commit bbc1ffbb5aff84d0ee74c71ddd7c51d9a71bd212
author Matteo Scandolo <teo@opennetworking.org> Fri Oct 16 15:56:20 2020 -0700
committer Matteo Scandolo <teo@opennetworking.org> Fri Oct 23 11:48:53 2020 -0700
tree 79944160fdc1366d89bf8ac1fa736059e14a33a6
parent e033c26aee53ce4997c4b3826e3d0a184b682e7a

Several improvements for AAA

- Skip radius in 802.1x authentication (forgeEapol)
- Avoid deadlock in the IdentifierManager and optimizes locking
- Periodic pruning of the stalled auths
- Protection for the RadiusLister against the exceptions
- Check attributes before getting them
- Offload radius packet to another worker thread
- Improve unit tests

Change-Id: Idc4000dfb0a44f6a7fbc9aeea8ec754659f98545

app/src/main/java/org/opencord/aaa/impl/EapolPacketGenerator.java

diff --git a/app/src/main/java/org/opencord/aaa/impl/EapolPacketGenerator.java b/app/src/main/java/org/opencord/aaa/impl/EapolPacketGenerator.java
new file mode 100644
index 0000000..5a64bf0
--- /dev/null
+++ b/app/src/main/java/org/opencord/aaa/impl/EapolPacketGenerator.java
@@ -0,0 +1,55 @@
+/*
+ * Copyright 2017-present Open Networking Foundation
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package org.opencord.aaa.impl;
+
+import org.onlab.packet.EAP;
+
+/**
+ * Class that is responsible to generate fake EAPOL packets in case that
+ * FORGE_EAPOL_PACKETS is set to true in the config.
+ */
+public final class EapolPacketGenerator {
+
+    private EapolPacketGenerator() {}
+
+    public static EAP forgeEapolChallengeAuth() {
+        EAP eapPayload = new EAP(
+                new Integer(1).byteValue(), new Integer(1).byteValue(),
+                new Integer(4).byteValue(),
+                hexStringToByteArray("108b4eb55f859c501b3e14a594c4997bed"));
+        return eapPayload;
+    }
+
+    public static EAP forgeEapolSuccess() {
+        EAP eapPayload = new EAP(
+                new Integer(3).byteValue(),
+                new Integer(2).byteValue(),
+                new Integer(0).byteValue(),
+                hexStringToByteArray("")
+        );
+        return eapPayload;
+    }
+
+    public static byte[] hexStringToByteArray(String s) {
+        int len = s.length();
+        byte[] data = new byte[len / 2];
+        for (int i = 0; i < len; i += 2) {
+            data[i / 2] = (byte) ((Character.digit(s.charAt(i), 16) << 4)
+                    + Character.digit(s.charAt(i + 1), 16));
+        }
+        return data;
+    }
+}