Date: Sun, 16 Jun 2002 18:12:38 -0700 (PDT) From: Brian Somers <brian@FreeBSD.org> To: cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: cvs commit: src/usr.sbin/ppp chap.c chap.h pap.c radius.c radius.h Message-ID: <200206170112.g5H1Ccr90923@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
brian 2002/06/16 18:12:38 PDT
Modified files:
usr.sbin/ppp chap.c chap.h pap.c radius.c radius.h
Log:
Compensate for dodgy Win98/WinME MSCHAPv2 responses later in the code
path... after we've talked to any RADIUS servers involved, so that we
haven't touched the data before it gets to the server.
Make it clearer in the code that this compensation is done by setting
a flag to a value of zero, a flag which rfc2759 says *MUST* be zero.
While we're here, don't bother passing the peer challenge into
radius_Authenticate(). It's already part of the key we're passing in
(this becomes obvious now that I've structured that data...).
This ``fix'' doesn't help to authenticate Win98/WinME users in my test
environment as ports/net/freeradius seems to ignore the flag
completely anyway, but it may help with other RADIUS servers.
Revision Changes Path
1.83 +17 -15 src/usr.sbin/ppp/chap.c
1.22 +7 -0 src/usr.sbin/ppp/chap.h
1.50 +1 -1 src/usr.sbin/ppp/pap.c
1.34 +8 -12 src/usr.sbin/ppp/radius.c
1.14 +1 -1 src/usr.sbin/ppp/radius.h
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200206170112.g5H1Ccr90923>