Problem CHAP Challenge with PPP v2.5.1-dev

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Hello,

For an embedded system using ppp v2.4.7 on a linux from scratch v4.14 base, this works without a hitch.
For security reasons, we're migrating to linux from scratch v6.1 and ppp v2.5.1-dev.

With the same configuration, the same SIM card, I encounter the following problem:

2024-06-14T10:52:56.761615+02:00 REDY-02448-00029 REDY: Script /usr/sbin/chat -f /etc/ppp/modem/chat-dialer-3G finished (pid 1791), status = 0x0
2024-06-14T10:52:56.761666+02:00 REDY-02448-00029 REDY: Serial connection established.
2024-06-14T10:52:56.761693+02:00 REDY-02448-00029 REDY: using channel 6
2024-06-14T10:52:56.764893+02:00 REDY-02448-00029 REDY: Using interface ppp0
2024-06-14T10:52:56.767072+02:00 REDY-02448-00029 REDY: Connect: ppp0 <--> /dev/ttymxc0
2024-06-14T10:52:56.774101+02:00 REDY-02448-00029 REDY: Warning - secret file /etc/ppp/pap-secrets has world and/or group access
2024-06-14T10:52:56.775690+02:00 REDY-02448-00029 REDY: sent [LCP ConfReq id=0x1 <asyncmap 0xa0000>]
2024-06-14T10:52:56.789506+02:00 REDY-02448-00029 REDY: rcvd [LCP ConfAck id=0x1 <asyncmap 0xa0000>]
2024-06-14T10:52:57.745536+02:00 REDY-02448-00029 REDY: rcvd [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MD5> <magic 0x52181044> <pcomp> <accomp>]
2024-06-14T10:52:57.745583+02:00 REDY-02448-00029 REDY: sent [LCP ConfRej id=0x1 <magic 0x52181044> <pcomp> <accomp>]
2024-06-14T10:52:57.758670+02:00 REDY-02448-00029 REDY: rcvd [LCP ConfReq id=0x2 <asyncmap 0x0> <auth chap MD5>]
2024-06-14T10:52:57.758742+02:00 REDY-02448-00029 REDY: sent [LCP ConfAck id=0x2 <asyncmap 0x0> <auth chap MD5>]
2024-06-14T10:52:57.771800+02:00 REDY-02448-00029 REDY: rcvd [CHAP Challenge id=0x1 <913f58c149608e12686da08e27fb8f01>, name = ""]
2024-06-14T10:52:57.773667+02:00 REDY-02448-00029 REDY: Warning - secret file /etc/ppp/chap-secrets has world and/or group access
2024-06-14T10:52:57.801692+02:00 REDY-02448-00029 REDY: sent [CHAP Response id=0x1 <84ec7e00000000000000003b00000000000000161cd73a0000000038c0a67400bac779000d0000c0db877e09000000e44e060038c0a67468b3030028bda67400000000acdb877e4454437470da877e000d00003b0000000000000027100f00000000000000000000bac77984dd877ef4c60400c0db877e00000000288e2901c0db877ec4da877e0000000000000000000000000000000000000000000000000000000000000000000000000000000000>, name = "orange"]
2024-06-14T10:52:57.820165+02:00 REDY-02448-00029 REDY: rcvd [CHAP Failure id=0x1 "I don't like you.  Go 'way."]
2024-06-14T10:52:57.820203+02:00 REDY-02448-00029 REDY: CHAP authentication failed: I don't like you.  Go 'way.
2024-06-14T10:52:57.820226+02:00 REDY-02448-00029 REDY: CHAP authentication failed
2024-06-14T10:52:57.820248+02:00 REDY-02448-00029 REDY: sent [LCP TermReq id=0x2 "Failed to authenticate ourselves to peer"]
2024-06-14T10:52:57.821973+02:00 REDY-02448-00029 REDY: rcvd [LCP TermReq id=0x3 "Authentication failed"]

Here is the file   /etc/ppp/chap-secrets

 orange    *      orange     *

when I delete the chap-secrets file it forces PAP authentication and the connection works again.
As it is preferable to work in CHAP, I need to solve this problem.

2024-06-14T10:35:06.757817+02:00 REDY-02448-00029 REDY: Script /usr/sbin/chat -f /etc/ppp/modem/chat-dialer-3G finished (pid 1447), status = 0x0
2024-06-14T10:35:06.757866+02:00 REDY-02448-00029 REDY: Serial connection established.
2024-06-14T10:35:06.757892+02:00 REDY-02448-00029 REDY: using channel 4
2024-06-14T10:35:06.760979+02:00 REDY-02448-00029 REDY: Using interface ppp0
2024-06-14T10:35:06.762779+02:00 REDY-02448-00029 REDY: Connect: ppp0 <--> /dev/ttymxc0
2024-06-14T10:35:06.769482+02:00 REDY-02448-00029 REDY: Warning - secret file /etc/ppp/pap-secrets has world and/or group access
2024-06-14T10:35:06.771248+02:00 REDY-02448-00029 REDY: sent [LCP ConfReq id=0x1 <asyncmap 0xa0000>]
2024-06-14T10:35:06.784789+02:00 REDY-02448-00029 REDY: rcvd [LCP ConfAck id=0x1 <asyncmap 0xa0000>]
2024-06-14T10:35:07.740286+02:00 REDY-02448-00029 REDY: rcvd [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MD5> <magic 0x52181044> <pcomp> <accomp>]
2024-06-14T10:35:07.740371+02:00 REDY-02448-00029 REDY: sent [LCP ConfRej id=0x1 <magic 0x52181044> <pcomp> <accomp>]
2024-06-14T10:35:07.753004+02:00 REDY-02448-00029 REDY: rcvd [LCP ConfReq id=0x2 <asyncmap 0x0> <auth chap MD5>]
2024-06-14T10:35:07.753050+02:00 REDY-02448-00029 REDY: sent [LCP ConfNak id=0x2 <auth pap>]
2024-06-14T10:35:07.767028+02:00 REDY-02448-00029 REDY: rcvd [LCP ConfReq id=0x3 <asyncmap 0x0> <auth pap>]
2024-06-14T10:35:07.767077+02:00 REDY-02448-00029 REDY: sent [LCP ConfAck id=0x3 <asyncmap 0x0> <auth pap>]
2024-06-14T10:35:07.768474+02:00 REDY-02448-00029 REDY: Warning - secret file /etc/ppp/pap-secrets has world and/or group access
2024-06-14T10:35:07.768637+02:00 REDY-02448-00029 REDY: sent [PAP AuthReq id=0x1 user="orange" password=<hidden>]
2024-06-14T10:35:07.779335+02:00 REDY-02448-00029 REDY: rcvd [PAP AuthAck id=0x1 ""]
2024-06-14T10:35:07.779382+02:00 REDY-02448-00029 REDY: PAP authentication succeeded
2024-06-14T10:35:07.781973+02:00 REDY-02448-00029 REDY: sent [CCP ConfReq id=0x1 <deflate 15> <deflate(old#) 15> <bsd v1 15>]
2024-06-14T10:35:07.783382+02:00 REDY-02448-00029 REDY: sent [IPCP ConfReq id=0x1 <compress VJ 0f 01> <addr 0.0.0.0> <ms-dns1 0.0.0.0> <ms-dns2 0.0.0.0>]
2024-06-14T10:35:07.796410+02:00 REDY-02448-00029 REDY: rcvd [LCP ProtRej id=0x4 80 fd 80 fd 01 01 00 0f 1a 04 78 00 18 04 78]
2024-06-14T10:35:07.796445+02:00 REDY-02448-00029 REDY: Protocol-Reject for 'Compression Control Protocol' (0x80fd) received
2024-06-14T10:35:10.784751+02:00 REDY-02448-00029 REDY: sent [IPCP ConfReq id=0x1 <compress VJ 0f 01> <addr 0.0.0.0> <ms-dns1 0.0.0.0> <ms-dns2 0.0.0.0>]
2024-06-14T10:35:13.786887+02:00 REDY-02448-00029 REDY: sent [IPCP ConfReq id=0x1 <compress VJ 0f 01> <addr 0.0.0.0> <ms-dns1 0.0.0.0> <ms-dns2 0.0.0.0>]
2024-06-14T10:35:13.799647+02:00 REDY-02448-00029 REDY: rcvd [IPCP ConfReq id=0x1]
2024-06-14T10:35:13.799692+02:00 REDY-02448-00029 REDY: sent [IPCP ConfNak id=0x1 <addr 0.0.0.0>]
2024-06-14T10:35:13.801671+02:00 REDY-02448-00029 REDY: rcvd [IPCP ConfRej id=0x1 <compress VJ 0f 01>]
2024-06-14T10:35:13.801705+02:00 REDY-02448-00029 REDY: sent [IPCP ConfReq id=0x2 <addr 0.0.0.0> <ms-dns1 0.0.0.0> <ms-dns2 0.0.0.0>]
2024-06-14T10:35:13.812676+02:00 REDY-02448-00029 REDY: rcvd [IPCP ConfReq id=0x2 <addr 192.200.1.21>]
2024-06-14T10:35:13.812713+02:00 REDY-02448-00029 REDY: sent [IPCP ConfAck id=0x2 <addr 192.200.1.21>]
2024-06-14T10:35:13.812737+02:00 REDY-02448-00029 REDY: rcvd [IPCP ConfNak id=0x2 <addr 90.117.164.221> <ms-dns1 192.168.10.110> <ms-dns2 194.51.3.56>]
2024-06-14T10:35:13.812763+02:00 REDY-02448-00029 REDY: sent [IPCP ConfReq id=0x3 <addr 90.117.164.221> <ms-dns1 192.168.10.110> <ms-dns2 194.51.3.56>]
2024-06-14T10:35:13.826431+02:00 REDY-02448-00029 REDY: rcvd [IPCP ConfAck id=0x3 <addr 90.117.164.221> <ms-dns1 192.168.10.110> <ms-dns2 194.51.3.56>]
2024-06-14T10:35:13.829159+02:00 REDY-02448-00029 REDY: local  IP address 90.xxx.xxx.xxx
2024-06-14T10:35:13.830292+02:00 REDY-02448-00029 REDY: remote IP address 192.xxx.xxx.xxx
2024-06-14T10:35:13.831297+02:00 REDY-02448-00029 REDY: primary   DNS address 192.xxx.xxx.xxx
2024-06-14T10:35:13.832379+02:00 REDY-02448-00029 REDY: secondary DNS address 194.xxx.xxx.xxx
2024-06-14T10:35:13.839411+02:00 REDY-02448-00029 REDY: Script /etc/ppp/ip-up started (pid 1459)
2024-06-14T10:35:14.135757+02:00 REDY-02448-00029 REDY: Script /etc/ppp/ip-up finished (pid 1459), status = 0x0

the file   /etc/ppp/pap-secrets   is the same as   /etc/ppp/chap-secrets

The pppd v2.5.0 has the same problem with different folder locations.

thank you for your help

Jean-François TRAP
WIT company
[Index of Archives]     [Linux Audio Users]     [Linux for Hams]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Fedora Users]

  Powered by Linux