Linus Nordberg [Wed, 8 May 2013 13:00:00 +0000 (15:00 +0200)]
Add an assert in error handling code.
Linus Nordberg [Wed, 8 May 2013 10:00:00 +0000 (12:00 +0200)]
Remove an unused error code and unusued RSE_MAX.
Also, remove unused file attr.c.
Linus Nordberg [Mon, 6 May 2013 10:01:00 +0000 (12:01 +0200)]
Follow API change in tests.
Linus Nordberg [Mon, 6 May 2013 10:00:00 +0000 (12:00 +0200)]
Revert "Add formal argument 'secret' to two public functions."
This reverts commit
09d1cff2418a900b587b2113f508984f2417cc11.
Conflicts:
lib/include/radsec/request.h
Sam Hartman [Wed, 19 Sep 2012 00:50:12 +0000 (20:50 -0400)]
Add and fix RADIUS attributes (
4b9e4cb1,
e4b6e972).
Fix capitalization in abfab dictionary
Update to IETF RADIUS attributes
draft-ietf-abfab-gss-eap has been approved; include IANA-issued
standard radius attributes for Moonshot.
Fix capitalization in abfab dictionary
Linus Nordberg [Tue, 7 May 2013 08:09:53 +0000 (10:09 +0200)]
Build include before building '.'
Patch by Sam Hartman (
ff1af013 in moonshot).
Linus Nordberg [Mon, 6 May 2013 18:30:47 +0000 (20:30 +0200)]
Use CUnit for tests.
cgreen didn't seem properly maintained. CUnit seems to be widely used.
Linus Nordberg [Mon, 6 May 2013 12:45:33 +0000 (14:45 +0200)]
Bump library interface revision.
Commit
edf4c047 claimed it did this but didn't really do it.
Should really have been done as part of bumping the library version
(0.0.2.dev in configure.ac).
Linus Nordberg [Mon, 6 May 2013 12:35:12 +0000 (14:35 +0200)]
Bump version to 0.0.4.dev to keep ahead of moonshot.
Linus Nordberg [Tue, 29 Jan 2013 14:27:26 +0000 (15:27 +0100)]
Improve documentation.
Linus Nordberg [Mon, 28 Jan 2013 15:22:14 +0000 (16:22 +0100)]
Remove dead code.
Linus Nordberg [Fri, 25 Jan 2013 08:58:26 +0000 (09:58 +0100)]
Update HACKING with a rough road map.
Linus Nordberg [Thu, 24 Jan 2013 16:33:08 +0000 (17:33 +0100)]
Add PSK example in examples/client.conf.
Linus Nordberg [Thu, 24 Jan 2013 16:32:18 +0000 (17:32 +0100)]
Do the test for PSK properly.
Fixes
823ea9ba.
Linus Nordberg [Thu, 24 Jan 2013 16:31:49 +0000 (17:31 +0100)]
Add two helper functions to conn.[ch].
Linus Nordberg [Thu, 24 Jan 2013 16:22:14 +0000 (17:22 +0100)]
Order functions properly in conn.c.
Linus Nordberg [Thu, 24 Jan 2013 15:51:36 +0000 (16:51 +0100)]
Don't verify server certificate if we're using PSK.
Linus Nordberg [Thu, 24 Jan 2013 11:44:19 +0000 (12:44 +0100)]
Add missing key files to demoCA.
Linus Nordberg [Thu, 24 Jan 2013 07:32:23 +0000 (08:32 +0100)]
Rename rs_packet_flags members.
Uppercase to make them appear as the constants they are, as opposed to
variables.
Remove 'flag' suffix, typically used for variables.
Spell out HEADER.
Linus Nordberg [Wed, 23 Jan 2013 17:26:12 +0000 (18:26 +0100)]
New demo CA for tests.
Update examples config file accordingly.
Linus Nordberg [Wed, 23 Jan 2013 15:18:26 +0000 (16:18 +0100)]
Handle case where config hasn't yet been read better.
Don't segfault is a good start.
Linus Nordberg [Wed, 23 Jan 2013 11:21:06 +0000 (12:21 +0100)]
Add some info on usage modes.
Linus Nordberg [Tue, 22 Jan 2013 14:52:09 +0000 (15:52 +0100)]
Add docstrings and a comment.
Linus Nordberg [Tue, 22 Jan 2013 14:46:11 +0000 (15:46 +0100)]
Remove unnecessary #includes.
Linus Nordberg [Tue, 22 Jan 2013 14:45:47 +0000 (15:45 +0100)]
Whitespace.
Linus Nordberg [Tue, 22 Jan 2013 14:45:33 +0000 (15:45 +0100)]
Compile with -Werror.
Linus Nordberg [Tue, 22 Jan 2013 13:14:07 +0000 (14:14 +0100)]
Remove incorrect build instruction from HACKING.
Linus Nordberg [Tue, 22 Jan 2013 13:11:32 +0000 (14:11 +0100)]
Add md5.[ch] for when we are configured without OpenSSL.
This is Solar Designers implementation from
http://openwall.info/wiki/people/solar/software/public-domain-source-code/md5 .
RS_MD5Transform goes away since it's not in md5.h. It's not used in
lib/radius/.
Might want to move this into lib/radius/ if we end up not using it in
lib/.
Linus Nordberg [Tue, 22 Jan 2013 10:01:59 +0000 (11:01 +0100)]
Revive radsecproxy.h and hostport_types.h and move rsp_* into radsecproxy/.
Linus Nordberg [Tue, 22 Jan 2013 09:36:57 +0000 (10:36 +0100)]
Clean up top dir.
Linus Nordberg [Mon, 21 Jan 2013 10:02:17 +0000 (11:02 +0100)]
Merge branch 'libradsec-new-client' into libradsec
Linus Nordberg [Mon, 21 Jan 2013 09:50:53 +0000 (10:50 +0100)]
Update README and HACKING.
Whitespace fixes.
Say Debian instead of Ubuntu.
Update versions of library dependencies.
HACKING:
Revive the "fully reentrant" design goal.
Admit that we don't implement a server API.
Linus Nordberg [Wed, 16 Jan 2013 14:39:53 +0000 (15:39 +0100)]
Fix a doc comment.
Linus Nordberg [Wed, 19 Dec 2012 14:45:42 +0000 (15:45 +0100)]
Define WITHOUT_OPENSSL if we don't have openssl.
This is for radius/client.h.
We will want an alternative way of getting MD5. Include md5.[ch] from
FreeBSD? Link with libnettle?
Linus Nordberg [Wed, 19 Dec 2012 11:15:15 +0000 (12:15 +0100)]
Fix typos.
#error messages.
Linus Nordberg [Wed, 19 Dec 2012 09:49:24 +0000 (10:49 +0100)]
Remove generated autotools files.
Linus Nordberg [Wed, 19 Dec 2012 09:41:57 +0000 (10:41 +0100)]
Rename COPYING -> LICENSE.
And distribute LICENSE and HACKING.
Linus Nordberg [Tue, 18 Dec 2012 13:40:35 +0000 (14:40 +0100)]
Remove the option to use GPLv2 as the license.
This follows the changes to the upstream radsecproxy repository.
Also, Stig Venaas is removed from all copyright, replaced by UNINETT.
Add JANET as copyright holder (avp.c).
Linus Nordberg [Tue, 18 Dec 2012 12:24:59 +0000 (13:24 +0100)]
Config docu.
Linus Nordberg [Tue, 18 Dec 2012 12:24:45 +0000 (13:24 +0100)]
Whitespace.
Linus Nordberg [Tue, 18 Dec 2012 07:40:00 +0000 (08:40 +0100)]
Include <sys/types.h> for Junos.
Fix from Luke Howard.
Linus Nordberg [Mon, 17 Dec 2012 15:11:42 +0000 (16:11 +0100)]
Whitespace.
Linus Nordberg [Mon, 17 Dec 2012 15:11:14 +0000 (16:11 +0100)]
Add formal argument 'secret' to two public functions.
The functions are rs_packet_create_authn_request() and
rs_request_create_authn().
Attributes of type PW_USER_PASSWORD are supposed to be MD5
obfuscated (see vp2data_any()).
NOTE: This is a non-backward compatible API change.
Linus Nordberg [Mon, 17 Dec 2012 15:07:16 +0000 (16:07 +0100)]
Example code: Print a little bit more helpful information on failure.
Linus Nordberg [Mon, 17 Dec 2012 15:05:55 +0000 (16:05 +0100)]
Example code: Don't create rs_error on failing context creation.
We don't export err_create() and the error is ENOMEM nowadays.
Linus Nordberg [Mon, 17 Dec 2012 15:04:30 +0000 (16:04 +0100)]
Docu: Fix libevent url.
Linus Nordberg [Mon, 17 Dec 2012 15:03:12 +0000 (16:03 +0100)]
Docu: Remove dependency on libradius.
Linus Nordberg [Wed, 12 Dec 2012 10:04:31 +0000 (11:04 +0100)]
Fix language.
Linus Nordberg [Fri, 27 Apr 2012 15:00:17 +0000 (17:00 +0200)]
Merge libradsec-new-client.
Linus Nordberg [Fri, 27 Apr 2012 14:58:03 +0000 (16:58 +0200)]
Fix struct in6_addr undefined.
Have lib/rsp_tlscommon.h include netinet/in.h since it's included by radsecproxy.h.
Linus Nordberg [Thu, 26 Apr 2012 08:19:52 +0000 (10:19 +0200)]
Verify certificate CN against configured hostname.
NOTE: The subjectAltName check is not well tested.
Linus Nordberg [Thu, 26 Apr 2012 08:18:33 +0000 (10:18 +0200)]
Implement cert verification.
NOTE: Not used yet.
Linus Nordberg [Thu, 26 Apr 2012 08:17:24 +0000 (10:17 +0200)]
Handle failing rs_context_create().
Linus Nordberg [Thu, 26 Apr 2012 08:15:51 +0000 (10:15 +0200)]
Use existing temporary variable conn.
Linus Nordberg [Thu, 26 Apr 2012 08:12:36 +0000 (10:12 +0200)]
Add an error code.
Also add error text for missing RSE_CRED.
Linus Nordberg [Thu, 26 Apr 2012 08:10:33 +0000 (10:10 +0200)]
Don't resolve DNS names in rs_peer_set_address().
It simply stores (a copy of) hostname and service name in PEER.
Linus Nordberg [Thu, 26 Apr 2012 08:08:59 +0000 (10:08 +0200)]
Use rs_strdup().
Linus Nordberg [Thu, 26 Apr 2012 08:03:42 +0000 (10:03 +0200)]
Add util.h and util.c.
Linus Nordberg [Thu, 26 Apr 2012 07:48:36 +0000 (09:48 +0200)]
Follow name change of rs_resolv().
Linus Nordberg [Wed, 25 Apr 2012 15:45:24 +0000 (17:45 +0200)]
Add missing radsec.h.
Linus Nordberg [Wed, 25 Apr 2012 15:41:27 +0000 (17:41 +0200)]
Postpone resolving of DNS names of server.
We used to resolve DNS names when reading configuration. We now do it
in event_init_socket() and cache the result in the connection object.
The imminent need for changing this is to keep host names around for
X509 certificate verification (CNAME and subjectAltName). This will
also help later when we implement server failover (and later, when
people want to do more dynamic configuration, f.ex. NAPTR).
Linus Nordberg [Wed, 25 Apr 2012 15:33:40 +0000 (17:33 +0200)]
Update HACKING.
Linus Nordberg [Wed, 25 Apr 2012 13:23:06 +0000 (15:23 +0200)]
Missing response packet in rs_conn_receive_packet doesn't have to be a bug.
Linus Nordberg [Wed, 25 Apr 2012 13:22:36 +0000 (15:22 +0200)]
Fix a comment.
Linus Nordberg [Mon, 23 Apr 2012 12:44:49 +0000 (14:44 +0200)]
Conditionally compile TLS-PSK code (--enable-tls-psk).
Also, allow for PSK-only configuration, i.e. don't barf on missing cert stuff.
Linus Nordberg [Thu, 19 Apr 2012 09:23:06 +0000 (11:23 +0200)]
Don't say RADPROT_TLS when we mean RAD_TLS.
RADPROT_TLS is legacy from radsecproxy and will go away.
It happens to be defined to 1, the same as RAD_TLS, so it happens to work.
Luke Howard [Fri, 30 Mar 2012 22:22:53 +0000 (09:22 +1100)]
Update copyright to JANET(UK)
Linus Nordberg [Wed, 1 Feb 2012 12:54:05 +0000 (13:54 +0100)]
Clarify comments about PSK string encoding.
Linus Nordberg [Tue, 31 Jan 2012 14:03:59 +0000 (15:03 +0100)]
Get the test suite going again.
Linus Nordberg [Tue, 31 Jan 2012 12:15:20 +0000 (13:15 +0100)]
Implement TLS-PSK.
Linus Nordberg [Thu, 26 Jan 2012 15:55:22 +0000 (16:55 +0100)]
Free the transport credentials struct.
Linus Nordberg [Tue, 24 Jan 2012 13:51:22 +0000 (14:51 +0100)]
Bump library interface revision.
Should really have been done as part of bumping the library version
(0.0.2.dev in configure.ac).
Linus Nordberg [Tue, 24 Jan 2012 12:17:40 +0000 (13:17 +0100)]
Be user friendly in example program.
Linus Nordberg [Tue, 24 Jan 2012 12:17:12 +0000 (13:17 +0100)]
Move a comment, for clarification.
Linus Nordberg [Tue, 24 Jan 2012 12:16:26 +0000 (13:16 +0100)]
Add TLS PSK configuration options.
Linus Nordberg [Thu, 19 Jan 2012 08:11:48 +0000 (09:11 +0100)]
Cosmetic changes.
Language and typos in a README.
Linus Nordberg [Thu, 19 Jan 2012 08:10:07 +0000 (09:10 +0100)]
Cosmetic changes.
Better names of formal arguments in test program.
Linus Nordberg [Wed, 4 Jan 2012 09:05:41 +0000 (10:05 +0100)]
Avoid unused variable warning when building without DEBUG.
Spotted by Sam Hartman.
Linus Nordberg [Wed, 14 Dec 2011 17:13:21 +0000 (18:13 +0100)]
Fix a typo in a comment.
Luke Howard [Thu, 1 Dec 2011 06:44:10 +0000 (17:44 +1100)]
fix dangling reference to dictionary pointer
Luke Howard [Thu, 1 Dec 2011 03:19:46 +0000 (14:19 +1100)]
add MS-Windows-Group-Sid
Luke Howard [Mon, 14 Nov 2011 11:58:53 +0000 (22:58 +1100)]
small cleanups
Luke Howard [Mon, 14 Nov 2011 07:54:44 +0000 (18:54 +1100)]
add rs_attr_display_name/rs_attr_parse_name
Luke Howard [Mon, 14 Nov 2011 06:05:55 +0000 (17:05 +1100)]
remove dictionary configuration parameter
Luke Howard [Mon, 14 Nov 2011 06:05:17 +0000 (17:05 +1100)]
remove rs_packet_frpkt
Luke Howard [Mon, 14 Nov 2011 05:59:55 +0000 (16:59 +1100)]
port new RADIUS library to Windows
Conflicts:
lib/configure.ac
lib/include/radsec/radsec.h
lib/radius/client.h
Luke Howard [Mon, 14 Nov 2011 05:51:25 +0000 (16:51 +1100)]
don't return in void function
Conflicts:
lib/NTMakefile
Luke Howard [Mon, 14 Nov 2011 03:43:24 +0000 (14:43 +1100)]
don't return in void function
Luke Howard [Mon, 14 Nov 2011 02:42:10 +0000 (13:42 +1100)]
don't use GCC extensions in generated code
Luke Howard [Mon, 14 Nov 2011 01:43:48 +0000 (12:43 +1100)]
remove rs_context_init_freeradius_dict
Luke Howard [Sun, 13 Nov 2011 06:16:14 +0000 (17:16 +1100)]
port to new RADIUS client library
Luke Howard [Sun, 13 Nov 2011 05:16:05 +0000 (16:16 +1100)]
add new RADIUS client library
Linus Nordberg [Fri, 14 Oct 2011 14:01:24 +0000 (16:01 +0200)]
Change version 0.0.2-dev --> 0.0.2.dev.
Sam Hartman: "I propose changing the version from 0.1-dev or whatever
to 0.1.dev or whetever because RPM versions (and really debian
versions too) cannot contain dashes"
Linus Nordberg [Wed, 5 Oct 2011 07:11:29 +0000 (09:11 +0200)]
Get rid of warning for strict aliasing breakage.
Linus Nordberg [Thu, 22 Sep 2011 10:30:12 +0000 (12:30 +0200)]
event_enable_debug_mode() must be called at most once.
Linus Nordberg [Mon, 18 Jul 2011 11:34:49 +0000 (13:34 +0200)]
Export only symbols listed in radsec.sym.
Linus Nordberg [Mon, 18 Jul 2011 11:17:04 +0000 (13:17 +0200)]
Treat warnings as errors when compiling libradsec.
Linus Nordberg [Mon, 4 Jul 2011 14:47:33 +0000 (16:47 +0200)]
Refine HACKING slightly.
Linus Nordberg [Sun, 3 Jul 2011 08:38:53 +0000 (10:38 +0200)]
Cleanup conf.c.
Don't promote a pointer to a boolean in if clauses.
Compare strcmp to 0.
Linus Nordberg [Sun, 3 Jul 2011 08:36:08 +0000 (10:36 +0200)]
Handle all libconfuse parse errors.