Commit report for v3.0.x branch
announce at freeradius.org
announce at freeradius.org
Thu Dec 8 01:00:03 CET 2016
New activity for FreeRADIUS (the high performance and highly configurable RADIUS server)
======
Merge pull request #1850 from spbnick/v3.0.x_openssl_1.1_fix
OpenSSL v1.1 fixes for v3.0.x
Alan DeKok (via GitHub)@2016-12-07T16:37:15Z
Files modified:
* configure
* configure.ac
* src/include/autoconf.h.in
* src/include/missing-h
* src/lib/missing.c
* src/main/threads.c
* src/main/tls.c
* src/modules/rlm_eap/libeap/eap_tls.h
* src/modules/rlm_eap/libeap/mppe_keys.c
* src/modules/rlm_eap/types/rlm_eap_fast/configure
* src/modules/rlm_eap/types/rlm_eap_fast/configure.ac
* src/modules/rlm_eap/types/rlm_eap_fast/rlm_eap_fast.c
* src/modules/rlm_eap/types/rlm_eap_pwd/eap_pwd.c
* src/modules/rlm_otp/otp_radstate.c
* src/modules/rlm_wimax/rlm_wimax.c
Commit diff:
https://github.com/FreeRADIUS/freeradius-server/commit/b8104730399a9be90c03fdc8c70400b8d871510d
======
Do not assign OpenSSL callbacks if not needed
Check if CRYPTO_set_id_callback and CRYPTO_set_locking_callback are
defined as functions (as opposed to stub macros), and if they aren't,
don't call them and don't define the corresponding callbacks.
This avoids the "unused function" warnings with OpenSSL v1.1.
Nikolai Kondrashov at 2016-12-07T12:44:05Z
Files modified:
* configure
* configure.ac
* src/include/autoconf.h.in
* src/main/threads.c
Commit diff:
https://github.com/FreeRADIUS/freeradius-server/commit/d76870559eb6893374c43afe3bde3f760607a656
======
Handle deprecated OpenSSL thread cleanup functions
Use appropriate OpenSSL thread cleanup function or don't use any,
depending on their deprecation status in various OpenSSL versions.
Nikolai Kondrashov at 2016-12-07T12:44:05Z
Files modified:
* src/main/threads.c
* src/main/tls.c
Commit diff:
https://github.com/FreeRADIUS/freeradius-server/commit/1ce96912e751af095d40c06449bcf671387a2b76
======
Accomodate consts added in OpenSSL 1.1
Update some declarations to use const to match respective changes in
OpenSSL 1.1 and not produce build warnings.
Nikolai Kondrashov at 2016-12-07T12:44:05Z
Files modified:
* src/main/tls.c
* src/modules/rlm_eap/types/rlm_eap_fast/rlm_eap_fast.c
Commit diff:
https://github.com/FreeRADIUS/freeradius-server/commit/e787e4d0663ca77681338e40716a8c06e7cd0c1a
======
Do not use OPENSSL_config
Switch to using CONF_modules_load_file instead of OPENSSL_config, which
was deprecated in OpenSSL 1.1 and would produce build warnings.
Nikolai Kondrashov at 2016-12-07T12:44:05Z
Files modified:
* src/main/tls.c
Commit diff:
https://github.com/FreeRADIUS/freeradius-server/commit/8d97195167928ae357b7e8a3840733bbd99fa630
======
Do not use ASN1_STRING_data
Switch to using ASN1_STRING_get0_data instead of ASN1_STRING_data, which
was deprecated in OpenSSL 1.1 and would produce build warnings.
Nikolai Kondrashov at 2016-12-07T12:44:05Z
Files modified:
* src/main/tls.c
Commit diff:
https://github.com/FreeRADIUS/freeradius-server/commit/508f69aba526a3e143255ffcbad8706a9337b0b8
======
Do not use HMAC_Init
Replace remaining use of HMAC_Init with HMAC_Init_ex to silence
deprecation warnings with OpenSSL 1.1.
Nikolai Kondrashov at 2016-12-07T12:44:05Z
Files modified:
* src/modules/rlm_eap/types/rlm_eap_pwd/eap_pwd.c
* src/modules/rlm_otp/otp_radstate.c
Commit diff:
https://github.com/FreeRADIUS/freeradius-server/commit/41d68e6d0576e8d7b28dc3ddd0f58820ed97393f
======
Do not use HMAC_CTX_init
Switch to using HMAC_CTX_new in place of HMAC_CTX_init, which was
removed in OpenSSL 1.1, resulting in broken build.
Nikolai Kondrashov at 2016-12-07T12:44:05Z
Files modified:
* src/modules/rlm_eap/libeap/mppe_keys.c
* src/modules/rlm_otp/otp_radstate.c
* src/modules/rlm_wimax/rlm_wimax.c
Commit diff:
https://github.com/FreeRADIUS/freeradius-server/commit/d2b119e9cd5f20dd900079b414104be9ab70d349
======
Initialize HMAC context in rlm_otp
Add the missing mandatory HMAC context initialization to rlm_otp's
otp_gen_state. Otherwise the outcome of the following HMAC operations is
undefined.
Nikolai Kondrashov at 2016-12-07T12:44:05Z
Files modified:
* src/modules/rlm_otp/otp_radstate.c
Commit diff:
https://github.com/FreeRADIUS/freeradius-server/commit/e867899fe8eb4262bef9054969635f4316802240
======
Do not try to access private OpenSSL structs
Some more OpenSSL structures were made private in v1.1 and accessor
functions were added instead. Switch to using accessor functions to fix
the build.
Nikolai Kondrashov at 2016-12-07T12:44:05Z
Files modified:
* src/main/tls.c
* src/modules/rlm_eap/libeap/mppe_keys.c
Commit diff:
https://github.com/FreeRADIUS/freeradius-server/commit/f1e139b554c19dd88a1d904144b3eae243d41eee
======
Move func substitutes from rlm_eap to missing.c
Nikolai Kondrashov at 2016-12-07T12:44:05Z
Files modified:
* configure
* configure.ac
* src/include/autoconf.h.in
* src/include/missing-h
* src/lib/missing.c
* src/modules/rlm_eap/libeap/eap_tls.h
* src/modules/rlm_eap/libeap/mppe_keys.c
Commit diff:
https://github.com/FreeRADIUS/freeradius-server/commit/8c4a2b376df1d47ea291ba83f43d7dd2243d0a29
======
Add a few OpenSSL fallback funcs
Add four fallback function implementations to use in place of functions
removed/deprecated in OpenSSL 1.1. Those are to be used in the following
patches to make the build work and not produce deprecation warnings.
Nikolai Kondrashov at 2016-12-07T12:03:05Z
Files modified:
* configure
* configure.ac
* src/include/autoconf.h.in
* src/include/missing-h
* src/lib/missing.c
Commit diff:
https://github.com/FreeRADIUS/freeradius-server/commit/d9b75be9cf3c41c262b29276184d7b8f89e29ab0
======
Check for openssl/conf.h
Check for presence of openssl/conf.h to support definition of fallback
functions in later patches.
Nikolai Kondrashov at 2016-12-07T12:03:05Z
Files modified:
* configure
* configure.ac
* src/include/autoconf.h.in
Commit diff:
https://github.com/FreeRADIUS/freeradius-server/commit/0b0f4a800625017656626c559a45245f9a551300
======
Check for openssl/asn1.h
Check for presence of openssl/asn1.h to support definition of fallback
functions in later patches.
Nikolai Kondrashov at 2016-12-07T12:03:04Z
Files modified:
* configure
* configure.ac
* src/include/autoconf.h.in
Commit diff:
https://github.com/FreeRADIUS/freeradius-server/commit/f56a8d8683f92278f4efcf33a24dfde929d37b17
======
Check for openssl/hmac.h
Apart from dealing with a FIXME, this is needed for implementing
compatibility fallbacks for some functions introduced in OpenSSL 1.1, in
following commits.
Nikolai Kondrashov at 2016-12-07T12:03:04Z
Files modified:
* configure
* configure.ac
* src/include/autoconf.h.in
* src/modules/rlm_wimax/rlm_wimax.c
Commit diff:
https://github.com/FreeRADIUS/freeradius-server/commit/b2cafe245e38728ac79771f902a10115202fcf80
======
Check for EVP_CIPHER_CTX_new to detect libcrypto
Switch to checking for EVP_CIPHER_CTX_new instead of EVP_cleanup to
detect presence of libcrypto, because EVP_cleanup was removed as symbol
from OpenSSL 1.1, and the check would always fail.
Nikolai Kondrashov at 2016-12-07T12:03:04Z
Files modified:
* src/modules/rlm_eap/types/rlm_eap_fast/configure
* src/modules/rlm_eap/types/rlm_eap_fast/configure.ac
Commit diff:
https://github.com/FreeRADIUS/freeradius-server/commit/6b3a5018d08a37211dd3f89c93f74efecf37ac84
======
Fix SSL_get_client/server_random checks
Needed for conditionally avoiding accessing private OpenSSL structures
in a following patch.
Backported from v3.1.x.
Nikolai Kondrashov at 2016-12-07T12:03:04Z
Files modified:
* configure
* configure.ac
* src/include/autoconf.h.in
Commit diff:
https://github.com/FreeRADIUS/freeradius-server/commit/ce9170227abed38f81e288b343655c509cc95e55
======
gpgsig -----BEGIN PGP SIGNATURE-----
iQEbBAABCAAGBQJYSCNFAAoJEH0Oec13Yh7N/uIH9Agw0tPsVvCt14GYAVn9WKWR
3CiVfyprBImJrgl/8qO2xD93kbzAkzMRUE8Vbpmo3TDgu+CzfC6/U1Rx+gveYhB/
T9AqvHL8QBntEU34mi55JbwheYNX6ewd3QZImFehFF34HUHOarFzmmuTSFibIMIX
r18vPta9d7oLf0mB7PETTWjbAfRd0P79PttuZgbWz6V2EtyDReO7GIDxcSd4vL+W
fdZx4y/L4mdxIsr0Ck1za2cyuR1x/9kgrZdiePe7AfqRYi6s4ZjC6kHW44bQReO0
UZ79g2yXh/VTLeXqNVbmDWS8RmvZqIm1y2O0NV+9uAcEj8A/7moRfDlxloAoKQ==
=C0Tc
-----END PGP SIGNATURE-----
note recent changes
Alan T. DeKok at 2016-12-07T14:57:06Z
Files modified:
* doc/ChangeLog
Commit diff:
https://github.com/FreeRADIUS/freeradius-server/commit/35860e2fee2f5ca1a2f82297e5f29723826bc194
======
gpgsig -----BEGIN PGP SIGNATURE-----
iQEcBAABCAAGBQJYSCMZAAoJEH0Oec13Yh7NM5wH/Ai2f7YDINgphaaz9gol7ovG
4oKG5rCxeMPJ2tW9H+QEaNUiEluzM8DGtn9CKSRaJze/mJO1zczZt3o+1JsZkNz6
Xxpm4xazm4s/Shp33otfJVyWPxKrzST47qACk306BsjrOqhpH8yEtdX1wiMy72jB
4zSZEMk/YaA3Dx7mT3iQIYL4OQMT74zQ83uvC4buGH3t5kYhZga78a3Q6qwf64wk
buRDPICsijIutUZVu7Jx75T3H8CAOJugI3ci8gTZ6P68yFqk3Kn8bKvtNijDkScw
ruz1AevxgiGBcfgbg1YGS3+fhxg5i5UjeqFblYNwvelGjfeMBZH55x8PLJf8HG0=
=b99t
-----END PGP SIGNATURE-----
continue to "next" in xlat alternate. Fixes #1866
Alan T. DeKok at 2016-12-07T14:56:01Z
Files modified:
* src/main/xlat.c
Commit diff:
https://github.com/FreeRADIUS/freeradius-server/commit/75c5f597e784385936d24a0b8039a2580270fd26
======
gpgsig -----BEGIN PGP SIGNATURE-----
iQEcBAABCAAGBQJYR1ffAAoJEH0Oec13Yh7NB0QIAJ3B22UlHk3KC1bcLQxsP1Yo
Xi00J2onrSE5yYNXhmUt9wZ/Bc190qc7AlG/clBiEpXHpMInR4/HlHIhY3wu3Ko3
hFdJ9Etwk3CD1oqx4TmnM5yDNerPFC09kmUsPaiZNwaf0vuXS1xLEjC5V37wlyYx
Jw4vBYSdTOcUd+PYCn2eIDCbwWyCa/hmosYNOfgZfQCeZQM9F7aD7A5N23QyEgBQ
gfa+IZ0cdi3v8q/pMz/IaA0LP3s1r3X4tM1XpHoBzAzTN++IriPzvnQWQ7o7pUm8
gfc7itTgrYg750rW5YBrnLweTs+F+WJcRz7kfvQbmeqDoMoMC6UNfxOmc1M6rmY=
=Covy
-----END PGP SIGNATURE-----
indentation helps
Alan T. DeKok at 2016-12-07T00:29:19Z
Files modified:
* src/main/xlat.c
Commit diff:
https://github.com/FreeRADIUS/freeradius-server/commit/244f5989ad5d9374c53181905d695a0441547de5
======
--
This commit summary was generated @2016-12-08T00:00:03Z by lgfeed version 0.00 (https://github.com/arr2036/lgfeed).
More information about the Freeradius-Devel
mailing list