lp:ubuntu/quantal/freeradius
- Get this branch:
- bzr branch lp:ubuntu/quantal/freeradius
Branch merges
Branch information
- Owner:
- Ubuntu branches
- Status:
- Mature
Recent revisions
- 41. By Nico Golde <email address hidden>
-
* Non-maintainer upload by the Security Team.
* Fix pre-authentication buffer overflow in EAP handling
(CVE-2012-3547; Closes: #687175, #687178). - 40. By Josip Rodin
-
* New upstream version, closes: #675698.
+ Fix for a segmentation fault in rlm_eap, closes: #645998.
* Backport upstream commits to fix our bug reports:
+ Fix for a crash on SIGHUP in config file handling,
378f2517357f11f9900c3799c6 a469ee2fda7bdf
ab73a3debf93492804e7af253b a45a7b017a18d1
closes: #606450
+ Fix for a segmentation fault in radmin through environment variables,
ce1bb741773b253c4ccf24accc cf6305e202a322
516dbaabf0ea80d0ff0643dc2a e9a10c4d31494c
closes: #662194
* Use dpkg-buildflags for configure, by Moritz Muehlenhoff, closes: #657838.
* Mark rlm_jradius as stable to get it to build and ship, closes: #599067.
* Switch to dpkg-source 3.0 (quilt) format.
* Polished packaging a wee bit and updated the Standards-Version. - 39. By gregor herrmann
-
* Non-maintainer upload.
* Fix "FTBFS: libfreeradius-radius- 2.1.10. so: could not read symbols:
Invalid operation": adjust target dependencies in debian/rules: make sure
the patch target is not only called for build but also for
build-{arch,indep} . (Closes: #666311) - 36. By Josip Rodin
-
* Fixed the silly error that rendered previous attempts to use the
right libtool functions useless, hopefully finally closes: #416266.
* Link radeapclient with libradius to fix linking with binutils-gold,
closes: #553387.
* Fix the debug mode crashing when home server doesn't respond to
a proxied request. Dmitry Borodaenko cherry-picked upstream commits
540a0515de93d99ef45f97b91141 85f159587b51 and
ab972f1f9b724fc0b71e6ca72607 8c92ad26bc6b, thanks, closes: #609870.
* Fixed udpfromto IPv6 breakage because of broken offsetof tests,
backported upstream b4f0c7ed4dc9811d8dfa982540ed8c b721cc854a
(one minor change necessary) as well as
655f0786d60fe02440763df69b1a af5110706690, as well as the simple
IPV6_RECVPKTINFO change, hopefully it activates all the right
modern IPv6 functions and closes: #606866. - 32. By Josip Rodin
-
* The zombie period start time variable mistakenly got set to a random
value because of an upstream typo. Cherry-picked upstream commit
7b7dff7724721f8af5fd163f2292 d427a869992d into a Debian patch,
requested for squeeze in #600465.
* Since 2.1.9, the daemon stopped reopening the default radius.log file
constantly, which means the default logrotate setup breaks the default
logging. D'oh. We now have to send SIGHUP to the daemon as a postrotate
action, which makes it reopen log files and continue normally.
* Added delaycompress to the logrotate options, just to be on the safe
side.
* Added a reload action into the init script accordingly, so that the
right pidfile is picked up (one that can be overridden by the admin
in /etc/default/freeradius, available since the last release).
* Called reload from the postrotate section, closes: #602815.
* However, the latter signal also makes the server re-read configuration
files, but unlike the initial server start, this all happens under
the unprivileged user. That in turn means that if by any chance there
is any part of FR configuration that happens not to be readable by
group freerad (or whatever non-default is configured), the reload
will fail, effectively silently, as the log has been moved away. Gah.
So we have to make an effort to ensure that the configuration files
are still readable by that user, otherwise the reload fails and the
aforementioned bug is not fixed. The files seem to revert to
root:root upon conffile actions, at least that's what happened to me
and I think that was the cause. So, on upgrade, try to re-apply the
dpkg-statoverrides on our /etc/freeradius/* stuff, whatever they are,
under the assumption they will let the freerad group read config files
as is the initial setup. (I wish dpkg-statoverride --update $file
just did the right thing, but it doesn't, so there's a new local
function that does that.)
* While doing the latter, noticed that we were checking for directories
in dpkg-statoverride --list output with trailing slashes, but they
get output without it, so it was a no-op. Fixed the check by removing
the trailing slashes. Also then noticed that we were grepping --list
output, but it takes an optional glob pattern, so saved us that
pointless grep fork by using that facility, just as described in the
policy manual.
* force-reload switches from restart to reload, per policy 9.3.2.
* lenny backport needed also libltdl-dev (2.2.x) to build properly, rather
than libltdl3-dev, which is obsolete and doesn't make sense anyway.
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:ubuntu/raring/freeradius