1214501Srpaulo/* 2214501Srpaulo * IEEE 802.1X-2004 Authenticator - State dump 3214501Srpaulo * Copyright (c) 2002-2009, Jouni Malinen <j@w1.fi> 4214501Srpaulo * 5252726Srpaulo * This software may be distributed under the terms of the BSD license. 6252726Srpaulo * See README for more details. 7214501Srpaulo */ 8214501Srpaulo 9214501Srpaulo#include "includes.h" 10214501Srpaulo 11214501Srpaulo#include "common.h" 12214501Srpaulo#include "eap_server/eap.h" 13214501Srpaulo#include "eapol_auth_sm.h" 14214501Srpaulo#include "eapol_auth_sm_i.h" 15214501Srpaulo 16214501Srpaulostatic inline const char * port_type_txt(PortTypes pt) 17214501Srpaulo{ 18214501Srpaulo switch (pt) { 19214501Srpaulo case ForceUnauthorized: return "ForceUnauthorized"; 20214501Srpaulo case ForceAuthorized: return "ForceAuthorized"; 21214501Srpaulo case Auto: return "Auto"; 22214501Srpaulo default: return "Unknown"; 23214501Srpaulo } 24214501Srpaulo} 25214501Srpaulo 26214501Srpaulo 27214501Srpaulostatic inline const char * port_state_txt(PortState ps) 28214501Srpaulo{ 29214501Srpaulo switch (ps) { 30214501Srpaulo case Unauthorized: return "Unauthorized"; 31214501Srpaulo case Authorized: return "Authorized"; 32214501Srpaulo default: return "Unknown"; 33214501Srpaulo } 34214501Srpaulo} 35214501Srpaulo 36214501Srpaulo 37214501Srpaulostatic inline const char * ctrl_dir_txt(ControlledDirection dir) 38214501Srpaulo{ 39214501Srpaulo switch (dir) { 40214501Srpaulo case Both: return "Both"; 41214501Srpaulo case In: return "In"; 42214501Srpaulo default: return "Unknown"; 43214501Srpaulo } 44214501Srpaulo} 45214501Srpaulo 46214501Srpaulo 47214501Srpaulostatic inline const char * auth_pae_state_txt(int s) 48214501Srpaulo{ 49214501Srpaulo switch (s) { 50214501Srpaulo case AUTH_PAE_INITIALIZE: return "INITIALIZE"; 51214501Srpaulo case AUTH_PAE_DISCONNECTED: return "DISCONNECTED"; 52214501Srpaulo case AUTH_PAE_CONNECTING: return "CONNECTING"; 53214501Srpaulo case AUTH_PAE_AUTHENTICATING: return "AUTHENTICATING"; 54214501Srpaulo case AUTH_PAE_AUTHENTICATED: return "AUTHENTICATED"; 55214501Srpaulo case AUTH_PAE_ABORTING: return "ABORTING"; 56214501Srpaulo case AUTH_PAE_HELD: return "HELD"; 57214501Srpaulo case AUTH_PAE_FORCE_AUTH: return "FORCE_AUTH"; 58214501Srpaulo case AUTH_PAE_FORCE_UNAUTH: return "FORCE_UNAUTH"; 59214501Srpaulo case AUTH_PAE_RESTART: return "RESTART"; 60214501Srpaulo default: return "Unknown"; 61214501Srpaulo } 62214501Srpaulo} 63214501Srpaulo 64214501Srpaulo 65214501Srpaulostatic inline const char * be_auth_state_txt(int s) 66214501Srpaulo{ 67214501Srpaulo switch (s) { 68214501Srpaulo case BE_AUTH_REQUEST: return "REQUEST"; 69214501Srpaulo case BE_AUTH_RESPONSE: return "RESPONSE"; 70214501Srpaulo case BE_AUTH_SUCCESS: return "SUCCESS"; 71214501Srpaulo case BE_AUTH_FAIL: return "FAIL"; 72214501Srpaulo case BE_AUTH_TIMEOUT: return "TIMEOUT"; 73214501Srpaulo case BE_AUTH_IDLE: return "IDLE"; 74214501Srpaulo case BE_AUTH_INITIALIZE: return "INITIALIZE"; 75214501Srpaulo case BE_AUTH_IGNORE: return "IGNORE"; 76214501Srpaulo default: return "Unknown"; 77214501Srpaulo } 78214501Srpaulo} 79214501Srpaulo 80214501Srpaulo 81214501Srpaulostatic inline const char * reauth_timer_state_txt(int s) 82214501Srpaulo{ 83214501Srpaulo switch (s) { 84214501Srpaulo case REAUTH_TIMER_INITIALIZE: return "INITIALIZE"; 85214501Srpaulo case REAUTH_TIMER_REAUTHENTICATE: return "REAUTHENTICATE"; 86214501Srpaulo default: return "Unknown"; 87214501Srpaulo } 88214501Srpaulo} 89214501Srpaulo 90214501Srpaulo 91214501Srpaulostatic inline const char * auth_key_tx_state_txt(int s) 92214501Srpaulo{ 93214501Srpaulo switch (s) { 94214501Srpaulo case AUTH_KEY_TX_NO_KEY_TRANSMIT: return "NO_KEY_TRANSMIT"; 95214501Srpaulo case AUTH_KEY_TX_KEY_TRANSMIT: return "KEY_TRANSMIT"; 96214501Srpaulo default: return "Unknown"; 97214501Srpaulo } 98214501Srpaulo} 99214501Srpaulo 100214501Srpaulo 101214501Srpaulostatic inline const char * key_rx_state_txt(int s) 102214501Srpaulo{ 103214501Srpaulo switch (s) { 104214501Srpaulo case KEY_RX_NO_KEY_RECEIVE: return "NO_KEY_RECEIVE"; 105214501Srpaulo case KEY_RX_KEY_RECEIVE: return "KEY_RECEIVE"; 106214501Srpaulo default: return "Unknown"; 107214501Srpaulo } 108214501Srpaulo} 109214501Srpaulo 110214501Srpaulo 111214501Srpaulostatic inline const char * ctrl_dir_state_txt(int s) 112214501Srpaulo{ 113214501Srpaulo switch (s) { 114214501Srpaulo case CTRL_DIR_FORCE_BOTH: return "FORCE_BOTH"; 115214501Srpaulo case CTRL_DIR_IN_OR_BOTH: return "IN_OR_BOTH"; 116214501Srpaulo default: return "Unknown"; 117214501Srpaulo } 118214501Srpaulo} 119214501Srpaulo 120214501Srpaulo 121214501Srpaulovoid eapol_auth_dump_state(FILE *f, const char *prefix, 122214501Srpaulo struct eapol_state_machine *sm) 123214501Srpaulo{ 124214501Srpaulo fprintf(f, "%sEAPOL state machine:\n", prefix); 125214501Srpaulo fprintf(f, "%s aWhile=%d quietWhile=%d reAuthWhen=%d\n", prefix, 126214501Srpaulo sm->aWhile, sm->quietWhile, sm->reAuthWhen); 127214501Srpaulo#define _SB(b) ((b) ? "TRUE" : "FALSE") 128214501Srpaulo fprintf(f, 129214501Srpaulo "%s authAbort=%s authFail=%s authPortStatus=%s authStart=%s\n" 130214501Srpaulo "%s authTimeout=%s authSuccess=%s eapFail=%s eapolEap=%s\n" 131214501Srpaulo "%s eapSuccess=%s eapTimeout=%s initialize=%s " 132214501Srpaulo "keyAvailable=%s\n" 133214501Srpaulo "%s keyDone=%s keyRun=%s keyTxEnabled=%s portControl=%s\n" 134214501Srpaulo "%s portEnabled=%s portValid=%s reAuthenticate=%s\n", 135214501Srpaulo prefix, _SB(sm->authAbort), _SB(sm->authFail), 136214501Srpaulo port_state_txt(sm->authPortStatus), _SB(sm->authStart), 137214501Srpaulo prefix, _SB(sm->authTimeout), _SB(sm->authSuccess), 138214501Srpaulo _SB(sm->eap_if->eapFail), _SB(sm->eapolEap), 139214501Srpaulo prefix, _SB(sm->eap_if->eapSuccess), 140214501Srpaulo _SB(sm->eap_if->eapTimeout), 141214501Srpaulo _SB(sm->initialize), _SB(sm->eap_if->eapKeyAvailable), 142214501Srpaulo prefix, _SB(sm->keyDone), _SB(sm->keyRun), 143214501Srpaulo _SB(sm->keyTxEnabled), port_type_txt(sm->portControl), 144214501Srpaulo prefix, _SB(sm->eap_if->portEnabled), _SB(sm->portValid), 145214501Srpaulo _SB(sm->reAuthenticate)); 146214501Srpaulo 147214501Srpaulo fprintf(f, "%s Authenticator PAE:\n" 148214501Srpaulo "%s state=%s\n" 149214501Srpaulo "%s eapolLogoff=%s eapolStart=%s eapRestart=%s\n" 150214501Srpaulo "%s portMode=%s reAuthCount=%d\n" 151214501Srpaulo "%s quietPeriod=%d reAuthMax=%d\n" 152214501Srpaulo "%s authEntersConnecting=%d\n" 153214501Srpaulo "%s authEapLogoffsWhileConnecting=%d\n" 154214501Srpaulo "%s authEntersAuthenticating=%d\n" 155214501Srpaulo "%s authAuthSuccessesWhileAuthenticating=%d\n" 156214501Srpaulo "%s authAuthTimeoutsWhileAuthenticating=%d\n" 157214501Srpaulo "%s authAuthFailWhileAuthenticating=%d\n" 158214501Srpaulo "%s authAuthEapStartsWhileAuthenticating=%d\n" 159214501Srpaulo "%s authAuthEapLogoffWhileAuthenticating=%d\n" 160214501Srpaulo "%s authAuthReauthsWhileAuthenticated=%d\n" 161214501Srpaulo "%s authAuthEapStartsWhileAuthenticated=%d\n" 162214501Srpaulo "%s authAuthEapLogoffWhileAuthenticated=%d\n", 163214501Srpaulo prefix, prefix, auth_pae_state_txt(sm->auth_pae_state), prefix, 164214501Srpaulo _SB(sm->eapolLogoff), _SB(sm->eapolStart), 165214501Srpaulo _SB(sm->eap_if->eapRestart), 166214501Srpaulo prefix, port_type_txt(sm->portMode), sm->reAuthCount, 167214501Srpaulo prefix, sm->quietPeriod, sm->reAuthMax, 168214501Srpaulo prefix, sm->authEntersConnecting, 169214501Srpaulo prefix, sm->authEapLogoffsWhileConnecting, 170214501Srpaulo prefix, sm->authEntersAuthenticating, 171214501Srpaulo prefix, sm->authAuthSuccessesWhileAuthenticating, 172214501Srpaulo prefix, sm->authAuthTimeoutsWhileAuthenticating, 173214501Srpaulo prefix, sm->authAuthFailWhileAuthenticating, 174214501Srpaulo prefix, sm->authAuthEapStartsWhileAuthenticating, 175214501Srpaulo prefix, sm->authAuthEapLogoffWhileAuthenticating, 176214501Srpaulo prefix, sm->authAuthReauthsWhileAuthenticated, 177214501Srpaulo prefix, sm->authAuthEapStartsWhileAuthenticated, 178214501Srpaulo prefix, sm->authAuthEapLogoffWhileAuthenticated); 179214501Srpaulo 180214501Srpaulo fprintf(f, "%s Backend Authentication:\n" 181214501Srpaulo "%s state=%s\n" 182214501Srpaulo "%s eapNoReq=%s eapReq=%s eapResp=%s\n" 183214501Srpaulo "%s serverTimeout=%d\n" 184214501Srpaulo "%s backendResponses=%d\n" 185214501Srpaulo "%s backendAccessChallenges=%d\n" 186214501Srpaulo "%s backendOtherRequestsToSupplicant=%d\n" 187214501Srpaulo "%s backendAuthSuccesses=%d\n" 188214501Srpaulo "%s backendAuthFails=%d\n", 189214501Srpaulo prefix, prefix, 190214501Srpaulo be_auth_state_txt(sm->be_auth_state), 191214501Srpaulo prefix, _SB(sm->eap_if->eapNoReq), _SB(sm->eap_if->eapReq), 192214501Srpaulo _SB(sm->eap_if->eapResp), 193214501Srpaulo prefix, sm->serverTimeout, 194214501Srpaulo prefix, sm->backendResponses, 195214501Srpaulo prefix, sm->backendAccessChallenges, 196214501Srpaulo prefix, sm->backendOtherRequestsToSupplicant, 197214501Srpaulo prefix, sm->backendAuthSuccesses, 198214501Srpaulo prefix, sm->backendAuthFails); 199214501Srpaulo 200214501Srpaulo fprintf(f, "%s Reauthentication Timer:\n" 201214501Srpaulo "%s state=%s\n" 202214501Srpaulo "%s reAuthPeriod=%d reAuthEnabled=%s\n", prefix, prefix, 203214501Srpaulo reauth_timer_state_txt(sm->reauth_timer_state), prefix, 204214501Srpaulo sm->reAuthPeriod, _SB(sm->reAuthEnabled)); 205214501Srpaulo 206214501Srpaulo fprintf(f, "%s Authenticator Key Transmit:\n" 207214501Srpaulo "%s state=%s\n", prefix, prefix, 208214501Srpaulo auth_key_tx_state_txt(sm->auth_key_tx_state)); 209214501Srpaulo 210214501Srpaulo fprintf(f, "%s Key Receive:\n" 211214501Srpaulo "%s state=%s\n" 212214501Srpaulo "%s rxKey=%s\n", prefix, prefix, 213214501Srpaulo key_rx_state_txt(sm->key_rx_state), prefix, _SB(sm->rxKey)); 214214501Srpaulo 215214501Srpaulo fprintf(f, "%s Controlled Directions:\n" 216214501Srpaulo "%s state=%s\n" 217214501Srpaulo "%s adminControlledDirections=%s " 218214501Srpaulo "operControlledDirections=%s\n" 219214501Srpaulo "%s operEdge=%s\n", prefix, prefix, 220214501Srpaulo ctrl_dir_state_txt(sm->ctrl_dir_state), 221214501Srpaulo prefix, ctrl_dir_txt(sm->adminControlledDirections), 222214501Srpaulo ctrl_dir_txt(sm->operControlledDirections), 223214501Srpaulo prefix, _SB(sm->operEdge)); 224214501Srpaulo#undef _SB 225214501Srpaulo} 226