Minor AAA refactoring

- pulled some common code out into a method - fixed some spacing problems Change-Id: I7c4f0cc6f236e8c05188fb94df3ec9ebe70140bf

Minor AAA refactoring
- pulled some common code out into a method - fixed some spacing problems Change-Id: I7c4f0cc6f236e8c05188fb94df3ec9ebe70140bf
Ray Milkey · Gerrit Code Review
Commit 7e5a2037c2113b9cea8537300f3359cfb4008da7 7e5a2037 1 parent 911c519e
Showing 1 changed file with 33 additions and 39 deletions
apps/aaa/src/main/java/org/onosproject/aaa/AAA.java
--- a/apps/aaa/src/main/java/org/onosproject/aaa/AAA.java
View file @7e5a203
+++ b/apps/aaa/src/main/java/org/onosproject/aaa/AAA.java
View file @7e5a203
@@ -337,6 +337,29 @@ public class AAA {
             }
         }
+        /**
+         * Creates and initializes common fields of a RADIUS packet.
+         *
+         * @param identifier RADIUS identifier
+         * @param eapPacket EAP packet
+         * @return RADIUS packet
+         */
+        private RADIUS getRadiusPayload(byte identifier, EAP eapPacket) {
+            RADIUS radiusPayload =
+                    new RADIUS(RADIUS.RADIUS_CODE_ACCESS_REQUEST,
+                               eapPacket.getIdentifier());
+            radiusPayload.setIdentifier(identifier);
+            radiusPayload.setAttribute(RADIUSAttribute.RADIUS_ATTR_USERNAME,
+                                       eapPacket.getData());
+
+            radiusPayload.setAttribute(RADIUSAttribute.RADIUS_ATTR_NAS_IP,
+                                       AAA.this.parsedNasIpAddress.getAddress());
+
+            radiusPayload.encapsulateMessage(eapPacket);
+            radiusPayload.addMessageAuthenticator(AAA.this.radiusSecret);
+
+            return radiusPayload;
+        }
         /**
          * Handles PAE packets (supplicant).
@@ -377,75 +400,46 @@ public class AAA {
                     break;
                 case EAPOL.EAPOL_PACKET:
                     RADIUS radiusPayload;
-                    //check if this is a Response/Identify or  a Response/TLS
+                    // check if this is a Response/Identify or  a Response/TLS
                     EAP eapPacket = (EAP) eapol.getPayload();
                     byte dataType = eapPacket.getDataType();
                     switch (dataType) {
                         case EAP.ATTR_IDENTITY:
-                        //request id access to RADIUS
+                            // request id access to RADIUS
                             stateMachine.setUsername(eapPacket.getData());
-                        radiusPayload =
+                            radiusPayload = getRadiusPayload(stateMachine.identifier(), eapPacket);
-                                new RADIUS(RADIUS.RADIUS_CODE_ACCESS_REQUEST,
-                                           eapPacket.getIdentifier());
-                        radiusPayload.setIdentifier(stateMachine.identifier());
-                        radiusPayload.setAttribute(RADIUSAttribute.RADIUS_ATTR_USERNAME,
-                                                   eapPacket.getData());
-
-                        radiusPayload.setAttribute(RADIUSAttribute.RADIUS_ATTR_NAS_IP,
-                                                   AAA.this.parsedNasIpAddress.getAddress());
-
-                        radiusPayload.encapsulateMessage(eapPacket);
                             // set Request Authenticator in StateMachine
                             stateMachine.setRequestAuthenticator(radiusPayload.generateAuthCode());
-                        radiusPayload.addMessageAuthenticator(AAA.this.radiusSecret);
                             sendRadiusMessage(radiusPayload);
-                        //change the state to "PENDING"
+                            // change the state to "PENDING"
                             stateMachine.requestAccess();
                             break;
                         case EAP.ATTR_MD5:
-                            //verify if the EAP identifier corresponds to the challenge identifier from the client state
+                            // verify if the EAP identifier corresponds to the
-                            //machine.
+                            // challenge identifier from the client state
+                            // machine.
                             if (eapPacket.getIdentifier() == stateMachine.challengeIdentifier()) {
                                 //send the RADIUS challenge response
-                                radiusPayload = new RADIUS(RADIUS.RADIUS_CODE_ACCESS_REQUEST,
+                                radiusPayload = getRadiusPayload(stateMachine.challengeIdentifier(), eapPacket);
-                                                           eapPacket.getIdentifier());
-                                radiusPayload.setIdentifier(stateMachine.challengeIdentifier());
-                                radiusPayload.setAttribute(RADIUSAttribute.RADIUS_ATTR_USERNAME,
-                                                           stateMachine.username());
-                                radiusPayload.setAttribute(RADIUSAttribute.RADIUS_ATTR_NAS_IP,
-                                                           AAA.this.parsedNasIpAddress.getAddress());
-
-                                radiusPayload.encapsulateMessage(eapPacket);
                                 radiusPayload.setAttribute(RADIUSAttribute.RADIUS_ATTR_STATE,
                                                            stateMachine.challengeState());
-                                radiusPayload.addMessageAuthenticator(AAA.this.radiusSecret);
                                 sendRadiusMessage(radiusPayload);
                             }
                             break;
                         case EAP.ATTR_TLS:
-                            //request id access to RADIUS
+                            // request id access to RADIUS
-                            radiusPayload = new RADIUS(RADIUS.RADIUS_CODE_ACCESS_REQUEST,
+                            radiusPayload = getRadiusPayload(stateMachine.identifier(), eapPacket);
-                                                       eapPacket.getIdentifier());
-                            radiusPayload.setIdentifier(stateMachine.identifier());
-                            radiusPayload.setAttribute(RADIUSAttribute.RADIUS_ATTR_USERNAME,
-                                                       stateMachine.username());
-                            radiusPayload.setAttribute(RADIUSAttribute.RADIUS_ATTR_NAS_IP,
-                                                       AAA.this.parsedNasIpAddress.getAddress());
-
-                            radiusPayload.encapsulateMessage(eapPacket);
                             radiusPayload.setAttribute(RADIUSAttribute.RADIUS_ATTR_STATE,
                                                        stateMachine.challengeState());
                             stateMachine.setRequestAuthenticator(radiusPayload.generateAuthCode());
-                            radiusPayload.addMessageAuthenticator(AAA.this.radiusSecret);
-
                             sendRadiusMessage(radiusPayload);
                             // TODO: this gets called on every fragment, should only be called at TLS-Start
                             stateMachine.requestAccess();