Note about !*

Brian Candler B.Candler at pobox.com
Thu Nov 25 17:26:06 CET 2010


In 'man unlang' it says:

              !*     Delete all occurances of the named attribute,  no matter
                     what the value.

I've just found that

    update reply {
        Framed-IP-Address !* ""
    }

generates a run-time error:
ERROR: Failed parsing value "" for attribute Framed-IP-Address: Failed to find IP address for 

You also can't write

    update reply {
        Framed-IP-Address !* ANY
    }

as this generates an error on startup:

 Module: Loading virtual module applyFilterOnPasswordError
/etc/freeradius/policy.conf[162]: ERROR: Failed to find IP address for ANY
/etc/freeradius/policy.conf[158]: Failed to parse "update" subsection.

What you apparently need is:

    update reply {
        Framed-IP-Address !* 0.0.0.0
    }

If this isn't considered a bug, I suggest the manpage is updated. e.g.

"Delete all occurances of the name attribute, no matter what the value.
However, the value you provide must still be consistent with the type of
the attribute being removed, e.g. Framed-IP-Address !* 0.0.0.0

Regards,

Brian.



More information about the Freeradius-Users mailing list