Arran Cudbard-Bell [Wed, 17 Dec 2014 21:07:57 +0000 (16:07 -0500)]
We now use the correct name for function macros...
Alan T. DeKok [Wed, 17 Dec 2014 20:59:39 +0000 (15:59 -0500)]
Update release time
Arran Cudbard-Bell [Wed, 17 Dec 2014 16:21:08 +0000 (11:21 -0500)]
Remove URI field from rlm_ldap
Herwin Weststrate [Wed, 17 Dec 2014 12:56:08 +0000 (13:56 +0100)]
Added some null checks after talloc_zero
We've seen the scenario with proxy-inner-tunnel as virtual server for PEAP, and a backend that is unreachable. With a storm of requests this did lead to segfaults in `session_init` (`src/main/tls.c`). From there, it's just turtles all the way down.
Philipp Hug [Tue, 16 Dec 2014 10:04:26 +0000 (11:04 +0100)]
Don't allow timeouts larger than max_request_timeout instead of hardcoded value.
Arran Cudbard-Bell [Wed, 17 Dec 2014 06:18:21 +0000 (01:18 -0500)]
Update default LDAP config
Arran Cudbard-Bell [Wed, 17 Dec 2014 02:39:59 +0000 (21:39 -0500)]
rework LDAP host parsing code again to deal with multiple hosts closes #859
Alan T. DeKok [Mon, 15 Dec 2014 23:25:45 +0000 (18:25 -0500)]
Remove unused code. Closes CID #1258580
Arran Cudbard-Bell [Mon, 15 Dec 2014 21:37:14 +0000 (16:37 -0500)]
Coverity CID #1233595
Alan T. DeKok [Mon, 15 Dec 2014 21:37:59 +0000 (16:37 -0500)]
Use size_t instead of int
Alan T. DeKok [Mon, 15 Dec 2014 21:29:48 +0000 (16:29 -0500)]
Unlock mutex. Closes CID #1243441
Alan T. DeKok [Mon, 15 Dec 2014 21:27:49 +0000 (16:27 -0500)]
Don't call rand(). Closes CID #1233594
Alan T. DeKok [Mon, 15 Dec 2014 21:24:00 +0000 (16:24 -0500)]
Assertion to quiet CID #1223701
Arran Cudbard-Bell [Mon, 15 Dec 2014 21:10:12 +0000 (16:10 -0500)]
Coverity CID #1248165
Alan T. DeKok [Mon, 15 Dec 2014 20:52:50 +0000 (15:52 -0500)]
listener can't be NULL for non-detail packets...
Arran Cudbard-Bell [Mon, 15 Dec 2014 20:46:00 +0000 (15:46 -0500)]
Coverity CID #1258575
Alan T. DeKok [Mon, 15 Dec 2014 20:38:00 +0000 (15:38 -0500)]
Decrease block protected by the mutex. Closes CID #1258573
Arran Cudbard-Bell [Mon, 15 Dec 2014 20:30:44 +0000 (15:30 -0500)]
Coverity CID #1258572
Arran Cudbard-Bell [Mon, 15 Dec 2014 20:24:27 +0000 (15:24 -0500)]
Coverity CID #1258569
Arran Cudbard-Bell [Mon, 15 Dec 2014 20:18:10 +0000 (15:18 -0500)]
Coverity CID #1258567
Alan T. DeKok [Mon, 15 Dec 2014 20:32:13 +0000 (15:32 -0500)]
Remove dead code
Alan T. DeKok [Mon, 15 Dec 2014 20:32:03 +0000 (15:32 -0500)]
Typo
Alan T. DeKok [Mon, 15 Dec 2014 20:30:29 +0000 (15:30 -0500)]
Typo. Closes CID #1258570
Alan T. DeKok [Mon, 15 Dec 2014 20:29:32 +0000 (15:29 -0500)]
Note recent changes
Alan T. DeKok [Mon, 15 Dec 2014 20:29:03 +0000 (15:29 -0500)]
Return on bad things. Closes CID #1258571
Alan T. DeKok [Mon, 15 Dec 2014 20:27:19 +0000 (15:27 -0500)]
We need an "update" config. Closes CID #1258577
Alan T. DeKok [Mon, 15 Dec 2014 20:25:27 +0000 (15:25 -0500)]
We don't need an "update" config. Closes CID #1258577
Alan T. DeKok [Mon, 15 Dec 2014 20:21:55 +0000 (15:21 -0500)]
Close sockfd if we fail. Closes CID #1258578
Alan T. DeKok [Mon, 15 Dec 2014 20:21:40 +0000 (15:21 -0500)]
Note that we're falling through. Closes CID #1258579
Arran Cudbard-Bell [Mon, 15 Dec 2014 19:37:03 +0000 (14:37 -0500)]
Move printing the reply out a little later (after we've decoded it)
Arran Cudbard-Bell [Mon, 15 Dec 2014 19:25:11 +0000 (14:25 -0500)]
Add &attr[n] which gets the last instance of an attribute (Useful to get the most recent instance of Module-Failure-Message)
Arran Cudbard-Bell [Mon, 15 Dec 2014 19:27:52 +0000 (14:27 -0500)]
Update ChangeLog
Alan T. DeKok [Mon, 15 Dec 2014 18:18:13 +0000 (13:18 -0500)]
More fixes for coa separate
Arran Cudbard-Bell [Mon, 15 Dec 2014 18:06:33 +0000 (13:06 -0500)]
Add packet debugging back into radclient
Arran Cudbard-Bell [Mon, 15 Dec 2014 17:30:45 +0000 (12:30 -0500)]
Typo
Alan T. DeKok [Mon, 15 Dec 2014 17:27:53 +0000 (12:27 -0500)]
Add explicit tests for unknown in condition
Alan T. DeKok [Mon, 15 Dec 2014 17:26:35 +0000 (12:26 -0500)]
Better way of dealing with undefined attrs in update
Alan DeKok [Mon, 15 Dec 2014 17:14:52 +0000 (12:14 -0500)]
Merge pull request #857 from spbnick/move_trigger_include
raddb: Move trigger.conf INCLUDE before modules
Alan T. DeKok [Mon, 15 Dec 2014 16:59:24 +0000 (11:59 -0500)]
Error out if the attribute is unknown after pass2
Arran Cudbard-Bell [Mon, 15 Dec 2014 15:56:09 +0000 (10:56 -0500)]
Remove unused code
Arran Cudbard-Bell [Mon, 15 Dec 2014 15:24:25 +0000 (10:24 -0500)]
Update ChangeLog
Nikolai Kondrashov [Mon, 15 Dec 2014 14:48:26 +0000 (16:48 +0200)]
raddb: Move trigger.conf INCLUDE before modules
Move "$INCLUDE trigger.conf" chunk before module section in
"radiusd.conf.in". This makes it possible to reference "snmptrap" and
related trigger variables under "pool.trigger" in module configurations,
simplifying them.
E.g. like this (in raddb/mods-enabled/ldap):
ldap ldap_instance {
pool {
trigger {
args = "radiusdModuleName s '${...:name}' radiusdModuleInstance s '${...:instance}'"
open = "${snmptrap}::serverModuleConnectionUp ${args}"
close = "${snmptrap}::serverModuleConnectionDown ${args}"
}
}
}
Arran Cudbard-Bell [Mon, 15 Dec 2014 14:51:27 +0000 (09:51 -0500)]
Avoid shift overflow that cause incorrect masking to be applied to /64 prefixes
Arran Cudbard-Bell [Mon, 15 Dec 2014 14:50:43 +0000 (09:50 -0500)]
Formatting
Arran Cudbard-Bell [Mon, 15 Dec 2014 01:02:33 +0000 (20:02 -0500)]
Add code to convert between IPv4/v6 addresses and IPv4/v6 prefixes
Arran Cudbard-Bell [Mon, 15 Dec 2014 05:30:33 +0000 (00:30 -0500)]
Remove restriction on implicit casts in map_to_vp
Arran Cudbard-Bell [Mon, 15 Dec 2014 01:01:43 +0000 (20:01 -0500)]
Add more EVAL_DEBUG statements so we can determine source of normalisation type
Arran Cudbard-Bell [Mon, 15 Dec 2014 01:01:04 +0000 (20:01 -0500)]
Zero log.indent in child requests
Arran Cudbard-Bell [Mon, 15 Dec 2014 01:00:51 +0000 (20:00 -0500)]
Typo
Arran Cudbard-Bell [Mon, 15 Dec 2014 01:00:39 +0000 (20:00 -0500)]
Remove &Attr[#] it's very difficult to make it work correctly everywhere
Arran Cudbard-Bell [Mon, 15 Dec 2014 00:59:52 +0000 (19:59 -0500)]
Typo
Arran Cudbard-Bell [Mon, 15 Dec 2014 00:59:41 +0000 (19:59 -0500)]
Fix bad VP array type value accesses
Alan T. DeKok [Mon, 15 Dec 2014 13:31:25 +0000 (08:31 -0500)]
Fix coa_separate to behave differently for proxy reply
Arran Cudbard-Bell [Mon, 15 Dec 2014 13:30:03 +0000 (08:30 -0500)]
Merge pull request #849 from spbnick/util_help
rad_counter and dhcpclient online help fixes
Arran Cudbard-Bell [Sun, 14 Dec 2014 00:44:12 +0000 (19:44 -0500)]
Update ChangeLog
Arran Cudbard-Bell [Sun, 14 Dec 2014 00:37:03 +0000 (19:37 -0500)]
Update the unlang man page
Arran Cudbard-Bell [Sat, 13 Dec 2014 21:04:54 +0000 (16:04 -0500)]
Add support for 'm' (multiline) regex flag
Arran Cudbard-Bell [Sat, 13 Dec 2014 04:42:21 +0000 (23:42 -0500)]
Typos
Arran Cudbard-Bell [Sat, 13 Dec 2014 04:38:56 +0000 (23:38 -0500)]
Should be HAVE_REGEX
Arran Cudbard-Bell [Sat, 13 Dec 2014 01:59:47 +0000 (20:59 -0500)]
Fmt is used
Arran Cudbard-Bell [Sat, 13 Dec 2014 01:59:19 +0000 (20:59 -0500)]
Unneeded debug
Arran Cudbard-Bell [Sat, 13 Dec 2014 00:22:51 +0000 (19:22 -0500)]
Add support for named capture groups
Arran Cudbard-Bell [Sat, 13 Dec 2014 00:22:36 +0000 (19:22 -0500)]
Doxygen
Arran Cudbard-Bell [Sat, 13 Dec 2014 00:22:15 +0000 (19:22 -0500)]
Fix handling of regexes with > 32 capture groups
Arran Cudbard-Bell [Sat, 13 Dec 2014 00:21:44 +0000 (19:21 -0500)]
Need MAX_REGEX + 1 for the complete match group
Arran Cudbard-Bell [Sat, 13 Dec 2014 00:20:52 +0000 (19:20 -0500)]
xlat_inst only needed for foreach
Arran Cudbard-Bell [Sat, 13 Dec 2014 00:20:30 +0000 (19:20 -0500)]
Fix xlat_tokenize code so it handles arbitrary numbers of capture groups
Arran Cudbard-Bell [Fri, 12 Dec 2014 20:56:24 +0000 (15:56 -0500)]
Typo
Arran Cudbard-Bell [Fri, 12 Dec 2014 20:54:19 +0000 (15:54 -0500)]
Switch to new subcapture handling code
Arran Cudbard-Bell [Fri, 12 Dec 2014 18:14:54 +0000 (13:14 -0500)]
Add always flag to fr_debug_break
Arran Cudbard-Bell [Fri, 12 Dec 2014 18:14:34 +0000 (13:14 -0500)]
Create abstraction layer around regular expression libraries
Call libpcre with native functions, and use the JIT where appropriate/possible
Call regnexec and regncomp where available, and complain about null bytes in patterns and subjects if they're not.
Arran Cudbard-Bell [Fri, 12 Dec 2014 18:03:04 +0000 (13:03 -0500)]
Return -1 if we can't allocate memory for node for request data
Arran Cudbard-Bell [Fri, 12 Dec 2014 18:02:37 +0000 (13:02 -0500)]
Print PCRE library version
Arran Cudbard-Bell [Fri, 12 Dec 2014 18:02:23 +0000 (13:02 -0500)]
Output debug for virtual expansions
Arran Cudbard-Bell [Fri, 12 Dec 2014 18:01:31 +0000 (13:01 -0500)]
Update truncation test to work around limitations in some regular expressions max repetition limit
Alan T. DeKok [Fri, 12 Dec 2014 12:25:27 +0000 (07:25 -0500)]
Clarify warning message
Arran Cudbard-Bell [Thu, 11 Dec 2014 16:46:06 +0000 (11:46 -0500)]
Formatting
Arran Cudbard-Bell [Thu, 11 Dec 2014 16:44:39 +0000 (11:44 -0500)]
Remove last call to pairdatacpy and remove pairdatacpy
Alan T. DeKok [Thu, 11 Dec 2014 16:09:20 +0000 (11:09 -0500)]
More call to pairdatacpy()
Alan T. DeKok [Thu, 11 Dec 2014 16:06:25 +0000 (11:06 -0500)]
Remove call to pairdatacpy()
Alan T. DeKok [Thu, 11 Dec 2014 16:05:56 +0000 (11:05 -0500)]
src is const
Alan T. DeKok [Thu, 11 Dec 2014 16:03:56 +0000 (11:03 -0500)]
Remove one more caller of pairdatacpy()
Alan T. DeKok [Thu, 11 Dec 2014 16:03:27 +0000 (11:03 -0500)]
Create value_data_copy function
Alan T. DeKok [Thu, 11 Dec 2014 15:19:40 +0000 (10:19 -0500)]
Don't call pairdatacpy. Closes #853
Alan T. DeKok [Wed, 10 Dec 2014 21:30:12 +0000 (16:30 -0500)]
There might not be a name2
Arran Cudbard-Bell [Thu, 11 Dec 2014 13:31:30 +0000 (08:31 -0500)]
Typo
Arran Cudbard-Bell [Thu, 11 Dec 2014 13:20:09 +0000 (08:20 -0500)]
Pass pointer to head of list when doing pairsort in perl_store_vps Fixes #852
Alan T. DeKok [Wed, 10 Dec 2014 16:26:16 +0000 (11:26 -0500)]
Disallow attribute zero in the dictionaries. Closes #851
Except for Colubris, who use it
Alan T. DeKok [Wed, 10 Dec 2014 15:04:20 +0000 (10:04 -0500)]
Remove unused variables
Alan T. DeKok [Wed, 10 Dec 2014 13:55:13 +0000 (08:55 -0500)]
Smash bad filenames
Alan T. DeKok [Wed, 10 Dec 2014 13:55:13 +0000 (08:55 -0500)]
Smash bad filenames
Alan T. DeKok [Wed, 10 Dec 2014 13:47:14 +0000 (08:47 -0500)]
Make filename escaping configurable.
Alan T. DeKok [Tue, 9 Dec 2014 21:29:02 +0000 (16:29 -0500)]
Short-circuit fr_prints() when there's no quoting
Arran Cudbard-Bell [Tue, 9 Dec 2014 21:33:12 +0000 (16:33 -0500)]
Fix argument order in fr_prints so out is first
Arran Cudbard-Bell [Tue, 9 Dec 2014 21:05:52 +0000 (16:05 -0500)]
Only include <ldap.h> in ldap.h
Alan T. DeKok [Tue, 9 Dec 2014 20:56:26 +0000 (15:56 -0500)]
Note recent changes
Alan T. DeKok [Tue, 9 Dec 2014 20:55:38 +0000 (15:55 -0500)]
Allow spaces in certificate passwords
Arran Cudbard-Bell [Tue, 9 Dec 2014 19:51:06 +0000 (14:51 -0500)]
Update ChangeLog
Arran Cudbard-Bell [Tue, 9 Dec 2014 19:39:12 +0000 (14:39 -0500)]
Work around potential race in ldap_create
Arran Cudbard-Bell [Tue, 9 Dec 2014 17:38:57 +0000 (12:38 -0500)]
Formatting