Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | create new cert_store before reloading CAs and CRLs | Fabian Mauchle | 2017-08-01 | 1 | -0/+1 |
| | |||||
* | make sure rq->to is set to NULL when cleaning up server output queue | Fabian Mauchle | 2017-03-10 | 1 | -0/+1 |
| | |||||
* | Remove --enable-experimental-dyndisc build config knob. | Linus Nordberg | 2016-11-01 | 1 | -0/+3 |
| | | | | | Be aware that use of the DynamicLookupCommand configuration option still enables code known to be buggy. | ||||
* | Update ChangeLog. | Linus Nordberg | 2016-10-17 | 1 | -4/+14 |
| | |||||
* | Update ChangeLog. | Linus Nordberg | 2016-09-21 | 1 | -0/+8 |
| | |||||
* | Add changes from 1.6.7. | Linus Nordberg | 2016-03-14 | 1 | -1/+9 |
| | |||||
* | Add info about license change to ChangeLog. | Linus Nordberg | 2016-03-11 | 1 | -1/+7 |
| | |||||
* | Install radsecproxy.conf.5 unconditionally. | Linus Nordberg | 2015-01-19 | 1 | -0/+2 |
| | | | | Keep regeneration of it dependent on configure finding docbook2x-man(1). | ||||
* | ChangeLog for the four security patches. | Linus Nordberg | 2015-01-16 | 1 | -0/+4 |
| | |||||
* | When CHAP-Password, copy Request Authenticator to CHAP-Challenge. | Linus Nordberg | 2015-01-16 | 1 | -0/+2 |
| | |||||
* | Have rewriteIn for servers use the correct config section. | Linus Nordberg | 2015-01-14 | 1 | -1/+8 |
| | |||||
* | Add ChangeLog entry for -53. | Linus Nordberg | 2013-09-06 | 1 | -1/+6 |
| | |||||
* | ChangeLog updates bc 1.6.3 is tagged. | Linus Nordberg | 2013-09-05 | 1 | -3/+5 |
| | |||||
* | Keep Proxy-State attributes in all replies to clients. | Linus Nordberg | 2013-09-05 | 1 | -0/+2 |
| | | | | Closes RADSECPROXY-52. | ||||
* | Update ChangeLog with two older bug fixes. | Linus Nordberg | 2013-08-27 | 1 | -0/+4 |
| | |||||
* | Don't mention a version number in ChangeLog in the master branch. | Linus Nordberg | 2013-08-27 | 1 | -1/+2 |
| | |||||
* | Time out on TLS clients not closing the connection properly. | Linus Nordberg | 2013-08-26 | 1 | -0/+2 |
| | | | | Patch by Fabian Mauchle. | ||||
* | When timing out while reading from a TLS server, shutdown the socket properly. | Linus Nordberg | 2013-08-26 | 1 | -0/+2 |
| | | | | | | | Also signal the "client writer" (clientwr()). Together, this should result in TLS connections being cleaned up properly. Patch by Fabian Mauchle. | ||||
* | Don't free struct clsrvconf members rewritein and rewriteout. | Linus Nordberg | 2013-08-26 | 1 | -0/+2 |
| | | | | | | | They are pointers into static struct hash *rewriteconfs and should live forever. Patch by Fabian Mauchle. | ||||
* | Update ChangeLog with the last three bug fixes/ehancements. | Linus Nordberg | 2013-08-26 | 1 | -0/+11 |
| | | | | | | | Also, in a lame attempt att giving credit for last commit where I failed at doing that: 4920ff44 is a patch from Fabian Mauchle. | ||||
* | Update ChangeLog entry for 1.6.2 with correct CVE id. | Linus Nordberg | 2012-11-01 | 1 | -1/+2 |
| | | | | 1.6.2 is already released but correct ChangeLog info is good. | ||||
* | Mention CVE number in ChangeLog.radsecproxy-1.6.2 | Linus Nordberg | 2012-10-25 | 1 | -2/+2 |
| | |||||
* | radsecproxy-1.6.2 | Linus Nordberg | 2012-10-25 | 1 | -1/+1 |
| | |||||
* | Don't mix up pre- and post-handshake verification of DTLS clients. | Linus Nordberg | 2012-10-22 | 1 | -0/+6 |
| | | | | | | | | | | | | | Commit db965c9b addressed TLS clients only. When verifying DTLS clients, don't consider config blocks with CA settings ('tls') which differ from the one used for verifying the certificate chain. Original issue reported and analysed by Ralf Paffrath. DTLS being vulnerable reported by Raphael Geisser. Addresses issue RADSECPROXY-43, CVE-2012-4523. | ||||
* | Update ChangeLog with CVE id for RADSECPROXY-43. | Linus Nordberg | 2012-10-18 | 1 | -1/+2 |
| | |||||
* | radsecproxy-1.6.1 | Linus Nordberg | 2012-09-14 | 1 | -1/+1 |
| | |||||
* | Don't mix up pre- and post-handshake verification of clients. | Linus Nordberg | 2012-09-13 | 1 | -0/+10 |
| | | | | | | | | | | When verifying clients, don't consider config blocks with CA settings ('tls') which differ from the one used for verifying the certificate chain. Reported by Ralf Paffrath. Reported and analysed by Ralf Paffrath. Addresses issue RADSECPROXY-43. | ||||
* | Fix typo in ChangeLog. | Linus Nordberg | 2012-08-13 | 1 | -1/+1 |
| | |||||
* | radsecproxy-1.6.radsecproxy-1.6 | Linus Nordberg | 2012-04-27 | 1 | -1/+1 |
| | |||||
* | radsecproxy-1.6-rc2.radsecproxy-1.6-rc2 | Linus Nordberg | 2012-04-27 | 1 | -1/+1 |
| | |||||
* | radsecproxy-1.6-rc1.radsecproxy-1.6-rc1 | Linus Nordberg | 2012-04-26 | 1 | -1/+1 |
| | |||||
* | Add configure option --enable-experimental-dyndisc. | Linus Nordberg | 2012-04-26 | 1 | -2/+5 |
| | |||||
* | Ready for radsecproxy-1.6-rc0.radsecproxy-1.6-rc0 | Linus Nordberg | 2012-04-17 | 1 | -7/+7 |
| | |||||
* | Document the IPv4Only and IPv6Only options. | Linus Nordberg | 2012-04-17 | 1 | -1/+3 |
| | | | | RADSECPROXY-37. | ||||
* | Use printf(1) instead of 'echo -e' in tools/ scripts. | Linus Nordberg | 2012-04-16 | 1 | -1/+1 |
| | | | | Closes RADSECPROXY-40. | ||||
* | Add a note about the change of default place to look for radsecproxy.conf. | Linus Nordberg | 2012-04-16 | 1 | -1/+6 |
| | |||||
* | Correct changelog entry for RADSECPROXY-33. | Linus Nordberg | 2012-04-16 | 1 | -1/+2 |
| | |||||
* | Add a blurb on dynamic lookup in ChangeLog. | Linus Nordberg | 2012-04-12 | 1 | -0/+3 |
| | |||||
* | Add dynamic config updates to ChangeLog. | Linus Nordberg | 2012-04-12 | 1 | -0/+4 |
| | |||||
* | Make dynamic-resolve scripts in tools/ sort numerically. | Linus Nordberg | 2012-04-12 | 1 | -1/+1 |
| | | | | Spotted by Paul Dekkers. Closes RADSECPROXY-39. | ||||
* | Minor ChangeLog changes. | Linus Nordberg | 2012-04-12 | 1 | -2/+1 |
| | |||||
* | Update ChangeLog. | Linus Nordberg | 2012-04-11 | 1 | -2/+8 |
| | |||||
* | Update date in ChangeLog. | Linus Nordberg | 2012-04-11 | 1 | -1/+1 |
| | |||||
* | Change default shared secret for TLS and DTLS. | Linus Nordberg | 2012-04-11 | 1 | -0/+6 |
| | | | | | We change from "mysecret" to "radsec" as per draft-ietf-radext-radsec-12.txt section 2.3 (4). | ||||
* | Add F-Ticks improvements to ChangeLog. | Linus Nordberg | 2011-12-22 | 1 | -1/+6 |
| | |||||
* | Make the autoconfery slightly less miserable. Also, bump version. | Linus Nordberg | 2011-12-12 | 1 | -0/+5 |
| | | | | | Get rid of warnings about defining variables conditionally and unconditionally. Don't redefine EXTRA_DIST with a spurious space in it. | ||||
* | Ready for radsecproxy-1.5. | Linus Nordberg | 2011-10-08 | 1 | -1/+1 |
| | |||||
* | Update ChangeLog. | Linus Nordberg | 2011-10-08 | 1 | -0/+3 |
| | |||||
* | Modify ChangeLog. | Linus Nordberg | 2011-10-08 | 1 | -1/+1 |
| | |||||
* | Merge with master. Conflicts: | Linus Nordberg | 2011-09-28 | 1 | -0/+10 |
|\ | | | | | | | | | | | | | | | | | ChangeLog README config.guess config.sub configure configure.ac |