aland [Wed, 20 Jun 2007 13:17:31 +0000 (13:17 +0000)]
As posted to the list
aland [Wed, 20 Jun 2007 09:38:56 +0000 (09:38 +0000)]
Be more particular about what can be in a "redundant", etc.
group
aland [Wed, 20 Jun 2007 09:37:21 +0000 (09:37 +0000)]
Move more documentation into the "man" page
aland [Tue, 19 Jun 2007 14:50:15 +0000 (14:50 +0000)]
Added an example of a virtual server
aland [Tue, 19 Jun 2007 14:45:37 +0000 (14:45 +0000)]
Clean up the client preference:
- clients in this listeners identity
- OR defined by "clients = "
- OR global
In that order
aland [Tue, 19 Jun 2007 13:04:33 +0000 (13:04 +0000)]
More use of new cf_section_filename(cs) API
aland [Tue, 19 Jun 2007 12:46:57 +0000 (12:46 +0000)]
Use new conf filename api
aland [Tue, 19 Jun 2007 12:46:21 +0000 (12:46 +0000)]
Add filename to CONF_ITEM, so that the error messages the server
produces can refer to the correct file.
Sweep through the rest of the code to clean it up as per above
change
aland [Tue, 19 Jun 2007 12:15:15 +0000 (12:15 +0000)]
Be a little more careful
aland [Tue, 19 Jun 2007 11:01:00 +0000 (11:01 +0000)]
listen sections in the default config can point to a virtual
server. Ones inside of a virtual server inherit their parent
aland [Tue, 19 Jun 2007 10:58:05 +0000 (10:58 +0000)]
Moved some "listen" directives into the "server" section, to
make them specific to a server.
aland [Tue, 19 Jun 2007 10:49:34 +0000 (10:49 +0000)]
Corrected typo
aland [Tue, 19 Jun 2007 10:33:32 +0000 (10:33 +0000)]
It's "default", not "default.conf"
aland [Tue, 19 Jun 2007 10:30:08 +0000 (10:30 +0000)]
Moved "authorize", "accounting", etc into the "default"
virtual host.
This makes the main configuration file a lot smaller, and means
that virtual hosting becomes much easier to understand
aland [Tue, 19 Jun 2007 08:43:43 +0000 (08:43 +0000)]
Rename "identity" to "server", for virtual server support
aland [Tue, 19 Jun 2007 02:13:39 +0000 (02:13 +0000)]
Templates for EAP TLS tests, assuming that eapol_test is
installed
aland [Tue, 19 Jun 2007 02:10:14 +0000 (02:10 +0000)]
Added "identity" field to the REQUEST struct. It should really
be a struct itself, and be used as the basis for everything else
in the server.
Moved everything to use "request->identity" rather than
request->listener->identity
Added the ability for global clients to set identity, too. In
which case it's used so long as the socket didn't set an
identity. This means you can have one socket, and *still*
run completely different "virtual" servers, depending on the
client.
We still need to add a "register identity" function, so that
simply referring to an identity from a client will cause it to
be loaded. Right now, you still have to specify a separate
socket
aland [Tue, 19 Jun 2007 01:49:57 +0000 (01:49 +0000)]
Print out which listeners are using what identity
aland [Tue, 19 Jun 2007 01:42:57 +0000 (01:42 +0000)]
Added missing ':' to error messages
Moved 'create DICT_VALUEs for Auth-Type, etc.' to
load_byspace(), where they belong
aland [Mon, 18 Jun 2007 12:14:42 +0000 (12:14 +0000)]
Add missing "break" for ':'
aland [Mon, 18 Jun 2007 12:13:20 +0000 (12:13 +0000)]
Strip embedded LF's and CR's
aland [Mon, 18 Jun 2007 11:51:47 +0000 (11:51 +0000)]
Add listener to fake requests, too
aland [Mon, 18 Jun 2007 09:32:43 +0000 (09:32 +0000)]
when we receive a conflicting packet, FIRST check if the two
packets were received within a second of each other. If so,
delete the NEW one, as the client is severely broken.
When processing a conflicting packet, delete the request from
the request hash ALWAYS.
aland [Mon, 18 Jun 2007 09:17:38 +0000 (09:17 +0000)]
Cleaned up detail file reader. It should now be much more
stable
aland [Mon, 18 Jun 2007 09:17:05 +0000 (09:17 +0000)]
Call detail_send even if there's no reply. It's necessary to
re-send the packet
aland [Sat, 16 Jun 2007 13:39:38 +0000 (13:39 +0000)]
Better checks for no OpenSSL
aland [Sat, 16 Jun 2007 13:15:53 +0000 (13:15 +0000)]
No longer relevant
aland [Sat, 16 Jun 2007 02:12:11 +0000 (02:12 +0000)]
space may be NULL
aland [Fri, 15 Jun 2007 13:08:03 +0000 (13:08 +0000)]
Corrected typo
aland [Fri, 15 Jun 2007 13:06:43 +0000 (13:06 +0000)]
Added latest RFC
aland [Fri, 15 Jun 2007 09:52:21 +0000 (09:52 +0000)]
Cleaned up compiler warnings
aland [Fri, 15 Jun 2007 09:49:38 +0000 (09:49 +0000)]
listen sections find clients by:
- clients = foo
look for clients foo {} section that contains clients.
- identity bar {}
Look for clients in the identity section
- else mainconfig.config
aland [Fri, 15 Jun 2007 08:36:48 +0000 (08:36 +0000)]
Update request->username && request->password if they've been
edited.
We should probably just delete those entries from radiusd.conf
aland [Fri, 15 Jun 2007 08:25:04 +0000 (08:25 +0000)]
Updated based on their web site
aland [Thu, 14 Jun 2007 15:20:00 +0000 (15:20 +0000)]
New "identy" support, where authorize, etc. can be run on
a per-listener basis
aland [Thu, 14 Jun 2007 15:17:37 +0000 (15:17 +0000)]
Print out identity, if it exists
aland [Thu, 14 Jun 2007 12:53:40 +0000 (12:53 +0000)]
Make spaces 'const char *', rather than 'int', in preparation for
leveraging listener->identity
aland [Thu, 14 Jun 2007 12:22:44 +0000 (12:22 +0000)]
Remember which entries in the "to" list have been edited, so
that we don't update them more than once.
Maybe we should change the code to loop over to, then from...
aland [Thu, 14 Jun 2007 12:06:06 +0000 (12:06 +0000)]
Print out correct names for NULL groups
aland [Thu, 14 Jun 2007 09:25:57 +0000 (09:25 +0000)]
Permit per-request configuration to NOT reply to Access-Request.
I think this is nuts in most cases, but some people want it.
aland [Thu, 14 Jun 2007 09:09:28 +0000 (09:09 +0000)]
Added support for "<=" and ">=". Made the conf file parser a
little more careful, too
aland [Thu, 14 Jun 2007 08:43:41 +0000 (08:43 +0000)]
Prefixed pairmove debug messages with :::
Cleaned up logic: if attribute to add *isn't* in the list, then
add it.
aland [Thu, 14 Jun 2007 08:30:26 +0000 (08:30 +0000)]
More instances of rlm_always
aland [Thu, 14 Jun 2007 08:28:19 +0000 (08:28 +0000)]
Document Autz-Type = Status-Server
Point to "man" pages
aland [Wed, 13 Jun 2007 12:52:54 +0000 (12:52 +0000)]
Add support for "default" entries in a switch statement
aland [Wed, 13 Jun 2007 12:38:03 +0000 (12:38 +0000)]
Simplify the code a little
aland [Wed, 13 Jun 2007 12:07:13 +0000 (12:07 +0000)]
Fully document the language
aland [Wed, 13 Jun 2007 10:43:04 +0000 (10:43 +0000)]
free stuff
aland [Wed, 13 Jun 2007 10:33:07 +0000 (10:33 +0000)]
We don't do case-insensitive string comparisons. That never
worked.
If the attribute has a tag, compare that FIRST, before comparing
the value.
aland [Wed, 13 Jun 2007 10:27:52 +0000 (10:27 +0000)]
Re-implement pairmove() WITHOUT bugs, and allow "-=" to work.
aland [Wed, 13 Jun 2007 08:52:22 +0000 (08:52 +0000)]
Enforce operators in "update" sections
aland [Tue, 12 Jun 2007 16:20:55 +0000 (16:20 +0000)]
Added a "man" page for the configuration file un-language.
It's not done, but it's loads better than what was there before.
aland [Tue, 12 Jun 2007 16:06:11 +0000 (16:06 +0000)]
Renamed "check" to "control"
aland [Tue, 12 Jun 2007 15:55:11 +0000 (15:55 +0000)]
control attribute list
aland [Tue, 12 Jun 2007 15:53:53 +0000 (15:53 +0000)]
Use 'control' rather than 'config', due to issues with xlat.
aland [Tue, 12 Jun 2007 14:01:36 +0000 (14:01 +0000)]
Note vmps == post-auth
aland [Tue, 12 Jun 2007 13:54:41 +0000 (13:54 +0000)]
Copy updated conf file text from radiusd.conf
aland [Tue, 12 Jun 2007 13:16:48 +0000 (13:16 +0000)]
Clarify the configuration file syntax enormously
aland [Tue, 12 Jun 2007 12:25:18 +0000 (12:25 +0000)]
Clean up xlat messages
aland [Tue, 12 Jun 2007 12:22:31 +0000 (12:22 +0000)]
Added support for xlat in switch statements
aland [Tue, 12 Jun 2007 12:06:26 +0000 (12:06 +0000)]
Added sections "switch foo" and "case bar". Right now, there's no
xlat on either one (there probably should be on BOTH)
There's also no "default" for the "switch".
"case" can appear outside of a "switch", where it's treated as
a "group"... sort of.
aland [Tue, 12 Jun 2007 09:16:24 +0000 (09:16 +0000)]
Added --with-vmps to configure options, so that you can build
without VMPS support. It's enabled by default...
aland [Mon, 11 Jun 2007 15:50:34 +0000 (15:50 +0000)]
Renamed attributes
aland [Mon, 11 Jun 2007 14:50:31 +0000 (14:50 +0000)]
Added Quiconnect dictionary
aland [Mon, 11 Jun 2007 13:07:51 +0000 (13:07 +0000)]
Added support for (... =~ /BOB/i)
aland [Mon, 11 Jun 2007 13:02:53 +0000 (13:02 +0000)]
Do more work to clean up on exit
aland [Mon, 11 Jun 2007 08:57:02 +0000 (08:57 +0000)]
Initialize the whole of the local VP to prevent uninitialized
stuff
aland [Mon, 11 Jun 2007 08:44:32 +0000 (08:44 +0000)]
Moved check for top of stack to BEFORE printing out result
aland [Mon, 11 Jun 2007 08:34:28 +0000 (08:34 +0000)]
Update result only if we were told to evaluate the condition
aland [Mon, 11 Jun 2007 08:26:53 +0000 (08:26 +0000)]
Clean up printing
aland [Mon, 11 Jun 2007 07:39:12 +0000 (07:39 +0000)]
When parsing a condition, if the next thing is !=, it's part
of the current condition. But if the next thing is !, it's not
nbk [Mon, 4 Jun 2007 13:23:08 +0000 (13:23 +0000)]
It seems sendmsg(2) returns -1 (at least on my system) when
the msgh.msg_controllen value is too big.
nbk [Sun, 3 Jun 2007 23:27:39 +0000 (23:27 +0000)]
Add support for MySQL stored procedures. (closes: #449)
nbk [Sat, 2 Jun 2007 13:49:39 +0000 (13:49 +0000)]
Fix gethostbyaddr_r() detection for FreeBSD. (closes: #454)
Patch from David Wood <david@wood2.org.uk>
aland [Wed, 30 May 2007 09:08:28 +0000 (09:08 +0000)]
Add Gigaword support. Patch from Stefan Winter
aland [Wed, 30 May 2007 09:06:14 +0000 (09:06 +0000)]
Try to compile the update foo {} sections at run time. This pulls
many parse errors earlier into the cycle. It also means that we
can cache the DICT_ATTR lookups, so we don't have to do them at
run time.
aland [Wed, 30 May 2007 09:04:38 +0000 (09:04 +0000)]
Make cf_pairtovp() smarter
aland [Wed, 30 May 2007 08:49:30 +0000 (08:49 +0000)]
Note unused variable
aland [Wed, 30 May 2007 08:48:47 +0000 (08:48 +0000)]
Remove unused variable
aland [Wed, 30 May 2007 08:34:42 +0000 (08:34 +0000)]
New cf_pairtovp() function, to support the "update" sections
aland [Wed, 30 May 2007 08:34:15 +0000 (08:34 +0000)]
Expose pairalloc()
aland [Wed, 30 May 2007 08:05:35 +0000 (08:05 +0000)]
Added notes about stand-alone, versus integrated vmps server
aland [Wed, 30 May 2007 07:46:40 +0000 (07:46 +0000)]
Removed unused variables
aland [Wed, 30 May 2007 07:46:05 +0000 (07:46 +0000)]
Use proper def for cygwin
aland [Wed, 30 May 2007 07:42:36 +0000 (07:42 +0000)]
Added checks for sockaddr_in6
aland [Wed, 30 May 2007 07:30:42 +0000 (07:30 +0000)]
Dang... forgot to commit something else
aland [Tue, 29 May 2007 14:44:34 +0000 (14:44 +0000)]
Notes and typos
aland [Tue, 29 May 2007 14:42:08 +0000 (14:42 +0000)]
Corrected typo
aland [Tue, 29 May 2007 14:40:10 +0000 (14:40 +0000)]
Removed unused variable
aland [Tue, 29 May 2007 14:36:58 +0000 (14:36 +0000)]
Document ethernet type
aland [Tue, 29 May 2007 14:33:43 +0000 (14:33 +0000)]
Minor cleanups
aland [Tue, 29 May 2007 14:33:25 +0000 (14:33 +0000)]
Now that we do VMPS, support ethernet types natively.
aland [Tue, 29 May 2007 12:37:23 +0000 (12:37 +0000)]
Loops are better than unrolling them
aland [Tue, 29 May 2007 09:03:59 +0000 (09:03 +0000)]
Expand double-quoted strings, too
aland [Tue, 29 May 2007 08:57:40 +0000 (08:57 +0000)]
Remove unused capability for ${User-Name}, it conflicts with
the variables in the config file.
aland [Tue, 29 May 2007 07:48:11 +0000 (07:48 +0000)]
Clean up compiler warnings
aland [Tue, 29 May 2007 07:46:35 +0000 (07:46 +0000)]
Corrected debug output
aland [Mon, 28 May 2007 15:00:45 +0000 (15:00 +0000)]
Correct comparison.
Use new Packet-Src-Ipaddr, etc.
aland [Mon, 28 May 2007 14:49:52 +0000 (14:49 +0000)]
Try to make FreeRADIUS-Proxied-To work again
aland [Mon, 28 May 2007 14:24:04 +0000 (14:24 +0000)]
Include vmpsd.conf in list of files that need to be generated