aland [Tue, 9 Oct 2007 12:08:48 +0000 (12:08 +0000)]
#if __APPLE__
to
#ifdef __APPLE__
aland [Tue, 9 Oct 2007 12:07:48 +0000 (12:07 +0000)]
Move add_reply to mschap_add_reply, so that the opendir code
can use it
aland [Fri, 5 Oct 2007 07:10:32 +0000 (07:10 +0000)]
As posted to the list
aland [Wed, 3 Oct 2007 13:29:04 +0000 (13:29 +0000)]
More re-arrangements to clarify the code.
Cleaned up debug output so it should be even easier to
understand.
aland [Wed, 3 Oct 2007 12:18:48 +0000 (12:18 +0000)]
Removed useless error message
aland [Wed, 3 Oct 2007 06:33:53 +0000 (06:33 +0000)]
Clean up compiler warnings and remove exit(0)
aland [Wed, 3 Oct 2007 06:29:49 +0000 (06:29 +0000)]
More sanity checks on the module instance handles.
Patch from Stephan Jaeger.
aland [Fri, 28 Sep 2007 12:51:07 +0000 (12:51 +0000)]
Re-arrange code, one less reference to global variables
aland [Fri, 28 Sep 2007 12:50:43 +0000 (12:50 +0000)]
No longer reference mainconfig.clients
aland [Fri, 28 Sep 2007 12:07:04 +0000 (12:07 +0000)]
Removed all references to mainconfig.clients.
aland [Fri, 28 Sep 2007 11:46:58 +0000 (11:46 +0000)]
Moved nearly all remaining code out of radiusd.c, and into
event.c
This means that the main server loop is purely event-driven,
by sockets and by timed events.
There are still a few FIXME's, like adding newly-created proxy
sockets to the event loop, but that shouldn't be hard to fix.
The result is that the code is (again) much easier to
understand. Also, we hope that HUP support will be easier to
add after this change.
aland [Fri, 28 Sep 2007 11:44:08 +0000 (11:44 +0000)]
Added cf_top_section()
aland [Fri, 28 Sep 2007 09:09:58 +0000 (09:09 +0000)]
Added status function to be called just before select()
aland [Thu, 27 Sep 2007 23:37:55 +0000 (23:37 +0000)]
Added socket handling code to the event loop. This should
simplify it somewhat...
aland [Thu, 27 Sep 2007 15:02:41 +0000 (15:02 +0000)]
Added the OpenSER dictionary from their web site.
Commented out (i.e. unused) because of conflicts
aland [Thu, 27 Sep 2007 14:11:00 +0000 (14:11 +0000)]
No need to reset snmp stuff. It's done in radius_snmp_init()
aland [Thu, 27 Sep 2007 14:09:09 +0000 (14:09 +0000)]
Corrected return type of init.
aland [Wed, 26 Sep 2007 16:10:02 +0000 (16:10 +0000)]
Clarify difference between normal and enforcement operators
aland [Wed, 26 Sep 2007 16:00:00 +0000 (16:00 +0000)]
Add == as a filtering operator in unlang, and document it.
It's the opposite of -=
aland [Wed, 26 Sep 2007 13:24:34 +0000 (13:24 +0000)]
Now that we have request->root, we don't need to call
cf_section_find(NULL)
aland [Wed, 26 Sep 2007 13:21:49 +0000 (13:21 +0000)]
Pass the top-level configuration to the thread pool, so that
we can reload things without changing the existing
configuration.
There is still only one thread_pool structure. We may want to
update it to be a pointer, so that we can do atomic swaps...
aland [Wed, 26 Sep 2007 13:00:43 +0000 (13:00 +0000)]
Moved snmp config from global to local variables.
aland [Wed, 26 Sep 2007 12:41:17 +0000 (12:41 +0000)]
Use new request->root variable
aland [Wed, 26 Sep 2007 12:40:45 +0000 (12:40 +0000)]
Add 'mainconfig_t' entry to REQUEST*, so that each request has
its own configuration. This should make HUP easier.
aland [Wed, 26 Sep 2007 10:47:33 +0000 (10:47 +0000)]
Moved mainconfig references to a pointer, in preparation for
making the server HUP-safe
aland [Wed, 26 Sep 2007 10:46:55 +0000 (10:46 +0000)]
Removed unused variable
aland [Wed, 26 Sep 2007 10:43:09 +0000 (10:43 +0000)]
Removed all references to "mainconfig" from realms.c.
realms.c is now HUP-safe. On HUP, it loads its configuration
into a new data structure, and atomically switches between the
old one and the new one.
Right now, it immediately frees the old data structure. It
should really be placed onto a queue for later garbage
collection, as a child thread may be accessing it. That problem
can be solved later.
aland [Tue, 25 Sep 2007 23:55:32 +0000 (23:55 +0000)]
Pass src port to udpfromto, also.
Shorten the time frame for race conditions in the random context
aland [Tue, 25 Sep 2007 21:35:16 +0000 (21:35 +0000)]
We don't need to call openlog() any more.
aland [Tue, 25 Sep 2007 21:33:39 +0000 (21:33 +0000)]
We don't need mainconfig
aland [Tue, 25 Sep 2007 09:34:31 +0000 (09:34 +0000)]
Free listen type correctly.
After bind, call getsockname() to figure out which address
we've bound to. On a *BSD Jail, we bind to 0, but the socket
ends up bound to the jail IP.
aland [Tue, 25 Sep 2007 09:10:39 +0000 (09:10 +0000)]
Use uint32_t, rather than int. int MAY be 64-bits.
Use vp->vp_*, rather than lvalue.
aland [Tue, 25 Sep 2007 08:51:14 +0000 (08:51 +0000)]
Include jradius
aland [Tue, 25 Sep 2007 08:50:41 +0000 (08:50 +0000)]
Reformatted to match other dictionaries
dwbird [Mon, 24 Sep 2007 16:16:21 +0000 (16:16 +0000)]
- initial version of rlm_jradius with directions and dictionary
- updated chilli* dictionary
aland [Mon, 24 Sep 2007 12:36:00 +0000 (12:36 +0000)]
Cleaned up proxy handling, trying to get away from potential
race condition (I think...)
aland [Mon, 24 Sep 2007 11:12:26 +0000 (11:12 +0000)]
Generalized the module handling even more, which allows us to
pull the VMPS config into one or more virtual servers.
aland [Mon, 24 Sep 2007 09:50:33 +0000 (09:50 +0000)]
Removed a number of function call arguments that are either
static, or not used
aland [Mon, 24 Sep 2007 09:38:24 +0000 (09:38 +0000)]
Clean up auto-creation of dictionary types
aland [Thu, 20 Sep 2007 17:07:08 +0000 (17:07 +0000)]
Note overlap with dictionary.huawei
aland [Thu, 20 Sep 2007 17:06:52 +0000 (17:06 +0000)]
As posted to the list
aland [Thu, 20 Sep 2007 17:04:02 +0000 (17:04 +0000)]
as posted to the list
aland [Wed, 19 Sep 2007 14:48:04 +0000 (14:48 +0000)]
Set up the filter after initializing the dictionaries
aland [Wed, 19 Sep 2007 14:41:16 +0000 (14:41 +0000)]
Print out IP addresses, too.
Re-arrange the code.
aland [Wed, 19 Sep 2007 14:29:46 +0000 (14:29 +0000)]
Added debug flag.
Don't crash on non-radius packets
pnixon [Tue, 18 Sep 2007 06:08:36 +0000 (06:08 +0000)]
Fix bitwise operations. (Turns out that they are NOT Postgresql compatible)
pnixon [Mon, 17 Sep 2007 21:09:49 +0000 (21:09 +0000)]
Standardise radpostauth column names
aland [Mon, 17 Sep 2007 14:35:26 +0000 (14:35 +0000)]
Put text of assertion into error message
aland [Mon, 17 Sep 2007 14:21:47 +0000 (14:21 +0000)]
Flush stdout
aland [Mon, 17 Sep 2007 12:33:36 +0000 (12:33 +0000)]
More wordsmithing
aland [Mon, 17 Sep 2007 11:41:41 +0000 (11:41 +0000)]
We don't need a virtual server for the default config
aland [Mon, 17 Sep 2007 09:38:57 +0000 (09:38 +0000)]
Relaxed the constraints around a default server block
aland [Mon, 17 Sep 2007 08:58:47 +0000 (08:58 +0000)]
client->server over-rides listener->server.
Add documentation saying so.
aland [Mon, 17 Sep 2007 08:49:43 +0000 (08:49 +0000)]
Renamed data structures to correspond to their usagewq
pnixon [Fri, 14 Sep 2007 18:32:56 +0000 (18:32 +0000)]
Use CHAR(2) instead of VARCHAR(2) as it takes up less space and gives the same result
pnixon [Wed, 12 Sep 2007 14:03:27 +0000 (14:03 +0000)]
Add Max-All-Session-Time
pnixon [Wed, 12 Sep 2007 13:58:48 +0000 (13:58 +0000)]
One of the queries should be enabled by default
aland [Mon, 10 Sep 2007 13:04:30 +0000 (13:04 +0000)]
Errors are < 0
aland [Mon, 10 Sep 2007 13:02:15 +0000 (13:02 +0000)]
Unconfigured strings are NULL, not ""
Check for NULL, too
aland [Mon, 10 Sep 2007 07:31:42 +0000 (07:31 +0000)]
Corrected typo
aland [Sun, 9 Sep 2007 16:24:06 +0000 (16:24 +0000)]
Corrected typo
aland [Fri, 7 Sep 2007 09:19:55 +0000 (09:19 +0000)]
Document new client format
aland [Fri, 7 Sep 2007 09:09:43 +0000 (09:09 +0000)]
Change "prefix" to "netmask"
aland [Fri, 7 Sep 2007 08:52:30 +0000 (08:52 +0000)]
Removed duplicate section
aland [Thu, 6 Sep 2007 14:36:20 +0000 (14:36 +0000)]
Re-factor "allocate pool" code, to prepare for cool new features
aland [Thu, 6 Sep 2007 14:17:47 +0000 (14:17 +0000)]
Clearer error message
aland [Wed, 5 Sep 2007 07:36:49 +0000 (07:36 +0000)]
Added more EAP tests
aland [Tue, 4 Sep 2007 15:43:05 +0000 (15:43 +0000)]
Allow new syntax:
client shortname {
ipaddr = foo
...
}
For compatibility with the "listen" sections.
aland [Tue, 4 Sep 2007 15:42:13 +0000 (15:42 +0000)]
Don't key off of the values of the IP addresses for home
servers, as INADDR_ANY is allowed. Instead, key off of names
aland [Tue, 4 Sep 2007 15:25:11 +0000 (15:25 +0000)]
Print listening socket IP, port, and server name for some
more messages. This makes it easier to know which virtual
server has received a packet.
aland [Tue, 4 Sep 2007 13:12:51 +0000 (13:12 +0000)]
After a "cvs admin -o 1.32" to get it back to a cleaner state,
re-create 1.32, this time by listing sites-available/README
aland [Tue, 4 Sep 2007 13:11:23 +0000 (13:11 +0000)]
Something resembling documentation
aland [Tue, 4 Sep 2007 13:07:21 +0000 (13:07 +0000)]
Clients are found by:
* clients = ... in listen section
* clients in same virtual server as listen section
* global clients
aland [Tue, 4 Sep 2007 12:52:36 +0000 (12:52 +0000)]
No idea what the old code did... this is better
aland [Tue, 4 Sep 2007 11:54:24 +0000 (11:54 +0000)]
As posted to the list, with the exception that Prosoft-Auth-Role
is "integer", and not "string", because it VALUEs defined
aland [Tue, 4 Sep 2007 08:46:22 +0000 (08:46 +0000)]
Moved code that turns a conf-reference into a CONF_ITEM into
its own function. (e.g. "foo" -> pair in current section,
"foo.bar" -> foo.bar in main config
Used it in cf_expand_variables
Added explicit $template foo.bar.baz function, which means that
you no longer have to put those things into a separate file.
nbk [Mon, 3 Sep 2007 13:01:40 +0000 (13:01 +0000)]
Depends on dpkg-dev (>= 1.13.19) as the minimum version, since
that's when the ${source:Version} variable was introduced.
Thanks to Stephen Gran <sgran@debian.org>
aland [Mon, 3 Sep 2007 11:33:47 +0000 (11:33 +0000)]
Deal with overflow in total requests sent
aland [Mon, 3 Sep 2007 09:57:50 +0000 (09:57 +0000)]
Keep track of total requests sent to a home server.
Use that information in load balancing. Pick the one which is
least busy (packets sent but not replied to). If there are
multiple such servers, pick the one that HAS BEEN least busy
(total number of packets handled)
Note it's only an "int", so at 1K packets/s, after about 50
days, the number will overflow. That's a very busy proxy,
however...
We do want to fix that overflow before 2.x is out.
aland [Mon, 3 Sep 2007 09:51:46 +0000 (09:51 +0000)]
Check values of hs_type and hs_check before using them
aland [Mon, 3 Sep 2007 09:32:52 +0000 (09:32 +0000)]
Whoops.. old-style realms tried to create pools sized by the
sub-sections named "realm" of the current realm, which didn't
exist.
Add a new API to get the next matching section from the parent
of the section we have. It now works.
pnixon [Sat, 1 Sep 2007 20:21:48 +0000 (20:21 +0000)]
Set realm field to NULL instead of '' when no realm exists
aland [Thu, 30 Aug 2007 12:15:33 +0000 (12:15 +0000)]
After ldap_authorize, if there's no "known good" password,
COMPLAIN. This might help the people who can't be bothered
to read the documentation.
aland [Thu, 30 Aug 2007 09:01:16 +0000 (09:01 +0000)]
Port fix from 1.1.x.
aland [Thu, 30 Aug 2007 08:53:26 +0000 (08:53 +0000)]
time_t may be 64 bits, so we can't pass &vp->vp_date directly
to a function that expects (time_t *)
aland [Thu, 30 Aug 2007 08:46:02 +0000 (08:46 +0000)]
Replaced calls to exit(1) with better code
aland [Thu, 30 Aug 2007 08:42:52 +0000 (08:42 +0000)]
Removed one more call to exit()
aland [Thu, 30 Aug 2007 08:38:05 +0000 (08:38 +0000)]
Moved more code into common section
aland [Thu, 30 Aug 2007 08:29:44 +0000 (08:29 +0000)]
Moved more paircreate() to radius_paircreate()
aland [Thu, 30 Aug 2007 04:15:34 +0000 (04:15 +0000)]
Replaced exit(1) with return -1;
aland [Wed, 29 Aug 2007 08:37:45 +0000 (08:37 +0000)]
Added notes on upgrading
aland [Tue, 28 Aug 2007 13:01:50 +0000 (13:01 +0000)]
Add check for delimitst < 0 back in.
aland [Tue, 28 Aug 2007 09:45:56 +0000 (09:45 +0000)]
Allow valid UTF-8 characters when printing things.
aland [Tue, 28 Aug 2007 08:24:43 +0000 (08:24 +0000)]
Updated error message
aland [Tue, 28 Aug 2007 08:23:21 +0000 (08:23 +0000)]
Removed extraneous "hostname" configuration entry from realms
aland [Tue, 28 Aug 2007 08:03:12 +0000 (08:03 +0000)]
Fail the build if there's no krb5.h
aland [Mon, 27 Aug 2007 15:50:44 +0000 (15:50 +0000)]
Removed "type = radius" from examples. It never did anything,
and it's breaking 2.0
aland [Mon, 27 Aug 2007 15:49:51 +0000 (15:49 +0000)]
Added debug message about duplicate clients
aland [Sat, 25 Aug 2007 04:06:58 +0000 (04:06 +0000)]
Moved detail file handling to its own source file
aland [Sat, 25 Aug 2007 03:58:40 +0000 (03:58 +0000)]
Referenced from src/main/vmps.c