Linus Nordberg [Thu, 12 Apr 2012 18:23:14 +0000 (20:23 +0200)]
Document the DynamicLookupCommand option.
Closes RADSECPROXY-36.
Linus Nordberg [Thu, 12 Apr 2012 18:20:38 +0000 (20:20 +0200)]
Merge branch 'master' into dynconf2
Linus Nordberg [Thu, 12 Apr 2012 18:12:33 +0000 (20:12 +0200)]
Revert "Document the DynamicLookupCommand option."
This goes in branch dynconf2.
This reverts commit
dbcc997716f5bec3316c74371eb8077884d6672d.
Linus Nordberg [Wed, 11 Apr 2012 09:03:11 +0000 (11:03 +0200)]
Add a blurb on dynamic lookup in ChangeLog.
Linus Nordberg [Tue, 10 Apr 2012 14:14:43 +0000 (16:14 +0200)]
Add dynamic config updates to ChangeLog.
Linus Nordberg [Tue, 10 Apr 2012 14:03:44 +0000 (16:03 +0200)]
Assert that the conf has at least one host in addserverextraudp().
Dynamic servers has clearly never been run on UDP servers.
We should probably do something less evil than crashing here.
Closes RADSECPROXY-26.
Linus Nordberg [Tue, 10 Apr 2012 13:55:57 +0000 (15:55 +0200)]
Don't treat exit 10 from dynamic scripts differently from any other non-zero code.
clientwr() should treat the dynamic lookup as a failure and will not
be any happier to know that the exact error was that it didn't resolv.
The script can do whatever logging is wanted.
That said, this commit also makes the scripts exit with 10 in order to
signal failure.
Linus Nordberg [Tue, 3 Apr 2012 14:56:23 +0000 (16:56 +0200)]
Keep track of a failing dynamic server and don't use it while failing.
Also, sleep less than 15 minutes (900s), mainly for testing. This
number will change.
Also, die hard and explicitly if freeing an already freed config in
freeclsrvconf().
This is part of fixing RADSECPROXY-33.
Linus Nordberg [Thu, 12 Apr 2012 15:12:45 +0000 (17:12 +0200)]
Use /bin/sh rather than /bin/bash in scripts.
Using /bin/bash isn't portable.
Linus Nordberg [Thu, 12 Apr 2012 15:10:48 +0000 (17:10 +0200)]
Use built-in echo rather than /bin/echo.
`-e' to /bin/echo isn't portable. The BSD's lacks it for instance.
Linus Nordberg [Thu, 12 Apr 2012 15:09:05 +0000 (17:09 +0200)]
Make dynamic-resolve scripts in tools/ sort numerically.
Spotted by Paul Dekkers. Closes RADSECPROXY-39.
Linus Nordberg [Thu, 12 Apr 2012 14:43:12 +0000 (16:43 +0200)]
Document the DynamicLookupCommand option.
This closes RADSECPROXY-36.
Linus Nordberg [Thu, 12 Apr 2012 13:20:57 +0000 (15:20 +0200)]
Add/update copyright years.
Linus Nordberg [Thu, 12 Apr 2012 13:20:09 +0000 (15:20 +0200)]
Minor ChangeLog changes.
Linus Nordberg [Wed, 11 Apr 2012 17:57:37 +0000 (19:57 +0200)]
Update ChangeLog.
Linus Nordberg [Wed, 11 Apr 2012 17:57:28 +0000 (19:57 +0200)]
Update date in radsecproxy.conf.5.
Linus Nordberg [Wed, 11 Apr 2012 15:08:42 +0000 (17:08 +0200)]
Add config option PidFile.
Note that `-i' on the command line overrides this config option.
This closes RADSECPROXY-32.
Linus Nordberg [Wed, 11 Apr 2012 14:50:08 +0000 (16:50 +0200)]
Honour configure option --sysconfdir.
This closes RADSECPROXY-31.
Linus Nordberg [Wed, 11 Apr 2012 10:24:17 +0000 (12:24 +0200)]
Update date in ChangeLog.
Linus Nordberg [Wed, 11 Apr 2012 10:23:36 +0000 (12:23 +0200)]
Rephrase the FTicksSyslogFacility examples slightly.
Much like what
1c05812c did for radsecproxy.conf-example.
Linus Nordberg [Wed, 11 Apr 2012 09:20:37 +0000 (11:20 +0200)]
Change default shared secret for TLS and DTLS.
We change from "mysecret" to "radsec" as per
draft-ietf-radext-radsec-12.txt section 2.3 (4).
Linus Nordberg [Wed, 11 Apr 2012 09:05:28 +0000 (11:05 +0200)]
Add a todo item to the develdoc file.
Linus Nordberg [Tue, 10 Apr 2012 14:24:30 +0000 (16:24 +0200)]
Copy three missing clsrvconf members when "merging configurations".
Linus Nordberg [Tue, 3 Apr 2012 14:56:23 +0000 (16:56 +0200)]
Don't free memory which others are still using.
In the error case in confserver_cb() where compileserverconfig() we
used to go to errexit and have resonf, passed as an argument through
ARG, freed. Other parts are still using that conf.
Linus Nordberg [Tue, 3 Apr 2012 14:56:23 +0000 (16:56 +0200)]
Fix two error printouts.
Linus Nordberg [Tue, 3 Apr 2012 14:56:23 +0000 (16:56 +0200)]
OpenSSL uses long long. We use -pedantic. Add -Wno-long-long.
Closes RADSECPROXY-34.
Linus Nordberg [Sat, 18 Feb 2012 19:13:46 +0000 (11:13 -0800)]
Stop resolver scripts from signalling "not found".
This triggers a bug in radsecproxy. Don't use it for now.
Linus Nordberg [Sat, 18 Feb 2012 19:12:13 +0000 (11:12 -0800)]
Remove documentation on dynamic lookup since it doesn't work.
Also, add some notes about dynamic lookup esp. wrt. freeing of resources to develdoc.txt.
Linus Nordberg [Mon, 23 Jan 2012 12:06:09 +0000 (13:06 +0100)]
Make radsecproxy-conf exit with !0 if it finds syntax errors in config file.
Note that this is a syntax check only. Passing this test doesn't mean
that the config file is good for running radsecproxy!
Linus Nordberg [Mon, 23 Jan 2012 11:49:52 +0000 (12:49 +0100)]
Protect IPv6 addresses in square brackets to avoid misinterpretation.
Linus Nordberg [Thu, 22 Dec 2011 09:31:47 +0000 (10:31 +0100)]
Add F-Ticks improvements to ChangeLog.
Linus Nordberg [Thu, 22 Dec 2011 09:27:04 +0000 (10:27 +0100)]
Contribute Paweł Gołaszewski.
Linus Nordberg [Thu, 22 Dec 2011 09:09:42 +0000 (10:09 +0100)]
Fix indentation from
2c705843.
Linus Nordberg [Thu, 22 Dec 2011 09:04:24 +0000 (10:04 +0100)]
Merge remote-tracking branch 'maja/master'
Maja Gorecka-Wolniewicz [Wed, 21 Dec 2011 09:10:33 +0000 (10:10 +0100)]
New option for client block - fticksVISINST
Linus Nordberg [Tue, 13 Dec 2011 09:33:32 +0000 (10:33 +0100)]
Update copyright years.
Linus Nordberg [Mon, 12 Dec 2011 14:42:50 +0000 (15:42 +0100)]
Merge branch 'fticks_syslog2'
Linus Nordberg [Mon, 12 Dec 2011 14:19:26 +0000 (15:19 +0100)]
Use correct capitalisation for defaultClient and defaultServer.
Used in 'tls defaultClient' and 'tls defaultServer' configuration blocks.
Reported by Maja Gorecka-Wolniewicz.
Linus Nordberg [Mon, 12 Dec 2011 13:42:36 +0000 (14:42 +0100)]
Fix missing renaming of FTICKS_LOG.
Found by Maja Wolniewicz.
Linus Nordberg [Mon, 12 Dec 2011 13:40:18 +0000 (14:40 +0100)]
Merge branch 'master' into fticks_syslog2
Linus Nordberg [Mon, 12 Dec 2011 13:36:08 +0000 (14:36 +0100)]
Remove offending (and seemingly unused) AM_LDFLAGS from Makefile.am.
Linus Nordberg [Mon, 12 Dec 2011 13:28:53 +0000 (14:28 +0100)]
Autoconf: Don't use deprecated AM_PROG_CC_C_O.
Linus Nordberg [Mon, 12 Dec 2011 13:28:22 +0000 (14:28 +0100)]
Make the autoconfery slightly less miserable. Also, bump version.
Get rid of warnings about defining variables conditionally and unconditionally.
Don't redefine EXTRA_DIST with a spurious space in it.
Linus Nordberg [Mon, 12 Dec 2011 13:16:47 +0000 (14:16 +0100)]
Rephrase the FTicksSyslogFacility documentation slightly.
Linus Nordberg [Mon, 12 Dec 2011 13:07:48 +0000 (14:07 +0100)]
Reorder fticks command line options.
Linus Nordberg [Mon, 12 Dec 2011 13:07:26 +0000 (14:07 +0100)]
Rename DEBUG_LOG and FTICKS_LOG.
Linus Nordberg [Mon, 12 Dec 2011 13:06:22 +0000 (14:06 +0100)]
Match function prototypes with definitions.
Linus Nordberg [Mon, 12 Dec 2011 12:44:17 +0000 (13:44 +0100)]
Maja Gorecka-Wolniewicz [Mon, 12 Dec 2011 11:43:24 +0000 (12:43 +0100)]
formatting and skipping openlog call for FTOCKS_LOG
Linus Nordberg [Mon, 12 Dec 2011 11:21:17 +0000 (12:21 +0100)]
cosmetics
Maja Gorecka-Wolniewicz [Tue, 22 Nov 2011 08:52:53 +0000 (09:52 +0100)]
F-Ticks logging changes
Maja Gorecka-Wolniewicz [Sat, 10 Dec 2011 08:54:29 +0000 (09:54 +0100)]
F-Ticks logging amendments
Maja Gorecka-Wolniewicz [Wed, 30 Nov 2011 14:01:06 +0000 (15:01 +0100)]
debug.c
Maja Gorecka-Wolniewicz [Thu, 24 Nov 2011 13:06:21 +0000 (14:06 +0100)]
FTicks docs changes
Maja Gorecka-Wolniewicz [Wed, 23 Nov 2011 10:37:29 +0000 (11:37 +0100)]
FTicks loging changes
Maja Gorecka-Wolniewicz [Tue, 22 Nov 2011 08:52:53 +0000 (09:52 +0100)]
F-Ticks logging changes
Linus Nordberg [Sat, 8 Oct 2011 14:15:01 +0000 (16:15 +0200)]
Add .gitignore.
Linus Nordberg [Sat, 8 Oct 2011 14:08:49 +0000 (16:08 +0200)]
Ready for radsecproxy-1.5, this time configure.ac is ready too.
Linus Nordberg [Sat, 8 Oct 2011 14:01:27 +0000 (16:01 +0200)]
Ready for radsecproxy-1.5.
Linus Nordberg [Sat, 8 Oct 2011 13:57:31 +0000 (15:57 +0200)]
Update ChangeLog.
Linus Nordberg [Sat, 8 Oct 2011 13:54:33 +0000 (15:54 +0200)]
A DynamicLookupCommand exiting with 10 is treated like an empty server stanza.
This way a script can signal "not found".
The naptr-eduroam.sh and radsec-dynsrv.sh scripts are changed to
behave like this.
Closes RADSECPROXY-22.
Linus Nordberg [Sat, 8 Oct 2011 13:33:38 +0000 (15:33 +0200)]
Update date.
Linus Nordberg [Sat, 8 Oct 2011 13:33:16 +0000 (15:33 +0200)]
Modify ChangeLog.
Linus Nordberg [Sat, 8 Oct 2011 13:24:07 +0000 (15:24 +0200)]
Change the default value for config option FTicksMac.
Linus Nordberg [Sat, 1 Oct 2011 08:56:40 +0000 (10:56 +0200)]
Mention default 'secret' value in radsecproxy.conf.5.
Linus Nordberg [Sat, 1 Oct 2011 08:15:37 +0000 (10:15 +0200)]
Add almost-static Auto* files back.
Linus Nordberg [Sat, 1 Oct 2011 08:10:46 +0000 (10:10 +0200)]
radsecproxy.conf.5 formatting.
Linus Nordberg [Fri, 30 Sep 2011 12:49:57 +0000 (14:49 +0200)]
Update date in radsecproxy.conf.5.
Linus Nordberg [Fri, 30 Sep 2011 12:48:57 +0000 (14:48 +0200)]
Indentation.
Linus Nordberg [Thu, 29 Sep 2011 18:58:17 +0000 (20:58 +0200)]
Update copyright info.
Linus Nordberg [Thu, 29 Sep 2011 13:48:17 +0000 (15:48 +0200)]
Remove unused code.
Linus Nordberg [Thu, 29 Sep 2011 11:30:02 +0000 (13:30 +0200)]
Always distribute radsecproxy-hash.1.
Linus Nordberg [Thu, 29 Sep 2011 11:25:36 +0000 (13:25 +0200)]
fticks_hashmac has moved.
Linus Nordberg [Thu, 29 Sep 2011 11:22:38 +0000 (13:22 +0200)]
Add radsecproxy-hash.c.
Linus Nordberg [Thu, 29 Sep 2011 09:23:06 +0000 (11:23 +0200)]
Test hashing some more in t_fticks.
Linus Nordberg [Thu, 29 Sep 2011 09:22:54 +0000 (11:22 +0200)]
catgconf has changed name.
Linus Nordberg [Thu, 29 Sep 2011 09:22:43 +0000 (11:22 +0200)]
Build radsecproxy-hash.
Reorganize Makefile.am and make specific CFLAGS general (AM_CFLAGS).
Linus Nordberg [Thu, 29 Sep 2011 09:21:30 +0000 (11:21 +0200)]
Add binary radsecproxy-hash.
Split up fticks.c in order not to have to drag in too much of
radsecproxy in order to just hash a MAC.
Linus Nordberg [Wed, 28 Sep 2011 17:33:00 +0000 (19:33 +0200)]
Update date in radsecproxy.1.
Linus Nordberg [Wed, 28 Sep 2011 17:01:06 +0000 (19:01 +0200)]
Enable F-Ticks support in distcheck.
Linus Nordberg [Wed, 28 Sep 2011 16:57:47 +0000 (18:57 +0200)]
Don't test F-Ticks if we're not configured for supporting it.
Linus Nordberg [Wed, 28 Sep 2011 16:50:23 +0000 (18:50 +0200)]
Put two Autoconf files back since they're not installed by autoreconf -i.
Hmm, I wonder if it makes sense to have compile, config.{guess,sub},
install-sh, missing and depcomp under source control too? It's not
that they're changing that often.
Linus Nordberg [Wed, 28 Sep 2011 16:42:54 +0000 (18:42 +0200)]
Don't have generated file under source control.
Linus Nordberg [Wed, 28 Sep 2011 16:32:17 +0000 (18:32 +0200)]
Cosmetic.
Linus Nordberg [Wed, 28 Sep 2011 16:31:46 +0000 (18:31 +0200)]
Correct compiler and linker flags.
We don't need LDFLAGS when building librsp sources.
s/catgconf/radsecproxy_conf/.
Linus Nordberg [Wed, 28 Sep 2011 12:35:03 +0000 (14:35 +0200)]
Point to ChangeLog in NEWS.
Linus Nordberg [Wed, 28 Sep 2011 12:34:48 +0000 (14:34 +0200)]
Reorganise EXTRA_DIST.
Linus Nordberg [Wed, 28 Sep 2011 12:22:46 +0000 (14:22 +0200)]
Fix last merge which broke configure.ac.
Also, remove generated configure.
Linus Nordberg [Wed, 28 Sep 2011 11:10:12 +0000 (13:10 +0200)]
Merge with master. Conflicts:
ChangeLog
README
config.guess
config.sub
configure
configure.ac
Linus Nordberg [Wed, 28 Sep 2011 10:56:09 +0000 (12:56 +0200)]
Rename binary catgconf --> radsecproxy-conf.
Linus Nordberg [Wed, 28 Sep 2011 10:53:58 +0000 (12:53 +0200)]
Add 1.5-dev notes and reverse the order of the entries in the file.
Linus Nordberg [Wed, 28 Sep 2011 10:37:49 +0000 (12:37 +0200)]
List catgconf header files too.
Linus Nordberg [Wed, 28 Sep 2011 10:34:54 +0000 (12:34 +0200)]
Undo
cc56affa -- header files should go into SOURCES.
If not for anything else but to get distributed.
Linus Nordberg [Tue, 27 Sep 2011 17:50:13 +0000 (19:50 +0200)]
Pass necessary compiler and linker flags.
All the source files compiled into the library needs all flags too.
Linus Nordberg [Tue, 27 Sep 2011 17:48:52 +0000 (19:48 +0200)]
Handle configuration with F-Ticks enabled but w/o FTicksMac.
Linus Nordberg [Tue, 27 Sep 2011 17:48:12 +0000 (19:48 +0200)]
Add F-Ticks documentation to radsecproxy.conf.5.
Linus Nordberg [Tue, 27 Sep 2011 17:44:25 +0000 (19:44 +0200)]
Update example config to correctly reflect default values for F-Ticks config.
Linus Nordberg [Tue, 27 Sep 2011 17:43:59 +0000 (19:43 +0200)]
Cast to avoid warning.
Linus Nordberg [Tue, 27 Sep 2011 16:03:12 +0000 (18:03 +0200)]
Sanitise MAC address before hashing it.
Almost closes RADSECPROXY-16.
Linus Nordberg [Tue, 27 Sep 2011 15:04:49 +0000 (17:04 +0200)]
Add --enable-fticks to configure.