2 * options.c - handles option processing for PPP.
4 * Copyright (c) 1989 Carnegie Mellon University.
7 * Redistribution and use in source and binary forms are permitted
8 * provided that the above copyright notice and this paragraph are
9 * duplicated in all such forms and that any documentation,
10 * advertising materials, and other materials related to such
11 * distribution and use acknowledge that the software was developed
12 * by Carnegie Mellon University. The name of the
13 * University may not be used to endorse or promote products derived
14 * from this software without specific prior written permission.
15 * THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR
16 * IMPLIED WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED
17 * WARRANTIES OF MERCHANTIBILITY AND FITNESS FOR A PARTICULAR PURPOSE.
21 static char rcsid[] = "$Id: options.c,v 1.35 1996/09/26 06:22:22 paulus Exp $";
35 #include <sys/types.h>
37 #include <netinet/in.h>
38 #include <arpa/inet.h>
41 #include "pathnames.h"
42 #include "patchlevel.h"
52 #endif /* IPX_CHANGE */
54 #include <net/ppp-comp.h>
59 #if defined(ultrix) || defined(NeXT)
60 char *strdup __P((char *));
64 #define GIDSET_TYPE gid_t
68 * Option variables and default values.
70 int debug = 0; /* Debug flag */
71 int kdebugflag = 0; /* Tell kernel to print debug messages */
72 int default_device = 1; /* Using /dev/tty or equivalent */
73 char devnam[MAXPATHLEN] = "/dev/tty"; /* Device name */
74 int crtscts = 0; /* Use hardware flow control */
75 int modem = 1; /* Use modem control lines */
76 int inspeed = 0; /* Input/Output speed requested */
77 u_int32_t netmask = 0; /* IP netmask to set on interface */
78 int lockflag = 0; /* Create lock file to lock the serial dev */
79 int nodetach = 0; /* Don't detach from controlling tty */
80 char *connector = NULL; /* Script to establish physical link */
81 char *disconnector = NULL; /* Script to disestablish physical link */
82 char *welcomer = NULL; /* Script to run after phys link estab. */
83 int maxconnect = 0; /* Maximum connect time */
84 char user[MAXNAMELEN]; /* Username for PAP */
85 char passwd[MAXSECRETLEN]; /* Password for PAP */
86 int auth_required = 0; /* Peer is required to authenticate */
87 int defaultroute = 0; /* assign default route through interface */
88 int proxyarp = 0; /* Set up proxy ARP entry for peer */
89 int persist = 0; /* Reopen link after it goes down */
90 int uselogin = 0; /* Use /etc/passwd for checking PAP */
91 int lcp_echo_interval = 0; /* Interval between LCP echo-requests */
92 int lcp_echo_fails = 0; /* Tolerance to unanswered echo-requests */
93 char our_name[MAXNAMELEN]; /* Our name for authentication purposes */
94 char remote_name[MAXNAMELEN]; /* Peer's name for authentication */
95 int usehostname = 0; /* Use hostname for our_name */
96 int disable_defaultip = 0; /* Don't use hostname for default IP adrs */
97 int demand = 0; /* do dial-on-demand */
98 char *ipparam = NULL; /* Extra parameter for ip up/down scripts */
99 int cryptpap; /* Passwords in pap-secrets are encrypted */
100 int idle_time_limit = 0; /* Disconnect if idle for this many seconds */
101 int holdoff = 30; /* # seconds to pause before reconnecting */
102 int refuse_pap = 0; /* Set to say we won't do PAP */
103 int refuse_chap = 0; /* Set to say we won't do CHAP */
105 struct option_info auth_req_info;
106 struct option_info connector_info;
107 struct option_info disconnector_info;
108 struct option_info welcomer_info;
109 struct option_info devnam_info;
114 static int setdevname __P((char *, int));
115 static int setipaddr __P((char *));
116 static int setdebug __P((void));
117 static int setkdebug __P((char **));
118 static int setpassive __P((void));
119 static int setsilent __P((void));
120 static int noopt __P((void));
121 static int setnovj __P((void));
122 static int setnovjccomp __P((void));
123 static int setvjslots __P((char **));
124 static int reqpap __P((void));
125 static int nopap __P((void));
127 static int setupapfile __P((char **));
129 static int nochap __P((void));
130 static int reqchap __P((void));
131 static int setspeed __P((char *));
132 static int noaccomp __P((void));
133 static int noasyncmap __P((void));
134 static int noip __P((void));
135 static int nomagicnumber __P((void));
136 static int setasyncmap __P((char **));
137 static int setescape __P((char **));
138 static int setmru __P((char **));
139 static int setmtu __P((char **));
140 static int nomru __P((void));
141 static int nopcomp __P((void));
142 static int setconnector __P((char **));
143 static int setdisconnector __P((char **));
144 static int setwelcomer __P((char **));
145 static int setmaxconnect __P((char **));
146 static int setdomain __P((char **));
147 static int setnetmask __P((char **));
148 static int setcrtscts __P((void));
149 static int setnocrtscts __P((void));
150 static int setxonxoff __P((void));
151 static int setnodetach __P((void));
152 static int setmodem __P((void));
153 static int setlocal __P((void));
154 static int setlock __P((void));
155 static int setname __P((char **));
156 static int setuser __P((char **));
157 static int setremote __P((char **));
158 static int setauth __P((void));
159 static int setnoauth __P((void));
160 static int readfile __P((char **));
161 static int callfile __P((char **));
162 static int setdefaultroute __P((void));
163 static int setnodefaultroute __P((void));
164 static int setproxyarp __P((void));
165 static int setnoproxyarp __P((void));
166 static int setpersist __P((void));
167 static int setnopersist __P((void));
168 static int setdologin __P((void));
169 static int setusehostname __P((void));
170 static int setnoipdflt __P((void));
171 static int setlcptimeout __P((char **));
172 static int setlcpterm __P((char **));
173 static int setlcpconf __P((char **));
174 static int setlcpfails __P((char **));
175 static int setipcptimeout __P((char **));
176 static int setipcpterm __P((char **));
177 static int setipcpconf __P((char **));
178 static int setipcpfails __P((char **));
179 static int setpaptimeout __P((char **));
180 static int setpapreqs __P((char **));
181 static int setpapreqtime __P((char **));
182 static int setchaptimeout __P((char **));
183 static int setchapchal __P((char **));
184 static int setchapintv __P((char **));
185 static int setipcpaccl __P((void));
186 static int setipcpaccr __P((void));
187 static int setlcpechointv __P((char **));
188 static int setlcpechofails __P((char **));
189 static int noccp __P((void));
190 static int setbsdcomp __P((char **));
191 static int setnobsdcomp __P((void));
192 static int setdeflate __P((char **));
193 static int setnodeflate __P((void));
194 static int setdemand __P((void));
195 static int setpred1comp __P((void));
196 static int setnopred1comp __P((void));
197 static int setipparam __P((char **));
198 static int setpapcrypt __P((void));
199 static int setidle __P((char **));
200 static int setholdoff __P((char **));
201 static int setdnsaddr __P((char **));
204 static int setipxproto __P((void));
205 static int resetipxproto __P((void));
206 static int setipxanet __P((void));
207 static int setipxalcl __P((void));
208 static int setipxarmt __P((void));
209 static int setipxnetwork __P((char **));
210 static int setipxnode __P((char **));
211 static int setipxrouter __P((char **));
212 static int setipxname __P((char **));
213 static int setipxcptimeout __P((char **));
214 static int setipxcpterm __P((char **));
215 static int setipxcpconf __P((char **));
216 static int setipxcpfails __P((char **));
217 #endif /* IPX_CHANGE */
219 static int number_option __P((char *, u_int32_t *, int));
220 static int int_option __P((char *, int *));
221 static int readable __P((int fd));
231 {"-all", 0, noopt}, /* Don't request/allow any options (useless) */
232 {"noaccomp", 0, noaccomp}, /* Disable Address/Control compression */
233 {"-ac", 0, noaccomp}, /* Disable Address/Control compress */
234 {"default-asyncmap", 0, noasyncmap}, /* Disable asyncmap negoatiation */
235 {"-am", 0, noasyncmap}, /* Disable asyncmap negotiation */
236 {"-as", 1, setasyncmap}, /* set the desired async map */
237 {"-d", 0, setdebug}, /* Increase debugging level */
238 {"nodetach", 0, setnodetach}, /* Don't detach from controlling tty */
239 {"-detach", 0, setnodetach}, /* don't fork */
240 {"noip", 0, noip}, /* Disable IP and IPCP */
241 {"-ip", 0, noip}, /* Disable IP and IPCP */
242 {"nomagic", 0, nomagicnumber}, /* Disable magic number negotiation */
243 {"-mn", 0, nomagicnumber}, /* Disable magic number negotiation */
244 {"default-mru", 0, nomru}, /* Disable MRU negotiation */
245 {"-mru", 0, nomru}, /* Disable mru negotiation */
246 {"-p", 0, setpassive}, /* Set passive mode */
247 {"nopcomp", 0, nopcomp}, /* Disable protocol field compression */
248 {"-pc", 0, nopcomp}, /* Disable protocol field compress */
250 {"+ua", 1, setupapfile}, /* Get PAP user and password from file */
252 {"require-pap", 0, reqpap}, /* Require PAP authentication from peer */
253 {"+pap", 0, reqpap}, /* Require PAP auth from peer */
254 {"refuse-pap", 0, nopap}, /* Don't agree to auth to peer with PAP */
255 {"-pap", 0, nopap}, /* Don't allow UPAP authentication with peer */
256 {"require-chap", 0, reqchap}, /* Require CHAP authentication from peer */
257 {"+chap", 0, reqchap}, /* Require CHAP authentication from peer */
258 {"refuse-chap", 0, nochap}, /* Don't agree to auth to peer with CHAP */
259 {"-chap", 0, nochap}, /* Don't allow CHAP authentication with peer */
260 {"novj", 0, setnovj}, /* Disable VJ compression */
261 {"-vj", 0, setnovj}, /* disable VJ compression */
262 {"novjccomp", 0, setnovjccomp}, /* disable VJ connection-ID compression */
263 {"-vjccomp", 0, setnovjccomp}, /* disable VJ connection-ID compression */
264 {"vj-max-slots", 1, setvjslots}, /* Set maximum VJ header slots */
265 {"asyncmap", 1, setasyncmap}, /* set the desired async map */
266 {"escape", 1, setescape}, /* set chars to escape on transmission */
267 {"connect", 1, setconnector}, /* A program to set up a connection */
268 {"disconnect", 1, setdisconnector}, /* program to disconnect serial dev. */
269 {"welcome", 1, setwelcomer},/* Script to welcome client */
270 {"maxconnect", 1, setmaxconnect}, /* specify a maximum connect time */
271 {"crtscts", 0, setcrtscts}, /* set h/w flow control */
272 {"nocrtscts", 0, setnocrtscts}, /* clear h/w flow control */
273 {"-crtscts", 0, setnocrtscts}, /* clear h/w flow control */
274 {"xonxoff", 0, setxonxoff}, /* set s/w flow control */
275 {"debug", 0, setdebug}, /* Increase debugging level */
276 {"kdebug", 1, setkdebug}, /* Enable kernel-level debugging */
277 {"domain", 1, setdomain}, /* Add given domain name to hostname*/
278 {"mru", 1, setmru}, /* Set MRU value for negotiation */
279 {"mtu", 1, setmtu}, /* Set our MTU */
280 {"netmask", 1, setnetmask}, /* set netmask */
281 {"passive", 0, setpassive}, /* Set passive mode */
282 {"silent", 0, setsilent}, /* Set silent mode */
283 {"modem", 0, setmodem}, /* Use modem control lines */
284 {"local", 0, setlocal}, /* Don't use modem control lines */
285 {"lock", 0, setlock}, /* Lock serial device (with lock file) */
286 {"name", 1, setname}, /* Set local name for authentication */
287 {"user", 1, setuser}, /* Set name for auth with peer */
288 {"usehostname", 0, setusehostname}, /* Must use hostname for auth. */
289 {"remotename", 1, setremote}, /* Set remote name for authentication */
290 {"auth", 0, setauth}, /* Require authentication from peer */
291 {"noauth", 0, setnoauth}, /* Don't require peer to authenticate */
292 {"file", 1, readfile}, /* Take options from a file */
293 {"call", 1, callfile}, /* Take options from a privileged file */
294 {"defaultroute", 0, setdefaultroute}, /* Add default route */
295 {"nodefaultroute", 0, setnodefaultroute}, /* disable defaultroute option */
296 {"-defaultroute", 0, setnodefaultroute}, /* disable defaultroute option */
297 {"proxyarp", 0, setproxyarp}, /* Add proxy ARP entry */
298 {"noproxyarp", 0, setnoproxyarp}, /* disable proxyarp option */
299 {"-proxyarp", 0, setnoproxyarp}, /* disable proxyarp option */
300 {"persist", 0, setpersist}, /* Keep on reopening connection after close */
301 {"nopersist", 0, setnopersist}, /* Turn off persist option */
302 {"demand", 0, setdemand}, /* Dial on demand */
303 {"login", 0, setdologin}, /* Use system password database for UPAP */
304 {"noipdefault", 0, setnoipdflt}, /* Don't use name for default IP adrs */
305 {"lcp-echo-failure", 1, setlcpechofails}, /* consecutive echo failures */
306 {"lcp-echo-interval", 1, setlcpechointv}, /* time for lcp echo events */
307 {"lcp-restart", 1, setlcptimeout}, /* Set timeout for LCP */
308 {"lcp-max-terminate", 1, setlcpterm}, /* Set max #xmits for term-reqs */
309 {"lcp-max-configure", 1, setlcpconf}, /* Set max #xmits for conf-reqs */
310 {"lcp-max-failure", 1, setlcpfails}, /* Set max #conf-naks for LCP */
311 {"ipcp-restart", 1, setipcptimeout}, /* Set timeout for IPCP */
312 {"ipcp-max-terminate", 1, setipcpterm}, /* Set max #xmits for term-reqs */
313 {"ipcp-max-configure", 1, setipcpconf}, /* Set max #xmits for conf-reqs */
314 {"ipcp-max-failure", 1, setipcpfails}, /* Set max #conf-naks for IPCP */
315 {"pap-restart", 1, setpaptimeout}, /* Set retransmit timeout for PAP */
316 {"pap-max-authreq", 1, setpapreqs}, /* Set max #xmits for auth-reqs */
317 {"pap-timeout", 1, setpapreqtime}, /* Set time limit for peer PAP auth. */
318 {"chap-restart", 1, setchaptimeout}, /* Set timeout for CHAP */
319 {"chap-max-challenge", 1, setchapchal}, /* Set max #xmits for challenge */
320 {"chap-interval", 1, setchapintv}, /* Set interval for rechallenge */
321 {"ipcp-accept-local", 0, setipcpaccl}, /* Accept peer's address for us */
322 {"ipcp-accept-remote", 0, setipcpaccr}, /* Accept peer's address for it */
323 {"noccp", 0, noccp}, /* Disable CCP negotiation */
324 {"-ccp", 0, noccp}, /* Disable CCP negotiation */
325 {"bsdcomp", 1, setbsdcomp}, /* request BSD-Compress */
326 {"nobsdcomp", 0, setnobsdcomp}, /* don't allow BSD-Compress */
327 {"-bsdcomp", 0, setnobsdcomp}, /* don't allow BSD-Compress */
328 {"deflate", 1, setdeflate}, /* request Deflate compression */
329 {"nodeflate", 0, setnodeflate}, /* don't allow Deflate compression */
330 {"-deflate", 0, setnodeflate}, /* don't allow Deflate compression */
331 {"predictor1", 0, setpred1comp}, /* request Predictor-1 */
332 {"nopredictor1", 0, setnopred1comp},/* don't allow Predictor-1 */
333 {"-predictor1", 0, setnopred1comp}, /* don't allow Predictor-1 */
334 {"ipparam", 1, setipparam}, /* set ip script parameter */
335 {"papcrypt", 0, setpapcrypt}, /* PAP passwords encrypted */
336 {"idle", 1, setidle}, /* idle time limit (seconds) */
337 {"holdoff", 1, setholdoff}, /* set holdoff time (seconds) */
338 {"ms-dns", 1, setdnsaddr}, /* DNS address for the peer's use */
341 {"ipx-network", 1, setipxnetwork}, /* IPX network number */
342 {"ipxcp-accept-network", 0, setipxanet}, /* Accept peer netowrk */
343 {"ipx-node", 1, setipxnode}, /* IPX node number */
344 {"ipxcp-accept-local", 0, setipxalcl}, /* Accept our address */
345 {"ipxcp-accept-remote", 0, setipxarmt}, /* Accept peer's address */
346 {"ipx-routing", 1, setipxrouter}, /* IPX routing proto number */
347 {"ipx-router-name", 1, setipxname}, /* IPX router name */
348 {"ipxcp-restart", 1, setipxcptimeout}, /* Set timeout for IPXCP */
349 {"ipxcp-max-terminate", 1, setipxcpterm}, /* max #xmits for term-reqs */
350 {"ipxcp-max-configure", 1, setipxcpconf}, /* max #xmits for conf-reqs */
351 {"ipxcp-max-failure", 1, setipxcpfails}, /* max #conf-naks for IPXCP */
353 {"ipx-compression", 1, setipxcompression}, /* IPX compression number */
355 {"ipx", 0, setipxproto}, /* Enable IPXCP (and IPX) */
356 {"noipx", 0, resetipxproto}, /* Disable IPXCP (and IPX) */
357 {"+ipx", 0, setipxproto}, /* Enable IPXCP (and IPX) */
358 {"-ipx", 0, resetipxproto}, /* Disable IPXCP (and IPX) */
359 #endif /* IPX_CHANGE */
365 #ifndef IMPLEMENTATION
366 #define IMPLEMENTATION ""
369 static char *usage_string = "\
370 pppd version %s patch level %d%s\n\
371 Usage: %s [ options ], where options are:\n\
372 <device> Communicate over the named device\n\
373 <speed> Set the baud rate to <speed>\n\
374 <loc>:<rem> Set the local and/or remote interface IP\n\
375 addresses. Either one may be omitted.\n\
376 asyncmap <n> Set the desired async map to hex <n>\n\
377 auth Require authentication from peer\n\
378 connect <p> Invoke shell command <p> to set up the serial line\n\
379 crtscts Use hardware RTS/CTS flow control\n\
380 defaultroute Add default route through interface\n\
381 file <f> Take options from file <f>\n\
382 modem Use modem control lines\n\
383 mru <n> Set MRU value to <n> for negotiation\n\
384 netmask <n> Set interface netmask to <n>\n\
385 See pppd(8) for more options.\n\
388 static char *current_option; /* the name of the option being parsed */
389 static int privileged_option; /* set iff the current option came from root */
390 static char *option_source; /* string saying where the option came from */
393 * parse_args - parse a string of arguments from the command line.
396 parse_args(argc, argv)
404 privileged_option = privileged;
405 option_source = "command line";
411 * First see if it's a command.
413 for (cmdp = cmds; cmdp->cmd_name; cmdp++)
414 if (!strcmp(arg, cmdp->cmd_name))
417 if (cmdp->cmd_name != NULL) {
418 if (argc < cmdp->num_args) {
419 option_error("too few parameters for option %s", arg);
422 current_option = arg;
423 if (!(*cmdp->cmd_func)(argv))
425 argc -= cmdp->num_args;
426 argv += cmdp->num_args;
430 * Maybe a tty name, speed or IP address?
432 if ((ret = setdevname(arg, 0)) == 0
433 && (ret = setspeed(arg)) == 0
434 && (ret = setipaddr(arg)) == 0) {
435 option_error("unrecognized option '%s'", arg);
439 if (ret < 0) /* error */
447 * scan_args - scan the command line arguments to get the tty name,
451 scan_args(argc, argv)
462 /* Skip options and their arguments */
463 for (cmdp = cmds; cmdp->cmd_name; cmdp++)
464 if (!strcmp(arg, cmdp->cmd_name))
467 if (cmdp->cmd_name != NULL) {
468 argc -= cmdp->num_args;
469 argv += cmdp->num_args;
473 /* Check if it's a tty name and copy it if so */
474 (void) setdevname(arg, 1);
479 * usage - print out a message telling how to use the program.
484 if (phase == PHASE_INITIALIZE)
485 fprintf(stderr, usage_string, VERSION, PATCHLEVEL, IMPLEMENTATION,
490 * options_from_file - Read a string of options from a file,
491 * and interpret them.
494 options_from_file(filename, must_exist, check_prot, priv)
505 char args[MAXARGS][MAXWORDLEN];
506 char cmd[MAXWORDLEN];
508 if ((f = fopen(filename, "r")) == NULL) {
509 if (!must_exist && errno == ENOENT)
511 option_error("Can't open options file %s: %m", filename);
514 if (check_prot && !readable(fileno(f))) {
515 option_error("Can't open options file %s: access denied", filename);
520 oldpriv = privileged_option;
521 privileged_option = priv;
523 while (getword(f, cmd, &newline, filename)) {
525 * First see if it's a command.
527 for (cmdp = cmds; cmdp->cmd_name; cmdp++)
528 if (!strcmp(cmd, cmdp->cmd_name))
531 if (cmdp->cmd_name != NULL) {
532 for (i = 0; i < cmdp->num_args; ++i) {
533 if (!getword(f, args[i], &newline, filename)) {
535 "In file %s: too few parameters for option '%s'",
541 current_option = cmd;
542 if (!(*cmdp->cmd_func)(argv))
547 * Maybe a tty name, speed or IP address?
549 if ((i = setdevname(cmd, 0)) == 0
550 && (i = setspeed(cmd)) == 0
551 && (i = setipaddr(cmd)) == 0) {
552 option_error("In file %s: unrecognized option '%s'",
556 if (i < 0) /* error */
564 privileged_option = oldpriv;
569 * options_from_user - See if the use has a ~/.ppprc file,
570 * and if so, interpret options from it.
575 char *user, *path, *file;
579 pw = getpwuid(getuid());
580 if (pw == NULL || (user = pw->pw_dir) == NULL || user[0] == 0)
582 file = _PATH_USEROPT;
583 path = malloc(strlen(user) + strlen(file) + 2);
585 novm("init file name");
589 ret = options_from_file(path, 0, 1, privileged);
595 * options_for_tty - See if an options file exists for the serial
596 * device, and if so, interpret options from it.
601 char *dev, *path, *p;
605 if (strncmp(dev, "/dev/", 5) == 0)
607 if (strcmp(dev, "tty") == 0)
608 return 1; /* don't look for /etc/ppp/options.tty */
609 path = malloc(strlen(_PATH_TTYOPT) + strlen(dev) + 1);
611 novm("tty init file name");
612 strcpy(path, _PATH_TTYOPT);
613 /* Turn slashes into dots, for Solaris case (e.g. /dev/term/a) */
614 for (p = path + strlen(path); *dev != 0; ++dev)
615 *p++ = (*dev == '/'? '.': *dev);
617 ret = options_from_file(path, 0, 0, 1);
623 * option_error - print a message about an error in an option.
624 * The message is logged, and also sent to
625 * stderr if phase == PHASE_INITIALIZE.
628 option_error __V((char *fmt, ...))
639 fmt = va_arg(args, char *);
641 vfmtmsg(buf, sizeof(buf), fmt, args);
643 if (phase == PHASE_INITIALIZE)
644 fprintf(stderr, "%s: %s\n", progname, buf);
645 syslog(LOG_ERR, "%s", buf);
649 * readable - check if a file is readable by the real user.
658 GIDSET_TYPE groups[NGROUPS_MAX];
663 if (fstat(fd, &sbuf) != 0)
665 if (sbuf.st_uid == uid)
666 return sbuf.st_mode & S_IRUSR;
667 if (sbuf.st_gid == getgid())
668 return sbuf.st_mode & S_IRGRP;
669 ngroups = getgroups(NGROUPS_MAX, groups);
670 for (i = 0; i < ngroups; ++i)
671 if (sbuf.st_gid == groups[i])
672 return sbuf.st_mode & S_IRGRP;
673 return sbuf.st_mode & S_IROTH;
677 * Read a word from a file.
678 * Words are delimited by white-space or by quotes (" or ').
679 * Quotes, white-space and \ may be escaped with \.
680 * \<newline> is ignored.
683 getword(f, word, newlinep, filename)
691 int value, digit, got, n;
693 #define isoctal(c) ((c) >= '0' && (c) < '8')
701 * First skip white-space and comments.
709 * A newline means the end of a comment; backslash-newline
710 * is ignored. Note that we cannot have escape && comment.
722 * Ignore characters other than newline in a comment.
728 * If this character is escaped, we have a word start.
734 * If this is the escape character, look at the next character.
742 * If this is the start of a comment, ignore the rest of the line.
750 * A non-whitespace character is the start of a word.
757 * Save the delimiter for quoted strings.
759 if (!escape && (c == '"' || c == '\'')) {
766 * Process characters until the end of the word.
771 * This character is escaped: backslash-newline is ignored,
772 * various other characters indicate particular values
773 * as for C backslash-escapes.
808 * \ddd octal sequence
811 for (n = 0; n < 3 && isoctal(c); ++n) {
812 value = (value << 3) + (c & 07);
821 * \x<hex_string> sequence
825 for (n = 0; n < 2 && isxdigit(c); ++n) {
826 digit = toupper(c) - '0';
828 digit += '0' + 10 - 'A';
829 value = (value << 4) + digit;
837 * Otherwise the character stands for itself.
844 * Store the resulting character for the escape sequence.
846 if (len < MAXWORDLEN-1)
857 * Not escaped: see if we've reached the end of the word.
863 if (isspace(c) || c == '#') {
870 * Backslash starts an escape sequence.
879 * An ordinary character: store it in the word and get another.
881 if (len < MAXWORDLEN-1)
889 * End of the word: check for errors.
895 option_error("Error reading %s: %m", filename);
899 * If len is zero, then we didn't find a word before the
907 * Warn if the word was too long, and append a terminating null.
909 if (len >= MAXWORDLEN) {
910 option_error("warning: word in file %s too long (%.20s...)",
912 len = MAXWORDLEN - 1;
923 * number_option - parse an unsigned numeric parameter for an option.
926 number_option(str, valp, base)
933 *valp = strtoul(str, &ptr, base);
935 option_error("invalid numeric parameter '%s' for %s option",
936 str, current_option);
944 * int_option - like number_option, but valp is int *,
945 * the base is assumed to be 0, and *valp is not changed
946 * if there is an error.
949 int_option(str, valp)
955 if (!number_option(str, &v, 0))
963 * The following procedures parse options.
967 * readfile - take commands from a file.
973 return options_from_file(*argv, 1, 1, privileged_option);
977 * callfile - take commands from /etc/ppp/peers/<name>.
978 * Name may not contain /../, start with / or ../, or end in /..
984 char *fname, *arg, *p;
989 if (arg[0] == '/' || arg[0] == 0)
992 for (p = arg; *p != 0; ) {
993 if (p[0] == '.' && p[1] == '.' && (p[2] == '/' || p[2] == 0)) {
997 while (*p != '/' && *p != 0)
1004 option_error("call option value may not contain .. or start with /");
1008 l = strlen(arg) + strlen(_PATH_PEERFILES) + 1;
1009 if ((fname = (char *) malloc(l)) == NULL)
1010 novm("call file name");
1011 strcpy(fname, _PATH_PEERFILES);
1014 ok = options_from_file(fname, 1, 1, 1);
1022 * setdebug - Set debug (command line argument).
1032 * setkdebug - Set kernel debugging level.
1038 return int_option(*argv, &kdebugflag);
1042 * noopt - Disable all options.
1047 BZERO((char *) &lcp_wantoptions[0], sizeof (struct lcp_options));
1048 BZERO((char *) &lcp_allowoptions[0], sizeof (struct lcp_options));
1049 BZERO((char *) &ipcp_wantoptions[0], sizeof (struct ipcp_options));
1050 BZERO((char *) &ipcp_allowoptions[0], sizeof (struct ipcp_options));
1053 BZERO((char *) &ipxcp_wantoptions[0], sizeof (struct ipxcp_options));
1054 BZERO((char *) &ipxcp_allowoptions[0], sizeof (struct ipxcp_options));
1055 #endif /* IPX_CHANGE */
1061 * noaccomp - Disable Address/Control field compression negotiation.
1066 lcp_wantoptions[0].neg_accompression = 0;
1067 lcp_allowoptions[0].neg_accompression = 0;
1073 * noasyncmap - Disable async map negotiation.
1078 lcp_wantoptions[0].neg_asyncmap = 0;
1079 lcp_allowoptions[0].neg_asyncmap = 0;
1085 * noip - Disable IP and IPCP.
1090 ipcp_protent.enabled_flag = 0;
1096 * nomagicnumber - Disable magic number negotiation.
1101 lcp_wantoptions[0].neg_magicnumber = 0;
1102 lcp_allowoptions[0].neg_magicnumber = 0;
1108 * nomru - Disable mru negotiation.
1113 lcp_wantoptions[0].neg_mru = 0;
1114 lcp_allowoptions[0].neg_mru = 0;
1120 * setmru - Set MRU for negotiation.
1128 if (!number_option(*argv, &mru, 0))
1130 lcp_wantoptions[0].mru = mru;
1131 lcp_wantoptions[0].neg_mru = 1;
1137 * setmru - Set the largest MTU we'll use.
1145 if (!number_option(*argv, &mtu, 0))
1147 if (mtu < MINMRU || mtu > MAXMRU) {
1148 option_error("mtu option value of %u is too %s", mtu,
1149 (mtu < MINMRU? "small": "large"));
1152 lcp_allowoptions[0].mru = mtu;
1158 * nopcomp - Disable Protocol field compression negotiation.
1163 lcp_wantoptions[0].neg_pcompression = 0;
1164 lcp_allowoptions[0].neg_pcompression = 0;
1170 * setpassive - Set passive mode (don't give up if we time out sending
1171 * LCP configure-requests).
1176 lcp_wantoptions[0].passive = 1;
1182 * setsilent - Set silent mode (don't start sending LCP configure-requests
1183 * until we get one from the peer).
1188 lcp_wantoptions[0].silent = 1;
1194 * nopap - Disable PAP authentication with peer.
1205 * reqpap - Require PAP authentication from peer.
1210 lcp_wantoptions[0].neg_upap = 1;
1217 * setupapfile - specifies UPAP info for authenticating with peer.
1226 lcp_allowoptions[0].neg_upap = 1;
1228 /* open user info file */
1229 if ((ufile = fopen(*argv, "r")) == NULL) {
1230 option_error("unable to open user login data file %s", *argv);
1233 if (!readable(fileno(ufile))) {
1234 option_error("%s: access denied", *argv);
1237 check_access(ufile, *argv);
1240 if (fgets(user, MAXNAMELEN - 1, ufile) == NULL
1241 || fgets(passwd, MAXSECRETLEN - 1, ufile) == NULL){
1242 option_error("unable to read user login data file %s", *argv);
1247 /* get rid of newlines */
1249 if (l > 0 && user[l-1] == '\n')
1252 if (l > 0 && passwd[l-1] == '\n')
1260 * nochap - Disable CHAP authentication with peer.
1271 * reqchap - Require CHAP authentication from peer.
1276 lcp_wantoptions[0].neg_chap = 1;
1283 * setnovj - disable vj compression
1288 ipcp_wantoptions[0].neg_vj = 0;
1289 ipcp_allowoptions[0].neg_vj = 0;
1295 * setnovjccomp - disable VJ connection-ID compression
1300 ipcp_wantoptions[0].cflag = 0;
1301 ipcp_allowoptions[0].cflag = 0;
1307 * setvjslots - set maximum number of connection slots for VJ compression
1315 if (!int_option(*argv, &value))
1317 if (value < 2 || value > 16) {
1318 option_error("vj-max-slots value must be between 2 and 16");
1321 ipcp_wantoptions [0].maxslotindex =
1322 ipcp_allowoptions[0].maxslotindex = value - 1;
1328 * setconnector - Set a program to connect to a serial line
1334 connector = strdup(*argv);
1335 if (connector == NULL)
1336 novm("connect script");
1337 connector_info.priv = privileged_option;
1338 connector_info.source = option_source;
1344 * setdisconnector - Set a program to disconnect from the serial line
1347 setdisconnector(argv)
1350 disconnector = strdup(*argv);
1351 if (disconnector == NULL)
1352 novm("disconnect script");
1353 disconnector_info.priv = privileged_option;
1354 disconnector_info.source = option_source;
1360 * setwelcomer - Set a program to welcome a client after connection
1366 welcomer = strdup(*argv);
1367 if (welcomer == NULL)
1368 novm("welcome script");
1369 welcomer_info.priv = privileged_option;
1370 welcomer_info.source = option_source;
1376 * setmaxconnect - Set the maximum connect time
1384 if (!int_option(*argv, &value))
1387 option_error("maxconnect time must be positive");
1390 if (maxconnect > 0 && (value == 0 || value > maxconnect)) {
1391 option_error("maxconnect time cannot be increased");
1399 * setdomain - Set domain name to append to hostname
1405 if (!privileged_option) {
1406 option_error("using the domain option requires root privilege");
1409 gethostname(hostname, MAXNAMELEN);
1412 strncat(hostname, ".", MAXNAMELEN - strlen(hostname));
1413 strncat(hostname, *argv, MAXNAMELEN - strlen(hostname));
1415 hostname[MAXNAMELEN-1] = 0;
1421 * setasyncmap - add bits to asyncmap (what we request peer to escape).
1429 if (!number_option(*argv, &asyncmap, 16))
1431 lcp_wantoptions[0].asyncmap |= asyncmap;
1432 lcp_wantoptions[0].neg_asyncmap = 1;
1438 * setescape - add chars to the set we escape on transmission.
1450 n = strtol(p, &endp, 16);
1452 option_error("escape parameter contains invalid hex number '%s'",
1457 if (n < 0 || 0x20 <= n && n <= 0x3F || n == 0x5E || n > 0xFF) {
1458 option_error("can't escape character 0x%x", n);
1461 xmit_accm[0][n >> 5] |= 1 << (n & 0x1F);
1462 while (*p == ',' || *p == ' ')
1470 * setspeed - Set the speed.
1479 spd = strtol(arg, &ptr, 0);
1480 if (ptr == arg || *ptr != 0 || spd == 0)
1488 * setdevname - Set the device name.
1491 setdevname(cp, quiet)
1495 struct stat statbuf;
1496 char dev[MAXPATHLEN];
1501 if (strncmp("/dev/", cp, 5) != 0) {
1502 strcpy(dev, "/dev/");
1503 strncat(dev, cp, MAXPATHLEN - 5);
1504 dev[MAXPATHLEN-1] = 0;
1509 * Check if there is a device by this name.
1511 if (stat(cp, &statbuf) < 0) {
1512 if (errno == ENOENT || quiet)
1514 option_error("Couldn't stat %s: %m", cp);
1518 (void) strncpy(devnam, cp, MAXPATHLEN);
1519 devnam[MAXPATHLEN-1] = 0;
1520 default_device = FALSE;
1521 devnam_info.priv = privileged_option;
1522 devnam_info.source = option_source;
1529 * setipaddr - Set the IP address
1537 u_int32_t local, remote;
1538 ipcp_options *wo = &ipcp_wantoptions[0];
1541 * IP address pair separated by ":".
1543 if ((colon = strchr(arg, ':')) == NULL)
1547 * If colon first character, then no local addr.
1551 if ((local = inet_addr(arg)) == -1) {
1552 if ((hp = gethostbyname(arg)) == NULL) {
1553 option_error("unknown host: %s", arg);
1556 local = *(u_int32_t *)hp->h_addr;
1559 if (bad_ip_adrs(local)) {
1560 option_error("bad local IP address %s", ip_ntoa(local));
1564 wo->ouraddr = local;
1569 * If colon last character, then no remote addr.
1571 if (*++colon != '\0') {
1572 if ((remote = inet_addr(colon)) == -1) {
1573 if ((hp = gethostbyname(colon)) == NULL) {
1574 option_error("unknown host: %s", colon);
1577 remote = *(u_int32_t *)hp->h_addr;
1578 if (remote_name[0] == 0) {
1579 strncpy(remote_name, colon, MAXNAMELEN);
1580 remote_name[MAXNAMELEN-1] = 0;
1584 if (bad_ip_adrs(remote)) {
1585 option_error("bad remote IP address %s", ip_ntoa(remote));
1589 wo->hisaddr = remote;
1597 * setnoipdflt - disable setipdefault()
1602 disable_defaultip = 1;
1608 * setipcpaccl - accept peer's idea of our address
1613 ipcp_wantoptions[0].accept_local = 1;
1619 * setipcpaccr - accept peer's idea of its address
1624 ipcp_wantoptions[0].accept_remote = 1;
1630 * setnetmask - set the netmask to be used on the interface.
1638 if ((mask = inet_addr(*argv)) == -1 || (netmask & ~mask) != 0) {
1639 option_error("invalid netmask value '%s'", *argv);
1664 lcp_wantoptions[0].asyncmap |= 0x000A0000; /* escape ^S and ^Q */
1665 lcp_wantoptions[0].neg_asyncmap = 1;
1718 if (!privileged_option) {
1719 option_error("using the name option requires root privilege");
1722 strncpy(our_name, argv[0], MAXNAMELEN);
1723 our_name[MAXNAMELEN-1] = 0;
1731 strncpy(user, argv[0], MAXNAMELEN);
1732 user[MAXNAMELEN-1] = 0;
1740 strncpy(remote_name, argv[0], MAXNAMELEN);
1741 remote_name[MAXNAMELEN-1] = 0;
1749 if (privileged_option > auth_req_info.priv) {
1750 auth_req_info.priv = privileged_option;
1751 auth_req_info.source = option_source;
1759 if (auth_required && privileged_option < auth_req_info.priv) {
1760 option_error("cannot override auth option set by %s",
1761 auth_req_info.source);
1771 if (!ipcp_allowoptions[0].default_route) {
1772 option_error("defaultroute option is disabled");
1775 ipcp_wantoptions[0].default_route = 1;
1782 ipcp_allowoptions[0].default_route = 0;
1783 ipcp_wantoptions[0].default_route = 0;
1790 if (!ipcp_allowoptions[0].proxy_arp) {
1791 option_error("proxyarp option is disabled");
1794 ipcp_wantoptions[0].proxy_arp = 1;
1801 ipcp_wantoptions[0].proxy_arp = 0;
1802 ipcp_allowoptions[0].proxy_arp = 0;
1828 * Functions to set the echo interval for modem-less monitors
1832 setlcpechointv(argv)
1835 return int_option(*argv, &lcp_echo_interval);
1839 setlcpechofails(argv)
1842 return int_option(*argv, &lcp_echo_fails);
1846 * Functions to set timeouts, max transmits, etc.
1852 return int_option(*argv, &lcp_fsm[0].timeouttime);
1859 return int_option(*argv, &lcp_fsm[0].maxtermtransmits);
1866 return int_option(*argv, &lcp_fsm[0].maxconfreqtransmits);
1873 return int_option(*argv, &lcp_fsm[0].maxnakloops);
1877 setipcptimeout(argv)
1880 return int_option(*argv, &ipcp_fsm[0].timeouttime);
1887 return int_option(*argv, &ipcp_fsm[0].maxtermtransmits);
1894 return int_option(*argv, &ipcp_fsm[0].maxconfreqtransmits);
1901 return int_option(*argv, &lcp_fsm[0].maxnakloops);
1908 return int_option(*argv, &upap[0].us_timeouttime);
1915 return int_option(*argv, &upap[0].us_reqtimeout);
1922 return int_option(*argv, &upap[0].us_maxtransmits);
1926 setchaptimeout(argv)
1929 return int_option(*argv, &chap[0].timeouttime);
1936 return int_option(*argv, &chap[0].max_transmits);
1943 return int_option(*argv, &chap[0].chal_interval);
1949 ccp_protent.enabled_flag = 0;
1961 abits = rbits = strtol(str, &endp, 0);
1962 if (endp != str && *endp == ',') {
1964 abits = strtol(str, &endp, 0);
1966 if (*endp != 0 || endp == str) {
1967 option_error("invalid parameter '%s' for bsdcomp option", *argv);
1970 if (rbits != 0 && (rbits < BSD_MIN_BITS || rbits > BSD_MAX_BITS)
1971 || abits != 0 && (abits < BSD_MIN_BITS || abits > BSD_MAX_BITS)) {
1972 option_error("bsdcomp option values must be 0 or %d .. %d",
1973 BSD_MIN_BITS, BSD_MAX_BITS);
1977 ccp_wantoptions[0].bsd_compress = 1;
1978 ccp_wantoptions[0].bsd_bits = rbits;
1980 ccp_wantoptions[0].bsd_compress = 0;
1982 ccp_allowoptions[0].bsd_compress = 1;
1983 ccp_allowoptions[0].bsd_bits = abits;
1985 ccp_allowoptions[0].bsd_compress = 0;
1992 ccp_wantoptions[0].bsd_compress = 0;
1993 ccp_allowoptions[0].bsd_compress = 0;
2005 abits = rbits = strtol(str, &endp, 0);
2006 if (endp != str && *endp == ',') {
2008 abits = strtol(str, &endp, 0);
2010 if (*endp != 0 || endp == str) {
2011 option_error("invalid parameter '%s' for deflate option", *argv);
2014 if (rbits != 0 && (rbits < DEFLATE_MIN_SIZE || rbits > DEFLATE_MAX_SIZE)
2015 || abits != 0 && (abits < DEFLATE_MIN_SIZE
2016 || abits > DEFLATE_MAX_SIZE)) {
2017 option_error("deflate option values must be 0 or %d .. %d",
2018 DEFLATE_MIN_SIZE, DEFLATE_MAX_SIZE);
2022 ccp_wantoptions[0].deflate = 1;
2023 ccp_wantoptions[0].deflate_size = rbits;
2025 ccp_wantoptions[0].deflate = 0;
2027 ccp_allowoptions[0].deflate = 1;
2028 ccp_allowoptions[0].deflate_size = abits;
2030 ccp_allowoptions[0].deflate = 0;
2037 ccp_wantoptions[0].deflate = 0;
2038 ccp_allowoptions[0].deflate = 0;
2045 ccp_wantoptions[0].predictor_1 = 1;
2046 ccp_allowoptions[0].predictor_1 = 1;
2053 ccp_wantoptions[0].predictor_1 = 0;
2054 ccp_allowoptions[0].predictor_1 = 0;
2062 ipparam = strdup(*argv);
2063 if (ipparam == NULL)
2064 novm("ipparam string");
2080 return int_option(*argv, &idle_time_limit);
2087 return int_option(*argv, &holdoff);
2091 * setdnsaddr - set the dns address(es)
2100 dns = inet_addr(*argv);
2102 if ((hp = gethostbyname(*argv)) == NULL) {
2103 option_error("invalid address parameter '%s' for ms-dns option",
2107 dns = *(u_int32_t *)hp->h_addr;
2110 if (ipcp_allowoptions[0].dnsaddr[0] == 0) {
2111 ipcp_allowoptions[0].dnsaddr[0] = dns;
2113 ipcp_allowoptions[0].dnsaddr[1] = dns;
2124 ipxcp_wantoptions[0].neg_router = 1;
2125 ipxcp_allowoptions[0].neg_router = 1;
2126 return int_option(*argv, &ipxcp_wantoptions[0].router);
2133 char *dest = ipxcp_wantoptions[0].name;
2138 ipxcp_wantoptions[0].neg_name = 1;
2139 ipxcp_allowoptions[0].neg_name = 1;
2140 memset (dest, '\0', sizeof (ipxcp_wantoptions[0].name));
2145 if (! isalnum (ch) && ch != '_') {
2146 option_error("IPX router name must be alphanumeric or _");
2150 if (count >= sizeof (ipxcp_wantoptions[0].name)) {
2151 option_error("IPX router name is limited to %d characters",
2152 sizeof (ipxcp_wantoptions[0].name) - 1);
2156 dest[count++] = toupper (ch);
2163 setipxcptimeout (argv)
2166 return int_option(*argv, &ipxcp_fsm[0].timeouttime);
2173 return int_option(*argv, &ipxcp_fsm[0].maxtermtransmits);
2180 return int_option(*argv, &ipxcp_fsm[0].maxconfreqtransmits);
2184 setipxcpfails (argv)
2187 return int_option(*argv, &ipxcp_fsm[0].maxnakloops);
2194 ipxcp_wantoptions[0].neg_nn = 1;
2195 return int_option(*argv, &ipxcp_wantoptions[0].our_network);
2201 ipxcp_wantoptions[0].accept_network = 1;
2202 ipxcp_allowoptions[0].accept_network = 1;
2208 ipxcp_wantoptions[0].accept_local = 1;
2209 ipxcp_allowoptions[0].accept_local = 1;
2215 ipxcp_wantoptions[0].accept_remote = 1;
2216 ipxcp_allowoptions[0].accept_remote = 1;
2220 setipxnodevalue(src,dst)
2227 if (!isxdigit (*src))
2230 for (indx = 0; indx < 5; ++indx) {
2232 dst[indx] |= (dst[indx + 1] >> 4) & 0x0F;
2235 item = toupper (*src) - '0';
2239 dst[5] = (dst[5] << 4) | item;
2251 memset (&ipxcp_wantoptions[0].our_node[0], 0, 6);
2252 memset (&ipxcp_wantoptions[0].his_node[0], 0, 6);
2254 end = setipxnodevalue (*argv, &ipxcp_wantoptions[0].our_node[0]);
2256 end = setipxnodevalue (++end, &ipxcp_wantoptions[0].his_node[0]);
2259 ipxcp_wantoptions[0].neg_node = 1;
2263 option_error("invalid parameter '%s' for ipx-node option", *argv);
2270 ipxcp_protent.enabled_flag = 1;
2277 ipxcp_protent.enabled_flag = 0;
2280 #endif /* IPX_CHANGE */
projects / ppp.git / blob