# $Id: ChangeLog,v 1.15.2.2 2007/01/22 13:11:02 miconda Exp $ ===================== 2007-01-22 OpenSER v1.1.1 released ====================== ===================== Changes since release 1.1.0 ============================ * 2007-01-22 Bogdan-Andrei Iancu - packaging: version increased to 1.1.1 * 2007-01-22 Daniel-Constantin Mierla - unixodbc: backport to escape single quote, backslash and NULL characters * 2007-01-18 Daniel-Constantin Mierla - core: fix for dynamic names of pseudo-variables when was an AVP with string name (reported by ) * 2007-01-18 Bogdan-Andrei Iancu - tools: openserctl - no need for a DB engine in order to use the ul functions; removed warning about not loading a DB engine * 2001-01-17 Klaus Darilion - postgres: escape values before contructing the SQL statement NOTE: It uses the function PQescapeStringConn. Make sure your postgres library supports this function before update. E.g. on Debian Sarge you need at least postgres-devel and libpq3 version 7.4.7-6sarge3 (version 7.4.7-6sarge1 does not work). * 2007-01-12 Bogdan-Andrei Iancu - sl: fixed memory leak in case of failing to send an already constructed buffer reply. Credits go to Andrew Newton - tm: fixed bug in ACK matching when a call spirals on openser - hopbyhop ACKs (for non-200 replies) were incorectly matching as end2end ACKS (for 200 replies). * 2007-01-11 Bogdan-Andrei Iancu - core: fixed definition of "pid_file" and "pgid_file" - declared in globals.h without extern. * 2007-01-09 Daniel-Constantin Mierla - core: fixed printing of $hdr(name[1]) when only one header 'name' is present (credits to Juha Heinanen) * 2007-01-05 Bogdan-Andrei Iancu - permissions: fixed several potential buffer overflows when reading the cfg file. - permissions: fix in recognizing the key word "ALL" ; previous any string starting with "ALL" was matched; added trim right before testing for "ALL" - tm: bug fixed in hop-by-hop ACK matching: incomplete matching condition leaded to mistakenly detect a hop-by-hop ACK as a end-to-end one. This bug was affecting only the statefull processing. Reported by Juha Heinanen and Christian Schlatter * 2007-01-04 Bogdan-Andrei Iancu - sms: fixed possible buffer overflow when fetching an SMS. See: http://www.securityfocus.com/archive/1/455415/30/30/threaded Not sure if code injection is possible as the maximum overflow is of 5 bytes, guess not long enough to encode some instruction. Pointed out by Bastian Friedrich * 2007-01-02 Di-Shi Sun - osp: fix ospCopyStrToBuffer bug; add call id length check in ospValidateHeader. * 2006-12-20 Daniel-Constantin Mierla - core: fixed index computation for $avp and $hdr pseudo-variables (reported by Begeragus Lmerov (begeragus)) * 2006-12-18 Daniel-Constantin Mierla - avpops: compare string lengths if strncasecmp returns 0 for '>' and '<' comparisons; check return code against 0, not all systems return -1 and 1 for strncasecmp() in case of '<' and '>'; reported by Juan Carlos Castro y Castro * 2006-12-08 Di-Shi Sun - osp: update to deal service point definitaions with gap. * 2006-12-12 Daniel-Constantin Mierla - group: include to make regexp compile on old FreeBSD * 2006-12-08 Di-Shi Sun - osp: do not use network ID as port anymore - osp: increase OSP service point number from 2 to 16 * 2006-12-08 Bogdan-Andrei Iancu - core: fixed the case insensitive hash function (original fix was incomplete) Reported by Papadopoulos Georgios * 2006-12-06 Bogdan-Andrei Iancu - uac: parsing bug fixed: the "stale" field in digest challange hdr may take not quoted value (as well as quoted). Credits go to Christophe Irles * 2006-11-29 Dan Pascu - domain, permissions: fixed domain_reload and trusted_reload commands not working over the UNIX socket interface. * 2006-11-29 Bogdan-Andrei Iancu - core: improper free of linked list (first delete and later iterate) based on a patch submitted by Jan Andres for SER * 2006-11-27 Bogdan-Andrei Iancu - sl: un-initialized global variable may lead to a crash if openser destroys the sl module without initializing it (during a failed startup) * 2006-11-24 Bogdan-Andrei Iancu - usrloc: User-Agent was not reloaded from DB during restart. * 2006-11-23 Klaus Darilion - tls: fixed require_client_certificate for default TLS server domain (reported and patch contributed by Philippe phgs@free.fr - tls: fixed default TLS client/server verification (had no impact as both default values are 0) * 2006-11-22 Bogdan-Andrei Iancu - dialog: fixed bug in dialog hash computation - the from TAG may be empty (as in REGISTER), so double check it before using it for hashing. - unixodbc: more data types added: SQL_NUMERIC for integer; SQL_DATE, SQL_TIME, SQL_TIMESTAMP, SQL_TYPE_DATE, SQL_TYPE_TIME for data-time - tolls: openserctl - fixed display problem in "openserctl monit"; "tput cup 0 0" replaced with "tput clear" * 2006-11-21 Bogdan-Andrei Iancu - usrloc: fixed handeling of the permanent contacts * 2006-11-13 Bogdan-Andrei Iancu - cpl: fix for case usernames with special characters (patch provided by John Riordan ) - cpl: proper flag propagation from user location * 2006-10-30 Daniel-Constantin Mierla - postgres: check if there is valid parameter to store result for db_raw_query() * 2006-10-28 Bogdan-Andrei Iancu - registrar: MEM_ONLY flag was not propagated when the record was found but the contact had to be inserted. * 2006-10-23 Bogdan-Andrei Iancu - core: fix asm constraint to avoid register overlap on arm (credits got to Julien Blache ) * 2006-10-09 Elena-Ramona Modroiu - pdt: fix lock destroy at shutdown (reported by Julien Blache) * 2006-09-18 Daniel-Constantin Mierla - avpops: updated doc for avp_pushto() to reflect ability to push any pseudo-variable in parts of SIP message (reported by Juha Heinanen) - avpops: fixed incorrect (harmless) usage of FM operator in case of division and enabled modulo operator * 2006-09-07 Bogdan-Andrei Iancu - tm: harmless bug fixed - it was triggering some integrity tests in EXTRA_DEBUG. Reported by Mark Kent * 2006-08-15 Daniel-Constantin Mierla - tools: openserctl - replaced bash dependent expression with usage of 'expr' from coreutils (reported on Solaris by Samwise (samwiseuk)) - tools: openserctl - reverted commit which introduced space after AWK -F * 2006-08-03 Di-Shi Sun - osp: set of fixes imported from development branch * 2006-07-17 Daniel-Constantin Mierla - avpops: reactivated username/domain flags in avp_write() for all pseudo-variables and static values - reported by Juha Heinanen. Old parameters that accepted these flags have equivalent in pseudo-variables (e.g., $ruri/domain == $rd) * 2006-07-17 Bogdan-Andrei Iancu - core: fixed compilling problem on platform which does not define IPTOS_MINCOST and IPTOS_LOWCOST. Previous fix had a static approach which was now replced wiht a more flexible one. Reported by Frank Garcia - tools: postgresqldb.sh updated to follow mysqldb.sh changes * 2006-07-14 Daniel-Constantin Mierla - core: fixed memory leak in DNS resolver when overflow happens (credits to Juha Heinanen) - options: proper name for supported header (reported by Olaf Bergmann)