Nikolai Kondrashov [Thu, 29 Jan 2015 19:32:29 +0000 (21:32 +0200)]
Remove two unused variable declarations
This fixes the following compiler warnings:
freeradius-server-2.2.6/src/main/listen.c:1359: included_from: Included from here.
freeradius-server-2.2.6/src/main/command.c: scope_hint: In function 'command_show_module_status'
freeradius-server-2.2.6/src/main/command.c:589: warning: unused variable 'mod'
freeradius-server-2.2.6/src/modules/rlm_sql/rlm_sql.c: scope_hint: In function 'rlm_sql_detach'
freeradius-server-2.2.6/src/modules/rlm_sql/rlm_sql.c:824: warning: unused variable 'i'
Nikolai Kondrashov [Thu, 29 Jan 2015 12:32:24 +0000 (14:32 +0200)]
Limit log level string when building message
Use strncat instead of strcat to limit the length of copied log level
name in radlog_request. This makes the code easier to reason about
overall and to make sure no buffer overflow happens.
This fixes the following Coverity error:
Error: STRING_OVERFLOW (CWE-120):
freeradius-server-2.2.6/src/main/log.c:310: fixed_size_dest: You might overrun the 1024 byte fixed-size string "buffer" by copying the return value of "fr_int2str" without checking the length.
Nikolai Kondrashov [Thu, 29 Jan 2015 12:08:12 +0000 (14:08 +0200)]
Initialize child count in modcall_recurse
Initialize child count in modcall_recurse to explicitly handle the case of no
children, making the code at least slightly easier to read, if not actually
fixing an issue.
This fixes the following Coverity error:
Error: UNINIT (CWE-457):
freeradius-server-2.2.6/src/main/modcall.c:691: var_decl: Declaring variable "count" without initializer.
freeradius-server-2.2.6/src/main/modcall.c:727: uninit_use: Using uninitialized value "count".
Nikolai Kondrashov [Thu, 29 Jan 2015 12:01:49 +0000 (14:01 +0200)]
Check cf_item_parse return value
Check cf_item_parse return value in dhcp_socket_parse to match all other
invocations.
This fixes the following Coverity errors:
Error: CHECKED_RETURN (CWE-252):
freeradius-server-2.2.6/src/main/dhcpd.c:618: check_return: Calling "cf_item_parse" without checking return value (as is done elsewhere 12 out of 14 times).
Error: CHECKED_RETURN (CWE-252):
freeradius-server-2.2.6/src/main/dhcpd.c:624: check_return: Calling "cf_item_parse" without checking return value (as is done elsewhere 12 out of 14 times).
Nikolai Kondrashov [Thu, 29 Jan 2015 11:57:59 +0000 (13:57 +0200)]
Check radius_get_vp return value
Check radius_get_vp return value in modcall_recurse to match other
invocations.
This fixes the following Coverity error:
Error: CHECKED_RETURN (CWE-252):
freeradius-server-2.2.6/src/main/modcall.c:649: check_return: Calling "radius_get_vp" without checking return value (as is done elsewhere 6 out of 7 times).
Nikolai Kondrashov [Thu, 29 Jan 2015 11:51:29 +0000 (13:51 +0200)]
Return positive integers from each radius_xlat
Make all versions of radius_xlat return positive integers only,
including stubs, to match the result checking.
This fixes the following Coverity errors:
Error: NEGATIVE_RETURNS (CWE-394):
freeradius-server-2.2.6/src/modules/rlm_expr/rlm_expr.c:625: negative_return_fn: Function "radius_xlat(buffer, 1024, fmt, request, func)" returns a negative number.
freeradius-server-2.2.6/src/main/radconf2xml.c:52:2: return_negative_constant: Explicitly returning negative value "-1".
freeradius-server-2.2.6/src/modules/rlm_expr/rlm_expr.c:625: var_assign: Assigning: unsigned variable "len" = "radius_xlat".
freeradius-server-2.2.6/src/modules/rlm_expr/rlm_expr.c:637: negative_returns: "len" is passed to a parameter that cannot be negative.
freeradius-server-2.2.6/src/lib/base64.c:66:50: sizet: "inlen" is a size_t parameter.
Error: NEGATIVE_RETURNS (CWE-394):
freeradius-server-2.2.6/src/modules/rlm_expr/rlm_expr.c:659: negative_return_fn: Function "radius_xlat(buffer, 1024, fmt, request, func)" returns a negative number.
freeradius-server-2.2.6/src/main/radconf2xml.c:52:2: return_negative_constant: Explicitly returning negative value "-1".
freeradius-server-2.2.6/src/modules/rlm_expr/rlm_expr.c:659: var_assign: Assigning: unsigned variable "len" = "radius_xlat".
freeradius-server-2.2.6/src/modules/rlm_expr/rlm_expr.c:666: negative_returns: "len" is passed to a parameter that cannot be negative.
freeradius-server-2.2.6/src/lib/base64.c:315:3: parm_loop_bound: Using unsigned parameter "inlen" in a loop exit test.
Nikolai Kondrashov [Thu, 29 Jan 2015 10:49:18 +0000 (12:49 +0200)]
rlm_sql_log: Check rad_mkdir result
Check the result of rad_mkdir in sql_log_write, abort on error.
This makes the reported error clearer and fixes the following Coverity
error:
Error: CHECKED_RETURN (CWE-252):
freeradius-server-2.2.6/src/modules/rlm_sql_log/rlm_sql_log.c:374: check_return: Calling "rad_mkdir" without checking return value (as is done elsewhere 4 out of 5 times).
Nikolai Kondrashov [Thu, 29 Jan 2015 10:28:23 +0000 (12:28 +0200)]
xlat: Always free head
Move "head" deallocation into the path for handling fr_dhcp_decode_options
failure, in xlat_dhcp_options. This makes sure it is freed, as
fr_dhcp_decode_options is complicated and is not documented to guarantee
deallocation in case of error.
This fixes the following Coverity error:
Error: RESOURCE_LEAK (CWE-772):
freeradius-server-2.2.6/src/main/xlat.c:639: alloc_arg: "fr_dhcp_decode_options" allocates memory that is stored into "head".
freeradius-server-2.2.6/src/lib/dhcp.c:581:2: var_assign_parm: Assigning: "tail" = "head".
freeradius-server-2.2.6/src/lib/dhcp.c:647:4: alloc_fn: Storage is returned from allocation function "pairmake".
freeradius-server-2.2.6/src/lib/valuepair.c:1523:3: alloc_fn: Storage is returned from allocation function "pairmake_any".
freeradius-server-2.2.6/src/lib/valuepair.c:1406:2: alloc_fn: Storage is returned from allocation function "paircreate".
freeradius-server-2.2.6/src/lib/valuepair.c:174:2: alloc_fn: Storage is returned from allocation function "pairalloc".
freeradius-server-2.2.6/src/lib/valuepair.c:72:2: alloc_fn: Storage is returned from allocation function "malloc".
freeradius-server-2.2.6/src/lib/valuepair.c:72:2: var_assign: Assigning: "vp" = "malloc(312UL + name_len)".
freeradius-server-2.2.6/src/lib/valuepair.c:74:2: noescape: Resource "vp" is not freed or pointed-to in function "memset". [Note: The source code implementation of the function has been overridden by a builtin model.]
freeradius-server-2.2.6/src/lib/valuepair.c:134:2: return_alloc: Returning allocated memory "vp".
freeradius-server-2.2.6/src/lib/valuepair.c:174:2: var_assign: Assigning: "vp" = "pairalloc(da)".
freeradius-server-2.2.6/src/lib/valuepair.c:185:2: return_alloc: Returning allocated memory "vp".
freeradius-server-2.2.6/src/lib/valuepair.c:1406:2: var_assign: Assigning: "vp" = "paircreate(attr, 5)".
freeradius-server-2.2.6/src/lib/valuepair.c:1466:2: return_alloc: Returning allocated memory "vp".
freeradius-server-2.2.6/src/lib/valuepair.c:1523:3: return_alloc_fn: Directly returning storage allocated by "pairmake_any".
freeradius-server-2.2.6/src/lib/dhcp.c:647:4: var_assign: Assigning: "vp" = "pairmake(da->name, NULL, T_OP_ADD)".
freeradius-server-2.2.6/src/lib/dhcp.c:671:4: var_assign: Assigning: "*tail" = "vp".
freeradius-server-2.2.6/src/main/xlat.c:661: leaked_storage: Variable "head" going out of scope leaks the storage it points to.
Nikolai Kondrashov [Thu, 29 Jan 2015 09:52:50 +0000 (11:52 +0200)]
rlm_otp: Fix key size calculation
Take size of key array element, instead of an expression attempting to
calculate the key size, in otp_gen_state().
This makes the HMAC use the full key, instead of just 4 first bytes,
increasing key strength.
This also fixes the following Coverity error:
Error: BAD_SIZEOF (CWE-467):
freeradius-server-2.2.6/src/modules/rlm_otp/otp_radstate.c:100: bad_sizeof: Taking the size of arithmetic expression "key[0] * 16" is suspicious.
freeradius-server-2.2.6/src/modules/rlm_otp/otp_radstate.c:100: remediation: Did you intend "sizeof (key[0]) * 16"?
Nikolai Kondrashov [Thu, 29 Jan 2015 09:27:25 +0000 (11:27 +0200)]
rlm_pap: Account for terminating zero
Account for terminating '\0' character in target (raw) buffer space when
verifying supplied vp->length in rlm_pap.c normify().
Otherwise both the source (vp->vp_octets) and the target (raw) buffer
will overflow with vp->length == sizeof(raw).
This fixes the following Coverity errors:
Error: OVERRUN (CWE-119):
freeradius-server-2.2.6/src/modules/rlm_pap/rlm_pap.c:260: cond_at_most: Checking "vp->length > 255UL" implies that "vp->length" has the value which may be up to 255 on the false branch.
freeradius-server-2.2.6/src/modules/rlm_pap/rlm_pap.c:262: overrun-buffer-arg: Overrunning array "vp->data.octets" of 254 bytes by passing it to a function which accesses it at byte offset 254 using argument "vp->length" (which evaluates to 255). [Note: The source code implementation of the function has been overridden by a builtin model.]
Error: OVERRUN (CWE-119):
freeradius-server-2.2.6/src/modules/rlm_pap/rlm_pap.c:260: cond_at_most: Checking "vp->length > 255UL" implies that "vp->length" has the value which may be up to 255 on the false branch.
freeradius-server-2.2.6/src/modules/rlm_pap/rlm_pap.c:263: overrun-local: Overrunning array "raw" of 255 bytes at byte offset 255 using index "vp->length" (which evaluates to 255).
Nikolai Kondrashov [Tue, 27 Jan 2015 13:58:22 +0000 (15:58 +0200)]
Verify start_servers <= max_servers
Alan T. DeKok [Wed, 21 Jan 2015 14:08:52 +0000 (09:08 -0500)]
Note recent changes
Alan T. DeKok [Tue, 20 Jan 2015 14:46:33 +0000 (09:46 -0500)]
Fix typo. Closes #880
Alan T. DeKok [Thu, 15 Jan 2015 15:03:19 +0000 (10:03 -0500)]
More EXEEXT
Alan T. DeKok [Thu, 15 Jan 2015 14:45:27 +0000 (09:45 -0500)]
Use $(EXEEXT) for radeapclient. Closes #875
Alan T. DeKok [Fri, 9 Jan 2015 19:33:25 +0000 (14:33 -0500)]
Typos
Arran Cudbard-Bell [Wed, 31 Dec 2014 23:14:07 +0000 (18:14 -0500)]
Update copyright notices
Alan T. DeKok [Wed, 31 Dec 2014 13:25:13 +0000 (08:25 -0500)]
Sometimes we don't need to generate ephemeral RSA keys
Alan T. DeKok [Fri, 12 Dec 2014 17:04:22 +0000 (12:04 -0500)]
Don't free packet twice
Alan T. DeKok [Fri, 12 Dec 2014 12:23:59 +0000 (07:23 -0500)]
Clarify warning message
Alan T. DeKok [Wed, 10 Dec 2014 14:45:20 +0000 (09:45 -0500)]
Port detail fixes from v3.0.x
Alan T. DeKok [Wed, 10 Dec 2014 14:44:24 +0000 (09:44 -0500)]
Fix filename_escape for v2.x xlat API
Alan T. DeKok [Tue, 9 Dec 2014 20:55:38 +0000 (15:55 -0500)]
Allow spaces in certificate passwords
Arran Cudbard-Bell [Thu, 4 Dec 2014 19:49:31 +0000 (14:49 -0500)]
Backport the filename escaping fix
Alan T. DeKok [Sun, 23 Nov 2014 17:02:27 +0000 (12:02 -0500)]
Request is done..
Alan T. DeKok [Sun, 23 Nov 2014 14:49:30 +0000 (09:49 -0500)]
Mark the request to be cleaned up when there's no proxy response
Alan T. DeKok [Fri, 21 Nov 2014 16:46:29 +0000 (11:46 -0500)]
Don't set RUNNING unless a thread is running
Alan T. DeKok [Fri, 21 Nov 2014 16:39:01 +0000 (11:39 -0500)]
Remove misleading message
Alan T. DeKok [Tue, 18 Nov 2014 20:32:11 +0000 (15:32 -0500)]
Bump in preparation for 2.2.7
Alan T. DeKok [Tue, 18 Nov 2014 19:56:52 +0000 (14:56 -0500)]
Bump version number here, too
Alan T. DeKok [Tue, 18 Nov 2014 19:55:43 +0000 (14:55 -0500)]
We should have bumped to 2.2.6 a while ago
Alan T. DeKok [Tue, 18 Nov 2014 19:54:59 +0000 (14:54 -0500)]
Note for 2.2.6
Alan T. DeKok [Tue, 18 Nov 2014 16:03:25 +0000 (11:03 -0500)]
Acct-Session-Time doesn't have to exist
Alan T. DeKok [Sun, 16 Nov 2014 15:03:32 +0000 (10:03 -0500)]
Note recent changes
Alan T. DeKok [Sun, 16 Nov 2014 15:02:20 +0000 (10:02 -0500)]
Make tlsv1.2 and tlsv1.2 conditional on having them
Alan T. DeKok [Sun, 16 Nov 2014 14:42:49 +0000 (09:42 -0500)]
Allow for selective disabling of TLSv1.1 and TLSv1.2
Arran Cudbard-Bell [Tue, 11 Nov 2014 19:18:43 +0000 (14:18 -0500)]
Backport udpfromto IPv6 fixes from v3.0.x
Arran Cudbard-Bell [Tue, 11 Nov 2014 19:16:52 +0000 (14:16 -0500)]
Remove xcodebuild stuff, it's not required
Alan T. DeKok [Tue, 4 Nov 2014 12:48:08 +0000 (07:48 -0500)]
Note TLS 1.1 and 1.2
Alan T. DeKok [Mon, 3 Nov 2014 19:36:25 +0000 (14:36 -0500)]
Allow TLS 1.1 and 1.2
Alan T. DeKok [Mon, 3 Nov 2014 18:57:48 +0000 (13:57 -0500)]
Note recent changes
Alan T. DeKok [Mon, 3 Nov 2014 16:45:27 +0000 (11:45 -0500)]
Allow all UTF-8 characters
Alan T. DeKok [Wed, 29 Oct 2014 15:12:26 +0000 (11:12 -0400)]
Note recent changes
Alan T. DeKok [Wed, 29 Oct 2014 15:12:08 +0000 (11:12 -0400)]
Time zone is 2 octets, not "integer"
Alan DeKok [Tue, 28 Oct 2014 21:40:52 +0000 (17:40 -0400)]
Merge pull request #824 from jrouzierinverse/v2.x.x
Lock thread_pool.wait_mutex before forking to avoid a race condition bet...
James Rouzier [Tue, 28 Oct 2014 21:13:43 +0000 (17:13 -0400)]
Lock thread_pool.wait_mutex before forking to avoid a race condition between rad_fork, rad_waitpid and reap_children.
There is a race condition that can occur under high load where a child is reaped before being added to the waiters list.
Alan T. DeKok [Sun, 26 Oct 2014 13:57:48 +0000 (09:57 -0400)]
Do OCSP checks only if we got issuer_cert. Closes #756
Alan T. DeKok [Tue, 7 Oct 2014 14:37:27 +0000 (10:37 -0400)]
Move to SHA256. SHA1 is deprecated
Alan T. DeKok [Sun, 21 Sep 2014 20:29:07 +0000 (16:29 -0400)]
Don't use DHCP-Server-IP-Address for source IP
use Packet-Src-IP-Address instead.
And don't use server identifier for SIADDR
Alan T. DeKok [Mon, 8 Sep 2014 15:28:42 +0000 (11:28 -0400)]
Find the SUB section, not the NEXT one
Arran Cudbard-Bell [Thu, 4 Sep 2014 18:33:23 +0000 (14:33 -0400)]
Merge pull request #777 from matsimon/f5-dictionary
F5 dictionary
Alan T. DeKok [Sun, 31 Aug 2014 13:50:05 +0000 (09:50 -0400)]
Added dictionary for RFC 7268
Arran Cudbard-Bell [Thu, 12 Dec 2013 18:18:57 +0000 (10:18 -0800)]
Merge pull request #489 from spaetow/master
Adding RFC7055 (ABFAB/Moonshot RFC)
Alan T. DeKok [Sun, 7 Sep 2014 03:00:44 +0000 (23:00 -0400)]
Run format.pl
Alan T. DeKok [Sun, 31 Aug 2014 12:49:27 +0000 (08:49 -0400)]
Enable new dictionaries and fix minor issues
Mathieu Simon [Sun, 31 Aug 2014 08:36:06 +0000 (10:36 +0200)]
dictionary.trapeze: Add attribute
- Trapeze-Audit seems to be a accounting-only value that
contains logging data for audit as the attribute says.
- Since MSS software still seems to be developed by Juniper
add a Juniper reference and remove the mail address as the
domain redirects to Juniper.com these days.
Mathieu Simon [Sun, 31 Aug 2014 09:28:27 +0000 (11:28 +0200)]
Add 3 attributes to the Bay dict. (Nortel/Avaya)
Found in the Avaya AAA for ERS and ES Technical Configuration
Guide from 2010 as publicly available at Avaya.
Some attributes have been changed by Avaya but left unchanged here
to not break existing installations.
Mathieu Simon [Sun, 11 May 2014 20:46:38 +0000 (22:46 +0200)]
dictionary.altiga: Fix small typo & space-to-tab
Try unifying mixed usage of spaces and tabs (later seems more common)
then pass with the formatter.
Mathieu Simon [Sun, 9 Feb 2014 09:55:56 +0000 (10:55 +0100)]
Add newly found attribute to dictionary.telebit
Found in: Cisco Prime Access Registrar 6.0.1 Users Guide
Chapter: RADIUS Attributes.
Telebit has been bought quite some time ago, that's why
the references come from Cisco.
Mathieu Simon [Sun, 31 Aug 2014 09:07:46 +0000 (11:07 +0200)]
Add Ruckus dictionary
Compiled out of a Ruckus user guides and tech notes
publicly available on the Ruckus website.
Mathieu Simon [Sun, 11 May 2014 20:44:26 +0000 (22:44 +0200)]
Add Compatible Systems dictionary
Add Compatible Systems Corp. dictionary as found in the
Cisco Prime Access Registrar 6.1 User Guide.
Includes historical note about Compatible Systems's acquisition
in case someone is (still) looking for documentation.
Alan T. DeKok [Fri, 29 Aug 2014 16:15:31 +0000 (12:15 -0400)]
As posted to the list
Conflicts:
share/dictionary.bluecoat
Alan T. DeKok [Wed, 3 Sep 2014 15:02:28 +0000 (11:02 -0400)]
Free output bio, too
Alan T. DeKok [Wed, 3 Sep 2014 14:52:54 +0000 (10:52 -0400)]
Print debug messages only in debug mode. Closes #779
Alan T. DeKok [Tue, 2 Sep 2014 21:17:18 +0000 (17:17 -0400)]
note recent changes
Alan T. DeKok [Tue, 2 Sep 2014 21:12:58 +0000 (17:12 -0400)]
in client_add() add to a virtual server is first argument is NULL
Alan T. DeKok [Fri, 29 Aug 2014 16:15:31 +0000 (12:15 -0400)]
As posted to the list
Alan T. DeKok [Fri, 22 Aug 2014 11:40:29 +0000 (07:40 -0400)]
Note recent changes
Alan T. DeKok [Fri, 22 Aug 2014 10:51:06 +0000 (06:51 -0400)]
Move checks for "sig_t" to AC_CHECK_TYPE. Fixes #765
Alan T. DeKok [Fri, 15 Aug 2014 12:59:49 +0000 (14:59 +0200)]
Be more descriptive in complaints
Alan T. DeKok [Thu, 14 Aug 2014 08:29:54 +0000 (10:29 +0200)]
Allow for enforcement in post-auth
Which is really where they should be
Alan T. DeKok [Sat, 9 Aug 2014 17:04:12 +0000 (19:04 +0200)]
Print names for packet types
Arran Cudbard-Bell [Tue, 29 Jul 2014 15:39:02 +0000 (11:39 -0400)]
Merge pull request #747 from simonflood/patch-1
Update radiusd-logrotate
Simon Flood [Tue, 29 Jul 2014 15:37:59 +0000 (16:37 +0100)]
Update radiusd-logrotate
Added endscript on logrotate
Arran Cudbard-Bell [Mon, 21 Jul 2014 10:57:12 +0000 (06:57 -0400)]
Merge pull request #738 from sylphlin/v2.x.x
Add the gigawords calculation for MSSQL in accounting stop SQL clause
root [Mon, 21 Jul 2014 06:25:03 +0000 (06:25 +0000)]
Add the gigawords calculation for MSSQL in accounting stop SQL clause
Alan T. DeKok [Mon, 7 Jul 2014 16:09:28 +0000 (12:09 -0400)]
As posted to the list
Alan T. DeKok [Mon, 7 Jul 2014 16:07:34 +0000 (12:07 -0400)]
whitespace
Arran Cudbard-Bell [Tue, 17 Jun 2014 09:09:24 +0000 (10:09 +0100)]
Relax libssl checks
Alan T. DeKok [Sat, 14 Jun 2014 13:28:15 +0000 (09:28 -0400)]
Don't use strtok. Closes #689
Port perl_xlat() from v3.
Arran Cudbard-Bell [Fri, 13 Jun 2014 10:48:11 +0000 (11:48 +0100)]
Merge pull request #685 from sylphlin/v2.x.x
Add the missing postauth query for mssql
Sylph Lin [Fri, 13 Jun 2014 10:18:29 +0000 (10:18 +0000)]
Add postauth_query for mssql
Arran Cudbard-Bell [Fri, 13 Jun 2014 08:12:08 +0000 (09:12 +0100)]
Update ChangeLog
Arran Cudbard-Bell [Wed, 11 Jun 2014 14:08:44 +0000 (15:08 +0100)]
Don't stop parsing on padding options
Arran Cudbard-Bell [Wed, 11 Jun 2014 14:08:25 +0000 (15:08 +0100)]
Whitespace
Alan T. DeKok [Tue, 10 Jun 2014 15:41:50 +0000 (11:41 -0400)]
Make redundant-load-balance work again.
Arran Cudbard-Bell [Tue, 10 Jun 2014 09:11:42 +0000 (10:11 +0100)]
Fix potential read into uninitialised memory and/or data corruption in rlm_pap normify() when normifying octets type attributes
Alan T. DeKok [Mon, 2 Jun 2014 14:34:40 +0000 (10:34 -0400)]
sites-available/ is also config no-replace
Arran Cudbard-Bell [Mon, 26 May 2014 13:47:06 +0000 (14:47 +0100)]
Merge pull request #661 from fajarnugraha/v2.x.x-suse-
20140526
V2.x.x suse specfile build fix
Fajar A. Nugraha [Mon, 26 May 2014 13:30:19 +0000 (20:30 +0700)]
suse: fixes for dialupadmin package
Fajar A. Nugraha [Mon, 26 May 2014 11:47:42 +0000 (18:47 +0700)]
suse: add raddb/panic.gdb to %files
Arran Cudbard-Bell [Fri, 23 May 2014 14:05:05 +0000 (15:05 +0100)]
Merge pull request #655 from fajarnugraha/v2.x.x-redhat-
20140523
V2.x.x redhat
20140523
Fajar A. Nugraha [Fri, 23 May 2014 12:50:28 +0000 (19:50 +0700)]
redhat: add raddb/panic.gdb to %files
Alan T. DeKok [Wed, 21 May 2014 14:28:46 +0000 (10:28 -0400)]
Add "show module status"
Arran Cudbard-Bell [Sat, 17 May 2014 12:09:52 +0000 (13:09 +0100)]
Merge pull request #642 from alanbuxey/patch-2
comment out the mixed case
Alan Buxey [Sat, 17 May 2014 12:08:58 +0000 (13:08 +0100)]
comment out the mixed case
same patch as in HEAD and MASTER - stops policies that should help sites from causing issues.
Alan T. DeKok [Thu, 15 May 2014 13:45:54 +0000 (09:45 -0400)]
Added new dictionary
Alan T. DeKok [Tue, 13 May 2014 15:59:09 +0000 (11:59 -0400)]
Put last commit into correct place
Alan T. DeKok [Tue, 13 May 2014 15:49:38 +0000 (11:49 -0400)]
Note component and module for unfinished request
Alan T. DeKok [Tue, 13 May 2014 15:45:29 +0000 (11:45 -0400)]
Be more specific about reasons for discard