Lee Kai Xuan
/
mbed-os
Important changes to repositories hosted on mbed.com
Mbed hosted mercurial repositories are deprecated and are due to be permanently deleted in July 2026.
To keep a copy of this software download the repository Zip archive or clone locally using Mercurial.
It is also possible to export all your personal repositories from the account settings page.
Fork of
mbed-os
by 
erkin yucel
Embed:
(wiki syntax)
Show/hide line numbers
lwip_pppol2tp.c
Go to the documentation of this file.
00001 /** 00002 * @file 00003 * Network Point to Point Protocol over Layer 2 Tunneling Protocol program file. 00004 * 00005 */ 00006 00007 /* 00008 * Redistribution and use in source and binary forms, with or without modification, 00009 * are permitted provided that the following conditions are met: 00010 * 00011 * 1. Redistributions of source code must retain the above copyright notice, 00012 * this list of conditions and the following disclaimer. 00013 * 2. Redistributions in binary form must reproduce the above copyright notice, 00014 * this list of conditions and the following disclaimer in the documentation 00015 * and/or other materials provided with the distribution. 00016 * 3. The name of the author may not be used to endorse or promote products 00017 * derived from this software without specific prior written permission. 00018 * 00019 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR IMPLIED 00020 * WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF 00021 * MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT 00022 * SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, 00023 * EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT 00024 * OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS 00025 * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN 00026 * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING 00027 * IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY 00028 * OF SUCH DAMAGE. 00029 * 00030 * This file is part of the lwIP TCP/IP stack. 00031 * 00032 */ 00033 00034 /* 00035 * L2TP Support status: 00036 * 00037 * Supported: 00038 * - L2TPv2 (PPP over L2TP, a.k.a. UDP tunnels) 00039 * - LAC 00040 * 00041 * Not supported: 00042 * - LNS (require PPP server support) 00043 * - L2TPv3 ethernet pseudowires 00044 * - L2TPv3 VLAN pseudowire 00045 * - L2TPv3 PPP pseudowires 00046 * - L2TPv3 IP encapsulation 00047 * - L2TPv3 IP pseudowire 00048 * - L2TP tunnel switching - http://tools.ietf.org/html/draft-ietf-l2tpext-tunnel-switching-08 00049 * - Multiple tunnels per UDP socket, as well as multiple sessions per tunnel 00050 * - Hidden AVPs 00051 */ 00052 00053 #include "netif/ppp/ppp_opts.h" 00054 #if PPP_SUPPORT && PPPOL2TP_SUPPORT /* don't build if not configured for use in lwipopts.h */ 00055 00056 #include "lwip/err.h" 00057 #include "lwip/memp.h" 00058 #include "lwip/netif.h" 00059 #include "lwip/udp.h" 00060 #include "lwip/snmp.h" 00061 00062 #include "netif/ppp/ppp_impl.h" 00063 #include "netif/ppp/lcp.h" 00064 #include "netif/ppp/ipcp.h" 00065 #include "netif/ppp/pppol2tp.h" 00066 #include "netif/ppp/pppcrypt.h" 00067 #include "netif/ppp/magic.h" 00068 00069 /* Memory pool */ 00070 LWIP_MEMPOOL_DECLARE(PPPOL2TP_PCB, MEMP_NUM_PPPOL2TP_INTERFACES, sizeof(pppol2tp_pcb), "PPPOL2TP_PCB") 00071 00072 /* callbacks called from PPP core */ 00073 static err_t pppol2tp_write(ppp_pcb *ppp, void *ctx, struct pbuf *p); 00074 static err_t pppol2tp_netif_output(ppp_pcb *ppp, void *ctx, struct pbuf *p, u_short protocol); 00075 static err_t pppol2tp_destroy(ppp_pcb *ppp, void *ctx); /* Destroy a L2TP control block */ 00076 static err_t pppol2tp_connect(ppp_pcb *ppp, void *ctx); /* Be a LAC, connect to a LNS. */ 00077 static void pppol2tp_disconnect(ppp_pcb *ppp, void *ctx); /* Disconnect */ 00078 00079 /* Prototypes for procedures local to this file. */ 00080 static void pppol2tp_input(void *arg, struct udp_pcb *pcb, struct pbuf *p, const ip_addr_t *addr, u16_t port); 00081 static void pppol2tp_dispatch_control_packet(pppol2tp_pcb *l2tp, u16_t port, struct pbuf *p, u16_t ns, u16_t nr); 00082 static void pppol2tp_timeout(void *arg); 00083 static void pppol2tp_abort_connect(pppol2tp_pcb *l2tp); 00084 static void pppol2tp_clear(pppol2tp_pcb *l2tp); 00085 static err_t pppol2tp_send_sccrq(pppol2tp_pcb *l2tp); 00086 static err_t pppol2tp_send_scccn(pppol2tp_pcb *l2tp, u16_t ns); 00087 static err_t pppol2tp_send_icrq(pppol2tp_pcb *l2tp, u16_t ns); 00088 static err_t pppol2tp_send_iccn(pppol2tp_pcb *l2tp, u16_t ns); 00089 static err_t pppol2tp_send_zlb(pppol2tp_pcb *l2tp, u16_t ns); 00090 static err_t pppol2tp_send_stopccn(pppol2tp_pcb *l2tp, u16_t ns); 00091 static err_t pppol2tp_xmit(pppol2tp_pcb *l2tp, struct pbuf *pb); 00092 static err_t pppol2tp_udp_send(pppol2tp_pcb *l2tp, struct pbuf *pb); 00093 00094 /* Callbacks structure for PPP core */ 00095 static const struct link_callbacks pppol2tp_callbacks = { 00096 pppol2tp_connect, 00097 #if PPP_SERVER 00098 NULL, 00099 #endif /* PPP_SERVER */ 00100 pppol2tp_disconnect, 00101 pppol2tp_destroy, 00102 pppol2tp_write, 00103 pppol2tp_netif_output, 00104 NULL, 00105 NULL 00106 }; 00107 00108 00109 /* Create a new L2TP session. */ 00110 ppp_pcb *pppol2tp_create(struct netif *pppif, 00111 struct netif *netif, const ip_addr_t *ipaddr, u16_t port, 00112 const u8_t *secret, u8_t secret_len, 00113 ppp_link_status_cb_fn link_status_cb, void *ctx_cb) { 00114 ppp_pcb *ppp; 00115 pppol2tp_pcb *l2tp; 00116 struct udp_pcb *udp; 00117 00118 if (ipaddr == NULL) { 00119 goto ipaddr_check_failed; 00120 } 00121 00122 l2tp = (pppol2tp_pcb *)LWIP_MEMPOOL_ALLOC(PPPOL2TP_PCB); 00123 if (l2tp == NULL) { 00124 goto memp_malloc_l2tp_failed; 00125 } 00126 00127 udp = udp_new_ip_type(IP_GET_TYPE(ipaddr)); 00128 if (udp == NULL) { 00129 goto udp_new_failed; 00130 } 00131 udp_recv(udp, pppol2tp_input, l2tp); 00132 00133 ppp = ppp_new(pppif, &pppol2tp_callbacks, l2tp, link_status_cb, ctx_cb); 00134 if (ppp == NULL) { 00135 goto ppp_new_failed; 00136 } 00137 00138 memset(l2tp, 0, sizeof(pppol2tp_pcb)); 00139 l2tp->phase = PPPOL2TP_STATE_INITIAL; 00140 l2tp->ppp = ppp; 00141 l2tp->udp = udp; 00142 l2tp->netif = netif; 00143 ip_addr_copy(l2tp->remote_ip, *ipaddr); 00144 l2tp->remote_port = port; 00145 #if PPPOL2TP_AUTH_SUPPORT 00146 l2tp->secret = secret; 00147 l2tp->secret_len = secret_len; 00148 #endif /* PPPOL2TP_AUTH_SUPPORT */ 00149 00150 return ppp; 00151 00152 ppp_new_failed: 00153 udp_remove(udp); 00154 udp_new_failed: 00155 LWIP_MEMPOOL_FREE(PPPOL2TP_PCB, l2tp); 00156 memp_malloc_l2tp_failed: 00157 ipaddr_check_failed: 00158 return NULL; 00159 } 00160 00161 /* Called by PPP core */ 00162 static err_t pppol2tp_write(ppp_pcb *ppp, void *ctx, struct pbuf *p) { 00163 pppol2tp_pcb *l2tp = (pppol2tp_pcb *)ctx; 00164 struct pbuf *ph; /* UDP + L2TP header */ 00165 err_t ret; 00166 #if MIB2_STATS 00167 u16_t tot_len; 00168 #else /* MIB2_STATS */ 00169 LWIP_UNUSED_ARG(ppp); 00170 #endif /* MIB2_STATS */ 00171 00172 ph = pbuf_alloc(PBUF_TRANSPORT, (u16_t)(PPPOL2TP_OUTPUT_DATA_HEADER_LEN), PBUF_RAM); 00173 if(!ph) { 00174 LINK_STATS_INC(link.memerr); 00175 LINK_STATS_INC(link.proterr); 00176 MIB2_STATS_NETIF_INC(ppp->netif, ifoutdiscards); 00177 pbuf_free(p); 00178 return ERR_MEM; 00179 } 00180 00181 pbuf_header(ph, -(s16_t)PPPOL2TP_OUTPUT_DATA_HEADER_LEN); /* hide L2TP header */ 00182 pbuf_cat(ph, p); 00183 #if MIB2_STATS 00184 tot_len = ph->tot_len; 00185 #endif /* MIB2_STATS */ 00186 00187 ret = pppol2tp_xmit(l2tp, ph); 00188 if (ret != ERR_OK) { 00189 LINK_STATS_INC(link.err); 00190 MIB2_STATS_NETIF_INC(ppp->netif, ifoutdiscards); 00191 return ret; 00192 } 00193 00194 MIB2_STATS_NETIF_ADD(ppp->netif, ifoutoctets, (u16_t)tot_len); 00195 MIB2_STATS_NETIF_INC(ppp->netif, ifoutucastpkts); 00196 LINK_STATS_INC(link.xmit); 00197 return ERR_OK; 00198 } 00199 00200 /* Called by PPP core */ 00201 static err_t pppol2tp_netif_output(ppp_pcb *ppp, void *ctx, struct pbuf *p, u_short protocol) { 00202 pppol2tp_pcb *l2tp = (pppol2tp_pcb *)ctx; 00203 struct pbuf *pb; 00204 u8_t *pl; 00205 err_t err; 00206 #if MIB2_STATS 00207 u16_t tot_len; 00208 #else /* MIB2_STATS */ 00209 LWIP_UNUSED_ARG(ppp); 00210 #endif /* MIB2_STATS */ 00211 00212 /* @todo: try to use pbuf_header() here! */ 00213 pb = pbuf_alloc(PBUF_TRANSPORT, PPPOL2TP_OUTPUT_DATA_HEADER_LEN + sizeof(protocol), PBUF_RAM); 00214 if(!pb) { 00215 LINK_STATS_INC(link.memerr); 00216 LINK_STATS_INC(link.proterr); 00217 MIB2_STATS_NETIF_INC(ppp->netif, ifoutdiscards); 00218 return ERR_MEM; 00219 } 00220 00221 pbuf_header(pb, -(s16_t)PPPOL2TP_OUTPUT_DATA_HEADER_LEN); 00222 00223 pl = (u8_t*)pb->payload; 00224 PUTSHORT(protocol, pl); 00225 00226 pbuf_chain(pb, p); 00227 #if MIB2_STATS 00228 tot_len = pb->tot_len; 00229 #endif /* MIB2_STATS */ 00230 00231 if( (err = pppol2tp_xmit(l2tp, pb)) != ERR_OK) { 00232 LINK_STATS_INC(link.err); 00233 MIB2_STATS_NETIF_INC(ppp->netif, ifoutdiscards); 00234 return err; 00235 } 00236 00237 MIB2_STATS_NETIF_ADD(ppp->netif, ifoutoctets, tot_len); 00238 MIB2_STATS_NETIF_INC(ppp->netif, ifoutucastpkts); 00239 LINK_STATS_INC(link.xmit); 00240 return ERR_OK; 00241 } 00242 00243 /* Destroy a L2TP control block */ 00244 static err_t pppol2tp_destroy(ppp_pcb *ppp, void *ctx) { 00245 pppol2tp_pcb *l2tp = (pppol2tp_pcb *)ctx; 00246 LWIP_UNUSED_ARG(ppp); 00247 00248 sys_untimeout(pppol2tp_timeout, l2tp); 00249 udp_remove(l2tp->udp); 00250 LWIP_MEMPOOL_FREE(PPPOL2TP_PCB, l2tp); 00251 return ERR_OK; 00252 } 00253 00254 /* Be a LAC, connect to a LNS. */ 00255 static err_t pppol2tp_connect(ppp_pcb *ppp, void *ctx) { 00256 err_t err; 00257 pppol2tp_pcb *l2tp = (pppol2tp_pcb *)ctx; 00258 lcp_options *lcp_wo; 00259 lcp_options *lcp_ao; 00260 #if PPP_IPV4_SUPPORT && VJ_SUPPORT 00261 ipcp_options *ipcp_wo; 00262 ipcp_options *ipcp_ao; 00263 #endif /* PPP_IPV4_SUPPORT && VJ_SUPPORT */ 00264 00265 if (l2tp->phase != PPPOL2TP_STATE_INITIAL) { 00266 return ERR_VAL; 00267 } 00268 00269 pppol2tp_clear(l2tp); 00270 00271 ppp_link_start(ppp); 00272 00273 lcp_wo = &ppp->lcp_wantoptions; 00274 lcp_wo->mru = PPPOL2TP_DEFMRU; 00275 lcp_wo->neg_asyncmap = 0; 00276 lcp_wo->neg_pcompression = 0; 00277 lcp_wo->neg_accompression = 0; 00278 lcp_wo->passive = 0; 00279 lcp_wo->silent = 0; 00280 00281 lcp_ao = &ppp->lcp_allowoptions; 00282 lcp_ao->mru = PPPOL2TP_DEFMRU; 00283 lcp_ao->neg_asyncmap = 0; 00284 lcp_ao->neg_pcompression = 0; 00285 lcp_ao->neg_accompression = 0; 00286 00287 #if PPP_IPV4_SUPPORT && VJ_SUPPORT 00288 ipcp_wo = &ppp->ipcp_wantoptions; 00289 ipcp_wo->neg_vj = 0; 00290 ipcp_wo->old_vj = 0; 00291 00292 ipcp_ao = &ppp->ipcp_allowoptions; 00293 ipcp_ao->neg_vj = 0; 00294 ipcp_ao->old_vj = 0; 00295 #endif /* PPP_IPV4_SUPPORT && VJ_SUPPORT */ 00296 00297 /* Listen to a random source port, we need to do that instead of using udp_connect() 00298 * because the L2TP LNS might answer with its own random source port (!= 1701) 00299 */ 00300 #if LWIP_IPV6 00301 if (IP_IS_V6_VAL(l2tp->udp->local_ip)) { 00302 udp_bind(l2tp->udp, IP6_ADDR_ANY, 0); 00303 } else 00304 #endif /* LWIP_IPV6 */ 00305 udp_bind(l2tp->udp, IP_ADDR_ANY, 0); 00306 00307 #if PPPOL2TP_AUTH_SUPPORT 00308 /* Generate random vector */ 00309 if (l2tp->secret != NULL) { 00310 magic_random_bytes(l2tp->secret_rv, sizeof(l2tp->secret_rv)); 00311 } 00312 #endif /* PPPOL2TP_AUTH_SUPPORT */ 00313 00314 do { 00315 l2tp->remote_tunnel_id = magic(); 00316 } while(l2tp->remote_tunnel_id == 0); 00317 /* save state, in case we fail to send SCCRQ */ 00318 l2tp->sccrq_retried = 0; 00319 l2tp->phase = PPPOL2TP_STATE_SCCRQ_SENT; 00320 if ((err = pppol2tp_send_sccrq(l2tp)) != 0) { 00321 PPPDEBUG(LOG_DEBUG, ("pppol2tp: failed to send SCCRQ, error=%d\n", err)); 00322 } 00323 sys_timeout(PPPOL2TP_CONTROL_TIMEOUT, pppol2tp_timeout, l2tp); 00324 return err; 00325 } 00326 00327 /* Disconnect */ 00328 static void pppol2tp_disconnect(ppp_pcb *ppp, void *ctx) { 00329 pppol2tp_pcb *l2tp = (pppol2tp_pcb *)ctx; 00330 00331 if (l2tp->phase < PPPOL2TP_STATE_DATA) { 00332 return; 00333 } 00334 00335 l2tp->our_ns++; 00336 pppol2tp_send_stopccn(l2tp, l2tp->our_ns); 00337 00338 pppol2tp_clear(l2tp); 00339 ppp_link_end(ppp); /* notify upper layers */ 00340 } 00341 00342 /* UDP Callback for incoming IPv4 L2TP frames */ 00343 static void pppol2tp_input(void *arg, struct udp_pcb *pcb, struct pbuf *p, const ip_addr_t *addr, u16_t port) { 00344 pppol2tp_pcb *l2tp = (pppol2tp_pcb*)arg; 00345 u16_t hflags, hlen, len=0, tunnel_id=0, session_id=0, ns=0, nr=0, offset=0; 00346 u8_t *inp; 00347 LWIP_UNUSED_ARG(pcb); 00348 00349 if (l2tp->phase < PPPOL2TP_STATE_SCCRQ_SENT) { 00350 goto free_and_return; 00351 } 00352 00353 if (!ip_addr_cmp(&l2tp->remote_ip, addr)) { 00354 goto free_and_return; 00355 } 00356 00357 /* discard packet if port mismatch, but only if we received a SCCRP */ 00358 if (l2tp->phase > PPPOL2TP_STATE_SCCRQ_SENT && l2tp->tunnel_port != port) { 00359 goto free_and_return; 00360 } 00361 00362 /* printf("-----------\nL2TP INPUT, %d\n", p->len); */ 00363 00364 /* L2TP header */ 00365 if (p->len < sizeof(hflags) + sizeof(tunnel_id) + sizeof(session_id) ) { 00366 goto packet_too_short; 00367 } 00368 00369 inp = (u8_t*)p->payload; 00370 GETSHORT(hflags, inp); 00371 00372 if (hflags & PPPOL2TP_HEADERFLAG_CONTROL) { 00373 /* check mandatory flags for a control packet */ 00374 if ( (hflags & PPPOL2TP_HEADERFLAG_CONTROL_MANDATORY) != PPPOL2TP_HEADERFLAG_CONTROL_MANDATORY ) { 00375 PPPDEBUG(LOG_DEBUG, ("pppol2tp: mandatory header flags for control packet not set\n")); 00376 goto free_and_return; 00377 } 00378 /* check forbidden flags for a control packet */ 00379 if (hflags & PPPOL2TP_HEADERFLAG_CONTROL_FORBIDDEN) { 00380 PPPDEBUG(LOG_DEBUG, ("pppol2tp: forbidden header flags for control packet found\n")); 00381 goto free_and_return; 00382 } 00383 } else { 00384 /* check mandatory flags for a data packet */ 00385 if ( (hflags & PPPOL2TP_HEADERFLAG_DATA_MANDATORY) != PPPOL2TP_HEADERFLAG_DATA_MANDATORY) { 00386 PPPDEBUG(LOG_DEBUG, ("pppol2tp: mandatory header flags for data packet not set\n")); 00387 goto free_and_return; 00388 } 00389 } 00390 00391 /* Expected header size */ 00392 hlen = sizeof(hflags) + sizeof(tunnel_id) + sizeof(session_id); 00393 if (hflags & PPPOL2TP_HEADERFLAG_LENGTH) { 00394 hlen += sizeof(len); 00395 } 00396 if (hflags & PPPOL2TP_HEADERFLAG_SEQUENCE) { 00397 hlen += sizeof(ns) + sizeof(nr); 00398 } 00399 if (hflags & PPPOL2TP_HEADERFLAG_OFFSET) { 00400 hlen += sizeof(offset); 00401 } 00402 if (p->len < hlen) { 00403 goto packet_too_short; 00404 } 00405 00406 if (hflags & PPPOL2TP_HEADERFLAG_LENGTH) { 00407 GETSHORT(len, inp); 00408 if (p->len < len || len < hlen) { 00409 goto packet_too_short; 00410 } 00411 } 00412 GETSHORT(tunnel_id, inp); 00413 GETSHORT(session_id, inp); 00414 if (hflags & PPPOL2TP_HEADERFLAG_SEQUENCE) { 00415 GETSHORT(ns, inp); 00416 GETSHORT(nr, inp); 00417 } 00418 if (hflags & PPPOL2TP_HEADERFLAG_OFFSET) { 00419 GETSHORT(offset, inp) 00420 if (offset > 4096) { /* don't be fooled with large offset which might overflow hlen */ 00421 PPPDEBUG(LOG_DEBUG, ("pppol2tp: strange packet received, offset=%d\n", offset)); 00422 goto free_and_return; 00423 } 00424 hlen += offset; 00425 if (p->len < hlen) { 00426 goto packet_too_short; 00427 } 00428 INCPTR(offset, inp); 00429 } 00430 00431 /* printf("HLEN = %d\n", hlen); */ 00432 00433 /* skip L2TP header */ 00434 if (pbuf_header(p, -(s16_t)hlen) != 0) { 00435 goto free_and_return; 00436 } 00437 00438 /* printf("LEN=%d, TUNNEL_ID=%d, SESSION_ID=%d, NS=%d, NR=%d, OFFSET=%d\n", len, tunnel_id, session_id, ns, nr, offset); */ 00439 PPPDEBUG(LOG_DEBUG, ("pppol2tp: input packet, len=%"U16_F", tunnel=%"U16_F", session=%"U16_F", ns=%"U16_F", nr=%"U16_F"\n", 00440 len, tunnel_id, session_id, ns, nr)); 00441 00442 /* Control packet */ 00443 if (hflags & PPPOL2TP_HEADERFLAG_CONTROL) { 00444 pppol2tp_dispatch_control_packet(l2tp, port, p, ns, nr); 00445 goto free_and_return; 00446 } 00447 00448 /* Data packet */ 00449 if(l2tp->phase != PPPOL2TP_STATE_DATA) { 00450 goto free_and_return; 00451 } 00452 if(tunnel_id != l2tp->remote_tunnel_id) { 00453 PPPDEBUG(LOG_DEBUG, ("pppol2tp: tunnel ID mismatch, assigned=%d, received=%d\n", l2tp->remote_tunnel_id, tunnel_id)); 00454 goto free_and_return; 00455 } 00456 if(session_id != l2tp->remote_session_id) { 00457 PPPDEBUG(LOG_DEBUG, ("pppol2tp: session ID mismatch, assigned=%d, received=%d\n", l2tp->remote_session_id, session_id)); 00458 goto free_and_return; 00459 } 00460 /* 00461 * skip address & flags if necessary 00462 * 00463 * RFC 2661 does not specify whether the PPP frame in the L2TP payload should 00464 * have a HDLC header or not. We handle both cases for compatibility. 00465 */ 00466 if (p->len >= 2) { 00467 GETSHORT(hflags, inp); 00468 if (hflags == 0xff03) { 00469 pbuf_header(p, -(s16_t)2); 00470 } 00471 } 00472 /* Dispatch the packet thereby consuming it. */ 00473 ppp_input(l2tp->ppp, p); 00474 return; 00475 00476 packet_too_short: 00477 PPPDEBUG(LOG_DEBUG, ("pppol2tp: packet too short: %d\n", p->len)); 00478 free_and_return: 00479 pbuf_free(p); 00480 } 00481 00482 /* L2TP Control packet entry point */ 00483 static void pppol2tp_dispatch_control_packet(pppol2tp_pcb *l2tp, u16_t port, struct pbuf *p, u16_t ns, u16_t nr) { 00484 u8_t *inp; 00485 u16_t avplen, avpflags, vendorid, attributetype, messagetype=0; 00486 err_t err; 00487 #if PPPOL2TP_AUTH_SUPPORT 00488 lwip_md5_context md5_ctx; 00489 u8_t md5_hash[16]; 00490 u8_t challenge_id = 0; 00491 #endif /* PPPOL2TP_AUTH_SUPPORT */ 00492 00493 l2tp->peer_nr = nr; 00494 l2tp->peer_ns = ns; 00495 /* printf("L2TP CTRL INPUT, ns=%d, nr=%d, len=%d\n", ns, nr, p->len); */ 00496 00497 /* Handle the special case of the ICCN acknowledge */ 00498 if (l2tp->phase == PPPOL2TP_STATE_ICCN_SENT && l2tp->peer_nr > l2tp->our_ns) { 00499 l2tp->phase = PPPOL2TP_STATE_DATA; 00500 } 00501 00502 /* ZLB packets */ 00503 if (p->tot_len == 0) { 00504 return; 00505 } 00506 00507 p = ppp_singlebuf(p); 00508 inp = (u8_t*)p->payload; 00509 /* Decode AVPs */ 00510 while (p->len > 0) { 00511 if (p->len < sizeof(avpflags) + sizeof(vendorid) + sizeof(attributetype) ) { 00512 goto packet_too_short; 00513 } 00514 GETSHORT(avpflags, inp); 00515 avplen = avpflags & PPPOL2TP_AVPHEADERFLAG_LENGTHMASK; 00516 /* printf("AVPLEN = %d\n", avplen); */ 00517 if (p->len < avplen || avplen < sizeof(avpflags) + sizeof(vendorid) + sizeof(attributetype)) { 00518 goto packet_too_short; 00519 } 00520 GETSHORT(vendorid, inp); 00521 GETSHORT(attributetype, inp); 00522 avplen -= sizeof(avpflags) + sizeof(vendorid) + sizeof(attributetype); 00523 00524 /* Message type must be the first AVP */ 00525 if (messagetype == 0) { 00526 if (attributetype != 0 || vendorid != 0 || avplen != sizeof(messagetype) ) { 00527 PPPDEBUG(LOG_DEBUG, ("pppol2tp: message type must be the first AVP\n")); 00528 return; 00529 } 00530 GETSHORT(messagetype, inp); 00531 /* printf("Message type = %d\n", messagetype); */ 00532 switch(messagetype) { 00533 /* Start Control Connection Reply */ 00534 case PPPOL2TP_MESSAGETYPE_SCCRP: 00535 /* Only accept SCCRP packet if we sent a SCCRQ */ 00536 if (l2tp->phase != PPPOL2TP_STATE_SCCRQ_SENT) { 00537 goto send_zlb; 00538 } 00539 break; 00540 /* Incoming Call Reply */ 00541 case PPPOL2TP_MESSAGETYPE_ICRP: 00542 /* Only accept ICRP packet if we sent a IRCQ */ 00543 if (l2tp->phase != PPPOL2TP_STATE_ICRQ_SENT) { 00544 goto send_zlb; 00545 } 00546 break; 00547 /* Stop Control Connection Notification */ 00548 case PPPOL2TP_MESSAGETYPE_STOPCCN: 00549 pppol2tp_send_zlb(l2tp, l2tp->our_ns); /* Ack the StopCCN before we switch to down state */ 00550 if (l2tp->phase < PPPOL2TP_STATE_DATA) { 00551 pppol2tp_abort_connect(l2tp); 00552 } else if (l2tp->phase == PPPOL2TP_STATE_DATA) { 00553 /* Don't disconnect here, we let the LCP Echo/Reply find the fact 00554 * that PPP session is down. Asking the PPP stack to end the session 00555 * require strict checking about the PPP phase to prevent endless 00556 * disconnection loops. 00557 */ 00558 } 00559 return; 00560 default: 00561 break; 00562 } 00563 goto nextavp; 00564 } 00565 00566 /* Skip proprietary L2TP extensions */ 00567 if (vendorid != 0) { 00568 goto skipavp; 00569 } 00570 00571 switch (messagetype) { 00572 /* Start Control Connection Reply */ 00573 case PPPOL2TP_MESSAGETYPE_SCCRP: 00574 switch (attributetype) { 00575 case PPPOL2TP_AVPTYPE_TUNNELID: 00576 if (avplen != sizeof(l2tp->source_tunnel_id) ) { 00577 PPPDEBUG(LOG_DEBUG, ("pppol2tp: AVP Assign tunnel ID length check failed\n")); 00578 return; 00579 } 00580 GETSHORT(l2tp->source_tunnel_id, inp); 00581 PPPDEBUG(LOG_DEBUG, ("pppol2tp: Assigned tunnel ID %"U16_F"\n", l2tp->source_tunnel_id)); 00582 goto nextavp; 00583 #if PPPOL2TP_AUTH_SUPPORT 00584 case PPPOL2TP_AVPTYPE_CHALLENGE: 00585 if (avplen == 0) { 00586 PPPDEBUG(LOG_DEBUG, ("pppol2tp: Challenge length check failed\n")); 00587 return; 00588 } 00589 if (l2tp->secret == NULL) { 00590 PPPDEBUG(LOG_DEBUG, ("pppol2tp: Received challenge from peer and no secret key available\n")); 00591 pppol2tp_abort_connect(l2tp); 00592 return; 00593 } 00594 /* Generate hash of ID, secret, challenge */ 00595 lwip_md5_init(&md5_ctx); 00596 lwip_md5_starts(&md5_ctx); 00597 challenge_id = PPPOL2TP_MESSAGETYPE_SCCCN; 00598 lwip_md5_update(&md5_ctx, &challenge_id, 1); 00599 lwip_md5_update(&md5_ctx, l2tp->secret, l2tp->secret_len); 00600 lwip_md5_update(&md5_ctx, inp, avplen); 00601 lwip_md5_finish(&md5_ctx, l2tp->challenge_hash); 00602 lwip_md5_free(&md5_ctx); 00603 l2tp->send_challenge = 1; 00604 goto skipavp; 00605 case PPPOL2TP_AVPTYPE_CHALLENGERESPONSE: 00606 if (avplen != PPPOL2TP_AVPTYPE_CHALLENGERESPONSE_SIZE) { 00607 PPPDEBUG(LOG_DEBUG, ("pppol2tp: AVP Challenge Response length check failed\n")); 00608 return; 00609 } 00610 /* Generate hash of ID, secret, challenge */ 00611 lwip_md5_init(&md5_ctx); 00612 lwip_md5_starts(&md5_ctx); 00613 challenge_id = PPPOL2TP_MESSAGETYPE_SCCRP; 00614 lwip_md5_update(&md5_ctx, &challenge_id, 1); 00615 lwip_md5_update(&md5_ctx, l2tp->secret, l2tp->secret_len); 00616 lwip_md5_update(&md5_ctx, l2tp->secret_rv, sizeof(l2tp->secret_rv)); 00617 lwip_md5_finish(&md5_ctx, md5_hash); 00618 lwip_md5_free(&md5_ctx); 00619 if ( memcmp(inp, md5_hash, sizeof(md5_hash)) ) { 00620 PPPDEBUG(LOG_DEBUG, ("pppol2tp: Received challenge response from peer and secret key do not match\n")); 00621 pppol2tp_abort_connect(l2tp); 00622 return; 00623 } 00624 goto skipavp; 00625 #endif /* PPPOL2TP_AUTH_SUPPORT */ 00626 default: 00627 break; 00628 } 00629 break; 00630 /* Incoming Call Reply */ 00631 case PPPOL2TP_MESSAGETYPE_ICRP: 00632 switch (attributetype) { 00633 case PPPOL2TP_AVPTYPE_SESSIONID: 00634 if (avplen != sizeof(l2tp->source_session_id) ) { 00635 PPPDEBUG(LOG_DEBUG, ("pppol2tp: AVP Assign session ID length check failed\n")); 00636 return; 00637 } 00638 GETSHORT(l2tp->source_session_id, inp); 00639 PPPDEBUG(LOG_DEBUG, ("pppol2tp: Assigned session ID %"U16_F"\n", l2tp->source_session_id)); 00640 goto nextavp; 00641 default: 00642 break; 00643 } 00644 break; 00645 default: 00646 break; 00647 } 00648 00649 skipavp: 00650 INCPTR(avplen, inp); 00651 nextavp: 00652 /* printf("AVP Found, vendor=%d, attribute=%d, len=%d\n", vendorid, attributetype, avplen); */ 00653 /* next AVP */ 00654 if (pbuf_header(p, -(s16_t)(avplen + sizeof(avpflags) + sizeof(vendorid) + sizeof(attributetype)) ) != 0) { 00655 return; 00656 } 00657 } 00658 00659 switch(messagetype) { 00660 /* Start Control Connection Reply */ 00661 case PPPOL2TP_MESSAGETYPE_SCCRP: 00662 do { 00663 l2tp->remote_session_id = magic(); 00664 } while(l2tp->remote_session_id == 0); 00665 l2tp->tunnel_port = port; /* LNS server might have chosen its own local port */ 00666 l2tp->icrq_retried = 0; 00667 l2tp->phase = PPPOL2TP_STATE_ICRQ_SENT; 00668 l2tp->our_ns++; 00669 if ((err = pppol2tp_send_scccn(l2tp, l2tp->our_ns)) != 0) { 00670 PPPDEBUG(LOG_DEBUG, ("pppol2tp: failed to send SCCCN, error=%d\n", err)); 00671 } 00672 l2tp->our_ns++; 00673 if ((err = pppol2tp_send_icrq(l2tp, l2tp->our_ns)) != 0) { 00674 PPPDEBUG(LOG_DEBUG, ("pppol2tp: failed to send ICRQ, error=%d\n", err)); 00675 } 00676 sys_untimeout(pppol2tp_timeout, l2tp); 00677 sys_timeout(PPPOL2TP_CONTROL_TIMEOUT, pppol2tp_timeout, l2tp); 00678 break; 00679 /* Incoming Call Reply */ 00680 case PPPOL2TP_MESSAGETYPE_ICRP: 00681 l2tp->iccn_retried = 0; 00682 l2tp->phase = PPPOL2TP_STATE_ICCN_SENT; 00683 l2tp->our_ns++; 00684 ppp_start(l2tp->ppp); /* notify upper layers */ 00685 if ((err = pppol2tp_send_iccn(l2tp, l2tp->our_ns)) != 0) { 00686 PPPDEBUG(LOG_DEBUG, ("pppol2tp: failed to send ICCN, error=%d\n", err)); 00687 } 00688 sys_untimeout(pppol2tp_timeout, l2tp); 00689 sys_timeout(PPPOL2TP_CONTROL_TIMEOUT, pppol2tp_timeout, l2tp); 00690 break; 00691 /* Unhandled packet, send ZLB ACK */ 00692 default: 00693 goto send_zlb; 00694 } 00695 return; 00696 00697 send_zlb: 00698 pppol2tp_send_zlb(l2tp, l2tp->our_ns); 00699 return; 00700 packet_too_short: 00701 PPPDEBUG(LOG_DEBUG, ("pppol2tp: packet too short: %d\n", p->len)); 00702 } 00703 00704 /* L2TP Timeout handler */ 00705 static void pppol2tp_timeout(void *arg) { 00706 pppol2tp_pcb *l2tp = (pppol2tp_pcb*)arg; 00707 err_t err; 00708 u32_t retry_wait; 00709 00710 PPPDEBUG(LOG_DEBUG, ("pppol2tp: timeout\n")); 00711 00712 switch (l2tp->phase) { 00713 case PPPOL2TP_STATE_SCCRQ_SENT: 00714 /* backoff wait */ 00715 if (l2tp->sccrq_retried < 0xff) { 00716 l2tp->sccrq_retried++; 00717 } 00718 if (!l2tp->ppp->settings.persist && l2tp->sccrq_retried >= PPPOL2TP_MAXSCCRQ) { 00719 pppol2tp_abort_connect(l2tp); 00720 return; 00721 } 00722 retry_wait = LWIP_MIN(PPPOL2TP_CONTROL_TIMEOUT * l2tp->sccrq_retried, PPPOL2TP_SLOW_RETRY); 00723 PPPDEBUG(LOG_DEBUG, ("pppol2tp: sccrq_retried=%d\n", l2tp->sccrq_retried)); 00724 if ((err = pppol2tp_send_sccrq(l2tp)) != 0) { 00725 l2tp->sccrq_retried--; 00726 PPPDEBUG(LOG_DEBUG, ("pppol2tp: failed to send SCCRQ, error=%d\n", err)); 00727 } 00728 sys_timeout(retry_wait, pppol2tp_timeout, l2tp); 00729 break; 00730 00731 case PPPOL2TP_STATE_ICRQ_SENT: 00732 l2tp->icrq_retried++; 00733 if (l2tp->icrq_retried >= PPPOL2TP_MAXICRQ) { 00734 pppol2tp_abort_connect(l2tp); 00735 return; 00736 } 00737 PPPDEBUG(LOG_DEBUG, ("pppol2tp: icrq_retried=%d\n", l2tp->icrq_retried)); 00738 if (l2tp->peer_nr <= l2tp->our_ns -1) { /* the SCCCN was not acknowledged */ 00739 if ((err = pppol2tp_send_scccn(l2tp, l2tp->our_ns -1)) != 0) { 00740 l2tp->icrq_retried--; 00741 PPPDEBUG(LOG_DEBUG, ("pppol2tp: failed to send SCCCN, error=%d\n", err)); 00742 sys_timeout(PPPOL2TP_CONTROL_TIMEOUT, pppol2tp_timeout, l2tp); 00743 break; 00744 } 00745 } 00746 if ((err = pppol2tp_send_icrq(l2tp, l2tp->our_ns)) != 0) { 00747 l2tp->icrq_retried--; 00748 PPPDEBUG(LOG_DEBUG, ("pppol2tp: failed to send ICRQ, error=%d\n", err)); 00749 } 00750 sys_timeout(PPPOL2TP_CONTROL_TIMEOUT, pppol2tp_timeout, l2tp); 00751 break; 00752 00753 case PPPOL2TP_STATE_ICCN_SENT: 00754 l2tp->iccn_retried++; 00755 if (l2tp->iccn_retried >= PPPOL2TP_MAXICCN) { 00756 pppol2tp_abort_connect(l2tp); 00757 return; 00758 } 00759 PPPDEBUG(LOG_DEBUG, ("pppol2tp: iccn_retried=%d\n", l2tp->iccn_retried)); 00760 if ((err = pppol2tp_send_iccn(l2tp, l2tp->our_ns)) != 0) { 00761 l2tp->iccn_retried--; 00762 PPPDEBUG(LOG_DEBUG, ("pppol2tp: failed to send ICCN, error=%d\n", err)); 00763 } 00764 sys_timeout(PPPOL2TP_CONTROL_TIMEOUT, pppol2tp_timeout, l2tp); 00765 break; 00766 00767 default: 00768 return; /* all done, work in peace */ 00769 } 00770 } 00771 00772 /* Connection attempt aborted */ 00773 static void pppol2tp_abort_connect(pppol2tp_pcb *l2tp) { 00774 PPPDEBUG(LOG_DEBUG, ("pppol2tp: could not establish connection\n")); 00775 pppol2tp_clear(l2tp); 00776 ppp_link_failed(l2tp->ppp); /* notify upper layers */ 00777 } 00778 00779 /* Reset L2TP control block to its initial state */ 00780 static void pppol2tp_clear(pppol2tp_pcb *l2tp) { 00781 /* stop any timer */ 00782 sys_untimeout(pppol2tp_timeout, l2tp); 00783 l2tp->phase = PPPOL2TP_STATE_INITIAL; 00784 l2tp->tunnel_port = l2tp->remote_port; 00785 l2tp->our_ns = 0; 00786 l2tp->peer_nr = 0; 00787 l2tp->peer_ns = 0; 00788 l2tp->source_tunnel_id = 0; 00789 l2tp->remote_tunnel_id = 0; 00790 l2tp->source_session_id = 0; 00791 l2tp->remote_session_id = 0; 00792 /* l2tp->*_retried are cleared when used */ 00793 } 00794 00795 /* Initiate a new tunnel */ 00796 static err_t pppol2tp_send_sccrq(pppol2tp_pcb *l2tp) { 00797 struct pbuf *pb; 00798 u8_t *p; 00799 u16_t len; 00800 00801 /* calculate UDP packet length */ 00802 len = 12 +8 +8 +10 +10 +6+sizeof(PPPOL2TP_HOSTNAME)-1 +6+sizeof(PPPOL2TP_VENDORNAME)-1 +8 +8; 00803 #if PPPOL2TP_AUTH_SUPPORT 00804 if (l2tp->secret != NULL) { 00805 len += 6 + sizeof(l2tp->secret_rv); 00806 } 00807 #endif /* PPPOL2TP_AUTH_SUPPORT */ 00808 00809 /* allocate a buffer */ 00810 pb = pbuf_alloc(PBUF_TRANSPORT, len, PBUF_RAM); 00811 if (pb == NULL) { 00812 return ERR_MEM; 00813 } 00814 LWIP_ASSERT("pb->tot_len == pb->len", pb->tot_len == pb->len); 00815 00816 p = (u8_t*)pb->payload; 00817 /* fill in pkt */ 00818 /* L2TP control header */ 00819 PUTSHORT(PPPOL2TP_HEADERFLAG_CONTROL_MANDATORY, p); 00820 PUTSHORT(len, p); /* Length */ 00821 PUTSHORT(0, p); /* Tunnel Id */ 00822 PUTSHORT(0, p); /* Session Id */ 00823 PUTSHORT(0, p); /* NS Sequence number - to peer */ 00824 PUTSHORT(0, p); /* NR Sequence number - expected for peer */ 00825 00826 /* AVP - Message type */ 00827 PUTSHORT(PPPOL2TP_AVPHEADERFLAG_MANDATORY + 8, p); /* Mandatory flag + len field */ 00828 PUTSHORT(0, p); /* Vendor ID */ 00829 PUTSHORT(PPPOL2TP_AVPTYPE_MESSAGE, p); /* Attribute type: Message Type */ 00830 PUTSHORT(PPPOL2TP_MESSAGETYPE_SCCRQ, p); /* Attribute value: Message type: SCCRQ */ 00831 00832 /* AVP - L2TP Version */ 00833 PUTSHORT(PPPOL2TP_AVPHEADERFLAG_MANDATORY + 8, p); /* Mandatory flag + len field */ 00834 PUTSHORT(0, p); /* Vendor ID */ 00835 PUTSHORT(PPPOL2TP_AVPTYPE_VERSION, p); /* Attribute type: Version */ 00836 PUTSHORT(PPPOL2TP_VERSION, p); /* Attribute value: L2TP Version */ 00837 00838 /* AVP - Framing capabilities */ 00839 PUTSHORT(PPPOL2TP_AVPHEADERFLAG_MANDATORY + 10, p); /* Mandatory flag + len field */ 00840 PUTSHORT(0, p); /* Vendor ID */ 00841 PUTSHORT(PPPOL2TP_AVPTYPE_FRAMINGCAPABILITIES, p); /* Attribute type: Framing capabilities */ 00842 PUTLONG(PPPOL2TP_FRAMINGCAPABILITIES, p); /* Attribute value: Framing capabilities */ 00843 00844 /* AVP - Bearer capabilities */ 00845 PUTSHORT(PPPOL2TP_AVPHEADERFLAG_MANDATORY + 10, p); /* Mandatory flag + len field */ 00846 PUTSHORT(0, p); /* Vendor ID */ 00847 PUTSHORT(PPPOL2TP_AVPTYPE_BEARERCAPABILITIES, p); /* Attribute type: Bearer capabilities */ 00848 PUTLONG(PPPOL2TP_BEARERCAPABILITIES, p); /* Attribute value: Bearer capabilities */ 00849 00850 /* AVP - Host name */ 00851 PUTSHORT(PPPOL2TP_AVPHEADERFLAG_MANDATORY + 6+sizeof(PPPOL2TP_HOSTNAME)-1, p); /* Mandatory flag + len field */ 00852 PUTSHORT(0, p); /* Vendor ID */ 00853 PUTSHORT(PPPOL2TP_AVPTYPE_HOSTNAME, p); /* Attribute type: Hostname */ 00854 MEMCPY(p, PPPOL2TP_HOSTNAME, sizeof(PPPOL2TP_HOSTNAME)-1); /* Attribute value: Hostname */ 00855 INCPTR(sizeof(PPPOL2TP_HOSTNAME)-1, p); 00856 00857 /* AVP - Vendor name */ 00858 PUTSHORT(6+sizeof(PPPOL2TP_VENDORNAME)-1, p); /* len field */ 00859 PUTSHORT(0, p); /* Vendor ID */ 00860 PUTSHORT(PPPOL2TP_AVPTYPE_VENDORNAME, p); /* Attribute type: Vendor name */ 00861 MEMCPY(p, PPPOL2TP_VENDORNAME, sizeof(PPPOL2TP_VENDORNAME)-1); /* Attribute value: Vendor name */ 00862 INCPTR(sizeof(PPPOL2TP_VENDORNAME)-1, p); 00863 00864 /* AVP - Assign tunnel ID */ 00865 PUTSHORT(PPPOL2TP_AVPHEADERFLAG_MANDATORY + 8, p); /* Mandatory flag + len field */ 00866 PUTSHORT(0, p); /* Vendor ID */ 00867 PUTSHORT(PPPOL2TP_AVPTYPE_TUNNELID, p); /* Attribute type: Tunnel ID */ 00868 PUTSHORT(l2tp->remote_tunnel_id, p); /* Attribute value: Tunnel ID */ 00869 00870 /* AVP - Receive window size */ 00871 PUTSHORT(PPPOL2TP_AVPHEADERFLAG_MANDATORY + 8, p); /* Mandatory flag + len field */ 00872 PUTSHORT(0, p); /* Vendor ID */ 00873 PUTSHORT(PPPOL2TP_AVPTYPE_RECEIVEWINDOWSIZE, p); /* Attribute type: Receive window size */ 00874 PUTSHORT(PPPOL2TP_RECEIVEWINDOWSIZE, p); /* Attribute value: Receive window size */ 00875 00876 #if PPPOL2TP_AUTH_SUPPORT 00877 /* AVP - Challenge */ 00878 if (l2tp->secret != NULL) { 00879 PUTSHORT(PPPOL2TP_AVPHEADERFLAG_MANDATORY + 6 + sizeof(l2tp->secret_rv), p); /* Mandatory flag + len field */ 00880 PUTSHORT(0, p); /* Vendor ID */ 00881 PUTSHORT(PPPOL2TP_AVPTYPE_CHALLENGE, p); /* Attribute type: Challenge */ 00882 MEMCPY(p, l2tp->secret_rv, sizeof(l2tp->secret_rv)); /* Attribute value: Random vector */ 00883 INCPTR(sizeof(l2tp->secret_rv), p); 00884 } 00885 #endif /* PPPOL2TP_AUTH_SUPPORT */ 00886 00887 return pppol2tp_udp_send(l2tp, pb); 00888 } 00889 00890 /* Complete tunnel establishment */ 00891 static err_t pppol2tp_send_scccn(pppol2tp_pcb *l2tp, u16_t ns) { 00892 struct pbuf *pb; 00893 u8_t *p; 00894 u16_t len; 00895 00896 /* calculate UDP packet length */ 00897 len = 12 +8; 00898 #if PPPOL2TP_AUTH_SUPPORT 00899 if (l2tp->send_challenge) { 00900 len += 6 + sizeof(l2tp->challenge_hash); 00901 } 00902 #endif /* PPPOL2TP_AUTH_SUPPORT */ 00903 00904 /* allocate a buffer */ 00905 pb = pbuf_alloc(PBUF_TRANSPORT, len, PBUF_RAM); 00906 if (pb == NULL) { 00907 return ERR_MEM; 00908 } 00909 LWIP_ASSERT("pb->tot_len == pb->len", pb->tot_len == pb->len); 00910 00911 p = (u8_t*)pb->payload; 00912 /* fill in pkt */ 00913 /* L2TP control header */ 00914 PUTSHORT(PPPOL2TP_HEADERFLAG_CONTROL_MANDATORY, p); 00915 PUTSHORT(len, p); /* Length */ 00916 PUTSHORT(l2tp->source_tunnel_id, p); /* Tunnel Id */ 00917 PUTSHORT(0, p); /* Session Id */ 00918 PUTSHORT(ns, p); /* NS Sequence number - to peer */ 00919 PUTSHORT(l2tp->peer_ns+1, p); /* NR Sequence number - expected for peer */ 00920 00921 /* AVP - Message type */ 00922 PUTSHORT(PPPOL2TP_AVPHEADERFLAG_MANDATORY + 8, p); /* Mandatory flag + len field */ 00923 PUTSHORT(0, p); /* Vendor ID */ 00924 PUTSHORT(PPPOL2TP_AVPTYPE_MESSAGE, p); /* Attribute type: Message Type */ 00925 PUTSHORT(PPPOL2TP_MESSAGETYPE_SCCCN, p); /* Attribute value: Message type: SCCCN */ 00926 00927 #if PPPOL2TP_AUTH_SUPPORT 00928 /* AVP - Challenge response */ 00929 if (l2tp->send_challenge) { 00930 PUTSHORT(PPPOL2TP_AVPHEADERFLAG_MANDATORY + 6 + sizeof(l2tp->challenge_hash), p); /* Mandatory flag + len field */ 00931 PUTSHORT(0, p); /* Vendor ID */ 00932 PUTSHORT(PPPOL2TP_AVPTYPE_CHALLENGERESPONSE, p); /* Attribute type: Challenge response */ 00933 MEMCPY(p, l2tp->challenge_hash, sizeof(l2tp->challenge_hash)); /* Attribute value: Computed challenge */ 00934 INCPTR(sizeof(l2tp->challenge_hash), p); 00935 } 00936 #endif /* PPPOL2TP_AUTH_SUPPORT */ 00937 00938 return pppol2tp_udp_send(l2tp, pb); 00939 } 00940 00941 /* Initiate a new session */ 00942 static err_t pppol2tp_send_icrq(pppol2tp_pcb *l2tp, u16_t ns) { 00943 struct pbuf *pb; 00944 u8_t *p; 00945 u16_t len; 00946 u32_t serialnumber; 00947 00948 /* calculate UDP packet length */ 00949 len = 12 +8 +8 +10; 00950 00951 /* allocate a buffer */ 00952 pb = pbuf_alloc(PBUF_TRANSPORT, len, PBUF_RAM); 00953 if (pb == NULL) { 00954 return ERR_MEM; 00955 } 00956 LWIP_ASSERT("pb->tot_len == pb->len", pb->tot_len == pb->len); 00957 00958 p = (u8_t*)pb->payload; 00959 /* fill in pkt */ 00960 /* L2TP control header */ 00961 PUTSHORT(PPPOL2TP_HEADERFLAG_CONTROL_MANDATORY, p); 00962 PUTSHORT(len, p); /* Length */ 00963 PUTSHORT(l2tp->source_tunnel_id, p); /* Tunnel Id */ 00964 PUTSHORT(0, p); /* Session Id */ 00965 PUTSHORT(ns, p); /* NS Sequence number - to peer */ 00966 PUTSHORT(l2tp->peer_ns+1, p); /* NR Sequence number - expected for peer */ 00967 00968 /* AVP - Message type */ 00969 PUTSHORT(PPPOL2TP_AVPHEADERFLAG_MANDATORY + 8, p); /* Mandatory flag + len field */ 00970 PUTSHORT(0, p); /* Vendor ID */ 00971 PUTSHORT(PPPOL2TP_AVPTYPE_MESSAGE, p); /* Attribute type: Message Type */ 00972 PUTSHORT(PPPOL2TP_MESSAGETYPE_ICRQ, p); /* Attribute value: Message type: ICRQ */ 00973 00974 /* AVP - Assign session ID */ 00975 PUTSHORT(PPPOL2TP_AVPHEADERFLAG_MANDATORY + 8, p); /* Mandatory flag + len field */ 00976 PUTSHORT(0, p); /* Vendor ID */ 00977 PUTSHORT(PPPOL2TP_AVPTYPE_SESSIONID, p); /* Attribute type: Session ID */ 00978 PUTSHORT(l2tp->remote_session_id, p); /* Attribute value: Session ID */ 00979 00980 /* AVP - Call Serial Number */ 00981 PUTSHORT(PPPOL2TP_AVPHEADERFLAG_MANDATORY + 10, p); /* Mandatory flag + len field */ 00982 PUTSHORT(0, p); /* Vendor ID */ 00983 PUTSHORT(PPPOL2TP_AVPTYPE_CALLSERIALNUMBER, p); /* Attribute type: Serial number */ 00984 serialnumber = magic(); 00985 PUTLONG(serialnumber, p); /* Attribute value: Serial number */ 00986 00987 return pppol2tp_udp_send(l2tp, pb); 00988 } 00989 00990 /* Complete tunnel establishment */ 00991 static err_t pppol2tp_send_iccn(pppol2tp_pcb *l2tp, u16_t ns) { 00992 struct pbuf *pb; 00993 u8_t *p; 00994 u16_t len; 00995 00996 /* calculate UDP packet length */ 00997 len = 12 +8 +10 +10; 00998 00999 /* allocate a buffer */ 01000 pb = pbuf_alloc(PBUF_TRANSPORT, len, PBUF_RAM); 01001 if (pb == NULL) { 01002 return ERR_MEM; 01003 } 01004 LWIP_ASSERT("pb->tot_len == pb->len", pb->tot_len == pb->len); 01005 01006 p = (u8_t*)pb->payload; 01007 /* fill in pkt */ 01008 /* L2TP control header */ 01009 PUTSHORT(PPPOL2TP_HEADERFLAG_CONTROL_MANDATORY, p); 01010 PUTSHORT(len, p); /* Length */ 01011 PUTSHORT(l2tp->source_tunnel_id, p); /* Tunnel Id */ 01012 PUTSHORT(l2tp->source_session_id, p); /* Session Id */ 01013 PUTSHORT(ns, p); /* NS Sequence number - to peer */ 01014 PUTSHORT(l2tp->peer_ns+1, p); /* NR Sequence number - expected for peer */ 01015 01016 /* AVP - Message type */ 01017 PUTSHORT(PPPOL2TP_AVPHEADERFLAG_MANDATORY + 8, p); /* Mandatory flag + len field */ 01018 PUTSHORT(0, p); /* Vendor ID */ 01019 PUTSHORT(PPPOL2TP_AVPTYPE_MESSAGE, p); /* Attribute type: Message Type */ 01020 PUTSHORT(PPPOL2TP_MESSAGETYPE_ICCN, p); /* Attribute value: Message type: ICCN */ 01021 01022 /* AVP - Framing type */ 01023 PUTSHORT(PPPOL2TP_AVPHEADERFLAG_MANDATORY + 10, p); /* Mandatory flag + len field */ 01024 PUTSHORT(0, p); /* Vendor ID */ 01025 PUTSHORT(PPPOL2TP_AVPTYPE_FRAMINGTYPE, p); /* Attribute type: Framing type */ 01026 PUTLONG(PPPOL2TP_FRAMINGTYPE, p); /* Attribute value: Framing type */ 01027 01028 /* AVP - TX Connect speed */ 01029 PUTSHORT(PPPOL2TP_AVPHEADERFLAG_MANDATORY + 10, p); /* Mandatory flag + len field */ 01030 PUTSHORT(0, p); /* Vendor ID */ 01031 PUTSHORT(PPPOL2TP_AVPTYPE_TXCONNECTSPEED, p); /* Attribute type: TX Connect speed */ 01032 PUTLONG(PPPOL2TP_TXCONNECTSPEED, p); /* Attribute value: TX Connect speed */ 01033 01034 return pppol2tp_udp_send(l2tp, pb); 01035 } 01036 01037 /* Send a ZLB ACK packet */ 01038 static err_t pppol2tp_send_zlb(pppol2tp_pcb *l2tp, u16_t ns) { 01039 struct pbuf *pb; 01040 u8_t *p; 01041 u16_t len; 01042 01043 /* calculate UDP packet length */ 01044 len = 12; 01045 01046 /* allocate a buffer */ 01047 pb = pbuf_alloc(PBUF_TRANSPORT, len, PBUF_RAM); 01048 if (pb == NULL) { 01049 return ERR_MEM; 01050 } 01051 LWIP_ASSERT("pb->tot_len == pb->len", pb->tot_len == pb->len); 01052 01053 p = (u8_t*)pb->payload; 01054 /* fill in pkt */ 01055 /* L2TP control header */ 01056 PUTSHORT(PPPOL2TP_HEADERFLAG_CONTROL_MANDATORY, p); 01057 PUTSHORT(len, p); /* Length */ 01058 PUTSHORT(l2tp->source_tunnel_id, p); /* Tunnel Id */ 01059 PUTSHORT(0, p); /* Session Id */ 01060 PUTSHORT(ns, p); /* NS Sequence number - to peer */ 01061 PUTSHORT(l2tp->peer_ns+1, p); /* NR Sequence number - expected for peer */ 01062 01063 return pppol2tp_udp_send(l2tp, pb); 01064 } 01065 01066 /* Send a StopCCN packet */ 01067 static err_t pppol2tp_send_stopccn(pppol2tp_pcb *l2tp, u16_t ns) { 01068 struct pbuf *pb; 01069 u8_t *p; 01070 u16_t len; 01071 01072 /* calculate UDP packet length */ 01073 len = 12 +8 +8 +8; 01074 01075 /* allocate a buffer */ 01076 pb = pbuf_alloc(PBUF_TRANSPORT, len, PBUF_RAM); 01077 if (pb == NULL) { 01078 return ERR_MEM; 01079 } 01080 LWIP_ASSERT("pb->tot_len == pb->len", pb->tot_len == pb->len); 01081 01082 p = (u8_t*)pb->payload; 01083 /* fill in pkt */ 01084 /* L2TP control header */ 01085 PUTSHORT(PPPOL2TP_HEADERFLAG_CONTROL_MANDATORY, p); 01086 PUTSHORT(len, p); /* Length */ 01087 PUTSHORT(l2tp->source_tunnel_id, p); /* Tunnel Id */ 01088 PUTSHORT(0, p); /* Session Id */ 01089 PUTSHORT(ns, p); /* NS Sequence number - to peer */ 01090 PUTSHORT(l2tp->peer_ns+1, p); /* NR Sequence number - expected for peer */ 01091 01092 /* AVP - Message type */ 01093 PUTSHORT(PPPOL2TP_AVPHEADERFLAG_MANDATORY + 8, p); /* Mandatory flag + len field */ 01094 PUTSHORT(0, p); /* Vendor ID */ 01095 PUTSHORT(PPPOL2TP_AVPTYPE_MESSAGE, p); /* Attribute type: Message Type */ 01096 PUTSHORT(PPPOL2TP_MESSAGETYPE_STOPCCN, p); /* Attribute value: Message type: StopCCN */ 01097 01098 /* AVP - Assign tunnel ID */ 01099 PUTSHORT(PPPOL2TP_AVPHEADERFLAG_MANDATORY + 8, p); /* Mandatory flag + len field */ 01100 PUTSHORT(0, p); /* Vendor ID */ 01101 PUTSHORT(PPPOL2TP_AVPTYPE_TUNNELID, p); /* Attribute type: Tunnel ID */ 01102 PUTSHORT(l2tp->remote_tunnel_id, p); /* Attribute value: Tunnel ID */ 01103 01104 /* AVP - Result code */ 01105 PUTSHORT(PPPOL2TP_AVPHEADERFLAG_MANDATORY + 8, p); /* Mandatory flag + len field */ 01106 PUTSHORT(0, p); /* Vendor ID */ 01107 PUTSHORT(PPPOL2TP_AVPTYPE_RESULTCODE, p); /* Attribute type: Result code */ 01108 PUTSHORT(PPPOL2TP_RESULTCODE, p); /* Attribute value: Result code */ 01109 01110 return pppol2tp_udp_send(l2tp, pb); 01111 } 01112 01113 static err_t pppol2tp_xmit(pppol2tp_pcb *l2tp, struct pbuf *pb) { 01114 u8_t *p; 01115 01116 /* are we ready to process data yet? */ 01117 if (l2tp->phase < PPPOL2TP_STATE_DATA) { 01118 pbuf_free(pb); 01119 return ERR_CONN; 01120 } 01121 01122 /* make room for L2TP header - should not fail */ 01123 if (pbuf_header(pb, (s16_t)PPPOL2TP_OUTPUT_DATA_HEADER_LEN) != 0) { 01124 /* bail out */ 01125 PPPDEBUG(LOG_ERR, ("pppol2tp: pppol2tp_pcb: could not allocate room for L2TP header\n")); 01126 LINK_STATS_INC(link.lenerr); 01127 pbuf_free(pb); 01128 return ERR_BUF; 01129 } 01130 01131 p = (u8_t*)pb->payload; 01132 PUTSHORT(PPPOL2TP_HEADERFLAG_DATA_MANDATORY, p); 01133 PUTSHORT(l2tp->source_tunnel_id, p); /* Tunnel Id */ 01134 PUTSHORT(l2tp->source_session_id, p); /* Session Id */ 01135 01136 return pppol2tp_udp_send(l2tp, pb); 01137 } 01138 01139 static err_t pppol2tp_udp_send(pppol2tp_pcb *l2tp, struct pbuf *pb) { 01140 err_t err; 01141 if (l2tp->netif) { 01142 err = udp_sendto_if(l2tp->udp, pb, &l2tp->remote_ip, l2tp->tunnel_port, l2tp->netif); 01143 } else { 01144 err = udp_sendto(l2tp->udp, pb, &l2tp->remote_ip, l2tp->tunnel_port); 01145 } 01146 pbuf_free(pb); 01147 return err; 01148 } 01149 01150 #endif /* PPP_SUPPORT && PPPOL2TP_SUPPORT */
Generated on Tue Jul 12 2022 13:15:54 by
1.7.2