---
- branch: MAIN
  date: Sun May 23 17:28:45 UTC 2010
  files:
  - new: '1.11'
    old: '1.10'
    path: pkgsrc/net/freeradius2/Makefile
    pathrev: pkgsrc/net/freeradius2/Makefile@1.11
    type: modified
  - new: '1.9'
    old: '1.8'
    path: pkgsrc/net/freeradius2/PLIST
    pathrev: pkgsrc/net/freeradius2/PLIST@1.9
    type: modified
  - new: '1.8'
    old: '1.7'
    path: pkgsrc/net/freeradius2/distinfo
    pathrev: pkgsrc/net/freeradius2/distinfo@1.8
    type: modified
  - new: '1.4'
    old: '1.3'
    path: pkgsrc/net/freeradius2/options.mk
    pathrev: pkgsrc/net/freeradius2/options.mk@1.4
    type: modified
  id: 20100523T172845Z.2cf1b54325139cff7aa3606ea498e56a86b7b5e2
  log: |
    Update "freeradius2" package to version 2.1.8. Changes since version 2.1.7:
    - Feature improvements
      * Print more descriptive error message for too many EAP sessions.
        This gives hints on what to do when "failed to store handler"
      * Commands received from radmin are now printed on stdout when
        in debugging mode.
      * Allow accounting packets to be written to a detail file, even
        if they were read from a different detail file.
      * Added OpenSSL license exception (src/LICENSE.openssl)
    - Bug fixes
      * DHCP sockets can now set the broadcast flag before binding to a
        socket.  You need to set "broadcast = yes" in the DHCP listener.
      * Be more restrictive on string parsing in the config files
      * Fix password length in scripts/create-users.pl
      * Be more flexible about parsing the detail file.  This allows
        it to read files where the attributes have been edited.
      * Ensure that requests read from the detail file are cleaned up
        (i.e. don't leak) if they are proxied without a response.
      * Write the PID file after opening sockets, not before
        (closes bug #29)
      * Proxying large numbers of packets no longer gives error
        "unable to open proxy socket".
      * Avoid mutex locks in libc after fork
      * Retry packet from detail file if there was no response.
      * Allow old-style dictionary formats, where the vendor name is the
        last field in an ATTRIBUTE definition.
      * Removed all recursive use of mutexes.  Some systems just don't
        support this.
      * Allow !* to work as documented.
      * make templates work (see templates.conf)
      * Enabled "allow_core_dumps" to work again
      * Print better errors when reading invalid dictionaries
      * Sign client certificates with CA, rather than server certs.
      * Fix potential crash in rlm_passwd when file was closed
      * Fixed corner cases in conditional dynamic expansion.
      * Use InnoDB for MySQL IP Pools, to gain transactional support
      * Apply patch to libltdl for CVE-2009-3736.
      * Fixed a few issues found by LLVM's static checker
      * Keep track of "bad authenticators" for accounting packets
      * Keep track of "dropped packets" for auth/acct packets
      * Synced the "debian" directory with upstream
      * Made "unlang" use unsigned 32-bit integers, to match the
        dictionaries.

    While here fix broken user destination directory installation as well.
  module: pkgsrc
  subject: 'CVS commit: pkgsrc/net/freeradius2'
  unixtime: '1274635725'
  user: tron