radius_example.c 3.7 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160
  1. /*
  2. * Example application using RADIUS client as a library
  3. * Copyright (c) 2007, Jouni Malinen <j@w1.fi>
  4. *
  5. * This program is free software; you can redistribute it and/or modify
  6. * it under the terms of the GNU General Public License version 2 as
  7. * published by the Free Software Foundation.
  8. *
  9. * Alternatively, this software may be distributed under the terms of BSD
  10. * license.
  11. *
  12. * See README and COPYING for more details.
  13. */
  14. #include "includes.h"
  15. #include "common.h"
  16. #include "eloop.h"
  17. #include "radius/radius.h"
  18. #include "radius/radius_client.h"
  19. extern int wpa_debug_level;
  20. struct radius_ctx {
  21. struct radius_client_data *radius;
  22. struct hostapd_radius_servers conf;
  23. u8 radius_identifier;
  24. struct in_addr own_ip_addr;
  25. };
  26. static void hostapd_logger_cb(void *ctx, const u8 *addr, unsigned int module,
  27. int level, const char *txt, size_t len)
  28. {
  29. printf("%s\n", txt);
  30. }
  31. /* Process the RADIUS frames from Authentication Server */
  32. static RadiusRxResult receive_auth(struct radius_msg *msg,
  33. struct radius_msg *req,
  34. const u8 *shared_secret,
  35. size_t shared_secret_len,
  36. void *data)
  37. {
  38. /* struct radius_ctx *ctx = data; */
  39. printf("Received RADIUS Authentication message; code=%d\n",
  40. radius_msg_get_hdr(msg)->code);
  41. /* We're done for this example, so request eloop to terminate. */
  42. eloop_terminate();
  43. return RADIUS_RX_PROCESSED;
  44. }
  45. static void start_example(void *eloop_ctx, void *timeout_ctx)
  46. {
  47. struct radius_ctx *ctx = eloop_ctx;
  48. struct radius_msg *msg;
  49. printf("Sending a RADIUS authentication message\n");
  50. ctx->radius_identifier = radius_client_get_id(ctx->radius);
  51. msg = radius_msg_new(RADIUS_CODE_ACCESS_REQUEST,
  52. ctx->radius_identifier);
  53. if (msg == NULL) {
  54. printf("Could not create net RADIUS packet\n");
  55. return;
  56. }
  57. radius_msg_make_authenticator(msg, (u8 *) ctx, sizeof(*ctx));
  58. if (!radius_msg_add_attr(msg, RADIUS_ATTR_USER_NAME,
  59. (u8 *) "user", 4)) {
  60. printf("Could not add User-Name\n");
  61. radius_msg_free(msg);
  62. return;
  63. }
  64. if (!radius_msg_add_attr_user_password(
  65. msg, (u8 *) "password", 8,
  66. ctx->conf.auth_server->shared_secret,
  67. ctx->conf.auth_server->shared_secret_len)) {
  68. printf("Could not add User-Password\n");
  69. radius_msg_free(msg);
  70. return;
  71. }
  72. if (!radius_msg_add_attr(msg, RADIUS_ATTR_NAS_IP_ADDRESS,
  73. (u8 *) &ctx->own_ip_addr, 4)) {
  74. printf("Could not add NAS-IP-Address\n");
  75. radius_msg_free(msg);
  76. return;
  77. }
  78. radius_client_send(ctx->radius, msg, RADIUS_AUTH, NULL);
  79. }
  80. int main(int argc, char *argv[])
  81. {
  82. struct radius_ctx ctx;
  83. struct hostapd_radius_server *srv;
  84. if (os_program_init())
  85. return -1;
  86. hostapd_logger_register_cb(hostapd_logger_cb);
  87. os_memset(&ctx, 0, sizeof(ctx));
  88. inet_aton("127.0.0.1", &ctx.own_ip_addr);
  89. if (eloop_init()) {
  90. printf("Failed to initialize event loop\n");
  91. return -1;
  92. }
  93. srv = os_zalloc(sizeof(*srv));
  94. if (srv == NULL)
  95. return -1;
  96. srv->addr.af = AF_INET;
  97. srv->port = 1812;
  98. if (hostapd_parse_ip_addr("127.0.0.1", &srv->addr) < 0) {
  99. printf("Failed to parse IP address\n");
  100. return -1;
  101. }
  102. srv->shared_secret = (u8 *) os_strdup("radius");
  103. srv->shared_secret_len = 6;
  104. ctx.conf.auth_server = ctx.conf.auth_servers = srv;
  105. ctx.conf.num_auth_servers = 1;
  106. ctx.conf.msg_dumps = 1;
  107. ctx.radius = radius_client_init(&ctx, &ctx.conf);
  108. if (ctx.radius == NULL) {
  109. printf("Failed to initialize RADIUS client\n");
  110. return -1;
  111. }
  112. if (radius_client_register(ctx.radius, RADIUS_AUTH, receive_auth,
  113. &ctx) < 0) {
  114. printf("Failed to register RADIUS authentication handler\n");
  115. return -1;
  116. }
  117. eloop_register_timeout(0, 0, start_example, &ctx, NULL);
  118. eloop_run();
  119. radius_client_deinit(ctx.radius);
  120. os_free(srv->shared_secret);
  121. os_free(srv);
  122. eloop_destroy();
  123. os_program_deinit();
  124. return 0;
  125. }