1af57ed9fSAtsushi Murai /* 2af57ed9fSAtsushi Murai * PPP PAP Module 3af57ed9fSAtsushi Murai * 4af57ed9fSAtsushi Murai * Written by Toshiharu OHNO (tony-o@iij.ad.jp) 5af57ed9fSAtsushi Murai * 6af57ed9fSAtsushi Murai * Copyright (C) 1993-94, Internet Initiative Japan, Inc. 7af57ed9fSAtsushi Murai * All rights reserverd. 8af57ed9fSAtsushi Murai * 9af57ed9fSAtsushi Murai * Redistribution and use in source and binary forms are permitted 10af57ed9fSAtsushi Murai * provided that the above copyright notice and this paragraph are 11af57ed9fSAtsushi Murai * duplicated in all such forms and that any documentation, 12af57ed9fSAtsushi Murai * advertising materials, and other materials related to such 13af57ed9fSAtsushi Murai * distribution and use acknowledge that the software was developed 14af57ed9fSAtsushi Murai * by the Internet Initiative Japan, Inc. The name of the 15af57ed9fSAtsushi Murai * IIJ may not be used to endorse or promote products derived 16af57ed9fSAtsushi Murai * from this software without specific prior written permission. 17af57ed9fSAtsushi Murai * THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR 18af57ed9fSAtsushi Murai * IMPLIED WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED 19af57ed9fSAtsushi Murai * WARRANTIES OF MERCHANTIBILITY AND FITNESS FOR A PARTICULAR PURPOSE. 20af57ed9fSAtsushi Murai * 2197d92980SPeter Wemm * $FreeBSD$ 22af57ed9fSAtsushi Murai * 23af57ed9fSAtsushi Murai * TODO: 24af57ed9fSAtsushi Murai */ 25972a1bcfSBrian Somers #include <sys/param.h> 2675240ed1SBrian Somers #include <netinet/in.h> 27eaa4df37SBrian Somers #include <netinet/in_systm.h> 28eaa4df37SBrian Somers #include <netinet/ip.h> 291fa665f5SBrian Somers #include <sys/un.h> 3075240ed1SBrian Somers 31f0cdd9c0SBrian Somers #include <stdlib.h> 32eb6e5e05SBrian Somers #include <string.h> /* strlen/memcpy */ 336140ba11SBrian Somers #include <termios.h> 3475240ed1SBrian Somers 355d9e6103SBrian Somers #include "layer.h" 3675240ed1SBrian Somers #include "mbuf.h" 3775240ed1SBrian Somers #include "log.h" 3875240ed1SBrian Somers #include "defs.h" 3975240ed1SBrian Somers #include "timer.h" 40af57ed9fSAtsushi Murai #include "fsm.h" 41af57ed9fSAtsushi Murai #include "lcp.h" 42e2ebb036SBrian Somers #include "auth.h" 43af57ed9fSAtsushi Murai #include "pap.h" 44879ed6faSBrian Somers #include "lqr.h" 45af57ed9fSAtsushi Murai #include "hdlc.h" 465d9e6103SBrian Somers #include "proto.h" 476140ba11SBrian Somers #include "async.h" 486140ba11SBrian Somers #include "throughput.h" 493b0f8d2eSBrian Somers #include "ccp.h" 506140ba11SBrian Somers #include "link.h" 5142d4d396SBrian Somers #include "descriptor.h" 5263b73463SBrian Somers #include "physical.h" 535828db6dSBrian Somers #include "iplist.h" 54eaa4df37SBrian Somers #include "slcompress.h" 555828db6dSBrian Somers #include "ipcp.h" 565ca5389aSBrian Somers #include "filter.h" 573b0f8d2eSBrian Somers #include "mp.h" 58972a1bcfSBrian Somers #ifndef NORADIUS 59972a1bcfSBrian Somers #include "radius.h" 60972a1bcfSBrian Somers #endif 61455aabc3SBrian Somers #include "bundle.h" 62e2ebb036SBrian Somers #include "chat.h" 63e2ebb036SBrian Somers #include "chap.h" 6492b09558SBrian Somers #include "cbcp.h" 65e2ebb036SBrian Somers #include "datalink.h" 66af57ed9fSAtsushi Murai 6793280d73SBrian Somers static const char *papcodes[] = { "???", "REQUEST", "SUCCESS", "FAILURE" }; 68f0cdd9c0SBrian Somers #define MAXPAPCODE (sizeof papcodes / sizeof papcodes[0] - 1) 69af57ed9fSAtsushi Murai 70f0cdd9c0SBrian Somers static void 71f0cdd9c0SBrian Somers pap_Req(struct authinfo *authp) 72af57ed9fSAtsushi Murai { 73f0cdd9c0SBrian Somers struct bundle *bundle = authp->physical->dl->bundle; 74af57ed9fSAtsushi Murai struct fsmheader lh; 75af57ed9fSAtsushi Murai struct mbuf *bp; 76af57ed9fSAtsushi Murai u_char *cp; 77af57ed9fSAtsushi Murai int namelen, keylen, plen; 78af57ed9fSAtsushi Murai 79f0cdd9c0SBrian Somers namelen = strlen(bundle->cfg.auth.name); 80f0cdd9c0SBrian Somers keylen = strlen(bundle->cfg.auth.key); 81af57ed9fSAtsushi Murai plen = namelen + keylen + 2; 82f0cdd9c0SBrian Somers log_Printf(LogDEBUG, "pap_Req: namelen = %d, keylen = %d\n", namelen, keylen); 83f0cdd9c0SBrian Somers log_Printf(LogPHASE, "Pap Output: %s ********\n", bundle->cfg.auth.name); 84f0cdd9c0SBrian Somers if (*bundle->cfg.auth.name == '\0') 8593280d73SBrian Somers log_Printf(LogWARN, "Sending empty PAP authname!\n"); 86af57ed9fSAtsushi Murai lh.code = PAP_REQUEST; 87f0cdd9c0SBrian Somers lh.id = authp->id; 88af57ed9fSAtsushi Murai lh.length = htons(plen + sizeof(struct fsmheader)); 8926af0ae9SBrian Somers bp = m_get(plen + sizeof(struct fsmheader), MB_PAPOUT); 9075240ed1SBrian Somers memcpy(MBUF_CTOP(bp), &lh, sizeof(struct fsmheader)); 91af57ed9fSAtsushi Murai cp = MBUF_CTOP(bp) + sizeof(struct fsmheader); 92af57ed9fSAtsushi Murai *cp++ = namelen; 93f0cdd9c0SBrian Somers memcpy(cp, bundle->cfg.auth.name, namelen); 94af57ed9fSAtsushi Murai cp += namelen; 95af57ed9fSAtsushi Murai *cp++ = keylen; 96f0cdd9c0SBrian Somers memcpy(cp, bundle->cfg.auth.key, keylen); 97442f8495SBrian Somers link_PushPacket(&authp->physical->link, bp, bundle, 98442f8495SBrian Somers LINK_QUEUES(&authp->physical->link) - 1, PROTO_PAP); 99af57ed9fSAtsushi Murai } 100af57ed9fSAtsushi Murai 101af57ed9fSAtsushi Murai static void 102f0cdd9c0SBrian Somers SendPapCode(struct authinfo *authp, int code, const char *message) 103af57ed9fSAtsushi Murai { 104af57ed9fSAtsushi Murai struct fsmheader lh; 105af57ed9fSAtsushi Murai struct mbuf *bp; 106af57ed9fSAtsushi Murai u_char *cp; 107af57ed9fSAtsushi Murai int plen, mlen; 108af57ed9fSAtsushi Murai 109af57ed9fSAtsushi Murai lh.code = code; 110f0cdd9c0SBrian Somers lh.id = authp->id; 111af57ed9fSAtsushi Murai mlen = strlen(message); 112af57ed9fSAtsushi Murai plen = mlen + 1; 113af57ed9fSAtsushi Murai lh.length = htons(plen + sizeof(struct fsmheader)); 11426af0ae9SBrian Somers bp = m_get(plen + sizeof(struct fsmheader), MB_PAPOUT); 11575240ed1SBrian Somers memcpy(MBUF_CTOP(bp), &lh, sizeof(struct fsmheader)); 116af57ed9fSAtsushi Murai cp = MBUF_CTOP(bp) + sizeof(struct fsmheader); 117b5c3c9aeSBrian Somers /* 118b5c3c9aeSBrian Somers * If our message is longer than 255 bytes, truncate the length to 119b5c3c9aeSBrian Somers * 255 and send the entire message anyway. Maybe the other end will 120b5c3c9aeSBrian Somers * display it... (see pap_Input() !) 121b5c3c9aeSBrian Somers */ 122b5c3c9aeSBrian Somers *cp++ = mlen > 255 ? 255 : mlen; 12375240ed1SBrian Somers memcpy(cp, message, mlen); 124dd7e2610SBrian Somers log_Printf(LogPHASE, "Pap Output: %s\n", papcodes[code]); 125f0cdd9c0SBrian Somers 1265d9e6103SBrian Somers link_PushPacket(&authp->physical->link, bp, authp->physical->dl->bundle, 127442f8495SBrian Somers LINK_QUEUES(&authp->physical->link) - 1, PROTO_PAP); 128af57ed9fSAtsushi Murai } 129af57ed9fSAtsushi Murai 130f0cdd9c0SBrian Somers static void 131f0cdd9c0SBrian Somers pap_Success(struct authinfo *authp) 132af57ed9fSAtsushi Murai { 133f0cdd9c0SBrian Somers datalink_GotAuthname(authp->physical->dl, authp->in.name); 134f0cdd9c0SBrian Somers SendPapCode(authp, PAP_ACK, "Greetings!!"); 135f0cdd9c0SBrian Somers authp->physical->link.lcp.auth_ineed = 0; 136f0cdd9c0SBrian Somers if (Enabled(authp->physical->dl->bundle, OPT_UTMP)) 137f0cdd9c0SBrian Somers physical_Login(authp->physical, authp->in.name); 138af57ed9fSAtsushi Murai 139f0cdd9c0SBrian Somers if (authp->physical->link.lcp.auth_iwait == 0) 140455aabc3SBrian Somers /* 141455aabc3SBrian Somers * Either I didn't need to authenticate, or I've already been 142455aabc3SBrian Somers * told that I got the answer right. 143455aabc3SBrian Somers */ 144f0cdd9c0SBrian Somers datalink_AuthOk(authp->physical->dl); 145af57ed9fSAtsushi Murai } 146f0cdd9c0SBrian Somers 147f0cdd9c0SBrian Somers static void 148f0cdd9c0SBrian Somers pap_Failure(struct authinfo *authp) 149f0cdd9c0SBrian Somers { 150f0cdd9c0SBrian Somers SendPapCode(authp, PAP_NAK, "Login incorrect"); 151f0cdd9c0SBrian Somers datalink_AuthNotOk(authp->physical->dl); 152f0cdd9c0SBrian Somers } 153f0cdd9c0SBrian Somers 154f0cdd9c0SBrian Somers void 155f0cdd9c0SBrian Somers pap_Init(struct authinfo *pap, struct physical *p) 156f0cdd9c0SBrian Somers { 157f0cdd9c0SBrian Somers auth_Init(pap, p, pap_Req, pap_Success, pap_Failure); 158f0cdd9c0SBrian Somers } 159f0cdd9c0SBrian Somers 1605d9e6103SBrian Somers struct mbuf * 1615d9e6103SBrian Somers pap_Input(struct bundle *bundle, struct link *l, struct mbuf *bp) 162f0cdd9c0SBrian Somers { 1635d9e6103SBrian Somers struct physical *p = link2physical(l); 164f0cdd9c0SBrian Somers struct authinfo *authp = &p->dl->pap; 165f0cdd9c0SBrian Somers u_char nlen, klen, *key; 166b5c3c9aeSBrian Somers const char *txt; 167b5c3c9aeSBrian Somers int txtlen; 168f0cdd9c0SBrian Somers 1695d9e6103SBrian Somers if (p == NULL) { 1705d9e6103SBrian Somers log_Printf(LogERROR, "pap_Input: Not a physical link - dropped\n"); 17126af0ae9SBrian Somers m_freem(bp); 1725d9e6103SBrian Somers return NULL; 1735d9e6103SBrian Somers } 1745d9e6103SBrian Somers 1755d9e6103SBrian Somers if (bundle_Phase(bundle) != PHASE_NETWORK && 1765d9e6103SBrian Somers bundle_Phase(bundle) != PHASE_AUTHENTICATE) { 17729b873f3SBrian Somers log_Printf(LogPHASE, "Unexpected pap input - dropped !\n"); 17826af0ae9SBrian Somers m_freem(bp); 1795d9e6103SBrian Somers return NULL; 18029b873f3SBrian Somers } 18129b873f3SBrian Somers 182b7ff18adSBrian Somers if ((bp = auth_ReadHeader(authp, bp)) == NULL && 183b7ff18adSBrian Somers ntohs(authp->in.hdr.length) == 0) { 184b7ff18adSBrian Somers log_Printf(LogWARN, "Pap Input: Truncated header !\n"); 1855d9e6103SBrian Somers return NULL; 186b7ff18adSBrian Somers } 187f0cdd9c0SBrian Somers 188f0cdd9c0SBrian Somers if (authp->in.hdr.code == 0 || authp->in.hdr.code > MAXPAPCODE) { 189f0cdd9c0SBrian Somers log_Printf(LogPHASE, "Pap Input: %d: Bad PAP code !\n", authp->in.hdr.code); 19026af0ae9SBrian Somers m_freem(bp); 1915d9e6103SBrian Somers return NULL; 192f0cdd9c0SBrian Somers } 193f0cdd9c0SBrian Somers 194f0cdd9c0SBrian Somers if (authp->in.hdr.code != PAP_REQUEST && authp->id != authp->in.hdr.id && 1955d9e6103SBrian Somers Enabled(bundle, OPT_IDCHECK)) { 196f0cdd9c0SBrian Somers /* Wrong conversation dude ! */ 197f0cdd9c0SBrian Somers log_Printf(LogPHASE, "Pap Input: %s dropped (got id %d, not %d)\n", 198f0cdd9c0SBrian Somers papcodes[authp->in.hdr.code], authp->in.hdr.id, authp->id); 19926af0ae9SBrian Somers m_freem(bp); 2005d9e6103SBrian Somers return NULL; 201f0cdd9c0SBrian Somers } 20226af0ae9SBrian Somers m_settype(bp, MB_PAPIN); 203f0cdd9c0SBrian Somers authp->id = authp->in.hdr.id; /* We respond with this id */ 204f0cdd9c0SBrian Somers 205f0cdd9c0SBrian Somers if (bp) { 206f0cdd9c0SBrian Somers bp = mbuf_Read(bp, &nlen, 1); 207b5c3c9aeSBrian Somers if (authp->in.hdr.code == PAP_ACK) { 208b5c3c9aeSBrian Somers /* 209b5c3c9aeSBrian Somers * Don't restrict the length of our acknowledgement freetext to 210b5c3c9aeSBrian Somers * nlen (a one-byte length). Show the rest of the ack packet 211b5c3c9aeSBrian Somers * instead. This isn't really part of the protocol..... 212b5c3c9aeSBrian Somers */ 21326af0ae9SBrian Somers bp = m_pullup(bp); 214b5c3c9aeSBrian Somers txt = MBUF_CTOP(bp); 21526af0ae9SBrian Somers txtlen = m_length(bp); 216b5c3c9aeSBrian Somers } else { 217f0cdd9c0SBrian Somers bp = auth_ReadName(authp, bp, nlen); 218b5c3c9aeSBrian Somers txt = authp->in.name; 219b5c3c9aeSBrian Somers txtlen = strlen(authp->in.name); 220b5c3c9aeSBrian Somers } 221b5c3c9aeSBrian Somers } else { 222b5c3c9aeSBrian Somers txt = ""; 223b5c3c9aeSBrian Somers txtlen = 0; 224f0cdd9c0SBrian Somers } 225f0cdd9c0SBrian Somers 226b5c3c9aeSBrian Somers log_Printf(LogPHASE, "Pap Input: %s (%.*s)\n", 227b5c3c9aeSBrian Somers papcodes[authp->in.hdr.code], txtlen, txt); 228f0cdd9c0SBrian Somers 229f0cdd9c0SBrian Somers switch (authp->in.hdr.code) { 230f0cdd9c0SBrian Somers case PAP_REQUEST: 231f0cdd9c0SBrian Somers if (bp == NULL) { 232f0cdd9c0SBrian Somers log_Printf(LogPHASE, "Pap Input: No key given !\n"); 233af57ed9fSAtsushi Murai break; 234f0cdd9c0SBrian Somers } 235f0cdd9c0SBrian Somers bp = mbuf_Read(bp, &klen, 1); 23626af0ae9SBrian Somers if (m_length(bp) < klen) { 237f0cdd9c0SBrian Somers log_Printf(LogERROR, "Pap Input: Truncated key !\n"); 238f0cdd9c0SBrian Somers break; 239f0cdd9c0SBrian Somers } 240f0cdd9c0SBrian Somers if ((key = malloc(klen+1)) == NULL) { 241f0cdd9c0SBrian Somers log_Printf(LogERROR, "Pap Input: Out of memory !\n"); 242f0cdd9c0SBrian Somers break; 243f0cdd9c0SBrian Somers } 244f0cdd9c0SBrian Somers bp = mbuf_Read(bp, key, klen); 245f0cdd9c0SBrian Somers key[klen] = '\0'; 246f0cdd9c0SBrian Somers 247f0cdd9c0SBrian Somers #ifndef NORADIUS 2485d9e6103SBrian Somers if (*bundle->radius.cfg.file) 2495d9e6103SBrian Somers radius_Authenticate(&bundle->radius, authp, authp->in.name, 250f0cdd9c0SBrian Somers key, NULL); 251f0cdd9c0SBrian Somers else 252f0cdd9c0SBrian Somers #endif 2535d9e6103SBrian Somers if (auth_Validate(bundle, authp->in.name, key, p)) 254f0cdd9c0SBrian Somers pap_Success(authp); 255f0cdd9c0SBrian Somers else 256f0cdd9c0SBrian Somers pap_Failure(authp); 257f0cdd9c0SBrian Somers 258f0cdd9c0SBrian Somers free(key); 259f0cdd9c0SBrian Somers break; 260f0cdd9c0SBrian Somers 261af57ed9fSAtsushi Murai case PAP_ACK: 262f0cdd9c0SBrian Somers auth_StopTimer(authp); 263f0cdd9c0SBrian Somers if (p->link.lcp.auth_iwait == PROTO_PAP) { 264f0cdd9c0SBrian Somers p->link.lcp.auth_iwait = 0; 265f0cdd9c0SBrian Somers if (p->link.lcp.auth_ineed == 0) 266455aabc3SBrian Somers /* 267455aabc3SBrian Somers * We've succeeded in our ``login'' 268455aabc3SBrian Somers * If we're not expecting the peer to authenticate (or he already 269455aabc3SBrian Somers * has), proceed to network phase. 270455aabc3SBrian Somers */ 271f0cdd9c0SBrian Somers datalink_AuthOk(p->dl); 272af57ed9fSAtsushi Murai } 273af57ed9fSAtsushi Murai break; 274f0cdd9c0SBrian Somers 275af57ed9fSAtsushi Murai case PAP_NAK: 276f0cdd9c0SBrian Somers auth_StopTimer(authp); 277f0cdd9c0SBrian Somers datalink_AuthNotOk(p->dl); 278af57ed9fSAtsushi Murai break; 279af57ed9fSAtsushi Murai } 280f0cdd9c0SBrian Somers 28126af0ae9SBrian Somers m_freem(bp); 2825d9e6103SBrian Somers return NULL; 283af57ed9fSAtsushi Murai } 284