summary |
shortlog | log |
commit |
commitdiff |
tree
first ⋅ prev ⋅ next
aland [Mon, 30 Aug 1999 12:53:00 +0000 (12:53 +0000)]
server now prints an error if rad_recv() returns NULL
corrected error messages in rad_recv()
aland [Sun, 29 Aug 1999 22:03:03 +0000 (22:03 +0000)]
updated rad_recv() to look for attributes having length 0 or 1,
and die if so.
added host IP addresses to error messages in rad_recv().
Hmm... we're still calling inet_ntoa, which isn't multi-thread
safe.
aland [Fri, 27 Aug 1999 19:12:45 +0000 (19:12 +0000)]
right after we enter rad_authenticate(), decrypt the password
(if it's a PW_PASSWORD attribute) so that all of the following
authentication modules can use the 'Password' attribute for
authentication purposes.
WARNING: NOT tested with other modules, and NOT tested with CHAP!
aland [Thu, 26 Aug 1999 20:41:36 +0000 (20:41 +0000)]
don't print out as much information.
Still not really tested.
Still doesn't print IPX or generic filters.
still vulnerable to buffer overflows if fields walk off the
end of an array
aland [Thu, 26 Aug 1999 20:17:14 +0000 (20:17 +0000)]
more updates for header files
aland [Thu, 26 Aug 1999 20:13:59 +0000 (20:13 +0000)]
added preliminary ascend binary support
miquels [Thu, 26 Aug 1999 18:58:53 +0000 (18:58 +0000)]
New file: build-radpaths-h.in
mmachado [Thu, 26 Aug 1999 16:51:21 +0000 (16:51 +0000)]
working toward single sql interface
aland [Thu, 26 Aug 1999 16:30:43 +0000 (16:30 +0000)]
renamed STRIPPED_USERNAME to STRIPPED_USER_NAME to make it similar
to the dictionary file.
defined unique number for PW_STRIPPED_USER_NAME, as 1042
was already used by another attribute.
modified code in auth.c: IF log_auth is set, AND debugging is '-xx',
double-check an incorrect password for unprintable characters.
If any are found, print a warning out, telling the user to
double-check the shared secret. This should hopefully
reduce the number of complaints on the list about that problem.
aland [Thu, 26 Aug 1999 16:21:17 +0000 (16:21 +0000)]
updated realms, clients, and naslist reading routines
to check for a number of error conditions:
lines which do NOT end in a LF. (e.g. someone's typed a HUGE
long string of garbage.) This applies to comment lines, too.
the strings are read into LARGE buffers, and then double
checked for length. Explicit and descriptive error messages
are returned, giving the current (bad) length, and the
maximum permitted length.
miquels [Wed, 25 Aug 1999 18:48:12 +0000 (18:48 +0000)]
*** empty log message ***
aland [Wed, 25 Aug 1999 13:09:00 +0000 (13:09 +0000)]
patch from Chris Shenton <chris@shenton.org>: UNTESTED
He says:
An ISP I support has a Bay8000 NAS which seems to be the old Annex CLI
under the hood. It responds to finger like Max, Computone, etc but
it's slightly odd. I've extended "checkrad" to check for duplicate
users.
aland [Mon, 23 Aug 1999 23:37:48 +0000 (23:37 +0000)]
defined secret radius_packet_t in the library, and modified
code to use the new defines.
fixed auth.c (minor issues)
aland [Mon, 23 Aug 1999 20:09:29 +0000 (20:09 +0000)]
force WRONG passwords to be passed through librad_safeprint()
before being output to the terminal. This prevents weird
control codes from screwing up the local terminal settings.
rad_pwdecode() now returns the size of the password
librad_safeprint() is now exported.
libradius.h is wrapped by the standard '#ifndef LIBRADIUS_H,
#define LIBRADIUS_H .... #endif LIBRADIUS_H' stuff
rad_check_password() now returns the length of the password.
This should arguably returned in a VALUE_PAIR, like
'Internally-Decrypted-Password'.
The password printing in auth.c should be wrapped for correct
logins, too.
miquels [Mon, 23 Aug 1999 19:24:39 +0000 (19:24 +0000)]
*** empty log message ***
aland [Mon, 23 Aug 1999 17:17:08 +0000 (17:17 +0000)]
add additional text describing where to download GNU Make
if we can't find it on the system
aland [Mon, 23 Aug 1999 15:21:21 +0000 (15:21 +0000)]
fix typos and URL
aland [Mon, 23 Aug 1999 14:54:02 +0000 (14:54 +0000)]
added more sanity checking to rad_recv(), so it complains about
the many types of possible malformed packets.
miquels [Sat, 21 Aug 1999 11:24:49 +0000 (11:24 +0000)]
Hmm, how does this work? My changelog is in doc/ChangeLog
tsettle [Fri, 20 Aug 1999 16:59:02 +0000 (16:59 +0000)]
See post to list
tsettle [Fri, 20 Aug 1999 16:45:30 +0000 (16:45 +0000)]
This is just a prototype dictionary to get some feedback from other
contributers. It's a complete translation of raddb/dictionary, and also
includes a stub vendor dictionary as a sample of where it could go.
aland [Thu, 19 Aug 1999 18:52:48 +0000 (18:52 +0000)]
vp_prints now returns the number of characters it wrote,
like sprintf()
pairmake() is now exported to the world.
added PW_NAS_IDENTIFIER to the defines in radius.h
(??? why wasn't it there before?)
print.c: characters 160..255 are no longer printable, to avoid
freaking out weird systems. This should really be changed to
use isprint()
added operator in fixup routine for Password/Auth-Type in files.c
created rlm_acct_unique module, as an attempt to create
*really* unique Acct-Session-Id's. There's no
Acct-Unique-Session-Id in the dictionary, but that can be fixed.
added more text to README.modules
mmachado [Wed, 18 Aug 1999 21:40:16 +0000 (21:40 +0000)]
small changes
mmachado [Wed, 18 Aug 1999 21:15:54 +0000 (21:15 +0000)]
Comming work until I get a chance to work on it again
mmachado [Wed, 18 Aug 1999 19:27:12 +0000 (19:27 +0000)]
working toward abstraction layer between radius sql module and actual db API
aland [Wed, 18 Aug 1999 18:15:57 +0000 (18:15 +0000)]
made a number of functions static, as they're not called
from anywhere else.
aland [Wed, 18 Aug 1999 13:44:37 +0000 (13:44 +0000)]
moved stuff around
aland [Wed, 18 Aug 1999 13:44:03 +0000 (13:44 +0000)]
return error messages on recvfrom() socket error
aland [Wed, 18 Aug 1999 13:25:32 +0000 (13:25 +0000)]
look up port names "radius" and "radacct", so that radclient
can actually use the same ports that radiusd uses.
If that fails, default to PW_AUTH_UDP_PORT, instead of a
hard-coded 1645.
aland [Wed, 18 Aug 1999 03:20:15 +0000 (03:20 +0000)]
added ldap. Who knows if it works?
updated checkconfig to output unused CFLAGS entries, too
aland [Wed, 18 Aug 1999 03:18:34 +0000 (03:18 +0000)]
there's no use checking for 'WITH_PAM' define, as it's not
used any more. We've go another method which involves not
even compiling the module at all.
aland [Wed, 18 Aug 1999 00:49:07 +0000 (00:49 +0000)]
include a sample snip of over-riding the TARGET definition
aland [Wed, 18 Aug 1999 00:45:11 +0000 (00:45 +0000)]
bring out the dict_init() error messages to the user on errors.
aland [Wed, 18 Aug 1999 00:44:44 +0000 (00:44 +0000)]
use the right define for librad_errstr: it's NOT a pointer,
it's a memory location of an array.
aland [Wed, 18 Aug 1999 00:44:05 +0000 (00:44 +0000)]
allowed for the possibility we might be logging log messages
in librad_log, through the use of a local buffer
added more descriptive warning messages to dict.c
mmachado [Wed, 18 Aug 1999 00:28:21 +0000 (00:28 +0000)]
Sorry Alan! Added stuff to use checkconfig to see if they have mysql in order to build the mysql module
aland [Wed, 18 Aug 1999 00:19:01 +0000 (00:19 +0000)]
moved the 'add attribute' and 'add vendor' code out to
brand-new functions.
added prototypes in libradius.h
added code in dict_add* to check for lengths of names.
also deleted code in my_dict_init(), which had hard-coded
lengths in the checks. They really should be sizeof() the relevan
structures, so that they'll automatically change if the structure
changes.
aland [Wed, 18 Aug 1999 00:12:20 +0000 (00:12 +0000)]
added new option to radclient: -f.
This allows it to read the value pairs from a file, and
not always from stdin.
aland [Tue, 17 Aug 1999 23:55:56 +0000 (23:55 +0000)]
allow server variables/functions to be exported to the modules.
This is a HACK and should only be used until we can get autoconf
to see how the C compiler sets the '-rdynamic' flag
aland [Tue, 17 Aug 1999 23:51:23 +0000 (23:51 +0000)]
don't hard-code which modules to make. Instead,
go to *all* of the rlm_foo directories, and do 'make static dynamic'
This allows for the possibility that some modules might have
empty targets.
aland [Tue, 17 Aug 1999 23:47:29 +0000 (23:47 +0000)]
allow for the possibility that some peopke might not have mysql
mmachado [Tue, 17 Aug 1999 22:25:07 +0000 (22:25 +0000)]
rlm_mysql.c now compiles. Had to move over to new REQUEST vs AUTH_REQ and such. Need to now dig into mysql.c for all the real work functions
aland [Tue, 17 Aug 1999 20:01:55 +0000 (20:01 +0000)]
added more errors and warning messages for malformed packets
aland [Tue, 17 Aug 1999 19:56:39 +0000 (19:56 +0000)]
Timeout fixes from Stephen Langasek, with one or two minor
modifications by myself.
aland [Tue, 17 Aug 1999 18:19:19 +0000 (18:19 +0000)]
spelling corrections.
make MD5Foo static, so they won't get confused with (say)
stupid evil Solaris nasty broken MD5 implementation.
aland [Tue, 17 Aug 1999 18:17:36 +0000 (18:17 +0000)]
modifications to allow better making of modules
aland [Tue, 17 Aug 1999 18:16:53 +0000 (18:16 +0000)]
Wrote LOTS of documentation in the example Makefile.
Added a sample 'C' and 'H' files to demonstrate how to use
the Makefile.
aland [Tue, 17 Aug 1999 15:42:14 +0000 (15:42 +0000)]
updated everything to use alanconf.
The 'rules.mak' file now checks for an empty target,
and does nothing if so.
The various make files now rely on 'config.mak', and
re-set the TARGET to '' if their required libraries, etc.
do not exist.
mmachado [Tue, 17 Aug 1999 02:43:09 +0000 (02:43 +0000)]
Still A LOT of work to be done. I need to review the new code to learn some of the macro name changes, what can be got from the varius auth(alan)conf stuff and some of the function name changes.
aland [Mon, 16 Aug 1999 21:35:16 +0000 (21:35 +0000)]
libradius.h dies if it's included without a <sys/types.h>, so
we include that.
I don't know what affect this has on other systems... maybe autoconf
should check for it?
aland [Mon, 16 Aug 1999 19:37:47 +0000 (19:37 +0000)]
added more error messages to valuepair.c
fixed radclient to print out more messages, and take a '-d'
argument for 'radius directory', ala the server. '-x' is now
debugging.
delete intermediate configuration files in rlm_unix
mmachado [Mon, 16 Aug 1999 18:30:12 +0000 (18:30 +0000)]
adding mysql module based on icradius 0.8
aland [Mon, 16 Aug 1999 17:55:05 +0000 (17:55 +0000)]
Initial revision