← Back to branch summary

~ubuntu-branches/ubuntu/natty/freeradius/natty-security

~ubuntu-branches/ubuntu/natty/freeradius/natty-security

« back to all changes in this revision

Viewing changes to src/main/auth.c

Committer: Bazaar Package Importer
Author(s): Chuck Short
Date: 2009-11-04 11:08:45 UTC
mfrom: (1.1.13 upstream)
Revision ID: james.westby@ubuntu.com-20091104110845-igbovikpfp5i1s0t

Tags: 2.1.7+dfsg-0ubuntu1

* New upstream release.
* Clean up packaging.
* debian/freeradius.init:
+ Clean up init script.
+ Better init headers for dependency based boot stuff.

files added:
debian/TODO

debian/freeradius.manpages

debian/patches

debian/patches/00list

debian/patches/01-radiusd-to-freeradius.dpatch

debian/patches/02-dialupadmin-help.dpatch

doc/rfc/rfc5247.txt

doc/rfc/rfc5281.txt

doc/rfc/rfc5580.txt

man/man8/raddebug.8

raddb/attrs.access_challenge

raddb/modules/cui

raddb/modules/otp

raddb/modules/perl

raddb/modules/smsotp

raddb/modules/sqlcounter_expire_on_login

raddb/radrelay.conf.in

raddb/sites-available/originate-coa

raddb/sql/mysql/cui.conf

raddb/sql/mysql/cui.sql

raddb/sql/mysql/wimax.conf

raddb/sql/mysql/wimax.sql

raddb/sql/ndb

raddb/sql/ndb/README

raddb/sql/ndb/admin.sql

raddb/sql/ndb/schema.sql

redhat/README

scripts/freeradius_acct

scripts/freeradius_auth

scripts/freeradius_proxy_acct

scripts/freeradius_proxy_auth

scripts/logrotate.freeradius

scripts/raddebug

share/dictionary.alcatel.esam

share/dictionary.freeswitch

share/dictionary.iea

share/dictionary.infonet

share/dictionary.lancom

share/dictionary.networkphysics

share/dictionary.rfc5580

src/main/radconf2xml.c

src/modules/rlm_ruby

src/modules/rlm_ruby/Makefile.in

src/modules/rlm_ruby/configure

src/modules/rlm_ruby/configure.in

src/modules/rlm_ruby/example.rb

src/modules/rlm_ruby/rlm_ruby.c

src/modules/rlm_smsotp

src/modules/rlm_smsotp/Makefile.in

src/modules/rlm_smsotp/config.h.in

src/modules/rlm_smsotp/configure

src/modules/rlm_smsotp/configure.in

src/modules/rlm_smsotp/rlm_smsotp.c

src/modules/rlm_smsotp/rlm_smsotp.h

src/modules/rlm_sql/drivers/rlm_sql_freetds

src/modules/rlm_sql/drivers/rlm_sql_freetds/sql_freetds.c

files removed:
raddb/otp.conf

src/modules/rlm_sql/drivers/lib

files modified:
COPYRIGHT

Make.inc.in

Makefile

README

VERSION

acinclude.m4

aclocal.m4

configure

configure.in

debian/changelog

debian/control

debian/freeradius-iodbc.postinst *

debian/freeradius-krb5.postinst *

debian/freeradius-ldap.postinst *

debian/freeradius-mysql.postinst *

debian/freeradius-postgresql.postinst *

debian/freeradius.init *

debian/freeradius.install

debian/freeradius.postinst *

debian/freeradius.postrm *

debian/freeradius.prerm *

debian/rules

dialup_admin/bin/clean_radacct

dialup_admin/bin/log_badlogins

dialup_admin/bin/monthly_tot_stats

dialup_admin/bin/tot_stats

dialup_admin/bin/truncate_radacct

doc/ChangeLog

doc/bugs

man/man1/radclient.1

man/man5/unlang.5

man/man5/users.5

man/man8/radiusd.8

man/man8/radmin.8

raddb/Makefile

raddb/certs/Makefile

raddb/certs/README

raddb/certs/bootstrap

raddb/clients.conf

raddb/eap.conf

raddb/experimental.conf

raddb/ldap.attrmap

raddb/modules/attr_filter

raddb/modules/detail

raddb/modules/ldap

raddb/modules/mschap

raddb/modules/sql_log

raddb/modules/wimax

raddb/policy.conf

raddb/proxy.conf

raddb/radiusd.conf.in

raddb/sites-available/buffered-sql

raddb/sites-available/control-socket

raddb/sites-available/default

raddb/sites-available/dhcp

raddb/sites-available/robust-proxy-accounting

raddb/sites-available/status

raddb/sites-available/vmps

raddb/sql.conf

raddb/sql/mssql/schema.sql

raddb/sql/mysql/counter.conf

raddb/sql/mysql/ippool.conf

raddb/sql/mysql/schema.sql

raddb/sql/oracle/schema.sql

raddb/sql/postgresql/admin.sql

raddb/sql/postgresql/schema.sql

raddb/sqlippool.conf

redhat/freeradius.spec

scripts/Makefile

scripts/radwatch.in *

share/dictionary

share/dictionary.airespace

share/dictionary.alteon

share/dictionary.cisco

share/dictionary.cisco.vpn3000

share/dictionary.dhcp

share/dictionary.erx

share/dictionary.extreme

share/dictionary.fortinet

share/dictionary.foundry

share/dictionary.freeradius.internal

share/dictionary.hp

share/dictionary.nortel

share/dictionary.wimax

share/dictionary.xedia

src/include/Makefile

src/include/autoconf.h.in

src/include/conffile.h

src/include/detail.h

src/include/dhcp.h

src/include/libradius.h

src/include/missing.h

src/include/modpriv.h

src/include/modules.h

src/include/rad_assert.h

src/include/radius.h

src/include/radiusd.h

src/include/realms.h

src/include/stats.h

src/lib/Makefile

src/lib/dhcp.c

src/lib/dict.c

src/lib/log.c

src/lib/misc.c

src/lib/packet.c

src/lib/print.c

src/lib/radius.c

src/lib/rbtree.c

src/lib/udpfromto.c

src/lib/valuepair.c

src/lib/vqp.c

src/main/Makefile.in

src/main/auth.c

src/main/checkrad.pl.in

src/main/client.c

src/main/command.c

src/main/conffile.c

src/main/detail.c

src/main/dhcpd.c

src/main/evaluate.c

src/main/event.c

src/main/listen.c

src/main/log.c

src/main/mainconfig.c

src/main/modcall.c

src/main/modules.c

src/main/radclient.c

src/main/radiusd.c

src/main/radmin.c

src/main/radsniff.c

src/main/radtest.in

src/main/radwho.c

src/main/realms.c

src/main/stats.c

src/main/threads.c

src/main/util.c

src/main/valuepair.c

src/main/version.c

src/main/vmps.c

src/main/xlat.c

src/modules/Makefile

src/modules/rlm_acct_unique/rlm_acct_unique.c

src/modules/rlm_always/rlm_always.c

src/modules/rlm_attr_filter/rlm_attr_filter.c

src/modules/rlm_attr_rewrite/rlm_attr_rewrite.c

src/modules/rlm_detail/rlm_detail.c

src/modules/rlm_dynamic_clients/rlm_dynamic_clients.c

src/modules/rlm_eap/libeap/Makefile

src/modules/rlm_eap/libeap/eap_tls.c

src/modules/rlm_eap/libeap/mppe_keys.c

src/modules/rlm_eap/radeapclient.c

src/modules/rlm_eap/rlm_eap.c

src/modules/rlm_eap/rlm_eap.h

src/modules/rlm_eap/types/rlm_eap_peap/peap.c

src/modules/rlm_eap/types/rlm_eap_tls/config.h.in

src/modules/rlm_eap/types/rlm_eap_tls/configure

src/modules/rlm_eap/types/rlm_eap_tls/configure.in

src/modules/rlm_eap/types/rlm_eap_tls/rlm_eap_tls.c

src/modules/rlm_eap/types/rlm_eap_ttls/rlm_eap_ttls.c

src/modules/rlm_eap/types/rlm_eap_ttls/ttls.c

src/modules/rlm_exec/rlm_exec.c

src/modules/rlm_expr/paircmp.c

src/modules/rlm_expr/rlm_expr.c

src/modules/rlm_ippool/rlm_ippool_tool.c

src/modules/rlm_jradius/rlm_jradius.c

src/modules/rlm_krb5/rlm_krb5.c

src/modules/rlm_ldap/configure

src/modules/rlm_ldap/configure.in

src/modules/rlm_ldap/rlm_ldap.c

src/modules/rlm_linelog/rlm_linelog.c

src/modules/rlm_mschap/rlm_mschap.c

src/modules/rlm_otp/otp_pw_valid.c

src/modules/rlm_otp/otp_rlm.c

src/modules/rlm_pap/rlm_pap.c

src/modules/rlm_perl/configure

src/modules/rlm_perl/configure.in

src/modules/rlm_perl/rlm_perl.c

src/modules/rlm_policy/parse.c

src/modules/rlm_policy/rlm_policy.c

src/modules/rlm_preprocess/rlm_preprocess.c

src/modules/rlm_python/radiusd_test.py

src/modules/rlm_python/rlm_python.c

src/modules/rlm_radutmp/rlm_radutmp.c

src/modules/rlm_realm/rlm_realm.c

src/modules/rlm_smb/Makefile.in

src/modules/rlm_sql/conf.h

src/modules/rlm_sql/drivers/Makefile.in

src/modules/rlm_sql/drivers/rlm_sql_unixodbc/sql_unixodbc.c

src/modules/rlm_sql/drivers/rules.mak

src/modules/rlm_sql/rlm_sql.c

src/modules/rlm_sql/rlm_sql.h

src/modules/rlm_sql/sql.c

src/modules/rlm_sql_log/rlm_sql_log.c

src/modules/rlm_sqlcounter/rlm_sqlcounter.c

src/modules/rlm_sqlippool/rlm_sqlippool.c

src/modules/rlm_unix/rlm_unix.c

src/modules/rlm_wimax/Makefile

src/modules/rlm_wimax/rlm_wimax.c

src/modules/rules.mak

src/tests/wimax

suse/freeradius.spec

Show diffs side-by-side

added added

removed removed

src/main/auth.c

60

60

* Make sure user/pass are clean

61

61

* and then log them

62

62

*/

63

static int rad_authlog(const char *msg, REQUEST *request, int goodpass) {

64

63

static int rad_authlog(const char *msg, REQUEST *request, int goodpass)

64

{

65

int logit;

66

const char *extra_msg = NULL;

65

67

char clean_password[1024];

66

68

char clean_username[1024];

67

69

char buf[1024];

70

char extra[1024];

68

71

VALUE_PAIR *username = NULL;

69

72

70

73

if (!request->root->log_auth) {

117

120

}

118

121

119

122

if (goodpass) {

120

radlog_request(L_AUTH, 0, request, "%s: [%s%s%s] (%s)",

121

msg,

122

clean_username,

123

request->root->log_auth_goodpass ? "/" : "",

124

request->root->log_auth_goodpass ? clean_password : "",

125

auth_name(buf, sizeof(buf), request, 1));

126

} else {

127

radlog_request(L_AUTH, 0, request, "%s: [%s%s%s] (%s)",

128

msg,

129

clean_username,

130

request->root->log_auth_badpass ? "/" : "",

131

request->root->log_auth_badpass ? clean_password : "",

132

auth_name(buf, sizeof(buf), request, 1));

133

}

123

logit = request->root->log_auth_goodpass;

124

extra_msg = request->root->auth_goodpass_msg;

125

} else {

126

logit = request->root->log_auth_badpass;

127

extra_msg = request->root->auth_badpass_msg;

128

}

129

130

if (extra_msg) {

131

extra[0] = ' ';

132

radius_xlat(extra + 1, sizeof(extra) - 1, extra_msg, request,

133

NULL);

134

} else {

135

*extra = '\0';

136

}

137

138

radlog_request(L_AUTH, 0, request, "%s: [%s%s%s] (%s)%s",

139

msg,

140

clean_username,

141

logit ? "/" : "",

142

logit ? clean_password : "",

143

auth_name(buf, sizeof(buf), request, 1),

144

extra);

134

145

135

146

return 0;

136

147

}

494

505

* done by the server, by rejecting them here.

495

506

*/

496

507

case PW_AUTHENTICATION_REJECT:

497

default:

498

508

rad_authlog("Login incorrect (Home Server says so)",

499

509

request, 0);

500

510

request->reply->code = PW_AUTHENTICATION_REJECT;

501

511

return RLM_MODULE_REJECT;

512

513

default:

514

rad_authlog("Login incorrect (Home Server failed to respond)",

515

request, 0);

516

return RLM_MODULE_REJECT;

502

517

}

503

518

}

504

519

#endif

Older »