Fajar A. Nugraha [Thu, 9 May 2013 08:54:03 +0000 (15:54 +0700)]
redhat: README was renamed to README.rst
Fajar A. Nugraha [Thu, 9 May 2013 09:19:35 +0000 (16:19 +0700)]
redhat: refresh freeradius-cert-config.patch
Fajar A. Nugraha [Thu, 9 May 2013 09:21:20 +0000 (16:21 +0700)]
redhat: add "make" to BuildRequires list
Fajar A. Nugraha [Thu, 9 May 2013 08:49:39 +0000 (15:49 +0700)]
redhat: bump version in specfile to 2.2.1
Alan T. DeKok [Wed, 8 May 2013 13:24:17 +0000 (09:24 -0400)]
Refer to smbpasswd module, not etc_smbpasswd
Alan T. DeKok [Mon, 6 May 2013 13:00:10 +0000 (09:00 -0400)]
Better checks for decoding base64
If it's not base64, don't do anything
Alan T. DeKok [Fri, 3 May 2013 18:12:21 +0000 (14:12 -0400)]
Worry about sign overflow in comparisons
Alan T. DeKok [Wed, 1 May 2013 19:49:09 +0000 (15:49 -0400)]
Fix typo from previous commit
Alan T. DeKok [Wed, 1 May 2013 18:45:39 +0000 (14:45 -0400)]
There's light at the end of the tunnel
Alan T. DeKok [Wed, 1 May 2013 12:59:43 +0000 (08:59 -0400)]
Allow two contiguous sub-TLVs of the same number
Alan T. DeKok [Tue, 30 Apr 2013 22:03:30 +0000 (18:03 -0400)]
Set the length of the SoH string
Alan T. DeKok [Mon, 29 Apr 2013 18:20:17 +0000 (14:20 -0400)]
From Runcom
Alan T. DeKok [Sat, 27 Apr 2013 15:04:10 +0000 (11:04 -0400)]
%t is UTC if global utc is set
Alan T. DeKok [Sat, 27 Apr 2013 15:03:54 +0000 (11:03 -0400)]
Use base64 xlat for xlat base64
Arran Cudbard-Bell [Fri, 26 Apr 2013 13:48:14 +0000 (06:48 -0700)]
Merge pull request #281 from alanbuxey/v2.x.x
backport of sha1 expr support
Alan Buxey [Fri, 26 Apr 2013 11:01:28 +0000 (12:01 +0100)]
backport of sha1 expr support
%{sha1:…} added to HEAD. now this useful function backported to v2.x.x
Arran Cudbard-Bell [Tue, 23 Apr 2013 11:24:59 +0000 (07:24 -0400)]
Add dlink dictionary
Arran Cudbard-Bell [Mon, 22 Apr 2013 19:35:20 +0000 (15:35 -0400)]
Updates as provided by Giles Scott
Alan T. DeKok [Thu, 11 Apr 2013 13:56:07 +0000 (09:56 -0400)]
Note recent changes
Alan T. DeKok [Thu, 11 Apr 2013 13:51:16 +0000 (09:51 -0400)]
Note that TLS "random_file" isn't required.
OpenSSL reads /dev/urandom anyways.
Alan T. DeKok [Thu, 11 Apr 2013 13:22:42 +0000 (09:22 -0400)]
dhclient is ISC's thing. Let's rename it
Alan T. DeKok [Tue, 9 Apr 2013 19:00:26 +0000 (15:00 -0400)]
Fix typo
Alan T. DeKok [Tue, 2 Apr 2013 20:21:43 +0000 (16:21 -0400)]
Reset priority when returning up the call stack
Alan T. DeKok [Tue, 2 Apr 2013 15:10:26 +0000 (11:10 -0400)]
Fix typo: & not &&
Alan T. DeKok [Fri, 29 Mar 2013 14:28:03 +0000 (10:28 -0400)]
Run through the format script
Alan T. DeKok [Fri, 29 Mar 2013 14:26:26 +0000 (10:26 -0400)]
Fix typo and do chrgrp of radiusd (if applicable)
Manual fix for pull #262
Alan T. DeKok [Fri, 29 Mar 2013 14:23:47 +0000 (10:23 -0400)]
Added "show config <path>" to radmin
Arran Cudbard-Bell [Thu, 28 Mar 2013 15:11:24 +0000 (11:11 -0400)]
Updated Trapeze dictionary and added one for Meru (as submitted by John Carter)
Arran Cudbard-Bell [Thu, 28 Mar 2013 12:46:35 +0000 (05:46 -0700)]
Merge pull request #256 from olivierbeytrison/v2.x.x
fix typo
Olivier Beytrison [Thu, 28 Mar 2013 09:54:26 +0000 (10:54 +0100)]
fix typo
Alan T. DeKok [Tue, 26 Mar 2013 20:55:47 +0000 (16:55 -0400)]
Note recent changes
Alan T. DeKok [Tue, 26 Mar 2013 20:47:51 +0000 (16:47 -0400)]
Hacks to remove crash on exit
Alan T. DeKok [Tue, 26 Mar 2013 12:23:34 +0000 (08:23 -0400)]
Allow setting Packet-Dst-Port when giaddr is set
Alan T. DeKok [Sun, 24 Mar 2013 13:54:31 +0000 (09:54 -0400)]
Fix horrible hack
The core of rlm_eap expects that "inst" is the structure
containing the parsed config variables. Using "inst->conf"
instead confuses things. And is a horrible idea.
So... we just put the conf stuff as the first structure in 'inst'
It's horrid, but simpler than going through and fixing it
correctly.
Alan T. DeKok [Tue, 19 Mar 2013 13:18:23 +0000 (09:18 -0400)]
Make "yes" the default for require_message_authenticator
Arran Cudbard-Bell [Tue, 19 Mar 2013 13:06:08 +0000 (06:06 -0700)]
Merge pull request #231 from olivierbeytrison/v2.x.x
fix dhcp.c for --disable-developper
Olivier Beytrison [Tue, 19 Mar 2013 10:41:00 +0000 (11:41 +0100)]
fix dhcp.c for --disable-developper
Alan T. DeKok [Sun, 17 Mar 2013 03:54:54 +0000 (23:54 -0400)]
Ignore NULL pathnames
Alan T. DeKok [Sun, 17 Mar 2013 03:50:01 +0000 (23:50 -0400)]
Use correct spacing when printing out config file parsing
use spaces, not tabs
use %.*s for CONF_PAIRS, too. Otherwise their indentation
doesn't match that of the parent CONF_SECTION
Alan T. DeKok [Wed, 13 Mar 2013 18:29:40 +0000 (14:29 -0400)]
Fix minor typos
Alan T. DeKok [Wed, 13 Mar 2013 18:10:37 +0000 (14:10 -0400)]
Fix examples to match Makefile
Apparently some people pedantically read everything, and
get excited when not everything is up to date
Alan Buxey [Thu, 14 Mar 2013 20:43:52 +0000 (20:43 +0000)]
fixed some typos
typos….some essential for documentation to be correct, others just annoying
Arran Cudbard-Bell [Thu, 14 Mar 2013 14:10:34 +0000 (11:10 -0300)]
Note TLS certificate validation
Arran Cudbard-Bell [Thu, 14 Mar 2013 14:00:58 +0000 (11:00 -0300)]
Add notes on virtual_server
Arran Cudbard-Bell [Wed, 13 Mar 2013 20:35:18 +0000 (16:35 -0400)]
Ignore more things
Arran Cudbard-Bell [Wed, 13 Mar 2013 20:22:34 +0000 (16:22 -0400)]
rlm_eap virtual servers now call postauth for both accept and reject
Add rad_virtual_server to call rad_authenticate and rad_postauth
Patch by Matthew Newton
Alan Buxey [Mon, 11 Mar 2013 11:00:49 +0000 (11:00 +0000)]
dded rfc6677.txt to the repository
..matching recent 3.x update
Alan Buxey [Mon, 11 Mar 2013 11:00:09 +0000 (11:00 +0000)]
we dont want to rotate this file (already fixed in 3.x)
dont rotate radutmp out of the way - its not a log, its a state.
Arran Cudbard-Bell [Fri, 8 Mar 2013 19:19:34 +0000 (14:19 -0500)]
Add call to AC_CANONICAL_SYSTEM to populate $host
Alan T. DeKok [Fri, 8 Mar 2013 14:56:38 +0000 (09:56 -0500)]
Ensure we exit 0 when rcode=1
Alan T. DeKok [Fri, 8 Mar 2013 14:28:04 +0000 (09:28 -0500)]
Clean up error / debug messages
Alan Buxey [Thu, 7 Mar 2013 20:52:19 +0000 (20:52 +0000)]
keeping up with the RFCs
RFC 6677. awaiting RFC-ietf-abfab-gss-eap-09 to be passed before
further dictionary changes
Alan Buxey [Thu, 7 Mar 2013 20:55:54 +0000 (20:55 +0000)]
added RFC6677 to the main include list
wont get used otherwise...
Alan T. DeKok [Thu, 7 Mar 2013 17:14:12 +0000 (12:14 -0500)]
Minor verbiology
Alan T. DeKok [Thu, 7 Mar 2013 14:54:26 +0000 (09:54 -0500)]
Missed in last commit
Alan T. DeKok [Thu, 7 Mar 2013 14:48:57 +0000 (09:48 -0500)]
Note recent changes
Jakob Hirsch [Wed, 6 Mar 2013 17:34:52 +0000 (18:34 +0100)]
don't count status server requests in internal stats
Requests to to status server should not be added to the internal counters,
notably the Access-Accept replies. See also the thread in
http://lists.freeradius.org/pipermail/freeradius-devel/2013-March/007801.html
Alan T. DeKok [Thu, 7 Mar 2013 14:28:56 +0000 (09:28 -0500)]
Don't dlclose() modules on "radiusd -m"
It's a bit counter-intuitive to the meaning of "-m", but
it means that the libraries hang around, so that valgrind
can find symbols in them.
Alan T. DeKok [Wed, 6 Mar 2013 15:20:28 +0000 (10:20 -0500)]
Clean up the text before 2.2.1
And mention DHCP, too
Arran Cudbard-Bell [Wed, 6 Mar 2013 14:59:20 +0000 (09:59 -0500)]
Apparently -y is needed too
Alan T. DeKok [Wed, 6 Mar 2013 14:03:30 +0000 (09:03 -0500)]
Fix userparse function
Remove quadratic addition of vp to list. Instead, keep track
of the current tail, insert it there, and then add the entire list
in one swell foop.
Also check if we're returning T_OP_INVALID, and if so, free the
intermediate VPs. This ensures that we either return something,
or an error and nothing else.
It also means that the caller doesn't have to worry about freeing
intermediate VPs if there's a parse error on later ones
Arran Cudbard-Bell [Wed, 6 Mar 2013 02:56:35 +0000 (21:56 -0500)]
Fix Travis retardation
Arran Cudbard-Bell [Mon, 4 Mar 2013 23:35:05 +0000 (18:35 -0500)]
Add -y to work around Travis/apt-get retardation
Arran Cudbard-Bell [Mon, 4 Mar 2013 23:33:37 +0000 (18:33 -0500)]
Whitespace fixes
Arran Cudbard-Bell [Mon, 4 Mar 2013 23:32:47 +0000 (18:32 -0500)]
Remove old readme
Alan T. DeKok [Mon, 4 Mar 2013 19:47:36 +0000 (14:47 -0500)]
Added DHCP-Relay-IP-Address
only in the reply, which is copied from the original giaddr
Alan T. DeKok [Mon, 4 Mar 2013 19:40:25 +0000 (14:40 -0500)]
Remove last hack
Alan T. DeKok [Mon, 4 Mar 2013 16:00:58 +0000 (11:00 -0500)]
Don't encode giaddr on server messages
It does nothing other than fingerpint FR as a DHCP server.
It's supposed to be zero in server packets
Alan T. DeKok [Mon, 4 Mar 2013 15:58:35 +0000 (10:58 -0500)]
Clarify we're using giaddr from the reply, not the request
Alan T. DeKok [Sun, 3 Mar 2013 16:46:22 +0000 (08:46 -0800)]
Added "encoding" text
Alan T. DeKok [Sun, 3 Mar 2013 16:45:04 +0000 (11:45 -0500)]
Added 0x... for numbers
Alan T. DeKok [Thu, 21 Feb 2013 14:34:31 +0000 (09:34 -0500)]
Fix error strings to make more sense
Alan T. DeKok [Sun, 3 Mar 2013 04:12:43 +0000 (20:12 -0800)]
More descriptive debugging messages
Alan T. DeKok [Sun, 3 Mar 2013 03:40:09 +0000 (19:40 -0800)]
Print option only N times, not N + 1
Arran Cudbard-Bell [Thu, 28 Feb 2013 01:56:17 +0000 (20:56 -0500)]
Generate certificates before running tests
Arran Cudbard-Bell [Thu, 28 Feb 2013 01:48:45 +0000 (20:48 -0500)]
Ouput the last few lines of logs if the server fails to start
Arran Cudbard-Bell [Thu, 28 Feb 2013 01:39:42 +0000 (20:39 -0500)]
Convert README to .rst
Arran Cudbard-Bell [Tue, 26 Feb 2013 17:26:01 +0000 (12:26 -0500)]
Turn on caching
Arran Cudbard-Bell [Tue, 26 Feb 2013 16:24:54 +0000 (11:24 -0500)]
Fix typo
Arran Cudbard-Bell [Tue, 26 Feb 2013 16:20:22 +0000 (11:20 -0500)]
Fixup tests
Arran Cudbard-Bell [Tue, 26 Feb 2013 15:55:51 +0000 (10:55 -0500)]
Add .travis.yml
Arran Cudbard-Bell [Tue, 26 Feb 2013 05:55:45 +0000 (00:55 -0500)]
Fix redis configure script
Arran Cudbard-Bell [Tue, 26 Feb 2013 15:51:18 +0000 (07:51 -0800)]
Merge pull request #192 from candlerb/candlerb/expand_xlat
rlm_redis argument splitting for v2.x.x
Alan T. DeKok [Wed, 20 Feb 2013 13:40:54 +0000 (08:40 -0500)]
Make EAP-Key-Name things work
Alan T. DeKok [Tue, 19 Feb 2013 14:53:44 +0000 (09:53 -0500)]
Print out more helpful text for operations error
Alan T. DeKok [Tue, 19 Feb 2013 01:56:47 +0000 (20:56 -0500)]
Accessing a list global to the module means it's thread un-safe
The list should probably be changed to an RBtree for speed.
Alan T. DeKok [Mon, 18 Feb 2013 19:14:10 +0000 (14:14 -0500)]
Note recent changes
Alan T. DeKok [Mon, 18 Feb 2013 19:07:46 +0000 (14:07 -0500)]
Free modules before main config
Now that the modules are cleaned up correctly
Alan T. DeKok [Mon, 18 Feb 2013 19:02:43 +0000 (14:02 -0500)]
Call cf_section_parse_free before freeing sub-modules
Alan T. DeKok [Mon, 18 Feb 2013 19:07:04 +0000 (14:07 -0500)]
No longer need to free conf file stuff manually.
Alan T. DeKok [Mon, 18 Feb 2013 19:01:56 +0000 (14:01 -0500)]
Call cf_section_parse_free before calling the module detach
Alan T. DeKok [Mon, 18 Feb 2013 19:01:32 +0000 (14:01 -0500)]
cf_section_parse_free() recurses into sub-sections
Alan T. DeKok [Mon, 18 Feb 2013 18:23:18 +0000 (13:23 -0500)]
One more check for size > 253
Alan T. DeKok [Mon, 18 Feb 2013 18:32:55 +0000 (13:32 -0500)]
Check Ascend Secret length
Alan T. DeKok [Mon, 18 Feb 2013 18:25:24 +0000 (13:25 -0500)]
Free tlv on error condition
Alan T. DeKok [Fri, 15 Feb 2013 22:19:37 +0000 (17:19 -0500)]
mypriority can be -1, too
Alan T. DeKok [Sun, 17 Feb 2013 22:45:06 +0000 (17:45 -0500)]
Fix bug in unused addport functionality
Alan T. DeKok [Sun, 17 Feb 2013 22:43:05 +0000 (17:43 -0500)]
No socket filename is a startup error
Alan T. DeKok [Sun, 17 Feb 2013 22:33:36 +0000 (17:33 -0500)]
uint for array checks
Alan T. DeKok [Sun, 17 Feb 2013 22:32:07 +0000 (17:32 -0500)]
Check for NULL string