aland [Tue, 7 Mar 2006 18:05:33 +0000 (18:05 +0000)]
Document coa
aland [Tue, 7 Mar 2006 18:04:24 +0000 (18:04 +0000)]
Change CoF-* to CoA-*, because that's the proper name.
Update radclient to allow sending coa requests
update radius.c to clear the request vector, as per RFC 3576.
This closes bug #344
fcusack [Mon, 6 Mar 2006 21:40:00 +0000 (21:40 +0000)]
add stdlib.h
aland [Mon, 6 Mar 2006 18:57:01 +0000 (18:57 +0000)]
Added tests and updated digest code from Phillippe Sultan
aland [Mon, 6 Mar 2006 18:43:46 +0000 (18:43 +0000)]
Passport 8000 attributes
pnixon [Fri, 3 Mar 2006 14:40:03 +0000 (14:40 +0000)]
This schema change and trigger updates fills in the groupname field (which doesnt come in Accounting packets) by querying the usergroup table.
This makes it easier to do group summary reports, however note that it does add some extra database load to 50% of your SQL accounting queries.
Note: Triggers to databases other than PostgreSQL still need to be written but I have updated all DB schemas for consistency
fcusack [Fri, 3 Mar 2006 00:54:44 +0000 (00:54 +0000)]
Make the site transform optional (leave undocumented!).
From Dave Mitchell.
pnixon [Thu, 2 Mar 2006 07:56:06 +0000 (07:56 +0000)]
Opps. Missed MS SQL. Update it to match Postgresql also (Along with previous commit for MySQL and Oracle)
pnixon [Thu, 2 Mar 2006 07:47:42 +0000 (07:47 +0000)]
Bring Oracle and MySQL inline with Postgresl by setting all instances of Acct-Delay-Time to Acct-Delay-Time:-0 so that it defaults to 0 when some stupid NAS don't send it. (Otherwise the query fails)
fcusack [Fri, 17 Feb 2006 01:33:18 +0000 (01:33 +0000)]
Append first 2 username chars to challenge. The previous routine
created a fixed challenge, which led to a fixed response, which
was all 0's! Thanks to David Mitchell for spotting this.
nbk [Tue, 14 Feb 2006 15:28:37 +0000 (15:28 +0000)]
Include fortinet dictionary, too.
aland [Fri, 10 Feb 2006 17:47:20 +0000 (17:47 +0000)]
More attributes, as found in
http://www.quintum.com/support/xplatform/ivr_acct/webhelp/RADIUS_Interface.htm
by Valts Mazurs
nbk [Fri, 10 Feb 2006 15:11:20 +0000 (15:11 +0000)]
It's "reject_delay" and not "delayed_reject". (closes: #325)
Problem reported by Deric Sullivan <deric.sullivan@ec.gc.ca>
fcusack [Thu, 9 Feb 2006 23:27:08 +0000 (23:27 +0000)]
otp_authenticate(): malloc raw_state before using it
aland [Thu, 9 Feb 2006 17:40:33 +0000 (17:40 +0000)]
HA1 is string (32 hex digits), not "octets"
nbk [Thu, 9 Feb 2006 15:02:55 +0000 (15:02 +0000)]
maxfd might have been uninitialized.
nbk [Thu, 9 Feb 2006 14:45:41 +0000 (14:45 +0000)]
The database schema is now at doc/examples/postgresql.sql
nbk [Thu, 9 Feb 2006 14:33:41 +0000 (14:33 +0000)]
The option -DOPENSSL_NO_KRB5 is added by autoconf, therefore we
don't need to add it a second time in the Makefile.
aland [Wed, 8 Feb 2006 23:05:15 +0000 (23:05 +0000)]
Allow multiple references to %{1} & friends.
Patch from Stephan Jaeger
aland [Wed, 8 Feb 2006 22:48:56 +0000 (22:48 +0000)]
Use Digest-HA1 for the encrypted password, not Digest-MD5
fcusack [Wed, 8 Feb 2006 21:22:10 +0000 (21:22 +0000)]
otp_authorize(): fix trivial State to be non-NUL, for Cisco bug
fcusack [Wed, 8 Feb 2006 21:15:34 +0000 (21:15 +0000)]
otp_authenticate(): set e_length correctly
fcusack [Wed, 8 Feb 2006 21:11:24 +0000 (21:11 +0000)]
generate State as ASCII to workaround Cisco bug
fcusack [Wed, 8 Feb 2006 19:55:53 +0000 (19:55 +0000)]
support cryptocard "phone" modes --- 7 digit mode where user
actually enters the dash
fcusack [Wed, 8 Feb 2006 08:31:11 +0000 (08:31 +0000)]
otp_authorize(): support LP64 when generating State
fcusack [Wed, 8 Feb 2006 08:19:32 +0000 (08:19 +0000)]
otp_authenticate(): expected length of State when not allowing async
became 1 in otp_rlm.c#1.15
fcusack [Wed, 8 Feb 2006 07:47:26 +0000 (07:47 +0000)]
otp_authenticate(): initialize challenge
fcusack [Wed, 8 Feb 2006 05:11:04 +0000 (05:11 +0000)]
unconditionally #include <sys/un.h> (not required on Solaris, but ok)
fcusack [Wed, 8 Feb 2006 05:08:50 +0000 (05:08 +0000)]
expandtab
nbk [Sun, 5 Feb 2006 16:57:34 +0000 (16:57 +0000)]
Fix ownership of /var/log/freeradius/* more efficiently.
nbk [Sun, 5 Feb 2006 16:57:00 +0000 (16:57 +0000)]
Update dependencies to build on both etch and sarge.
nbk [Sun, 5 Feb 2006 16:56:23 +0000 (16:56 +0000)]
Update installation of docs & examples to match new makefiles.
nbk [Sat, 4 Feb 2006 15:09:33 +0000 (15:09 +0000)]
Regenerate from configure.in 1.229 using Autoconf 2.59.
nbk [Sat, 4 Feb 2006 15:07:46 +0000 (15:07 +0000)]
Update version number to 2.0.0-pre0, as 1.1.x has its own branch.
nbk [Sat, 4 Feb 2006 15:05:46 +0000 (15:05 +0000)]
${abs_top_builddir} is a variable preset by the Autoconf macros.
nbk [Sat, 4 Feb 2006 15:01:11 +0000 (15:01 +0000)]
Use ${srcdir}/... to locate files within the source tree,
rather than a direct file reference.
Patch from Johnson Earls <johnson.earls@sun.com>
nbk [Sat, 4 Feb 2006 14:51:15 +0000 (14:51 +0000)]
The database schema is now at doc/examples/mssql.sql
nbk [Sat, 4 Feb 2006 14:10:40 +0000 (14:10 +0000)]
The schema is now at doc/examples/mysql.sql
nbk [Sat, 4 Feb 2006 13:45:01 +0000 (13:45 +0000)]
Install the schema examples for a set of backends.
nbk [Sat, 4 Feb 2006 13:35:05 +0000 (13:35 +0000)]
Install documentation under ${prefix}/share/doc/freeradius
nbk [Sat, 4 Feb 2006 13:25:03 +0000 (13:25 +0000)]
Delete this file because it is (1) obviously broken, (2) designed for
an obsolete LDAP server and (3) nobody knows how to fix it.
nbk [Sat, 4 Feb 2006 13:23:13 +0000 (13:23 +0000)]
Move doc/ldapv3-iplanet-schema.ldif to doc/examples/iplanet.ldif
nbk [Sat, 4 Feb 2006 13:21:46 +0000 (13:21 +0000)]
Move doc/RADIUS-LDAP-iPlanet.schema to doc/examples/iplanet.schema
nbk [Sat, 4 Feb 2006 13:12:49 +0000 (13:12 +0000)]
Move doc/RADIUS-LDAPv3.schema to doc/examples/openldap.schema
nbk [Sat, 4 Feb 2006 13:07:34 +0000 (13:07 +0000)]
Move src/modules/rlm_sql/drivers/rlm_sql_freetds/db_mssql.sql
to doc/examples/mssql.sql
nbk [Sat, 4 Feb 2006 13:04:04 +0000 (13:04 +0000)]
Move src/modules/rlm_sql/drivers/rlm_sql_postgresql/db_postgresql.sql
to doc/examples/postgresql.sql
nbk [Sat, 4 Feb 2006 13:01:09 +0000 (13:01 +0000)]
Move src/modules/rlm_sql/drivers/rlm_sql_oracle/db_oracle.sql
to doc/examples/oracle.sql
nbk [Sat, 4 Feb 2006 12:56:16 +0000 (12:56 +0000)]
Move src/modules/rlm_sql/drivers/rlm_sql_mysql/db_mysql.sql
to doc/examples/mysql.sql
nbk [Fri, 3 Feb 2006 11:49:18 +0000 (11:49 +0000)]
Minimalist Makefile to build the module.
nbk [Fri, 3 Feb 2006 11:48:46 +0000 (11:48 +0000)]
This module doesn't need any autoconf test which is not already in
top-level configure, therefore don't chew build time for nothing.
nbk [Fri, 3 Feb 2006 11:46:16 +0000 (11:46 +0000)]
Regenerate from configure.in using Autoconf 2.59.
nbk [Fri, 3 Feb 2006 11:44:16 +0000 (11:44 +0000)]
Print a message when testing for OpenSSL.
nbk [Tue, 31 Jan 2006 17:11:07 +0000 (17:11 +0000)]
Don't enter any subdirectory when the target is empty. (error from
my previous commit)
nbk [Tue, 31 Jan 2006 17:10:42 +0000 (17:10 +0000)]
CFLAGS += $(OPENSSL_INCLUDE)
nbk [Tue, 31 Jan 2006 17:10:10 +0000 (17:10 +0000)]
Don't compile files with SSL content if there is no SSL support.
nbk [Tue, 31 Jan 2006 17:09:43 +0000 (17:09 +0000)]
Fix the tests for OpenSSL: the macros FR_SMART_CHECK_{LIB,INCLUDE}
look into a number of directories, therefore the -L -I parameters
could be different from the user-supplied value.
aland [Mon, 30 Jan 2006 22:06:10 +0000 (22:06 +0000)]
Don't increment num_elements too often
aland [Mon, 30 Jan 2006 19:16:10 +0000 (19:16 +0000)]
Update warning message
nbk [Sun, 29 Jan 2006 16:52:49 +0000 (16:52 +0000)]
Make the schema more consistent with RFC 2865.
These attributes can be multiple-valued:
- radiusFilterId
- radiusFramedAppleTalkNetwork
- radiusFramedCompression
- radiusLoginIPHost
And this one is single-valued:
- radiusNASIpAddress
Thanks to Markus Krause <krause@biochem.mpg.de>
nbk [Sat, 28 Jan 2006 11:56:28 +0000 (11:56 +0000)]
Fix typos.
aland [Fri, 27 Jan 2006 17:30:40 +0000 (17:30 +0000)]
Added notes on Active Directory
aland [Thu, 26 Jan 2006 22:18:20 +0000 (22:18 +0000)]
As posted to the list
aland [Wed, 25 Jan 2006 22:14:50 +0000 (22:14 +0000)]
Pull rad_verify() out of rad_decode(), and update the callers
of rad_decode() to now call rad_verify(), too.
This removes a bunch of duplicate code from radsniff
nbk [Wed, 25 Jan 2006 18:52:42 +0000 (18:52 +0000)]
Use $(LDFLAGS) and $(RLM_LDFLAGS) when linking the stand-alone
utilities, too. (closes: #323)
Bug reported by Johnson Earls <johnson.earls@sun.com>
nbk [Wed, 25 Jan 2006 18:05:07 +0000 (18:05 +0000)]
Undelete lines which were needed to build a static binary.
aland [Tue, 24 Jan 2006 23:04:06 +0000 (23:04 +0000)]
Moved copied code in radsniff.c to rad_packet_ok()
Made rad_recv() call rad_packet_ok()
Updated radsniff to use more "const".
Updated radsniff to accept "-d dictionary_dir"
aland [Tue, 24 Jan 2006 22:46:41 +0000 (22:46 +0000)]
Don't make radiusd depend on $(MODULE_LIBS), that is a macro
which is passed to libtool, and may include things like "-dlpreopen"
aland [Tue, 24 Jan 2006 18:13:48 +0000 (18:13 +0000)]
Be a little more paranoid about checking packet codes
nbk [Mon, 23 Jan 2006 10:38:19 +0000 (10:38 +0000)]
Install stand-alone binaries with libtool, too.
nbk [Mon, 23 Jan 2006 10:34:32 +0000 (10:34 +0000)]
"make clean" must delete lib/*.o files, too.
nbk [Mon, 23 Jan 2006 10:31:14 +0000 (10:31 +0000)]
Minimalist Makefile to build the module.
nbk [Mon, 23 Jan 2006 10:30:22 +0000 (10:30 +0000)]
This module doesn't need any autoconf test which is not already in
top-level configure, therefore don't chew build time for nothing.
nbk [Sun, 22 Jan 2006 21:48:30 +0000 (21:48 +0000)]
libeap is a shared library, not a module, therefore it's probably
better not to include ../../rules.mak
nbk [Sun, 22 Jan 2006 21:47:31 +0000 (21:47 +0000)]
Be a little more libtool-friendly and always use .lo and .la files.
nbk [Sun, 22 Jan 2006 21:46:35 +0000 (21:46 +0000)]
Wipe out last vestiges of static/dynamic rules.
nbk [Sat, 21 Jan 2006 17:44:02 +0000 (17:44 +0000)]
Be a little more libtool-friendly and always use .lo and .la files.
nbk [Sat, 21 Jan 2006 17:37:07 +0000 (17:37 +0000)]
We don't need to link the libradius with -lcrypt anymore since
crypt.c moved to src/main.
nbk [Fri, 20 Jan 2006 10:18:06 +0000 (10:18 +0000)]
Build radsniff, too.
nbk [Fri, 20 Jan 2006 10:15:01 +0000 (10:15 +0000)]
Check for pcap library and pcap includes.
nbk [Fri, 20 Jan 2006 10:00:08 +0000 (10:00 +0000)]
Structures and defines for the RADIUS sniffer.
nbk [Fri, 20 Jan 2006 09:59:34 +0000 (09:59 +0000)]
This is a debug tool to display the RADIUS traffic on the
network. It prints the RADIUS packets exactly like running
"radiusd -X". It can also filter the packets based on any
RADIUS attributes: the sniffer accepts the same strings as
the "users" file to match a packet.
nbk [Tue, 17 Jan 2006 22:27:46 +0000 (22:27 +0000)]
Reorder the list of directories to be searched for header files.
nbk [Tue, 17 Jan 2006 22:27:14 +0000 (22:27 +0000)]
Some simplifications and reformatting.
nbk [Tue, 17 Jan 2006 22:26:42 +0000 (22:26 +0000)]
Simplify the path of a few filenames.
nbk [Mon, 16 Jan 2006 10:21:27 +0000 (10:21 +0000)]
Fix a typo in dict_valbyname()
Thanks to Razvan Radu.
nbk [Sun, 15 Jan 2006 17:37:53 +0000 (17:37 +0000)]
Add/update the downstream files from Suse.
Thanks to Wolfgang Rosenauer <stark@suse.de>
nbk [Sun, 15 Jan 2006 16:05:34 +0000 (16:05 +0000)]
Add/update the downstream files from Suse.
Thanks to Wolfgang Rosenauer <stark@suse.de>
nbk [Thu, 12 Jan 2006 14:19:34 +0000 (14:19 +0000)]
Fix a SEGV in back-quote expansion.
Problem found by Markus Krause <krause@biochem.mpg.de>
nbk [Wed, 11 Jan 2006 15:50:02 +0000 (15:50 +0000)]
Fix a build problem on Mac OS X. (closes: #310)
Bug reported by Steven Simon <simon.s@apple.com>
nbk [Tue, 10 Jan 2006 14:33:06 +0000 (14:33 +0000)]
Fix build problems on Mac OS X.
Patch from Steven Simon <simon.s@apple.com>
nbk [Tue, 10 Jan 2006 11:46:19 +0000 (11:46 +0000)]
Fix a build problem on Mac OS X (thanks to Steven Simon)
and a few compilation warnings.
aland [Mon, 9 Jan 2006 23:02:37 +0000 (23:02 +0000)]
Don't de-reference NULL points on dict_get*byname() (duh)
Part of the fix for bug #311
nbk [Sun, 8 Jan 2006 19:52:26 +0000 (19:52 +0000)]
Delete the variable RLM_EAP_LINK_MODE support. This terrible hack
isn't needed anymore since TLS code moved from module rlm_eap_tls
to libeap. Now libtool manages to build correctly the modules
rlm_eap_peap and rlm_eap_ttls.
nbk [Sat, 7 Jan 2006 19:22:36 +0000 (19:22 +0000)]
Don't run "make" two times inside rlm_eap_tls. This module doesn't
need to be built first anymore because TLS code has moved to libeap.
nbk [Sat, 7 Jan 2006 19:14:57 +0000 (19:14 +0000)]
Use the libtool name of the library (libeap.la) instead of the -L
and -l options. (considered SOP when linking against an uninstalled
library)
nbk [Fri, 6 Jan 2006 18:32:06 +0000 (18:32 +0000)]
libeap is a shared library, not a module, which seems to be a
completely different thing for libtool.
If we build libeap.la with the rules from src/modules/rules.mak we
get libtool warnings when linking the real eap modules. Therefore
we need to redefine a sane link command for the target in libeap
Makefile.
nbk [Fri, 6 Jan 2006 12:56:13 +0000 (12:56 +0000)]
Do some reformatting and clean-up a few things like removing
unnecessary headers, or always using the variables @eap_*_cflags@
and @eap_*_ldflags@ from Autoconf.
nbk [Wed, 4 Jan 2006 14:30:03 +0000 (14:30 +0000)]
Fix typo.
aland [Thu, 29 Dec 2005 21:53:26 +0000 (21:53 +0000)]
Corrected typo
aland [Wed, 28 Dec 2005 22:50:16 +0000 (22:50 +0000)]
Port patch from branch_1_1 to the HEAD