summaryrefslogtreecommitdiffstats
path: root/usr.sbin/ppp
Commit message (Collapse)AuthorAgeFilesLines
* Correct typos, mostly s/ a / an / where appropriate. Some whitespace cleanup,schweikh2003-01-011-1/+1
| | | | especially in troff files.
* utmp.ut_time and lastlog.ll_time are explicitly int32_t rather thanpeter2002-11-151-1/+1
| | | | | | | | | | | | time_t. Deal with the possibility that time_t != int32_t. This boils down to this sort of thing: - time(&ut.ut_time); + ut.ut_time = time(NULL); and similar for ctime(3) etc. I've kept it minimal for the stuff that may need to be portable (or 3rd party code), but used Matt's time32 stuff for cases where that isn't as much of a concern. Approved by: re (jhb)
* If the peer gives us 0.0.0.0 as his IP number, NAK it rather than acceptingbrian2002-09-231-1/+2
| | | | | | | | | | | it as being in range. set ifaddr 1.2.3.4/0 5.6.7.8/0 no longer allows 0.0.0.0 as a valid IP. Reported/tested by: Bohdan Horst <nexus@hoth.amu.edu.pl> MFC after: 3 days
* Unbreak -DNOINET6brian2002-09-021-0/+2
| | | | | Submitted by: Andre Albsmeier <andre.albsmeier@mchp.siemens.de> MFC after: 1 day
* Correctly handle ifr.ifr_flags/ifr.ifr_flagshigh like ifconfig(8) does.sobomax2002-08-291-3/+6
| | | | MFC after: 1 day
* - made ppp compliant to RFC 2472 (based on a patch from anotherbrian2002-08-295-49/+176
| | | | | | | | | contributor) - support ipv6cpretry and ipv6cpretries, which are IPv6 versions of ipcpretry and ipcpretries. - improve handling of IPv6 link-local addresses Submitted by: JINMEI Tatuya <jinmei@isl.rdc.toshiba.co.jp>
* Include the correct file (stdarg.h) and use va_list rather than _BSD_VA_LIST_brian2002-08-2724-6/+26
| | | | Suggested by: mike
* Use _BSD_VA_LIST_ rather than __va_list if it's definedbrian2002-08-271-2/+5
|
* Correct the FAQ urlbrian2002-08-262-4/+6
| | | | Submitted by: Olivier Tharan <olive@oban.frmug.org>
* Replace various spelling with FALLTHROUGH which is lint()ablecharnier2002-08-255-13/+15
|
* o Merge <machine/ansi.h> and <machine/types.h> into a new headermike2002-08-211-2/+2
| | | | | | | | | | | | | | | | | | | | | called <machine/_types.h>. o <machine/ansi.h> will continue to live so it can define MD clock macros, which are only MD because of gratuitous differences between architectures. o Change all headers to make use of this. This mainly involves changing: #ifdef _BSD_FOO_T_ typedef _BSD_FOO_T_ foo_t; #undef _BSD_FOO_T_ #endif to: #ifndef _FOO_T_DECLARED typedef __foo_t foo_t; #define _FOO_T_DECLARED #endif Concept by: bde Reviewed by: jake, obrien
* mdoc(7) police: Removed redundant .Ns calls.ru2002-08-131-1/+1
|
* Correct URL to the FAQblackend2002-07-311-1/+1
| | | | MFC after: 1 week
* Correct links to Handbook's pages, old URLs does not work anymore.blackend2002-07-301-2/+2
| | | | MFC after: 1 week
* Do a case insensitive comparison when comparing the ms-chap responsebrian2002-07-301-1/+1
| | | | string.
* Remove unused calls to inet_addr()brian2002-07-182-2/+0
|
* Back out the previous revisionbrian2002-07-041-12/+3
| | | | | | | | | Objected to by: Andre Oppermann <oppermann@pipeline.ch> After Andre's objection, I've re-examined rfc 2759 and noted that it says that the domain name shouldn't be used when generating the NT-Response field. So it looks like the bug is in freeradius rather than in ppp.
* If we've given a domain name prefix as the authentication name, stripbrian2002-07-031-3/+12
| | | | it off before passing it on to the RADIUS server for authentication.
* Don't trust the MPPE key lengths passed back from the RADIUS server.brian2002-07-021-2/+4
| | | | | | | Instead, use the correct values based on the number of bits actually negotiated. Spotted by: Sergey Korolew <ds@rt.balakovo.ru>
* Remove some misleading/wrong diagnosticsbrian2002-07-021-5/+1
|
* Show the port number (tty slot, pppoe session id etc) underbrian2002-06-301-5/+14
| | | | ``show physical''.
* When a netgraph message is read, look for another before returning.brian2002-06-291-63/+66
| | | | | | | | This removes a bad latency problem during initial setup where we end up waiting for too long before reading the connected message and time the connection out. Problem figured out by: Andre Albsmeier <andre@albsmeier.net>
* Don't use SignalBundle if it's not setbrian2002-06-281-3/+6
| | | | Submitted by: Federico G. Schwindt <fgsch@olimpo.com.br>
* Complain about (and fix) misformatted RADIUS attributes rather than silentlybrian2002-06-281-2/+6
| | | | fixing them.
* When a RADIUS server is being used, don't use MPPE unless the RADIUSbrian2002-06-281-6/+19
| | | | server says it's ok.
* Add a hack to handle RADIUS responses from peers that forget thatbrian2002-06-231-4/+20
| | | | | | | there's an ``Ident'' field in the MS-CHAP2-Response and MS-CHAP-Error attributes. The RADIATOR server seems to be guilty of this.
* Don't expect NUL terminated data in all netgraph messages received.brian2002-06-221-2/+8
| | | | Only display message hook values we understand.
* Compensate for dodgy Win98/WinME MSCHAPv2 responses later in the codebrian2002-06-175-29/+34
| | | | | | | | | | | | | | | | path... after we've talked to any RADIUS servers involved, so that we haven't touched the data before it gets to the server. Make it clearer in the code that this compensation is done by setting a flag to a value of zero, a flag which rfc2759 says *MUST* be zero. While we're here, don't bother passing the peer challenge into radius_Authenticate(). It's already part of the key we're passing in (this becomes obvious now that I've structured that data...). This ``fix'' doesn't help to authenticate Win98/WinME users in my test environment as ports/net/freeradius seems to ignore the flag completely anyway, but it may help with other RADIUS servers.
* A better prinflike fix...brian2002-06-151-2/+2
|
* Remove whitespace at the end of lines.brian2002-06-1531-89/+89
|
* Fix a printflike format errorbrian2002-06-151-1/+1
|
* Remove a forgotten diagnosticbrian2002-06-151-1/+0
|
* If a RAD_FILTER_ID is supplied by the RADIUS server, treat it as anbrian2002-06-122-1/+20
| | | | | | additional label from ppp.linkup & ppp.linkdown to load. Suggested and mostly submitted by: andrew pavlov <and@kremenchug.net>
* Bump the version number to reflect the recent RADIUS commitsbrian2002-06-121-1/+1
|
* Don't forget to process the Ident field on the front ofbrian2002-06-122-16/+26
| | | | | | | | | | | RAD_MICROSOFT_MS_CHAP_ERROR and RAD_MICROSOFT_MS_CHAP2_SUCCESS messages, and remove the hack in chap.c to ignore that ident field on the client side. This anomoly was hacked around during development, and I forgot to go back and fix it properly. Spotted by: Sergey Korolew <ds@rt.balakovo.ru>
* Understand the following Microsoft Vendor Specific RADIUS attributes:brian2002-06-128-55/+329
| | | | | | | | | | | | | | | | | RAD_MICROSOFT_MS_MPPE_ENCRYPTION_POLICY RAD_MICROSOFT_MS_MPPE_ENCRYPTION_TYPES RAD_MICROSOFT_MS_MPPE_RECV_KEY RAD_MICROSOFT_MS_MPPE_SEND_KEY These attributes may be supplied by a RADIUS server when MSCHAPv2 is used to authenticate. It *should* now be possible to build ppp with -DNODES and still support CHAP/MSCHAP/MSCHAPv2/MPPE via a RADIUS server, but the code isn't yet smart enough to do that (building with -DNODES just looses these facilities). Sponsored by: Monzoon
* Cast pid_t to long for printf()ingbrian2002-06-061-2/+2
| | | | Obtained from: OpenBSD
* Add a missing ``a''.brian2002-06-031-1/+1
|
* Don't send a RAD_NAS_IP_ADDRESS attribute as RAD_NAS_IDENTIFIER isbrian2002-06-021-0/+8
| | | | | | | | | | | | | | | | | sufficient. In fact, using both breaks the radiator RADIUS daemon when used with a db as it maps both attributes to the same field value and then fails the insert. I decided to remove RAD_NAS_IP_ADDRESS on the basis that rfc2138 says: An Access-Request MUST contain a User-Name attribute. It SHOULD contain either a NAS-IP-Address attribute or NAS-Identifier attribute (or both, although that is not recommended). It MUST despite the fact that this not recommended bit was removed from the updated rfc.
* Coerce pid_t to long rather than int for better portability.brian2002-05-274-17/+17
| | | | Suggested by: Theo de Raadt <deraadt@openbsd.org>
* Increase the maximum FSM option length to 50brian2002-05-222-3/+3
|
* Add some missing #includes that weren't required due to namespace polutionbrian2002-05-223-2/+3
| | | | | | in our headers. Submitted by: bde
* Mention our support of the authentication side of rfc2548brian2002-05-211-1/+1
|
* Document RAD_MICROSOFT_MS_CHAP2_SUCCESS.brian2002-05-181-0/+5
|
* Put back <string.h>brian2002-05-171-0/+1
|
* Add some OpenBSD includesbrian2002-05-161-0/+4
|
* Fix a mis-placed #else/#endifbrian2002-05-161-2/+1
|
* Handle MS-CHAPv2 authentication correctly via the RADIUS server (if it'sbrian2002-05-165-48/+114
| | | | | | | | | | configured). Handle internal failures in radius_Authenticate() correctly. Bump the ppp version number. This doesn't yet work with MPPE. More will follow. Sponsored by: Mozoon
* Fix an include for NetBSDbrian2002-05-141-0/+3
|
* Avoid a rather bizarre warning from gcc 3.1:brian2002-05-141-1/+1
| | | | /usr/src/usr.sbin/ppp/cbcp.c:566:61: warning: trigraph ??! ignored
OpenPOWER on IntegriCloud