Sam Hartman [Thu, 26 Mar 2015 01:21:01 +0000 (21:21 -0400)]
Fix insert statement
Sam Hartman [Thu, 26 Mar 2015 01:20:33 +0000 (21:20 -0400)]
Merge branch 'master' into debian
Fix insert statement
Sam Hartman [Thu, 26 Mar 2015 01:20:26 +0000 (21:20 -0400)]
Update release
Sam Hartman [Thu, 26 Mar 2015 01:19:48 +0000 (21:19 -0400)]
Insert into psk_keys_tab not psk_keys
Sam Hartman [Wed, 25 Mar 2015 18:30:32 +0000 (14:30 -0400)]
New upstream version
* Remove database if schema if is outdated
* Include updated schema to fix key expirations
Sam Hartman [Wed, 25 Mar 2015 18:25:48 +0000 (14:25 -0400)]
Merge branch 'master' into debian
Version 1.5.1
Sam Hartman [Wed, 25 Mar 2015 18:25:38 +0000 (14:25 -0400)]
Version 1.5.1; new schema
Sam Hartman [Wed, 25 Mar 2015 18:21:54 +0000 (14:21 -0400)]
Don't include expired keys in the psk_keys table
FreeRADIUS directly queries psk_keys. It's important that it not
match expired keys. Instead create a table psk_keys_tab and make
psk_keys a view that excludes expired keys.
Sam Hartman [Wed, 18 Mar 2015 19:25:51 +0000 (15:25 -0400)]
Update spec release
Sam Hartman [Tue, 17 Mar 2015 19:20:33 +0000 (15:20 -0400)]
New version
Sam Hartman [Tue, 17 Mar 2015 19:18:56 +0000 (15:18 -0400)]
Merge branch 'master' into debian
Move logging to tr_internal
Sam Hartman [Tue, 17 Mar 2015 19:18:48 +0000 (15:18 -0400)]
Move logging to tr_internal
Sam Hartman [Tue, 17 Mar 2015 17:39:36 +0000 (13:39 -0400)]
Fix typo
Sam Hartman [Tue, 17 Mar 2015 16:29:12 +0000 (12:29 -0400)]
Require sufficiently new moonshot-gss-eap rpm
Sam Hartman [Tue, 17 Mar 2015 16:28:09 +0000 (12:28 -0400)]
New version
Sam Hartman [Tue, 17 Mar 2015 16:27:10 +0000 (12:27 -0400)]
Merge branch 'master' into debian
Pull in expiration fix
Sam Hartman [Tue, 17 Mar 2015 16:27:00 +0000 (12:27 -0400)]
Update release in spec
Sam Hartman [Tue, 17 Mar 2015 16:26:31 +0000 (12:26 -0400)]
Expiration should be minimum of configured and incoming from current request
Sam Hartman [Mon, 16 Mar 2015 18:47:31 +0000 (14:47 -0400)]
Run into trouble with mech_eap < 0.9.3 because of context deletion problem
Sam Hartman [Fri, 13 Mar 2015 20:25:05 +0000 (16:25 -0400)]
Update spec version
Sam Hartman [Fri, 13 Mar 2015 20:23:42 +0000 (16:23 -0400)]
Fix comparison operator
Sam Hartman [Fri, 13 Mar 2015 20:23:06 +0000 (16:23 -0400)]
Fix sense of comparison in schema.
Sam Hartman [Fri, 13 Mar 2015 20:23:06 +0000 (16:23 -0400)]
Fix sense of comparison in schema.
Sam Hartman [Thu, 12 Mar 2015 18:11:22 +0000 (14:11 -0400)]
Fix version string
Sam Hartman [Thu, 12 Mar 2015 17:09:36 +0000 (13:09 -0400)]
fix typo
Sam Hartman [Thu, 12 Mar 2015 17:09:36 +0000 (13:09 -0400)]
fix typo
Sam Hartman [Thu, 12 Mar 2015 16:43:46 +0000 (12:43 -0400)]
We now require glib-devel
Sam Hartman [Thu, 12 Mar 2015 16:36:22 +0000 (12:36 -0400)]
Native for now doing pre-releases.
Sam Hartman [Thu, 12 Mar 2015 16:35:14 +0000 (12:35 -0400)]
Merge branch 'master' into debian
Most of the 1.5 changes
Conflicts:
trust_router.spec
Sam Hartman [Thu, 12 Mar 2015 16:33:50 +0000 (12:33 -0400)]
Schema updates; exclude expired keys from view
Sam Hartman [Thu, 12 Mar 2015 16:11:36 +0000 (12:11 -0400)]
tids handler fixes
* use talloc for server responses
* bind expiration to right value in statement
Sam Hartman [Thu, 12 Mar 2015 15:34:20 +0000 (11:34 -0400)]
Key expiration in minutes
Sam Hartman [Wed, 11 Mar 2015 14:53:39 +0000 (10:53 -0400)]
New Upstream Release
* New Upstream Release
* Support Key expiration and logging
Sam Hartman [Wed, 11 Mar 2015 22:31:55 +0000 (18:31 -0400)]
Fix logging configuration
Sam Hartman [Wed, 11 Mar 2015 17:31:36 +0000 (13:31 -0400)]
Merge branch 'logging_changes' of https://github.com/adam-bishop/trust_router
Pull in two additional fixes from Adam.
Adam Bishop [Wed, 11 Mar 2015 14:47:27 +0000 (14:47 +0000)]
Explicitly call tr_log_open when we're not being used as a library
Adam Bishop [Wed, 11 Mar 2015 14:46:59 +0000 (14:46 +0000)]
Don't call openlog() implicitly
Sam Hartman [Wed, 11 Mar 2015 14:49:31 +0000 (10:49 -0400)]
increment version
Sam Hartman [Wed, 11 Mar 2015 14:15:59 +0000 (10:15 -0400)]
Connection clean up
We need to clean up the connection file descriptor and the gss context.
* tidc_fwd_request is the wrong place to free the TID_REQ because it does not allocate it
* tid_req_dup needs to use talloc; duplicated requests are freed by
the original request
* tidc_send_message frees its request
* The request destructor closes the connection.
* Keep track of whether a request is duplicated; only free the connection and gss context in the original request.
Sam Hartman [Tue, 10 Mar 2015 20:18:07 +0000 (16:18 -0400)]
Logic for expiration and path
* Add path as requests are received at a tids
* Calculate expiration in tids
* Insert expiration into database
* Update schema
* tids now requires glib
Sam Hartman [Tue, 10 Mar 2015 20:10:45 +0000 (16:10 -0400)]
Add expiration and path to messages
Handle path and key expiration in encoders and decoders.
Sam Hartman [Tue, 10 Mar 2015 00:45:38 +0000 (20:45 -0400)]
Real syslog support for trust router
Merge branch 'logging_changes' of https://github.com/adam-bishop/trust_router
Conflicts:
common/tr_config.c
common/tr_msg.c
tr/tr_main.c
Sam Hartman [Tue, 10 Mar 2015 00:34:57 +0000 (20:34 -0400)]
Configuration of key expiration for APC
Add support for configuring the key expiration in the config and pass this allong as requests are forwarded.
Sam Hartman [Tue, 10 Mar 2015 00:32:02 +0000 (20:32 -0400)]
Add key expiration to output message
Sam Hartman [Tue, 10 Mar 2015 00:31:21 +0000 (20:31 -0400)]
Start depending on glib
We need glib for ISO 8601 time functions and
plan to use it for more.
Adam Bishop [Wed, 10 Dec 2014 11:43:42 +0000 (11:43 +0000)]
Workaround for glibc bug 14347
Adam Bishop [Thu, 27 Nov 2014 15:56:58 +0000 (15:56 +0000)]
Add logging to the default main config
Adam Bishop [Tue, 9 Dec 2014 13:27:13 +0000 (13:27 +0000)]
Replace calls to fprintf with new tr_* macros
Sam Hartman [Mon, 9 Mar 2015 13:38:46 +0000 (09:38 -0400)]
tr_main: clean up void pointer style
Sam Hartman [Mon, 9 Mar 2015 11:54:12 +0000 (07:54 -0400)]
Initial path and expiration utilities
Add path functions to tid_req and tid_resp
Add path members and expiration to tid_req and tid_resp
Update copyrights
Sam Hartman [Mon, 23 Feb 2015 16:58:14 +0000 (11:58 -0500)]
tid_req_free: delete GSS context
Free the gss context in a TID request.
Adam Bishop [Thu, 27 Nov 2014 15:55:27 +0000 (15:55 +0000)]
Add logging values to the TR config struct, code to parse it, and a default value in case it is not configured
Adam Bishop [Tue, 9 Dec 2014 13:47:26 +0000 (13:47 +0000)]
Add some audit messages to be logged
Adam Bishop [Mon, 8 Dec 2014 14:15:11 +0000 (14:15 +0000)]
Update Makefile.am to include new sources
Adam Bishop [Wed, 10 Dec 2014 18:13:24 +0000 (18:13 +0000)]
Add functions to log trust query results handled by the TID server
Adam Bishop [Thu, 27 Nov 2014 13:40:53 +0000 (13:40 +0000)]
Adding syslog into configure checks
Adam Bishop [Thu, 27 Nov 2014 13:29:47 +0000 (13:29 +0000)]
Specfile minor version bump
Sam Hartman [Thu, 6 Nov 2014 19:40:05 +0000 (14:40 -0500)]
Remove single-debian-patch
Margaret Wasserman [Tue, 4 Nov 2014 20:35:09 +0000 (15:35 -0500)]
Remove period from default configuration message.
Margaret Wasserman [Tue, 4 Nov 2014 20:30:28 +0000 (15:30 -0500)]
Add default aaa server to config printout, remove redundant log mesage.
Sam Hartman [Thu, 6 Nov 2014 18:54:01 +0000 (13:54 -0500)]
Enable single debian patch
Sam Hartman [Tue, 4 Nov 2014 20:50:30 +0000 (15:50 -0500)]
Print default realm from Config (LP: #1386654)
Sam Hartman [Tue, 4 Nov 2014 20:47:00 +0000 (15:47 -0500)]
Merge branch 'master' into debian
Include printf for default realm
Sam Hartman [Tue, 4 Nov 2014 20:46:51 +0000 (15:46 -0500)]
update spec version
Margaret Wasserman [Tue, 4 Nov 2014 20:35:09 +0000 (15:35 -0500)]
Remove period from default configuration message.
Margaret Wasserman [Tue, 4 Nov 2014 20:30:28 +0000 (15:30 -0500)]
Add default aaa server to config printout, remove redundant log mesage.
Sam Hartman [Tue, 14 Oct 2014 06:28:28 +0000 (02:28 -0400)]
TODONES!
Sam Hartman [Wed, 8 Oct 2014 18:33:33 +0000 (14:33 -0400)]
Fix home directory of trust router user in centos packaging
Sam Hartman [Tue, 7 Oct 2014 14:32:05 +0000 (10:32 -0400)]
Update version in spec file
Sam Hartman [Tue, 7 Oct 2014 13:33:03 +0000 (09:33 -0400)]
wrap changelog line
Sam Hartman [Tue, 7 Oct 2014 11:20:13 +0000 (07:20 -0400)]
New upstream version
Sam Hartman [Tue, 7 Oct 2014 11:17:39 +0000 (07:17 -0400)]
record new upstream branch created by importing moonshot-trust-router_1.4.1.orig.tar.gz
Sam Hartman [Wed, 27 Aug 2014 23:05:15 +0000 (19:05 -0400)]
gitignore
INclude gitignore files not distributed in upstream tarball
Patch-Name: gitignore
Sam Hartman [Tue, 7 Oct 2014 11:17:39 +0000 (07:17 -0400)]
Import moonshot-trust-router_1.4.1.orig.tar.gz
Sam Hartman [Tue, 7 Oct 2014 10:10:28 +0000 (06:10 -0400)]
Mark version 1.4.1
Sam Hartman [Tue, 7 Oct 2014 10:08:55 +0000 (06:08 -0400)]
Set busy timeout
Set a busy timeout in the tids sqlite3 setup code so that we do not
fail on any database locking. As an example in 1.4 if two tids
processes try to write at the same time, one will fail.
Sam Hartman [Tue, 7 Oct 2014 10:02:35 +0000 (06:02 -0400)]
tr_config: remove free calls
Since we're using talloc, we only need to free the entire
configuration and that will cascade to sub objects. Remove calls to
free, which are wrong anyway for talloc'd memory.
Sam Hartman [Tue, 7 Oct 2014 09:57:51 +0000 (05:57 -0400)]
tr_req_handler: Handle non-defaulted case
In 1.4, we broke forwarding requests that were not defaulted. We
looked up the community as a member of the community rather than the
realm. Fix this logic error.
Also, update error messages to be more accurate and to fibx a spelling error.
Sam Hartman [Fri, 3 Oct 2014 20:22:44 +0000 (16:22 -0400)]
Fix lintian errors
* Fix lintian errors:
- Update LSB header for tids init script
- Make tids wrapper executable
- Override things lintian gets wrong
Sam Hartman [Fri, 3 Oct 2014 15:16:12 +0000 (11:16 -0400)]
Fix umask of database
Sam Hartman [Fri, 3 Oct 2014 14:20:41 +0000 (10:20 -0400)]
Remove debugging and fix postinst script to work when SHELL is not set.
Sam Hartman [Thu, 2 Oct 2014 20:45:42 +0000 (16:45 -0400)]
Even more debugging
Sam Hartman [Thu, 2 Oct 2014 20:01:34 +0000 (16:01 -0400)]
Even more debugging
Sam Hartman [Thu, 2 Oct 2014 02:37:51 +0000 (22:37 -0400)]
Add debugging to postinst to try and understand dvd creation bug
Sam Hartman [Wed, 1 Oct 2014 17:51:50 +0000 (13:51 -0400)]
postinst quiet about user creation
* postinst quiet about user creation
* tids.init:fix run levels
Sam Hartman [Tue, 30 Sep 2014 19:22:07 +0000 (15:22 -0400)]
Create a schema on upgrade or install
Sam Hartman [Tue, 30 Sep 2014 18:53:47 +0000 (14:53 -0400)]
Update to fix bug in init script, Thanks Stefan
Stefan Paetow [Tue, 30 Sep 2014 14:06:59 +0000 (15:06 +0100)]
Update moonshot-trust-router.tids.init
Remove an erroneous $ sign
Sam Hartman [Fri, 26 Sep 2014 15:41:58 +0000 (11:41 -0400)]
Fix typo
Sam Hartman [Fri, 26 Sep 2014 15:26:38 +0000 (11:26 -0400)]
merge patched-debian into debian
Sam Hartman [Fri, 26 Sep 2014 15:26:15 +0000 (11:26 -0400)]
Bring back portal.cfg and manual.cfg
Patch-Category: upstream
Sam Hartman [Fri, 26 Sep 2014 14:57:51 +0000 (10:57 -0400)]
move tids.init to redhat
Patch from Stefan Paetow
Sam Hartman [Fri, 26 Sep 2014 14:46:47 +0000 (10:46 -0400)]
Install tids init script
Patch by Stefan Paetow;modified slightly for Debian conventions.
Sam Hartman [Fri, 26 Sep 2014 14:02:06 +0000 (10:02 -0400)]
change version to 1.4-1
New Upstream version
Sam Hartman [Wed, 27 Aug 2014 23:05:15 +0000 (19:05 -0400)]
gitignore
INclude gitignore files not distributed in upstream tarball
Patch-Name: gitignore
Sam Hartman [Fri, 26 Sep 2014 13:58:14 +0000 (09:58 -0400)]
Import moonshot-trust-router_1.4.orig.tar.gz
Sam Hartman [Fri, 26 Sep 2014 13:58:14 +0000 (09:58 -0400)]
record new upstream branch created by importing moonshot-trust-router_1.4.orig.tar.gz
Sam Hartman [Fri, 26 Sep 2014 13:51:42 +0000 (09:51 -0400)]
Actually include *.cfg in future source tarballs
Sam Hartman [Fri, 26 Sep 2014 13:41:44 +0000 (09:41 -0400)]
dist extra files in redhat
Margaret Wasserman [Tue, 23 Sep 2014 19:23:06 +0000 (15:23 -0400)]
Merge Stefan's changes for TIDS init scripts for Centos.
projects / trust_router.git / log