Attachment #121887: ppp-2.4.4-LOCALNAME-auth_fail.patch for bug #180180

			       struct wordlist **, struct wordlist **,

			       struct wordlist **, struct wordlist **,

			       char *, int));

			       char *, int));

static void free_wordlist __P((struct wordlist *));

static void free_wordlist __P((struct wordlist *));

static void auth_script_done __P((void *));

static void auth_script_done __P((void *));

static void set_allowed_addrs __P((int, struct wordlist *, struct wordlist *));

static void set_allowed_addrs __P((int, struct wordlist *, struct wordlist *));

static int  some_ip_ok __P((struct wordlist *));

static int  some_ip_ok __P((struct wordlist *));

	if (auth_script_state == s_up && auth_script_pid == 0) {

	if (auth_script_state == s_up && auth_script_pid == 0) {

	    update_link_stats(unit);

	    update_link_stats(unit);

	    auth_script_state = s_down;

	    auth_script_state = s_down;

	}

	}

    }

    }

    if (!doing_multilink) {

    if (!doing_multilink) {

	auth_state = s_up;

	auth_state = s_up;

	if (auth_script_state == s_down && auth_script_pid == 0) {

	if (auth_script_state == s_down && auth_script_pid == 0) {

	    auth_script_state = s_up;

	    auth_script_state = s_up;

	}

	}

    }

    }

     * Authentication failure: take the link down

     * Authentication failure: take the link down

     */

     */

    status = EXIT_PEER_AUTH_FAILED;

    status = EXIT_PEER_AUTH_FAILED;

    lcp_close(unit, "Authentication failed");

    lcp_close(unit, "Authentication failed");

}

}

     * authentication secrets.

     * authentication secrets.

     */

     */

    status = EXIT_AUTH_TOPEER_FAILED;

    status = EXIT_AUTH_TOPEER_FAILED;

    lcp_close(unit, "Failed to authenticate ourselves to peer");

    lcp_close(unit, "Failed to authenticate ourselves to peer");

}

}

    if (user[0] == 0)

    if (user[0] == 0)

	strlcpy(user, our_name, sizeof(user));

	strlcpy(user, our_name, sizeof(user));

    /*

    /*

     * If we have a default route, require the peer to authenticate

     * If we have a default route, require the peer to authenticate

     * unless the noauth option was given or the real user is root.

     * unless the noauth option was given or the real user is root.

    case s_up:

    case s_up:

	if (auth_state == s_down) {

	if (auth_state == s_down) {

	    auth_script_state = s_down;

	    auth_script_state = s_down;

	}

	}

	break;

	break;

    case s_down:

    case s_down:

	if (auth_state == s_up) {

	if (auth_state == s_up) {

	    auth_script_state = s_up;

	    auth_script_state = s_up;

	}

	}

	break;

	break;

    }

    }

 * interface-name peer-name real-user tty speed

 * interface-name peer-name real-user tty speed

 */

 */

static void

static void

    char *script;

    char *script;

{

{

    char strspeed[32];

    char strspeed[32];

    struct passwd *pw;

    struct passwd *pw;

    argv[5] = strspeed;

    argv[5] = strspeed;

    argv[6] = NULL;

    argv[6] = NULL;

}

}

#define _PATH_IPPREUP	 _ROOT_PATH "/etc/ppp/ip-pre-up"

#define _PATH_IPPREUP	 _ROOT_PATH "/etc/ppp/ip-pre-up"

#define _PATH_AUTHUP	 _ROOT_PATH "/etc/ppp/auth-up"

#define _PATH_AUTHUP	 _ROOT_PATH "/etc/ppp/auth-up"

#define _PATH_AUTHDOWN	 _ROOT_PATH "/etc/ppp/auth-down"

#define _PATH_AUTHDOWN	 _ROOT_PATH "/etc/ppp/auth-down"

#define _PATH_TTYOPT	 _ROOT_PATH "/etc/ppp/options."

#define _PATH_TTYOPT	 _ROOT_PATH "/etc/ppp/options."

#define _PATH_CONNERRS	 _ROOT_PATH "/etc/ppp/connect-errors"

#define _PATH_CONNERRS	 _ROOT_PATH "/etc/ppp/connect-errors"

#define _PATH_PEERFILES	 _ROOT_PATH "/etc/ppp/peers/"

#define _PATH_PEERFILES	 _ROOT_PATH "/etc/ppp/peers/"

Pppd invokes scripts at various stages in its processing which can be

Pppd invokes scripts at various stages in its processing which can be

used to perform site-specific ancillary processing.  These scripts are

used to perform site-specific ancillary processing.  These scripts are

usually shell scripts, but could be executable code files instead.

usually shell scripts, but could be executable code files instead.

executed as root (with the real and effective user-id set to 0), so

executed as root (with the real and effective user-id set to 0), so

that they can do things such as update routing tables or run

that they can do things such as update routing tables or run

privileged daemons.  Be careful that the contents of these scripts do

privileged daemons.  Be careful that the contents of these scripts do

The authenticated name of the peer.  This is only set if the peer

The authenticated name of the peer.  This is only set if the peer

authenticates itself.

authenticates itself.

.TP

.TP

.B SPEED

.B SPEED

The baud rate of the tty device.

The baud rate of the tty device.

.TP

.TP

/etc/ppp/auth\-up was previously executed.  It is executed in the same

/etc/ppp/auth\-up was previously executed.  It is executed in the same

manner with the same parameters as /etc/ppp/auth\-up.

manner with the same parameters as /etc/ppp/auth\-up.

.TP

.TP

.B /etc/ppp/ip\-pre\-up

.B /etc/ppp/ip\-pre\-up

A program or script which is executed just before the ppp network

A program or script which is executed just before the ppp network

interface is brought up.  It is executed with the same parameters as

interface is brought up.  It is executed with the same parameters as