don't add Message-Authenticator for TLS connections

author Alan T. DeKok <aland@freeradius.org>

Fri, 21 Jul 2023 19:12:34 +0000 (15:12 -0400)

committer Alan T. DeKok <aland@freeradius.org>

Fri, 21 Jul 2023 19:12:34 +0000 (15:12 -0400)
author Alan T. DeKok <aland@freeradius.org>
Fri, 21 Jul 2023 19:12:34 +0000 (15:12 -0400)
committer Alan T. DeKok <aland@freeradius.org>
Fri, 21 Jul 2023 19:12:34 +0000 (15:12 -0400)
diff --git a/src/main/realms.c b/src/main/realms.c

index 83f7559bf01dda1ee9458e0f81aedf8c608376e2..33d999b6512a0fd6f1e7f0bc8a81760c24e39a0d 100644 (file)
--- a/src/main/realms.c
+++ b/src/main/realms.c
@@ -2725,9 +2725,7 @@ void home_server_update_request(home_server_t *home, REQUEST *request)
          *      unless one already exists.
          */
         if ((request->packet->code == PW_CODE_ACCESS_REQUEST) &&
-#ifdef WITH_RADIUSV11
-           !request->proxy->radiusv11 &&
-#endif
+           !home->tls &&
             !fr_pair_find_by_num(request->proxy->vps, PW_MESSAGE_AUTHENTICATOR, 0, TAG_ANY)) {
                 fr_pair_make(request->proxy, &request->proxy->vps,
                          "Message-Authenticator", "0x00",
author	Alan T. DeKok <aland@freeradius.org>
	Fri, 21 Jul 2023 19:12:34 +0000 (15:12 -0400)
committer	Alan T. DeKok <aland@freeradius.org>
	Fri, 21 Jul 2023 19:12:34 +0000 (15:12 -0400)