Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Ready for libradsec-0.0.5.libradsec-0.0.5libradsec | Linus Nordberg | 2014-02-03 | 3 | -3/+3 |
| | |||||
* | Add PRNG improvements to CHANGES. | Linus Nordberg | 2014-02-03 | 1 | -0/+2 |
| | |||||
* | Update documentation with info on multithread protection. | Linus Nordberg | 2013-12-20 | 1 | -1/+6 |
| | |||||
* | Detect POSIX threads at configure time and use them for OpenSSL. | Linus Nordberg | 2013-12-20 | 3 | -2/+65 |
| | |||||
* | Don't use deprecated 'INCLUDES' variable in Makefile.am files. | Linus Nordberg | 2013-12-20 | 5 | -5/+5 |
| | |||||
* | Remove unused code. | Linus Nordberg | 2013-12-20 | 2 | -77/+0 |
| | |||||
* | Improve initialisation of OpenSSL PRNG. | Linus Nordberg | 2013-12-20 | 7 | -25/+99 |
| | | | | Basic idea taken from Tor. | ||||
* | Bump version number. | Linus Nordberg | 2013-12-18 | 1 | -1/+1 |
| | |||||
* | Distribute new CHANGES file.libradsec-0.0.4 | Linus Nordberg | 2013-12-18 | 1 | -1/+1 |
| | |||||
* | Update documentation and configure.ac for libradsec-0.0.4. | Linus Nordberg | 2013-12-18 | 4 | -7/+15 |
| | |||||
* | Add a debug printout when dropping an incoming response message. | Linus Nordberg | 2013-11-18 | 1 | -1/+3 |
| | | | | Also, terminate another debug message with \n. | ||||
* | Avoid leaking memory when receiving a bad response. | Linus Nordberg | 2013-11-18 | 1 | -11/+14 |
| | | | | | | | | A badly authenticated response message or one that didn't decode or decrypt correctly was never freed. If caller didn't pass pkt_out, any response was leaked as well. As a bonus, the code is now readable too. | ||||
* | Stop rs_request_send() from leaking RSE_TIMEOUT_CONN and RSE_TIMEOUT_IO. | Linus Nordberg | 2013-11-18 | 1 | -5/+7 |
| | | | | | | | | If sending or receiving time out, pop the error off the stack before continuing the loop. Push a new error, RS_TIMEOUT, before timing out for real. Addresses LIBRADSEC-3. | ||||
* | Disable/delete events in the timeout callback. | Linus Nordberg | 2013-11-18 | 1 | -0/+15 |
| | | | | | | | | | | | | | Without this, the sequence (1) send (successfully) (2) receive (timeout) (3) resend (successfully) will have the read event from (2) trigger a read in (3) and the response is lost. Addresses LIBRADSEC-3. | ||||
* | Make sure that configure without --enable-tls works. | Linus Nordberg | 2013-11-15 | 1 | -11/+14 |
| | | | | | Also, --disable-tls, --enable-tls and --enable-tls=no. Closes LIBRADSEC-2. | ||||
* | Merge branch 'libradsec' of git.nordu.net:radsecproxy into libradsec | Linus Nordberg | 2013-10-03 | 1 | -1/+2 |
|\ | | | | | | | | | | | | | | | # Please enter a commit message to explain why this merge is necessary, # especially if it merges an updated upstream into a topic branch. # # Lines starting with '#' will be ignored, and an empty message aborts # the commit. | ||||
| * | Enable TLS by default, configure time. | Linus Nordberg | 2013-10-01 | 1 | -1/+2 |
| | | |||||
* | | Implement disable_hostname_check config option. | Linus Nordberg | 2013-10-03 | 3 | -0/+6 |
|/ | | | | Patch by Sam Hartman. | ||||
* | Have the library depend on radsec.sym. | Linus Nordberg | 2013-05-17 | 1 | -0/+1 |
| | |||||
* | Merge branch 'libradsec-add-avp-2' into libradsec | Linus Nordberg | 2013-05-17 | 5 | -5/+61 |
|\ | | | | | | | | | Conflicts: lib/Makefile.am | ||||
| * | Export rs_packet_add_avp() and set library revision.libradsec-add-avp-2 | Linus Nordberg | 2013-05-08 | 2 | -1/+2 |
| | | | | | | | | | | Correct library revision is 1:0:1, given that the last "released" library was 0:0:0. (The current 1:0:0 is wrong.) | ||||
| * | Add rs_packet_add_avp() and use it. | Linus Nordberg | 2013-05-08 | 3 | -4/+59 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | rs_packet_create_authn_request() now uses rs_packet_add_avp() instead of rs_packet_append_avp() which makes it possible to create a authentication packet without knowing the shared secret. Calling rs_packet_add_avp() on a packet is incompatible with using rs_packet_append_avp() on the same packet but since rs_packet_create_authn_request() adds attribute-value pairs for user name and password only if those arguments are supplied, code that doesn't use user name and password (i.e. mech_eap) should still be fine. | ||||
* | | Don't provide bogus info in an error. | Linus Nordberg | 2013-05-17 | 1 | -3/+1 |
| | | |||||
* | | Move PSK example configuration to a separate file. | Linus Nordberg | 2013-05-17 | 2 | -15/+18 |
| | | |||||
* | | Fix typo. | Linus Nordberg | 2013-05-15 | 1 | -1/+1 |
| | | |||||
* | | Don't crash on reading invalid messages. | Linus Nordberg | 2013-05-15 | 4 | -37/+40 |
| | | | | | | | | | | Also, invoke disconnected callback and close connection in error cases. | ||||
* | | Whitespace changes in license headers. | Linus Nordberg | 2013-05-09 | 15 | -15/+15 |
| | | |||||
* | | Update copyright years. | Linus Nordberg | 2013-05-09 | 18 | -31/+35 |
| | | |||||
* | | Include stdlib.h everywhere we call (m|c)alloc. | Linus Nordberg | 2013-05-09 | 3 | -2/+5 |
| | | |||||
* | | Use malloc+memcpy rather than calloc+strcpy in rs_strdup. | Linus Nordberg | 2013-05-09 | 1 | -5/+10 |
| | | | | | | | | For effiency (but triggered by calloc needing unistd.h on Darwin). | ||||
* | | Revert "Bump library interface revision." | Linus Nordberg | 2013-05-08 | 1 | -1/+1 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | So there were two things wrong with that commit. 1. Library interface revision should be bumped only immediately before a public release. 2. Given the changes in the library, it should change to 0:1:0 since the interface didn't change (including not being extended). This reverts commit b9e967b3cde6af41cd0e863e9ff073897019625a. Conflicts: lib/Makefile.am | ||||
* | | Clarify and reformat comments on how to use Libtool's -version-info. | Linus Nordberg | 2013-05-08 | 1 | -10/+10 |
| | | |||||
* | | Pass make distcheck. | Linus Nordberg | 2013-05-08 | 5 | -12/+19 |
| | | |||||
* | | Don't include tests in SUBIDRS after all. | Linus Nordberg | 2013-05-08 | 1 | -1/+2 |
| | | | | | | | | | | It requires a running radius server. That's not a nice thing to require for something like distcheck. | ||||
* | | Initial RPM packaging | Linus Nordberg | 2013-05-08 | 3 | -5/+97 |
| | | | | | | | | | | | | | | | | | | | | | | Adapted from commit 8ff4e9ab2308fc6ee1e9b140d85ba45eff5287ce Author: Sam hartman <hartmans@painless-security.com> Date: Mon Oct 10 15:25:11 2011 +0100 Conflicts: lib/Makefile.am lib/configure.ac | ||||
* | | Add a few bits to README. | Linus Nordberg | 2013-05-08 | 1 | -8/+23 |
| | | |||||
* | | Exit tests with number of failures. | Linus Nordberg | 2013-05-08 | 1 | -2/+4 |
| | | | | | | | | Now 'make check' really fails when a test fails. | ||||
* | | Add 'tests' to SUBDIRS to make 'make check' work. | Linus Nordberg | 2013-05-08 | 1 | -1/+1 |
| | | |||||
* | | Constify the MD5 implementation. | Linus Nordberg | 2013-05-08 | 2 | -4/+4 |
| | | |||||
* | | Push an error on the error stack when returning !RSE_OK. | Linus Nordberg | 2013-05-08 | 1 | -1/+1 |
|/ | |||||
* | Revive RSE_MAX. | Linus Nordberg | 2013-05-08 | 1 | -0/+1 |
| | | | | It's being used after all. | ||||
* | Add an assert in error handling code. | Linus Nordberg | 2013-05-08 | 1 | -0/+2 |
| | |||||
* | Remove an unused error code and unusued RSE_MAX. | Linus Nordberg | 2013-05-08 | 2 | -50/+0 |
| | | | | Also, remove unused file attr.c. | ||||
* | Follow API change in tests. | Linus Nordberg | 2013-05-08 | 1 | -5/+3 |
| | |||||
* | Revert "Add formal argument 'secret' to two public functions." | Linus Nordberg | 2013-05-08 | 5 | -21/+12 |
| | | | | | | | This reverts commit 09d1cff2418a900b587b2113f508984f2417cc11. Conflicts: lib/include/radsec/request.h | ||||
* | Add and fix RADIUS attributes (4b9e4cb1, e4b6e972). | Sam Hartman | 2013-05-07 | 3 | -5/+12 |
| | | | | | | | | | Fix capitalization in abfab dictionary Update to IETF RADIUS attributes draft-ietf-abfab-gss-eap has been approved; include IANA-issued standard radius attributes for Moonshot. Fix capitalization in abfab dictionary | ||||
* | Build include before building '.' | Linus Nordberg | 2013-05-07 | 1 | -1/+1 |
| | | | | Patch by Sam Hartman (ff1af013 in moonshot). | ||||
* | Use CUnit for tests. | Linus Nordberg | 2013-05-06 | 7 | -78/+71 |
| | | | | cgreen didn't seem properly maintained. CUnit seems to be widely used. | ||||
* | Bump library interface revision. | Linus Nordberg | 2013-05-06 | 1 | -1/+1 |
| | | | | | | | Commit edf4c047 claimed it did this but didn't really do it. Should really have been done as part of bumping the library version (0.0.2.dev in configure.ac). | ||||
* | Bump version to 0.0.4.dev to keep ahead of moonshot. | Linus Nordberg | 2013-05-06 | 2 | -2/+2 |
| |