8950 AAA(TM)
Version 6.3.0
Issues Addressed Log
Issues Addressed:
-=6.3.0 Release=- 2009/08/31
ID: 4338 Radius/TACACS+ clients: Overlapping or ambiguous address ranges
are not detected.
ID: 4976 Setup: system.msg changes lost on upgrade.
ID: 4977 SMT: Stats: Server Statistics throws exception on access.
ID: 5092 NewRadiusTool: 'prompt' option did not work.
ID: 5099 Diameter: Relay of diameter requests re-used the hop-by-hop
identifier.
ID: 5126 Remote Config: Unable to connect to the remote server
configuration that contains multiple servers when adding entries
to file list.
ID: 5143 SMT: Readonly User is able to make a USS session "Inactive".
ID: 5144 SMT: The Stats Collector panel does not refresh the list of
Groups after you close the panel.
ID: 5212 Setup: Uninstall on Microsoft Windows does not complete.
ID: 5225 Setup: DB Migration - blocked_avps:value is not migrated.
ID: 5248 SMT: The server.Local-Address is checked in the SMT and should
be in the ConfigServer.
ID: 5428 Derby replication: Slave accepts writes in race with master shutdown.
ID: 5457 SMT: Editing a dictionary loses enum-class property.
-=6.2.11 Release=- 2009/08/14
ID: 5431 USS2/IPAM: NPE when start is received on an inactive entry when
IPAM is enabled.
ID: 5433 Setup: Unable to upgrade a policy flow that uses non-default
log channels.
ID: 5441 Log rules: Item conditions evaluate to TRUE in non-workitem contexts.
ID: 5484 CheckX509Crl plug-in: CRLs with an expiration date in the past
are never deleted.
-=6.2.10 Release=- 2009/08/07
ID: 5416 WiMAX W4: home_agent.pf not signed.
ID: 5423 WiMAX W4: Allow use with licenses with IPAM disabled.
ID: 5426 StateClient plug-in: Identifier slot leak on secondary USS when
replication link flaps and the ErrorOnStateServerActive
property is enabled.
ID: 5458 Dictionary: 3GPP2-PrePaid-Acct-Quota sub attributes have wrong type.
-=6.2.9 Release=- 2009/07/14
ID: 5364 Snmp plugin: NPE on absent 'V3 Security Methods' property.
ID: 5380 NewRadiusTool: Dump stats at the end of NasLoad scenario. Deal
with NPE if the overlap is set to higher than 258 times the
number of threads.
ID: 5381 USS: livelock of entries during blocked output in admin interface.
ID: 5382 TLS stack: ServerName extension fails on Type 1 (email-addr).
ID: 5384 DhcpV6 plug-in: Fix internal map formatting of random data.
ID: 5386 Merge SCR 5056. Ensure '${packet.event-timestamp}' is set to no
later than the current server time.
ID: 5388 AI: 'uss entry list' fails protocol if no entry found with a key
specified.
-=6.2.8 Release=- 2009/07/08
ID: 5367 Radius plug-in: Visibility/Race condition in challenge processing
within an inner policy flow (Call,Iterate).
ID: 5374 Cipher plug-in: Protect against SunJCE memory leak.
-=6.2.7 Release=- 2009/06/30
ID: 5291 PA: Search Scope not used in LDAP Authentication.
ID: 5317 Radius Test Tool(new): -outputAttributesFile and
-outputAttributesFilter parameters are ignored.
ID: 5322 USS2: Existence of nas-key not checked on "nas global" events
in USSv2 Radius State Model.
ID: 5342 USS2: HeartBeat messages stop after IO error during heartbeat
write.
ID: 5343 SMT: Femto Panel shouldn't check for HAUSS enabled license.
ID: 5347 Ldap plugin: Deal with empty string trustFile property.
ID: 5350 Radius Server MIB: Increment total request bucket on certain
error paths.
ID: 5359 AuthEapMsChapV2 plug-in: User name provided by client ignored.
ID: 5360 AuthEapMsChapV2 plug-in: Account name sent as system name in
challenge.
-=6.2.6 Release=- 2009/06/04
ID: 5222 Installer: Errors reading zip files can attempt to open
a window during a text based install.
ID: 5231 User Provisioning System: "<" can't be displayed for values
in HTML pages.
ID: 5247 Reload manager: A NullPointerException could occur if a TLS
based auth plug-in was present and did not set up a session
cache, and a 'file reload *' command was issued.
ID: 5249 PolicyAssistant: LDAP Search Scope not used on AD requests.
ID: 5250 SMT: Client only install tries to read local security files when
configuring remote configuration.
ID: 5253 TAL: Support an escape marker for modifiers and reference
identifiers to avoid a clash with TAL keywords.
ID: 5264 AI: Make 'java version' command more like the java command
line output.
ID: 5273 PolicyAssistant: equals sign in rule values not quoted.
ID: 5305 Ldap plug-in: NPE logging null referral method.
ID: 5311 Ldap plug-in: StartTLS results that are not success discarded.
Now informs the plug-in, and tears down the connection.
ID: 5314 GenerateAkaQunitets plug-in: Typo in AkaMilenage f5* function.
-=6.2.5 Release=- 2009/05/13
ID: 5214 SMT: Can not delete an excluded range from pool.
ID: 5219 WiMAX: Normalize Calling-Station-Id before sending to USS.
ID: 5229 SMT: Can not create an IP Pool without an exclude range.
ID: 5243 WiMAX W3/W4: Outer-Identity not sent to remote USS in
accounting.
ID: 5244 USS: Fix NullPointerException introduced in SCR 5177 when IPAM
isn't enabled.
ID: 5245 Derby replication: Slave database switchover slow, and read-only
mode not established.
-=6.2.4 Release=- 2009/04/28
ID: 5202 AuthLocal plug-in: PlainOrDes support missing for MS-CHAP
checking.
ID: 5203 Maps: MillisBeforeNow & MillisAfterNow modifiers error on
negative values.
ID: 5204 TAL: NPE evaluating text relation with a null operand.
ID: 5216 AuthEapAka/AuthEapSim: Don't ask for identity if fast reauth
context is lost.
-=6.2.3 Release=- 2009/04/10
ID: 5109 Setup: Attempts to access GraphicsEnvironment during unix-like
operating systems text-based setups output stack dump:
Could not initialize class sun.awt.X11GraphicsEnvironment
ID: 5172 Setup: NullPointerException (NPE) when attempting to view the
release notes at the end of the install.
ID: 5173 AuthEapAka plug-in: SendBidding defaults to "true"; should be
"false".
ID: 5174 WiMAX W4S: Home Agent Root Key Seed not set on install.
ID: 5176 WiMAX W4S: USS records not saved if Motive feature disabled.
ID: 5177 USS/IPAM: Deleted entries with IPAM allocation not released on
the secondary if the entry on the primary has an inactive timeout
before the entry can replicate to the secondary.
ID: 5182 WiMAX W4: The client.axis2.xml file contained a non-ascii
character which caused issues on systems with some native
file.encoding values.
ID: 5183 CheckX509Crl plug-in: Used the timeout property without the
units specified as milli-seconds, not seconds.
ID: 5184 AI: 'cache add' command set timeouts the arguments without
units as milliseconds, instead of seconds.
-=6.2.2 Release=- 2009/03/16
ID: 5113 WiMAX Assistant: Stateful access Accept does not always go to
same proxy server.
ID: 5151 TAL: Map evaluation failure with empty map.
ID: 5154 NullPointerException with USS entry timeout when IPAM is used.
ID: 5156 Ldap plugin: Bad encoding for Start TLS extended request.
ID: 5160 SMT: Database SQL TOOL does not update 'executing query' status
when some errors occured.
ID: 5162 Provision: When adding Group Templates to a User Record, the
value is corrupted.
ID: 5163 Method Stats: Don't add SUSPEND dispositions to TOTAL counts.
-=6.2.1 Release=- 2009/02/24
ID: 3887 SMT: java.lang.ArrayIndexOutOfBoundsException when trying to
print panel contents.
ID: 3892 Dictionary: Add checking to ensure Attribute names do not contain
a period/group separator.
ID: 4089 SMT: Graph Policy Flow: IllegalArgumentException after repeated
'zoom in' events.
ID: 4122 Internal Web Service: Better support IE7.
ID: 4132 SMT: Save method names with spaces properly in the method_dispatch
file.
ID: 4169 Dictionary: 3GPP2-GMT-Time-Zone-Offset used wrong data type.
AVP now uses a signed 32 bit integer instead of unsigned.
ID: 4805 USS2: Deal with unspecified node address gracefully.
ID: 4995 Dictionary: VzW-Public-Key-Invalid as 'reject-ok'.
ID: 5060 WiMAX W3/W4: Delimited file uses incorrect delimiter.
ID: 5061 WiMAX Assistant: Check Template for Configuration-Token not
assigned.
ID: 5066 WiMAX W4: Reload blocked MAC addresses every 1 hour not 1 minute.
ID: 5071 USS2: Persisted data failed to load and issued warning message
during node initialization.
ID: 5080 SMT: Collector: Logging off and back on in SMT causes duplicate
groups.
ID: 5082 Util: Invalid UTF8 Encode/Decode of surrogate plane characters.
ID: 5086 WiMAX W4: ReadUserFile.auth:readProxyInfo - RHS of MAP should be
${reply.*}.
ID: 5087 TomCat: Uses /run for keystore even with -run is specified.
ID: 5088 RadiusStateUpdate: Processing of the 'none' event on non-existant
entries caused a phantom entry to be created. New behavior is to
emit a 'failure' disposition and to not create the entry.
ID: 5091 USS2 AI command 'uss2 entry list': NullPointerException if listing
an entry with 'null' state.
ID: 5093 SMT: TACACS+ Attributes not saved in user file editor correctly.
ID: 5096 WiMAX Assistant: If primary down the local USS always used.
ID: 5101 GeneralState plugins: timeout based deletes don't fully remove
the entry.
ID: 5114 SockAddr class: Remove ADDR_Local constant. Computing this
unused constant sometimes caused errors on systems with invalid
name resolver setups. It could manifest as a HeadLessException
during installs.
ID: 5116 USS State Transition label for Active-WaitingStart showed as
Active-Active.
ID: 5118 BitSetValues: Allow reassignment of bit field.
ID: 5119 DurationValue: Change string construction to assume milliseconds,
not seconds, if units are not provided.
ID: 5127 WiMAX W4C/W4S: New Class attribute sent in accept with reauth
with W3 WACs.
ID: 5128 WiMAX W4C: Simplify USS processing.
ID: 5130 Ldap plugin: Deadlock can occur processing connection completion.
ID: 5133 Logging: A NullPointerException would occur if logging against a
RADIUS workitem that had already been closed.
ID: 5135 PolicyAssistant: Augment the request variable group with some
packet group variables in the 'acct' path like presently done
on the 'auth' path. This allows the policy set selection rules to
be based on these variables, such as 'user-realm'.
ID: 5137 Provision: When Reply AVPs is removed from view, an exception
occurs.
ID: 5138 Provision: Using FireFox and adding a user record, the Add
buttons don't work.
-=6.2.0 Release=- 2008/12/19
ID: 3876 PolicyAssistant: check CRLs after client certificate based
authentications.
ID: 4766 Provision: Add better validation for Group AVPs data entry.
ID: 4906 Diameter encode: values not coerced for groupValues.
ID: 4907 Diameter plug-in: Timeout parameter not honored during realm
based routing.
ID: 4913 Diameter: experimental-result use can break disposition handling.
ID: 4926 Diameter plug-in: Request AVPs not validated or re-ordered.
ID: 4941 Diameter plug-in: Don't add a Route-Record AVP to the request.
ID: 4983 TLS based plug-ins: Ciphersuite list not truly dynamic.
ID: 4987 Provision: Global attributes did not support multiple values per
line, separated by commas.
ID: 5014 SMT Database Tool: A NullPointerException occured when invoking
'About' and no database was connected.
ID: 5021 Diameter stack: NPE caused by write/shutdown race.
ID: 5024 Provision: Global Attributes displayed incorrectly when inserting
a user.
ID: 5027 TAL: first statement in else clause is skipped.
ID: 5034 WiMAX W4: Message-Authenticator missing on certain responses
ID: 5035 Maps: Keep executing modifiers, even on when the value is null.
ID: 5037 WiMAX W4: (FR 260998) No HA address with handover reauth with
dynamic assign.
ID: 5038 Wimax W3: USS resets entry to Waiting-For-Start upon Reauth.
ID: 5043 PolicyAssistant: Device Boot Records not processed by default.
ID: 5050 SMT: Add 'soap provisionService' to the role choices for the
access rule editor.
ID: 5051 WiMAX W4: Processing auth retry for W3 WAC causes active entry
without timer.
-=6.1.11 Release=- 2008/12/03
ID: 5019 Ldap plug-in: Rework buffer management and event processing.
ID: 5036 Stats: Fix queue and USS variable lists.
-=6.1.10 Release=- 2008/11/07
ID: 4958 RadiusStateUpdate plug-in: Guard against CastClassException
when setting a timeout value.
ID: 4960 AuthEapTls, AuthEapTtls, and AuthEapPeap plug-ins: ClientCertMode
optional did not request a client certificate.
ID: 4968 WimaxCCConvert plug-in: This plug-in now returns the reported
4970 used total summed with the last granted quota instead of the sum
of all granted deltas as the granted total quota.
ID: 4973 Logging: Ensure TcpDispatcher logs to the default log director.
ID: 4978 Logging: Auth-Continue pattern usage referred to the
Auth-Challenge pattern.
ID: 4979 Diameter: A RuntimeException would occur in a Diameter policy
flow if it exited with a CONTINUE disposition.
(Stateful Access-Accept).
ID: 4988 IPAM: A NullPointerException was thrown rarely during pool
configuration.
ID: 4990 WiMAX W4: Use string compare when looking for matching SPI.
ID: 4993 Setup: Update pf.properties for Compact WAC Installations.
-=6.1.9 Release=- 2008/10/20
ID: 4894 SMT: Sessions/Counters/Indexes adds an empty row for each
refresh.
ID: 4896 Ldap plug-in: Field names are now case sensitive.
ID: 4897 W4 WiMAX: Prepaid always allocates new quota.
ID: 4901 SMT: Null Pointer Exception setting certificate password in W3.
ID: 4902 SMT: Can not save Policy on first use.
ID: 4903 SMT: Get first time setup message for PA each time SMT restarted.
ID: 4908 PolicyAssistant: Accounting On and Off packets not processed.
ID: 4909 Admin Interface: uss counts output incorrect.
ID: 4912 Setup: Upgrade forces certs to be created when already exists.
ID: 4914 Radius Work Item: Null Pointer Exception leaked into log when
item unable to initialize.
ID: 4915 W4 WiMAX: Change EAP-TTLS default for Client Certificate Mode
with Non-WiMAX certificate.
ID: 4916 PolicyAssistant: Derby database name set to blank on edit of
policy.
ID: 4918 Diameter: Remove mandatory Application-ID check when encoding
answers.
ID: 4919 W3/W4 WiMAX: Only send State in Access-Accept if
Termination-Action is RADIUS-Request.
ID: 4923 SMT Test Tools: Memory leak on repeated runs.
ID: 4927 EAP plug-ins: Do not set timer on call items.
ID: 4928 SMT: DB Table Tool default Port throws an error while connecting.
ID: 4934 All Plug-ins: Message-on-XXXX leaks bad channel to stdout with no
channel specification.
ID: 4951 SMT: Database Tool Panel doesn't shutdown when losing a
connection to the Config Server.
ID: 4955 W4 WiMAX: Use Session-Timeout from original accept in prepaid
reauthorization.
ID: 4957 RadiusItem: NPE caused by reversed packet authenticator over-ride
check.
-=6.1.8 Release=- 2008/09/26
ID: 4861 WiMAX W3: Class attribute not sent to state server in auth path.
ID: 4862 Radius response cache: Not properly maintained when a policy
flow ends in a DISCARD condition.
ID: 4863 Engine: A challenge or continue request did not reset the
available method count in a suspended work item.
ID: 4868 WriteMail plug-in: unavailable in either the SMT or server.
ID: 4874 WiMAX W4 Provisioning: Automatic modification of Allowed-BS-IDs
when editing check AVPs.
ID: 4876 WiMAX W4: Reassign the same P-CSCF for IMS users during re-auth.
ID: 4877 WiMAX W3/W4: Typo in policy flow broke device per user limit
checking when using a remote USS.
ID: 4878 USS: Fix request map use of assignment to ${imap.address}.
ID: 4881 NAS Route Caching: Regression introduced in version 6.1.5 that
disable the feature.
ID: 4883 AuthEapTls plug-in: Failure with AuthEapTls-ClientCertMode set to
Optional.
ID: 4892 AuthEapTls Plug-in: Certificate not saved in session state with
fast TLS resumption.
-=6.1.7 Release=- 2008/09/16
ID: 4829 Maps: ToList modifier turns a ListValue into a list of lists,
rather than returning the original list.
ID: 4830 WiMAX W3/W4: Accounting properties not used in policy set.
ID: 4835 WiMAX W4: Framed-IP-Address not allocated for OLS session.
ID: 4839 WiMAX W3: Reauthentication causes unknown user in accounting.
ID: 4844 Provision: If Error in changing user, user data is corrupted.
ID: 4845 Provision: Enforce Group_Template Attribute field as required
by DB schema.
-=6.1.6 Release=- 2008/09/04
ID: 4812 alu_utilities.pf: Remove Diameter abort session support.
This prevented the server from starting for sites without
Diameter license enabled.
ID: 4814 SMT: Remove KeySeparator in StateServer Session Panel. This
allows the display of entries when the primary key in the USS
is changed from the default pattern.
-=6.1.5 Release=- 2008/08/29
Bugs fixes between 6.0.5 and 6.0.6 are included.
ID: 4726 Uss2: Request does not fail after the limit exceed.
ID: 4769 USS2 Resources: Fix race condition in counter managment.
ID: 4772 WiMAX W4: Message-Authenticator missing from HA Access-Accept.
ID: 4776 SMT: Expired RMI Certificates caused verify Cert dialog to
appear over and over.
ID: 4777 Ldap plug-in: Plug-in exits with error if server requests mutual
authentication.
ID: 4778 SMT: Method-Timeout in 5.x written out a 0 even if disabled.
ID: 4779 SMT: Report Dialog box not reset after editing/creating a entry.
ID: 4784 WiMAX W3/W4: Override StateServer-EventTimestampAttribute.
ID: 4785 WiMAX W3: User-Name is Outer-Identity in accounting records.
ID: 4789 ReadUserFile, ReadCache, ReadKeyCache, ReadClient plug-ins:
A ConcurrentModificationException could occur under load.
ID: 4790 ChunkySaltedOpaqueValue: Decode broken on short values with a
WiMAX Vendor.
ID: 4791 WiMAX W4: WiMAX-MN-hHA-MIP4-KEY sent to HA as hex.
ID: 4798 Stanza/Section/Property File Parser: stack dump on a particualr
malformed input.
ID: 4802 GeneralStateUpdate plug-in: NPE when assigning non-existant
variable.
ID: 4803 USS AI: uss2 save / dump doesn't send ack marker.
ID: 4807 USSv2 General: Fix ClassCastException processing replication
merge.
ID: 4808 Derby: Stack trace during server shutdown. Database not cleanly
closed, and would not be clean until the next server start.
ID: 4810 CheckX509Crl plug-in: CRL not verified if IssuerCertFile was not
specified and IssuerCert was specified.
ID: 4811 HA-USS counters: Counters not maintained on secondary while
processing replicated deleted entries.
-=6.1.4 Release=- 2008/07/29
ID: 4730 W4: Need HAAA proxy support for Disconnect messages.
ID: 4731 W4: Add tasks to setup target to rename test_ files.
ID: 4732 W4: acct.pf and home_agent.pf missing timeout configuration
option.
ID: 4733 W4: USS Secondary not checked if local in acct.pf and
home_agent.pf.
ID: 4740 aaa-cvt, aaa-cct tools: Support PKCS#12 files.
ID: 4741 aaa-cvt, aaa-cct tools: Support PEM files that don't start with
a marker.
ID: 4747 SMT: Database Panel inserts blanks instead of nulls.
ID: 4748 Provision: Insert null database values for empty fields.
ID: 4749 SMT: Database Tool import doesn't deal with comma character
inside escaped quotes.
ID: 4750 WimaxCCConvert plug-in: Fix typo in default value of the
WimaxCCConvert-SubscriptionIdData property.
ID: 4751 PrepaidUnitValue incorrectly includes zero exponent.
ID: 4756 W3: Backport fixes from W4 for remote USS.
-=6.1.3 Release=- 2008/07/07
ID: 4705 AI: The 'derby list' command should show only internal databases,
not files in derby folder.
ID: 4711 RadiusStateQuery plugin: default value for 'States' missing.
ID: 4714 AI: The 'derby exec' command doesn't format multi-line output
properly. Fixed in the general output formatter.
ID: 4717 Diameter Realm Routes: Hosts with a name containing a dash
character were considered invalid.
ID: 4723 AI: The 'uss2 entry list' command is broken when used from the
aaa-cmd program. It had improper markup.
ID: 4724 AI: The 'derby restore' command was ineffective when the database
was up.
ID: 4728 WimaxCCConvert plug-in: Expand search for the
Final-Unit-Indication. Check in Multiple-Services-Credit-Control
if it's not a top level AVP.
-=6.1.2 Release=- 2008/06/27
ID: 4686 SMT/Log Rules: Processing Item Condition resulted in a malformed
bad condition.
ID: 4688 Dictionary regression: The cached serial file was used even if
the timestamps on the source dictionary files were newer.
ID: 4692 CheckLocalRadius plug-in: Only the loopback address was
considered local. It also didn't honor the interface specific
radius listener configuration.
ID: 4694 Dictionary: Typo in 3GPP-User-Location-Info.
ID: 4706 aaa-cvt: NullPointerException viewing files with only a key.
ID: 4710 WimaxCCConvert plug-in does not handle credit limit reached
condition.
ID: 4712 CallItems: Access time not updated with state merge. This caused
invalid item too old errors with continued policies.
ID: 4713 WiMAX W4: Real identity not sent to prepaid server, the outer
pseudo-identity was sent which is not valid in prepaid database.
ID: 4715 WiMAX W4: FAILURE -- check group is not empty error if additional
check items specified for user.
ID: 4716 Provisioning servlet: Error - EOL inside of quoted string. Long
grouped attributes are being improperly reformatted by servlet.
-=6.1.1 Release=- 2008/05/23
ID: 4641 WiMAX-Group value: Diameter encode/decode not symmetric.
ID: 4652 W3/W4 Policy Set: state_server:determineIfMsPseudonym uses wrong
value.
ID: 4653 WiMAX: aaa-crt tool throws exception if subject has numeric value.
ID: 4654 WiMAX: aaa-cst tool throws exceptions when processing invalid
4655 inputs.
4661
ID: 4656 WiMAX: aaa-cct tool throws an exception if the output file has
a .cer extension.
ID: 4658 SMT: NullPointerException by stats collector.
ID: 4675 aaa-cmd: Error when server_properties doesn't contain
Radius-Telnetd-Address value.
ID: 4683 Reload Manager: Method Call essense not used after reload event.
ID: 4684 Launchers: '--' argument not discarded from Class command line.
-=6.1.0 Release=- 2008/04/30
ID: 4516 Provisioning Tool: Required fields User Name and User Realm not
highlighted.
ID: 4517 Provisioning Tool: ~SAVE button says UPDATE on user creation.
ID: 4520 Provisioning Tool: Required Group AVPs list not highlighted.
ID: 4524 Provisioning Tool: Required Group Templates Attributes list not
highlighted.
ID: 4525 Provisioning Tool: Required field Group Name not highlighted.
ID: 4526 Provisioning Tool: Group Template Attributes field not required
or highlighted.
ID: 4528 Provisioning Tool: Group Template column headers incorrect.
ID: 4532 Provisioning Tool: Global Attributes information incorrect.
ID: 4612 SMT: Certificate Manager cannot display contents of file ending
in '.cer'.
ID: 4622 EAP sample PF: PolicyServer would not intialize with this
policy flow.
ID: 4632 Provisioning Tool:Putting double quotes in a column value causes
invalid display in table displays for the Users, Group AVPs, and
Group Templates.
ID: 4633 Provisioning Tool: When the primary key columns of the Users,
Group AVPs, and Group Templates contain a double quote character,
you cannot removed the records.
ID: 4634 Provisioning Tool: When trying to save a User, Group AVP, or
Group Template record with a single quote character in a field
causes an error.
ID: 4635 Provisioning Tool: Inserting Double Quote Characters for Column
Labels causes error.
ID: 4636 Provisioning Tool: Searching for Users with single quote character
gives an error.
ID: 4637 IpFilterValue and QosFilterValue attribute types:
Syntax parser did not allow for 'from' or 'to' tokens.
ID: 4638 TLS-Based plugins: TLS Alerts not sent to clients.
ID: 4639 EAP-TLS test tool does not send empty certificate message
an appropriate certificate is not available.
ID: 4644 Ldap plug-in: Regression in 6.0 lost the feature to not
use cached connections that have died due to server idle
timeout.
-=6.0.7 Release=- 2008/08/27
ID: 4800 Jdbc plug-in: Invalid default value format for
Jdbc-ConnectionMaxAge and Jdbc-ConnectionMaxAge properties.
-=6.0.6 Release=- 2008/08/18
Bugs fixed between 5.2.9 and 5.2.11 are included.
-=6.0.5 Release=- 2008/07/29
ID: 4695 EAP-AKA sample: Incomplete conversion to Derby.
ID: 4725 USSv2: Auth and Acct limit checking reversed.
ID: 4764 Certs: TLS stack can't use sha256WithRSAEncryption
signed certificates.
ID: 4765 AI: 'session exec ' command output results multiple
times.
-=6.0.4 Release=- 2008/05/19
ID: 4598 SnmpTrap log channel: Inoperable in 6.0.
Snmp plug-in: Certain properties did not support dynamic
variables as intended. This fix was supposed to be released
in version 6.0.1.
ID: 4659 Snmp agent: ClassCastException during startup if the
engine ID is configured.
ID: 4668 WiMAX W3: Blocked MAC address processing error.
ID: 4669 WiMAX W3: Typo in testData.sql.
ID: 4673 WiMAX W3: Cannot write accounting to file.
ID: 4678 Ldap plug-in: Errors on connections not processed appropriately.
-=6.0.3 Release=- 2008/05/02
ID: 4644 Ldap plug-in: Regression in 6.0 lost the feature to not
use cached connections that have died due to server idle
timeout.
ID: 4651 Engine: Maximum Thread count statistic is alway zero.
-=6.0.2 Release=- 2008/04/22
ID: 4616 Install: Issues upgrading from some configurations of a
4618 VitalAAA 5.x server. This includes the server properties
'Check-Authenticators' and 'Minimum-Session-Timeout'.
ID: 4619 USSv2: NullPointerException upon removal of the 'uss2_nodes'
file from run directory.
ID: 4621 Installer: Remove the old VitalAAA version number from
server_properties during an upgrade and replace with a new
8950AAA version.
ID: 4624 Diameter: NullPointerException when processing certain routes
during route type fallback.
ID: 4629 Diameter: The heuristic for announcing an application in a
Capabilities-Exchange message from a Diameter route entry should
not have triggered unless the application id was '*'.
-=6.0.1 Release=- 2008/04/09
ID: 4329 SMT: NullPointerException sorting IP addresses in IPAM.
ID: 4568 Derby: Exception occured during shutdown processing.
ID: 4573 SMT: Can't view trusted.pem files in Certificate Manager panel.
ID: 4578 Stats: USS Counter group did not record properly.
ID: 4593 TLS based plug-ins: Cannot send certificate chain without root.
ID: 4598 SnmpTrap log channel: Inoperable in 6.0.
Snmp plug-in: Certain properties did not support dynamic
variables as intended.
ID: 4600 NullPointerException in USS2 UssEngine.
ID: 4609 Admin Interface: Swap functionality of "uss2 resource dump"
and "uss2 resource list".
ID: 4611 USSv2 stats: Update description of state from Waiting-For-Start
to Accepted.
-=6.0.0 Release=- 2008/02/29
ID: 4009 SMT: IPAM: Pool addition/deletion does not affect selector
panel dynamically.
ID: 4060 Setup: Invalid input can hang the installation process.
ID: 4340 Snmp plug-in: Various properties failed when invoked with
dynamic references.
ID: 4348 Certificates: Sort and verify certificate chains. Feature lost
during library changes.
ID: 4369 TACACS+: Support spaces in argument values.
ID: 4372 SMT: Stats Collector does not work if server is remote.
ID: 4455 Diameter: Enforce dictionary mandatory markup during decode
operation.
ID: 4507 aaa-cmd: Does not honor alternate port defaulting from server
properties for the admin interface listener.
ID: 4515 Maps: Change the 'Quote' modifier to always, rather than
conditionally, quote the input.
ID: 4536 Diameter codec: Encode/Decode broken on non-default codecs.
ID: 4545 AuthEapTtls/AuthEapPeap plug-ins: Session state cached on tunnel
failure or error.
ID: 4554 AuthEapTls, AuthEapTtls, AuthEapPeap: Server ciphersuite order
not used.
ID: 4557 SMT: NPE when tailing log file on the config server and the
network connection drops.
-=5.2.11 Release=- 2008/08/17
-=5.2.10 Release=- 2008/08/13
ID: 4768 USS CounterManager: Remove empty counter values upon decrement
to zero.
ID: 4770 AI: NPE in 'java threads' command upon rare conditions.
-=5.2.9 Release=- 2008/04/03
ID: 4545 AuthEapTtls/AuthEapPeap plug-ins: Session state cached on tunnel
failure or error.
ID: 4551 Logging: List channel doesn't always honor work item based
log blocks.
ID: 4554 AuthEapTls, AuthEapTtls, AuthEapPeap: Server ciphersuite order
not used.
ID: 4555 SMT: Error Opening Records in Database Panel when the primary
key column is an integer type.
ID: 4579 SMT: ClassCastException while running LiveAdministrator.
ID: 4580 File reload: ConcurrentModificationException thrown during
'file reload' when the server is under heavy load.
ID: 4583 CallFlow property: Deadlock observed when server under load
during property expansion in callFlow.
ID: 4585 NasLoad/RadiusTool: Change flow control to avoid pulsing when
loading a server.
ID: 4595 Admin Command: 'diag engine active' can throw
NullPointerException when the server is under heavy load.
-=5.2.8 Release=- 2008/02/15
ID: 4495 ReadSectionText plug-in: SkipBadEntries & ColumnOneMode broken.
ID: 4496 SSH server: Message size field unchecked in j2ssh.
ID: 4507 va-cmd: Does not honor non-default server address specified
in server properties.
ID: 4515 Maps: Change QUOTE modifier to always quote.
-=5.2.7 Release=- 2008/01/28
ID: 4486 AuthLocal plug-in: User-Name with realm not processed correctly
with MS-CHAPv2.
ID: 4490 Iterate plug-in: FailureMap, not ErrorMap, is executed upon a
DISCARD disposition.
ID: 4492 StateServer: Validation exception with accounting on and empty
session key.
ID: 4493 Evolium-W3 sample: Clear MAC/User-Name state when accounting on
record received.
-=5.2.6 Release=- 2008/01/21
ID: 4450 Fixed typo with session timeout value in WiMAX W3 policy
set.
ID: 4462 LDAP: Fix attribute set requested for read operation when
operational and non-operational attributes are in map.
-=5.2.5 Release=- 2007/11/19
ID: 4370 Admin interface: 'file reload ...' command did not always
update all uses of the cached file.
ID: 4407 Admin interface: 'file reload diameter_peers' caused a
ConcurrentModificationException.
ID: 4416 ReadColumnarText, ReadDelimitedText plug-ins:
Data in the operator-index column was not case-insensitive.
ID: 4418 Jdbc, Ldap, QipDhcpUpdate, TacacsPlus plug-ins:
Timeouts would not progress through policy flow until the
connection actually failed.
-=5.2.4 Release=- 2007/10/23
ID: 4408 Test clients: Fix option/alias clash assertion checks.
-=5.2.3 Release=- 2007/10/19
ID: 4333 Ldap plug-in: Attribute names can be changed by normalization
when searching, and not matched by the Ldap server.
ID: 4360 AuthRsaAce plug-in: Add support for status 4 (NEXT_CODE_BAD).
ID: 4376 File Reload: display exception if build fails.
ID: 4380 TACACS+ server: The connection wasn't closed when an EOF was
received on the socket.
ID: 4386 Statistics: Item active count stat not properly maintained
when plug-ins suspended.
ID: 4403 AuthLocal, AuthNt plug-in: Sign extension bug with MS-CHAP-V2.
-=5.2.2 Release=- 2007/07/27
ID: 4241 AuthEapFast plug-in: AuthEapMsChapV2 should work in the inner
policy flow when 'ServerAuthenticated=YES' is specified.
ID: 4287 Admin Interface: Various command outputs had column display
wrapped in quote characters if spaces were present.
ID: 4288 Setup: Fix logging errors. Exceptions are not being logged
consistently.
ID: 4291 Dictionary: Grouped or Structured attributes did not work if
specified in a non-default codec.
-=5.2.1 Release=- 2007/06/22
ID: 4051 AuthSafeWord plug-in: Update external safeword libraries to
work around driver bugs.
ID: 4224 MethodDispatch: Error parsing Cron entries.
ID: 4227 TACACS+: Skip empty args during decode.
ID: 4228 TACACS+: Sample policy flow uses GETDATA instead of GETPASS.
ID: 4231 AuthEapPeap plug-in: TlsException: Pad length out of bounds
(multiple clients).
ID: 4247 Cron: Client timeout not set so requests discard as too old.
ID: 4249 Dictionary: Change value type for Bay-User-Level and
Bay-Audit-Level AVPs.
ID: 4250 Diameter: Deadlock occcured when connecting to a peer(localhost)
on fast machines.
ID: 4260 Setup: Don't pop a dialog when not in GUI mode. This caused the
setup program to exit without any indication when an install
problem occured on a headless server.
ID: 4261 ReadUserFile plug-in: File contents dumped to log at verbose
level when key not found. This issue could manifest in other
contexts.
ID: 4277 SMT: When copying method dispatch entries needs means to edit
the entire entry.
ID: 4278 SMT: Problems with cron method dispatch editor.
ID: 4279 Parse: Handle literal '>' in HERE doc.
-=5.2.0 Release=- 2007/04/30
ID: 4151 Ldap plug-in: Server stops processing requests in rare driver
race condition.
ID: 4154 SMT: Method names with . in them do not display in stats panel.
ID: 4158 SMT: RMI Error when editing rules for user in security_users
locally.
ID: 4184 SMT: When editing Enumerated attributes allow the entering of
numeric values.
-=5.1.12 Release=- 2007/11/16
ID: 4427 Maps: Add '.' to the isName modifier character list
ID: 4428 StateServer plug-in: Return ERROR when replica not active.
-=5.1.11 Release=- 2007/11/09
-=5.1.10 Release=- 2007/10/29
ID: 4413 Call plug-in: Work items are double scheduled.
-=5.1.9 Release=- 2007/10/26
-=5.1.8 Release=- 2007/10/09
ID: 4388 Engine: Schedule continuation work at the head of the
work queue.
ID: 4391 USS: Record the last secondary ping success to optimize
reconciliation.
ID: 4392 USS: Mark resurrected entries as INACTIVE, to avoid a
RuntimeException stack trace.
-=5.1.7 Release=- 2007/06/13
ID: 4255 SMT: Printing auth stats causes an exception.
ID: 4264 SSHD: Stair-step output effect when server runs on
the Unix platform.
ID: 4265 SMT: Port Stats Panel - Error in panel when Server is shutdown.
ID: 4266 Fuse Manager(lo-rez timeout handler): Cancelled fuses
not always removed from the fuse collection.
ID: 4266 HA-USS/StateServer plug-in: Add 'closed' sub-state
to INACTIVE. This additional heuristic allows the
state machine to drop certain mis-ordered events.
Make sure delete events replicate. Add flow control
to plug-in when primary replication queue has backed up.
ID: 4267 SMT: Port Stats Panel - sub key list is not always
updated when select key is updated.
-=5.1.6 Release=- 2007/05/30
ID: 4182 TACACS+: AUTHOR REQUEST arguments lenghts improperly encoded.
(4 bytes instead of 1).
ID: 4185 Challenge plug-in: Default value of Challenge-Map property
changed to a non-optimal value. Old value restored.
ID: 4202 SMT: Modification of IPAM pool-selector commited conflicting
pool-types to memory.
ID: 4225 Dictionary: Change the VSA encoding of the Lucent-AAA back to
RFC format. Needed for backwards compatibility.
ID: 4233 USS Triggers: Fix work item flow control.
-=5.1.5 Release=- 2007/04/17
ID: 4166 Admin Interface/SMT: Method Stats did not work when a method
name contained a '.' (period).
ID: 4172 LDAP service: IllegalStateException when processing an
abandon timeout.
-=5.1.4 Release=- 2007/04/05
ID: 4138 TACACS+: Args placed in the request variable group were not
accessable in policy flow.
ID: 4140 TACACS+: Memory buffers for work flow responses were leaked.
ID: 4141 IPAM: IPv6 pool configuration loses the last octet of the
prefix if no prefix width is specified.
ID: 4144 Windows Service: The service monitor thread did not report
server shutdown until ten seconds after the server actually
shut down. This caused problems when using the SMT restart
server option.
ID: 4145 TACACS+: Don't send response when CONTINUE_FLAG_ABORT is set.
ID: 4153 TACACS+: Honor mandatory bit when encoding args in responses.
ID: 4156 USDS: Deadlock found when processing response timeouts to DAG.
ID: 4162 Engine: Change the statistics for workitem and method counts
to longs, to avoid integer overflow.
ID: 4164 AtFile propertyInfo: Livelock possible when processing a burst
of activity and the "%method" syntax is used to invoke an
inner policy flow.
-=5.1.3 Release=- 2007/03/16
ID: 4082 LDAP test client: died with unexpected exception (NPE).
ID: 4083 SMT: Error dialogs invoked from nested dialogs could hang
the SMT.
ID: 4087 Dictionary: The attribute numbers for 3GPP2-Carrier-ID and
3GPP2-GMT-Time-Zone-Offset were switched.
ID: 4090 SMT: Server start/stop broken if the services ran under the
Windows service control manager.
ID: 4092 SMT: Make database import of delimited files use one relative
column numbers.
ID: 4096 Engine: ClassCastException in certain uses of ValueValues.
ID: 4097 Engine: WorkItem leaked in duplication cache when using
Method-Timeout.
ID: 4107 CheckConditon plug-in: Returned SUCCESS, not FAILURE, when
evaluating a require-range with a missing input.
ID: 4110 Servers: PID file was deleted too early in the shutdown process.
This could cause races during restart operations.
ID: 4112 Snmp plug-in: The type modifiers in the request map should not
be case-sensitive.
ID: 4115 IPAM: ArrayIndexOutOfBounds on certain malformed configurations.
4121
ID: 4116 IPAM: Don't allow configuration of pools or pool selectors with
mixed IPv4 and IPv6 addresses/prefixes.
ID: 4127 TacacsPlus: Rework variable names for encode/decode. See
TacacsPlusVariables.html for more information.
-=5.1.2 Release=- 2007/02/21
ID: 4003 PolicyGraph: Error processing policy flow with a PatternMatch
plug-in with a map defined using INDIRECT modifier.
ID: 4004 LawfulIntercept plug-in: Month off by one in GeneralizedTime.
ID: 4008 SSH interface: Deadlocked processing large AI outputs.
ID: 4013 SMT: PolicyFlow editor does not show the filename of an
errored method.
ID: 4017 Logging: Stack overflow when using dynamic expression in
log rule.
ID: 4020 Logging: Time based log channel did not compute the file name
properly when using non-default prefix and suffix values.
ID: 4023 IPAMv2: Don't allow addresses of different types to be placed
in the same pool.
ID: 4024 Diameter: Change relay routing semantics to be more consistant.
ID: 4030 Setup: In some circumstances, upgrading using command line
options failed to read the server_properties file.
ID: 4033 vacmd: gives EOF error.
ID: 4034 vacmd: a stack trace was output processing '-?' argument.
ID: 4036 SMT: Remote Server License Info was not reported correctly.
ID: 4041 AuthEapTls: Windows Vista supplicant did not work.
ID: 4044 SMT: Reload button in Clients Panel shouldn't include
non-licensed parts.
ID: 4045 Logging: Accounting Disposition logging not working.
ID: 4046 SMT: Clients Panel saves all files when only one is changed.
ID: 4047 SMT: LiveAdministrator shows command aliases in the Advanced
panel.
ID: 4049 SMT: PolicyGraph Panel: Ending Point Rank default is incorrect.
ID: 4052 SMT: Look And Feel property does not remember value correctly.
ID: 4053 SMT: Add peer list to Realm Route Table for proxy case.
ID: 4056 Ldap Client: Reads files with the same file suffix as RADIUS
Test Client. Now uses '.ldap'.
ID: 4057 Engine: Work Items were leaked when a Method-Timeout fired.
ID: 4059 SMT: Copy row option in PF editor does not work.
ID: 4065 SMT: Print Configuration does not print correctly.
ID: 4066 Radius test client: Adding support for multiple servers broke
retry count logic. (Off by 1).
ID: 4068 Properties: Multi-line properties read from HERE docs sometimes
did not validate due to a trailing extra blank line.
ID: 4070 SMT: Printing in Test Client doesn't print multi-line values
correctly.
ID: 4074 Logging System: regex pattern match uses match semantics, not
contains. This change was not carried forward from the 4.5 branch.
ID: 4075 SMT: User File Editor dialog parent broken.
ID: 4077 SMT: Clients Panel not disabling panel correctly for readonly
user.
ID: 4087 Dictionary: Code numbers for 3GPP2-Carrier-ID and
3GPP2-GMT-Time-Zone-Offset were swapped.
ID: 4088 Windows Service Launcher: Invalid startup parameters.
-=5.1.1 Release=- 2006/12/29
ID: 3294 Windows Installer: Services replaced on upgrade without
prompting user if installing in a second directory.
ID: 3678 Diameter: Redirect answers only contain one peer.
ID: 3778 Radius, StateClient, StateServer plug-ins: Maps don't
3873 support grouped values.
ID: 3947 Diameter: Codecs don't include applications from parent codec.
ID: 3960 Ldap plug-in: Handle server timeout of cached connections.
ID: 3962 StateServer plugin: Can't use value with periods in count lookup.
ID: 3966 SMT: Server control icons on toolbar don't show status correctly.
ID: 3977 SMT: Log channels read after PolicyFlow file. This causes all
configured Channel-On-Disposition properties to fail.
ID: 3991 GenerateAkaQuintet plug-in: XOR algorithm generates bad values
for IK and CK.
-=5.0.12 Release=- 2007/04/13
ID: 4156 USDS: Deadlock found when processing response timeouts to DAG.
ID: 4172 LDAP server: IllegalStateException when processing an abandon
timeout.
ID: 4174 Rollover Manager: Support custom patterns when using special
rollover periods.
-=5.0.11 Release=- 2006/11/06
ID: 3910 AuthRsaAce plug-in: Update authapi.jar used by AuthRsaAce
plug-in to fix a problem in library processing priorities
in sdopts.rec.
ID: 3911 Ldap sample: The policy flow had a typo that broke
template retrieval.
ID: 3913 PolicyAssistant (regression): Accounting records are not
recorded if the USS is configured for localhost.
ID: 3916 SMT: NPE paring a policy flow file that's been externally
modified with bad syntax.
ID: 3917 SMT: Exception when printing from PolicyFlow Panel.
ID: 3923 Logging (USDS): Logging of this subsystem went to standard
out, rather than honoring the configured log channels.
ID: 3924 QueryUss plug-in: Returned an ERROR disposition rather than
FAILURE when an entry was not found using either the
or indices.
ID: 3927 SMT: Expiration dates are not displayed properly in the
Cache Entry Viewer in AdminInterface Panel.
ID: 3928 SMT: Reinstall services (Windows) did not work.
ID: 3935 HA-USS: If a replication element with an identical (to the
second) timestamp is presented, it is discarded.
ID: 3942 AuthSafeWord plug-in: Unable to set extra properties.
ID: 3945 SNMP: Response in different order than request.
ID: 3946 SNMP: Can not respond to requests with an duplicated OID.
-=5.0.10 Release=- 2006/09/29
ID: 3854 SMT: Enabling Database Panels causes Outline to paint
incorrectly.
ID: 3860 SMT: ClassCastException when trying to print stats panel.
ID: 3863 Maps: Fix NPE in exec with null value.
ID: 3864 Branch plug-in: Remove unsupported modes from the SelectMode
property.
ID: 3865 Radius plug-in: Fully support delete statements in the
RequestMap property.
ID: 3870 License: The license check for radius clients used the wrong
license element. This tended to not allow CIDR based entries
in the RADIUS clients file.
ID: 3877 SMT: USS port statistics don't display the active timeout field.
ID: 3882 SMT: Editing Log Channel entries doesn't show changes.
ID: 3883 Dictionary: Fix merge issue.
ID: 3885 Test Radius Client: NAS Load Callback sends INTERIM-UPDATE
records continuously until the STOP is scheduled for the
default(-1) time value.
ID: 3888 SNMP server: NPE when clients are removed from clients file.
ID: 3889 SNMP server: Not all base MIB information was returned.
ID: 3890 Logging: The On-ERROR or default log channel was not invoked if
a log output channel threw an unchecked exception.
ID: 3891 QueryUss plug-in: Fixed deadlock condition in the USS.
ID: 3896 Diameter client: Destination-Host property field was ignored.
ID: 3897 Engine: Only honor the Discard-On-Error server property for
outermost radius work items.
ID: 3898 Logging: The policy flow file name was not included in trace
output.
ID: 3899 Logging: Honor the Reveal-Hidden-Attributes server property in
3900 more locations. New locations include AuthEapGtc, AuthEapPeap,
and AuthEapTtls plug-ins. Also allow this property to be set
at runtime. Mark dictionary attributes EAP-Message, EAP-Payload,
and EAP-Reissued-Payload as hidden.
-=5.0.9 Release=- 2006/08/16
ID: 3839 Policy server statistics: MIB Statistic variables now return
centi-seconds since boot or reset rather than milliseconds from
the epoch.
ID: 3842 SMT: Fix validation to only allow for dotted quads for begin
and end addresses in pool definitions
ID: 3843 Policy Server: Fix incorrect conversion of IPv6 addresses. The
Policy server now allows IPv6 addresses for source and
destination addresses of RADIUS packet.
ID: 3848 LDAP USS: Now returns correct attributes for counter nodes when
querying the LDAP USS counter table with no indexes defined.
ID: 3850 SMT Startup: Fix for SMT startup deadlock when loading server
statistics panel.
-=5.0.8 Release=- 2006/07/18
ID: 3826 LDAP server: Fix IndexOutBounds exception when formatting a
large search result.
ID: 3827 AVP text parser: Improve error detection/reporting.
ID: 3828 WriteFixedFile/WriteDelimitedFile plug-ins: The character set
parameter was ignored and the system default file encoding used
instead.
-=5.0.7 Release=- 2006/07/15
ID: 3821 LDAP server: Fix mapping of LDAP attributes to USS attributes.
User attributes retrieved from the USS through LDAP will have
'ENTRY-' prepended.
ID: 3822 WriteDelimitedFile plug-in: End-of-line characters were not
written. A new property, WriteDelimitedFile-EOL has been added
to support configuring which EOL is written. If not specified,
the system default EOL will be used.
ID: 3824 Fork plug-in: The read map was applied to non-success inner
policy flows.
-=5.0.6 Release=- 2006/07/11
ID: 3793 SMT: Unable to remove control linkages in the Policy Flow editor
when using the method properties dialog.
ID: 3804 SMT: Method Dispatch NullPointer exception when adding a diameter
entry with an application with no configured commmands.
ID: 3808 Maps: The COUNT modifier returned the could of map elements,
rather than one, its list oriented count.
-=5.0.5 Release=- 2006/06/14
ID: 3750 SMT: Certificate Tool did not warn when over-writing existing
certificate files.
ID: 3752 SMT: The PolicyFlow editor had validation issues when changing
3754 control linkage properties (Method-On-XXX).
3756
ID: 3753 LDAP server: LDAP searches can not retrieve specific attributes.
ID: 3757 LDAP server: Extraneous RDN returned from USS-entries DN.
ID: 3758 Radius plug-in: Challenge processing allowed a STATE attribute
3772 to leak into the work item reply. This could cause a
NullPointerException.
ID: 3767 ReadHlrUser plug-in: Fix NullPointerException.
ID: 3769 SMT: Radius and Diameter clients fail in a SMT-only install.
ID: 3771 Radius plug-in: The plug-in could not determine the type of packet
to send if invoked inside an inner policy flow and the
'packet.packet-type' variable was not available.
ID: 3780 PolicyAssistant: Typo in policy flow ignored
Disposition-On-Missing-Template feature configuration.
ID: 3782 Installer: PolicyFlow upgrade failed if long deprecated
server properties were used to rename policy flow files.
ID: 3783 Iterate plug-in: Challenge did not work from the inner
3784 policy flow.
ID: 3786 EapNotification plug-in: wrong ID sent after success.
ID: 3787 Logging system: Some debug trace message were lost when issued
from inside an nested policy flow.
ID: 3788 SMT: Unable to open an empty file in File Manager as Property File.
ID: 3789 SMT: Unable to create a new file. This functionality was originally
in the now removed 'configure file editor'.
-=5.0.4 Release=- 2006/05/17
ID: 3677 Redesign Diameter realm routing support.
ID: 3692 Diameter group values not validated.
ID: 3728 Dictionary: Fix updated IS-835-D 3GPP2 QoS attributes.
ID: 3730 Server status command does not work with config server.
ID: 3732 Policy server: License checking for licenses restricted to
more than one host address only check the last address.
ID: 3733 Setup: After upgrade nr files remain in bin directrory.
ID: 3734 SMT: PolicyFlow description button grays out when attached to a
remote server.
ID: 3735 Installer: Copy the expert sample when installing with the
'write your own' option.
ID: 3741 SMT: Don't allow duplicate packet types in the method
dispatch editor.
ID: 3743 Installer: The certficates generated during install were not
properly formed if the URL field was not set.
ID: 3744 Config Server: The server_properties file did was not used when
setting up log location, log level, telnet port or rmi port.
ID: 3745 HlrOmlog log channel: Update to support the new priorty
levels in the omlog API.
ID: 3749 SMT: An NPE was thrown when generating a certificate without
a password in PKCS#12 format.
-=5.0.3 Release=- 2006/04/27
ID: 3725 Setup: Unable to upgrade policy files with methods that depend on
Java jar files that are not in the classpath of the installer.
ID: 3726 EAP-SIM and EAP-AKA Test Clients: Fast reauthentication does
not work.
-=5.0.2 Release=- 2006/04/24
ID: 3691 SMT: When client properties were created, the default value for
Wire-Decode-Map prevented the request variable group from being
populated in the policy server.
ID: 3712 SMT: Error found in PolicyFlow editor changing from a plug-in
that supports Method-On-Failure to a plug-in that does not
support Method-On-Failure.
ID: 3713 SMT: Error found in PolicyFlow editor when trying to reference a
method name from a newly created method file.
ID: 3718 AuthEapMsChapV2: MS-MPPE-Recv-Key and MS-MPPE-Send-Key are
created for Diameter requests. To prevent this behavior, a key
map property was added to the plug-in.
ID: 3719 Dictionary: Sub-type in 3GPP2-HRPD-AT-Hardware-Identifier VSA
needs type to be Hex-OctetString.
ID: 3720 Samples: EAP sample has a error in how packet.EAP-Nak-Name was
processed.
ID: 3722 Samples: IS-835-C HAAA sample missing realm_info.txt file in
release.
ID: 3723 Networking: On multiple CPU systems memory is not flushed
properly when setting flags on a network selector. This bug
effects the ReadMapGateway plug-in, the processing of Diameter
requests, and the LDAP interface to the Universal State Server.
-=5.0.1 Release=- 2006/04/03
ID: 3499 SMT: A blank panel would sometimes appear if the internal frame
was in maximized mode.
ID: 3649 Setup: Prompting to keep existing files still prompts for
certificate generation.
ID: 3651 Setup: Needs to record certficate password in security_properties.
ID: 3659 Certificate Tool: Country field always defaulted to 'US'.
ID: 3660 PolicyAssistant: No prompt for the TTLS certificate information
was given when TTLS -> GTC -> Userfile was configured,
ID: 3664 PolicyServer: Could not initialze without a real network
interface enabled.
ID: 3680 Diameter test client: updated cached Origin-State-Id used by
the diameter server.
-=5.0.0 Release=-
ID: 3213 SMT: When connected to a remote server dictionary changes
are remote only.
ID: 3639 Logging: A log rule with an item condition would always
match if the logging source didn't provide a work item.
-=4.5.7 Release=-
-=4.5.6 Release=-
ID: 3619 Fix USDS sample policy flow.
-=4.5.5 Release=-
ID: 3592 AuthEapSim plug-in: A NullPointerException occurred if a
supplicant didn't send a required nonce.
ID: 3593 SMT: Some state was improperly cached when switching between
logons between different servers.
ID: 3609 USS: The uss_counters was not closed after server startup.
ID: 3612 Remove too strict length checking on Password, APassword,
SaltedPasswd, ASecret value types.
ID: 3613 ReadMapGateway plug-in: The connection to the gateway wasn't
closed if the gateway was killed. This left the connection
in CLOSE_WAIT state.
-=4.5.4 Release=-
ID: 3516 AuthSecurId plug-in: ACE C library deletes node secret from
\WINDOWS\SYSTEM32, conflicts with new AuthRsaAce plug-in.
ID: 3567 3GPP2-Accounting-Container: Incorrect encoding of embedded
accounting attributes.
ID: 3569 Http plug-in: Only shutdown socket output stream on POST
method.
ID: 3573 SMT: PolicyFlow editor generates error if license file not
found.
ID: 3582 Installer: admin user and password were not being saved when
using -quiet mode from the command line on an upgrade.
ID: 3583 ReadMapGateway plug-ins: Connections to the gateway on the
same physical machine would fail.
ID: 3584 Jdbc plug-in: When continuing in a variable search list after
a null return in the OutMap, an unquoted constant caused an
error.
ID: 3585 Jdbc plug-in: A recursion loop occurred when processing a
variable modifier in the OutMap.
ID: 3588 Dictionary: Mark a few Verizon Wireless attributes as
legal in Access-Reject messages.
-=4.5.3 Release=-
ID: 3518 Set plug-in: Input properties did not support multiple
scalar variables.
ID: 3529 Windows Service launcher: Messages sent to the system event
log were malformed.
ID: 3531 AuthEapAka plug-in: EAP identifier not incremented after
identity response.
ID: 3532 AuthEapAka plug-in: Error with reauthentication and counter
too small.
ID: 3536 Http plug-in: field names sent in GET or POST commands could
have their capitalization changed arbitrarily.
ID: 3538 Ldap plug-in: Change initialization sequence of the secure
random function to better support JDK 1.5.
ID: 3540 Ldap plug-in: Don't advertise AES 256 cypher suites unless
the JCE policies allow it.
ID: 3547 nr script: Propagate java options -D* and -X* through to
the nrexec script.
ID: 3552 ReadMapGateway plug-in: I/O access to the gateway could delay
a full TCP timeout, rather than honoring the plug-in property.
ID: 3553 Engine: Various plug-ins which required an inner policy flow
call would not abort the inner flow when a method timeout
occurred on the outer flow.
ID: 3554 Engine: 'Item too old' checking was broken when dealing with
plug-ins that suspended.
ID: 3556 Utility: Strings with a 'X' character would have quoting
forced on unnecessarily.
ID: 3558 Utility: The escaped string parser did not properly handle
\x and \u sequences in all cases.
ID: 3561 SMT: Editing Method property in the Fork plug-in with dynamic
names was broken.
-=4.5.2 Release=-
ID: 3478 Admin command 'diag engine active':
A ConcurrentModificationException could appear under load.
ID: 3479 Cache Manager: Timeouts could be missed if set very low
(1 second).
ID: 3480 Jdbc plug-in: Reorganize loop condition checks in getResults
to work around a possible JIT bug.
ID: 3486 Various EAP plug-ins: Write maps with a single '*' on the left
hand side wrote to the outer item, not the tunnel data.
ID: 3489 StateCache: Fix NPE when reading the USS state cache file
at server startup.
ID: 3495 Engine: Zombie thread statistic was never decremented when the
zombie thread finally died.
ID: 3497 Uninstall: Failed on Microsoft Windows platforms.
ID: 3503 AuthEapSim plug-in: Failed with a ArrayIndexOutOfBoundsException
if presented with bad data from the client.
-=4.5.1 Release=-
ID: 3411 SMT: A file save through a remote config server caused an
I/O exception if the remote file was opened by another process.
ID: 3416 AuthSecurId plug-in: AceShutdown was not being called in the
securidclient helper. This would cause the library to not
reliably persist the replica status.
ID: 3419 Jdbc plug-in: The method property Jdbc-ConnectionTime was
mis-spelled as Jdbc-ConnnectionTimeout (3 n's).
ID: 3421 Address Manager: The address_pools file was not closed after
reading.
ID: 3422 AuthEapPeap plug-in: An EAP-Nak caused the reply variable
group to be cleared.
ID: 3423 SMT: The Log channels panel threw a
ArrayIndexOutOfBoundsException when attempting to move an
entry past the list boundary.
ID: 3425 PolicyAssistant: The wizard did not display old policies
after an upgrade.
ID: 3436 Exec plug-in: The Exec-Timeout was not honored if it expired
before the process completed launching.
ID: 3440 Maps: The "toShort" modifier didn't work with a value with
the sign bit set.
ID: 3442 Maps: Numeric escape sequences were not recognized within
HERE quoting.
ID: 3444 Engine: Method-Timeout was not always honored on multi-CPU
systems due to a visibility issue.
ID: 3456 EAP plug-ins: Add Max_EAP_Error_Count as server/client property
and use to determine whether request should be retransmitted.
ID: 3457 USS: timers could be lost if a very short INACTIVE timeout
fired about the same time as new event.
ID: 3462 Installer: The minimum java version check did not match the
actual server check.
ID: 3464 PolicyAssistant: Some combinations of EAP authentication
types were detected as not allowed.
-=4.5.0 Release=-
ID: 3054 Jdbc plug-in: A SELECT statement that succeeds with no result
map defined would cause an FAILURE disposition.
ID: 3200 PolicyAssistant: ActiveDirectory users did not have group
access checked.
ID: 3228 AI command 'state stop' created a USS entry if it didn't
already exist.
ID: 3232 SMT: Sub-attribute editing was not supported.
3233
ID: 3296 PolicyAssistant: Only local groups, but not global groups
were being checked for the user source NT SAM.
ID: 3297 AI command 'quit' not was not allowed if not logged in.
ID: 3300 WriteSnmpTrap plug-in: Leaked a file handle for each trap sent.
ID: 3309 The Iterate plug-in was not properly displayed in the policy
graph output.
ID: 3312 RADIUS test client: the '-auth' argument processing was broken.
ID: 3322 Split plug-in: The plug-in did not follow Method-On-Failure
when the input was empty.
ID: 3332 Jdbc log channel: The SQL statement was malformed if the
'LogLevelName' column was included.
ID: 3341 AuthLocal plug-in: Debug output did not honor the
'reveal_hidden_attributes' server property.
ID: 3346 Java plug-in: Fix an NPE when makeFailure is invoked without
a message.
ID: 3350 PolicyAssistant: If the USS was disabled, all authentications
would unconditionally succeed.
ID: 3352 SMT: The log tail panel did not notice file rollover events.
ID: 3364 Jdbc, Dhcp, CheckList plug-ins: Auto-conversion of certain
properties introduced quoting errors.
ID: 3367 AI commands: Security properties were ignore, and full admin
rights given.
ID: 3372 Engine: Check items of type boolean did not compare properly.
ID: 3385 Cipher plug-in: Used Cipher-CharSet for output in encrypt mode.
ID: 3394 AI commands: 'file rename' and 'file delete' only checked
COMMAND access permissions, and not the FILE access.
ID: 3399 AI commands: Debug logging of the 'login' command logged
the password instead of the username.
-=4.4.4 Release=-
ID: 3290 PolicyAssistant: When using the RSA/ACE SecurID user source,
the 'SecurId-Template-Enabled' option was ignored.
ID: 3291 Launcher: When running as a service on the Windows OS, a
console logoff would kill the server.
ID: 3295 AuthEapTls, AuthEapPeap, AuthEapTtls plug-ins, PolicyAssistant:
A bug was found that effects how trusted certificates are used
with certificate based plug-ins. This bug effected how client
certificates were verified when the filename for the trusted
file was dynamic. When the trusted file name is dynamic, the
certificate verifying code did not purge trusted certificates
used by previously loaded trusted file. The new code now
creates a dedicated certificate verifier per combination of
server and trusted certificate filename.
-=4.4.3 Release=-
ID: 3267 Syslog logdirector: The timestamp was sent in 12 hour,
rather than 24 hour format.
ID: 3272 PolicyAssistant: The SecurID user source template from
shell feature was broken.
ID: 3273 SMT: The LiveAdminstrator threw a NullPointerException if
'view file' was clicked and no file was selected.
ID: 3275 Engine: The timer(chronograph) thread could stop processing
timeouts when a rare race condition occurred.
ID: 3277 PolicyAssistant: When using LDAP as an external authentication
source, the policy flow had problems determining which schema
to use.
ID: 3281 Launcher: The java version check was too strict. Version
1.4.2 in the minimum, but some vendors formatted the version
in slightly different ways.
-=4.4.2 Release=-
ID: 3237 PolicyAssistant: When VAR_ACE is set for SecurID, the PATH
variable was discarded.
ID: 3238 PolicyAssistant: Mapped inner EAP attributes were improperly
overriding outer EAP attributes in tunnel configurations.
ID: 3239 CheckX509Crl plug-in: CRLs were not cached, and each plug-in
invocation made a new request.
ID: 3240 CheckX509Crl plug-in: Problems with decoding CRLs with a
% character.
ID: 3241 AuthEapTls, AuthEapPeap, AuthEapTtls plugins: Eap-Message and
Message-Authenicator attributes were getting overwriten by the
key map.
ID: 3244 PolicyAssistant: Selected tunnel transports for the default
authenication type were not saved.
ID: 3248 AI: The 'file delete ' command didn't delete the file.
ID: 3254 Launch: Minimum Java version 1.4.2 was not properly enforced.
ID: 3256 AuthEapTls, AuthEapPeap, AuthEapTtls plug-ins: A deadlock
could occur under severe load.
ID: 3259 SMT/CertificateManager: NPE when missing the file name for a
certificate.
ID: 3265 AuthEapTtls plugin: When MS-CHAP-V2 is tunneled inside of
EAP-TTLS the tunnel reply is clobbered, making it impossible
to map data from the tunnel reply.
-=4.4.1 Release=-
ID: 3175 SNMP: Fix nextOid when processing a scalar without an index.
ID: 3180 PolicyGraph: Fix an NPE when a Branch method did not specify
Branch-SearchMode.
ID: 3186 SMT: PolicyGraph properties are now saved to the same file as
the command line version.
ID: 3192 Engine enumeration values: Restore fallback logic (removed in
4.4.0) that allowed enumeration values with no match in the
dictionary to be propagated as numeric values.
ID: 3201 Engine: ClassCastException when multiple Session-Timeout
attributes are present.
ID: 3215 HAUSS: Under certain conditions, the wrong timestamps were
being used to update records.
-=4.4.0 Release=-
ID: 2823 SMT: The NasLoad start/abort button state is not properly
maintained on parse errors.
ID: 2984 SMT: Some new data types not in available dictionary editor.
ID: 2989 Digest, Hmac, Cipher: Can't save to attribute marked as
hexed-opaque in the dictionary.
ID: 3007 Engine: A stack trace was output when a work item was resumed
and the work queue limit was exceeded.
ID: 3018 SMT/Engine: The remote method interface to the radius server did
not enforce all access rules when invoked by the SMT.
ID: 3044 RadiusCodec: The strict encode flag was ignored when value
coersion failed.
ID: 3045 Stats: Some OIDs in the radius accounting MIB are not linked to
the appropriate statistics variable.
ID: 3046 SMT: The clients panel stored the wrong value of 'server time zone'
when set to default.
ID: 3048 Stats/RadiusClientMIB: Responses from unknown entities are counted
as 'packets dropped' rather than 'invalid server address'.
ID: 3055 Entries in the clients file with CIDR style address would have issues
if an entry with a longer prefix followed an entry with a shorter one
and otherwise matched.
ID: 3060 The AuthNt, Exec, and Jdbc plug-ins did not properly execute their
3061 maps if the INDIRECT modifier was used.
3062
ID: 3071 PolicyAssistant: Proxy with 'token' trust and no token available
caused an error.
ID: 3080 A reload attempt of a non-existant file caused the filename to be
registered for future wildcard reloads.
ID: 3088 PolicyAssistant: LDAP source does not search on UID of the
inetOrgPerson object.
ID: 3089 PolicyAssistant: readNtSam tries to map ${ras-info}
to ${Windows-Dialin} boolean
ID: 3100 PolicyAssistant: conversion of old data from version 4.2 and
earlier did not work.
ID: 3123 PolicyAssistant: When processing a request with a missing realm
we incorrectly process it and compare it to the unknown-realm.
ID: 3135 nrexec on HPUX didn't set up SHLIB_PATH.
ID: 3137 SNMP: IP address were sent as unsigned integers, rather than 4
byte octet strings.
ID: 3144 Automatic conversion of time based logging failed during upgrade.
ID: 3155 Radius plug-in: Pending count in client MIB not decremented on
copymode timeouts.
-=4.3.12 Release=-
ID: 3137 SNMP: IP address were sent as unsigned integers, rather than 4
byte octet strings.
ID: 3048 Stats/RadiusClientMIB: Responses from unknown entities are
counted as 'packets dropped' rather than 'invalid server
address'.
ID: 3140 AuthEapTls: Thread burn with EAP-TLS.
ID: 3155 Stats: Pending requests not decremented
on Copy Mode Timeout.
-=4.3.11 Release=-
ID: 3057 Ldap: Changes for hidden fields caused indirect in Ldap maps
to not retrieve field.
-=4.3.10 Release=-
ID: 2991 nr script: -run isn't properly handed off to the
nrexec script.
ID: 2994 nr.exe: The launcher doesn't detect server up when '-run'
is used.
ID: 3005 SMT: The user file editor didn't accept large (> 31 bit)
unsigned integers in the attribute editor.
ID: 3006 A stack trace was output when a work item was resumed
and the work queue limit was exceeded. The item was also
never released from the duplicate cache.
ID: 3013 SMT: Empty lines in comments blocks in method files don't
get saved properly.
ID: 3016 SMT: Deprecated methods in method files don't get saved
properly.
ID: 3019 SMT: In the log rules panel, if the first item is selected
and 'move down' hit, an exception is thrown.
ID: 3020 Pending requests counts in the RADIUS client mib were not
decremented when the RADIUS plug-in runs in copy mode.
ID: 3022 SMT: Deal with a rare race condition in the statistics panel
that manifested as an IllegalThreadStateException.
ID: 3024 SMT: The Interval change for proxy times is aways 0 even
if there was a change.
ID: 3025 The diagnostics from the AI command 'cache load' indicate save
rather than load.
ID: 3026 The diagnostics from the AI commands 'cache load' and 'cache
save' need more information upon failure.
ID: 3038 nrcert: Change Key Usage in PKCS#12 request from
'Non-Repudiation' to 'Key Encipherment'.
ID: 3039 The 'cache load' command did not clear timers on the original
cache elements being replaced. This would cause unneccessary
memory usage. (At least until the timers expired).
-=4.3.9 Release=-
ID: 2957 Ldap sample policy flow: reply map did not map reply items.
ID: 2958 The NasLoad panel in the SMT would work improperly if the
overlap was set higher than 256 times the number of local
sockets.
ID: 2959 The NasLoad panel in the SMT would catch QueueFullExceptions
if the overlap was set higher than 1000.
ID: 2960 The operators panel in the SMT would not show roles when a role
type NR-Access rule was being edited.
ID: 2971 The nrexec script on Unix variants did not properly read all
JVM options from the nrexec.cfg file.
ID: 2974 The RADIUS MIB variables radiusAccClientPendingRequests and
radiusAuthClientPendingRequests were returned as Unsigned32,
rather than Gauge32.
ID: 2977 SMT: If you create a method, then before saving, try to assign
it to a method by using the pop-up menu, it gives you a
validation error.
ID: 2981 Dhcp plug-in: The logging are used at item resumption in the
listener thread used the wrong logging area.
ID: 2982 EAP plug-ins: The message IDs used in EAP-Success and
EAP-Failure were incremented from the last request. This is
invalid per RFC 2284.
ID: 2985 Universal State Server(USS): Entries were not unindexed from
user defined indices when an inactive timeout occurred.
ID: 3042 Web Server: Sample CGI script not installed as executable.
-=4.3.8 Release=-
ID: 2899 Changes to control properties in the policy editor through the
context menu (right mouse click) did not get saved to file.
ID: 2919 Jdbc plug-in: a statement that was split onto multiple lines of
input did not always get parsed properly. A syntax error was
typically noted.
ID: 2923 Dhcp plug-in: options typed as unsigned 32 bit integers could
not be used.
ID: 2925 Log channels were not displayed when configuring the WriteLog
and Return plug-ins.
ID: 2932 WriteCache plug-in: Remove extra quotes when writing multi-value
values to the cache.
ID: 2934 PolicyAssistant: Windows Specific Check Items not checked.
ID: 2935 The logging system would corrupt certain variable expansions if
a log rule that used item variables (non-area) and was set to
blither level.
ID: 2940 SMT: Command history not accurate in advanced panel of live
administrator.
ID: 2942 Dictionary: Aliases were not properly resolved in certain rare
circumstances. The attribute 3GPP2-Correlation-Id has this
issue.
ID: 2947 SMT: NullPointerExceptions occurred while using 'nrsmt -panel
policyflow'.
ID: 2950 SMT: The rate display on server statistics panel truncated
to whole numbers.
ID: 2951 DHCP plug-in: ServerAddress not validated at startup.
-=4.3.7 Release=-
ID: 2814 LDAP does not honor the timeout property if DNS resolution of
the server address takes too long.
ID: 2839 RuntimeException stack trace when the state server processes
an explicit timeout event in INACTIVE state.
ID: 2884 NullPointerException in radius test client (nrtest) using an
EAP callback.
ID: 2886 Timeouts set in the StateServer request map modify the global
defaults, rather than the indicated entry.
ID: 2889 Installs on unix and unix-like operating systems don't work if
2890 the install directory path contains a space.
ID: 2891 Plug-ins marked as deprecated are unable to be saved using the SMT.
ID: 2894 The radius test client gets confused when using a callback for
PEAP, TTLS, or GTC and the overlap is set greater than one.
ID: 2895 The AuthSecurid plug-in output SHELL variable is set to text
that includes enclosing quotes.
ID: 2896 Variables of type TaggedSaltedPassword are not formatted properly
upon map output.
ID: 2898 Cannot parse alternate tagged input in the form "abc":1.
ID: 2900 WriteUmtsCdr: Defaults are reversed for DataVolumeUplink
and DataVolumeDownlink.
ID: 2901 WriteUmtsCdr: RecordSequenceNumber property is mandatory.
ID: 2905 Dictionary entry 3GPP2-MN-HA-SPI has the wrong type. It should
be INTEGER.
-=4.3.6 Release=-
ID: 2784 NT: nr kill option sometimes reports error even when server
is killed.
ID: 2821 Classic: Stack trace on bad format for custom rollover.
ID: 2822 Dictionary: Capitalization not maintained for some attributes
as defined in the dictionary.
ID: 2825 TcpConnectionManager: Connections were allowed to take longer
then the timeout configured. This would affect the LDAP,
ReadLDAP, and JDBC plug-ins.
ID: 2826 Logging: When log channel is set as a default log channel
standard error is used rather then the default log channel
when a log channel fails.
ID: 2827 Logging: Null Pointer Error on time based rollover.
ID: 2828 nrtest: -hex options sets log level to debug and does not
display hex trace
ID: 2829 nrtest: Stats always reports sending auth regardless of
packet type sent.
ID: 2830 SMT: NullPointerError when using Print Preview option.
ID: 2835 Doc: Image at bottom of USS Example is not displayed.
ID: 2841 StateServer: Allow data files saved using the "state save"
admin interface command to be compatible for NavisRadius
versions 4.3.0, 4.3.1, 4.3.2, 4.3.3, and 4.3.6.
ID: 2843 nrtest: Prompt File will not allow for skipping of AVPs.
ID: 2844 Logging: E-Mail Log Director discards radius transaction based
log entries.
ID: 2847 SMT: StatsPanel does not save settings when disconnected from
the RADIUS server by an error condition.
ID: 2848 UNIX and Windows program launchers do not support the same options.
ID: 2855 SMT: Log file still tailed when log window is closed.
ID: 2858 Fork: Method engine locks up when a forked item that
is in a suspended state exits with error.
ID: 2861 HA-USS: Counters may be different on primary and secondary
after reconciliation is complete.
ID: 2863 StateServer: StateServer-Event=Boot/Shutdown only works on
specific StateServer entries and not all entries for the
given device.
ID: 2865 Logging: RegEx pattern in log rule for an item is treated
as a matches pattern and not a contains pattern.
ID: 2866 SMT,Logging: log rules with a regex pattern that contain white
space was not properly quoted.
ID: 2869 SMT: PDF File report output file is held open until SMT
is exited.
ID: 2870 SMT: Print Dialog box is prompted for twice when printing.
ID: 2872 SMT: Active Logging rules display is repeated.
ID: 2875 Setup: Warn when installing on Windows versions that are not
supported.
ID: 2876 Logging: Deadlock when using RegEx logging rules.
ID: 2880 SMT: Log tail continues even when logged out of SMT in certain
conditions.
-=4.3.5 Release=-
ID: 2799 SMT: PolicyFlow comment box labeled wrong.
ID: 2800 AuthLocal: Local passwords that match DES password heuristics
with no Auth-Type and CHAP caused incorrect transport error.
ID: 2801 SMT: 'Methods not used report' should be titled 'Methods not
directly referenced'
ID: 2802 SMT: LiveAdminister - file viewer includes response code from
Admin Interface.
ID: 2803 SMT: Running a script file always reports OK even if there
was an error.
ID: 2805 SMT: IPV6-Address-Prefix not recognized as valid data type in
dictionary editor.
ID: 2806 SMT: DB Table panel checks counts on all tables including
ones which no data will be retrieved from.
ID: 2807 TcpConnectionManager: Deadlock condition exists.
ID: 2808 SMT: Live Administrator sometimes gets different or
incomplete results.
ID: 2812 nrcert: Null Pointer Error.
ID: 2813 ManageServers Shortcut: Null Pointer Error.
ID: 2815 SMT: Database Panel builds invalid MySQL select statements.
ID: 2820 Auto conversion to new log channels from pre 4.3.x caused error
when converting size based rollover.
-=4.3.4 Release=-
ID: 2769 SMT: Lockup on stats panel.
ID: 2780 SMT: Ports Panel still lists ports if no NASes are present.
ID: 2781 StateServer: Memory leak when inactive timeouts are used with
replication.
ID: 2782 Engine: Dynamic log rules trigger invalid propertyInfo
evaluation.
ID: 2783 SMT: Index Out of Bounds Error on MySql connection.
ID: 2786 AuthLocal: ClassCast Excepting when multiple CHAP-Challenge AVPs
are present in request (non-RFC Packet).
ID: 2785 PolicyAssistant: If you switch to NT SAM from Local file local
auth is still default.
ID: 2787 Jdbc: No Such Element Error.
ID: 2792 PolicyAssistant: If EapMsCHapV2 is enabled on UNIX platforms
PolicyAssistant prompts for NT Domain.
ID: 2793 Core: Client Codecs are not validated on startup.
-=4.3.3 Release=-
ID: 2754 WriteMail: Plug-in not listed in SMT.
ID: 2755 AuthNt: Map not required in Read-Only mode.
ID: 2756 AuthNt: Error when reading global groups from domain member
without server specified.
ID: 2759 PolicyAssistant: CheckItems not verified.
ID: 2760 Engine: Files with data in their buffers not flushed during
shutdown.
ID: 2762 Linux: Platform not detected correctly on older versions of
RedHat.
ID: 2764 SMT: ClassCastException in Ports Panel.
ID: 2765 SMT: Database Panel Null Pointer Exception.
ID: 2766 SMT: Reconnects to previous server on Stats panel.
ID: 2770 SMT: Null Pointer Exception in CustomJList.
ID: 2771 nrtest: Does not change directory to run dir.
ID: 2772 Engine: Null Pointer when Empty State Attribute is used.
ID: 2774 Engine: Server does not detect unsupported java version
cleanly.
ID: 2779 Engine: Handle case when Acct-Session-Time or
Acct-Delay-Time have top bit set.
-=4.3.2 Release=-
ID: 2748 PolicyAssistant: display MS Windows domain configuration page
when the default authentication type supports SAM/ActiveDirectory.
ID: 2749 PolicyAssistant: NT SAM source uses wrong key in selecting
user source.
-=4.3.1 Release=-
ID: 2731 Dictionary Change dictionary types for attributes 19 and 20
to Opaque.
ID: 2737 Core: MS-CHAP-MPPE-Keys contains bad 128-bit key.
-=4.3.0 Release=-
ID: 2250 AuthSecurId: Remove flashing window on Windows NT.
NOTE: Requires JDK 1.4.x or later.
ID: 2558 Bug in the encrypting and decrypting of MS-CHAP-MPPE-Keys.
ID: 2616 Admin Interface: race condition in serverstats & stats commands.
ID: 2634 SMT: Security user panel does not validate a file pattern
correctly.
ID: 2640 Set: Mark Set-Operation method property was set as editable
in SMT.
ID: 2633 SMT: Read only user has errors exiting or disconnecting from
SMT.
ID: 2643 nrsmt.exe: can't change to run directory if outside of
a sub directory of the NavisRadius install.
ID: 2675 RolloverManager: Size based filename pattern is incorrect.
ID: 2692 Continue: ${user.AuthEapLeap-Peer-Challenge} missing when
client challenges peer.
ID: 2729 ReadLdap: Null Pointer Error on Anonymous Bind
-=4.2.9 Release=-
ID: 2649 Engine: Capitalization of attributes different then entered
in dictionary.
ID: 2699 AuthNt: Plug-in fails to set required privilege on account.
ID: 2701 Cipher: Overuse of character set property.
-=4.2.8 Release=-
ID: 2678 Engine: stack trace during call plugin logging.
ID: 2679 SNMP: Read Community only checked on V1 requests.
ID: 2681 WriteCache/ReadCache: Concurrent modification may cause
cache to lock.
ID: 2691 TcpConnectionManager: Error on connection during
timeout may lock manager.
-=4.2.7 Release=-
ID: 2664 Engine: Tagged Enumerations may not forward correctly in Proxy
reply.
ID: 2665 ReadUserFile: File name not logged correctly on failure.
ID: 2666 StateClient: Null Pointer Error on initialization.
ID: 2667 Engine: First modifier causes RunTimeError on missing or single
attribute when used with delete.
ID: 2670 CheckItems: Plug-in fails on CheckItems that have missing
request counterparts.
-=4.2.6 Release=-
ID: 2648 Engine: Tagged strings have tag added twice on decode.
ID: 2649 Engine: Dictionary can override capitalization of attributes.
ID: 2650 Engine: Enumeration literals should not be quoted unless
necessary.
ID: 2653 Engine: Tagged Integers don't decode properly.
ID: 2658 SMT: Invalid Method Property name causes run time exception.
-=4.2.5 Release=-
ID: 2604 Samples: SQL sample has incorrect Port-Limit processing.
ID: 2605 Classic: Custom Rollover patterns not correctly converted from
old properties.
ID: 2606 Samples: Multiple Auth Type example referenced removed
StateLimits plug-in.
ID: 2607 Install: PolicyAssistant not prompted for in Text Based Install.
ID: 2617 ReadLdap: Disconnected computer reports User Not Found.
ID: 2620 Dictionary: RFC Attributes 34-39 Missing
ID: 2621 ReadLdap: Null Pointer Error.
ID: 2624 ReadLdap: Failure rather than error on network failure.
ID: 2627 Doc: SecurId-output not in html docs.
-=4.2.4 Release=-
ID: 2601 Classic: Classic-BodyTemplate property converted by SMT on save.
ID: 2602 Engine: long and signed-long values are broken on packet decode.
ID: 2603 License: OEM incorrectly detected on some licenses.
-=4.2.3 Release=-
ID: 2579 Engine: When converting a tagged-string-value to a string
don't append the tag to the string
ID: 2582 SMT: attribute names in pick lists don't include aliases, but
instead have dups.
ID: 2584 Setup: Can't run setup.exe from read only media.
ID: 2586 Scripts: nr script looks at wrong file for config server
properties.
ID: 2589 SMT: If a value for a method property was an integer
property info and not dynamic, its value wasn't displayed in
the text field.
ID: 2597 Setup: Setup.exe ignored command line arguments.
ID: 2600 Classic: BodyTemplate property adds extra line separators.
-=4.2.2 Release=-
ID: 2528 StateServer: StateServer-InactiveTimeout doesn't decrement
State-Inactive count
ID: 2564 SMT: Only attributes in default codec are listed in pick lists.
ID: 2567 ReadLdap: Socket Timeout causes error rather then re-connect on
some versions of the JVM.
ID: 2569 WinNT: Windows exe files GPF if no zip files are present in lib
dir.
ID: 2565 SMT: Dictionary Only read on Startup so any changes are not
detected until SMT is restarted.
ID: 2576 SMT: Can not have more then one instance of an attribute in user
editor.
ID: 2578 Engine: autocheck failures may loop back into policy flow on
failure.
-=4.2.1 Release=-
ID: 2494 nr scripts: Nested setlocal commands don't exit properly on
NT4.0
ID: 2526 Dictionary: conversion of old dictionaries to XMS loses some
codec overrides
ID: 2530 PolicyAssistant: Save to file box shows selected but can not
edit file name
ID: 2535 PolicyAssistant: Detail file name can not be changed if editing
an existing realm
ID: 2536 PolicyAssistant: Detail file name is lost for new realm
ID: 2538 Win9x: Program Group is Labeled NavisRadius 3.2
ID: 2539 PolicyAssistant: StateClient uses wrong port for accounting
ID: 2542 i18n: Force various SimpleDateFormats to US locale where
required
ID: 2544 Admin Interface: Index Out Of Bounds Error on engine command
with no parameters specified
ID: 2545 AuthEapTls: Error in key mapping logic
ID: 2547 SMT: Not all codecs defined in dictionary are listed when
defining a client class
ID: 2550 TcpConnectionManager: problems detecting connection failures.
ID: 2551 TcpConnectionManager: problems connecting to multiple sources
ID: 2553 SMT: Auth-Type System handling in PolicyAssistant was incorrect
ID: 2555 SMT: Error when editing a dictionary override
ID: 2559 Windows9x: java.lang.UnsatisfiedLinkError on install
ID: 2560 Windows: CMD files that CDs to the run dir must also switch
drives if current drive is different from install drive.
-=4.2.0 Release=-
ID: 1926 nr script: server .pid file is deleted even if the server
login and shutdown failed but the server is still running.
ID: 2170 NT Service: Need registry information is not created when -i
is used from the command line to install the service.
ID: 2174 NT Service: No Error message generated when service shim is
started from command line with no command line options
specified.
ID: 2206 SMT: Data Entry in Method Select Table Not Consistent.
ID: 2207 SMT: USS Counter Data Entry is Not Consistent.
ID: 2243 SMT/USS: Attribute Names for indexes are case sensitive and SMT
normalizes attributes to lower case.
ID: 2248 Doc: DenyList functionality described in inverse of how it
works.
ID: 2252 SMT: Selecting to insert a row into a table actually appends
the row to the end of the table.
ID: 2270 Doc: Fork plug-in Examples do not work.
ID: 2272 SMT: Parse Exceptions on Methods File gives empty method panel
and no error message.
ID: 2277 Dhcp: Null Pointer Error if Acct-Status-Type is missing from
Accounting Request.
ID: 2313 SMT: If a new PolicySet is installed after the PolicyAssistant
was installed the PolicyAssistant Panel was not disabled.
ID: 2348 Doc: Classic-FileExtension should be listed as
Classic-FilenameExtension
ID: 2360 Classic: Classic-ClientFilename not converted correctly on
Windows platforms.
ID: 2376 Map Modifiers: NumberFormatException w/stack trace when
increment is used on non-numeric data.
ID: 2416 Goto: Method-On-Error can not be specified.
ID: 2432 Dictionary: MD5 not listed as enumeration value for Auth-Type
ID: 2433 SMT: Can not tell difference between empty and not defined in
text areas.
ID: 2434 SMT: Can not add escaped characters in text area.
ID: 2436 Open StateServer: NAS-Port-Id not used in default key
ID: 2466 Sybase: Default database does not have correct schema.
ID: 2479 Branch: Class Cast Exception when using == mode
ID: 2517 PolicyAssistant: Realm lookup is case-insensitive but
limits are case-sensitive
-=4.1.3 Release=-
ID: 2346 Radius: memory leak if response has bad authenticator.
ID: 2347 USS: Duplicate Entries in "index list " output.
ID: 2394 USS: "counts" command outputs with incorrect formatting on
attributes with long values.
ID: 2395 USS: "index list" command returns incorrect counts.
ID: 2397 SNMP: Malformed packet may impact server CPU usage.
-=4.1.2 Release=-
ID: 2310 PolicyAssistant: Removed radacct prefix from sample data file
as prefix is added automatically by the PolicyAssistant
PolicyFlow.
ID: 2332 Radius plug-in: Fixed processing of timeouts that could possibly
leak a RADIUS identifier.
-=4.1.1 Release=-
ID: 2238 Index Out of Bounds Error on reload in Branch,
ReadDelimitedText, and ReadColumnarText if in SEQUENTIAL mode
and new file is smaller.
ID: 2265 Fork: Child threads not getting correct variables from map
statements.
ID: 2269 Radius: runt attribute incorrectly reported sporadically.
ID: 2273 Core: RADIUS packet length not verified
ID: 2274 USS Admin Interface: Null pointer error for unknown indices
when using the index command.
ID: 2280 USS: Server may stop responding if entry timed out when being
updated.
ID: 2287 Dictionary: 16 bit TAOS dictionary has wrong vendor for
attributes less than 256 for TAOS Devices
-=4.1 Release=-
ID: 1618 USS: Maps not executed on Boot Requests
ID: 1874 Engine: engine_queue_limit property fails to limit engine
work queue
ID: 2076 Remove stateserver_registryport property
ID: 2099 StateLimits: Login and Password cached and all requests after
the first request use the same user and password
ID: 2102 ReadLdap: Improved Error Handling
ID: 2107 Installer: logging options lost when upgrading from a previous
release
ID: 2111 StateServer: USS Admin Interface reset command does to reset
all counters
ID: 2123 Dictionary: Opaque attributes corrupted by alternate charset
values
ID: 2125 AuthSecurId: Unexpected response from server causes stack
trace
ID: 2135 RadiusClient: Acct-Delay-Time gets clobbered.
ID: 2138 NT Services: Process terminated unexpectedly when starting
NavisRadius server.
ID: 2140 Maps: Multiple AVP fields error on comma separator
ID: 2142 JDBC/ASA: Database closes idle connections after 4 hours
ID: 2108 Admin Interface: USS reset command does not reset port
counts in stats
ID: 2188 Core: Non-RFC RADIUS packets need validation method
determined by port type received on
ID: 2160 Client_properties: add client Class support for TAOS
in all three modes
ID: 2163 WriteFixedFile: IllegalArgumentException when specifying
bad custom rollover.
ID: 2164 SMT: command line option -local not in usage help
ID: 2168 WriteFixedFile: ArrayIndexOutOfBoundsException when using
right justified mapping
ID: 2171 USS: Server exits without an error message in log file if
license is expired
ID: 2172 Samples: Multiple Authentication Type Example uses deprecated
method properties
ID: 2176 Set: NullPointerException when indirect variable not specified.
ID: 2179 SMT: Blank rows in FileManager when files deleted
ID: 2194 Calculate: ?= assignment operator replaces non-null variable
value.
ID: 2195 Samples: TAOS Samples have bad Method-On-Error on USS
ID: 2196 Samples: TAOS Example used deprecated method properties
for Classic Plug-in
ID: 2201 MapModifiers: fromInt gives stack trace when trying to
parse non-integers.
ID: 2211 nr.cmd: Cannot determine file/path when install directory
name is greater then 8 characters.
ID: 2214 RadiusClient: Identifier is not changed on reformatted
packet retry
ID: 2215 Log Rollover: Additional condition detected where
server may stop processing requests if file rollover
is enabled
ID: 2222 HTTP Server: Index page has refresh and will revert to index if
viewing the on-line manual.
ID: 2226 RMI Server: Command line usage help incorrect
ID: 2230 Message-Authenticator attribute not checked properly
ID: 2231 MapModifiers: toBase64/fromBase64 not returning correct data
_______________________________________________________________________
Copyright and Trademarks
Copyright 2006-2009 Alcatel-Lucent. All rights reserved.
Other trademarks, service marks, and trade names mentioned in this
publication belongs to their respective owners.
Notices
Alcatel-Lucent makes no representations or warranties with
respect to the contents or use of this publication, and specifically
disclaims any express or implied warranties of merchantability or
fitness for any particular purpose. Further, Alcatel-Lucent,
reserves the right to revise this publication and to make changes to
its content, at any time, without obligation to notify any person or
entity of such revisions or changes.