From c3b7561f3e5891ca52fcdf00237eac64584aa97478433365401cd39d3fd6ac98 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?V=C3=ADt=C4=9Bzslav=20=C4=8C=C3=AD=C5=BEek?= Date: Wed, 19 Oct 2011 14:15:30 +0000 Subject: [PATCH] - update to 2.1.12 Feature improvements * Updates to dictionary.erx, dictionary.siemens, dictionary.starent, dictionary.starent.vsa1, dictionary.zyxel, added dictionary.symbol * Added support for PCRE from Phil Mayers * Configurable file permission in rlm_linelog * Added "relaxed" option to rlm_attr_filter. This copies attributes if at least one match occurred. * Added documentation on dynamic clients. See raddb/modules/dynamic_clients. * Added support for elliptical curve cryptography. See ecdh_curve in raddb/eap.conf. * Added support for 802.1X MIBs in checkrad * Added support for %{rand:...}, which generates a uniformly distributed number between 0 and the number you specify. * Created "man" pages for all installed commands, and documented options for all commands. Patch from John Dennis. * Allow radsniff to decode encrypted VSAs and CoA packets. Patch from Bjorn Mork. * Always send Message-Authenticator in radtest. Patch from John Dennis. radclient continues to be more flexible. * Updated Oracle schema and queries * Added SecurID module. See src/modules/rlm_securid/README Bug fixes * Fix memory leak in rlm_detail * Fix "failed to insert event" * Allow virtual servers to be reloaded on HUP. It no longer complains about duplicate virtual servers. * Fix %{string:...} expansion * Fix "server closed socket" loop in radmin OBS-URL: https://build.opensuse.org/package/show/network/freeradius-server?expand=0&rev=36 --- freeradius-server-2.1.11.tar.bz2 | 3 -- freeradius-server-2.1.12.tar.bz2 | 3 ++ ...adius-server-radius-reload-logrotate.patch | 10 ++-- freeradius-server-snprintf-overflow.patch | 17 ------- freeradius-server.changes | 48 +++++++++++++++++++ freeradius-server.spec | 4 +- 6 files changed, 57 insertions(+), 28 deletions(-) delete mode 100644 freeradius-server-2.1.11.tar.bz2 create mode 100644 freeradius-server-2.1.12.tar.bz2 delete mode 100644 freeradius-server-snprintf-overflow.patch diff --git a/freeradius-server-2.1.11.tar.bz2 b/freeradius-server-2.1.11.tar.bz2 deleted file mode 100644 index 1b00ba9..0000000 --- a/freeradius-server-2.1.11.tar.bz2 +++ /dev/null @@ -1,3 +0,0 @@ -version https://git-lfs.github.com/spec/v1 -oid sha256:c93ce0c419c5540cb044d5319c3beb995d2a91134bdc2ed5896c72413f95b9e7 -size 2632549 diff --git a/freeradius-server-2.1.12.tar.bz2 b/freeradius-server-2.1.12.tar.bz2 new file mode 100644 index 0000000..a93904e --- /dev/null +++ b/freeradius-server-2.1.12.tar.bz2 @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:b66bb2935b656e19f2b725df1162e7ac160537e8ef8266c2447779bb7d113172 +size 2670611 diff --git a/freeradius-server-radius-reload-logrotate.patch b/freeradius-server-radius-reload-logrotate.patch index 52f5268..b913326 100644 --- a/freeradius-server-radius-reload-logrotate.patch +++ b/freeradius-server-radius-reload-logrotate.patch @@ -1,9 +1,9 @@ -Index: freeradius-server-2.1.9/suse/radiusd-logrotate +Index: freeradius-server-2.1.12/suse/radiusd-logrotate =================================================================== ---- freeradius-server-2.1.9.orig/suse/radiusd-logrotate -+++ freeradius-server-2.1.9/suse/radiusd-logrotate -@@ -23,6 +23,9 @@ - size=+1024k +--- freeradius-server-2.1.12.orig/suse/radiusd-logrotate 2011-09-30 16:12:07.000000000 +0200 ++++ freeradius-server-2.1.12/suse/radiusd-logrotate 2011-10-19 16:01:36.781656862 +0200 +@@ -47,6 +47,9 @@ + size=+2048k notifempty missingok + postrotate diff --git a/freeradius-server-snprintf-overflow.patch b/freeradius-server-snprintf-overflow.patch deleted file mode 100644 index 70896c5..0000000 --- a/freeradius-server-snprintf-overflow.patch +++ /dev/null @@ -1,17 +0,0 @@ -Index: freeradius-server-2.1.11/src/modules/rlm_mschap/rlm_mschap.c -=================================================================== ---- freeradius-server-2.1.11.orig/src/modules/rlm_mschap/rlm_mschap.c -+++ freeradius-server-2.1.11/src/modules/rlm_mschap/rlm_mschap.c -@@ -1251,10 +1251,10 @@ static int mschap_authenticate(void * in - inst->allow_retry); - - if (inst->retry_msg) { -- snprintf(buffer + 9, sizeof(buffer), " C="); -+ snprintf(buffer + 9, sizeof(buffer) - 9, " C="); - for (i = 0; i < 16; i++) { - snprintf(buffer + 12 + i*2, -- sizeof(buffer), "%02x", -+ sizeof(buffer) - 12 - i*2, "%02x", - fr_rand() & 0xff); - } - snprintf(buffer + 12 + 32, sizeof(buffer) - 45, diff --git a/freeradius-server.changes b/freeradius-server.changes index 1f04f17..2a22545 100644 --- a/freeradius-server.changes +++ b/freeradius-server.changes @@ -1,3 +1,51 @@ +------------------------------------------------------------------- +Wed Oct 19 13:55:27 UTC 2011 - vcizek@suse.com + +- update to 2.1.12 + Feature improvements + * Updates to dictionary.erx, dictionary.siemens, dictionary.starent, + dictionary.starent.vsa1, dictionary.zyxel, added dictionary.symbol + * Added support for PCRE from Phil Mayers + * Configurable file permission in rlm_linelog + * Added "relaxed" option to rlm_attr_filter. This copies attributes + if at least one match occurred. + * Added documentation on dynamic clients. + See raddb/modules/dynamic_clients. + * Added support for elliptical curve cryptography. + See ecdh_curve in raddb/eap.conf. + * Added support for 802.1X MIBs in checkrad + * Added support for %{rand:...}, which generates a uniformly + distributed number between 0 and the number you specify. + * Created "man" pages for all installed commands, and documented + options for all commands. Patch from John Dennis. + * Allow radsniff to decode encrypted VSAs and CoA packets. + Patch from Bjorn Mork. + * Always send Message-Authenticator in radtest. Patch from John Dennis. + radclient continues to be more flexible. + * Updated Oracle schema and queries + * Added SecurID module. See src/modules/rlm_securid/README + Bug fixes + * Fix memory leak in rlm_detail + * Fix "failed to insert event" + * Allow virtual servers to be reloaded on HUP. + It no longer complains about duplicate virtual servers. + * Fix %{string:...} expansion + * Fix "server closed socket" loop in radmin + * Set ownership of control socket when starting up + * Always allow root to connect to control socket, even if + "uid" is set. They're root. They can already do anything. + * Save all attributes in Access-Accept when proxying inner-tunnel + EAP-MSCHAPv2 + * Fixes for DHCP relaying. + * Check certificate validity when using OCSP. + * Updated Oracle "configure" script + * Fixed typos in dictionary.alvarion + * WARNING on potential proxy loop. + * Be more aggressive about clearing old requests from the + internal queue + * Don't open network sockets when using -C +- freeradius-server-snprintf-overflow.patch merged in upstream + ------------------------------------------------------------------- Tue Sep 27 13:05:59 UTC 2011 - vcizek@suse.com diff --git a/freeradius-server.spec b/freeradius-server.spec index 5d21525..1cc8fde 100644 --- a/freeradius-server.spec +++ b/freeradius-server.spec @@ -18,7 +18,7 @@ Name: freeradius-server -Version: 2.1.11 +Version: 2.1.12 Release: 1 License: GPLv2 ; LGPLv2.1 Summary: Very Highly Configurable Radius Server @@ -33,7 +33,6 @@ Patch6: freeradius-server-sha1-default.patch Patch7: freeradius-server-fix-cert-bootstrap.patch Patch8: freeradius-server-initscript-pidfile.patch Patch9: freeradius-server-radius-reload-logrotate.patch -Patch10: freeradius-server-snprintf-overflow.patch # PATCH-FIX-UPSTREAM edirectory ldap extensions (bnc#720620) Patch11: freeradius-server-2.1.1-edirectory.patch BuildRequires: apache2-devel @@ -189,7 +188,6 @@ This package contains FreeRADIUS Documentation %patch7 -p1 %patch8 -p1 %patch9 -p1 -%patch10 -p1 %patch11 -p0 %build