2 * Routines for RADIUS packet disassembly
4 * $Id: packet-radius.c,v 1.21 2001/01/03 06:55:31 guy Exp $
6 * Ethereal - Network traffic analyzer
8 * Copyright 1999 Johan Feyaerts
9 * This program is free software; you can redistribute it and/or
10 * modify it under the terms of the GNU General Public License
11 * as published by the Free Software Foundation; either version 2
12 * of the License, or (at your option) any later version.
14 * This program is distributed in the hope that it will be useful,
15 * but WITHOUT ANY WARRANTY; without even the implied warranty of
16 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 * GNU General Public License for more details.
19 * You should have received a copy of the GNU General Public License
20 * along with this program; if not, write to the Free Software
21 * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.
28 #ifdef HAVE_SYS_TYPES_H
29 # include <sys/types.h>
32 #ifdef HAVE_NETINET_IN_H
33 #include <netinet/in.h>
43 #include "packet-diameter.h"
45 static int proto_radius = -1;
46 static int hf_radius_length = -1;
47 static int hf_radius_code = -1;
48 static int hf_radius_id =-1;
50 static gint ett_radius = -1;
51 static gint ett_radius_avp = -1;
53 #define UDP_PORT_RADIUS 1645
54 #define UDP_PORT_RADIUS_NEW 1812
55 #define UDP_PORT_RADACCT 1646
56 #define UDP_PORT_RADACCT_NEW 1813
58 typedef struct _e_radiushdr {
64 typedef struct _e_avphdr {
69 typedef struct _value_value_pair {
74 #define RADIUS_ACCESS_REQUEST 1
75 #define RADIUS_ACCESS_ACCEPT 2
76 #define RADIUS_ACCESS_REJECT 3
77 #define RADIUS_ACCOUNTING_REQUEST 4
78 #define RADIUS_ACCOUNTING_RESPONSE 5
79 #define RADIUS_ACCESS_CHALLENGE 11
80 #define RADIUS_STATUS_SERVER 12
81 #define RADIUS_STATUS_CLIENT 13
82 #define RADIUS_RESERVED 255
84 #define RD_TP_USER_NAME 1
85 #define RD_TP_USER_PASSWORD 2
86 #define RD_TP_CHAP_PASSWORD 3
87 #define RD_TP_NAS_IP_ADDRESS 4
88 #define RD_TP_NAS_PORT 5
89 #define RD_TP_SERVICE_TYPE 6
90 #define RD_TP_FRAMED_PROTOCOL 7
91 #define RD_TP_FRAMED_IP_ADDRESS 8
92 #define RD_TP_FRAMED_IP_NETMASK 9
93 #define RD_TP_FRAMED_ROUTING 10
94 #define RD_TP_FILTER_ID 11
95 #define RD_TP_FRAMED_MTU 12
96 #define RD_TP_FRAMED_COMPRESSION 13
97 #define RD_TP_LOGIN_IP_HOST 14
98 #define RD_TP_LOGIN_SERVICE 15
99 #define RD_TP_LOGIN_TCP_PORT 16
100 #define RD_TP_UNASSIGNED 17
101 #define RD_TP_REPLY_MESSAGE 18
102 #define RD_TP_CALLBACK_NUMBER 19
103 #define RD_TP_CALLBACK_ID 20
104 #define RD_TP_UNASSIGNED2 21
105 #define RD_TP_FRAMED_ROUTE 22
106 #define RD_TP_FRAMED_IPX_NETWORK 23
107 #define RD_TP_STATE 24
108 #define RD_TP_CLASS 25
109 #define RD_TP_VENDOR_SPECIFIC 26
110 #define RD_TP_SESSION_TIMEOUT 27
111 #define RD_TP_IDLE_TIMEOUT 28
112 #define RD_TP_TERMINATING_ACTION 29
113 #define RD_TP_CALLED_STATION_ID 30
114 #define RD_TP_CALLING_STATION_ID 31
115 #define RD_TP_NAS_IDENTIFIER 32
116 #define RD_TP_PROXY_STATE 33
117 #define RD_TP_LOGIN_LAT_SERVICE 34
118 #define RD_TP_LOGIN_LAT_NODE 35
119 #define RD_TP_LOGIN_LAT_GROUP 36
120 #define RD_TP_FRAMED_APPLETALK_LINK 37
121 #define RD_TP_FRAMED_APPLETALK_NETWORK 38
122 #define RD_TP_FRAMED_APPLETALK_ZONE 39
123 #define RD_TP_ACCT_STATUS_TYPE 40
124 #define RD_TP_ACCT_DELAY_TIME 41
125 #define RD_TP_ACCT_INPUT_OCTETS 42
126 #define RD_TP_ACCT_OUTPUT_OCTETS 43
127 #define RD_TP_ACCT_SESSION_ID 44
128 #define RD_TP_ACCT_AUTHENTIC 45
129 #define RD_TP_ACCT_SESSION_TIME 46
130 #define RD_TP_ACCT_INPUT_PACKETS 47
131 #define RD_TP_ACCT_OUTPUT_PACKETS 48
132 #define RD_TP_ACCT_TERMINATE_CAUSE 49
133 #define RD_TP_ACCT_MULTI_SESSION_ID 50
134 #define RD_TP_ACCT_LINK_COUNT 51
135 #define RD_TP_CHAP_CHALLENGE 60
136 #define RD_TP_NAS_PORT_TYPE 61
137 #define RD_TP_PORT_LIMIT 62
138 #define RD_TP_LOGIN_LAT_PORT 63
139 #define RD_TP_TUNNEL_TYPE 64
140 #define RD_TP_TUNNEL_MEDIUM_TYPE 65
141 #define RD_TP_TUNNEL_CLIENT_ENDPOINT 66
142 #define RD_TP_TUNNEL_SERVER_ENDPOINT 67
143 #define RD_TP_TUNNEL_PASSWORD 69
144 #define RD_TP_TUNNEL_ASSIGNMENT_ID 82
146 #define AUTHENTICATOR_LENGTH 16
147 #define RD_HDR_LENGTH 4
150 #define RADIUS_STRING 1
151 #define RADIUS_BINSTRING 2
152 #define RADIUS_INTEGER4 3
153 #define RADIUS_IP_ADDRESS 4
154 #define RADIUS_SERVICE_TYPE 5
155 #define RADIUS_FRAMED_PROTOCOL 6
156 #define RADIUS_FRAMED_ROUTING 7
157 #define RADIUS_FRAMED_COMPRESSION 8
158 #define RADIUS_LOGIN_SERVICE 9
159 #define RADIUS_UNKNOWN 10
160 #define RADIUS_IPX_ADDRESS 11
161 #define RADIUS_TERMINATING_ACTION 12
162 #define RADIUS_ACCOUNTING_STATUS_TYPE 13
163 #define RADIUS_ACCT_AUTHENTIC 14
164 #define RADIUS_ACCT_TERMINATE_CAUSE 15
165 #define RADIUS_NAS_PORT_TYPE 16
166 #define RADIUS_TUNNEL_TYPE 17
167 #define RADIUS_TUNNEL_MEDIUM_TYPE 18
168 #define RADIUS_STRING_TAGGED 19
169 #define RADIUS_VENDOR_SPECIFIC 20
171 static value_string radius_vals[] = {
172 {RADIUS_ACCESS_REQUEST, "Access Request"},
173 {RADIUS_ACCESS_ACCEPT, "Access Accept"},
174 {RADIUS_ACCESS_REJECT, "Access Reject"},
175 {RADIUS_ACCOUNTING_REQUEST, "Accounting Request"},
176 {RADIUS_ACCOUNTING_RESPONSE, "Accounting Response"},
177 {RADIUS_ACCESS_CHALLENGE, "Accounting challenge"},
178 {RADIUS_STATUS_SERVER, "StatusServer"},
179 {RADIUS_STATUS_CLIENT, "StatusClient"},
180 {RADIUS_RESERVED, "Reserved"},
183 static value_string radius_service_type_vals[]=
186 {3, "Callback Login"},
187 {4, "Callback Framed"},
189 {6, "Administrative"},
191 {8, "Authenticate Only"},
192 {9, "Callback NAS Prompt"},
197 * These are SMI Network Management Private Enterprise Codes for
200 * http://www.isi.edu/in-notes/iana/assignments/enterprise-numbers
204 static value_string radius_vendor_specific_vendors[]=
211 {1584,"Bay Networks"},
214 static value_string radius_framed_protocol_vals[]=
217 {3, "Appletalk Remote Access Protocol (ARAP)"},
218 {4, "Gandalf proprietary Singlelink/Multilink Protocol"},
219 {5, "Xylogics proprietary IPX/SLIP"},
220 {6, "X.75 Synchronous"},
223 static value_string radius_framed_routing_vals[]=
224 {{1, "Send Routing Packets"},
225 {2, "Listen for routing packets"},
226 {3, "Send and Listen"},
230 static value_string radius_framed_compression_vals[]=
231 {{1, "VJ TCP/IP Header Compression"},
232 {2, "IPX Header Compression"},
233 {3, "Stac-LZS compression"},
237 static value_string radius_login_service_vals[]=
244 {8, "TCP Clear Quit"},
248 static value_string radius_terminating_action_vals[]=
249 {{1, "RADIUS-Request"},
253 static value_string radius_accounting_status_type_vals[]=
257 {8,"Accounting-Off"},
260 static value_string radius_accounting_authentication_vals[]=
266 static value_string radius_acct_terminate_cause_vals[]=
267 {{1, "User Request"},
271 {5,"Session Timeout"},
278 {12, "Port Unneeded"},
279 {13, "Port Preempted"},
280 {14,"Port Suspended"},
281 {15,"Service Unavailable"},
287 static value_string radius_tunnel_type_vals[]=
302 static value_string radius_tunnel_medium_type_vals[]=
320 static value_string radius_nas_port_type_vals[]=
324 {3, "ISDN Async V.120"},
325 {4,"ISDN Async V.110"},
328 {7, "HDLC Clear Channel"},
338 static value_value_pair radius_printinfo[] = {
339 { RD_TP_USER_NAME, RADIUS_STRING },
340 { RD_TP_USER_PASSWORD,RADIUS_BINSTRING },
341 { RD_TP_CHAP_PASSWORD, RADIUS_BINSTRING },
342 { RD_TP_NAS_IP_ADDRESS, RADIUS_IP_ADDRESS },
343 { RD_TP_NAS_PORT, RADIUS_INTEGER4},
344 { RD_TP_SERVICE_TYPE, RADIUS_SERVICE_TYPE},
345 { RD_TP_FRAMED_PROTOCOL, RADIUS_FRAMED_PROTOCOL},
346 { RD_TP_FRAMED_IP_ADDRESS, RADIUS_IP_ADDRESS},
347 { RD_TP_FRAMED_IP_NETMASK, RADIUS_IP_ADDRESS},
348 { RD_TP_FRAMED_ROUTING, RADIUS_FRAMED_ROUTING},
349 { RD_TP_FILTER_ID, RADIUS_STRING},
350 { RD_TP_FRAMED_MTU, RADIUS_INTEGER4},
351 { RD_TP_FRAMED_COMPRESSION, RADIUS_FRAMED_COMPRESSION},
352 { RD_TP_LOGIN_IP_HOST, RADIUS_IP_ADDRESS},
353 { RD_TP_LOGIN_SERVICE, RADIUS_LOGIN_SERVICE},
354 { RD_TP_LOGIN_TCP_PORT, RADIUS_INTEGER4},
355 { RD_TP_UNASSIGNED, RADIUS_UNKNOWN},
356 { RD_TP_REPLY_MESSAGE, RADIUS_STRING},
357 { RD_TP_CALLBACK_NUMBER, RADIUS_BINSTRING},
358 { RD_TP_CALLBACK_ID, RADIUS_BINSTRING},
359 { RD_TP_UNASSIGNED2, RADIUS_UNKNOWN},
360 { RD_TP_FRAMED_ROUTE, RADIUS_STRING},
361 { RD_TP_FRAMED_IPX_NETWORK, RADIUS_IPX_ADDRESS},
362 { RD_TP_STATE, RADIUS_BINSTRING},
363 { RD_TP_CLASS, RADIUS_BINSTRING},
364 { RD_TP_VENDOR_SPECIFIC, RADIUS_VENDOR_SPECIFIC},
365 { RD_TP_SESSION_TIMEOUT, RADIUS_INTEGER4},
366 { RD_TP_IDLE_TIMEOUT, RADIUS_INTEGER4},
367 { RD_TP_TERMINATING_ACTION, RADIUS_TERMINATING_ACTION},
368 { RD_TP_CALLED_STATION_ID, RADIUS_BINSTRING},
369 { RD_TP_CALLING_STATION_ID, RADIUS_BINSTRING},
370 { RD_TP_NAS_IDENTIFIER, RADIUS_BINSTRING},
371 { RD_TP_PROXY_STATE, RADIUS_BINSTRING},
372 { RD_TP_LOGIN_LAT_SERVICE, RADIUS_BINSTRING},
373 { RD_TP_LOGIN_LAT_NODE, RADIUS_BINSTRING},
374 { RD_TP_LOGIN_LAT_GROUP, RADIUS_BINSTRING},
375 { RD_TP_FRAMED_APPLETALK_LINK, RADIUS_INTEGER4},
376 { RD_TP_FRAMED_APPLETALK_NETWORK, RADIUS_INTEGER4},
377 { RD_TP_FRAMED_APPLETALK_ZONE, RADIUS_BINSTRING},
378 { RD_TP_ACCT_STATUS_TYPE, RADIUS_ACCOUNTING_STATUS_TYPE},
379 { RD_TP_ACCT_DELAY_TIME, RADIUS_INTEGER4},
380 { RD_TP_ACCT_INPUT_OCTETS, RADIUS_INTEGER4},
381 { RD_TP_ACCT_OUTPUT_OCTETS, RADIUS_INTEGER4},
382 { RD_TP_ACCT_SESSION_ID, RADIUS_STRING},
383 { RD_TP_ACCT_AUTHENTIC, RADIUS_ACCT_AUTHENTIC},
384 { RD_TP_ACCT_SESSION_TIME, RADIUS_INTEGER4},
385 { RD_TP_ACCT_INPUT_PACKETS, RADIUS_INTEGER4},
386 { RD_TP_ACCT_OUTPUT_PACKETS, RADIUS_INTEGER4},
387 { RD_TP_ACCT_TERMINATE_CAUSE, RADIUS_ACCT_TERMINATE_CAUSE},
388 { RD_TP_ACCT_MULTI_SESSION_ID, RADIUS_STRING},
389 { RD_TP_ACCT_LINK_COUNT, RADIUS_INTEGER4},
390 { RD_TP_CHAP_CHALLENGE, RADIUS_BINSTRING},
391 { RD_TP_NAS_PORT_TYPE, RADIUS_NAS_PORT_TYPE},
392 { RD_TP_PORT_LIMIT, RADIUS_INTEGER4},
393 { RD_TP_LOGIN_LAT_PORT, RADIUS_BINSTRING},
394 { RD_TP_TUNNEL_TYPE, RADIUS_TUNNEL_TYPE},
395 { RD_TP_TUNNEL_MEDIUM_TYPE, RADIUS_TUNNEL_MEDIUM_TYPE},
396 { RD_TP_TUNNEL_CLIENT_ENDPOINT, RADIUS_STRING_TAGGED},
397 { RD_TP_TUNNEL_SERVER_ENDPOINT, RADIUS_STRING_TAGGED},
398 { RD_TP_TUNNEL_PASSWORD, RADIUS_STRING_TAGGED},
399 { RD_TP_TUNNEL_ASSIGNMENT_ID, RADIUS_STRING_TAGGED},
403 static value_string radius_attrib_type_vals[] = {
404 { RD_TP_USER_NAME, "User Name"},
405 { RD_TP_USER_PASSWORD, "User Password"},
406 { RD_TP_CHAP_PASSWORD, "Chap Password"},
407 { RD_TP_NAS_IP_ADDRESS, "NAS IP Address"},
408 { RD_TP_NAS_PORT, "NAS Port"},
409 { RD_TP_SERVICE_TYPE, "Service Type"},
410 { RD_TP_FRAMED_PROTOCOL, "Framed Protocol"},
411 { RD_TP_FRAMED_IP_ADDRESS, "Framed IP Address"},
412 { RD_TP_FRAMED_IP_NETMASK, "Framed IP Netmask"},
413 { RD_TP_FRAMED_ROUTING, "Framed Routing"},
414 { RD_TP_FILTER_ID, "Filter Id"},
415 { RD_TP_FRAMED_MTU, "Framed MTU"},
416 { RD_TP_FRAMED_COMPRESSION, "Framed Compression"},
417 { RD_TP_LOGIN_IP_HOST, "Login IP Host"},
418 { RD_TP_LOGIN_SERVICE, "Login Service"},
419 { RD_TP_LOGIN_TCP_PORT, "Login TCP Port"},
420 { RD_TP_UNASSIGNED, "Unassigned"},
421 { RD_TP_REPLY_MESSAGE, "Reply Message"},
422 { RD_TP_CALLBACK_NUMBER, "Callback Number"},
423 { RD_TP_CALLBACK_ID, "Callback Id"},
424 { RD_TP_UNASSIGNED2, "Unassigned"},
425 { RD_TP_FRAMED_ROUTE, "Framed Route"},
426 { RD_TP_FRAMED_IPX_NETWORK, "Framed IPX network"},
427 { RD_TP_STATE, "State"},
428 { RD_TP_CLASS, "Class"},
429 { RD_TP_VENDOR_SPECIFIC, "Vendor Specific" },
430 { RD_TP_SESSION_TIMEOUT, "Session Timeout"},
431 { RD_TP_IDLE_TIMEOUT, "Idle Timeout"},
432 { RD_TP_TERMINATING_ACTION, "Terminating Action"},
433 { RD_TP_CALLED_STATION_ID, "Called Station Id"},
434 { RD_TP_CALLING_STATION_ID, "Calling Station Id"},
435 { RD_TP_NAS_IDENTIFIER, "NAS identifier"},
436 { RD_TP_PROXY_STATE, "Proxy State"},
437 { RD_TP_LOGIN_LAT_SERVICE, "Login LAT Service"},
438 { RD_TP_LOGIN_LAT_NODE, "Login LAT Node"},
439 { RD_TP_LOGIN_LAT_GROUP, "Login LAT Group"},
440 { RD_TP_FRAMED_APPLETALK_LINK, "Framed Appletalk Link"},
441 { RD_TP_FRAMED_APPLETALK_NETWORK, "Framed Appletalk Network"},
442 { RD_TP_FRAMED_APPLETALK_ZONE, "Framed Appletalk Zone"},
443 { RD_TP_ACCT_STATUS_TYPE, "Acct Status Type"},
444 { RD_TP_ACCT_DELAY_TIME, "Acct Delay Time"},
445 { RD_TP_ACCT_INPUT_OCTETS, "Acct Input Octets"},
446 { RD_TP_ACCT_OUTPUT_OCTETS, "Acct Output Octets"},
447 { RD_TP_ACCT_SESSION_ID, "Acct Session Id"},
448 { RD_TP_ACCT_AUTHENTIC, "Acct Authentic"},
449 { RD_TP_ACCT_SESSION_TIME, "Acct Session Time"},
450 { RD_TP_ACCT_INPUT_PACKETS, "Acct Input Packets"},
451 { RD_TP_ACCT_OUTPUT_PACKETS, "Acct Output Packets"},
452 { RD_TP_ACCT_TERMINATE_CAUSE, "Acct Terminate Cause"},
453 { RD_TP_ACCT_MULTI_SESSION_ID, "Acct Multi Session Id"},
454 { RD_TP_ACCT_LINK_COUNT, "Acct Link Count"},
455 { RD_TP_CHAP_CHALLENGE, "Chap Challenge"},
456 { RD_TP_NAS_PORT_TYPE, "NAS Port Type"},
457 { RD_TP_PORT_LIMIT, "Port Limit"},
458 { RD_TP_LOGIN_LAT_PORT, "Login LAT Port"},
459 { RD_TP_TUNNEL_TYPE, "Tunnel Type"},
460 { RD_TP_TUNNEL_MEDIUM_TYPE, "Tunnel Medium Type"},
461 { RD_TP_TUNNEL_CLIENT_ENDPOINT, "Tunnel Client Endpoint"},
462 { RD_TP_TUNNEL_SERVER_ENDPOINT, "Tunnel Server Endpoint"},
463 { RD_TP_TUNNEL_PASSWORD, "Tunnel Password"},
464 { RD_TP_TUNNEL_ASSIGNMENT_ID, "Tunnel Assignment ID"},
468 guint32 match_numval(guint32 val, const value_value_pair *vs)
473 if (vs[i].val1 == val)
481 static gchar textbuffer[2000];
483 gchar *rdconvertbufftostr(gchar *dest,guint8 length,const guint8 *pd)
485 /*converts the raw buffer into printable text */
492 for (i=0; i < (guint32)length; i++)
494 if( isalnum((int)pd[i])||ispunct((int)pd[i])
495 ||((int)pd[i]==' ')) {
496 dest[totlen]=(gchar)pd[i];
501 sprintf(&(dest[totlen]), "\\%03u", pd[i]);
502 totlen=totlen+strlen(&(dest[totlen]));
510 gchar *rd_match_strval(guint32 val, const value_string *vs) {
511 return val_to_str(val, vs, "Undefined (%u)");
514 gchar *rd_value_to_str(e_avphdr *avph,const u_char *pd, int offset)
519 value_string *valstrarr;
520 /* prints the values of the attribute value pairs into a text buffer */
521 print_type=match_numval(avph->avp_type,radius_printinfo);
522 intval=pntohl(&(pd[offset+2]));
524 strcpy(textbuffer,"Value:");
525 cont=&textbuffer[strlen(textbuffer)];
528 case( RADIUS_STRING ):
529 case( RADIUS_BINSTRING ):
530 rdconvertbufftostr(cont,avph->avp_length-2,&(pd[offset+2]));
532 case( RADIUS_INTEGER4 ):
533 sprintf(cont,"%u", intval);
535 case( RADIUS_IP_ADDRESS ):
536 sprintf(cont,"%u.%u.%u.%u",(guint8)pd[offset+2],
537 (guint8)pd[offset+3],(guint8)pd[offset+4],
538 (guint8)pd[offset+5]);
540 case( RADIUS_SERVICE_TYPE ):
541 valstrarr=radius_service_type_vals;
542 strcpy(cont,rd_match_strval(intval,valstrarr));
544 case( RADIUS_FRAMED_PROTOCOL ):
545 valstrarr= radius_framed_protocol_vals;
546 strcpy(cont,rd_match_strval(intval,valstrarr));
548 case( RADIUS_FRAMED_ROUTING ):
549 valstrarr=radius_framed_routing_vals;
550 strcpy(cont,rd_match_strval(intval,valstrarr));
552 case( RADIUS_FRAMED_COMPRESSION ):
553 valstrarr=radius_framed_compression_vals;
554 strcpy(cont,rd_match_strval(intval,valstrarr));
556 case( RADIUS_LOGIN_SERVICE ):
557 valstrarr=radius_login_service_vals;
558 strcpy(cont,rd_match_strval(intval,valstrarr));
560 case( RADIUS_IPX_ADDRESS ):
561 sprintf(cont,"%u:%u:%u:%u",(guint8)pd[offset+2],
562 (guint8)pd[offset+3],(guint8)pd[offset+4],
563 (guint8)pd[offset+5]);
564 case( RADIUS_TERMINATING_ACTION ):
565 valstrarr=radius_terminating_action_vals;
566 strcpy(cont,rd_match_strval(intval,valstrarr));
568 case( RADIUS_ACCOUNTING_STATUS_TYPE ):
569 valstrarr=radius_accounting_status_type_vals;
570 strcpy(cont,rd_match_strval(intval,valstrarr));
572 case( RADIUS_ACCT_AUTHENTIC ):
573 valstrarr=radius_accounting_authentication_vals;
574 strcpy(cont,rd_match_strval(intval,valstrarr));
576 case( RADIUS_ACCT_TERMINATE_CAUSE ):
577 valstrarr=radius_acct_terminate_cause_vals;
578 strcpy(cont,rd_match_strval(intval,valstrarr));
580 case( RADIUS_NAS_PORT_TYPE ):
581 valstrarr=radius_nas_port_type_vals;
582 strcpy(cont,rd_match_strval(intval,valstrarr));
584 case( RADIUS_TUNNEL_TYPE ):
585 valstrarr=radius_tunnel_type_vals;
588 sprintf(textbuffer, "Tag:%d, Value:%s",
590 rd_match_strval(intval & 0xffffff,valstrarr));
593 strcpy(cont,match_strval(intval,valstrarr));
595 case( RADIUS_TUNNEL_MEDIUM_TYPE ):
596 valstrarr=radius_tunnel_medium_type_vals;
599 sprintf(textbuffer, "Tag:%d, Value:%s",
601 rd_match_strval(intval & 0xffffff,valstrarr));
604 strcpy(cont,match_strval(intval,valstrarr));
606 case( RADIUS_STRING_TAGGED ):
608 if (pd[offset+2] <= 0x1f) {
609 sprintf(textbuffer, "Tag:%d, Value:",
611 cont=&textbuffer[strlen(textbuffer)];
612 rdconvertbufftostr(cont,avph->avp_length-3,
616 rdconvertbufftostr(cont,avph->avp_length-2,
619 case ( RADIUS_VENDOR_SPECIFIC ):
620 valstrarr=radius_vendor_specific_vendors;
621 sprintf(textbuffer,"Vendor:%s, Value:",
622 rd_match_strval(intval,valstrarr));
623 cont=&textbuffer[strlen(textbuffer)];
624 rdconvertbufftostr(cont,avph->avp_length-6,&(pd[offset+6]));
626 case( RADIUS_UNKNOWN ):
628 strcpy(textbuffer,"Unknown Value Type");
631 if (cont == textbuffer) {
632 strcpy(cont,"Unknown Value");
638 void dissect_attribute_value_pairs(const u_char *pd, int offset, frame_data
639 *fd, proto_tree *tree, int avplength)
641 /* adds the attribute value pairs to the tree */
647 proto_tree_add_text(tree, NullTVB,offset,0,"No Attribute Value Pairs Found");
651 while (avplength > 0 )
654 memcpy(&avph,&pd[offset],sizeof(e_avphdr));
655 avplength=avplength-avph.avp_length;
656 avptpstrval=match_strval(avph.avp_type, radius_attrib_type_vals);
657 if (avptpstrval == NULL) avptpstrval="Unknown Type";
658 valstr=rd_value_to_str(&avph, pd, offset);
659 if (!BYTES_ARE_IN_FRAME(offset, avph.avp_length)) {
662 proto_tree_add_text(tree, NullTVB,offset,avph.avp_length,
664 avptpstrval,avph.avp_type,avph.avp_length,valstr);
665 offset=offset+avph.avp_length;
666 if (avph.avp_length == 0) {
672 static void dissect_radius(const u_char *pd, int offset, frame_data *fd,
676 proto_tree *radius_tree,*avptree;
677 proto_item *ti,*avptf;
681 int avplength,hdrlength, offsetavp;
686 if (pd[offset] == 254) {
687 /* We have a diameter packet */
688 dissect_diameter(pd, offset, fd, tree);
692 OLD_CHECK_DISPLAY_AS_DATA(proto_radius, pd, offset, fd, tree);
694 memcpy(&rh,&pd[offset],sizeof(e_radiushdr));
697 rhcode= (int)rh.rh_code;
698 rhident= (int)rh.rh_ident;
699 rhlength= (int)ntohs(rh.rh_pktlength);
700 codestrval= match_strval(rhcode,radius_vals);
701 if (codestrval==NULL)
703 codestrval="Unknown Packet";
705 if (check_col(fd, COL_PROTOCOL))
706 col_set_str(fd, COL_PROTOCOL, "RADIUS");
707 if (check_col(fd, COL_INFO))
709 sprintf(textbuffer,"%s(%d) (id=%d, l=%d)",
710 codestrval, rhcode, rhident, rhlength);
711 col_add_fstr(fd,COL_INFO,textbuffer);
717 ti = proto_tree_add_item(tree,proto_radius, NullTVB, offset, rhlength,
720 radius_tree = proto_item_add_subtree(ti, ett_radius);
722 proto_tree_add_uint_format(radius_tree,hf_radius_code, NullTVB, offset, 1,
723 rh.rh_code, "Packet code:0x%01x (%s)",rhcode, codestrval);
724 proto_tree_add_uint_format(radius_tree,hf_radius_id, NullTVB, offset+1, 1,
725 rh.rh_ident, "Packet identifier: 0x%01x (%d)",
728 proto_tree_add_uint_format(radius_tree, hf_radius_length, NullTVB,
731 "Packet length: 0x%02x(%d)",rhlength,rhlength);
732 proto_tree_add_text(radius_tree, NullTVB, offset+4,
733 AUTHENTICATOR_LENGTH,
736 hdrlength=RD_HDR_LENGTH+AUTHENTICATOR_LENGTH;
737 avplength= rhlength -hdrlength;
739 offsetavp=offset+hdrlength;
742 /* list the attribute value pairs */
744 avptf = proto_tree_add_text(radius_tree,
745 NullTVB,offset+hdrlength,avplength,
746 "Attribute value pairs");
747 avptree = proto_item_add_subtree(avptf, ett_radius_avp);
751 dissect_attribute_value_pairs( pd,
752 offsetavp,fd,avptree,avplength);
756 /* registration with the filtering engine */
758 proto_register_radius(void)
760 static hf_register_info hf[] = {
762 { "Code","radius.code", FT_UINT8, BASE_DEC, NULL, 0x0,
766 { "Identifier", "radius.id", FT_UINT8, BASE_DEC, NULL, 0x0,
770 { "Length","radius.length", FT_UINT16, BASE_DEC, NULL, 0x0,
773 static gint *ett[] = {
778 proto_radius = proto_register_protocol("Radius Protocol", "RADIUS",
780 proto_register_field_array(proto_radius, hf, array_length(hf));
781 proto_register_subtree_array(ett, array_length(ett));
785 proto_reg_handoff_radius(void)
787 old_dissector_add("udp.port", UDP_PORT_RADIUS, dissect_radius);
788 old_dissector_add("udp.port", UDP_PORT_RADIUS_NEW, dissect_radius);
789 old_dissector_add("udp.port", UDP_PORT_RADACCT, dissect_radius);
790 old_dissector_add("udp.port", UDP_PORT_RADACCT_NEW, dissect_radius);