Annotation of embedaddon/coova-chilli/ChangeLog, revision 1.1
1.1 ! misho 1:
! 2: == ChangeLog (Coova Chilli current svn revision) ==
! 3:
! 4: * Bug fix in RADIUS timeout, note that option ''radiustimeout'' is in '''seconds'''!
! 5: * Fix for dnsparanoia whereby chilli will reply with a host not found error instead of dropping the packet [http://coova.org/lists/?0::166 suggest by nextime]
! 6: * New option ''macauthdeny'' which will result in the black-listing of devices given an Access-Reject during MAC address authentication
! 7: * New internal state called ''splash'' in which clients are given Internet access, but enforcing the port 80 http redirect
! 8: * new option ''dhcpradius'' for mapping of some DHCP options into RADIUS attributes and visa versa during MAC authentication
! 9: * new options ''dhcpgateway'' and ''dhcpgatewayport'' to specific a DHCP gateway (relay) host IP Address and port
! 10: * New option (in development) ''routeif'' to specify which WAN interface to use for the default - this also enables the use of internal routing instead of everything defaulting to the tun/tap
! 11:
! 12: == ChangeLog (Coova Chilli v1.0.11 svn revision 147) ==
! 13:
! 14: * Bug fix for RADIUS VSAs being sent
! 15:
! 16: == ChangeLog (Coova Chilli v1.0.10 svn revision 144) ==
! 17:
! 18: * Renamed packed network stack structures and put them in pkt.h
! 19: * Bug fix for DHCP relay (RFC 1542)
! 20: * Bug fix in IPC handling
! 21: * Memory leak fix in logging
! 22:
! 23: == ChangeLog (Coova Chilli v1.0.9 svn revision 133) ==
! 24:
! 25: * Bug fix whereby the mac address of packets from the chilli redirect are overwritten
! 26: * Bug fix for 'leaky bucket' timediff calculations
! 27: * Bug fix for ''uamserver'' URLs already with a query string
! 28: * Bug fix for initial redirect url ''called'' parameter when ''nasmac'' is not configured
! 29: * New options ''radiustimeout'', ''radiusretry'', and ''radiusretrysec'' - thanks [http://coova.org/lists/?0::75 Oliver]
! 30: * Better Terminate-Cause for administrative reset (logout)
! 31: * Fewer defaults set in 'defaults' script - assume chilli defaults instead
! 32: * Fixes for native EAP over LAN (EAPOL) support
! 33: * Local web content filenames served by chilli now able to have mixed capitalization
! 34: * chilliController support for older IE browsers
! 35:
! 36: == ChangeLog (Coova Chilli v1.0.8 svn revision 124) ==
! 37:
! 38: * New option ''uamdomain'' whereby entire domains, one per use of option, can be white-listed.
! 39: * New option ''dnsparanoia'' to drop DNS responses (pre-authentication) containing any non- A, CNAME, SOA, or MX records
! 40: * New option ''radiusoriginalurl'' to send ChilliSpot VSA ChilliSpot-OriginalURL(9) in Access-Request containing the original URL
! 41: * Fix for when uamlisten is not always ''net'' + 1 (first IP in network range)
! 42: * Fix for when ''proxysecret'' and ''radiussecret'' differ in generation of Message-Authenticator
! 43: * Added option ''definteriminterval'' to define a interim-interval (for accounting) when not otherwise set by RADIUS
! 44: * Will install and use libchilli and libbstring shared libraries
! 45: * Fix in 64-bit portability - thx ccesario for helping out
! 46: * Fix for use with DHCP Relay clients
! 47:
! 48: == ChangeLog (Coova Chilli v1.0.7 svn revision 95) ==
! 49:
! 50: * First version of JSON interface, see [[CoovaChilli/JSON]]
! 51: * Improved build environment installing complete default configuration (based on build config --prefix)
! 52: * Removed default use of /etc/chilli.conf and made it based on build prefix (e.g. /usr/local/etc/chilli.conf)
! 53: * RADIUS Accounting-On (during server startup) and Accounting-Off (during server shutdown) support
! 54: * RADIUS Administrative-User accounting session giving device wide accounting
! 55: * Added option ''acctupdate'' which will allow for session parameter updates with RADIUS Accounting-Response
! 56: * New option ''tundev'' to explicitly set the TUN/TAP device, as in "tun1" or "tap3" (still be sure to use --usetap, if wanting TAP)
! 57: * Depreciated option ''papalwaysok'' - it is considered always on
! 58: * Better self determination of nasmac (Called-Station-Id)
! 59: * Sending ChilliSpot-Version attribute in access request
! 60: * Added option ''wisprlogin'' to specifically set the WISPr LoginURL
! 61:
! 62: == ChangeLog (Coova Chilli v1.0.6 svn revision 66) ==
! 63:
! 64: * Updated hashing algorithm to lookup3 by Bob Jenkins
! 65: * Using [http://bstring.sourceforge.net/ bstring] in certain places instead of large, but static character arrays
! 66: * URL Checksum: md5 of the redirect url + ''uamsecret'' passed to captive portal (''md'' query string parameter)
! 67: * Allows any protocol defined in <tt>/etc/protocols</tt> in the ''uamallowed'' (using format <tt>proto:host:port</tt>)
! 68: * Allow the setting of a client/session specific walled garden (up to 4 entries) in an Access-Reject
! 69: * Allow a WISPr-Redirection-URL in an Access-Reject (the value of which is able to span multiple attributes)
! 70: * Added the ''openidauth'' option to allow inform a RADIUS server that OpenID auth is allowed (requires ''papalwaysok'')
! 71: * Added option ''defsessiontimeout'' to define a session time when not otherwise set by RADIUS
! 72: * Added option ''defidletimeout'' to define a session idle timeout when not otherwise set by RADIUS
! 73:
! 74: == ChangeLog (Coova Chilli v1.0.5 svn revision 60) ==
! 75:
! 76: * Allow certain ICMP packets from external interface into chilli LAN for proper MTU negotiation - includes ICMP types 0, 3, 5, 11.
! 77: * Fixups in WPA RADIUS proxy code - allow for change of credentials (logging out previous session) and drop fewer authentication requests.
! 78: * Bug fix for when using local MAC authentication
! 79:
! 80: == ChangeLog (Coova Chilli v1.0.4 svn revision 51) ==
! 81:
! 82: * Merged a version of the ''Any IP'' patch as option ''uamanyip''
! 83: * Fixed issue with userurl being truncated (no query string)
! 84: * Improved userurl handling and sending to uamhomepage and/or uamserver
! 85: * Wait for local content script to exit and ensure a clean socket shutdown (by Christian Loitsch; needed for IE7 and embedded portal)
! 86: * Fixed session-id not in access-request for UAM login bug
! 87: * Experimenting with new option ''usetap'' to use a TAP instead of TUN
! 88:
! 89: == ChangeLog (Coova Chilli v1.0.3 svn revision 39) ==
! 90:
! 91: * The [http://www.gnu.org/software/gengetopt/gengetopt.html gengetopt] project accepted our changes to allow 'include <file>' in config files. The new cmdline.c is generated with gengetopt v2.19 or higher
! 92: * Added the ''wpaguests'' option to allow anonymous WPA access w/captive-portal
! 93: * Added option for ''localusers'' file to authenticate users from a local file (inspired by FON)
! 94: * Commented out the use of clearenv() as it is not on all platforms and not wanted
! 95: * Look for Acct-Session-ID in addition to User-Name in Disconnect-Request - if given, only that specific session is disconnected (thanks to Jeremy Childs for patch)
! 96: * Added option ''uamlogoutip'' (default 1.1.1.1) whereby any HTTP request to this address will result in the auto-logout of the associated session
! 97: * Support for CoARequest RADIUS requests to reconfigure session parameters (session-timeout, data/bandwidth limits, etc)
! 98: * New optional flag ''macallowlocal'' which when turned on results in the macallowed list being auto-logged in with any RADIUS (local "authentication")
! 99: * Port and protocol allowed in the ''uamallowed'' to allow for a more specific definition of the walled-garden
! 100: * Add option for ''uamuiport'' which is an alternate port for embedded local content (where as uamlisten/uamport is also used to grab the initial redirect)
! 101: * The option ''wwwbin'' which, when configured, is the program used to deliver local content (in the ''wwwdir'') with the extention ".chi" (perfect for haserl)
! 102: * The option ''wwwui'' which when used with ''uamuiport'' is the alternate program to use for local content
! 103: * The ''chilli_response'' binary taking 3 arguments <hex-challenge> <uamsecret> <password> and returning the appropriate response
! 104: * New options ''postauthproxy'' and ''postauthproxyport'' to configure an upstream transparent proxy to use post-authentication for http traffic
! 105: * Option ''papalwaysok'' to allow back-ward compatibility with UAM back-end's using PAP authentication (with ''password'') even when configured with a ''uamsecret''
! 106:
! 107: == ChangeLog (Coova Chilli v1.0.2 svn revision 17) ==
! 108:
! 109: * Configurable TX queue length (option ''txqlen'') on the tun/tap tunnel (Linux only)
! 110: * Added option ''swapoctets'' to swap the meaning of input/output octets/packets
! 111: * Added option ''logfacility'' to change the syslog logging facility (default LOG_LOCAL6) [note: should probably change the name of debugfacility as it is really logpriority]
! 112: * Patches from the ChilliSpot CVS 1.1 version
! 113: ** Added option ''conup'' defining a script for session/connection-up
! 114: ** Added option ''condown'' defining a script for session/connection-down
! 115: * Patches contributed by WeSea (see: [http://chillispot.wesea.com/ their page])
! 116: ** Added option "usestatusfile" to turn on the use of the status file
! 117: ** Traffic to UAM interface not counted in leaky buckets
! 118: ** Some tweaks to allow a Flash browser-based UAM solution
! 119: * Applied patch for OpenBSD and NetBSD found in ChilliSpot mailing-list
! 120: * Renamed and swapped meaning of config param ''uamwispr'' (mentioned below) to ''nouamwispr'' which defaults to ''off'' for compatibility - turn on this option to ''not'' have chilli send WISPr XML, but rather assume the UAM server is taking care of that.
! 121: * Renamed and swapped meaning of config param ''uamsuccess'' (mentioned below) to ''nouamsuccess'' which defaults to ''off'' for compatibility - turn on this feature to ''not'' return the user to the UAM server on login, but their original url instead.
! 122:
! 123: == ChangeLog (Coova Chilli v1.0.1 svn revision 2) ==
! 124:
! 125: * Added the ability to use ''include <filename>'' in configuration files to include others. Using gengetopt version 2.16 and a patch is applied to the generated source.
! 126: * A ''chilli_radconfig'' utility to perform a NAS Administrative-User RADIUS login in order to collect configurations (using the new ChilliSpot-Config VSA).
! 127: * A ''chilli_query'' utility to interface directly with the chilli server (via a UNIX socket) and retrieve the status of all DHCP leases and sessions. Also, the utility can be used to instruct chilli to release a DHCP lease (and logout the user).
! 128: * Added the configuration parameters ''adminuser'' and ''adminpasswd'' which are used by ''chilli_radconfig'' in combination with the other RADIUS (server, secret, port) parameters.
! 129: * Fixed the handling of the originally requested URL and the forwarding of said in the UAM initial redirect query string (parameter ''userurl'').
! 130: * Passing query string argument ''loginurl'' to ''uamhomepage'' noting the URL to follow to login -- also making the redirect return WISPr directions to use the uamserver URL instead.
! 131: * Added the configuration parameter ''wwwdir'' which defines a directory which will serve local files for URLs of format: ''http://<uamlisten>:<uamport>/www/<filename>'' - only supports ''.html'', ''.gif'', and ''.jpg'' extensions.
! 132: * Added the configuration parameters ''dhcpstart'', and ''dhcpend'' which define the DHCP ippool range.
! 133: * Added the sending of ''hisip'' in the UAM initial redirect query string.
! 134: * Added the configuration parameter ''cmdsocket'' which is the path of the UNIX socket to use for chilli_query.
! 135: * Added the configuration parameter ''ssid'' which gets added to the UAM initial redirect query string.
! 136: * Added the configuration parameter ''vlan'' which gets added to the UAM initial redirect query string.
! 137: * Added the configuration parameter ''nasip'' which gets used in the RADIUS NAS-IP-Address attribute (the listen IP is used if not set).
! 138: * Added the configuration parameter ''nasmac'' which gets sent to the UAM server in the initial redirect query string as called.
! 139: * Added the configuration parameter ''uamwispr'' which turns off and on chilli's internal support for WISPr XML (turned off by default as it is assumed the back-office is driving the XML).
! 140: * Added the configuration parameter ''uamsuccess'' which turns off and on whether or not chilli will send the user back to the UAM server (instead of their original URL) once authenticated.
! 141: * Swapped input/output octets/packets in RADIUS to be more in-line with other WiFi gateways.
! 142: * Allocates "app connections" on demand instead of in bulk to reduce memory usage.
! 143: * Rearranged some code to improve the building process and reduce the memory footprint of the additional utilities.
! 144: * (Re)Configuration memory leak fixed.
! 145:
! 146:
FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>
![[BACK]](/icons/cvsweb/back.gif){kind=icon}
Return to ChangeLog CVS log ![[TXT]](/icons/cvsweb/text.gif){kind=icon}
![[DIR]](/icons/cvsweb/dir.gif){kind=icon}
Up to [ELWIX - Embedded LightWeight unIX -] / embedaddon / coova-chilli