2 * Synchronous PPP/Cisco link level subroutines.
3 * Keepalive protocol implemented in both Cisco and PPP modes.
5 * Copyright (C) 1994-1996 Cronyx Engineering Ltd.
6 * Author: Serge Vakulenko, <vak@cronyx.ru>
8 * Heavily revamped to conform to RFC 1661.
9 * Copyright (C) 1997, 2001 Joerg Wunsch.
11 * This software is distributed with NO WARRANTIES, not even the implied
12 * warranties for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
14 * Authors grant any other persons or organisations permission to use
15 * or modify this software as long as this message is kept with the software,
16 * all derivative works or modified versions.
18 * From: Version 2.4, Thu Apr 30 17:17:21 MSD 1997
20 * $FreeBSD: src/sys/net/if_spppsubr.c,v 1.59.2.13 2002/07/03 15:44:41 joerg Exp $
21 * $DragonFly: src/sys/net/sppp/if_spppsubr.c,v 1.20 2005/06/14 19:34:26 joerg Exp $
24 #include <sys/param.h>
26 #if defined(__DragonFly__)
28 #include "opt_inet6.h"
34 # include "opt_inet.h"
35 # include "opt_inet6.h"
40 #include <sys/systm.h>
41 #include <sys/kernel.h>
42 #include <sys/module.h>
43 #include <sys/sockio.h>
44 #include <sys/socket.h>
45 #include <sys/syslog.h>
46 #if defined(__DragonFly__)
47 #include <sys/random.h>
48 #include <sys/thread2.h>
50 #include <sys/malloc.h>
53 #if defined (__OpenBSD__)
60 #include <net/ifq_var.h>
61 #include <net/netisr.h>
62 #include <net/if_types.h>
63 #include <net/route.h>
64 #include <netinet/in.h>
65 #include <netinet/in_systm.h>
66 #include <netinet/ip.h>
67 #include <net/slcompress.h>
69 #if defined (__NetBSD__) || defined (__OpenBSD__)
70 #include <machine/cpu.h> /* XXX for softnet */
73 #include <machine/stdarg.h>
75 #include <netinet/in.h>
76 #include <netinet/in_systm.h>
77 #include <netinet/in_var.h>
80 #include <netinet/ip.h>
81 #include <netinet/tcp.h>
84 #if defined (__DragonFly__) || defined (__OpenBSD__)
85 # include <netinet/if_ether.h>
87 # include <net/ethertypes.h>
91 #include <netproto/ipx/ipx.h>
92 #include <netproto/ipx/ipx_if.h>
97 #include <netns/ns_if.h>
102 #define IOCTL_CMD_T u_long
103 #define MAXALIVECNT 3 /* max. alive packets */
106 * Interface flags that can be set in an ifconfig command.
108 * Setting link0 will make the link passive, i.e. it will be marked
109 * as being administrative openable, but won't be opened to begin
110 * with. Incoming calls will be answered, or subsequent calls with
111 * -link1 will cause the administrative open of the LCP layer.
113 * Setting link1 will cause the link to auto-dial only as packets
116 * Setting IFF_DEBUG will syslog the option negotiation and state
117 * transitions at level kern.debug. Note: all logs consistently look
120 * <if-name><unit>: <proto-name> <additional info...>
122 * with <if-name><unit> being something like "bppp0", and <proto-name>
123 * being one of "lcp", "ipcp", "cisco", "chap", "pap", etc.
126 #define IFF_PASSIVE IFF_LINK0 /* wait passively for connection */
127 #define IFF_AUTO IFF_LINK1 /* auto-dial on output */
128 #define IFF_CISCO IFF_LINK2 /* auto-dial on output */
130 #define PPP_ALLSTATIONS 0xff /* All-Stations broadcast address */
131 #define PPP_UI 0x03 /* Unnumbered Information */
132 #define PPP_IP 0x0021 /* Internet Protocol */
133 #define PPP_ISO 0x0023 /* ISO OSI Protocol */
134 #define PPP_XNS 0x0025 /* Xerox NS Protocol */
135 #define PPP_IPX 0x002b /* Novell IPX Protocol */
136 #define PPP_VJ_COMP 0x002d /* VJ compressed TCP/IP */
137 #define PPP_VJ_UCOMP 0x002f /* VJ uncompressed TCP/IP */
138 #define PPP_IPV6 0x0057 /* Internet Protocol Version 6 */
139 #define PPP_LCP 0xc021 /* Link Control Protocol */
140 #define PPP_PAP 0xc023 /* Password Authentication Protocol */
141 #define PPP_CHAP 0xc223 /* Challenge-Handshake Auth Protocol */
142 #define PPP_IPCP 0x8021 /* Internet Protocol Control Protocol */
143 #define PPP_IPV6CP 0x8057 /* IPv6 Control Protocol */
145 #define CONF_REQ 1 /* PPP configure request */
146 #define CONF_ACK 2 /* PPP configure acknowledge */
147 #define CONF_NAK 3 /* PPP configure negative ack */
148 #define CONF_REJ 4 /* PPP configure reject */
149 #define TERM_REQ 5 /* PPP terminate request */
150 #define TERM_ACK 6 /* PPP terminate acknowledge */
151 #define CODE_REJ 7 /* PPP code reject */
152 #define PROTO_REJ 8 /* PPP protocol reject */
153 #define ECHO_REQ 9 /* PPP echo request */
154 #define ECHO_REPLY 10 /* PPP echo reply */
155 #define DISC_REQ 11 /* PPP discard request */
157 #define LCP_OPT_MRU 1 /* maximum receive unit */
158 #define LCP_OPT_ASYNC_MAP 2 /* async control character map */
159 #define LCP_OPT_AUTH_PROTO 3 /* authentication protocol */
160 #define LCP_OPT_QUAL_PROTO 4 /* quality protocol */
161 #define LCP_OPT_MAGIC 5 /* magic number */
162 #define LCP_OPT_RESERVED 6 /* reserved */
163 #define LCP_OPT_PROTO_COMP 7 /* protocol field compression */
164 #define LCP_OPT_ADDR_COMP 8 /* address/control field compression */
166 #define IPCP_OPT_ADDRESSES 1 /* both IP addresses; deprecated */
167 #define IPCP_OPT_COMPRESSION 2 /* IP compression protocol (VJ) */
168 #define IPCP_OPT_ADDRESS 3 /* local IP address */
170 #define IPV6CP_OPT_IFID 1 /* interface identifier */
171 #define IPV6CP_OPT_COMPRESSION 2 /* IPv6 compression protocol */
173 #define IPCP_COMP_VJ 0x2d /* Code for VJ compression */
175 #define PAP_REQ 1 /* PAP name/password request */
176 #define PAP_ACK 2 /* PAP acknowledge */
177 #define PAP_NAK 3 /* PAP fail */
179 #define CHAP_CHALLENGE 1 /* CHAP challenge request */
180 #define CHAP_RESPONSE 2 /* CHAP challenge response */
181 #define CHAP_SUCCESS 3 /* CHAP response ok */
182 #define CHAP_FAILURE 4 /* CHAP response failed */
184 #define CHAP_MD5 5 /* hash algorithm - MD5 */
186 #define CISCO_MULTICAST 0x8f /* Cisco multicast address */
187 #define CISCO_UNICAST 0x0f /* Cisco unicast address */
188 #define CISCO_KEEPALIVE 0x8035 /* Cisco keepalive protocol */
189 #define CISCO_ADDR_REQ 0 /* Cisco address request */
190 #define CISCO_ADDR_REPLY 1 /* Cisco address reply */
191 #define CISCO_KEEPALIVE_REQ 2 /* Cisco keepalive request */
193 /* states are named and numbered according to RFC 1661 */
194 #define STATE_INITIAL 0
195 #define STATE_STARTING 1
196 #define STATE_CLOSED 2
197 #define STATE_STOPPED 3
198 #define STATE_CLOSING 4
199 #define STATE_STOPPING 5
200 #define STATE_REQ_SENT 6
201 #define STATE_ACK_RCVD 7
202 #define STATE_ACK_SENT 8
203 #define STATE_OPENED 9
209 } __attribute__((__packed__));
210 #define PPP_HEADER_LEN sizeof (struct ppp_header)
216 } __attribute__((__packed__));
217 #define LCP_HEADER_LEN sizeof (struct lcp_header)
219 struct cisco_packet {
226 } __attribute__((__packed__));
227 #define CISCO_PACKET_LEN sizeof (struct cisco_packet)
230 * We follow the spelling and capitalization of RFC 1661 here, to make
231 * it easier comparing with the standard. Please refer to this RFC in
232 * case you can't make sense out of these abbreviation; it will also
233 * explain the semantics related to the various events and actions.
236 u_short proto; /* PPP control protocol number */
237 u_char protoidx; /* index into state table in struct sppp */
239 #define CP_LCP 0x01 /* this is the LCP */
240 #define CP_AUTH 0x02 /* this is an authentication protocol */
241 #define CP_NCP 0x04 /* this is a NCP */
242 #define CP_QUAL 0x08 /* this is a quality reporting protocol */
243 const char *name; /* name of this control protocol */
245 void (*Up)(struct sppp *sp);
246 void (*Down)(struct sppp *sp);
247 void (*Open)(struct sppp *sp);
248 void (*Close)(struct sppp *sp);
249 void (*TO)(void *sp);
250 int (*RCR)(struct sppp *sp, struct lcp_header *h, int len);
251 void (*RCN_rej)(struct sppp *sp, struct lcp_header *h, int len);
252 void (*RCN_nak)(struct sppp *sp, struct lcp_header *h, int len);
254 void (*tlu)(struct sppp *sp);
255 void (*tld)(struct sppp *sp);
256 void (*tls)(struct sppp *sp);
257 void (*tlf)(struct sppp *sp);
258 void (*scr)(struct sppp *sp);
261 static struct sppp *spppq;
262 #if defined(__DragonFly__)
263 static struct callout keepalive_timeout;
266 #if defined(__FreeBSD__) && __FreeBSD__ >= 3 && !defined(__DragonFly__)
267 #define SPP_FMT "%s%d: "
268 #define SPP_ARGS(ifp) (ifp)->if_name, (ifp)->if_unit
270 #define SPP_FMT "%s: "
271 #define SPP_ARGS(ifp) (ifp)->if_xname
276 * The following disgusting hack gets around the problem that IP TOS
277 * can't be set yet. We want to put "interactive" traffic on a high
278 * priority queue. To decide if traffic is interactive, we check that
279 * a) it is TCP and b) one of its ports is telnet, rlogin or ftp control.
281 * XXX is this really still necessary? - joerg -
283 static u_short interactive_ports[8] = {
287 #define INTERACTIVE(p) (interactive_ports[(p) & 7] == (p))
290 /* almost every function needs these */
292 struct ifnet *ifp = &sp->pp_if; \
293 int debug = ifp->if_flags & IFF_DEBUG
295 static int sppp_output(struct ifnet *ifp, struct mbuf *m,
296 struct sockaddr *dst, struct rtentry *rt);
298 static void sppp_cisco_send(struct sppp *sp, int type, long par1, long par2);
299 static void sppp_cisco_input(struct sppp *sp, struct mbuf *m);
301 static void sppp_cp_input(const struct cp *cp, struct sppp *sp,
303 static void sppp_cp_send(struct sppp *sp, u_short proto, u_char type,
304 u_char ident, u_short len, void *data);
305 /* static void sppp_cp_timeout(void *arg); */
306 static void sppp_cp_change_state(const struct cp *cp, struct sppp *sp,
308 static void sppp_auth_send(const struct cp *cp,
309 struct sppp *sp, unsigned int type, unsigned int id,
312 static void sppp_up_event(const struct cp *cp, struct sppp *sp);
313 static void sppp_down_event(const struct cp *cp, struct sppp *sp);
314 static void sppp_open_event(const struct cp *cp, struct sppp *sp);
315 static void sppp_close_event(const struct cp *cp, struct sppp *sp);
316 static void sppp_to_event(const struct cp *cp, struct sppp *sp);
318 static void sppp_null(struct sppp *sp);
320 static void sppp_lcp_init(struct sppp *sp);
321 static void sppp_lcp_up(struct sppp *sp);
322 static void sppp_lcp_down(struct sppp *sp);
323 static void sppp_lcp_open(struct sppp *sp);
324 static void sppp_lcp_close(struct sppp *sp);
325 static void sppp_lcp_TO(void *sp);
326 static int sppp_lcp_RCR(struct sppp *sp, struct lcp_header *h, int len);
327 static void sppp_lcp_RCN_rej(struct sppp *sp, struct lcp_header *h, int len);
328 static void sppp_lcp_RCN_nak(struct sppp *sp, struct lcp_header *h, int len);
329 static void sppp_lcp_tlu(struct sppp *sp);
330 static void sppp_lcp_tld(struct sppp *sp);
331 static void sppp_lcp_tls(struct sppp *sp);
332 static void sppp_lcp_tlf(struct sppp *sp);
333 static void sppp_lcp_scr(struct sppp *sp);
334 static void sppp_lcp_check_and_close(struct sppp *sp);
335 static int sppp_ncp_check(struct sppp *sp);
337 static void sppp_ipcp_init(struct sppp *sp);
338 static void sppp_ipcp_up(struct sppp *sp);
339 static void sppp_ipcp_down(struct sppp *sp);
340 static void sppp_ipcp_open(struct sppp *sp);
341 static void sppp_ipcp_close(struct sppp *sp);
342 static void sppp_ipcp_TO(void *sp);
343 static int sppp_ipcp_RCR(struct sppp *sp, struct lcp_header *h, int len);
344 static void sppp_ipcp_RCN_rej(struct sppp *sp, struct lcp_header *h, int len);
345 static void sppp_ipcp_RCN_nak(struct sppp *sp, struct lcp_header *h, int len);
346 static void sppp_ipcp_tlu(struct sppp *sp);
347 static void sppp_ipcp_tld(struct sppp *sp);
348 static void sppp_ipcp_tls(struct sppp *sp);
349 static void sppp_ipcp_tlf(struct sppp *sp);
350 static void sppp_ipcp_scr(struct sppp *sp);
352 static void sppp_ipv6cp_init(struct sppp *sp);
353 static void sppp_ipv6cp_up(struct sppp *sp);
354 static void sppp_ipv6cp_down(struct sppp *sp);
355 static void sppp_ipv6cp_open(struct sppp *sp);
356 static void sppp_ipv6cp_close(struct sppp *sp);
357 static void sppp_ipv6cp_TO(void *sp);
358 static int sppp_ipv6cp_RCR(struct sppp *sp, struct lcp_header *h, int len);
359 static void sppp_ipv6cp_RCN_rej(struct sppp *sp, struct lcp_header *h, int len);
360 static void sppp_ipv6cp_RCN_nak(struct sppp *sp, struct lcp_header *h, int len);
361 static void sppp_ipv6cp_tlu(struct sppp *sp);
362 static void sppp_ipv6cp_tld(struct sppp *sp);
363 static void sppp_ipv6cp_tls(struct sppp *sp);
364 static void sppp_ipv6cp_tlf(struct sppp *sp);
365 static void sppp_ipv6cp_scr(struct sppp *sp);
367 static void sppp_pap_input(struct sppp *sp, struct mbuf *m);
368 static void sppp_pap_init(struct sppp *sp);
369 static void sppp_pap_open(struct sppp *sp);
370 static void sppp_pap_close(struct sppp *sp);
371 static void sppp_pap_TO(void *sp);
372 static void sppp_pap_my_TO(void *sp);
373 static void sppp_pap_tlu(struct sppp *sp);
374 static void sppp_pap_tld(struct sppp *sp);
375 static void sppp_pap_scr(struct sppp *sp);
377 static void sppp_chap_input(struct sppp *sp, struct mbuf *m);
378 static void sppp_chap_init(struct sppp *sp);
379 static void sppp_chap_open(struct sppp *sp);
380 static void sppp_chap_close(struct sppp *sp);
381 static void sppp_chap_TO(void *sp);
382 static void sppp_chap_tlu(struct sppp *sp);
383 static void sppp_chap_tld(struct sppp *sp);
384 static void sppp_chap_scr(struct sppp *sp);
386 static const char *sppp_auth_type_name(u_short proto, u_char type);
387 static const char *sppp_cp_type_name(u_char type);
388 static const char *sppp_dotted_quad(u_long addr);
389 static const char *sppp_ipcp_opt_name(u_char opt);
391 static const char *sppp_ipv6cp_opt_name(u_char opt);
393 static const char *sppp_lcp_opt_name(u_char opt);
394 static const char *sppp_phase_name(enum ppp_phase phase);
395 static const char *sppp_proto_name(u_short proto);
396 static const char *sppp_state_name(int state);
397 static int sppp_params(struct sppp *sp, u_long cmd, void *data);
398 static int sppp_strnlen(u_char *p, int max);
399 static void sppp_get_ip_addrs(struct sppp *sp, u_long *src, u_long *dst,
401 static void sppp_keepalive(void *dummy);
402 static void sppp_phase_network(struct sppp *sp);
403 static void sppp_print_bytes(const u_char *p, u_short len);
404 static void sppp_print_string(const char *p, u_short len);
405 static void sppp_set_ip_addr(struct sppp *sp, u_long src);
407 static void sppp_get_ip6_addrs(struct sppp *sp, struct in6_addr *src,
408 struct in6_addr *dst, struct in6_addr *srcmask);
409 #ifdef IPV6CP_MYIFID_DYN
410 static void sppp_set_ip6_addr(struct sppp *sp, const struct in6_addr *src);
411 static void sppp_gen_ip6_addr(struct sppp *sp, const struct in6_addr *src);
413 static void sppp_suggest_ip6_addr(struct sppp *sp, struct in6_addr *src);
416 /* our control protocol descriptors */
417 static const struct cp lcp = {
418 PPP_LCP, IDX_LCP, CP_LCP, "lcp",
419 sppp_lcp_up, sppp_lcp_down, sppp_lcp_open, sppp_lcp_close,
420 sppp_lcp_TO, sppp_lcp_RCR, sppp_lcp_RCN_rej, sppp_lcp_RCN_nak,
421 sppp_lcp_tlu, sppp_lcp_tld, sppp_lcp_tls, sppp_lcp_tlf,
425 static const struct cp ipcp = {
426 PPP_IPCP, IDX_IPCP, CP_NCP, "ipcp",
427 sppp_ipcp_up, sppp_ipcp_down, sppp_ipcp_open, sppp_ipcp_close,
428 sppp_ipcp_TO, sppp_ipcp_RCR, sppp_ipcp_RCN_rej, sppp_ipcp_RCN_nak,
429 sppp_ipcp_tlu, sppp_ipcp_tld, sppp_ipcp_tls, sppp_ipcp_tlf,
433 static const struct cp ipv6cp = {
434 PPP_IPV6CP, IDX_IPV6CP,
435 #ifdef INET6 /*don't run IPv6CP if there's no IPv6 support*/
441 sppp_ipv6cp_up, sppp_ipv6cp_down, sppp_ipv6cp_open, sppp_ipv6cp_close,
442 sppp_ipv6cp_TO, sppp_ipv6cp_RCR, sppp_ipv6cp_RCN_rej, sppp_ipv6cp_RCN_nak,
443 sppp_ipv6cp_tlu, sppp_ipv6cp_tld, sppp_ipv6cp_tls, sppp_ipv6cp_tlf,
447 static const struct cp pap = {
448 PPP_PAP, IDX_PAP, CP_AUTH, "pap",
449 sppp_null, sppp_null, sppp_pap_open, sppp_pap_close,
450 sppp_pap_TO, 0, 0, 0,
451 sppp_pap_tlu, sppp_pap_tld, sppp_null, sppp_null,
455 static const struct cp chap = {
456 PPP_CHAP, IDX_CHAP, CP_AUTH, "chap",
457 sppp_null, sppp_null, sppp_chap_open, sppp_chap_close,
458 sppp_chap_TO, 0, 0, 0,
459 sppp_chap_tlu, sppp_chap_tld, sppp_null, sppp_null,
463 static const struct cp *cps[IDX_COUNT] = {
465 &ipcp, /* IDX_IPCP */
466 &ipv6cp, /* IDX_IPV6CP */
468 &chap, /* IDX_CHAP */
472 sppp_modevent(module_t mod, int type, void *unused)
485 static moduledata_t spppmod = {
490 MODULE_VERSION(sppp, 1);
491 DECLARE_MODULE(sppp, spppmod, SI_SUB_DRIVERS, SI_ORDER_ANY);
494 * Exported functions, comprising our interface to the lower layer.
498 * Process the received packet.
501 sppp_input(struct ifnet *ifp, struct mbuf *m)
503 struct ppp_header *h;
505 struct sppp *sp = (struct sppp *)ifp;
507 int hlen, vjlen, do_account = 0;
508 int debug = ifp->if_flags & IFF_DEBUG;
510 if (ifp->if_flags & IFF_UP)
511 /* Count received bytes, add FCS and one flag */
512 ifp->if_ibytes += m->m_pkthdr.len + 3;
514 if (m->m_pkthdr.len <= PPP_HEADER_LEN) {
515 /* Too small packet, drop it. */
518 SPP_FMT "input packet is too small, %d bytes\n",
519 SPP_ARGS(ifp), m->m_pkthdr.len);
528 /* Get PPP header. */
529 h = mtod (m, struct ppp_header*);
530 m_adj (m, PPP_HEADER_LEN);
532 switch (h->address) {
533 case PPP_ALLSTATIONS:
534 if (h->control != PPP_UI)
536 if (sp->pp_mode == IFF_CISCO) {
539 SPP_FMT "PPP packet in Cisco mode "
540 "<addr=0x%x ctrl=0x%x proto=0x%x>\n",
542 h->address, h->control, ntohs(h->protocol));
545 switch (ntohs (h->protocol)) {
549 SPP_FMT "rejecting protocol "
550 "<addr=0x%x ctrl=0x%x proto=0x%x>\n",
552 h->address, h->control, ntohs(h->protocol));
553 if (sp->state[IDX_LCP] == STATE_OPENED)
554 sppp_cp_send (sp, PPP_LCP, PROTO_REJ,
555 ++sp->pp_seq[IDX_LCP], m->m_pkthdr.len + 2,
560 sppp_cp_input(&lcp, sp, m);
564 if (sp->pp_phase >= PHASE_AUTHENTICATE)
565 sppp_pap_input(sp, m);
569 if (sp->pp_phase >= PHASE_AUTHENTICATE)
570 sppp_chap_input(sp, m);
575 if (sp->pp_phase == PHASE_NETWORK)
576 sppp_cp_input(&ipcp, sp, m);
580 if (sp->state[IDX_IPCP] == STATE_OPENED) {
586 if (sp->state[IDX_IPCP] == STATE_OPENED) {
588 sl_uncompress_tcp_core(mtod(m, u_char *),
592 &iphdr, &hlen)) <= 0) {
595 SPP_FMT "VJ uncompress failed on compressed packet\n",
601 * Trim the VJ header off the packet, and prepend
602 * the uncompressed IP header (which will usually
603 * end up in two chained mbufs since there's not
604 * enough leading space in the existing mbuf).
607 M_PREPEND(m, hlen, MB_DONTWAIT);
610 bcopy(iphdr, mtod(m, u_char *), hlen);
617 if (sp->state[IDX_IPCP] == STATE_OPENED) {
618 if (sl_uncompress_tcp_core(mtod(m, u_char *),
620 TYPE_UNCOMPRESSED_TCP,
622 &iphdr, &hlen) != 0) {
625 SPP_FMT "VJ uncompress failed on uncompressed packet\n",
636 if (sp->pp_phase == PHASE_NETWORK)
637 sppp_cp_input(&ipv6cp, sp, m);
642 if (sp->state[IDX_IPV6CP] == STATE_OPENED) {
650 /* IPX IPXCP not implemented yet */
651 if (sp->pp_phase == PHASE_NETWORK) {
659 /* XNS IDPCP not implemented yet */
660 if (sp->pp_phase == PHASE_NETWORK) {
668 case CISCO_MULTICAST:
670 /* Don't check the control field here (RFC 1547). */
671 if (sp->pp_mode != IFF_CISCO) {
674 SPP_FMT "Cisco packet in PPP mode "
675 "<addr=0x%x ctrl=0x%x proto=0x%x>\n",
677 h->address, h->control, ntohs(h->protocol));
680 switch (ntohs (h->protocol)) {
684 case CISCO_KEEPALIVE:
685 sppp_cisco_input ((struct sppp*) ifp, m);
714 default: /* Invalid PPP packet. */
718 SPP_FMT "invalid input packet "
719 "<addr=0x%x ctrl=0x%x proto=0x%x>\n",
721 h->address, h->control, ntohs(h->protocol));
725 if (! (ifp->if_flags & IFF_UP) || isr < 0)
730 netisr_dispatch(isr, m);
733 * Do only account for network packets, not for control
734 * packets. This is used by some subsystems to detect
737 sp->pp_last_recv = time_second;
741 * Enqueue transmit packet.
744 sppp_output(struct ifnet *ifp, struct mbuf *m,
745 struct sockaddr *dst, struct rtentry *rt)
747 struct sppp *sp = (struct sppp*) ifp;
748 struct ppp_header *h;
749 struct ifqueue *ifq = NULL;
751 int ipproto = PPP_IP;
752 int debug = ifp->if_flags & IFF_DEBUG;
753 struct altq_pktattr pktattr;
757 if ((ifp->if_flags & IFF_UP) == 0 ||
758 (ifp->if_flags & (IFF_RUNNING | IFF_AUTO)) == 0) {
767 if ((ifp->if_flags & (IFF_RUNNING | IFF_AUTO)) == IFF_AUTO) {
772 * Hack to prevent the initialization-time generated
773 * IPv6 multicast packet to erroneously cause a
774 * dialout event in case IPv6 has been
775 * administratively disabled on that interface.
777 if (dst->sa_family == AF_INET6 &&
778 !(sp->confflags & CONF_ENABLE_IPV6))
782 * Interface is not yet running, but auto-dial. Need
783 * to start LCP for it.
785 ifp->if_flags |= IFF_RUNNING;
792 * if the queueing discipline needs packet classification,
793 * do it before prepending link headers.
795 ifq_classify(&ifp->if_snd, m, dst->sa_family, &pktattr);
798 if (dst->sa_family == AF_INET) {
799 /* XXX Check mbuf length here? */
800 struct ip *ip = mtod (m, struct ip*);
801 struct tcphdr *tcp = (struct tcphdr*) ((long*)ip + ip->ip_hl);
804 * When using dynamic local IP address assignment by using
805 * 0.0.0.0 as a local address, the first TCP session will
806 * not connect because the local TCP checksum is computed
807 * using 0.0.0.0 which will later become our real IP address
808 * so the TCP checksum computed at the remote end will
809 * become invalid. So we
810 * - don't let packets with src ip addr 0 thru
811 * - we flag TCP packets with src ip 0 as an error
814 if(ip->ip_src.s_addr == INADDR_ANY) /* -hm */
818 if(ip->ip_p == IPPROTO_TCP)
819 return(EADDRNOTAVAIL);
825 * Put low delay, telnet, rlogin and ftp control packets
826 * in front of the queue.
828 if (IF_QFULL (&sp->pp_fastq))
830 else if (ip->ip_tos & IPTOS_LOWDELAY)
832 else if (m->m_len < sizeof *ip + sizeof *tcp)
834 else if (ip->ip_p != IPPROTO_TCP)
836 else if (INTERACTIVE (ntohs (tcp->th_sport)))
838 else if (INTERACTIVE (ntohs (tcp->th_dport)))
842 * Do IP Header compression
844 if (sp->pp_mode != IFF_CISCO && (sp->ipcp.flags & IPCP_VJ) &&
845 ip->ip_p == IPPROTO_TCP)
846 switch (sl_compress_tcp(m, ip, sp->pp_comp,
847 sp->ipcp.compress_cid)) {
848 case TYPE_COMPRESSED_TCP:
849 ipproto = PPP_VJ_COMP;
851 case TYPE_UNCOMPRESSED_TCP:
852 ipproto = PPP_VJ_UCOMP;
866 if (dst->sa_family == AF_INET6) {
867 /* XXX do something tricky here? */
872 * Prepend general data packet PPP header. For now, IP only.
874 M_PREPEND (m, PPP_HEADER_LEN, MB_DONTWAIT);
877 log(LOG_DEBUG, SPP_FMT "no memory for transmit header\n",
884 * May want to check size of packet
885 * (albeit due to the implementation it's always enough)
887 h = mtod (m, struct ppp_header*);
888 if (sp->pp_mode == IFF_CISCO) {
889 h->address = CISCO_UNICAST; /* unicast address */
892 h->address = PPP_ALLSTATIONS; /* broadcast address */
893 h->control = PPP_UI; /* Unnumbered Info */
896 switch (dst->sa_family) {
898 case AF_INET: /* Internet Protocol */
899 if (sp->pp_mode == IFF_CISCO)
900 h->protocol = htons (ETHERTYPE_IP);
903 * Don't choke with an ENETDOWN early. It's
904 * possible that we just started dialing out,
905 * so don't drop the packet immediately. If
906 * we notice that we run out of buffer space
907 * below, we will however remember that we are
908 * not ready to carry IP packets, and return
909 * ENETDOWN, as opposed to ENOBUFS.
911 h->protocol = htons(ipproto);
912 if (sp->state[IDX_IPCP] != STATE_OPENED)
918 case AF_INET6: /* Internet Protocol */
919 if (sp->pp_mode == IFF_CISCO)
920 h->protocol = htons (ETHERTYPE_IPV6);
923 * Don't choke with an ENETDOWN early. It's
924 * possible that we just started dialing out,
925 * so don't drop the packet immediately. If
926 * we notice that we run out of buffer space
927 * below, we will however remember that we are
928 * not ready to carry IP packets, and return
929 * ENETDOWN, as opposed to ENOBUFS.
931 h->protocol = htons(PPP_IPV6);
932 if (sp->state[IDX_IPV6CP] != STATE_OPENED)
938 case AF_NS: /* Xerox NS Protocol */
939 h->protocol = htons (sp->pp_mode == IFF_CISCO ?
940 ETHERTYPE_NS : PPP_XNS);
944 case AF_IPX: /* Novell IPX Protocol */
945 h->protocol = htons (sp->pp_mode == IFF_CISCO ?
946 ETHERTYPE_IPX : PPP_IPX);
953 return (EAFNOSUPPORT);
957 * Queue message on interface, and start output if interface
971 rv = ifq_enqueue(&ifp->if_snd, m, &pktattr);
978 if (! (ifp->if_flags & IFF_OACTIVE))
979 (*ifp->if_start) (ifp);
982 * Count output packets and bytes.
983 * The packet length includes header, FCS and 1 flag,
984 * according to RFC 1333.
986 ifp->if_obytes += m->m_pkthdr.len + 3;
989 * Unlike in sppp_input(), we can always bump the timestamp
990 * here since sppp_output() is only called on behalf of
991 * network-layer traffic; control-layer traffic is handled
994 sp->pp_last_sent = time_second;
1001 sppp_attach(struct ifnet *ifp)
1003 struct sppp *sp = (struct sppp*) ifp;
1005 /* Initialize keepalive handler. */
1007 callout_reset(&keepalive_timeout, hz * 10,
1008 sppp_keepalive, NULL);
1010 /* Insert new entry into the keepalive list. */
1011 sp->pp_next = spppq;
1014 sp->pp_if.if_mtu = PP_MTU;
1015 sp->pp_if.if_flags = IFF_POINTOPOINT | IFF_MULTICAST;
1016 sp->pp_if.if_type = IFT_PPP;
1017 sp->pp_if.if_output = sppp_output;
1019 sp->pp_flags = PP_KEEPALIVE;
1021 sp->pp_if.if_snd.ifq_maxlen = 32;
1022 sp->pp_fastq.ifq_maxlen = 32;
1023 sp->pp_cpq.ifq_maxlen = 20;
1025 sp->pp_alivecnt = 0;
1026 bzero(&sp->pp_seq[0], sizeof(sp->pp_seq));
1027 bzero(&sp->pp_rseq[0], sizeof(sp->pp_rseq));
1028 sp->pp_phase = PHASE_DEAD;
1030 sp->pp_down = lcp.Down;
1031 sp->pp_last_recv = sp->pp_last_sent = time_second;
1034 sp->confflags |= CONF_ENABLE_VJ;
1037 sp->confflags |= CONF_ENABLE_IPV6;
1039 sp->pp_comp = malloc(sizeof(struct slcompress), M_TEMP, M_WAITOK);
1040 sl_compress_init(sp->pp_comp, -1);
1043 sppp_ipv6cp_init(sp);
1049 sppp_detach(struct ifnet *ifp)
1051 struct sppp **q, *p, *sp = (struct sppp*) ifp;
1054 /* Remove the entry from the keepalive list. */
1055 for (q = &spppq; (p = *q); q = &p->pp_next)
1061 /* Stop keepalive handler. */
1063 callout_stop(&keepalive_timeout);
1065 for (i = 0; i < IDX_COUNT; i++)
1066 callout_stop(&sp->timeout[i]);
1067 callout_stop(&sp->pap_my_to);
1071 * Flush the interface output queue.
1074 sppp_flush(struct ifnet *ifp)
1076 struct sppp *sp = (struct sppp*) ifp;
1078 ifq_purge(&sp->pp_if.if_snd);
1079 IF_DRAIN(&sp->pp_fastq);
1080 IF_DRAIN(&sp->pp_cpq);
1084 * Check if the output queue is empty.
1087 sppp_isempty(struct ifnet *ifp)
1089 struct sppp *sp = (struct sppp*) ifp;
1093 empty = IF_QEMPTY(&sp->pp_fastq) && IF_QEMPTY(&sp->pp_cpq) &&
1094 ifq_is_empty(&sp->pp_if.if_snd);
1100 * Get next packet to send.
1103 sppp_dequeue(struct ifnet *ifp)
1105 struct sppp *sp = (struct sppp*) ifp;
1111 * Process only the control protocol queue until we have at
1112 * least one NCP open.
1114 * Do always serve all three queues in Cisco mode.
1116 IF_DEQUEUE(&sp->pp_cpq, m);
1118 (sppp_ncp_check(sp) || sp->pp_mode == IFF_CISCO)) {
1119 IF_DEQUEUE(&sp->pp_fastq, m);
1121 m = ifq_dequeue(&sp->pp_if.if_snd);
1129 * Pick the next packet, do not remove it from the queue.
1132 sppp_pick(struct ifnet *ifp)
1134 struct sppp *sp = (struct sppp*)ifp;
1139 m = sp->pp_cpq.ifq_head;
1141 (sp->pp_phase == PHASE_NETWORK || sp->pp_mode == IFF_CISCO)) {
1142 if ((m = sp->pp_fastq.ifq_head) == NULL)
1143 m = ifq_poll(&sp->pp_if.if_snd);
1151 * Process an ioctl request. Called on low priority level.
1154 sppp_ioctl(struct ifnet *ifp, IOCTL_CMD_T cmd, void *data)
1156 struct ifreq *ifr = (struct ifreq*) data;
1157 struct sppp *sp = (struct sppp*) ifp;
1158 int rv, going_up, going_down, newmode;
1165 case SIOCSIFDSTADDR:
1169 /* set the interface "up" when assigning an IP address */
1170 ifp->if_flags |= IFF_UP;
1171 /* fall through... */
1174 going_up = ifp->if_flags & IFF_UP &&
1175 (ifp->if_flags & IFF_RUNNING) == 0;
1176 going_down = (ifp->if_flags & IFF_UP) == 0 &&
1177 ifp->if_flags & IFF_RUNNING;
1179 newmode = ifp->if_flags & IFF_PASSIVE;
1181 newmode = ifp->if_flags & IFF_AUTO;
1183 newmode = ifp->if_flags & IFF_CISCO;
1184 ifp->if_flags &= ~(IFF_PASSIVE | IFF_AUTO | IFF_CISCO);
1185 ifp->if_flags |= newmode;
1187 if (newmode != sp->pp_mode) {
1190 going_up = ifp->if_flags & IFF_RUNNING;
1194 if (sp->pp_mode != IFF_CISCO)
1196 else if (sp->pp_tlf)
1199 ifp->if_flags &= ~IFF_RUNNING;
1200 sp->pp_mode = newmode;
1204 if (sp->pp_mode != IFF_CISCO)
1206 sp->pp_mode = newmode;
1207 if (sp->pp_mode == 0) {
1208 ifp->if_flags |= IFF_RUNNING;
1211 if (sp->pp_mode == IFF_CISCO) {
1214 ifp->if_flags |= IFF_RUNNING;
1222 #define ifr_mtu ifr_metric
1225 if (ifr->ifr_mtu < 128 || ifr->ifr_mtu > sp->lcp.their_mru)
1227 ifp->if_mtu = ifr->ifr_mtu;
1232 if (*(short*)data < 128 || *(short*)data > sp->lcp.their_mru)
1234 ifp->if_mtu = *(short*)data;
1239 ifr->ifr_mtu = ifp->if_mtu;
1244 *(short*)data = ifp->if_mtu;
1251 case SIOCGIFGENERIC:
1252 case SIOCSIFGENERIC:
1253 rv = sppp_params(sp, cmd, data);
1265 * Cisco framing implementation.
1269 * Handle incoming Cisco keepalive protocol packets.
1272 sppp_cisco_input(struct sppp *sp, struct mbuf *m)
1275 struct cisco_packet *h;
1278 if (m->m_pkthdr.len < CISCO_PACKET_LEN) {
1281 SPP_FMT "cisco invalid packet length: %d bytes\n",
1282 SPP_ARGS(ifp), m->m_pkthdr.len);
1285 h = mtod (m, struct cisco_packet*);
1288 SPP_FMT "cisco input: %d bytes "
1289 "<0x%lx 0x%lx 0x%lx 0x%x 0x%x-0x%x>\n",
1290 SPP_ARGS(ifp), m->m_pkthdr.len,
1291 (u_long)ntohl (h->type), (u_long)h->par1, (u_long)h->par2, (u_int)h->rel,
1292 (u_int)h->time0, (u_int)h->time1);
1293 switch (ntohl (h->type)) {
1296 addlog(SPP_FMT "cisco unknown packet type: 0x%lx\n",
1297 SPP_ARGS(ifp), (u_long)ntohl (h->type));
1299 case CISCO_ADDR_REPLY:
1300 /* Reply on address request, ignore */
1302 case CISCO_KEEPALIVE_REQ:
1303 sp->pp_alivecnt = 0;
1304 sp->pp_rseq[IDX_LCP] = ntohl (h->par1);
1305 if (sp->pp_seq[IDX_LCP] == sp->pp_rseq[IDX_LCP]) {
1306 /* Local and remote sequence numbers are equal.
1307 * Probably, the line is in loopback mode. */
1308 if (sp->pp_loopcnt >= MAXALIVECNT) {
1309 printf (SPP_FMT "loopback\n",
1312 if (ifp->if_flags & IFF_UP) {
1314 IF_DRAIN(&sp->pp_cpq);
1319 /* Generate new local sequence number */
1320 #if defined(__DragonFly__)
1321 sp->pp_seq[IDX_LCP] = random();
1323 sp->pp_seq[IDX_LCP] ^= time.tv_sec ^ time.tv_usec;
1328 if (! (ifp->if_flags & IFF_UP) &&
1329 (ifp->if_flags & IFF_RUNNING)) {
1331 printf (SPP_FMT "up\n", SPP_ARGS(ifp));
1334 case CISCO_ADDR_REQ:
1335 sppp_get_ip_addrs(sp, &me, 0, &mymask);
1337 sppp_cisco_send(sp, CISCO_ADDR_REPLY, me, mymask);
1343 * Send Cisco keepalive packet.
1346 sppp_cisco_send(struct sppp *sp, int type, long par1, long par2)
1349 struct ppp_header *h;
1350 struct cisco_packet *ch;
1352 #if defined(__DragonFly__)
1355 u_long t = (time.tv_sec - boottime.tv_sec) * 1000;
1358 #if defined(__DragonFly__)
1359 getmicrouptime(&tv);
1362 MGETHDR (m, MB_DONTWAIT, MT_DATA);
1365 m->m_pkthdr.len = m->m_len = PPP_HEADER_LEN + CISCO_PACKET_LEN;
1366 m->m_pkthdr.rcvif = 0;
1368 h = mtod (m, struct ppp_header*);
1369 h->address = CISCO_MULTICAST;
1371 h->protocol = htons (CISCO_KEEPALIVE);
1373 ch = (struct cisco_packet*) (h + 1);
1374 ch->type = htonl (type);
1375 ch->par1 = htonl (par1);
1376 ch->par2 = htonl (par2);
1379 #if defined(__DragonFly__)
1380 ch->time0 = htons ((u_short) (tv.tv_sec >> 16));
1381 ch->time1 = htons ((u_short) tv.tv_sec);
1383 ch->time0 = htons ((u_short) (t >> 16));
1384 ch->time1 = htons ((u_short) t);
1389 SPP_FMT "cisco output: <0x%lx 0x%lx 0x%lx 0x%x 0x%x-0x%x>\n",
1390 SPP_ARGS(ifp), (u_long)ntohl (ch->type), (u_long)ch->par1,
1391 (u_long)ch->par2, (u_int)ch->rel, (u_int)ch->time0, (u_int)ch->time1);
1393 if (IF_QFULL (&sp->pp_cpq)) {
1394 IF_DROP (&sp->pp_fastq);
1395 IF_DROP (&ifp->if_snd);
1398 IF_ENQUEUE (&sp->pp_cpq, m);
1399 if (! (ifp->if_flags & IFF_OACTIVE))
1400 (*ifp->if_start) (ifp);
1401 ifp->if_obytes += m->m_pkthdr.len + 3;
1405 * PPP protocol implementation.
1409 * Send PPP control protocol packet.
1412 sppp_cp_send(struct sppp *sp, u_short proto, u_char type,
1413 u_char ident, u_short len, void *data)
1416 struct ppp_header *h;
1417 struct lcp_header *lh;
1420 if (len > MHLEN - PPP_HEADER_LEN - LCP_HEADER_LEN)
1421 len = MHLEN - PPP_HEADER_LEN - LCP_HEADER_LEN;
1422 MGETHDR (m, MB_DONTWAIT, MT_DATA);
1425 m->m_pkthdr.len = m->m_len = PPP_HEADER_LEN + LCP_HEADER_LEN + len;
1426 m->m_pkthdr.rcvif = 0;
1428 h = mtod (m, struct ppp_header*);
1429 h->address = PPP_ALLSTATIONS; /* broadcast address */
1430 h->control = PPP_UI; /* Unnumbered Info */
1431 h->protocol = htons (proto); /* Link Control Protocol */
1433 lh = (struct lcp_header*) (h + 1);
1436 lh->len = htons (LCP_HEADER_LEN + len);
1438 bcopy (data, lh+1, len);
1441 log(LOG_DEBUG, SPP_FMT "%s output <%s id=0x%x len=%d",
1443 sppp_proto_name(proto),
1444 sppp_cp_type_name (lh->type), lh->ident,
1446 sppp_print_bytes ((u_char*) (lh+1), len);
1449 if (IF_QFULL (&sp->pp_cpq)) {
1450 IF_DROP (&sp->pp_fastq);
1451 IF_DROP (&ifp->if_snd);
1455 IF_ENQUEUE (&sp->pp_cpq, m);
1456 if (! (ifp->if_flags & IFF_OACTIVE))
1457 (*ifp->if_start) (ifp);
1458 ifp->if_obytes += m->m_pkthdr.len + 3;
1462 * Handle incoming PPP control protocol packets.
1465 sppp_cp_input(const struct cp *cp, struct sppp *sp, struct mbuf *m)
1468 struct lcp_header *h;
1469 int len = m->m_pkthdr.len;
1476 SPP_FMT "%s invalid packet length: %d bytes\n",
1477 SPP_ARGS(ifp), cp->name, len);
1480 h = mtod (m, struct lcp_header*);
1483 SPP_FMT "%s input(%s): <%s id=0x%x len=%d",
1484 SPP_ARGS(ifp), cp->name,
1485 sppp_state_name(sp->state[cp->protoidx]),
1486 sppp_cp_type_name (h->type), h->ident, ntohs (h->len));
1487 sppp_print_bytes ((u_char*) (h+1), len-4);
1490 if (len > ntohs (h->len))
1491 len = ntohs (h->len);
1492 p = (u_char *)(h + 1);
1497 addlog(SPP_FMT "%s invalid conf-req length %d\n",
1498 SPP_ARGS(ifp), cp->name,
1503 /* handle states where RCR doesn't get a SCA/SCN */
1504 switch (sp->state[cp->protoidx]) {
1506 case STATE_STOPPING:
1509 sppp_cp_send(sp, cp->proto, TERM_ACK, h->ident,
1513 rv = (cp->RCR)(sp, h, len);
1514 switch (sp->state[cp->protoidx]) {
1518 /* fall through... */
1519 case STATE_ACK_SENT:
1520 case STATE_REQ_SENT:
1522 * sppp_cp_change_state() have the side effect of
1523 * restarting the timeouts. We want to avoid that
1524 * if the state don't change, otherwise we won't
1525 * ever timeout and resend a configuration request
1528 if (sp->state[cp->protoidx] == (rv ? STATE_ACK_SENT:
1531 sppp_cp_change_state(cp, sp, rv?
1532 STATE_ACK_SENT: STATE_REQ_SENT);
1535 sp->rst_counter[cp->protoidx] = sp->lcp.max_configure;
1537 sppp_cp_change_state(cp, sp, rv?
1538 STATE_ACK_SENT: STATE_REQ_SENT);
1540 case STATE_ACK_RCVD:
1542 sppp_cp_change_state(cp, sp, STATE_OPENED);
1544 log(LOG_DEBUG, SPP_FMT "%s tlu\n",
1549 sppp_cp_change_state(cp, sp, STATE_ACK_RCVD);
1552 printf(SPP_FMT "%s illegal %s in state %s\n",
1553 SPP_ARGS(ifp), cp->name,
1554 sppp_cp_type_name(h->type),
1555 sppp_state_name(sp->state[cp->protoidx]));
1560 if (h->ident != sp->confid[cp->protoidx]) {
1562 addlog(SPP_FMT "%s id mismatch 0x%x != 0x%x\n",
1563 SPP_ARGS(ifp), cp->name,
1564 h->ident, sp->confid[cp->protoidx]);
1568 switch (sp->state[cp->protoidx]) {
1571 sppp_cp_send(sp, cp->proto, TERM_ACK, h->ident, 0, 0);
1574 case STATE_STOPPING:
1576 case STATE_REQ_SENT:
1577 sp->rst_counter[cp->protoidx] = sp->lcp.max_configure;
1578 sppp_cp_change_state(cp, sp, STATE_ACK_RCVD);
1583 case STATE_ACK_RCVD:
1585 sppp_cp_change_state(cp, sp, STATE_REQ_SENT);
1587 case STATE_ACK_SENT:
1588 sp->rst_counter[cp->protoidx] = sp->lcp.max_configure;
1589 sppp_cp_change_state(cp, sp, STATE_OPENED);
1591 log(LOG_DEBUG, SPP_FMT "%s tlu\n",
1592 SPP_ARGS(ifp), cp->name);
1596 printf(SPP_FMT "%s illegal %s in state %s\n",
1597 SPP_ARGS(ifp), cp->name,
1598 sppp_cp_type_name(h->type),
1599 sppp_state_name(sp->state[cp->protoidx]));
1605 if (h->ident != sp->confid[cp->protoidx]) {
1607 addlog(SPP_FMT "%s id mismatch 0x%x != 0x%x\n",
1608 SPP_ARGS(ifp), cp->name,
1609 h->ident, sp->confid[cp->protoidx]);
1613 if (h->type == CONF_NAK)
1614 (cp->RCN_nak)(sp, h, len);
1616 (cp->RCN_rej)(sp, h, len);
1618 switch (sp->state[cp->protoidx]) {
1621 sppp_cp_send(sp, cp->proto, TERM_ACK, h->ident, 0, 0);
1623 case STATE_REQ_SENT:
1624 case STATE_ACK_SENT:
1625 sp->rst_counter[cp->protoidx] = sp->lcp.max_configure;
1627 * Slow things down a bit if we think we might be
1628 * in loopback. Depend on the timeout to send the
1629 * next configuration request.
1638 case STATE_ACK_RCVD:
1639 sppp_cp_change_state(cp, sp, STATE_REQ_SENT);
1643 case STATE_STOPPING:
1646 printf(SPP_FMT "%s illegal %s in state %s\n",
1647 SPP_ARGS(ifp), cp->name,
1648 sppp_cp_type_name(h->type),
1649 sppp_state_name(sp->state[cp->protoidx]));
1655 switch (sp->state[cp->protoidx]) {
1656 case STATE_ACK_RCVD:
1657 case STATE_ACK_SENT:
1658 sppp_cp_change_state(cp, sp, STATE_REQ_SENT);
1663 case STATE_STOPPING:
1664 case STATE_REQ_SENT:
1666 /* Send Terminate-Ack packet. */
1668 log(LOG_DEBUG, SPP_FMT "%s send terminate-ack\n",
1669 SPP_ARGS(ifp), cp->name);
1670 sppp_cp_send(sp, cp->proto, TERM_ACK, h->ident, 0, 0);
1674 sp->rst_counter[cp->protoidx] = 0;
1675 sppp_cp_change_state(cp, sp, STATE_STOPPING);
1679 printf(SPP_FMT "%s illegal %s in state %s\n",
1680 SPP_ARGS(ifp), cp->name,
1681 sppp_cp_type_name(h->type),
1682 sppp_state_name(sp->state[cp->protoidx]));
1687 switch (sp->state[cp->protoidx]) {
1690 case STATE_REQ_SENT:
1691 case STATE_ACK_SENT:
1694 sppp_cp_change_state(cp, sp, STATE_CLOSED);
1697 case STATE_STOPPING:
1698 sppp_cp_change_state(cp, sp, STATE_STOPPED);
1701 case STATE_ACK_RCVD:
1702 sppp_cp_change_state(cp, sp, STATE_REQ_SENT);
1707 sppp_cp_change_state(cp, sp, STATE_ACK_RCVD);
1710 printf(SPP_FMT "%s illegal %s in state %s\n",
1711 SPP_ARGS(ifp), cp->name,
1712 sppp_cp_type_name(h->type),
1713 sppp_state_name(sp->state[cp->protoidx]));
1718 /* XXX catastrophic rejects (RXJ-) aren't handled yet. */
1720 SPP_FMT "%s: ignoring RXJ (%s) for proto 0x%x, "
1721 "danger will robinson\n",
1722 SPP_ARGS(ifp), cp->name,
1723 sppp_cp_type_name(h->type), ntohs(*((u_short *)p)));
1724 switch (sp->state[cp->protoidx]) {
1727 case STATE_REQ_SENT:
1728 case STATE_ACK_SENT:
1730 case STATE_STOPPING:
1733 case STATE_ACK_RCVD:
1734 sppp_cp_change_state(cp, sp, STATE_REQ_SENT);
1737 printf(SPP_FMT "%s illegal %s in state %s\n",
1738 SPP_ARGS(ifp), cp->name,
1739 sppp_cp_type_name(h->type),
1740 sppp_state_name(sp->state[cp->protoidx]));
1747 const struct cp *upper;
1753 proto = ntohs(*((u_int16_t *)p));
1754 for (i = 0; i < IDX_COUNT; i++) {
1755 if (cps[i]->proto == proto) {
1763 if (catastrophic || debug)
1764 log(catastrophic? LOG_INFO: LOG_DEBUG,
1765 SPP_FMT "%s: RXJ%c (%s) for proto 0x%x (%s/%s)\n",
1766 SPP_ARGS(ifp), cp->name, catastrophic ? '-' : '+',
1767 sppp_cp_type_name(h->type), proto,
1768 upper ? upper->name : "unknown",
1769 upper ? sppp_state_name(sp->state[upper->protoidx]) : "?");
1772 * if we got RXJ+ against conf-req, the peer does not implement
1773 * this particular protocol type. terminate the protocol.
1775 if (upper && !catastrophic) {
1776 if (sp->state[upper->protoidx] == STATE_REQ_SENT) {
1782 /* XXX catastrophic rejects (RXJ-) aren't handled yet. */
1783 switch (sp->state[cp->protoidx]) {
1786 case STATE_REQ_SENT:
1787 case STATE_ACK_SENT:
1789 case STATE_STOPPING:
1792 case STATE_ACK_RCVD:
1793 sppp_cp_change_state(cp, sp, STATE_REQ_SENT);
1796 printf(SPP_FMT "%s illegal %s in state %s\n",
1797 SPP_ARGS(ifp), cp->name,
1798 sppp_cp_type_name(h->type),
1799 sppp_state_name(sp->state[cp->protoidx]));
1805 if (cp->proto != PPP_LCP)
1807 /* Discard the packet. */
1810 if (cp->proto != PPP_LCP)
1812 if (sp->state[cp->protoidx] != STATE_OPENED) {
1814 addlog(SPP_FMT "lcp echo req but lcp closed\n",
1821 addlog(SPP_FMT "invalid lcp echo request "
1822 "packet length: %d bytes\n",
1823 SPP_ARGS(ifp), len);
1826 if ((sp->lcp.opts & (1 << LCP_OPT_MAGIC)) &&
1827 ntohl (*(long*)(h+1)) == sp->lcp.magic) {
1828 /* Line loopback mode detected. */
1829 printf(SPP_FMT "loopback\n", SPP_ARGS(ifp));
1830 sp->pp_loopcnt = MAXALIVECNT * 5;
1832 IF_DRAIN(&sp->pp_cpq);
1834 /* Shut down the PPP link. */
1840 *(long*)(h+1) = htonl (sp->lcp.magic);
1842 addlog(SPP_FMT "got lcp echo req, sending echo rep\n",
1844 sppp_cp_send (sp, PPP_LCP, ECHO_REPLY, h->ident, len-4, h+1);
1847 if (cp->proto != PPP_LCP)
1849 if (h->ident != sp->lcp.echoid) {
1855 addlog(SPP_FMT "lcp invalid echo reply "
1856 "packet length: %d bytes\n",
1857 SPP_ARGS(ifp), len);
1861 addlog(SPP_FMT "lcp got echo rep\n",
1863 if (!(sp->lcp.opts & (1 << LCP_OPT_MAGIC)) ||
1864 ntohl (*(long*)(h+1)) != sp->lcp.magic)
1865 sp->pp_alivecnt = 0;
1868 /* Unknown packet type -- send Code-Reject packet. */
1871 addlog(SPP_FMT "%s send code-rej for 0x%x\n",
1872 SPP_ARGS(ifp), cp->name, h->type);
1873 sppp_cp_send(sp, cp->proto, CODE_REJ,
1874 ++sp->pp_seq[cp->protoidx], m->m_pkthdr.len, h);
1881 * The generic part of all Up/Down/Open/Close/TO event handlers.
1882 * Basically, the state transition handling in the automaton.
1885 sppp_up_event(const struct cp *cp, struct sppp *sp)
1890 log(LOG_DEBUG, SPP_FMT "%s up(%s)\n",
1891 SPP_ARGS(ifp), cp->name,
1892 sppp_state_name(sp->state[cp->protoidx]));
1894 switch (sp->state[cp->protoidx]) {
1896 sppp_cp_change_state(cp, sp, STATE_CLOSED);
1898 case STATE_STARTING:
1899 sp->rst_counter[cp->protoidx] = sp->lcp.max_configure;
1901 sppp_cp_change_state(cp, sp, STATE_REQ_SENT);
1904 printf(SPP_FMT "%s illegal up in state %s\n",
1905 SPP_ARGS(ifp), cp->name,
1906 sppp_state_name(sp->state[cp->protoidx]));
1911 sppp_down_event(const struct cp *cp, struct sppp *sp)
1916 log(LOG_DEBUG, SPP_FMT "%s down(%s)\n",
1917 SPP_ARGS(ifp), cp->name,
1918 sppp_state_name(sp->state[cp->protoidx]));
1920 switch (sp->state[cp->protoidx]) {
1923 sppp_cp_change_state(cp, sp, STATE_INITIAL);
1926 sppp_cp_change_state(cp, sp, STATE_STARTING);
1929 case STATE_STOPPING:
1930 case STATE_REQ_SENT:
1931 case STATE_ACK_RCVD:
1932 case STATE_ACK_SENT:
1933 sppp_cp_change_state(cp, sp, STATE_STARTING);
1937 sppp_cp_change_state(cp, sp, STATE_STARTING);
1940 printf(SPP_FMT "%s illegal down in state %s\n",
1941 SPP_ARGS(ifp), cp->name,
1942 sppp_state_name(sp->state[cp->protoidx]));
1948 sppp_open_event(const struct cp *cp, struct sppp *sp)
1953 log(LOG_DEBUG, SPP_FMT "%s open(%s)\n",
1954 SPP_ARGS(ifp), cp->name,
1955 sppp_state_name(sp->state[cp->protoidx]));
1957 switch (sp->state[cp->protoidx]) {
1959 sppp_cp_change_state(cp, sp, STATE_STARTING);
1962 case STATE_STARTING:
1965 sp->rst_counter[cp->protoidx] = sp->lcp.max_configure;
1967 sppp_cp_change_state(cp, sp, STATE_REQ_SENT);
1971 * Try escaping stopped state. This seems to bite
1972 * people occasionally, in particular for IPCP,
1973 * presumably following previous IPCP negotiation
1974 * aborts. Somehow, we must have missed a Down event
1975 * which would have caused a transition into starting
1976 * state, so as a bandaid we force the Down event now.
1977 * This effectively implements (something like the)
1978 * `restart' option mentioned in the state transition
1979 * table of RFC 1661.
1981 sppp_cp_change_state(cp, sp, STATE_STARTING);
1984 case STATE_STOPPING:
1985 case STATE_REQ_SENT:
1986 case STATE_ACK_RCVD:
1987 case STATE_ACK_SENT:
1991 sppp_cp_change_state(cp, sp, STATE_STOPPING);
1998 sppp_close_event(const struct cp *cp, struct sppp *sp)
2003 log(LOG_DEBUG, SPP_FMT "%s close(%s)\n",
2004 SPP_ARGS(ifp), cp->name,
2005 sppp_state_name(sp->state[cp->protoidx]));
2007 switch (sp->state[cp->protoidx]) {
2012 case STATE_STARTING:
2013 sppp_cp_change_state(cp, sp, STATE_INITIAL);
2017 sppp_cp_change_state(cp, sp, STATE_CLOSED);
2019 case STATE_STOPPING:
2020 sppp_cp_change_state(cp, sp, STATE_CLOSING);
2025 case STATE_REQ_SENT:
2026 case STATE_ACK_RCVD:
2027 case STATE_ACK_SENT:
2028 sp->rst_counter[cp->protoidx] = sp->lcp.max_terminate;
2029 sppp_cp_send(sp, cp->proto, TERM_REQ,
2030 ++sp->pp_seq[cp->protoidx], 0, 0);
2031 sppp_cp_change_state(cp, sp, STATE_CLOSING);
2037 sppp_to_event(const struct cp *cp, struct sppp *sp)
2044 log(LOG_DEBUG, SPP_FMT "%s TO(%s) rst_counter = %d\n",
2045 SPP_ARGS(ifp), cp->name,
2046 sppp_state_name(sp->state[cp->protoidx]),
2047 sp->rst_counter[cp->protoidx]);
2049 if (--sp->rst_counter[cp->protoidx] < 0)
2051 switch (sp->state[cp->protoidx]) {
2053 sppp_cp_change_state(cp, sp, STATE_CLOSED);
2056 case STATE_STOPPING:
2057 sppp_cp_change_state(cp, sp, STATE_STOPPED);
2060 case STATE_REQ_SENT:
2061 case STATE_ACK_RCVD:
2062 case STATE_ACK_SENT:
2063 sppp_cp_change_state(cp, sp, STATE_STOPPED);
2069 switch (sp->state[cp->protoidx]) {
2071 case STATE_STOPPING:
2072 sppp_cp_send(sp, cp->proto, TERM_REQ,
2073 ++sp->pp_seq[cp->protoidx], 0, 0);
2074 callout_reset(&sp->timeout[cp->protoidx],
2075 sp->lcp.timeout, cp->TO, sp);
2077 case STATE_REQ_SENT:
2078 case STATE_ACK_RCVD:
2080 /* sppp_cp_change_state() will restart the timer */
2081 sppp_cp_change_state(cp, sp, STATE_REQ_SENT);
2083 case STATE_ACK_SENT:
2085 callout_reset(&sp->timeout[cp->protoidx],
2086 sp->lcp.timeout, cp->TO, sp);
2094 * Change the state of a control protocol in the state automaton.
2095 * Takes care of starting/stopping the restart timer.
2098 sppp_cp_change_state(const struct cp *cp, struct sppp *sp, int newstate)
2100 sp->state[cp->protoidx] = newstate;
2101 callout_stop(&sp->timeout[cp->protoidx]);
2105 case STATE_STARTING:
2111 case STATE_STOPPING:
2112 case STATE_REQ_SENT:
2113 case STATE_ACK_RCVD:
2114 case STATE_ACK_SENT:
2115 callout_reset(&sp->timeout[cp->protoidx],
2116 sp->lcp.timeout, cp->TO, sp);
2122 *--------------------------------------------------------------------------*
2124 * The LCP implementation. *
2126 *--------------------------------------------------------------------------*
2129 sppp_lcp_init(struct sppp *sp)
2131 sp->lcp.opts = (1 << LCP_OPT_MAGIC);
2133 sp->state[IDX_LCP] = STATE_INITIAL;
2134 sp->fail_counter[IDX_LCP] = 0;
2135 sp->pp_seq[IDX_LCP] = 0;
2136 sp->pp_rseq[IDX_LCP] = 0;
2138 sp->lcp.mru = sp->lcp.their_mru = PP_MTU;
2140 /* Note that these values are relevant for all control protocols */
2141 sp->lcp.timeout = 3 * hz;
2142 sp->lcp.max_terminate = 2;
2143 sp->lcp.max_configure = 10;
2144 sp->lcp.max_failure = 10;
2145 #if defined(__DragonFly__)
2146 callout_init(&sp->timeout[IDX_LCP]);
2151 sppp_lcp_up(struct sppp *sp)
2155 sp->pp_alivecnt = 0;
2156 sp->lcp.opts = (1 << LCP_OPT_MAGIC);
2159 sp->lcp.mru = sp->lcp.their_mru = PP_MTU;
2161 * If this interface is passive or dial-on-demand, and we are
2162 * still in Initial state, it means we've got an incoming
2163 * call. Activate the interface.
2165 if ((ifp->if_flags & (IFF_AUTO | IFF_PASSIVE)) != 0) {
2168 SPP_FMT "Up event", SPP_ARGS(ifp));
2169 ifp->if_flags |= IFF_RUNNING;
2170 if (sp->state[IDX_LCP] == STATE_INITIAL) {
2172 addlog("(incoming call)\n");
2173 sp->pp_flags |= PP_CALLIN;
2177 } else if ((ifp->if_flags & (IFF_AUTO | IFF_PASSIVE)) == 0 &&
2178 (sp->state[IDX_LCP] == STATE_INITIAL)) {
2179 ifp->if_flags |= IFF_RUNNING;
2183 sppp_up_event(&lcp, sp);
2187 sppp_lcp_down(struct sppp *sp)
2191 sppp_down_event(&lcp, sp);
2194 * If this is neither a dial-on-demand nor a passive
2195 * interface, simulate an ``ifconfig down'' action, so the
2196 * administrator can force a redial by another ``ifconfig
2197 * up''. XXX For leased line operation, should we immediately
2198 * try to reopen the connection here?
2200 if ((ifp->if_flags & (IFF_AUTO | IFF_PASSIVE)) == 0) {
2202 SPP_FMT "Down event, taking interface down.\n",
2208 SPP_FMT "Down event (carrier loss)\n",
2210 sp->pp_flags &= ~PP_CALLIN;
2211 if (sp->state[IDX_LCP] != STATE_INITIAL)
2213 ifp->if_flags &= ~IFF_RUNNING;
2218 sppp_lcp_open(struct sppp *sp)
2221 * If we are authenticator, negotiate LCP_AUTH
2223 if (sp->hisauth.proto != 0)
2224 sp->lcp.opts |= (1 << LCP_OPT_AUTH_PROTO);
2226 sp->lcp.opts &= ~(1 << LCP_OPT_AUTH_PROTO);
2227 sp->pp_flags &= ~PP_NEEDAUTH;
2228 sppp_open_event(&lcp, sp);
2232 sppp_lcp_close(struct sppp *sp)
2234 sppp_close_event(&lcp, sp);
2238 sppp_lcp_TO(void *cookie)
2240 sppp_to_event(&lcp, (struct sppp *)cookie);
2244 * Analyze a configure request. Return true if it was agreeable, and
2245 * caused action sca, false if it has been rejected or nak'ed, and
2246 * caused action scn. (The return value is used to make the state
2247 * transition decision in the state automaton.)
2250 sppp_lcp_RCR(struct sppp *sp, struct lcp_header *h, int len)
2253 u_char *buf, *r, *p;
2260 buf = r = malloc (len, M_TEMP, M_INTWAIT);
2263 log(LOG_DEBUG, SPP_FMT "lcp parse opts: ",
2266 /* pass 1: check for things that need to be rejected */
2268 for (rlen=0; len>1 && p[1]; len-=p[1], p+=p[1]) {
2270 addlog(" %s ", sppp_lcp_opt_name(*p));
2274 if (len >= 6 && p[1] == 6)
2277 addlog("[invalid] ");
2279 case LCP_OPT_ASYNC_MAP:
2280 /* Async control character map. */
2281 if (len >= 6 && p[1] == 6)
2284 addlog("[invalid] ");
2287 /* Maximum receive unit. */
2288 if (len >= 4 && p[1] == 4)
2291 addlog("[invalid] ");
2293 case LCP_OPT_AUTH_PROTO:
2296 addlog("[invalid] ");
2299 authproto = (p[2] << 8) + p[3];
2300 if (authproto == PPP_CHAP && p[1] != 5) {
2302 addlog("[invalid chap len] ");
2305 if (sp->myauth.proto == 0) {
2306 /* we are not configured to do auth */
2308 addlog("[not configured] ");
2312 * Remote want us to authenticate, remember this,
2313 * so we stay in PHASE_AUTHENTICATE after LCP got
2316 sp->pp_flags |= PP_NEEDAUTH;
2319 /* Others not supported. */
2324 /* Add the option to rejected list. */
2331 addlog(" send conf-rej\n");
2332 sppp_cp_send (sp, PPP_LCP, CONF_REJ, h->ident, rlen, buf);
2338 * pass 2: check for option values that are unacceptable and
2339 * thus require to be nak'ed.
2342 log(LOG_DEBUG, SPP_FMT "lcp parse opt values: ",
2347 for (rlen=0; len>1 && p[1]; len-=p[1], p+=p[1]) {
2349 addlog(" %s ", sppp_lcp_opt_name(*p));
2352 /* Magic number -- extract. */
2353 nmagic = (u_long)p[2] << 24 |
2354 (u_long)p[3] << 16 | p[4] << 8 | p[5];
2355 if (nmagic != sp->lcp.magic) {
2358 addlog("0x%lx ", nmagic);
2361 if (debug && sp->pp_loopcnt < MAXALIVECNT*5)
2362 addlog("[glitch] ");
2365 * We negate our magic here, and NAK it. If
2366 * we see it later in an NAK packet, we
2367 * suggest a new one.
2369 nmagic = ~sp->lcp.magic;
2371 p[2] = nmagic >> 24;
2372 p[3] = nmagic >> 16;
2377 case LCP_OPT_ASYNC_MAP:
2379 * Async control character map -- just ignore it.
2381 * Quote from RFC 1662, chapter 6:
2382 * To enable this functionality, synchronous PPP
2383 * implementations MUST always respond to the
2384 * Async-Control-Character-Map Configuration
2385 * Option with the LCP Configure-Ack. However,
2386 * acceptance of the Configuration Option does
2387 * not imply that the synchronous implementation
2388 * will do any ACCM mapping. Instead, all such
2389 * octet mapping will be performed by the
2390 * asynchronous-to-synchronous converter.
2396 * Maximum receive unit. Always agreeable,
2397 * but ignored by now.
2399 sp->lcp.their_mru = p[2] * 256 + p[3];
2401 addlog("%lu ", sp->lcp.their_mru);
2404 case LCP_OPT_AUTH_PROTO:
2405 authproto = (p[2] << 8) + p[3];
2406 if (sp->myauth.proto != authproto) {
2407 /* not agreed, nak */
2409 addlog("[mine %s != his %s] ",
2410 sppp_proto_name(sp->hisauth.proto),
2411 sppp_proto_name(authproto));
2412 p[2] = sp->myauth.proto >> 8;
2413 p[3] = sp->myauth.proto;
2416 if (authproto == PPP_CHAP && p[4] != CHAP_MD5) {
2418 addlog("[chap not MD5] ");
2424 /* Add the option to nak'ed list. */
2431 * Local and remote magics equal -- loopback?
2433 if (sp->pp_loopcnt >= MAXALIVECNT*5) {
2434 if (sp->pp_loopcnt == MAXALIVECNT*5)
2435 printf (SPP_FMT "loopback\n",
2437 if (ifp->if_flags & IFF_UP) {
2439 IF_DRAIN(&sp->pp_cpq);
2444 } else if (++sp->fail_counter[IDX_LCP] >= sp->lcp.max_failure) {
2446 addlog(" max_failure (%d) exceeded, "
2448 sp->lcp.max_failure);
2449 sppp_cp_send(sp, PPP_LCP, CONF_REJ, h->ident, rlen, buf);
2452 addlog(" send conf-nak\n");
2453 sppp_cp_send (sp, PPP_LCP, CONF_NAK, h->ident, rlen, buf);
2457 addlog(" send conf-ack\n");
2458 sp->fail_counter[IDX_LCP] = 0;
2460 sppp_cp_send (sp, PPP_LCP, CONF_ACK,
2461 h->ident, origlen, h+1);
2469 * Analyze the LCP Configure-Reject option list, and adjust our
2473 sppp_lcp_RCN_rej(struct sppp *sp, struct lcp_header *h, int len)
2479 buf = malloc (len, M_TEMP, M_INTWAIT);
2482 log(LOG_DEBUG, SPP_FMT "lcp rej opts: ",
2486 for (; len > 1 && p[1]; len -= p[1], p += p[1]) {
2488 addlog(" %s ", sppp_lcp_opt_name(*p));
2491 /* Magic number -- can't use it, use 0 */
2492 sp->lcp.opts &= ~(1 << LCP_OPT_MAGIC);
2497 * Should not be rejected anyway, since we only
2498 * negotiate a MRU if explicitly requested by
2501 sp->lcp.opts &= ~(1 << LCP_OPT_MRU);
2503 case LCP_OPT_AUTH_PROTO:
2505 * Peer doesn't want to authenticate himself,
2506 * deny unless this is a dialout call, and
2507 * AUTHFLAG_NOCALLOUT is set.
2509 if ((sp->pp_flags & PP_CALLIN) == 0 &&
2510 (sp->hisauth.flags & AUTHFLAG_NOCALLOUT) != 0) {
2512 addlog("[don't insist on auth "
2514 sp->lcp.opts &= ~(1 << LCP_OPT_AUTH_PROTO);
2518 addlog("[access denied]\n");
2530 * Analyze the LCP Configure-NAK option list, and adjust our
2534 sppp_lcp_RCN_nak(struct sppp *sp, struct lcp_header *h, int len)
2541 buf = malloc (len, M_TEMP, M_INTWAIT);
2544 log(LOG_DEBUG, SPP_FMT "lcp nak opts: ",
2548 for (; len > 1 && p[1]; len -= p[1], p += p[1]) {
2550 addlog(" %s ", sppp_lcp_opt_name(*p));
2553 /* Magic number -- renegotiate */
2554 if ((sp->lcp.opts & (1 << LCP_OPT_MAGIC)) &&
2555 len >= 6 && p[1] == 6) {
2556 magic = (u_long)p[2] << 24 |
2557 (u_long)p[3] << 16 | p[4] << 8 | p[5];
2559 * If the remote magic is our negated one,
2560 * this looks like a loopback problem.
2561 * Suggest a new magic to make sure.
2563 if (magic == ~sp->lcp.magic) {
2565 addlog("magic glitch ");
2566 #if defined(__DragonFly__)
2567 sp->lcp.magic = random();
2569 sp->lcp.magic = time.tv_sec + time.tv_usec;
2572 sp->lcp.magic = magic;
2574 addlog("%lu ", magic);
2580 * Peer wants to advise us to negotiate an MRU.
2581 * Agree on it if it's reasonable, or use
2582 * default otherwise.
2584 if (len >= 4 && p[1] == 4) {
2585 u_int mru = p[2] * 256 + p[3];
2588 if (mru < PP_MTU || mru > PP_MAX_MRU)
2591 sp->lcp.opts |= (1 << LCP_OPT_MRU);
2594 case LCP_OPT_AUTH_PROTO:
2596 * Peer doesn't like our authentication method,
2600 addlog("[access denied]\n");
2612 sppp_lcp_tlu(struct sppp *sp)
2619 if (! (ifp->if_flags & IFF_UP) &&
2620 (ifp->if_flags & IFF_RUNNING)) {
2621 /* Coming out of loopback mode. */
2623 printf (SPP_FMT "up\n", SPP_ARGS(ifp));
2626 for (i = 0; i < IDX_COUNT; i++)
2627 if ((cps[i])->flags & CP_QUAL)
2630 if ((sp->lcp.opts & (1 << LCP_OPT_AUTH_PROTO)) != 0 ||
2631 (sp->pp_flags & PP_NEEDAUTH) != 0)
2632 sp->pp_phase = PHASE_AUTHENTICATE;
2634 sp->pp_phase = PHASE_NETWORK;
2637 log(LOG_DEBUG, SPP_FMT "phase %s\n", SPP_ARGS(ifp),
2638 sppp_phase_name(sp->pp_phase));
2641 * Open all authentication protocols. This is even required
2642 * if we already proceeded to network phase, since it might be
2643 * that remote wants us to authenticate, so we might have to
2644 * send a PAP request. Undesired authentication protocols
2645 * don't do anything when they get an Open event.
2647 for (i = 0; i < IDX_COUNT; i++)
2648 if ((cps[i])->flags & CP_AUTH)
2651 if (sp->pp_phase == PHASE_NETWORK) {
2652 /* Notify all NCPs. */
2653 for (i = 0; i < IDX_COUNT; i++)
2654 if (((cps[i])->flags & CP_NCP) &&
2657 * Hack to administratively disable IPv6 if
2658 * not desired. Perhaps we should have another
2659 * flag for this, but right now, we can make
2660 * all struct cp's read/only.
2662 (cps[i] != &ipv6cp ||
2663 (sp->confflags & CONF_ENABLE_IPV6)))
2667 /* Send Up events to all started protos. */
2668 for (i = 0, mask = 1; i < IDX_COUNT; i++, mask <<= 1)
2669 if ((sp->lcp.protos & mask) && ((cps[i])->flags & CP_LCP) == 0)
2672 /* notify low-level driver of state change */
2674 sp->pp_chg(sp, (int)sp->pp_phase);
2676 if (sp->pp_phase == PHASE_NETWORK)
2677 /* if no NCP is starting, close down */
2678 sppp_lcp_check_and_close(sp);
2682 sppp_lcp_tld(struct sppp *sp)
2688 sp->pp_phase = PHASE_TERMINATE;
2691 log(LOG_DEBUG, SPP_FMT "phase %s\n", SPP_ARGS(ifp),
2692 sppp_phase_name(sp->pp_phase));
2695 * Take upper layers down. We send the Down event first and
2696 * the Close second to prevent the upper layers from sending
2697 * ``a flurry of terminate-request packets'', as the RFC
2700 for (i = 0, mask = 1; i < IDX_COUNT; i++, mask <<= 1)
2701 if ((sp->lcp.protos & mask) && ((cps[i])->flags & CP_LCP) == 0) {
2703 (cps[i])->Close(sp);
2708 sppp_lcp_tls(struct sppp *sp)
2712 sp->pp_phase = PHASE_ESTABLISH;
2715 log(LOG_DEBUG, SPP_FMT "phase %s\n", SPP_ARGS(ifp),
2716 sppp_phase_name(sp->pp_phase));
2718 /* Notify lower layer if desired. */
2726 sppp_lcp_tlf(struct sppp *sp)
2730 sp->pp_phase = PHASE_DEAD;
2732 log(LOG_DEBUG, SPP_FMT "phase %s\n", SPP_ARGS(ifp),
2733 sppp_phase_name(sp->pp_phase));
2735 /* Notify lower layer if desired. */
2743 sppp_lcp_scr(struct sppp *sp)
2745 char opt[6 /* magicnum */ + 4 /* mru */ + 5 /* chap */];
2749 if (sp->lcp.opts & (1 << LCP_OPT_MAGIC)) {
2750 if (! sp->lcp.magic)
2751 #if defined(__DragonFly__)
2752 sp->lcp.magic = random();
2754 sp->lcp.magic = time.tv_sec + time.tv_usec;
2756 opt[i++] = LCP_OPT_MAGIC;
2758 opt[i++] = sp->lcp.magic >> 24;
2759 opt[i++] = sp->lcp.magic >> 16;
2760 opt[i++] = sp->lcp.magic >> 8;
2761 opt[i++] = sp->lcp.magic;
2764 if (sp->lcp.opts & (1 << LCP_OPT_MRU)) {
2765 opt[i++] = LCP_OPT_MRU;
2767 opt[i++] = sp->lcp.mru >> 8;
2768 opt[i++] = sp->lcp.mru;
2771 if (sp->lcp.opts & (1 << LCP_OPT_AUTH_PROTO)) {
2772 authproto = sp->hisauth.proto;
2773 opt[i++] = LCP_OPT_AUTH_PROTO;
2774 opt[i++] = authproto == PPP_CHAP? 5: 4;
2775 opt[i++] = authproto >> 8;
2776 opt[i++] = authproto;
2777 if (authproto == PPP_CHAP)
2778 opt[i++] = CHAP_MD5;
2781 sp->confid[IDX_LCP] = ++sp->pp_seq[IDX_LCP];
2782 sppp_cp_send (sp, PPP_LCP, CONF_REQ, sp->confid[IDX_LCP], i, &opt);
2786 * Check the open NCPs, return true if at least one NCP is open.
2789 sppp_ncp_check(struct sppp *sp)
2793 for (i = 0, mask = 1; i < IDX_COUNT; i++, mask <<= 1)
2794 if ((sp->lcp.protos & mask) && (cps[i])->flags & CP_NCP)
2800 * Re-check the open NCPs and see if we should terminate the link.
2801 * Called by the NCPs during their tlf action handling.
2804 sppp_lcp_check_and_close(struct sppp *sp)
2807 if (sp->pp_phase < PHASE_NETWORK)
2808 /* don't bother, we are already going down */
2811 if (sppp_ncp_check(sp))
2818 *--------------------------------------------------------------------------*
2820 * The IPCP implementation. *
2822 *--------------------------------------------------------------------------*
2826 sppp_ipcp_init(struct sppp *sp)
2830 sp->state[IDX_IPCP] = STATE_INITIAL;
2831 sp->fail_counter[IDX_IPCP] = 0;
2832 sp->pp_seq[IDX_IPCP] = 0;
2833 sp->pp_rseq[IDX_IPCP] = 0;
2834 #if defined(__DragonFly__)
2835 callout_init(&sp->timeout[IDX_IPCP]);
2840 sppp_ipcp_up(struct sppp *sp)
2842 sppp_up_event(&ipcp, sp);
2846 sppp_ipcp_down(struct sppp *sp)
2848 sppp_down_event(&ipcp, sp);
2852 sppp_ipcp_open(struct sppp *sp)
2855 u_long myaddr, hisaddr;
2857 sp->ipcp.flags &= ~(IPCP_HISADDR_SEEN | IPCP_MYADDR_SEEN |
2858 IPCP_MYADDR_DYN | IPCP_VJ);
2861 sppp_get_ip_addrs(sp, &myaddr, &hisaddr, 0);
2863 * If we don't have his address, this probably means our
2864 * interface doesn't want to talk IP at all. (This could
2865 * be the case if somebody wants to speak only IPX, for
2866 * example.) Don't open IPCP in this case.
2868 if (hisaddr == 0L) {
2869 /* XXX this message should go away */
2871 log(LOG_DEBUG, SPP_FMT "ipcp_open(): no IP interface\n",
2877 * I don't have an assigned address, so i need to
2878 * negotiate my address.
2880 sp->ipcp.flags |= IPCP_MYADDR_DYN;
2881 sp->ipcp.opts |= (1 << IPCP_OPT_ADDRESS);
2883 sp->ipcp.flags |= IPCP_MYADDR_SEEN;
2884 if (sp->confflags & CONF_ENABLE_VJ) {
2885 sp->ipcp.opts |= (1 << IPCP_OPT_COMPRESSION);
2886 sp->ipcp.max_state = MAX_STATES - 1;
2887 sp->ipcp.compress_cid = 1;
2889 sppp_open_event(&ipcp, sp);
2893 sppp_ipcp_close(struct sppp *sp)
2895 sppp_close_event(&ipcp, sp);
2896 if (sp->ipcp.flags & IPCP_MYADDR_DYN)
2898 * My address was dynamic, clear it again.
2900 sppp_set_ip_addr(sp, 0L);
2904 sppp_ipcp_TO(void *cookie)
2906 sppp_to_event(&ipcp, (struct sppp *)cookie);
2910 * Analyze a configure request. Return true if it was agreeable, and
2911 * caused action sca, false if it has been rejected or nak'ed, and
2912 * caused action scn. (The return value is used to make the state
2913 * transition decision in the state automaton.)
2916 sppp_ipcp_RCR(struct sppp *sp, struct lcp_header *h, int len)
2918 u_char *buf, *r, *p;
2919 struct ifnet *ifp = &sp->pp_if;
2920 int rlen, origlen, debug = ifp->if_flags & IFF_DEBUG;
2921 u_long hisaddr, desiredaddr;
2928 * Make sure to allocate a buf that can at least hold a
2929 * conf-nak with an `address' option. We might need it below.
2931 buf = r = malloc ((len < 6? 6: len), M_TEMP, M_INTWAIT);
2933 /* pass 1: see if we can recognize them */
2935 log(LOG_DEBUG, SPP_FMT "ipcp parse opts: ",
2938 for (rlen=0; len>1 && p[1]; len-=p[1], p+=p[1]) {
2940 addlog(" %s ", sppp_ipcp_opt_name(*p));
2942 case IPCP_OPT_COMPRESSION:
2943 if (!(sp->confflags & CONF_ENABLE_VJ)) {
2944 /* VJ compression administratively disabled */
2946 addlog("[locally disabled] ");
2950 * In theory, we should only conf-rej an
2951 * option that is shorter than RFC 1618
2952 * requires (i.e. < 4), and should conf-nak
2953 * anything else that is not VJ. However,
2954 * since our algorithm always uses the
2955 * original option to NAK it with new values,
2956 * things would become more complicated. In
2957 * pratice, the only commonly implemented IP
2958 * compression option is VJ anyway, so the
2959 * difference is negligible.
2961 if (len >= 6 && p[1] == 6) {
2963 * correctly formed compression option
2964 * that could be VJ compression
2969 addlog("optlen %d [invalid/unsupported] ",
2972 case IPCP_OPT_ADDRESS:
2973 if (len >= 6 && p[1] == 6) {
2974 /* correctly formed address option */
2978 addlog("[invalid] ");
2981 /* Others not supported. */
2986 /* Add the option to rejected list. */
2993 addlog(" send conf-rej\n");
2994 sppp_cp_send (sp, PPP_IPCP, CONF_REJ, h->ident, rlen, buf);
2999 /* pass 2: parse option values */
3000 sppp_get_ip_addrs(sp, 0, &hisaddr, 0);
3002 log(LOG_DEBUG, SPP_FMT "ipcp parse opt values: ",
3006 for (rlen=0; len>1 && p[1]; len-=p[1], p+=p[1]) {
3008 addlog(" %s ", sppp_ipcp_opt_name(*p));
3010 case IPCP_OPT_COMPRESSION:
3011 desiredcomp = p[2] << 8 | p[3];
3012 /* We only support VJ */
3013 if (desiredcomp == IPCP_COMP_VJ) {
3015 addlog("VJ [ack] ");
3016 sp->ipcp.flags |= IPCP_VJ;
3017 sl_compress_init(sp->pp_comp, p[4]);
3018 sp->ipcp.max_state = p[4];
3019 sp->ipcp.compress_cid = p[5];
3023 addlog("compproto %#04x [not supported] ",
3025 p[2] = IPCP_COMP_VJ >> 8;
3026 p[3] = IPCP_COMP_VJ;
3027 p[4] = sp->ipcp.max_state;
3028 p[5] = sp->ipcp.compress_cid;
3030 case IPCP_OPT_ADDRESS:
3031 /* This is the address he wants in his end */
3032 desiredaddr = p[2] << 24 | p[3] << 16 |
3034 if (desiredaddr == hisaddr ||
3035 (hisaddr >= 1 && hisaddr <= 254 && desiredaddr != 0)) {
3037 * Peer's address is same as our value,
3038 * or we have set it to 0.0.0.* to
3039 * indicate that we do not really care,
3040 * this is agreeable. Gonna conf-ack
3045 sppp_dotted_quad(hisaddr));
3046 /* record that we've seen it already */
3047 sp->ipcp.flags |= IPCP_HISADDR_SEEN;
3051 * The address wasn't agreeable. This is either
3052 * he sent us 0.0.0.0, asking to assign him an
3053 * address, or he send us another address not
3054 * matching our value. Either case, we gonna
3055 * conf-nak it with our value.
3056 * XXX: we should "rej" if hisaddr == 0
3059 if (desiredaddr == 0)
3060 addlog("[addr requested] ");
3062 addlog("%s [not agreed] ",
3063 sppp_dotted_quad(desiredaddr));
3066 p[2] = hisaddr >> 24;
3067 p[3] = hisaddr >> 16;
3068 p[4] = hisaddr >> 8;
3072 /* Add the option to nak'ed list. */
3079 * If we are about to conf-ack the request, but haven't seen
3080 * his address so far, gonna conf-nak it instead, with the
3081 * `address' option present and our idea of his address being
3082 * filled in there, to request negotiation of both addresses.
3084 * XXX This can result in an endless req - nak loop if peer
3085 * doesn't want to send us his address. Q: What should we do
3086 * about it? XXX A: implement the max-failure counter.
3088 if (rlen == 0 && !(sp->ipcp.flags & IPCP_HISADDR_SEEN) && !gotmyaddr) {
3089 buf[0] = IPCP_OPT_ADDRESS;
3091 buf[2] = hisaddr >> 24;
3092 buf[3] = hisaddr >> 16;
3093 buf[4] = hisaddr >> 8;
3097 addlog("still need hisaddr ");
3102 addlog(" send conf-nak\n");
3103 sppp_cp_send (sp, PPP_IPCP, CONF_NAK, h->ident, rlen, buf);
3106 addlog(" send conf-ack\n");
3107 sppp_cp_send (sp, PPP_IPCP, CONF_ACK,
3108 h->ident, origlen, h+1);
3116 * Analyze the IPCP Configure-Reject option list, and adjust our
3120 sppp_ipcp_RCN_rej(struct sppp *sp, struct lcp_header *h, int len)
3123 struct ifnet *ifp = &sp->pp_if;
3124 int debug = ifp->if_flags & IFF_DEBUG;
3127 buf = malloc (len, M_TEMP, M_INTWAIT);
3130 log(LOG_DEBUG, SPP_FMT "ipcp rej opts: ",
3134 for (; len > 1 && p[1]; len -= p[1], p += p[1]) {
3136 addlog(" %s ", sppp_ipcp_opt_name(*p));
3138 case IPCP_OPT_COMPRESSION:
3139 sp->ipcp.opts &= ~(1 << IPCP_OPT_COMPRESSION);
3141 case IPCP_OPT_ADDRESS:
3143 * Peer doesn't grok address option. This is
3144 * bad. XXX Should we better give up here?
3145 * XXX We could try old "addresses" option...
3147 sp->ipcp.opts &= ~(1 << IPCP_OPT_ADDRESS);
3158 * Analyze the IPCP Configure-NAK option list, and adjust our
3162 sppp_ipcp_RCN_nak(struct sppp *sp, struct lcp_header *h, int len)
3165 struct ifnet *ifp = &sp->pp_if;
3166 int debug = ifp->if_flags & IFF_DEBUG;
3171 buf = malloc (len, M_TEMP, M_INTWAIT);
3174 log(LOG_DEBUG, SPP_FMT "ipcp nak opts: ",
3178 for (; len > 1 && p[1]; len -= p[1], p += p[1]) {
3180 addlog(" %s ", sppp_ipcp_opt_name(*p));
3182 case IPCP_OPT_COMPRESSION:
3183 if (len >= 6 && p[1] == 6) {
3184 desiredcomp = p[2] << 8 | p[3];
3186 addlog("[wantcomp %#04x] ",
3188 if (desiredcomp == IPCP_COMP_VJ) {
3189 sl_compress_init(sp->pp_comp, p[4]);
3190 sp->ipcp.max_state = p[4];
3191 sp->ipcp.compress_cid = p[5];
3196 ~(1 << IPCP_OPT_COMPRESSION);
3199 case IPCP_OPT_ADDRESS:
3201 * Peer doesn't like our local IP address. See
3202 * if we can do something for him. We'll drop
3203 * him our address then.
3205 if (len >= 6 && p[1] == 6) {
3206 wantaddr = p[2] << 24 | p[3] << 16 |
3208 sp->ipcp.opts |= (1 << IPCP_OPT_ADDRESS);
3210 addlog("[wantaddr %s] ",
3211 sppp_dotted_quad(wantaddr));
3213 * When doing dynamic address assignment,
3214 * we accept his offer. Otherwise, we
3215 * ignore it and thus continue to negotiate
3216 * our already existing value.
3217 * XXX: Bogus, if he said no once, he'll
3218 * just say no again, might as well die.
3220 if (sp->ipcp.flags & IPCP_MYADDR_DYN) {
3221 sppp_set_ip_addr(sp, wantaddr);
3224 sp->ipcp.flags |= IPCP_MYADDR_SEEN;
3237 sppp_ipcp_tlu(struct sppp *sp)
3239 /* we are up - notify isdn daemon */
3245 sppp_ipcp_tld(struct sppp *sp)
3250 sppp_ipcp_tls(struct sppp *sp)
3252 /* indicate to LCP that it must stay alive */
3253 sp->lcp.protos |= (1 << IDX_IPCP);
3257 sppp_ipcp_tlf(struct sppp *sp)
3259 /* we no longer need LCP */
3260 sp->lcp.protos &= ~(1 << IDX_IPCP);
3261 sppp_lcp_check_and_close(sp);
3265 sppp_ipcp_scr(struct sppp *sp)
3267 char opt[6 /* compression */ + 6 /* address */];
3271 if (sp->ipcp.opts & (1 << IPCP_OPT_COMPRESSION)) {
3272 opt[i++] = IPCP_OPT_COMPRESSION;
3274 opt[i++] = IPCP_COMP_VJ >> 8;
3275 opt[i++] = IPCP_COMP_VJ;
3276 opt[i++] = sp->ipcp.max_state;
3277 opt[i++] = sp->ipcp.compress_cid;
3279 if (sp->ipcp.opts & (1 << IPCP_OPT_ADDRESS)) {
3280 sppp_get_ip_addrs(sp, &ouraddr, 0, 0);
3281 opt[i++] = IPCP_OPT_ADDRESS;
3283 opt[i++] = ouraddr >> 24;
3284 opt[i++] = ouraddr >> 16;
3285 opt[i++] = ouraddr >> 8;
3289 sp->confid[IDX_IPCP] = ++sp->pp_seq[IDX_IPCP];
3290 sppp_cp_send(sp, PPP_IPCP, CONF_REQ, sp->confid[IDX_IPCP], i, &opt);
3294 *--------------------------------------------------------------------------*
3296 * The IPv6CP implementation. *
3298 *--------------------------------------------------------------------------*
3303 sppp_ipv6cp_init(struct sppp *sp)
3305 sp->ipv6cp.opts = 0;
3306 sp->ipv6cp.flags = 0;
3307 sp->state[IDX_IPV6CP] = STATE_INITIAL;
3308 sp->fail_counter[IDX_IPV6CP] = 0;
3309 sp->pp_seq[IDX_IPV6CP] = 0;
3310 sp->pp_rseq[IDX_IPV6CP] = 0;
3311 #if defined(__NetBSD__)
3312 callout_init(&sp->ch[IDX_IPV6CP]);
3314 #if defined(__DragonFly__)
3315 callout_init(&sp->timeout[IDX_IPV6CP]);
3320 sppp_ipv6cp_up(struct sppp *sp)
3322 sppp_up_event(&ipv6cp, sp);
3326 sppp_ipv6cp_down(struct sppp *sp)
3328 sppp_down_event(&ipv6cp, sp);
3332 sppp_ipv6cp_open(struct sppp *sp)
3335 struct in6_addr myaddr, hisaddr;
3337 #ifdef IPV6CP_MYIFID_DYN
3338 sp->ipv6cp.flags &= ~(IPV6CP_MYIFID_SEEN|IPV6CP_MYIFID_DYN);
3340 sp->ipv6cp.flags &= ~IPV6CP_MYIFID_SEEN;
3343 sppp_get_ip6_addrs(sp, &myaddr, &hisaddr, 0);
3345 * If we don't have our address, this probably means our
3346 * interface doesn't want to talk IPv6 at all. (This could
3347 * be the case if somebody wants to speak only IPX, for
3348 * example.) Don't open IPv6CP in this case.
3350 if (IN6_IS_ADDR_UNSPECIFIED(&myaddr)) {
3351 /* XXX this message should go away */
3353 log(LOG_DEBUG, SPP_FMT "ipv6cp_open(): no IPv6 interface\n",
3358 sp->ipv6cp.flags |= IPV6CP_MYIFID_SEEN;
3359 sp->ipv6cp.opts |= (1 << IPV6CP_OPT_IFID);
3360 sppp_open_event(&ipv6cp, sp);
3364 sppp_ipv6cp_close(struct sppp *sp)
3366 sppp_close_event(&ipv6cp, sp);
3370 sppp_ipv6cp_TO(void *cookie)
3372 sppp_to_event(&ipv6cp, (struct sppp *)cookie);
3376 * Analyze a configure request. Return true if it was agreeable, and
3377 * caused action sca, false if it has been rejected or nak'ed, and
3378 * caused action scn. (The return value is used to make the state
3379 * transition decision in the state automaton.)
3382 sppp_ipv6cp_RCR(struct sppp *sp, struct lcp_header *h, int len)
3384 u_char *buf, *r, *p;
3385 struct ifnet *ifp = &sp->pp_if;
3386 int rlen, origlen, debug = ifp->if_flags & IFF_DEBUG;
3387 struct in6_addr myaddr, desiredaddr, suggestaddr;
3390 int collision, nohisaddr;
3395 * Make sure to allocate a buf that can at least hold a
3396 * conf-nak with an `address' option. We might need it below.
3398 buf = r = malloc ((len < 6? 6: len), M_TEMP, M_INTWAIT);
3400 /* pass 1: see if we can recognize them */
3402 log(LOG_DEBUG, SPP_FMT "ipv6cp parse opts:",
3406 for (rlen=0; len>1 && p[1]; len-=p[1], p+=p[1]) {
3408 addlog(" %s", sppp_ipv6cp_opt_name(*p));
3410 case IPV6CP_OPT_IFID:
3411 if (len >= 10 && p[1] == 10 && ifidcount == 0) {
3412 /* correctly formed address option */
3417 addlog(" [invalid]");
3420 case IPV6CP_OPT_COMPRESSION:
3421 if (len >= 4 && p[1] >= 4) {
3422 /* correctly formed compress option */
3426 addlog(" [invalid]");
3430 /* Others not supported. */
3435 /* Add the option to rejected list. */
3442 addlog(" send conf-rej\n");
3443 sppp_cp_send (sp, PPP_IPV6CP, CONF_REJ, h->ident, rlen, buf);
3448 /* pass 2: parse option values */
3449 sppp_get_ip6_addrs(sp, &myaddr, 0, 0);
3451 log(LOG_DEBUG, SPP_FMT "ipv6cp parse opt values: ",
3456 for (rlen=0; len>1 && p[1]; len-=p[1], p+=p[1]) {
3458 addlog(" %s", sppp_ipv6cp_opt_name(*p));
3461 case IPV6CP_OPT_COMPRESSION:
3464 case IPV6CP_OPT_IFID:
3465 bzero(&desiredaddr, sizeof(desiredaddr));
3466 bcopy(&p[2], &desiredaddr.s6_addr[8], 8);
3467 collision = (bcmp(&desiredaddr.s6_addr[8],
3468 &myaddr.s6_addr[8], 8) == 0);
3469 nohisaddr = IN6_IS_ADDR_UNSPECIFIED(&desiredaddr);
3471 desiredaddr.s6_addr16[0] = htons(0xfe80);
3472 desiredaddr.s6_addr16[1] = htons(sp->pp_if.if_index);
3474 if (!collision && !nohisaddr) {
3475 /* no collision, hisaddr known - Conf-Ack */
3480 ip6_sprintf(&desiredaddr),
3481 sppp_cp_type_name(type));
3486 bzero(&suggestaddr, sizeof(&suggestaddr));
3487 if (collision && nohisaddr) {
3488 /* collision, hisaddr unknown - Conf-Rej */
3493 * - no collision, hisaddr unknown, or
3494 * - collision, hisaddr known
3495 * Conf-Nak, suggest hisaddr
3498 sppp_suggest_ip6_addr(sp, &suggestaddr);
3499 bcopy(&suggestaddr.s6_addr[8], &p[2], 8);
3502 addlog(" %s [%s]", ip6_sprintf(&desiredaddr),
3503 sppp_cp_type_name(type));
3506 /* Add the option to nak'ed list. */
3512 if (rlen == 0 && type == CONF_ACK) {
3514 addlog(" send %s\n", sppp_cp_type_name(type));
3515 sppp_cp_send (sp, PPP_IPV6CP, type, h->ident, origlen, h+1);
3518 if (type == CONF_ACK)
3519 panic("IPv6CP RCR: CONF_ACK with non-zero rlen");
3523 addlog(" send %s suggest %s\n",
3524 sppp_cp_type_name(type), ip6_sprintf(&suggestaddr));
3526 sppp_cp_send (sp, PPP_IPV6CP, type, h->ident, rlen, buf);
3535 * Analyze the IPv6CP Configure-Reject option list, and adjust our
3539 sppp_ipv6cp_RCN_rej(struct sppp *sp, struct lcp_header *h, int len)
3542 struct ifnet *ifp = &sp->pp_if;
3543 int debug = ifp->if_flags & IFF_DEBUG;
3546 buf = malloc (len, M_TEMP, M_INTWAIT);
3549 log(LOG_DEBUG, SPP_FMT "ipv6cp rej opts:",
3553 for (; len > 1 && p[1]; len -= p[1], p += p[1]) {
3555 addlog(" %s", sppp_ipv6cp_opt_name(*p));
3557 case IPV6CP_OPT_IFID:
3559 * Peer doesn't grok address option. This is
3560 * bad. XXX Should we better give up here?
3562 sp->ipv6cp.opts &= ~(1 << IPV6CP_OPT_IFID);
3565 case IPV6CP_OPT_COMPRESS:
3566 sp->ipv6cp.opts &= ~(1 << IPV6CP_OPT_COMPRESS);
3578 * Analyze the IPv6CP Configure-NAK option list, and adjust our
3582 sppp_ipv6cp_RCN_nak(struct sppp *sp, struct lcp_header *h, int len)
3585 struct ifnet *ifp = &sp->pp_if;
3586 int debug = ifp->if_flags & IFF_DEBUG;
3587 struct in6_addr suggestaddr;
3590 buf = malloc (len, M_TEMP, M_INTWAIT);
3593 log(LOG_DEBUG, SPP_FMT "ipv6cp nak opts:",
3597 for (; len > 1 && p[1]; len -= p[1], p += p[1]) {
3599 addlog(" %s", sppp_ipv6cp_opt_name(*p));
3601 case IPV6CP_OPT_IFID:
3603 * Peer doesn't like our local ifid. See
3604 * if we can do something for him. We'll drop
3605 * him our address then.
3607 if (len < 10 || p[1] != 10)
3609 bzero(&suggestaddr, sizeof(suggestaddr));
3610 suggestaddr.s6_addr16[0] = htons(0xfe80);
3611 suggestaddr.s6_addr16[1] = htons(sp->pp_if.if_index);
3612 bcopy(&p[2], &suggestaddr.s6_addr[8], 8);
3614 sp->ipv6cp.opts |= (1 << IPV6CP_OPT_IFID);
3616 addlog(" [suggestaddr %s]",
3617 ip6_sprintf(&suggestaddr));
3618 #ifdef IPV6CP_MYIFID_DYN
3620 * When doing dynamic address assignment,
3621 * we accept his offer.
3623 if (sp->ipv6cp.flags & IPV6CP_MYIFID_DYN) {
3624 struct in6_addr lastsuggest;
3626 * If <suggested myaddr from peer> equals to
3627 * <hisaddr we have suggested last time>,
3628 * we have a collision. generate new random
3631 sppp_suggest_ip6_addr(&lastsuggest);
3632 if (IN6_ARE_ADDR_EQUAL(&suggestaddr,
3635 addlog(" [random]");
3636 sppp_gen_ip6_addr(sp, &suggestaddr);
3638 sppp_set_ip6_addr(sp, &suggestaddr, 0);
3641 sp->ipv6cp.flags |= IPV6CP_MYIFID_SEEN;
3645 * Since we do not do dynamic address assignment,
3646 * we ignore it and thus continue to negotiate
3647 * our already existing value. This can possibly
3648 * go into infinite request-reject loop.
3650 * This is not likely because we normally use
3651 * ifid based on MAC-address.
3652 * If you have no ethernet card on the node, too bad.
3653 * XXX should we use fail_counter?
3658 case IPV6CP_OPT_COMPRESS:
3660 * Peer wants different compression parameters.
3672 sppp_ipv6cp_tlu(struct sppp *sp)
3674 /* we are up - notify isdn daemon */
3680 sppp_ipv6cp_tld(struct sppp *sp)
3685 sppp_ipv6cp_tls(struct sppp *sp)
3687 /* indicate to LCP that it must stay alive */
3688 sp->lcp.protos |= (1 << IDX_IPV6CP);
3692 sppp_ipv6cp_tlf(struct sppp *sp)
3695 #if 0 /* need #if 0 to close IPv6CP properly */
3696 /* we no longer need LCP */
3697 sp->lcp.protos &= ~(1 << IDX_IPV6CP);
3698 sppp_lcp_check_and_close(sp);
3703 sppp_ipv6cp_scr(struct sppp *sp)
3705 char opt[10 /* ifid */ + 4 /* compression, minimum */];
3706 struct in6_addr ouraddr;
3709 if (sp->ipv6cp.opts & (1 << IPV6CP_OPT_IFID)) {
3710 sppp_get_ip6_addrs(sp, &ouraddr, 0, 0);
3711 opt[i++] = IPV6CP_OPT_IFID;
3713 bcopy(&ouraddr.s6_addr[8], &opt[i], 8);
3718 if (sp->ipv6cp.opts & (1 << IPV6CP_OPT_COMPRESSION)) {
3719 opt[i++] = IPV6CP_OPT_COMPRESSION;
3721 opt[i++] = 0; /* TBD */
3722 opt[i++] = 0; /* TBD */
3723 /* variable length data may follow */
3727 sp->confid[IDX_IPV6CP] = ++sp->pp_seq[IDX_IPV6CP];
3728 sppp_cp_send(sp, PPP_IPV6CP, CONF_REQ, sp->confid[IDX_IPV6CP], i, &opt);
3731 static void sppp_ipv6cp_init(struct sppp *sp)
3735 static void sppp_ipv6cp_up(struct sppp *sp)
3739 static void sppp_ipv6cp_down(struct sppp *sp)
3744 static void sppp_ipv6cp_open(struct sppp *sp)
3748 static void sppp_ipv6cp_close(struct sppp *sp)
3752 static void sppp_ipv6cp_TO(void *sp)
3756 static int sppp_ipv6cp_RCR(struct sppp *sp, struct lcp_header *h, int len)
3761 static void sppp_ipv6cp_RCN_rej(struct sppp *sp, struct lcp_header *h, int len)
3765 static void sppp_ipv6cp_RCN_nak(struct sppp *sp, struct lcp_header *h, int len)
3769 static void sppp_ipv6cp_tlu(struct sppp *sp)
3773 static void sppp_ipv6cp_tld(struct sppp *sp)
3777 static void sppp_ipv6cp_tls(struct sppp *sp)
3781 static void sppp_ipv6cp_tlf(struct sppp *sp)
3785 static void sppp_ipv6cp_scr(struct sppp *sp)
3791 *--------------------------------------------------------------------------*
3793 * The CHAP implementation. *
3795 *--------------------------------------------------------------------------*
3799 * The authentication protocols don't employ a full-fledged state machine as
3800 * the control protocols do, since they do have Open and Close events, but
3801 * not Up and Down, nor are they explicitly terminated. Also, use of the
3802 * authentication protocols may be different in both directions (this makes
3803 * sense, think of a machine that never accepts incoming calls but only
3804 * calls out, it doesn't require the called party to authenticate itself).
3806 * Our state machine for the local authentication protocol (we are requesting
3807 * the peer to authenticate) looks like:
3810 * +--------------------------------------------+
3812 * +--------+ Close +---------+ RCA+
3813 * | |<----------------------------------| |------+
3814 * +--->| Closed | TO* | Opened | sca |
3815 * | | |-----+ +-------| |<-----+
3816 * | +--------+ irc | | +---------+
3822 * | | +------->+ | |
3824 * | +--------+ V | |
3825 * | | |<----+<--------------------+ |
3831 * +------+ +------------------------------------------+
3832 * scn,tld sca,irc,ict,tlu
3837 * Open: LCP reached authentication phase
3838 * Close: LCP reached terminate phase
3840 * RCA+: received reply (pap-req, chap-response), acceptable
3841 * RCN: received reply (pap-req, chap-response), not acceptable
3842 * TO+: timeout with restart counter >= 0
3843 * TO-: timeout with restart counter < 0
3844 * TO*: reschedule timeout for CHAP
3846 * scr: send request packet (none for PAP, chap-challenge)
3847 * sca: send ack packet (pap-ack, chap-success)
3848 * scn: send nak packet (pap-nak, chap-failure)
3849 * ict: initialize re-challenge timer (CHAP only)
3851 * tlu: this-layer-up, LCP reaches network phase
3852 * tld: this-layer-down, LCP enters terminate phase
3854 * Note that in CHAP mode, after sending a new challenge, while the state
3855 * automaton falls back into Req-Sent state, it doesn't signal a tld
3856 * event to LCP, so LCP remains in network phase. Only after not getting
3857 * any response (or after getting an unacceptable response), CHAP closes,
3858 * causing LCP to enter terminate phase.
3860 * With PAP, there is no initial request that can be sent. The peer is
3861 * expected to send one based on the successful negotiation of PAP as
3862 * the authentication protocol during the LCP option negotiation.
3864 * Incoming authentication protocol requests (remote requests
3865 * authentication, we are peer) don't employ a state machine at all,
3866 * they are simply answered. Some peers [Ascend P50 firmware rev
3867 * 4.50] react allergically when sending IPCP requests while they are
3868 * still in authentication phase (thereby violating the standard that
3869 * demands that these NCP packets are to be discarded), so we keep
3870 * track of the peer demanding us to authenticate, and only proceed to
3871 * phase network once we've seen a positive acknowledge for the
3876 * Handle incoming CHAP packets.
3879 sppp_chap_input(struct sppp *sp, struct mbuf *m)
3882 struct lcp_header *h;
3884 u_char *value, *name, digest[AUTHKEYLEN], dsize;
3885 int value_len, name_len;
3888 len = m->m_pkthdr.len;
3892 SPP_FMT "chap invalid packet length: %d bytes\n",
3893 SPP_ARGS(ifp), len);
3896 h = mtod (m, struct lcp_header*);
3897 if (len > ntohs (h->len))
3898 len = ntohs (h->len);
3901 /* challenge, failure and success are his authproto */
3902 case CHAP_CHALLENGE:
3903 value = 1 + (u_char*)(h+1);
3904 value_len = value[-1];
3905 name = value + value_len;
3906 name_len = len - value_len - 5;
3910 SPP_FMT "chap corrupted challenge "
3911 "<%s id=0x%x len=%d",
3913 sppp_auth_type_name(PPP_CHAP, h->type),
3914 h->ident, ntohs(h->len));
3915 sppp_print_bytes((u_char*) (h+1), len-4);
3923 SPP_FMT "chap input <%s id=0x%x len=%d name=",
3925 sppp_auth_type_name(PPP_CHAP, h->type), h->ident,
3927 sppp_print_string((char*) name, name_len);
3928 addlog(" value-size=%d value=", value_len);
3929 sppp_print_bytes(value, value_len);
3933 /* Compute reply value. */
3935 MD5Update(&ctx, &h->ident, 1);
3936 MD5Update(&ctx, sp->myauth.secret,
3937 sppp_strnlen(sp->myauth.secret, AUTHKEYLEN));
3938 MD5Update(&ctx, value, value_len);
3939 MD5Final(digest, &ctx);
3940 dsize = sizeof digest;
3942 sppp_auth_send(&chap, sp, CHAP_RESPONSE, h->ident,
3943 sizeof dsize, (const char *)&dsize,
3944 sizeof digest, digest,
3945 (size_t)sppp_strnlen(sp->myauth.name, AUTHNAMELEN),
3952 log(LOG_DEBUG, SPP_FMT "chap success",
3956 sppp_print_string((char*)(h + 1), len - 4);
3963 sp->pp_flags &= ~PP_NEEDAUTH;
3964 if (sp->myauth.proto == PPP_CHAP &&
3965 (sp->lcp.opts & (1 << LCP_OPT_AUTH_PROTO)) &&
3966 (sp->lcp.protos & (1 << IDX_CHAP)) == 0) {
3968 * We are authenticator for CHAP but didn't
3969 * complete yet. Leave it to tlu to proceed
3976 sppp_phase_network(sp);
3981 log(LOG_INFO, SPP_FMT "chap failure",
3985 sppp_print_string((char*)(h + 1), len - 4);
3989 log(LOG_INFO, SPP_FMT "chap failure\n",
3991 /* await LCP shutdown by authenticator */
3994 /* response is my authproto */
3996 value = 1 + (u_char*)(h+1);
3997 value_len = value[-1];
3998 name = value + value_len;
3999 name_len = len - value_len - 5;
4003 SPP_FMT "chap corrupted response "
4004 "<%s id=0x%x len=%d",
4006 sppp_auth_type_name(PPP_CHAP, h->type),
4007 h->ident, ntohs(h->len));
4008 sppp_print_bytes((u_char*)(h+1), len-4);
4013 if (h->ident != sp->confid[IDX_CHAP]) {
4016 SPP_FMT "chap dropping response for old ID "
4017 "(got %d, expected %d)\n",
4019 h->ident, sp->confid[IDX_CHAP]);
4022 if (name_len != sppp_strnlen(sp->hisauth.name, AUTHNAMELEN)
4023 || bcmp(name, sp->hisauth.name, name_len) != 0) {
4024 log(LOG_INFO, SPP_FMT "chap response, his name ",
4026 sppp_print_string(name, name_len);
4027 addlog(" != expected ");
4028 sppp_print_string(sp->hisauth.name,
4029 sppp_strnlen(sp->hisauth.name, AUTHNAMELEN));
4033 log(LOG_DEBUG, SPP_FMT "chap input(%s) "
4034 "<%s id=0x%x len=%d name=",
4036 sppp_state_name(sp->state[IDX_CHAP]),
4037 sppp_auth_type_name(PPP_CHAP, h->type),
4038 h->ident, ntohs (h->len));
4039 sppp_print_string((char*)name, name_len);
4040 addlog(" value-size=%d value=", value_len);
4041 sppp_print_bytes(value, value_len);
4044 if (value_len != AUTHKEYLEN) {
4047 SPP_FMT "chap bad hash value length: "
4048 "%d bytes, should be %d\n",
4049 SPP_ARGS(ifp), value_len,
4055 MD5Update(&ctx, &h->ident, 1);
4056 MD5Update(&ctx, sp->hisauth.secret,
4057 sppp_strnlen(sp->hisauth.secret, AUTHKEYLEN));
4058 MD5Update(&ctx, sp->myauth.challenge, AUTHKEYLEN);
4059 MD5Final(digest, &ctx);
4061 #define FAILMSG "Failed..."
4062 #define SUCCMSG "Welcome!"
4064 if (value_len != sizeof digest ||
4065 bcmp(digest, value, value_len) != 0) {
4066 /* action scn, tld */
4067 sppp_auth_send(&chap, sp, CHAP_FAILURE, h->ident,
4068 sizeof(FAILMSG) - 1, (u_char *)FAILMSG,
4073 /* action sca, perhaps tlu */
4074 if (sp->state[IDX_CHAP] == STATE_REQ_SENT ||
4075 sp->state[IDX_CHAP] == STATE_OPENED)
4076 sppp_auth_send(&chap, sp, CHAP_SUCCESS, h->ident,
4077 sizeof(SUCCMSG) - 1, (u_char *)SUCCMSG,
4079 if (sp->state[IDX_CHAP] == STATE_REQ_SENT) {
4080 sppp_cp_change_state(&chap, sp, STATE_OPENED);
4086 /* Unknown CHAP packet type -- ignore. */
4088 log(LOG_DEBUG, SPP_FMT "chap unknown input(%s) "
4089 "<0x%x id=0x%xh len=%d",
4091 sppp_state_name(sp->state[IDX_CHAP]),
4092 h->type, h->ident, ntohs(h->len));
4093 sppp_print_bytes((u_char*)(h+1), len-4);
4102 sppp_chap_init(struct sppp *sp)
4104 /* Chap doesn't have STATE_INITIAL at all. */
4105 sp->state[IDX_CHAP] = STATE_CLOSED;
4106 sp->fail_counter[IDX_CHAP] = 0;
4107 sp->pp_seq[IDX_CHAP] = 0;
4108 sp->pp_rseq[IDX_CHAP] = 0;
4109 #if defined(__DragonFly__)
4110 callout_init(&sp->timeout[IDX_CHAP]);
4115 sppp_chap_open(struct sppp *sp)
4117 if (sp->myauth.proto == PPP_CHAP &&
4118 (sp->lcp.opts & (1 << LCP_OPT_AUTH_PROTO)) != 0) {
4119 /* we are authenticator for CHAP, start it */
4121 sp->rst_counter[IDX_CHAP] = sp->lcp.max_configure;
4122 sppp_cp_change_state(&chap, sp, STATE_REQ_SENT);
4124 /* nothing to be done if we are peer, await a challenge */
4128 sppp_chap_close(struct sppp *sp)
4130 if (sp->state[IDX_CHAP] != STATE_CLOSED)
4131 sppp_cp_change_state(&chap, sp, STATE_CLOSED);
4135 sppp_chap_TO(void *cookie)
4137 struct sppp *sp = (struct sppp *)cookie;
4143 log(LOG_DEBUG, SPP_FMT "chap TO(%s) rst_counter = %d\n",
4145 sppp_state_name(sp->state[IDX_CHAP]),
4146 sp->rst_counter[IDX_CHAP]);
4148 if (--sp->rst_counter[IDX_CHAP] < 0)
4150 switch (sp->state[IDX_CHAP]) {
4151 case STATE_REQ_SENT:
4153 sppp_cp_change_state(&chap, sp, STATE_CLOSED);
4157 /* TO+ (or TO*) event */
4158 switch (sp->state[IDX_CHAP]) {
4161 sp->rst_counter[IDX_CHAP] = sp->lcp.max_configure;
4163 case STATE_REQ_SENT:
4165 /* sppp_cp_change_state() will restart the timer */
4166 sppp_cp_change_state(&chap, sp, STATE_REQ_SENT);
4174 sppp_chap_tlu(struct sppp *sp)
4180 sp->rst_counter[IDX_CHAP] = sp->lcp.max_configure;
4183 * Some broken CHAP implementations (Conware CoNet, firmware
4184 * 4.0.?) don't want to re-authenticate their CHAP once the
4185 * initial challenge-response exchange has taken place.
4186 * Provide for an option to avoid rechallenges.
4188 if ((sp->hisauth.flags & AUTHFLAG_NORECHALLENGE) == 0) {
4190 * Compute the re-challenge timeout. This will yield
4191 * a number between 300 and 810 seconds.
4193 i = 300 + ((unsigned)(random() & 0xff00) >> 7);
4194 callout_reset(&sp->timeout[IDX_CHAP], i * hz, chap.TO, sp);
4199 SPP_FMT "chap %s, ",
4201 sp->pp_phase == PHASE_NETWORK? "reconfirmed": "tlu");
4202 if ((sp->hisauth.flags & AUTHFLAG_NORECHALLENGE) == 0)
4203 addlog("next re-challenge in %d seconds\n", i);
4205 addlog("re-challenging supressed\n");
4210 /* indicate to LCP that we need to be closed down */
4211 sp->lcp.protos |= (1 << IDX_CHAP);
4213 if (sp->pp_flags & PP_NEEDAUTH) {
4215 * Remote is authenticator, but his auth proto didn't
4216 * complete yet. Defer the transition to network
4226 * If we are already in phase network, we are done here. This
4227 * is the case if this is a dummy tlu event after a re-challenge.
4229 if (sp->pp_phase != PHASE_NETWORK)
4230 sppp_phase_network(sp);
4234 sppp_chap_tld(struct sppp *sp)
4239 log(LOG_DEBUG, SPP_FMT "chap tld\n", SPP_ARGS(ifp));
4240 callout_stop(&sp->timeout[IDX_CHAP]);
4241 sp->lcp.protos &= ~(1 << IDX_CHAP);
4247 sppp_chap_scr(struct sppp *sp)
4252 /* Compute random challenge. */
4253 ch = (u_long *)sp->myauth.challenge;
4254 #if defined(__DragonFly__)
4255 read_random(&seed, sizeof seed);
4260 seed = tv.tv_sec ^ tv.tv_usec;
4263 ch[0] = seed ^ random();
4264 ch[1] = seed ^ random();
4265 ch[2] = seed ^ random();
4266 ch[3] = seed ^ random();
4269 sp->confid[IDX_CHAP] = ++sp->pp_seq[IDX_CHAP];
4271 sppp_auth_send(&chap, sp, CHAP_CHALLENGE, sp->confid[IDX_CHAP],
4272 sizeof clen, (const char *)&clen,
4273 (size_t)AUTHKEYLEN, sp->myauth.challenge,
4274 (size_t)sppp_strnlen(sp->myauth.name, AUTHNAMELEN),
4280 *--------------------------------------------------------------------------*
4282 * The PAP implementation. *
4284 *--------------------------------------------------------------------------*
4287 * For PAP, we need to keep a little state also if we are the peer, not the
4288 * authenticator. This is since we don't get a request to authenticate, but
4289 * have to repeatedly authenticate ourself until we got a response (or the
4290 * retry counter is expired).
4294 * Handle incoming PAP packets. */
4296 sppp_pap_input(struct sppp *sp, struct mbuf *m)
4299 struct lcp_header *h;
4301 u_char *name, *passwd, mlen;
4302 int name_len, passwd_len;
4304 len = m->m_pkthdr.len;
4308 SPP_FMT "pap invalid packet length: %d bytes\n",
4309 SPP_ARGS(ifp), len);
4312 h = mtod (m, struct lcp_header*);
4313 if (len > ntohs (h->len))
4314 len = ntohs (h->len);
4316 /* PAP request is my authproto */
4318 name = 1 + (u_char*)(h+1);
4319 name_len = name[-1];
4320 passwd = name + name_len + 1;
4321 if (name_len > len - 6 ||
4322 (passwd_len = passwd[-1]) > len - 6 - name_len) {
4324 log(LOG_DEBUG, SPP_FMT "pap corrupted input "
4325 "<%s id=0x%x len=%d",
4327 sppp_auth_type_name(PPP_PAP, h->type),
4328 h->ident, ntohs(h->len));
4329 sppp_print_bytes((u_char*)(h+1), len-4);
4335 log(LOG_DEBUG, SPP_FMT "pap input(%s) "
4336 "<%s id=0x%x len=%d name=",
4338 sppp_state_name(sp->state[IDX_PAP]),
4339 sppp_auth_type_name(PPP_PAP, h->type),
4340 h->ident, ntohs(h->len));
4341 sppp_print_string((char*)name, name_len);
4343 sppp_print_string((char*)passwd, passwd_len);
4346 if (name_len != sppp_strnlen(sp->hisauth.name, AUTHNAMELEN) ||
4347 passwd_len != sppp_strnlen(sp->hisauth.secret, AUTHKEYLEN) ||
4348 bcmp(name, sp->hisauth.name, name_len) != 0 ||
4349 bcmp(passwd, sp->hisauth.secret, passwd_len) != 0) {
4350 /* action scn, tld */
4351 mlen = sizeof(FAILMSG) - 1;
4352 sppp_auth_send(&pap, sp, PAP_NAK, h->ident,
4353 sizeof mlen, (const char *)&mlen,
4354 sizeof(FAILMSG) - 1, (u_char *)FAILMSG,
4359 /* action sca, perhaps tlu */
4360 if (sp->state[IDX_PAP] == STATE_REQ_SENT ||
4361 sp->state[IDX_PAP] == STATE_OPENED) {
4362 mlen = sizeof(SUCCMSG) - 1;
4363 sppp_auth_send(&pap, sp, PAP_ACK, h->ident,
4364 sizeof mlen, (const char *)&mlen,
4365 sizeof(SUCCMSG) - 1, (u_char *)SUCCMSG,
4368 if (sp->state[IDX_PAP] == STATE_REQ_SENT) {
4369 sppp_cp_change_state(&pap, sp, STATE_OPENED);
4374 /* ack and nak are his authproto */
4376 callout_stop(&sp->pap_my_to);
4378 log(LOG_DEBUG, SPP_FMT "pap success",
4380 name_len = *((char *)h);
4381 if (len > 5 && name_len) {
4383 sppp_print_string((char*)(h+1), name_len);
4390 sp->pp_flags &= ~PP_NEEDAUTH;
4391 if (sp->myauth.proto == PPP_PAP &&
4392 (sp->lcp.opts & (1 << LCP_OPT_AUTH_PROTO)) &&
4393 (sp->lcp.protos & (1 << IDX_PAP)) == 0) {
4395 * We are authenticator for PAP but didn't
4396 * complete yet. Leave it to tlu to proceed
4407 sppp_phase_network(sp);
4411 callout_stop(&sp->pap_my_to);
4413 log(LOG_INFO, SPP_FMT "pap failure",
4415 name_len = *((char *)h);
4416 if (len > 5 && name_len) {
4418 sppp_print_string((char*)(h+1), name_len);
4422 log(LOG_INFO, SPP_FMT "pap failure\n",
4424 /* await LCP shutdown by authenticator */
4428 /* Unknown PAP packet type -- ignore. */
4430 log(LOG_DEBUG, SPP_FMT "pap corrupted input "
4431 "<0x%x id=0x%x len=%d",
4433 h->type, h->ident, ntohs(h->len));
4434 sppp_print_bytes((u_char*)(h+1), len-4);
4443 sppp_pap_init(struct sppp *sp)
4445 /* PAP doesn't have STATE_INITIAL at all. */
4446 sp->state[IDX_PAP] = STATE_CLOSED;
4447 sp->fail_counter[IDX_PAP] = 0;
4448 sp->pp_seq[IDX_PAP] = 0;
4449 sp->pp_rseq[IDX_PAP] = 0;
4450 #if defined(__DragonFly__)
4451 callout_init(&sp->timeout[IDX_PAP]);
4452 callout_init(&sp->pap_my_to);
4457 sppp_pap_open(struct sppp *sp)
4459 if (sp->hisauth.proto == PPP_PAP &&
4460 (sp->lcp.opts & (1 << LCP_OPT_AUTH_PROTO)) != 0) {
4461 /* we are authenticator for PAP, start our timer */
4462 sp->rst_counter[IDX_PAP] = sp->lcp.max_configure;
4463 sppp_cp_change_state(&pap, sp, STATE_REQ_SENT);
4465 if (sp->myauth.proto == PPP_PAP) {
4466 /* we are peer, send a request, and start a timer */
4468 callout_reset(&sp->pap_my_to, sp->lcp.timeout,
4469 sppp_pap_my_TO, sp);
4474 sppp_pap_close(struct sppp *sp)
4476 if (sp->state[IDX_PAP] != STATE_CLOSED)
4477 sppp_cp_change_state(&pap, sp, STATE_CLOSED);
4481 * That's the timeout routine if we are authenticator. Since the
4482 * authenticator is basically passive in PAP, we can't do much here.
4485 sppp_pap_TO(void *cookie)
4487 struct sppp *sp = (struct sppp *)cookie;
4493 log(LOG_DEBUG, SPP_FMT "pap TO(%s) rst_counter = %d\n",
4495 sppp_state_name(sp->state[IDX_PAP]),
4496 sp->rst_counter[IDX_PAP]);
4498 if (--sp->rst_counter[IDX_PAP] < 0)
4500 switch (sp->state[IDX_PAP]) {
4501 case STATE_REQ_SENT:
4503 sppp_cp_change_state(&pap, sp, STATE_CLOSED);
4507 /* TO+ event, not very much we could do */
4508 switch (sp->state[IDX_PAP]) {
4509 case STATE_REQ_SENT:
4510 /* sppp_cp_change_state() will restart the timer */
4511 sppp_cp_change_state(&pap, sp, STATE_REQ_SENT);
4519 * That's the timeout handler if we are peer. Since the peer is active,
4520 * we need to retransmit our PAP request since it is apparently lost.
4521 * XXX We should impose a max counter.
4524 sppp_pap_my_TO(void *cookie)
4526 struct sppp *sp = (struct sppp *)cookie;
4530 log(LOG_DEBUG, SPP_FMT "pap peer TO\n",
4537 sppp_pap_tlu(struct sppp *sp)
4541 sp->rst_counter[IDX_PAP] = sp->lcp.max_configure;
4544 log(LOG_DEBUG, SPP_FMT "%s tlu\n",
4545 SPP_ARGS(ifp), pap.name);
4549 /* indicate to LCP that we need to be closed down */
4550 sp->lcp.protos |= (1 << IDX_PAP);
4552 if (sp->pp_flags & PP_NEEDAUTH) {
4554 * Remote is authenticator, but his auth proto didn't
4555 * complete yet. Defer the transition to network
4562 sppp_phase_network(sp);
4566 sppp_pap_tld(struct sppp *sp)
4571 log(LOG_DEBUG, SPP_FMT "pap tld\n", SPP_ARGS(ifp));
4572 callout_stop(&sp->timeout[IDX_PAP]);
4573 callout_stop(&sp->pap_my_to);
4574 sp->lcp.protos &= ~(1 << IDX_PAP);
4580 sppp_pap_scr(struct sppp *sp)
4582 u_char idlen, pwdlen;
4584 sp->confid[IDX_PAP] = ++sp->pp_seq[IDX_PAP];
4585 pwdlen = sppp_strnlen(sp->myauth.secret, AUTHKEYLEN);
4586 idlen = sppp_strnlen(sp->myauth.name, AUTHNAMELEN);
4588 sppp_auth_send(&pap, sp, PAP_REQ, sp->confid[IDX_PAP],
4589 sizeof idlen, (const char *)&idlen,
4590 (size_t)idlen, sp->myauth.name,
4591 sizeof pwdlen, (const char *)&pwdlen,
4592 (size_t)pwdlen, sp->myauth.secret,
4597 * Random miscellaneous functions.
4601 * Send a PAP or CHAP proto packet.
4603 * Varadic function, each of the elements for the ellipsis is of type
4604 * ``size_t mlen, const u_char *msg''. Processing will stop iff
4606 * NOTE: never declare variadic functions with types subject to type
4607 * promotion (i.e. u_char). This is asking for big trouble depending
4608 * on the architecture you are on...
4612 sppp_auth_send(const struct cp *cp, struct sppp *sp,
4613 unsigned int type, unsigned int id,
4617 struct ppp_header *h;
4618 struct lcp_header *lh;
4626 MGETHDR (m, MB_DONTWAIT, MT_DATA);
4629 m->m_pkthdr.rcvif = 0;
4631 h = mtod (m, struct ppp_header*);
4632 h->address = PPP_ALLSTATIONS; /* broadcast address */
4633 h->control = PPP_UI; /* Unnumbered Info */
4634 h->protocol = htons(cp->proto);
4636 lh = (struct lcp_header*)(h + 1);
4639 p = (u_char*) (lh+1);
4644 while ((mlen = (unsigned int)__va_arg(ap, size_t)) != 0) {
4645 msg = __va_arg(ap, const char *);
4647 if (len > MHLEN - PPP_HEADER_LEN - LCP_HEADER_LEN) {
4653 bcopy(msg, p, mlen);
4658 m->m_pkthdr.len = m->m_len = PPP_HEADER_LEN + LCP_HEADER_LEN + len;
4659 lh->len = htons (LCP_HEADER_LEN + len);
4662 log(LOG_DEBUG, SPP_FMT "%s output <%s id=0x%x len=%d",
4663 SPP_ARGS(ifp), cp->name,
4664 sppp_auth_type_name(cp->proto, lh->type),
4665 lh->ident, ntohs(lh->len));
4666 sppp_print_bytes((u_char*) (lh+1), len);
4669 if (IF_QFULL (&sp->pp_cpq)) {
4670 IF_DROP (&sp->pp_fastq);
4671 IF_DROP (&ifp->if_snd);
4675 IF_ENQUEUE (&sp->pp_cpq, m);
4676 if (! (ifp->if_flags & IFF_OACTIVE))
4677 (*ifp->if_start) (ifp);
4678 ifp->if_obytes += m->m_pkthdr.len + 3;
4682 * Send keepalive packets, every 10 seconds.
4685 sppp_keepalive(void *dummy)
4691 for (sp=spppq; sp; sp=sp->pp_next) {
4692 struct ifnet *ifp = &sp->pp_if;
4694 /* Keepalive mode disabled or channel down? */
4695 if (! (sp->pp_flags & PP_KEEPALIVE) ||
4696 ! (ifp->if_flags & IFF_RUNNING))
4699 /* No keepalive in PPP mode if LCP not opened yet. */
4700 if (sp->pp_mode != IFF_CISCO &&
4701 sp->pp_phase < PHASE_AUTHENTICATE)
4704 if (sp->pp_alivecnt == MAXALIVECNT) {
4705 /* No keepalive packets got. Stop the interface. */
4706 printf (SPP_FMT "down\n", SPP_ARGS(ifp));
4708 IF_DRAIN(&sp->pp_cpq);
4709 if (sp->pp_mode != IFF_CISCO) {
4711 /* Shut down the PPP link. */
4713 /* Initiate negotiation. XXX */
4717 if (sp->pp_alivecnt <= MAXALIVECNT)
4719 if (sp->pp_mode == IFF_CISCO)
4720 sppp_cisco_send (sp, CISCO_KEEPALIVE_REQ,
4721 ++sp->pp_seq[IDX_LCP], sp->pp_rseq[IDX_LCP]);
4722 else if (sp->pp_phase >= PHASE_AUTHENTICATE) {
4723 long nmagic = htonl (sp->lcp.magic);
4724 sp->lcp.echoid = ++sp->pp_seq[IDX_LCP];
4725 sppp_cp_send (sp, PPP_LCP, ECHO_REQ,
4726 sp->lcp.echoid, 4, &nmagic);
4729 callout_reset(&keepalive_timeout, hz * 10, sppp_keepalive, NULL);
4734 * Get both IP addresses.
4737 sppp_get_ip_addrs(struct sppp *sp, u_long *src, u_long *dst, u_long *srcmask)
4739 struct ifnet *ifp = &sp->pp_if;
4741 struct sockaddr_in *si, *sm;
4747 * Pick the first AF_INET address from the list,
4748 * aliases don't make any sense on a p2p link anyway.
4751 #if defined(__DragonFly__)
4752 TAILQ_FOREACH(ifa, &ifp->if_addrhead, ifa_link)
4753 #elif defined(__NetBSD__) || defined (__OpenBSD__)
4754 for (ifa = ifp->if_addrlist.tqh_first;
4756 ifa = ifa->ifa_list.tqe_next)
4758 for (ifa = ifp->if_addrlist;
4760 ifa = ifa->ifa_next)
4762 if (ifa->ifa_addr->sa_family == AF_INET) {
4763 si = (struct sockaddr_in *)ifa->ifa_addr;
4764 sm = (struct sockaddr_in *)ifa->ifa_netmask;
4769 if (si && si->sin_addr.s_addr) {
4770 ssrc = si->sin_addr.s_addr;
4772 *srcmask = ntohl(sm->sin_addr.s_addr);
4775 si = (struct sockaddr_in *)ifa->ifa_dstaddr;
4776 if (si && si->sin_addr.s_addr)
4777 ddst = si->sin_addr.s_addr;
4780 if (dst) *dst = ntohl(ddst);
4781 if (src) *src = ntohl(ssrc);
4785 * Set my IP address. Must be called at splimp.
4788 sppp_set_ip_addr(struct sppp *sp, u_long src)
4792 struct sockaddr_in *si;
4793 struct in_ifaddr *ia;
4796 * Pick the first AF_INET address from the list,
4797 * aliases don't make any sense on a p2p link anyway.
4800 #if defined(__DragonFly__)
4801 TAILQ_FOREACH(ifa, &ifp->if_addrhead, ifa_link)
4802 #elif defined(__NetBSD__) || defined (__OpenBSD__)
4803 for (ifa = ifp->if_addrlist.tqh_first;
4805 ifa = ifa->ifa_list.tqe_next)
4807 for (ifa = ifp->if_addrlist;
4809 ifa = ifa->ifa_next)
4812 if (ifa->ifa_addr->sa_family == AF_INET)
4814 si = (struct sockaddr_in *)ifa->ifa_addr;
4823 #if __NetBSD_Version__ >= 103080000
4824 struct sockaddr_in new_sin = *si;
4826 new_sin.sin_addr.s_addr = htonl(src);
4827 error = in_ifinit(ifp, ifatoia(ifa), &new_sin, 1);
4830 log(LOG_DEBUG, SPP_FMT "sppp_set_ip_addr: in_ifinit "
4831 " failed, error=%d\n", SPP_ARGS(ifp), error);
4834 /* delete old route */
4835 error = rtinit(ifa, (int)RTM_DELETE, RTF_HOST);
4838 log(LOG_DEBUG, SPP_FMT "sppp_set_ip_addr: rtinit DEL failed, error=%d\n",
4839 SPP_ARGS(ifp), error);
4842 /* set new address */
4843 si->sin_addr.s_addr = htonl(src);
4845 LIST_REMOVE(ia, ia_hash);
4846 LIST_INSERT_HEAD(INADDR_HASH(si->sin_addr.s_addr), ia, ia_hash);
4849 error = rtinit(ifa, (int)RTM_ADD, RTF_HOST);
4852 log(LOG_DEBUG, SPP_FMT "sppp_set_ip_addr: rtinit ADD failed, error=%d",
4853 SPP_ARGS(ifp), error);
4861 * Get both IPv6 addresses.
4864 sppp_get_ip6_addrs(struct sppp *sp, struct in6_addr *src, struct in6_addr *dst,
4865 struct in6_addr *srcmask)
4867 struct ifnet *ifp = &sp->pp_if;
4869 struct sockaddr_in6 *si, *sm;
4870 struct in6_addr ssrc, ddst;
4873 bzero(&ssrc, sizeof(ssrc));
4874 bzero(&ddst, sizeof(ddst));
4876 * Pick the first link-local AF_INET6 address from the list,
4877 * aliases don't make any sense on a p2p link anyway.
4879 #if defined(__DragonFly__)
4881 TAILQ_FOREACH(ifa, &ifp->if_addrhead, ifa_link)
4882 #elif defined(__NetBSD__) || defined (__OpenBSD__)
4883 for (ifa = ifp->if_addrlist.tqh_first, si = 0;
4885 ifa = ifa->ifa_list.tqe_next)
4887 for (ifa = ifp->if_addrlist, si = 0;
4889 ifa = ifa->ifa_next)
4891 if (ifa->ifa_addr->sa_family == AF_INET6) {
4892 si = (struct sockaddr_in6 *)ifa->ifa_addr;
4893 sm = (struct sockaddr_in6 *)ifa->ifa_netmask;
4894 if (si && IN6_IS_ADDR_LINKLOCAL(&si->sin6_addr))
4898 if (si && !IN6_IS_ADDR_UNSPECIFIED(&si->sin6_addr)) {
4899 bcopy(&si->sin6_addr, &ssrc, sizeof(ssrc));
4901 bcopy(&sm->sin6_addr, srcmask,
4906 si = (struct sockaddr_in6 *)ifa->ifa_dstaddr;
4907 if (si && !IN6_IS_ADDR_UNSPECIFIED(&si->sin6_addr))
4908 bcopy(&si->sin6_addr, &ddst, sizeof(ddst));
4912 bcopy(&ddst, dst, sizeof(*dst));
4914 bcopy(&ssrc, src, sizeof(*src));
4917 #ifdef IPV6CP_MYIFID_DYN
4919 * Generate random ifid.
4922 sppp_gen_ip6_addr(struct sppp *sp, struct in6_addr *addr)
4928 * Set my IPv6 address. Must be called at splimp.
4931 sppp_set_ip6_addr(struct sppp *sp, const struct in6_addr *src)
4935 struct sockaddr_in6 *sin6;
4938 * Pick the first link-local AF_INET6 address from the list,
4939 * aliases don't make any sense on a p2p link anyway.
4943 #if defined(__DragonFly__)
4944 TAILQ_FOREACH(ifa, &ifp->if_addrhead, ifa_link)
4945 #elif defined(__NetBSD__) || defined (__OpenBSD__)
4946 for (ifa = ifp->if_addrlist.tqh_first;
4948 ifa = ifa->ifa_list.tqe_next)
4950 for (ifa = ifp->if_addrlist; ifa; ifa = ifa->ifa_next)
4953 if (ifa->ifa_addr->sa_family == AF_INET6)
4955 sin6 = (struct sockaddr_in6 *)ifa->ifa_addr;
4956 if (sin6 && IN6_IS_ADDR_LINKLOCAL(&sin6->sin6_addr))
4964 struct sockaddr_in6 new_sin6 = *sin6;
4966 bcopy(src, &new_sin6.sin6_addr, sizeof(new_sin6.sin6_addr));
4967 error = in6_ifinit(ifp, ifatoia6(ifa), &new_sin6, 1);
4970 log(LOG_DEBUG, SPP_FMT "sppp_set_ip6_addr: in6_ifinit "
4971 " failed, error=%d\n", SPP_ARGS(ifp), error);
4978 * Suggest a candidate address to be used by peer.
4981 sppp_suggest_ip6_addr(struct sppp *sp, struct in6_addr *suggest)
4983 struct in6_addr myaddr;
4986 sppp_get_ip6_addrs(sp, &myaddr, 0, 0);
4988 myaddr.s6_addr[8] &= ~0x02; /* u bit to "local" */
4990 if ((tv.tv_usec & 0xff) == 0 && (tv.tv_sec & 0xff) == 0) {
4991 myaddr.s6_addr[14] ^= 0xff;
4992 myaddr.s6_addr[15] ^= 0xff;
4994 myaddr.s6_addr[14] ^= (tv.tv_usec & 0xff);
4995 myaddr.s6_addr[15] ^= (tv.tv_sec & 0xff);
4998 bcopy(&myaddr, suggest, sizeof(myaddr));
5003 sppp_params(struct sppp *sp, u_long cmd, void *data)
5006 struct ifreq *ifr = (struct ifreq *)data;
5007 struct spppreq *spr;
5010 spr = malloc(sizeof(struct spppreq), M_TEMP, M_INTWAIT);
5013 * ifr->ifr_data is supposed to point to a struct spppreq.
5014 * Check the cmd word first before attempting to fetch all the
5017 if ((subcmd = fuword(ifr->ifr_data)) == -1) {
5022 if (copyin((caddr_t)ifr->ifr_data, spr, sizeof(struct spppreq)) != 0) {
5028 case (int)SPPPIOGDEFS:
5029 if (cmd != SIOCGIFGENERIC) {
5034 * We copy over the entire current state, but clean
5035 * out some of the stuff we don't wanna pass up.
5036 * Remember, SIOCGIFGENERIC is unprotected, and can be
5037 * called by any user. No need to ever get PAP or
5038 * CHAP secrets back to userland anyway.
5040 spr->defs.pp_phase = sp->pp_phase;
5041 spr->defs.enable_vj = (sp->confflags & CONF_ENABLE_VJ) != 0;
5042 spr->defs.enable_ipv6 = (sp->confflags & CONF_ENABLE_IPV6) != 0;
5043 spr->defs.lcp = sp->lcp;
5044 spr->defs.ipcp = sp->ipcp;
5045 spr->defs.ipv6cp = sp->ipv6cp;
5046 spr->defs.myauth = sp->myauth;
5047 spr->defs.hisauth = sp->hisauth;
5048 bzero(spr->defs.myauth.secret, AUTHKEYLEN);
5049 bzero(spr->defs.myauth.challenge, AUTHKEYLEN);
5050 bzero(spr->defs.hisauth.secret, AUTHKEYLEN);
5051 bzero(spr->defs.hisauth.challenge, AUTHKEYLEN);
5053 * Fixup the LCP timeout value to milliseconds so
5054 * spppcontrol doesn't need to bother about the value
5055 * of "hz". We do the reverse calculation below when
5058 spr->defs.lcp.timeout = sp->lcp.timeout * 1000 / hz;
5059 rv = copyout(spr, (caddr_t)ifr->ifr_data,
5060 sizeof(struct spppreq));
5063 case (int)SPPPIOSDEFS:
5064 if (cmd != SIOCSIFGENERIC) {
5069 * We have a very specific idea of which fields we
5070 * allow being passed back from userland, so to not
5071 * clobber our current state. For one, we only allow
5072 * setting anything if LCP is in dead or establish
5073 * phase. Once the authentication negotiations
5074 * started, the authentication settings must not be
5075 * changed again. (The administrator can force an
5076 * ifconfig down in order to get LCP back into dead
5079 * Also, we only allow for authentication parameters to be
5082 * XXX Should allow to set or clear pp_flags.
5084 * Finally, if the respective authentication protocol to
5085 * be used is set differently than 0, but the secret is
5086 * passed as all zeros, we don't trash the existing secret.
5087 * This allows an administrator to change the system name
5088 * only without clobbering the secret (which he didn't get
5089 * back in a previous SPPPIOGDEFS call). However, the
5090 * secrets are cleared if the authentication protocol is
5092 if (sp->pp_phase != PHASE_DEAD &&
5093 sp->pp_phase != PHASE_ESTABLISH) {
5098 if ((spr->defs.myauth.proto != 0 && spr->defs.myauth.proto != PPP_PAP &&
5099 spr->defs.myauth.proto != PPP_CHAP) ||
5100 (spr->defs.hisauth.proto != 0 && spr->defs.hisauth.proto != PPP_PAP &&
5101 spr->defs.hisauth.proto != PPP_CHAP)) {
5106 if (spr->defs.myauth.proto == 0)
5107 /* resetting myauth */
5108 bzero(&sp->myauth, sizeof sp->myauth);
5110 /* setting/changing myauth */
5111 sp->myauth.proto = spr->defs.myauth.proto;
5112 bcopy(spr->defs.myauth.name, sp->myauth.name, AUTHNAMELEN);
5113 if (spr->defs.myauth.secret[0] != '\0')
5114 bcopy(spr->defs.myauth.secret, sp->myauth.secret,
5117 if (spr->defs.hisauth.proto == 0)
5118 /* resetting hisauth */
5119 bzero(&sp->hisauth, sizeof sp->hisauth);
5121 /* setting/changing hisauth */
5122 sp->hisauth.proto = spr->defs.hisauth.proto;
5123 sp->hisauth.flags = spr->defs.hisauth.flags;
5124 bcopy(spr->defs.hisauth.name, sp->hisauth.name, AUTHNAMELEN);
5125 if (spr->defs.hisauth.secret[0] != '\0')
5126 bcopy(spr->defs.hisauth.secret, sp->hisauth.secret,
5129 /* set LCP restart timer timeout */
5130 if (spr->defs.lcp.timeout != 0)
5131 sp->lcp.timeout = spr->defs.lcp.timeout * hz / 1000;
5132 /* set VJ enable and IPv6 disable flags */
5134 if (spr->defs.enable_vj)
5135 sp->confflags |= CONF_ENABLE_VJ;
5137 sp->confflags &= ~CONF_ENABLE_VJ;
5140 if (spr->defs.enable_ipv6)
5141 sp->confflags |= CONF_ENABLE_IPV6;
5143 sp->confflags &= ~CONF_ENABLE_IPV6;
5158 sppp_phase_network(struct sppp *sp)
5164 sp->pp_phase = PHASE_NETWORK;
5167 log(LOG_DEBUG, SPP_FMT "phase %s\n", SPP_ARGS(ifp),
5168 sppp_phase_name(sp->pp_phase));
5170 /* Notify NCPs now. */
5171 for (i = 0; i < IDX_COUNT; i++)
5172 if ((cps[i])->flags & CP_NCP)
5175 /* Send Up events to all NCPs. */
5176 for (i = 0, mask = 1; i < IDX_COUNT; i++, mask <<= 1)
5177 if ((sp->lcp.protos & mask) && ((cps[i])->flags & CP_NCP))
5180 /* if no NCP is starting, all this was in vain, close down */
5181 sppp_lcp_check_and_close(sp);
5186 sppp_cp_type_name(u_char type)
5188 static char buf[12];
5190 case CONF_REQ: return "conf-req";
5191 case CONF_ACK: return "conf-ack";
5192 case CONF_NAK: return "conf-nak";
5193 case CONF_REJ: return "conf-rej";
5194 case TERM_REQ: return "term-req";
5195 case TERM_ACK: return "term-ack";
5196 case CODE_REJ: return "code-rej";
5197 case PROTO_REJ: return "proto-rej";
5198 case ECHO_REQ: return "echo-req";
5199 case ECHO_REPLY: return "echo-reply";
5200 case DISC_REQ: return "discard-req";
5202 snprintf (buf, sizeof(buf), "cp/0x%x", type);
5207 sppp_auth_type_name(u_short proto, u_char type)
5209 static char buf[12];
5213 case CHAP_CHALLENGE: return "challenge";
5214 case CHAP_RESPONSE: return "response";
5215 case CHAP_SUCCESS: return "success";
5216 case CHAP_FAILURE: return "failure";
5220 case PAP_REQ: return "req";
5221 case PAP_ACK: return "ack";
5222 case PAP_NAK: return "nak";
5225 snprintf (buf, sizeof(buf), "auth/0x%x", type);
5230 sppp_lcp_opt_name(u_char opt)
5232 static char buf[12];
5234 case LCP_OPT_MRU: return "mru";
5235 case LCP_OPT_ASYNC_MAP: return "async-map";
5236 case LCP_OPT_AUTH_PROTO: return "auth-proto";
5237 case LCP_OPT_QUAL_PROTO: return "qual-proto";
5238 case LCP_OPT_MAGIC: return "magic";
5239 case LCP_OPT_PROTO_COMP: return "proto-comp";
5240 case LCP_OPT_ADDR_COMP: return "addr-comp";
5242 snprintf (buf, sizeof(buf), "lcp/0x%x", opt);
5247 sppp_ipcp_opt_name(u_char opt)
5249 static char buf[12];
5251 case IPCP_OPT_ADDRESSES: return "addresses";
5252 case IPCP_OPT_COMPRESSION: return "compression";
5253 case IPCP_OPT_ADDRESS: return "address";
5255 snprintf (buf, sizeof(buf), "ipcp/0x%x", opt);
5261 sppp_ipv6cp_opt_name(u_char opt)
5263 static char buf[12];
5265 case IPV6CP_OPT_IFID: return "ifid";
5266 case IPV6CP_OPT_COMPRESSION: return "compression";
5268 sprintf (buf, "0x%x", opt);
5274 sppp_state_name(int state)
5277 case STATE_INITIAL: return "initial";
5278 case STATE_STARTING: return "starting";
5279 case STATE_CLOSED: return "closed";
5280 case STATE_STOPPED: return "stopped";
5281 case STATE_CLOSING: return "closing";
5282 case STATE_STOPPING: return "stopping";
5283 case STATE_REQ_SENT: return "req-sent";
5284 case STATE_ACK_RCVD: return "ack-rcvd";
5285 case STATE_ACK_SENT: return "ack-sent";
5286 case STATE_OPENED: return "opened";
5292 sppp_phase_name(enum ppp_phase phase)
5295 case PHASE_DEAD: return "dead";
5296 case PHASE_ESTABLISH: return "establish";
5297 case PHASE_TERMINATE: return "terminate";
5298 case PHASE_AUTHENTICATE: return "authenticate";
5299 case PHASE_NETWORK: return "network";
5305 sppp_proto_name(u_short proto)
5307 static char buf[12];
5309 case PPP_LCP: return "lcp";
5310 case PPP_IPCP: return "ipcp";
5311 case PPP_PAP: return "pap";
5312 case PPP_CHAP: return "chap";
5313 case PPP_IPV6CP: return "ipv6cp";
5315 snprintf(buf, sizeof(buf), "proto/0x%x", (unsigned)proto);
5320 sppp_print_bytes(const u_char *p, u_short len)
5323 addlog(" %*D", len, p, "-");
5327 sppp_print_string(const char *p, u_short len)
5334 * Print only ASCII chars directly. RFC 1994 recommends
5335 * using only them, but we don't rely on it. */
5336 if (c < ' ' || c > '~')
5344 sppp_dotted_quad(u_long addr)
5347 sprintf(s, "%d.%d.%d.%d",
5348 (int)((addr >> 24) & 0xff),
5349 (int)((addr >> 16) & 0xff),
5350 (int)((addr >> 8) & 0xff),
5351 (int)(addr & 0xff));
5356 sppp_strnlen(u_char *p, int max)
5360 for (len = 0; len < max && *p; ++p)
5365 /* a dummy, used to drop uninteresting events */
5367 sppp_null(struct sppp *unused)
5369 /* do just nothing */
projects / dragonfly.git / blob