Date: Thu, 27 Jun 2002 02:52:34 -0700 (PDT) From: Reto Trachsel <reto.trachsel@netmodule.com> To: freebsd-gnats-submit@FreeBSD.org Subject: bin/39918: Userland PPP - CHAP and PAP are swaped Message-ID: <200206270952.g5R9qYT6069441@www.freebsd.org>
next in thread | raw e-mail | index | archive | help
>Number: 39918
>Category: bin
>Synopsis: Userland PPP - CHAP and PAP are swaped
>Confidential: no
>Severity: serious
>Priority: medium
>Responsible: freebsd-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: sw-bug
>Submitter-Id: current-users
>Arrival-Date: Thu Jun 27 03:00:11 PDT 2002
>Closed-Date:
>Last-Modified:
>Originator: Reto Trachsel
>Release: FreeBSD 4.5-STABLE
>Organization:
Netmodule AG
>Environment:
FreeBSD jona.pacific 4.5-STABLE FreeBSD 4.5-STABLE #1: Wed Apr 3 11:36:12 CEST 2002 root@jona.pacific:/usr/src/sys/compile/JONA i386
>Description:
Connection with userland ppp ( /usr/sbin/ppp ) to a PPP Server. The LCP Options are set as:
-----
ppp ON jona> show lcp
deflink: LCP [Initial]
his side: MRU 1500, ACCMAP ffffffff, PROTOCOMP off, ACFCOMP off,
MAGIC 00000000, MRRU 0, SHORTSEQ off, REJECT 0000
my side: MRU 1500, ACCMAP 00000000, PROTOCOMP on, ACFCOMP on,
MAGIC 1445eca3, MRRU 0, SHORTSEQ off, REJECT 0000
Defaults: MRU = any (max 2048), MTU = any (max 2048), ACCMAP = 00000000
LQR period = 30s, Open Mode = active (delay 1s)
FSM retry = 3s, max 5 Config REQs, 5 Term REQs
Ident:
Negotiation:
ACFCOMP = disabled & denied
CHAP = disabled & denied
CHAP80 = disabled & denied
LANMan = disabled & denied
CHAP81 = disabled & denied
LQR = disabled & denied
PAP = disabled & accepted
PROTOCOMP = disabled & denied
-----
-> Only PAP is enabled.
If i try to connect to the PPP Server, the log of the userland ppp shows, that the pap option was rejected. The channel can't build up.
On the PPP Server (an Embedded System with serveral log an diagnostic monitors, the options are false! The userland ppp send a chap option instead ofthe pap option! The same behavour the other way.
If the PPP Server provide PAP/CHAP negotiation, the userland ppp log shows the LCP PAP Authentification, but in effect, on the PPP Link the CHAP Auth proto is used (MD5 hasches!).
>How-To-Repeat:
Try to connect to a CHAP only PPP-Server with the userland ppp (LCP Option: Only CHAP activated) -> NO connection available.
Try to connect to a PAP only PPP-Server with ths userland ppp (LCP Option: Only PAP activated) -> NO connection available.
>Fix:
Set the correct options in the userland ppp (deny/accept || enable|disable)
>Release-Note:
>Audit-Trail:
>Unformatted:
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-bugs" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200206270952.g5R9qYT6069441>