%top { /* Include this before everything else, for various large-file definitions */ #include "config.h" #include } /* * We want a reentrant scanner. */ %option reentrant /* * We don't use input, so don't generate code for it. */ %option noinput /* * We don't use unput, so don't generate code for it. */ %option nounput /* * We don't read interactively from the terminal. */ %option never-interactive /* * We want to stop processing when we get to the end of the input. */ %option noyywrap /* * The language we're scanning is case-insensitive. */ %option caseless /* * The type for the state we keep for a scanner. */ %option extra-type="Radius_scanner_state_t*" /* * We have to override the memory allocators so that we don't get * "unused argument" warnings from the yyscanner argument (which * we don't use, as we have a global memory allocator). * * We provide, as macros, our own versions of the routines generated by Flex, * which just call malloc()/realloc()/free() (as the Flex versions do), * discarding the extra argument. */ %option noyyalloc %option noyyrealloc %option noyyfree /* * Prefix scanner routines with "Radius_" rather than "yy", so this scanner * can coexist with other scanners. */ %option prefix="Radius_" %option outfile="radius_dict.c" %{ /* radius_dict.l * * RADIUS dictionary parser * * Wireshark - Network traffic analyzer * By Gerald Combs * Copyright 1998 Gerald Combs * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU General Public License * as published by the Free Software Foundation; either version 2 * of the License, or (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program; if not, write to the Free Software * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. */ #include #include #include #include #include #include #include #include /* * Disable diagnostics in the code generated by Flex. */ DIAG_OFF_FLEX() /* * See * * http://freeradius.org/radiusd/man/dictionary.html * * for the format of RADIUS dictionary files. * * XXX - features not currently supported: * * integer64, ipv4prefix, combo-prefix, bool, size, decimal, * timeval, struct, extended, long-extended, vsa, evs, vendor, * cidr, uint{8,16,32,64}, int{8,16,32,64} as attribute types * (some of these aren't documented); * * octets[N], where N is an integer, as an attribute type * (not documented in the man page) - we support this as the octets * type but do not enforce the length (e.g., with an expert info). * FreeRADIUS uses the length for encoding; as we're just decoding, * we take whatever is indicated in the AVP; * * internal, array, and virtual as attribute flags (not * documented in the man page); * * We alter the dictionaries for TLVs by unwrapping them. It would be * better to support the format as-is. We look up the TLVs by name; * this probably doesn't work with the current master (pre-4.0) version * of FreeRADIUS's dictionary files, because the vendor prefix was removed * from the attributes, so they're not as likely to be unique. * * We should, perhaps, adopt FreeRADIUS's dictionary-parsing code in * src/lib/dict.c and use that, rather than writing our own parser. * See bug 13176. */ #define YY_USER_INIT BEGIN WS_OUT; #define ECHO #define MAX_INCLUDE_DEPTH 10 typedef struct { YY_BUFFER_STATE include_stack[MAX_INCLUDE_DEPTH]; int include_stack_ptr; radius_dictionary_t* dict; GHashTable* value_strings; /* GArray(value_string) by attribute name */ char* attr_name; char* attr_id; radius_attr_dissector_t* attr_type; char* attr_vendor; char* vendor_name; uint32_t vendor_id; unsigned vendor_type_octets; unsigned vendor_length_octets; bool vendor_has_flags; char* value_repr; unsigned encrypted; bool has_tag; bool concat; char* current_vendor; unsigned current_vendor_evs_type; int tlv_stack_ptr; char* tlv_stack[MAX_INCLUDE_DEPTH]; char* directory; char* fullpaths[MAX_INCLUDE_DEPTH]; int linenums[MAX_INCLUDE_DEPTH]; GString* error; } Radius_scanner_state_t; static void add_vendor(Radius_scanner_state_t* state, const char* name, uint32_t id, unsigned type_octets, unsigned length_octets, bool has_flags); static bool add_attribute(Radius_scanner_state_t* state, const char*,const char*, radius_attr_dissector_t,const char*, unsigned, bool, bool, const char*); static bool add_tlv(Radius_scanner_state_t* state, const char* name, const char* code, radius_attr_dissector_t type, const char* attr); static void add_value(Radius_scanner_state_t* state, const char* attrib_name, const char* repr, uint32_t value); /* * Sleazy hack to suppress compiler warnings in yy_fatal_error(). */ #define YY_EXIT_FAILURE ((void)yyscanner, 2) /* * Macros for the allocators, to discard the extra argument. */ #define Radius_alloc(size, yyscanner) (void *)malloc(size) #define Radius_realloc(ptr, size, yyscanner) (void *)realloc((char *)(ptr), (size)) #define Radius_free(ptr, yyscanner) free((char *)ptr) %} /* Note: FreeRadius allows VENDOR, ATTRIBUTE and VALUE names to contain any non-blank character. * Using a negated "blank character class" pattern below for those names fails for some reason * so for now the patterns for each name type include those characters found for the corresponding * name types in the FreeRadius dictionaries. */ %START WS_OUT VENDOR VENDOR_W_NAME ATTR ATTR_W_NAME ATTR_W_ID ATTR_W_TYPE VALUE VALUE_W_ATTR VALUE_W_NAME INCLUDE JUNK BEGIN_VENDOR BEGIN_VENDOR_FORMAT END_VENDOR VENDOR_W_ID VENDOR_W_FORMAT VENDOR_W_TYPE_OCTETS VENDOR_W_LENGTH_OCTETS VENDOR_W_CONTINUATION BEGIN_TLV END_TLV %% [:blank:] ; #[^\n]* ; .*\qn ; VENDOR { BEGIN VENDOR; } ATTRIBUTE { BEGIN ATTR; } VALUE { BEGIN VALUE; } \$INCLUDE { BEGIN INCLUDE; } BEGIN-VENDOR { BEGIN BEGIN_VENDOR; } END-VENDOR { BEGIN END_VENDOR; } BEGIN-TLV { BEGIN BEGIN_TLV; } END-TLV { BEGIN END_TLV; } [0-9a-z_-]+ { if (yyextra->current_vendor) { g_free(yyextra->current_vendor); } yyextra->current_vendor = g_strdup(yytext); BEGIN BEGIN_VENDOR_FORMAT; } format=Extended-Vendor-Specific-[123456] { if (strcmp(yytext, "format=Extended-Vendor-Specific-1") == 0) { yyextra->current_vendor_evs_type = 241; } else if(strcmp(yytext, "format=Extended-Vendor-Specific-2") == 0) { yyextra->current_vendor_evs_type = 242; } else if(strcmp(yytext, "format=Extended-Vendor-Specific-3") == 0) { yyextra->current_vendor_evs_type = 243; } else if(strcmp(yytext, "format=Extended-Vendor-Specific-4") == 0) { yyextra->current_vendor_evs_type = 244; } else if(strcmp(yytext, "format=Extended-Vendor-Specific-5") == 0) { yyextra->current_vendor_evs_type = 245; } else if(strcmp(yytext, "format=Extended-Vendor-Specific-6") == 0) { yyextra->current_vendor_evs_type = 246; } BEGIN WS_OUT; } \n {BEGIN WS_OUT;} [^\n]* { if (yyextra->current_vendor) { g_free(yyextra->current_vendor); yyextra->current_vendor = NULL; } yyextra->current_vendor_evs_type = 0; BEGIN WS_OUT; } [0-9a-z_-]+ { yyextra->tlv_stack_ptr++; if ( yyextra->tlv_stack_ptr >= MAX_INCLUDE_DEPTH ) { g_string_append_printf(yyextra->error, "TLV %s nested too deeply in %s:%i\n", yytext, yyextra->fullpaths[yyextra->include_stack_ptr], yyextra->linenums[yyextra->include_stack_ptr]); yyterminate(); } yyextra->tlv_stack[yyextra->tlv_stack_ptr] = g_strdup(yytext); /* XXX - Do we really need the BEGIN-TLV? We could do this after * encountering a tlv type. */ BEGIN WS_OUT; } [^\n]* { if (yyextra->tlv_stack[yyextra->tlv_stack_ptr]) { g_free(yyextra->tlv_stack[yyextra->tlv_stack_ptr]); yyextra->tlv_stack[yyextra->tlv_stack_ptr] = NULL; } if ( --yyextra->tlv_stack_ptr < 0 ) { g_string_append_printf(yyextra->error, "END-TLV would go below stack level 0 in %s:%i\n", yyextra->fullpaths[yyextra->include_stack_ptr], yyextra->linenums[yyextra->include_stack_ptr]); yyterminate(); } /* XXX - We could parse yytext and see if it matches */ BEGIN WS_OUT; } [0-9a-z_-]+ { yyextra->vendor_name = g_strdup(yytext); yyextra->vendor_type_octets = 1; yyextra->vendor_length_octets = 1; yyextra->vendor_has_flags = false; BEGIN VENDOR_W_NAME; } [0-9]+ { yyextra->vendor_id = (uint32_t) strtoul(yytext,NULL,10); BEGIN VENDOR_W_ID; } 0x[0-9a-f]+ { yyextra->vendor_id = (uint32_t) strtoul(yytext,NULL,16); BEGIN VENDOR_W_ID; } format= { BEGIN VENDOR_W_FORMAT; } [124] { yyextra->vendor_type_octets = (unsigned) strtoul(yytext,NULL,10); BEGIN VENDOR_W_TYPE_OCTETS; } ,[012] { yyextra->vendor_length_octets = (unsigned) strtoul(yytext+1,NULL,10); BEGIN VENDOR_W_LENGTH_OCTETS; } ,c { yyextra->vendor_has_flags = true; BEGIN VENDOR_W_CONTINUATION; } \n | \n | \n | \n | \n { add_vendor(yyextra, yyextra->vendor_name, yyextra->vendor_id, yyextra->vendor_type_octets, yyextra->vendor_length_octets, yyextra->vendor_has_flags); g_free(yyextra->vendor_name); BEGIN WS_OUT; } [0-9a-z_/.-]+ { yyextra->attr_name = g_strdup(yytext); yyextra->encrypted = 0; yyextra->has_tag = false; yyextra->concat = false; BEGIN ATTR_W_NAME; } [0-9.]+ { yyextra->attr_id = g_strdup(yytext); BEGIN ATTR_W_ID;} 0x[0-9a-f]+ { yyextra->attr_id = ws_strdup_printf("%u",(int)strtoul(yytext,NULL,16)); BEGIN ATTR_W_ID;} integer { yyextra->attr_type = radius_integer; BEGIN ATTR_W_TYPE; } string { yyextra->attr_type = radius_string; BEGIN ATTR_W_TYPE; } octets(\[[1-9][0-9]*\])? { yyextra->attr_type = radius_octets; BEGIN ATTR_W_TYPE; } ipaddr { yyextra->attr_type = radius_ipaddr; BEGIN ATTR_W_TYPE; } ipv6addr { yyextra->attr_type = radius_ipv6addr; BEGIN ATTR_W_TYPE; } ipv6prefix { yyextra->attr_type = radius_ipv6prefix; BEGIN ATTR_W_TYPE; } ipxnet { yyextra->attr_type = radius_ipxnet; BEGIN ATTR_W_TYPE; } date { yyextra->attr_type = radius_date; BEGIN ATTR_W_TYPE; } abinary { yyextra->attr_type = radius_abinary; BEGIN ATTR_W_TYPE; } ether { yyextra->attr_type = radius_ether; BEGIN ATTR_W_TYPE; } ifid { yyextra->attr_type = radius_ifid; BEGIN ATTR_W_TYPE; } byte { yyextra->attr_type = radius_integer; BEGIN ATTR_W_TYPE; } short { yyextra->attr_type = radius_integer; BEGIN ATTR_W_TYPE; } signed { yyextra->attr_type = radius_signed; BEGIN ATTR_W_TYPE; } combo-ip { yyextra->attr_type = radius_combo_ip; BEGIN ATTR_W_TYPE; } tlv { yyextra->attr_type = radius_tlv; BEGIN ATTR_W_TYPE; } vsa { yyextra->attr_type = radius_octets; BEGIN ATTR_W_TYPE; } [0-9a-z_-]+ { yyextra->attr_type = radius_octets; BEGIN ATTR_W_TYPE; } has_tag[,]? { yyextra->has_tag = true; } encrypt=[123][,]? { yyextra->encrypted = (unsigned) strtoul(yytext+8,NULL,10); } concat { yyextra->concat = true; } [0-9a-z_-]+=([^\n]*) ; [0-9a-z_-]+ { /* * Support for "ATTRIBUTE name oid type vendor", where the token * following the type matches neither has_tag, concat, nor encrypt={1,2,3}, * but is a sequence of digits, lower-case letters, underscores, * and hyphens. * * We mark this as a vendor-specific attribute (VSA), with the token * following the type being the vendor name; this notation is deprecated * in favor of BEGIN-VENDOR/END-VENDOR blocks. */ bool attribute_ok; yyextra->attr_vendor = g_strdup(yytext); attribute_ok = add_attribute(yyextra, yyextra->attr_name, yyextra->attr_id, yyextra->attr_type, yyextra->attr_vendor, yyextra->encrypted, yyextra->has_tag, yyextra->concat, yyextra->tlv_stack[yyextra->tlv_stack_ptr]); g_free(yyextra->attr_id); g_free(yyextra->attr_vendor); g_free(yyextra->attr_name); yyextra->attr_id = NULL; yyextra->attr_vendor = NULL; yyextra->attr_name = NULL; if (attribute_ok) BEGIN WS_OUT; else BEGIN JUNK; } \n { add_attribute(yyextra, yyextra->attr_name, yyextra->attr_id, yyextra->attr_type, yyextra->current_vendor, yyextra->encrypted, yyextra->has_tag, yyextra->concat, yyextra->tlv_stack[yyextra->tlv_stack_ptr]); g_free(yyextra->attr_id); g_free(yyextra->attr_name); yyextra->linenums[yyextra->include_stack_ptr]++; yyextra->has_tag = false; yyextra->encrypted=false; yyextra->concat = false; BEGIN WS_OUT; } [0-9a-z_/-]+ { yyextra->attr_name = g_strdup(yytext); BEGIN VALUE_W_ATTR; } [^[:blank:]]+ { yyextra->value_repr = g_strdup(yytext); BEGIN VALUE_W_NAME; } [0-9]+ { add_value(yyextra, yyextra->attr_name,yyextra->value_repr, (uint32_t) strtoul(yytext,NULL,10)); g_free(yyextra->attr_name); g_free(yyextra->value_repr); BEGIN WS_OUT;} 0x[0-9a-f]+ { add_value(yyextra, yyextra->attr_name,yyextra->value_repr, (uint32_t) strtoul(yytext,NULL,16)); g_free(yyextra->attr_name); g_free(yyextra->value_repr); BEGIN WS_OUT;} [^[:blank:]\n]+ { if ( yyextra->include_stack_ptr >= MAX_INCLUDE_DEPTH ) { g_string_append_printf(yyextra->error, "$INCLUDE files nested too deeply\n"); yyterminate(); } yyextra->include_stack[yyextra->include_stack_ptr++] = YY_CURRENT_BUFFER; if (g_path_is_absolute(yytext)) { yyextra->fullpaths[yyextra->include_stack_ptr] = ws_strdup(yytext); } else { yyextra->fullpaths[yyextra->include_stack_ptr] = g_build_filename(yyextra->directory, yytext, NULL); } FILE *old_yyin = yyin; yyin = ws_fopen( yyextra->fullpaths[yyextra->include_stack_ptr], "r" ); if (!yyin) { if (errno) { g_string_append_printf(yyextra->error, "Could not open file: '%s', error: %s\n", yyextra->fullpaths[yyextra->include_stack_ptr], g_strerror(errno) ); } else { g_string_append_printf(yyextra->error, "Could not open file: '%s', no errno\n", yyextra->fullpaths[yyextra->include_stack_ptr]); } g_free(yyextra->fullpaths[yyextra->include_stack_ptr]); yyextra->fullpaths[yyextra->include_stack_ptr] = NULL; yyextra->include_stack_ptr--; yyin = old_yyin; } else { if (g_path_is_absolute(yytext)) { g_free(yyextra->directory); /* * Switch the directory for any relative $INCLUDEs in * the new file. * XXX - Follow symlinks (#6466)? FreeRADIUS doesn't. * Use g_file_test() + g_file_read_link() to do so. * In that case, make sure to follow symlinks when * saving the fullpath too, for restoring the directory * at EOF. */ yyextra->directory = g_path_get_dirname(yytext); } yyextra->linenums[yyextra->include_stack_ptr] = 1; yy_switch_to_buffer(yy_create_buffer(yyin, YY_BUF_SIZE, yyscanner), yyscanner); } BEGIN WS_OUT; } <> { fclose(yyin); yyin = NULL; g_free(yyextra->directory); if ( --yyextra->include_stack_ptr < 0 ) { yyterminate(); } else { g_free(yyextra->fullpaths[yyextra->include_stack_ptr+1]); yyextra->fullpaths[yyextra->include_stack_ptr+1] = NULL; yyextra->directory = g_path_get_dirname(yyextra->fullpaths[yyextra->include_stack_ptr]); Radius__delete_buffer(YY_CURRENT_BUFFER, yyscanner); Radius__switch_to_buffer(yyextra->include_stack[yyextra->include_stack_ptr], yyscanner); } BEGIN WS_OUT; } \n { yyextra->linenums[yyextra->include_stack_ptr]++; BEGIN WS_OUT; } %% /* * Turn diagnostics back on, so we check the code that we've written. */ DIAG_ON_FLEX() static void add_vendor(Radius_scanner_state_t* state, const char* name, uint32_t id, unsigned type_octets, unsigned length_octets, bool has_flags) { radius_vendor_info_t* v; v = (radius_vendor_info_t *)g_hash_table_lookup(state->dict->vendors_by_id, GUINT_TO_POINTER(id)); if (!v) { /* * New vendor. * Allocate a new entry and insert it into the by-ID and * by-name hash tables. */ v = g_new(radius_vendor_info_t,1); v->attrs_by_id = g_hash_table_new_full(g_direct_hash, g_direct_equal, NULL, free_radius_attr_info); v->code = id; v->ett = -1; v->name = g_strdup(name); v->type_octets = type_octets; v->length_octets = length_octets; v->has_flags = has_flags; g_hash_table_insert(state->dict->vendors_by_id,GUINT_TO_POINTER(v->code),v); g_hash_table_insert(state->dict->vendors_by_name, (void *) v->name, v); } else { /* * This vendor is already in the table. * * Assume that the dictionary knows the 'ground truth' about * the type/length/has_flags information and thus allow the * dictionary to overwrite these values even for vendors that * have already been loaded. * * XXX - this could be due to the vendor being in multiple * dictionary files, rather than having been specially * entered by the RADIUS dissector, as a side effect of * specially entering an attribute; should we report vendors * that appear in different dictionaries with different * properties? */ v->type_octets = type_octets; v->length_octets = length_octets; v->has_flags = has_flags; /* * Did the name change? */ if (g_strcmp0(v->name, name) != 0) { /* * Yes. Remove the entry from the by-name hash table * and re-insert it with the new name. */ g_hash_table_remove(state->dict->vendors_by_name, (void *) v->name); g_free((void *) v->name); v->name = g_strdup(name); g_hash_table_insert(state->dict->vendors_by_name, (void *) v->name, v); } } } static bool add_attribute(Radius_scanner_state_t* state, const char* name, const char* codestr, radius_attr_dissector_t type, const char* vendor, unsigned encrypted_flag, bool tagged, bool concat, const char* attr) { radius_attr_info_t* a; GHashTable* by_id; radius_attr_type_t code; uint8_t code0 = 0, code1 = 0; char *dot, *buf = NULL; if (attr){ return add_tlv(state, name, codestr, type, attr); } buf = g_strdup(codestr); dot = strchr(codestr, '.'); if (dot) *dot = '\0'; code0 = (uint8_t) strtoul(buf, NULL, 10); if (dot) code1 = (uint8_t) strtoul(dot + 1, NULL, 10); g_free(buf); memset(&code, 0, sizeof(code)); if (vendor) { if (state->current_vendor_evs_type) { code.u8_code[0] = (uint8_t) state->current_vendor_evs_type; code.u8_code[1] = code0; } else { code.u8_code[0] = code0; code.u8_code[1] = 0; } radius_vendor_info_t* v = (radius_vendor_info_t *)g_hash_table_lookup(state->dict->vendors_by_name,vendor); if (! v) { g_string_append_printf(state->error, "Vendor: '%s', does not exist in %s:%i \n", vendor, state->fullpaths[state->include_stack_ptr], state->linenums[state->include_stack_ptr] ); return false; } else { by_id = v->attrs_by_id; } } else { code.u8_code[0] = code0; code.u8_code[1] = code1; by_id = state->dict->attrs_by_id; } /* * XXX - FreeRADIUS dict.c enforces that concat can only be used with * type radius_octets, not with any other flags, and not with VSAs. */ a=(radius_attr_info_t*)g_hash_table_lookup(by_id, GUINT_TO_POINTER(code.value)); if (!a) { /* * New attribute. * Allocate a new entry and insert it into the by-ID and * by-name hash tables. */ a = g_new(radius_attr_info_t,1); a->code = code; a->name = g_strdup(name); a->dissector = NULL; a->encrypt = encrypted_flag; a->tagged = tagged; a->concat = concat; a->type = type; a->vs = NULL; a->hf = -1; a->hf_alt = -1; a->hf_enc = -1; a->hf_tag = -1; a->hf_len = -1; a->ett = -1; a->tlvs_by_id = NULL; g_hash_table_insert(by_id, GUINT_TO_POINTER(code.value),a); g_hash_table_insert(state->dict->attrs_by_name,(void *) (a->name),a); } else { /* * This attribute is already in the table. * * Overwrite the encrypted flag, tagged property, concat * property, and type; the other properties don't get set * until after we've finished reading the dictionaries. * * XXX - this could be due to the attribute being in * multiple dictionary files, rather than having been * specially entered by the RADIUS dissector to give it * a special dissection routine; should we report attributes * that appear in different dictionaries with different * properties? */ a->encrypt = encrypted_flag; a->tagged = tagged; a->concat = concat; a->type = type; /* * Did the name change? */ if (g_strcmp0(a->name, name) != 0) { /* * Yes. Steal the entry from the by-name hash table * and re-insert it with the new name. (Don't * remove it - that calls the free routine, which * frees up the entry.) */ g_hash_table_steal(state->dict->attrs_by_name, (void *) (a->name)); g_free((void *) a->name); a->name = g_strdup(name); g_hash_table_insert(state->dict->attrs_by_name, (void *) (a->name),a); } } return true; } static bool add_tlv(Radius_scanner_state_t* state, const char* name, const char* codestr, radius_attr_dissector_t type, const char* attr) { radius_attr_info_t* a; radius_attr_info_t* s; radius_attr_type_t code; a = (radius_attr_info_t*)g_hash_table_lookup(state->dict->attrs_by_name, attr); if (!a) { a = (radius_attr_info_t*)g_hash_table_lookup(state->dict->tlvs_by_name, attr); } if (!a) { g_string_append_printf(state->error, "Attr: '%s', does not exist in %s:%i \n", attr, state->fullpaths[state->include_stack_ptr], state->linenums[state->include_stack_ptr]); return false; } if (!a->tlvs_by_id) { a->tlvs_by_id = g_hash_table_new_full(g_direct_hash, g_direct_equal, NULL, free_radius_attr_info); } memset(&code, 0, sizeof(code)); code.u8_code[0] = (uint8_t) strtoul(codestr, NULL, 10); s = (radius_attr_info_t*)g_hash_table_lookup(a->tlvs_by_id, GUINT_TO_POINTER(code.value)); if (!s) { /* * This TLV doesn't yet exist in this attribute's TLVs-by-ID * hash table. Add it. */ s = g_new(radius_attr_info_t,1); s->name = g_strdup(name); s->dissector = NULL; s->code = code; s->type = type; s->encrypt = false; s->tagged = false; s->concat = false; s->dissector = NULL; s->vs = NULL; s->hf = -1; s->hf_alt = -1; s->hf_tag = -1; s->hf_len = -1; s->ett = -1; s->tlvs_by_id = NULL; g_hash_table_insert(a->tlvs_by_id,GUINT_TO_POINTER(s->code.value),s); g_hash_table_insert(state->dict->tlvs_by_name,(void *) (s->name),s); } /* * If it *does* exist, leave it alone; there shouldn't be duplicate * entries by name in the dictionaries (even if there might be * multiple entries for a given attribute in the dictionaries, each * one adding some TLV values), and we don't directly add entries * for TLVs in the RADIUS dissector. * * XXX - report the duplicate entries? */ return true; } void add_value(Radius_scanner_state_t* state, const char* attrib_name, const char* repr, uint32_t value) { value_string v; GArray* a = (GArray*)g_hash_table_lookup(state->value_strings,attrib_name); if (! a) { /* Ensure that the array is zero terminated. */ a = g_array_new(true, true, sizeof(value_string)); g_hash_table_insert(state->value_strings, g_strdup(attrib_name), a); } v.value = value; v.strptr = g_strdup(repr); g_array_append_val(a,v); } static void setup_tlvs(void *k _U_, void *v, void *p) { radius_attr_info_t* s = (radius_attr_info_t*)v; Radius_scanner_state_t* state = (Radius_scanner_state_t*)p; void *key; union { GArray* a; void *p; } vs; if (g_hash_table_lookup_extended(state->value_strings, s->name, &key, &vs.p)) { g_hash_table_steal(state->value_strings, key); s->vs = (value_string*)(void *)g_array_free(vs.a, false); g_free(key); } if (s->tlvs_by_id) { g_hash_table_foreach(s->tlvs_by_id, setup_tlvs, p); } } static void setup_attrs(void *k _U_, void *v, void *p) { radius_attr_info_t* a = (radius_attr_info_t*)v; Radius_scanner_state_t* state = (Radius_scanner_state_t*)p; void *key; union { GArray* a; void *p; } vs; if (g_hash_table_lookup_extended(state->value_strings, a->name, &key, &vs.p) ) { g_hash_table_steal(state->value_strings, key); a->vs = (value_string*)(void *)g_array_free(vs.a, false); g_free(key); } if (a->tlvs_by_id) { g_hash_table_foreach(a->tlvs_by_id, setup_tlvs, p); } } static void setup_vendors(void *k _U_, void *v, void *p) { radius_vendor_info_t* vnd = (radius_vendor_info_t*)v; g_hash_table_foreach(vnd->attrs_by_id,setup_attrs,p); } static void destroy_value_strings(void *v) { value_string* vs = (value_string*)(void *)(((GArray*)v)->data); for (;vs->strptr;vs++) { g_free((void*)vs->strptr); } g_array_free((GArray*)v,true); } bool radius_load_dictionary (radius_dictionary_t* d, char* dir, const char* filename, char** err_str) { FILE *in; yyscan_t scanner; Radius_scanner_state_t state; int i; state.include_stack_ptr = 0; state.dict = d; state.value_strings = NULL; state.attr_name = NULL; state.attr_id = NULL; state.attr_type = NULL; state.attr_vendor = NULL; state.vendor_name = NULL; state.vendor_id = 0; state.vendor_type_octets = 1; state.vendor_length_octets = 1; state.vendor_has_flags = false; state.value_repr = NULL; state.encrypted = 0; state.has_tag = false; state.concat = false; state.current_vendor = NULL; state.current_vendor_evs_type = 0; state.directory = g_strdup(dir); state.fullpaths[0] = ws_strdup_printf("%s" G_DIR_SEPARATOR_S "%s", state.directory,filename); state.linenums[0] = 1; state.tlv_stack[0] = NULL; for (i = 1; i < MAX_INCLUDE_DEPTH; i++) { state.fullpaths[i] = NULL; state.linenums[i] = 1; state.tlv_stack[i] = NULL; } state.tlv_stack_ptr = 0; state.error = g_string_new(""); in = ws_fopen(state.fullpaths[0],"r"); if (!in) { g_string_append_printf(state.error, "Could not open file: '%s', error: %s\n", state.fullpaths[0], g_strerror(errno)); g_free(state.fullpaths[0]); *err_str = g_string_free(state.error,FALSE); return false; } state.value_strings = g_hash_table_new_full(g_str_hash, g_str_equal, g_free, destroy_value_strings); if (Radius_lex_init(&scanner) != 0) { g_string_append_printf(state.error, "Can't initialize scanner: %s", strerror(errno)); fclose(in); g_free(state.fullpaths[0]); *err_str = g_string_free(state.error,FALSE); return false; } Radius_set_in(in, scanner); /* Associate the state with the scanner */ Radius_set_extra(&state, scanner); Radius_lex(scanner); Radius_lex_destroy(scanner); /* * XXX - can the lexical analyzer terminate without closing * all open input files? */ for (i = 0; i < MAX_INCLUDE_DEPTH; i++) { g_free(state.fullpaths[i]); g_free(state.tlv_stack[i]); } g_hash_table_foreach(state.dict->attrs_by_id,setup_attrs,&state); g_hash_table_foreach(state.dict->vendors_by_id,setup_vendors,&state); g_hash_table_destroy(state.value_strings); if (state.error->len > 0) { *err_str = g_string_free(state.error,FALSE); return false; } else { *err_str = NULL; g_string_free(state.error,TRUE); return true; } } /* * Editor modelines - https://www.wireshark.org/tools/modelines.html * * Local variables: * c-basic-offset: 8 * tab-width: 8 * indent-tabs-mode: t * End: * * vi: set shiftwidth=8 tabstop=8 noexpandtab: * :indentSize=8:tabSize=8:noTabs=false: */