pkgsrc-Changes archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
CVS commit: pkgsrc/net
Module Name: pkgsrc
Committed By: adam
Date: Wed Jun 19 08:46:34 UTC 2024
Modified Files:
pkgsrc/net/freeradius: Makefile Makefile.common PLIST distinfo
pkgsrc/net/freeradius-freetds: Makefile
pkgsrc/net/freeradius-ldap: Makefile
pkgsrc/net/freeradius-perl: Makefile
pkgsrc/net/freeradius-python: Makefile
pkgsrc/net/freeradius-rest: Makefile
pkgsrc/net/freeradius-sqlite3: Makefile
pkgsrc/net/freeradius/patches: patch-src_main_listen.c
Log Message:
freeradius: updated to 3.2.4
3.2.4
Configuration changes
Better handle backslashes in strings in the configuration files. If the configuration items contain backslashes, then behavior may change. However, the previous behavior didn't work as expected, and
therefore is not likely to be used.
reject_delay no longer applies to proxied packets. All servers should now set reject_delay = 1 for security and scalability.
%{randstr:...} now returns the requested amount of data, instead of one too many bytes.
Feature improvements
Preliminary support for TEAP.
Update EAP module pre_proxy checks to make them less restrictive. This prevents the "middle box" effect from affecting future traffic.
Many fixes and updates for Docker images
Add dpsk module. See mods-available/dpsk
Print out what cause the TLS operations to be made, such as the EAP method name (peap, ttls, etc), or RADIUS/TLS listen / proxy socket.
Add auto_escape to sample SQL module config
Add 'if not exists' to mysql create table queries.
Update dictionary.aruba; add dictionary.tplink, dictionary.alphion
Allow for encrypt=1 attributes to be longer than 128 characters.
Added radsecret program which generates strong secrets. See the top of the clients.conf file for more information.
radclient now prints packets as hex when using -xxx.
Added -t timeout to radsniff. It will stop processing packets after seconds.
Support interface = ... on OSX and other *BSD which have IP_BOUND_IF.
The detail module now has a dates_as_integer configuration item. See mods-available/detail for more information.
Add lookback/lookforward steps and more configuration to totp. See mods-available/totp.
Add time_since xlat to calculate elapsed time in seconds, milliseconds and microseconds.
Support "Post-Auth-Type Challenge" in the inner tunnel. Patch from Alexander Clouter.
Add "proxy_dedup_window". See radiusd.conf.
Document KRB5_CLIENT_KTNAME in the "env" section of radiusd.conf.
Add dedup_key for misbehaving supplicants. See mods-available/eap
Bug fixes
Fix corner case with empty defaults in rlm_files.
When we have multiple attributes of the same name, always use the canonical attribute
Make FreeRADIUS-Server-EMA* attributes work again for home server exponential moving average statistics.
Don't send the global server stats when asked for client stats. They use the same attributes, so the result is confusing.
Fix multiple typos in MongoDB query.conf
Add define for illumos.
Add client configuration for TLS PSK.
Permit originate CoA after proxying to an internal virtual server
Use virtual server default when passed -i and -p on the command line.
Fix locking issues with rlm_python3.
The detail file reader will catch bad times in the file, and will not update Acct-Delay-Time with extreme values.
Fix issue where Message-Authenticator was calculated incorrectly for CoA / Disconnect ACK and NAK packets.
Update Python thread and error handling.
Fix handling of Session-State when proxying.
Run relevant post-proxy Fail-* section on CoA / Disconnect timeout.
Add limit section to AWS health check configurtion. Fixes 35300.
Use MAX in sqlite queries instead of GREATEST.
Fix typo in Mongo queries.
Fix occasional crash with bad home servers.
Minor bug fixes to the SQL freetds modules.
Fix blocking issue with RADIUS/TLS connection checks.
Fix run-time crash on configuration typos of %{substr ...} instead of %{substr:...}
Fix crash with TLS Status-Server requests.
To generate a diff of this commit:
cvs rdiff -u -r1.123 -r1.124 pkgsrc/net/freeradius/Makefile
cvs rdiff -u -r1.13 -r1.14 pkgsrc/net/freeradius/Makefile.common
cvs rdiff -u -r1.38 -r1.39 pkgsrc/net/freeradius/PLIST
cvs rdiff -u -r1.48 -r1.49 pkgsrc/net/freeradius/distinfo
cvs rdiff -u -r1.26 -r1.27 pkgsrc/net/freeradius-freetds/Makefile
cvs rdiff -u -r1.5 -r1.6 pkgsrc/net/freeradius-ldap/Makefile
cvs rdiff -u -r1.13 -r1.14 pkgsrc/net/freeradius-perl/Makefile
cvs rdiff -u -r1.9 -r1.10 pkgsrc/net/freeradius-python/Makefile
cvs rdiff -u -r1.32 -r1.33 pkgsrc/net/freeradius-rest/Makefile
cvs rdiff -u -r1.24 -r1.25 pkgsrc/net/freeradius-sqlite3/Makefile
cvs rdiff -u -r1.1 -r1.2 \
pkgsrc/net/freeradius/patches/patch-src_main_listen.c
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
Modified files:
Index: pkgsrc/net/freeradius/Makefile
diff -u pkgsrc/net/freeradius/Makefile:1.123 pkgsrc/net/freeradius/Makefile:1.124
--- pkgsrc/net/freeradius/Makefile:1.123 Wed May 29 16:33:51 2024
+++ pkgsrc/net/freeradius/Makefile Wed Jun 19 08:46:33 2024
@@ -1,6 +1,5 @@
-# $NetBSD: Makefile,v 1.123 2024/05/29 16:33:51 adam Exp $
+# $NetBSD: Makefile,v 1.124 2024/06/19 08:46:33 adam Exp $
-PKGREVISION= 4
.include "Makefile.common"
PKGNAME= ${DISTNAME:S/-server//}
@@ -53,9 +52,10 @@ SUBST_VARS.secconf= RADIUS_USER RADIUS_G
FILES_SUBST+= RADIUS_USER=${RADIUS_USER} RADIUS_GROUP=${RADIUS_GROUP}
MESSAGE_SUBST+= BOOTSTRAP=${PKG_SYSCONFDIR}/certs/bootstrap
-REPLACE_PERL+= src/modules/rlm_counter/rad_counter
REPLACE_PERL+= scripts/sql/radsqlrelay
REPLACE_PERL+= scripts/sql/rlm_sqlippool_tool
+REPLACE_PERL+= src/main/radsecret
+REPLACE_PERL+= src/modules/rlm_counter/rad_counter
EGDIR= ${PREFIX}/share/examples/freeradius
Index: pkgsrc/net/freeradius/Makefile.common
diff -u pkgsrc/net/freeradius/Makefile.common:1.13 pkgsrc/net/freeradius/Makefile.common:1.14
--- pkgsrc/net/freeradius/Makefile.common:1.13 Sat Jun 17 18:19:06 2023
+++ pkgsrc/net/freeradius/Makefile.common Wed Jun 19 08:46:33 2024
@@ -1,7 +1,7 @@
-# $NetBSD: Makefile.common,v 1.13 2023/06/17 18:19:06 adam Exp $
+# $NetBSD: Makefile.common,v 1.14 2024/06/19 08:46:33 adam Exp $
# used by net/freeradius/Makefile.module
-DISTNAME= freeradius-server-3.2.3
+DISTNAME= freeradius-server-3.2.4
CATEGORIES= net
MASTER_SITES= ftp://ftp.freeradius.org/pub/freeradius/
EXTRACT_SUFX= .tar.bz2
Index: pkgsrc/net/freeradius/PLIST
diff -u pkgsrc/net/freeradius/PLIST:1.38 pkgsrc/net/freeradius/PLIST:1.39
--- pkgsrc/net/freeradius/PLIST:1.38 Sat Jun 17 18:19:06 2023
+++ pkgsrc/net/freeradius/PLIST Wed Jun 19 08:46:33 2024
@@ -1,4 +1,4 @@
-@comment $NetBSD: PLIST,v 1.38 2023/06/17 18:19:06 adam Exp $
+@comment $NetBSD: PLIST,v 1.39 2024/06/19 08:46:33 adam Exp $
bin/dhcpclient
bin/map_unit
bin/rad_counter
@@ -7,6 +7,7 @@ bin/radclient
bin/radcrypt
bin/radeapclient
bin/radlast
+bin/radsecret
bin/radsniff
bin/radsqlrelay
bin/radtest
@@ -101,6 +102,7 @@ lib/rlm_date.${SOEXT}
lib/rlm_detail.${SOEXT}
lib/rlm_dhcp.${SOEXT}
lib/rlm_digest.${SOEXT}
+lib/rlm_dpsk.${SOEXT}
lib/rlm_dynamic_clients.${SOEXT}
lib/rlm_eap.${SOEXT}
lib/rlm_eap_fast.${SOEXT}
@@ -110,6 +112,7 @@ lib/rlm_eap_mschapv2.${SOEXT}
lib/rlm_eap_peap.${SOEXT}
lib/rlm_eap_pwd.${SOEXT}
lib/rlm_eap_sim.${SOEXT}
+lib/rlm_eap_teap.${SOEXT}
lib/rlm_eap_tls.${SOEXT}
lib/rlm_eap_ttls.${SOEXT}
lib/rlm_exec.${SOEXT}
@@ -197,8 +200,22 @@ share/doc/freeradius/antora/modules/ROOT
share/doc/freeradius/antora/modules/ROOT/nav.adoc
share/doc/freeradius/antora/modules/ROOT/pages/directories.adoc
share/doc/freeradius/antora/modules/ROOT/pages/index.adoc
+share/doc/freeradius/antora/modules/concepts/nav.adoc
+share/doc/freeradius/antora/modules/concepts/pages/aaa.adoc
+share/doc/freeradius/antora/modules/concepts/pages/index.adoc
+share/doc/freeradius/antora/modules/concepts/pages/modules/ldap/authentication.adoc
+share/doc/freeradius/antora/modules/developers/nav.adoc
+share/doc/freeradius/antora/modules/developers/pages/bugs.adoc
+share/doc/freeradius/antora/modules/developers/pages/coding-methods.adoc
+share/doc/freeradius/antora/modules/developers/pages/contributing.adoc
+share/doc/freeradius/antora/modules/developers/pages/coverage.adoc
+share/doc/freeradius/antora/modules/developers/pages/index.adoc
+share/doc/freeradius/antora/modules/developers/pages/profile.adoc
+share/doc/freeradius/antora/modules/developers/pages/release-method.adoc
share/doc/freeradius/antora/modules/howto/nav.adoc
share/doc/freeradius/antora/modules/howto/pages/index.adoc
+share/doc/freeradius/antora/modules/howto/pages/monitoring/index.adoc
+share/doc/freeradius/antora/modules/howto/pages/monitoring/statistics.adoc
share/doc/freeradius/antora/modules/howto/pages/protocols/dhcp/enable.adoc
share/doc/freeradius/antora/modules/howto/pages/protocols/dhcp/index.adoc
share/doc/freeradius/antora/modules/howto/pages/protocols/dhcp/policy.adoc
@@ -216,6 +233,7 @@ share/doc/freeradius/antora/modules/howt
share/doc/freeradius/antora/modules/howto/pages/protocols/proxy/radsec_client.adoc
share/doc/freeradius/antora/modules/howto/pages/protocols/proxy/radsec_with_haproxy.adoc
share/doc/freeradius/antora/modules/howto/pages/protocols/proxy/radsec_with_traefik.adoc
+share/doc/freeradius/antora/modules/howto/pages/simultaneous_use.adoc
share/doc/freeradius/antora/modules/installation/nav.adoc
share/doc/freeradius/antora/modules/installation/pages/dependencies.adoc
share/doc/freeradius/antora/modules/installation/pages/index.adoc
@@ -419,6 +437,7 @@ share/examples/freeradius/certs/bootstra
share/examples/freeradius/certs/ca.cnf
share/examples/freeradius/certs/client.cnf
share/examples/freeradius/certs/inner-server.cnf
+share/examples/freeradius/certs/realms/README.md
share/examples/freeradius/certs/server.cnf
share/examples/freeradius/certs/xpextensions
share/examples/freeradius/clients.conf
@@ -446,6 +465,7 @@ share/examples/freeradius/mods-available
share/examples/freeradius/mods-available/dhcp_sql
share/examples/freeradius/mods-available/dhcp_sqlippool
share/examples/freeradius/mods-available/digest
+share/examples/freeradius/mods-available/dpsk
share/examples/freeradius/mods-available/dynamic_clients
share/examples/freeradius/mods-available/eap
share/examples/freeradius/mods-available/echo
@@ -707,6 +727,7 @@ share/freeradius/dictionary.alcatel
share/freeradius/dictionary.alcatel-lucent.aaa
share/freeradius/dictionary.alcatel.esam
share/freeradius/dictionary.alcatel.sr
+share/freeradius/dictionary.alphion
share/freeradius/dictionary.alteon
share/freeradius/dictionary.altiga
share/freeradius/dictionary.alvarion
@@ -748,6 +769,7 @@ share/freeradius/dictionary.cisco.bbsm
share/freeradius/dictionary.cisco.vpn3000
share/freeradius/dictionary.cisco.vpn5000
share/freeradius/dictionary.citrix
+share/freeradius/dictionary.ckey
share/freeradius/dictionary.clavister
share/freeradius/dictionary.cnergee
share/freeradius/dictionary.colubris
@@ -831,6 +853,7 @@ share/freeradius/dictionary.nomadix
share/freeradius/dictionary.nortel
share/freeradius/dictionary.ntua
share/freeradius/dictionary.openser
+share/freeradius/dictionary.openwifi
share/freeradius/dictionary.packeteer
share/freeradius/dictionary.paloalto
share/freeradius/dictionary.patton
@@ -890,6 +913,7 @@ share/freeradius/dictionary.shasta
share/freeradius/dictionary.shiva
share/freeradius/dictionary.siemens
share/freeradius/dictionary.slipstream
+share/freeradius/dictionary.smartsharesystems
share/freeradius/dictionary.sofaware
share/freeradius/dictionary.softbank
share/freeradius/dictionary.sonicwall
@@ -903,6 +927,7 @@ share/freeradius/dictionary.telebit
share/freeradius/dictionary.telkom
share/freeradius/dictionary.telrad
share/freeradius/dictionary.terena
+share/freeradius/dictionary.tplink
share/freeradius/dictionary.trapeze
share/freeradius/dictionary.travelping
share/freeradius/dictionary.tripplite
Index: pkgsrc/net/freeradius/distinfo
diff -u pkgsrc/net/freeradius/distinfo:1.48 pkgsrc/net/freeradius/distinfo:1.49
--- pkgsrc/net/freeradius/distinfo:1.48 Tue Jun 20 08:38:09 2023
+++ pkgsrc/net/freeradius/distinfo Wed Jun 19 08:46:33 2024
@@ -1,12 +1,12 @@
-$NetBSD: distinfo,v 1.48 2023/06/20 08:38:09 adam Exp $
+$NetBSD: distinfo,v 1.49 2024/06/19 08:46:33 adam Exp $
-BLAKE2s (freeradius-server-3.2.3.tar.bz2) = 7a604f1df1c9d9a92dfc561c77d5088eeb212efb9ec600c243cd70ee17cdecd6
-SHA512 (freeradius-server-3.2.3.tar.bz2) = 06767153e262a2baa2d0cc74099bc13c23b33c2316348b5dc8ec0f5834c028571bd09b8c01726a6eabeaab8fdc3050f40bfeba2d5b1c299585d1689abad365ce
-Size (freeradius-server-3.2.3.tar.bz2) = 3454869 bytes
+BLAKE2s (freeradius-server-3.2.4.tar.bz2) = 4f7e10f514d93110cf16e7ec3c1c9ee6d945bd0e84a1cc22367b114458a4fa12
+SHA512 (freeradius-server-3.2.4.tar.bz2) = f0a0ebec906d72e44740cf66069cd8d29d93703bfb976dbb1b7ce062eb86cc2977af167577b908677a8dd4a0d9ee708605d08eb2f0f77f6feb5a0b1a244833fb
+Size (freeradius-server-3.2.4.tar.bz2) = 3495607 bytes
SHA1 (patch-configure) = ddafb5aafec43d2c9d2c81a824fa514224243ac0
SHA1 (patch-configure.ac) = ffec1f851d23f560797c12eba5092f2940e4d662
SHA1 (patch-raddb_radiusd.conf.in) = 353cbed35013777bf055a77cc610b50a637ae7b7
SHA1 (patch-src_lib_udpfromto.c) = 2457f0a7223b1f3ef86d0af020290b26380e6319
SHA1 (patch-src_main_command.c) = 1c79b29eb13df341906c710c8dd41860a27473dd
-SHA1 (patch-src_main_listen.c) = 7ffd9a6940b513804b9c77ac5b126d5e038408fa
+SHA1 (patch-src_main_listen.c) = 6516ae11e82cc292f2b306f235b812fff317ba0b
SHA1 (patch-src_main_util.c) = e8814255c32c8469e81d62f2c7092e8d42744e85
Index: pkgsrc/net/freeradius-freetds/Makefile
diff -u pkgsrc/net/freeradius-freetds/Makefile:1.26 pkgsrc/net/freeradius-freetds/Makefile:1.27
--- pkgsrc/net/freeradius-freetds/Makefile:1.26 Wed May 29 16:33:51 2024
+++ pkgsrc/net/freeradius-freetds/Makefile Wed Jun 19 08:46:33 2024
@@ -1,6 +1,5 @@
-# $NetBSD: Makefile,v 1.26 2024/05/29 16:33:51 adam Exp $
+# $NetBSD: Makefile,v 1.27 2024/06/19 08:46:33 adam Exp $
-PKGREVISION= 4
.include "../../net/freeradius/Makefile.module"
PKGNAME= ${DISTNAME:S/-server/-freetds/}
Index: pkgsrc/net/freeradius-ldap/Makefile
diff -u pkgsrc/net/freeradius-ldap/Makefile:1.5 pkgsrc/net/freeradius-ldap/Makefile:1.6
--- pkgsrc/net/freeradius-ldap/Makefile:1.5 Tue Oct 24 22:10:16 2023
+++ pkgsrc/net/freeradius-ldap/Makefile Wed Jun 19 08:46:33 2024
@@ -1,6 +1,5 @@
-# $NetBSD: Makefile,v 1.5 2023/10/24 22:10:16 wiz Exp $
+# $NetBSD: Makefile,v 1.6 2024/06/19 08:46:33 adam Exp $
-PKGREVISION= 1
.include "../../net/freeradius/Makefile.module"
PKGNAME= ${DISTNAME:S/-server/-ldap/}
Index: pkgsrc/net/freeradius-perl/Makefile
diff -u pkgsrc/net/freeradius-perl/Makefile:1.13 pkgsrc/net/freeradius-perl/Makefile:1.14
--- pkgsrc/net/freeradius-perl/Makefile:1.13 Thu Jul 6 09:41:01 2023
+++ pkgsrc/net/freeradius-perl/Makefile Wed Jun 19 08:46:33 2024
@@ -1,6 +1,5 @@
-# $NetBSD: Makefile,v 1.13 2023/07/06 09:41:01 wiz Exp $
+# $NetBSD: Makefile,v 1.14 2024/06/19 08:46:33 adam Exp $
-PKGREVISION= 1
.include "../../net/freeradius/Makefile.module"
PKGNAME= ${DISTNAME:S/-server/-perl/}
Index: pkgsrc/net/freeradius-python/Makefile
diff -u pkgsrc/net/freeradius-python/Makefile:1.9 pkgsrc/net/freeradius-python/Makefile:1.10
--- pkgsrc/net/freeradius-python/Makefile:1.9 Mon Aug 14 05:24:59 2023
+++ pkgsrc/net/freeradius-python/Makefile Wed Jun 19 08:46:33 2024
@@ -1,6 +1,5 @@
-# $NetBSD: Makefile,v 1.9 2023/08/14 05:24:59 wiz Exp $
+# $NetBSD: Makefile,v 1.10 2024/06/19 08:46:33 adam Exp $
-PKGREVISION= 1
.include "../../net/freeradius/Makefile.module"
PKGNAME= ${DISTNAME:S/-server/-python/}
Index: pkgsrc/net/freeradius-rest/Makefile
diff -u pkgsrc/net/freeradius-rest/Makefile:1.32 pkgsrc/net/freeradius-rest/Makefile:1.33
--- pkgsrc/net/freeradius-rest/Makefile:1.32 Wed May 29 16:33:51 2024
+++ pkgsrc/net/freeradius-rest/Makefile Wed Jun 19 08:46:33 2024
@@ -1,6 +1,5 @@
-# $NetBSD: Makefile,v 1.32 2024/05/29 16:33:51 adam Exp $
+# $NetBSD: Makefile,v 1.33 2024/06/19 08:46:33 adam Exp $
-PKGREVISION= 4
.include "../../net/freeradius/Makefile.module"
PKGNAME= ${DISTNAME:S/-server/-rest/}
Index: pkgsrc/net/freeradius-sqlite3/Makefile
diff -u pkgsrc/net/freeradius-sqlite3/Makefile:1.24 pkgsrc/net/freeradius-sqlite3/Makefile:1.25
--- pkgsrc/net/freeradius-sqlite3/Makefile:1.24 Wed May 29 16:33:51 2024
+++ pkgsrc/net/freeradius-sqlite3/Makefile Wed Jun 19 08:46:33 2024
@@ -1,6 +1,5 @@
-# $NetBSD: Makefile,v 1.24 2024/05/29 16:33:51 adam Exp $
+# $NetBSD: Makefile,v 1.25 2024/06/19 08:46:33 adam Exp $
-PKGREVISION= 2
.include "../../net/freeradius/Makefile.module"
PKGNAME= ${DISTNAME:S/-server/-sqlite3/}
Index: pkgsrc/net/freeradius/patches/patch-src_main_listen.c
diff -u pkgsrc/net/freeradius/patches/patch-src_main_listen.c:1.1 pkgsrc/net/freeradius/patches/patch-src_main_listen.c:1.2
--- pkgsrc/net/freeradius/patches/patch-src_main_listen.c:1.1 Tue Jun 20 08:38:09 2023
+++ pkgsrc/net/freeradius/patches/patch-src_main_listen.c Wed Jun 19 08:46:33 2024
@@ -1,18 +1,15 @@
-$NetBSD: patch-src_main_listen.c,v 1.1 2023/06/20 08:38:09 adam Exp $
+$NetBSD: patch-src_main_listen.c,v 1.2 2024/06/19 08:46:33 adam Exp $
Fix missing SOL_TCP for other platforms.
---- src/main/listen.c.orig 2023-06-20 08:35:52.487727610 +0000
+--- src/main/listen.c.orig 2024-05-29 16:18:18.000000000 +0000
+++ src/main/listen.c
-@@ -55,11 +55,9 @@ RCSID("$Id: ee73a571aedb81939bb72ac36b65
+@@ -55,7 +55,7 @@ RCSID("$Id: dbb2167e28189720df35cbf677ff
#ifdef WITH_TLS
#include <netinet/tcp.h>
--# ifdef __APPLE__
+-# if defined(__APPLE__) || defined(__FreeBSD__) || defined(__illumos__) || defined(__sun__)
++# if defined(__APPLE__) || defined(__FreeBSD__) || defined(__illumos__) || defined(__sun__) || defined(__NetBSD__)
# if !defined(SOL_TCP) && defined(IPPROTO_TCP)
# define SOL_TCP IPPROTO_TCP
# endif
--# endif
-
- #endif
-
Home |
Main Index |
Thread Index |
Old Index