Date: Mon, 15 Jan 2007 01:38:47 GMT From: David Wood<david@wood2.org.uk> To: freebsd-gnats-submit@FreeBSD.org Subject: ports/107936: [maintainer-update] update net/freeradius to 1.1.4 Message-ID: <200701150138.l0F1clP5013849@www.freebsd.org> Resent-Message-ID: <200701150140.l0F1eFIa087092@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
>Number: 107936 >Category: ports >Synopsis: [maintainer-update] update net/freeradius to 1.1.4 >Confidential: no >Severity: non-critical >Priority: low >Responsible: freebsd-ports-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: maintainer-update >Submitter-Id: current-users >Arrival-Date: Mon Jan 15 01:40:15 GMT 2007 >Closed-Date: >Last-Modified: >Originator: David Wood >Release: 6.1-RELEASE-p10 >Organization: >Environment: FreeBSD titanium.wood2.org.uk 6.1-RELEASE-p10 FreeBSD 6.1-RELEASE-p10 #0: Fri Oct 6 10:56:46 BST 2006 david@titanium.wood2.org.uk:/usr/obj/usr/src/sys/TITANIUM i386 >Description: Update to 1.1.4 Add Novell eDirectory support (untested, but should work) [1] Add an option not to require perl [2] Update pkg-descr, not least to remove reference to an obsolete mailing list [3] [1] Requested by: Martin Durand <mdurand@cegep-ste-foy.qc.ca> [2] Requested by: Patrick M. Hausen <hausen@punkt.de> [3] Noticed by: Christian Kuhtz <christian@kuhtz.com> >From the FreeRADIUS team: Version 1.1.4 has been released. The focus of this release is Vista support, and configuration simplification in the rlm_pap module. Please read man rlm_pap for more information. Maintainer's notes: The request to disable the requirement for perl came from a user building FreeRADIUS for use on a Soekris board with a CompactFlash based filesystem, who didn't want to take the space that Perl takes. I'm happy to add that to this version of the port, but suggest it's not used unless necessary. Not having perl available causes the FreeRADIUS configure script to emit the warning "Simultaneous-Use and checkrad.pl may not work". No further attempt has been made to get AC_LIBLTDL_INSTALLABLE to behave properly with libltdl being installed on /usr/local/lib on FreeBSD - the kludging described in ports/104949 for 1.1.3 is carried over to this version. >How-To-Repeat: >Fix: Note new file - files/patch-raddb-Makefile-1.1.4_bug Patch attached with submission follows: diff -ruN /usr/ports/net/freeradius/Makefile /usr/ports_updated/net/freeradius/Makefile --- /usr/ports/net/freeradius/Makefile Tue Nov 7 02:51:44 2006 +++ /usr/ports_updated/net/freeradius/Makefile Mon Jan 15 01:13:01 2007 @@ -6,8 +6,7 @@ # PORTNAME= freeradius -PORTVERSION= 1.1.3 -PORTREVISION= 1 +PORTVERSION= 1.1.4 CATEGORIES= net MASTER_SITES= ftp://ftp.freeradius.org/pub/radius/ \ ftp://ftp.ntua.gr/pub/net/radius/freeradius/ \ @@ -27,10 +26,9 @@ USE_RC_SUBR= radiusd.sh USE_AUTOTOOLS= libltdl:15 libtool:15 USE_GMAKE= yes -USE_PERL5= yes USE_OPENSSL= yes MAKE_ARGS+= LDFLAGS="-L${LOCALBASE}/lib ${PTHREAD_LIBS}" -CFLAGS+= "-I${LOCALBASE}/include" +CFLAGS+= -I${LOCALBASE}/include PLIST_SUB= PORTVERSION=${PORTVERSION} @@ -40,6 +38,8 @@ MYSQL "With MySQL user database" off \ PGSQL "With PostgreSQL use database" off \ SNMP "With SNMP support" off \ + EDIR "With Novell eDirectory support" off \ + NOPERL "Do not require perl (use only if necessary)" off \ EXPERIMENTAL "Build experimental modules" off .include <bsd.port.pre.mk> @@ -49,6 +49,7 @@ --with-system-libtool \ --disable-ltdl-install \ --with-docdir=${DOCSDIR} \ + --mandir=${PREFIX}/man \ --with-large-files --without-rlm_sql_unixodbc \ --without-rlm_sql_oracle --without-rlm_sql_iodbc \ --without-rlm_sql_db2 \ @@ -84,6 +85,10 @@ PLIST_SUB+= KRB5="@comment " .endif +.if defined(WITH_EDIR) && !defined(WITH_LDAP) +WITH_LDAP= yes +.endif + .ifdef(WITH_LDAP) USE_OPENLDAP= YES PLIST_SUB+= LDAP="" @@ -92,6 +97,10 @@ PLIST_SUB+= LDAP="@comment " .endif +.ifdef(WITH_EDIR) +CONFIGURE_ARGS+=--with-edir +.endif + .ifdef(WITH_MYSQL) USE_MYSQL= YES PLIST_SUB+= MYSQL="" @@ -124,21 +133,23 @@ PLIST_SUB+= EXPM="@comment " .endif -.if defined(NOPORTDOCS) -MAKE_ENV+= NOPORTDOCS=yes +.ifndef(WITH_NOPERL) +USE_PERL5= yes .endif -# rlm_x99_token seems broken -#CONFIGURE_ARGS+=--without-rlm_x99_token -PLIST_SUB+= TOKEN="" - # rlm_perl does not build on 4.x -.if ${OSVERSION} < 500000 +.if ${OSVERSION} < 500000 || defined(WITH_NOPERL) +CONFIGURE_ARGS+=--without-rlm_perl PLIST_SUB+= RLMPERL="@comment " .else +CONFIGURE_ARGS+=--with-rlm_perl PLIST_SUB+= RLMPERL="" .endif +.if defined(NOPORTDOCS) +MAKE_ENV+= NOPORTDOCS=yes +.endif + USE_LDCONFIG= yes MAN1= radclient.1 radeapclient.1 radlast.1 radtest.1 radwho.1 \ @@ -148,17 +159,17 @@ rlm_attr_filter.5 rlm_attr_rewrite.5 rlm_chap.5 rlm_counter.5 \ rlm_detail.5 rlm_expr.5 rlm_files.5 rlm_mschap.5 rlm_pap.5 \ rlm_passwd.5 rlm_realm.5 rlm_sql.5 rlm_sql_log.5 rlm_unix.5 users.5 -MAN8= radiusd.8 radrelay.8 radsqlrelay.8 radwatch.8 rlm_ippool_tool.8 +MAN8= radiusd.8 radrelay.8 radsqlrelay.8 radwatch.8 DICTS= dictionary.3com dictionary.3gpp dictionary.3gpp2 dictionary.acc \ dictionary.airespace dictionary.alcatel dictionary.alteon \ - dictionary.alvarion dictionary.altiga dictionary.aptis \ + dictionary.altiga dictionary.alvarion dictionary.aptis \ dictionary.aruba dictionary.ascend dictionary.avaya \ dictionary.bay dictionary.bintec dictionary.bristol \ dictionary.cablelabs dictionary.cabletron dictionary.cisco \ dictionary.cisco.bbsm dictionary.cisco.vpn3000 dictionary.cisco.vpn5000 \ dictionary.colubris dictionary.columbia_university dictionary.compat \ - dictionary.cosine dictionary.digest dictionary.digium dictionary.epygi \ + dictionary.cosine dictionary.digium dictionary.epygi \ dictionary.ericsson dictionary.erx dictionary.extreme \ dictionary.fortinet dictionary.foundry dictionary.freeradius \ dictionary.freeradius.internal dictionary.gandalf dictionary.garderos \ @@ -168,12 +179,15 @@ dictionary.merit dictionary.microsoft dictionary.mikrotik \ dictionary.motorola dictionary.navini dictionary.netscreen \ dictionary.nokia dictionary.nomadix dictionary.nortel dictionary.ntua \ - dictionary.packeteer dictionary.propel dictionary.quintum \ - dictionary.redback dictionary.redcreek dictionary.riverstone \ + dictionary.packeteer dictionary.patton \ + dictionary.propel dictionary.quintum \ + dictionary.redback dictionary.redcreek \ dictionary.rfc2865 dictionary.rfc2866 dictionary.rfc2867 \ dictionary.rfc2868 dictionary.rfc2869 dictionary.rfc3162 \ - dictionary.rfc3576 dictionary.rfc3580 dictionary.roaringpenguin \ - dictionary.shasta dictionary.shiva dictionary.sonicwall \ + dictionary.rfc3576 dictionary.rfc3580 dictionary.rfc4590 \ + dictionary.riverstone dictionary.roaringpenguin \ + dictionary.schulzrinne-sipping dictionary.shasta dictionary.shiva \ + dictionary.sofaware dictionary.sonicwall \ dictionary.springtide dictionary.starent dictionary.t_systems_nova \ dictionary.telebit dictionary.trapeze dictionary.tropos \ dictionary.unix dictionary.usr dictionary.valemount \ diff -ruN /usr/ports/net/freeradius/distinfo /usr/ports_updated/net/freeradius/distinfo --- /usr/ports/net/freeradius/distinfo Wed Nov 1 10:21:17 2006 +++ /usr/ports_updated/net/freeradius/distinfo Sun Jan 14 20:39:17 2007 @@ -1,3 +1,3 @@ -MD5 (freeradius-1.1.3.tar.gz) = d8724cdc15bc23c330a7d3a2080829bd -SHA256 (freeradius-1.1.3.tar.gz) = f615f67fb807494892015e671593801fe3ac30c04740cd1dc8d2f18fc218da35 -SIZE (freeradius-1.1.3.tar.gz) = 3068204 +MD5 (freeradius-1.1.4.tar.gz) = 0027d4cf8882bbafee30755a16632c6a +SHA256 (freeradius-1.1.4.tar.gz) = 017fe27b59c8d16c61739cd8aec123150365f2885dfdf04d289bf3039f26f7e3 +SIZE (freeradius-1.1.4.tar.gz) = 3088835 diff -ruN /usr/ports/net/freeradius/files/patch-raddb-Makefile-1.1.4_bug /usr/ports_updated/net/freeradius/files/patch-raddb-Makefile-1.1.4_bug --- /usr/ports/net/freeradius/files/patch-raddb-Makefile-1.1.4_bug Thu Jan 1 01:00:00 1970 +++ /usr/ports_updated/net/freeradius/files/patch-raddb-Makefile-1.1.4_bug Sun Jan 14 23:13:25 2007 @@ -0,0 +1,11 @@ +--- raddb/Makefile.orig Mon Apr 10 19:53:20 2006 ++++ raddb/Makefile Sun Jan 14 23:10:15 2007 +@@ -7,7 +7,7 @@ + experimental.conf hints huntgroups ldap.attrmap \ + mssql.conf naslist naspasswd oraclesql.conf postgresql.conf \ + preproxy_users proxy.conf radiusd.conf realms snmp.conf \ +- sql.conf sqlippool.conf users otp.conf otppasswd.sample ++ sql.conf sqlippool.conf users otp.conf + + all: + diff -ruN /usr/ports/net/freeradius/pkg-descr /usr/ports_updated/net/freeradius/pkg-descr --- /usr/ports/net/freeradius/pkg-descr Mon Apr 21 14:35:20 2003 +++ /usr/ports_updated/net/freeradius/pkg-descr Sun Jan 14 21:14:46 2007 @@ -1,24 +1,22 @@ - All code in this server was written from scratch. - The server is mostly compatible with livingston radiusd-2.01 - (no menus or s/key support though) but with more feautures, such as: +FreeRADIUS is the premiere open source RADIUS server. Based on current +statistics, there are over 50,000 deployments of the software. These +deployments include small sites with 10 users, large-scale enterprises with +tens of thousands of users, and carrier-class deployments with over 10 million +users. In total, the sites that we know are using FreeRADIUS support nearly +100 million users. The only other servers that come close in terms of market +share and/or number of sites are ACS and IAS. - o Can limit max. number of simultaneous logins on a per-user basis! - o Multiple DEFAULT entries, that can optionally fall-through. - o In fact, every entry can fall-through - o Deny/permit access based on huntgroup users dials into - o Set certain parameters (such as static IP address) based on huntgroup - o Extra "hints" file that can select SLIP/PPP/rlogin based on - username pattern (Puser or user.ppp is PPP, plain "user" is rlogin etc). - o Can execute an external program when user has authenticated (for example - to run a sendmail queue). - o Can use `$INCLUDE filename' in radiusd.conf, users, and dictionary files - o Can act as a proxy server, relaying requests to a remote server - o Supports Vendor-Specific attributes - o No good documentation at all, just like the original radiusd 1.16! +The server scales easily from embedded systems with small amounts of memory to +systems with millions of users. It is fast, flexible, configurable, and +supports more authentication protocols than most commercial servers. It +includes support for SQL, LDAP, RADIUS Proxying, failover, load balancing, and +nearly 100 vendor dictionary files. It can perform authentications via the +PAP, CHAP, MS-CHAP, EAP-MD5, EAP-GTC, EAP-TLS, EAP-TTLS, PEAPv0, LEAP, +EAP-SIM, and Digest authentication protocols. It has reached a stable 1.1 +version, with incremental improvements added in each release. + +The server is released under the GNU General Public License (GPL), which means +that it is free to download and install. - Then of course for general RADIUS questions, especially if you are using - Livingston / Lucent RABU equipment, there is the portmaster-radius mailing - list. Send mail to portmaster-radius-request@livingston.com to find - out how to subscribe. WWW: http://www.freeradius.org/ diff -ruN /usr/ports/net/freeradius/pkg-plist /usr/ports_updated/net/freeradius/pkg-plist --- /usr/ports/net/freeradius/pkg-plist Wed Nov 1 10:21:17 2006 +++ /usr/ports_updated/net/freeradius/pkg-plist Sun Jan 14 20:56:42 2007 @@ -47,7 +47,6 @@ etc/raddb/naspasswd.sample etc/raddb/oraclesql.conf.sample etc/raddb/otp.conf.sample -etc/raddb/otppasswd.sample.sample etc/raddb/postgresql.conf.sample etc/raddb/preproxy_users.sample etc/raddb/proxy.conf.sample @@ -424,7 +423,6 @@ %%DATADIR%%/dictionary.columbia_university %%DATADIR%%/dictionary.compat %%DATADIR%%/dictionary.cosine -%%DATADIR%%/dictionary.digest %%DATADIR%%/dictionary.digium %%DATADIR%%/dictionary.epygi %%DATADIR%%/dictionary.ericsson @@ -457,6 +455,7 @@ %%DATADIR%%/dictionary.nortel %%DATADIR%%/dictionary.ntua %%DATADIR%%/dictionary.packeteer +%%DATADIR%%/dictionary.patton %%DATADIR%%/dictionary.propel %%DATADIR%%/dictionary.quintum %%DATADIR%%/dictionary.redback @@ -469,10 +468,13 @@ %%DATADIR%%/dictionary.rfc3162 %%DATADIR%%/dictionary.rfc3576 %%DATADIR%%/dictionary.rfc3580 +%%DATADIR%%/dictionary.rfc4590 %%DATADIR%%/dictionary.riverstone %%DATADIR%%/dictionary.roaringpenguin +%%DATADIR%%/dictionary.schulzrinne-sipping %%DATADIR%%/dictionary.shasta %%DATADIR%%/dictionary.shiva +%%DATADIR%%/dictionary.sofaware %%DATADIR%%/dictionary.sonicwall %%DATADIR%%/dictionary.springtide %%DATADIR%%/dictionary.starent >Release-Note: >Audit-Trail: >Unformatted:
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200701150138.l0F1clP5013849>