Ruslan Ermilov
036f8336fa
mdoc(7) police: replace two -unfilled displays with -tag lists.
...
This works only because of bugs in current implementation: the
first .It after ``.Bd -unfilled'' re-enables filling mode and
does not restore (disable) it back afterwards.
2001-02-07 16:02:21 +00:00
Brian Somers
7f89db65f5
Add a ``Usable'' function to the ccp switch. The function
...
is called prior to sending a CCP configure request for a
given protocol. The default is to send the request, but
this is overridden for MPPE which checks to see if the lcp
negotiations agreed CHAP81, and if not fails.
Use the same function to decide if we should reject peer
requests for MPPE.
This should get rid of those boring messages about not being
able to initialise MPPE when we don't negotiate CHAP81.
2001-02-04 22:53:11 +00:00
Brian Somers
64602637c7
MPPE_MasterKeyValid is only there if HAVE_DES is defined.
2001-02-04 01:20:33 +00:00
Brian Somers
c42627ffff
Don't send an authentication failure response if we fail sending
...
a radius accounting packet.
2001-02-04 01:08:26 +00:00
Brian Somers
019d32bf74
Make the MPPE MasterKey Invalid messages a bit clearer (it now
...
complains that you can't do MPPE without CHAP81).
Reset MasterKeyValid to zero when we hit phase DEAD.
2001-02-04 01:08:24 +00:00
Brian Somers
2fc2f70582
Untangle some cunfusion between the CLOSE_STAYDOWN, CLOSE_LCP and
...
CLOSE_NORMAL meanings. CLOSE_NORMAL doesn't change the currently
required state, the others do. This should stop ppp from entering
DATALINK_READY when LCP shutdown doesn't end up happening cleanly.
Bump our version number to reflect this change.
2001-02-04 01:08:22 +00:00
Brian Somers
728ef5b2b0
Try to kldload if_tun if we get ENOENT from opening /dev/tunN -
...
not just if we get ENXIO.
This makes ppp work with DEVFS when if_tun isn't built into
the kernel (without needing to manually kldload it).
2001-02-02 01:41:26 +00:00
Ruslan Ermilov
610a5778c5
mdoc(7) police: split punctuation characters + misc fixes.
2001-02-01 16:44:04 +00:00
Brian Somers
2525421508
Fix some log_Printf() casting
...
Obtained from: NetBSD (pkgsrc)
2001-01-29 08:46:58 +00:00
Brian Somers
37b8a5c7bd
Only remove socket files with ``set server open''.
...
Only show the mask in ``show bundle'' when it's been specified.
Complain about unexpected arguments after ``set server {none,open,closed}''
Log re-open failures as warnings rather than phase messages.
Fix some markup for the ``set server'' man page description.
2001-01-29 01:35:06 +00:00
Brian Somers
021996f177
Don't pass PacketAliasProxyRule() a buffer with leading whitespace as it
...
can't handle it.
2001-01-28 21:56:27 +00:00
Brian Somers
501fe45f67
Fix arg count
2001-01-26 01:48:16 +00:00
Brian Somers
15c8dc2a03
If executing the stuff from ppp.linkdown results in a state change,
...
don't continue adjusting the ipcp state machine.
This allows ``down'' to work in ppp.linkdown - useful for a tunnel
setup.
2001-01-26 01:43:38 +00:00
Brian Somers
74457d3d43
Allow ``set server closed'' to close the diagnostic socket.
...
Allow ``set server open'' to re-open the diagnostic socket.
Handle SIGUSR1 by re-opening the diagnostic socket
When receiving SIGUSR2 (and in ``set server none''), don't forget the
socket details so that ``set server open'' and SIGUSR1 open it again.
Don't create the diagnostic socket as uid 0 ! It's far to dangerous.
2001-01-26 01:41:34 +00:00
Brian Somers
d8a8ae09ed
Fix for NetBSD where
...
.Oc Oc
.Xc
doesn't seem to work....
2001-01-22 11:35:00 +00:00
Brian Somers
7d39b1e3be
Handle SECDNS being rejected when PRIDNS is not
...
Submitted by: OGAWA Takaya <t-ogawa@triaez.kaisei.org>
PR: 24518
2001-01-22 01:43:46 +00:00
Brian Somers
165fbe2672
Use fstat to check if descriptor 0 is a socket.
...
Suggested by: julian
2001-01-14 00:54:48 +00:00
Brian Somers
12df0d6c58
Log the ``MPPE: MasterKey is invalid...'' message as a CCP
...
diagnostic rather than a warning.
2000-12-29 22:25:56 +00:00
Ruslan Ermilov
8b5c4af3ff
Prepare for mdoc(7)NG.
2000-12-27 15:30:30 +00:00
Ruslan Ermilov
88895b252c
Add a missing dot.
2000-12-15 07:34:01 +00:00
Brian Somers
690a66afb0
Correct the documented default behaviour of mschap, mschap81 and MPPE.
...
Pointed out by: Mark Knight <markk@knigma.org>
2000-12-15 01:09:38 +00:00
Ruslan Ermilov
7a2650d625
mdoc(7) police: use canonical form of .Dd macro.
2000-12-11 15:57:16 +00:00
Brian Somers
723aebe85e
Mention the MTU in ``show iface''.
2000-12-01 03:22:18 +00:00
Brian Somers
c63c8e7638
Call MSCHAP CHAP80 in ``show lcp'' so that it's consistent with CHAP81.
2000-11-29 15:47:35 +00:00
Brian Somers
17aa4afba3
Use only the bit after the ``\'' when hashing the challenge in
...
MSChapv2
Submitted by: Ustimenko Semen <semen@iclub.nsu.ru>
2000-11-28 22:50:40 +00:00
Brian Somers
94d7be5294
Add ``enable/disable tcpmssfixup'', defaulting to enabled.
...
Suggested by: julian
Hijacked from: ru (ports/net/tcpmssd)
2000-11-28 13:18:35 +00:00
Ben Smithurst
aa11a6dde4
various typo and minor punctuation changes.
...
PR: 23111
Submitted by: Jimmy Olgeni <olgeni@uli.it>
2000-11-28 11:35:14 +00:00
Ruslan Ermilov
e97407b4f2
mdoc(7) police: use the new features of the Nm macro.
2000-11-20 20:10:44 +00:00
Brian Somers
b43607b7f2
Some gratuitous whitespace changes.
2000-11-19 16:58:59 +00:00
Brian Somers
a080fda810
Describe how to tunnel properly.
...
Requested by: Greg Quinlan <greg@macquarrie.com.au>
2000-11-19 16:54:57 +00:00
Brian Somers
385167a6b0
Accept MSCHAPv2 by default.
...
Enable and accept MPPE by default.
2000-11-19 16:53:50 +00:00
Brian Somers
80e2e6b62f
Go back to populating data_len in struct ngpppoe_init_data.
2000-11-16 23:15:42 +00:00
Brian Somers
d9374c913e
Be a bit more precise about what ``nat deny_incoming yes'' does.
2000-11-16 21:50:50 +00:00
Brian Somers
9100871e60
Increase M_MAXBUF so that it's greater than HDLCSIZE
2000-11-11 01:31:32 +00:00
Ruslan Ermilov
726b61ab5f
Avoid use of direct troff requests in mdoc(7) manual pages.
2000-11-10 17:46:15 +00:00
Brian Somers
542962ddf9
Introduce another global (MPPE_IsServer) so that we initiate the
...
MPPE session keys correctly.
I'm a bit dubious about this code. It seems that the session keys
are initialised differently based on whether you're the client or
the server. One side is the server if it issues the first challenge,
but of course you can issue a challenge from both sides.... at the
same time. Sounds like another wonderful M$ assumption...
Ppp can now talk to itself correctly using encryption.
Problem solved by: Ustimenko Semen <semen@iclub.nsu.ru>
Hair torn out by: me
2000-11-07 23:19:11 +00:00
Brian Somers
527a86a3ba
Handle being given a connect()ed udp descriptor as stdin rather
...
than assuming it's unconnected.
2000-11-07 04:29:46 +00:00
Brian Somers
e1e8b15e7a
Pass the correct output options to the ccp output initialisation
...
routine rather than passing it the first requested output option.
Ensure that options are freed correctly even if we don't reach
TLU.
2000-11-07 04:29:33 +00:00
Brian Somers
1c25c5e077
Merge some OpenBSD/NetBSD fixes to the recent MPPE/CHAP0x81 update.
2000-11-05 03:25:09 +00:00
Brian Somers
fca09861d8
Don't ignore the return from tcsetattr() - moan about it instead.
...
Suggested by: Andre Albsmeier <andre@akademie3000.de>
2000-10-31 23:27:35 +00:00
Tatsumi Hosokawa
85c2b43f35
Forgotten RELEASE_CRUNCH hack for mppe.c.
...
This fix is for "make release" and "make boot.flp".
2000-10-31 05:00:25 +00:00
Brian Somers
fbf0385368
Use the new-style ngpppoe_init_data structure.
...
Approved by: archie
2000-10-31 02:46:12 +00:00
Brian Somers
58b1e45d5d
Mention that ``nat deny_incoming'' drops unrecognised IP packets.
...
Requested by: kris
2000-10-31 02:25:54 +00:00
Brian Somers
cf881f54ca
Drop PKT_ALIAS_IGNORED packets if ``nat deny_incoming yes'' is in effect.
...
Approved by: rwatson, ru
2000-10-30 18:02:01 +00:00
Brian Somers
7f03ca53aa
Add ``all'' logging.
...
Submitted by: eivind
2000-10-30 00:15:35 +00:00
Brian Somers
2388e045c4
Bump our version to reflect the recent MPPE additions (and ccp struct
...
size change).
2000-10-30 00:15:34 +00:00
Brian Somers
ba6fcad9cf
Move the MPPE keysize display in ``show ccp''.
2000-10-30 00:15:33 +00:00
Brian Somers
9b9967924b
Various whitespace changes.
...
Make some functions static.
2000-10-30 00:15:29 +00:00
Brian Somers
46c20a0ec0
staticise mbuftype()
2000-10-30 00:15:27 +00:00
Brian Somers
a8d604ab74
Add MPPE and MSChap v2 support (denied and disabled by default)
...
Submitted by: Ustimenko Semen <semen@iclub.nsu.ru>
2000-10-30 00:15:04 +00:00