jcarneal [Fri, 2 Feb 2001 22:00:09 +0000 (22:00 +0000)]
Updated items I knew (fairly sure anyway) were done.
jcarneal [Fri, 2 Feb 2001 21:34:20 +0000 (21:34 +0000)]
Oops, forgot these...
jcarneal [Fri, 2 Feb 2001 21:31:46 +0000 (21:31 +0000)]
Jeff Carneal <jeff@apex.net>
Finally. The SQL config-based queries patch. It's really alpha, and there
are probably bugs. However, whatever bugs exist should be simple, as the
logic behind the patch is straight-forward.
jcarneal [Fri, 2 Feb 2001 21:22:56 +0000 (21:22 +0000)]
Jeff Carneal <jeff@apex.net>
Finally. The SQL config-based queries patch. It's really alpha, and there
are probably bugs. However, whatever bugs exist should be simple, as the
logic behind the patch is straight-forward.
aland [Fri, 2 Feb 2001 20:17:55 +0000 (20:17 +0000)]
complain if we were unable to allocate memory
Patch by Thiago Rondon <maluco@mileniumnet.com.br>
aland [Fri, 2 Feb 2001 20:17:13 +0000 (20:17 +0000)]
Complain if we were unable to allocate memory.
Patch from Thiago Rondon <maluco@mileniumnet.com.br>
hartwick [Fri, 2 Feb 2001 04:08:17 +0000 (04:08 +0000)]
* Make some formatting changes. Mainly in comments, but
fixed the indents on a function
hartwick [Fri, 2 Feb 2001 02:01:37 +0000 (02:01 +0000)]
* Fix a FIXME. If a varialble in the config file was missing
a closing '}' it was skipping over it. The code now logs
and error and exits.
aland [Thu, 1 Feb 2001 18:18:58 +0000 (18:18 +0000)]
Remove malloc.h from the includes, as it's not needed.
Patch by Thiago Rondon <maluco@mileniumnet.com.br>
aland [Thu, 1 Feb 2001 18:04:40 +0000 (18:04 +0000)]
Patch from Thiago Rondon <maluco@mileniumnet.com.br>, to call
rad_malloc() (which has more sanity checks for errors), instead
of malloc()
hartwick [Wed, 31 Jan 2001 04:37:42 +0000 (04:37 +0000)]
* Remove the FIXME comment. Ooops! :)
hartwick [Wed, 31 Jan 2001 04:36:37 +0000 (04:36 +0000)]
* Fix a FIXME to put the Auth-Type at the first of the pair
list. The changes seemed too easy so I left the old code
and some debugging code.
aland [Tue, 30 Jan 2001 20:25:43 +0000 (20:25 +0000)]
add example state, too.
aland [Tue, 30 Jan 2001 20:24:14 +0000 (20:24 +0000)]
Added example code for sending Access-Challenges.
jcarneal [Tue, 30 Jan 2001 15:33:29 +0000 (15:33 +0000)]
Updated to reflect changes to the code.
jcarneal [Tue, 30 Jan 2001 15:26:27 +0000 (15:26 +0000)]
Updated to reflect (upcoming) changes to radius_xlat2().
aland [Mon, 29 Jan 2001 16:02:46 +0000 (16:02 +0000)]
Don't complain about unprintable characters in the user-supplied
password, UNLESS it's a 'Password' attribute.
i.e. Don't complain about CHAP-Password attributes, which are
ALWAYS unprintable.
aland [Mon, 29 Jan 2001 16:00:39 +0000 (16:00 +0000)]
print out auth-type by name, not by value.
Removed 'fixme' about MS-Chap support, as we now have rlm_mschap
cmiller [Sat, 27 Jan 2001 17:22:51 +0000 (17:22 +0000)]
Added var/run and var/log/radacct to directory list.
cmiller [Sat, 27 Jan 2001 16:07:41 +0000 (16:07 +0000)]
Uncommented the leak-fix of two weeks ago, after testing.
pam [Sat, 27 Jan 2001 14:33:34 +0000 (14:33 +0000)]
Changed strncasecmp() to strcasecmp() in ldap_pairget() to cope with Radius attributes with common prefix.
Suggested by Hannu Laurila <hannu.laurila@japo.fi>
cmiller [Sat, 27 Jan 2001 00:25:44 +0000 (00:25 +0000)]
Formatted code, loosely. s/ {8}/\t/g
cmiller [Sat, 27 Jan 2001 00:11:25 +0000 (00:11 +0000)]
Added assignment of config variable 'compat_mode' into inst stuct. Not
beacuse we use it, but because we free it later.
aland [Thu, 25 Jan 2001 16:09:56 +0000 (16:09 +0000)]
Create the '.../var/run' directory, so that the server can write
it's PID file.
Bug noted by heatherj <heatherj@cup.hp.com>
aland [Thu, 25 Jan 2001 16:06:19 +0000 (16:06 +0000)]
Moved a number of definitions from configure-time substitution
to make-time substitution.
e.g. FOO=@bar@/stuff --> FOO=${bar}/stuff
This makes it more clear where the various configuration directives
are coming from.
aland [Wed, 24 Jan 2001 18:59:03 +0000 (18:59 +0000)]
added more debugging messages to tell people exactly what's going
on, when there's an error binding to auth/acct ports
jcarneal [Wed, 24 Jan 2001 17:56:01 +0000 (17:56 +0000)]
Fix for bug #107. Changed 'NULL' to '0' in accounting inserts.
miquels [Wed, 24 Jan 2001 13:10:24 +0000 (13:10 +0000)]
* Corrected spelling of my name in several .c files
jcarneal [Tue, 23 Jan 2001 21:53:27 +0000 (21:53 +0000)]
Just a couple of tweaks...exception handling, etc.
jcarneal [Tue, 23 Jan 2001 21:46:23 +0000 (21:46 +0000)]
Finishing up ODBC support to work for authentication, etc. It seems to work
just fine, but since I don't use sql auth, we'll need other testers to jump
in and really put it thru its paces. The driver is complete and just needs
testing now.
pacman [Tue, 23 Jan 2001 20:47:37 +0000 (20:47 +0000)]
Moved group{}-handling into compile_modsingle so groups can be parsed
correctly when placed directly inside a component section
pam [Tue, 23 Jan 2001 09:47:52 +0000 (09:47 +0000)]
Fixed couple of incorect ldap_msgfree() invocations, which could lead to segfault.
Fixed instance configuration.
Added patch by Hannu Laurila <hannu.laurila@japo.fi> for multivalued attributes support.
pam [Mon, 22 Jan 2001 11:42:38 +0000 (11:42 +0000)]
Two fixes in free() of unintialized structures.
Those bugs are reason for bug#106 and death upon SIGHUP
aland [Sun, 21 Jan 2001 16:09:11 +0000 (16:09 +0000)]
Fix for bug #105.
ALWAYS create a new Vendor-Specific attribute when trying to encode
multiple VSA's. Some older RADIUS implementations do not understand
multiple VSA's in a Vendor-Specific.
aland [Sun, 21 Jan 2001 16:03:17 +0000 (16:03 +0000)]
removed Alan Curry's 'radutmp' from 'todo' to 'done'
mmachado [Fri, 19 Jan 2001 18:03:38 +0000 (18:03 +0000)]
Fixed sql structure for mysql
pam [Fri, 19 Jan 2001 16:11:05 +0000 (16:11 +0000)]
Adding Netscape Directory Server LDAP schema for RADIUS attributes.
It should serve as starting poit for propper LDAP v3 schema.
jcarneal [Tue, 16 Jan 2001 23:18:08 +0000 (23:18 +0000)]
Making a vain attempt to sync oracle with current driver (mysql) changes.
This is one of the main reasons we should go with ODBC.
jcarneal [Tue, 16 Jan 2001 23:16:53 +0000 (23:16 +0000)]
Adding misc changes from David Kerry's Oracle patch. Mostly cosmetic.
jcarneal [Tue, 16 Jan 2001 22:26:55 +0000 (22:26 +0000)]
The humble beginnings of ODBC support for FreeRadius.
Currently it works for accounting only. Auth will be added shortly,
after a much needed discussion on the list about the future of the
SQL module.
This driver requires libiodbc available from www.iodbc.org. However, it
*should* be ODBC 2.5 compliant and require very minor changes to work
with another ODBC library.
mmachado [Mon, 15 Jan 2001 22:03:57 +0000 (22:03 +0000)]
Forgot to clean up mutexes, semaphores and conditional variables on sql_poolfree()
jcarneal [Mon, 15 Jan 2001 19:09:16 +0000 (19:09 +0000)]
Committing part of Oracle patch for David Kerry <davidk@snti.com>.
I'm committing only the db_oracle.sql, sql_oracle.c,h files now.
The changes to the rlm_sql module from his patch most likely will
not apply now, so at a later date I (or someone) can add them back
in by hand where applicable.
pacman [Mon, 15 Jan 2001 09:07:15 +0000 (09:07 +0000)]
Fix a little header problem
pacman [Mon, 15 Jan 2001 06:03:05 +0000 (06:03 +0000)]
Moved all radutmp functionality from radiusd into rlm_radutmp.
cmiller [Fri, 12 Jan 2001 21:22:19 +0000 (21:22 +0000)]
Commented-out leak patch. It may be the wrong thing to do.
cmiller [Fri, 12 Jan 2001 18:21:33 +0000 (18:21 +0000)]
This file was awfully ugly; lots of space-indenting (and not even eight,
often).
This is a big patch that cleans it up, to meet our standards.
vi's `:set list' is a ghodsend.
cmiller [Fri, 12 Jan 2001 18:17:30 +0000 (18:17 +0000)]
Plugged leak in INCLUDEing empty files.
cmiller [Thu, 11 Jan 2001 20:38:58 +0000 (20:38 +0000)]
Set better defaults for user, group, and lookup_hostname `variables'.
mmachado [Thu, 11 Jan 2001 20:22:47 +0000 (20:22 +0000)]
Removed socket used time calculations becuase they were way off. Request timestamp methods must have changed since cistron. I may or may not add that back in, depending on if people think it was a good idea.
mmachado [Thu, 11 Jan 2001 20:16:34 +0000 (20:16 +0000)]
Put current mysql code into drivers/ directory. Need implement dlopen for database modules.
mmachado [Thu, 11 Jan 2001 20:13:50 +0000 (20:13 +0000)]
Ok, it works now with the new connection pool. Helps to initalize our mutexes first.
pam [Thu, 11 Jan 2001 16:02:06 +0000 (16:02 +0000)]
Add LDAP Auth-Type
pam [Thu, 11 Jan 2001 16:00:45 +0000 (16:00 +0000)]
New version of documentation for rlm_ldap module
pam [Thu, 11 Jan 2001 15:54:49 +0000 (15:54 +0000)]
New version of the module.
o Instantiation support (no more global variables)
o uses both GroupOfNames and GroupOfUniqueNames objects
o Removed default configuration hack (now that module failover code is done)
o Non-threaded version uses global module lock (RLM_TYPE_THREAD_UNSAFE)
o Changed to standard C formating (8-space tabs and C comments)
o New documentation in radiusd/doc/README.rlm_ldap
o Faster group membership verification (offloads work to LDAP server)
o "dialupAccess" attribute (which controls user authorization) now configurable
from radiusd.conf
o Does not use LDAP cache, due to threading problems.
miquels [Thu, 11 Jan 2001 14:39:11 +0000 (14:39 +0000)]
Changes to support PW_STATUS_SERVER (at least client-side, for radclient):
* include/radius.h: added PW_STATUS_SERVER and PW_STATUS_CLIENT
* lib/radius.c: fixed crash in debug message: for (reply = ..) had
an reply = reply-> next internally as well
* lib/radius.c: support for PW_STATUS_SERVER which is like
PW_AUTHENTICATION_REQUEST for outgoing packets
* main/radclient.c: argv[2] is a service-type number if decimal,
not an UDP port number.
mmachado [Thu, 11 Jan 2001 02:08:24 +0000 (02:08 +0000)]
few minor changes
mmachado [Thu, 11 Jan 2001 01:02:10 +0000 (01:02 +0000)]
Seperate conf file no longer needed
mmachado [Thu, 11 Jan 2001 01:01:44 +0000 (01:01 +0000)]
Added threads to rlm_sql, make drivers directory in prep for the db modules code. Sorry about the non tested commit, but I had a scarey experence in almost loosing several hours of work and I would feel better if I commited :)
It does build ok, both with and without pthread.h.
cparker [Wed, 10 Jan 2001 22:22:01 +0000 (22:22 +0000)]
Initial commit of the 'rlm_attr_filter'. See the README and
sample 'attrs' file for more info on how it works. Current status
is it is functional for filtering replies sent from proxy servers.
The next step is to setup filtering off accounting-reqs sent to
proxy servers, as you may not want to proxy *all* the information
you receive.
cmiller [Tue, 9 Jan 2001 17:39:46 +0000 (17:39 +0000)]
Renamed bay.vendor to dictionary.bay .
miquels [Tue, 9 Jan 2001 01:15:24 +0000 (01:15 +0000)]
synced checkrad.pl and README.simul with Cistron Radius
aland [Mon, 8 Jan 2001 17:02:17 +0000 (17:02 +0000)]
don't echo the 'rm -rf' when doing a 'make clean'
pacman [Sun, 7 Jan 2001 07:01:55 +0000 (07:01 +0000)]
fwrite returns the number of items written, not the number of bytes.
fwrite(w,x,y,z) ~= write(fileno(z),w,x*y)/x
aland [Sat, 6 Jan 2001 16:56:30 +0000 (16:56 +0000)]
reverted debugging warning messages, until such time as I get a clue...
hartwick [Sat, 6 Jan 2001 04:48:28 +0000 (04:48 +0000)]
* Fix a FIXME. Add some error checking and set the return
code right on a failure.
aland [Wed, 3 Jan 2001 19:57:21 +0000 (19:57 +0000)]
updated with latest bug fixes
aland [Wed, 3 Jan 2001 19:36:21 +0000 (19:36 +0000)]
bug-fix for nesting
aland [Wed, 3 Jan 2001 17:29:55 +0000 (17:29 +0000)]
if debugging, output a WARNING message when we see duplicate
configuration items.
As yet, we don't check for duplicate configuration sections.
aland [Wed, 3 Jan 2001 16:42:16 +0000 (16:42 +0000)]
Patch from Kristina Pfaff-Harris <kristina@greatbasin.net>
Use attribute number to look up value names. If this isn't done,
then the named values returned MAY BE associated with another
attribute, and not the one we're interested in.
e.g. Rlogin has one name, but multiple values, which are
per-attribute.
cparker [Wed, 3 Jan 2001 00:43:19 +0000 (00:43 +0000)]
Added new valuepair function 'simplepaircmp()' to compare only two
attributes, as paircmp() tries to compare two lists of attributes.
cparker [Tue, 2 Jan 2001 17:17:51 +0000 (17:17 +0000)]
fixed regex examples in default attrs file to be correct.
aland [Tue, 2 Jan 2001 17:12:30 +0000 (17:12 +0000)]
Shasta dictionary, as posted to the Cistron list by
Andre Gustavo de Carvalho Albuquerque <gustavo@anita.visualnet.com.br>
pacman [Tue, 2 Jan 2001 05:44:23 +0000 (05:44 +0000)]
I was getting the "module name" from the wrong struct, causing default
authtype names to be screwed up.
aland [Sat, 30 Dec 2000 17:07:13 +0000 (17:07 +0000)]
Corrected my email address to aland@ox.org
aland [Sat, 30 Dec 2000 16:52:59 +0000 (16:52 +0000)]
comments about bugs to be fixed
miquels [Fri, 29 Dec 2000 16:10:50 +0000 (16:10 +0000)]
fixed USR-Connect-Speed in dictionary.usr, courtesy Luiz Felipe Silva
cparker [Fri, 29 Dec 2000 01:53:34 +0000 (01:53 +0000)]
preliminary entry of default 'attrs' file. see the newly added
doc/README.rlm_attr_filter for explanation of how it is used.
cparker [Fri, 29 Dec 2000 01:17:21 +0000 (01:17 +0000)]
updated README a tiny bit more
cparker [Fri, 29 Dec 2000 01:16:06 +0000 (01:16 +0000)]
added preliminary README for new module, rlm_attr_filter
aland [Thu, 28 Dec 2000 17:01:18 +0000 (17:01 +0000)]
removed old text
aland [Thu, 28 Dec 2000 16:31:03 +0000 (16:31 +0000)]
Added a copy of the GNU GPL version 2, which wasn't here before...
hartwick [Thu, 28 Dec 2000 03:05:53 +0000 (03:05 +0000)]
* Update the dictionary to include more VSA's
hartwick [Thu, 28 Dec 2000 01:55:04 +0000 (01:55 +0000)]
* Add an else to the if (p) block to catch the cases where we are
left with a NULL pointer.
hartwick [Thu, 28 Dec 2000 01:34:43 +0000 (01:34 +0000)]
* Update the documentation to reflect changes to the code.
hartwick [Thu, 28 Dec 2000 01:33:02 +0000 (01:33 +0000)]
* Minor formatting change
* Remove the const declarations from two char * defined in
struct detail_instanace { ... }.
* Change the default detailfile to %A/%{Client-IP-Address}/detail to
match the documentation and radiusd.conf
* Add a DEBUG2() call to show the expansion
cmiller [Wed, 27 Dec 2000 18:54:34 +0000 (18:54 +0000)]
I think these are finally sufficient for upload to Debian.
cmiller [Wed, 27 Dec 2000 18:51:49 +0000 (18:51 +0000)]
Lame hack to get the rc script to kill radiusd, and not just radwatcher.
I'll fix the general case in a bit. (radwatcher should kill its own child!)
cparker [Wed, 27 Dec 2000 18:34:03 +0000 (18:34 +0000)]
fixed bug in rad_process() that caused proxy access-reject
replies to be handled as accounting-responses.
cmiller [Wed, 27 Dec 2000 03:53:56 +0000 (03:53 +0000)]
Debian changes. Not quite ready for upload. Soon...
cmiller [Wed, 27 Dec 2000 03:45:09 +0000 (03:45 +0000)]
Added or cleaned up copyright and license info. Cross-check me!
cparker [Tue, 26 Dec 2000 23:24:42 +0000 (23:24 +0000)]
cparker - cosmetic change to add the time of compilation to the radius
version output in addition to the date ( to radiusd and radclient )
aland [Tue, 26 Dec 2000 16:58:38 +0000 (16:58 +0000)]
updated for latest set of things to do. We're hopefully nearing
a beta release...
cmiller [Tue, 26 Dec 2000 16:26:09 +0000 (16:26 +0000)]
Updated startup descr from 'Cistron'.
cmiller [Tue, 26 Dec 2000 16:22:22 +0000 (16:22 +0000)]
Corrected the name of fastusers' 'hash_reload' variable. That the unknown
name was silently ignored is a bug, I think.
aland [Fri, 22 Dec 2000 16:56:21 +0000 (16:56 +0000)]
Changed ${Client-IP-Address} to %{Client-IP-Address}
aland [Fri, 22 Dec 2000 16:55:39 +0000 (16:55 +0000)]
allow %{Client-IP-Address} to decode the attribute, in addition
to ${Client-IP-Address}
aland [Fri, 22 Dec 2000 16:46:34 +0000 (16:46 +0000)]
changed the cf_section_free && cf_pair_free to take **, instead of *.
This allows the input pointers to be set to NULL.
Additional sanity checking of variable expansion, so it quits on
an error, instead of continuing.
cf_expand_variables() has no business freeing the configuration
section on an error. This was causing core dumps.
aland [Fri, 22 Dec 2000 16:00:48 +0000 (16:00 +0000)]
install each man page explicitely, due to bugs in the install-sh
crap.
Patch by Gregory A Lundberg <lundberg+radius@vr.net>
aland [Thu, 21 Dec 2000 16:24:36 +0000 (16:24 +0000)]
For the detail file, us ${Client-IP-Address} instead of %n,
as NAS-IP-Address MAY BE the originating NAS, and NOT the proxy
which actually sent us the request.
pacman [Thu, 21 Dec 2000 06:31:21 +0000 (06:31 +0000)]
This is the "configurable failover" patch, providing a more flexible
module calling sequence.