summaryrefslogtreecommitdiff
path: root/ChangeLog
Commit message (Collapse)AuthorAgeFilesLines
* Add mutex guarding realm refcount.Linus Nordberg2017-08-011-0/+1
| | | | NOTE: Only guarding writes.
* Add ChangeLog entry for RADSECPROXY-60.Linus Nordberg2017-08-011-0/+1
|
* create new cert_store before reloading CAs and CRLsFabian Mauchle2017-08-011-0/+1
|
* make sure rq->to is set to NULL when cleaning up server output queueFabian Mauchle2017-03-101-0/+1
|
* Remove --enable-experimental-dyndisc build config knob.Linus Nordberg2016-11-011-0/+3
| | | | | Be aware that use of the DynamicLookupCommand configuration option still enables code known to be buggy.
* Update ChangeLog.Linus Nordberg2016-10-171-4/+14
|
* Update ChangeLog.Linus Nordberg2016-09-211-0/+8
|
* Add changes from 1.6.7.Linus Nordberg2016-03-141-1/+9
|
* Add info about license change to ChangeLog.Linus Nordberg2016-03-111-1/+7
|
* Install radsecproxy.conf.5 unconditionally.Linus Nordberg2015-01-191-0/+2
| | | | Keep regeneration of it dependent on configure finding docbook2x-man(1).
* ChangeLog for the four security patches.Linus Nordberg2015-01-161-0/+4
|
* When CHAP-Password, copy Request Authenticator to CHAP-Challenge.Linus Nordberg2015-01-161-0/+2
|
* Have rewriteIn for servers use the correct config section.Linus Nordberg2015-01-141-1/+8
|
* Add ChangeLog entry for -53.Linus Nordberg2013-09-061-1/+6
|
* ChangeLog updates bc 1.6.3 is tagged.Linus Nordberg2013-09-051-3/+5
|
* Keep Proxy-State attributes in all replies to clients.Linus Nordberg2013-09-051-0/+2
| | | | Closes RADSECPROXY-52.
* Update ChangeLog with two older bug fixes.Linus Nordberg2013-08-271-0/+4
|
* Don't mention a version number in ChangeLog in the master branch.Linus Nordberg2013-08-271-1/+2
|
* Time out on TLS clients not closing the connection properly.Linus Nordberg2013-08-261-0/+2
| | | | Patch by Fabian Mauchle.
* When timing out while reading from a TLS server, shutdown the socket properly.Linus Nordberg2013-08-261-0/+2
| | | | | | | Also signal the "client writer" (clientwr()). Together, this should result in TLS connections being cleaned up properly. Patch by Fabian Mauchle.
* Don't free struct clsrvconf members rewritein and rewriteout.Linus Nordberg2013-08-261-0/+2
| | | | | | | They are pointers into static struct hash *rewriteconfs and should live forever. Patch by Fabian Mauchle.
* Update ChangeLog with the last three bug fixes/ehancements.Linus Nordberg2013-08-261-0/+11
| | | | | | | Also, in a lame attempt att giving credit for last commit where I failed at doing that: 4920ff44 is a patch from Fabian Mauchle.
* Update ChangeLog entry for 1.6.2 with correct CVE id.Linus Nordberg2012-11-011-1/+2
| | | | 1.6.2 is already released but correct ChangeLog info is good.
* Mention CVE number in ChangeLog.radsecproxy-1.6.2Linus Nordberg2012-10-251-2/+2
|
* radsecproxy-1.6.2Linus Nordberg2012-10-251-1/+1
|
* Don't mix up pre- and post-handshake verification of DTLS clients.Linus Nordberg2012-10-221-0/+6
| | | | | | | | | | | | | Commit db965c9b addressed TLS clients only. When verifying DTLS clients, don't consider config blocks with CA settings ('tls') which differ from the one used for verifying the certificate chain. Original issue reported and analysed by Ralf Paffrath. DTLS being vulnerable reported by Raphael Geisser. Addresses issue RADSECPROXY-43, CVE-2012-4523.
* Update ChangeLog with CVE id for RADSECPROXY-43.Linus Nordberg2012-10-181-1/+2
|
* radsecproxy-1.6.1Linus Nordberg2012-09-141-1/+1
|
* Don't mix up pre- and post-handshake verification of clients.Linus Nordberg2012-09-131-0/+10
| | | | | | | | | | When verifying clients, don't consider config blocks with CA settings ('tls') which differ from the one used for verifying the certificate chain. Reported by Ralf Paffrath. Reported and analysed by Ralf Paffrath. Addresses issue RADSECPROXY-43.
* Fix typo in ChangeLog.Linus Nordberg2012-08-131-1/+1
|
* radsecproxy-1.6.radsecproxy-1.6Linus Nordberg2012-04-271-1/+1
|
* radsecproxy-1.6-rc2.radsecproxy-1.6-rc2Linus Nordberg2012-04-271-1/+1
|
* radsecproxy-1.6-rc1.radsecproxy-1.6-rc1Linus Nordberg2012-04-261-1/+1
|
* Add configure option --enable-experimental-dyndisc.Linus Nordberg2012-04-261-2/+5
|
* Ready for radsecproxy-1.6-rc0.radsecproxy-1.6-rc0Linus Nordberg2012-04-171-7/+7
|
* Document the IPv4Only and IPv6Only options.Linus Nordberg2012-04-171-1/+3
| | | | RADSECPROXY-37.
* Use printf(1) instead of 'echo -e' in tools/ scripts.Linus Nordberg2012-04-161-1/+1
| | | | Closes RADSECPROXY-40.
* Add a note about the change of default place to look for radsecproxy.conf.Linus Nordberg2012-04-161-1/+6
|
* Correct changelog entry for RADSECPROXY-33.Linus Nordberg2012-04-161-1/+2
|
* Add a blurb on dynamic lookup in ChangeLog.Linus Nordberg2012-04-121-0/+3
|
* Add dynamic config updates to ChangeLog.Linus Nordberg2012-04-121-0/+4
|
* Make dynamic-resolve scripts in tools/ sort numerically.Linus Nordberg2012-04-121-1/+1
| | | | Spotted by Paul Dekkers. Closes RADSECPROXY-39.
* Minor ChangeLog changes.Linus Nordberg2012-04-121-2/+1
|
* Update ChangeLog.Linus Nordberg2012-04-111-2/+8
|
* Update date in ChangeLog.Linus Nordberg2012-04-111-1/+1
|
* Change default shared secret for TLS and DTLS.Linus Nordberg2012-04-111-0/+6
| | | | | We change from "mysecret" to "radsec" as per draft-ietf-radext-radsec-12.txt section 2.3 (4).
* Add F-Ticks improvements to ChangeLog.Linus Nordberg2011-12-221-1/+6
|
* Make the autoconfery slightly less miserable. Also, bump version.Linus Nordberg2011-12-121-0/+5
| | | | | Get rid of warnings about defining variables conditionally and unconditionally. Don't redefine EXTRA_DIST with a spurious space in it.
* Ready for radsecproxy-1.5.Linus Nordberg2011-10-081-1/+1
|
* Update ChangeLog.Linus Nordberg2011-10-081-0/+3
|