Skip site navigation (1)Skip section navigation (2) 
Date:      Thu, 18 Nov 2010 17:54:08 +0100 (CET)
From:      Martin Matuska <mm@FreeBSD.org>
To:        FreeBSD-gnats-submit@FreeBSD.org
Subject:   ports/152370: [PATCH] net/freeradius: support computer account logins
Message-ID:  <20101118165409.0E00AEC265@mail2.vx.sk>
Resent-Message-ID: <201011181700.oAIH0H1W046851@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help 

>Number:         152370
>Category:       ports
>Synopsis:       [PATCH] net/freeradius: support computer account logins
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    freebsd-ports-bugs
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:
>Class:          change-request
>Submitter-Id:   current-users
>Arrival-Date:   Thu Nov 18 17:00:17 UTC 2010
>Closed-Date:
>Last-Modified:
>Originator:     Martin Matuska
>Release:        FreeBSD 8.1-STABLE amd64
>Organization:
>Environment:
System: FreeBSD neo.vx.sk 8.1-STABLE FreeBSD 8.1-STABLE #0 r215048M: Thu Nov 11 13:36:47 CET
>Description:
- Add optional support for computer account logins in rlm_mschap.c
- This enables Windows Workstations to login in as a computer before the user logs in

Added file(s):
- files/extra-patch-src-modules-rlm_mschap-rlm_mschap.c

Port maintainer (rpsfa@rit.edu) is cc'd.

Generated with FreeBSD Port Tools 0.99
>How-To-Repeat:
>Fix:

--- freeradius-2.1.10.patch begins here ---
Index: Makefile
===================================================================
RCS file: /home/pcvs/ports/net/freeradius2/Makefile,v
retrieving revision 1.90
diff -u -r1.90 Makefile
--- Makefile	21 Oct 2010 23:52:34 -0000	1.90
+++ Makefile	18 Nov 2010 16:52:56 -0000
@@ -56,7 +56,8 @@
 		RUBY		"With Ruby support (EXPERIMENTAL)" off \
 		DHCP		"With DHCP support (EXPERIMENTAL)" off \
 		EXPERIMENTAL	"Build experimental modules" off \
-		UDPFROMTO	"Compile in UDPFROMTO support" off
+		UDPFROMTO	"Compile in UDPFROMTO support" off \
+		WSTRUST		"Allow computer account logins in rlm_mschap" off
 
 .include <bsd.port.options.mk>
 
@@ -246,6 +247,11 @@
 CONFIGURE_ARGS+=--with-udpfromto
 .endif
 
+# Allow computer logins in rlm_mschap
+.ifdef(WITH_WSTRUST)
+EXTRA_PATCHES+=	${FILESDIR}/extra-patch-src-modules-rlm_mschap-rlm_mschap.c
+.endif
+
 .include <bsd.port.pre.mk>
 
 .if ${ARCH} == "sparc64" && ${OSVERSION} < 700000
Index: files/extra-patch-src-modules-rlm_mschap-rlm_mschap.c
===================================================================
RCS file: files/extra-patch-src-modules-rlm_mschap-rlm_mschap.c
diff -N files/extra-patch-src-modules-rlm_mschap-rlm_mschap.c
--- /dev/null	1 Jan 1970 00:00:00 -0000
+++ files/extra-patch-src-modules-rlm_mschap-rlm_mschap.c	18 Nov 2010 16:52:56 -0000
@@ -0,0 +1,14 @@
+--- src/modules/rlm_mschap/rlm_mschap.c.orig	2010-09-28 13:03:56.000000000 +0200
++++ src/modules/rlm_mschap/rlm_mschap.c	2010-11-18 12:02:02.211071015 +0100
+@@ -1273,8 +1273,9 @@
+ 		 *	return 'not found'.
+ 		 */
+ 		if (((smb_ctrl->vp_integer & ACB_DISABLED) != 0) ||
+-		    ((smb_ctrl->vp_integer & ACB_NORMAL) == 0)) {
+-			RDEBUG2("SMB-Account-Ctrl says that the account is disabled, or is not a normal account.");
++		    (((smb_ctrl->vp_integer & ACB_NORMAL) == 0) &&
++		    ((smb_ctrl->vp_integer & ACB_WSTRUST) == 0))) {
++			RDEBUG2("SMB-Account-Ctrl says that the account is disabled, or is not a normal or workstation trust account.");
+ 			mschap_add_reply(request, &request->reply->vps,
+ 					  *response->vp_octets,
+ 					  "MS-CHAP-Error", "E=691 R=1", 9);
--- freeradius-2.1.10.patch ends here ---

>Release-Note:
>Audit-Trail:
>Unformatted:

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20101118165409.0E00AEC265>