Arran Cudbard-Bell [Wed, 2 Jan 2013 12:31:59 +0000 (12:31 +0000)]
Fix more null string checks
Arran Cudbard-Bell [Mon, 31 Dec 2012 11:36:35 +0000 (11:36 +0000)]
Minor fixes in rlm_rest
Arran Cudbard-Bell [Sun, 30 Dec 2012 23:34:06 +0000 (23:34 +0000)]
Update doxygen documentation
Olivier Beytrison [Fri, 21 Dec 2012 14:46:23 +0000 (15:46 +0100)]
initial support for multi-valued attributes in rlm_cache
Arran Cudbard-Bell [Sun, 30 Dec 2012 12:38:03 +0000 (12:38 +0000)]
Fix warning
Arran Cudbard-Bell [Sat, 29 Dec 2012 23:26:56 +0000 (23:26 +0000)]
Add support for tags to remaining functions in lib/valuepair.c
Arran Cudbard-Bell [Fri, 21 Dec 2012 15:13:11 +0000 (15:13 +0000)]
Always respect Response-Packet-Type for authentication requests
Alan T. DeKok [Fri, 21 Dec 2012 12:43:52 +0000 (07:43 -0500)]
Minor cleanups
Added documentation on new data types. Re-arranged dictionaries
to make a bit more sense.
Alan T. DeKok [Fri, 21 Dec 2012 12:16:04 +0000 (07:16 -0500)]
Move Message-Authenticator code
from a generic place to a better place
Alan T. DeKok [Fri, 21 Dec 2012 11:54:56 +0000 (06:54 -0500)]
Can't compare pairs of two different types
Alan T. DeKok [Thu, 20 Dec 2012 19:07:47 +0000 (14:07 -0500)]
Add descriptive error messages
Alan T. DeKok [Thu, 20 Dec 2012 19:07:09 +0000 (14:07 -0500)]
Add missing "break"
Alan T. DeKok [Thu, 20 Dec 2012 18:30:40 +0000 (13:30 -0500)]
Document new types
Alan T. DeKok [Thu, 20 Dec 2012 18:25:46 +0000 (13:25 -0500)]
Forcibly clear out prefixes in ipv4prefix
If the other guy sends 127.0.0.1/8, it really means 127.0.0.0/8
Alan T. DeKok [Thu, 20 Dec 2012 18:25:29 +0000 (13:25 -0500)]
Fix typo in ipv4prefix size
Alan T. DeKok [Thu, 20 Dec 2012 14:44:47 +0000 (09:44 -0500)]
Enforce dots in realm only if a realm exists
Otherwise the historic "bob / bob" test user doesn't work
Alan T. DeKok [Thu, 20 Dec 2012 14:44:15 +0000 (09:44 -0500)]
Added "++" to keep in sync with src/include/token.h
This is why new enum fields are added at the END of the enum!
Alan T. DeKok [Thu, 20 Dec 2012 14:18:41 +0000 (09:18 -0500)]
Add IPv4prefix data type for RFC 6572
Alan T. DeKok [Thu, 20 Dec 2012 13:00:11 +0000 (08:00 -0500)]
Dictionary for RFC 6572
Alan T. DeKok [Thu, 20 Dec 2012 12:45:42 +0000 (07:45 -0500)]
Dictionary for RFC 6519
Alan T. DeKok [Thu, 20 Dec 2012 12:08:31 +0000 (07:08 -0500)]
SETFD for O_NONBLOCK
From Debian Bug #696250
Arran Cudbard-Bell [Thu, 20 Dec 2012 07:19:59 +0000 (23:19 -0800)]
Merge pull request #158 from olivierbeytrison/master
missing space in rlm_eap/mem.c
Olivier Beytrison [Thu, 20 Dec 2012 06:59:22 +0000 (07:59 +0100)]
fix-typo
Arran Cudbard-Bell [Wed, 19 Dec 2012 18:50:57 +0000 (18:50 +0000)]
Set Post-Proxy-Type Reject if the request was rejected by the proxy server
Arran Cudbard-Bell [Tue, 18 Dec 2012 11:43:44 +0000 (11:43 +0000)]
Attempt to reconnect all the connections
Attempt to reconnect on modify
Arran Cudbard-Bell [Sat, 15 Dec 2012 14:24:25 +0000 (14:24 +0000)]
Use async call so we can timeout on ldap modifications
Arran Cudbard-Bell [Fri, 14 Dec 2012 18:50:12 +0000 (18:50 +0000)]
Fix condition
Arran Cudbard-Bell [Fri, 14 Dec 2012 18:36:05 +0000 (18:36 +0000)]
Fix typo
Alan T. DeKok [Fri, 14 Dec 2012 16:13:29 +0000 (17:13 +0100)]
Allow for multiple inserts in one transaction.
Patch from Uwe Meyer-Gruhl
Alan T. DeKok [Fri, 14 Dec 2012 13:02:53 +0000 (08:02 -0500)]
New target to check for compiler warnings
Alan T. DeKok [Fri, 14 Dec 2012 10:43:45 +0000 (05:43 -0500)]
Fix compiler warnings
Alan T. DeKok [Fri, 14 Dec 2012 10:39:24 +0000 (05:39 -0500)]
Fix compiler warnings
Alan T. DeKok [Fri, 14 Dec 2012 10:25:45 +0000 (05:25 -0500)]
Fix compiler warning
Alan T. DeKok [Fri, 14 Dec 2012 10:25:07 +0000 (05:25 -0500)]
Move compile-time #warning to comment
Arran Cudbard-Bell [Thu, 13 Dec 2012 12:31:19 +0000 (12:31 +0000)]
Move more messages outside of locks
Arran Cudbard-Bell [Wed, 12 Dec 2012 14:14:15 +0000 (14:14 +0000)]
Distinguish between idle and spare connections
Track last throttled time and use it to limit error messages
Add connection opened/failed messages
Arran Cudbard-Bell [Wed, 12 Dec 2012 11:18:20 +0000 (11:18 +0000)]
Fix duplicate connection close messages
Arran Cudbard-Bell [Wed, 12 Dec 2012 10:41:51 +0000 (10:41 +0000)]
Add more debugging for when we bail out of spawning a new connection
Arran Cudbard-Bell [Tue, 11 Dec 2012 22:17:13 +0000 (22:17 +0000)]
Ignore right operand for !*
Arran Cudbard-Bell [Tue, 11 Dec 2012 21:55:17 +0000 (21:55 +0000)]
Return noop if we did no work
Arran Cudbard-Bell [Tue, 11 Dec 2012 21:50:03 +0000 (21:50 +0000)]
Add missing module prefix to some log messages
Arran Cudbard-Bell [Tue, 11 Dec 2012 16:26:49 +0000 (16:26 +0000)]
Only allow ANY for !*
Alan T. DeKok [Tue, 11 Dec 2012 15:22:53 +0000 (10:22 -0500)]
Fix compiler warnings
Arran Cudbard-Bell [Tue, 11 Dec 2012 14:08:06 +0000 (14:08 +0000)]
Pass msg_id into ldap_result
Arran Cudbard-Bell [Tue, 11 Dec 2012 13:39:55 +0000 (13:39 +0000)]
Revert changes to LDAP bind
Arran Cudbard-Bell [Tue, 11 Dec 2012 12:46:31 +0000 (12:46 +0000)]
Already have an ldap_errno
Arran Cudbard-Bell [Tue, 11 Dec 2012 12:09:02 +0000 (12:09 +0000)]
Add warning about replacing multiple attributes
Use zero length array for wildcard deletes
Arran Cudbard-Bell [Tue, 11 Dec 2012 11:28:02 +0000 (11:28 +0000)]
Missed & operator
Arran Cudbard-Bell [Tue, 11 Dec 2012 11:21:56 +0000 (11:21 +0000)]
More prettyfying
Arran Cudbard-Bell [Tue, 11 Dec 2012 11:15:27 +0000 (11:15 +0000)]
Change more return code checks to use != LDAP_SUCCESS
Arran Cudbard-Bell [Mon, 10 Dec 2012 23:44:43 +0000 (23:44 +0000)]
Should allocate MAX_ATTRMAP + 1 for pointers
Arran Cudbard-Bell [Mon, 10 Dec 2012 23:22:28 +0000 (23:22 +0000)]
Fix build warnings in ippool tool
Arran Cudbard-Bell [Mon, 10 Dec 2012 23:18:38 +0000 (23:18 +0000)]
Make code slightly more readable
Arran Cudbard-Bell [Mon, 10 Dec 2012 22:44:09 +0000 (22:44 +0000)]
datum.dptr should really be const...
Alan T. DeKok [Mon, 10 Dec 2012 22:02:32 +0000 (17:02 -0500)]
Compare character to zero, not to NULL
Alan T. DeKok [Mon, 10 Dec 2012 15:05:19 +0000 (10:05 -0500)]
One less build warning
Arran Cudbard-Bell [Mon, 10 Dec 2012 19:02:23 +0000 (19:02 +0000)]
Add increment operator for LDAP
Arran Cudbard-Bell [Mon, 10 Dec 2012 18:35:26 +0000 (18:35 +0000)]
cf_reference_item should return the current item if passed '.'
get_userdn should not leave the rcode at FAIL if it actually finds the userdn
user_modify needs two arrays, one of structs, one of pointers to those structs
Arran Cudbard-Bell [Mon, 10 Dec 2012 16:05:09 +0000 (16:05 +0000)]
user_dn should be initialised to NULL
Need to use memcpy to copy pointer to array element into value field in mods struct, because OpenLDAP doesn't use const anywhere
Arran Cudbard-Bell [Mon, 10 Dec 2012 11:38:45 +0000 (11:38 +0000)]
Move eDir autz code into authorize, freeing post-auth for accounting
Fix small memory leak on eDir failure
Update LDAP configuration
Arran Cudbard-Bell [Mon, 10 Dec 2012 10:45:54 +0000 (10:45 +0000)]
Don't pass presult
Arran Cudbard-Bell [Mon, 10 Dec 2012 08:35:33 +0000 (08:35 +0000)]
Fix typo
Arran Cudbard-Bell [Mon, 10 Dec 2012 08:29:23 +0000 (08:29 +0000)]
Rename cfree to rad_cfree
Arran Cudbard-Bell [Mon, 10 Dec 2012 00:37:55 +0000 (00:37 +0000)]
Remove duplicate error message
Arran Cudbard-Bell [Mon, 10 Dec 2012 00:36:50 +0000 (00:36 +0000)]
Remove old edir code
Arran Cudbard-Bell [Mon, 10 Dec 2012 00:22:06 +0000 (00:22 +0000)]
Fix over zealous whitespace replacement
Arran Cudbard-Bell [Mon, 10 Dec 2012 00:21:37 +0000 (00:21 +0000)]
More style fixes
Arran Cudbard-Bell [Mon, 10 Dec 2012 00:21:21 +0000 (00:21 +0000)]
Add basic accounting support to LDAP
Arran Cudbard-Bell [Sun, 9 Dec 2012 18:26:38 +0000 (18:26 +0000)]
malloc sections at runtime
Arran Cudbard-Bell [Sun, 9 Dec 2012 16:19:24 +0000 (16:19 +0000)]
Use correct type of free in rlm_policy
Arran Cudbard-Bell [Sun, 9 Dec 2012 16:17:48 +0000 (16:17 +0000)]
Fix warnings in rlm_cram
Arran Cudbard-Bell [Sun, 9 Dec 2012 16:06:44 +0000 (16:06 +0000)]
Reformatting
Arran Cudbard-Bell [Sun, 9 Dec 2012 15:59:44 +0000 (15:59 +0000)]
Get rid of warnings in rlm_counter
Arran Cudbard-Bell [Sun, 9 Dec 2012 15:59:15 +0000 (15:59 +0000)]
Add cfree for freeing consts
Arran Cudbard-Bell [Sat, 8 Dec 2012 17:37:28 +0000 (17:37 +0000)]
Update docs and suse/rhel specs for attrs
Arran Cudbard-Bell [Sat, 8 Dec 2012 10:58:47 +0000 (02:58 -0800)]
Merge pull request #148 from olivierbeytrison/master
edir documentation, fix all.mk.in for edir.c, fix typo in edir.c
Olivier Beytrison [Sat, 8 Dec 2012 10:40:20 +0000 (11:40 +0100)]
fix typo, add doc for ldap-edir, build edir.c with boilermake
Arran Cudbard-Bell [Sat, 8 Dec 2012 10:13:17 +0000 (02:13 -0800)]
Merge pull request #146 from olivierbeytrison/master
Fix Makefile and debian for new attr filter directory
Olivier Beytrison [Sat, 8 Dec 2012 09:39:13 +0000 (10:39 +0100)]
fix debian and Makefile for new filters
Arran Cudbard-Bell [Sat, 8 Dec 2012 09:51:52 +0000 (09:51 +0000)]
Fix more typos
Arran Cudbard-Bell [Fri, 7 Dec 2012 23:33:00 +0000 (15:33 -0800)]
Merge pull request #145 from mcnewton/master
few small issues
Matthew Newton [Fri, 7 Dec 2012 23:23:20 +0000 (23:23 +0000)]
fix typo
Matthew Newton [Fri, 7 Dec 2012 23:14:51 +0000 (23:14 +0000)]
quiet some compiler warnings
Matthew Newton [Fri, 7 Dec 2012 23:14:19 +0000 (23:14 +0000)]
debian packages shouldn't be developer build
Arran Cudbard-Bell [Fri, 7 Dec 2012 22:02:08 +0000 (22:02 +0000)]
Move attrs filters into their own directory, rename attrsfile to file
Arran Cudbard-Bell [Fri, 7 Dec 2012 20:00:37 +0000 (12:00 -0800)]
Merge pull request #144 from dragon9k/master
New version: checkrad patch to support Juniper's BRAS
Olivier Beytrison [Fri, 7 Dec 2012 19:38:56 +0000 (14:38 -0500)]
Added ldap_postauth for edir
Alan T. DeKok [Fri, 7 Dec 2012 19:35:51 +0000 (14:35 -0500)]
Glue edir into the authorization module.
dragon9k [Fri, 7 Dec 2012 17:29:01 +0000 (15:29 -0200)]
New checkrad version patch (Juniper)
I would like to submit a new version of this Patch for FR 2.20, which uses snmpget instead of snmpwalk (to increase performance).
It also fixes a problem with checkrad complaining about lack of $ in the "out" variable.
Alan T. DeKok [Fri, 7 Dec 2012 16:54:22 +0000 (11:54 -0500)]
Fix typo
Alan T. DeKok [Fri, 7 Dec 2012 15:10:05 +0000 (10:10 -0500)]
Added preliminary WITH_EDIR again.
Based on a patch from Olivier Beytrison
Arran Cudbard-Bell [Thu, 6 Dec 2012 21:26:48 +0000 (21:26 +0000)]
Don't link to modules, it breaks things
Alan DeKok [Thu, 6 Dec 2012 16:55:46 +0000 (08:55 -0800)]
Merge pull request #143 from tobiasbrunner/eap-ttls-avp-length
Allow EAP-Message APVs > 253 octets in EAP-TTLS module
Arran Cudbard-Bell [Wed, 5 Dec 2012 23:22:59 +0000 (23:22 +0000)]
More debugging improvements
Print EAP session 'state' value in more places, so we can track sessions
easily in the debug log.
Tobias Brunner [Wed, 5 Dec 2012 11:51:31 +0000 (12:51 +0100)]
Allow EAP-Message APVs > 253 octets in EAP-TTLS module
According to RFC 5281, section 11.2.1 tunneled EAP packets that are
larger than 253 octets MUST be contained in a single EAP-Message AVP.
Also fixed the debug statement.
Arran Cudbard-Bell [Wed, 5 Dec 2012 13:49:58 +0000 (13:49 +0000)]
Die attrmap die
Alan T. DeKok [Wed, 5 Dec 2012 12:28:24 +0000 (07:28 -0500)]
Fix suppression of blocked thread messages
So that it's once per second
Arran Cudbard-Bell [Wed, 5 Dec 2012 12:15:29 +0000 (12:15 +0000)]
Minor debugging tweaks
Arran Cudbard-Bell [Wed, 5 Dec 2012 11:08:48 +0000 (11:08 +0000)]
We don't know the expanded value until after calling pairxlatmove
Arran Cudbard-Bell [Wed, 5 Dec 2012 00:03:45 +0000 (00:03 +0000)]
Convert strings and octet strings of 8 bytes or less to integers too