Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Revert ed6f9b47. | Linus Nordberg | 2017-08-01 | 1 | -2/+1 |
| | | | | | | | Going to errexit doesn't free resconf as that commit claims. It does free conf though, which is good. coverity: 1449524 | ||||
* | Don't pthread_join unless we actually created a thread. | Linus Nordberg | 2017-08-01 | 1 | -1/+2 |
| | | | | coverity: 1449504 | ||||
* | maketlv() makes a copy of v, so free it. | Linus Nordberg | 2017-08-01 | 1 | -3/+2 |
| | | | | coverity: 1449503 | ||||
* | add msg-id to debug log output | Fabian Mauchle | 2017-08-01 | 1 | -3/+2 |
| | |||||
* | Revert partial fix for RADSECPROXY-69 (47ccc9f). | Linus Nordberg | 2016-11-01 | 1 | -5/+1 |
| | | | | This was potentially making things worse. | ||||
* | Look at servers->dynamiclookuparg for deciding if a server is dynamic. | Linus Nordberg | 2016-11-01 | 1 | -1/+5 |
| | | | | | | | | | | The dynamiclookupcommand member of the _config_ of the server is being set to NULL when it's copied in confserver_cb(), resulting in dynamic discovery being done for realms that already have a server. Patch from Fabian Mauchle. Addresses RADSECPROXY-69. | ||||
* | Fix null pointer dereference in decttl(). | Linus Nordberg | 2015-01-16 | 1 | -0/+3 |
| | | | | Patch by Stephen Röttger. | ||||
* | Fix use-after-free in _internal_removeserversubrealms(). | Linus Nordberg | 2015-01-16 | 1 | -2/+5 |
| | | | | Patch by Stephen Röttger. | ||||
* | Update copyright notice. | Linus Nordberg | 2015-01-16 | 1 | -1/+1 |
| | | | | | Conflicts: radsecproxy.c | ||||
* | When CHAP-Password, copy Request Authenticator to CHAP-Challenge. | Linus Nordberg | 2015-01-16 | 1 | -0/+22 |
| | | | | | Conflicts: radmsg.h | ||||
* | Have rewriteIn for servers use the correct config section. | Linus Nordberg | 2015-01-14 | 1 | -2/+3 |
| | | | | | Conflicts: ChangeLog | ||||
* | Keep Proxy-State attributes in all replies to clients. | Linus Nordberg | 2013-09-05 | 1 | -5/+13 |
| | | | | Closes RADSECPROXY-52. | ||||
* | Improve warning message when failing to resolve a dynamic server config. | Linus Nordberg | 2013-09-02 | 1 | -2/+2 |
| | |||||
* | Don't free struct clsrvconf members rewritein and rewriteout. | Linus Nordberg | 2013-09-02 | 1 | -2/+2 |
| | | | | | | | They are pointers into static struct hash *rewriteconfs and should live forever. Patch by Fabian Mauchle. | ||||
* | Purge the duplication cache once per received packet. | Linus Nordberg | 2013-09-02 | 1 | -0/+17 |
| | |||||
* | Return free memory more aggressively. | Linus Nordberg | 2013-09-02 | 1 | -0/+7 |
| | | | | | | | | | | Have free(3) call sbrk(2) when there's 4 MB to free (default on Linux seems to be 128). Patch by Fabian Mauchle. Conflicts: configure.ac | ||||
* | Create threads with a 32 KB stack rather than what happens to be the default. | Linus Nordberg | 2013-09-02 | 1 | -5/+10 |
| | | | | | | On Linux, the default stack size is typically 8 MB. Patch by Fabian Mauchle. | ||||
* | Honour escaped slashes in regular expressions. | Linus Nordberg | 2013-09-02 | 1 | -1/+3 |
| | | | | Closes RADSECPROXY-51. | ||||
* | Release a lock. | Linus Nordberg | 2012-04-27 | 1 | -0/+1 |
| | | | | Patch from Ralf Paffrath <paffrath@dfn.de>. | ||||
* | Add experimental code for dynamic discovery (only if ↵ | Linus Nordberg | 2012-04-26 | 1 | -4/+41 |
| | | | | | | ENABLE_EXPERIMENTAL_DYNDISC). Patch from Ralf Paffrath <paffrath@dfn.de>. | ||||
* | Initialize ipv4only and ipv6only.selectfamily | Linus Nordberg | 2012-04-17 | 1 | -2/+2 |
| | |||||
* | Add top-level config options IPv4Only and IPv6Only. | Linus Nordberg | 2012-04-17 | 1 | -3/+17 |
| | | | | | | Related to RADSECPROXY-37. TODO: Add documentation. | ||||
* | Add client and server config options IPv4Only and IPv6Only. | Linus Nordberg | 2012-04-17 | 1 | -4/+32 |
| | | | | | | Related to RADSECPROXY-37. TODO: Add documentation. | ||||
* | Block a dynamic server for 15 minutes if it's not working. | Linus Nordberg | 2012-04-16 | 1 | -1/+1 |
| | | | | This is the old number. We used 1 minute during testing. | ||||
* | Don't treat exit 10 from dynamic scripts differently from any other non-zero ↵ | Linus Nordberg | 2012-04-12 | 1 | -8/+3 |
| | | | | | | | | | | | code. clientwr() should treat the dynamic lookup as a failure and will not be any happier to know that the exact error was that it didn't resolv. The script can do whatever logging is wanted. That said, this commit also makes the scripts exit with 10 in order to signal failure. | ||||
* | Keep track of a failing dynamic server and don't use it while failing. | Linus Nordberg | 2012-04-12 | 1 | -8/+35 |
| | | | | | | | | | | Also, sleep less than 15 minutes (900s), mainly for testing. This number will change. Also, die hard and explicitly if freeing an already freed config in freeclsrvconf(). This is part of fixing RADSECPROXY-33. | ||||
* | Add/update copyright years. | Linus Nordberg | 2012-04-12 | 1 | -1/+1 |
| | |||||
* | Add config option PidFile. | Linus Nordberg | 2012-04-11 | 1 | -0/+3 |
| | | | | | | Note that `-i' on the command line overrides this config option. This closes RADSECPROXY-32. | ||||
* | Copy three missing clsrvconf members when "merging configurations". | Linus Nordberg | 2012-04-10 | 1 | -1/+4 |
| | |||||
* | Don't free memory which others are still using. | Linus Nordberg | 2012-04-09 | 1 | -1/+2 |
| | | | | | | In the error case in confserver_cb() where compileserverconfig() we used to go to errexit and have resonf, passed as an argument through ARG, freed. Other parts are still using that conf. | ||||
* | Fix two error printouts. | Linus Nordberg | 2012-04-08 | 1 | -2/+2 |
| | |||||
* | New option for client block - fticksVISINST | Maja Gorecka-Wolniewicz | 2011-12-21 | 1 | -0/+1 |
| | |||||
* | Merge branch 'fticks_syslog2' | Linus Nordberg | 2011-12-12 | 1 | -2/+13 |
|\ | |||||
| * | Reorder fticks command line options. | Linus Nordberg | 2011-12-12 | 1 | -1/+1 |
| | | |||||
| * | Rename DEBUG_LOG and FTICKS_LOG. | Linus Nordberg | 2011-12-12 | 1 | -2/+3 |
| | | |||||
| * | cosmetics | Linus Nordberg | 2011-12-12 | 1 | -6/+8 |
| | | |||||
| * | F-Ticks logging changes | Maja Gorecka-Wolniewicz | 2011-12-12 | 1 | -3/+11 |
| | | |||||
* | | Use correct capitalisation for defaultClient and defaultServer. | Linus Nordberg | 2011-12-12 | 1 | -4/+12 |
|/ | | | | | | Used in 'tls defaultClient' and 'tls defaultServer' configuration blocks. Reported by Maja Gorecka-Wolniewicz. | ||||
* | A DynamicLookupCommand exiting with 10 is treated like an empty server stanza. | Linus Nordberg | 2011-10-08 | 1 | -2/+8 |
| | | | | | | | | | This way a script can signal "not found". The naptr-eduroam.sh and radsec-dynsrv.sh scripts are changed to behave like this. Closes RADSECPROXY-22. | ||||
* | Add --enable-fticks to configure. | Linus Nordberg | 2011-09-27 | 1 | -0/+12 |
| | |||||
* | Prepare for building tests. | Linus Nordberg | 2011-09-27 | 1 | -1/+1 |
| | | | | | Move main() out of radsecproxy.c. Build a static library and link a main.c with it. | ||||
* | Make radsecproxy.h self-sustaining. | Linus Nordberg | 2011-09-26 | 1 | -1/+0 |
| | |||||
* | Formatting changes. | Linus Nordberg | 2011-07-03 | 1 | -4/+2 |
| | |||||
* | Don't print a pointer when trying to print a string. | Linus Nordberg | 2011-07-03 | 1 | -1/+1 |
| | |||||
* | Add test lost in 480942e6 back. | Linus Nordberg | 2011-04-05 | 1 | -1/+2 |
| | |||||
* | Do F-Ticks reporting only for Access-Accept and Access-Reject. | Linus Nordberg | 2011-04-05 | 1 | -3/+3 |
| | |||||
* | Move configure_fticks to fticks.c. | Linus Nordberg | 2011-04-04 | 1 | -66/+2 |
| | |||||
* | Move F-Ticks logging to fticks.c. | Linus Nordberg | 2011-04-04 | 1 | -73/+2 |
| | |||||
* | Add F-Ticks logging support. | Linus Nordberg | 2011-04-04 | 1 | -26/+104 |
| | |||||
* | Remove dashes from all options F-Ticks.* for consistency. | Linus Nordberg | 2011-04-04 | 1 | -6/+6 |
| |