mirror of
https://github.com/asterisk/asterisk.git
synced 2025-11-04 05:15:22 +00:00
Compare commits
17 Commits
certified/
...
certified/
| Author | SHA1 | Date | |
|---|---|---|---|
|
6a71c2a160 | ||
|
|
700d205187 | ||
|
|
ee0d2e1952 | ||
|
|
19bdbbb9b4 | ||
|
|
b6ffde5f9d | ||
|
|
15e16cc844 | ||
|
|
88bc227f2c | ||
|
|
df03b50431 | ||
|
|
8faf5baa0b | ||
|
|
ad86e5a50e | ||
|
|
d49ad37a35 | ||
|
|
5f30e19f13 | ||
|
|
5a4743a580 | ||
|
|
7b3d30d062 | ||
|
|
be911c15a2 | ||
|
e92711f5d5 | ||
|
|
064a02c7f4 |
99
ChangeLog
99
ChangeLog
@@ -1,3 +1,102 @@
|
||||
2015-04-08 Asterisk Development Team <asteriskteam@digium.com>
|
||||
|
||||
* Certified Asterisk 1.8.28-cert5 Released.
|
||||
|
||||
* Mitigate MitM attack potential from certificate with NULL byte in CN.
|
||||
|
||||
When registering to a SIP server with TLS, Asterisk will accept CA
|
||||
signed certificates with a common name that was signed for a domain
|
||||
other than the one requested if it contains a null character in the
|
||||
common name portion of the cert. This patch fixes that by checking
|
||||
that the common name length matches the the length of the content we
|
||||
actually read from the common name segment. Some certificate
|
||||
authorities automatically sign CA requests when the requesting CN
|
||||
isn't already taken, so an attacker could potentially register a CN
|
||||
with something like www.google.com\x00www.secretlyevil.net and have
|
||||
their certificate signed and Asterisk would accept that certificate
|
||||
as though it had been for www.google.com.
|
||||
|
||||
ASTERISK-24847 #close
|
||||
Reported by: Maciej Szmigiero
|
||||
patches:
|
||||
asterisk-null-in-cn.patch uploaded by mhej (license 6085)
|
||||
|
||||
AST-2015-003
|
||||
|
||||
2015-01-28 Asterisk Development Team <asteriskteam@digium.com>
|
||||
|
||||
* Certified Asterisk 1.8.28-cert4 Released.
|
||||
|
||||
* Mitigate possible HTTP injection attacks using CURL() function in
|
||||
Asterisk.
|
||||
|
||||
CVE-2014-8150 disclosed a vulnerability in libcURL where HTTP request
|
||||
injection can be performed given properly-crafted URLs.
|
||||
|
||||
Since Asterisk makes use of libcURL, and it is possible that users of
|
||||
Asterisk may get cURL URLs from user input or remote sources, we have
|
||||
made a patch to Asterisk to prevent such HTTP injection attacks from
|
||||
originating from Asterisk.
|
||||
|
||||
ASTERISK-24676 #close
|
||||
Reported by: Matt Jordan, Olle Johansson
|
||||
|
||||
Review: https://reviewboard.asterisk.org/r/4364
|
||||
|
||||
AST-2015-002
|
||||
|
||||
2014-11-20 Asterisk Development Team <asteriskteam@digium.com>
|
||||
|
||||
* Certified Asterisk 1.8.28-cert3 Released.
|
||||
|
||||
* AST-2014-012: Fix error with mixed address family ACLs.
|
||||
|
||||
Prior to this commit, the address family of the first item in an ACL
|
||||
was used to compare all incoming traffic. This could lead to traffic
|
||||
of other IP address families bypassing ACLs.
|
||||
|
||||
ASTERISK-24469 #close
|
||||
Reported by Matt Jordan
|
||||
|
||||
* AST-2014-018 - func_db: DB Dialplan function permission escalation
|
||||
via AMI.
|
||||
|
||||
The DB dialplan function when executed from an external protocol
|
||||
(for instance AMI), could result in a privilege escalation.
|
||||
|
||||
Asterisk now inhibits the DB function from being executed from an
|
||||
external interface if the live_dangerously option is set to no.
|
||||
|
||||
ASTERISK-24534
|
||||
Reported by: Gareth Palmer
|
||||
patches: submitted by Gareth Palmer (license 5169)
|
||||
|
||||
2014-10-20 Asterisk Development Team <asteriskteam@digium.com>
|
||||
|
||||
* Certified Asterisk 1.8.28-cert2 Released.
|
||||
|
||||
* AST-2014-011: Fix POODLE security issues
|
||||
|
||||
There are two aspects to the vulnerability:
|
||||
(1) res_jabber/res_xmpp use SSLv3 only. This patch updates the module
|
||||
to use TLSv1+. At this time, it does not refactor res_jabber/
|
||||
res_xmpp to use the TCP/TLS core, which should be done as an
|
||||
improvement at a latter date.
|
||||
(2) The TCP/TLS core, when tlsclientmethod/sslclientmethod is left
|
||||
unspecified, will default to the OpenSSL SSLv23_method. This
|
||||
method allows for all encryption methods, including SSLv2/SSLv3.
|
||||
A MITM can exploit this by forcing a fallback to SSLv3, which
|
||||
leaves the server vulnerable to POODLE. This patch adds WARNINGS
|
||||
if a user uses SSLv2/SSLv3 in their configuration, and explicitly
|
||||
disables SSLv2/SSLv3 if using SSLv23_method.
|
||||
|
||||
For TLS clients, Asterisk will default to TLSv1+ and WARN if SSLv2 or
|
||||
SSLv3 is explicitly chosen. For TLS servers, Asterisk will no longer
|
||||
support SSLv2 or SSLv3.
|
||||
|
||||
Much thanks to abelbeck for reporting the vulnerability and providing
|
||||
a patch for the res_jabber/res_xmpp modules.
|
||||
|
||||
2014-09-05 Asterisk Development Team <asteriskteam@digium.com>
|
||||
|
||||
* Certified Asterisk 1.8.28-cert1 Released.
|
||||
|
||||
12
UPGRADE.txt
12
UPGRADE.txt
@@ -18,6 +18,18 @@
|
||||
===
|
||||
===========================================================
|
||||
|
||||
from 1.8.28-cert1 to 1.8.28-cert2:
|
||||
|
||||
* Due to the POODLE vulnerability (see
|
||||
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566), the
|
||||
default TLS method for TLS clients will no longer allow SSLv3. As
|
||||
SSLv2 was already deprecated, it is no longer allowed by default as
|
||||
well. TLS servers no longer allow SSLv2 or SSLv3 connections. This
|
||||
affects the chan_sip channel driver, AMI, and the Asterisk HTTP server.
|
||||
|
||||
* The res_jabber resource module no longer uses SSLv3 to connect to an
|
||||
XMPP server. It will now only use TLSv1 or later methods.
|
||||
|
||||
from 1.8.28-cert0 to 1.8.28-cert1
|
||||
* Added http.conf session_inactivity timer option to close HTTP connections
|
||||
that aren't doing anything.
|
||||
|
||||
@@ -1,312 +0,0 @@
|
||||
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
|
||||
<html xmlns="http://www.w3.org/1999/xhtml">
|
||||
<head><meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" /><title>Release Summary - asterisk-1.8.28.0</title></head>
|
||||
<body>
|
||||
<h1 align="center"><a name="top">Release Summary</a></h1>
|
||||
<h3 align="center">asterisk-1.8.28.0</h3>
|
||||
<h3 align="center">Date: 2014-05-29</h3>
|
||||
<h3 align="center"><asteriskteam@digium.com></h3>
|
||||
<hr/>
|
||||
<h2 align="center">Table of Contents</h2>
|
||||
<ol>
|
||||
<li><a href="#summary">Summary</a></li>
|
||||
<li><a href="#contributors">Contributors</a></li>
|
||||
<li><a href="#issues">Closed Issues</a></li>
|
||||
<li><a href="#commits">Other Changes</a></li>
|
||||
<li><a href="#diffstat">Diffstat</a></li>
|
||||
</ol>
|
||||
<hr/>
|
||||
<a name="summary"><h2 align="center">Summary</h2></a>
|
||||
<center><a href="#top">[Back to Top]</a></center><br/><p>This release includes only bug fixes. The changes included were made only to address problems that have been identified in this release series. Users should be able to safely upgrade to this version if this release series is already in use. Users considering upgrading from a previous release series are strongly encouraged to review the UPGRADE.txt document as well as the CHANGES document for information about upgrading to this release series.</p>
|
||||
<p>The data in this summary reflects changes that have been made since the previous release, asterisk-1.8.27.0.</p>
|
||||
<hr/>
|
||||
<a name="contributors"><h2 align="center">Contributors</h2></a>
|
||||
<center><a href="#top">[Back to Top]</a></center><br/><p>This table lists the people who have submitted code, those that have tested patches, as well as those that reported issues on the issue tracker that were resolved in this release. For coders, the number is how many of their patches (of any size) were committed into this release. For testers, the number is the number of times their name was listed as assisting with testing a patch. Finally, for reporters, the number is the number of issues that they reported that were closed by commits that went into this release.</p>
|
||||
<table width="100%" border="0">
|
||||
<tr>
|
||||
<td width="33%"><h3>Coders</h3></td>
|
||||
<td width="33%"><h3>Testers</h3></td>
|
||||
<td width="33%"><h3>Reporters</h3></td>
|
||||
</tr>
|
||||
<tr valign="top">
|
||||
<td>
|
||||
6 rmudgett<br/>
|
||||
5 wdoekes<br/>
|
||||
4 kmoore<br/>
|
||||
4 mmichelson<br/>
|
||||
3 jrose<br/>
|
||||
3 mjordan<br/>
|
||||
1 Bradley Watkins<br/>
|
||||
1 David Woodhouse<br/>
|
||||
1 file<br/>
|
||||
1 jcolp<br/>
|
||||
1 may<br/>
|
||||
1 newtonr<br/>
|
||||
1 sgriepentrog<br/>
|
||||
1 Steve Davies<br/>
|
||||
</td>
|
||||
<td>
|
||||
</td>
|
||||
<td>
|
||||
2 kristoff<br/>
|
||||
2 wdoekes<br/>
|
||||
1 dwmw2<br/>
|
||||
1 gma<br/>
|
||||
1 igorg<br/>
|
||||
1 italorossi<br/>
|
||||
1 marquis<br/>
|
||||
1 mjordan<br/>
|
||||
1 mmichelson<br/>
|
||||
1 one47<br/>
|
||||
1 rolek<br/>
|
||||
</td>
|
||||
</tr>
|
||||
</table>
|
||||
<hr/>
|
||||
<a name="issues"><h2 align="center">Closed Issues</h2></a>
|
||||
<center><a href="#top">[Back to Top]</a></center><br/><p>This is a list of all issues from the issue tracker that were closed by changes that went into this release.</p>
|
||||
<h3>Category: Addons/chan_ooh323</h3><br/>
|
||||
<a href="https://issues.asterisk.org/jira/browse/ASTERISK-23754">ASTERISK-23754</a>: [patch] Use var/lib directory for log file configured in asterisk.conf<br/>
|
||||
Revision: <a href="http://svn.digium.com/view/asterisk/branches/1.8?view=revision&revision=414152">414152</a><br/>
|
||||
Reporter: igorg<br/>
|
||||
Coders: may<br/>
|
||||
<br/>
|
||||
<h3>Category: Applications/app_queue</h3><br/>
|
||||
<a href="https://issues.asterisk.org/jira/browse/ASTERISK-23547">ASTERISK-23547</a>: [patch] app_queue removing callers from queue when reloading<br/>
|
||||
Revision: <a href="http://svn.digium.com/view/asterisk/branches/1.8?view=revision&revision=411584">411584</a><br/>
|
||||
Reporter: italorossi<br/>
|
||||
Coders: jcolp<br/>
|
||||
<br/>
|
||||
<h3>Category: Applications/app_sms</h3><br/>
|
||||
<a href="https://issues.asterisk.org/jira/browse/ASTERISK-18331">ASTERISK-18331</a>: app_sms failure<br/>
|
||||
Revision: <a href="http://svn.digium.com/view/asterisk/branches/1.8?view=revision&revision=412655">412655</a><br/>
|
||||
Reporter: dwmw2<br/>
|
||||
Coders: David Woodhouse<br/>
|
||||
<br/>
|
||||
<h3>Category: Applications/app_stack</h3><br/>
|
||||
<a href="https://issues.asterisk.org/jira/browse/ASTERISK-23620">ASTERISK-23620</a>: Code path in app_stack fails to unlock list<br/>
|
||||
Revision: <a href="http://svn.digium.com/view/asterisk/branches/1.8?view=revision&revision=412225">412225</a><br/>
|
||||
Reporter: marquis<br/>
|
||||
Coders: Bradley Watkins<br/>
|
||||
<br/>
|
||||
<h3>Category: CEL/General</h3><br/>
|
||||
<a href="https://issues.asterisk.org/jira/browse/ASTERISK-22977">ASTERISK-22977</a>: chan_sip+CEL: missing ANSWER and PICKUP event for INVITE/w/replaces pickup<br/>
|
||||
Revision: <a href="http://svn.digium.com/view/asterisk/branches/1.8?view=revision&revision=413832">413832</a><br/>
|
||||
Reporter: wdoekes<br/>
|
||||
Coders: wdoekes<br/>
|
||||
<br/>
|
||||
<h3>Category: Channels/chan_dahdi</h3><br/>
|
||||
<a href="https://issues.asterisk.org/jira/browse/ASTERISK-23709">ASTERISK-23709</a>: Regression in Dahdi/Analog/waitfordialtone<br/>
|
||||
Revision: <a href="http://svn.digium.com/view/asterisk/branches/1.8?view=revision&revision=414067">414067</a><br/>
|
||||
Reporter: one47<br/>
|
||||
Coders: Steve Davies<br/>
|
||||
<br/>
|
||||
<h3>Category: Channels/chan_sip/General</h3><br/>
|
||||
<a href="https://issues.asterisk.org/jira/browse/ASTERISK-19465">ASTERISK-19465</a>: P-Asserted-Identity Privacy<br/>
|
||||
Revision: <a href="http://svn.digium.com/view/asterisk/branches/1.8?view=revision&revision=412744">412744</a><br/>
|
||||
Reporter: kristoff<br/>
|
||||
Coders: jrose<br/>
|
||||
<br/>
|
||||
<a href="https://issues.asterisk.org/jira/browse/ASTERISK-19465">ASTERISK-19465</a>: P-Asserted-Identity Privacy<br/>
|
||||
Revision: <a href="http://svn.digium.com/view/asterisk/branches/1.8?view=revision&revision=412821">412821</a><br/>
|
||||
Reporter: kristoff<br/>
|
||||
Coders: jrose<br/>
|
||||
<br/>
|
||||
<h3>Category: Channels/chan_sip/Transfers</h3><br/>
|
||||
<a href="https://issues.asterisk.org/jira/browse/ASTERISK-22977">ASTERISK-22977</a>: chan_sip+CEL: missing ANSWER and PICKUP event for INVITE/w/replaces pickup<br/>
|
||||
Revision: <a href="http://svn.digium.com/view/asterisk/branches/1.8?view=revision&revision=413832">413832</a><br/>
|
||||
Reporter: wdoekes<br/>
|
||||
Coders: wdoekes<br/>
|
||||
<br/>
|
||||
<h3>Category: Core/Channels</h3><br/>
|
||||
<a href="https://issues.asterisk.org/jira/browse/ASTERISK-22846">ASTERISK-22846</a>: testsuite: masquerade super test fails on all branches (still)<br/>
|
||||
Revision: <a href="http://svn.digium.com/view/asterisk/branches/1.8?view=revision&revision=411715">411715</a><br/>
|
||||
Reporter: mjordan<br/>
|
||||
Coders: rmudgett<br/>
|
||||
<br/>
|
||||
<h3>Category: Core/Configuration</h3><br/>
|
||||
<a href="https://issues.asterisk.org/jira/browse/ASTERISK-23546">ASTERISK-23546</a>: CB_ADD_LEN does not do what you'd think<br/>
|
||||
Revision: <a href="http://svn.digium.com/view/asterisk/branches/1.8?view=revision&revision=411960">411960</a><br/>
|
||||
Reporter: wdoekes<br/>
|
||||
Coders: rmudgett<br/>
|
||||
<br/>
|
||||
<h3>Category: Core/General</h3><br/>
|
||||
<a href="https://issues.asterisk.org/jira/browse/ASTERISK-23546">ASTERISK-23546</a>: CB_ADD_LEN does not do what you'd think<br/>
|
||||
Revision: <a href="http://svn.digium.com/view/asterisk/branches/1.8?view=revision&revision=411960">411960</a><br/>
|
||||
Reporter: wdoekes<br/>
|
||||
Coders: rmudgett<br/>
|
||||
<br/>
|
||||
<h3>Category: Core/RTP</h3><br/>
|
||||
<a href="https://issues.asterisk.org/jira/browse/ASTERISK-23665">ASTERISK-23665</a>: Wrong mime type for codec H263-1998 (h263+)<br/>
|
||||
Revision: <a href="http://svn.digium.com/view/asterisk/branches/1.8?view=revision&revision=413787">413787</a><br/>
|
||||
Reporter: gma<br/>
|
||||
Coders: wdoekes<br/>
|
||||
<br/>
|
||||
<h3>Category: Functions/func_strings</h3><br/>
|
||||
<a href="https://issues.asterisk.org/jira/browse/ASTERISK-23650">ASTERISK-23650</a>: Intermittent segfault in string functions<br/>
|
||||
Revision: <a href="http://svn.digium.com/view/asterisk/branches/1.8?view=revision&revision=414214">414214</a><br/>
|
||||
Reporter: rolek<br/>
|
||||
Coders: sgriepentrog<br/>
|
||||
<br/>
|
||||
<h3>Category: Resources/res_config_pgsql</h3><br/>
|
||||
<a href="https://issues.asterisk.org/jira/browse/ASTERISK-23707">ASTERISK-23707</a>: Realtime Contacts: Apparent mismatch between PGSQL database state and Asterisk state<br/>
|
||||
Revision: <a href="http://svn.digium.com/view/asterisk/branches/1.8?view=revision&revision=413224">413224</a><br/>
|
||||
Reporter: mmichelson<br/>
|
||||
Coders: mmichelson<br/>
|
||||
<br/>
|
||||
<h3>Category: Tests/testsuite</h3><br/>
|
||||
<a href="https://issues.asterisk.org/jira/browse/ASTERISK-22846">ASTERISK-22846</a>: testsuite: masquerade super test fails on all branches (still)<br/>
|
||||
Revision: <a href="http://svn.digium.com/view/asterisk/branches/1.8?view=revision&revision=411715">411715</a><br/>
|
||||
Reporter: mjordan<br/>
|
||||
Coders: rmudgett<br/>
|
||||
<br/>
|
||||
<hr/>
|
||||
<a name="commits"><h2 align="center">Commits Not Associated with an Issue</h2></a>
|
||||
<center><a href="#top">[Back to Top]</a></center><br/><p>This is a list of all changes that went into this release that did not directly close an issue from the issue tracker. The commits may have been marked as being related to an issue. If that is the case, the issue numbers are listed here, as well.</p>
|
||||
<table width="100%" border="1">
|
||||
<tr><td><b>Revision</b></td><td><b>Author</b></td><td><b>Summary</b></td><td><b>Issues Referenced</b></td></tr><tr><td><a href="http://svn.digium.com/view/asterisk/branches/1.8?view=revision&revision=411807">411807</a></td><td>wdoekes</td><td>configs: Clean up long line and typo in res_odbc.conf.sample.</td>
|
||||
<td></td></tr><tr><td><a href="http://svn.digium.com/view/asterisk/branches/1.8?view=revision&revision=411964">411964</a></td><td>rmudgett</td><td>Internal timing: Add notice that the -I and internal_timing option are no longer needed.</td>
|
||||
<td></td></tr><tr><td><a href="http://svn.digium.com/view/asterisk/branches/1.8?view=revision&revision=412114">412114</a></td><td>mjordan</td><td>main/astobj2: Make REF_DEBUG a menuselect item; improve REF_DEBUG output</td>
|
||||
<td></td></tr><tr><td><a href="http://svn.digium.com/view/asterisk/branches/1.8?view=revision&revision=412480">412480</a></td><td>mjordan</td><td>channels/chan_oss: Fix compilation problem on SmartOS/Illumos/SunOS</td>
|
||||
<td><a href="https://issues.asterisk.org/jira/browse/ASTERISK-23576">ASTERISK-23576</a></td></tr><tr><td><a href="http://svn.digium.com/view/asterisk/branches/1.8?view=revision&revision=412585">412585</a></td><td>newtonr</td><td>sounds: Fix Sounds Makefile and XML that didn't support new sound prompt sets</td>
|
||||
<td></td></tr><tr><td><a href="http://svn.digium.com/view/asterisk/branches/1.8?view=revision&revision=412745">412745</a></td><td>kmoore</td><td>HTTP: Add TCP_NODELAY to accepted connections</td>
|
||||
<td></td></tr><tr><td><a href="http://svn.digium.com/view/asterisk/branches/1.8?view=revision&revision=412764">412764</a></td><td>jrose</td><td>Typo in CHANGES</td>
|
||||
<td></td></tr><tr><td><a href="http://svn.digium.com/view/asterisk/branches/1.8?view=revision&revision=412922">412922</a></td><td>rmudgett</td><td>http: Fix spurious ERROR message in responses with no content.</td>
|
||||
<td></td></tr><tr><td><a href="http://svn.digium.com/view/asterisk/branches/1.8?view=revision&revision=413241">413241</a></td><td>mmichelson</td><td>Prevent crashes in res_config_odbc due to uninitialized string fields.</td>
|
||||
<td></td></tr><tr><td><a href="http://svn.digium.com/view/asterisk/branches/1.8?view=revision&revision=413304">413304</a></td><td>mmichelson</td><td>Ensure that all parts of SQL UPDATEs and DELETEs are encoded.</td>
|
||||
<td></td></tr><tr><td><a href="http://svn.digium.com/view/asterisk/branches/1.8?view=revision&revision=413396">413396</a></td><td>mmichelson</td><td>Fix encoding of custom prepare extra data.</td>
|
||||
<td></td></tr><tr><td><a href="http://svn.digium.com/view/asterisk/branches/1.8?view=revision&revision=413485">413485</a></td><td>file</td><td>app_queue: Extend documentation for various Manager actions and events.</td>
|
||||
<td></td></tr><tr><td><a href="http://svn.digium.com/view/asterisk/branches/1.8?view=revision&revision=413586">413586</a></td><td>kmoore</td><td>Allow Asterisk to compile under GCC 4.10</td>
|
||||
<td></td></tr><tr><td><a href="http://svn.digium.com/view/asterisk/branches/1.8?view=revision&revision=413591">413591</a></td><td>kmoore</td><td>Fix 32bit build for chan_sip</td>
|
||||
<td></td></tr><tr><td><a href="http://svn.digium.com/view/asterisk/branches/1.8?view=revision&revision=413592">413592</a></td><td>kmoore</td><td>Fix 32bit build for func_env</td>
|
||||
<td></td></tr><tr><td><a href="http://svn.digium.com/view/asterisk/branches/1.8?view=revision&revision=413894">413894</a></td><td>wdoekes</td><td>res_musiconhold: Minor cleanup.</td>
|
||||
<td></td></tr><tr><td><a href="http://svn.digium.com/view/asterisk/branches/1.8?view=revision&revision=413949">413949</a></td><td>wdoekes</td><td>chan_local+app_dial: Propagagate call answered elsewhere over local channels.</td>
|
||||
<td></td></tr><tr><td><a href="http://svn.digium.com/view/asterisk/branches/1.8?view=revision&revision=413991">413991</a></td><td>rmudgett</td><td>app_meetme: Fix overwrite of DAHDI conference data structure.</td>
|
||||
<td></td></tr><tr><td><a href="http://svn.digium.com/view/asterisk/branches/1.8?view=revision&revision=414269">414269</a></td><td>rmudgett</td><td>chan_local: Only block media frames when a generator is on both ends of a local channel.</td>
|
||||
<td></td></tr><tr><td><a href="http://svn.digium.com/view/asterisk/branches/1.8?view=revision&revision=414345">414345</a></td><td>mjordan</td><td>UPGRADE: Add note for REF_DEBUG flag</td>
|
||||
<td></td></tr></table>
|
||||
<hr/>
|
||||
<a name="diffstat"><h2 align="center">Diffstat Results</h2></a>
|
||||
<center><a href="#top">[Back to Top]</a></center><br/><p>This is a summary of the changes to the source code that went into this release that was generated using the diffstat utility.</p>
|
||||
<pre>
|
||||
CHANGES | 23 +++
|
||||
UPGRADE.txt | 15 ++
|
||||
addons/chan_ooh323.c | 5
|
||||
apps/app_adsiprog.c | 2
|
||||
apps/app_dial.c | 8 -
|
||||
apps/app_dumpchan.c | 6
|
||||
apps/app_festival.c | 2
|
||||
apps/app_getcpeid.c | 8 -
|
||||
apps/app_meetme.c | 40 ++++--
|
||||
apps/app_minivm.c | 4
|
||||
apps/app_queue.c | 96 +++++++++++----
|
||||
apps/app_sms.c | 46 ++++---
|
||||
apps/app_stack.c | 3
|
||||
apps/app_voicemail.c | 8 -
|
||||
build_tools/cflags.xml | 3
|
||||
cdr/cdr_adaptive_odbc.c | 4
|
||||
cel/cel_odbc.c | 6
|
||||
cel/cel_pgsql.c | 4
|
||||
channels/chan_alsa.c | 6
|
||||
channels/chan_dahdi.c | 52 ++++----
|
||||
channels/chan_gtalk.c | 12 +
|
||||
channels/chan_iax2.c | 78 ++++++------
|
||||
channels/chan_jingle.c | 14 +-
|
||||
channels/chan_local.c | 22 ++-
|
||||
channels/chan_mgcp.c | 26 ++--
|
||||
channels/chan_oss.c | 2
|
||||
channels/chan_phone.c | 4
|
||||
channels/chan_sip.c | 245 +++++++++++++++++++++++----------------
|
||||
channels/chan_skinny.c | 24 +--
|
||||
channels/chan_unistim.c | 74 +++++------
|
||||
channels/iax2-parser.c | 4
|
||||
channels/sig_analog.c | 30 ++--
|
||||
channels/sig_pri.c | 101 +++++++++++-----
|
||||
channels/sip/config_parser.c | 2
|
||||
channels/sip/include/sip.h | 11 +
|
||||
configs/asterisk.conf.sample | 1
|
||||
configs/res_odbc.conf.sample | 8 -
|
||||
configs/sip.conf.sample | 12 +
|
||||
configure.ac | 2
|
||||
contrib/scripts/refcounter.py | 171 +++++++++++++++++++++++++++
|
||||
formats/format_pcm.c | 8 -
|
||||
funcs/func_enum.c | 2
|
||||
funcs/func_env.c | 6
|
||||
funcs/func_iconv.c | 2
|
||||
funcs/func_srv.c | 6
|
||||
funcs/func_strings.c | 2
|
||||
funcs/func_sysinfo.c | 10 -
|
||||
include/asterisk/astobj.h | 2
|
||||
include/asterisk/astobj2.h | 129 +++++++++++---------
|
||||
include/asterisk/autoconfig.h.in | 9 -
|
||||
include/asterisk/options.h | 6
|
||||
include/asterisk/utils.h | 9 +
|
||||
main/abstract_jb.c | 2
|
||||
main/adsi.c | 2
|
||||
main/aoc.c | 4
|
||||
main/app.c | 4
|
||||
main/asterisk.c | 22 ++-
|
||||
main/astobj2.c | 62 ++++++---
|
||||
main/audiohook.c | 6
|
||||
main/bridging.c | 10 -
|
||||
main/callerid.c | 8 -
|
||||
main/ccss.c | 20 +--
|
||||
main/cel.c | 2
|
||||
main/channel.c | 148 ++++++++++++-----------
|
||||
main/cli.c | 12 -
|
||||
main/config.c | 10 -
|
||||
main/data.c | 13 +-
|
||||
main/devicestate.c | 4
|
||||
main/dsp.c | 2
|
||||
main/enum.c | 4
|
||||
main/event.c | 4
|
||||
main/features.c | 12 -
|
||||
main/file.c | 2
|
||||
main/frame.c | 14 +-
|
||||
main/http.c | 22 +++
|
||||
main/io.c | 4
|
||||
main/loader.c | 4
|
||||
main/logger.c | 15 --
|
||||
main/manager.c | 11 -
|
||||
main/netsock.c | 6
|
||||
main/pbx.c | 2
|
||||
main/rtp_engine.c | 4
|
||||
main/sched.c | 6
|
||||
main/security_events.c | 6
|
||||
main/stdtime/localtime.c | 2
|
||||
main/stun.c | 10 -
|
||||
main/taskprocessor.c | 2
|
||||
main/translate.c | 6
|
||||
main/udptl.c | 8 -
|
||||
main/utils.c | 33 ++++-
|
||||
main/xmldoc.c | 2
|
||||
pbx/dundi-parser.c | 8 -
|
||||
pbx/pbx_config.c | 2
|
||||
pbx/pbx_dundi.c | 8 -
|
||||
res/ael/pval.c | 2
|
||||
res/res_agi.c | 4
|
||||
res/res_calendar.c | 8 -
|
||||
res/res_calendar_caldav.c | 7 -
|
||||
res/res_calendar_ews.c | 2
|
||||
res/res_calendar_exchange.c | 4
|
||||
res/res_calendar_icalendar.c | 2
|
||||
res/res_config_odbc.c | 63 ++++++----
|
||||
res/res_config_pgsql.c | 11 -
|
||||
res/res_crypto.c | 2
|
||||
res/res_fax.c | 56 ++++----
|
||||
res/res_fax_spandsp.c | 16 +-
|
||||
res/res_jabber.c | 28 ++--
|
||||
res/res_monitor.c | 4
|
||||
res/res_musiconhold.c | 70 ++++-------
|
||||
res/res_odbc.c | 2
|
||||
res/res_pktccops.c | 19 +--
|
||||
res/res_rtp_asterisk.c | 46 +++----
|
||||
res/res_srtp.c | 10 -
|
||||
res/res_timing_dahdi.c | 4
|
||||
sounds/Makefile | 6
|
||||
sounds/sounds.xml | 171 +++++++++++++++++++++++++--
|
||||
116 files changed, 1553 insertions(+), 887 deletions(-)
|
||||
</pre><br/>
|
||||
<hr/>
|
||||
</body>
|
||||
</html>
|
||||
@@ -1,407 +0,0 @@
|
||||
Release Summary
|
||||
|
||||
asterisk-1.8.28.0
|
||||
|
||||
Date: 2014-05-29
|
||||
|
||||
<asteriskteam@digium.com>
|
||||
|
||||
----------------------------------------------------------------------
|
||||
|
||||
Table of Contents
|
||||
|
||||
1. Summary
|
||||
2. Contributors
|
||||
3. Closed Issues
|
||||
4. Other Changes
|
||||
5. Diffstat
|
||||
|
||||
----------------------------------------------------------------------
|
||||
|
||||
Summary
|
||||
|
||||
[Back to Top]
|
||||
|
||||
This release includes only bug fixes. The changes included were made only
|
||||
to address problems that have been identified in this release series.
|
||||
Users should be able to safely upgrade to this version if this release
|
||||
series is already in use. Users considering upgrading from a previous
|
||||
release series are strongly encouraged to review the UPGRADE.txt document
|
||||
as well as the CHANGES document for information about upgrading to this
|
||||
release series.
|
||||
|
||||
The data in this summary reflects changes that have been made since the
|
||||
previous release, asterisk-1.8.27.0.
|
||||
|
||||
----------------------------------------------------------------------
|
||||
|
||||
Contributors
|
||||
|
||||
[Back to Top]
|
||||
|
||||
This table lists the people who have submitted code, those that have
|
||||
tested patches, as well as those that reported issues on the issue tracker
|
||||
that were resolved in this release. For coders, the number is how many of
|
||||
their patches (of any size) were committed into this release. For testers,
|
||||
the number is the number of times their name was listed as assisting with
|
||||
testing a patch. Finally, for reporters, the number is the number of
|
||||
issues that they reported that were closed by commits that went into this
|
||||
release.
|
||||
|
||||
Coders Testers Reporters
|
||||
6 rmudgett 2 kristoff
|
||||
5 wdoekes 2 wdoekes
|
||||
4 kmoore 1 dwmw2
|
||||
4 mmichelson 1 gma
|
||||
3 jrose 1 igorg
|
||||
3 mjordan 1 italorossi
|
||||
1 Bradley Watkins 1 marquis
|
||||
1 David Woodhouse 1 mjordan
|
||||
1 file 1 mmichelson
|
||||
1 jcolp 1 one47
|
||||
1 may 1 rolek
|
||||
1 newtonr
|
||||
1 sgriepentrog
|
||||
1 Steve Davies
|
||||
|
||||
----------------------------------------------------------------------
|
||||
|
||||
Closed Issues
|
||||
|
||||
[Back to Top]
|
||||
|
||||
This is a list of all issues from the issue tracker that were closed by
|
||||
changes that went into this release.
|
||||
|
||||
Category: Addons/chan_ooh323
|
||||
|
||||
ASTERISK-23754: [patch] Use var/lib directory for log file configured in
|
||||
asterisk.conf
|
||||
Revision: 414152
|
||||
Reporter: igorg
|
||||
Coders: may
|
||||
|
||||
Category: Applications/app_queue
|
||||
|
||||
ASTERISK-23547: [patch] app_queue removing callers from queue when
|
||||
reloading
|
||||
Revision: 411584
|
||||
Reporter: italorossi
|
||||
Coders: jcolp
|
||||
|
||||
Category: Applications/app_sms
|
||||
|
||||
ASTERISK-18331: app_sms failure
|
||||
Revision: 412655
|
||||
Reporter: dwmw2
|
||||
Coders: David Woodhouse
|
||||
|
||||
Category: Applications/app_stack
|
||||
|
||||
ASTERISK-23620: Code path in app_stack fails to unlock list
|
||||
Revision: 412225
|
||||
Reporter: marquis
|
||||
Coders: Bradley Watkins
|
||||
|
||||
Category: CEL/General
|
||||
|
||||
ASTERISK-22977: chan_sip+CEL: missing ANSWER and PICKUP event for
|
||||
INVITE/w/replaces pickup
|
||||
Revision: 413832
|
||||
Reporter: wdoekes
|
||||
Coders: wdoekes
|
||||
|
||||
Category: Channels/chan_dahdi
|
||||
|
||||
ASTERISK-23709: Regression in Dahdi/Analog/waitfordialtone
|
||||
Revision: 414067
|
||||
Reporter: one47
|
||||
Coders: Steve Davies
|
||||
|
||||
Category: Channels/chan_sip/General
|
||||
|
||||
ASTERISK-19465: P-Asserted-Identity Privacy
|
||||
Revision: 412744
|
||||
Reporter: kristoff
|
||||
Coders: jrose
|
||||
|
||||
ASTERISK-19465: P-Asserted-Identity Privacy
|
||||
Revision: 412821
|
||||
Reporter: kristoff
|
||||
Coders: jrose
|
||||
|
||||
Category: Channels/chan_sip/Transfers
|
||||
|
||||
ASTERISK-22977: chan_sip+CEL: missing ANSWER and PICKUP event for
|
||||
INVITE/w/replaces pickup
|
||||
Revision: 413832
|
||||
Reporter: wdoekes
|
||||
Coders: wdoekes
|
||||
|
||||
Category: Core/Channels
|
||||
|
||||
ASTERISK-22846: testsuite: masquerade super test fails on all branches
|
||||
(still)
|
||||
Revision: 411715
|
||||
Reporter: mjordan
|
||||
Coders: rmudgett
|
||||
|
||||
Category: Core/Configuration
|
||||
|
||||
ASTERISK-23546: CB_ADD_LEN does not do what you'd think
|
||||
Revision: 411960
|
||||
Reporter: wdoekes
|
||||
Coders: rmudgett
|
||||
|
||||
Category: Core/General
|
||||
|
||||
ASTERISK-23546: CB_ADD_LEN does not do what you'd think
|
||||
Revision: 411960
|
||||
Reporter: wdoekes
|
||||
Coders: rmudgett
|
||||
|
||||
Category: Core/RTP
|
||||
|
||||
ASTERISK-23665: Wrong mime type for codec H263-1998 (h263+)
|
||||
Revision: 413787
|
||||
Reporter: gma
|
||||
Coders: wdoekes
|
||||
|
||||
Category: Functions/func_strings
|
||||
|
||||
ASTERISK-23650: Intermittent segfault in string functions
|
||||
Revision: 414214
|
||||
Reporter: rolek
|
||||
Coders: sgriepentrog
|
||||
|
||||
Category: Resources/res_config_pgsql
|
||||
|
||||
ASTERISK-23707: Realtime Contacts: Apparent mismatch between PGSQL
|
||||
database state and Asterisk state
|
||||
Revision: 413224
|
||||
Reporter: mmichelson
|
||||
Coders: mmichelson
|
||||
|
||||
Category: Tests/testsuite
|
||||
|
||||
ASTERISK-22846: testsuite: masquerade super test fails on all branches
|
||||
(still)
|
||||
Revision: 411715
|
||||
Reporter: mjordan
|
||||
Coders: rmudgett
|
||||
|
||||
----------------------------------------------------------------------
|
||||
|
||||
Commits Not Associated with an Issue
|
||||
|
||||
[Back to Top]
|
||||
|
||||
This is a list of all changes that went into this release that did not
|
||||
directly close an issue from the issue tracker. The commits may have been
|
||||
marked as being related to an issue. If that is the case, the issue
|
||||
numbers are listed here, as well.
|
||||
|
||||
+------------------------------------------------------------------------+
|
||||
| Revision | Author | Summary | Issues |
|
||||
| | | | Referenced |
|
||||
|----------+------------+-------------------------------+----------------|
|
||||
| | | configs: Clean up long line | |
|
||||
| 411807 | wdoekes | and typo in | |
|
||||
| | | res_odbc.conf.sample. | |
|
||||
|----------+------------+-------------------------------+----------------|
|
||||
| | | Internal timing: Add notice | |
|
||||
| 411964 | rmudgett | that the -I and | |
|
||||
| | | internal_timing option are no | |
|
||||
| | | longer needed. | |
|
||||
|----------+------------+-------------------------------+----------------|
|
||||
| | | main/astobj2: Make REF_DEBUG | |
|
||||
| 412114 | mjordan | a menuselect item; improve | |
|
||||
| | | REF_DEBUG output | |
|
||||
|----------+------------+-------------------------------+----------------|
|
||||
| | | channels/chan_oss: Fix | |
|
||||
| 412480 | mjordan | compilation problem on | ASTERISK-23576 |
|
||||
| | | SmartOS/Illumos/SunOS | |
|
||||
|----------+------------+-------------------------------+----------------|
|
||||
| | | sounds: Fix Sounds Makefile | |
|
||||
| 412585 | newtonr | and XML that didn't support | |
|
||||
| | | new sound prompt sets | |
|
||||
|----------+------------+-------------------------------+----------------|
|
||||
| 412745 | kmoore | HTTP: Add TCP_NODELAY to | |
|
||||
| | | accepted connections | |
|
||||
|----------+------------+-------------------------------+----------------|
|
||||
| 412764 | jrose | Typo in CHANGES | |
|
||||
|----------+------------+-------------------------------+----------------|
|
||||
| | | http: Fix spurious ERROR | |
|
||||
| 412922 | rmudgett | message in responses with no | |
|
||||
| | | content. | |
|
||||
|----------+------------+-------------------------------+----------------|
|
||||
| | | Prevent crashes in | |
|
||||
| 413241 | mmichelson | res_config_odbc due to | |
|
||||
| | | uninitialized string fields. | |
|
||||
|----------+------------+-------------------------------+----------------|
|
||||
| | | Ensure that all parts of SQL | |
|
||||
| 413304 | mmichelson | UPDATEs and DELETEs are | |
|
||||
| | | encoded. | |
|
||||
|----------+------------+-------------------------------+----------------|
|
||||
| 413396 | mmichelson | Fix encoding of custom | |
|
||||
| | | prepare extra data. | |
|
||||
|----------+------------+-------------------------------+----------------|
|
||||
| | | app_queue: Extend | |
|
||||
| 413485 | file | documentation for various | |
|
||||
| | | Manager actions and events. | |
|
||||
|----------+------------+-------------------------------+----------------|
|
||||
| 413586 | kmoore | Allow Asterisk to compile | |
|
||||
| | | under GCC 4.10 | |
|
||||
|----------+------------+-------------------------------+----------------|
|
||||
| 413591 | kmoore | Fix 32bit build for chan_sip | |
|
||||
|----------+------------+-------------------------------+----------------|
|
||||
| 413592 | kmoore | Fix 32bit build for func_env | |
|
||||
|----------+------------+-------------------------------+----------------|
|
||||
| 413894 | wdoekes | res_musiconhold: Minor | |
|
||||
| | | cleanup. | |
|
||||
|----------+------------+-------------------------------+----------------|
|
||||
| | | chan_local+app_dial: | |
|
||||
| 413949 | wdoekes | Propagagate call answered | |
|
||||
| | | elsewhere over local | |
|
||||
| | | channels. | |
|
||||
|----------+------------+-------------------------------+----------------|
|
||||
| | | app_meetme: Fix overwrite of | |
|
||||
| 413991 | rmudgett | DAHDI conference data | |
|
||||
| | | structure. | |
|
||||
|----------+------------+-------------------------------+----------------|
|
||||
| | | chan_local: Only block media | |
|
||||
| 414269 | rmudgett | frames when a generator is on | |
|
||||
| | | both ends of a local channel. | |
|
||||
|----------+------------+-------------------------------+----------------|
|
||||
| 414345 | mjordan | UPGRADE: Add note for | |
|
||||
| | | REF_DEBUG flag | |
|
||||
+------------------------------------------------------------------------+
|
||||
|
||||
----------------------------------------------------------------------
|
||||
|
||||
Diffstat Results
|
||||
|
||||
[Back to Top]
|
||||
|
||||
This is a summary of the changes to the source code that went into this
|
||||
release that was generated using the diffstat utility.
|
||||
|
||||
CHANGES | 23 +++
|
||||
UPGRADE.txt | 15 ++
|
||||
addons/chan_ooh323.c | 5
|
||||
apps/app_adsiprog.c | 2
|
||||
apps/app_dial.c | 8 -
|
||||
apps/app_dumpchan.c | 6
|
||||
apps/app_festival.c | 2
|
||||
apps/app_getcpeid.c | 8 -
|
||||
apps/app_meetme.c | 40 ++++--
|
||||
apps/app_minivm.c | 4
|
||||
apps/app_queue.c | 96 +++++++++++----
|
||||
apps/app_sms.c | 46 ++++---
|
||||
apps/app_stack.c | 3
|
||||
apps/app_voicemail.c | 8 -
|
||||
build_tools/cflags.xml | 3
|
||||
cdr/cdr_adaptive_odbc.c | 4
|
||||
cel/cel_odbc.c | 6
|
||||
cel/cel_pgsql.c | 4
|
||||
channels/chan_alsa.c | 6
|
||||
channels/chan_dahdi.c | 52 ++++----
|
||||
channels/chan_gtalk.c | 12 +
|
||||
channels/chan_iax2.c | 78 ++++++------
|
||||
channels/chan_jingle.c | 14 +-
|
||||
channels/chan_local.c | 22 ++-
|
||||
channels/chan_mgcp.c | 26 ++--
|
||||
channels/chan_oss.c | 2
|
||||
channels/chan_phone.c | 4
|
||||
channels/chan_sip.c | 245 +++++++++++++++++++++++----------------
|
||||
channels/chan_skinny.c | 24 +--
|
||||
channels/chan_unistim.c | 74 +++++------
|
||||
channels/iax2-parser.c | 4
|
||||
channels/sig_analog.c | 30 ++--
|
||||
channels/sig_pri.c | 101 +++++++++++-----
|
||||
channels/sip/config_parser.c | 2
|
||||
channels/sip/include/sip.h | 11 +
|
||||
configs/asterisk.conf.sample | 1
|
||||
configs/res_odbc.conf.sample | 8 -
|
||||
configs/sip.conf.sample | 12 +
|
||||
configure.ac | 2
|
||||
contrib/scripts/refcounter.py | 171 +++++++++++++++++++++++++++
|
||||
formats/format_pcm.c | 8 -
|
||||
funcs/func_enum.c | 2
|
||||
funcs/func_env.c | 6
|
||||
funcs/func_iconv.c | 2
|
||||
funcs/func_srv.c | 6
|
||||
funcs/func_strings.c | 2
|
||||
funcs/func_sysinfo.c | 10 -
|
||||
include/asterisk/astobj.h | 2
|
||||
include/asterisk/astobj2.h | 129 +++++++++++---------
|
||||
include/asterisk/autoconfig.h.in | 9 -
|
||||
include/asterisk/options.h | 6
|
||||
include/asterisk/utils.h | 9 +
|
||||
main/abstract_jb.c | 2
|
||||
main/adsi.c | 2
|
||||
main/aoc.c | 4
|
||||
main/app.c | 4
|
||||
main/asterisk.c | 22 ++-
|
||||
main/astobj2.c | 62 ++++++---
|
||||
main/audiohook.c | 6
|
||||
main/bridging.c | 10 -
|
||||
main/callerid.c | 8 -
|
||||
main/ccss.c | 20 +--
|
||||
main/cel.c | 2
|
||||
main/channel.c | 148 ++++++++++++-----------
|
||||
main/cli.c | 12 -
|
||||
main/config.c | 10 -
|
||||
main/data.c | 13 +-
|
||||
main/devicestate.c | 4
|
||||
main/dsp.c | 2
|
||||
main/enum.c | 4
|
||||
main/event.c | 4
|
||||
main/features.c | 12 -
|
||||
main/file.c | 2
|
||||
main/frame.c | 14 +-
|
||||
main/http.c | 22 +++
|
||||
main/io.c | 4
|
||||
main/loader.c | 4
|
||||
main/logger.c | 15 --
|
||||
main/manager.c | 11 -
|
||||
main/netsock.c | 6
|
||||
main/pbx.c | 2
|
||||
main/rtp_engine.c | 4
|
||||
main/sched.c | 6
|
||||
main/security_events.c | 6
|
||||
main/stdtime/localtime.c | 2
|
||||
main/stun.c | 10 -
|
||||
main/taskprocessor.c | 2
|
||||
main/translate.c | 6
|
||||
main/udptl.c | 8 -
|
||||
main/utils.c | 33 ++++-
|
||||
main/xmldoc.c | 2
|
||||
pbx/dundi-parser.c | 8 -
|
||||
pbx/pbx_config.c | 2
|
||||
pbx/pbx_dundi.c | 8 -
|
||||
res/ael/pval.c | 2
|
||||
res/res_agi.c | 4
|
||||
res/res_calendar.c | 8 -
|
||||
res/res_calendar_caldav.c | 7 -
|
||||
res/res_calendar_ews.c | 2
|
||||
res/res_calendar_exchange.c | 4
|
||||
res/res_calendar_icalendar.c | 2
|
||||
res/res_config_odbc.c | 63 ++++++----
|
||||
res/res_config_pgsql.c | 11 -
|
||||
res/res_crypto.c | 2
|
||||
res/res_fax.c | 56 ++++----
|
||||
res/res_fax_spandsp.c | 16 +-
|
||||
res/res_jabber.c | 28 ++--
|
||||
res/res_monitor.c | 4
|
||||
res/res_musiconhold.c | 70 ++++-------
|
||||
res/res_odbc.c | 2
|
||||
res/res_pktccops.c | 19 +--
|
||||
res/res_rtp_asterisk.c | 46 +++----
|
||||
res/res_srtp.c | 10 -
|
||||
res/res_timing_dahdi.c | 4
|
||||
sounds/Makefile | 6
|
||||
sounds/sounds.xml | 171 +++++++++++++++++++++++++--
|
||||
116 files changed, 1553 insertions(+), 887 deletions(-)
|
||||
|
||||
----------------------------------------------------------------------
|
||||
@@ -1,215 +0,0 @@
|
||||
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
|
||||
<html xmlns="http://www.w3.org/1999/xhtml">
|
||||
<head><meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" /><title>Release Summary - certified-asterisk-1.8.28-cert1</title></head>
|
||||
<body>
|
||||
<h1 align="center"><a name="top">Release Summary</a></h1>
|
||||
<h3 align="center">certified-asterisk-1.8.28-cert1</h3>
|
||||
<h3 align="center">Date: 2014-09-05</h3>
|
||||
<h3 align="center"><asteriskteam@digium.com></h3>
|
||||
<hr/>
|
||||
<h2 align="center">Table of Contents</h2>
|
||||
<ol>
|
||||
<li><a href="#summary">Summary</a></li>
|
||||
<li><a href="#contributors">Contributors</a></li>
|
||||
<li><a href="#issues">Closed Issues</a></li>
|
||||
<li><a href="#commits">Other Changes</a></li>
|
||||
<li><a href="#diffstat">Diffstat</a></li>
|
||||
</ol>
|
||||
<hr/>
|
||||
<a name="summary"><h2 align="center">Summary</h2></a>
|
||||
<center><a href="#top">[Back to Top]</a></center><br/><p>This release includes new features. For a list of new features that have been included with this release, please see the CHANGES file inside the source package. Since this is new major release, users are encouraged to do extended testing before upgrading to this version in a production environment.</p>
|
||||
<p>The data in this summary reflects changes that have been made since the previous release, certified-asterisk-1.8.28.0.</p>
|
||||
<hr/>
|
||||
<a name="contributors"><h2 align="center">Contributors</h2></a>
|
||||
<center><a href="#top">[Back to Top]</a></center><br/><p>This table lists the people who have submitted code, those that have tested patches, as well as those that reported issues on the issue tracker that were resolved in this release. For coders, the number is how many of their patches (of any size) were committed into this release. For testers, the number is the number of times their name was listed as assisting with testing a patch. Finally, for reporters, the number is the number of issues that they reported that were closed by commits that went into this release.</p>
|
||||
<table width="100%" border="0">
|
||||
<tr>
|
||||
<td width="33%"><h3>Coders</h3></td>
|
||||
<td width="33%"><h3>Testers</h3></td>
|
||||
<td width="33%"><h3>Reporters</h3></td>
|
||||
</tr>
|
||||
<tr valign="top">
|
||||
<td>
|
||||
3 kmoore<br/>
|
||||
2 mjordan<br/>
|
||||
2 rmudgett<br/>
|
||||
2 sgriepentrog<br/>
|
||||
1 Elazar Broad<br/>
|
||||
</td>
|
||||
<td>
|
||||
</td>
|
||||
<td>
|
||||
2 rmudgett<br/>
|
||||
1 stephane.chazelas<br/>
|
||||
</td>
|
||||
</tr>
|
||||
</table>
|
||||
<hr/>
|
||||
<a name="issues"><h2 align="center">Closed Issues</h2></a>
|
||||
<center><a href="#top">[Back to Top]</a></center><br/><p>This is a list of all issues from the issue tracker that were closed by changes that went into this release.</p>
|
||||
<h3>Category: Channels/chan_sip/TCP-TLS</h3><br/>
|
||||
<a href="https://issues.asterisk.org/jira/browse/ASTERISK-18345">ASTERISK-18345</a>: [patch] sips connection dropped by asterisk with a large INVITE<br/>
|
||||
Revision: <a href="http://svn.digium.com/view/asterisk/certified/branches/1.8.28?view=revision&revision=420560">420560</a><br/>
|
||||
Reporter: stephane.chazelas<br/>
|
||||
Coders: Elazar Broad<br/>
|
||||
<br/>
|
||||
<h3>Category: Core/HTTP</h3><br/>
|
||||
<a href="https://issues.asterisk.org/jira/browse/ASTERISK-23673">ASTERISK-23673</a>: Security: DOS by consuming the number of allowed HTTP connections.<br/>
|
||||
Revision: <a href="http://svn.digium.com/view/asterisk/certified/branches/1.8.28?view=revision&revision=415975">415975</a><br/>
|
||||
Reporter: rmudgett<br/>
|
||||
Coders: rmudgett<br/>
|
||||
<br/>
|
||||
<a href="https://issues.asterisk.org/jira/browse/ASTERISK-23673">ASTERISK-23673</a>: Security: DOS by consuming the number of allowed HTTP connections.<br/>
|
||||
Revision: <a href="http://svn.digium.com/view/asterisk/certified/branches/1.8.28?view=revision&revision=416095">416095</a><br/>
|
||||
Reporter: rmudgett<br/>
|
||||
Coders: rmudgett<br/>
|
||||
<br/>
|
||||
<hr/>
|
||||
<a name="commits"><h2 align="center">Commits Not Associated with an Issue</h2></a>
|
||||
<center><a href="#top">[Back to Top]</a></center><br/><p>This is a list of all changes that went into this release that did not directly close an issue from the issue tracker. The commits may have been marked as being related to an issue. If that is the case, the issue numbers are listed here, as well.</p>
|
||||
<table width="100%" border="1">
|
||||
<tr><td><b>Revision</b></td><td><b>Author</b></td><td><b>Summary</b></td><td><b>Issues Referenced</b></td></tr><tr><td><a href="http://svn.digium.com/view/asterisk/certified/branches/1.8.28?view=revision&revision=415246">415246</a></td><td>mjordan</td><td>Create branch for Certified Asterisk 1.8.28</td>
|
||||
<td></td></tr><tr><td><a href="http://svn.digium.com/view/asterisk/certified/branches/1.8.28?view=revision&revision=415290">415290</a></td><td>mjordan</td><td>Merge changes for Digium phone support, and default module building.</td>
|
||||
<td></td></tr><tr><td><a href="http://svn.digium.com/view/asterisk/certified/branches/1.8.28?view=revision&revision=421032">421032</a></td><td>sgriepentrog</td><td>app_voicemail: use a consistent generator string</td>
|
||||
<td></td></tr><tr><td><a href="http://svn.digium.com/view/asterisk/certified/branches/1.8.28?view=revision&revision=421033">421033</a></td><td>sgriepentrog</td><td>config: inform config hook of change when writing file</td>
|
||||
<td></td></tr><tr><td><a href="http://svn.digium.com/view/asterisk/certified/branches/1.8.28?view=revision&revision=421208">421208</a></td><td>kmoore</td><td>Fix build in dev/TEST_FRAMEWORK mode</td>
|
||||
<td></td></tr><tr><td><a href="http://svn.digium.com/view/asterisk/certified/branches/1.8.28?view=revision&revision=422582">422582</a></td><td>kmoore</td><td>Set chan_vpb to be disabled by default</td>
|
||||
<td></td></tr><tr><td><a href="http://svn.digium.com/view/asterisk/certified/branches/1.8.28?view=revision&revision=422662">422662</a></td><td>kmoore</td><td>Add missing support level to func_presence_state</td>
|
||||
<td></td></tr></table>
|
||||
<hr/>
|
||||
<a name="diffstat"><h2 align="center">Diffstat Results</h2></a>
|
||||
<center><a href="#top">[Back to Top]</a></center><br/><p>This is a summary of the changes to the source code that went into this release that was generated using the diffstat utility.</p>
|
||||
<pre>
|
||||
.version | 2
|
||||
ChangeLog | 4
|
||||
UPGRADE.txt | 7
|
||||
apps/app_adsiprog.c | 1
|
||||
apps/app_alarmreceiver.c | 1
|
||||
apps/app_amd.c | 1
|
||||
apps/app_chanisavail.c | 1
|
||||
apps/app_confbridge.c | 1
|
||||
apps/app_dahdibarge.c | 1
|
||||
apps/app_dahdiras.c | 1
|
||||
apps/app_dictate.c | 1
|
||||
apps/app_externalivr.c | 1
|
||||
apps/app_festival.c | 1
|
||||
apps/app_getcpeid.c | 1
|
||||
apps/app_ices.c | 1
|
||||
apps/app_image.c | 1
|
||||
apps/app_jack.c | 1
|
||||
apps/app_meetme.c | 8
|
||||
apps/app_minivm.c | 1
|
||||
apps/app_mixmonitor.c | 359 ++++++++
|
||||
apps/app_morsecode.c | 1
|
||||
apps/app_mp3.c | 1
|
||||
apps/app_nbscat.c | 1
|
||||
apps/app_osplookup.c | 1
|
||||
apps/app_queue.c | 8
|
||||
apps/app_readfile.c | 1
|
||||
apps/app_setcallerid.c | 1
|
||||
apps/app_sms.c | 1
|
||||
apps/app_stack.c | 505 +++++++++--
|
||||
apps/app_talkdetect.c | 1
|
||||
apps/app_test.c | 1
|
||||
apps/app_url.c | 1
|
||||
apps/app_voicemail.c | 1415 ++++++++++++++++++++++++++++++--
|
||||
apps/app_waitforring.c | 1
|
||||
apps/app_waitforsilence.c | 1
|
||||
apps/app_zapateller.c | 1
|
||||
asterisk-1.8.28.0-rc1-summary.html | 233 -----
|
||||
asterisk-1.8.28.0-rc1-summary.txt | 359 --------
|
||||
asterisk-1.8.28.0-summary.html | 312 +++++++
|
||||
asterisk-1.8.28.0-summary.txt | 407 +++++++++
|
||||
cdr/cdr_csv.c | 1
|
||||
cdr/cdr_odbc.c | 1
|
||||
cdr/cdr_pgsql.c | 1
|
||||
cdr/cdr_radius.c | 1
|
||||
cdr/cdr_sqlite.c | 1
|
||||
cdr/cdr_sqlite3_custom.c | 1
|
||||
cdr/cdr_tds.c | 1
|
||||
cel/cel_pgsql.c | 1
|
||||
cel/cel_radius.c | 1
|
||||
cel/cel_sqlite3_custom.c | 1
|
||||
cel/cel_tds.c | 1
|
||||
channels/chan_alsa.c | 1
|
||||
channels/chan_console.c | 1
|
||||
channels/chan_gtalk.c | 1
|
||||
channels/chan_h323.c | 2
|
||||
channels/chan_iax2.c | 2
|
||||
channels/chan_jingle.c | 1
|
||||
channels/chan_mgcp.c | 1
|
||||
channels/chan_misdn.c | 1
|
||||
channels/chan_nbs.c | 1
|
||||
channels/chan_oss.c | 1
|
||||
channels/chan_phone.c | 1
|
||||
channels/chan_sip.c | 860 ++++++++++++++-----
|
||||
channels/chan_skinny.c | 11
|
||||
channels/chan_unistim.c | 1
|
||||
channels/chan_vpb.cc | 1
|
||||
channels/sip/include/sip.h | 11
|
||||
channels/sip/reqresp_parser.c | 4
|
||||
configs/http.conf.sample | 6
|
||||
configs/jabber.conf.sample | 3
|
||||
configs/manager.conf.sample | 4
|
||||
configs/sip.conf.sample | 15
|
||||
formats/format_jpeg.c | 1
|
||||
formats/format_vox.c | 1
|
||||
funcs/func_frame_trace.c | 4
|
||||
funcs/func_pitchshift.c | 1
|
||||
funcs/func_presence_state.c | 599 +++++++++++++
|
||||
include/asterisk/_private.h | 1
|
||||
include/asterisk/app.h | 431 +++++++++
|
||||
include/asterisk/callerid.h | 1
|
||||
include/asterisk/channel.h | 10
|
||||
include/asterisk/config.h | 59 +
|
||||
include/asterisk/custom_control_frame.h | 79 +
|
||||
include/asterisk/event_defs.h | 14
|
||||
include/asterisk/file.h | 38
|
||||
include/asterisk/frame.h | 1
|
||||
include/asterisk/jabber.h | 2
|
||||
include/asterisk/manager.h | 1
|
||||
include/asterisk/message.h | 272 ++++++
|
||||
include/asterisk/pbx.h | 34
|
||||
include/asterisk/presencestate.h | 95 ++
|
||||
include/asterisk/tcptls.h | 61 +
|
||||
include/asterisk/utils.h | 1
|
||||
main/app.c | 402 ++++++++-
|
||||
main/asterisk.c | 11
|
||||
main/callerid.c | 1
|
||||
main/channel.c | 7
|
||||
main/config.c | 128 ++
|
||||
main/custom_control_frame.c | 190 ++++
|
||||
main/event.c | 22
|
||||
main/features.c | 61 +
|
||||
main/file.c | 46 -
|
||||
main/http.c | 37
|
||||
main/manager.c | 91 +-
|
||||
main/message.c | 1307 +++++++++++++++++++++++++++++
|
||||
main/pbx.c | 394 ++++++++
|
||||
main/presencestate.c | 285 ++++++
|
||||
main/tcptls.c | 548 ++++++++++--
|
||||
main/test.c | 20
|
||||
main/utils.c | 19
|
||||
pbx/pbx_ael.c | 1
|
||||
pbx/pbx_dundi.c | 1
|
||||
pbx/pbx_lua.c | 1
|
||||
pbx/pbx_realtime.c | 1
|
||||
res/res_ael_share.c | 1
|
||||
res/res_ais.c | 1
|
||||
res/res_config_ldap.c | 1
|
||||
res/res_config_pgsql.c | 1
|
||||
res/res_config_sqlite.c | 1
|
||||
res/res_fax_spandsp.c | 1
|
||||
res/res_jabber.c | 83 +
|
||||
res/res_phoneprov.c | 1
|
||||
res/res_snmp.c | 1
|
||||
res/res_timing_kqueue.c | 1
|
||||
res/res_timing_pthread.c | 1
|
||||
tests/test_config.c | 343 +++++++
|
||||
tests/test_custom_control.c | 235 +++++
|
||||
tests/test_voicemail_api.c | 1400 +++++++++++++++++++++++++++++++
|
||||
128 files changed, 10768 insertions(+), 1169 deletions(-)
|
||||
</pre><br/>
|
||||
<hr/>
|
||||
</body>
|
||||
</html>
|
||||
@@ -1,264 +0,0 @@
|
||||
Release Summary
|
||||
|
||||
certified-asterisk-1.8.28-cert1
|
||||
|
||||
Date: 2014-09-05
|
||||
|
||||
<asteriskteam@digium.com>
|
||||
|
||||
----------------------------------------------------------------------
|
||||
|
||||
Table of Contents
|
||||
|
||||
1. Summary
|
||||
2. Contributors
|
||||
3. Closed Issues
|
||||
4. Other Changes
|
||||
5. Diffstat
|
||||
|
||||
----------------------------------------------------------------------
|
||||
|
||||
Summary
|
||||
|
||||
[Back to Top]
|
||||
|
||||
This release includes new features. For a list of new features that have
|
||||
been included with this release, please see the CHANGES file inside the
|
||||
source package. Since this is new major release, users are encouraged to
|
||||
do extended testing before upgrading to this version in a production
|
||||
environment.
|
||||
|
||||
The data in this summary reflects changes that have been made since the
|
||||
previous release, certified-asterisk-1.8.28.0.
|
||||
|
||||
----------------------------------------------------------------------
|
||||
|
||||
Contributors
|
||||
|
||||
[Back to Top]
|
||||
|
||||
This table lists the people who have submitted code, those that have
|
||||
tested patches, as well as those that reported issues on the issue tracker
|
||||
that were resolved in this release. For coders, the number is how many of
|
||||
their patches (of any size) were committed into this release. For testers,
|
||||
the number is the number of times their name was listed as assisting with
|
||||
testing a patch. Finally, for reporters, the number is the number of
|
||||
issues that they reported that were closed by commits that went into this
|
||||
release.
|
||||
|
||||
Coders Testers Reporters
|
||||
3 kmoore 2 rmudgett
|
||||
2 mjordan 1 stephane.chazelas
|
||||
2 rmudgett
|
||||
2 sgriepentrog
|
||||
1 Elazar Broad
|
||||
|
||||
----------------------------------------------------------------------
|
||||
|
||||
Closed Issues
|
||||
|
||||
[Back to Top]
|
||||
|
||||
This is a list of all issues from the issue tracker that were closed by
|
||||
changes that went into this release.
|
||||
|
||||
Category: Channels/chan_sip/TCP-TLS
|
||||
|
||||
ASTERISK-18345: [patch] sips connection dropped by asterisk with a large
|
||||
INVITE
|
||||
Revision: 420560
|
||||
Reporter: stephane.chazelas
|
||||
Coders: Elazar Broad
|
||||
|
||||
Category: Core/HTTP
|
||||
|
||||
ASTERISK-23673: Security: DOS by consuming the number of allowed HTTP
|
||||
connections.
|
||||
Revision: 415975
|
||||
Reporter: rmudgett
|
||||
Coders: rmudgett
|
||||
|
||||
ASTERISK-23673: Security: DOS by consuming the number of allowed HTTP
|
||||
connections.
|
||||
Revision: 416095
|
||||
Reporter: rmudgett
|
||||
Coders: rmudgett
|
||||
|
||||
----------------------------------------------------------------------
|
||||
|
||||
Commits Not Associated with an Issue
|
||||
|
||||
[Back to Top]
|
||||
|
||||
This is a list of all changes that went into this release that did not
|
||||
directly close an issue from the issue tracker. The commits may have been
|
||||
marked as being related to an issue. If that is the case, the issue
|
||||
numbers are listed here, as well.
|
||||
|
||||
+------------------------------------------------------------------------+
|
||||
| Revision | Author | Summary | Issues |
|
||||
| | | | Referenced |
|
||||
|----------+--------------+---------------------------------+------------|
|
||||
| 415246 | mjordan | Create branch for Certified | |
|
||||
| | | Asterisk 1.8.28 | |
|
||||
|----------+--------------+---------------------------------+------------|
|
||||
| | | Merge changes for Digium phone | |
|
||||
| 415290 | mjordan | support, and default module | |
|
||||
| | | building. | |
|
||||
|----------+--------------+---------------------------------+------------|
|
||||
| 421032 | sgriepentrog | app_voicemail: use a consistent | |
|
||||
| | | generator string | |
|
||||
|----------+--------------+---------------------------------+------------|
|
||||
| 421033 | sgriepentrog | config: inform config hook of | |
|
||||
| | | change when writing file | |
|
||||
|----------+--------------+---------------------------------+------------|
|
||||
| 421208 | kmoore | Fix build in dev/TEST_FRAMEWORK | |
|
||||
| | | mode | |
|
||||
|----------+--------------+---------------------------------+------------|
|
||||
| 422582 | kmoore | Set chan_vpb to be disabled by | |
|
||||
| | | default | |
|
||||
|----------+--------------+---------------------------------+------------|
|
||||
| 422662 | kmoore | Add missing support level to | |
|
||||
| | | func_presence_state | |
|
||||
+------------------------------------------------------------------------+
|
||||
|
||||
----------------------------------------------------------------------
|
||||
|
||||
Diffstat Results
|
||||
|
||||
[Back to Top]
|
||||
|
||||
This is a summary of the changes to the source code that went into this
|
||||
release that was generated using the diffstat utility.
|
||||
|
||||
.version | 2
|
||||
ChangeLog | 4
|
||||
UPGRADE.txt | 7
|
||||
apps/app_adsiprog.c | 1
|
||||
apps/app_alarmreceiver.c | 1
|
||||
apps/app_amd.c | 1
|
||||
apps/app_chanisavail.c | 1
|
||||
apps/app_confbridge.c | 1
|
||||
apps/app_dahdibarge.c | 1
|
||||
apps/app_dahdiras.c | 1
|
||||
apps/app_dictate.c | 1
|
||||
apps/app_externalivr.c | 1
|
||||
apps/app_festival.c | 1
|
||||
apps/app_getcpeid.c | 1
|
||||
apps/app_ices.c | 1
|
||||
apps/app_image.c | 1
|
||||
apps/app_jack.c | 1
|
||||
apps/app_meetme.c | 8
|
||||
apps/app_minivm.c | 1
|
||||
apps/app_mixmonitor.c | 359 ++++++++
|
||||
apps/app_morsecode.c | 1
|
||||
apps/app_mp3.c | 1
|
||||
apps/app_nbscat.c | 1
|
||||
apps/app_osplookup.c | 1
|
||||
apps/app_queue.c | 8
|
||||
apps/app_readfile.c | 1
|
||||
apps/app_setcallerid.c | 1
|
||||
apps/app_sms.c | 1
|
||||
apps/app_stack.c | 505 +++++++++--
|
||||
apps/app_talkdetect.c | 1
|
||||
apps/app_test.c | 1
|
||||
apps/app_url.c | 1
|
||||
apps/app_voicemail.c | 1415 ++++++++++++++++++++++++++++++--
|
||||
apps/app_waitforring.c | 1
|
||||
apps/app_waitforsilence.c | 1
|
||||
apps/app_zapateller.c | 1
|
||||
asterisk-1.8.28.0-rc1-summary.html | 233 -----
|
||||
asterisk-1.8.28.0-rc1-summary.txt | 359 --------
|
||||
asterisk-1.8.28.0-summary.html | 312 +++++++
|
||||
asterisk-1.8.28.0-summary.txt | 407 +++++++++
|
||||
cdr/cdr_csv.c | 1
|
||||
cdr/cdr_odbc.c | 1
|
||||
cdr/cdr_pgsql.c | 1
|
||||
cdr/cdr_radius.c | 1
|
||||
cdr/cdr_sqlite.c | 1
|
||||
cdr/cdr_sqlite3_custom.c | 1
|
||||
cdr/cdr_tds.c | 1
|
||||
cel/cel_pgsql.c | 1
|
||||
cel/cel_radius.c | 1
|
||||
cel/cel_sqlite3_custom.c | 1
|
||||
cel/cel_tds.c | 1
|
||||
channels/chan_alsa.c | 1
|
||||
channels/chan_console.c | 1
|
||||
channels/chan_gtalk.c | 1
|
||||
channels/chan_h323.c | 2
|
||||
channels/chan_iax2.c | 2
|
||||
channels/chan_jingle.c | 1
|
||||
channels/chan_mgcp.c | 1
|
||||
channels/chan_misdn.c | 1
|
||||
channels/chan_nbs.c | 1
|
||||
channels/chan_oss.c | 1
|
||||
channels/chan_phone.c | 1
|
||||
channels/chan_sip.c | 860 ++++++++++++++-----
|
||||
channels/chan_skinny.c | 11
|
||||
channels/chan_unistim.c | 1
|
||||
channels/chan_vpb.cc | 1
|
||||
channels/sip/include/sip.h | 11
|
||||
channels/sip/reqresp_parser.c | 4
|
||||
configs/http.conf.sample | 6
|
||||
configs/jabber.conf.sample | 3
|
||||
configs/manager.conf.sample | 4
|
||||
configs/sip.conf.sample | 15
|
||||
formats/format_jpeg.c | 1
|
||||
formats/format_vox.c | 1
|
||||
funcs/func_frame_trace.c | 4
|
||||
funcs/func_pitchshift.c | 1
|
||||
funcs/func_presence_state.c | 599 +++++++++++++
|
||||
include/asterisk/_private.h | 1
|
||||
include/asterisk/app.h | 431 +++++++++
|
||||
include/asterisk/callerid.h | 1
|
||||
include/asterisk/channel.h | 10
|
||||
include/asterisk/config.h | 59 +
|
||||
include/asterisk/custom_control_frame.h | 79 +
|
||||
include/asterisk/event_defs.h | 14
|
||||
include/asterisk/file.h | 38
|
||||
include/asterisk/frame.h | 1
|
||||
include/asterisk/jabber.h | 2
|
||||
include/asterisk/manager.h | 1
|
||||
include/asterisk/message.h | 272 ++++++
|
||||
include/asterisk/pbx.h | 34
|
||||
include/asterisk/presencestate.h | 95 ++
|
||||
include/asterisk/tcptls.h | 61 +
|
||||
include/asterisk/utils.h | 1
|
||||
main/app.c | 402 ++++++++-
|
||||
main/asterisk.c | 11
|
||||
main/callerid.c | 1
|
||||
main/channel.c | 7
|
||||
main/config.c | 128 ++
|
||||
main/custom_control_frame.c | 190 ++++
|
||||
main/event.c | 22
|
||||
main/features.c | 61 +
|
||||
main/file.c | 46 -
|
||||
main/http.c | 37
|
||||
main/manager.c | 91 +-
|
||||
main/message.c | 1307 +++++++++++++++++++++++++++++
|
||||
main/pbx.c | 394 ++++++++
|
||||
main/presencestate.c | 285 ++++++
|
||||
main/tcptls.c | 548 ++++++++++--
|
||||
main/test.c | 20
|
||||
main/utils.c | 19
|
||||
pbx/pbx_ael.c | 1
|
||||
pbx/pbx_dundi.c | 1
|
||||
pbx/pbx_lua.c | 1
|
||||
pbx/pbx_realtime.c | 1
|
||||
res/res_ael_share.c | 1
|
||||
res/res_ais.c | 1
|
||||
res/res_config_ldap.c | 1
|
||||
res/res_config_pgsql.c | 1
|
||||
res/res_config_sqlite.c | 1
|
||||
res/res_fax_spandsp.c | 1
|
||||
res/res_jabber.c | 83 +
|
||||
res/res_phoneprov.c | 1
|
||||
res/res_snmp.c | 1
|
||||
res/res_timing_kqueue.c | 1
|
||||
res/res_timing_pthread.c | 1
|
||||
tests/test_config.c | 343 +++++++
|
||||
tests/test_custom_control.c | 235 +++++
|
||||
tests/test_voicemail_api.c | 1400 +++++++++++++++++++++++++++++++
|
||||
128 files changed, 10768 insertions(+), 1169 deletions(-)
|
||||
|
||||
----------------------------------------------------------------------
|
||||
62
certified-asterisk-1.8.28-cert5-summary.html
Normal file
62
certified-asterisk-1.8.28-cert5-summary.html
Normal file
@@ -0,0 +1,62 @@
|
||||
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
|
||||
<html xmlns="http://www.w3.org/1999/xhtml">
|
||||
<head><meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" /><title>Release Summary - certified-asterisk-1.8.28-cert5</title></head>
|
||||
<body>
|
||||
<h1 align="center"><a name="top">Release Summary</a></h1>
|
||||
<h3 align="center">certified-asterisk-1.8.28-cert5</h3>
|
||||
<h3 align="center">Date: 2015-04-08</h3>
|
||||
<h3 align="center"><asteriskteam@digium.com></h3>
|
||||
<hr/>
|
||||
<h2 align="center">Table of Contents</h2>
|
||||
<ol>
|
||||
<li><a href="#summary">Summary</a></li>
|
||||
<li><a href="#contributors">Contributors</a></li>
|
||||
<li><a href="#commits">Other Changes</a></li>
|
||||
<li><a href="#diffstat">Diffstat</a></li>
|
||||
</ol>
|
||||
<hr/>
|
||||
<a name="summary"><h2 align="center">Summary</h2></a>
|
||||
<center><a href="#top">[Back to Top]</a></center><br/><p>This release has been made to address one or more security vulnerabilities that have been identified. A security advisory document has been published for each vulnerability that includes additional information. Users of versions of Asterisk that are affected are strongly encouraged to review the advisories and determine what action they should take to protect their systems from these issues.</p>
|
||||
<p>Security Advisories: <a href="http://downloads.asterisk.org/pub/security/AST-2015-003.html">AST-2015-003</a></p>
|
||||
<p>The data in this summary reflects changes that have been made since the previous release, certified-asterisk-1.8.28-cert4.</p>
|
||||
<hr/>
|
||||
<a name="contributors"><h2 align="center">Contributors</h2></a>
|
||||
<center><a href="#top">[Back to Top]</a></center><br/><p>This table lists the people who have submitted code, those that have tested patches, as well as those that reported issues on the issue tracker that were resolved in this release. For coders, the number is how many of their patches (of any size) were committed into this release. For testers, the number is the number of times their name was listed as assisting with testing a patch. Finally, for reporters, the number is the number of issues that they reported that were closed by commits that went into this release.</p>
|
||||
<table width="100%" border="0">
|
||||
<tr>
|
||||
<td width="33%"><h3>Coders</h3></td>
|
||||
<td width="33%"><h3>Testers</h3></td>
|
||||
<td width="33%"><h3>Reporters</h3></td>
|
||||
</tr>
|
||||
<tr valign="top">
|
||||
<td>
|
||||
3 bebuild<br/>
|
||||
</td>
|
||||
<td>
|
||||
</td>
|
||||
<td>
|
||||
</td>
|
||||
</tr>
|
||||
</table>
|
||||
<hr/>
|
||||
<a name="commits"><h2 align="center">Commits Not Associated with an Issue</h2></a>
|
||||
<center><a href="#top">[Back to Top]</a></center><br/><p>This is a list of all changes that went into this release that did not directly close an issue from the issue tracker. The commits may have been marked as being related to an issue. If that is the case, the issue numbers are listed here, as well.</p>
|
||||
<table width="100%" border="1">
|
||||
<tr><td><b>Revision</b></td><td><b>Author</b></td><td><b>Summary</b></td><td><b>Issues Referenced</b></td></tr><tr><td><a href="http://svn.digium.com/view/asterisk/certified/tags/1.8.28-cert5?view=revision&revision=434324">434324</a></td><td>bebuild</td><td>Move bad tag</td>
|
||||
<td></td></tr><tr><td><a href="http://svn.digium.com/view/asterisk/certified/tags/1.8.28-cert5?view=revision&revision=434331">434331</a></td><td>bebuild</td><td>Update .version; remove summaries</td>
|
||||
<td></td></tr><tr><td><a href="http://svn.digium.com/view/asterisk/certified/tags/1.8.28-cert5?view=revision&revision=434394">434394</a></td><td>bebuild</td><td>Merge changes for AST-2015-003</td>
|
||||
<td></td></tr></table>
|
||||
<hr/>
|
||||
<a name="diffstat"><h2 align="center">Diffstat Results</h2></a>
|
||||
<center><a href="#top">[Back to Top]</a></center><br/><p>This is a summary of the changes to the source code that went into this release that was generated using the diffstat utility.</p>
|
||||
<pre>
|
||||
.version | 2
|
||||
ChangeLog | 25 +++++++
|
||||
certified-asterisk-1.8.28-cert4-summary.html | 62 ------------------
|
||||
certified-asterisk-1.8.28-cert4-summary.txt | 93 ---------------------------
|
||||
main/tcptls.c | 11 ++-
|
||||
5 files changed, 35 insertions(+), 158 deletions(-)
|
||||
</pre><br/>
|
||||
<hr/>
|
||||
</body>
|
||||
</html>
|
||||
93
certified-asterisk-1.8.28-cert5-summary.txt
Normal file
93
certified-asterisk-1.8.28-cert5-summary.txt
Normal file
@@ -0,0 +1,93 @@
|
||||
Release Summary
|
||||
|
||||
certified-asterisk-1.8.28-cert5
|
||||
|
||||
Date: 2015-04-08
|
||||
|
||||
<asteriskteam@digium.com>
|
||||
|
||||
----------------------------------------------------------------------
|
||||
|
||||
Table of Contents
|
||||
|
||||
1. Summary
|
||||
2. Contributors
|
||||
3. Other Changes
|
||||
4. Diffstat
|
||||
|
||||
----------------------------------------------------------------------
|
||||
|
||||
Summary
|
||||
|
||||
[Back to Top]
|
||||
|
||||
This release has been made to address one or more security vulnerabilities
|
||||
that have been identified. A security advisory document has been published
|
||||
for each vulnerability that includes additional information. Users of
|
||||
versions of Asterisk that are affected are strongly encouraged to review
|
||||
the advisories and determine what action they should take to protect their
|
||||
systems from these issues.
|
||||
|
||||
Security Advisories: AST-2015-003
|
||||
|
||||
The data in this summary reflects changes that have been made since the
|
||||
previous release, certified-asterisk-1.8.28-cert4.
|
||||
|
||||
----------------------------------------------------------------------
|
||||
|
||||
Contributors
|
||||
|
||||
[Back to Top]
|
||||
|
||||
This table lists the people who have submitted code, those that have
|
||||
tested patches, as well as those that reported issues on the issue tracker
|
||||
that were resolved in this release. For coders, the number is how many of
|
||||
their patches (of any size) were committed into this release. For testers,
|
||||
the number is the number of times their name was listed as assisting with
|
||||
testing a patch. Finally, for reporters, the number is the number of
|
||||
issues that they reported that were closed by commits that went into this
|
||||
release.
|
||||
|
||||
Coders Testers Reporters
|
||||
3 bebuild
|
||||
|
||||
----------------------------------------------------------------------
|
||||
|
||||
Commits Not Associated with an Issue
|
||||
|
||||
[Back to Top]
|
||||
|
||||
This is a list of all changes that went into this release that did not
|
||||
directly close an issue from the issue tracker. The commits may have been
|
||||
marked as being related to an issue. If that is the case, the issue
|
||||
numbers are listed here, as well.
|
||||
|
||||
+------------------------------------------------------------------------+
|
||||
| Revision | Author | Summary | Issues Referenced |
|
||||
|----------+---------+-------------------------------+-------------------|
|
||||
| 434324 | bebuild | Move bad tag | |
|
||||
|----------+---------+-------------------------------+-------------------|
|
||||
| 434331 | bebuild | Update .version; remove | |
|
||||
| | | summaries | |
|
||||
|----------+---------+-------------------------------+-------------------|
|
||||
| 434394 | bebuild | Merge changes for | |
|
||||
| | | AST-2015-003 | |
|
||||
+------------------------------------------------------------------------+
|
||||
|
||||
----------------------------------------------------------------------
|
||||
|
||||
Diffstat Results
|
||||
|
||||
[Back to Top]
|
||||
|
||||
This is a summary of the changes to the source code that went into this
|
||||
release that was generated using the diffstat utility.
|
||||
|
||||
.version | 2
|
||||
ChangeLog | 25 +++++++
|
||||
certified-asterisk-1.8.28-cert4-summary.html | 62 ------------------
|
||||
certified-asterisk-1.8.28-cert4-summary.txt | 93 ---------------------------
|
||||
main/tcptls.c | 11 ++-
|
||||
5 files changed, 35 insertions(+), 158 deletions(-)
|
||||
|
||||
----------------------------------------------------------------------
|
||||
@@ -50,6 +50,7 @@ ASTERISK_FILE_VERSION(__FILE__, "$Revision$")
|
||||
#include "asterisk/app.h"
|
||||
#include "asterisk/utils.h"
|
||||
#include "asterisk/threadstorage.h"
|
||||
#include "asterisk/test.h"
|
||||
|
||||
/*** DOCUMENTATION
|
||||
<function name="CURL" language="en_US">
|
||||
@@ -554,6 +555,31 @@ static void curl_instance_cleanup(void *data)
|
||||
AST_THREADSTORAGE_CUSTOM(curl_instance, curl_instance_init, curl_instance_cleanup);
|
||||
AST_THREADSTORAGE(thread_escapebuf);
|
||||
|
||||
/*!
|
||||
* \brief Check for potential HTTP injection risk.
|
||||
*
|
||||
* CVE-2014-8150 brought up the fact that HTTP proxies are subject to injection
|
||||
* attacks. An HTTP URL sent to a proxy contains a carriage-return linefeed combination,
|
||||
* followed by a complete HTTP request. Proxies will handle this as two separate HTTP
|
||||
* requests rather than as a malformed URL.
|
||||
*
|
||||
* libcURL patched this vulnerability in version 7.40.0, but we have no guarantee that
|
||||
* Asterisk systems will be using an up-to-date cURL library. Therefore, we implement
|
||||
* the same fix as libcURL for determining if a URL is vulnerable to an injection attack.
|
||||
*
|
||||
* \param url The URL to check for vulnerability
|
||||
* \retval 0 The URL is not vulnerable
|
||||
* \retval 1 The URL is vulnerable.
|
||||
*/
|
||||
static int url_is_vulnerable(const char *url)
|
||||
{
|
||||
if (strpbrk(url, "\r\n")) {
|
||||
return 1;
|
||||
}
|
||||
|
||||
return 0;
|
||||
}
|
||||
|
||||
static int acf_curl_helper(struct ast_channel *chan, const char *cmd, char *info, char *buf, struct ast_str **input_str, ssize_t len)
|
||||
{
|
||||
struct ast_str *escapebuf = ast_str_thread_get(&thread_escapebuf, 16);
|
||||
@@ -591,6 +617,11 @@ static int acf_curl_helper(struct ast_channel *chan, const char *cmd, char *info
|
||||
|
||||
AST_STANDARD_APP_ARGS(args, info);
|
||||
|
||||
if (url_is_vulnerable(args.url)) {
|
||||
ast_log(LOG_ERROR, "URL '%s' is vulnerable to HTTP injection attacks. Aborting CURL() call.\n", args.url);
|
||||
return -1;
|
||||
}
|
||||
|
||||
if (chan) {
|
||||
ast_autoservice_start(chan);
|
||||
}
|
||||
@@ -747,6 +778,54 @@ static struct ast_custom_function acf_curlopt = {
|
||||
.write = acf_curlopt_write,
|
||||
};
|
||||
|
||||
AST_TEST_DEFINE(vulnerable_url)
|
||||
{
|
||||
const char *bad_urls [] = {
|
||||
"http://example.com\r\nDELETE http://example.com/everything",
|
||||
"http://example.com\rDELETE http://example.com/everything",
|
||||
"http://example.com\nDELETE http://example.com/everything",
|
||||
"\r\nhttp://example.com",
|
||||
"\rhttp://example.com",
|
||||
"\nhttp://example.com",
|
||||
"http://example.com\r\n",
|
||||
"http://example.com\r",
|
||||
"http://example.com\n",
|
||||
};
|
||||
const char *good_urls [] = {
|
||||
"http://example.com",
|
||||
"http://example.com/%5Cr%5Cn",
|
||||
};
|
||||
int i;
|
||||
enum ast_test_result_state res = AST_TEST_PASS;
|
||||
|
||||
switch (cmd) {
|
||||
case TEST_INIT:
|
||||
info->name = "vulnerable_url";
|
||||
info->category = "/funcs/func_curl/";
|
||||
info->summary = "cURL vulnerable URL test";
|
||||
info->description =
|
||||
"Ensure that any combination of '\\r' or '\\n' in a URL invalidates the URL";
|
||||
case TEST_EXECUTE:
|
||||
break;
|
||||
}
|
||||
|
||||
for (i = 0; i < ARRAY_LEN(bad_urls); ++i) {
|
||||
if (!url_is_vulnerable(bad_urls[i])) {
|
||||
ast_test_status_update(test, "String '%s' detected as valid when it should be invalid\n", bad_urls[i]);
|
||||
res = AST_TEST_FAIL;
|
||||
}
|
||||
}
|
||||
|
||||
for (i = 0; i < ARRAY_LEN(good_urls); ++i) {
|
||||
if (url_is_vulnerable(good_urls[i])) {
|
||||
ast_test_status_update(test, "String '%s' detected as invalid when it should be valid\n", good_urls[i]);
|
||||
res = AST_TEST_FAIL;
|
||||
}
|
||||
}
|
||||
|
||||
return res;
|
||||
}
|
||||
|
||||
static int unload_module(void)
|
||||
{
|
||||
int res;
|
||||
@@ -754,6 +833,8 @@ static int unload_module(void)
|
||||
res = ast_custom_function_unregister(&acf_curl);
|
||||
res |= ast_custom_function_unregister(&acf_curlopt);
|
||||
|
||||
AST_TEST_UNREGISTER(vulnerable_url);
|
||||
|
||||
return res;
|
||||
}
|
||||
|
||||
@@ -771,6 +852,8 @@ static int load_module(void)
|
||||
res = ast_custom_function_register(&acf_curl);
|
||||
res |= ast_custom_function_register(&acf_curlopt);
|
||||
|
||||
AST_TEST_REGISTER(vulnerable_url);
|
||||
|
||||
return res;
|
||||
}
|
||||
|
||||
|
||||
@@ -282,7 +282,7 @@ static int load_module(void)
|
||||
{
|
||||
int res = 0;
|
||||
|
||||
res |= ast_custom_function_register(&db_function);
|
||||
res |= ast_custom_function_register_escalating(&db_function, AST_CFE_BOTH);
|
||||
res |= ast_custom_function_register(&db_exists_function);
|
||||
res |= ast_custom_function_register_escalating(&db_delete_function, AST_CFE_READ);
|
||||
|
||||
|
||||
@@ -533,7 +533,7 @@ int ast_apply_ha(const struct ast_ha *ha, const struct ast_sockaddr *addr)
|
||||
ast_copy_string(iabuf2, ast_inet_ntoa(ha->netaddr), sizeof(iabuf2));
|
||||
ast_debug(1, "##### Testing %s with %s\n", iabuf, iabuf2);
|
||||
#endif
|
||||
if (ast_sockaddr_is_ipv4(&ha->addr)) {
|
||||
if (ast_sockaddr_is_ipv4(¤t_ha->addr)) {
|
||||
if (ast_sockaddr_is_ipv6(addr)) {
|
||||
if (ast_sockaddr_is_ipv4_mapped(addr)) {
|
||||
/* IPv4 ACLs apply to IPv4-mapped addresses */
|
||||
|
||||
@@ -633,10 +633,17 @@ static void *handle_tcptls_connection(void *data)
|
||||
if (pos < 0)
|
||||
break;
|
||||
str = X509_NAME_ENTRY_get_data(X509_NAME_get_entry(name, pos));
|
||||
ASN1_STRING_to_UTF8(&str2, str);
|
||||
ret = ASN1_STRING_to_UTF8(&str2, str);
|
||||
if (ret < 0) {
|
||||
continue;
|
||||
}
|
||||
|
||||
if (str2) {
|
||||
if (!strcasecmp(tcptls_session->parent->hostname, (char *) str2))
|
||||
if (strlen((char *) str2) != ret) {
|
||||
ast_log(LOG_WARNING, "Invalid certificate common name length (contains NULL bytes?)\n");
|
||||
} else if (!strcasecmp(tcptls_session->parent->hostname, (char *) str2)) {
|
||||
found = 1;
|
||||
}
|
||||
ast_debug(3, "SSL Common Name compare s1='%s' s2='%s'\n", tcptls_session->parent->hostname, str2);
|
||||
OPENSSL_free(str2);
|
||||
}
|
||||
@@ -736,6 +743,8 @@ static int __ssl_setup(struct ast_tls_config *cfg, int client)
|
||||
cfg->enabled = 0;
|
||||
return 0;
|
||||
#else
|
||||
int disable_ssl = 0;
|
||||
|
||||
if (!cfg->enabled)
|
||||
return 0;
|
||||
|
||||
@@ -750,22 +759,21 @@ static int __ssl_setup(struct ast_tls_config *cfg, int client)
|
||||
if (client) {
|
||||
#ifndef OPENSSL_NO_SSL2
|
||||
if (ast_test_flag(&cfg->flags, AST_SSL_SSLV2_CLIENT)) {
|
||||
ast_log(LOG_WARNING, "Usage of SSLv2 is discouraged due to known vulnerabilities. Please use 'tlsv1' or leave the TLS method unspecified!\n");
|
||||
cfg->ssl_ctx = SSL_CTX_new(SSLv2_client_method());
|
||||
} else
|
||||
#endif
|
||||
if (ast_test_flag(&cfg->flags, AST_SSL_SSLV3_CLIENT)) {
|
||||
ast_log(LOG_WARNING, "Usage of SSLv3 is discouraged due to known vulnerabilities. Please use 'tlsv1' or leave the TLS method unspecified!\n");
|
||||
cfg->ssl_ctx = SSL_CTX_new(SSLv3_client_method());
|
||||
} else if (ast_test_flag(&cfg->flags, AST_SSL_TLSV1_CLIENT)) {
|
||||
cfg->ssl_ctx = SSL_CTX_new(TLSv1_client_method());
|
||||
} else {
|
||||
/* SSLv23_client_method() sends SSLv2, this was the original
|
||||
* default for ssl clients before the option was given to
|
||||
* pick what protocol a client should use. In order not
|
||||
* to break expected behavior it remains the default. */
|
||||
disable_ssl = 1;
|
||||
cfg->ssl_ctx = SSL_CTX_new(SSLv23_client_method());
|
||||
}
|
||||
} else {
|
||||
/* SSLv23_server_method() supports TLSv1, SSLv2, and SSLv3 inbound connections. */
|
||||
disable_ssl = 1;
|
||||
cfg->ssl_ctx = SSL_CTX_new(SSLv23_server_method());
|
||||
}
|
||||
|
||||
@@ -775,6 +783,17 @@ static int __ssl_setup(struct ast_tls_config *cfg, int client)
|
||||
return 0;
|
||||
}
|
||||
|
||||
/* Due to the POODLE vulnerability, completely disable
|
||||
* SSLv2 and SSLv3 if we are not explicitly told to use
|
||||
* them. SSLv23_*_method supports TLSv1+.
|
||||
*/
|
||||
if (disable_ssl) {
|
||||
long ssl_opts;
|
||||
|
||||
ssl_opts = SSL_OP_NO_SSLv2 | SSL_OP_NO_SSLv3;
|
||||
SSL_CTX_set_options(cfg->ssl_ctx, ssl_opts);
|
||||
}
|
||||
|
||||
SSL_CTX_set_verify(cfg->ssl_ctx,
|
||||
ast_test_flag(&cfg->flags, AST_SSL_VERIFY_CLIENT) ? SSL_VERIFY_PEER | SSL_VERIFY_FAIL_IF_NO_PEER_CERT : SSL_VERIFY_NONE,
|
||||
NULL);
|
||||
|
||||
@@ -1287,14 +1287,17 @@ static int aji_tls_handshake(struct aji_client *client)
|
||||
{
|
||||
int ret;
|
||||
int sock;
|
||||
long ssl_opts;
|
||||
|
||||
ast_debug(1, "Starting TLS handshake\n");
|
||||
|
||||
/* Choose an SSL/TLS protocol version, create SSL_CTX */
|
||||
client->ssl_method = SSLv3_method();
|
||||
client->ssl_method = SSLv23_method();
|
||||
if (!(client->ssl_context = SSL_CTX_new((SSL_METHOD *) client->ssl_method))) {
|
||||
return IKS_NET_TLSFAIL;
|
||||
}
|
||||
ssl_opts = SSL_OP_NO_SSLv2 | SSL_OP_NO_SSLv3;
|
||||
SSL_CTX_set_options(client->ssl_context, ssl_opts);
|
||||
|
||||
/* Create new SSL session */
|
||||
if (!(client->ssl_session = SSL_new(client->ssl_context))) {
|
||||
|
||||
Reference in New Issue
Block a user