aland [Tue, 22 Jun 2004 21:02:48 +0000 (21:02 +0000)]
Don't pollute LIBS when looking for -lssl && -lcrypto
This means that rlm_x99_token is currently broken, but WTF.
aland [Tue, 22 Jun 2004 20:37:42 +0000 (20:37 +0000)]
Re-gen from configure.in, now that those rules have been updated
aland [Tue, 22 Jun 2004 20:36:27 +0000 (20:36 +0000)]
libltdl is just a directory name, and doesn't need to be put
into single quotes.
This was done via autoconf 2.57, and we should probably re-do it
with 2.59
aland [Tue, 22 Jun 2004 18:03:50 +0000 (18:03 +0000)]
A little clearer explanation
aland [Tue, 22 Jun 2004 17:58:02 +0000 (17:58 +0000)]
Updated with latest changes
aland [Tue, 22 Jun 2004 17:44:28 +0000 (17:44 +0000)]
Re-arranged the order of options in the code && usage.
Added '-n N', to send N requests/second, evenly scattered.
aland [Tue, 22 Jun 2004 16:22:37 +0000 (16:22 +0000)]
Add '-p', based on a patch from Nicolas Baradakis.
'-p N' results in N packets from one '-f file' being sent in
parallel.
Multiple '-f' still results in packets from each '-f' being sent
in parallel.
Multiple '-f' and '-p N' results in N packets from each file
all being sent in parallel
aland [Tue, 22 Jun 2004 15:45:27 +0000 (15:45 +0000)]
These are no longer necessary
aland [Tue, 22 Jun 2004 15:07:26 +0000 (15:07 +0000)]
Don't do our own checks for -lcrypto
aland [Tue, 22 Jun 2004 15:07:02 +0000 (15:07 +0000)]
No longer needed
aland [Tue, 22 Jun 2004 15:02:30 +0000 (15:02 +0000)]
Use the timestamp from the request
kkalev [Tue, 22 Jun 2004 14:01:22 +0000 (14:01 +0000)]
Add postgresql specific sql schema by apellido jr., wilfredo p. Move each sql schema to a
separate directory (mysql and postgresql)
kkalev [Fri, 18 Jun 2004 15:12:51 +0000 (15:12 +0000)]
Fix a few bugs
Enable debug for sql and ldap
aland [Fri, 18 Jun 2004 13:53:19 +0000 (13:53 +0000)]
Fail if lber.h or ldap.h don't exist
kkalev [Fri, 18 Jun 2004 13:01:56 +0000 (13:01 +0000)]
* Move the xlat function to a separate file in lib/xlat.php3
* Add a lib/sql/nas_list.php3 to also get the nas list from sql (naslist.conf still works)
* add realms nasdb and nasadmin in username.mappings. nasadmin is used to signify if the
user is allowed to use the nas_admin page. nasdb is used to shorten the nas list to only
a few specific entries. That way administrator responsible for a few access servers will
only be able to administer those access servers and not see the rest of the nas list.
* Add username searching in the find page as suggested by joram agten
* Don't use nas_list in nas_admin
aland [Thu, 17 Jun 2004 20:30:21 +0000 (20:30 +0000)]
Corrected version from Kenneth Grady
aland [Thu, 17 Jun 2004 18:51:07 +0000 (18:51 +0000)]
Stop xlat of Reply-Message, as it's done automatically, now.
aland [Thu, 17 Jun 2004 18:47:15 +0000 (18:47 +0000)]
Cleaned up ATTR_FLAGS
aland [Wed, 16 Jun 2004 14:34:21 +0000 (14:34 +0000)]
Updated comments
vorlon [Tue, 15 Jun 2004 15:26:56 +0000 (15:26 +0000)]
get the module ordering right, so rlm_eap_tls is built first
aland [Tue, 15 Jun 2004 15:00:54 +0000 (15:00 +0000)]
Don't be smart. Don't use BYTE_ORDER
aland [Tue, 15 Jun 2004 14:44:37 +0000 (14:44 +0000)]
Use memcpy, not bcopy
aland [Tue, 15 Jun 2004 14:35:25 +0000 (14:35 +0000)]
Don't call pairdelete() from pairmove() on :=.
Some modules may wish to update request->packet->vps, PW_USER_NAME.
The problem is that it's ALSO pointed to from request->username,
and we can't update that from here.
We also can't update all of the modules to double-check
request->username after calling pairmove(), so the simplest thing
to do is to over-write the attributes in place, rather than
deleting the old ones, and adding the new ones
vorlon [Tue, 15 Jun 2004 07:49:15 +0000 (07:49 +0000)]
autotools revamp:
- rebuild aclocal.m4 with current libtool support, and regen ltmain.sh
as well
- rename all local macros to FR_* instead of AC_*
- require autoconf 2.53 or better, for better recursion support
- rerun autoconf
- update Debian build depends, and fix the way we're declaring our
architecture to autoconf
- always use $(LIBTOOL) instead of $(CC) for compiling
- always link with $(LIBTOOL) --mode=link $(CC), not $(LD)
- break down the static/dynamic divide in the Makefiles (leave this to
libtool)
- don't pass -module for objects that aren't freeradius modules
- always depend on .la targets, not .a
- declare modules' dependency on libradius.la
- link libeap.la and rlm_sql.la against libltdl
- declare interdependencies between rlm_eap submodules
vorlon [Tue, 15 Jun 2004 06:47:12 +0000 (06:47 +0000)]
don't depend on a .a target when .la will do
vorlon [Tue, 15 Jun 2004 06:39:24 +0000 (06:39 +0000)]
commit non-ancient config.*
vorlon [Tue, 15 Jun 2004 06:27:33 +0000 (06:27 +0000)]
new files used for reworking autotools support
aland [Mon, 14 Jun 2004 18:14:39 +0000 (18:14 +0000)]
syslog_facility is in a new place
pnixon [Mon, 14 Jun 2004 16:23:13 +0000 (16:23 +0000)]
Increase CallID field length to support the insanely long IDs sometimes generated by CSPS
aland [Mon, 14 Jun 2004 15:23:19 +0000 (15:23 +0000)]
Corrected typo, for inet_ntop
aland [Mon, 14 Jun 2004 15:23:04 +0000 (15:23 +0000)]
Check to inet_ntop, too
aland [Mon, 14 Jun 2004 15:17:47 +0000 (15:17 +0000)]
Check for inet_pton, too
aland [Mon, 14 Jun 2004 14:49:13 +0000 (14:49 +0000)]
Message is informational, not a real error
pnixon [Mon, 14 Jun 2004 01:33:15 +0000 (01:33 +0000)]
Comment updates and automatic creation of plpgsql language in the database
pnixon [Mon, 14 Jun 2004 01:31:09 +0000 (01:31 +0000)]
Documentation update/cleanup
aland [Sun, 13 Jun 2004 12:58:59 +0000 (12:58 +0000)]
As found on the net, with edits
aland [Fri, 11 Jun 2004 20:46:29 +0000 (20:46 +0000)]
Add support for ${Attribute-Name[2]}, which grabs value of the
N'th attribute of that name.
aland [Fri, 11 Jun 2004 20:44:37 +0000 (20:44 +0000)]
Make it build. Forgot to commit thgis yesterday
aland [Fri, 11 Jun 2004 17:23:27 +0000 (17:23 +0000)]
Add $#{string}, which prints the number of characters in the string
aland [Fri, 11 Jun 2004 15:21:05 +0000 (15:21 +0000)]
Added rlm_copy_packet, which is a trivial ~10-line module
aland [Fri, 11 Jun 2004 15:03:24 +0000 (15:03 +0000)]
Added a trivial module to copy the request to the reply.
Some systems may find this useful.
aland [Thu, 10 Jun 2004 20:01:16 +0000 (20:01 +0000)]
Add two new fields to the REQUEST: module & component.
Before calling a module, src/main/modcall.c updates these fields,
and sets them to NULL once the module has returned.
When a child becomes unresponsive, these fields MAY be used to
determine which part of the server is slow.
aland [Thu, 10 Jun 2004 18:29:16 +0000 (18:29 +0000)]
Document new configuration items which allow logging to syslog
to work.
aland [Thu, 10 Jun 2004 18:23:30 +0000 (18:23 +0000)]
These don't need radlog_dest any more
aland [Thu, 10 Jun 2004 18:23:10 +0000 (18:23 +0000)]
Permit logging to syslog, after:
- rearranging the code
- deprecating some command-line options & values
- adding some more configuration file parameters
phampson [Thu, 10 Jun 2004 17:51:55 +0000 (17:51 +0000)]
We're really 1.1.0 now
aland [Thu, 10 Jun 2004 16:57:02 +0000 (16:57 +0000)]
Don't leak memory if pairmove doesn't move
aland [Thu, 10 Jun 2004 15:39:00 +0000 (15:39 +0000)]
Conditionally add Auth-Type.
phampson [Thu, 10 Jun 2004 00:44:17 +0000 (00:44 +0000)]
Put quotes around %{Acct-Delay-Time} in accounting_onoff_query
Thanks to Manjunath M Prabhu
aland [Wed, 9 Jun 2004 19:15:06 +0000 (19:15 +0000)]
When building statically, tell libtool to build a static binary!
aland [Wed, 9 Jun 2004 17:22:55 +0000 (17:22 +0000)]
Make common *after* creating man directories
aland [Tue, 8 Jun 2004 15:08:53 +0000 (15:08 +0000)]
Check for old socket after initializing port
phampson [Tue, 8 Jun 2004 14:50:39 +0000 (14:50 +0000)]
Improve value naming slightly. L2TP values start with L2TP.
phampson [Tue, 8 Jun 2004 14:35:13 +0000 (14:35 +0000)]
Regenerate from configure.in using autoconf2.13 after:
We're now 1.1.0-pre0, as 1.0.0 has branched off.
phampson [Tue, 8 Jun 2004 14:22:40 +0000 (14:22 +0000)]
We're now 1.1.0-pre0, as 1.0.0 has branched off.
aland [Thu, 3 Jun 2004 16:25:18 +0000 (16:25 +0000)]
Added mschapv2
aland [Thu, 3 Jun 2004 16:21:45 +0000 (16:21 +0000)]
Include EAP-GTC and PEAP
phampson [Thu, 3 Jun 2004 15:44:25 +0000 (15:44 +0000)]
Unbreak building of rlm_eap_ttls and rlm_eap_peap.
aland [Thu, 3 Jun 2004 15:33:29 +0000 (15:33 +0000)]
Minor re-formatting, and updates from "barry"
aland [Thu, 3 Jun 2004 15:27:06 +0000 (15:27 +0000)]
Include Valemount in standard dictionary.
Add new attribute from Keith Yoder
aland [Wed, 2 Jun 2004 20:16:50 +0000 (20:16 +0000)]
Assert that the names for VALUEs aren't numbers
aland [Wed, 2 Jun 2004 20:13:25 +0000 (20:13 +0000)]
Update more names
aland [Wed, 2 Jun 2004 20:13:12 +0000 (20:13 +0000)]
Update names for values
aland [Wed, 2 Jun 2004 19:25:48 +0000 (19:25 +0000)]
In xlat_packet, allow xlat's of Packet-Type, even if vps is NULL
When looking for brackets, don't get excited if '\\' is the last
character in the buffer.
aland [Wed, 2 Jun 2004 16:11:08 +0000 (16:11 +0000)]
Use $(EXEEXT) to enable it to work a little better on systems
requiring the extension.
Deleted a bunch of unnecessary "create directory" on "make install"
aland [Wed, 2 Jun 2004 15:50:53 +0000 (15:50 +0000)]
Actually set the port
aland [Wed, 2 Jun 2004 15:31:23 +0000 (15:31 +0000)]
Make '-i' work again
3APA3A [Wed, 2 Jun 2004 14:56:53 +0000 (14:56 +0000)]
! TTY-Level-Max, TTY-Level-Start
3APA3A [Wed, 2 Jun 2004 14:52:48 +0000 (14:52 +0000)]
+ 2 redback attributes added
aland [Tue, 1 Jun 2004 20:57:46 +0000 (20:57 +0000)]
u_int -> uint
Remember typedefs...
aland [Tue, 1 Jun 2004 14:44:43 +0000 (14:44 +0000)]
Pull similar fixes from the TTLS module, so that PEAP works, too
aland [Tue, 1 Jun 2004 14:35:04 +0000 (14:35 +0000)]
Added code to help with assertions
phampson [Tue, 1 Jun 2004 10:48:13 +0000 (10:48 +0000)]
Fix compilation under big endian systems.
aland [Mon, 31 May 2004 19:55:53 +0000 (19:55 +0000)]
If the files in this directory are LGPL'd, we should include
a copy of the LGPL
aland [Mon, 31 May 2004 18:27:35 +0000 (18:27 +0000)]
If there's a proxied packet, and we're still waiting for a reply,
then when we delete the request, we also delete it from the proxy
trees, even if we haven't seen a response
3APA3A [Mon, 31 May 2004 10:16:56 +0000 (10:16 +0000)]
! ignoreempty configuration option added
3APA3A [Mon, 31 May 2004 10:14:05 +0000 (10:14 +0000)]
! ignoreempty configuration option added to avoid addition of empty values
phampson [Sun, 30 May 2004 04:06:10 +0000 (04:06 +0000)]
Finish fixing rlm_eap_ttls' usage of rlm_eap_tls
aland [Fri, 28 May 2004 21:45:07 +0000 (21:45 +0000)]
use Stripped-User-Name for proxied packets, independent of whether
request->proxy existed, or not
aland [Fri, 28 May 2004 17:07:07 +0000 (17:07 +0000)]
Include foundry dictionary in main dictionary
New Foundry attributes, as posted to the list by Dave Mussulman
aland [Fri, 28 May 2004 17:00:35 +0000 (17:00 +0000)]
Changed "unsigned long" to "uint32_t", which is portable.
Changes "unsigned char" to "uint8_t", which is portable.
Removed a "static" buffer in sha1.c, which was unnecessary, and
would break threading.
phampson [Fri, 28 May 2004 16:17:48 +0000 (16:17 +0000)]
Attempt to fix library loading for non-RTLD_GLOBAL libltdl
aland [Fri, 28 May 2004 15:00:04 +0000 (15:00 +0000)]
If new proxy FD's were allocated without the current destination
knowing, then update the destinations knowledge of Fd's, if it
runs out of Id's to use.
This code is in preference to allocating a new proxy Fd.
aland [Fri, 28 May 2004 14:42:26 +0000 (14:42 +0000)]
Get rid of "proxyfd", and use the new rad_listen_t structure.
Allocate more than one proxy FD, when the first one has all Id's
used. It isn't currently perfect, but it will do.
phampson [Fri, 28 May 2004 12:43:16 +0000 (12:43 +0000)]
Replaced GPL'd snprintf.c in libradius with LGPL'd snprintf.[ch] from
http://savannah.gnu.org/cgi-bin/viewcvs/mailutils/mailutils/lib/snprintf.c?rev=1.4
http://savannah.gnu.org/cgi-bin/viewcvs/mailutils/mailutils/lib/snprintf.h?rev=1.4
The final step in FreeRADIUS bug #21.
phampson [Fri, 28 May 2004 07:25:41 +0000 (07:25 +0000)]
Move (GPL'd) smbdes.c into the (GPL'd) modules that require it:
rlm_mschap
rlm_eap_leap
and out of the (LGPL'd) libradius.
Another brick in the wall that is FreeRADIUS bug 21
phampson [Fri, 28 May 2004 07:20:14 +0000 (07:20 +0000)]
Move (GPL'd) smbdes.c into the (GPL'd) modules that require it:
rlm_mschap
rlm_eap_leap
and out of the (LGPL'd) libradius.
Another brick in the wall that is FreeRADIUS bug 21
phampson [Fri, 28 May 2004 06:27:52 +0000 (06:27 +0000)]
Public domain version of MD4 algorithm, from OpenBSD archives.
Also correct the source URL in the md5 files.
Another brick in the wall for FreeRADIUS bug #21.
phampson [Fri, 28 May 2004 04:56:36 +0000 (04:56 +0000)]
Open source MD5 implementation by Colin Plumb
Fetched from: http://www.openbsd.org/cgi-bin/cvsweb/src/sys/crypto/md5.[ch]
Another brick in the wall that is FreeRADIUS Bug 21.
mgriego [Thu, 27 May 2004 22:10:17 +0000 (22:10 +0000)]
Return my_ok in case we changed the outcome of the verification routine.
Also fix compiler warnings about incompatible pointer types on the
SSL_get_ex_data calls.
aland [Thu, 27 May 2004 17:06:07 +0000 (17:06 +0000)]
It's ipaddr, not string.
By Travis Rayhons, dordt.edu
aland [Tue, 25 May 2004 19:08:48 +0000 (19:08 +0000)]
Update debug messages
aland [Tue, 25 May 2004 18:35:32 +0000 (18:35 +0000)]
Only call xlat on quoted strings, and not on strings where
the first and last characters happen to be identical
phampson [Tue, 25 May 2004 06:56:43 +0000 (06:56 +0000)]
SQL-Xlat support, avoid unneccessary stringcopy when checking results.
Also xlat's config items.
aland [Fri, 21 May 2004 14:57:19 +0000 (14:57 +0000)]
A little more backwards compatibility
aland [Fri, 21 May 2004 14:40:39 +0000 (14:40 +0000)]
If the User-Password has zero length, encrypt 16 bytes of zero.
Bug #68
aland [Wed, 19 May 2004 19:40:11 +0000 (19:40 +0000)]
Corrected typo
aland [Wed, 19 May 2004 18:03:43 +0000 (18:03 +0000)]
Made "live" new code to allocate packet Id's on a per-destination
ip/port pair. It also keeps track of outstanding duplicate proxied
requests, and doesn't re-use Id's until the request is timed out,
or until it's seen all of the replies.
This should work well in most cases, but may have issues in some
boundary conditions (e.g. when the NAS re-uses an Id before we've
seen all of the replies from the home server.)
To fix those problems, we've got to do a little more work to keep
track of "replies from the home server which we can ignore"
phampson [Tue, 18 May 2004 00:09:59 +0000 (00:09 +0000)]
Fix lost-start Alive accounting packet handling.
A failed UPDATE is not an error, so check if we affected anything instead.
phampson [Mon, 17 May 2004 14:07:22 +0000 (14:07 +0000)]
Rebuild configure from configure.in 1.198