note recent changes

author Alan T. DeKok <aland@freeradius.org>

Thu, 6 Apr 2023 19:48:24 +0000 (15:48 -0400)

committer Alan T. DeKok <aland@freeradius.org>

Thu, 6 Apr 2023 19:48:24 +0000 (15:48 -0400)
author Alan T. DeKok <aland@freeradius.org>
Thu, 6 Apr 2023 19:48:24 +0000 (15:48 -0400)
committer Alan T. DeKok <aland@freeradius.org>
Thu, 6 Apr 2023 19:48:24 +0000 (15:48 -0400)
diff --git a/doc/ChangeLog b/doc/ChangeLog

index 33c65fa98a48b73eac0e9aea4963b1656527893d..c55dab1e907dd90e2fefafb6cd5ac500c1da5a35 100644 (file)
--- a/doc/ChangeLog
+++ b/doc/ChangeLog
@@ -18,6 +18,12 @@ FreeRADIUS 3.2.3 Thu 16 Feb 2023 12:00:00 EDT urgency=low
         * "update CoA" cannot be used with "fake" packets,
           i.e. inner-tunnel and virtual home servers.
         * Many small ASAN / LSAN fixes from Jorge Pereira.
+       * Close inbound  RADIUS/TLS socket on TLS errors.  When a home server
+         sees a TLS error, it will now close the socket, so proxies do not
+         have an open (but dead) TLS connection.
+       * Change the way we mutex lock inbound RADIUS/TLS connections.
+         This change avoids random issues with "bad record mac" due to poorly
+         defined SSL mutex locking behavior.
  
  FreeRADIUS 3.2.2 Thu 16 Feb 2023 12:00:00 EDT urgency=low
         Configuration changes
author	Alan T. DeKok <aland@freeradius.org>
	Thu, 6 Apr 2023 19:48:24 +0000 (15:48 -0400)
committer	Alan T. DeKok <aland@freeradius.org>
	Thu, 6 Apr 2023 19:48:24 +0000 (15:48 -0400)