phampson [Sat, 2 Jul 2005 05:49:51 +0000 (05:49 +0000)]
Debian release 1.0.4-2
phampson [Sat, 2 Jul 2005 05:47:37 +0000 (05:47 +0000)]
Debian 1.0.4-1 import
pnixon [Fri, 1 Jul 2005 14:58:14 +0000 (14:58 +0000)]
Also store h323voicequality in SQL. Thanks to Ilia Chipitsine
aland [Wed, 29 Jun 2005 18:42:23 +0000 (18:42 +0000)]
Catch a "corner" case for reap_children.
In reality, this is probably the only place it should be called from.
nbk [Sat, 25 Jun 2005 22:45:35 +0000 (22:45 +0000)]
Pull from CVS head:
Fix quote removal of the value in sql_userparse (closes: #242)
aland [Tue, 21 Jun 2005 16:41:03 +0000 (16:41 +0000)]
Removed errant ^G
phampson [Thu, 16 Jun 2005 11:37:59 +0000 (11:37 +0000)]
Suggest libmysqlclient12 (4.0) as default mysql client library.
Thanks to Nicolas Baradakis.
phampson [Thu, 16 Jun 2005 09:18:08 +0000 (09:18 +0000)]
Stolen from CVS HEAD
phampson [Thu, 16 Jun 2005 04:59:17 +0000 (04:59 +0000)]
Prepare for 1.0.4 release:
- Regenerate configure from configure.in
- Update packaging scripts for 1.0.4
- Slight changes to Debian scripts for post-sarge package changes in sid
phampson [Thu, 16 Jun 2005 04:57:28 +0000 (04:57 +0000)]
Update configure.in for 1.0.4 release
nbk [Sat, 11 Jun 2005 22:46:52 +0000 (22:46 +0000)]
Add some changes for the 1.0.4
- Fix installation problem.
- Increase a buffer size, so radrelay doesn't truncate values.
- Updates in the documentation. Patches from Thor Spruyt.
nbk [Sat, 11 Jun 2005 22:36:22 +0000 (22:36 +0000)]
I forgot to update this file with the changes I commited
between 1.0.2 and 1.0.3. It's too late now, but I'll write
them for archive...
Also, put the security fixes in 1.0.3 above the other changes.
nbk [Sat, 11 Jun 2005 22:20:39 +0000 (22:20 +0000)]
Pull from CVS head:
Updates in the documentation
nbk [Thu, 9 Jun 2005 16:35:36 +0000 (16:35 +0000)]
Linking radwho with libtool occurs an error during install
(closes: #240)
nbk [Thu, 9 Jun 2005 12:14:07 +0000 (12:14 +0000)]
Delete some needless lines
aland [Tue, 7 Jun 2005 18:57:40 +0000 (18:57 +0000)]
Increase buffer size
aland [Mon, 6 Jun 2005 17:57:48 +0000 (17:57 +0000)]
Fix installation problem (sigh)
aland [Fri, 3 Jun 2005 18:34:18 +0000 (18:34 +0000)]
Update for 1.0.3
aland [Fri, 3 Jun 2005 18:25:11 +0000 (18:25 +0000)]
Bump version to 1.0.3
aland [Fri, 3 Jun 2005 17:15:11 +0000 (17:15 +0000)]
Note EAP-Fail fixes
aland [Fri, 3 Jun 2005 17:13:58 +0000 (17:13 +0000)]
Pull patch from the head
aland [Fri, 3 Jun 2005 17:10:17 +0000 (17:10 +0000)]
Pull fix from revision 1.30 from the head
aland [Thu, 2 Jun 2005 18:36:36 +0000 (18:36 +0000)]
We're at 1.0.3
aland [Tue, 31 May 2005 17:44:54 +0000 (17:44 +0000)]
Updated prior to 1.0.3
aland [Tue, 31 May 2005 17:36:20 +0000 (17:36 +0000)]
Pull fix from the head
nbk [Mon, 23 May 2005 09:35:09 +0000 (09:35 +0000)]
Pull from CVS head:
Manually applied diff -r1.26 -r1.28
- sleep more time than rlm_detail to acquire the detail file lock
- re-arrange the states in the loop() function to not duplicate
accounting packets (closes: #206)
nbk [Sun, 22 May 2005 18:16:56 +0000 (18:16 +0000)]
Pull from CVS head:
Get all the fixes from revisions 1.23 to 1.29
- don't change strvalue only
- missing "proxy" and "proxy_reply" cases
- incorrect offset calculations in regex
- missing pairfree()
- cosmetic changes
nbk [Fri, 20 May 2005 09:13:32 +0000 (09:13 +0000)]
Pull from CVS head:
sql_userparse() function in revision 1.81 catch a SEGV when
rlm_sql gets 'NULL' value from request (closes: #224)
nbk [Thu, 19 May 2005 18:27:57 +0000 (18:27 +0000)]
Pull revision 1.3 from the HEAD
nbk [Wed, 18 May 2005 13:22:18 +0000 (13:22 +0000)]
Pull diff -r1.131 -r1.132 from the HEAD
nbk [Wed, 18 May 2005 12:34:36 +0000 (12:34 +0000)]
Pull diff -r1.142 -r1.143 from the HEAD
aland [Thu, 12 May 2005 22:24:07 +0000 (22:24 +0000)]
It's a shell script, not an exe
aland [Thu, 12 May 2005 22:22:26 +0000 (22:22 +0000)]
radzap isn't a binary
aland [Thu, 21 Apr 2005 22:06:06 +0000 (22:06 +0000)]
one-character typo fix
aland [Mon, 11 Apr 2005 23:46:02 +0000 (23:46 +0000)]
Note fixes for exec
aland [Mon, 11 Apr 2005 23:45:21 +0000 (23:45 +0000)]
Pull minimal fix for executing external programs from the head
aland [Mon, 11 Apr 2005 23:31:10 +0000 (23:31 +0000)]
Note radwho/radzap changes
aland [Mon, 11 Apr 2005 23:29:48 +0000 (23:29 +0000)]
Pull fixes to radwho & radzap (including docs) from the CVS head
aland [Mon, 11 Apr 2005 21:19:38 +0000 (21:19 +0000)]
Stop if we encounter an error.
Back-port r1.54
aland [Mon, 11 Apr 2005 21:18:27 +0000 (21:18 +0000)]
'exit 1' to 'exit $?', which is better
phampson [Fri, 18 Mar 2005 15:06:37 +0000 (15:06 +0000)]
Pull From CVS Head:
Fix inversion of test, so the mutex is initialised once instead of nunce.
Thanks to Manuel Menal (via Debian Bug #300219)
phampson [Thu, 17 Mar 2005 13:52:43 +0000 (13:52 +0000)]
Pull from CVS HEAD:
Allow checkrad to be called successfully with ports > 9999999 without
trashing memory.
Spotted and initial patch by Eddie Stassen
pnixon [Tue, 8 Mar 2005 16:38:19 +0000 (16:38 +0000)]
Sync changes from HEAD
pnixon [Tue, 8 Mar 2005 16:35:45 +0000 (16:35 +0000)]
Actually include the dictionary.. Idiot..
pnixon [Tue, 8 Mar 2005 16:34:19 +0000 (16:34 +0000)]
fix syntax error
bjordanov [Tue, 8 Mar 2005 09:30:16 +0000 (09:30 +0000)]
New hashes added %RAD_REQUEST_PROXY (filled with vps from request->proxy->vps )
and %RAD_REQUEST_PROXY_REPLY ( filled with vps from request->proxy_reply->vps)
%RAD_REQUEST_PROXY is read-only, %RAD_REQUEST_PROXY_REPLY is read-write
(closes: #215)
bjordanov [Mon, 7 Mar 2005 11:52:06 +0000 (11:52 +0000)]
When defined USE_ITHREADS and called perl_xlat an perl interpetator is not
released on exit so after few requests the thread pool will not contain a free
interpetators. (closes: #179)
bjordanov [Mon, 7 Mar 2005 11:19:21 +0000 (11:19 +0000)]
Fixes problem with SIGHUP, multiple instances,
ithreads pool and locking problem. (closes: #111)
phampson [Sat, 5 Mar 2005 04:02:50 +0000 (04:02 +0000)]
"Usable", not "useable".
phampson [Sat, 5 Mar 2005 04:00:39 +0000 (04:00 +0000)]
Correct section header for section 8, not sectoin 1
phampson [Sat, 5 Mar 2005 03:59:14 +0000 (03:59 +0000)]
"Usable", not "useable"
pnixon [Fri, 4 Mar 2005 14:50:09 +0000 (14:50 +0000)]
New dictionay thanks to Zydrunas Sablinskas
pnixon [Fri, 4 Mar 2005 14:49:08 +0000 (14:49 +0000)]
New dictionay thanks to Zydrunas Sablinskas
kkalev [Fri, 4 Mar 2005 14:30:24 +0000 (14:30 +0000)]
Add a dictionary from Epygi (epygi.com) hardware
aland [Thu, 3 Mar 2005 20:32:57 +0000 (20:32 +0000)]
chown radius.log, if we've written to it as root.root, before
we switch users.
This fixes bug #210
aland [Thu, 3 Mar 2005 20:13:19 +0000 (20:13 +0000)]
Remember CPPFLAGS, too.
This should close bug #201
aland [Thu, 3 Mar 2005 20:02:17 +0000 (20:02 +0000)]
close outfd outside of the loop, not while we're trying to lock
it.
Patch from Igor K, bug #130
aland [Thu, 3 Mar 2005 02:23:33 +0000 (02:23 +0000)]
Updated for changes
aland [Wed, 2 Mar 2005 23:18:42 +0000 (23:18 +0000)]
Re-enable '-i ipaddr' and '-p port'.
If they're used, then they over-ride everything in radiusd.conf
kkalev [Wed, 2 Mar 2005 13:20:40 +0000 (13:20 +0000)]
Log somewhat more verbose error messages when the sql_command binary is not found in the bin scripts
pnixon [Tue, 1 Mar 2005 16:15:57 +0000 (16:15 +0000)]
Info about FreeRADIUS on SUSE
pnixon [Tue, 1 Mar 2005 14:33:00 +0000 (14:33 +0000)]
Sync with cvs HEAD
pnixon [Tue, 1 Mar 2005 14:03:56 +0000 (14:03 +0000)]
You can integrate NovellĀ® eDirectoryTM 8.7.1 or later with FreeRADIUS 1.0.2 onwards to allow wireless authentication for eDirectory users.
pnixon [Tue, 1 Mar 2005 12:52:43 +0000 (12:52 +0000)]
new PAM config in upcomming SUSE 9.3Pro
pnixon [Tue, 1 Mar 2005 12:11:39 +0000 (12:11 +0000)]
Sync with HEAD
pnixon [Tue, 1 Mar 2005 12:07:49 +0000 (12:07 +0000)]
Major cleanups to bring in sync with SUSE 9.2 Professional and to run as user radiusd instead of root
aland [Tue, 1 Mar 2005 01:47:39 +0000 (01:47 +0000)]
More/better error messages.
Don't allow quoted strings as conf-section names.
aland [Mon, 28 Feb 2005 23:54:13 +0000 (23:54 +0000)]
When $INCLUDE'ing files, cf_item_add may be called with a list
of items. If so, add all children to the parent trees.
We don't have to touch the child trees, because they aren't changed.
aland [Mon, 28 Feb 2005 22:47:17 +0000 (22:47 +0000)]
When reading files in a directory, be a little more restrictive.
We allow alpha-numeric, '.' and '_'. Anything else is ignored.
aland [Mon, 28 Feb 2005 22:32:13 +0000 (22:32 +0000)]
Moved copy_string && copy_var from exec.c to util.c, as public
functions, so that others may use them.
(mostly) copied "split into argv" code from exec.c into xlat_config,
to avoid injection attacks. i.e. "split into argv, and then xlat",
rather than "xlat, and then split into argv".
This also allows the use of "." in section/pair names.
aland [Mon, 28 Feb 2005 19:50:47 +0000 (19:50 +0000)]
Use rbtrees for CONF_SECTIONS, with hacks to make instance names
work...
aland [Mon, 28 Feb 2005 19:49:25 +0000 (19:49 +0000)]
Minor fix to xlat config
aland [Mon, 28 Feb 2005 18:45:31 +0000 (18:45 +0000)]
Put CONF_PAIRs into an rbtree. This doesn't make much difference
for most systems, but for large ones, it can help.
This also means that more memory is being used in the server,
but not a whole lot.
Next, putting sections into an rbtree.
aland [Mon, 28 Feb 2005 18:24:29 +0000 (18:24 +0000)]
Allow %{config: section[name2][item]}
kkalev [Mon, 28 Feb 2005 12:02:53 +0000 (12:02 +0000)]
Add the safe-characters directive in mssql.conf also
kkalev [Fri, 25 Feb 2005 23:51:11 +0000 (23:51 +0000)]
Don't set DEFAULT '0' for the nas table
nbk [Fri, 25 Feb 2005 00:59:56 +0000 (00:59 +0000)]
Remove the locks on the <detail> file and handle the case
where the last line is not complete
nbk [Tue, 22 Feb 2005 15:59:39 +0000 (15:59 +0000)]
Execute modules in {Pre,Post}-Proxy-Type stanzas (closes: #199)
nbk [Tue, 22 Feb 2005 15:58:53 +0000 (15:58 +0000)]
Prototype change for module_post_proxy()
nbk [Tue, 22 Feb 2005 15:58:30 +0000 (15:58 +0000)]
Prototype changes for module_{pre,post}_proxy()
nbk [Mon, 21 Feb 2005 15:02:26 +0000 (15:02 +0000)]
Re-arrange the states in the loop() function to prevent
radsqlrelay from duplicating accounting packets. Now the
transition is STATE_RUN -> STATE_BACKLOG -> STATE_CLOSE
(closes: #206)
nbk [Sun, 20 Feb 2005 18:53:35 +0000 (18:53 +0000)]
Build radsqlrelay, too.
kkalev [Sat, 19 Feb 2005 12:02:34 +0000 (12:02 +0000)]
In clear_opensessions depending on sql type use either IS NULL or = 0 in the DELETE statement.
We need to find a cleaner solution to this. This closes bug#175
kkalev [Sat, 19 Feb 2005 11:53:40 +0000 (11:53 +0000)]
Change ConnectInfo_{start,stop} to be varchar(50). This closes Bug#204
kkalev [Sat, 19 Feb 2005 11:45:11 +0000 (11:45 +0000)]
Add a patch from Thor Spruyt for setting the nas client query in the configuration file
This closes bug#201
kkalev [Sat, 19 Feb 2005 01:08:44 +0000 (01:08 +0000)]
* Add more documentation for per user counter limit attributes (daily/weekly/monthly limits)
* Make all counter limits default to none so that people don't get confused
kkalev [Sat, 19 Feb 2005 00:58:05 +0000 (00:58 +0000)]
Update password_check to work with all password attributes and use the configuration directives
aland [Fri, 18 Feb 2005 21:34:59 +0000 (21:34 +0000)]
re-arranged pap_authorize so that it will clean up base64 & hex
password attributes, so that other modules may use them.
This allows (for example) LDAP to store NT passwords base64-encoded,
with a header of {nt}. The LDAP module will add an attribute
NT-Password, with the value as base64-encoded. The PAP module
will base64-decode it during the "authorize" phase, so that the
mschap module can use the 16-byte NT hash during the authentication
phase.
aland [Fri, 18 Feb 2005 21:23:07 +0000 (21:23 +0000)]
Added auto-header discovery
{clear} User-Password
{cleartext} User-Password
{md5} MD5-Password
{smd5} SMD5-Password
{sha} SHA-Password
{ssha} SSHA-Password
{nt} NT-Password
The passwords are added "as-is", and require RLM_PAP to fix them...
aland [Fri, 18 Feb 2005 21:03:09 +0000 (21:03 +0000)]
Re-formatting of code, normalize whitespace around function args,
reduce the number of indents in some places
aland [Fri, 18 Feb 2005 18:06:56 +0000 (18:06 +0000)]
Updated docs for new behavior
aland [Fri, 18 Feb 2005 18:03:43 +0000 (18:03 +0000)]
new pap authorize function, which looks for hashed/encrypted
passwords in config items, and sets Auth-Type := PAP.
Updated radiusd.conf to add "unix" and "pap" to "authorize",
for more auto-discovery.
Updated "users" to NOT Set Auth-Type at ALL. This makes
auto-discovery work much better...
aland [Fri, 18 Feb 2005 01:14:37 +0000 (01:14 +0000)]
Support base64 encoding, via auto-discovery.
i.e. if it decodes to a base64 string of the right length, then
it's a base64 string.
This works with SMD5-Password := "l/ValIKmwbbPbodg+YNCS32Cz3M="
which is the same "testpassword" as the previous CVS commit.
aland [Fri, 18 Feb 2005 00:12:58 +0000 (00:12 +0000)]
Document SMD5 && SSHA passwords, too
aland [Fri, 18 Feb 2005 00:12:02 +0000 (00:12 +0000)]
Whoops... delete base64 stuff which was there by accident
aland [Fri, 18 Feb 2005 00:11:22 +0000 (00:11 +0000)]
These new attributes are of type "octets", not "string"
aland [Fri, 18 Feb 2005 00:11:06 +0000 (00:11 +0000)]
deleted hex2bin && bin2hex.
Added support for SMD5-Password & SSHA-Password.
SMD5-Password := 0x97f55a9482a6c1b6cf6e8760f983424b7d82cf73
SSHA-Password := 0x3b7fc2a325b3a841db199bb9f653fd8e05d6b1e4edbf63b5
User-Password := "testpassword"
aland [Thu, 17 Feb 2005 20:42:25 +0000 (20:42 +0000)]
unused headers
aland [Thu, 17 Feb 2005 20:41:55 +0000 (20:41 +0000)]
Add OSFFIA stuff back in. It looks like it's not used, so it
shouldn't hurt anything.
aland [Thu, 17 Feb 2005 20:35:36 +0000 (20:35 +0000)]
Updated documentation for rlm_unix