dguerri-radiustar 0.0.4

data/.gitignore

@@ -0,0 +1,7 @@
+.DS_Store
+announcement.txt
+coverage
+doc
+pkg
+*.gem
+**/.DS_Store

data/History.txt

@@ -0,0 +1,11 @@
+== 0.0.4 / 2010-12/04
+* github fork (dguerri)
+* bugfixes
+* added multiple dictionary files support
+* added accounting support
+
+== 0.0.3 / 2010-06-30
+* no longer require to specify your own IP (via bwlang)
+
+== 0.0.1 / 2010-04-14
+* winning at radius

data/README.rdoc

@@ -0,0 +1,90 @@
+== RADIUSTAR
+
+	..................................................................................................
+	..........................................................................H.......................
+	.........................................................................HHH......................
+	........................................................................HHHHH.....................
+	......................................................................HHHHHHHH....................
+	...............................................................@_’’’@HHHHHHHHHHH3HdHdddHd’........
+	.......................................................dWE9p_^^&@d3HHHHHHHHHHHHHHHdHHHH@..........
+	....................................................z933333HHHHHHHHHHHHHHHHHHHHddHdddd’...........
+	..................................................pWp33Hdd@&&dHHHHHHHHHHHHHHHddHHHHd..............
+	............................................33p3p3H@&&_@&@&&__^&3HHHHHHHHHHHHddHdH^...............
+	........................................W3Hd&_&&_&@&_^@WN7WH3H_’.HHHHHHHHHHHHddHdd................
+	...................................WWpHd@&___’’^^@HpNW7JJEENppd’&3HHHHHHHHHHHHddHd&...............
+	................................pH@d&&&@&___^_&&d@HW7JzJEJJ7N3@’3HHHHHdHHHHHHHHHHHd...............
+	........................3ppW3d@^_&__^^&&_^^_d3d39QzEEEE97EENp3&H333HHHdddHHH33HdHdH^..............
+	.....................dd@@dd@&&_^^&__&&d@dHddH@@3EJEWWN7W7EN3H&^p3HHdddHdH&...&dHHHdd..............
+	................&&^__@&_@_^^_^^_&&dpWd3H&&&_HdpWW9EWppHWWHHH&^d3HHHHHHHH’........’_d’.............
+	............_&@@@&&_^’’^_&@&HH33HpWW3dHd^^_’33pp97NWWHHHd@@^’^3HdddHHd^...........................
+	........&d__@’’’’_^’’_&@&@&&3dH@@Hdd&_@____&@Hd@H@@_’’’’’....’^H&HHHH.............................
+	....@@____^’^__^’&&@@@@H3d&@ddd@d^^^@__^d&_’.’’.................HHH...............................
+	Hdd@@____^_&&dd@@d_d__&&__&@^’&__^_’’.’...........................................................
+	@__&&__@&&&_&@@dH&^&^^^’^^^_^’’...................................................................
+	&_ddd@@@&___&&_&’^^’.’’...........................................................................
+
+by pjdavis
+http://github.com/pjdavis/radiustar
+
+== DESCRIPTION:
+
+Ruby Radius Library
+
+== FEATURES
+
+* Import your own radius dictionaries
+* Authentication
+* Accounting
+
+== SYNOPSIS:
+
+  require 'rubygems'
+  require 'radiustar'
+
+  # Load dictionaries from freeradius directory
+  dict = Radiustar::Dictionary.new('/usr/share/freeradius/')
+
+  # Lets get authenticated
+  auth_custom_attr = {
+    'Framed-Address'  => '127.0.0.1',
+    'NAS-Port'        => 0,
+    'NAS-Port-Type'   => 'Ethernet'
+  }
+
+  req = Radiustar::Request.new('127.0.0.1', { :dict => dict })
+  reply = req.authenticate('John Doe', 'hello', 'testing123', auth_custom_attr)
+
+  if reply[:code] == 'Access-Accept'
+    req = Radiustar::Request.new('127.0.0.1:1813', { :dict => dict })
+    
+    acct_custom_attr = {
+      'Framed-Address'  => '127.0.0.1',
+      'NAS-Port'        => 0,
+      'NAS-Port-Type'   => 'Ethernet',
+      'Acct-Session-Time' => 0
+    }
+    
+    timings = Time.now
+    reply = req.accounting_start('John Doe', 'testing123', '123456', acct_custom_attr)
+    
+    sleep(rand 5)
+    acct_custom_attr['Acct-Session-Time'] = Time.now - timings
+    reply = req.accounting_update('John Doe', 'testing123', '123456', acct_custom_attr)
+    
+    sleep(rand 5)
+    acct_custom_attr['Acct-Session-Time'] = Time.now - timings
+    reply = req.accounting_stop('John Doe', 'testing123', '123456', acct_custom_attr)
+
+  end
+
+== REQUIREMENTS:
+
+* Ruby 1.8
+
+== INSTALL:
+
+	gem install radiustar
+
+== LICENSE:
+
+Copyright (c) 2010 [PJ Davis], released under the CC0 1.0 Universal license.

data/Rakefile

@@ -0,0 +1,20 @@
+
+begin
+  require 'bones'
+rescue LoadError
+  abort '### Please install the "bones" gem ###'
+end
+
+task :default => 'test:run'
+task 'gem:release' => 'test:run'
+
+Bones {
+  name        'dguerri-radiustar'
+  authors     'PJ Davis', 'Davide Guerri'
+  email       'davide.guerri@gmail.com'
+  url         'http://github.com/dguerri/radiustar'
+  ignore_file '.gitignore'
+  readme_file 'README.rdoc'
+
+}
+

data/lib/radiustar.rb

@@ -0,0 +1,65 @@
+
+module Radiustar
+
+  # :stopdoc:
+  LIBPATH = ::File.expand_path(::File.dirname(__FILE__)) + ::File::SEPARATOR
+  PATH = ::File.dirname(LIBPATH) + ::File::SEPARATOR
+  # :startdoc:
+
+  # Returns the version string for the library.
+  #
+  def self.version
+    @version ||= File.read(path('version.txt')).strip
+  end
+
+  # Returns the library path for the module. If any arguments are given,
+  # they will be joined to the end of the libray path using
+  # <tt>File.join</tt>.
+  #
+  def self.libpath( *args, &block )
+    rv =  args.empty? ? LIBPATH : ::File.join(LIBPATH, args.flatten)
+    if block
+      begin
+        $LOAD_PATH.unshift LIBPATH
+        rv = block.call
+      ensure
+        $LOAD_PATH.shift
+      end
+    end
+    return rv
+  end
+
+  # Returns the lpath for the module. If any arguments are given,
+  # they will be joined to the end of the path using
+  # <tt>File.join</tt>.
+  #
+  def self.path( *args, &block )
+    rv = args.empty? ? PATH : ::File.join(PATH, args.flatten)
+    if block
+      begin
+        $LOAD_PATH.unshift PATH
+        rv = block.call
+      ensure
+        $LOAD_PATH.shift
+      end
+    end
+    return rv
+  end
+
+  # Utility method used to require all files ending in .rb that lie in the
+  # directory below this file that has the same name as the filename passed
+  # in. Optionally, a specific _directory_ name can be passed in such that
+  # the _filename_ does not have to be equivalent to the directory.
+  #
+  def self.require_all_libs_relative_to( fname, dir = nil )
+    dir ||= ::File.basename(fname, '.*')
+    search_me = ::File.expand_path(
+        ::File.join(::File.dirname(fname), dir, '**', '*.rb'))
+
+    Dir.glob(search_me).sort.each {|rb| require rb}
+  end
+
+end  # module Radiustar
+
+Radiustar.require_all_libs_relative_to(__FILE__)
+

data/lib/radiustar/dictionary.rb

@@ -0,0 +1,140 @@
+module Radiustar
+
+  class Dictionary
+
+    include Radiustar
+
+    DEFAULT_DICTIONARIES_PATH = ::File.join(::File.dirname(__FILE__), '..', '..', 'templates')
+
+    def initialize(initial_path = nil)
+      @attributes = AttributesCollection.new
+      @vendors = VendorCollection.new
+
+      read_files initial_path if initial_path
+    end
+
+    def read_files(path)
+      dict_files = File.join(path, "*")
+      Dir.glob(dict_files) { |file|
+        read_attributes(file)
+      }
+      Dir.glob(dict_files) { |file|
+        read_values(file)
+      }
+    end
+    
+    def find_attribute_by_name(name)
+      @attributes.find_by_name(name)
+    end
+
+    def find_attribute_by_id(id)
+      @attributes.find_by_id(id)
+    end
+
+    def attribute_name_defined?(name)
+      !@attributes.find_by_name(name).nil?
+    end
+
+    def attribute_id_defined?(id)
+      !@attributes.find_by_id(id).nil?
+    end
+
+    def vendors
+      @vendors
+    end
+
+    def attributes
+      @attributes
+    end
+
+    def name
+      "Dictionary"
+    end
+
+    class << self
+
+      def default
+        new DEFAULT_DICTIONARIES_PATH
+      end
+
+    end
+
+    protected
+    
+    def read_attributes(path)
+      file = File.open(path) do |f|
+        current_vendor = nil
+        f.each_line do |line|
+          next if line =~ /^\#/	# discard comments
+          split_line = line.split(/\s+/)
+          next if split_line == []
+          case split_line.first.upcase
+          when "ATTRIBUTE"
+            current_vendor.nil? ? set_attr(split_line) : set_vendor_attr(current_vendor, split_line)
+          when "VENDOR"
+            add_vendor(split_line)
+          when "BEGIN-VENDOR"
+            current_vendor = set_vendor(split_line)
+          when "END-VENDOR"
+            current_vendor = nil
+          end
+        end
+      end
+    end
+
+    def read_values(path)
+      file = File.open(path) do |f|
+        current_vendor = nil
+        f.each_line do |line|
+          next if line =~ /^\#/	# discard comments
+          split_line = line.split(/\s+/)
+          next if split_line == []
+          case split_line.first.upcase
+          when "VALUE"
+            if current_vendor.nil?
+              set_value(split_line)
+            else
+              begin
+                set_vendor_value(current_vendor, split_line)
+              rescue
+                set_value(split_line)
+              end
+            end
+          when "BEGIN-VENDOR"
+            current_vendor = set_vendor(split_line)
+          when "END-VENDOR"
+            current_vendor = nil
+          end
+        end
+      end
+    end
+
+    private
+
+    def set_attr(line)
+      @attributes.add(line[1], line[2], line[3])
+    end
+
+    def set_value(line)
+      @attributes.find_by_name(line[1]).add_value(line[2], line[3])
+    end
+
+    def add_vendor(line)
+      @vendors.add(line[2], line[1])
+    end
+
+    def set_vendor(line)
+      @vendors.find_by_name(line[1])
+    end
+
+    def set_vendor_attr(vendor, line)
+      vendor.add_attribute(line[1], line[2], line[3])
+    end
+
+    def set_vendor_value(vendor, line)
+      vendor.find_attribute_by_name(line[1]).add_value(line[2], line[3])
+    end
+
+  end
+
+end

data/lib/radiustar/dictionary/attributes.rb

@@ -0,0 +1,61 @@
+module Radiustar
+
+  class AttributesCollection < Array
+
+    def initialize
+      @collection = {}
+      @revcollection = {}
+    end
+
+    def add(name, id, type)
+      @collection[name] ||= Attribute.new(name, id.to_i, type)
+      @revcollection[id.to_i] ||= @collection[name]
+      self << @collection[name]
+    end
+
+    def find_by_name(name)
+      @collection[name]
+    end
+
+    def find_by_id(id)
+      @revcollection[id]
+    end
+
+  end
+
+  class Attribute
+
+    include Radiustar
+
+    attr_reader :name, :id, :type
+
+    def initialize(name, id, type)
+      @values = ValuesCollection.new
+      @name = name
+      @id = id.to_i
+      @type = type
+    end
+
+    def add_value(name, id)
+      @values.add(name, id.to_i)
+    end
+
+    def find_values_by_name(name)
+      @values.find_by_name(name)
+    end
+
+    def find_values_by_id(id)
+      @values.find_by_id(id.to_i)
+    end
+
+    def has_values?
+      !@values.empty?
+    end
+
+    def values
+      @values
+    end
+
+  end
+
+end

data/lib/radiustar/dictionary/values.rb

@@ -0,0 +1,43 @@
+module Radiustar
+
+  class ValuesCollection < Array
+
+    def initialize
+      @collection = {}
+      @revcollection = {}
+    end
+
+    def add(name, id)
+      @collection[name] ||= Value.new(name, id)
+      @revcollection[id.to_i] ||= @collection[name]
+      self << @collection[name]
+    end
+
+    def find_by_name(name)
+      @collection[name]
+    end
+
+    def find_by_id(id)
+      @revcollection[id]
+    end
+
+    def empty?
+      @collection.empty?
+    end
+
+  end
+
+  class Value
+
+    include Radiustar
+
+    attr_accessor :name, :id
+
+    def initialize(name, id)
+      @name = name
+      @id = id.to_i
+    end
+
+  end
+
+end

data/lib/radiustar/packet.rb

@@ -0,0 +1,210 @@
+module Radiustar
+
+  require 'digest/md5'
+
+  class Packet
+
+    CODES = { 'Access-Request' => 1,        'Access-Accept' => 2,
+              'Access-Reject' => 3,         'Accounting-Request' => 4,
+              'Accounting-Response' => 5,   'Access-Challenge' => 11,
+              'Status-Server' => 12,        'Status-Client' => 13 }
+
+
+    HDRLEN = 1 + 1 + 2 + 16	# size of packet header
+    P_HDR = "CCna16a*"	# pack template for header
+    P_ATTR = "CCa*"		# pack template for attribute
+
+    attr_accessor :code
+    attr_reader :id, :attributes
+
+    def initialize(dictionary, id, data = nil)
+      @dict = dictionary
+      @id = id
+      unset_all_attributes
+      if data
+        @packed = data
+        self.unpack
+      end
+      self
+    end
+
+    def increment_id
+      @id = (@id + 1) & 0xff
+    end
+
+    def to_a
+      @attributes.to_a
+    end
+
+    # Generate an authenticator. It will try to use /dev/urandom if
+    # possible, or the system rand call if that's not available.
+    def gen_auth_authenticator
+      if (File.exist?("/dev/urandom"))
+        File.open("/dev/urandom") do |urandom|
+          @authenticator = urandom.read(16)
+        end
+      else
+        @authenticator = []
+        8.times do
+          @authenticator << rand(65536)
+        end
+        @authenticator = @authenticator.pack("n8")
+      end
+    end
+
+    def gen_acct_authenticator(secret)
+      # From RFC2866
+      # Request Authenticator
+      # 
+      #       In Accounting-Request Packets, the Authenticator value is a 16
+      #       octet MD5 [5] checksum, called the Request Authenticator.
+      # 
+      #       The NAS and RADIUS accounting server share a secret.  The Request
+      #       Authenticator field in Accounting-Request packets contains a one-
+      #       way MD5 hash calculated over a stream of octets consisting of the
+      #       Code + Identifier + Length + 16 zero octets + request attributes +
+      #       shared secret (where + indicates concatenation).  The 16 octet MD5
+      #       hash value is stored in the Authenticator field of the
+      #       Accounting-Request packet.
+      # 
+      #       Note that the Request Authenticator of an Accounting-Request can
+      #       not be done the same way as the Request Authenticator of a RADIUS
+      #       Access-Request, because there is no User-Password attribute in an
+      #       Accounting-Request.
+      #       
+      @authenticator = "\000"*16
+      @authenticator = Digest::MD5.digest(pack + secret)
+      @packed = nil
+    end
+
+    def set_attribute(name, value)
+      @attributes[name] = value
+    end
+
+    def unset_attribute(name)
+      @attributes[name] = nil
+    end
+
+    def attribute(name)
+      @attributes[name]
+    end
+
+    def unset_all_attributes
+      @attributes = Hash.new
+    end
+
+    def set_encoded_attribute(name, value, secret)
+      @attributes[name] = encode(value, secret)
+    end
+
+    def pack
+
+      attstr = ""
+      @attributes.each_pair do |attribute_s, value|
+        attribute = @dict.find_attribute_by_name(attribute_s)
+        raise "Undefned attribute '#{attribute_s}'." if attribute.nil?
+        anum = attribute.id
+        val = case attribute.type
+        when "string"
+          value
+        when "integer"
+          if attribute.has_values?
+            raise "Invalid value name '#{value}'" if attribute.find_values_by_name(value).nil?
+          end
+          [attribute.has_values? ? attribute.find_values_by_name(value).id : value].pack("N")
+        when "ipaddr"
+          [inet_aton(value)].pack("N")
+        when "date"
+          [value].pack("N")
+        when "time"
+          [value].pack("N")
+        else
+          next
+        end
+        attstr += [attribute.id, val.length + 2, val].pack(P_ATTR)
+      end
+
+      @packed = [CODES[@code], @id, attstr.length + HDRLEN, @authenticator, attstr].pack(P_HDR)
+    end
+
+    protected
+
+    def unpack
+      @code, @id, len, @authenticator, attribute_data = @packed.unpack(P_HDR)
+      @code = CODES.index(@code)
+
+      unset_all_attributes
+
+      while attribute_data.length > 0 do
+        length = attribute_data.unpack("xC").first.to_i
+        attribute_type, attribute_value = attribute_data.unpack("Cxa#{length-2}")
+        attribute_type = attribute_type.to_i
+
+        attribute = @dict.find_attribute_by_id(attribute_type)
+        attribute_value = case attribute.type
+        when 'string'
+          attribute_value
+        when 'integer'
+          attribute.has_values? ? attribute.find_values_by_id(attribute_value.unpack("N")[0]).name : attribute_value.unpack("N")[0]
+        when 'ipaddr'
+          inet_ntoa(attribute_value.unpack("N")[0])
+        when 'time'
+          attribute_value.unpack("N")[0]
+        when 'date'
+          attribute_value.unpack("N")[0]
+        end
+
+        set_attribute(attribute.name, attribute_value) if attribute
+        attribute_data[0, length] = ""
+      end
+    end
+
+    def inet_aton(hostname)
+      if (hostname =~ /([0-9]+)\.([0-9]+)\.([0-9]+)\.([0-9]+)/)
+        return (($1.to_i & 0xff) << 24) + (($2.to_i & 0xff) << 16) + (($3.to_i & 0xff) << 8) + (($4.to_i & 0xff))
+      end
+      0
+    end
+
+    def inet_ntoa(iaddr)
+      sprintf("%d.%d.%d.%d", (iaddr >> 24) & 0xff, (iaddr >> 16) & 0xff, (iaddr >> 8) & 0xff, (iaddr) & 0xff)
+    end
+
+    def xor_str(str1, str2)
+      i = 0
+      newstr = ""
+      str1.each_byte do |c1|
+        c2 = str2[i]
+        newstr = newstr << (c1 ^ c2)
+        i = i+1
+      end
+      newstr
+    end
+
+    def encode(value, secret)
+      lastround = @authenticator
+      encoded_value = ""
+      # pad to 16n bytes
+      value += "\000" * (15-(15 + value.length) % 16)
+      0.step(value.length-1, 16) do |i|
+        lastround = xor_str(value[i, 16], Digest::MD5.digest(secret + lastround) )
+        encoded_value += lastround
+      end
+      encoded_value
+    end
+
+    def decode(value, secret)
+      decoded_value = ""
+      lastround = @authenticator
+      0.step(value.length-1, 16) do |i|
+	      decoded_value = xor_str(value[i, 16], Digest::MD5.digest(secret + lastround))
+	      lastround = value[i, 16]
+      end
+
+      decoded_value.gsub!(/\000+/, "") if decoded_value
+      decoded_value[value.length, -1] = "" unless (decoded_value.length <= value.length)
+      return decoded_value
+    end
+
+  end
+end

data/lib/radiustar/radiustar.rb

@@ -0,0 +1,7 @@
+module Radiustar
+
+  def inspect
+    "#<#{self.class}:#{self.name}>"
+  end
+
+end

data/lib/radiustar/request.rb

@@ -0,0 +1,124 @@
+module Radiustar
+
+  require 'socket'
+
+  class Request
+
+    def initialize(server, options = {})
+      @dict = options[:dict].nil? ? Dictionary.default : options[:dict]
+      @nas_ip = options[:nas_ip] || get_my_ip(@host)
+      @nas_identifier = options[:nas_identifier] || @nas_ip
+      @reply_timeout = options[:reply_timeout].nil? ? 60 : options[:reply_timeout].to_i
+      @retries_number = options[:retries_number].nil? ? 1 : options[:retries_number].to_i
+
+      @host, @port = server.split(":")
+
+      @port = Socket.getservbyname("radius", "udp") unless @port
+      @port = 1812 unless @port
+      @port = @port.to_i	# just in case
+      @socket = UDPSocket.open
+      @socket.connect(@host, @port)
+    end
+
+    def authenticate(name, password, secret, user_attributes = {})
+      @packet = Packet.new(@dict, Process.pid & 0xff)
+      @packet.gen_auth_authenticator
+      @packet.code = 'Access-Request'
+      @packet.set_attribute('User-Name', name)
+      @packet.set_attribute('NAS-Identifier', @nas_identifier)
+      @packet.set_attribute('NAS-IP-Address', @nas_ip)
+      @packet.set_encoded_attribute('User-Password', password, secret)
+
+      user_attributes.each_pair do |name, value|
+        @packet.set_attribute(name, value)
+      end
+
+      begin
+        send_packet
+        @recieved_packet = recv_packet(@reply_timeout)
+      rescue Exception => e
+        retry if (@retries_number -= 1) > 0
+        raise
+      end
+
+      reply = { :code => @recieved_packet.code }
+      reply.merge @recieved_packet.attributes
+    end
+    
+    def accounting_request(status_type, name, secret, sessionid, user_attributes = {})
+
+      @packet = Packet.new(@dict, Process.pid & 0xff)
+      @packet.code = 'Accounting-Request'
+
+      @packet.set_attribute('User-Name', name)
+      @packet.set_attribute('NAS-Identifier', @nas_identifier)
+      @packet.set_attribute('NAS-IP-Address', @nas_ip)
+      @packet.set_attribute('Acct-Status-Type', status_type)
+      @packet.set_attribute('Acct-Session-Id', sessionid)
+      @packet.set_attribute('Acct-Authentic', 'RADIUS')
+
+      user_attributes.each_pair do |name, value|
+        @packet.set_attribute(name, value)
+      end
+
+      @packet.gen_acct_authenticator(secret)
+
+      begin
+        send_packet
+        @recieved_packet = recv_packet(@reply_timeout)
+      rescue Exception => e
+        retry if (@retries_number -= 1) > 0
+        raise
+      end
+
+      return true
+    end
+
+    def accounting_start(name, secret, sessionid, options = {})
+      accounting_request('Start', name, secret, sessionid, options)
+    end
+
+    def accounting_update(name, secret, sessionid, options = {})
+      accounting_request('Interim-Update', name, secret, sessionid, options)
+    end
+
+    def accounting_stop(name, secret, sessionid, options = {})
+      accounting_request('Stop', name, secret, sessionid, options)
+    end
+
+    def inspect
+      to_s
+    end
+
+    private
+
+    def send_packet
+      data = @packet.pack
+      @packet.increment_id
+      @socket.send(data, 0)
+    end
+
+    def recv_packet(timeout)
+      if select([@socket], nil, nil, timeout.to_i) == nil
+        raise "Timed out waiting for response packet from server"
+      end
+      data = @socket.recvfrom(64)
+      Packet.new(@dict, Process.pid & 0xff, data[0])
+    end
+
+    #looks up the source IP address with a route to the specified destination
+    def get_my_ip(dest_address)
+      orig_reverse_lookup_setting = Socket.do_not_reverse_lookup
+      Socket.do_not_reverse_lookup = true
+
+      UDPSocket.open do |sock|
+        sock.connect dest_address, 1
+        sock.addr.last
+      end
+    ensure
+       Socket.do_not_reverse_lookup = orig_reverse_lookup_setting
+    end
+
+  end
+
+end

data/lib/radiustar/vendor.rb

@@ -0,0 +1,60 @@
+module Radiustar
+
+  class VendorCollection < Array
+
+    def initialize
+      @collection = {}
+      @revcollection = []
+    end
+
+    def add(id, name)
+      @collection[name] ||= Vendor.new(name, id)
+      @revcollection[id.to_i] ||= @collection[name]
+      self << @collection[name]
+    end
+
+    def find_by_name(name)
+      @collection[name]
+    end
+
+    def find_by_id(id)
+      @revcollection[id.to_i]
+    end
+
+  end
+
+  class Vendor
+
+    include Radiustar
+
+    attr_reader :name, :id
+
+    def initialize(name, id)
+      @name = name
+      @id = id
+      @attributes = AttributesCollection.new
+    end
+
+    def add_attribute(name, id, type)
+      @attributes.add(name, id, type)
+    end
+
+    def find_attribute_by_name(name)
+      @attributes.find_by_name(name)
+    end
+
+    def find_attribute_by_id(id)
+      @attributes.find_by_id(id.to_i)
+    end
+
+    def has_attributes?
+      !@attributes.empty?
+    end
+
+    def attributes
+      @attributes
+    end
+
+  end
+
+end

data/radiustar.gemspec

@@ -0,0 +1,34 @@
+# -*- encoding: utf-8 -*-
+
+Gem::Specification.new do |s|
+  s.name = %q{dguerri-radiustar}
+  s.version = "0.0.4"
+
+  s.required_rubygems_version = Gem::Requirement.new(">= 0") if s.respond_to? :required_rubygems_version=
+  s.authors = ["PJ Davis", "Davide Guerri"]
+  s.date = %q{2010-12-04}
+  s.description = %q{Ruby Radius Library}
+  s.email = %q{davide.guerri@gmail.com}
+  s.extra_rdoc_files = ["History.txt", "README.rdoc", "templates/default.txt", "version.txt"]
+  s.files = [".gitignore", "History.txt", "README.rdoc", "Rakefile", "lib/radiustar.rb", "lib/radiustar/dictionary.rb", "lib/radiustar/dictionary/attributes.rb", "lib/radiustar/dictionary/values.rb", "lib/radiustar/packet.rb", "lib/radiustar/radiustar.rb", "lib/radiustar/request.rb", "lib/radiustar/vendor.rb", "radiustar.gemspec", "spec/radiustar_spec.rb", "spec/spec_helper.rb", "templates/default.txt", "templates/dictionary.digium", "templates/gandalf.dictionary", "test/test_radiustar.rb", "version.txt"]
+  s.homepage = %q{http://github.com/dguerri/radiustar}
+  s.rdoc_options = ["--main", "README.rdoc"]
+  s.require_paths = ["lib"]
+  s.rubyforge_project = %q{radiustar}
+  s.rubygems_version = %q{1.3.6}
+  s.summary = %q{Ruby Radius Library}
+  s.test_files = ["test/test_radiustar.rb"]
+
+  if s.respond_to? :specification_version then
+    current_version = Gem::Specification::CURRENT_SPECIFICATION_VERSION
+    s.specification_version = 3
+
+    if Gem::Version.new(Gem::RubyGemsVersion) >= Gem::Version.new('1.2.0') then
+      s.add_development_dependency(%q<bones>, [">= 3.4.1"])
+    else
+      s.add_dependency(%q<bones>, [">= 3.4.1"])
+    end
+  else
+    s.add_dependency(%q<bones>, [">= 3.4.1"])
+  end
+end

data/spec/radiustar_spec.rb

@@ -0,0 +1,16 @@
+require File.join(File.dirname(__FILE__), %w[spec_helper])
+
+describe Radiustar::Packet do    
+  it "gen_authenticator generates a random string without /dev/urandom" do
+    File.stub(:exist?).and_return(false)
+    packet = Radiustar::Packet.new(nil, nil)
+    packet.gen_authenticator.class.should == String
+  end
+
+  if File.exist?("/dev/urandom") # don't fail if specs are running on a platform without /dev/urandom
+    it "gen_authenticator generates a random string with /dev/urandom" do
+      packet = Radiustar::Packet.new(nil, nil)
+      packet.gen_authenticator.class.should == String
+    end
+  end
+end

data/spec/spec_helper.rb

@@ -0,0 +1,15 @@
+
+require File.expand_path(
+    File.join(File.dirname(__FILE__), %w[.. lib radiustar]))
+
+Spec::Runner.configure do |config|
+  # == Mock Framework
+  #
+  # RSpec uses it's own mocking framework by default. If you prefer to
+  # use mocha, flexmock or RR, uncomment the appropriate line:
+  #
+  # config.mock_with :mocha
+  # config.mock_with :flexmock
+  # config.mock_with :rr
+end
+

data/templates/default.txt

@@ -0,0 +1,207 @@
+#
+#	This file contains dictionary translations for parsing
+#	requests and generating responses.  All transactions are
+#	composed of Attribute/Value Pairs.  The value of each attribute
+#	is specified as one of 4 data types.  Valid data types are:
+#
+#	string - 0-253 octets
+#	ipaddr - 4 octets in network byte order
+#	integer - 32 bit value in big endian order (high byte first)
+#	date - 32 bit value in big endian order - seconds since
+#					00:00:00 GMT,  Jan.  1,	 1970
+#
+#	Enumerated values are stored in the user file with dictionary
+#	VALUE translations for easy administration.
+#
+#	Example:
+#
+#	ATTRIBUTE	  VALUE
+#	---------------	  -----
+#	Framed-Protocol = PPP
+#	7		= 1	(integer encoding)
+#
+
+
+
+#
+# Proper names for everything - use this instead of the above
+#
+ATTRIBUTE	User-Name		1	string
+ATTRIBUTE	User-Password		2	string
+ATTRIBUTE	CHAP-Password		3	string
+ATTRIBUTE	NAS-IP-Address		4	ipaddr
+ATTRIBUTE	NAS-Port		5	integer
+ATTRIBUTE	Service-Type		6	integer
+ATTRIBUTE	Framed-Protocol		7	integer
+ATTRIBUTE	Framed-IP-Address	8	ipaddr
+ATTRIBUTE	Framed-IP-Netmask	9	ipaddr
+ATTRIBUTE	Framed-Routing		10	integer
+ATTRIBUTE	Filter-Id		11	string
+ATTRIBUTE	Framed-MTU		12	integer
+ATTRIBUTE	Framed-Compression	13	integer
+ATTRIBUTE	Login-IP-Host		14	ipaddr
+ATTRIBUTE	Login-Service		15	integer
+ATTRIBUTE	Login-TCP-Port		16	integer
+ATTRIBUTE	Reply-Message		18	string
+ATTRIBUTE	Callback-Number		19	string
+ATTRIBUTE	Callback-Id		20	string
+ATTRIBUTE	Expiration		21	date
+ATTRIBUTE	Framed-Route		22	string
+ATTRIBUTE	Framed-IPX-Network	23	ipaddr
+ATTRIBUTE	State			24	string
+ATTRIBUTE	Session-Timeout		27	integer
+ATTRIBUTE	Idle-Timeout		28	integer
+ATTRIBUTE	Termination-Action	29	integer
+ATTRIBUTE	Called-Station-Id	30	string
+ATTRIBUTE	Calling-Station-Id	31	string
+ATTRIBUTE	Acct-Status-Type	40	integer
+ATTRIBUTE	Acct-Delay-Time		41	integer
+ATTRIBUTE	Acct-Input-Octets	42	integer
+ATTRIBUTE	Acct-Output-Octets	43	integer
+ATTRIBUTE	Acct-Session-Id		44	string
+ATTRIBUTE	Acct-Authentic		45	integer
+ATTRIBUTE	Acct-Session-Time	46	integer
+ATTRIBUTE	Acct-Terminate-Cause	49	integer
+ATTRIBUTE	NAS-Port-Type		61	integer
+ATTRIBUTE	Port-Limit		62	integer
+
+
+#
+#	Integer Translations
+#
+
+#	User Types
+
+VALUE		Service-Type	Login-User		1
+VALUE		Service-Type	Framed-User		2
+VALUE		Service-Type	Callback-Login-User	3
+VALUE		Service-Type	Callback-Framed-User	4
+VALUE		Service-Type	Outbound-User		5
+VALUE		Service-Type	Administrative-User	6
+VALUE		Service-Type	NAS-Prompt-User		7
+
+#	Framed Protocols
+
+VALUE		Framed-Protocol		PPP			1
+VALUE		Framed-Protocol		SLIP			2
+
+#	Framed Routing Values
+
+VALUE		Framed-Routing		None			0
+VALUE		Framed-Routing		Broadcast		1
+VALUE		Framed-Routing		Listen			2
+VALUE		Framed-Routing		Broadcast-Listen	3
+
+#	Framed Compression Types
+
+VALUE		Framed-Compression	None			0
+VALUE		Framed-Compression	Van-Jacobson-TCP-IP	1
+
+#	Login Services
+
+VALUE		Login-Service		Telnet			0
+VALUE		Login-Service		Rlogin			1
+VALUE		Login-Service		TCP-Clear		2
+VALUE		Login-Service		PortMaster		3
+
+#	Status Types
+
+VALUE		Acct-Status-Type	Start			1
+VALUE		Acct-Status-Type	Stop			2
+
+#	Authentication Types
+
+VALUE		Acct-Authentic		RADIUS			1
+VALUE		Acct-Authentic		Local			2
+VALUE		Acct-Authentic		PowerLink128		100
+
+#	Termination Options
+
+VALUE		Termination-Action	Default			0
+VALUE		Termination-Action	RADIUS-Request		1
+
+#	NAS Port Types, available in ComOS 3.3.1 and later
+
+VALUE		NAS-Port-Type		Async			0
+VALUE		NAS-Port-Type		Sync			1
+VALUE		NAS-Port-Type		ISDN			2
+VALUE		NAS-Port-Type		ISDN-V120		3
+VALUE		NAS-Port-Type		ISDN-V110		4
+
+#	Acct Terminate Causes, available in ComOS 3.3.2 and later
+
+VALUE		Acct-Terminate-Cause	User-Request		1
+VALUE		Acct-Terminate-Cause	Lost-Carrier		2
+VALUE		Acct-Terminate-Cause	Lost-Service		3
+VALUE		Acct-Terminate-Cause	Idle-Timeout		4
+VALUE		Acct-Terminate-Cause	Session-Timeout		5
+VALUE		Acct-Terminate-Cause	Admin-Reset		6
+VALUE		Acct-Terminate-Cause	Admin-Reboot		7
+VALUE		Acct-Terminate-Cause	Port-Error		8
+VALUE		Acct-Terminate-Cause	NAS-Error		9
+VALUE		Acct-Terminate-Cause	NAS-Request		10
+VALUE		Acct-Terminate-Cause	NAS-Reboot		11
+VALUE		Acct-Terminate-Cause	Port-Unneeded		12
+VALUE		Acct-Terminate-Cause	Port-Preempted		13
+VALUE		Acct-Terminate-Cause	Port-Suspended		14
+VALUE		Acct-Terminate-Cause	Service-Unavailable	15
+VALUE		Acct-Terminate-Cause	Callback		16
+VALUE		Acct-Terminate-Cause	User-Error		17
+VALUE		Acct-Terminate-Cause	Host-Request		18
+
+
+#
+# Obsolete names for backwards compatibility with older users files
+# If you want RADIUS accounting logs to use the new names instead of
+# these, move this section to the beginning of the dictionary file
+# and kill and restart radiusd
+# If you don't have a RADIUS 1.16 users file that you're still using,
+# you can delete or ignore this section.
+#
+ATTRIBUTE	Client-Id		4	ipaddr
+ATTRIBUTE	Client-Port-Id		5	integer
+ATTRIBUTE	User-Service-Type	6	integer
+ATTRIBUTE	Framed-Address		8	ipaddr
+ATTRIBUTE	Framed-Netmask		9	ipaddr
+ATTRIBUTE	Framed-Filter-Id	11	string
+ATTRIBUTE	Login-Host		14	ipaddr
+ATTRIBUTE	Login-Port		16	integer
+ATTRIBUTE	Old-Password		17	string
+ATTRIBUTE	Port-Message		18	string
+ATTRIBUTE	Dialback-No		19	string
+ATTRIBUTE	Dialback-Name		20	string
+ATTRIBUTE	Challenge-State		24	string
+VALUE		Service-Type		Dialback-Login-User	3
+VALUE		Service-Type		Dialback-Framed-User	4
+VALUE		Service-Type		Shell-User		6
+VALUE		Framed-Compression	Van-Jacobsen-TCP-IP	1
+#VALUE		Auth-Type		Unix			1
+#
+# END of obsolete names for backwards compatibility
+#
+
+#
+#	Configuration Values
+#	uncomment out these two lines to turn account expiration on
+#
+
+#VALUE		Server-Config		Password-Expiration	30
+#VALUE		Server-Config		Password-Warning	5
+
+##
+## VENDOR SPECIFIC ATTRIBUTES
+##
+## The following entries demonstrate the use of VSAs
+##
+
+# cisco-avpair is used for various functions by cisco IOS. Most
+# notably, it's used to create VPDN tunnels.
+#
+VENDORATTR	9	cisco-avpair	1	string
+
+# This is a fake attribute to demonstrate how to write named-value
+# attributes.
+VENDORATTR	1	ibm-enum	254	integer
+VENDORVALUE	1	ibm-enum	value-1	1
+VENDORVALUE	1	ibm-enum	value-2	2
+VENDORVALUE	1	ibm-enum	value-3	3

data/templates/dictionary.digium

@@ -0,0 +1,36 @@
+# -*- text -*-
+##############################################################################
+#
+#       Digium's Asterisk specific radius attributes
+#	markster@digium.com
+#
+#	http://bugs.digium.com/file_download.php\?file_id=9688\&type=bug
+#
+#	$Id$
+#
+##############################################################################
+
+VENDOR		Digium				22736
+
+BEGIN-VENDOR	Digium
+
+ATTRIBUTE	Asterisk-Acc-Code			101	string
+ATTRIBUTE	Asterisk-Src				102	string
+ATTRIBUTE	Asterisk-Dst				103	string
+ATTRIBUTE	Asterisk-Dst-Ctx			104	string
+ATTRIBUTE	Asterisk-Clid				105	string
+ATTRIBUTE	Asterisk-Chan				106	string
+ATTRIBUTE	Asterisk-Dst-Chan			107	string
+ATTRIBUTE	Asterisk-Last-App			108	string
+ATTRIBUTE	Asterisk-Last-Data			109	string
+ATTRIBUTE	Asterisk-Start-Time			110	string
+ATTRIBUTE	Asterisk-Answer-Time			111	string
+ATTRIBUTE	Asterisk-End-Time			112	string
+ATTRIBUTE	Asterisk-Duration			113	integer
+ATTRIBUTE	Asterisk-Bill-Sec			114	integer
+ATTRIBUTE	Asterisk-Disposition			115	string
+ATTRIBUTE	Asterisk-AMA-Flags			116	string
+ATTRIBUTE	Asterisk-Unique-ID			117	string
+ATTRIBUTE	Asterisk-User-Field			118	string
+
+END-VENDOR	Digium

data/templates/gandalf.dictionary

@@ -0,0 +1,105 @@
+# -*- text -*-
+#  Gandalf dictionary
+#
+# Version:	1.00	24-July-2003 Blaise St-Laurent <bstlaurent@okiok.com>
+#
+#	Notes: Dictionary was made specifically for the Gandalf XpressWay
+#		RLAN with Link Authentication through RADIUS
+#
+#	$Id$
+#
+VENDOR		Gandalf				64
+
+#
+#	Vendor-specific attributes
+#
+BEGIN-VENDOR	Gandalf
+
+ATTRIBUTE	Gandalf-Remote-LAN-Name			0	string
+ATTRIBUTE	Gandalf-Operational-Modes		1	integer
+ATTRIBUTE	Gandalf-Compression-Status		2	integer
+ATTRIBUTE	Gandalf-Min-Outgoing-Bearer		3	integer
+ATTRIBUTE	Gandalf-Authentication-String		5	string
+ATTRIBUTE	Gandalf-PPP-Authentication		6	integer
+ATTRIBUTE	Gandalf-PPP-NCP-Type			7	integer
+ATTRIBUTE	Gandalf-Fwd-Multicast-In		8	integer
+ATTRIBUTE	Gandalf-Fwd-Broadcast-In		9	integer
+ATTRIBUTE	Gandalf-Fwd-Unicast-In			10	integer
+ATTRIBUTE	Gandalf-Fwd-Multicast-Out		11	integer
+ATTRIBUTE	Gandalf-Fwd-Broadcast-Out		12	integer
+ATTRIBUTE	Gandalf-Fwd-Unicast-Out			13	integer
+ATTRIBUTE	Gandalf-Around-The-Corner		14	integer
+ATTRIBUTE	Gandalf-Channel-Group-Name-1		15	string
+ATTRIBUTE	Gandalf-Dial-Prefix-Name-1		16	string
+ATTRIBUTE	Gandalf-Phone-Number-1			17	string
+ATTRIBUTE	Gandalf-Calling-Line-ID-1		18	string
+ATTRIBUTE	Gandalf-Channel-Group-Name-2		19	string
+ATTRIBUTE	Gandalf-Dial-Prefix-Name-2		20	string
+ATTRIBUTE	Gandalf-Phone-Number-2			21	string
+ATTRIBUTE	Gandalf-Calling-Line-ID-2		22	string
+ATTRIBUTE	Gandalf-IPX-Spoofing-State		23	integer
+ATTRIBUTE	Gandalf-IPX-Watchdog-Spoof		24	integer
+ATTRIBUTE	Gandalf-SAP-Group-Name-1		25	string
+ATTRIBUTE	Gandalf-SAP-Group-Name-2		26	string
+ATTRIBUTE	Gandalf-SAP-Group-Name-3		27	string
+ATTRIBUTE	Gandalf-SAP-Group-Name-4		28	string
+ATTRIBUTE	Gandalf-SAP-Group-Name-5		29	string
+ATTRIBUTE	Gandalf-Hunt-Group			30	string
+ATTRIBUTE	Gandalf-Modem-Mode			31	integer
+ATTRIBUTE	Gandalf-Modem-Required-1		32	integer
+ATTRIBUTE	Gandalf-Modem-Required-2		33	integer
+
+VALUE	Gandalf-Operational-Modes	Disabled		1
+VALUE	Gandalf-Operational-Modes	Called-Only		2
+VALUE	Gandalf-Operational-Modes	Calling-Called		3
+VALUE	Gandalf-Operational-Modes	Calling-Only		4
+
+VALUE	Gandalf-Compression-Status	Disabled		1
+VALUE	Gandalf-Compression-Status	Enabled			2
+
+VALUE	Gandalf-Min-Outgoing-Bearer	Unrestricted-64K	1
+VALUE	Gandalf-Min-Outgoing-Bearer	Digital-56K		2
+VALUE	Gandalf-Min-Outgoing-Bearer	3100Hz-Audio		3
+
+VALUE	Gandalf-PPP-Authentication	CHAP			1
+VALUE	Gandalf-PPP-Authentication	PAP			2
+VALUE	Gandalf-PPP-Authentication	PAP-Sending-on-Incoming-Calls 3
+
+VALUE	Gandalf-PPP-NCP-Type		BCP			2
+VALUE	Gandalf-PPP-NCP-Type		IPCP			3
+
+VALUE	Gandalf-Fwd-Multicast-In	Disabled		1
+VALUE	Gandalf-Fwd-Multicast-In	Enabled			2
+
+VALUE	Gandalf-Fwd-Broadcast-In	Disabled		1
+VALUE	Gandalf-Fwd-Broadcast-In	Enabled			2
+
+VALUE	Gandalf-Fwd-Unicast-In		Disabled		1
+VALUE	Gandalf-Fwd-Unicast-In		Enabled			2
+
+VALUE	Gandalf-Fwd-Multicast-Out	Disabled		1
+VALUE	Gandalf-Fwd-Multicast-Out	Enabled			2
+
+VALUE	Gandalf-Fwd-Broadcast-Out	Disabled		1
+VALUE	Gandalf-Fwd-Broadcast-Out	Enabled			2
+
+VALUE	Gandalf-Fwd-Unicast-Out		Disabled		1
+VALUE	Gandalf-Fwd-Unicast-Out		Enabled			2
+
+VALUE	Gandalf-IPX-Spoofing-State	Forward			1
+VALUE	Gandalf-IPX-Spoofing-State	Spoof			2
+VALUE	Gandalf-IPX-Spoofing-State	Filter-all-outgoing-RIP-SAP 3
+
+VALUE	Gandalf-IPX-Watchdog-Spoof	Disabled		1
+VALUE	Gandalf-IPX-Watchdog-Spoof	Enabled			2
+
+VALUE	Gandalf-Modem-Mode		Disabled		1
+VALUE	Gandalf-Modem-Mode		Enabled			2
+
+VALUE	Gandalf-Modem-Required-1	Disabled		1
+VALUE	Gandalf-Modem-Required-1	Enabled			2
+
+VALUE	Gandalf-Modem-Required-2	Disabled		1
+VALUE	Gandalf-Modem-Required-2	Enabled			2
+
+END-VENDOR	Gandalf

data/version.txt

@@ -0,0 +1 @@
+0.0.4

metadata

@@ -0,0 +1,106 @@
+--- !ruby/object:Gem::Specification 
+name: dguerri-radiustar
+version: !ruby/object:Gem::Version 
+  hash: 23
+  prerelease: false
+  segments: 
+  - 0
+  - 0
+  - 4
+  version: 0.0.4
+platform: ruby
+authors: 
+- PJ Davis
+- Davide Guerri
+autorequire: 
+bindir: bin
+cert_chain: []
+
+date: 2010-12-04 00:00:00 +01:00
+default_executable: 
+dependencies: 
+- !ruby/object:Gem::Dependency 
+  name: bones
+  prerelease: false
+  requirement: &id001 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 21
+        segments: 
+        - 3
+        - 4
+        - 1
+        version: 3.4.1
+  type: :development
+  version_requirements: *id001
+description: Ruby Radius Library
+email: davide.guerri@gmail.com
+executables: []
+
+extensions: []
+
+extra_rdoc_files: 
+- History.txt
+- README.rdoc
+- templates/default.txt
+- version.txt
+files: 
+- .gitignore
+- History.txt
+- README.rdoc
+- Rakefile
+- lib/radiustar.rb
+- lib/radiustar/dictionary.rb
+- lib/radiustar/dictionary/attributes.rb
+- lib/radiustar/dictionary/values.rb
+- lib/radiustar/packet.rb
+- lib/radiustar/radiustar.rb
+- lib/radiustar/request.rb
+- lib/radiustar/vendor.rb
+- radiustar.gemspec
+- spec/radiustar_spec.rb
+- spec/spec_helper.rb
+- templates/default.txt
+- templates/dictionary.digium
+- templates/gandalf.dictionary
+- test/test_radiustar.rb
+- version.txt
+has_rdoc: true
+homepage: http://github.com/dguerri/radiustar
+licenses: []
+
+post_install_message: 
+rdoc_options: 
+- --main
+- README.rdoc
+require_paths: 
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      hash: 3
+      segments: 
+      - 0
+      version: "0"
+required_rubygems_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      hash: 3
+      segments: 
+      - 0
+      version: "0"
+requirements: []
+
+rubyforge_project: radiustar
+rubygems_version: 1.3.7
+signing_key: 
+specification_version: 3
+summary: Ruby Radius Library
+test_files: 
+- test/test_radiustar.rb