Changelog for
radsecproxy-1.10.0-1.25.x86_64.rpm :
* Mon Jun 12 2023 Stefan Botter
1.10.0- 1.10.0 New features: - Native dynamic discovery for NAPTR and SRV records (#2, #83) - Optionally log accounting requests when respoinding directly (#72) - SNI support for outgoing connections (#90) - Optionally specify server name for certificate name check (#106) - Manual MTU setting for DTLS on non-linux platforms Misc: - Don\'t require server type to be set by dyndisc scripts - Improve locating openssl lib using pkg-config Bug Fixes: - Fix radius message length handling- 1.9.3 Bug Fixes: - Fix shutdown TLS connection on malformed radius message (#122) - Fix handling of lost requests in DTLS - Fix flush requests when dyndisc fails
* Fri Feb 17 2023 Stefan Botter 1.9.2- 1.9.2 Bug Fixes: - Fix potential segfault in tcp log message - Fix DTLS over IPv6 - Fix SSL shutdown/EOF for openssl 3.x (#108)
* Sat Nov 20 2021 Stefan Botter 1.9.1- 1.9.1 Misc: - OpenSSL 3.0 compatibility (#70) Bug Fixes: - Fix refused startup with openssl <1.1 (#82) - Fix compiler issue for Fedora 33 on s390x (#84) - Fix small memory leak in config parser - Fix lazy certificate check when connecting to TLS servers - Fix connect is aborted if first host in list has invalid certificate - Fix setstacksize for glibc 2.34 (#91) - Fix system defaults/settings for TLS version not honored (#92)- remove patch to fix setstacksize for glibc 2.34 (fix #91) from package
* Tue Oct 05 2021 Stefan Botter - add upstream patch to fix setstacksize for glibc 2.34 (fix #91) radsecproxy-1.9.0_fix-glibc-2.34-setstacksize.diff + will not be needed abter next release
* Fri Jun 11 2021 Stefan Botter 1.9.0- 1.9.0 New features: - Accept multiple source
* configs for IPv4/v6 - Specify source per server - User configurable cipher-list and ciphersuites - User configurable TLS versions - Config option for DH-file - Add rID and otherName options to certifcateAttributeCheck - Allow multiple matchCertificateAttribute - Option to start dynamic server in blocking mode Misc: - Move radsecproxy manpage to section 8 - Log CUI and operator-name if present - Log CN for incomming TLS connections Bug Fixes: - Fix overlapping log lines - Fix memory leak in logging - Fix dynidsc example scripts input validation (CVE-2021-32642)
* Mon Mar 22 2021 Stefan Botter 1.8.2- 1.8.2 Bug fixes: - Fix wrong config-unhexing if %25 (%) occurs - Fix compatibility with GCC 10 (#63) - Fix spelling in manpage - Fix modifyVendorAttribute not applied (#62) - Fix unncessary status-server when in minimal mode (#61)- remove unneeded patch radsecproxy-declare_pthread_attr_as_extern_in_header.diff
* Sun Jun 14 2020 Stefan Botter - add upstream patch to fix GCC 10 incompatibility radsecproxy-declare_pthread_attr_as_extern_in_header.diff + will not bee needed after next release
* Tue Nov 05 2019 Stefan Botter - 1.8.1 Bug fixes: - Handle Tunnel-Password attribute correctly - Fix BSD platform issues - Fix spelling in log messages and manpages - Fix compile issues for unit tests
* Thu Jul 04 2019 Stefan Botter - 1.8.0 New features: - Rewrite: supplement attribute (add attribute if not present) (#19) - Rewrite: modify vendor attribute - Rewrite whitelist mode - Autodetect status-server capability of servers - Minimalistic status-server - Explicit SubjectAltName:DNS and :IP match on certificates Misc: - No longer require docbook2x tools, but include plain manpages - Fail on startup if overlapping clients with different tls blocks Compile fixes: - Fix compile issues on bsd Bug fixes: - Handle %00 in config correctly (#31) - Fix server selection when udp were unreachable for long periods
* Wed Nov 21 2018 obsAATTbotter.cc- add logrotate definition file