aland [Thu, 27 Jul 2000 18:46:32 +0000 (18:46 +0000)]
Patches from "Alan Curry" <pacman-radius@cqc.com>
8. Small fixes that are *not* just repeats of things I've sent before:
Reactivate the proxy retransmission code, which is dead code in CVS
since it operates on the the old proxy_requests list which no longer has
any requests added to it ever!
Make distclean a little more clean (I had to clean and diff this tree 8
times and it was getting annoying).
Various cosmetic changes
aland [Wed, 26 Jul 2000 17:24:54 +0000 (17:24 +0000)]
removed erroneous change
aland [Wed, 26 Jul 2000 14:49:34 +0000 (14:49 +0000)]
remove more compiler warnings
aland [Wed, 26 Jul 2000 14:46:20 +0000 (14:46 +0000)]
Patches from "Alan Curry" <pacman-radius@cqc.com>
7. Small fixes that I've sent in once before:
Don't log passwords unless asked.
Don't assume that SNMP communities are always "public".
Don't assume the HiperARC port density is always 256.
aland [Wed, 26 Jul 2000 14:43:06 +0000 (14:43 +0000)]
Patches from "Alan Curry" <pacman-radius@cqc.com>
3. Add a -g command line option to specify the log facility to be used by
-l syslog
Including minor code touch-ups to give me that warm fuzzy feeling
that I'm being productive.
Note that we should also include the syslog facility as a
configuration file directive. This is To Be Done Later.
aland [Wed, 26 Jul 2000 14:18:14 +0000 (14:18 +0000)]
preliminary template for moving the dictionary initialization
into a module.
aland [Tue, 25 Jul 2000 16:18:57 +0000 (16:18 +0000)]
Patched from "Alan Curry" <pacman-radius@cqc.com>:
1. Remove most -W, -Wstrict-prototypes, and other obscure gcc warnings. This
mainly means turning implicit unsigned char* => char* conversions into
explicit ones.
aland [Tue, 18 Jul 2000 19:30:39 +0000 (19:30 +0000)]
replace '-nt' with 'find -newer', as per comments today on
the Cistron list
aland [Wed, 5 Jul 2000 15:52:28 +0000 (15:52 +0000)]
updated for list which doesn't exist any more.
aland [Sun, 25 Jun 2000 11:10:54 +0000 (11:10 +0000)]
corrected definition of ipaddr variable, as pointed out on
the list by Scott Ratliff <scottr@carsinfo.com>
aland [Sun, 25 Jun 2000 11:08:57 +0000 (11:08 +0000)]
the macro NO_SUCH_CHILD_PID should be cast to child_pid_t, as
it may be a structure, not an integer
Pointed out on the list by Scott Ratliff <scottr@carsinfo.com>,
while doing HPUX builds
pam [Fri, 2 Jun 2000 15:29:46 +0000 (15:29 +0000)]
Added LDAP_USERDN define as rlm_ldap private attribute code. It should be consistent with raddb/dictionary
pam [Thu, 1 Jun 2000 21:28:52 +0000 (21:28 +0000)]
Added Ldap-UserDn internal attribute for rlm_ldap module
pam [Thu, 1 Jun 2000 21:27:34 +0000 (21:27 +0000)]
New threaded version of rlm_ldap module. Depends on OpenLDAP v2.x libraries
aland [Wed, 17 May 2000 14:36:15 +0000 (14:36 +0000)]
patch the parsing of returned attributes/commas from Exec-Program,
as pointed to the Cistron list by
Brandon Lee Poyner <bpoyner@thebiz.net>
aland [Wed, 17 May 2000 14:19:57 +0000 (14:19 +0000)]
one more try to update the SQL module
aland [Tue, 16 May 2000 14:17:08 +0000 (14:17 +0000)]
configuration file strings are dynamically allocated
aland [Mon, 15 May 2000 15:39:52 +0000 (15:39 +0000)]
check if we have a User-Name AND a Password attribute before
trying to do authentication.
aland [Mon, 15 May 2000 15:35:56 +0000 (15:35 +0000)]
check if the request has a User-Name attribute AND a Password
attribute, otherwise it can't be processed through PAM.
aland [Mon, 15 May 2000 15:33:35 +0000 (15:33 +0000)]
allow requests with NO User-Name attribute, as pointed out on
the list by "spirn" <spirn@21cn.com>
These requests now match the magic entry NONE, (like DEFAULT)
aland [Mon, 15 May 2000 15:32:43 +0000 (15:32 +0000)]
allow requests with NO User-Name attribute, as pointed out on
the list by "spirn" <spirn@21cn.com>
aland [Thu, 11 May 2000 17:05:27 +0000 (17:05 +0000)]
added 'magic' to REQUEST structure (if we're debugging), and
assert()'s throughout the code, so that if we free a REQUEST out
from under a live process/thread, it will complain
aland [Tue, 9 May 2000 20:31:59 +0000 (20:31 +0000)]
allow for the possibility of having the configuration files do
$INCLUDE otherfile.conf
This required minor re-arrangements of code, which also made it
somewhat safer.
accdias [Mon, 8 May 2000 07:03:54 +0000 (07:03 +0000)]
accdias: Rewrited Cyclades PathRAS routine to make it compatible with
accdias: current firmware version (1.2.3)
aland [Fri, 5 May 2000 18:25:32 +0000 (18:25 +0000)]
added note for the future
aland [Fri, 5 May 2000 18:20:24 +0000 (18:20 +0000)]
corrected names, as pointed out on the list
by <gnuechwitz@osnatel.de>
aland [Fri, 5 May 2000 18:05:46 +0000 (18:05 +0000)]
use 'radlib_dir', and parse it from the configuration file.
If it's not set in the configuration file, it defaults to
${libdir}, from the configuration script.
Fix for bug pointed out on the list by <gnuechwitz@osnatel.de>
aland [Fri, 5 May 2000 17:46:28 +0000 (17:46 +0000)]
added global config 'lib_dir', in preparation for fixes to bugs
as pointed out on the list by <gnuechwitz@osnatel.de>
aland [Fri, 5 May 2000 17:42:08 +0000 (17:42 +0000)]
added definition of LIBDIR, so that we can use it at compile
time.
aland [Fri, 5 May 2000 17:38:16 +0000 (17:38 +0000)]
added file needed by libltdl for installation, as pointed out
on the list by <gnuechwitz@osnatel.de>
aland [Thu, 4 May 2000 22:20:10 +0000 (22:20 +0000)]
fixed assertion bug, as pointed out on the list by
Adrian Pavlykevych <pam@polynet.lviv.ua>.
aland [Thu, 4 May 2000 22:11:48 +0000 (22:11 +0000)]
make an authentication module FAIL condition to be the same
as an explicit REJECT.
This ensures that any failure condition is fail-safe, i.e.
that users are not erroneously let in.
mmachado [Wed, 3 May 2000 21:21:58 +0000 (21:21 +0000)]
Added accounting stuff and fixed up conf file stuff to use a static buffer then point the sql->config at it.
aland [Wed, 3 May 2000 19:50:05 +0000 (19:50 +0000)]
renamed functions to avoid polluting the global name space
aland [Wed, 3 May 2000 18:16:32 +0000 (18:16 +0000)]
added configuration for unix module.
aland [Wed, 3 May 2000 18:13:35 +0000 (18:13 +0000)]
use the new configuration file & parser for module configuration
parameters.
e.g. cache enable, and location of /etc/passwd, etc. files
aland [Wed, 3 May 2000 17:56:28 +0000 (17:56 +0000)]
removed '-c' option (but '-c is ignored for politeness)
so that the Unix cache password option can go into a 'module unix'
section of the radiusd.conf file.
mmachado [Wed, 3 May 2000 17:48:53 +0000 (17:48 +0000)]
Module now uses the internal configuration library. Still need to re add the accounting code.
aland [Wed, 3 May 2000 14:59:26 +0000 (14:59 +0000)]
allow '#' as the last bit of text on an attribute line
aland [Wed, 3 May 2000 14:54:20 +0000 (14:54 +0000)]
added token T_HASH, for '#'. Enabled the pairread() function
to skip it (i.e. treat is EOS, essentially.)
This allows us to sprinkle comments in more places in the 'users'
file, and not just at the start of a line.
aland [Wed, 3 May 2000 14:20:39 +0000 (14:20 +0000)]
added more text and examples (as posted to the Cistron list
by Miquel and others), to show people how to set up entries
in this file.
aland [Wed, 3 May 2000 14:17:46 +0000 (14:17 +0000)]
added names for Login-TCP-Port
aland [Tue, 2 May 2000 22:40:48 +0000 (22:40 +0000)]
document the fact that there's no documentation for
the radiusd.conf file.
aland [Tue, 2 May 2000 22:36:55 +0000 (22:36 +0000)]
document the dictionary file, too
aland [Tue, 2 May 2000 17:27:42 +0000 (17:27 +0000)]
added example configuration for the example module.
aland [Tue, 2 May 2000 17:27:14 +0000 (17:27 +0000)]
added example of how to find the module configuration
aland [Tue, 2 May 2000 17:20:42 +0000 (17:20 +0000)]
allow spaces in configuration strings, too.
aland [Tue, 2 May 2000 15:53:08 +0000 (15:53 +0000)]
configuration values for the proxy server.
aland [Tue, 2 May 2000 15:51:13 +0000 (15:51 +0000)]
allow the user to selectively turn off proxying, and to control
the proxy behaviour
aland [Tue, 2 May 2000 14:54:52 +0000 (14:54 +0000)]
print 'auth: NAME', and not 'auth: ' with anonymous number
aland [Mon, 1 May 2000 19:24:24 +0000 (19:24 +0000)]
added more LDAP schema mappings to RADIUS attributes,
aland [Mon, 1 May 2000 18:55:00 +0000 (18:55 +0000)]
radius_pid is 'pid_t', not 'int'
aland [Mon, 1 May 2000 18:38:05 +0000 (18:38 +0000)]
cleaned up code re: new module interface
aland [Mon, 1 May 2000 17:58:28 +0000 (17:58 +0000)]
more cleanups, deletions of useless code, additions of (eventually)
useful code, etc.
aland [Mon, 1 May 2000 17:47:41 +0000 (17:47 +0000)]
check for sigprocmask()
aland [Mon, 1 May 2000 17:47:17 +0000 (17:47 +0000)]
block sig HUP in child threads.
aland [Mon, 1 May 2000 15:47:51 +0000 (15:47 +0000)]
do the IP ntoa conversion ourselves. It's easier.
aland [Mon, 1 May 2000 14:57:57 +0000 (14:57 +0000)]
code clean-ups, and use new configuration files
aland [Thu, 27 Apr 2000 16:38:38 +0000 (16:38 +0000)]
prefer /usr/ccs/bin to whatever the user has in $PATH, when
looking for 'ar'.
On Solaris, /usr/ccs/bin/ar is preferred to /usr/xpg4/bin/ar
aland [Thu, 27 Apr 2000 14:33:09 +0000 (14:33 +0000)]
corrected behaviour of 'pairadd' function, to NOT do a
completely un-necessary new->next = NULL on the pair to be
added. If the caller wanted it NULL, they would have set it
to NULL. If they didn't want it NULL, then pairadd() shouldn't
mess with it.
aland [Wed, 26 Apr 2000 20:44:45 +0000 (20:44 +0000)]
allow pair comparisons for type 'octets' and 'abinary', too.
aland [Wed, 26 Apr 2000 20:41:28 +0000 (20:41 +0000)]
converted a number of attributes from 'string' to 'octets', to
make it clear that they shouldn't be messed around with...
aland [Tue, 25 Apr 2000 22:23:00 +0000 (22:23 +0000)]
enable inclusion of libltdl in the configuration process
aland [Tue, 25 Apr 2000 22:22:11 +0000 (22:22 +0000)]
added libltdl target, to prepare for libltdl inclusion.
aland [Tue, 25 Apr 2000 22:21:39 +0000 (22:21 +0000)]
included 'libltdl' source, so that we can build cross-platform
dlopen() style calls.
The source isn't used yet, however.
Hmm... maybe we should just distribute a 'tar' file of libtool?
That might be easier...
aland [Tue, 25 Apr 2000 21:25:17 +0000 (21:25 +0000)]
add checks for missing autoconf, autoheader, and aclocal.
You'll have to re-run 'configure' before you can do 'make reconfig'
again.
aland [Tue, 25 Apr 2000 21:22:59 +0000 (21:22 +0000)]
shell script wrapper for a number of common missing GNU programs,
as stolen from the libtool 1.3.4 archive.
aland [Tue, 25 Apr 2000 21:06:59 +0000 (21:06 +0000)]
regularized the module return codes to RLM_MODULE_*, instead
of having umpteen ones for RLM_AUTZ_*, RLM_AUTH_*, RLM_ACCT_*, etc.
This change should hopefully make the return codes from modules
a little clearer...
aland [Mon, 24 Apr 2000 16:56:05 +0000 (16:56 +0000)]
when doing a $INCLUDE file, ensure that the 'file' is relative
to the current file, or has an absolute pathname.
e.g. 'raddb/users' has $INCLUDE users.static, which will be
looked for in 'raddb/users.static'.
Also, give more useful error messages to the user.
aland [Mon, 24 Apr 2000 14:49:50 +0000 (14:49 +0000)]
updated for latest pairread() functionality
aland [Mon, 24 Apr 2000 14:48:44 +0000 (14:48 +0000)]
more sanity checking of commas, etc. on the PAIRLIST reading.
The changes were copied over from Cistron 1.6.3
aland [Sun, 23 Apr 2000 14:05:00 +0000 (14:05 +0000)]
moved include of <sys/resource.h> to make it work on FreeBSD 3.4
aland [Sat, 22 Apr 2000 14:05:40 +0000 (14:05 +0000)]
one last change to make shared libraries install happily
aland [Sat, 22 Apr 2000 13:53:21 +0000 (13:53 +0000)]
moved the 'install' rules from the Makefile to 'rules.mak', and
updated the rules to run correctly
aland [Sat, 22 Apr 2000 13:47:04 +0000 (13:47 +0000)]
added commands in the 'install' rule, so that modules which are
built can get installed somewhere.
aland [Fri, 21 Apr 2000 20:07:33 +0000 (20:07 +0000)]
if we can't open the logging directory, then complain, but also
print out an error message from strerror(errno)
aland [Fri, 21 Apr 2000 20:06:42 +0000 (20:06 +0000)]
re-arranged some code to allow the configuration parameters to
be read, before using them.
aland [Fri, 21 Apr 2000 14:52:27 +0000 (14:52 +0000)]
cleaned up for compiler warnings
aland [Fri, 21 Apr 2000 14:31:04 +0000 (14:31 +0000)]
use strerror(errno) on failure of fopen, so we get useful error
messages.
aland [Thu, 20 Apr 2000 15:10:41 +0000 (15:10 +0000)]
added installation rules for the man pages
aland [Thu, 20 Apr 2000 15:03:09 +0000 (15:03 +0000)]
moving these over to the 'man' directory
aland [Thu, 20 Apr 2000 14:58:50 +0000 (14:58 +0000)]
moved the man pages to the 'man' directory, and out of the 'doc'
directory
aland [Wed, 19 Apr 2000 14:33:07 +0000 (14:33 +0000)]
removed extraneous 'n' from the command-line option to 'radclient'
Pointed out by Vince Vielhaber <vv-radius@michvhf.com>
aland [Tue, 18 Apr 2000 16:12:46 +0000 (16:12 +0000)]
sys/wait.h checks
aland [Tue, 18 Apr 2000 16:12:09 +0000 (16:12 +0000)]
checks for <sys/wait.h>, as recommended by the autoconf manual
aland [Tue, 18 Apr 2000 16:11:25 +0000 (16:11 +0000)]
checks for sys/wait.h
aland [Tue, 18 Apr 2000 15:55:40 +0000 (15:55 +0000)]
don't add a Proxy-To-Realm attribute if it's a LOCAL realm, just
let the server handle the request like normal.
Also, ONLY strip the realm off of the User-Name attribute if we've
been configured to do so.
Bug noted on the list by Vince Vielhaber <vv-radius@michvhf.com>
aland [Tue, 18 Apr 2000 15:40:29 +0000 (15:40 +0000)]
removed <time.h> and <sys/time.h>, to let "libradius.h" take care
of checking for the time.h headers
aland [Tue, 18 Apr 2000 15:38:11 +0000 (15:38 +0000)]
removed <sys/time.h> and <time.h>, to let "libradius.h" take care
of all time.h header checks.
aland [Tue, 18 Apr 2000 15:34:29 +0000 (15:34 +0000)]
checks for <time.h> and <sys/time.h>, as described in the autoconf
manual.
aland [Tue, 18 Apr 2000 15:33:49 +0000 (15:33 +0000)]
use autoconf checks for <sys/time.h>, and <time.h>, as described
in the autoconf manual.
libradius.h now does all of the necessary checks for time.h, and
source files should include it, INSTEAD of one of the time.h headers.
aland [Mon, 17 Apr 2000 20:08:27 +0000 (20:08 +0000)]
added bind_address directive
aland [Mon, 17 Apr 2000 20:06:41 +0000 (20:06 +0000)]
parse IP addresses in the configuration file, too.
aland [Mon, 17 Apr 2000 20:04:44 +0000 (20:04 +0000)]
print out WHICH IP address it's binding to, and allow the
"bind_address" entry in the configuration file.
aland [Mon, 17 Apr 2000 19:07:47 +0000 (19:07 +0000)]
moved the 'write pid' code to a point where it writes the
daemon PID, not the PID of the process which started the server.
aland [Mon, 17 Apr 2000 18:20:06 +0000 (18:20 +0000)]
added lots more text describing what the configuration options
are.
aland [Mon, 17 Apr 2000 18:19:21 +0000 (18:19 +0000)]
updated the configuration file parser so that it no longer knows
about any of the server's internal configuration.
aland [Mon, 17 Apr 2000 18:11:04 +0000 (18:11 +0000)]
let the user-specific '-p port' on the command-line over-ride
what's in the configuration file.
Read the configuration files BEFORE doing any initialization work,
so that the configuration parameters will actually get used.
aland [Mon, 17 Apr 2000 17:57:19 +0000 (17:57 +0000)]
check the authentication vector of replies, too.
aland [Mon, 17 Apr 2000 17:56:58 +0000 (17:56 +0000)]
have the server actually check the authentication vector of
proxy replies. This is probably a Good Thing, for security
reasons...