Feature improvements

Enforce TLS client certificate expiration on
session resumption, and Session-Timeout.
See CVE-2017-9148.
Updated dictionary.cisco.vpn3000, dictionary.patton
Added dictionary.dellemc
Lowered the log output for failed PEAP sessions.
ALlow utc in rlm_date. Patch from
Peter Lambrechtsen.
The internal OpenSSL session cache has been
disabled. Please see mods-available/eap
Update detail reader documentation.
Patch from Matthew Newton. Fixes #1973.
Make outgoing RadSec connections non-blocking.
Add SQL backing to Moonshot-*-TargetedId
generation. Patch from Stefan Paetow.

Bug fixes

radtest uses Cleartext-Password for EAP, not
User-Password.
Update documentation for mods-enabled/ linking.
Enhanced checks for moonshot salt. Fixes #1933.
Allow session resumption for RadSec connections.
Fixes #1936.
Update "huntgroups" file to note that port ranges
are not supported.
Fix OpenSSL permissions issues on default key files.
Fixes #1941.
Certificates are not required when PSK is used.
Allow SubjectAltName as first extension in cert.
Fixes #1946.
Fixed talloc issue with TLS session resumption.
Fixes #1980.
"&Attr-26 := 0x01" now produces useful error messages.
Handle connection error in rlm_ldap_cacheable_groupobj.
Fixes #1951.
Fix endian issues in DHCP.
Multiple minor fixes for Coverity complaints.
Handle unexpected regex. Fixes #1959.
Fix minor issues in dictionaries.
Fix typos and grammar. Patches from Alan Buxey.
Fix erroneous VP creation in rlm_preproces.
Fix MIB. Patch from Jeff Gehlbach.
Trust router updates from Alejandro Perez.
Allow build with LibreSSL. Fixes #1989
Use correct packet for channel bindings. Fixes #1990.
Many fixes found by PVS-Studio. Thanks to PVS-Studio
for giving us a test license. Please see the git commit
history for more information.
Fix incorrect length check in EAP-PWD. This may
be exploitable.