Alan T. DeKok [Mon, 11 Feb 2013 22:31:08 +0000 (17:31 -0500)]
Refer to cache_eap authorize method, not authenticate
Alan T. DeKok [Mon, 11 Feb 2013 22:29:39 +0000 (17:29 -0500)]
Enable cache_eap module by default
Arran Cudbard-Bell [Tue, 12 Feb 2013 00:05:26 +0000 (19:05 -0500)]
Define value types as an enum
Alan T. DeKok [Mon, 11 Feb 2013 15:40:11 +0000 (10:40 -0500)]
Fix horrible code and memory leak
Alan T. DeKok [Sun, 10 Feb 2013 17:00:10 +0000 (12:00 -0500)]
Remove maximum length checks in rad_packet_ok()
If the network cwlayercode allows for more than 4K of data,
who are we to argue? This code only checks to see if the packet
is "well formed"
Arran Cudbard-Bell [Sat, 9 Feb 2013 16:06:13 +0000 (11:06 -0500)]
Remove examples for modules that have been removed from 3.0
Alan T. DeKok [Fri, 8 Feb 2013 17:16:27 +0000 (12:16 -0500)]
Reorder xlat, too
Alan T. DeKok [Fri, 8 Feb 2013 17:08:01 +0000 (12:08 -0500)]
Track priorities for default action return
If the default action is return, take it ONLY if we're at priority 0
Alan T. DeKok [Fri, 8 Feb 2013 16:50:30 +0000 (11:50 -0500)]
Clarify handling of priority and result.
Arran Cudbard-Bell [Fri, 8 Feb 2013 15:23:17 +0000 (10:23 -0500)]
Use rlm_cache to deal with proxy failovers
guydavies [Wed, 6 Feb 2013 14:13:54 +0000 (15:13 +0100)]
Update share/dictionary.erx
Alan T. DeKok [Thu, 7 Feb 2013 18:36:21 +0000 (13:36 -0500)]
Free modules before mainconfig
some modules may have pointer to CONF_SECTIONS buried.
If the order is different, then the CONF_SECTION is free'd out
from under the module
Alan T. DeKok [Thu, 7 Feb 2013 18:23:09 +0000 (13:23 -0500)]
map -> vpm, to use the loop variable
Arran Cudbard-Bell [Thu, 7 Feb 2013 17:18:55 +0000 (12:18 -0500)]
fix typo
Alan T. DeKok [Thu, 7 Feb 2013 03:41:26 +0000 (22:41 -0500)]
Always send Message-Authenticator for proxied Access-Requests
It's 2013. There's no reason avoid security
Alan T. DeKok [Wed, 6 Feb 2013 18:07:13 +0000 (13:07 -0500)]
Limit the number of entries in the cache. Closes #156
Alan T. DeKok [Wed, 6 Feb 2013 17:57:17 +0000 (12:57 -0500)]
Fix typo
Alan T. DeKok [Wed, 6 Feb 2013 17:49:46 +0000 (12:49 -0500)]
Update sections inherit actions *and* priority
Closs #107
Arran Cudbard-Bell [Wed, 6 Feb 2013 01:19:50 +0000 (20:19 -0500)]
Startup check for mismatched OpenSSL library versions
Print OpenSSL version in debug output
Alan T. DeKok [Mon, 4 Feb 2013 13:50:15 +0000 (08:50 -0500)]
Update to match last commit
Alan T. DeKok [Mon, 4 Feb 2013 13:45:23 +0000 (08:45 -0500)]
Updated EAP types to match IANA
Arran Cudbard-Bell [Sun, 3 Feb 2013 01:17:17 +0000 (20:17 -0500)]
Run post-auth on Access-Challenge if there's a Post-Auth-Type Challenge {} section
Alan T. DeKok [Tue, 29 Jan 2013 23:02:05 +0000 (18:02 -0500)]
Hack to make rlm_perl RTLD_GLOBAL
Closes #118
Arran Cudbard-Bell [Sun, 27 Jan 2013 16:21:25 +0000 (08:21 -0800)]
Use dict_valnamebyattr to get Post-Proxy-Type value
Arran Cudbard-Bell [Sun, 27 Jan 2013 16:02:36 +0000 (08:02 -0800)]
Merge pull request #177 from olivierbeytrison/master
fix debian build system
Alan T. DeKok [Sun, 27 Jan 2013 14:09:21 +0000 (09:09 -0500)]
Check for NULL pointers. Fixes #178
Olivier Beytrison [Sun, 27 Jan 2013 09:17:29 +0000 (10:17 +0100)]
fix debian build system
Arran Cudbard-Bell [Sun, 27 Jan 2013 06:39:56 +0000 (22:39 -0800)]
Merge pull request #175 from FabioPedretti/red-hat_radutmp_logrotate
Don't rotate Red Hat radutmp. Fix #174
Arran Cudbard-Bell [Sun, 27 Jan 2013 00:17:42 +0000 (16:17 -0800)]
[fixes #176] Shouldn't return if we fail to create the auth-type because the reject section doesn't exist
Fabio Pedretti [Sat, 26 Jan 2013 19:16:40 +0000 (20:16 +0100)]
Don't rotate Red Hat radutmp. Fix #174
Arran Cudbard-Bell [Thu, 24 Jan 2013 16:28:06 +0000 (08:28 -0800)]
Merge pull request #171 from arr2036/master
Man pages say you shouldn't set sticky bits with mkdir
Arran Cudbard-Bell [Thu, 24 Jan 2013 15:32:11 +0000 (07:32 -0800)]
Set initial rdebug level from debug_flag
Arran Cudbard-Bell [Wed, 23 Jan 2013 15:39:13 +0000 (15:39 +0000)]
Set sticky bit properly on dir creation
Arran Cudbard-Bell [Wed, 23 Jan 2013 15:41:52 +0000 (15:41 +0000)]
Add docs
Alan T. DeKok [Wed, 23 Jan 2013 20:08:34 +0000 (15:08 -0500)]
More forgiving way of making CA depend on index && serial
If they don't exist, we create them.
If they do exist, we don't care if they changed.
Alan T. DeKok [Wed, 23 Jan 2013 20:11:31 +0000 (15:11 -0500)]
Make sure these are deleted, too
Arran Cudbard-Bell [Tue, 22 Jan 2013 09:21:58 +0000 (09:21 +0000)]
Fix some typos
Arran Cudbard-Bell [Tue, 22 Jan 2013 00:05:43 +0000 (00:05 +0000)]
Add doxygen headers to all module files
Arran Cudbard-Bell [Mon, 21 Jan 2013 22:29:43 +0000 (22:29 +0000)]
Remove rlm_acctlog
Arran Cudbard-Bell [Wed, 9 Jan 2013 18:52:32 +0000 (18:52 +0000)]
Make rlm_krb5 threadsafe.
Arran Cudbard-Bell [Mon, 21 Jan 2013 19:35:07 +0000 (19:35 +0000)]
Remove dialup admin
Arran Cudbard-Bell [Mon, 21 Jan 2013 19:15:35 +0000 (19:15 +0000)]
Enable with_ntdomain_hack by default in mschap
Alan T. DeKok [Mon, 21 Jan 2013 19:13:30 +0000 (14:13 -0500)]
Note edir changes
Alan T. DeKok [Mon, 21 Jan 2013 19:13:18 +0000 (14:13 -0500)]
Don't quote yes/no
Arran Cudbard-Bell [Mon, 21 Jan 2013 11:29:22 +0000 (11:29 +0000)]
selected array should be reinitialized on each
iteration of i to avoid more than one "selected" operator
in the dropdown.
As posted by Octavio Alvarez.
Arran Cudbard-Bell [Mon, 21 Jan 2013 00:40:23 +0000 (00:40 +0000)]
Update src/main/version.c
Arran Cudbard-Bell [Mon, 21 Jan 2013 00:37:35 +0000 (00:37 +0000)]
Update COPYRIGHT
Arran Cudbard-Bell [Sun, 20 Jan 2013 22:25:20 +0000 (22:25 +0000)]
Replace credits with a link to the Acknowledgements wiki page
Arran Cudbard-Bell [Sun, 20 Jan 2013 13:09:57 +0000 (13:09 +0000)]
Use of 'op' instead of 'operator', and declare it as an FR_TOKEN.
Operator conflicts with a C++ keyword.
Arran Cudbard-Bell [Sun, 20 Jan 2013 12:42:55 +0000 (12:42 +0000)]
Remove @version, doxygen seems to parse $id ok
Add callback docs for connection API
Alan T. DeKok [Sat, 19 Jan 2013 14:19:53 +0000 (09:19 -0500)]
Decode VSA TLVs, too
Arran Cudbard-Bell [Thu, 17 Jan 2013 07:15:21 +0000 (23:15 -0800)]
Merge pull request #169 from olivierbeytrison/master
Logic was incorrect in cache_add if control:Cache-Merge was set to no
Olivier Beytrison [Thu, 17 Jan 2013 07:12:38 +0000 (08:12 +0100)]
wrong logic for cache merge
Arran Cudbard-Bell [Wed, 16 Jan 2013 19:44:17 +0000 (19:44 +0000)]
Dynamically resolve dictionary entrys for control attrs
Add control:Cache-Merge, when set to no makes the cache 'wo'
Arran Cudbard-Bell [Wed, 16 Jan 2013 17:06:11 +0000 (17:06 +0000)]
Fix minor issues
Arran Cudbard-Bell [Wed, 16 Jan 2013 17:04:01 +0000 (17:04 +0000)]
Update LDAP default config
Arran Cudbard-Bell [Wed, 16 Jan 2013 14:30:08 +0000 (14:30 +0000)]
Switch to using explicit template types
Add support for copying lists to rlm_cache
Add more sanity checks to rlm_ldap and rlm_cache
Reformat more code in rlm_ldap
Arran Cudbard-Bell [Tue, 15 Jan 2013 17:58:48 +0000 (17:58 +0000)]
Fixup documentation for valuepair.c
Arran Cudbard-Bell [Tue, 15 Jan 2013 17:49:04 +0000 (17:49 +0000)]
Update rlm_cache to use the attrmap API
Improve rlm_cache debugging
Make copying attributes into current requests dependent on whether the src/dst lists are not the same
Arran Cudbard-Bell [Tue, 15 Jan 2013 17:47:33 +0000 (17:47 +0000)]
Minor formatting
Arran Cudbard-Bell [Tue, 15 Jan 2013 17:47:10 +0000 (17:47 +0000)]
Update attrmap functions to be more flexible, and add CS to map function from rlm_ldap
Arran Cudbard-Bell [Tue, 15 Jan 2013 17:45:09 +0000 (17:45 +0000)]
Fix typo in cache config item name
Arran Cudbard-Bell [Tue, 15 Jan 2013 17:42:57 +0000 (17:42 +0000)]
Add function for printing lists to request debug log
Arran Cudbard-Bell [Mon, 14 Jan 2013 10:51:47 +0000 (02:51 -0800)]
Merge pull request #166 from olivierbeytrison/master
rlm_cache : Operator not retrieved in cache_verify
Olivier Beytrison [Mon, 14 Jan 2013 10:48:31 +0000 (11:48 +0100)]
Add missing cf_pair_operator to cache_verify
Arran Cudbard-Bell [Fri, 11 Jan 2013 23:24:48 +0000 (23:24 +0000)]
Add index files for module and client
Arran Cudbard-Bell [Fri, 11 Jan 2013 23:17:53 +0000 (23:17 +0000)]
Move license declarations outside of file descriptions
Arran Cudbard-Bell [Fri, 11 Jan 2013 20:16:16 +0000 (20:16 +0000)]
Define HAVE_JSON when generating docs
Arran Cudbard-Bell [Fri, 11 Jan 2013 20:01:00 +0000 (20:01 +0000)]
Fix minor formatting issue
Arran Cudbard-Bell [Fri, 11 Jan 2013 19:10:58 +0000 (19:10 +0000)]
More doxygen tweaking
Arran Cudbard-Bell [Fri, 11 Jan 2013 15:27:51 +0000 (15:27 +0000)]
Add documentation to modules.h
Add proper return code type rlm_rcode_t, and update signatures of all module functions that return rcodes
Arran Cudbard-Bell [Wed, 9 Jan 2013 23:25:17 +0000 (15:25 -0800)]
Merge pull request #163 from alanbuxey/master
CUI MD5 shouldnt change if User plays with format of their identity , new F5 dictionary entry
Alan Buxey [Wed, 9 Jan 2013 23:19:50 +0000 (23:19 +0000)]
added new dictionary entry
as per
http://support.f5.com/kb/en-us/solutions/public/11000/400/sol11431.html
Alan Buxey [Wed, 9 Jan 2013 23:19:35 +0000 (23:19 +0000)]
make CUI MD5 not reliant on case of User-Name
MD5 for CUI would change if User put their name in different case
Alan T. DeKok [Tue, 8 Jan 2013 18:14:49 +0000 (13:14 -0500)]
Add stats on last packet sent / recv for home server
Alan T. DeKok [Mon, 7 Jan 2013 23:44:35 +0000 (18:44 -0500)]
Updates for new changes
Alan T. DeKok [Mon, 7 Jan 2013 23:43:51 +0000 (18:43 -0500)]
Be more graceful about reporting home server state
Alan T. DeKok [Mon, 7 Jan 2013 23:12:49 +0000 (18:12 -0500)]
Add "unknown" for home server state
Arran Cudbard-Bell [Mon, 7 Jan 2013 19:25:17 +0000 (19:25 +0000)]
Add documentation for the connection pool API
Update some weird argument names and field names so they make more sense.
Arran Cudbard-Bell [Mon, 7 Jan 2013 16:52:53 +0000 (08:52 -0800)]
Merge pull request #161 from philmayers/sqlnull
specify TARGET for rlm_sql_null
Phil Mayers [Mon, 7 Jan 2013 16:45:50 +0000 (16:45 +0000)]
specify TARGET for rlm_sql_null
Arran Cudbard-Bell [Mon, 7 Jan 2013 11:09:46 +0000 (11:09 +0000)]
Don't include references they're too verbose
Define multivalued TAGs properly
Arran Cudbard-Bell [Mon, 7 Jan 2013 10:51:52 +0000 (10:51 +0000)]
Enable additional doxygen features
Alan T. DeKok [Fri, 4 Jan 2013 12:59:02 +0000 (07:59 -0500)]
As posted to the list
Alan T. DeKok [Fri, 4 Jan 2013 12:55:05 +0000 (07:55 -0500)]
Merge branch 'master' of github.com:FreeRADIUS/freeradius-server
Arran Cudbard-Bell [Wed, 2 Jan 2013 12:31:59 +0000 (12:31 +0000)]
Fix more null string checks
Arran Cudbard-Bell [Mon, 31 Dec 2012 11:36:35 +0000 (11:36 +0000)]
Minor fixes in rlm_rest
Arran Cudbard-Bell [Sun, 30 Dec 2012 23:34:06 +0000 (23:34 +0000)]
Update doxygen documentation
Olivier Beytrison [Fri, 21 Dec 2012 14:46:23 +0000 (15:46 +0100)]
initial support for multi-valued attributes in rlm_cache
Arran Cudbard-Bell [Sun, 30 Dec 2012 12:38:03 +0000 (12:38 +0000)]
Fix warning
Arran Cudbard-Bell [Sat, 29 Dec 2012 23:26:56 +0000 (23:26 +0000)]
Add support for tags to remaining functions in lib/valuepair.c
Alan T. DeKok [Fri, 28 Dec 2012 13:35:22 +0000 (08:35 -0500)]
Allow TLVs in the standard space, too.
The next step will be to fix the digest module to use the new
format, and to update the dictionaries.
Alan T. DeKok [Fri, 28 Dec 2012 13:26:57 +0000 (08:26 -0500)]
Complain if we can't run radclient
Alan T. DeKok [Thu, 27 Dec 2012 17:09:10 +0000 (12:09 -0500)]
Restructure how attributes are packed
so that we can potentially allow TLVs in the standard space
Alan T. DeKok [Thu, 27 Dec 2012 13:12:06 +0000 (08:12 -0500)]
Simplify "extended" handling.
"extended", "long-extended" and "evs" types get the flags.extended = 1
The various other code then keys off of "flags.extended", rather than
using the VENDORPEC_EXTENDED hack.
Alan T. DeKok [Tue, 25 Dec 2012 13:59:23 +0000 (08:59 -0500)]
Remove old unused code
Alan T. DeKok [Tue, 25 Dec 2012 13:58:46 +0000 (08:58 -0500)]
Cast to quiet compiler
Alan T. DeKok [Tue, 25 Dec 2012 13:56:26 +0000 (08:56 -0500)]
Casts to quiet compiler
Arran Cudbard-Bell [Fri, 21 Dec 2012 15:13:11 +0000 (15:13 +0000)]
Always respect Response-Packet-Type for authentication requests
Alan T. DeKok [Fri, 21 Dec 2012 12:43:52 +0000 (07:43 -0500)]
Minor cleanups
Added documentation on new data types. Re-arranged dictionaries
to make a bit more sense.