summaryrefslogtreecommitdiffstats
path: root/usr.sbin/radiusd (follow)
Commit message (Collapse)AuthorAgeFilesLines
* ce examples of "Ar arg Ar arg" with "Ar arg arg" and stop the spread;jmc2020-04-231-2/+2
|
* replace examples of "Ic arg Ic arg" with "Ic arg arg" and stop the spread;jmc2020-04-231-4/+4
|
* briefly mention /etc/examples/ in the FILES section of all theschwarze2020-02-101-2/+4
| | | | | manual pages that document the corresponding configuration files; OK jmc@, and general direction discussed with many
* Strip out the optional login style before looking up user in passwd.millert2019-12-141-1/+2
| | | | Reported by Dennis Lindroos. OK tb@
* don't crash with *NULL if user does not existderaadt2019-12-031-5/+7
| | | | from discussion with jsg
* Consistently use _rcctl enable foo_ in examples, it's simpler and lesslandry2019-11-101-5/+10
| | | | | | | | | | | | | error prone than manually editing rc.conf.local, and also works to enable ipsec and accounting. tweak from schwarze@ to use the \(dq\(dq syntax for quotes in '.Dl foo_flags="" lines' instead of \&"\&". while at it, fix a reference to a bogus /dev/dhclient.conf file that recently snuck in. ok jmc@ deraadt@ schwarze@
* snprintf/vsnprintf return < 0 on error, rather than -1.deraadt2019-07-031-2/+2
|
* When system calls indicate an error they return -1, not some arbitraryderaadt2019-06-283-10/+10
| | | | | | value < 0. errno is only updated in this case. Change all (most?) callers of syscalls to follow this better, and let's see if this strictness helps us in the future.
* Fix the bug that radius module didn't work when the size of radius messageyasuoka2019-04-033-25/+25
| | | | changes.
* tweak previous;jmc2019-04-011-3/+4
|
* Pass the debug status to modules. Also some non functional changesyasuoka2019-04-015-18/+27
| | | | (comment, log message, and rearrange lines).
* Update authenticator and message authenticator always. Previous wasyasuoka2019-04-016-29/+17
| | | | | | to keep the original authenticators and modify them only if needed. But actually, there supposed to be no case such that the original authenticators can be used for the client. Original diff from IIJ.
* Update radiusd.conf(5) man page and its example to recommend toyasuoka2019-04-011-14/+24
| | | | | surround words with double quote. Also fix a bug in the man page that module argument was missing for "module set".
* Make "secret" become a required configuration for both client andyasuoka2019-04-013-31/+38
| | | | | radius module. "secret" for client was required already, but it hadn't cause an error if it's missing. Original diff from IIJ.
* Fix a memory leak.yasuoka2019-03-311-2/+2
|
* Fix white spaces and a typo.yasuoka2019-03-311-6/+6
|
* Modify radiusd_bsdauth module to do "fork + exec" main process instead ofyasuoka2019-03-311-24/+62
| | | | | just fork to have separate ASLR/cookies per process. Based on claudio@ work for bgpd.
* Remove "proc" from pledge(2) since it is not needed even ifdefyasuoka2019-03-311-6/+1
| | | | RADIUSD_DEBUG.
* Save errno before doing other things. Also add __deade for fatal() andyasuoka2019-03-312-8/+12
| | | | fatalx().
* Use u_char for buffer in yylex. This happened on the other parse.yyasuoka2019-03-291-6/+6
| | | | already.
* Add printf format attributes to yyerror() in parse.y. This happened alreadyyasuoka2019-03-291-6/+8
| | | | on the other parse.y. Also fix the format warnings.
* (unsigned) means (unsigned int) which on ptrdiff_t or size_t or otherderaadt2019-02-131-3/+3
| | | | | | larger types really is a range reduction... Almost any cast to (unsigned) is a bug. ok millert tb benno
* - odd condition/test in PF lexersashan2018-11-011-2/+3
| | | | | | | | | | | | | | (and other lexers too) This commit rectifies earlier change: in the lex... even inside quotes, a \ followed by space or tab should expand to space or tab, and a \ followed by newline should be ignored (as a line continuation). compatible with the needs of hoststated (which has the most strict quoted string requirements), and ifstated (where one commonly does line continuations in strings). OK deraadt@, OK millert@
* Fix a spelling in log messages.yasuoka2018-10-091-2/+2
| | | | diff from Lukasz Ratajski
* Fix segmentation fault on radiusd(8) when exiting.mestre2018-08-011-3/+5
| | | | | | | | | If one of the configured modules doesn't have a secret setup then module->secret == NULL which would call strlen(NULL), within freezero(3), and that shouldn't happen, but in this case since the call is done it segfaults and the daemon is not properly shutdown. cluebat stick provided by semarie@, OK tb@ and deraadt@
* No need to mention which memory allocation entry point failed (malloc,krw2018-07-091-4/+4
| | | | | | | | | calloc or strdup), we just need to log that we ran out of memory in a particular function. Recommended by florian@ and deraadt@ ok benno@ henning@ tb@
* Be consistent in warn() and log_warn() usage whenkrw2018-07-081-3/+3
| | | | | | | | running out of memory. Next step, be correct *and* consistent. ok dennis@ tb@ benno@ schwarze@
* add missing HISTORY; based on CVS logs and release announcementsschwarze2017-10-171-2/+9
|
* Use waitpid()/EINTR idiom for the specific pid, rather than generic wait(),deraadt2017-08-211-6/+10
| | | | | | | | in case the parent process was started with a dangling child. This style ensures any potential parent:child interlock isn't disrupted due to the "wrong" child being waited on first. Then the other other childs can safely zombie. ok millert jca brynet
* Initialize the length parameter for radius_get_vs_raw_attr() sinceyasuoka2017-06-131-1/+4
| | | | it's read/write. diff from IIJ.
* Don't call TAILQ_REMOVE twice. This caused radiusd crash if it has ayasuoka2017-05-301-4/+2
| | | | pending request when it stops.
* A few more freezero() usesderaadt2017-05-211-4/+2
| | | | ok yasuoka mikeb
* Bring radiusd log.c copyright in line with other program's log.cbluhm2017-03-291-4/+4
| | | | | and other radiusd source files. Remove the LOSS OF MIND clause. OK henning@ yasuoka@ deraadt@
* Fix typo in FILES sectionjca2017-03-131-5/+5
| | | | from Pierre Emeriaud
* Stop using "DEBUG" make variable for extra debugs.yasuoka2017-02-211-5/+5
|
* some fixes from rob pierce; ok yasuokajmc2016-09-201-3/+12
|
* Add missing $OpenBSD$ line and remove an unnecessary comment line.yasuoka2016-08-271-1/+1
|
* Change last non-/gnu/ fcntl(x, F_GETFL, 0) strays to fcntl(x, F_GETFL).krw2016-04-161-2/+2
| | | | | | No functional change. ok millert@
* remove "abort" promise from debugging code in radiusdsemarie2016-04-131-2/+2
| | | | | | it is the default now, and the promise name isn't valid anymore. ok yasuoka@
* Move more fcntl(,F_GETFL,0) -> fcntl(,F_GETFL).krw2016-04-051-2/+2
| | | | | | No functional change. ok guenther@
* Instead of creating a socket with socket() or accept() and thenguenther2016-03-212-27/+7
| | | | | | | | setting the O_NONBLOCK flag on it with fcntl(F_SETFL) afterwards, just pass SOCK_NONBLOCK to socket() or accept4() and get it right to begin with. ok millert@ krw@ beck@ deraadt@ jca@
* fix a use after free in an error pathjsg2016-02-091-4/+4
| | | | ok yasuoka@
* Do not mix EX_* from sysexits.h and EXIT_* from stdlib.h, just usemillert2015-12-311-5/+4
| | | | EXIT_*.
* EAGAIN handling for imsg_read. OK henning@ benno@claudio2015-12-052-4/+5
|
* Remove NULL-checks before free()mmcc2015-12-051-7/+4
|
* Fix a couple typos. ok yasuoka@mmcc2015-12-011-3/+3
|
* Blank lines around pledge call.mmcc2015-11-031-1/+3
|
* Free the received radius packet when it is duplicated.yasuoka2015-10-271-2/+2
| | | | diff from Yuuichi Someya
* Initialize module_radius_req before use it.yasuoka2015-10-271-2/+2
| | | | diff from Yuuichi Someya
* Set O_NONBLOCK for UDP sockets not to block on recv(). Actuallyyasuoka2015-10-272-4/+31
| | | | | | block had happened if an error of the socket is handled by send(). diff from Yuuichi Someya.
Copyright © 1996 – 2023 Jason A. Donenfeld. All Rights Reverse Engineered.