vorlon [Tue, 15 Jun 2004 06:39:24 +0000 (06:39 +0000)]
commit non-ancient config.*
vorlon [Tue, 15 Jun 2004 06:27:33 +0000 (06:27 +0000)]
new files used for reworking autotools support
aland [Mon, 14 Jun 2004 18:14:39 +0000 (18:14 +0000)]
syslog_facility is in a new place
pnixon [Mon, 14 Jun 2004 16:23:13 +0000 (16:23 +0000)]
Increase CallID field length to support the insanely long IDs sometimes generated by CSPS
aland [Mon, 14 Jun 2004 15:23:19 +0000 (15:23 +0000)]
Corrected typo, for inet_ntop
aland [Mon, 14 Jun 2004 15:23:04 +0000 (15:23 +0000)]
Check to inet_ntop, too
aland [Mon, 14 Jun 2004 15:17:47 +0000 (15:17 +0000)]
Check for inet_pton, too
aland [Mon, 14 Jun 2004 14:49:13 +0000 (14:49 +0000)]
Message is informational, not a real error
pnixon [Mon, 14 Jun 2004 01:33:15 +0000 (01:33 +0000)]
Comment updates and automatic creation of plpgsql language in the database
pnixon [Mon, 14 Jun 2004 01:31:09 +0000 (01:31 +0000)]
Documentation update/cleanup
aland [Sun, 13 Jun 2004 12:58:59 +0000 (12:58 +0000)]
As found on the net, with edits
aland [Fri, 11 Jun 2004 20:46:29 +0000 (20:46 +0000)]
Add support for ${Attribute-Name[2]}, which grabs value of the
N'th attribute of that name.
aland [Fri, 11 Jun 2004 20:44:37 +0000 (20:44 +0000)]
Make it build. Forgot to commit thgis yesterday
aland [Fri, 11 Jun 2004 17:23:27 +0000 (17:23 +0000)]
Add $#{string}, which prints the number of characters in the string
aland [Fri, 11 Jun 2004 15:21:05 +0000 (15:21 +0000)]
Added rlm_copy_packet, which is a trivial ~10-line module
aland [Fri, 11 Jun 2004 15:03:24 +0000 (15:03 +0000)]
Added a trivial module to copy the request to the reply.
Some systems may find this useful.
aland [Thu, 10 Jun 2004 20:01:16 +0000 (20:01 +0000)]
Add two new fields to the REQUEST: module & component.
Before calling a module, src/main/modcall.c updates these fields,
and sets them to NULL once the module has returned.
When a child becomes unresponsive, these fields MAY be used to
determine which part of the server is slow.
aland [Thu, 10 Jun 2004 18:29:16 +0000 (18:29 +0000)]
Document new configuration items which allow logging to syslog
to work.
aland [Thu, 10 Jun 2004 18:23:30 +0000 (18:23 +0000)]
These don't need radlog_dest any more
aland [Thu, 10 Jun 2004 18:23:10 +0000 (18:23 +0000)]
Permit logging to syslog, after:
- rearranging the code
- deprecating some command-line options & values
- adding some more configuration file parameters
phampson [Thu, 10 Jun 2004 17:51:55 +0000 (17:51 +0000)]
We're really 1.1.0 now
aland [Thu, 10 Jun 2004 16:57:02 +0000 (16:57 +0000)]
Don't leak memory if pairmove doesn't move
aland [Thu, 10 Jun 2004 15:39:00 +0000 (15:39 +0000)]
Conditionally add Auth-Type.
phampson [Thu, 10 Jun 2004 00:44:17 +0000 (00:44 +0000)]
Put quotes around %{Acct-Delay-Time} in accounting_onoff_query
Thanks to Manjunath M Prabhu
aland [Wed, 9 Jun 2004 19:15:06 +0000 (19:15 +0000)]
When building statically, tell libtool to build a static binary!
aland [Wed, 9 Jun 2004 17:22:55 +0000 (17:22 +0000)]
Make common *after* creating man directories
aland [Tue, 8 Jun 2004 15:08:53 +0000 (15:08 +0000)]
Check for old socket after initializing port
phampson [Tue, 8 Jun 2004 14:50:39 +0000 (14:50 +0000)]
Improve value naming slightly. L2TP values start with L2TP.
phampson [Tue, 8 Jun 2004 14:35:13 +0000 (14:35 +0000)]
Regenerate from configure.in using autoconf2.13 after:
We're now 1.1.0-pre0, as 1.0.0 has branched off.
phampson [Tue, 8 Jun 2004 14:22:40 +0000 (14:22 +0000)]
We're now 1.1.0-pre0, as 1.0.0 has branched off.
aland [Thu, 3 Jun 2004 16:25:18 +0000 (16:25 +0000)]
Added mschapv2
aland [Thu, 3 Jun 2004 16:21:45 +0000 (16:21 +0000)]
Include EAP-GTC and PEAP
phampson [Thu, 3 Jun 2004 15:44:25 +0000 (15:44 +0000)]
Unbreak building of rlm_eap_ttls and rlm_eap_peap.
aland [Thu, 3 Jun 2004 15:33:29 +0000 (15:33 +0000)]
Minor re-formatting, and updates from "barry"
aland [Thu, 3 Jun 2004 15:27:06 +0000 (15:27 +0000)]
Include Valemount in standard dictionary.
Add new attribute from Keith Yoder
aland [Wed, 2 Jun 2004 20:16:50 +0000 (20:16 +0000)]
Assert that the names for VALUEs aren't numbers
aland [Wed, 2 Jun 2004 20:13:25 +0000 (20:13 +0000)]
Update more names
aland [Wed, 2 Jun 2004 20:13:12 +0000 (20:13 +0000)]
Update names for values
aland [Wed, 2 Jun 2004 19:25:48 +0000 (19:25 +0000)]
In xlat_packet, allow xlat's of Packet-Type, even if vps is NULL
When looking for brackets, don't get excited if '\\' is the last
character in the buffer.
aland [Wed, 2 Jun 2004 16:11:08 +0000 (16:11 +0000)]
Use $(EXEEXT) to enable it to work a little better on systems
requiring the extension.
Deleted a bunch of unnecessary "create directory" on "make install"
aland [Wed, 2 Jun 2004 15:50:53 +0000 (15:50 +0000)]
Actually set the port
aland [Wed, 2 Jun 2004 15:31:23 +0000 (15:31 +0000)]
Make '-i' work again
3APA3A [Wed, 2 Jun 2004 14:56:53 +0000 (14:56 +0000)]
! TTY-Level-Max, TTY-Level-Start
3APA3A [Wed, 2 Jun 2004 14:52:48 +0000 (14:52 +0000)]
+ 2 redback attributes added
aland [Tue, 1 Jun 2004 20:57:46 +0000 (20:57 +0000)]
u_int -> uint
Remember typedefs...
aland [Tue, 1 Jun 2004 14:44:43 +0000 (14:44 +0000)]
Pull similar fixes from the TTLS module, so that PEAP works, too
aland [Tue, 1 Jun 2004 14:35:04 +0000 (14:35 +0000)]
Added code to help with assertions
phampson [Tue, 1 Jun 2004 10:48:13 +0000 (10:48 +0000)]
Fix compilation under big endian systems.
aland [Mon, 31 May 2004 19:55:53 +0000 (19:55 +0000)]
If the files in this directory are LGPL'd, we should include
a copy of the LGPL
aland [Mon, 31 May 2004 18:27:35 +0000 (18:27 +0000)]
If there's a proxied packet, and we're still waiting for a reply,
then when we delete the request, we also delete it from the proxy
trees, even if we haven't seen a response
3APA3A [Mon, 31 May 2004 10:16:56 +0000 (10:16 +0000)]
! ignoreempty configuration option added
3APA3A [Mon, 31 May 2004 10:14:05 +0000 (10:14 +0000)]
! ignoreempty configuration option added to avoid addition of empty values
phampson [Sun, 30 May 2004 04:06:10 +0000 (04:06 +0000)]
Finish fixing rlm_eap_ttls' usage of rlm_eap_tls
aland [Fri, 28 May 2004 21:45:07 +0000 (21:45 +0000)]
use Stripped-User-Name for proxied packets, independent of whether
request->proxy existed, or not
aland [Fri, 28 May 2004 17:07:07 +0000 (17:07 +0000)]
Include foundry dictionary in main dictionary
New Foundry attributes, as posted to the list by Dave Mussulman
aland [Fri, 28 May 2004 17:00:35 +0000 (17:00 +0000)]
Changed "unsigned long" to "uint32_t", which is portable.
Changes "unsigned char" to "uint8_t", which is portable.
Removed a "static" buffer in sha1.c, which was unnecessary, and
would break threading.
phampson [Fri, 28 May 2004 16:17:48 +0000 (16:17 +0000)]
Attempt to fix library loading for non-RTLD_GLOBAL libltdl
aland [Fri, 28 May 2004 15:00:04 +0000 (15:00 +0000)]
If new proxy FD's were allocated without the current destination
knowing, then update the destinations knowledge of Fd's, if it
runs out of Id's to use.
This code is in preference to allocating a new proxy Fd.
aland [Fri, 28 May 2004 14:42:26 +0000 (14:42 +0000)]
Get rid of "proxyfd", and use the new rad_listen_t structure.
Allocate more than one proxy FD, when the first one has all Id's
used. It isn't currently perfect, but it will do.
phampson [Fri, 28 May 2004 12:43:16 +0000 (12:43 +0000)]
Replaced GPL'd snprintf.c in libradius with LGPL'd snprintf.[ch] from
http://savannah.gnu.org/cgi-bin/viewcvs/mailutils/mailutils/lib/snprintf.c?rev=1.4
http://savannah.gnu.org/cgi-bin/viewcvs/mailutils/mailutils/lib/snprintf.h?rev=1.4
The final step in FreeRADIUS bug #21.
phampson [Fri, 28 May 2004 07:25:41 +0000 (07:25 +0000)]
Move (GPL'd) smbdes.c into the (GPL'd) modules that require it:
rlm_mschap
rlm_eap_leap
and out of the (LGPL'd) libradius.
Another brick in the wall that is FreeRADIUS bug 21
phampson [Fri, 28 May 2004 07:20:14 +0000 (07:20 +0000)]
Move (GPL'd) smbdes.c into the (GPL'd) modules that require it:
rlm_mschap
rlm_eap_leap
and out of the (LGPL'd) libradius.
Another brick in the wall that is FreeRADIUS bug 21
phampson [Fri, 28 May 2004 06:27:52 +0000 (06:27 +0000)]
Public domain version of MD4 algorithm, from OpenBSD archives.
Also correct the source URL in the md5 files.
Another brick in the wall for FreeRADIUS bug #21.
phampson [Fri, 28 May 2004 04:56:36 +0000 (04:56 +0000)]
Open source MD5 implementation by Colin Plumb
Fetched from: http://www.openbsd.org/cgi-bin/cvsweb/src/sys/crypto/md5.[ch]
Another brick in the wall that is FreeRADIUS Bug 21.
mgriego [Thu, 27 May 2004 22:10:17 +0000 (22:10 +0000)]
Return my_ok in case we changed the outcome of the verification routine.
Also fix compiler warnings about incompatible pointer types on the
SSL_get_ex_data calls.
aland [Thu, 27 May 2004 17:06:07 +0000 (17:06 +0000)]
It's ipaddr, not string.
By Travis Rayhons, dordt.edu
aland [Tue, 25 May 2004 19:08:48 +0000 (19:08 +0000)]
Update debug messages
aland [Tue, 25 May 2004 18:35:32 +0000 (18:35 +0000)]
Only call xlat on quoted strings, and not on strings where
the first and last characters happen to be identical
phampson [Tue, 25 May 2004 06:56:43 +0000 (06:56 +0000)]
SQL-Xlat support, avoid unneccessary stringcopy when checking results.
Also xlat's config items.
aland [Fri, 21 May 2004 14:57:19 +0000 (14:57 +0000)]
A little more backwards compatibility
aland [Fri, 21 May 2004 14:40:39 +0000 (14:40 +0000)]
If the User-Password has zero length, encrypt 16 bytes of zero.
Bug #68
aland [Wed, 19 May 2004 19:40:11 +0000 (19:40 +0000)]
Corrected typo
aland [Wed, 19 May 2004 18:03:43 +0000 (18:03 +0000)]
Made "live" new code to allocate packet Id's on a per-destination
ip/port pair. It also keeps track of outstanding duplicate proxied
requests, and doesn't re-use Id's until the request is timed out,
or until it's seen all of the replies.
This should work well in most cases, but may have issues in some
boundary conditions (e.g. when the NAS re-uses an Id before we've
seen all of the replies from the home server.)
To fix those problems, we've got to do a little more work to keep
track of "replies from the home server which we can ignore"
phampson [Tue, 18 May 2004 00:09:59 +0000 (00:09 +0000)]
Fix lost-start Alive accounting packet handling.
A failed UPDATE is not an error, so check if we affected anything instead.
phampson [Mon, 17 May 2004 14:07:22 +0000 (14:07 +0000)]
Rebuild configure from configure.in 1.198
phampson [Mon, 17 May 2004 14:06:13 +0000 (14:06 +0000)]
Update configure.in to check for initgroups()
phampson [Mon, 17 May 2004 13:41:27 +0000 (13:41 +0000)]
= is not a safe character, it is the escape character.
Thanks to Fabian Ritzmann
aland [Mon, 17 May 2004 09:52:05 +0000 (09:52 +0000)]
Don't declare variables in code. They got at the top of the function.
aland [Mon, 17 May 2004 07:48:33 +0000 (07:48 +0000)]
"Password" attribute is encrypted, too
aland [Sun, 16 May 2004 18:31:01 +0000 (18:31 +0000)]
Deleted unwanted fprintf
Include arpa/inet.h, so that htonl and friends work. This was
causing *weird* bugs under SFU. We should probably move netinet/in.h
and arpa/inet.h inclusion to include/radiusd.h, as many files
already use them
aland [Sun, 16 May 2004 12:53:19 +0000 (12:53 +0000)]
Not all systems have initgroups.
Don't use C++ style comments
mgriego [Sat, 15 May 2004 20:09:37 +0000 (20:09 +0000)]
Don't exit() on error in check_for_realm.
mgriego [Sat, 15 May 2004 15:50:26 +0000 (15:50 +0000)]
Don't exit() on failure in instantiate function, let the core handle
exiting. Just return -1 on any failure.
mgriego [Sat, 15 May 2004 15:30:13 +0000 (15:30 +0000)]
Don't exit() from failures in the module, return RLM_MODULE_FAIL.
mgriego [Sat, 15 May 2004 15:09:44 +0000 (15:09 +0000)]
Don't exit() if buildhash fails, return RLM_MODULE_FAIL.
mgriego [Sat, 15 May 2004 14:57:41 +0000 (14:57 +0000)]
Don't exit() on memory alloc failure, return RLM_MODULE_FAIL instead.
mgriego [Sat, 15 May 2004 14:51:26 +0000 (14:51 +0000)]
Don't exit() on module failure, return RLM_MODULE_FAIL
aland [Fri, 14 May 2004 14:23:04 +0000 (14:23 +0000)]
When deleting a request, do NOT clean up the proxy tree & Id
allocation if we've seen a reply from the homer server.
The code which deals with the reply from the home server already
takes care of doing this.
If we do it again, then we delete *live* proxied requests, which
are unrelated to the older one we're deleting.
Bug found by Stephan Jaeger
aland [Fri, 14 May 2004 11:57:32 +0000 (11:57 +0000)]
Well, duh. Insert the entry into the tree after allocating it
aland [Fri, 14 May 2004 08:51:32 +0000 (08:51 +0000)]
More debugging messages for new proxy ID allocation
aland [Fri, 14 May 2004 08:47:12 +0000 (08:47 +0000)]
Moved rl_add_proxy from radiusd.c to proxy.c, so we can
allocate Id's, and insert the request into the proxy queue, before
it's sent to the home server
aland [Fri, 14 May 2004 08:37:08 +0000 (08:37 +0000)]
Initialize the mutex if we have pthread.h
aland [Fri, 14 May 2004 08:34:44 +0000 (08:34 +0000)]
When over-writing data, free old data (if necessary), before
replacing it
mgriego [Thu, 13 May 2004 20:56:54 +0000 (20:56 +0000)]
Also xlat attributes from hints file added to the request list.
pnixon [Thu, 13 May 2004 20:27:50 +0000 (20:27 +0000)]
Add new function and change schema to support Cisco CSPS
pnixon [Thu, 13 May 2004 20:10:15 +0000 (20:10 +0000)]
Move src/billing/pgsql-voip.conf to raddb/pgsql-voip.conf and add sample config and comments to radiusd.conf
phampson [Wed, 12 May 2004 14:43:37 +0000 (14:43 +0000)]
Fix type in changelog: microtek => mikrotik
Support xlating backquoted reply values in rlm_sql, like in rlm_files
FreeRADIUS bug #59
aland [Wed, 12 May 2004 06:26:45 +0000 (06:26 +0000)]
Removed extraneous exit(0)
Bug #63
aland [Mon, 10 May 2004 15:07:57 +0000 (15:07 +0000)]
Updates from Joe Levy at SonicWall
aland [Mon, 10 May 2004 14:05:11 +0000 (14:05 +0000)]
It's an instance of the SQL module