIUM) )
482 {
483 if (!*data)
484 printf("{Tag[Unused]");
485 else
486 printf("{Tag[%d]", *data);
487 data++;
488 data_value = EXTRACT_24BITS(data);
489 }
490 else
491 {
492 data++;
493 data_value = EXTRACT_32BITS(data);
494 }
495 if ( data_value <= (attr_type[attr_code].siz_subtypes - 1 +
496 attr_type[attr_code].first_subtype) )
497 printf("{%s}",table[data_value]);
498 else
499 printf("{#%d}",data_value);
500 }
501 else
502 {
503 switch(attr_code) /* Be aware of special cases... */
504 {
505 case FRM_IPX:
506 if (EXTRACT_32BITS( data) == 0xFFFFFFFE )
507 printf("{NAS_select}");
508 else
509 printf("{%d}",EXTRACT_32BITS( data) );
510 break;
511
512 case SESSION_TIMEOUT:
513 case IDLE_TIMEOUT:
514 case ACCT_DELAY:
515 case ACCT_SESSION_TIME:
516 case ACCT_INT_INTERVAL:
517 timeout = EXTRACT_32BITS( data);
518 if ( timeout < 60 )
519 printf( "{%02d secs}", timeout);
520 else
521 {
522 if ( timeout < 3600 )
523 printf( "{%02d:%02d min}",
524 timeout / 60, timeout % 60);
525 else
526 printf( "{%02d:%02d:%02d hours}",
527 timeout / 3600, (timeout % 3600) / 60,
528 timeout % 60);
529 }
530 break;
531
532 case FRM_ATALK_LINK:
533 if (EXTRACT_32BITS(data) )
534 printf("{%d}",EXTRACT_32BITS(data) );
535 else
536 printf("{Unnumbered}" );
537 break;
538
539 case FRM_ATALK_NETWORK:
540 if (EXTRACT_32BITS(data) )
541 printf("{%d}",EXTRACT_32BITS(data) );
542 else
543 printf("{NAS_assign}" );
544 break;
545
546 case TUNNEL_PREFERENCE:
547 tag = *data;
548 data++;
549 if (tag == 0)
550 printf("{Tag[Unused] %d}",EXTRACT_24BITS(data) );
551 else
552 printf("{Tag[%d] %d}", tag, EXTRACT_24BITS(data) );
553 break;
554
555 default:
556 printf("{%d}",EXTRACT_32BITS( data) );
557 break;
558
559 } /* switch */
560
561 } /* if-else */
562
563 return;
564
565 trunc:
566 printf("|radius}");
567 }
568
569
570 /*****************************/
571 /* Print an attribute IPv4 */
572 /* address value pointed by */
573 /* 'data' and 'length' size. */
574 /*****************************/
575 /* Returns nothing. */
576 /*****************************/
577 static void
578 print_attr_address(register u_char *data, u_int length, u_short attr_code )
579 {
580 TCHECK2(data[0],4);
581
582 switch(attr_code)
583 {
584 case FRM_IPADDR:
585 case LOG_IPHOST:
586 if (EXTRACT_32BITS(data) == 0xFFFFFFFF )
587 printf("{User_select}");
588 else
589 if (EXTRACT_32BITS(data) == 0xFFFFFFFE )
590 printf("{NAS_select}");
591 else
592 printf("{%s}",ipaddr_string(data));
593 break;
594
595 default:
596 printf("{%s}",ipaddr_string(data) );
597 break;
598 }
599
600 return;
601
602 trunc:
603 printf("{|radius}");
604 }
605
606
607 /*************************************/
608 /* Print an attribute of 'secs since */
609 /* January 1, 1970 00:00 UTC' value */
610 /* pointed by 'data' and 'length' */
611 /* size. */
612 /*************************************/
613 /* Returns nothing. */
614 /*************************************/
615 static void print_attr_time(register u_char *data, u_int length, u_short attr_code)
616 {
617 time_t attr_time;
618
619 TCHECK2(data[0],4);
620
621 attr_time = EXTRACT_32BITS(data);
622 printf("{%.24s}", ctime(&attr_time));
623 return;
624
625 trunc:
626 printf("{|radius}");
627 }
628
629
630 /***********************************/
631 /* Print an attribute of 'strange' */
632 /* data format pointed by 'data' */
633 /* and 'length' size. */
634 /***********************************/
635 /* Returns nothing. */
636 /***********************************/
637 static void print_attr_strange(register u_char *data, u_int length, u_short attr_code)
638 {
639 u_short len_data = 8;
640
641 switch(attr_code)
642 {
643 case ARAP_PASS:
644 printf("{User_challenge[");
645 TCHECK2(data[0],8);
646 PRINT_HEX(len_data, data);
647 printf("] User_resp[");
648 TCHECK2(data[0],8);
649 PRINT_HEX(len_data, data);
650 printf("]}");
651 break;
652
653 case ARAP_FEATURES:
654 if (*data)
655 printf("{User_can_change_pass");
656 else
657 printf("{User_cant_change_pass");
658 TCHECK2(data[0],1);
659 data++;
660 printf(" Min_pass_len[%d]",*data);
661 printf(" Pass_created_at[");
662 TCHECK2(data[0],8);
663 PRINT_HEX(len_data, data);
664 printf("] Pass_expired_in[");
665 TCHECK2(data[0],8);
666 PRINT_HEX(len_data, data);
667 printf("] Current_time[");
668 TCHECK2(data[0],8);
669 PRINT_HEX(len_data, data);
670 printf("]}");
671 break;
672
673 case ARAP_CHALLENGE_RESP:
674 printf("{");
675 TCHECK2(data[0],8);
676 PRINT_HEX(len_data, data);
677 printf("}");
678 break;
679 }
680
681 trunc:
682 printf("|radius}");
683 }
684
685
686
687 static void
688 radius_attr_print(register u_char *attr, u_int length)
689 {
690 register const struct radius_attr *rad_attr = (struct radius_attr *)attr;
691
692 if (length < 3)
693 {
694 printf(" [|radius]");
695 return;
696 }
697
698 printf(" Attr[ ");
699 while (length > 0)
700 {
701 if ( rad_attr->len <= length )
702 {
703 if ( !rad_attr->type || (rad_attr->type > (TAM_SIZE(attr_type)-1)) )
704 printf("#%d",rad_attr->type);
705 else
706 {
707 printf(" %s",attr_type[rad_attr->type].name);
708
709 if ( attr_type[rad_attr->type].print_func )
710 (*attr_type[rad_attr->type].print_func)( ((u_char *)(rad_attr+1)),
711 rad_attr->len - 2, rad_attr->type);
712 }
713 }
714 else
715 {
716 printf(" [|radius]");
717 return;
718 }
719 length-=(rad_attr->len);
720 rad_attr = (struct radius_attr *)( ((char *)(rad_attr))+rad_attr->len);
721 }
722
723 printf(" ]");
724 }
725
726
727 void
728 radius_print(const u_char *dat, u_int length)
729 {
730 register const struct radius_hdr *rad;
731 register int i;
732
733 i = min(length, snapend - dat) - sizeof(*rad);
734
735 if (i < 0)
736 {
737 printf(" [|radius]");
738 return;
739 }
740
741 rad = (struct radius_hdr *)dat;
742
743 switch (rad->code)
744 {
745 case RADCMD_ACCESS_REQ:
746 printf(" rad-access-req %d", length);
747 break;
748
749 case RADCMD_ACCESS_ACC:
750 printf(" rad-access-accept %d", length);
751 break;
752
753 case RADCMD_ACCESS_REJ:
754 printf(" rad-access-reject %d", length);
755 break;
756
757 case RADCMD_ACCOUN_REQ:
758 printf(" rad-account-req %d", length);
759 break;
760
761 case RADCMD_ACCOUN_RES:
762 printf(" rad-account-resp %d", length);
763 break;
764
765 case RADCMD_ACCESS_CHA:
766 printf(" rad-access-cha %d", length);
767 break;
768
769 case RADCMD_STATUS_SER:
770 printf(" rad-status-serv %d", length);
771 break;
772
773 case RADCMD_STATUS_CLI:
774 printf(" rad-status-cli %d", length);
775 break;
776
777 case RADCMD_RESERVED:
778 printf(" rad-reserved %d", length);
779 break;
780
781 default:
782 printf(" rad-#%d %d", rad->code, length);
783 break;
784 }
785 printf(" [id %d]", rad->id);
786
787 if (i)
788 radius_attr_print( ((u_char *)(rad+1)), i);
789 }
[mirror] the TCPdump network dissector