Revisions of radsecproxy
Stefan Botter (jsjhb)
accepted
request 1092477
from
Stefan Botter (jsjhb)
(revision 9)
- 1.10.0 New features: - Native dynamic discovery for NAPTR and SRV records (#2, #83) - Optionally log accounting requests when respoinding directly (#72) - SNI support for outgoing connections (#90) - Optionally specify server name for certificate name check (#106) - Manual MTU setting for DTLS on non-linux platforms Misc: - Don't require server type to be set by dyndisc scripts - Improve locating openssl lib using pkg-config Bug Fixes: - Fix radius message length handling - 1.9.3 Bug Fixes: - Fix shutdown TLS connection on malformed radius message (#122) - Fix handling of lost requests in DTLS - Fix flush requests when dyndisc fails
Stefan Botter (jsjhb)
accepted
request 1066314
from
Stefan Botter (jsjhb)
(revision 8)
- 1.9.2 Bug Fixes: - Fix potential segfault in tcp log message - Fix DTLS over IPv6 - Fix SSL shutdown/EOF for openssl 3.x (#108)
Stefan Botter (jsjhb)
accepted
request 932619
from
Stefan Botter (jsjhb)
(revision 7)
- 1.9.1 Misc: - OpenSSL 3.0 compatibility (#70) Bug Fixes: - Fix refused startup with openssl <1.1 (#82) - Fix compiler issue for Fedora 33 on s390x (#84) - Fix small memory leak in config parser - Fix lazy certificate check when connecting to TLS servers - Fix connect is aborted if first host in list has invalid certificate - Fix setstacksize for glibc 2.34 (#91) - Fix system defaults/settings for TLS version not honored (#92) - remove patch to fix setstacksize for glibc 2.34 (fix #91) from package
Stefan Botter (jsjhb)
accepted
request 923189
from
Stefan Botter (jsjhb)
(revision 6)
- add upstream patch to fix setstacksize for glibc 2.34 (fix #91) radsecproxy-1.9.0_fix-glibc-2.34-setstacksize.diff + will not be needed abter next release
Stefan Botter (jsjhb)
accepted
request 899453
from
Stefan Botter (jsjhb)
(revision 5)
- 1.9.0 New features: - Accept multiple source* configs for IPv4/v6 - Specify source per server - User configurable cipher-list and ciphersuites - User configurable TLS versions - Config option for DH-file - Add rID and otherName options to certifcateAttributeCheck - Allow multiple matchCertificateAttribute - Option to start dynamic server in blocking mode Misc: - Move radsecproxy manpage to section 8 - Log CUI and operator-name if present - Log CN for incomming TLS connections Bug Fixes: - Fix overlapping log lines - Fix memory leak in logging - Fix dynidsc example scripts input validation (CVE-2021-32642)
Stefan Botter (jsjhb)
committed
(revision 4)
- 1.8.2 Bug fixes: - Fix wrong config-unhexing if %25 (%) occurs - Fix compatibility with GCC 10 (#63) - Fix spelling in manpage - Fix modifyVendorAttribute not applied (#62) - Fix unncessary status-server when in minimal mode (#61) - remove unneeded patch radsecproxy-declare_pthread_attr_as_extern_in_header.diff
Stefan Botter (jsjhb)
accepted
request 814557
from
Stefan Botter (jsjhb)
(revision 3)
- add upstream patch to fix GCC 10 incompatibility radsecproxy-declare_pthread_attr_as_extern_in_header.diff + will not bee needed after next release
Stefan Botter (jsjhb)
accepted
request 745502
from
Stefan Botter (jsjhb)
(revision 2)
- 1.8.1 Bug fixes: - Handle Tunnel-Password attribute correctly - Fix BSD platform issues - Fix spelling in log messages and manpages - Fix compile issues for unit tests
Displaying all 9 revisions