Alan T. DeKok [Mon, 28 Nov 2011 10:45:04 +0000 (11:45 +0100)]
Minor reformatting
Alan T. DeKok [Mon, 28 Nov 2011 10:44:43 +0000 (11:44 +0100)]
Minor reformatting for 80-col widths
Alan T. DeKok [Sun, 27 Nov 2011 09:21:43 +0000 (10:21 +0100)]
Clean up examples
Alan T. DeKok [Sat, 26 Nov 2011 15:08:52 +0000 (16:08 +0100)]
Rearrange packet list code
yank no longer returns a pointer. No one was using it, so that
work was unnecessary.
Re-arrange the code in fr_packet_cmp() so that fewer comparisons
are necessary to disambiiguate packets.
Remove workaround for bug #35 in packet_entry_cmp(). It is
no longer necessary.
The result is a somewhat faster on in-memory performance tests.
But the callgrind output stil lshows large blocks of time
spent handling the packet lists. Those could be optimized
some more.
Alan T. DeKok [Fri, 25 Nov 2011 14:22:36 +0000 (15:22 +0100)]
Pass sizeof buffer to cf_expand_variables
Alan T. DeKok [Fri, 25 Nov 2011 12:04:53 +0000 (13:04 +0100)]
Updated version output
Moved compilation flags output from debug messages. It shouldn't
be there. Move it to version.c, and made it print out the
detailed list of supported functionality when using "-xv"
Alan T. DeKok [Thu, 24 Nov 2011 08:28:24 +0000 (09:28 +0100)]
More quiet builds
Alan T. DeKok [Thu, 24 Nov 2011 07:56:05 +0000 (08:56 +0100)]
Ignore local cache directory
Alan T. DeKok [Thu, 24 Nov 2011 07:55:15 +0000 (08:55 +0100)]
Ignore tar files, sig files, patches
Alan T. DeKok [Thu, 24 Nov 2011 07:53:32 +0000 (08:53 +0100)]
Ignore the doxygen _build directory
Alan T. DeKok [Wed, 23 Nov 2011 13:32:27 +0000 (14:32 +0100)]
Note removal of functionality
Alan T. DeKok [Wed, 23 Nov 2011 13:31:54 +0000 (14:31 +0100)]
Re-arrange structure to remove padding
This saves 8 bytes per VP on a 64-bit machine. That adds up...
Alan T. DeKok [Tue, 22 Nov 2011 17:29:31 +0000 (18:29 +0100)]
Now that no one uses lvalue, delete it.
This shrinks the size of the VALUE_PAIR structure by 256 bytes,
which is very nice.
Alan T. DeKok [Tue, 22 Nov 2011 17:29:06 +0000 (18:29 +0100)]
Don't use lvalue, use the correct struct name
In preparation for removing lvalue.
Alan T. DeKok [Tue, 22 Nov 2011 16:49:02 +0000 (17:49 +0100)]
Shrink the size of the VALUE_PAIR structure
Now that we're not writing strings to integer attributes,
we can dynamically change the size of the VALUE_PAIR.
It should be large enough to contain it's necessary fields,
and *only* enough of the VALUE_PAIR_DATA structure to contain
the type-specific data. This means we save 250 bytes
of memory for every integer / date / ipaddr VALUE_PAIR.
Alan T. DeKok [Tue, 22 Nov 2011 13:44:55 +0000 (14:44 +0100)]
Removed "addport" functionality.
It was always a terrible hack. There should be better ways
to do it, like actually tracking IP addresses.
Alan T. DeKok [Tue, 22 Nov 2011 13:39:38 +0000 (14:39 +0100)]
No need to sprintf "%s"
Use strlcpy instead
Alan T. DeKok [Tue, 22 Nov 2011 13:33:29 +0000 (14:33 +0100)]
No need to cast to IPv6
because we can reference the struct element directly.
Alan T. DeKok [Tue, 22 Nov 2011 09:46:16 +0000 (10:46 +0100)]
Manually pull rlm_securid from the v2.1.x branch
With minor changes for the 3.0 API
Alan T. DeKok [Mon, 21 Nov 2011 16:47:27 +0000 (17:47 +0100)]
Correct typo in error message
ascend secret is "encrypt=3", not "encrypt=2"
Alan T. DeKok [Sun, 20 Nov 2011 16:44:55 +0000 (17:44 +0100)]
Update for 3.0 API
We do lookups on attr+vendor, not just attr
Alan T. DeKok [Sun, 20 Nov 2011 16:37:19 +0000 (17:37 +0100)]
Correct references
../foo instead of foo
Luke Howard [Sat, 19 Nov 2011 03:32:07 +0000 (14:32 +1100)]
surface RFC822 subject alt name
Alan T. DeKok [Fri, 18 Nov 2011 14:24:02 +0000 (15:24 +0100)]
Document net admin capabilities
So that the server can set arp table entries as non-root
Arran Cudbard-Bell [Fri, 18 Nov 2011 23:06:12 +0000 (00:06 +0100)]
Fix typo in listen.c
Renaud Métrich [Fri, 18 Nov 2011 08:37:37 +0000 (09:37 +0100)]
Fixed compilation break + use of uninitialized value
Alan T. DeKok [Thu, 17 Nov 2011 16:26:40 +0000 (17:26 +0100)]
Build without UDPFROMTO
If it's defined, we do more sanity checks. If it's not
defined, we might behave weirdly if DHCP servers on the network
are broken
Alan T. DeKok [Thu, 17 Nov 2011 14:04:25 +0000 (15:04 +0100)]
Added DHCP relay functions
For processing client request > server and server reply -> client
The code is unused for now, but will be used shortly
Alan T. DeKok [Thu, 17 Nov 2011 14:03:01 +0000 (15:03 +0100)]
Added sample virtual server for DHCP relaying
Alan T. DeKok [Thu, 17 Nov 2011 13:36:46 +0000 (14:36 +0100)]
Added fr_dhcp_add_arp_entry
This will later be used for the updated DHCP code
Alan T. DeKok [Thu, 17 Nov 2011 16:06:04 +0000 (17:06 +0100)]
Ensure struct is initialized
Alan T. DeKok [Thu, 17 Nov 2011 11:06:12 +0000 (12:06 +0100)]
Added copyright to dictionaries
For ones which are only in v3.0
Alan T. DeKok [Thu, 17 Nov 2011 11:00:42 +0000 (12:00 +0100)]
Include copyright lines
This is for people who can't be bothered to give attribution
where it's due. The dictionary files we have here give authors,
origins, web pages, etc. where possible. It's only reasonable
for others to do the same.
Sadly, that's asking too much of some people. So we've added
explicit copyright statements so that people have no excuse.
Alan T. DeKok [Fri, 11 Nov 2011 08:26:15 +0000 (09:26 +0100)]
Added minor debug message
Alan T. DeKok [Sun, 13 Nov 2011 12:02:21 +0000 (13:02 +0100)]
Clean up for 3.0
Use new connection pool API. Document it.
Use a more consistent module configuration
Less code, and it does more
Alan T. DeKok [Fri, 11 Nov 2011 13:01:14 +0000 (14:01 +0100)]
Set fr_log_fp when using '-l'
So that we can get debugging from libfreeradius-radius
Alan T. DeKok [Fri, 11 Nov 2011 12:58:50 +0000 (13:58 +0100)]
DEBUG -> RDEBUG
Arran Cudbard-Bell [Sun, 13 Nov 2011 00:10:28 +0000 (01:10 +0100)]
Enable generation of interactive SVG diagrams
Update Doxyfile to latest version
Arran Cudbard-Bell [Sat, 12 Nov 2011 23:19:59 +0000 (00:19 +0100)]
Turn on DOT rendering of Class diagrams
Arran Cudbard-Bell [Sat, 12 Nov 2011 23:13:37 +0000 (00:13 +0100)]
Add certificate files to .gitignore
Arran Cudbard-Bell [Sat, 12 Nov 2011 23:09:38 +0000 (00:09 +0100)]
Add .gitignore to ignore generated doxygen files
Arran Cudbard-Bell [Sat, 12 Nov 2011 19:16:15 +0000 (11:16 -0800)]
Merge pull request #34 from arr2036/valuepair_lists
Valuepair lists
Arran Cudbard-Bell [Fri, 11 Nov 2011 12:50:40 +0000 (13:50 +0100)]
Prevent radius_list_name matching on tags, assume string without preceeding colon and that starts with a lowercase letter is a list
Arran Cudbard-Bell [Thu, 10 Nov 2011 19:19:21 +0000 (20:19 +0100)]
Fixup doxygen comments
Arran Cudbard-Bell [Thu, 10 Nov 2011 19:08:48 +0000 (20:08 +0100)]
Deduplicate attribute name resolution code between valuepair.c and evaluate.c
Alan T. DeKok [Wed, 9 Nov 2011 20:56:48 +0000 (21:56 +0100)]
More reformatting
Alan T. DeKok [Wed, 9 Nov 2011 20:56:48 +0000 (21:56 +0100)]
More minor reformatting
Arran Cudbard-Bell [Wed, 9 Nov 2011 13:01:14 +0000 (14:01 +0100)]
Fixup doxygen comments in exec.c
Arran Cudbard-Bell [Tue, 8 Nov 2011 14:52:56 +0000 (15:52 +0100)]
Mark section_type_value as external (holds string names of the various sections)
Arran Cudbard-Bell [Tue, 8 Nov 2011 14:40:24 +0000 (15:40 +0100)]
Convert bare enums into types, in C they don't do anything, but it does help make the code self documenting
Alan T. DeKok [Mon, 7 Nov 2011 15:19:29 +0000 (16:19 +0100)]
Updated the NAI document
Alan T. DeKok [Sun, 6 Nov 2011 15:48:01 +0000 (16:48 +0100)]
Added new APIs to add / del a connection
So that servers which accept client connections can add
connections to the pool. And clients can delete connections
from the pool if there is an error with the connection.
Also made it a bit more forgiving. If there is not any
"pool" config, use defaults.
Alan T. DeKok [Sun, 6 Nov 2011 14:53:35 +0000 (15:53 +0100)]
Quiet compile warnings
Arran Cudbard-Bell [Mon, 7 Nov 2011 13:57:12 +0000 (14:57 +0100)]
Make fr_tokens available from token.h or libradius.h
Alan T. DeKok [Sun, 6 Nov 2011 10:17:41 +0000 (11:17 +0100)]
Added support for triggers
start/stop connection pool
open/close individual connection
Alan T. DeKok [Sun, 6 Nov 2011 10:02:44 +0000 (11:02 +0100)]
Print WARNING if we fall below "min" connections
We want to close idle sessions, sessions with max lifetime
or max uses. BUT we want to enforce "min". The code will
currently close a connection, notice "num < min", and spawn
a new one. We warn the user that this is happening, so that
they can fix their configuration.
Alan T. DeKok [Sun, 6 Nov 2011 09:55:54 +0000 (10:55 +0100)]
Removed unused variable
Alan T. DeKok [Sun, 6 Nov 2011 09:53:11 +0000 (10:53 +0100)]
We're freeing the connection, so don't use this->next
use this = next instead
Alan T. DeKok [Sun, 6 Nov 2011 09:52:51 +0000 (10:52 +0100)]
Don't unlock the mutex. We didn't lock it
Alan T. DeKok [Sun, 6 Nov 2011 09:21:52 +0000 (10:21 +0100)]
Initialize "last_used" when spawning a new connection
Arran Cudbard-Bell [Sun, 6 Nov 2011 01:17:29 +0000 (02:17 +0100)]
Add cleanup_delay configuration item with a default of five seconds
without this we always end up cleaning up start-spare connections
on the first few requests.
Arran Cudbard-Bell [Fri, 4 Nov 2011 16:12:13 +0000 (17:12 +0100)]
my_request should initially be set to request
Arran Cudbard-Bell [Fri, 4 Nov 2011 13:50:30 +0000 (06:50 -0700)]
Merge pull request #32 from arr2036/valuepair_lists
Add radius_get_vps function to find attribute list based on [outer.][<list>:]<attribute>
Arran Cudbard-Bell [Thu, 3 Nov 2011 16:19:51 +0000 (17:19 +0100)]
Add radius_get_vps function to find attribute list based on <list>:<attribute> attribute identifier format
Alan T. DeKok [Fri, 4 Nov 2011 11:54:52 +0000 (12:54 +0100)]
Turn assert into run-time check
Alan T. DeKok [Thu, 3 Nov 2011 11:26:06 +0000 (12:26 +0100)]
Fix typo
Arran Cudbard-Bell [Thu, 3 Nov 2011 13:08:45 +0000 (06:08 -0700)]
Merge pull request #31 from duchscherd/tamu
Add additional attributes and values for Netbotz Rack Access PX - HID.
Dave Duchscher [Wed, 2 Nov 2011 19:58:41 +0000 (14:58 -0500)]
Add additional attributes and values for Netbotz Rack Access PX - HID.
See: http://nam-en.apc.com/app/answers/detail/a_id/8570/~/how-do-i-configure-radius-authentication-for-my-card-reader-on-the-netbotz-rack
Alan T. DeKok [Tue, 1 Nov 2011 14:00:57 +0000 (15:00 +0100)]
Mkae it build on FreeBSD. Fixes bug #177
Arran Cudbard-Bell [Mon, 31 Oct 2011 10:31:06 +0000 (11:31 +0100)]
Add function to compare substrings to FR_NAME_NUMBER arrays
Arran Cudbard-Bell [Fri, 28 Oct 2011 14:20:51 +0000 (16:20 +0200)]
Make dict_attr_types available from libradius.h so we can do integer to string type conversions
Arran Cudbard-Bell [Fri, 28 Oct 2011 10:12:32 +0000 (12:12 +0200)]
Fix whitespace
Alan T. DeKok [Fri, 28 Oct 2011 09:33:41 +0000 (11:33 +0200)]
Set last_spawned time
Alan T. DeKok [Thu, 27 Oct 2011 07:37:10 +0000 (09:37 +0200)]
Make Session-Timeout the default
by using it in the data structure, rather than checking for it
in the code
Alan T. DeKok [Thu, 27 Oct 2011 07:24:29 +0000 (09:24 +0200)]
Clean upo logic See bug #181
If we're almost at the expiry time, add the next time period ONLY
if the reply is Session-Timeoout.
Alan T. DeKok [Wed, 26 Oct 2011 09:49:20 +0000 (11:49 +0200)]
Convert error messages to debug messages.
If a module returns NOOP, it's not an error
Arran Cudbard-Bell [Wed, 26 Oct 2011 14:57:29 +0000 (16:57 +0200)]
Properly account for trailing double quote when calculating free buffer space for string values
Arran Cudbard-Bell [Wed, 26 Oct 2011 09:44:35 +0000 (11:44 +0200)]
Check for possible value truncation when calling vp_prints_value
This should be fixed in future by performing the checks in vp_prints_value
Arran Cudbard-Bell [Wed, 26 Oct 2011 09:31:10 +0000 (11:31 +0200)]
Add temporary autoconf files to .gitignore
Alan T. DeKok [Wed, 26 Oct 2011 07:26:42 +0000 (09:26 +0200)]
Rearranged code to build with various compile options
WITHOUT_PROXY
WITHOUT_STATS
etc.
The server should build with any combination of the above options.
While they're not commonly used, they are useful. When most
functionality is disabled, the server produces a ~600K statically
linked binary with all of the most common modules.
This is suitable for embedded systems...
Alan T. DeKok [Tue, 25 Oct 2011 12:06:20 +0000 (14:06 +0200)]
Fix session id len
Manual merge of
c7a29290a788b3d1
Alan T. DeKok [Mon, 24 Oct 2011 11:53:27 +0000 (13:53 +0200)]
Only 'integer' and 'string' attributes can have tags
Arran Cudbard-Bell [Mon, 24 Oct 2011 11:20:39 +0000 (13:20 +0200)]
Add function to print VP values as JSON strings
Arran Cudbard-Bell [Tue, 25 Oct 2011 10:57:11 +0000 (12:57 +0200)]
Add .swp files to git ignore
Arran Cudbard-Bell [Tue, 25 Oct 2011 10:52:28 +0000 (12:52 +0200)]
Add loT files to .gitignore
Alan T. DeKok [Mon, 24 Oct 2011 09:52:36 +0000 (11:52 +0200)]
Restrict dictionary names to ones that make sense
No control characters, etc.
The old code allowed ANYTHING as dictionary names, which is bad.
Alan DeKok [Thu, 20 Oct 2011 21:33:59 +0000 (14:33 -0700)]
Merge pull request #26 from philmayers/fix-sess-cache
use the OpenSSL ex_data functions to allocate an index w/ free function t
Phil Mayers [Thu, 20 Oct 2011 20:52:54 +0000 (21:52 +0100)]
use the OpenSSL ex_data functions to allocate an index w/ free function to hold the cached VPs
Alan T. DeKok [Thu, 20 Oct 2011 12:24:09 +0000 (14:24 +0200)]
Tell OpenSSL that the data is gone
Alan T. DeKok [Wed, 19 Oct 2011 15:46:17 +0000 (17:46 +0200)]
Quiet compiler warning
Alan T. DeKok [Wed, 19 Oct 2011 15:43:28 +0000 (17:43 +0200)]
Initialize the structure
Alan T. DeKok [Wed, 19 Oct 2011 15:43:15 +0000 (17:43 +0200)]
Initialize all of the structure
Alan T. DeKok [Wed, 19 Oct 2011 15:39:45 +0000 (17:39 +0200)]
Free memory on error
Alan T. DeKok [Wed, 19 Oct 2011 15:38:56 +0000 (17:38 +0200)]
Free memory on instantiation error
Alan T. DeKok [Wed, 19 Oct 2011 15:37:16 +0000 (17:37 +0200)]
Free memory on error
Alan T. DeKok [Wed, 19 Oct 2011 15:35:56 +0000 (17:35 +0200)]
Close fp on error
Alan T. DeKok [Wed, 19 Oct 2011 15:34:01 +0000 (17:34 +0200)]
Call closedir() on error
Alan T. DeKok [Wed, 19 Oct 2011 15:26:36 +0000 (17:26 +0200)]
Catch case where User-Name may be > 250 octets
Alan T. DeKok [Wed, 19 Oct 2011 15:20:37 +0000 (17:20 +0200)]
Only "string" can have "encrypt=2"
Alan T. DeKok [Wed, 19 Oct 2011 15:08:58 +0000 (17:08 +0200)]
Add FALL-THROUGH for 'case' without 'break'