孙 毅明
创建mbed
Dependencies: EthernetInterface SDFileSystem mbed-rtos mbed
EthernetInterface/lwip/netif/ppp/pap.c@1:6465a3f5c58a, 2018-03-06 (annotated)
- Committer:
- sunyiming
- Date:
- Tue Mar 06 08:53:46 2018 +0000
- Revision:
- 1:6465a3f5c58a
??OK
Who changed what in which revision?
| User | Revision | Line number | New contents of line |
|---|---|---|---|
| sunyiming | 1:6465a3f5c58a | 1 | /***************************************************************************** |
| sunyiming | 1:6465a3f5c58a | 2 | * pap.c - Network Password Authentication Protocol program file. |
| sunyiming | 1:6465a3f5c58a | 3 | * |
| sunyiming | 1:6465a3f5c58a | 4 | * Copyright (c) 2003 by Marc Boucher, Services Informatiques (MBSI) inc. |
| sunyiming | 1:6465a3f5c58a | 5 | * portions Copyright (c) 1997 by Global Election Systems Inc. |
| sunyiming | 1:6465a3f5c58a | 6 | * |
| sunyiming | 1:6465a3f5c58a | 7 | * The authors hereby grant permission to use, copy, modify, distribute, |
| sunyiming | 1:6465a3f5c58a | 8 | * and license this software and its documentation for any purpose, provided |
| sunyiming | 1:6465a3f5c58a | 9 | * that existing copyright notices are retained in all copies and that this |
| sunyiming | 1:6465a3f5c58a | 10 | * notice and the following disclaimer are included verbatim in any |
| sunyiming | 1:6465a3f5c58a | 11 | * distributions. No written agreement, license, or royalty fee is required |
| sunyiming | 1:6465a3f5c58a | 12 | * for any of the authorized uses. |
| sunyiming | 1:6465a3f5c58a | 13 | * |
| sunyiming | 1:6465a3f5c58a | 14 | * THIS SOFTWARE IS PROVIDED BY THE CONTRIBUTORS *AS IS* AND ANY EXPRESS OR |
| sunyiming | 1:6465a3f5c58a | 15 | * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES |
| sunyiming | 1:6465a3f5c58a | 16 | * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. |
| sunyiming | 1:6465a3f5c58a | 17 | * IN NO EVENT SHALL THE CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, |
| sunyiming | 1:6465a3f5c58a | 18 | * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT |
| sunyiming | 1:6465a3f5c58a | 19 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, |
| sunyiming | 1:6465a3f5c58a | 20 | * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY |
| sunyiming | 1:6465a3f5c58a | 21 | * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT |
| sunyiming | 1:6465a3f5c58a | 22 | * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF |
| sunyiming | 1:6465a3f5c58a | 23 | * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. |
| sunyiming | 1:6465a3f5c58a | 24 | * |
| sunyiming | 1:6465a3f5c58a | 25 | ****************************************************************************** |
| sunyiming | 1:6465a3f5c58a | 26 | * REVISION HISTORY |
| sunyiming | 1:6465a3f5c58a | 27 | * |
| sunyiming | 1:6465a3f5c58a | 28 | * 03-01-01 Marc Boucher <marc@mbsi.ca> |
| sunyiming | 1:6465a3f5c58a | 29 | * Ported to lwIP. |
| sunyiming | 1:6465a3f5c58a | 30 | * 97-12-12 Guy Lancaster <lancasterg@acm.org>, Global Election Systems Inc. |
| sunyiming | 1:6465a3f5c58a | 31 | * Original. |
| sunyiming | 1:6465a3f5c58a | 32 | *****************************************************************************/ |
| sunyiming | 1:6465a3f5c58a | 33 | /* |
| sunyiming | 1:6465a3f5c58a | 34 | * upap.c - User/Password Authentication Protocol. |
| sunyiming | 1:6465a3f5c58a | 35 | * |
| sunyiming | 1:6465a3f5c58a | 36 | * Copyright (c) 1989 Carnegie Mellon University. |
| sunyiming | 1:6465a3f5c58a | 37 | * All rights reserved. |
| sunyiming | 1:6465a3f5c58a | 38 | * |
| sunyiming | 1:6465a3f5c58a | 39 | * Redistribution and use in source and binary forms are permitted |
| sunyiming | 1:6465a3f5c58a | 40 | * provided that the above copyright notice and this paragraph are |
| sunyiming | 1:6465a3f5c58a | 41 | * duplicated in all such forms and that any documentation, |
| sunyiming | 1:6465a3f5c58a | 42 | * advertising materials, and other materials related to such |
| sunyiming | 1:6465a3f5c58a | 43 | * distribution and use acknowledge that the software was developed |
| sunyiming | 1:6465a3f5c58a | 44 | * by Carnegie Mellon University. The name of the |
| sunyiming | 1:6465a3f5c58a | 45 | * University may not be used to endorse or promote products derived |
| sunyiming | 1:6465a3f5c58a | 46 | * from this software without specific prior written permission. |
| sunyiming | 1:6465a3f5c58a | 47 | * THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR |
| sunyiming | 1:6465a3f5c58a | 48 | * IMPLIED WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED |
| sunyiming | 1:6465a3f5c58a | 49 | * WARRANTIES OF MERCHANTIBILITY AND FITNESS FOR A PARTICULAR PURPOSE. |
| sunyiming | 1:6465a3f5c58a | 50 | */ |
| sunyiming | 1:6465a3f5c58a | 51 | |
| sunyiming | 1:6465a3f5c58a | 52 | #include "lwip/opt.h" |
| sunyiming | 1:6465a3f5c58a | 53 | |
| sunyiming | 1:6465a3f5c58a | 54 | #if PPP_SUPPORT /* don't build if not configured for use in lwipopts.h */ |
| sunyiming | 1:6465a3f5c58a | 55 | |
| sunyiming | 1:6465a3f5c58a | 56 | #if PAP_SUPPORT /* don't build if not configured for use in lwipopts.h */ |
| sunyiming | 1:6465a3f5c58a | 57 | |
| sunyiming | 1:6465a3f5c58a | 58 | #include "ppp.h" |
| sunyiming | 1:6465a3f5c58a | 59 | #include "pppdebug.h" |
| sunyiming | 1:6465a3f5c58a | 60 | |
| sunyiming | 1:6465a3f5c58a | 61 | #include "auth.h" |
| sunyiming | 1:6465a3f5c58a | 62 | #include "pap.h" |
| sunyiming | 1:6465a3f5c58a | 63 | |
| sunyiming | 1:6465a3f5c58a | 64 | #include <string.h> |
| sunyiming | 1:6465a3f5c58a | 65 | |
| sunyiming | 1:6465a3f5c58a | 66 | #if 0 /* UNUSED */ |
| sunyiming | 1:6465a3f5c58a | 67 | static bool hide_password = 1; |
| sunyiming | 1:6465a3f5c58a | 68 | |
| sunyiming | 1:6465a3f5c58a | 69 | /* |
| sunyiming | 1:6465a3f5c58a | 70 | * Command-line options. |
| sunyiming | 1:6465a3f5c58a | 71 | */ |
| sunyiming | 1:6465a3f5c58a | 72 | static option_t pap_option_list[] = { |
| sunyiming | 1:6465a3f5c58a | 73 | { "hide-password", o_bool, &hide_password, |
| sunyiming | 1:6465a3f5c58a | 74 | "Don't output passwords to log", 1 }, |
| sunyiming | 1:6465a3f5c58a | 75 | { "show-password", o_bool, &hide_password, |
| sunyiming | 1:6465a3f5c58a | 76 | "Show password string in debug log messages", 0 }, |
| sunyiming | 1:6465a3f5c58a | 77 | { "pap-restart", o_int, &upap[0].us_timeouttime, |
| sunyiming | 1:6465a3f5c58a | 78 | "Set retransmit timeout for PAP" }, |
| sunyiming | 1:6465a3f5c58a | 79 | { "pap-max-authreq", o_int, &upap[0].us_maxtransmits, |
| sunyiming | 1:6465a3f5c58a | 80 | "Set max number of transmissions for auth-reqs" }, |
| sunyiming | 1:6465a3f5c58a | 81 | { "pap-timeout", o_int, &upap[0].us_reqtimeout, |
| sunyiming | 1:6465a3f5c58a | 82 | "Set time limit for peer PAP authentication" }, |
| sunyiming | 1:6465a3f5c58a | 83 | { NULL } |
| sunyiming | 1:6465a3f5c58a | 84 | }; |
| sunyiming | 1:6465a3f5c58a | 85 | #endif |
| sunyiming | 1:6465a3f5c58a | 86 | |
| sunyiming | 1:6465a3f5c58a | 87 | /* |
| sunyiming | 1:6465a3f5c58a | 88 | * Protocol entry points. |
| sunyiming | 1:6465a3f5c58a | 89 | */ |
| sunyiming | 1:6465a3f5c58a | 90 | static void upap_init (int); |
| sunyiming | 1:6465a3f5c58a | 91 | static void upap_lowerup (int); |
| sunyiming | 1:6465a3f5c58a | 92 | static void upap_lowerdown (int); |
| sunyiming | 1:6465a3f5c58a | 93 | static void upap_input (int, u_char *, int); |
| sunyiming | 1:6465a3f5c58a | 94 | static void upap_protrej (int); |
| sunyiming | 1:6465a3f5c58a | 95 | #if PPP_ADDITIONAL_CALLBACKS |
| sunyiming | 1:6465a3f5c58a | 96 | static int upap_printpkt (u_char *, int, void (*)(void *, char *, ...), void *); |
| sunyiming | 1:6465a3f5c58a | 97 | #endif /* PPP_ADDITIONAL_CALLBACKS */ |
| sunyiming | 1:6465a3f5c58a | 98 | |
| sunyiming | 1:6465a3f5c58a | 99 | struct protent pap_protent = { |
| sunyiming | 1:6465a3f5c58a | 100 | PPP_PAP, |
| sunyiming | 1:6465a3f5c58a | 101 | upap_init, |
| sunyiming | 1:6465a3f5c58a | 102 | upap_input, |
| sunyiming | 1:6465a3f5c58a | 103 | upap_protrej, |
| sunyiming | 1:6465a3f5c58a | 104 | upap_lowerup, |
| sunyiming | 1:6465a3f5c58a | 105 | upap_lowerdown, |
| sunyiming | 1:6465a3f5c58a | 106 | NULL, |
| sunyiming | 1:6465a3f5c58a | 107 | NULL, |
| sunyiming | 1:6465a3f5c58a | 108 | #if PPP_ADDITIONAL_CALLBACKS |
| sunyiming | 1:6465a3f5c58a | 109 | upap_printpkt, |
| sunyiming | 1:6465a3f5c58a | 110 | NULL, |
| sunyiming | 1:6465a3f5c58a | 111 | #endif /* PPP_ADDITIONAL_CALLBACKS */ |
| sunyiming | 1:6465a3f5c58a | 112 | 1, |
| sunyiming | 1:6465a3f5c58a | 113 | "PAP", |
| sunyiming | 1:6465a3f5c58a | 114 | #if PPP_ADDITIONAL_CALLBACKS |
| sunyiming | 1:6465a3f5c58a | 115 | NULL, |
| sunyiming | 1:6465a3f5c58a | 116 | NULL, |
| sunyiming | 1:6465a3f5c58a | 117 | NULL |
| sunyiming | 1:6465a3f5c58a | 118 | #endif /* PPP_ADDITIONAL_CALLBACKS */ |
| sunyiming | 1:6465a3f5c58a | 119 | }; |
| sunyiming | 1:6465a3f5c58a | 120 | |
| sunyiming | 1:6465a3f5c58a | 121 | upap_state upap[NUM_PPP]; /* UPAP state; one for each unit */ |
| sunyiming | 1:6465a3f5c58a | 122 | |
| sunyiming | 1:6465a3f5c58a | 123 | static void upap_timeout (void *); |
| sunyiming | 1:6465a3f5c58a | 124 | static void upap_reqtimeout(void *); |
| sunyiming | 1:6465a3f5c58a | 125 | static void upap_rauthreq (upap_state *, u_char *, u_char, int); |
| sunyiming | 1:6465a3f5c58a | 126 | static void upap_rauthack (upap_state *, u_char *, int, int); |
| sunyiming | 1:6465a3f5c58a | 127 | static void upap_rauthnak (upap_state *, u_char *, int, int); |
| sunyiming | 1:6465a3f5c58a | 128 | static void upap_sauthreq (upap_state *); |
| sunyiming | 1:6465a3f5c58a | 129 | static void upap_sresp (upap_state *, u_char, u_char, char *, int); |
| sunyiming | 1:6465a3f5c58a | 130 | |
| sunyiming | 1:6465a3f5c58a | 131 | |
| sunyiming | 1:6465a3f5c58a | 132 | /* |
| sunyiming | 1:6465a3f5c58a | 133 | * upap_init - Initialize a UPAP unit. |
| sunyiming | 1:6465a3f5c58a | 134 | */ |
| sunyiming | 1:6465a3f5c58a | 135 | static void |
| sunyiming | 1:6465a3f5c58a | 136 | upap_init(int unit) |
| sunyiming | 1:6465a3f5c58a | 137 | { |
| sunyiming | 1:6465a3f5c58a | 138 | upap_state *u = &upap[unit]; |
| sunyiming | 1:6465a3f5c58a | 139 | |
| sunyiming | 1:6465a3f5c58a | 140 | UPAPDEBUG(LOG_INFO, ("upap_init: %d\n", unit)); |
| sunyiming | 1:6465a3f5c58a | 141 | u->us_unit = unit; |
| sunyiming | 1:6465a3f5c58a | 142 | u->us_user = NULL; |
| sunyiming | 1:6465a3f5c58a | 143 | u->us_userlen = 0; |
| sunyiming | 1:6465a3f5c58a | 144 | u->us_passwd = NULL; |
| sunyiming | 1:6465a3f5c58a | 145 | u->us_passwdlen = 0; |
| sunyiming | 1:6465a3f5c58a | 146 | u->us_clientstate = UPAPCS_INITIAL; |
| sunyiming | 1:6465a3f5c58a | 147 | u->us_serverstate = UPAPSS_INITIAL; |
| sunyiming | 1:6465a3f5c58a | 148 | u->us_id = 0; |
| sunyiming | 1:6465a3f5c58a | 149 | u->us_timeouttime = UPAP_DEFTIMEOUT; |
| sunyiming | 1:6465a3f5c58a | 150 | u->us_maxtransmits = 10; |
| sunyiming | 1:6465a3f5c58a | 151 | u->us_reqtimeout = UPAP_DEFREQTIME; |
| sunyiming | 1:6465a3f5c58a | 152 | } |
| sunyiming | 1:6465a3f5c58a | 153 | |
| sunyiming | 1:6465a3f5c58a | 154 | /* |
| sunyiming | 1:6465a3f5c58a | 155 | * upap_authwithpeer - Authenticate us with our peer (start client). |
| sunyiming | 1:6465a3f5c58a | 156 | * |
| sunyiming | 1:6465a3f5c58a | 157 | * Set new state and send authenticate's. |
| sunyiming | 1:6465a3f5c58a | 158 | */ |
| sunyiming | 1:6465a3f5c58a | 159 | void |
| sunyiming | 1:6465a3f5c58a | 160 | upap_authwithpeer(int unit, char *user, char *password) |
| sunyiming | 1:6465a3f5c58a | 161 | { |
| sunyiming | 1:6465a3f5c58a | 162 | upap_state *u = &upap[unit]; |
| sunyiming | 1:6465a3f5c58a | 163 | |
| sunyiming | 1:6465a3f5c58a | 164 | UPAPDEBUG(LOG_INFO, ("upap_authwithpeer: %d user=%s password=%s s=%d\n", |
| sunyiming | 1:6465a3f5c58a | 165 | unit, user, password, u->us_clientstate)); |
| sunyiming | 1:6465a3f5c58a | 166 | |
| sunyiming | 1:6465a3f5c58a | 167 | /* Save the username and password we're given */ |
| sunyiming | 1:6465a3f5c58a | 168 | u->us_user = user; |
| sunyiming | 1:6465a3f5c58a | 169 | u->us_userlen = (int)strlen(user); |
| sunyiming | 1:6465a3f5c58a | 170 | u->us_passwd = password; |
| sunyiming | 1:6465a3f5c58a | 171 | u->us_passwdlen = (int)strlen(password); |
| sunyiming | 1:6465a3f5c58a | 172 | |
| sunyiming | 1:6465a3f5c58a | 173 | u->us_transmits = 0; |
| sunyiming | 1:6465a3f5c58a | 174 | |
| sunyiming | 1:6465a3f5c58a | 175 | /* Lower layer up yet? */ |
| sunyiming | 1:6465a3f5c58a | 176 | if (u->us_clientstate == UPAPCS_INITIAL || |
| sunyiming | 1:6465a3f5c58a | 177 | u->us_clientstate == UPAPCS_PENDING) { |
| sunyiming | 1:6465a3f5c58a | 178 | u->us_clientstate = UPAPCS_PENDING; |
| sunyiming | 1:6465a3f5c58a | 179 | return; |
| sunyiming | 1:6465a3f5c58a | 180 | } |
| sunyiming | 1:6465a3f5c58a | 181 | |
| sunyiming | 1:6465a3f5c58a | 182 | upap_sauthreq(u); /* Start protocol */ |
| sunyiming | 1:6465a3f5c58a | 183 | } |
| sunyiming | 1:6465a3f5c58a | 184 | |
| sunyiming | 1:6465a3f5c58a | 185 | |
| sunyiming | 1:6465a3f5c58a | 186 | /* |
| sunyiming | 1:6465a3f5c58a | 187 | * upap_authpeer - Authenticate our peer (start server). |
| sunyiming | 1:6465a3f5c58a | 188 | * |
| sunyiming | 1:6465a3f5c58a | 189 | * Set new state. |
| sunyiming | 1:6465a3f5c58a | 190 | */ |
| sunyiming | 1:6465a3f5c58a | 191 | void |
| sunyiming | 1:6465a3f5c58a | 192 | upap_authpeer(int unit) |
| sunyiming | 1:6465a3f5c58a | 193 | { |
| sunyiming | 1:6465a3f5c58a | 194 | upap_state *u = &upap[unit]; |
| sunyiming | 1:6465a3f5c58a | 195 | |
| sunyiming | 1:6465a3f5c58a | 196 | /* Lower layer up yet? */ |
| sunyiming | 1:6465a3f5c58a | 197 | if (u->us_serverstate == UPAPSS_INITIAL || |
| sunyiming | 1:6465a3f5c58a | 198 | u->us_serverstate == UPAPSS_PENDING) { |
| sunyiming | 1:6465a3f5c58a | 199 | u->us_serverstate = UPAPSS_PENDING; |
| sunyiming | 1:6465a3f5c58a | 200 | return; |
| sunyiming | 1:6465a3f5c58a | 201 | } |
| sunyiming | 1:6465a3f5c58a | 202 | |
| sunyiming | 1:6465a3f5c58a | 203 | u->us_serverstate = UPAPSS_LISTEN; |
| sunyiming | 1:6465a3f5c58a | 204 | if (u->us_reqtimeout > 0) { |
| sunyiming | 1:6465a3f5c58a | 205 | TIMEOUT(upap_reqtimeout, u, u->us_reqtimeout); |
| sunyiming | 1:6465a3f5c58a | 206 | } |
| sunyiming | 1:6465a3f5c58a | 207 | } |
| sunyiming | 1:6465a3f5c58a | 208 | |
| sunyiming | 1:6465a3f5c58a | 209 | /* |
| sunyiming | 1:6465a3f5c58a | 210 | * upap_timeout - Retransmission timer for sending auth-reqs expired. |
| sunyiming | 1:6465a3f5c58a | 211 | */ |
| sunyiming | 1:6465a3f5c58a | 212 | static void |
| sunyiming | 1:6465a3f5c58a | 213 | upap_timeout(void *arg) |
| sunyiming | 1:6465a3f5c58a | 214 | { |
| sunyiming | 1:6465a3f5c58a | 215 | upap_state *u = (upap_state *) arg; |
| sunyiming | 1:6465a3f5c58a | 216 | |
| sunyiming | 1:6465a3f5c58a | 217 | UPAPDEBUG(LOG_INFO, ("upap_timeout: %d timeout %d expired s=%d\n", |
| sunyiming | 1:6465a3f5c58a | 218 | u->us_unit, u->us_timeouttime, u->us_clientstate)); |
| sunyiming | 1:6465a3f5c58a | 219 | |
| sunyiming | 1:6465a3f5c58a | 220 | if (u->us_clientstate != UPAPCS_AUTHREQ) { |
| sunyiming | 1:6465a3f5c58a | 221 | UPAPDEBUG(LOG_INFO, ("upap_timeout: not in AUTHREQ state!\n")); |
| sunyiming | 1:6465a3f5c58a | 222 | return; |
| sunyiming | 1:6465a3f5c58a | 223 | } |
| sunyiming | 1:6465a3f5c58a | 224 | |
| sunyiming | 1:6465a3f5c58a | 225 | if (u->us_transmits >= u->us_maxtransmits) { |
| sunyiming | 1:6465a3f5c58a | 226 | /* give up in disgust */ |
| sunyiming | 1:6465a3f5c58a | 227 | UPAPDEBUG(LOG_ERR, ("No response to PAP authenticate-requests\n")); |
| sunyiming | 1:6465a3f5c58a | 228 | u->us_clientstate = UPAPCS_BADAUTH; |
| sunyiming | 1:6465a3f5c58a | 229 | auth_withpeer_fail(u->us_unit, PPP_PAP); |
| sunyiming | 1:6465a3f5c58a | 230 | return; |
| sunyiming | 1:6465a3f5c58a | 231 | } |
| sunyiming | 1:6465a3f5c58a | 232 | |
| sunyiming | 1:6465a3f5c58a | 233 | upap_sauthreq(u); /* Send Authenticate-Request and set upap timeout*/ |
| sunyiming | 1:6465a3f5c58a | 234 | } |
| sunyiming | 1:6465a3f5c58a | 235 | |
| sunyiming | 1:6465a3f5c58a | 236 | |
| sunyiming | 1:6465a3f5c58a | 237 | /* |
| sunyiming | 1:6465a3f5c58a | 238 | * upap_reqtimeout - Give up waiting for the peer to send an auth-req. |
| sunyiming | 1:6465a3f5c58a | 239 | */ |
| sunyiming | 1:6465a3f5c58a | 240 | static void |
| sunyiming | 1:6465a3f5c58a | 241 | upap_reqtimeout(void *arg) |
| sunyiming | 1:6465a3f5c58a | 242 | { |
| sunyiming | 1:6465a3f5c58a | 243 | upap_state *u = (upap_state *) arg; |
| sunyiming | 1:6465a3f5c58a | 244 | |
| sunyiming | 1:6465a3f5c58a | 245 | if (u->us_serverstate != UPAPSS_LISTEN) { |
| sunyiming | 1:6465a3f5c58a | 246 | return; /* huh?? */ |
| sunyiming | 1:6465a3f5c58a | 247 | } |
| sunyiming | 1:6465a3f5c58a | 248 | |
| sunyiming | 1:6465a3f5c58a | 249 | auth_peer_fail(u->us_unit, PPP_PAP); |
| sunyiming | 1:6465a3f5c58a | 250 | u->us_serverstate = UPAPSS_BADAUTH; |
| sunyiming | 1:6465a3f5c58a | 251 | } |
| sunyiming | 1:6465a3f5c58a | 252 | |
| sunyiming | 1:6465a3f5c58a | 253 | |
| sunyiming | 1:6465a3f5c58a | 254 | /* |
| sunyiming | 1:6465a3f5c58a | 255 | * upap_lowerup - The lower layer is up. |
| sunyiming | 1:6465a3f5c58a | 256 | * |
| sunyiming | 1:6465a3f5c58a | 257 | * Start authenticating if pending. |
| sunyiming | 1:6465a3f5c58a | 258 | */ |
| sunyiming | 1:6465a3f5c58a | 259 | static void |
| sunyiming | 1:6465a3f5c58a | 260 | upap_lowerup(int unit) |
| sunyiming | 1:6465a3f5c58a | 261 | { |
| sunyiming | 1:6465a3f5c58a | 262 | upap_state *u = &upap[unit]; |
| sunyiming | 1:6465a3f5c58a | 263 | |
| sunyiming | 1:6465a3f5c58a | 264 | UPAPDEBUG(LOG_INFO, ("upap_lowerup: init %d clientstate s=%d\n", unit, u->us_clientstate)); |
| sunyiming | 1:6465a3f5c58a | 265 | |
| sunyiming | 1:6465a3f5c58a | 266 | if (u->us_clientstate == UPAPCS_INITIAL) { |
| sunyiming | 1:6465a3f5c58a | 267 | u->us_clientstate = UPAPCS_CLOSED; |
| sunyiming | 1:6465a3f5c58a | 268 | } else if (u->us_clientstate == UPAPCS_PENDING) { |
| sunyiming | 1:6465a3f5c58a | 269 | upap_sauthreq(u); /* send an auth-request */ |
| sunyiming | 1:6465a3f5c58a | 270 | /* now client state is UPAPCS__AUTHREQ */ |
| sunyiming | 1:6465a3f5c58a | 271 | } |
| sunyiming | 1:6465a3f5c58a | 272 | |
| sunyiming | 1:6465a3f5c58a | 273 | if (u->us_serverstate == UPAPSS_INITIAL) { |
| sunyiming | 1:6465a3f5c58a | 274 | u->us_serverstate = UPAPSS_CLOSED; |
| sunyiming | 1:6465a3f5c58a | 275 | } else if (u->us_serverstate == UPAPSS_PENDING) { |
| sunyiming | 1:6465a3f5c58a | 276 | u->us_serverstate = UPAPSS_LISTEN; |
| sunyiming | 1:6465a3f5c58a | 277 | if (u->us_reqtimeout > 0) { |
| sunyiming | 1:6465a3f5c58a | 278 | TIMEOUT(upap_reqtimeout, u, u->us_reqtimeout); |
| sunyiming | 1:6465a3f5c58a | 279 | } |
| sunyiming | 1:6465a3f5c58a | 280 | } |
| sunyiming | 1:6465a3f5c58a | 281 | } |
| sunyiming | 1:6465a3f5c58a | 282 | |
| sunyiming | 1:6465a3f5c58a | 283 | |
| sunyiming | 1:6465a3f5c58a | 284 | /* |
| sunyiming | 1:6465a3f5c58a | 285 | * upap_lowerdown - The lower layer is down. |
| sunyiming | 1:6465a3f5c58a | 286 | * |
| sunyiming | 1:6465a3f5c58a | 287 | * Cancel all timeouts. |
| sunyiming | 1:6465a3f5c58a | 288 | */ |
| sunyiming | 1:6465a3f5c58a | 289 | static void |
| sunyiming | 1:6465a3f5c58a | 290 | upap_lowerdown(int unit) |
| sunyiming | 1:6465a3f5c58a | 291 | { |
| sunyiming | 1:6465a3f5c58a | 292 | upap_state *u = &upap[unit]; |
| sunyiming | 1:6465a3f5c58a | 293 | |
| sunyiming | 1:6465a3f5c58a | 294 | UPAPDEBUG(LOG_INFO, ("upap_lowerdown: %d s=%d\n", unit, u->us_clientstate)); |
| sunyiming | 1:6465a3f5c58a | 295 | |
| sunyiming | 1:6465a3f5c58a | 296 | if (u->us_clientstate == UPAPCS_AUTHREQ) { /* Timeout pending? */ |
| sunyiming | 1:6465a3f5c58a | 297 | UNTIMEOUT(upap_timeout, u); /* Cancel timeout */ |
| sunyiming | 1:6465a3f5c58a | 298 | } |
| sunyiming | 1:6465a3f5c58a | 299 | if (u->us_serverstate == UPAPSS_LISTEN && u->us_reqtimeout > 0) { |
| sunyiming | 1:6465a3f5c58a | 300 | UNTIMEOUT(upap_reqtimeout, u); |
| sunyiming | 1:6465a3f5c58a | 301 | } |
| sunyiming | 1:6465a3f5c58a | 302 | |
| sunyiming | 1:6465a3f5c58a | 303 | u->us_clientstate = UPAPCS_INITIAL; |
| sunyiming | 1:6465a3f5c58a | 304 | u->us_serverstate = UPAPSS_INITIAL; |
| sunyiming | 1:6465a3f5c58a | 305 | } |
| sunyiming | 1:6465a3f5c58a | 306 | |
| sunyiming | 1:6465a3f5c58a | 307 | |
| sunyiming | 1:6465a3f5c58a | 308 | /* |
| sunyiming | 1:6465a3f5c58a | 309 | * upap_protrej - Peer doesn't speak this protocol. |
| sunyiming | 1:6465a3f5c58a | 310 | * |
| sunyiming | 1:6465a3f5c58a | 311 | * This shouldn't happen. In any case, pretend lower layer went down. |
| sunyiming | 1:6465a3f5c58a | 312 | */ |
| sunyiming | 1:6465a3f5c58a | 313 | static void |
| sunyiming | 1:6465a3f5c58a | 314 | upap_protrej(int unit) |
| sunyiming | 1:6465a3f5c58a | 315 | { |
| sunyiming | 1:6465a3f5c58a | 316 | upap_state *u = &upap[unit]; |
| sunyiming | 1:6465a3f5c58a | 317 | |
| sunyiming | 1:6465a3f5c58a | 318 | if (u->us_clientstate == UPAPCS_AUTHREQ) { |
| sunyiming | 1:6465a3f5c58a | 319 | UPAPDEBUG(LOG_ERR, ("PAP authentication failed due to protocol-reject\n")); |
| sunyiming | 1:6465a3f5c58a | 320 | auth_withpeer_fail(unit, PPP_PAP); |
| sunyiming | 1:6465a3f5c58a | 321 | } |
| sunyiming | 1:6465a3f5c58a | 322 | if (u->us_serverstate == UPAPSS_LISTEN) { |
| sunyiming | 1:6465a3f5c58a | 323 | UPAPDEBUG(LOG_ERR, ("PAP authentication of peer failed (protocol-reject)\n")); |
| sunyiming | 1:6465a3f5c58a | 324 | auth_peer_fail(unit, PPP_PAP); |
| sunyiming | 1:6465a3f5c58a | 325 | } |
| sunyiming | 1:6465a3f5c58a | 326 | upap_lowerdown(unit); |
| sunyiming | 1:6465a3f5c58a | 327 | } |
| sunyiming | 1:6465a3f5c58a | 328 | |
| sunyiming | 1:6465a3f5c58a | 329 | |
| sunyiming | 1:6465a3f5c58a | 330 | /* |
| sunyiming | 1:6465a3f5c58a | 331 | * upap_input - Input UPAP packet. |
| sunyiming | 1:6465a3f5c58a | 332 | */ |
| sunyiming | 1:6465a3f5c58a | 333 | static void |
| sunyiming | 1:6465a3f5c58a | 334 | upap_input(int unit, u_char *inpacket, int l) |
| sunyiming | 1:6465a3f5c58a | 335 | { |
| sunyiming | 1:6465a3f5c58a | 336 | upap_state *u = &upap[unit]; |
| sunyiming | 1:6465a3f5c58a | 337 | u_char *inp; |
| sunyiming | 1:6465a3f5c58a | 338 | u_char code, id; |
| sunyiming | 1:6465a3f5c58a | 339 | int len; |
| sunyiming | 1:6465a3f5c58a | 340 | |
| sunyiming | 1:6465a3f5c58a | 341 | /* |
| sunyiming | 1:6465a3f5c58a | 342 | * Parse header (code, id and length). |
| sunyiming | 1:6465a3f5c58a | 343 | * If packet too short, drop it. |
| sunyiming | 1:6465a3f5c58a | 344 | */ |
| sunyiming | 1:6465a3f5c58a | 345 | inp = inpacket; |
| sunyiming | 1:6465a3f5c58a | 346 | if (l < (int)UPAP_HEADERLEN) { |
| sunyiming | 1:6465a3f5c58a | 347 | UPAPDEBUG(LOG_INFO, ("pap_input: rcvd short header.\n")); |
| sunyiming | 1:6465a3f5c58a | 348 | return; |
| sunyiming | 1:6465a3f5c58a | 349 | } |
| sunyiming | 1:6465a3f5c58a | 350 | GETCHAR(code, inp); |
| sunyiming | 1:6465a3f5c58a | 351 | GETCHAR(id, inp); |
| sunyiming | 1:6465a3f5c58a | 352 | GETSHORT(len, inp); |
| sunyiming | 1:6465a3f5c58a | 353 | if (len < (int)UPAP_HEADERLEN) { |
| sunyiming | 1:6465a3f5c58a | 354 | UPAPDEBUG(LOG_INFO, ("pap_input: rcvd illegal length.\n")); |
| sunyiming | 1:6465a3f5c58a | 355 | return; |
| sunyiming | 1:6465a3f5c58a | 356 | } |
| sunyiming | 1:6465a3f5c58a | 357 | if (len > l) { |
| sunyiming | 1:6465a3f5c58a | 358 | UPAPDEBUG(LOG_INFO, ("pap_input: rcvd short packet.\n")); |
| sunyiming | 1:6465a3f5c58a | 359 | return; |
| sunyiming | 1:6465a3f5c58a | 360 | } |
| sunyiming | 1:6465a3f5c58a | 361 | len -= UPAP_HEADERLEN; |
| sunyiming | 1:6465a3f5c58a | 362 | |
| sunyiming | 1:6465a3f5c58a | 363 | /* |
| sunyiming | 1:6465a3f5c58a | 364 | * Action depends on code. |
| sunyiming | 1:6465a3f5c58a | 365 | */ |
| sunyiming | 1:6465a3f5c58a | 366 | switch (code) { |
| sunyiming | 1:6465a3f5c58a | 367 | case UPAP_AUTHREQ: |
| sunyiming | 1:6465a3f5c58a | 368 | upap_rauthreq(u, inp, id, len); |
| sunyiming | 1:6465a3f5c58a | 369 | break; |
| sunyiming | 1:6465a3f5c58a | 370 | |
| sunyiming | 1:6465a3f5c58a | 371 | case UPAP_AUTHACK: |
| sunyiming | 1:6465a3f5c58a | 372 | upap_rauthack(u, inp, id, len); |
| sunyiming | 1:6465a3f5c58a | 373 | break; |
| sunyiming | 1:6465a3f5c58a | 374 | |
| sunyiming | 1:6465a3f5c58a | 375 | case UPAP_AUTHNAK: |
| sunyiming | 1:6465a3f5c58a | 376 | upap_rauthnak(u, inp, id, len); |
| sunyiming | 1:6465a3f5c58a | 377 | break; |
| sunyiming | 1:6465a3f5c58a | 378 | |
| sunyiming | 1:6465a3f5c58a | 379 | default: /* XXX Need code reject */ |
| sunyiming | 1:6465a3f5c58a | 380 | UPAPDEBUG(LOG_INFO, ("pap_input: UNHANDLED default: code: %d, id: %d, len: %d.\n", code, id, len)); |
| sunyiming | 1:6465a3f5c58a | 381 | break; |
| sunyiming | 1:6465a3f5c58a | 382 | } |
| sunyiming | 1:6465a3f5c58a | 383 | } |
| sunyiming | 1:6465a3f5c58a | 384 | |
| sunyiming | 1:6465a3f5c58a | 385 | |
| sunyiming | 1:6465a3f5c58a | 386 | /* |
| sunyiming | 1:6465a3f5c58a | 387 | * upap_rauth - Receive Authenticate. |
| sunyiming | 1:6465a3f5c58a | 388 | */ |
| sunyiming | 1:6465a3f5c58a | 389 | static void |
| sunyiming | 1:6465a3f5c58a | 390 | upap_rauthreq(upap_state *u, u_char *inp, u_char id, int len) |
| sunyiming | 1:6465a3f5c58a | 391 | { |
| sunyiming | 1:6465a3f5c58a | 392 | u_char ruserlen, rpasswdlen; |
| sunyiming | 1:6465a3f5c58a | 393 | char *ruser, *rpasswd; |
| sunyiming | 1:6465a3f5c58a | 394 | u_char retcode; |
| sunyiming | 1:6465a3f5c58a | 395 | char *msg; |
| sunyiming | 1:6465a3f5c58a | 396 | int msglen; |
| sunyiming | 1:6465a3f5c58a | 397 | |
| sunyiming | 1:6465a3f5c58a | 398 | UPAPDEBUG(LOG_INFO, ("pap_rauth: Rcvd id %d.\n", id)); |
| sunyiming | 1:6465a3f5c58a | 399 | |
| sunyiming | 1:6465a3f5c58a | 400 | if (u->us_serverstate < UPAPSS_LISTEN) { |
| sunyiming | 1:6465a3f5c58a | 401 | return; |
| sunyiming | 1:6465a3f5c58a | 402 | } |
| sunyiming | 1:6465a3f5c58a | 403 | |
| sunyiming | 1:6465a3f5c58a | 404 | /* |
| sunyiming | 1:6465a3f5c58a | 405 | * If we receive a duplicate authenticate-request, we are |
| sunyiming | 1:6465a3f5c58a | 406 | * supposed to return the same status as for the first request. |
| sunyiming | 1:6465a3f5c58a | 407 | */ |
| sunyiming | 1:6465a3f5c58a | 408 | if (u->us_serverstate == UPAPSS_OPEN) { |
| sunyiming | 1:6465a3f5c58a | 409 | upap_sresp(u, UPAP_AUTHACK, id, "", 0); /* return auth-ack */ |
| sunyiming | 1:6465a3f5c58a | 410 | return; |
| sunyiming | 1:6465a3f5c58a | 411 | } |
| sunyiming | 1:6465a3f5c58a | 412 | if (u->us_serverstate == UPAPSS_BADAUTH) { |
| sunyiming | 1:6465a3f5c58a | 413 | upap_sresp(u, UPAP_AUTHNAK, id, "", 0); /* return auth-nak */ |
| sunyiming | 1:6465a3f5c58a | 414 | return; |
| sunyiming | 1:6465a3f5c58a | 415 | } |
| sunyiming | 1:6465a3f5c58a | 416 | |
| sunyiming | 1:6465a3f5c58a | 417 | /* |
| sunyiming | 1:6465a3f5c58a | 418 | * Parse user/passwd. |
| sunyiming | 1:6465a3f5c58a | 419 | */ |
| sunyiming | 1:6465a3f5c58a | 420 | if (len < (int)sizeof (u_char)) { |
| sunyiming | 1:6465a3f5c58a | 421 | UPAPDEBUG(LOG_INFO, ("pap_rauth: rcvd short packet.\n")); |
| sunyiming | 1:6465a3f5c58a | 422 | return; |
| sunyiming | 1:6465a3f5c58a | 423 | } |
| sunyiming | 1:6465a3f5c58a | 424 | GETCHAR(ruserlen, inp); |
| sunyiming | 1:6465a3f5c58a | 425 | len -= sizeof (u_char) + ruserlen + sizeof (u_char); |
| sunyiming | 1:6465a3f5c58a | 426 | if (len < 0) { |
| sunyiming | 1:6465a3f5c58a | 427 | UPAPDEBUG(LOG_INFO, ("pap_rauth: rcvd short packet.\n")); |
| sunyiming | 1:6465a3f5c58a | 428 | return; |
| sunyiming | 1:6465a3f5c58a | 429 | } |
| sunyiming | 1:6465a3f5c58a | 430 | ruser = (char *) inp; |
| sunyiming | 1:6465a3f5c58a | 431 | INCPTR(ruserlen, inp); |
| sunyiming | 1:6465a3f5c58a | 432 | GETCHAR(rpasswdlen, inp); |
| sunyiming | 1:6465a3f5c58a | 433 | if (len < rpasswdlen) { |
| sunyiming | 1:6465a3f5c58a | 434 | UPAPDEBUG(LOG_INFO, ("pap_rauth: rcvd short packet.\n")); |
| sunyiming | 1:6465a3f5c58a | 435 | return; |
| sunyiming | 1:6465a3f5c58a | 436 | } |
| sunyiming | 1:6465a3f5c58a | 437 | rpasswd = (char *) inp; |
| sunyiming | 1:6465a3f5c58a | 438 | |
| sunyiming | 1:6465a3f5c58a | 439 | /* |
| sunyiming | 1:6465a3f5c58a | 440 | * Check the username and password given. |
| sunyiming | 1:6465a3f5c58a | 441 | */ |
| sunyiming | 1:6465a3f5c58a | 442 | retcode = check_passwd(u->us_unit, ruser, ruserlen, rpasswd, rpasswdlen, &msg, &msglen); |
| sunyiming | 1:6465a3f5c58a | 443 | /* lwip: currently retcode is always UPAP_AUTHACK */ |
| sunyiming | 1:6465a3f5c58a | 444 | BZERO(rpasswd, rpasswdlen); |
| sunyiming | 1:6465a3f5c58a | 445 | |
| sunyiming | 1:6465a3f5c58a | 446 | upap_sresp(u, retcode, id, msg, msglen); |
| sunyiming | 1:6465a3f5c58a | 447 | |
| sunyiming | 1:6465a3f5c58a | 448 | if (retcode == UPAP_AUTHACK) { |
| sunyiming | 1:6465a3f5c58a | 449 | u->us_serverstate = UPAPSS_OPEN; |
| sunyiming | 1:6465a3f5c58a | 450 | auth_peer_success(u->us_unit, PPP_PAP, ruser, ruserlen); |
| sunyiming | 1:6465a3f5c58a | 451 | } else { |
| sunyiming | 1:6465a3f5c58a | 452 | u->us_serverstate = UPAPSS_BADAUTH; |
| sunyiming | 1:6465a3f5c58a | 453 | auth_peer_fail(u->us_unit, PPP_PAP); |
| sunyiming | 1:6465a3f5c58a | 454 | } |
| sunyiming | 1:6465a3f5c58a | 455 | |
| sunyiming | 1:6465a3f5c58a | 456 | if (u->us_reqtimeout > 0) { |
| sunyiming | 1:6465a3f5c58a | 457 | UNTIMEOUT(upap_reqtimeout, u); |
| sunyiming | 1:6465a3f5c58a | 458 | } |
| sunyiming | 1:6465a3f5c58a | 459 | } |
| sunyiming | 1:6465a3f5c58a | 460 | |
| sunyiming | 1:6465a3f5c58a | 461 | |
| sunyiming | 1:6465a3f5c58a | 462 | /* |
| sunyiming | 1:6465a3f5c58a | 463 | * upap_rauthack - Receive Authenticate-Ack. |
| sunyiming | 1:6465a3f5c58a | 464 | */ |
| sunyiming | 1:6465a3f5c58a | 465 | static void |
| sunyiming | 1:6465a3f5c58a | 466 | upap_rauthack(upap_state *u, u_char *inp, int id, int len) |
| sunyiming | 1:6465a3f5c58a | 467 | { |
| sunyiming | 1:6465a3f5c58a | 468 | u_char msglen; |
| sunyiming | 1:6465a3f5c58a | 469 | char *msg; |
| sunyiming | 1:6465a3f5c58a | 470 | |
| sunyiming | 1:6465a3f5c58a | 471 | LWIP_UNUSED_ARG(id); |
| sunyiming | 1:6465a3f5c58a | 472 | |
| sunyiming | 1:6465a3f5c58a | 473 | UPAPDEBUG(LOG_INFO, ("pap_rauthack: Rcvd id %d s=%d\n", id, u->us_clientstate)); |
| sunyiming | 1:6465a3f5c58a | 474 | |
| sunyiming | 1:6465a3f5c58a | 475 | if (u->us_clientstate != UPAPCS_AUTHREQ) { /* XXX */ |
| sunyiming | 1:6465a3f5c58a | 476 | UPAPDEBUG(LOG_INFO, ("pap_rauthack: us_clientstate != UPAPCS_AUTHREQ\n")); |
| sunyiming | 1:6465a3f5c58a | 477 | return; |
| sunyiming | 1:6465a3f5c58a | 478 | } |
| sunyiming | 1:6465a3f5c58a | 479 | |
| sunyiming | 1:6465a3f5c58a | 480 | /* |
| sunyiming | 1:6465a3f5c58a | 481 | * Parse message. |
| sunyiming | 1:6465a3f5c58a | 482 | */ |
| sunyiming | 1:6465a3f5c58a | 483 | if (len < (int)sizeof (u_char)) { |
| sunyiming | 1:6465a3f5c58a | 484 | UPAPDEBUG(LOG_INFO, ("pap_rauthack: ignoring missing msg-length.\n")); |
| sunyiming | 1:6465a3f5c58a | 485 | } else { |
| sunyiming | 1:6465a3f5c58a | 486 | GETCHAR(msglen, inp); |
| sunyiming | 1:6465a3f5c58a | 487 | if (msglen > 0) { |
| sunyiming | 1:6465a3f5c58a | 488 | len -= sizeof (u_char); |
| sunyiming | 1:6465a3f5c58a | 489 | if (len < msglen) { |
| sunyiming | 1:6465a3f5c58a | 490 | UPAPDEBUG(LOG_INFO, ("pap_rauthack: rcvd short packet.\n")); |
| sunyiming | 1:6465a3f5c58a | 491 | return; |
| sunyiming | 1:6465a3f5c58a | 492 | } |
| sunyiming | 1:6465a3f5c58a | 493 | msg = (char *) inp; |
| sunyiming | 1:6465a3f5c58a | 494 | PRINTMSG(msg, msglen); |
| sunyiming | 1:6465a3f5c58a | 495 | } |
| sunyiming | 1:6465a3f5c58a | 496 | } |
| sunyiming | 1:6465a3f5c58a | 497 | UNTIMEOUT(upap_timeout, u); /* Cancel timeout */ |
| sunyiming | 1:6465a3f5c58a | 498 | u->us_clientstate = UPAPCS_OPEN; |
| sunyiming | 1:6465a3f5c58a | 499 | |
| sunyiming | 1:6465a3f5c58a | 500 | auth_withpeer_success(u->us_unit, PPP_PAP); |
| sunyiming | 1:6465a3f5c58a | 501 | } |
| sunyiming | 1:6465a3f5c58a | 502 | |
| sunyiming | 1:6465a3f5c58a | 503 | |
| sunyiming | 1:6465a3f5c58a | 504 | /* |
| sunyiming | 1:6465a3f5c58a | 505 | * upap_rauthnak - Receive Authenticate-Nak. |
| sunyiming | 1:6465a3f5c58a | 506 | */ |
| sunyiming | 1:6465a3f5c58a | 507 | static void |
| sunyiming | 1:6465a3f5c58a | 508 | upap_rauthnak(upap_state *u, u_char *inp, int id, int len) |
| sunyiming | 1:6465a3f5c58a | 509 | { |
| sunyiming | 1:6465a3f5c58a | 510 | u_char msglen; |
| sunyiming | 1:6465a3f5c58a | 511 | char *msg; |
| sunyiming | 1:6465a3f5c58a | 512 | |
| sunyiming | 1:6465a3f5c58a | 513 | LWIP_UNUSED_ARG(id); |
| sunyiming | 1:6465a3f5c58a | 514 | |
| sunyiming | 1:6465a3f5c58a | 515 | UPAPDEBUG(LOG_INFO, ("pap_rauthnak: Rcvd id %d s=%d\n", id, u->us_clientstate)); |
| sunyiming | 1:6465a3f5c58a | 516 | |
| sunyiming | 1:6465a3f5c58a | 517 | if (u->us_clientstate != UPAPCS_AUTHREQ) { /* XXX */ |
| sunyiming | 1:6465a3f5c58a | 518 | return; |
| sunyiming | 1:6465a3f5c58a | 519 | } |
| sunyiming | 1:6465a3f5c58a | 520 | |
| sunyiming | 1:6465a3f5c58a | 521 | /* |
| sunyiming | 1:6465a3f5c58a | 522 | * Parse message. |
| sunyiming | 1:6465a3f5c58a | 523 | */ |
| sunyiming | 1:6465a3f5c58a | 524 | if (len < sizeof (u_char)) { |
| sunyiming | 1:6465a3f5c58a | 525 | UPAPDEBUG(LOG_INFO, ("pap_rauthnak: ignoring missing msg-length.\n")); |
| sunyiming | 1:6465a3f5c58a | 526 | } else { |
| sunyiming | 1:6465a3f5c58a | 527 | GETCHAR(msglen, inp); |
| sunyiming | 1:6465a3f5c58a | 528 | if(msglen > 0) { |
| sunyiming | 1:6465a3f5c58a | 529 | len -= sizeof (u_char); |
| sunyiming | 1:6465a3f5c58a | 530 | if (len < msglen) { |
| sunyiming | 1:6465a3f5c58a | 531 | UPAPDEBUG(LOG_INFO, ("pap_rauthnak: rcvd short packet.\n")); |
| sunyiming | 1:6465a3f5c58a | 532 | return; |
| sunyiming | 1:6465a3f5c58a | 533 | } |
| sunyiming | 1:6465a3f5c58a | 534 | msg = (char *) inp; |
| sunyiming | 1:6465a3f5c58a | 535 | PRINTMSG(msg, msglen); |
| sunyiming | 1:6465a3f5c58a | 536 | } |
| sunyiming | 1:6465a3f5c58a | 537 | } |
| sunyiming | 1:6465a3f5c58a | 538 | |
| sunyiming | 1:6465a3f5c58a | 539 | u->us_clientstate = UPAPCS_BADAUTH; |
| sunyiming | 1:6465a3f5c58a | 540 | |
| sunyiming | 1:6465a3f5c58a | 541 | UPAPDEBUG(LOG_ERR, ("PAP authentication failed\n")); |
| sunyiming | 1:6465a3f5c58a | 542 | auth_withpeer_fail(u->us_unit, PPP_PAP); |
| sunyiming | 1:6465a3f5c58a | 543 | } |
| sunyiming | 1:6465a3f5c58a | 544 | |
| sunyiming | 1:6465a3f5c58a | 545 | |
| sunyiming | 1:6465a3f5c58a | 546 | /* |
| sunyiming | 1:6465a3f5c58a | 547 | * upap_sauthreq - Send an Authenticate-Request. |
| sunyiming | 1:6465a3f5c58a | 548 | */ |
| sunyiming | 1:6465a3f5c58a | 549 | static void |
| sunyiming | 1:6465a3f5c58a | 550 | upap_sauthreq(upap_state *u) |
| sunyiming | 1:6465a3f5c58a | 551 | { |
| sunyiming | 1:6465a3f5c58a | 552 | u_char *outp; |
| sunyiming | 1:6465a3f5c58a | 553 | int outlen; |
| sunyiming | 1:6465a3f5c58a | 554 | |
| sunyiming | 1:6465a3f5c58a | 555 | outlen = UPAP_HEADERLEN + 2 * sizeof (u_char) |
| sunyiming | 1:6465a3f5c58a | 556 | + u->us_userlen + u->us_passwdlen; |
| sunyiming | 1:6465a3f5c58a | 557 | outp = outpacket_buf[u->us_unit]; |
| sunyiming | 1:6465a3f5c58a | 558 | |
| sunyiming | 1:6465a3f5c58a | 559 | MAKEHEADER(outp, PPP_PAP); |
| sunyiming | 1:6465a3f5c58a | 560 | |
| sunyiming | 1:6465a3f5c58a | 561 | PUTCHAR(UPAP_AUTHREQ, outp); |
| sunyiming | 1:6465a3f5c58a | 562 | PUTCHAR(++u->us_id, outp); |
| sunyiming | 1:6465a3f5c58a | 563 | PUTSHORT(outlen, outp); |
| sunyiming | 1:6465a3f5c58a | 564 | PUTCHAR(u->us_userlen, outp); |
| sunyiming | 1:6465a3f5c58a | 565 | BCOPY(u->us_user, outp, u->us_userlen); |
| sunyiming | 1:6465a3f5c58a | 566 | INCPTR(u->us_userlen, outp); |
| sunyiming | 1:6465a3f5c58a | 567 | PUTCHAR(u->us_passwdlen, outp); |
| sunyiming | 1:6465a3f5c58a | 568 | BCOPY(u->us_passwd, outp, u->us_passwdlen); |
| sunyiming | 1:6465a3f5c58a | 569 | |
| sunyiming | 1:6465a3f5c58a | 570 | pppWrite(u->us_unit, outpacket_buf[u->us_unit], outlen + PPP_HDRLEN); |
| sunyiming | 1:6465a3f5c58a | 571 | |
| sunyiming | 1:6465a3f5c58a | 572 | UPAPDEBUG(LOG_INFO, ("pap_sauth: Sent id %d\n", u->us_id)); |
| sunyiming | 1:6465a3f5c58a | 573 | |
| sunyiming | 1:6465a3f5c58a | 574 | TIMEOUT(upap_timeout, u, u->us_timeouttime); |
| sunyiming | 1:6465a3f5c58a | 575 | ++u->us_transmits; |
| sunyiming | 1:6465a3f5c58a | 576 | u->us_clientstate = UPAPCS_AUTHREQ; |
| sunyiming | 1:6465a3f5c58a | 577 | } |
| sunyiming | 1:6465a3f5c58a | 578 | |
| sunyiming | 1:6465a3f5c58a | 579 | |
| sunyiming | 1:6465a3f5c58a | 580 | /* |
| sunyiming | 1:6465a3f5c58a | 581 | * upap_sresp - Send a response (ack or nak). |
| sunyiming | 1:6465a3f5c58a | 582 | */ |
| sunyiming | 1:6465a3f5c58a | 583 | static void |
| sunyiming | 1:6465a3f5c58a | 584 | upap_sresp(upap_state *u, u_char code, u_char id, char *msg, int msglen) |
| sunyiming | 1:6465a3f5c58a | 585 | { |
| sunyiming | 1:6465a3f5c58a | 586 | u_char *outp; |
| sunyiming | 1:6465a3f5c58a | 587 | int outlen; |
| sunyiming | 1:6465a3f5c58a | 588 | |
| sunyiming | 1:6465a3f5c58a | 589 | outlen = UPAP_HEADERLEN + sizeof (u_char) + msglen; |
| sunyiming | 1:6465a3f5c58a | 590 | outp = outpacket_buf[u->us_unit]; |
| sunyiming | 1:6465a3f5c58a | 591 | MAKEHEADER(outp, PPP_PAP); |
| sunyiming | 1:6465a3f5c58a | 592 | |
| sunyiming | 1:6465a3f5c58a | 593 | PUTCHAR(code, outp); |
| sunyiming | 1:6465a3f5c58a | 594 | PUTCHAR(id, outp); |
| sunyiming | 1:6465a3f5c58a | 595 | PUTSHORT(outlen, outp); |
| sunyiming | 1:6465a3f5c58a | 596 | PUTCHAR(msglen, outp); |
| sunyiming | 1:6465a3f5c58a | 597 | BCOPY(msg, outp, msglen); |
| sunyiming | 1:6465a3f5c58a | 598 | pppWrite(u->us_unit, outpacket_buf[u->us_unit], outlen + PPP_HDRLEN); |
| sunyiming | 1:6465a3f5c58a | 599 | |
| sunyiming | 1:6465a3f5c58a | 600 | UPAPDEBUG(LOG_INFO, ("pap_sresp: Sent code %d, id %d s=%d\n", code, id, u->us_clientstate)); |
| sunyiming | 1:6465a3f5c58a | 601 | } |
| sunyiming | 1:6465a3f5c58a | 602 | |
| sunyiming | 1:6465a3f5c58a | 603 | #if PPP_ADDITIONAL_CALLBACKS |
| sunyiming | 1:6465a3f5c58a | 604 | static char *upap_codenames[] = { |
| sunyiming | 1:6465a3f5c58a | 605 | "AuthReq", "AuthAck", "AuthNak" |
| sunyiming | 1:6465a3f5c58a | 606 | }; |
| sunyiming | 1:6465a3f5c58a | 607 | |
| sunyiming | 1:6465a3f5c58a | 608 | /* |
| sunyiming | 1:6465a3f5c58a | 609 | * upap_printpkt - print the contents of a PAP packet. |
| sunyiming | 1:6465a3f5c58a | 610 | */ |
| sunyiming | 1:6465a3f5c58a | 611 | static int upap_printpkt( |
| sunyiming | 1:6465a3f5c58a | 612 | u_char *p, |
| sunyiming | 1:6465a3f5c58a | 613 | int plen, |
| sunyiming | 1:6465a3f5c58a | 614 | void (*printer) (void *, char *, ...), |
| sunyiming | 1:6465a3f5c58a | 615 | void *arg |
| sunyiming | 1:6465a3f5c58a | 616 | ) |
| sunyiming | 1:6465a3f5c58a | 617 | { |
| sunyiming | 1:6465a3f5c58a | 618 | LWIP_UNUSED_ARG(p); |
| sunyiming | 1:6465a3f5c58a | 619 | LWIP_UNUSED_ARG(plen); |
| sunyiming | 1:6465a3f5c58a | 620 | LWIP_UNUSED_ARG(printer); |
| sunyiming | 1:6465a3f5c58a | 621 | LWIP_UNUSED_ARG(arg); |
| sunyiming | 1:6465a3f5c58a | 622 | return 0; |
| sunyiming | 1:6465a3f5c58a | 623 | } |
| sunyiming | 1:6465a3f5c58a | 624 | #endif /* PPP_ADDITIONAL_CALLBACKS */ |
| sunyiming | 1:6465a3f5c58a | 625 | |
| sunyiming | 1:6465a3f5c58a | 626 | #endif /* PAP_SUPPORT */ |
| sunyiming | 1:6465a3f5c58a | 627 | |
| sunyiming | 1:6465a3f5c58a | 628 | #endif /* PPP_SUPPORT */ |