Gitiles
Code Review Sign In
gerrit.opencord.org / aaa / 2ff1a78f851cbcf95bbb852e5dfaf6bf3a6bc3b0 / . / src / main / java / org / opencord / aaa / AaaManager.java
blob: c920864179d8259758e78195deb1e44b8dc7f44f [file] [log] [blame]
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]1/*
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]2 * Copyright 2017-present Open Networking Foundation
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]3 *
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
7 *
8 * http://www.apache.org/licenses/LICENSE-2.0
9 *
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
15 */
alshabib6d527452016-06-01 18:00:47 -0700[diff] [blame]16package org.opencord.aaa;
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]17
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]18import org.apache.felix.scr.annotations.Component;
19import org.apache.felix.scr.annotations.Deactivate;
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]20import org.apache.felix.scr.annotations.Reference;
21import org.apache.felix.scr.annotations.ReferenceCardinality;
Matt Jeanneret2ff1a782018-06-13 15:24:25 -0400[diff] [blame^]22import org.apache.commons.lang3.builder.ToStringBuilder;
Jonathan Hart4731dd92018-05-02 17:30:05 -0700[diff] [blame]23import org.onlab.packet.DeserializationException;
Jonathan Harta46dddf2015-06-30 15:31:20 -0700[diff] [blame]24import org.onlab.packet.EAP;
25import org.onlab.packet.EAPOL;
26import org.onlab.packet.EthType;
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]27import org.onlab.packet.Ethernet;
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]28import org.onlab.packet.MacAddress;
Jonathan Harta46dddf2015-06-30 15:31:20 -0700[diff] [blame]29import org.onlab.packet.RADIUS;
30import org.onlab.packet.RADIUSAttribute;
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]31import org.onlab.packet.VlanId;
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]32import org.onosproject.core.ApplicationId;
33import org.onosproject.core.CoreService;
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]34import org.onosproject.mastership.MastershipService;
35import org.onosproject.net.AnnotationKeys;
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]36import org.onosproject.net.ConnectPoint;
37import org.onosproject.net.DeviceId;
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]38import org.onosproject.net.PortNumber;
Ray Milkeyfcb623d2015-10-01 16:48:18 -0700[diff] [blame]39import org.onosproject.net.config.ConfigFactory;
40import org.onosproject.net.config.NetworkConfigEvent;
41import org.onosproject.net.config.NetworkConfigListener;
42import org.onosproject.net.config.NetworkConfigRegistry;
Amit Ghoshf739be52017-09-21 15:49:37 +0100[diff] [blame]43import org.onosproject.net.device.DeviceEvent;
44import org.onosproject.net.device.DeviceListener;
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]45import org.onosproject.net.device.DeviceService;
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]46import org.onosproject.net.flow.DefaultTrafficTreatment;
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]47import org.onosproject.net.flow.TrafficTreatment;
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]48import org.onosproject.net.packet.DefaultOutboundPacket;
49import org.onosproject.net.packet.InboundPacket;
50import org.onosproject.net.packet.OutboundPacket;
51import org.onosproject.net.packet.PacketContext;
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]52import org.onosproject.net.packet.PacketProcessor;
53import org.onosproject.net.packet.PacketService;
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]54import org.opencord.olt.AccessDeviceService;
55import org.opencord.sadis.SubscriberAndDeviceInformation;
56import org.opencord.sadis.SubscriberAndDeviceInformationService;
Deepa Vaddireddye0e10722017-09-27 05:00:10 +0530[diff] [blame]57import org.osgi.service.component.annotations.Activate;
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]58import org.slf4j.Logger;
59
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]60import java.net.InetAddress;
61import java.nio.ByteBuffer;
Amit Ghoshf739be52017-09-21 15:49:37 +0100[diff] [blame]62import java.util.Map;
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]63
Deepa Vaddireddye0e10722017-09-27 05:00:10 +0530[diff] [blame]64import static org.onosproject.net.config.basics.SubjectFactories.APP_SUBJECT_FACTORY;
65import static org.slf4j.LoggerFactory.getLogger;
66
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]67/**
Jonathan Harta46dddf2015-06-30 15:31:20 -0700[diff] [blame]68 * AAA application for ONOS.
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]69 */
70@Component(immediate = true)
Deepa Vaddireddye0e10722017-09-27 05:00:10 +0530[diff] [blame]71public class
72AaaManager {
Charles Chandf7ff862017-01-20 11:22:05 -0800[diff] [blame]73 private static final String APP_NAME = "org.opencord.aaa";
Ray Milkeyf51eba22015-09-25 10:24:23 -0700[diff] [blame]74
Ray Milkeyf61a24e2015-09-24 16:34:02 -0700[diff] [blame]75 // for verbose output
76 private final Logger log = getLogger(getClass());
Ray Milkeyf51eba22015-09-25 10:24:23 -0700[diff] [blame]77
Ray Milkeyf61a24e2015-09-24 16:34:02 -0700[diff] [blame]78 // a list of our dependencies :
79 // to register with ONOS as an application - described next
80 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
81 protected CoreService coreService;
Ray Milkeyf51eba22015-09-25 10:24:23 -0700[diff] [blame]82
Ray Milkeyf61a24e2015-09-24 16:34:02 -0700[diff] [blame]83 // to receive Packet-in events that we'll respond to
84 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
85 protected PacketService packetService;
Ray Milkeyf51eba22015-09-25 10:24:23 -0700[diff] [blame]86
Ray Milkeyf61a24e2015-09-24 16:34:02 -0700[diff] [blame]87 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
Ray Milkeyfcb623d2015-10-01 16:48:18 -0700[diff] [blame]88 protected NetworkConfigRegistry netCfgService;
Ray Milkeyf51eba22015-09-25 10:24:23 -0700[diff] [blame]89
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]90 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
91 protected DeviceService deviceService;
92
93 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
94 protected SubscriberAndDeviceInformationService subsService;
95
96 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
97 protected MastershipService mastershipService;
98
99 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
100 protected AccessDeviceService accessDeviceService;
Ray Milkeyfcb623d2015-10-01 16:48:18 -0700[diff] [blame]101
Amit Ghoshf739be52017-09-21 15:49:37 +0100[diff] [blame]102 private final DeviceListener deviceListener = new InternalDeviceListener();
103
Ray Milkeyfcb623d2015-10-01 16:48:18 -0700[diff] [blame]104 // NAS IP address
105 protected InetAddress nasIpAddress;
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]106
107 // self MAC address
108 protected static String nasMacAddress;
109
110 // Parsed RADIUS server addresses
111 protected InetAddress radiusIpAddress;
112
113 // MAC address of RADIUS server or net hop router
114 protected String radiusMacAddress;
Ray Milkeyfcb623d2015-10-01 16:48:18 -0700[diff] [blame]115
116 // RADIUS server secret
117 protected String radiusSecret;
118
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]119 // NAS Identifier
120 protected String nasId;
Ray Milkeyfcb623d2015-10-01 16:48:18 -0700[diff] [blame]121
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]122 // bindings
123 protected CustomizationInfo customInfo;
Ray Milkey5d99bd12015-10-06 15:41:30 -0700[diff] [blame]124
Ray Milkeyf61a24e2015-09-24 16:34:02 -0700[diff] [blame]125 // our application-specific event handler
126 private ReactivePacketProcessor processor = new ReactivePacketProcessor();
Ray Milkeyf51eba22015-09-25 10:24:23 -0700[diff] [blame]127
Ray Milkeyf61a24e2015-09-24 16:34:02 -0700[diff] [blame]128 // our unique identifier
129 private ApplicationId appId;
Ray Milkeyf51eba22015-09-25 10:24:23 -0700[diff] [blame]130
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]131 // Setup specific customization/attributes on the RADIUS packets
132 PacketCustomizer pktCustomizer;
Ray Milkey967776a2015-10-07 14:37:17 -0700[diff] [blame]133
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]134 // packet customizer to use
135 private String customizer;
136
137 // Type of connection to use to communicate with Radius server, options are
138 // "socket" or "packet_out"
139 private String radiusConnectionType;
140
141 // Object for the spcific type of communication with the RADIUS
142 // server, socket based or packet_out based
143 RadiusCommunicator impl = null;
144
145 // latest configuration
146 AaaConfig newCfg;
Ray Milkey967776a2015-10-07 14:37:17 -0700[diff] [blame]147
Ray Milkeyfcb623d2015-10-01 16:48:18 -0700[diff] [blame]148 // Configuration properties factory
149 private final ConfigFactory factory =
Jonathan Hart092dfb22015-11-16 23:05:21 -0800[diff] [blame]150 new ConfigFactory<ApplicationId, AaaConfig>(APP_SUBJECT_FACTORY,
151 AaaConfig.class,
Ray Milkeyfcb623d2015-10-01 16:48:18 -0700[diff] [blame]152 "AAA") {
153 @Override
Jonathan Hart092dfb22015-11-16 23:05:21 -0800[diff] [blame]154 public AaaConfig createConfig() {
155 return new AaaConfig();
Ray Milkeyfcb623d2015-10-01 16:48:18 -0700[diff] [blame]156 }
157 };
Ray Milkeyf51eba22015-09-25 10:24:23 -0700[diff] [blame]158
Ray Milkeyfcb623d2015-10-01 16:48:18 -0700[diff] [blame]159 // Listener for config changes
160 private final InternalConfigListener cfgListener = new InternalConfigListener();
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]161
Ray Milkeyf61a24e2015-09-24 16:34:02 -0700[diff] [blame]162 /**
163 * Builds an EAPOL packet based on the given parameters.
164 *
165 * @param dstMac destination MAC address
166 * @param srcMac source MAC address
167 * @param vlan vlan identifier
168 * @param eapolType EAPOL type
169 * @param eap EAP payload
170 * @return Ethernet frame
171 */
172 private static Ethernet buildEapolResponse(MacAddress dstMac, MacAddress srcMac,
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]173 short vlan, byte eapolType, EAP eap, byte priorityCode) {
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]174
Ray Milkeyf61a24e2015-09-24 16:34:02 -0700[diff] [blame]175 Ethernet eth = new Ethernet();
176 eth.setDestinationMACAddress(dstMac.toBytes());
177 eth.setSourceMACAddress(srcMac.toBytes());
178 eth.setEtherType(EthType.EtherType.EAPOL.ethType().toShort());
179 if (vlan != Ethernet.VLAN_UNTAGGED) {
180 eth.setVlanID(vlan);
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]181 eth.setPriorityCode(priorityCode);
Ray Milkeyf61a24e2015-09-24 16:34:02 -0700[diff] [blame]182 }
183 //eapol header
184 EAPOL eapol = new EAPOL();
185 eapol.setEapolType(eapolType);
186 eapol.setPacketLength(eap.getLength());
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]187
Ray Milkeyf61a24e2015-09-24 16:34:02 -0700[diff] [blame]188 //eap part
189 eapol.setPayload(eap);
190
191 eth.setPayload(eapol);
192 eth.setPad(true);
193 return eth;
194 }
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]195
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]196 @Activate
Ray Milkeyfcb623d2015-10-01 16:48:18 -0700[diff] [blame]197 public void activate() {
Charles Chandf7ff862017-01-20 11:22:05 -0800[diff] [blame]198 appId = coreService.registerApplication(APP_NAME);
Matt Jeanneret2ff1a782018-06-13 15:24:25 -0400[diff] [blame^]199 netCfgService.addListener(cfgListener);
200 netCfgService.registerConfigFactory(factory);
Deepa Vaddireddye0e10722017-09-27 05:00:10 +0530[diff] [blame]201 customInfo = new CustomizationInfo(subsService, deviceService);
Jonathan Hart092dfb22015-11-16 23:05:21 -0800[diff] [blame]202 cfgListener.reconfigureNetwork(netCfgService.getConfig(appId, AaaConfig.class));
Matt Jeanneret2ff1a782018-06-13 15:24:25 -0400[diff] [blame^]203 log.info("Starting with config {} {}", this, newCfg);
204
Deepa Vaddireddye0e10722017-09-27 05:00:10 +0530[diff] [blame]205 configureRadiusCommunication();
Ray Milkeyfcb623d2015-10-01 16:48:18 -0700[diff] [blame]206
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]207 // register our event handler
Brian O'Connord9c7da02015-07-29 17:49:24 -0700[diff] [blame]208 packetService.addProcessor(processor, PacketProcessor.director(2));
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]209
Ray Milkeyf61a24e2015-09-24 16:34:02 -0700[diff] [blame]210
211 StateMachine.initializeMaps();
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]212 StateMachine.setAccessDeviceService(accessDeviceService);
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]213
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]214 impl.initializeLocalState(newCfg);
alshabib27afc1d2016-12-23 00:33:58 -0800[diff] [blame]215
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]216 impl.requestIntercepts();
217
Amit Ghoshf739be52017-09-21 15:49:37 +0100[diff] [blame]218 deviceService.addListener(deviceListener);
219
Jian Li13c67162015-12-09 13:20:34 -0800[diff] [blame]220 log.info("Started");
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]221 }
222
Deepa Vaddireddye0e10722017-09-27 05:00:10 +0530[diff] [blame]223
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]224 @Deactivate
225 public void deactivate() {
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]226 impl.withdrawIntercepts();
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]227 // de-register and null our handler
228 packetService.removeProcessor(processor);
229 processor = null;
Deepa Vaddireddyb9c24c62017-09-21 13:45:30 +0530[diff] [blame]230 netCfgService.removeListener(cfgListener);
Deepa Vaddireddye0e10722017-09-27 05:00:10 +0530[diff] [blame]231 StateMachine.destroyMaps();
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]232 impl.deactivate();
Amit Ghoshf739be52017-09-21 15:49:37 +0100[diff] [blame]233 deviceService.removeListener(deviceListener);
Jian Li13c67162015-12-09 13:20:34 -0800[diff] [blame]234 log.info("Stopped");
Ray Milkey967776a2015-10-07 14:37:17 -0700[diff] [blame]235 }
236
Deepa Vaddireddye0e10722017-09-27 05:00:10 +0530[diff] [blame]237 private void configureRadiusCommunication() {
238 if (radiusConnectionType.toLowerCase().equals("socket")) {
239 impl = new SocketBasedRadiusCommunicator(appId, packetService, this);
240 } else {
241 impl = new PortBasedRadiusCommunicator(appId, packetService, mastershipService,
242 deviceService, subsService, pktCustomizer, this);
243 }
244 }
245
246 private void configurePacketCustomizer() {
247 switch (customizer.toLowerCase()) {
248 case "sample":
249 pktCustomizer = new SamplePacketCustomizer(customInfo);
250 log.info("Created SamplePacketCustomizer");
251 break;
252 default:
253 pktCustomizer = new PacketCustomizer(customInfo);
254 log.info("Created default PacketCustomizer");
255 break;
256 }
257 }
258
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]259 /**
260 * Send RADIUS packet to the RADIUS server.
261 *
262 * @param radiusPacket RADIUS packet to be sent to server.
263 * @param inPkt Incoming EAPOL packet
264 */
265 protected void sendRadiusPacket(RADIUS radiusPacket, InboundPacket inPkt) {
266 impl.sendRadiusPacket(radiusPacket, inPkt);
267 }
Ray Milkey967776a2015-10-07 14:37:17 -0700[diff] [blame]268
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]269 /**
270 * Handles RADIUS packets.
271 *
272 * @param radiusPacket RADIUS packet coming from the RADIUS server.
273 * @throws StateMachineException if an illegal state transition is triggered
Jonathan Hart4731dd92018-05-02 17:30:05 -0700[diff] [blame]274 * @throws DeserializationException if packet deserialization fails
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]275 */
Jonathan Hart4731dd92018-05-02 17:30:05 -0700[diff] [blame]276 public void handleRadiusPacket(RADIUS radiusPacket)
277 throws StateMachineException, DeserializationException {
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]278 StateMachine stateMachine = StateMachine.lookupStateMachineById(radiusPacket.getIdentifier());
279 if (stateMachine == null) {
280 log.error("Invalid session identifier {}, exiting...", radiusPacket.getIdentifier());
281 return;
Ray Milkey967776a2015-10-07 14:37:17 -0700[diff] [blame]282 }
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]283
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]284 EAP eapPayload;
285 Ethernet eth;
Aaron Kruglikovd39d99e2015-07-03 13:30:57 -0700[diff] [blame]286
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]287 switch (radiusPacket.getCode()) {
288 case RADIUS.RADIUS_CODE_ACCESS_CHALLENGE:
Matt Jeanneret2ff1a782018-06-13 15:24:25 -0400[diff] [blame^]289 log.debug("RADIUS packet: RADIUS_CODE_ACCESS_CHALLENGE");
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]290 RADIUSAttribute radiusAttrState = radiusPacket.getAttribute(RADIUSAttribute.RADIUS_ATTR_STATE);
291 byte[] challengeState = null;
292 if (radiusAttrState != null) {
293 challengeState = radiusAttrState.getValue();
294 }
295 eapPayload = radiusPacket.decapsulateMessage();
296 stateMachine.setChallengeInfo(eapPayload.getIdentifier(), challengeState);
297 eth = buildEapolResponse(stateMachine.supplicantAddress(),
298 MacAddress.valueOf(nasMacAddress),
299 stateMachine.vlanId(),
300 EAPOL.EAPOL_PACKET,
301 eapPayload, stateMachine.priorityCode());
Matt Jeanneret2ff1a782018-06-13 15:24:25 -0400[diff] [blame^]302 log.debug("Send EAP challenge response to supplicant {}", stateMachine.supplicantAddress().toString());
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]303 sendPacketToSupplicant(eth, stateMachine.supplicantConnectpoint());
304 break;
305 case RADIUS.RADIUS_CODE_ACCESS_ACCEPT:
Matt Jeanneret2ff1a782018-06-13 15:24:25 -0400[diff] [blame^]306 log.debug("RADIUS packet: RADIUS_CODE_ACCESS_ACCEPT");
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]307 //send an EAPOL - Success to the supplicant.
308 byte[] eapMessageSuccess =
309 radiusPacket.getAttribute(RADIUSAttribute.RADIUS_ATTR_EAP_MESSAGE).getValue();
Jonathan Hart4731dd92018-05-02 17:30:05 -0700[diff] [blame]310 eapPayload = EAP.deserializer().deserialize(
311 eapMessageSuccess, 0, eapMessageSuccess.length);
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]312 eth = buildEapolResponse(stateMachine.supplicantAddress(),
313 MacAddress.valueOf(nasMacAddress),
314 stateMachine.vlanId(),
315 EAPOL.EAPOL_PACKET,
316 eapPayload, stateMachine.priorityCode());
Matt Jeanneret2ff1a782018-06-13 15:24:25 -0400[diff] [blame^]317 log.info("Send EAP success message to supplicant {}", stateMachine.supplicantAddress().toString());
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]318 sendPacketToSupplicant(eth, stateMachine.supplicantConnectpoint());
319
320 stateMachine.authorizeAccess();
321
322 break;
323 case RADIUS.RADIUS_CODE_ACCESS_REJECT:
Matt Jeanneret2ff1a782018-06-13 15:24:25 -0400[diff] [blame^]324 log.debug("RADIUS packet: RADIUS_CODE_ACCESS_REJECT");
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]325 //send an EAPOL - Failure to the supplicant.
326 byte[] eapMessageFailure;
327 eapPayload = new EAP();
328 RADIUSAttribute radiusAttrEap = radiusPacket.getAttribute(RADIUSAttribute.RADIUS_ATTR_EAP_MESSAGE);
329 if (radiusAttrEap == null) {
330 eapPayload.setCode(EAP.FAILURE);
331 eapPayload.setIdentifier(stateMachine.challengeIdentifier());
332 eapPayload.setLength(EAP.EAP_HDR_LEN_SUC_FAIL);
333 } else {
334 eapMessageFailure = radiusAttrEap.getValue();
Jonathan Hart4731dd92018-05-02 17:30:05 -0700[diff] [blame]335 eapPayload = EAP.deserializer().deserialize(
336 eapMessageFailure, 0, eapMessageFailure.length);
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]337 }
338 eth = buildEapolResponse(stateMachine.supplicantAddress(),
339 MacAddress.valueOf(nasMacAddress),
340 stateMachine.vlanId(),
341 EAPOL.EAPOL_PACKET,
342 eapPayload, stateMachine.priorityCode());
Matt Jeanneret2ff1a782018-06-13 15:24:25 -0400[diff] [blame^]343 log.warn("Send EAP failure message to supplicant {}", stateMachine.supplicantAddress().toString());
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]344 sendPacketToSupplicant(eth, stateMachine.supplicantConnectpoint());
345 stateMachine.denyAccess();
346
347 break;
348 default:
349 log.warn("Unknown RADIUS message received with code: {}", radiusPacket.getCode());
350 }
Aaron Kruglikovd39d99e2015-07-03 13:30:57 -0700[diff] [blame]351 }
352
Ray Milkey967776a2015-10-07 14:37:17 -0700[diff] [blame]353 /**
354 * Send the ethernet packet to the supplicant.
355 *
356 * @param ethernetPkt the ethernet packet
357 * @param connectPoint the connect point to send out
358 */
359 private void sendPacketToSupplicant(Ethernet ethernetPkt, ConnectPoint connectPoint) {
360 TrafficTreatment treatment = DefaultTrafficTreatment.builder().setOutput(connectPoint.port()).build();
361 OutboundPacket packet = new DefaultOutboundPacket(connectPoint.deviceId(),
362 treatment, ByteBuffer.wrap(ethernetPkt.serialize()));
363 packetService.emit(packet);
364 }
365
Matt Jeanneret2ff1a782018-06-13 15:24:25 -0400[diff] [blame^]366 @Override
367 public String toString() {
368 return ToStringBuilder.reflectionToString(this);
369 }
370
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]371 // our handler defined as a private inner class
372
373 /**
374 * Packet processor responsible for forwarding packets along their paths.
375 */
376 private class ReactivePacketProcessor implements PacketProcessor {
377 @Override
378 public void process(PacketContext context) {
379
380 // Extract the original Ethernet frame from the packet information
381 InboundPacket pkt = context.inPacket();
382 Ethernet ethPkt = pkt.parsed();
383 if (ethPkt == null) {
384 return;
385 }
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]386
Ray Milkeyf51eba22015-09-25 10:24:23 -0700[diff] [blame]387 try {
388 // identify if incoming packet comes from supplicant (EAP) or RADIUS
389 switch (EthType.EtherType.lookup(ethPkt.getEtherType())) {
390 case EAPOL:
391 handleSupplicantPacket(context.inPacket());
392 break;
Ray Milkeyf51eba22015-09-25 10:24:23 -0700[diff] [blame]393 default:
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]394 // any other packets let the specific implementation handle
395 impl.handlePacketFromServer(context);
Ray Milkeyf51eba22015-09-25 10:24:23 -0700[diff] [blame]396 }
Ray Milkey967776a2015-10-07 14:37:17 -0700[diff] [blame]397 } catch (StateMachineException e) {
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]398 log.warn("Unable to process packet:", e);
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]399 }
400 }
401
Ray Milkey9eb293f2015-09-30 15:09:17 -0700[diff] [blame]402 /**
403 * Creates and initializes common fields of a RADIUS packet.
404 *
Ray Milkey967776a2015-10-07 14:37:17 -0700[diff] [blame]405 * @param stateMachine state machine for the request
Ray Milkeyfcb623d2015-10-01 16:48:18 -0700[diff] [blame]406 * @param eapPacket EAP packet
Ray Milkey9eb293f2015-09-30 15:09:17 -0700[diff] [blame]407 * @return RADIUS packet
408 */
Ray Milkey967776a2015-10-07 14:37:17 -0700[diff] [blame]409 private RADIUS getRadiusPayload(StateMachine stateMachine, byte identifier, EAP eapPacket) {
Ray Milkey9eb293f2015-09-30 15:09:17 -0700[diff] [blame]410 RADIUS radiusPayload =
411 new RADIUS(RADIUS.RADIUS_CODE_ACCESS_REQUEST,
412 eapPacket.getIdentifier());
Ray Milkey967776a2015-10-07 14:37:17 -0700[diff] [blame]413
414 // set Request Authenticator in StateMachine
415 stateMachine.setRequestAuthenticator(radiusPayload.generateAuthCode());
416
Ray Milkey9eb293f2015-09-30 15:09:17 -0700[diff] [blame]417 radiusPayload.setIdentifier(identifier);
418 radiusPayload.setAttribute(RADIUSAttribute.RADIUS_ATTR_USERNAME,
Ray Milkey967776a2015-10-07 14:37:17 -0700[diff] [blame]419 stateMachine.username());
Ray Milkey9eb293f2015-09-30 15:09:17 -0700[diff] [blame]420
421 radiusPayload.setAttribute(RADIUSAttribute.RADIUS_ATTR_NAS_IP,
Jonathan Hart092dfb22015-11-16 23:05:21 -0800[diff] [blame]422 AaaManager.this.nasIpAddress.getAddress());
Ray Milkey9eb293f2015-09-30 15:09:17 -0700[diff] [blame]423
424 radiusPayload.encapsulateMessage(eapPacket);
Ray Milkey9eb293f2015-09-30 15:09:17 -0700[diff] [blame]425
426 return radiusPayload;
427 }
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]428
429 /**
Jonathan Harta46dddf2015-06-30 15:31:20 -0700[diff] [blame]430 * Handles PAE packets (supplicant).
431 *
432 * @param inPacket Ethernet packet coming from the supplicant
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]433 */
Ray Milkeyf51eba22015-09-25 10:24:23 -0700[diff] [blame]434 private void handleSupplicantPacket(InboundPacket inPacket) throws StateMachineException {
Jonathan Harta46dddf2015-06-30 15:31:20 -0700[diff] [blame]435 Ethernet ethPkt = inPacket.parsed();
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]436 // Where does it come from?
Jonathan Hart092dfb22015-11-16 23:05:21 -0800[diff] [blame]437 MacAddress srcMac = ethPkt.getSourceMAC();
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]438
Jonathan Harta46dddf2015-06-30 15:31:20 -0700[diff] [blame]439 DeviceId deviceId = inPacket.receivedFrom().deviceId();
440 PortNumber portNumber = inPacket.receivedFrom().port();
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]441 String sessionId = deviceId.toString() + portNumber.toString();
Ray Milkeyf61a24e2015-09-24 16:34:02 -0700[diff] [blame]442 StateMachine stateMachine = StateMachine.lookupStateMachineBySessionId(sessionId);
443 if (stateMachine == null) {
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]444 if (deviceService != null) {
445 String nasPortId = deviceService.getPort(inPacket.receivedFrom()).
446 annotations().value(AnnotationKeys.PORT_NAME);
Ray Milkeyf61a24e2015-09-24 16:34:02 -0700[diff] [blame]447
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]448 SubscriberAndDeviceInformation subscriber =
449 subsService.get(nasPortId);
450 if (subscriber != null) {
451 stateMachine = new StateMachine(sessionId, subscriber.cTag());
Amit Ghoshcf39d972017-08-16 08:15:20 +0100[diff] [blame]452 } else {
453 log.error("Could not create new state machine for {}", nasPortId);
454 return;
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]455 }
456 } else {
457 stateMachine = new StateMachine(sessionId, VlanId.vlanId((short) 0));
458 }
459 }
Jonathan Harta46dddf2015-06-30 15:31:20 -0700[diff] [blame]460
461 EAPOL eapol = (EAPOL) ethPkt.getPayload();
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]462
463 switch (eapol.getEapolType()) {
464 case EAPOL.EAPOL_START:
Matt Jeanneret2ff1a782018-06-13 15:24:25 -0400[diff] [blame^]465 log.debug("EAP packet: EAPOL_START");
Ray Milkeyf51eba22015-09-25 10:24:23 -0700[diff] [blame]466 stateMachine.start();
467 stateMachine.setSupplicantConnectpoint(inPacket.receivedFrom());
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]468
Ray Milkeyf51eba22015-09-25 10:24:23 -0700[diff] [blame]469 //send an EAP Request/Identify to the supplicant
470 EAP eapPayload = new EAP(EAP.REQUEST, stateMachine.identifier(), EAP.ATTR_IDENTITY, null);
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]471 if (ethPkt.getVlanID() != Ethernet.VLAN_UNTAGGED) {
472 stateMachine.setPriorityCode(ethPkt.getPriorityCode());
473 }
Jonathan Hart092dfb22015-11-16 23:05:21 -0800[diff] [blame]474 Ethernet eth = buildEapolResponse(srcMac, MacAddress.valueOf(nasMacAddress),
Ray Milkeyf51eba22015-09-25 10:24:23 -0700[diff] [blame]475 ethPkt.getVlanID(), EAPOL.EAPOL_PACKET,
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]476 eapPayload, stateMachine.priorityCode());
Matt Jeanneret2ff1a782018-06-13 15:24:25 -0400[diff] [blame^]477
Jonathan Hart092dfb22015-11-16 23:05:21 -0800[diff] [blame]478 stateMachine.setSupplicantAddress(srcMac);
Ray Milkeyf51eba22015-09-25 10:24:23 -0700[diff] [blame]479 stateMachine.setVlanId(ethPkt.getVlanID());
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]480
Matt Jeanneret2ff1a782018-06-13 15:24:25 -0400[diff] [blame^]481 log.debug("Getting EAP identity from supplicant {}", stateMachine.supplicantAddress().toString());
Ray Milkey967776a2015-10-07 14:37:17 -0700[diff] [blame]482 sendPacketToSupplicant(eth, stateMachine.supplicantConnectpoint());
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]483
484 break;
Qianqian Hub55a1ac2015-12-23 20:44:48 +0800[diff] [blame]485 case EAPOL.EAPOL_LOGOFF:
Matt Jeanneret2ff1a782018-06-13 15:24:25 -0400[diff] [blame^]486 log.debug("EAP packet: EAPOL_LOGOFF");
Ray Milkeyb34b4962016-01-04 10:24:43 -0800[diff] [blame]487 if (stateMachine.state() == StateMachine.STATE_AUTHORIZED) {
488 stateMachine.logoff();
Qianqian Hub55a1ac2015-12-23 20:44:48 +0800[diff] [blame]489 }
490
491 break;
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]492 case EAPOL.EAPOL_PACKET:
Ray Milkeyf51eba22015-09-25 10:24:23 -0700[diff] [blame]493 RADIUS radiusPayload;
Ray Milkey9eb293f2015-09-30 15:09:17 -0700[diff] [blame]494 // check if this is a Response/Identify or a Response/TLS
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]495 EAP eapPacket = (EAP) eapol.getPayload();
496
497 byte dataType = eapPacket.getDataType();
498 switch (dataType) {
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]499
Ray Milkey9eb293f2015-09-30 15:09:17 -0700[diff] [blame]500 case EAP.ATTR_IDENTITY:
Matt Jeanneret2ff1a782018-06-13 15:24:25 -0400[diff] [blame^]501 log.debug("EAP packet: EAPOL_PACKET ATTR_IDENTITY");
Ray Milkey9eb293f2015-09-30 15:09:17 -0700[diff] [blame]502 // request id access to RADIUS
503 stateMachine.setUsername(eapPacket.getData());
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]504
Ray Milkey967776a2015-10-07 14:37:17 -0700[diff] [blame]505 radiusPayload = getRadiusPayload(stateMachine, stateMachine.identifier(), eapPacket);
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]506 radiusPayload = pktCustomizer.customizePacket(radiusPayload, inPacket);
Jonathan Hart092dfb22015-11-16 23:05:21 -0800[diff] [blame]507 radiusPayload.addMessageAuthenticator(AaaManager.this.radiusSecret);
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]508
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]509 sendRadiusPacket(radiusPayload, inPacket);
Ray Milkeyf51eba22015-09-25 10:24:23 -0700[diff] [blame]510
Ray Milkey9eb293f2015-09-30 15:09:17 -0700[diff] [blame]511 // change the state to "PENDING"
512 stateMachine.requestAccess();
513 break;
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]514 case EAP.ATTR_MD5:
Matt Jeanneret2ff1a782018-06-13 15:24:25 -0400[diff] [blame^]515 log.debug("EAP packet: EAPOL_PACKET ATTR_MD5");
Ray Milkey9eb293f2015-09-30 15:09:17 -0700[diff] [blame]516 // verify if the EAP identifier corresponds to the
517 // challenge identifier from the client state
518 // machine.
Ray Milkeyf61a24e2015-09-24 16:34:02 -0700[diff] [blame]519 if (eapPacket.getIdentifier() == stateMachine.challengeIdentifier()) {
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]520 //send the RADIUS challenge response
Ray Milkey967776a2015-10-07 14:37:17 -0700[diff] [blame]521 radiusPayload =
522 getRadiusPayload(stateMachine,
523 stateMachine.identifier(),
524 eapPacket);
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]525 radiusPayload = pktCustomizer.customizePacket(radiusPayload, inPacket);
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]526
Qianqian Hub55a1ac2015-12-23 20:44:48 +0800[diff] [blame]527 if (stateMachine.challengeState() != null) {
528 radiusPayload.setAttribute(RADIUSAttribute.RADIUS_ATTR_STATE,
529 stateMachine.challengeState());
530 }
Jonathan Hart092dfb22015-11-16 23:05:21 -0800[diff] [blame]531 radiusPayload.addMessageAuthenticator(AaaManager.this.radiusSecret);
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]532 sendRadiusPacket(radiusPayload, inPacket);
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]533 }
534 break;
535 case EAP.ATTR_TLS:
Matt Jeanneret2ff1a782018-06-13 15:24:25 -0400[diff] [blame^]536 log.debug("EAP packet: EAPOL_PACKET ATTR_TLS");
Ray Milkey9eb293f2015-09-30 15:09:17 -0700[diff] [blame]537 // request id access to RADIUS
Ray Milkey967776a2015-10-07 14:37:17 -0700[diff] [blame]538 radiusPayload = getRadiusPayload(stateMachine, stateMachine.identifier(), eapPacket);
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]539 radiusPayload = pktCustomizer.customizePacket(radiusPayload, inPacket);
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]540
Qianqian Hub55a1ac2015-12-23 20:44:48 +0800[diff] [blame]541 if (stateMachine.challengeState() != null) {
542 radiusPayload.setAttribute(RADIUSAttribute.RADIUS_ATTR_STATE,
543 stateMachine.challengeState());
544 }
Ray Milkeyf51eba22015-09-25 10:24:23 -0700[diff] [blame]545 stateMachine.setRequestAuthenticator(radiusPayload.generateAuthCode());
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]546
Jonathan Hart092dfb22015-11-16 23:05:21 -0800[diff] [blame]547 radiusPayload.addMessageAuthenticator(AaaManager.this.radiusSecret);
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]548 sendRadiusPacket(radiusPayload, inPacket);
Ray Milkey5493b512015-10-21 12:13:49 -0700[diff] [blame]549
Ray Milkeyf3790b82015-10-21 16:28:08 -0700[diff] [blame]550 if (stateMachine.state() != StateMachine.STATE_PENDING) {
551 stateMachine.requestAccess();
552 }
Ray Milkeyf51eba22015-09-25 10:24:23 -0700[diff] [blame]553
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]554 break;
555 default:
Matt Jeanneret2ff1a782018-06-13 15:24:25 -0400[diff] [blame^]556 log.warn("Unknown EAP packet type");
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]557 return;
558 }
559 break;
560 default:
Matt Jeanneret2ff1a782018-06-13 15:24:25 -0400[diff] [blame^]561 log.debug("Skipping EAPOL message {}", eapol.getEapolType());
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]562 }
563 }
Ray Milkey967776a2015-10-07 14:37:17 -0700[diff] [blame]564 }
565
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]566 /**
567 * Configuration Listener, handles change in configuration.
568 */
Ray Milkeyfcb623d2015-10-01 16:48:18 -0700[diff] [blame]569 private class InternalConfigListener implements NetworkConfigListener {
570
571 /**
Ray Milkeyc9e8dcc2015-12-30 10:31:32 -0800[diff] [blame]572 * Reconfigures the AAA application according to the
573 * configuration parameters passed.
Ray Milkeyfcb623d2015-10-01 16:48:18 -0700[diff] [blame]574 *
575 * @param cfg configuration object
576 */
Jonathan Hart092dfb22015-11-16 23:05:21 -0800[diff] [blame]577 private void reconfigureNetwork(AaaConfig cfg) {
Matt Jeanneret2ff1a782018-06-13 15:24:25 -0400[diff] [blame^]578 log.info("Reconfiguring AaaConfig from config: {}", cfg);
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]579
Ray Milkeyfcb623d2015-10-01 16:48:18 -0700[diff] [blame]580 if (cfg == null) {
Jonathan Hart092dfb22015-11-16 23:05:21 -0800[diff] [blame]581 newCfg = new AaaConfig();
Ray Milkeyfcb623d2015-10-01 16:48:18 -0700[diff] [blame]582 } else {
583 newCfg = cfg;
584 }
585 if (newCfg.nasIp() != null) {
586 nasIpAddress = newCfg.nasIp();
587 }
588 if (newCfg.radiusIp() != null) {
589 radiusIpAddress = newCfg.radiusIp();
590 }
591 if (newCfg.radiusMac() != null) {
592 radiusMacAddress = newCfg.radiusMac();
593 }
594 if (newCfg.nasMac() != null) {
595 nasMacAddress = newCfg.nasMac();
596 }
597 if (newCfg.radiusSecret() != null) {
598 radiusSecret = newCfg.radiusSecret();
599 }
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]600
Deepa Vaddireddye0e10722017-09-27 05:00:10 +0530[diff] [blame]601 boolean reconfigureCustomizer = false;
602 if (customizer == null || !customizer.equals(newCfg.radiusPktCustomizer())) {
603 customizer = newCfg.radiusPktCustomizer();
604 configurePacketCustomizer();
605 reconfigureCustomizer = true;
606 }
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]607
Deepa Vaddireddye0e10722017-09-27 05:00:10 +0530[diff] [blame]608 if (radiusConnectionType == null
609 || reconfigureCustomizer
610 || !radiusConnectionType.equals(newCfg.radiusConnectionType())) {
611 radiusConnectionType = newCfg.radiusConnectionType();
612 if (impl != null) {
613 impl.withdrawIntercepts();
614 impl.clearLocalState();
615 }
616 configureRadiusCommunication();
617 impl.initializeLocalState(newCfg);
618 impl.requestIntercepts();
619 } else if (impl != null) {
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]620 impl.clearLocalState();
621 impl.initializeLocalState(newCfg);
Ray Milkey5d99bd12015-10-06 15:41:30 -0700[diff] [blame]622 }
Ray Milkeyfcb623d2015-10-01 16:48:18 -0700[diff] [blame]623 }
624
625 @Override
626 public void event(NetworkConfigEvent event) {
627
628 if ((event.type() == NetworkConfigEvent.Type.CONFIG_ADDED ||
629 event.type() == NetworkConfigEvent.Type.CONFIG_UPDATED) &&
Jonathan Hart092dfb22015-11-16 23:05:21 -0800[diff] [blame]630 event.configClass().equals(AaaConfig.class)) {
Ray Milkeyfcb623d2015-10-01 16:48:18 -0700[diff] [blame]631
Jonathan Hart092dfb22015-11-16 23:05:21 -0800[diff] [blame]632 AaaConfig cfg = netCfgService.getConfig(appId, AaaConfig.class);
Ray Milkeyfcb623d2015-10-01 16:48:18 -0700[diff] [blame]633 reconfigureNetwork(cfg);
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]634
Matt Jeanneret2ff1a782018-06-13 15:24:25 -0400[diff] [blame^]635 log.info("Reconfigured: {}", cfg.toString());
Ray Milkeyfcb623d2015-10-01 16:48:18 -0700[diff] [blame]636 }
637 }
638 }
Amit Ghoshf739be52017-09-21 15:49:37 +0100[diff] [blame]639
640 private class InternalDeviceListener implements DeviceListener {
641 @Override
642 public void event(DeviceEvent event) {
643
644 switch (event.type()) {
645 case PORT_REMOVED:
646 DeviceId devId = event.subject().id();
647 PortNumber portNumber = event.port().number();
648 String sessionId = devId.toString() + portNumber.toString();
649
650 Map<String, StateMachine> sessionIdMap = StateMachine.sessionIdMap();
651 StateMachine removed = sessionIdMap.remove(sessionId);
652 if (removed != null) {
653 StateMachine.deleteStateMachineMapping(removed);
654 }
655
656 break;
657 default:
658 return;
659 }
660 }
661 }
Ari Saha89831742015-06-26 10:31:48 -0700[diff] [blame]662}