Gitiles
Code Review Sign In
gerrit.opencord.org / aaa / bbc1ffbb5aff84d0ee74c71ddd7c51d9a71bd212 / . / app / src / main / java / org / opencord / aaa / impl / SocketBasedRadiusCommunicator.java
blob: 792b7e41ee24aa4b156c2870514d5551bca3da1a [file] [log] [blame]
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]1/*
2 * Copyright 2017-present Open Networking Foundation
3 *
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
7 *
8 * http://www.apache.org/licenses/LICENSE-2.0
9 *
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
15 */
Matteo Scandolocf847b82019-04-26 15:00:00 -0700[diff] [blame]16package org.opencord.aaa.impl;
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]17
18import org.onlab.packet.DeserializationException;
19import org.onlab.packet.EthType;
20import org.onlab.packet.Ethernet;
21import org.onlab.packet.RADIUS;
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]22import org.onosproject.core.ApplicationId;
23import org.onosproject.net.flow.DefaultTrafficSelector;
24import org.onosproject.net.flow.TrafficSelector;
25import org.onosproject.net.packet.InboundPacket;
26import org.onosproject.net.packet.PacketContext;
27import org.onosproject.net.packet.PacketService;
Matteo Scandolocf847b82019-04-26 15:00:00 -0700[diff] [blame]28import org.opencord.aaa.AaaConfig;
29import org.opencord.aaa.RadiusCommunicator;
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]30import org.slf4j.Logger;
31
Shubham Sharma4900ce62019-06-19 14:18:50 +0000[diff] [blame]32import java.io.IOException;
33import java.net.DatagramPacket;
34import java.net.DatagramSocket;
35import java.net.InetAddress;
36import java.net.InetSocketAddress;
Matteo Scandolobbc1ffb2020-10-16 15:56:20 -0700[diff] [blame^]37import java.net.SocketException;
Shubham Sharma4900ce62019-06-19 14:18:50 +0000[diff] [blame]38import java.net.UnknownHostException;
39import java.util.concurrent.ExecutorService;
Shubham Sharma4900ce62019-06-19 14:18:50 +0000[diff] [blame]40
Matteo Scandolobbc1ffb2020-10-16 15:56:20 -0700[diff] [blame^]41import static java.util.concurrent.Executors.newSingleThreadExecutor;
42import static org.onlab.util.Tools.groupedThreads;
Shubham Sharma4900ce62019-06-19 14:18:50 +0000[diff] [blame]43import static org.onosproject.net.packet.PacketPriority.CONTROL;
44import static org.slf4j.LoggerFactory.getLogger;
Jonathan Hartf935b122018-07-11 16:16:02 -0700[diff] [blame]45
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]46/**
47 * Handles Socket based communication with the RADIUS server.
48 */
49public class SocketBasedRadiusCommunicator implements RadiusCommunicator {
50
51 // for verbose output
52 private final Logger log = getLogger(getClass());
53
54 // our unique identifier
55 private ApplicationId appId;
56
57 // to receive Packet-in events that we'll respond to
58 PacketService packetService;
59
60 // Socket used for UDP communications with RADIUS server
61 private DatagramSocket radiusSocket;
62
Jonathan Hartf935b122018-07-11 16:16:02 -0700[diff] [blame]63 private String radiusHost;
64
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]65 // Parsed RADIUS server addresses
66 protected InetAddress radiusIpAddress;
67
68 // RADIUS server TCP port number
69 protected short radiusServerPort;
70
71 // Executor for RADIUS communication thread
72 private ExecutorService executor;
73
Matteo Scandolobbc1ffb2020-10-16 15:56:20 -0700[diff] [blame^]74 // Worker thread for RADIUS communication
75 private ExecutorService worker;
76
77 // To track the received packets
78 int packetNumber = 1;
79
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]80 AaaManager aaaManager;
81
82 SocketBasedRadiusCommunicator(ApplicationId appId, PacketService pktService,
83 AaaManager aaaManager) {
84 this.appId = appId;
85 this.packetService = pktService;
86 this.aaaManager = aaaManager;
87 }
88
89 @Override
90 public void initializeLocalState(AaaConfig newCfg) {
91 if (newCfg.radiusIp() != null) {
92 radiusIpAddress = newCfg.radiusIp();
93 }
94 radiusServerPort = newCfg.radiusServerUdpPort();
Jonathan Hartf935b122018-07-11 16:16:02 -0700[diff] [blame]95 radiusHost = newCfg.radiusHostName();
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]96
97 try {
98 radiusSocket = new DatagramSocket(null);
99 radiusSocket.setReuseAddress(true);
100 radiusSocket.bind(new InetSocketAddress(radiusServerPort));
101 } catch (Exception ex) {
102 log.error("Can't open RADIUS socket", ex);
103 }
104
Matt Jeanneret2ff1a782018-06-13 15:24:25 -0400[diff] [blame]105 log.info("Remote RADIUS Server: {}:{}", radiusIpAddress, radiusServerPort);
106
Matteo Scandolobbc1ffb2020-10-16 15:56:20 -0700[diff] [blame^]107 executor = newSingleThreadExecutor(groupedThreads("onos/aaa", "radius-%d", log));
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]108 executor.execute(radiusListener);
Matteo Scandolobbc1ffb2020-10-16 15:56:20 -0700[diff] [blame^]109 worker = newSingleThreadExecutor(groupedThreads("onos/aaa", "radius-packet-%d", log));
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]110 }
111
112 @Override
113 public void clearLocalState() {
Matteo Scandoloe033c262020-10-14 11:37:39 -0700[diff] [blame]114 log.info("Closing RADIUS socket: {}:{}", radiusIpAddress, radiusServerPort);
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]115 radiusSocket.close();
116 executor.shutdownNow();
Matteo Scandolobbc1ffb2020-10-16 15:56:20 -0700[diff] [blame^]117 worker.shutdownNow();
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]118 }
119
120 @Override
Deepa Vaddireddyd87f2872017-10-24 07:58:11 +0000[diff] [blame]121 public void deactivate() {
122 clearLocalState();
123 }
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]124
125 @Override
126 public void requestIntercepts() {
127 TrafficSelector.Builder selector = DefaultTrafficSelector.builder();
128 selector.matchEthType(EthType.EtherType.EAPOL.ethType().toShort());
129 packetService.requestPackets(selector.build(), CONTROL, appId);
130 }
131
132 @Override
133 public void withdrawIntercepts() {
134 TrafficSelector.Builder selector = DefaultTrafficSelector.builder();
135 selector.matchEthType(EthType.EtherType.EAPOL.ethType().toShort());
136 packetService.cancelPackets(selector.build(), CONTROL, appId);
137 }
138
139 @Override
140 public void sendRadiusPacket(RADIUS radiusPacket, InboundPacket inPkt) {
141 try {
142 final byte[] data = radiusPacket.serialize();
143 final DatagramSocket socket = radiusSocket;
144
Jonathan Hartf935b122018-07-11 16:16:02 -0700[diff] [blame]145 try {
146 InetAddress address;
147 if (radiusHost != null) {
148 address = InetAddress.getByName(radiusHost);
149 } else {
150 address = radiusIpAddress;
151 }
152 DatagramPacket packet =
153 new DatagramPacket(data, data.length, address, radiusServerPort);
Saurav Das987441a2018-09-18 16:33:47 -0700[diff] [blame]154 if (log.isTraceEnabled()) {
155 log.trace("Sending packet {} to Radius Server {}:{} using socket",
156 radiusPacket, address, radiusServerPort);
157 }
Jonathan Hartf935b122018-07-11 16:16:02 -0700[diff] [blame]158 socket.send(packet);
Shubham Sharma4900ce62019-06-19 14:18:50 +0000[diff] [blame]159 aaaManager.radiusOperationalStatusService.setStatusServerReqSent(true);
Jonathan Hartf935b122018-07-11 16:16:02 -0700[diff] [blame]160 } catch (UnknownHostException uhe) {
161 log.warn("Unable to resolve host {}", radiusHost);
Shubham Sharma4900ce62019-06-19 14:18:50 +0000[diff] [blame]162 aaaManager.radiusOperationalStatusService.setStatusServerReqSent(false);
Jonathan Hartf935b122018-07-11 16:16:02 -0700[diff] [blame]163 }
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]164 } catch (IOException e) {
Matteo Scandolobbc1ffb2020-10-16 15:56:20 -0700[diff] [blame^]165 log.error("Cannot send packet to RADIUS server", e);
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]166 }
167 }
168
Matteo Scandolobbc1ffb2020-10-16 15:56:20 -0700[diff] [blame^]169 // in the socket base case we don't care about packets coming from the server as nothing meaningful will be
170 // received from the southbound
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]171 @Override
172 public void handlePacketFromServer(PacketContext context) {
173 InboundPacket pkt = context.inPacket();
174 Ethernet ethPkt = pkt.parsed();
Saurav Das987441a2018-09-18 16:33:47 -0700[diff] [blame]175 if (log.isTraceEnabled() && ethPkt.getEtherType() != Ethernet.TYPE_LLDP
176 && ethPkt.getEtherType() != Ethernet.TYPE_BSN) {
177 log.trace("Skipping Ethernet packet type {}",
178 EthType.EtherType.lookup(ethPkt.getEtherType()));
179 }
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]180 }
181
Matteo Scandolobbc1ffb2020-10-16 15:56:20 -0700[diff] [blame^]182 // Handle radius packet for further processing
183 private void handleRadiusPacketInternal(DatagramPacket inboundBasePacket) {
184 RADIUS inboundRadiusPacket;
185 aaaManager.checkForPacketFromUnknownServer(inboundBasePacket.getAddress().getHostAddress());
186 log.debug("Packet #{} received", packetNumber++);
187 try {
188 inboundRadiusPacket = RADIUS.deserializer().deserialize(inboundBasePacket.getData(),
189 0, inboundBasePacket.getLength());
190 if (log.isTraceEnabled()) {
191 log.trace("Handling inboundRadiusPacket {} with identifier {}", inboundRadiusPacket,
192 inboundRadiusPacket.getIdentifier() & 0xff);
193 }
194 aaaManager.aaaStatisticsManager.handleRoundtripTime(inboundRadiusPacket.getIdentifier());
195 aaaManager.handleRadiusPacket(inboundRadiusPacket);
196 } catch (DeserializationException dex) {
197 aaaManager.aaaStatisticsManager.getAaaStats().increaseMalformedResponsesRx();
198 log.warn("Cannot deserialize packet", dex);
199 }
200 }
201
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]202 class RadiusListener implements Runnable {
203
204 @Override
205 public void run() {
206 boolean done = false;
Matteo Scandolobbc1ffb2020-10-16 15:56:20 -0700[diff] [blame^]207 try {
208 log.info("UDP listener thread starting up, socket buffer size {}",
209 radiusSocket.getReceiveBufferSize());
210 } catch (SocketException e) {
211 log.error("Socket exception", e);
212 }
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]213 while (!done) {
214 try {
215 byte[] packetBuffer = new byte[RADIUS.RADIUS_MAX_LENGTH];
Matteo Scandolobbc1ffb2020-10-16 15:56:20 -0700[diff] [blame^]216 DatagramPacket inboundBasePacket = new DatagramPacket(packetBuffer, packetBuffer.length);
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]217 DatagramSocket socket = radiusSocket;
218 socket.receive(inboundBasePacket);
Matteo Scandolobbc1ffb2020-10-16 15:56:20 -0700[diff] [blame^]219 worker.execute(() -> handleRadiusPacketInternal(inboundBasePacket));
220
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]221 } catch (IOException e) {
Matteo Scandoloe033c262020-10-14 11:37:39 -0700[diff] [blame]222 log.warn("Socket was closed, exiting listener thread");
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]223 done = true;
Matteo Scandolobbc1ffb2020-10-16 15:56:20 -0700[diff] [blame^]224 } catch (Exception e) {
225 log.error("RadiusListener thread thrown an exception: {}", e.getMessage(), e);
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]226 }
227 }
Matteo Scandoloe033c262020-10-14 11:37:39 -0700[diff] [blame]228 log.info("UDP listener thread shutting down");
Amit Ghoshc9ac1e52017-07-28 12:31:18 +0100[diff] [blame]229 }
230 }
231
232 RadiusListener radiusListener = new RadiusListener();
233}