2 * radclient.c General radius packet debug tool.
6 * This program is free software; you can redistribute it and/or modify
7 * it under the terms of the GNU General Public License as published by
8 * the Free Software Foundation; either version 2 of the License, or
9 * (at your option) any later version.
11 * This program is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 * GNU General Public License for more details.
16 * You should have received a copy of the GNU General Public License
17 * along with this program; if not, write to the Free Software
18 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
20 * Copyright 2000 The FreeRADIUS server project
21 * Copyright 2000 Miquel van Smoorenburg <miquels@cistron.nl>
22 * Copyright 2000 Alan DeKok <aland@ox.org>
24 static const char rcsid[] = "$Id$";
38 #include <sys/socket.h>
40 #ifdef HAVE_NETINET_IN_H
41 # include <netinet/in.h>
44 #ifdef HAVE_SYS_SELECT_H
45 # include <sys/select.h>
57 #include "libradius.h"
59 static int retries = 10;
60 static float timeout = 3;
61 static const char *secret = NULL;
62 static int do_output = 1;
63 static int totalapp = 0;
64 static int totaldeny = 0;
65 static int totallost = 0;
67 static int server_port = 0;
68 static int packet_code = 0;
69 static uint32_t server_ipaddr = 0;
70 static int resend_count = 1;
74 static int radius_id[256];
75 static int last_used_id = -1;
77 static rbtree_t *filename_tree = NULL;
78 static rbtree_t *request_tree = NULL;
80 static int sleep_time = -1;
82 typedef struct radclient_t {
83 struct radclient_t *prev;
84 struct radclient_t *next;
87 int packet_number; /* in the file */
90 RADIUS_PACKET *request;
97 static radclient_t *radclient_head = NULL;
98 static radclient_t *radclient_tail = NULL;
101 static void NEVER_RETURNS usage(void)
103 fprintf(stderr, "Usage: radclient [options] server[:port] <command> [<secret>]\n");
105 fprintf(stderr, " <command> One of auth, acct, status, coa, or disconnect.\n");
106 fprintf(stderr, " -c count Send each packet 'count' times.\n");
107 fprintf(stderr, " -d raddb Set dictionary directory.\n");
108 fprintf(stderr, " -f file Read packets from file, not stdin.\n");
109 fprintf(stderr, " -i id Set request id to 'id'. Values may be 0..255\n");
110 fprintf(stderr, " -n num Send N requests/s\n");
111 fprintf(stderr, " -p num Send 'num' packets from a file in parallel.\n");
112 fprintf(stderr, " -q Do not print anything out.\n");
113 fprintf(stderr, " -r retries If timeout, retry sending the packet 'retries' times.\n");
114 fprintf(stderr, " -s Print out summary information of auth results.\n");
115 fprintf(stderr, " -S file read secret from file, not command line.\n");
116 fprintf(stderr, " -t timeout Wait 'timeout' seconds before retrying (may be a floating point number).\n");
117 fprintf(stderr, " -v Show program version information.\n");
118 fprintf(stderr, " -x Debugging mode.\n");
124 * Free a radclient struct, which may (or may not)
125 * already be in the list.
127 static void radclient_free(radclient_t *radclient)
129 radclient_t *prev, *next;
131 if (radclient->request) rad_free(&radclient->request);
132 if (radclient->reply) rad_free(&radclient->reply);
134 prev = radclient->prev;
135 next = radclient->next;
138 assert(radclient_head != radclient);
140 } else if (radclient_head) {
141 assert(radclient_head == radclient);
142 radclient_head = next;
146 assert(radclient_tail != radclient);
148 } else if (radclient_tail) {
149 assert(radclient_tail == radclient);
150 radclient_tail = prev;
157 * Initialize a radclient data structure
159 static radclient_t *radclient_init(const char *filename)
163 radclient_t *start, *radclient, *prev = NULL;
165 int packet_number = 1;
168 assert(filename != NULL);
171 * Determine where to read the VP's from.
173 if (strcmp(filename, "-") != 0) {
174 fp = fopen(filename, "r");
176 fprintf(stderr, "radclient: Error opening %s: %s\n",
177 filename, strerror(errno));
185 * Loop until the file is done.
191 radclient = malloc(sizeof(*radclient));
193 perror("radclient: X");
194 if (fp != stdin) fclose(fp);
195 return NULL; /* memory leak "start" */
197 memset(radclient, 0, sizeof(*radclient));
199 radclient->request = rad_alloc(1);
200 if (!radclient->request) {
201 librad_perror("radclient: X");
202 radclient_free(radclient);
203 if (fp != stdin) fclose(fp);
204 return NULL; /* memory leak "start" */
207 radclient->filename = filename;
208 radclient->request->id = -1; /* allocate when sending */
209 radclient->packet_number = packet_number++;
214 radclient->request->vps = readvp2(fp, &filedone, "radclient: X");
215 if (!radclient->request->vps) {
216 radclient_free(radclient);
217 if (fp != stdin) fclose(fp);
218 return start; /* done: return the list */
222 * Keep a copy of the the User-Password attribute.
224 if ((vp = pairfind(radclient->request->vps, PW_PASSWORD)) != NULL) {
225 strNcpy(radclient->password, (char *)vp->strvalue, sizeof(radclient->password));
227 * Otherwise keep a copy of the CHAP-Password attribute.
229 } else if ((vp = pairfind(radclient->request->vps, PW_CHAP_PASSWORD)) != NULL) {
230 strNcpy(radclient->password, (char *)vp->strvalue, sizeof(radclient->password));
232 radclient->password[0] = '\0';
236 * Fix up Digest-Attributes issues
238 for (vp = radclient->request->vps; vp != NULL; vp = vp->next) {
239 switch (vp->attribute) {
244 * Allow it to set the packet type in
245 * the attributes read from the file.
248 radclient->request->code = vp->lvalue;
251 case PW_PACKET_DST_PORT:
252 radclient->request->dst_port = (vp->lvalue & 0xffff);
255 case PW_DIGEST_REALM:
256 case PW_DIGEST_NONCE:
257 case PW_DIGEST_METHOD:
260 case PW_DIGEST_ALGORITHM:
261 case PW_DIGEST_BODY_DIGEST:
262 case PW_DIGEST_CNONCE:
263 case PW_DIGEST_NONCE_COUNT:
264 case PW_DIGEST_USER_NAME:
266 memmove(&vp->strvalue[2], &vp->strvalue[0], vp->length);
267 vp->strvalue[0] = vp->attribute - PW_DIGEST_REALM + 1;
269 vp->strvalue[1] = vp->length;
270 vp->attribute = PW_DIGEST_ATTRIBUTES;
273 } /* loop over the VP's we read in */
279 prev->next = radclient;
280 radclient->prev = prev;
283 } while (!filedone); /* loop until the file is done. */
285 if (fp != stdin) fclose(fp);
295 * Sanity check each argument.
297 static int radclient_sane(radclient_t *radclient)
299 if (radclient->request->dst_port == 0) {
300 radclient->request->dst_port = server_port;
302 radclient->request->dst_ipaddr = server_ipaddr;
304 if (radclient->request->code == 0) {
305 if (packet_code == -1) {
306 fprintf(stderr, "radclient: Request was \"auto\", but request %d in file %s did not contain Packet-Type\n",
307 radclient->packet_number, radclient->filename);
311 radclient->request->code = packet_code;
313 radclient->request->sockfd = sockfd;
320 * For request handline.
322 static int filename_cmp(const void *one, const void *two)
324 return strcmp((const char *) one, (const char *) two);
327 static int filename_walk(void *context, void *data)
329 const char *filename = data;
330 radclient_t *radclient;
332 context = context; /* -Wunused */
335 * Initialize the request we're about
338 radclient = radclient_init(filename);
343 if (!radclient_head) {
344 assert(radclient_tail == NULL);
345 radclient_head = radclient;
347 assert(radclient_tail->next == NULL);
348 radclient_tail->next = radclient;
349 radclient->prev = radclient_tail;
353 * We may have had a list of "radclient" structures
356 while (radclient->next) radclient = radclient->next;
357 radclient_tail = radclient;
364 * Compare two RADIUS_PACKET data structures, based on a number
367 static int request_cmp(const void *one, const void *two)
369 const radclient_t *a = one;
370 const radclient_t *b = two;
373 * The following code looks unreasonable, but it's
374 * the only way to make the comparisons work.
376 if (a->request->id < b->request->id) return -1;
377 if (a->request->id > b->request->id) return +1;
379 if (a->request->dst_ipaddr < b->request->dst_ipaddr) return -1;
380 if (a->request->dst_ipaddr > b->request->dst_ipaddr) return +1;
382 if (a->request->dst_port < b->request->dst_port) return -1;
383 if (a->request->dst_port > b->request->dst_port) return +1;
386 * Everything's equal. Say so.
394 static void request_free(void *data)
396 radclient_t *radclient = (radclient_t *) data;
398 if (!radclient || !radclient->request ||
399 (radclient->request->id < 0)) {
404 * One more unused RADIUS ID.
406 radius_id[radclient->request->id] = 0;
407 radclient->request->id = -1;
410 * If we've already sent a packet, free up the old one,
411 * and ensure that the next packet has a unique
412 * authentication vector.
414 if (radclient->request->data) {
415 free(radclient->request->data);
416 radclient->request->data = NULL;
419 if (radclient->reply) rad_free(&radclient->reply);
426 static int send_one_packet(radclient_t *radclient)
430 assert(radclient->done == 0);
433 * Remember when we have to wake up, to re-send the
434 * request, of we didn't receive a response.
436 if ((sleep_time == -1) ||
437 (sleep_time > (int) timeout)) {
438 sleep_time = (int) timeout;
442 * Haven't sent the packet yet. Initialize it.
444 if (radclient->request->id == -1) {
447 assert(radclient->reply == NULL);
450 * Find a free packet Id
452 for (i = 0; i < 256; i++) {
453 if (radius_id[(last_used_id + i) & 0xff] == 0) {
454 last_used_id = (last_used_id + i) & 0xff;
455 radius_id[last_used_id] = 1;
456 radclient->request->id = last_used_id++;
463 * Didn't find a free packet ID, we're not done,
464 * we don't sleep, and we stop trying to process
473 assert(radclient->request->id != -1);
474 assert(radclient->request->data == NULL);
476 librad_md5_calc(radclient->request->vector, radclient->request->vector,
477 sizeof(radclient->request->vector));
480 * Update the password, so it can be encrypted with the
481 * new authentication vector.
483 if (radclient->password[0] != '\0') {
486 if ((vp = pairfind(radclient->request->vps, PW_PASSWORD)) != NULL) {
487 strNcpy((char *)vp->strvalue, radclient->password, sizeof(vp->strvalue));
488 vp->length = strlen(vp->strvalue);
490 } else if ((vp = pairfind(radclient->request->vps, PW_CHAP_PASSWORD)) != NULL) {
491 strNcpy((char *)vp->strvalue, radclient->password, sizeof(vp->strvalue));
492 vp->length = strlen(vp->strvalue);
494 rad_chap_encode(radclient->request, (char *) vp->strvalue, radclient->request->id, vp);
499 radclient->timestamp = time(NULL);
500 radclient->tries = 1;
504 * Duplicate found. Serious error!
506 if (rbtree_insert(request_tree, radclient) == 0) {
510 } else { /* radclient->request->id >= 0 */
511 time_t now = time(NULL);
514 * FIXME: Accounting packets are never retried!
515 * The Acct-Delay-Time attribute is updated to
516 * reflect the delay, and the packet is re-sent
521 * Not time for a retry, do so.
523 if ((now - radclient->timestamp) < timeout) {
525 * When we walk over the tree sending
526 * packets, we update the minimum time
529 if ((sleep_time == -1) ||
530 (sleep_time > (now - radclient->timestamp))) {
531 sleep_time = now - radclient->timestamp;
537 * We're not trying later, maybe the packet is done.
539 if (radclient->tries == retries) {
541 assert(radclient->request->id >= 0);
544 * Delete the request from the tree of
545 * outstanding requests.
547 node = rbtree_find(request_tree, radclient);
548 assert(node != NULL);
550 fprintf(stderr, "radclient: no response from server for ID %d\n", radclient->request->id);
551 rbtree_delete(request_tree, node);
554 * Normally we mark it "done" when we've received
555 * the response, but this is a special case.
557 if (radclient->resend == resend_count) {
565 * We are trying later.
567 radclient->timestamp = now;
575 if (rad_send(radclient->request, NULL, secret) < 0) {
576 fprintf(stderr, "radclient: Failed to send packet for ID %d: %s\n",
577 radclient->request->id, librad_errstr);
584 * Receive one packet, maybe.
586 static int recv_one_packet(int wait_time)
590 radclient_t myclient, *radclient;
591 RADIUS_PACKET myrequest, *reply;
595 /* And wait for reply, timing out as necessary */
597 FD_SET(sockfd, &set);
599 if (wait_time <= 0) {
602 tv.tv_sec = wait_time;
607 * No packet was received.
609 if (select(sockfd + 1, &set, NULL, NULL, &tv) != 1) {
614 * Look for the packet.
616 reply = rad_recv(sockfd);
618 fprintf(stderr, "radclient: received bad packet: %s\n",
620 return -1; /* bad packet */
623 myclient.request = &myrequest;
624 myrequest.id = reply->id;
625 myrequest.dst_ipaddr = reply->src_ipaddr;
626 myrequest.dst_port = reply->src_port;
628 node = rbtree_find(request_tree, &myclient);
630 fprintf(stderr, "radclient: received response to request we did not send.\n");
632 return -1; /* got reply to packet we didn't send */
635 radclient = rbtree_node2data(request_tree, node);
636 assert(radclient != NULL);
637 rbtree_delete(request_tree, node);
638 assert(radclient->request->id == -1);
639 assert(radclient->request->data == NULL);
641 assert(radclient->reply == NULL);
642 radclient->reply = reply;
645 * FIXME: Do stuff to process the reply.
647 if (rad_verify(reply, radclient->request, secret) != 0) {
648 librad_perror("rad_verify");
650 goto packet_done; /* shared secret is incorrect */
653 if (rad_decode(reply, radclient->request, secret) != 0) {
654 librad_perror("rad_decode");
656 goto packet_done; /* shared secret is incorrect */
659 /* libradius debug already prints out the value pairs for us */
660 if (!librad_debug && do_output) {
661 printf("Received response ID %d, code %d, length = %d\n",
662 reply->id, reply->code, reply->data_len);
663 vp_printlist(stdout, reply->vps);
665 if (reply->code != PW_AUTHENTICATION_REJECT) {
672 rad_free(&radclient->reply);
675 * Once we've sent the packet as many times as requested,
678 if (radclient->resend == resend_count) {
679 assert((node = rbtree_find(request_tree, radclient)) == NULL);
686 static int getport(const char *name)
690 svp = getservbyname (name, "udp");
695 return ntohs(svp->s_port);
698 int main(int argc, char **argv)
702 const char *radius_dir = RADDBDIR;
703 char filesecret[256];
712 filename_tree = rbtree_create(filename_cmp, NULL, 0);
713 if (!filename_tree) {
714 fprintf(stderr, "radclient: Out of memory\n");
718 request_tree = rbtree_create(request_cmp, request_free, 0);
720 fprintf(stderr, "radclient: Out of memory\n");
724 while ((c = getopt(argc, argv, "c:d:f:hi:n:p:qr:sS:t:vx")) != EOF) switch(c) {
726 if (!isdigit((int) *optarg))
728 resend_count = atoi(optarg);
734 rbtree_insert(filename_tree, optarg);
737 if (!isdigit((int) *optarg))
739 last_used_id = atoi(optarg);
740 if ((last_used_id < 0) || (last_used_id > 255)) {
746 persec = atoi(optarg);
747 if (persec <= 0) usage();
751 parallel = atoi(optarg);
752 if (parallel <= 0) usage();
759 if (!isdigit((int) *optarg))
761 retries = atoi(optarg);
762 if ((retries == 0) || (retries > 1000)) usage();
768 fp = fopen(optarg, "r");
770 fprintf(stderr, "radclient: Error opening %s: %s\n",
771 optarg, strerror(errno));
774 if (fgets(filesecret, sizeof(filesecret), fp) == NULL) {
775 fprintf(stderr, "radclient: Error reading %s: %s\n",
776 optarg, strerror(errno));
781 /* truncate newline */
782 p = filesecret + strlen(filesecret) - 1;
783 while ((p >= filesecret) &&
789 if (strlen(filesecret) < 2) {
790 fprintf(stderr, "radclient: Secret in %s is too short\n", optarg);
796 if (!isdigit((int) *optarg))
798 timeout = atof(optarg);
801 printf("radclient: $Id$ built on " __DATE__ " at " __TIME__ "\n");
812 argc -= (optind - 1);
813 argv += (optind - 1);
816 ((secret == NULL) && (argc < 4))) {
820 if (dict_init(radius_dir, RADIUS_DICTIONARY) < 0) {
821 librad_perror("radclient");
826 * Strip port from hostname if needed.
828 if ((p = strchr(argv[1], ':')) != NULL) {
830 server_port = atoi(p);
836 if ((sockfd = socket(AF_INET, SOCK_DGRAM, 0)) < 0) {
837 perror("radclient: socket: ");
840 memset(radius_id, 0, sizeof(radius_id));
843 * See what kind of request we want to send.
845 if (strcmp(argv[2], "auth") == 0) {
846 if (server_port == 0) server_port = getport("radius");
847 if (server_port == 0) server_port = PW_AUTH_UDP_PORT;
848 packet_code = PW_AUTHENTICATION_REQUEST;
850 } else if (strcmp(argv[2], "challenge") == 0) {
851 if (server_port == 0) server_port = getport("radius");
852 if (server_port == 0) server_port = PW_AUTH_UDP_PORT;
853 packet_code = PW_ACCESS_CHALLENGE;
855 } else if (strcmp(argv[2], "acct") == 0) {
856 if (server_port == 0) server_port = getport("radacct");
857 if (server_port == 0) server_port = PW_ACCT_UDP_PORT;
858 packet_code = PW_ACCOUNTING_REQUEST;
861 } else if (strcmp(argv[2], "status") == 0) {
862 if (server_port == 0) server_port = getport("radius");
863 if (server_port == 0) server_port = PW_AUTH_UDP_PORT;
864 packet_code = PW_STATUS_SERVER;
866 } else if (strcmp(argv[2], "disconnect") == 0) {
867 if (server_port == 0) server_port = PW_POD_UDP_PORT;
868 packet_code = PW_DISCONNECT_REQUEST;
870 } else if (strcmp(argv[2], "coa") == 0) {
871 if (server_port == 0) server_port = PW_POD_UDP_PORT;
872 packet_code = PW_COA_REQUEST;
874 } else if (strcmp(argv[2], "auto") == 0) {
877 } else if (isdigit((int) argv[2][0])) {
878 if (server_port == 0) server_port = getport("radius");
879 if (server_port == 0) server_port = PW_AUTH_UDP_PORT;
880 packet_code = atoi(argv[2]);
888 server_ipaddr = ip_getaddr(argv[1]);
889 if (server_ipaddr == INADDR_NONE) {
890 fprintf(stderr, "radclient: Failed to find IP address for host %s\n", argv[1]);
897 if (argv[3]) secret = argv[3];
900 * If no '-f' is specified, we're reading from stdin.
902 if (rbtree_num_elements(filename_tree) == 0) {
903 rbtree_insert(filename_tree, "-");
907 * Walk over the list of filenames, creating the requests.
909 if (rbtree_walk(filename_tree, InOrder, filename_walk, NULL) != 0) {
914 * No packets read. Die.
916 if (!radclient_head) {
917 fprintf(stderr, "radclient: Nothing to send.\n");
922 * Walk over the list of packets, sanity checking
925 for (this = radclient_head; this != NULL; this = this->next) {
926 if (radclient_sane(this) != 0) {
931 if (last_used_id < 0) last_used_id = getpid() & 0xff;
934 * Walk over the packets to send, until
937 * FIXME: This currently busy-loops until it receives
938 * all of the packets. It should really have some sort of
939 * send packet, get time to wait, select for time, etc.
945 const char *filename = NULL;
951 * Walk over the packets, sending them.
954 for (this = radclient_head; this != NULL; this = next) {
958 * If there's a packet to receive,
959 * receive it, but don't wait for a
965 * This packet is done. Delete it.
968 radclient_free(this);
973 * Packets from multiple '-f' are sent
976 * Packets from one file are sent in
977 * series, unless '-p' is specified, in
978 * which case N packets from each file
979 * are sent in parallel.
981 if (this->filename != filename) {
982 filename = this->filename;
990 * Send the current packet.
992 send_one_packet(this);
995 * Wait a little before sending
996 * the next packet, if told to.
1002 * Don't sleep elsewhere.
1011 tv.tv_usec = 1000000/persec;
1015 * Sleep for milliseconds,
1018 * If we get an error or
1019 * a signal, treat it like
1022 select(0, NULL, NULL, NULL, &tv);
1026 * If we haven't sent this packet
1027 * often enough, we're not done,
1028 * and we shouldn't sleep.
1030 if (this->resend < resend_count) {
1034 } else { /* haven't sent this packet, we're not done */
1035 assert(this->done == 0);
1036 assert(this->reply == NULL);
1042 * Still have outstanding requests.
1044 if (rbtree_num_elements(request_tree) > 0) {
1051 * Nothing to do until we receive a request, so
1052 * sleep until then. Once we receive one packet,
1053 * we go back, and walk through the whole list again,
1054 * sending more packets (if necessary), and updating
1057 if (!done && (sleep_time > 0)) {
1058 recv_one_packet(sleep_time);
1062 rbtree_free(filename_tree);
1063 rbtree_free(request_tree);
1066 printf("\n\t Total approved auths: %d\n", totalapp);
1067 printf("\t Total denied auths: %d\n", totaldeny);
1068 printf("\t Total lost auths: %d\n", totallost);