summaryrefslogtreecommitdiff
path: root/libtac
AgeCommit message (Collapse)Author
2015-06-29Fix missing semicolonsDavid Stapleton
2015-06-20tac_login is a static array so it's never NULLPaweł Krawczyk
2015-06-19check open() result including 0 which is a valid return valuePaweł Krawczyk
2015-06-19close socket if any operation failsPaweł Krawczyk
2015-06-19Merge branch 'master' of github.com:jeroennijhof/pam_tacplusPaweł Krawczyk
2015-06-19initialise the seed variable and update commentsPaweł Krawczyk
2015-06-18Make socket creation errno verboseDaniel Gollub
2014-11-26close rfdPawel Krawczyk
2014-11-26rewrite the PRNG logic to use urandom on srand() only and then returnPawel Krawczyk
random() on subsequent calls
2014-11-20Reduce loglevel for non-critical author messagesDaniel Gollub
Messages like "Args cnt %d", "Adding buf/value pair (%s,%s)" should not flood syslog as warning.
2014-10-14Close /dev/urandom to fix open file handler leak.pwdng
2014-10-10Add source addr parameter for tac_connect_singleDaniel Gollub
This allows to specify from which source address/interface the TACACS+ client connection gets initiated. Bump SO-versioning due to API change.
2014-09-18allow authorization without protocol definedSergey Mironov
Protocol is only required for certain subset of services, mainly for ppp. We allow authorization with empty protocol if user wants to use other service names, like 'ssh' From the http://tools.ietf.org/html/draft-grant-tacacs-02 page 30: The protocol attribute is intended for use with PPP. When service equals "ppp" and protocol equals "lcp", the message describes the PPP link layer service. For other values of protocol, this describes a PPP NCP (network layer service). A single PPP session can support multiple NCPs
2013-04-28/dev/urandom improvements, thanks Walter. Fixed active_server checkJeroen Nijhof
2013-03-29abort() on erroneous input parametersWalter de Jong
2013-03-29xstrcpy() belongs in libtacWalter de Jong
2013-03-29removed double xcalloc() function; do not leak memory for these small ↵Walter de Jong
buffers; added safe xstrcpy()
2013-03-28fixes various memory leaks, reallyWalter de Jong
2013-03-28server is a struct { address, key }Walter de Jong
2013-03-28added FIXME remark about leaking memoryWalter de Jong
2013-03-28just them prototypesWalter de Jong
2013-03-28more stuff belongs in headersWalter de Jong
2013-03-28added FIXME remark for ifdef for existence of /dev/urandomWalter de Jong
2013-03-28magic is always initedWalter de Jong
2013-03-28handle read() errorsWalter de Jong
2013-03-27same thing, but less confusingWalter de Jong
Note that this does not change anything in regards to buffer overflowing
2013-03-27if key is setWalter de Jong
2013-03-22fix C++/C99 style commentsWalter de Jong
2012-10-02errno = 0 on AIX with non-blocking IO, we need to fix this in aJeroen Nijhof
better way
2012-09-16Rearrange header file include for libtacJeroen Nijhof
2012-09-08Bumped version to 1.3.8 and renamed rem_addr to r_addrJeroen Nijhof
2012-07-25tac_encryption fully handled by libtacJeroen Nijhof
2012-06-12Handle attributes which contains no valueJeroen Nijhof
2012-05-19Explicity setting *attr to NULL after free(), thanks to Anthony LowJeroen Nijhof
2012-03-18Changed e-mail and improved accountingJeroen Nijhof
2011-08-23magic.c: magic_inited only used with linuxchalcyon
2011-08-20Added _pam_get_rhost() and _pam_get_user()Jeroen
2011-08-19Finally got rid of all goto illness!Jeroen
2011-08-19Major contribution by Darren BeslerJeroen
2011-04-25Removed encrypt option just check if there is a secret (key).Jeroen
Removed first_hit option because you can get the same behaviour by using only one server. Added multiple secret support, you can now specify different secrets (keys) for different servers. connect.c: improved connection error handling by using getpeername() to check if connection is still valid. This was needed since we are using non-blocking sockets. Properly handle multiple servers when authenticating, patch from Gregg Nemas, thanks!
2010-12-22Initial commitJeroen Nijhof
generated by cgit v1.2.3 (git 2.39.1) at 2024-11-10 06:30:51 +0000