nbk [Thu, 25 May 2006 16:24:40 +0000 (16:24 +0000)]
The variable $? in "make" is different from $? in "bash",
therefore we need to write "exit $$?" in a Makefile.
aland [Wed, 24 May 2006 16:34:12 +0000 (16:34 +0000)]
Latest set of changes
aland [Wed, 24 May 2006 16:31:43 +0000 (16:31 +0000)]
Pull fix from the head
nbk [Sun, 21 May 2006 18:11:32 +0000 (18:11 +0000)]
Update the dpatch against 1.1.2.
nbk [Sun, 21 May 2006 17:35:25 +0000 (17:35 +0000)]
Regenerate from configure.in 1.198.2.15.2.7 using autoconf 2.13.
nbk [Sun, 21 May 2006 17:32:52 +0000 (17:32 +0000)]
Update version number, in preparation for 1.1.2 release.
nbk [Sun, 21 May 2006 16:20:58 +0000 (16:20 +0000)]
Regenerate from configure.in 1.5.4.1 using autoconf 2.13.
nbk [Sun, 21 May 2006 16:20:28 +0000 (16:20 +0000)]
Regenerate from configure.in 1.9.4.1 using autoconf 2.13.
nbk [Sun, 21 May 2006 16:20:00 +0000 (16:20 +0000)]
Regenerate from configure.in 1.2.4.1 using autoconf 2.13.
nbk [Sun, 21 May 2006 16:18:04 +0000 (16:18 +0000)]
Pull from CVS head:
Get OPENSSL_LIBS from the top-level "configure" script.
nbk [Sat, 20 May 2006 12:44:37 +0000 (12:44 +0000)]
Drop unused config entries.
nbk [Sat, 20 May 2006 12:19:12 +0000 (12:19 +0000)]
Latest set of changes.
aland [Fri, 19 May 2006 16:21:44 +0000 (16:21 +0000)]
Pull tagged VSA fix from the head
aland [Fri, 19 May 2006 16:12:40 +0000 (16:12 +0000)]
document Proxy-To-Realm
aland [Fri, 19 May 2006 16:09:51 +0000 (16:09 +0000)]
Update with more docs on machine authentication & magic attributes
nbk [Fri, 19 May 2006 14:24:37 +0000 (14:24 +0000)]
Don't use the option -static anymore when linking radeapclient.
nbk [Fri, 19 May 2006 14:22:23 +0000 (14:22 +0000)]
Define a function log_debug() which is an unresolved symbol
in libeap. (closes: #350)
nbk [Fri, 19 May 2006 14:19:14 +0000 (14:19 +0000)]
Don't use rad_assert in libeap, it's a server-only function.
aland [Tue, 16 May 2006 18:26:53 +0000 (18:26 +0000)]
Note changes
aland [Tue, 16 May 2006 18:26:06 +0000 (18:26 +0000)]
If the packet fails verification, silently drop it.
This is done by exporting rad_verify, and making people use it.
aland [Thu, 11 May 2006 16:48:21 +0000 (16:48 +0000)]
Be a little more careful about returning DICT_VALUEs
This closes bug #364
aland [Wed, 10 May 2006 16:53:15 +0000 (16:53 +0000)]
Pull Asterix dictionary from the head
aland [Wed, 10 May 2006 16:52:08 +0000 (16:52 +0000)]
file dictionary.digium was added on branch branch_1_1 on 2006-05-10 16:53:15 +0000
aland [Tue, 9 May 2006 23:14:33 +0000 (23:14 +0000)]
Updates
aland [Tue, 9 May 2006 20:59:23 +0000 (20:59 +0000)]
Fix linked list code for EAP handlers.
fcusack [Tue, 9 May 2006 08:13:03 +0000 (08:13 +0000)]
import from HEAD:
update cardops keystring2keyblock method to take a card_info_t *
instead of some of its fields
fcusack [Tue, 9 May 2006 08:08:23 +0000 (08:08 +0000)]
update cardops keystring2keyblock method to take a card_info_t *
instead of some of its fields
aland [Mon, 8 May 2006 23:45:49 +0000 (23:45 +0000)]
Initialize flags.
aland [Mon, 8 May 2006 23:45:02 +0000 (23:45 +0000)]
Initialize flags.
pnixon [Sun, 7 May 2006 21:37:23 +0000 (21:37 +0000)]
This index modification makes accounting_update_query and accounting_stop_query several orders of magnitude faster at the expense of slowing down accounting_start_query a bit which overall makes the postgresql backend 200-300 times faster when using the defaul queries and schema with a "reasonable" amount of data.
aland [Fri, 5 May 2006 17:31:53 +0000 (17:31 +0000)]
Don't de-reference request->username if it's NULL
aland [Fri, 5 May 2006 17:31:28 +0000 (17:31 +0000)]
Don't de-reference request->username if it's NULL
aland [Wed, 3 May 2006 17:46:57 +0000 (17:46 +0000)]
Note abinary support
aland [Wed, 3 May 2006 17:46:42 +0000 (17:46 +0000)]
Note abinary support
aland [Wed, 3 May 2006 17:42:49 +0000 (17:42 +0000)]
Note recent changes
aland [Wed, 3 May 2006 17:40:58 +0000 (17:40 +0000)]
If abinary is 0x..., then make it type "octets"
aland [Wed, 3 May 2006 17:39:37 +0000 (17:39 +0000)]
Whoops.. don't make abinary into octets when we receive it.
aland [Wed, 3 May 2006 17:39:12 +0000 (17:39 +0000)]
Whoops.. don't make abinary into octets when we receive it.
aland [Wed, 3 May 2006 17:38:51 +0000 (17:38 +0000)]
Allow 0x... for abinary
aland [Wed, 3 May 2006 17:35:02 +0000 (17:35 +0000)]
Better printing of octets
aland [Wed, 3 May 2006 17:34:48 +0000 (17:34 +0000)]
Better printing of octets
aland [Wed, 3 May 2006 17:23:45 +0000 (17:23 +0000)]
Initialize error string to something sane
use sizeof(*ptr) rather than sizeof(ptr)
aland [Wed, 3 May 2006 17:18:25 +0000 (17:18 +0000)]
Initialize error string to something sane
aland [Wed, 3 May 2006 17:18:09 +0000 (17:18 +0000)]
Allow hex data in abinary attributes, to be more flexible.
Return error from pairread() if we failed to create an attribute.
This will break existing configs that refer to non-existent
attributes, BUT there will now be a useful error message where
there wasn't anything before.
aland [Tue, 2 May 2006 21:47:46 +0000 (21:47 +0000)]
mainconfig.radiusd_conf is dynamically allocated, not static
aland [Tue, 2 May 2006 21:07:30 +0000 (21:07 +0000)]
cleaner random stuff
aland [Tue, 2 May 2006 21:06:11 +0000 (21:06 +0000)]
signed/unsigned fixes
aland [Mon, 1 May 2006 16:48:11 +0000 (16:48 +0000)]
Pull fix for #298 from the head
aland [Mon, 1 May 2006 16:47:47 +0000 (16:47 +0000)]
Catch NULL arg and return. This fixes bug #298
aland [Mon, 1 May 2006 16:47:10 +0000 (16:47 +0000)]
Signed/unsigned fixes
aland [Fri, 28 Apr 2006 23:44:31 +0000 (23:44 +0000)]
Corrected typo. This fixes bug #363
aland [Fri, 28 Apr 2006 18:25:20 +0000 (18:25 +0000)]
Add check_cert_issuer config option to rlm_eap_tls
This closes bug #346
aland [Fri, 28 Apr 2006 18:25:03 +0000 (18:25 +0000)]
Add check_cert_issuer config option to rlm_eap_tls
This closes bug #346
aland [Fri, 28 Apr 2006 18:21:49 +0000 (18:21 +0000)]
Add check_cert_issuer config option to rlm_eap_tls
This closes bug #346
aland [Fri, 28 Apr 2006 18:20:42 +0000 (18:20 +0000)]
Add cipher_list to list of config options
aland [Fri, 28 Apr 2006 18:18:58 +0000 (18:18 +0000)]
Add check_cert_issuer config option to rlm_eap_tls.
This closes bug #346
aland [Fri, 28 Apr 2006 18:16:55 +0000 (18:16 +0000)]
Remove rlm_eap_tls conf from eap_tls.h
aland [Fri, 28 Apr 2006 17:51:01 +0000 (17:51 +0000)]
Whoops... more dumb things to fix
aland [Fri, 28 Apr 2006 17:48:50 +0000 (17:48 +0000)]
Whoops, the name is "linelog", not "example"
aland [Fri, 28 Apr 2006 17:47:42 +0000 (17:47 +0000)]
Added escape function, so embedded \n's and other non-printable
characters don't get printed.
This closes bug #257
aland [Thu, 27 Apr 2006 22:53:56 +0000 (22:53 +0000)]
List new stuff
aland [Thu, 27 Apr 2006 22:47:34 +0000 (22:47 +0000)]
Pull load cipher list from CVS head.
move rlm_eap_tls conf from libeap to rlm_eap_tls, where it belongs
aland [Thu, 27 Apr 2006 22:42:24 +0000 (22:42 +0000)]
Move rlm_eap_tls configuration to it's private header file,
and out of the global header file
aland [Thu, 27 Apr 2006 21:10:58 +0000 (21:10 +0000)]
Correct the documentation.
aland [Thu, 27 Apr 2006 21:10:16 +0000 (21:10 +0000)]
Correct the documentation
aland [Thu, 27 Apr 2006 20:33:53 +0000 (20:33 +0000)]
Don't use system libtool or force gnu LD. Bug #330 says this is bad
aland [Thu, 27 Apr 2006 18:53:23 +0000 (18:53 +0000)]
Move cbtls_verify to rlm_eap_tls, where it won't pollute
radeapclient, which doesn't use or need it.
aland [Thu, 27 Apr 2006 18:52:43 +0000 (18:52 +0000)]
Move cbtls_verify to rlm_eap_tls, where it won't pollute
radeapclient, which doesn't use or need it.
aland [Thu, 27 Apr 2006 18:41:52 +0000 (18:41 +0000)]
Move cbtls_verify to rlm_eap_tls, where it won't pollute
radeapclient, which doesn't use or need it.
aland [Thu, 27 Apr 2006 18:39:32 +0000 (18:39 +0000)]
Get rid of annoying "return invalid handle if we failed to load
the module" crap.
Who writes this stuff?
aland [Thu, 27 Apr 2006 18:37:54 +0000 (18:37 +0000)]
Get rid of annoying "return invalid handle if we failed to load
the module" crap.
Who writes this stuff?
aland [Thu, 27 Apr 2006 18:19:32 +0000 (18:19 +0000)]
Print SSL errors to radius.log, rather than stderr.
This fixes bug #347
aland [Thu, 27 Apr 2006 18:18:08 +0000 (18:18 +0000)]
Print SSL errors to radius.log, rather than stderr.
This closes bug #347
aland [Thu, 27 Apr 2006 17:35:44 +0000 (17:35 +0000)]
Pull diff from -r1.34 to -r1.35 from cvs head
bjordanov [Wed, 26 Apr 2006 13:32:25 +0000 (13:32 +0000)]
Fix rlm_perl handle leak in perl_xlat and memory leak from stack when ERRSV is true. Patch from Bj?rn Mork <bjorn@mork.no>
aland [Thu, 20 Apr 2006 18:40:34 +0000 (18:40 +0000)]
updated note about Active Directory
aland [Thu, 20 Apr 2006 18:40:29 +0000 (18:40 +0000)]
updated note about Active Directory
aland [Wed, 19 Apr 2006 19:14:48 +0000 (19:14 +0000)]
less rants
aland [Wed, 19 Apr 2006 19:14:43 +0000 (19:14 +0000)]
less rants
aland [Wed, 19 Apr 2006 19:09:48 +0000 (19:09 +0000)]
More comments on EAP and LDAP, in the naive hope that people
will read them.
aland [Wed, 19 Apr 2006 19:09:28 +0000 (19:09 +0000)]
More comments on EAP and LDAP, in the naive hope that people
will read them.
aland [Wed, 19 Apr 2006 18:35:41 +0000 (18:35 +0000)]
Port "suppress" attribute printing from the head
aland [Wed, 19 Apr 2006 16:24:44 +0000 (16:24 +0000)]
Add configurable suppression of attribute printing
aland [Wed, 19 Apr 2006 16:21:50 +0000 (16:21 +0000)]
Port cf_item_is_pair() from the head
aland [Wed, 19 Apr 2006 16:14:20 +0000 (16:14 +0000)]
add cf_item_is_pair() for completeness
aland [Wed, 19 Apr 2006 15:56:19 +0000 (15:56 +0000)]
call ldap_escape_func for basedn, etc. too
This closes bug #360
aland [Tue, 18 Apr 2006 21:37:42 +0000 (21:37 +0000)]
call ldap_escape_func for basedn, etc, too.
This closes bug #360
aland [Tue, 18 Apr 2006 17:26:26 +0000 (17:26 +0000)]
close bug #361
Set dumpable after uid switch, if allow core dumps is set
aland [Tue, 18 Apr 2006 17:20:12 +0000 (17:20 +0000)]
Port fix from the head for #352
aland [Tue, 18 Apr 2006 17:19:04 +0000 (17:19 +0000)]
Add one more attribute. Closes bug #352
aland [Mon, 17 Apr 2006 18:56:31 +0000 (18:56 +0000)]
Allow the "users" file to have keys other than User-Name.
This allows the "users" file (or variants) to be used for group
checks, too.
aland [Mon, 17 Apr 2006 18:13:10 +0000 (18:13 +0000)]
Corrected typo
aland [Fri, 14 Apr 2006 21:45:54 +0000 (21:45 +0000)]
If ':' is the last character of an attribute name, don't allow it
in pairmake.
If ':' is the last character of an attribute name in pairread(),
back up so we don't read too much.
If we didn't make a pair, return an error. We didn't do this
before... WTF?
aland [Fri, 14 Apr 2006 16:32:19 +0000 (16:32 +0000)]
Don't do as many copies
aland [Fri, 14 Apr 2006 16:29:01 +0000 (16:29 +0000)]
Speed up parsing by doing a little more by hand
aland [Thu, 13 Apr 2006 18:00:20 +0000 (18:00 +0000)]
Port fix for stupidities from the head
aland [Thu, 13 Apr 2006 17:59:39 +0000 (17:59 +0000)]
Comment out debugging stupidities
aland [Thu, 13 Apr 2006 17:58:02 +0000 (17:58 +0000)]
Catch more cases
aland [Thu, 13 Apr 2006 17:28:40 +0000 (17:28 +0000)]
Store data...
aland [Thu, 13 Apr 2006 17:15:56 +0000 (17:15 +0000)]
Use hash tables for "users" file entries, and add "order" to PAIR_LIST
to get around the problem of lineno's being specific to $INCLUDEs.
This moves the handling of users file from O(E) in the number of
entries to O(M) in the number of entries that this particular
request matches. For the case of E 200,000 and M 2-3, this
results in a significant performance improvement.