InnerAttributes not escaped when transmitted to outter

Arran Cudbard-Bell a.cudbard-bell at sussex.ac.uk
Tue Jun 2 10:01:32 CEST 2009


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Stun Box wrote:
> 2009/6/2 Alan DeKok <aland at deployingradius.com>:
>> Stun Box wrote:
>>> I'm using PEAP/Mschapv2 with Windows machines. I need the user-name of
>>> the inner-tunnel when the authentication ends to assign the vlan id.
>> ...
>>> But it seems it has not been escaped...
>>> My User-Name  "DOMAIN/testx" becomes => "DOMAIN estxx"
>>> And if I try DOMAIN/user it works nicely...
>>>
>>>
>>> ++[eap] returns ok
>>> +- entering group post-auth {...}
>>> ++[exec] returns noop
>>>       expand: %{request:User-Name} -> ANKAMA\testx
>>>       expand: %{reply:User-Name} -> ANKAMA    estxx
>>>
>>> How can I escape this ?
>>  You should be able to set it by hand from the inner tunnel:
>>
>>        update outer.reply {
>>                User-Name = "%{User-Name}"
>>        }
>
> It does not work for me. The only way I succeed to get the innertunnel
> user-name is by setting the eap.conf / peap / use_tunneled_reply to
> yes.
> It does the same weird result with   "DOMAIN\nuser" => DOMAIN    nuserr
>
> Could the matter come from my configuration ?
>
Alan committed a fix to the git repository last night. It does a
straight copy of the value without parsing it, so should fix the issues
you've been seeing.

See http://git.freeradius.org/ for instructions on how to retrieve code
from the git repository.


Regards,
Arran
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.9 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEUEARECAAYFAkok3FwACgkQcaklux5oVKIfUACdGZ+63/oxgPw/iN5tmBwNiR6x
yEIAliN7tJ2z7HXI9uN1zsXbFBWQPi0=
=PBVU
-----END PGP SIGNATURE-----




More information about the Freeradius-Users mailing list