]> git.ipfire.org Git - thirdparty/freeradius-server.git/log
thirdparty/freeradius-server.git
3 years agoDefine module_env_parsed_t to hold parsed module_env_t
Nick Porter [Mon, 27 Feb 2023 15:52:25 +0000 (15:52 +0000)] 
Define module_env_parsed_t to hold parsed module_env_t

3 years agoDefine module_env_t
Nick Porter [Mon, 27 Feb 2023 15:50:53 +0000 (15:50 +0000)] 
Define module_env_t

To hold rules for parsing config items into call specific tmpls.

3 years agoGet rid of unresolved explicit link request warning (#4925)
James Jones [Fri, 10 Mar 2023 16:53:51 +0000 (10:53 -0600)] 
Get rid of unresolved explicit link request warning (#4925)

It turns out that the link requests we use that work are to types,
values, and functions known at the time of the link request. This
doesn't work for not-yet-seen function parameters.

3 years agoFix typo in DHCPv4 schema
Arran Cudbard-Bell [Thu, 9 Mar 2023 22:55:21 +0000 (16:55 -0600)] 
Fix typo in DHCPv4 schema

3 years agoIt's OK to have multiple Framed-IPv6-Address attributes
Arran Cudbard-Bell [Thu, 9 Mar 2023 22:55:06 +0000 (16:55 -0600)] 
It's OK to have multiple Framed-IPv6-Address attributes

3 years agocall bfd_session_process() when receiving a packet
Alan T. DeKok [Thu, 9 Mar 2023 22:26:15 +0000 (17:26 -0500)] 
call bfd_session_process() when receiving a packet

for now, we run the unlang sections only when there's a state
change on receiving a packet.

We don't run unlang when receiving the continual "up" packets.

We don't run unlang when sending packets.

3 years agoerror message on auth failed
Alan T. DeKok [Thu, 9 Mar 2023 22:25:06 +0000 (17:25 -0500)] 
error message on auth failed

3 years agoRFC 5880 Section 6.8.3 says "seconds", not "usec"
Alan T. DeKok [Thu, 9 Mar 2023 22:23:17 +0000 (17:23 -0500)] 
RFC 5880 Section 6.8.3 says "seconds", not "usec"

3 years agoadd fr_bfd_packet_ok() and use it in proto_bfd_udp
Alan T. DeKok [Thu, 9 Mar 2023 22:11:46 +0000 (17:11 -0500)] 
add fr_bfd_packet_ok() and use it in proto_bfd_udp

3 years agoauthentication type updates
Alan T. DeKok [Thu, 9 Mar 2023 15:41:44 +0000 (10:41 -0500)] 
authentication type updates

implement simple auth type

enforce password length restrictions

3 years agoTurn off caller graph for strlcpy() (#4924)
James Jones [Thu, 9 Mar 2023 21:19:02 +0000 (15:19 -0600)] 
Turn off caller graph for strlcpy() (#4924)

We get the "missing" version of strlcpy() on Linux, which means
the other @hidecallergraph has to be in src/include/missing-h,
from which src/include/missing.h, which doxygen looks at, is
generated.

3 years agoAdd src/modules/rlm_ocsp/oscp.c to EXCLUDE (#4922)
James Jones [Thu, 9 Mar 2023 20:33:00 +0000 (14:33 -0600)] 
Add src/modules/rlm_ocsp/oscp.c to EXCLUDE (#4922)

That file currently isn't compiled, so there's no point in
having it in doxygen generated documentation.

3 years agoSkip the *call* graph (not caller) for xlat_init() (#4923)
James Jones [Thu, 9 Mar 2023 20:32:48 +0000 (14:32 -0600)] 
Skip the *call* graph (not caller) for xlat_init() (#4923)

3 years agoCorrect action name
Nick Porter [Thu, 9 Mar 2023 17:53:31 +0000 (17:53 +0000)] 
Correct action name

3 years agoTypo
Nick Porter [Thu, 9 Mar 2023 17:34:26 +0000 (17:34 +0000)] 
Typo

3 years agoRework documentation CI job 4921/head
Nick Porter [Thu, 9 Mar 2023 16:34:55 +0000 (16:34 +0000)] 
Rework documentation CI job

Split into two jobs, where the github publishing is only in the second.

3 years agoSimpler...
Arran Cudbard-Bell [Thu, 9 Mar 2023 15:30:19 +0000 (09:30 -0600)] 
Simpler...

3 years agoDon't leak memory
Nick Porter [Thu, 9 Mar 2023 11:41:34 +0000 (11:41 +0000)] 
Don't leak memory

3 years agoScheduled fuzzing: Update src/tests/fuzzer-corpus/dhcpv4.tar
github-actions[bot] [Thu, 9 Mar 2023 09:34:52 +0000 (09:34 +0000)] 
Scheduled fuzzing: Update src/tests/fuzzer-corpus/dhcpv4.tar

3 years agoScheduled fuzzing: Update src/tests/fuzzer-corpus/radius.tar
github-actions[bot] [Thu, 9 Mar 2023 09:34:49 +0000 (09:34 +0000)] 
Scheduled fuzzing: Update src/tests/fuzzer-corpus/radius.tar

3 years agoScheduled fuzzing: Update src/tests/fuzzer-corpus/util.tar
github-actions[bot] [Thu, 9 Mar 2023 09:34:46 +0000 (09:34 +0000)] 
Scheduled fuzzing: Update src/tests/fuzzer-corpus/util.tar

3 years agoScheduled fuzzing: Update src/tests/fuzzer-corpus/tftp.tar
github-actions[bot] [Thu, 9 Mar 2023 09:34:42 +0000 (09:34 +0000)] 
Scheduled fuzzing: Update src/tests/fuzzer-corpus/tftp.tar

3 years agoScheduled fuzzing: Update src/tests/fuzzer-corpus/vmps.tar
github-actions[bot] [Thu, 9 Mar 2023 09:34:39 +0000 (09:34 +0000)] 
Scheduled fuzzing: Update src/tests/fuzzer-corpus/vmps.tar

3 years agoScheduled fuzzing: Update src/tests/fuzzer-corpus/tacacs.tar
github-actions[bot] [Thu, 9 Mar 2023 09:34:37 +0000 (09:34 +0000)] 
Scheduled fuzzing: Update src/tests/fuzzer-corpus/tacacs.tar

3 years agoScheduled fuzzing: Update src/tests/fuzzer-corpus/dns.tar
github-actions[bot] [Thu, 9 Mar 2023 09:34:34 +0000 (09:34 +0000)] 
Scheduled fuzzing: Update src/tests/fuzzer-corpus/dns.tar

3 years agoScheduled fuzzing: Update src/tests/fuzzer-corpus/dhcpv6.tar
github-actions[bot] [Thu, 9 Mar 2023 09:34:30 +0000 (09:34 +0000)] 
Scheduled fuzzing: Update src/tests/fuzzer-corpus/dhcpv6.tar

3 years agothere's no need to set inst->el
Alan T. DeKok [Wed, 8 Mar 2023 22:05:44 +0000 (17:05 -0500)] 
there's no need to set inst->el

3 years agomore secret checks
Alan T. DeKok [Wed, 8 Mar 2023 21:38:31 +0000 (16:38 -0500)] 
more secret checks

3 years agoonly set secret_len if there's a secret
Alan T. DeKok [Wed, 8 Mar 2023 21:14:00 +0000 (16:14 -0500)] 
only set secret_len if there's a secret

and secrets may be binary blobs

3 years agofinal changes to allow the state machine to compile.
Alan T. DeKok [Wed, 8 Mar 2023 20:27:09 +0000 (15:27 -0500)] 
final changes to allow the state machine to compile.

Next step is to plug it into the mod_read() functions, and then
figure out how to get triggers and "packets to send" over to the
process handler.

3 years agomore checks for bad BFD packets in the mod_read() function
Alan T. DeKok [Wed, 8 Mar 2023 19:37:47 +0000 (14:37 -0500)] 
more checks for bad BFD packets in the mod_read() function

3 years agoscripts to use gdb && lldb from the source tree
Alan T. DeKok [Tue, 7 Mar 2023 20:40:15 +0000 (15:40 -0500)] 
scripts to use gdb && lldb from the source tree

3 years agotodo note
Alan T. DeKok [Tue, 7 Mar 2023 20:25:10 +0000 (15:25 -0500)] 
todo note

3 years agoprint out source IP of received packet, too
Alan T. DeKok [Tue, 7 Mar 2023 20:23:36 +0000 (15:23 -0500)] 
print out source IP of received packet, too

3 years agoparse peer port, and actually send packets
Alan T. DeKok [Tue, 7 Mar 2023 20:05:22 +0000 (15:05 -0500)] 
parse peer port, and actually send packets

3 years agoauth_type handling
Alan T. DeKok [Tue, 7 Mar 2023 19:41:18 +0000 (14:41 -0500)] 
auth_type handling

parse it, verify it, verify the secret, and sign the packets

3 years agodefine table for auth-type names and values.
Alan T. DeKok [Tue, 7 Mar 2023 19:18:49 +0000 (14:18 -0500)] 
define table for auth-type names and values.

3 years agoadd "event list set" function fort BFD
Alan T. DeKok [Thu, 2 Mar 2023 22:37:08 +0000 (17:37 -0500)] 
add "event list set" function fort BFD

and use it to bootstrap the state machine.

3 years agoallow matching listeners based on peer src_ipaddr
Alan T. DeKok [Thu, 2 Mar 2023 22:33:03 +0000 (17:33 -0500)] 
allow matching listeners based on peer src_ipaddr

3 years agoensure that src_ipaddr is set
Alan T. DeKok [Thu, 2 Mar 2023 22:29:08 +0000 (17:29 -0500)] 
ensure that src_ipaddr is set

3 years agoAdd LDAP schema -> ldif script and sync schemas and LDIFs
Arran Cudbard-Bell [Wed, 8 Mar 2023 20:20:49 +0000 (14:20 -0600)] 
Add LDAP schema -> ldif script and sync schemas and LDIFs

3 years agoImmediately deschedule
Arran Cudbard-Bell [Wed, 8 Mar 2023 20:05:39 +0000 (14:05 -0600)] 
Immediately deschedule

3 years agoAdd radiusFramedIpv6Address
Arran Cudbard-Bell [Wed, 8 Mar 2023 20:02:31 +0000 (14:02 -0600)] 
Add radiusFramedIpv6Address

3 years agoAdd connection config section to sample imap module
Nick Porter [Wed, 8 Mar 2023 14:10:33 +0000 (14:10 +0000)] 
Add connection config section to sample imap module

3 years agoImprove rlm_imap tests
Nick Porter [Tue, 7 Mar 2023 14:59:39 +0000 (14:59 +0000)] 
Improve rlm_imap tests

3 years agoUse proper types for fr_value_box_t dlist structures
Nick Porter [Mon, 6 Mar 2023 10:44:47 +0000 (10:44 +0000)] 
Use proper types for fr_value_box_t dlist structures

3 years agoAdd macro to create friendly type names for dlist head / entry structures
Nick Porter [Wed, 8 Mar 2023 10:38:01 +0000 (10:38 +0000)] 
Add macro to create friendly type names for dlist head / entry structures

3 years agogo to Admin-Down on fail
Alan T. DeKok [Thu, 2 Mar 2023 21:52:38 +0000 (16:52 -0500)] 
go to Admin-Down on fail

3 years agoadd length=uint8 notes
Alan T. DeKok [Thu, 2 Mar 2023 21:27:27 +0000 (16:27 -0500)] 
add length=uint8 notes

3 years agomove more of the state machine into proto_bfd
Alan T. DeKok [Thu, 2 Mar 2023 21:27:11 +0000 (16:27 -0500)] 
move more of the state machine into proto_bfd

the state machine doesn't send or receive packets, but that will
gradually get fixed.

3 years agoBFD packets don't get replies
Alan T. DeKok [Thu, 2 Mar 2023 02:25:49 +0000 (21:25 -0500)] 
BFD packets don't get replies

they just cause us to change our state machine.

Any packets we originate get written.  Somehow...

3 years agomove client list to simple rbtree
Alan T. DeKok [Thu, 2 Mar 2023 02:06:37 +0000 (21:06 -0500)] 
move client list to simple rbtree

so that we can loop over it ourselves.

And because we can't have ip/mask for BFD.  The packets are
always sent to a particular IP

3 years agoset TTL socket option
Alan T. DeKok [Wed, 1 Mar 2023 22:57:07 +0000 (17:57 -0500)] 
set TTL socket option

3 years agodo bounds checks on fields
Alan T. DeKok [Wed, 1 Mar 2023 22:56:47 +0000 (17:56 -0500)] 
do bounds checks on fields

3 years agoAdd @param for extra in client_afrom_cs() (#4914)
James Jones [Thu, 2 Mar 2023 20:09:48 +0000 (14:09 -0600)] 
Add @param for extra in client_afrom_cs() (#4914)

3 years agodocs: Fix antora errors
Nick Porter [Wed, 1 Mar 2023 16:40:52 +0000 (16:40 +0000)] 
docs: Fix antora errors

3 years agodocs: Update logo for Doxygen site
Nick Porter [Wed, 1 Mar 2023 19:02:33 +0000 (19:02 +0000)] 
docs: Update logo for Doxygen site

3 years agothe main proto_bfd module allocates peers
Alan T. DeKok [Wed, 1 Mar 2023 22:28:54 +0000 (17:28 -0500)] 
the main proto_bfd module allocates peers

3 years agodon't print out these values unless they're set
Alan T. DeKok [Wed, 1 Mar 2023 22:26:35 +0000 (17:26 -0500)] 
don't print out these values unless they're set

they confuse other protocols

3 years agoallow the caller to add extra bits after a client definition
Alan T. DeKok [Wed, 1 Mar 2023 22:09:56 +0000 (17:09 -0500)] 
allow the caller to add extra bits after a client definition

3 years ago"virtual_server" has not been supported for a while.
Alan T. DeKok [Wed, 1 Mar 2023 22:02:04 +0000 (17:02 -0500)] 
"virtual_server" has not been supported for a while.

3 years agoremove unused function
Alan T. DeKok [Wed, 1 Mar 2023 22:00:56 +0000 (17:00 -0500)] 
remove unused function

3 years agolet's not shout.
Alan T. DeKok [Wed, 1 Mar 2023 21:45:16 +0000 (16:45 -0500)] 
let's not shout.

RADCLIENT -> fr_client_t
RADCLIENT_LIST -> fr_client_list_t

3 years agomore sanity checks on values
Alan T. DeKok [Wed, 1 Mar 2023 21:20:53 +0000 (16:20 -0500)] 
more sanity checks on values

3 years agoinitialize reply packet
Alan T. DeKok [Wed, 1 Mar 2023 16:48:53 +0000 (11:48 -0500)] 
initialize reply packet

3 years agoGet rid of doxygen "Illegal member name found" warnings (#4913)
James Jones [Wed, 1 Mar 2023 19:50:02 +0000 (13:50 -0600)] 
Get rid of doxygen "Illegal member name found" warnings (#4913)

Analogous to not expanding STATE() hiding the type in
declarations, not expanding SBUFF_OUT_TALLOC_FUNC_NO_LEN_DEF()
hides function bodies. Not seeing them confuses doxygen.

3 years agoAdd proto_bfd_udp.so to RedHat packaging
Nick Porter [Wed, 1 Mar 2023 16:24:06 +0000 (16:24 +0000)] 
Add proto_bfd_udp.so to RedHat packaging

3 years agoneeded
Alan T. DeKok [Wed, 1 Mar 2023 15:39:30 +0000 (10:39 -0500)] 
needed

3 years agonote 3.2.x, too
Alan T. DeKok [Wed, 1 Mar 2023 15:27:22 +0000 (10:27 -0500)] 
note 3.2.x, too

3 years agoadd proto_bfd_udp
Alan T. DeKok [Wed, 1 Mar 2023 14:47:26 +0000 (09:47 -0500)] 
add proto_bfd_udp

3 years agodebug received packets
Alan T. DeKok [Wed, 1 Mar 2023 14:47:09 +0000 (09:47 -0500)] 
debug received packets

3 years agoonly require connection_set for TCP
Alan T. DeKok [Wed, 1 Mar 2023 14:38:40 +0000 (09:38 -0500)] 
only require connection_set for TCP

3 years agoadd proto_bfd
Alan T. DeKok [Tue, 28 Feb 2023 21:36:36 +0000 (16:36 -0500)] 
add proto_bfd

3 years agono longer need this
Alan T. DeKok [Tue, 28 Feb 2023 21:29:25 +0000 (16:29 -0500)] 
no longer need this

3 years agodocs: Update Doxygen project name and remove obsolete option
Nick Porter [Wed, 1 Mar 2023 12:18:22 +0000 (12:18 +0000)] 
docs: Update Doxygen project name and remove obsolete option

3 years agoUpdate documentation CI job to use new actions
Nick Porter [Wed, 1 Mar 2023 08:21:18 +0000 (08:21 +0000)] 
Update documentation CI job to use new actions

3 years agoAdd libfreeradius-bfd.so to RedHat packaging
Nick Porter [Wed, 1 Mar 2023 07:59:16 +0000 (07:59 +0000)] 
Add libfreeradius-bfd.so to RedHat packaging

3 years agoadd BFD decoder
Alan T. DeKok [Tue, 28 Feb 2023 21:07:09 +0000 (16:07 -0500)] 
add BFD decoder

3 years agoadd encoder for BFD, and test cases.
Alan T. DeKok [Tue, 28 Feb 2023 20:31:16 +0000 (15:31 -0500)] 
add encoder for BFD, and test cases.

There's no decoder, and no authentication tests yet

3 years agotypos "interval" not "internal"
Alan T. DeKok [Tue, 28 Feb 2023 19:45:56 +0000 (14:45 -0500)] 
typos "interval" not "internal"

3 years agoAdd missing xlat_frame_eval_resume() @params for doxygen (#4910)
James Jones [Tue, 28 Feb 2023 14:43:44 +0000 (08:43 -0600)] 
Add missing xlat_frame_eval_resume() @params for doxygen (#4910)

3 years agoGet rid of "explicit link to foo could not be resolved" warnings (#4912)
James Jones [Tue, 28 Feb 2023 14:43:32 +0000 (08:43 -0600)] 
Get rid of "explicit link to foo could not be resolved" warnings (#4912)

These turned up for a couple of reasons:
1. Macros expanding to variable declarations (here STATE());
   doxygen needs it expaded to see the declaration.
2. Forward references in @param

3 years agotrack requests and listeners
Alan T. DeKok [Mon, 27 Feb 2023 21:25:24 +0000 (16:25 -0500)] 
track requests and listeners

so that when a listener goes away, we cancel all requests
associated with it.

3 years agoUpdate Ciena dictionary
Nick Porter [Tue, 28 Feb 2023 08:04:31 +0000 (08:04 +0000)] 
Update Ciena dictionary

3 years agoBalance doxygen grouping commands (#4911)
James Jones [Mon, 27 Feb 2023 23:18:40 +0000 (17:18 -0600)] 
Balance doxygen grouping commands (#4911)

This is a minimal change to placate doxygen; I believe it's
consistent with the intent, but it definitely needs checking.

3 years agoAdd a cancel xlat which cancel's the current request or subrequest
Arran Cudbard-Bell [Mon, 27 Feb 2023 23:13:17 +0000 (17:13 -0600)] 
Add a cancel xlat which cancel's the current request or subrequest

3 years agoNDEBUG_UNUSED
Nick Porter [Mon, 27 Feb 2023 19:58:05 +0000 (19:58 +0000)] 
NDEBUG_UNUSED

3 years agoRevert "radius: Increase radius Access-Request timeouts significantly"
Arran Cudbard-Bell [Mon, 27 Feb 2023 02:18:50 +0000 (20:18 -0600)] 
Revert "radius: Increase radius Access-Request timeouts significantly"

This reverts commit 0f9808905ff8652102f6c50093fbc6ae7f5c5d2a.

3 years agoadd framework for network to notify workers that a socket has gone away
Alan T. DeKok [Mon, 27 Feb 2023 19:24:30 +0000 (14:24 -0500)] 
add framework for network to notify workers that a socket has gone away

3 years agoAdd process_bfd.so to RedHat packaging
Nick Porter [Mon, 27 Feb 2023 19:18:13 +0000 (19:18 +0000)] 
Add process_bfd.so to RedHat packaging

3 years agotypo
Nick Porter [Mon, 27 Feb 2023 15:06:36 +0000 (15:06 +0000)] 
typo

3 years agoCorrect condition for publishing doxygen content
Nick Porter [Mon, 27 Feb 2023 15:03:22 +0000 (15:03 +0000)] 
Correct condition for publishing doxygen content

3 years agofix build
Alan T. DeKok [Mon, 27 Feb 2023 14:39:48 +0000 (09:39 -0500)] 
fix build

3 years agostart of process_bfd state machine
Alan T. DeKok [Sun, 26 Feb 2023 23:13:14 +0000 (18:13 -0500)] 
start of process_bfd state machine

3 years agoallow the same packet code for request and reply
Alan T. DeKok [Mon, 27 Feb 2023 14:08:23 +0000 (09:08 -0500)] 
allow the same packet code for request and reply

3 years agoset TTL to 255, as suggested by RFC 5881
Alan T. DeKok [Sun, 26 Feb 2023 23:12:37 +0000 (18:12 -0500)] 
set TTL to 255, as suggested by RFC 5881

We likely want to have this configurable, so that the BFD links
can go slightly further.

3 years agouse port from RFC 5881
Alan T. DeKok [Sun, 26 Feb 2023 23:12:13 +0000 (18:12 -0500)] 
use port from RFC 5881

3 years agoremove references to ARP
Alan T. DeKok [Sun, 26 Feb 2023 15:02:58 +0000 (10:02 -0500)] 
remove references to ARP

3 years agodictionaries for BFD
Alan T. DeKok [Sat, 25 Feb 2023 15:06:03 +0000 (10:06 -0500)] 
dictionaries for BFD

3 years agoboth string and octets can be fixed size in arrays
Alan T. DeKok [Sat, 25 Feb 2023 14:59:45 +0000 (09:59 -0500)] 
both string and octets can be fixed size in arrays