Skip to content

Commit

Permalink
release 3.2.3
Browse files Browse the repository at this point in the history
  • Loading branch information
mcnewton committed May 26, 2023
1 parent a5cff6a commit db3d192
Show file tree
Hide file tree
Showing 2 changed files with 17 additions and 10 deletions.
2 changes: 1 addition & 1 deletion debian/changelog
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,7 @@ freeradius (3.2.3+git) unstable; urgency=medium

* New upstream version.

-- Alan DeKok <[email protected]> Thu, 16 Feb 2023 12:00:00 -0500
-- Alan DeKok <[email protected]> Fri, 26 May 2023 12:00:00 -0500

freeradius (3.2.2+git) unstable; urgency=medium

Expand Down
25 changes: 16 additions & 9 deletions doc/ChangeLog
Original file line number Diff line number Diff line change
@@ -1,18 +1,19 @@
FreeRADIUS 3.2.3 Thu 16 Feb 2023 12:00:00 EDT urgency=low
FreeRADIUS 3.2.3 Fri 26 May 2023 12:00:00 EDT urgency=low
Configuration changes
* The rlm_ldap and rlm_sql modules now have a "max_retries"
configuration item in the pool section. This sets a
limit on how many times an operation will be retried
if it fails indicating a connection issue.
* Added "check_crl" configuration to rlm_ldap. This only works with
OpenSSL. Many Linux distributions use other TLS libraries, which
won't work.
* The rlm_ldap and rlm_sql modules now have a "max_retries" configuration
item in the pool section. This sets a limit on how many times an operation
will be retried if it fails indicating a connection issue.
* Added "check_crl" configuration to rlm_ldap. This only works with OpenSSL.
Many Linux distributions use other TLS libraries, which won't work.
* Note that rlm_ldap does not support "-=" operators. The documentation
disagreed with the code, so we fixed the documentation.
* If checkrad is called from SQL Simultaneous-Use checks it will now be
passed NAS-Port-Id (as stored in the database), rather than NAS-Port.

Feature improvements
* Add "max_retries" for connection pools. Fixes #4908. Patch from Nick Porter.
* Update dictionary.wifialliance and dictionary.ciena; add dictionary.eleven.
* Update dictionary.ciena, dictionary.huawei, dictionary.wifialliance and
dictionary.wispr; add dictionary.eleven.
* You can now list "eap" in the "pre-proxy" section. If the packet
contains a malformed EAP message, then the request will be rejected.
The home server will either reject (or discard) this packet anyways,
Expand All @@ -25,6 +26,10 @@ FreeRADIUS 3.2.3 Thu 16 Feb 2023 12:00:00 EDT urgency=low
* More TLS debugging output
* Clear old module instance data before HUP reload. Avoids burst memory use
when e.g. using large data files with rlm_files. Patch from Nick Porter.
* `rlm_cache_redis` is now included in the freeradius-redis packages.
* Separate out python2/python3 in Debian Packages. Previously python 2 or 3
was built depending on the system default which led to confusion. We now build
both freeradius-python2 and freeradius-python3 packages where possible.

Bug fixes
* Don't leak MD contexts with OpenSSL 3.0.
Expand All @@ -45,6 +50,8 @@ FreeRADIUS 3.2.3 Thu 16 Feb 2023 12:00:00 EDT urgency=low
* Force correct packet type when running Post-Auth-Type. Helps with #4980
* Fix small leak in Client-Lost code. Patch from Terry Burton. PR #4996
* Fix TCP socket statistics. Closes #4990
* Use NAS-Port-Id instead of NAS-Port during SQL simultaneous-use
checks. Helps with #5010

FreeRADIUS 3.2.2 Thu 16 Feb 2023 12:00:00 EDT urgency=low
Configuration changes
Expand Down

0 comments on commit db3d192

Please sign in to comment.