summaryrefslogtreecommitdiff
path: root/radsecproxy.c
Commit message (Collapse)AuthorAgeFilesLines
* Merge branch 'RADSECPROXY-77' into maint-1.6Linus Nordberg2017-08-021-3/+11
|\
| * Add mutex guarding realm refcount.RADSECPROXY-77Linus Nordberg2017-07-281-3/+11
| |
* | Move allocation of memory, making error case simpler.Linus Nordberg2017-08-011-7/+6
| |
* | Check return value from setsockopt().Linus Nordberg2017-08-011-2/+4
| | | | | | | | coverity: 1449508, 1449522.
* | Dont deref 'to' if it's NULL.Linus Nordberg2017-08-011-1/+2
| | | | | | | | coverity: 1450948
* | Free 'in' in success case too.Linus Nordberg2017-08-011-0/+1
| | | | | | | | coverity: 1449514
* | Revert ed6f9b47.Linus Nordberg2017-08-011-2/+1
| | | | | | | | | | | | | | Going to errexit doesn't free resconf as that commit claims. It does free conf though, which is good. coverity: 1449524
* | Don't pthread_join unless we actually created a thread.Linus Nordberg2017-08-011-1/+2
| | | | | | | | coverity: 1449504
* | maketlv() makes a copy of v, so free it.Linus Nordberg2017-08-011-3/+2
| | | | | | | | coverity: 1449503
* | add msg-id to debug log outputFabian Mauchle2017-08-011-3/+2
|/
* Revert partial fix for RADSECPROXY-69 (47ccc9f).Linus Nordberg2016-11-011-5/+1
| | | | This was potentially making things worse.
* Look at servers->dynamiclookuparg for deciding if a server is dynamic.Linus Nordberg2016-11-011-1/+5
| | | | | | | | | | The dynamiclookupcommand member of the _config_ of the server is being set to NULL when it's copied in confserver_cb(), resulting in dynamic discovery being done for realms that already have a server. Patch from Fabian Mauchle. Addresses RADSECPROXY-69.
* Fix null pointer dereference in decttl().Linus Nordberg2015-01-161-0/+3
| | | | Patch by Stephen Röttger.
* Fix use-after-free in _internal_removeserversubrealms().Linus Nordberg2015-01-161-2/+5
| | | | Patch by Stephen Röttger.
* Update copyright notice.Linus Nordberg2015-01-161-1/+1
| | | | | Conflicts: radsecproxy.c
* When CHAP-Password, copy Request Authenticator to CHAP-Challenge.Linus Nordberg2015-01-161-0/+22
| | | | | Conflicts: radmsg.h
* Have rewriteIn for servers use the correct config section.Linus Nordberg2015-01-141-2/+3
| | | | | Conflicts: ChangeLog
* Keep Proxy-State attributes in all replies to clients.Linus Nordberg2013-09-051-5/+13
| | | | Closes RADSECPROXY-52.
* Improve warning message when failing to resolve a dynamic server config.Linus Nordberg2013-09-021-2/+2
|
* Don't free struct clsrvconf members rewritein and rewriteout.Linus Nordberg2013-09-021-2/+2
| | | | | | | They are pointers into static struct hash *rewriteconfs and should live forever. Patch by Fabian Mauchle.
* Purge the duplication cache once per received packet.Linus Nordberg2013-09-021-0/+17
|
* Return free memory more aggressively.Linus Nordberg2013-09-021-0/+7
| | | | | | | | | | Have free(3) call sbrk(2) when there's 4 MB to free (default on Linux seems to be 128). Patch by Fabian Mauchle. Conflicts: configure.ac
* Create threads with a 32 KB stack rather than what happens to be the default.Linus Nordberg2013-09-021-5/+10
| | | | | | On Linux, the default stack size is typically 8 MB. Patch by Fabian Mauchle.
* Honour escaped slashes in regular expressions.Linus Nordberg2013-09-021-1/+3
| | | | Closes RADSECPROXY-51.
* Release a lock.Linus Nordberg2012-04-271-0/+1
| | | | Patch from Ralf Paffrath <paffrath@dfn.de>.
* Add experimental code for dynamic discovery (only if ↵Linus Nordberg2012-04-261-4/+41
| | | | | | ENABLE_EXPERIMENTAL_DYNDISC). Patch from Ralf Paffrath <paffrath@dfn.de>.
* Initialize ipv4only and ipv6only.selectfamilyLinus Nordberg2012-04-171-2/+2
|
* Add top-level config options IPv4Only and IPv6Only.Linus Nordberg2012-04-171-3/+17
| | | | | | Related to RADSECPROXY-37. TODO: Add documentation.
* Add client and server config options IPv4Only and IPv6Only.Linus Nordberg2012-04-171-4/+32
| | | | | | Related to RADSECPROXY-37. TODO: Add documentation.
* Block a dynamic server for 15 minutes if it's not working.Linus Nordberg2012-04-161-1/+1
| | | | This is the old number. We used 1 minute during testing.
* Don't treat exit 10 from dynamic scripts differently from any other non-zero ↵Linus Nordberg2012-04-121-8/+3
| | | | | | | | | | | code. clientwr() should treat the dynamic lookup as a failure and will not be any happier to know that the exact error was that it didn't resolv. The script can do whatever logging is wanted. That said, this commit also makes the scripts exit with 10 in order to signal failure.
* Keep track of a failing dynamic server and don't use it while failing.Linus Nordberg2012-04-121-8/+35
| | | | | | | | | | Also, sleep less than 15 minutes (900s), mainly for testing. This number will change. Also, die hard and explicitly if freeing an already freed config in freeclsrvconf(). This is part of fixing RADSECPROXY-33.
* Add/update copyright years.Linus Nordberg2012-04-121-1/+1
|
* Add config option PidFile.Linus Nordberg2012-04-111-0/+3
| | | | | | Note that `-i' on the command line overrides this config option. This closes RADSECPROXY-32.
* Copy three missing clsrvconf members when "merging configurations".Linus Nordberg2012-04-101-1/+4
|
* Don't free memory which others are still using.Linus Nordberg2012-04-091-1/+2
| | | | | | In the error case in confserver_cb() where compileserverconfig() we used to go to errexit and have resonf, passed as an argument through ARG, freed. Other parts are still using that conf.
* Fix two error printouts.Linus Nordberg2012-04-081-2/+2
|
* New option for client block - fticksVISINSTMaja Gorecka-Wolniewicz2011-12-211-0/+1
|
* Merge branch 'fticks_syslog2'Linus Nordberg2011-12-121-2/+13
|\
| * Reorder fticks command line options.Linus Nordberg2011-12-121-1/+1
| |
| * Rename DEBUG_LOG and FTICKS_LOG.Linus Nordberg2011-12-121-2/+3
| |
| * cosmeticsLinus Nordberg2011-12-121-6/+8
| |
| * F-Ticks logging changesMaja Gorecka-Wolniewicz2011-12-121-3/+11
| |
* | Use correct capitalisation for defaultClient and defaultServer.Linus Nordberg2011-12-121-4/+12
|/ | | | | | Used in 'tls defaultClient' and 'tls defaultServer' configuration blocks. Reported by Maja Gorecka-Wolniewicz.
* A DynamicLookupCommand exiting with 10 is treated like an empty server stanza.Linus Nordberg2011-10-081-2/+8
| | | | | | | | | This way a script can signal "not found". The naptr-eduroam.sh and radsec-dynsrv.sh scripts are changed to behave like this. Closes RADSECPROXY-22.
* Add --enable-fticks to configure.Linus Nordberg2011-09-271-0/+12
|
* Prepare for building tests.Linus Nordberg2011-09-271-1/+1
| | | | | Move main() out of radsecproxy.c. Build a static library and link a main.c with it.
* Make radsecproxy.h self-sustaining.Linus Nordberg2011-09-261-1/+0
|
* Formatting changes.Linus Nordberg2011-07-031-4/+2
|
* Don't print a pointer when trying to print a string.Linus Nordberg2011-07-031-1/+1
|