aland [Mon, 14 Feb 2005 20:57:24 +0000 (20:57 +0000)]
Moved hex2bin && bin2hex here from multiple locations in the source
kkalev [Mon, 14 Feb 2005 11:58:53 +0000 (11:58 +0000)]
Add documentation patches from Thor Spruyt. This closes bugs 170,171
phampson [Sun, 13 Feb 2005 01:01:57 +0000 (01:01 +0000)]
Try building SNMP support with -lkstat for Solaris 9
aland [Fri, 11 Feb 2005 21:59:31 +0000 (21:59 +0000)]
Don't read sub-directories when $INCLUDEing "dir/"
aland [Fri, 11 Feb 2005 21:57:46 +0000 (21:57 +0000)]
Don't try to read directories, either
aland [Fri, 11 Feb 2005 21:51:29 +0000 (21:51 +0000)]
When in authorize/etc in policies, don't allow it to call another
modules authenticate/etc phase.
We may want to loosen this restriction in the future...
aland [Fri, 11 Feb 2005 21:47:51 +0000 (21:47 +0000)]
free policy types call/return/etc
Allow policies to call modules. Weird, wild, stuff.
aland [Fri, 11 Feb 2005 16:52:04 +0000 (16:52 +0000)]
Fixed typo
aland [Fri, 11 Feb 2005 01:02:20 +0000 (01:02 +0000)]
Allow !=, too
aland [Thu, 10 Feb 2005 22:56:37 +0000 (22:56 +0000)]
Policy functions can now have return codes. The default is "ok".
The return codes are the module return codes, for simplicity.
The return codes can be checked in conditions, so:
if (foo() == ok) {
...
} else {
...
}
will work. There's no fail-over, or assignment of return codes
to variables, or possibility to check multiple return codes.
This is NOT a real language. It's a nasty hack to get interesting
things done...
aland [Thu, 10 Feb 2005 22:53:01 +0000 (22:53 +0000)]
Don't read "foo~" files.
Maybe we should make it read only *.conf? ...
aland [Thu, 10 Feb 2005 01:33:19 +0000 (01:33 +0000)]
Docs for latest updates
aland [Thu, 10 Feb 2005 00:24:15 +0000 (00:24 +0000)]
Inclusion works:
include "foo" relative to current directory
include "dir/" include all files in subdirectory
aland [Thu, 10 Feb 2005 00:22:41 +0000 (00:22 +0000)]
Don't leave DIR's open on error.
Enclose new readdir code in #ifdef HAVE_DIRENT_H, so no one else
breaks
aland [Wed, 9 Feb 2005 23:57:02 +0000 (23:57 +0000)]
re-arrange code, make the parser a little cleaner
aland [Wed, 9 Feb 2005 18:32:34 +0000 (18:32 +0000)]
Whoops, use dup(),not dup2()
aland [Wed, 9 Feb 2005 18:24:10 +0000 (18:24 +0000)]
When log_dest == stdout/stderr, DUP it to another fd, close it,
and then in the logger, prefer to use mainconfig.radlog_fd.
This allows logging to go to what was stdout/stderr, but doesn't
leave stdout/stderr open for writing by external (forked) programs
kkalev [Wed, 9 Feb 2005 17:59:48 +0000 (17:59 +0000)]
Add a patch from Nicolas Baradakis to fix redundant processing in the accounting
section. This closes bug#173
aland [Wed, 9 Feb 2005 17:42:47 +0000 (17:42 +0000)]
Use correct length of string
kkalev [Wed, 9 Feb 2005 12:56:19 +0000 (12:56 +0000)]
Add a radiusObjectProfile objectclass to be used for creating radius profile
objects if none other objectclass can be used (like *person objectclass, etc)
Original idea and patch by Novell
kkalev [Wed, 9 Feb 2005 12:48:31 +0000 (12:48 +0000)]
Update example.pl with a patch from Thor Spruyt (bug #195)
kkalev [Wed, 9 Feb 2005 12:46:20 +0000 (12:46 +0000)]
Add an rlm_perl patch from Thor Spruyt (bug #196)
kkalev [Wed, 9 Feb 2005 12:44:12 +0000 (12:44 +0000)]
Update dictionary.garderos with patch from Thor Spruyt (bug #205)
aland [Wed, 9 Feb 2005 00:51:14 +0000 (00:51 +0000)]
conf files can now do:
$INCLUDE /path/to/dir/
With a trailing "/" at the end, it means "include all files
in that directory, but not the '.' files"
For future expansion.
kkalev [Wed, 9 Feb 2005 00:06:00 +0000 (00:06 +0000)]
Really stupid typo
aland [Tue, 8 Feb 2005 23:29:37 +0000 (23:29 +0000)]
Don't return binary data
aland [Tue, 8 Feb 2005 23:26:58 +0000 (23:26 +0000)]
Update documentation for new functionality
kkalev [Tue, 8 Feb 2005 23:14:31 +0000 (23:14 +0000)]
Make debug messages on password extraction a little bit more verbose
aland [Tue, 8 Feb 2005 23:13:26 +0000 (23:13 +0000)]
Now that we have MD5-Password and SHA-Password, along with
{User, Crypt, NT, LM}-Password, those attributes should store
the appropriate "hashed" versions of the password.
The PAP module should automagically figure out what to do, based
on which of the above attributes it sees.
aland [Tue, 8 Feb 2005 21:47:56 +0000 (21:47 +0000)]
Added ability for functions to be in conditions. Not perfect yet,
but it works...
kkalev [Tue, 8 Feb 2005 21:44:06 +0000 (21:44 +0000)]
Add a few more checks for the previous patch
kkalev [Tue, 8 Feb 2005 21:39:11 +0000 (21:39 +0000)]
Add another configuration directive, password_radius_attribute. The default is
User-Password and it's purpose is to allow administrators to store NT hashes or
other forms of passwords in the userPassword attribute and map them to the
correct radius password attribute
aland [Tue, 8 Feb 2005 20:36:23 +0000 (20:36 +0000)]
Named policies are items just like any other.
Remove DOS LF's.
aland [Tue, 8 Feb 2005 20:33:50 +0000 (20:33 +0000)]
When there are errors instantiating a module, don't assume that
'ci' is a CONF_SECTION, it may be a CONF_PAIR. Instead, use the
'lineno' which was defined above.
aland [Mon, 7 Feb 2005 17:48:29 +0000 (17:48 +0000)]
Don't set Framed-MTU in default configuration
aland [Fri, 4 Feb 2005 02:00:08 +0000 (02:00 +0000)]
Added {SHA, SSHA, MD5, SMD5}-Password attributes for future
expansion
kkalev [Wed, 2 Feb 2005 11:45:17 +0000 (11:45 +0000)]
Add a few header files
aland [Mon, 31 Jan 2005 18:55:32 +0000 (18:55 +0000)]
Removed C++ comment
aland [Mon, 31 Jan 2005 18:42:26 +0000 (18:42 +0000)]
Updates from Trapeze
kkalev [Fri, 28 Jan 2005 07:21:43 +0000 (07:21 +0000)]
Add second patch from Novell for creating a postauth method in order to
implement the Novell eDirectory account policy check
aland [Wed, 26 Jan 2005 20:35:00 +0000 (20:35 +0000)]
Text from bug #168
aland [Wed, 26 Jan 2005 20:28:02 +0000 (20:28 +0000)]
Handle EAP-Success codes a little better
Patch from bug #180
pnixon [Wed, 26 Jan 2005 11:18:35 +0000 (11:18 +0000)]
addition
pnixon [Sun, 23 Jan 2005 02:08:18 +0000 (02:08 +0000)]
Local-Web specific attributes
aland [Wed, 19 Jan 2005 00:52:11 +0000 (00:52 +0000)]
Check for too small lengths, too
aland [Mon, 10 Jan 2005 20:35:07 +0000 (20:35 +0000)]
From bug #197
kkalev [Fri, 7 Jan 2005 15:03:52 +0000 (15:03 +0000)]
When trying to acquire the detail file lock, sleep more time than rlm_detail
so that we let rlm_detail win. This should probably at least improve the
locking problems reported.
kkalev [Wed, 5 Jan 2005 16:01:57 +0000 (16:01 +0000)]
Update the TODO file
kkalev [Wed, 5 Jan 2005 15:46:51 +0000 (15:46 +0000)]
Add an iPlanet version of the LDAP schema from Daniel Wilson
kkalev [Tue, 4 Jan 2005 15:17:28 +0000 (15:17 +0000)]
* Add an sqlrelay functions file. The user_admin page does not currently work. Looking into it.
* Add sqlrelay support in the scripts. Add a sqlrelay_query script to run sqlrelay commands
kkalev [Tue, 4 Jan 2005 14:04:00 +0000 (14:04 +0000)]
* If date calculation fails, abort
* Add a backup_radacct script
kkalev [Tue, 4 Jan 2005 13:17:27 +0000 (13:17 +0000)]
Fix a problem when reading username.mappings
kkalev [Sun, 2 Jan 2005 14:44:59 +0000 (14:44 +0000)]
Add a patch from Thor Spruyt to add the new functionality
kkalev [Sun, 2 Jan 2005 14:43:04 +0000 (14:43 +0000)]
Add patch from Thor Spruyt to include new functionality
kkalev [Sun, 2 Jan 2005 14:33:43 +0000 (14:33 +0000)]
Change the nas table structure to match the mysql one
kkalev [Sun, 2 Jan 2005 14:09:57 +0000 (14:09 +0000)]
Add a header with the page encoding before sending any page (header added in config.php3)
This closes Bug #153
kkalev [Sun, 2 Jan 2005 13:36:33 +0000 (13:36 +0000)]
Add Novell patch for reading the user's Universal Password from LDAP (eDirectory).
kkalev [Sun, 2 Jan 2005 10:37:32 +0000 (10:37 +0000)]
If we are near a reset then, before doing anything else, change the return value
to the time left to the next reset, instead of the time left in the counter.
Bug found by fduch@antar.bryansk.ru (Bug #190)
phampson [Wed, 29 Dec 2004 22:52:23 +0000 (22:52 +0000)]
Add an option to rlm_exec to control whether shell escaping is done on
the RADIUS attributes passed into the environment variables.
Also give the return values from programs executed by rlm_exec more
meanings than RLM_MODULE_OK or RLM_MODULE_FAIL, allowing rlm_exec to
participate fully in configurable failover.
phampson [Wed, 29 Dec 2004 08:25:42 +0000 (08:25 +0000)]
Fix typo
phampson [Wed, 29 Dec 2004 08:14:58 +0000 (08:14 +0000)]
Correctly process the Dialupadmin configuration and perl scripts for the
correct locations of binaries and configuration files.
phampson [Wed, 29 Dec 2004 08:10:49 +0000 (08:10 +0000)]
Update to config.sub 2004-11-30 and config.guess 2004-11-12
phampson [Wed, 29 Dec 2004 06:00:52 +0000 (06:00 +0000)]
More autoheader cleanups. HAVE_REGEX_H is provided by autoconf.h already
phampson [Wed, 29 Dec 2004 05:48:40 +0000 (05:48 +0000)]
Rollback 1.12, which was comitted with the wrong comment and without the
rest of the patch.
phampson [Wed, 29 Dec 2004 05:45:42 +0000 (05:45 +0000)]
Regenerate configure with autogen.sh
phampson [Wed, 29 Dec 2004 05:37:38 +0000 (05:37 +0000)]
More autoheader updates
phampson [Wed, 29 Dec 2004 05:09:02 +0000 (05:09 +0000)]
More autoheader cleanups. Use autoheader for modules that
have AC_CONFIG_HEADER in their configure.in scripts.
pnixon [Tue, 28 Dec 2004 10:37:55 +0000 (10:37 +0000)]
oops. typo
pnixon [Sun, 26 Dec 2004 22:48:39 +0000 (22:48 +0000)]
Use Timestamp in Accttime field
phampson [Thu, 23 Dec 2004 03:10:31 +0000 (03:10 +0000)]
History corrections to match what actually happened with the version
numbers.
phampson [Thu, 23 Dec 2004 02:08:17 +0000 (02:08 +0000)]
Apply patch from Bugzilla #149 to process REJECT post-auth stanza for rejections
from a home server or external process.
kkalev [Tue, 21 Dec 2004 15:11:33 +0000 (15:11 +0000)]
Also add a Makefile.in
We need to copy the configure script from rlm_counter here.
kkalev [Tue, 21 Dec 2004 15:08:05 +0000 (15:08 +0000)]
Add the first version of a request caching module. More information in
experimental.conf
When creating the datadir, create it with mode 755, not 700. Otherwise, only
root may run radclient.
kkalev [Mon, 20 Dec 2004 16:58:16 +0000 (16:58 +0000)]
* In bin/snmpfinger also accept @,. in the username
* If we are stripping realms, then if needed strip them from the data returned by snmpfinger in
user_finger.php3
phampson [Sun, 19 Dec 2004 02:31:07 +0000 (02:31 +0000)]
Debian updates:
Two second pause during restart
Copyright information about OpenSSL
Versioned dependancies between freeradius package and module packages.
phampson [Sun, 19 Dec 2004 00:52:55 +0000 (00:52 +0000)]
Repair 1.0.0 release date
phampson [Sun, 19 Dec 2004 00:43:18 +0000 (00:43 +0000)]
Update changelog with 1.0.1's changelog
phampson [Sun, 19 Dec 2004 00:32:53 +0000 (00:32 +0000)]
Change big-endian detection to use the autoconf-defined macro, not the
sometimes locally defined macro.
phampson [Sun, 19 Dec 2004 00:30:22 +0000 (00:30 +0000)]
Rerun autogen.sh after changes to build system
phampson [Sat, 18 Dec 2004 23:52:30 +0000 (23:52 +0000)]
Add support so using autoheader to generate autoconf.h, and add
AC_C_BIGENDIAN and AC_SYS_LARGEFILE macros. This required the
HAVE_LOCAL_SNPRINTF macro to move to libradius.h.
Refreshed config.guess, config.sub and ltmain.sh.
aland [Fri, 17 Dec 2004 17:45:53 +0000 (17:45 +0000)]
Remove rlm_x99_token. There's no maintainer, and it's causing
too many other people problems.
aland [Thu, 16 Dec 2004 22:21:41 +0000 (22:21 +0000)]
Remove DOS CR's
aland [Thu, 16 Dec 2004 06:45:17 +0000 (06:45 +0000)]
Better text
aland [Wed, 15 Dec 2004 23:55:37 +0000 (23:55 +0000)]
Fix minor typos
aland [Wed, 15 Dec 2004 23:38:05 +0000 (23:38 +0000)]
Unlock mutex after updating structure, not before
aland [Wed, 15 Dec 2004 23:36:47 +0000 (23:36 +0000)]
Unblock SIGCHLD when returning.
Bug noted by L.C. Badea
aland [Tue, 14 Dec 2004 21:24:49 +0000 (21:24 +0000)]
Updated error messages for %{config:...}
Allowed the config to be dynamically translated, too.
e.g. %{config: section.%{sub-section-name}.item
causes the sub-section-name to be expanded at run-time.
This didn't work before because (I think) the dynamic expansion
code expects to see %{foo} as a bare word, surrounded by whitespace.
e.g. "%{foo}" gets expanded, "...%{foo}..." doesn't.
This should be checked...
aland [Tue, 14 Dec 2004 21:14:14 +0000 (21:14 +0000)]
Made the name search a little more forgiving, so it works
as previously advertised
aland [Tue, 14 Dec 2004 20:04:59 +0000 (20:04 +0000)]
Update dict_attrbyname() to accept
Attr-%d
Vendor-%d-Attr-%d
VendorName-Attr-%d
VendorName-Attribute-Name
which should be a little more generic than what we had previously.
See recent comments to src/lib/valuepair.c, on how these changes
affect pairmake(), and pairparsevalue()
aland [Tue, 14 Dec 2004 20:01:37 +0000 (20:01 +0000)]
Additional comments about things we should eventually do
wichert [Tue, 14 Dec 2004 12:13:04 +0000 (12:13 +0000)]
Include crypt.h if it is available so we get a prototype for crypt()
wichert [Tue, 14 Dec 2004 11:57:25 +0000 (11:57 +0000)]
Change return type of ip_ntoa and ipv6_ntoa to const char* to fix a compile warning
kkalev [Mon, 13 Dec 2004 13:34:31 +0000 (13:34 +0000)]
Version 1.0 of radsqlrelay.c No Makefile additions for now
aland [Thu, 9 Dec 2004 02:31:18 +0000 (02:31 +0000)]
No DOS nonsense.
More documentation.
aland [Wed, 8 Dec 2004 22:05:31 +0000 (22:05 +0000)]
Calling policies is now done by foo(), not by "call foo"
aland [Wed, 8 Dec 2004 17:20:25 +0000 (17:20 +0000)]
Look in /usr/include/et for krb5 headers, so that stupid FC
systems will work
kkalev [Wed, 8 Dec 2004 15:10:42 +0000 (15:10 +0000)]
* Add a snmp_clearsession which can disconnect a user by using the Cisco AAA Session MIB
* Add a configuration directive general_sessionclear_bin
kkalev [Wed, 8 Dec 2004 15:06:25 +0000 (15:06 +0000)]
Also delete sessions from sql_extra_servers. Add the ability to disconnect
a user (using the AAA Session MIB of Cisco)
kkalev [Tue, 7 Dec 2004 18:45:16 +0000 (18:45 +0000)]
Add a not about return-attribute being only integer type
kkalev [Tue, 7 Dec 2004 18:42:20 +0000 (18:42 +0000)]
Update documentation