Alan T. DeKok [Wed, 19 Mar 2014 17:20:49 +0000 (13:20 -0400)]
Update for release date
Alan T. DeKok [Wed, 19 Mar 2014 17:17:37 +0000 (13:17 -0400)]
Update spec files for 2.2.4
Alan T. DeKok [Tue, 18 Mar 2014 19:28:20 +0000 (15:28 -0400)]
Fix for latest functionality of the format script
Alan T. DeKok [Mon, 17 Mar 2014 22:20:11 +0000 (18:20 -0400)]
If the request was unicast, the reply can be unicast, too
Alan T. DeKok [Mon, 17 Mar 2014 22:19:47 +0000 (18:19 -0400)]
Fix typo
Alan T. DeKok [Thu, 13 Mar 2014 17:41:40 +0000 (13:41 -0400)]
Fix typos
Alan T. DeKok [Thu, 13 Mar 2014 15:43:15 +0000 (11:43 -0400)]
Note recent changes
Alan T. DeKok [Thu, 13 Mar 2014 15:42:45 +0000 (11:42 -0400)]
Port DHCP fixes from v3.0.x
for giaddr address and port.
Alan T. DeKok [Thu, 13 Mar 2014 15:22:37 +0000 (11:22 -0400)]
Document src_ipaddr in more detail
Alan T. DeKok [Thu, 13 Mar 2014 15:18:08 +0000 (11:18 -0400)]
Set src IP on more situations.
If the admin set "ipaddr = *", and no "src_ipaddr = ...", then
we used to send packets from 0.0.0.0. That's wrong.
We now look for server identifier or server IP address.
If one of those is found, we use that as the source IP
Alan T. DeKok [Wed, 12 Mar 2014 22:06:04 +0000 (18:06 -0400)]
Fix typo
Alan T. DeKok [Wed, 12 Mar 2014 21:36:55 +0000 (17:36 -0400)]
Fix typos
Alan T. DeKok [Wed, 12 Mar 2014 15:03:15 +0000 (11:03 -0400)]
Update example text
Alan T. DeKok [Mon, 10 Mar 2014 18:36:03 +0000 (14:36 -0400)]
Note recent changes
Alan T. DeKok [Mon, 10 Mar 2014 18:34:27 +0000 (14:34 -0400)]
Update documentation for people who misunderstand it
Alan T. DeKok [Thu, 27 Feb 2014 16:12:55 +0000 (11:12 -0500)]
Allow module status to be forced to any module code
Arran Cudbard-Bell [Fri, 28 Feb 2014 10:04:36 +0000 (10:04 +0000)]
Remove branch status heading
Arran Cudbard-Bell [Thu, 20 Feb 2014 18:30:56 +0000 (18:30 +0000)]
Backport stderr/stdout fixes from v3.0.x
Alan T. DeKok [Wed, 19 Feb 2014 02:19:35 +0000 (21:19 -0500)]
Both name2's may be NULL
Alan T. DeKok [Tue, 18 Feb 2014 17:01:40 +0000 (12:01 -0500)]
Be more careful in name2_cmp
Alan T. DeKok [Tue, 18 Feb 2014 17:07:26 +0000 (12:07 -0500)]
back-port changes to sub_find_name2 from v3.0.x
Alan T. DeKok [Thu, 13 Feb 2014 14:29:35 +0000 (09:29 -0500)]
Increase buffer size. Use output buffer size as limit for hex2bin
Alan T. DeKok [Wed, 12 Feb 2014 17:01:21 +0000 (12:01 -0500)]
It's OK if dh_params are non-existent
Alan T. DeKok [Tue, 11 Feb 2014 15:13:27 +0000 (10:13 -0500)]
Cache CUI, too
Alan T. DeKok [Fri, 7 Feb 2014 16:53:16 +0000 (11:53 -0500)]
Spaces are good
Arran Cudbard-Bell [Wed, 29 Jan 2014 20:25:36 +0000 (20:25 +0000)]
Update ChangeLog
Arran Cudbard-Bell [Tue, 28 Jan 2014 14:59:08 +0000 (14:59 +0000)]
Update ChangeLog
Arran Cudbard-Bell [Tue, 28 Jan 2014 14:36:23 +0000 (14:36 +0000)]
Don't use IP_SENDSRCADDR (in sendfromto) if on FreeBSD and the socket were using is bound to a specific IP
FreeBSD is extra pedantic about the use of IP_SENDSRCADDR, and sendmsg will fail with EINVAL if IP_SENDSRCADDR is used with a socket which is bound to something other than INADDR_ANY.
Arran Cudbard-Bell [Tue, 28 Jan 2014 14:35:49 +0000 (14:35 +0000)]
Whitespace
Alan T. DeKok [Mon, 27 Jan 2014 20:30:36 +0000 (15:30 -0500)]
request->proxy_reply may be NULL
Arran Cudbard-Bell [Mon, 27 Jan 2014 18:02:50 +0000 (18:02 +0000)]
Include signal.h
Arran Cudbard-Bell [Mon, 27 Jan 2014 17:47:55 +0000 (17:47 +0000)]
Backport panic_action
Seeing as were probably going to end up supporting v2.x.x for a while longer...
Arran Cudbard-Bell [Mon, 27 Jan 2014 17:39:14 +0000 (17:39 +0000)]
Whitespace
Arran Cudbard-Bell [Sun, 19 Jan 2014 09:13:44 +0000 (09:13 +0000)]
Add missing pipe
Arran Cudbard-Bell [Fri, 17 Jan 2014 16:33:53 +0000 (16:33 +0000)]
Fix typo (we don't want to fork twice)
Alan T. DeKok [Fri, 17 Jan 2014 15:43:15 +0000 (10:43 -0500)]
Note recent changes
Alan T. DeKok [Fri, 17 Jan 2014 15:27:57 +0000 (10:27 -0500)]
Fix typo.
Alan T. DeKok [Fri, 17 Jan 2014 14:35:51 +0000 (09:35 -0500)]
The "catch all" is -1, not < 0.
in v2, the attributes are still signed
Alan T. DeKok [Thu, 9 Jan 2014 15:27:37 +0000 (10:27 -0500)]
Note recent changes
Alan T. DeKok [Thu, 9 Jan 2014 15:24:47 +0000 (10:24 -0500)]
Patch to use --tag=CC. Fixes #497
Alan T. DeKok [Thu, 9 Jan 2014 13:29:50 +0000 (08:29 -0500)]
Session / delay times are unsigned int
Arran Cudbard-Bell [Thu, 9 Jan 2014 12:16:44 +0000 (12:16 +0000)]
Revert "Update ChangeLog" (github deleted lines at the end of the file)
This reverts commit
6e0b7bceb125b6b8a72cd08815f23db140685a23.
Arran Cudbard-Bell [Tue, 7 Jan 2014 20:15:37 +0000 (15:15 -0500)]
Update ChangeLog
Arran Cudbard-Bell [Tue, 7 Jan 2014 20:11:57 +0000 (20:11 +0000)]
Report a non-zero exit status if after forking, the child encounters an error during the rest of server initialisation
Arran Cudbard-Bell [Tue, 7 Jan 2014 20:10:39 +0000 (20:10 +0000)]
whitespace
Arran Cudbard-Bell [Mon, 6 Jan 2014 15:06:36 +0000 (15:06 +0000)]
Disable proxy loopback check
We will never provide a side effects free alternative to proxy requests to another internal virtual server in the 2.1.x branch.
Arran Cudbard-Bell [Mon, 6 Jan 2014 15:05:42 +0000 (15:05 +0000)]
whitespace
Arran Cudbard-Bell [Mon, 16 Dec 2013 12:45:44 +0000 (12:45 +0000)]
bump version
Alan T. DeKok [Wed, 11 Dec 2013 20:10:12 +0000 (15:10 -0500)]
Ready for release
Alan T. DeKok [Fri, 6 Dec 2013 14:58:08 +0000 (09:58 -0500)]
If we can't decode the Password-With-Header, assume Cleartext-Password
Arran Cudbard-Bell [Mon, 2 Dec 2013 10:08:07 +0000 (05:08 -0500)]
Update ChangeLog
Arran Cudbard-Bell [Fri, 29 Nov 2013 21:28:48 +0000 (21:28 +0000)]
Allow zero length basedn strings
Arran Cudbard-Bell [Fri, 29 Nov 2013 21:26:34 +0000 (21:26 +0000)]
Whitespace fixes
Alan T. DeKok [Sun, 1 Dec 2013 13:58:24 +0000 (08:58 -0500)]
Note recent changes
Alan T. DeKok [Sun, 1 Dec 2013 13:56:16 +0000 (08:56 -0500)]
Don't re-initialize SSL
Alan T. DeKok [Sun, 1 Dec 2013 13:55:36 +0000 (08:55 -0500)]
Load error strings, too
Alan T. DeKok [Sun, 1 Dec 2013 13:53:56 +0000 (08:53 -0500)]
Initialize SSL library as soon as the server starts
Alan T. DeKok [Sat, 30 Nov 2013 14:57:05 +0000 (09:57 -0500)]
More checks and asserts for wait_for_child_to_die()
Alan T. DeKok [Sat, 30 Nov 2013 14:48:38 +0000 (09:48 -0500)]
Set REQUEST_DONE as the *last* thing in the child thread
Alan T. DeKok [Sat, 30 Nov 2013 14:39:21 +0000 (09:39 -0500)]
Skip code if we fail re-setting up the request
Alan T. DeKok [Sat, 30 Nov 2013 14:38:10 +0000 (09:38 -0500)]
Added assertion about child threads. This may help debugging
race conditions
Alan T. DeKok [Wed, 27 Nov 2013 04:02:12 +0000 (23:02 -0500)]
Added "status" to the init script
Alan T. DeKok [Tue, 26 Nov 2013 13:52:20 +0000 (08:52 -0500)]
From extreme
Alan T. DeKok [Mon, 25 Nov 2013 20:38:28 +0000 (15:38 -0500)]
Ensure a one-way check
Alan T. DeKok [Mon, 25 Nov 2013 15:22:41 +0000 (10:22 -0500)]
Do allocate_clear no more than once per second
To lowe the load on the database.
Alan T. DeKok [Mon, 25 Nov 2013 15:19:16 +0000 (10:19 -0500)]
Put a separate transaction around allocate_clear
to deal with MySQL issues. It reduces deadlocks
Arran Cudbard-Bell [Thu, 21 Nov 2013 10:46:01 +0000 (05:46 -0500)]
Note another bug
Alan T. DeKok [Wed, 20 Nov 2013 15:47:52 +0000 (10:47 -0500)]
Note recent changes
Alan T. DeKok [Tue, 19 Nov 2013 14:05:24 +0000 (09:05 -0500)]
Use correct field for attribute value
Arran Cudbard-Bell [Mon, 18 Nov 2013 13:42:56 +0000 (13:42 +0000)]
Missed threads.h from the list of makefile headers, meaning it wasn't installed, meaning nothing can be built against the installed headers.
Arran Cudbard-Bell [Wed, 6 Nov 2013 17:37:06 +0000 (17:37 +0000)]
Add the efficient IP vendor dictionary
Some guy sent over the ACS definitions, so why not...
Alan T. DeKok [Tue, 5 Nov 2013 02:19:21 +0000 (18:19 -0800)]
Useful to have this
Alan T. DeKok [Tue, 5 Nov 2013 02:18:42 +0000 (18:18 -0800)]
As sent via email
Alan T. DeKok [Fri, 1 Nov 2013 17:40:51 +0000 (13:40 -0400)]
It's OK if there's no Post-Proxy-Type Reject
Alan T. DeKok [Wed, 30 Oct 2013 15:32:31 +0000 (11:32 -0400)]
Enable more features for the travis build
Alan T. DeKok [Wed, 30 Oct 2013 15:31:02 +0000 (11:31 -0400)]
Bump for 2.2.3
Alan T. DeKok [Wed, 30 Oct 2013 15:30:45 +0000 (11:30 -0400)]
Fix errors
Alan T. DeKok [Wed, 30 Oct 2013 13:30:38 +0000 (09:30 -0400)]
Update for 2.2.2
Alan T. DeKok [Wed, 30 Oct 2013 12:44:15 +0000 (08:44 -0400)]
Remove duplicate
Alan T. DeKok [Wed, 30 Oct 2013 12:28:05 +0000 (08:28 -0400)]
Note changes for 2.2.2
Alan T. DeKok [Mon, 28 Oct 2013 21:23:04 +0000 (14:23 -0700)]
Fix const ordering
Alan T. DeKok [Mon, 28 Oct 2013 21:22:00 +0000 (14:22 -0700)]
Fixes for v2.x.x
Alan T. DeKok [Mon, 28 Oct 2013 21:08:08 +0000 (17:08 -0400)]
Sanity check arguments
If there's no interface, don't update anything. It will generate
an error. Instead, return an error saying "no interface"
Manual merge of
56fbc3ae8
Alan T. DeKok [Mon, 28 Oct 2013 21:06:58 +0000 (17:06 -0400)]
Various fixes for DHCP.
- include sys/ioctl.h, so we know if the system supports SIOCSARP
- add listen_socket_t to dhcp_socket_t, so that we can use all of
it's fields
- for systems supporting SIOCSARP, check if "interface" is defined,
and if not, refuse to do ARP, as it requires an interface
Manual merge of
649cc4f12
Alan T. DeKok [Fri, 25 Oct 2013 14:08:36 +0000 (10:08 -0400)]
Note changes for Mavericks
Alan T. DeKok [Fri, 25 Oct 2013 13:15:24 +0000 (09:15 -0400)]
Port OpenSSL build fixes from master.
All of the OpenSSL checks in configure.in have been replaced
with the code from master.
The sub-Makefiles which reference OPENSSL_* have had those
references deleted. The CFLAGS and LIBS now have the requisite
definitions.
Set LTCFLAGS=" " to work around stupid libtool issues.
No, the libtool authors aren't smarter than me. Their "magic"
actively breaks things I want to do. Which are valid. And which
work in a NORMAL CC/LD environment, without their idiocy.
I'm happy 3.x and "master" don't have libtoo. It's a blight upon
the face of the earth.
Alan T. DeKok [Fri, 25 Oct 2013 00:11:57 +0000 (20:11 -0400)]
Work around autoconf and shell issues.
Which expect paths to NOT have spaces in them. Which they do
on OSX.
Alan T. DeKok [Fri, 25 Oct 2013 00:10:54 +0000 (20:10 -0400)]
Re-arrange paths for -I and -L.
So that paths passed on the command line, or in ENV are preferred
to ones which we auto-add
Manual port of
74b688b39b
Arran Cudbard-Bell [Thu, 24 Oct 2013 16:07:25 +0000 (17:07 +0100)]
Fix typo in version.c
Arran Cudbard-Bell [Thu, 24 Oct 2013 16:06:43 +0000 (17:06 +0100)]
Ignore dSYM extension
Arran Cudbard-Bell [Thu, 24 Oct 2013 15:18:19 +0000 (16:18 +0100)]
Ignore sw_vers subversion when selecting SDK
Arran Cudbard-Bell [Wed, 23 Oct 2013 22:30:09 +0000 (23:30 +0100)]
Fix clang build under mavericks (OSX 10.9)
Alan T. DeKok [Wed, 23 Oct 2013 15:18:36 +0000 (11:18 -0400)]
recvfrom returns ssize_t, not size_t
Alan T. DeKok [Mon, 21 Oct 2013 13:07:11 +0000 (09:07 -0400)]
Restore old behavior for if(...)
Manual pull of
4c389d44
Alan T. DeKok [Wed, 16 Oct 2013 15:39:24 +0000 (11:39 -0400)]
Note recent changes
Alan T. DeKok [Wed, 16 Oct 2013 15:34:32 +0000 (11:34 -0400)]
add ntlm_auth_timeout option to rlm_mschap
Manual port of commit #
ab43d6a0
Alan T. DeKok [Wed, 16 Oct 2013 15:31:03 +0000 (11:31 -0400)]
add timeout option to rlm_exec
Manual port of commit #
16da20417
Alan T. DeKok [Wed, 16 Oct 2013 15:25:57 +0000 (11:25 -0400)]
Add timeout arg to radius_exec_program, with default EXEC_TIMEOUT
Manual port of commit #1da1208
Arran Cudbard-Bell [Mon, 14 Oct 2013 11:37:35 +0000 (12:37 +0100)]
pArgs and pRet my legitimately be NULL on error, so we should use Py_XDECREF instead of Py_DECREF, Closes #449
Alan T. DeKok [Mon, 7 Oct 2013 12:57:35 +0000 (08:57 -0400)]
Move assert to run-time check