ports/140897: [UPDATE] net/freeradius2 to 2.1.7
Vladimir Korkodinov
viper at perm.raid.ru
Thu Nov 26 13:30:09 UTC 2009
>Number: 140897
>Category: ports
>Synopsis: [UPDATE] net/freeradius2 to 2.1.7
>Confidential: no
>Severity: critical
>Priority: medium
>Responsible: freebsd-ports-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: update
>Submitter-Id: current-users
>Arrival-Date: Thu Nov 26 13:30:08 UTC 2009
>Closed-Date:
>Last-Modified:
>Originator: Vladimir Korkodinov
>Release: 6.4-RELEASE
>Organization:
>Environment:
FreeBSD xxxx 6.4-RELEASE FreeBSD 6.4-RELEASE #2: Thu Dec 4 11:29:00 YEKT 2008 root at xxxx:/usr/obj/usr/src/sys/kernel i386
>Description:
Feature Improvements
* Full support for CoA and Disconnect packets as per RFC 3576 and RFC 5176. Both receiving and proxying packets is supported.
* Added "src_ipaddr" configuration to "home_server". See proxy.conf for details.
* radsniff now accepts -I, to read from a filename instead of a device.
* radsniff also prints matching requests and any responses to those requests when '-r' is used.
* Added example of attr_filter for Access-Challenge packets
* Added support for udpfromto in DHCP code
* radmin can now selectively mark modules alive/dead. See "set module state".
* Added customizable messages on login success/fail. See msg_goodpass && msg_badpass in log{} section of radiusd.conf
* Document "chase_referrals" and "rebind" in raddb/modules/ldap
* Preliminary implementation of DHCP relay.
* Made thread pool section optional. If it doesn't exist, the server will run single-threaded.
* Added sample radrelay.conf for people upgrading from 1.x
* Made proxying more stable by failing over, rather than rejecting the first request. See "response_window" in proxy.conf
* Allow home_server_pools to exist without realms.
* Add dictionary.iea (closes bug #7)
* Added support for RFC 5580
* Added experimental sql_freetds module from Gabriel Blanchard.
* Updated dictionary.foundry
* Added sample configuration for MySQL cluster in raddb/sql/ndb. See the README file for explanations.
* Unset the DF bit on outgoing packets, so that packets can be fragmented if necessary.
Bug Fixes
* Fixed corner case where proxied packets could have extra character in User-Password attribute. Fix from Niko Tyni.
* Extended size of "attribute" field in SQL to 64.
* Fixes to ruby module to be more careful about when it builds.
* Updated Perl module "configure" script to check for broken Perl installations.
* Fix "status_check = none". It would still send packets in some cases.
* Set recursive flag on the proxy mutex, which enables safer cleanup on some platforms.
* Copy the EAP username verbatim, rather than escaping it.
* Update handling so that robust-proxy-accounting works when all home servers are down for extended periods of time.
* Look for DHCP option 53 anywhere in the packet, not just at the start.
* Fix processing of proxy fail handler with virtual servers.
* DHCP code now prints out correct src/dst IP addresses when sending packets.
* Removed requirement for DHCP to have clients
* Fixed handling of DHCP packets with message-type buried in the packet
* Fixed corner case with negation in unlang.
* Minor fixes to default MySQL & PostgreSQL schemas
* Suppress MSCHAP complaints in debugging mode.
* Fix SQL module for multiple instance, and possible crash on HUP
* Fix permissions for radius.log for sites that change user/group, but which don't create the file before starting radiusd.
* Fix double counting of packets when proxying
* Make %l work
* Fix pthread keys in rlm_perl
* Log reasons for EAP failure (closes bug #8)
* Load home servers and pools that aren't referenced from a realm.
* Handle return codes from virtual attributes in "unlang" (e.g. LDAP-Group). This makes "!(expr)" work for them.
* Enable VMPS to see contents of virtual server again
* Fix WiMAX module to be consistent with examples. (closes bug #10)
* Fixed crash with policies dependent on NAS-Port comparisons
* Allowed vendor IDs to be be higher than 32767.
* Fix crash on startup with certain regexes in "hints" file.
* Fix crash in attr_filter module when packets don't exist
* Allow detail file reader to be faster when "load_factor = 100"
* Add work-around for build failures with errors related to lt__PROGRAM__LTX_preloaded_symbols.
* Made ldap module "rebind" option aware of older, incompatible versions of OpenLDAP.
* Check value of Fall-Through in attr_filter module.
>How-To-Repeat:
>Fix:
Patch attached with submission follows:
diff -ruN freeradius2.old/Makefile freeradius2/Makefile
--- freeradius2.old/Makefile 2009-09-11 02:04:55.000000000 +0600
+++ freeradius2/Makefile 2009-11-26 18:07:57.000000000 +0500
@@ -8,7 +8,7 @@
#
PORTNAME= freeradius
-DISTVERSION= 2.1.6
+DISTVERSION= 2.1.7
CATEGORIES= net
MASTER_SITES= ftp://ftp.freeradius.org/pub/freeradius/%SUBDIR%/ \
ftp://ftp.ntua.gr/pub/net/radius/freeradius/%SUBDIR%/ \
diff -ruN freeradius2.old/distinfo freeradius2/distinfo
--- freeradius2.old/distinfo 2009-07-06 05:13:59.000000000 +0600
+++ freeradius2/distinfo 2009-11-26 18:08:55.000000000 +0500
@@ -1,3 +1,3 @@
-MD5 (freeradius-server-2.1.6.tar.bz2) = 645ac631505cde46e93c47e273bdec19
-SHA256 (freeradius-server-2.1.6.tar.bz2) = a3bb9ead594a612442a4ce1d7c6930002486055c3be8f20320634c7f2743cb9e
-SIZE (freeradius-server-2.1.6.tar.bz2) = 2512340
+MD5 (freeradius-server-2.1.7.tar.bz2) = b8df6cf0c3df1dded205ad5f954feb78
+SHA256 (freeradius-server-2.1.7.tar.bz2) = 1f88cabca8ce320569015198f303119269b59bdce22f41d7937a6becb65418e9
+SIZE (freeradius-server-2.1.7.tar.bz2) = 2544164
diff -ruN freeradius2.old/pkg-plist freeradius2/pkg-plist
--- freeradius2.old/pkg-plist 2009-09-09 23:02:31.000000000 +0600
+++ freeradius2/pkg-plist 2009-11-26 18:25:08.000000000 +0500
@@ -41,6 +41,7 @@
%%EXAMPLESDIR%%/raddb/modules/chap
%%EXAMPLESDIR%%/raddb/modules/checkval
%%EXAMPLESDIR%%/raddb/modules/counter
+%%EXAMPLESDIR%%/raddb/modules/cui
%%EXAMPLESDIR%%/raddb/modules/detail
%%EXAMPLESDIR%%/raddb/modules/detail.example.com
%%EXAMPLESDIR%%/raddb/modules/detail.log
@@ -101,10 +102,15 @@
%%EXAMPLESDIR%%/raddb/sites-enabled/default
%%EXAMPLESDIR%%/raddb/sites-enabled/inner-tunnel
%%EXAMPLESDIR%%/raddb/sql.conf
+%%EXAMPLESDIR%%/raddb/sql/ndb/README
+%%EXAMPLESDIR%%/raddb/sql/ndb/admin.sql
+%%EXAMPLESDIR%%/raddb/sql/ndb/schema.sql
%%EXAMPLESDIR%%/raddb/sql/mssql/dialup.conf
%%EXAMPLESDIR%%/raddb/sql/mssql/schema.sql
%%EXAMPLESDIR%%/raddb/sql/mysql/admin.sql
%%EXAMPLESDIR%%/raddb/sql/mysql/counter.conf
+%%EXAMPLESDIR%%/raddb/sql/mysql/cui.conf
+%%EXAMPLESDIR%%/raddb/sql/mysql/cui.sql
%%EXAMPLESDIR%%/raddb/sql/mysql/dialup.conf
%%EXAMPLESDIR%%/raddb/sql/mysql/ippool.conf
%%EXAMPLESDIR%%/raddb/sql/mysql/ippool.sql
@@ -137,6 +143,7 @@
@dirrm %%EXAMPLESDIR%%/raddb/certs
@dirrm %%EXAMPLESDIR%%/raddb/modules
@dirrm %%EXAMPLESDIR%%/raddb/sites-available
+ at dirrm %%EXAMPLESDIR%%/raddb/sql/ndb
@dirrm %%EXAMPLESDIR%%/raddb/sql/mssql
@dirrm %%EXAMPLESDIR%%/raddb/sql/mysql
@dirrm %%EXAMPLESDIR%%/raddb/sql/oracle
@@ -591,6 +598,7 @@
%%PORTDOCS%%%%DOCSDIR%%/rfc/rfc5176.txt
%%PORTDOCS%%%%DOCSDIR%%/rfc/rfc5247.txt
%%PORTDOCS%%%%DOCSDIR%%/rfc/rfc5281.txt
+%%PORTDOCS%%%%DOCSDIR%%/rfc/rfc5580.txt
%%PORTDOCS%%%%DOCSDIR%%/rlm_dbm
%%PORTDOCS%%%%DOCSDIR%%/rlm_eap
%%PORTDOCS%%%%DOCSDIR%%/rlm_expiration
@@ -619,6 +627,7 @@
%%DATADIR%%/dictionary.acc
%%DATADIR%%/dictionary.airespace
%%DATADIR%%/dictionary.alcatel
+%%DATADIR%%/dictionary.alcatel.esam
%%DATADIR%%/dictionary.alteon
%%DATADIR%%/dictionary.altiga
%%DATADIR%%/dictionary.alvarion
@@ -662,6 +671,7 @@
%%DATADIR%%/dictionary.hp
%%DATADIR%%/dictionary.huawei
%%DATADIR%%/dictionary.infonet
+%%DATADIR%%/dictionary.iea
%%DATADIR%%/dictionary.ipunplugged
%%DATADIR%%/dictionary.issanni
%%DATADIR%%/dictionary.itk
@@ -711,6 +721,7 @@
%%DATADIR%%/dictionary.rfc4849
%%DATADIR%%/dictionary.rfc5090
%%DATADIR%%/dictionary.rfc5176
+%%DATADIR%%/dictionary.rfc5580
%%DATADIR%%/dictionary.riverstone
%%DATADIR%%/dictionary.roaringpenguin
%%DATADIR%%/dictionary.shasta
>Release-Note:
>Audit-Trail:
>Unformatted:
More information about the freebsd-ports-bugs
mailing list