diff options
| author | jnemeth <jnemeth@pkgsrc.org> | 2012-11-23 01:31:18 +0000 |
|---|---|---|
| committer | jnemeth <jnemeth@pkgsrc.org> | 2012-11-23 01:31:18 +0000 |
| commit | 34b60f87fb3e119417afce22b6aa551da6e93041 (patch) | |
| tree | af8ce86cdf402c8ee1bf746866be7ef7350fc796 /net/freeradius2/PLIST | |
| parent | 6a6aae34cbdd73838a0d040bb87525a85ece2115 (diff) | |
| download | pkgsrc-34b60f87fb3e119417afce22b6aa551da6e93041.tar.gz | |
Upgrade to freeradius 2.2.0:
FreeRADIUS 2.2.0 Mon 10 Sep 2012 12:00:00 CEST, urgency=medium
Feature improvements
* 100% configuration file compatible with 2.1.x.
The only fix needed is to disallow "hashsize=0" for rlm_passwd
* Update Aruba, Alcatel Lucent, APC, BT, PaloAlto, Pureware,
Redback, and Mikrotik dictionaries
* Switch to using SHA1 for certificate digests instead of MD5.
See raddb/certs/*.cnf
* Added copyright statements to the dictionaries, so that we know
when people are using them.
* Better documentation for radrelay and detail file writer.
See raddb/modules/radrelay and raddb/radrelay.conf
* Added TLS-Cert-Subject-Alt-Name-Email from patch by Luke Howard
* Added -F <file> to radwho
* Added query timeouts to MySQL driver. Patch from Brian De Wolf.
* Add /etc/default/freeradius to debian package.
Patch from Matthew Newton
* Finalize DHCP and DHCP relay code. It should now work everywhere.
See raddb/sites-available/dhcp, src_ipaddr and src_interface.
* DHCP capabilitiies are now compiled in by default.
It runs as a DHCP server ONLY when manually enabled.
* Added one letter expansions: %G - request minute and %I request
ID.
* Added script to convert ISC DHCP lease files to SQL pools.
See scripts/isc2ippool.pl
* Added rlm_cache to cache arbitrary attributes.
* Added max_use to rlm_ldap to force connection to be re-established
after a given number of queries.
* Added configtest option to Debian init scripts, and automatic
config test on restart.
* Added cache config item to rlm_krb5. When set to "no" ticket
caching is disabled which may increase performance.
Bug fixes
* Fix CVE-2012-3547. All users of 2.1.10, 2.1.11, 2.1.12,
and 802.1X should upgrade immediately.
* Fix typo in detail file writer, to skip writing if the packet
was read from this detail file.
* Free cached replies when closing resumed SSL sessions.
* Fix a number of issues found by Coverity.
* Fix memory leak and race condition in the EAP-TLS session cache.
Thanks to Phil Mayers for tracking down OpenSSL APIs.
* Restrict ATTRIBUTE names to character sets that make sense.
* Fix EAP-TLS session Id length so that OpenSSL doesn't get
excited.
* Fix SQL IPPool logic for non-timer attributes. Closes bug #181
* Change some informational messages to DEBUG rather than error.
* Portability fixes for FreeBSD. Closes bug #177
* A much better fix for the _lt__PROGRAM__LTX_preloaded_symbols
nonsense.
* Safely handle extremely long lines in conf file variable expansion
* Fix for Debian bug #606450
* Mutex lock around rlm_perl Clone routines. Patch from Eike Dehling
* The passwd module no longer permits "hashsize = 0". Setting that
is pointless for a host of reasons. It will also break the server.
* Fix proxied inner-tunnel packets sometimes having zero authentication
vector. Found by Brian Julin.
* Added $(EXEEXT) to Makefiles for portability. Closes bug #188.
* Fix minor build issue which would cause rlm_eap to be built twice.
* When using "status_check=request" for a home server, the username
and password must be specified, or the server will not start.
* EAP-SIM now calculates keys from the SIM identity, not from the
EAP-Identity. Changing the EAP type via NAK may result in
identities changing. Bug reported by Microsoft EAP team.
* Use home server src_ipaddr when sending Status-Server packets
* Decrypt encrypted ERX attributes in CoA packets.
* Fix registration of internal xlat's so %{mschap:...} doesn't
disappear after a HUP.
* Can now reference tagged attributes in expansions.
e.g. %{Tunnel-Type:1} and %{Tunnel-Type:1[0]} now work.
* Correct calculation of Message-Authenticator for CoA and Disconnect
replies. Patch from Jouni Malinen
* Install rad_counter, for managing rlm_counter files.
* Add unique index constraint to all SQL flavours so that alternate
queries work correctly.
* The TTLS diameter decoder is now more lenient. It ignores
unknown attributes, instead of rejecting the TTLS session.
* Use "globfree" in detail file reader. Prevents very slow leak.
Closes bug #207.
* Operator =~ shouldn't copy the attribute, like :=. It should
instead behave more like ==.
* Build main Debian package without SQL dependencies
* Use max_queue_size in threading code
* Update permissions in raddb/sql/postgresql/admin.sql
* Added OpenSSL_add_all_algorithms() to fix issues where OpenSSL
wouldn't use methods it knew about.
* Add more sanity checks in dynamic_clients code so the server won't
crash if it attempts to load a badly formated client definition.
Diffstat (limited to 'net/freeradius2/PLIST')
| -rw-r--r-- | net/freeradius2/PLIST | 24 |
1 files changed, 18 insertions, 6 deletions
diff --git a/net/freeradius2/PLIST b/net/freeradius2/PLIST index a049b6d6a29..855ee69bb9c 100644 --- a/net/freeradius2/PLIST +++ b/net/freeradius2/PLIST @@ -1,4 +1,5 @@ -@comment $NetBSD: PLIST,v 1.14 2012/04/03 01:38:18 obache Exp $ +@comment $NetBSD: PLIST,v 1.15 2012/11/23 01:31:18 jnemeth Exp $ +bin/rad_counter bin/radclient bin/radconf2xml bin/radcrypt @@ -56,6 +57,8 @@ lib/rlm_attr_filter-${RADVER}.la lib/rlm_attr_filter.la lib/rlm_attr_rewrite-${RADVER}.la lib/rlm_attr_rewrite.la +lib/rlm_cache-${RADVER}.la +lib/rlm_cache.la lib/rlm_chap-${RADVER}.la lib/rlm_chap.la lib/rlm_checkval-${RADVER}.la @@ -112,8 +115,6 @@ lib/rlm_logintime-${RADVER}.la lib/rlm_logintime.la lib/rlm_mschap-${RADVER}.la lib/rlm_mschap.la -${PLIST.mysql}lib/rlm_sql_mysql-${RADVER}.la -${PLIST.mysql}lib/rlm_sql_mysql.la lib/rlm_otp-${RADVER}.la lib/rlm_otp.la ${PLIST.pam}lib/rlm_pam-${RADVER}.la @@ -144,6 +145,8 @@ ${PLIST.iodbc}lib/rlm_sql_iodbc-${RADVER}.la ${PLIST.iodbc}lib/rlm_sql_iodbc.la lib/rlm_sql_log-${RADVER}.la lib/rlm_sql_log.la +${PLIST.mysql}lib/rlm_sql_mysql-${RADVER}.la +${PLIST.mysql}lib/rlm_sql_mysql.la ${PLIST.unixodbc}lib/rlm_sql_unixodbc-${RADVER}.la ${PLIST.unixodbc}lib/rlm_sql_unixodbc.la lib/rlm_sqlcounter-${RADVER}.la @@ -152,6 +155,8 @@ lib/rlm_sqlippool-${RADVER}.la lib/rlm_sqlippool.la lib/rlm_unix-${RADVER}.la lib/rlm_unix.la +lib/rlm_wimax-${RADVER}.la +lib/rlm_wimax.la man/man1/radclient.1 man/man1/radeapclient.1 man/man1/radlast.1 @@ -195,7 +200,7 @@ man/man8/radsniff.8 man/man8/radsqlrelay.8 man/man8/radwatch.8 man/man8/rlm_dbm_cat.8 -man/man8/rlm_dbm_parse.8 +man/man8/rlm_dbm_parser.8 man/man8/rlm_ippool_tool.8 sbin/checkrad sbin/raddebug @@ -267,7 +272,6 @@ share/doc/freeradius/rfc/rfc2866.txt share/doc/freeradius/rfc/rfc2867.txt share/doc/freeradius/rfc/rfc2868.txt share/doc/freeradius/rfc/rfc2869.txt -share/doc/freeradius/rfc/rfc2882.txt share/doc/freeradius/rfc/rfc2924.txt share/doc/freeradius/rfc/rfc3079.txt share/doc/freeradius/rfc/rfc3162.txt @@ -276,6 +280,7 @@ share/doc/freeradius/rfc/rfc3576.txt share/doc/freeradius/rfc/rfc3579.txt share/doc/freeradius/rfc/rfc3580.txt share/doc/freeradius/rfc/rfc3748.txt +share/doc/freeradius/rfc/rfc4282.txt share/doc/freeradius/rfc/rfc4372.txt share/doc/freeradius/rfc/rfc4590.txt share/doc/freeradius/rfc/rfc4668.txt @@ -399,7 +404,6 @@ share/examples/freeradius/sites-available/robust-proxy-accounting share/examples/freeradius/sites-available/status share/examples/freeradius/sites-available/virtual.example.com share/examples/freeradius/sites-available/vmps -@pkgdir share/examples/freeradius/sites-enabled share/examples/freeradius/sql.conf share/examples/freeradius/sql/mssql/dialup.conf share/examples/freeradius/sql/mssql/schema.sql @@ -457,8 +461,10 @@ share/freeradius/dictionary.azaire share/freeradius/dictionary.bay share/freeradius/dictionary.bintec share/freeradius/dictionary.bristol +share/freeradius/dictionary.bt share/freeradius/dictionary.cablelabs share/freeradius/dictionary.cabletron +share/freeradius/dictionary.camiant share/freeradius/dictionary.chillispot share/freeradius/dictionary.cisco share/freeradius/dictionary.cisco.bbsm @@ -476,6 +482,7 @@ share/freeradius/dictionary.epygi share/freeradius/dictionary.ericsson share/freeradius/dictionary.erx share/freeradius/dictionary.extreme +share/freeradius/dictionary.f5 share/freeradius/dictionary.fortinet share/freeradius/dictionary.foundry share/freeradius/dictionary.freeradius @@ -517,9 +524,11 @@ share/freeradius/dictionary.nortel share/freeradius/dictionary.ntua share/freeradius/dictionary.openser share/freeradius/dictionary.packeteer +share/freeradius/dictionary.paloalto share/freeradius/dictionary.patton share/freeradius/dictionary.propel share/freeradius/dictionary.prosoft +share/freeradius/dictionary.purewave share/freeradius/dictionary.quiconnect share/freeradius/dictionary.quintum share/freeradius/dictionary.redback @@ -541,6 +550,7 @@ share/freeradius/dictionary.rfc4818 share/freeradius/dictionary.rfc4849 share/freeradius/dictionary.rfc5090 share/freeradius/dictionary.rfc5176 +share/freeradius/dictionary.rfc5447 share/freeradius/dictionary.rfc5580 share/freeradius/dictionary.rfc5607 share/freeradius/dictionary.rfc5904 @@ -559,6 +569,7 @@ share/freeradius/dictionary.symbol share/freeradius/dictionary.t_systems_nova share/freeradius/dictionary.telebit share/freeradius/dictionary.telkom +share/freeradius/dictionary.terena share/freeradius/dictionary.trapeze share/freeradius/dictionary.tropos share/freeradius/dictionary.ukerna @@ -578,3 +589,4 @@ share/freeradius/dictionary.wispr share/freeradius/dictionary.xedia share/freeradius/dictionary.xylan share/freeradius/dictionary.zyxel +@pkgdir share/examples/freeradius/sites-enabled |