jeltz/hostap
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity

HS 2.0 server: Log new username in eventlog for cert reenroll

Browse source 
Make it easier to find the new username (and the new serial number from
it) when a user entry is renamed at the conclusion of client certificate
re-enrollment sequence.

Signed-off-by: Jouni Malinen <jouni@codeaurora.org>
This commit is contained in:
Jouni Malinen 2019-01-10 00:47:04 +02:00 committed by Jouni Malinen
parent 11ce7a1bc3
commit 8c70c30472
1 changed files with 5 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
hs20/server/spp_server.c
View file

@ -2658,6 +2658,7 @@ static xml_node_t * hs20_spp_update_response(struct hs20_svc *ctx,
dmacc); dmacc);
if (oper == CERT_REENROLL) { if (oper == CERT_REENROLL) {
char *new_user; char *new_user;
char event[200];
new_user = db_get_session_val(ctx, NULL, NULL, new_user = db_get_session_val(ctx, NULL, NULL,
session_id, "user"); session_id, "user");
@ -2678,6 +2679,10 @@ static xml_node_t * hs20_spp_update_response(struct hs20_svc *ctx,
debug_print(ctx, 1, debug_print(ctx, 1,
"Update certificate user entry to use the new serial number (old=%s new=%s)", "Update certificate user entry to use the new serial number (old=%s new=%s)",
user, new_user); user, new_user);
os_snprintf(event, sizeof(event), "renamed user to: %s",
new_user);
hs20_eventlog(ctx, user, realm, session_id, event,
NULL);
if (db_update_val(ctx, user, realm, "identity", if (db_update_val(ctx, user, realm, "identity",
new_user, 0) < 0 || new_user, 0) < 0 ||