Alan T. DeKok [Wed, 11 Dec 2013 20:10:12 +0000 (15:10 -0500)]
Ready for release
Alan T. DeKok [Fri, 6 Dec 2013 14:58:08 +0000 (09:58 -0500)]
If we can't decode the Password-With-Header, assume Cleartext-Password
Arran Cudbard-Bell [Mon, 2 Dec 2013 10:08:07 +0000 (05:08 -0500)]
Update ChangeLog
Arran Cudbard-Bell [Fri, 29 Nov 2013 21:28:48 +0000 (21:28 +0000)]
Allow zero length basedn strings
Arran Cudbard-Bell [Fri, 29 Nov 2013 21:26:34 +0000 (21:26 +0000)]
Whitespace fixes
Alan T. DeKok [Sun, 1 Dec 2013 13:58:24 +0000 (08:58 -0500)]
Note recent changes
Alan T. DeKok [Sun, 1 Dec 2013 13:56:16 +0000 (08:56 -0500)]
Don't re-initialize SSL
Alan T. DeKok [Sun, 1 Dec 2013 13:55:36 +0000 (08:55 -0500)]
Load error strings, too
Alan T. DeKok [Sun, 1 Dec 2013 13:53:56 +0000 (08:53 -0500)]
Initialize SSL library as soon as the server starts
Alan T. DeKok [Sat, 30 Nov 2013 14:57:05 +0000 (09:57 -0500)]
More checks and asserts for wait_for_child_to_die()
Alan T. DeKok [Sat, 30 Nov 2013 14:48:38 +0000 (09:48 -0500)]
Set REQUEST_DONE as the *last* thing in the child thread
Alan T. DeKok [Sat, 30 Nov 2013 14:39:21 +0000 (09:39 -0500)]
Skip code if we fail re-setting up the request
Alan T. DeKok [Sat, 30 Nov 2013 14:38:10 +0000 (09:38 -0500)]
Added assertion about child threads. This may help debugging
race conditions
Alan T. DeKok [Wed, 27 Nov 2013 04:02:12 +0000 (23:02 -0500)]
Added "status" to the init script
Alan T. DeKok [Tue, 26 Nov 2013 13:52:20 +0000 (08:52 -0500)]
From extreme
Alan T. DeKok [Mon, 25 Nov 2013 20:38:28 +0000 (15:38 -0500)]
Ensure a one-way check
Alan T. DeKok [Mon, 25 Nov 2013 15:22:41 +0000 (10:22 -0500)]
Do allocate_clear no more than once per second
To lowe the load on the database.
Alan T. DeKok [Mon, 25 Nov 2013 15:19:16 +0000 (10:19 -0500)]
Put a separate transaction around allocate_clear
to deal with MySQL issues. It reduces deadlocks
Arran Cudbard-Bell [Thu, 21 Nov 2013 10:46:01 +0000 (05:46 -0500)]
Note another bug
Alan T. DeKok [Wed, 20 Nov 2013 15:47:52 +0000 (10:47 -0500)]
Note recent changes
Alan T. DeKok [Tue, 19 Nov 2013 14:05:24 +0000 (09:05 -0500)]
Use correct field for attribute value
Arran Cudbard-Bell [Mon, 18 Nov 2013 13:42:56 +0000 (13:42 +0000)]
Missed threads.h from the list of makefile headers, meaning it wasn't installed, meaning nothing can be built against the installed headers.
Arran Cudbard-Bell [Wed, 6 Nov 2013 17:37:06 +0000 (17:37 +0000)]
Add the efficient IP vendor dictionary
Some guy sent over the ACS definitions, so why not...
Alan T. DeKok [Tue, 5 Nov 2013 02:19:21 +0000 (18:19 -0800)]
Useful to have this
Alan T. DeKok [Tue, 5 Nov 2013 02:18:42 +0000 (18:18 -0800)]
As sent via email
Alan T. DeKok [Fri, 1 Nov 2013 17:40:51 +0000 (13:40 -0400)]
It's OK if there's no Post-Proxy-Type Reject
Alan T. DeKok [Wed, 30 Oct 2013 15:32:31 +0000 (11:32 -0400)]
Enable more features for the travis build
Alan T. DeKok [Wed, 30 Oct 2013 15:31:02 +0000 (11:31 -0400)]
Bump for 2.2.3
Alan T. DeKok [Wed, 30 Oct 2013 15:30:45 +0000 (11:30 -0400)]
Fix errors
Alan T. DeKok [Wed, 30 Oct 2013 13:30:38 +0000 (09:30 -0400)]
Update for 2.2.2
Alan T. DeKok [Wed, 30 Oct 2013 12:44:15 +0000 (08:44 -0400)]
Remove duplicate
Alan T. DeKok [Wed, 30 Oct 2013 12:28:05 +0000 (08:28 -0400)]
Note changes for 2.2.2
Alan T. DeKok [Mon, 28 Oct 2013 21:23:04 +0000 (14:23 -0700)]
Fix const ordering
Alan T. DeKok [Mon, 28 Oct 2013 21:22:00 +0000 (14:22 -0700)]
Fixes for v2.x.x
Alan T. DeKok [Mon, 28 Oct 2013 21:08:08 +0000 (17:08 -0400)]
Sanity check arguments
If there's no interface, don't update anything. It will generate
an error. Instead, return an error saying "no interface"
Manual merge of
56fbc3ae8
Alan T. DeKok [Mon, 28 Oct 2013 21:06:58 +0000 (17:06 -0400)]
Various fixes for DHCP.
- include sys/ioctl.h, so we know if the system supports SIOCSARP
- add listen_socket_t to dhcp_socket_t, so that we can use all of
it's fields
- for systems supporting SIOCSARP, check if "interface" is defined,
and if not, refuse to do ARP, as it requires an interface
Manual merge of
649cc4f12
Alan T. DeKok [Fri, 25 Oct 2013 14:08:36 +0000 (10:08 -0400)]
Note changes for Mavericks
Alan T. DeKok [Fri, 25 Oct 2013 13:15:24 +0000 (09:15 -0400)]
Port OpenSSL build fixes from master.
All of the OpenSSL checks in configure.in have been replaced
with the code from master.
The sub-Makefiles which reference OPENSSL_* have had those
references deleted. The CFLAGS and LIBS now have the requisite
definitions.
Set LTCFLAGS=" " to work around stupid libtool issues.
No, the libtool authors aren't smarter than me. Their "magic"
actively breaks things I want to do. Which are valid. And which
work in a NORMAL CC/LD environment, without their idiocy.
I'm happy 3.x and "master" don't have libtoo. It's a blight upon
the face of the earth.
Alan T. DeKok [Fri, 25 Oct 2013 00:11:57 +0000 (20:11 -0400)]
Work around autoconf and shell issues.
Which expect paths to NOT have spaces in them. Which they do
on OSX.
Alan T. DeKok [Fri, 25 Oct 2013 00:10:54 +0000 (20:10 -0400)]
Re-arrange paths for -I and -L.
So that paths passed on the command line, or in ENV are preferred
to ones which we auto-add
Manual port of
74b688b39b
Arran Cudbard-Bell [Thu, 24 Oct 2013 16:07:25 +0000 (17:07 +0100)]
Fix typo in version.c
Arran Cudbard-Bell [Thu, 24 Oct 2013 16:06:43 +0000 (17:06 +0100)]
Ignore dSYM extension
Arran Cudbard-Bell [Thu, 24 Oct 2013 15:18:19 +0000 (16:18 +0100)]
Ignore sw_vers subversion when selecting SDK
Arran Cudbard-Bell [Wed, 23 Oct 2013 22:30:09 +0000 (23:30 +0100)]
Fix clang build under mavericks (OSX 10.9)
Alan T. DeKok [Wed, 23 Oct 2013 15:18:36 +0000 (11:18 -0400)]
recvfrom returns ssize_t, not size_t
Alan T. DeKok [Mon, 21 Oct 2013 13:07:11 +0000 (09:07 -0400)]
Restore old behavior for if(...)
Manual pull of
4c389d44
Alan T. DeKok [Wed, 16 Oct 2013 15:39:24 +0000 (11:39 -0400)]
Note recent changes
Alan T. DeKok [Wed, 16 Oct 2013 15:34:32 +0000 (11:34 -0400)]
add ntlm_auth_timeout option to rlm_mschap
Manual port of commit #
ab43d6a0
Alan T. DeKok [Wed, 16 Oct 2013 15:31:03 +0000 (11:31 -0400)]
add timeout option to rlm_exec
Manual port of commit #
16da20417
Alan T. DeKok [Wed, 16 Oct 2013 15:25:57 +0000 (11:25 -0400)]
Add timeout arg to radius_exec_program, with default EXEC_TIMEOUT
Manual port of commit #1da1208
Arran Cudbard-Bell [Mon, 14 Oct 2013 11:37:35 +0000 (12:37 +0100)]
pArgs and pRet my legitimately be NULL on error, so we should use Py_XDECREF instead of Py_DECREF, Closes #449
Alan T. DeKok [Mon, 7 Oct 2013 12:57:35 +0000 (08:57 -0400)]
Move assert to run-time check
Alan T. DeKok [Sat, 5 Oct 2013 15:21:06 +0000 (11:21 -0400)]
Make request->child_pid into request->thread_id
There's no reason to use a pthread ID. We can just expose
the thread number. This makes it easier to debug threading issues
Alan T. DeKok [Fri, 4 Oct 2013 23:45:48 +0000 (19:45 -0400)]
More cleanups of request_post_handler.
In the forlorn hope that we can fix the proxy issue
Alan T. DeKok [Fri, 4 Oct 2013 23:32:07 +0000 (19:32 -0400)]
Set module to "" to avoid confusing debug output
Alan T. DeKok [Fri, 11 Nov 2011 13:01:14 +0000 (14:01 +0100)]
Set fr_log_fp when using '-l'
So that we can get debugging from libfreeradius-radius
Alan T. DeKok [Fri, 4 Oct 2013 23:19:05 +0000 (19:19 -0400)]
Print string with \n rather than doing it as a separate call
Which makes threaded debugging easier to understand
Alan T. DeKok [Thu, 3 Oct 2013 14:39:09 +0000 (10:39 -0400)]
Catch one more corner case from previous commit
Alan T. DeKok [Thu, 3 Oct 2013 14:19:44 +0000 (10:19 -0400)]
Mark request as NO_SUCH_CHILD_PID on request done
Alan T. DeKok [Mon, 30 Sep 2013 19:57:32 +0000 (15:57 -0400)]
Silently skip empty subgroups
Alan T. DeKok [Mon, 30 Sep 2013 15:11:23 +0000 (11:11 -0400)]
Note recent changes
Alan T. DeKok [Mon, 30 Sep 2013 15:01:48 +0000 (11:01 -0400)]
Don't set parent priority when calling a child
It's wrong.
Arran Cudbard-Bell [Sun, 29 Sep 2013 14:41:20 +0000 (15:41 +0100)]
Fix crazy indentation
Arran Cudbard-Bell [Sun, 29 Sep 2013 14:38:52 +0000 (15:38 +0100)]
Segfault in libperl when doing perl_xlat(). Fix by kvainkainen. Closes #436
In rlm_perl.c Perl interpreter cloning is controlled by #ifdef USE_ITHREADS.
However, for some unknown reason in perl_xlat() #ifndef WITH_ITHREADS is
used instead. At least my Perl does not have WITH_ITHREADS compile option,
meaning all perl_xlat() calls are handled by same Perl instance.
If you run Freeradius in multithread mode, this causes segfault in libperl
when two threads do perl_xlat() simultaneously.
Arran Cudbard-Bell [Sun, 29 Sep 2013 14:35:17 +0000 (15:35 +0100)]
Whitespace fixes in rlm_perl.c
Alan T. DeKok [Sun, 29 Sep 2013 13:07:51 +0000 (09:07 -0400)]
Minor change to use update actions
Alan T. DeKok [Sun, 29 Sep 2013 13:07:40 +0000 (09:07 -0400)]
Initialize actions for UPDATE sections
Alan T. DeKok [Sun, 29 Sep 2013 00:03:05 +0000 (20:03 -0400)]
Add missing close brace
Alan T. DeKok [Sat, 28 Sep 2013 14:37:54 +0000 (10:37 -0400)]
Fix priority handling.
Arran Cudbard-Bell [Fri, 20 Sep 2013 16:49:30 +0000 (17:49 +0100)]
FreeRADIUS 2.2.1: check_cert_issuer in EAP-TLS broken in presence of X509v3 extensions - Patch from David Wood
Arran Cudbard-Bell [Fri, 20 Sep 2013 16:42:48 +0000 (17:42 +0100)]
Remove spurious whitespace
Alan T. DeKok [Fri, 20 Sep 2013 00:02:51 +0000 (20:02 -0400)]
Bump for version 2.2.2
Alan T. DeKok [Thu, 19 Sep 2013 01:57:22 +0000 (21:57 -0400)]
Fix typo
Alan T. DeKok [Thu, 19 Sep 2013 01:54:25 +0000 (21:54 -0400)]
Short-circuit "case"
Alan T. DeKok [Tue, 17 Sep 2013 21:06:40 +0000 (17:06 -0400)]
Update branch name for 2.x.x
Alan T. DeKok [Tue, 17 Sep 2013 21:05:53 +0000 (17:05 -0400)]
Delete trailing space
Arran Cudbard-Bell [Mon, 16 Sep 2013 14:57:28 +0000 (15:57 +0100)]
Mark rlm_python as THREAD_UNSAFE for the 2.2.1 release, as TLS is not currently working correctly. This will be fixed later
Alan T. DeKok [Mon, 16 Sep 2013 13:17:24 +0000 (09:17 -0400)]
Note final changes for v2.2.1
Alan T. DeKok [Fri, 13 Sep 2013 12:44:37 +0000 (08:44 -0400)]
Make max_requests_per_server work
Arran Cudbard-Bell [Mon, 9 Sep 2013 23:46:05 +0000 (00:46 +0100)]
Wrap ASCTIME_R
Alan T. DeKok [Sat, 7 Sep 2013 15:36:25 +0000 (11:36 -0400)]
Latest updates
Alan T. DeKok [Sat, 7 Sep 2013 15:30:37 +0000 (11:30 -0400)]
Port fix for #425 from commit
d9c798b4e
Alan T. DeKok [Fri, 6 Sep 2013 21:08:08 +0000 (17:08 -0400)]
Port the new modcall code from v3.
It's smaller and simpler than the previous code
Arran Cudbard-Bell [Wed, 28 Aug 2013 08:26:56 +0000 (09:26 +0100)]
and one more..
Arran Cudbard-Bell [Wed, 28 Aug 2013 08:15:12 +0000 (09:15 +0100)]
Fixup dictionary formatting
Arran Cudbard-Bell [Wed, 28 Aug 2013 08:13:43 +0000 (09:13 +0100)]
Add brocade dictionary
Alan T. DeKok [Sat, 17 Aug 2013 18:10:09 +0000 (14:10 -0400)]
Updates
Alan T. DeKok [Sat, 10 Aug 2013 01:38:24 +0000 (21:38 -0400)]
%{foo:1} is a module if "foo" isn't a dictionary attribute
Alan T. DeKok [Fri, 9 Aug 2013 15:15:44 +0000 (11:15 -0400)]
Remove from the proxy list if we can't insert it
Alan T. DeKok [Wed, 7 Aug 2013 01:05:07 +0000 (21:05 -0400)]
Updates from latest doc
Alan T. DeKok [Tue, 6 Aug 2013 20:10:19 +0000 (16:10 -0400)]
Broadsoft dictionary
Alan T. DeKok [Tue, 23 Jul 2013 11:44:09 +0000 (07:44 -0400)]
Print correct value
Arran Cudbard-Bell [Mon, 22 Jul 2013 10:48:34 +0000 (11:48 +0100)]
Fix warnings
Arran Cudbard-Bell [Mon, 22 Jul 2013 10:18:45 +0000 (11:18 +0100)]
Use internal function for hex encoding, sprintf gives odd results
Arran Cudbard-Bell [Fri, 19 Jul 2013 21:35:19 +0000 (22:35 +0100)]
Fix typo in TLS macros
Arran Cudbard-Bell [Thu, 18 Jul 2013 16:40:22 +0000 (12:40 -0400)]
Note TLS fixes for python
Arran Cudbard-Bell [Thu, 18 Jul 2013 16:20:16 +0000 (17:20 +0100)]
mod_error needs to be called with the GIL even though the server is running in single threaded mode, and the error is during instantiation
Arran Cudbard-Bell [Thu, 18 Jul 2013 16:08:41 +0000 (17:08 +0100)]
Trip whitespace from base64 strings
Arran Cudbard-Bell [Thu, 18 Jul 2013 16:08:27 +0000 (17:08 +0100)]
More python fixes
Arran Cudbard-Bell [Thu, 18 Jul 2013 12:16:30 +0000 (13:16 +0100)]
Do python cleanup properly on thread exit