summaryrefslogtreecommitdiffstats
path: root/usr.sbin/npppd (follow)
Commit message (Collapse)AuthorAgeFilesLines
* spellingsyasuoka2021-03-2924-102/+102
| | | | suggested by jsg
* Expand the maximum length for CHAP challenge to 96 octets. npppdyasuoka2021-03-101-2/+2
| | | | | | couldn't handle ICCN message which has a ProxyAuthenChallenge AVP longer than 24 octets. Juniper actually send such challenges. Reported and tested by Ryan Freeman.
* Fix "phone number" spelling.patrick2021-03-101-3/+3
| | | | ok yasuoka@
* Fix some heap over-read in logging in PPTP protocol handler.yasuoka2021-03-052-18/+17
|
* Remove dummy TUNSIFMODE ioctl(2) call from pppac(4) and npppd(8). Sincemvs2021-02-011-13/+2
| | | | | | OpenBSD 6.7 npppd(8) can't work over tun(4). ok yasuoka@
* Remove PIPEX{S,G}MODE ioctl(2) commands. This time they are pretty dummymvs2021-01-021-46/+3
| | | | | | and were kept only for backward compatibility reasons. ok mpi@ yasuoka@
* The result of getifaddrs() not used in pppoed_reload(). Remove it.benno2020-12-301-13/+2
| | | | ok mvs@ kn@
* getifaddrs() can return entries where ifa_addr is NULL. Check for thisbenno2020-12-301-3/+4
| | | | | before accessing anything in ifa_addr. ok claudio@
* getifaddrs() can return entries where ifa_addr is NULL. Check for thisbenno2020-12-301-4/+5
| | | | | before accessing anything in ifa_addr. ok claudio@
* Some times ago we disabled in-kernel timeout for pppx(4) relatedmvs2020-08-091-2/+5
| | | | | | | | | | | | | | pipex(4) sessions. We did this for prevent use after free issue caused by pipex_timer(). By default "idle-timeout" is not set in npppd.conf(5) and I guess this is reason for we forgot to describe this exception in npppd.conf(5). Since it's pppx(4) related bug description was added to BUGS section of pppx(4) man page. npppd.conf(5) has this exception described in "idle-timeout" section. ok jmc@ yasuoka@
* Install npppd.conf(5) with mode 0600 instead of 0640. npppd.conf(5) canmvs2020-06-221-3/+3
| | | | | | store radius passwords and nothing requires it to be group readable. ok yasuoka@
* remove the reference to tun(4), as suggested by kaya saman,jmc2020-06-131-3/+2
| | | | and advised by dlg;
* Prepare buffer for both receive and transmit side so that a client canyasuoka2020-06-092-58/+104
| | | | | use them separately. Actually a version of CISCO does and expects the peer does the same. Also fix some typos.
* replace examples of "Ic arg Ic arg" with "Ic arg arg" and stop the spread;jmc2020-04-231-3/+3
|
* Put the interface down if the kernel fails to enable pipex.mpi2020-04-011-3/+7
| | | | | | | | | This is necessary to not silently continue if pppx_ioctl() returns an error. Found out by and diff from Vitaliy Makkoveev. ok yasuoka@
* do not Xr both pppx and pppac in SEE ALSO, since they are the same page;jmc2020-01-231-2/+1
|
* use pppac(4) instead of tun(4)dlg2020-01-232-12/+12
|
* allow npppd to use pppac(4) (once i wire it up)dlg2020-01-231-20/+17
|
* More correction of section 3 layout. directory->opendir, fts->fts_open,deraadt2019-09-021-5/+5
| | | | | getcap->cgetent. pwcache->user_from_uid. And then repair references. ok jmc
* Delete superfluous #includes of <ifaddrs.h>, <net/if_dl.h>, and <net/if_enc.h>guenther2019-05-104-12/+8
| | | | ok krw@, jsg@
* macro fix;jmc2019-04-081-3/+3
|
* fix some cases of spaces before full stops, where none were neccessary;jmc2019-03-101-3/+3
|
* remove unused includesdenis2019-02-2710-29/+18
| | | | OK yasuoka@
* errror -> error in log messages; from alessandro gallojmc2019-02-222-6/+6
|
* fix attribute namedenis2019-02-201-3/+3
|
* (unsigned) means (unsigned int) which on ptrdiff_t or size_t or otherderaadt2019-02-131-3/+3
| | | | | | larger types really is a range reduction... Almost any cast to (unsigned) is a bug. ok millert tb benno
* PF_ROUTE -> AF_ROUTE in the scattered sock()/setsockopt() callskrw2019-01-221-2/+2
| | | | | | where the "wrong" #define was used. ok dlg@
* Delete unnecessary <libgen.h> #includesguenther2018-12-301-3/+2
| | | | ok deraadt@
* - odd condition/test in PF lexersashan2018-11-011-2/+3
| | | | | | | | | | | | | | (and other lexers too) This commit rectifies earlier change: in the lex... even inside quotes, a \ followed by space or tab should expand to space or tab, and a \ followed by newline should be ignored (as a line continuation). compatible with the needs of hoststated (which has the most strict quoted string requirements), and ifstated (where one commonly does line continuations in strings). OK deraadt@, OK millert@
* Fix the prefix length of the IP address in the error message which showsyasuoka2018-07-251-3/+3
| | | | | failure of assigning requested IP address on IPCP, it was mistakenly "-1" on little endians. Found by IIJ.
* No need to mention which memory allocation entry point failed (malloc,krw2018-07-091-4/+4
| | | | | | | | | calloc or strdup), we just need to log that we ran out of memory in a particular function. Recommended by florian@ and deraadt@ ok benno@ henning@ tb@
* Be consistent in warn() and log_warn() usage whenkrw2018-07-081-3/+3
| | | | | | | | running out of memory. Next step, be correct *and* consistent. ok dennis@ tb@ benno@ schwarze@
* remove the SECTIONS header, since a one line DESCRIPTION is a bit silly;jmc2018-06-181-4/+4
| | | | | | | use a more general text for the sections, and avoid the catchup issue that was trying to document how many there were; ok benno rob
* Consistently spell "IPsec" in comments and debug outputs.mpi2018-03-161-3/+3
| | | | From Raf Czlonka, ok sthen@
* Remove useless <sys/socketvar.h> includes.mpi2018-01-051-2/+1
| | | | ok kettenis@, visa@, claudio@, deraadt@
* The problem when npppd receives a zero length 1701/udp packet seemed toyasuoka2017-10-061-3/+3
| | | | be fixed at 1.16, but it wasn't fixed. Fix it again.
* add a new option to set limits on max-sessions each IPCP.goda2017-08-126-10/+148
| | | | | | | It can set limits on different max-sessions if there're using several protocols such as PPPoE and L2TP/IPsec. ok yasuoka@
* add a new option to set limits on user-max-sessions each AUTHENTICATION.goda2017-08-118-22/+60
| | | | | | | It can set limits on different user-max-sessions if there're using several protocols such as PPPoE and L2TP/IPsec. ok yasuoka@
* display MRU each sessions in npppctl session commandgoda2017-08-112-2/+4
| | | | ok yasuoka@
* man pages with pseudo synopses which list filenames end up creatingjmc2017-07-131-4/+7
| | | | | | | | | | very ugly output in man -k; after some discussion with ingo, we feel the simplest fix is to remove such SYNOPSIS sections: the info is hardly helpful at page top, is contained already in FILES, and there are sufficiently few that just zapping them is simple; ok schwarze, who also helpfully ran things through a build to check output;
* no need to generate y.tab.h if nothing uses it, set YFLAGS to nothingespie2017-07-031-1/+2
| | | | | | instead of CLEANFILES += y.tab.h okay millert@
* Remove never used ifdefs, define FATAL macro properly and define functionyasuoka2017-05-303-153/+31
| | | | parameters in modern way.
* Stop using __P macro.yasuoka2017-05-3011-129/+114
|
* Switch base tools from /dev/bpf0 to /dev/bpf. Now that /dev/bpf has beennatano2017-04-192-5/+5
| | | | | | around for two releases, it should be safe to do so. ok bluhm deraadt sthen tb yasuoka
* Warn if pipex(4) is disabled but the configuration uses it.yasuoka2017-04-181-5/+19
|
* Delete #include lines which are unnecessary.yasuoka2017-04-181-9/+2
|
* From a syslog perspective it does not make sense to log fatal andbluhm2017-03-211-6/+6
| | | | | | warn with the same severity. Switch log_warn() to LOG_ERR and keep fatal() at LOG_CRIT. OK reyk@ florian@
* The default for the strip-nt-domain attribute is "yes", so fix uppatrick2017-02-221-3/+3
| | | | | | the manpage to not tell lies. ok yasuoka@
* Delete lines which are misleading and unneeded.yasuoka2017-02-221-5/+2
| | | | spotted patrick
* Stop using "DEBUG" make variable for extra debugs.yasuoka2017-02-211-11/+10
|
Copyright © 1996 – 2023 Jason A. Donenfeld. All Rights Reverse Engineered.