Initialize ipv4only and ipv6only.

[libradsec.git] / ChangeLog

diff --git a/ChangeLog b/ChangeLog
index f5d421a..57cb95c 100644 (file)
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,13 +1,59 @@
-2011-09-28 1.5-dev
+2011-04-16 1.6-dev
+       Incompatible changes:
+       - The default shared secret for TLS and DTLS connections change
+       from "mysecret" to "radsec" as per draft-ietf-radext-radsec-12
+       section 2.3 (4).  Please make sure to specify a secret in both
+       client and server blocks to avoid unwanted surprises.
+       (RADSECPROXY-19)
+       - The default place to look for a configuration file has changed
+       from /etc to /usr/local/etc.  Let radsecproxy know where your
+       configuration file by using the `-c' command line option.  Or
+       configure radsecproxy with --sysconfdir=/etc to restore old
+       behaviour.  (RADSECPROXY-31)
+
+       New features:
+       - Improved F-Ticks logging options.  F-Ticks can now be sent to a
+       separate syslog facility and the VISINST label can now be
+       configured explicitly.  This was implemented by Maja
+       Gorecka-Wolniewicz and Paweł Gołaszewski.  (RADSECPROXY-29)
+       - Add config option PidFile.  (RADSECPROXY-32)
+       - Preliminary support for DynamicLookupCommand.  It's for TLS
+       servers only at this point.  Also, beware of risks for memory
+       leaks.
+
+       Bug fixes:
+       - Stop the autoconfery from warning about defining variables
+       conditionally and unconditionally.
+       - Honour configure option --sysconfdir.  (RADSECPROXY-31)
+       - Don't crash on failing DynamicLookupCommand scripts.  Fix made
+       with help from Ralf Paffrath.  (RADSECPROXY-33)
+       - When a DynamicLookupCommand script is failing, fall back to
+       other server(s) in the realm.  The timeout depends on the kind of
+       failure.
+       - Other bugs.  (RADSECPROXY-26, -28, -34, -35, -39, -40)
+
+2011-10-08 1.5
        New features:
        - Support for F-Ticks logging.
        - New binary radsecproxy-hash.
+       - A DynamicLookupCommand script can now signal "server not found"
+       by exiting with code 10.  The scripts in the tools directory now
+       do this.
 
        Incompatible changes:
        - catgconf renamed to radsecproxy-conf.
 
        Bug fixes:
-       - All compiler warnings removed.  Building with -Werror.
+       - All compiler warnings removed.  Now compiling with -Werror.
+
+2011-07-22 1.4.3
+       Notes:
+       - The default secret for TLS and DTLS will change in a future
+       release.  Please make sure to specify a secret in both client and
+       server blocks to avoid surprises.
+
+       Bug fixes:
+       - Debug printout issue.
 
 2010-11-23 1.4.2
        Bug fixes:
@@ -115,3 +161,4 @@
        Fixed crash when servers were configured after first realm block
 
 2007-09-21 1.0
+