Press Releases

18 May 2009 - Version 2.1.6 has been released.

The focus of this release is stability.

radclient exits with 0 on successful (accept / ack), and 1 otherwise (no response / reject)
Added support for %{sql:UPDATE ..}, and insert/delete. Patch from Arran Cudbard-Bell
Added sample "do not respond" policy. See raddb/policy.conf and raddb/sites-available/do_not_respond
Cleanups to Suse spec file from Norbert Wegener
New VSAs for Juniper from Bjorn Mork
Include more RFC dictionaries in the default install
More documentation for the WiMAX module
Added "chase_referrals" and "rebind" configuration to rlm_ldap. This helps with Active Directory. See raddb/modules/ldap
Don't load pre/post-proxy if proxying is disabled.
Added %{md5:...}, which returns MD5 hash in hex.
Added configurable "retry_interval" and "poll_interval" for "detail" listeners.
Added "delete_mppe_keys" configuration option to rlm_wimax. Apparently some WiMAX clients misbehave when they see those keys.
Added experimental rlm_ruby from http://github.com/Antti/freeradius-server/tree/master
Add Tunnel attributes to ldap.attrmap
Enable virtual servers to be reloaded on HUP. For now, only the "authorize", "authenticate", etc. processing sections are reloaded. Clients and "listen" sections are NOT reloaded.
Updated "radwatch" script to be more robust. See scripts/radwatch
Added certificate compatibility notes in raddb/certs/README, for compatibility with different operating systems. (i.e. Windows)

Minor changes to allow building without VQP.
Minor fixes from John Center
Fixed raddebug example
Don't crash when deleting attributes via unlang
Be friendlier to very fast clients
Updated the "detail" listener so that it only polls once, and not many times in a row, leaking memory each time...
Update comparison for Packet-Src-IP-Address (etc.) so that the operators other than '==' work.
Did autoconf magic to work around weird libtool bug
Make rlm_perl keep tags for tagged attributes in more situations
Update UID checking for radmin
Added "include_length" field for TTLS. It's needed for RFC compliance, but not (apparently) for interoperability.

10 March 2009 - Version 2.1.4 has been released.

The focus of this release is stability.

Permit multiple "-e" in radmin.
Add support for originating CoA-Request and Disconnect-Request. See raddb/sites-available/originate-coa.
Added "lifetime" and "max_queries" to raddb/sql.conf. This helps address the problem of hung SQL sockets.
Allow packets to be injected via radmin. See "inject help" in radmin.
Answer VMPS reconfirmation request. Patch from Hermann Lauer.
Sample logrotate script in scripts/logrotate.freeradius
Add configurable poll interval for "detail" listeners
New "raddebug" command. This prints debugging information from a running server. See man raddebug.
Add "require_message_authenticator" configuration to home_server configuration. This makes the server add Message-Authenticator to all outgoing Access-Request packets.
Added smsotp module, as contributed by Siemens.
Enabled the administration socket in the default install. See raddb/sites-available/control-socket, and man radmin
Handle duplicate clients, such as with replicated or load-balanced SQL servers and "readclients = yes"

Clean up control sockets when they are closed, so that we don't leak memory.
Define SUN_LEN for systems that don't have it.
Correct some boundary conditions in the conditional checker ("if") in "unlang". Bug noted by Arran Cudbard-Bell.
Work around minor building issues in gmake. This should only have affected developers.
Change how we manage unprivileged user/group, so that we do not create control sockets owned by root.
Fixed more minor issues found by Coverity.
Allow raddb/certs/bootstrap to run when there is no "make" command installed.
In radiusd.conf, run_dir depends on the name of the program, and isn't hard-coded to "..../radiusd"
Check for EOF in more places in the "detail" file reader.
Added Freeswitch dictionary.
Chop ethernet frames in VMPS, rather than droppping packets.
Fix EAP-TLS bug. Patch from Arnaud Ebalard
Don't lose string for regex-compares in the "users" file.
Expose more functions in rlm_sql to rlm_sqlippool, which helps on systems where RTLD_GLOBAL is off.
Fix typos in MySQL schemas for ippools.
Remove macro that was causing build issues on some platforms.
Fixed issues with dead home servers. Bug noted by Chris Moules.
Fixed "access after free" with some dynamic clients.

Older Press Releases