rpms/freeradius/F-11 .cvsignore, 1.21, 1.22 freeradius.spec, 1.82, 1.83 sources, 1.22, 1.23
John Dennis
jdennis at fedoraproject.org
Tue Sep 15 15:24:12 UTC 2009
- Previous message: rpms/kernel/devel config-arm, 1.4, 1.5 config-generic, 1.325, 1.326 config-powerpc-generic, 1.49, 1.50 config-sparc64-generic, 1.28, 1.29 kernel.spec, 1.1802, 1.1803
- Next message: rpms/lvm2/devel LVM2.2.02.52.tgz.asc, NONE, 1.1 .cvsignore, 1.70, 1.71 lvm2.spec, 1.170, 1.171 sources, 1.75, 1.76 upstream, 1.63, 1.64 LVM2.2.02.51.tgz.asc, 1.1, NONE lvm2-2_02_52-fix-pvcreate-partition.patch, 1.1, NONE lvm2-2_02_52-fix-pvs-global-lock.patch, 1.1, NONE
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
Author: jdennis
Update of /cvs/pkgs/rpms/freeradius/F-11
In directory cvs1.fedora.phx.redhat.com:/tmp/cvs-serv25988
Modified Files:
.cvsignore freeradius.spec sources
Log Message:
- enable building of the rlm_wimax module
- pcap wire analysis support is enabled and available in utils subpackage
- Resolves bug #523053 radtest manpage in wrong package
- install COPYRIGHT CREDITS INSTALL LICENSE README into docdir
- resolves bug #507571 freeradius packages do not check for user/group existence
- update to latest upstream release: 2.1.7
Index: .cvsignore
===================================================================
RCS file: /cvs/pkgs/rpms/freeradius/F-11/.cvsignore,v
retrieving revision 1.21
retrieving revision 1.22
diff -u -p -r1.21 -r1.22
--- .cvsignore 22 May 2009 13:02:38 -0000 1.21
+++ .cvsignore 15 Sep 2009 15:24:12 -0000 1.22
@@ -1 +1 @@
-freeradius-server-2.1.6.tar.bz2
+freeradius-server-2.1.7.tar.bz2
Index: freeradius.spec
===================================================================
RCS file: /cvs/pkgs/rpms/freeradius/F-11/freeradius.spec,v
retrieving revision 1.82
retrieving revision 1.83
diff -u -p -r1.82 -r1.83
--- freeradius.spec 2 Jun 2009 20:59:11 -0000 1.82
+++ freeradius.spec 15 Sep 2009 15:24:12 -0000 1.83
@@ -1,7 +1,7 @@
Summary: High-performance and highly configurable free RADIUS server
Name: freeradius
-Version: 2.1.6
-Release: 2%{?dist}
+Version: 2.1.7
+Release: 1%{?dist}
License: GPLv2+ and LGPLv2+
Group: System Environment/Daemons
URL: http://www.freeradius.org/
@@ -28,25 +28,26 @@ BuildRequires: zlib-devel
BuildRequires: net-snmp-devel
BuildRequires: net-snmp-utils
BuildRequires: readline-devel
+BuildRequires: libpcap-devel
-Requires(pre): shadow-utils
+Requires(pre): shadow-utils glibc-common
Requires(post): /sbin/ldconfig /sbin/chkconfig
Requires(postun): /sbin/ldconfig
Requires(preun): /sbin/chkconfig
%description
-The FreeRADIUS Server Project is a high performance and highly configurable
-GPL'd free RADIUS server. The server is similar in some respects to
-Livingston's 2.0 server. While FreeRADIUS started as a variant of the
-Cistron RADIUS server, they don't share a lot in common any more. It now has
+The FreeRADIUS Server Project is a high performance and highly configurable
+GPL'd free RADIUS server. The server is similar in some respects to
+Livingston's 2.0 server. While FreeRADIUS started as a variant of the
+Cistron RADIUS server, they don't share a lot in common any more. It now has
many more features than Cistron or Livingston, and is much more configurable.
-FreeRADIUS is an Internet authentication daemon, which implements the RADIUS
-protocol, as defined in RFC 2865 (and others). It allows Network Access
-Servers (NAS boxes) to perform authentication for dial-up users. There are
-also RADIUS clients available for Web servers, firewalls, Unix logins, and
-more. Using RADIUS allows authentication and authorization for a network to
-be centralized, and minimizes the amount of re-configuration which has to be
+FreeRADIUS is an Internet authentication daemon, which implements the RADIUS
+protocol, as defined in RFC 2865 (and others). It allows Network Access
+Servers (NAS boxes) to perform authentication for dial-up users. There are
+also RADIUS clients available for Web servers, firewalls, Unix logins, and
+more. Using RADIUS allows authentication and authorization for a network to
+be centralized, and minimizes the amount of re-configuration which has to be
done when adding or deleting new users.
%package libs
@@ -60,6 +61,7 @@ The FreeRADIUS shared library
Group: System Environment/Daemons
Summary: FreeRADIUS utilities
Requires: %{name}-libs = %{version}-%{release}
+Requires: libpcap >= 0.9.4
%description utils
The FreeRADIUS server has a number of features found in other servers,
@@ -174,6 +176,7 @@ export CFLAGS="$RPM_OPT_FLAGS -fpic"
--with-unixodbc-lib-dir=%{_libdir} \
--with-rlm-dbm-lib-dir=%{_libdir} \
--with-rlm-krb5-include-dir=/usr/kerberos/include \
+ --with-modules="rlm_wimax" \
--without-rlm_eap_ikev2 \
--without-rlm_sql_iodbc \
--without-rlm_sql_firebird \
@@ -221,6 +224,11 @@ rm -rf $RPM_BUILD_ROOT/%{_datadir}/dialu
# remove unsupported config files
rm -f $RPM_BUILD_ROOT/%{_sysconfdir}/raddb/experimental.conf
+# install doc files omitted by standard install
+for f in COPYRIGHT CREDITS INSTALL LICENSE README; do
+ cp $f $RPM_BUILD_ROOT/%{docdir}
+done
+
# add Red Hat specific documentation
cat >> $RPM_BUILD_ROOT/%{docdir}/REDHAT << EOF
@@ -237,11 +245,66 @@ EOF
rm -rf $RPM_BUILD_ROOT
+
+# Make sure our user/group is present prior to any package or subpackage installation
%pre
getent group radiusd >/dev/null || /usr/sbin/groupadd -r -g 95 radiusd
getent passwd radiusd >/dev/null || /usr/sbin/useradd -r -g radiusd -u 95 -c "radiusd user" -s /sbin/nologin radiusd > /dev/null 2>&1
exit 0
+%pre devel
+getent group radiusd >/dev/null || /usr/sbin/groupadd -r -g 95 radiusd
+getent passwd radiusd >/dev/null || /usr/sbin/useradd -r -g radiusd -u 95 -c "radiusd user" -s /sbin/nologin radiusd > /dev/null 2>&1
+exit 0
+
+%pre krb5
+getent group radiusd >/dev/null || /usr/sbin/groupadd -r -g 95 radiusd
+getent passwd radiusd >/dev/null || /usr/sbin/useradd -r -g radiusd -u 95 -c "radiusd user" -s /sbin/nologin radiusd > /dev/null 2>&1
+exit 0
+
+%pre ldap
+getent group radiusd >/dev/null || /usr/sbin/groupadd -r -g 95 radiusd
+getent passwd radiusd >/dev/null || /usr/sbin/useradd -r -g radiusd -u 95 -c "radiusd user" -s /sbin/nologin radiusd > /dev/null 2>&1
+exit 0
+
+%pre libs
+getent group radiusd >/dev/null || /usr/sbin/groupadd -r -g 95 radiusd
+getent passwd radiusd >/dev/null || /usr/sbin/useradd -r -g radiusd -u 95 -c "radiusd user" -s /sbin/nologin radiusd > /dev/null 2>&1
+exit 0
+
+%pre mysql
+getent group radiusd >/dev/null || /usr/sbin/groupadd -r -g 95 radiusd
+getent passwd radiusd >/dev/null || /usr/sbin/useradd -r -g radiusd -u 95 -c "radiusd user" -s /sbin/nologin radiusd > /dev/null 2>&1
+exit 0
+
+%pre perl
+getent group radiusd >/dev/null || /usr/sbin/groupadd -r -g 95 radiusd
+getent passwd radiusd >/dev/null || /usr/sbin/useradd -r -g radiusd -u 95 -c "radiusd user" -s /sbin/nologin radiusd > /dev/null 2>&1
+exit 0
+
+%pre postgresql
+getent group radiusd >/dev/null || /usr/sbin/groupadd -r -g 95 radiusd
+getent passwd radiusd >/dev/null || /usr/sbin/useradd -r -g radiusd -u 95 -c "radiusd user" -s /sbin/nologin radiusd > /dev/null 2>&1
+exit 0
+
+%pre python
+getent group radiusd >/dev/null || /usr/sbin/groupadd -r -g 95 radiusd
+getent passwd radiusd >/dev/null || /usr/sbin/useradd -r -g radiusd -u 95 -c "radiusd user" -s /sbin/nologin radiusd > /dev/null 2>&1
+exit 0
+
+%pre unixODBC
+getent group radiusd >/dev/null || /usr/sbin/groupadd -r -g 95 radiusd
+getent passwd radiusd >/dev/null || /usr/sbin/useradd -r -g radiusd -u 95 -c "radiusd user" -s /sbin/nologin radiusd > /dev/null 2>&1
+exit 0
+
+%pre utils
+getent group radiusd >/dev/null || /usr/sbin/groupadd -r -g 95 radiusd
+getent passwd radiusd >/dev/null || /usr/sbin/useradd -r -g radiusd -u 95 -c "radiusd user" -s /sbin/nologin radiusd > /dev/null 2>&1
+exit 0
+
+
+
+
%post
/sbin/ldconfig
if [ $1 = 1 ]; then
@@ -312,6 +375,7 @@ fi
%attr(640,root,radiusd) %config(noreplace) /etc/raddb/modules/chap
%attr(640,root,radiusd) %config(noreplace) /etc/raddb/modules/checkval
%attr(640,root,radiusd) %config(noreplace) /etc/raddb/modules/counter
+%attr(640,root,radiusd) %config(noreplace) /etc/raddb/modules/cui
%attr(640,root,radiusd) %config(noreplace) /etc/raddb/modules/detail
%attr(640,root,radiusd) %config(noreplace) /etc/raddb/modules/detail.example.com
%attr(640,root,radiusd) %config(noreplace) /etc/raddb/modules/detail.log
@@ -354,9 +418,36 @@ fi
/usr/sbin/radwatch
/usr/sbin/radmin
# man-pages
-%doc %{_mandir}/man1/*
-%doc %{_mandir}/man5/*
-%doc %{_mandir}/man8/*
+%doc %{_mandir}/man5/acct_users.5.gz
+%doc %{_mandir}/man5/clients.conf.5.gz
+%doc %{_mandir}/man5/dictionary.5.gz
+%doc %{_mandir}/man5/radiusd.conf.5.gz
+%doc %{_mandir}/man5/radrelay.conf.5.gz
+%doc %{_mandir}/man5/rlm_acct_unique.5.gz
+%doc %{_mandir}/man5/rlm_always.5.gz
+%doc %{_mandir}/man5/rlm_attr_filter.5.gz
+%doc %{_mandir}/man5/rlm_attr_rewrite.5.gz
+%doc %{_mandir}/man5/rlm_chap.5.gz
+%doc %{_mandir}/man5/rlm_counter.5.gz
+%doc %{_mandir}/man5/rlm_detail.5.gz
+%doc %{_mandir}/man5/rlm_digest.5.gz
+%doc %{_mandir}/man5/rlm_expr.5.gz
+%doc %{_mandir}/man5/rlm_files.5.gz
+%doc %{_mandir}/man5/rlm_mschap.5.gz
+%doc %{_mandir}/man5/rlm_pap.5.gz
+%doc %{_mandir}/man5/rlm_passwd.5.gz
+%doc %{_mandir}/man5/rlm_policy.5.gz
+%doc %{_mandir}/man5/rlm_realm.5.gz
+%doc %{_mandir}/man5/rlm_sql.5.gz
+%doc %{_mandir}/man5/rlm_sql_log.5.gz
+%doc %{_mandir}/man5/rlm_unix.5.gz
+%doc %{_mandir}/man5/unlang.5.gz
+%doc %{_mandir}/man5/users.5.gz
+%doc %{_mandir}/man8/raddebug.8.gz
+%doc %{_mandir}/man8/radiusd.8.gz
+%doc %{_mandir}/man8/radmin.8.gz
+%doc %{_mandir}/man8/radrelay.8.gz
+%doc %{_mandir}/man8/radwatch.8.gz
# dictionaries
%dir %attr(755,root,root) /usr/share/freeradius
/usr/share/freeradius/*
@@ -457,10 +548,21 @@ fi
%{_libdir}/freeradius/rlm_sqlippool-%{version}.so
%{_libdir}/freeradius/rlm_unix.so
%{_libdir}/freeradius/rlm_unix-%{version}.so
+%{_libdir}/freeradius/rlm_wimax.so
+%{_libdir}/freeradius/rlm_wimax-%{version}.so
%files utils
%defattr(-,root,root)
/usr/bin/*
+# man-pages
+%doc %{_mandir}/man1/radclient.1.gz
+%doc %{_mandir}/man1/radeapclient.1.gz
+%doc %{_mandir}/man1/radlast.1.gz
+%doc %{_mandir}/man1/radtest.1.gz
+%doc %{_mandir}/man1/radwho.1.gz
+%doc %{_mandir}/man1/radzap.1.gz
+%doc %{_mandir}/man8/radsqlrelay.8.gz
+%doc %{_mandir}/man8/rlm_ippool_tool.8.gz
%files libs
# RADIU shared libs
@@ -494,6 +596,8 @@ fi
%defattr(-,root,root)
%dir %attr(750,root,radiusd) /etc/raddb/sql/mysql
%attr(640,root,radiusd) %config(noreplace) /etc/raddb/sql/mysql/*
+%dir %attr(750,root,radiusd) /etc/raddb/sql/ndb
+%attr(640,root,radiusd) %config(noreplace) /etc/raddb/sql/ndb/*
%{_libdir}/freeradius/rlm_sql_mysql.so
%{_libdir}/freeradius/rlm_sql_mysql-%{version}.so
@@ -517,6 +621,89 @@ fi
%{_libdir}/freeradius/rlm_sql_unixodbc-%{version}.so
%changelog
+* Tue Sep 15 2009 John Dennis <jdennis at redhat.com> - 2.1.7-1
+- enable building of the rlm_wimax module
+- pcap wire analysis support is enabled and available in utils subpackage
+- Resolves bug #523053 radtest manpage in wrong package
+- install COPYRIGHT CREDITS INSTALL LICENSE README into docdir
+- resolves bug #507571 freeradius packages do not check for user/group existence
+- update to latest upstream release, from upstream Changelog:
+ Feature improvements
+ * Full support for CoA and Disconnect packets as per RFC 3576
+ and RFC 5176. Both receiving and proxying CoA is supported.
+ * Added "src_ipaddr" configuration to "home_server". See
+ proxy.conf for details.
+ * radsniff now accepts -I, to read from a filename instead of
+ a device.
+ * radsniff also prints matching requests and any responses to those
+ requests when '-r' is used.
+ * Added example of attr_filter for Access-Challenge packets
+ * Added support for udpfromto in DHCP code
+ * radmin can now selectively mark modules alive/dead.
+ See "set module state".
+ * Added customizable messages on login success/fail.
+ See msg_goodpass && msg_badpass in log{} section of radiusd.conf
+ * Document "chase_referrals" and "rebind" in raddb/modules/ldap
+ * Preliminary implementation of DHCP relay.
+ * Made thread pool section optional. If it doesn't exist,
+ the server will run single-threaded.
+ * Added sample radrelay.conf for people upgrading from 1.x
+ * Made proxying more stable by failing over, rather than
+ rejecting the first request. See "response_window" in proxy.conf
+ * Allow home_server_pools to exist without realms.
+ * Add dictionary.iea (closes bug #7)
+ * Added support for RFC 5580
+ * Added experimental sql_freetds module from Gabriel Blanchard.
+ * Updated dictionary.foundry
+ * Added sample configuration for MySQL cluster in raddb/sql/ndb
+ See the README file for explanations.
+ Bug fixes
+ * Fixed corner case where proxied packets could have extra
+ character in User-Password attribute. Fix from Niko Tyni.
+ * Extended size of "attribute" field in SQL to 64.
+ * Fixes to ruby module to be more careful about when it builds.
+ * Updated Perl module "configure" script to check for broken
+ Perl installations.
+ * Fix "status_check = none". It would still send packets
+ in some cases.
+ * Set recursive flag on the proxy mutex, which enables safer
+ cleanup on some platforms.
+ * Copy the EAP username verbatim, rather than escaping it.
+ * Update handling so that robust-proxy-accounting works when
+ all home servers are down for extended periods of time.
+ * Look for DHCP option 53 anywhere in the packet, not just
+ at the start.
+ * Fix processing of proxy fail handler with virtual servers.
+ * DHCP code now prints out correct src/dst IP addresses
+ when sending packets.
+ * Removed requirement for DHCP to have clients
+ * Fixed handling of DHCP packets with message-type buried in the packet
+ * Fixed corner case with negation in unlang.
+ * Minor fixes to default MySQL & PostgreSQL schemas
+ * Suppress MSCHAP complaints in debugging mode.
+ * Fix SQL module for multiple instance, and possible crash on HUP
+ * Fix permissions for radius.log for sites that change user/group,
+ but which don't create the file before starting radiusd.
+ * Fix double counting of packets when proxying
+ * Make %%l work
+ * Fix pthread keys in rlm_perl
+ * Log reasons for EAP failure (closes bug #8)
+ * Load home servers and pools that aren't referenced from a realm.
+ * Handle return codes from virtual attributes in "unlang"
+ (e.g. LDAP-Group). This makes "!(expr)" work for them.
+ * Enable VMPS to see contents of virtual server again
+ * Fix WiMAX module to be consistent with examples. (closes bug #10)
+ * Fixed crash with policies dependent on NAS-Port comparisons
+ * Allowed vendor IDs to be be higher than 32767.
+ * Fix crash on startup with certain regexes in "hints" file.
+ * Fix crash in attr_filter module when packets don't exist
+ * Allow detail file reader to be faster when "load_factor = 100"
+ * Add work-around for build failures with errors related to
+ lt__PROGRAM__LTX_preloaded_symbols. libltdl / libtool are horrible.
+ * Made ldap module "rebind" option aware of older, incompatible
+ versions of OpenLDAP.
+ * Check value of Fall-Through in attr_filter module.
+
* Tue Jun 2 2009 John Dennis <jdennis at redhat.com> - 2.1.6-2
- make /etc/raddb/sites-available/* be config(noreplace)
@@ -605,7 +792,7 @@ fi
* Chop ethernet frames in VMPS, rather than droppping packets.
* Fix EAP-TLS bug. Patch from Arnaud Ebalard
* Don't lose string for regex-compares in the "users" file.
- * Expose more functions in rlm_sql to rlm_sqlippool, which
+ * Expose more functions in rlm_sql to rlm_sqlippool, which
helps on systems where RTLD_GLOBAL is off.
* Fix typos in MySQL schemas for ippools.
* Remove macro that was causing build issues on some platforms.
@@ -854,7 +1041,7 @@ undefined reference to lt__PROGRAM__LTX_
- Other minor cleanups
* Wed Aug 25 2004 Thomas Woerner <twoerner at redhat.com> 1.0.0-2.1
-- renamed /etc/pam.d/radius to /etc/pam.d/radiusd to match default
+- renamed /etc/pam.d/radius to /etc/pam.d/radiusd to match default
configuration (#130613)
* Wed Aug 25 2004 Thomas Woerner <twoerner at redhat.com> 1.0.0-2
@@ -940,5 +1127,5 @@ undefined reference to lt__PROGRAM__LTX_
- create logging dir in post if it does not exist
- fixed module load without la files
-* Thu Apr 17 2003 Thomas Woerner <twoerner at redhat.com>
+* Thu Apr 17 2003 Thomas Woerner <twoerner at redhat.com>
- Initial build.
Index: sources
===================================================================
RCS file: /cvs/pkgs/rpms/freeradius/F-11/sources,v
retrieving revision 1.22
retrieving revision 1.23
diff -u -p -r1.22 -r1.23
--- sources 22 May 2009 13:02:38 -0000 1.22
+++ sources 15 Sep 2009 15:24:12 -0000 1.23
@@ -1 +1 @@
-645ac631505cde46e93c47e273bdec19 freeradius-server-2.1.6.tar.bz2
+b8df6cf0c3df1dded205ad5f954feb78 freeradius-server-2.1.7.tar.bz2
- Previous message: rpms/kernel/devel config-arm, 1.4, 1.5 config-generic, 1.325, 1.326 config-powerpc-generic, 1.49, 1.50 config-sparc64-generic, 1.28, 1.29 kernel.spec, 1.1802, 1.1803
- Next message: rpms/lvm2/devel LVM2.2.02.52.tgz.asc, NONE, 1.1 .cvsignore, 1.70, 1.71 lvm2.spec, 1.170, 1.171 sources, 1.75, 1.76 upstream, 1.63, 1.64 LVM2.2.02.51.tgz.asc, 1.1, NONE lvm2-2_02_52-fix-pvcreate-partition.patch, 1.1, NONE lvm2-2_02_52-fix-pvs-global-lock.patch, 1.1, NONE
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the scm-commits
mailing list