New activity for FreeRADIUS (the high performance and highly configurable RADIUS server) ====== Try to open client socket in fr_server_domain_socket_perm() Just like in fr_server_domain_socket_peercred() Alan T. DeKok@2015-09-14T18:19:20Z Files modified: * src/main/command.c Commit diff: https://github.com/FreeRADIUS/freeradius-server/commit/8e926ea92c4ec049ab710... ====== Should skip the OCSP check Arran Cudbard-Bell@2015-09-14T18:18:31Z Files modified: * src/main/tls.c Commit diff: https://github.com/FreeRADIUS/freeradius-server/commit/6ccbb63216c088dec1429... ====== Don't unlink socket if we can't open it Alan T. DeKok@2015-09-14T17:50:47Z Files modified: * src/main/command.c Commit diff: https://github.com/FreeRADIUS/freeradius-server/commit/5e0c7a1f2232819477826... ====== Truncate to actual length, not by trailing zeros Alan T. DeKok@2015-09-14T17:50:44Z Files modified: * src/lib/radius.c Commit diff: https://github.com/FreeRADIUS/freeradius-server/commit/7e830c5f33ace8ba8b1eb... ====== Typo Arran Cudbard-Bell@2015-09-14T17:17:28Z Files modified: * src/main/tls.c Commit diff: https://github.com/FreeRADIUS/freeradius-server/commit/b53e7b97e5478604396e2... ====== For encrypted attributes, set explicit length if given for MS-CHAP-MPPE-Keys Alan T. DeKok@2015-09-14T14:51:49Z Files modified: * src/lib/radius.c Commit diff: https://github.com/FreeRADIUS/freeradius-server/commit/225174b593f2e2fb505c4... ====== Set explicit length for MS-CHAP-MPPE-Key Because it's encrypted with the same method as User-Password, BUT it contains binary data. So it may have embedded zeros. Which means the decoder needs to make it a fixed length, instead of looking for zeros Alan T. DeKok@2015-09-14T14:51:48Z Files modified: * share/dictionary.microsoft Commit diff: https://github.com/FreeRADIUS/freeradius-server/commit/25b1e8b2c748b42f13356... ====== Enforce more restraints, and allow "octets[24] encrypt=1" dict_addattr() can be called from places other than process_attribute() so we move some of the checks to process_attribute() This lets us do more checks on the "length" flag. And to allow "octets[24] encrypt=1" for MS-CHAP-MPPE-Key. Alan T. DeKok@2015-09-14T14:51:47Z Files modified: * src/lib/dict.c Commit diff: https://github.com/FreeRADIUS/freeradius-server/commit/e07e0661602ae23df3958... ====== The MS-CHAP-MPPE-Keys attribute has 24 octets of data, not 32 This makes no difference to anyone, as the receiver will always truncate it at 24 octets, and ignore the trailing zeros Alan T. DeKok@2015-09-14T14:51:46Z Files modified: * src/modules/rlm_mschap/rlm_mschap.c Commit diff: https://github.com/FreeRADIUS/freeradius-server/commit/e92ee2b8b60122a18a6ee... ====== update explanation of what we're doing Alan T. DeKok@2015-09-14T14:51:43Z Files modified: * src/main/xlat.c Commit diff: https://github.com/FreeRADIUS/freeradius-server/commit/fe740b120df45c818c062... ====== CID 1324334 Arran Cudbard-Bell@2015-09-14T00:34:24Z Files modified: * src/main/tls.c Commit diff: https://github.com/FreeRADIUS/freeradius-server/commit/af0887c1685f8b047950f... ====== -- This commit summary was generated @2015-09-15T00:00:03Z by lgfeed version 0.00 (https://github.com/arr2036/lgfeed).