| blob | 0786a2e81cf9a04537939e75d73a8ce44af5371e |
1 /*****************************************************************************
2 * auth.c - Network Authentication and Phase Control program file.
3 *
4 * Copyright (c) 2003 by Marc Boucher, Services Informatiques (MBSI) inc.
5 * Copyright (c) 1997 by Global Election Systems Inc. All rights reserved.
6 *
7 * The authors hereby grant permission to use, copy, modify, distribute,
8 * and license this software and its documentation for any purpose, provided
9 * that existing copyright notices are retained in all copies and that this
10 * notice and the following disclaimer are included verbatim in any
11 * distributions. No written agreement, license, or royalty fee is required
12 * for any of the authorized uses.
13 *
14 * THIS SOFTWARE IS PROVIDED BY THE CONTRIBUTORS *AS IS* AND ANY EXPRESS OR
15 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
16 * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
17 * IN NO EVENT SHALL THE CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT,
18 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
19 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
20 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
21 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
22 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
23 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
24 *
25 ******************************************************************************
26 * REVISION HISTORY
27 *
28 * 03-01-01 Marc Boucher <marc@mbsi.ca>
29 * Ported to lwIP.
30 * 97-12-08 Guy Lancaster <lancasterg@acm.org>, Global Election Systems Inc.
31 * Ported from public pppd code.
32 *****************************************************************************/
33 /*
34 * auth.c - PPP authentication and phase control.
35 *
36 * Copyright (c) 1993 The Australian National University.
37 * All rights reserved.
38 *
39 * Redistribution and use in source and binary forms are permitted
40 * provided that the above copyright notice and this paragraph are
41 * duplicated in all such forms and that any documentation,
42 * advertising materials, and other materials related to such
43 * distribution and use acknowledge that the software was developed
44 * by the Australian National University. The name of the University
45 * may not be used to endorse or promote products derived from this
46 * software without specific prior written permission.
47 * THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR
48 * IMPLIED WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED
49 * WARRANTIES OF MERCHANTIBILITY AND FITNESS FOR A PARTICULAR PURPOSE.
50 *
51 * Copyright (c) 1989 Carnegie Mellon University.
52 * All rights reserved.
53 *
54 * Redistribution and use in source and binary forms are permitted
55 * provided that the above copyright notice and this paragraph are
56 * duplicated in all such forms and that any documentation,
57 * advertising materials, and other materials related to such
58 * distribution and use acknowledge that the software was developed
59 * by Carnegie Mellon University. The name of the
60 * University may not be used to endorse or promote products derived
61 * from this software without specific prior written permission.
62 * THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR
63 * IMPLIED WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED
64 * WARRANTIES OF MERCHANTIBILITY AND FITNESS FOR A PARTICULAR PURPOSE.
65 */
68 #if PPP_SUPPORT > 0
76 #if CBCP_SUPPORT > 0
78 #endif
83 /*************************/
84 /*** LOCAL DEFINITIONS ***/
85 /*************************/
87 /* Bits in auth_pending[] */
88 #define PAP_WITHPEER 1
89 #define PAP_PEER 2
90 #define CHAP_WITHPEER 4
91 #define CHAP_PEER 8
95 /************************/
96 /*** LOCAL DATA TYPES ***/
97 /************************/
98 /* Used for storing a sequence of words. Usually malloced. */
102 };
106 /***********************************/
107 /*** LOCAL FUNCTION DECLARATIONS ***/
108 /***********************************/
111 /* Prototypes for procedures local to this file. */
116 #if 0
118 #endif
128 #endif
129 #if CBCP_SUPPORT > 0
131 #endif
134 /******************************/
135 /*** PUBLIC DATA STRUCTURES ***/
136 /******************************/
139 /*****************************/
140 /*** LOCAL DATA STRUCTURES ***/
141 /*****************************/
142 #if PAP_SUPPORT > 0 || CHAP_SUPPORT > 0
143 /* The name by which the peer authenticated itself to us. */
145 #endif
147 /* Records which authentication operations haven't completed yet. */
150 /* Set if we have successfully called login() */
153 /* Set if we have run the /etc/ppp/auth-up script. */
156 /* List of addresses which the peer may use. */
159 /* Number of network protocols which we have opened. */
162 /* Number of network protocols which have come up. */
165 #if PAP_SUPPORT > 0 || CHAP_SUPPORT > 0
166 /* Set if we got the contents of passwd[] from the pap-secrets file. */
168 #endif
172 /***********************************/
173 /*** PUBLIC FUNCTION DEFINITIONS ***/
174 /***********************************/
175 /*
176 * An Open on LCP has requested a change from Dead to Establish phase.
177 * Do what's necessary to bring the physical layer up.
178 */
180 {
182 }
184 /*
185 * LCP has terminated the link; go to the Dead phase and take the
186 * physical layer down.
187 */
189 {
199 }
201 /*
202 * LCP has gone down; it will either die or try to re-establish.
203 */
205 {
211 /* XXX Do link down processing. */
213 }
221 }
227 }
229 /*
230 * The link is established.
231 * Proceed to the Dead, Authenticate or Network phase as appropriate.
232 */
234 {
240 #if PAP_SUPPORT > 0 || CHAP_SUPPORT > 0
242 #endif
245 /*
246 * Tell higher-level protocols that LCP is up.
247 */
254 /*
255 * We wanted the peer to authenticate itself, and it refused:
256 * treat it as though it authenticated with PAP using a username
257 * of "" and a password of "". If that's not OK, boot it out.
258 */
263 }
264 }
268 #if CHAP_SUPPORT > 0
272 }
273 #endif
274 #if PAP_SUPPORT > 0 && CHAP_SUPPORT > 0
275 else
276 #endif
277 #if PAP_SUPPORT > 0
281 }
282 #endif
283 #if CHAP_SUPPORT > 0
287 }
288 #endif
289 #if PAP_SUPPORT > 0 && CHAP_SUPPORT > 0
290 else
291 #endif
292 #if PAP_SUPPORT > 0
298 }
301 }
302 #endif
307 }
310 /*
311 * The peer has failed to authenticate himself using `protocol'.
312 */
314 {
316 /*
317 * Authentication failure: take the link down
318 */
320 }
323 #if PAP_SUPPORT > 0 || CHAP_SUPPORT > 0
324 /*
325 * The peer has been successfully authenticated using `protocol'.
326 */
328 {
341 protocol));
343 }
345 /*
346 * Save the authenticated name of the peer for later.
347 */
353 /*
354 * If there is no more authentication still to be done,
355 * proceed to the network (or callback) phase.
356 */
359 }
361 /*
362 * We have failed to authenticate ourselves to the peer using `protocol'.
363 */
365 {
371 /*
372 * XXX Warning: the unit number indicates the interface which is
373 * not necessarily the PPP connection. It works here as long
374 * as we are only supporting PPP interfaces.
375 */
378 /*
379 * We've failed to authenticate ourselves to our peer.
380 * He'll probably take the link down, and there's not much
381 * we can do except wait for that.
382 */
383 }
385 /*
386 * We have successfully authenticated ourselves with the peer using `protocol'.
387 */
389 {
404 protocol));
406 }
408 /*
409 * If there is no more authentication still being done,
410 * proceed to the network (or callback) phase.
411 */
414 }
415 #endif
418 /*
419 * np_up - a network protocol has come up.
420 */
422 {
425 AUTHDEBUG((LOG_INFO, "np_up: maxconnect=%d idle_time_limit=%d\n",ppp_settings.maxconnect,ppp_settings.idle_time_limit));
426 /*
427 * At this point we consider that the link has come up successfully.
428 */
432 /*
433 * Set a timeout to close the connection once the maximum
434 * connect time has expired.
435 */
438 }
440 }
442 /*
443 * np_down - a network protocol has gone down.
444 */
446 {
450 }
451 }
453 /*
454 * np_finished - a network protocol has finished using the link.
455 */
457 {
460 /* no further use for the link: shut up shop. */
462 }
463 }
465 /*
466 * auth_reset - called when LCP is starting negotiations to recheck
467 * authentication options, i.e. whether we have appropriate secrets
468 * to use for authenticating ourselves and/or the peer.
469 */
471 {
475 u32_t remote;
478 ao->neg_upap = !ppp_settings.refuse_pap && (ppp_settings.passwd[0] != 0 || get_pap_passwd(unit, NULL, NULL));
479 ao->neg_chap = !ppp_settings.refuse_chap && ppp_settings.passwd[0] != 0 /*have_chap_secret(ppp_settings.user, ppp_settings.remote_name, (u32_t)0)*/;
487 }
488 }
491 #if PAP_SUPPORT > 0
492 /*
493 * check_passwd - Check the user name and passwd against the PAP secrets
494 * file. If requested, also check against the system password database,
495 * and login the user if OK.
496 *
497 * returns:
498 * UPAP_AUTHNAK: Authentication failed.
499 * UPAP_AUTHACK: Authentication succeeded.
500 * In either case, msg points to an appropriate message.
501 */
510 )
511 {
512 #if 1
515 #else
522 /*
523 * Make copies of apasswd and auser, then null-terminate them.
524 */
531 /* XXX Validate user name and password. */
538 /*
539 * Frustrate passwd stealer programs.
540 * Allow 10 tries, but start backing off after 3 (stolen from login).
541 * On 10'th, drop the connection.
542 */
545 /*ppp_panic("Excess Bad Logins");*/
546 }
549 }
552 }
559 }
565 #endif
566 }
567 #endif
570 /*
571 * auth_ip_addr - check whether the peer is authorized to use
572 * a given IP address. Returns 1 if authorized, 0 otherwise.
573 */
575 {
577 }
579 /*
580 * bad_ip_adrs - return 1 if the IP address is one we don't want
581 * to use, such as an address in the loopback net or a multicast address.
582 * addr is in network byte order.
583 */
585 {
589 }
592 #if CHAP_SUPPORT > 0
593 /*
594 * get_secret - open the CHAP secret file and return the secret
595 * for authenticating the given client on the given server.
596 * (We could be either client or server).
597 */
604 int save_addrs
605 )
606 {
607 #if 1
615 }
621 }
626 #else
634 /* XXX Find secret. */
645 }
651 #endif
652 }
653 #endif
657 /*
658 * auth_check_options - called to check authentication options.
659 */
661 {
665 u32_t remote;
667 /* Default our_name to hostname, and user to our_name */
673 /* If authentication is required, ask peer for CHAP or PAP. */
677 }
679 /*
680 * Check whether we have appropriate secrets to use
681 * to authenticate the peer.
682 */
687 }
691 }
692 }
693 #endif
696 /**********************************/
697 /*** LOCAL FUNCTION DEFINITIONS ***/
698 /**********************************/
699 /*
700 * Proceed to the network phase.
701 */
703 {
708 /*
709 * If the peer had to authenticate, run the auth-up script now.
710 */
712 /* XXX Do setup for peer authentication. */
714 }
716 #if CBCP_SUPPORT > 0
717 /*
718 * If we negotiated callback, do it now.
719 */
724 }
725 #endif
734 }
737 /* nothing to do */
739 }
741 /*
742 * check_idle - check whether the link has been idle for long
743 * enough that we can shut it down.
744 */
746 {
748 u_short itime;
755 /* link is idle: shut it down. */
760 }
761 }
763 /*
764 * connect_time_expired - log a message and close the connection.
765 */
767 {
772 }
774 #if 0
775 /*
776 * login - Check the user name and password against the system
777 * password database, and login the user if OK.
778 *
779 * returns:
780 * UPAP_AUTHNAK: Login failed.
781 * UPAP_AUTHACK: Login succeeded.
782 * In either case, msg points to an appropriate message.
783 */
785 {
786 /* XXX Fail until we decide that we want to support logins. */
788 }
789 #endif
791 /*
792 * logout - Logout the user.
793 */
795 {
797 }
800 /*
801 * null_login - Check if a username of "" and a password of "" are
802 * acceptable, and iff so, set the list of acceptable IP addresses
803 * and return 1.
804 */
806 {
808 /* XXX Fail until we decide that we want to support logins. */
810 }
813 /*
814 * get_pap_passwd - get a password for authenticating ourselves with
815 * our peer using PAP. Returns 1 on success, 0 if no suitable password
816 * could be found.
817 */
819 {
820 /* normally we would reject PAP if no password is provided,
821 but this causes problems with some providers (like CHT in Taiwan)
822 who incorrectly request PAP and expect a bogus/empty password, so
823 always provide a default user/passwd of "none"/"none"
824 */
831 }
834 /*
835 * have_pap_secret - check whether we have a PAP file with any
836 * secrets that we could possibly use for authenticating the peer.
837 */
839 {
840 /* XXX Fail until we set up our passwords. */
842 }
845 /*
846 * have_chap_secret - check whether we have a CHAP file with a
847 * secret that we could possibly use for authenticating `client'
848 * on `server'. Either can be the null string, meaning we don't
849 * know the identity yet.
850 */
852 {
856 /* XXX Fail until we set up our passwords. */
858 }
862 /*
863 * set_allowed_addrs() - set the list of allowed addresses.
864 */
866 {
871 #if 0
872 /*
873 * If there's only one authorized address we might as well
874 * ask our peer for that one right away
875 */
879 u32_t a;
887 else
891 }
892 }
893 #endif
894 }
895 #endif
898 {
900 /* don't allow loopback or multicast address */
907 /* XXX All other addresses allowed. */
909 }
912 /*
913 * free_wordlist - release memory allocated for a wordlist.
914 */
916 {
923 }
924 }
925 #endif