Changelog:
Improvements:
Sockets to CPUs binding is no longer enabled by default but can be enabled via new configuration option 'server.socket-affinity'
Some documentation improvements
Bugfixes:
DNS queries without EDNS to the root zone apex are dropped in the XDP mode
Deterministic ECDSA signing leaks memory
Zone not stored to journal if zonefile-load isn't ZONEFILE_LOAD_WHOLE
Server crashes if the catalog zone isn't configured for registered member zones
Server crashes when loading conflicting catalog member zones
CNAME and DNAME records below delegation are not ignored #713
Not all udp/tcp workers are used if the number of NIC queues is lower than the number of udp/tcp workers
Failed to load statistics and geoip modules if built as shared
Changelog:
19 January 2021: Wouter
- Set branch ready for 4.3.5 release.
15 January 2021: Wouter
- Fix#152: '*' in Rdata causes the return code to be NOERROR instead
of NX.
- Add config.guess and config.sub to .gitignore for autoconf 2.70.
- Fix#150: TXT record validation difference with BIND.
- Fixup TXT record validation fix for escaped quotes.
- Fixup TXT record validation fix for escaped backslashes.
- Fixup escape character parse for quoted strings.
11 January 2021: Wouter
- Fix#151: DNAME not applied more than once to resolve the query.
- Fix dname test for #148.
- For #151: fix to not produce loops in output.
5 January 2021: Wouter
- Fix configure.ac for autoconf 2.70.
4 January 2021: Wouter
- Fix#148: CNAME need not be followed after a synthesized CNAME
for a CNAME query.
11 December 2020: Wouter
- Fix that nsd-control has timeout when connection is down.
- remove windows socket ifdefs from nsd-control.
3 December 2020: Wouter
- For #145: Fix that service of remaining TCP and TLS connections
does not allow new queries to be made, the connection is closed.
Only existing queries and zone transfers are answered, new ones
are rejected by a close of the channel.
30 November 2020: Wouter
- Fix#144: fix better.
27 November 2020: Wouter
- Fix#144: Typo fix in nsd.conf.5.in.
26 November 2020: Wouter
- Fix#143: xfrd no hysteresis with NOT IMPLEMENTED rcode.
Release v1.36.0
Core
Remove unnecessary internal pollset set in c-ares DNS resolver.
Fix implicit declaration error in zlib + macOS.
Support Default Root Certs in Tls Credentials.
C++
Move third party identity C++ api out of experimental namespace.
refactor!: change error_details functions to templates.
Support ServerContext for callback API.
Python
Implement Python Client and Server xDS Creds.
upstream changes:
-----------------
2.0.8 - 2021-02-25
==================
Broker:
- Fix incorrect datatypes in `struct mosquitto_evt_tick`. This changes the
size and offset of two of the members of this struct, and changes the size
of the struct. This is an ABI break, but is considered to be acceptable
because plugins should never be allocating their own instance of this
struct, and currently none of the struct members are used for anything, so a
plugin should not be accessing them. It would also be safe to read/write
from the existing struct parameters.
- Give compile time warning if libwebsockets compiled without external poll
support. Closes#2060.
- Fix memory tracking not being available on FreeBSD or macOS. Closes#2096.
Client library:
- Fix mosquitto_{pub|sub}_topic_check() functions not returning MOSQ_ERR_INVAL
on topic == NULL.
Clients:
- Fix possible loss of data in `mosquitto_pub -l` when sending multiple long
lines. Closes#2078.
Build:
- Provide a mechanism for Docker users to run a broker that doesn't use
authentication, without having to provide their own configuration file.
Closes#2040.
1.19.15
api-change:appflow: Update appflow command to latest version
api-change:ecr-public: Update ecr-public command to latest version
api-change:mediapackage-vod: Update mediapackage-vod command to latest version
api-change:compute-optimizer: Update compute-optimizer command to latest version
api-change🇪🇸 Update es command to latest version
1.19.14
api-change:glue: Update glue command to latest version
api-change:iotevents: Update iotevents command to latest version
api-change:autoscaling: Update autoscaling command to latest version
api-change:quicksight: Update quicksight command to latest version
api-change:redshift-data: Update redshift-data command to latest version
api-change:connect: Update connect command to latest version
api-change:pinpoint: Update pinpoint command to latest version
api-change:s3control: Update s3control command to latest version
1.19.13
api-change:sagemaker-runtime: Update sagemaker-runtime command to latest version
api-change:sagemaker: Update sagemaker command to latest version
1.19.12
api-change:rds: Update rds command to latest version
1.19.11
api-change:cloudformation: Update cloudformation command to latest version
api-change:codebuild: Update codebuild command to latest version
api-change:sagemaker: Update sagemaker command to latest version
api-change:health: Update health command to latest version
1.19.10
api-change:lookoutvision: Update lookoutvision command to latest version
api-change:ec2: Update ec2 command to latest version
api-change:config: Update config command to latest version
1.19.9
api-change:devops-guru: Update devops-guru command to latest version
api-change:codebuild: Update codebuild command to latest version
1.19.8
api-change:medialive: Update medialive command to latest version
api-change:workmailmessageflow: Update workmailmessageflow command to latest version
api-change:mediatailor: Update mediatailor command to latest version
api-change:redshift-data: Update redshift-data command to latest version
api-change:pinpoint: Update pinpoint command to latest version
api-change:config: Update config command to latest version
api-change:lightsail: Update lightsail command to latest version
api-change:kinesis-video-archived-media: Update kinesis-video-archived-media command to latest version
1.19.7
api-change🕵️ Update detective command to latest version
api-change:personalize-events: Update personalize-events command to latest version
api-change:rds: Update rds command to latest version
api-change:appsync: Update appsync command to latest version
api-change:macie2: Update macie2 command to latest version
api-change:elbv2: Update elbv2 command to latest version
api-change:eks: Update eks command to latest version
api-change:codepipeline: Update codepipeline command to latest version
api-change:wafv2: Update wafv2 command to latest version
api-change:iam: Update iam command to latest version
1.19.6
api-change:databrew: Update databrew command to latest version
api-change:rds: Update rds command to latest version
1.19.5
api-change:gamelift: Update gamelift command to latest version
api-change:mediaconvert: Update mediaconvert command to latest version
api-change:sagemaker: Update sagemaker command to latest version
api-change:qldb-session: Update qldb-session command to latest version
api-change:quicksight: Update quicksight command to latest version
1.19.4
api-change:iotsitewise: Update iotsitewise command to latest version
api-change:macie2: Update macie2 command to latest version
api-change:globalaccelerator: Update globalaccelerator command to latest version
api-change:ivs: Update ivs command to latest version
api-change:cloudtrail: Update cloudtrail command to latest version
api-change:elbv2: Update elbv2 command to latest version
api-change:dataexchange: Update dataexchange command to latest version
api-change:elasticache: Update elasticache command to latest version
1.19.3
api-change:elbv2: Update elbv2 command to latest version
api-change:macie: Update macie command to latest version
api-change:organizations: Update organizations command to latest version
1.19.2
api-change:emr-containers: Update emr-containers command to latest version
api-change:dlm: Update dlm command to latest version
api-change:quicksight: Update quicksight command to latest version
api-change:athena: Update athena command to latest version
api-change:ec2: Update ec2 command to latest version
api-change:appflow: Update appflow command to latest version
1.19.1
api-change:lambda: Update lambda command to latest version
api-change:compute-optimizer: Update compute-optimizer command to latest version
api-change:securityhub: Update securityhub command to latest version
api-change:ec2: Update ec2 command to latest version
api-change:workmail: Update workmail command to latest version
api-change:codebuild: Update codebuild command to latest version
api-change:iotsitewise: Update iotsitewise command to latest version
api-change:ce: Update ce command to latest version
api-change:auditmanager: Update auditmanager command to latest version
api-change:databrew: Update databrew command to latest version
1.19.0
api-change:appmesh: Update appmesh command to latest version
api-change:organizations: Update organizations command to latest version
api-change:location: Update location command to latest version
api-change:route53: Update route53 command to latest version
feature:Python: Dropped support for Python 3.4 and 3.5
api-change:rds-data: Update rds-data command to latest version
api-change:s3control: Update s3control command to latest version
api-change:lookoutvision: Update lookoutvision command to latest version
api-change:application-autoscaling: Update application-autoscaling command to latest version
api-change:iotwireless: Update iotwireless command to latest version
api-change:medialive: Update medialive command to latest version
1.18.223
api-change:medialive: Update medialive command to latest version
api-change:connect: Update connect command to latest version
api-change:macie2: Update macie2 command to latest version
1.18.222
api-change:wellarchitected: Update wellarchitected command to latest version
api-change:databrew: Update databrew command to latest version
api-change:robomaker: Update robomaker command to latest version
api-change:iot: Update iot command to latest version
api-change:cloudwatch: Update cloudwatch command to latest version
api-change:managedblockchain: Update managedblockchain command to latest version
1.18.221
api-change:lightsail: Update lightsail command to latest version
api-change:accessanalyzer: Update accessanalyzer command to latest version
api-change:sesv2: Update sesv2 command to latest version
api-change:customer-profiles: Update customer-profiles command to latest version
api-change🇪🇸 Update es command to latest version
api-change:elasticache: Update elasticache command to latest version
1.18.220
api-change:backup: Update backup command to latest version
1.18.219
api-change:ec2: Update ec2 command to latest version
api-change:lexv2-runtime: Update lexv2-runtime command to latest version
api-change:ssm: Update ssm command to latest version
api-change:lexv2-models: Update lexv2-models command to latest version
api-change:redshift: Update redshift command to latest version
api-change:rds: Update rds command to latest version
api-change:greengrassv2: Update greengrassv2 command to latest version
1.18.218
api-change:kafka: Update kafka command to latest version
api-change:resourcegroupstaggingapi: Update resourcegroupstaggingapi command to latest version
enhancement:codeartifact: Added login support for NuGet client v4.9.4
api-change:securityhub: Update securityhub command to latest version
1.18.217
api-change:chime: Update chime command to latest version
api-change:acm-pca: Update acm-pca command to latest version
api-change:ecs: Update ecs command to latest version
1.18.216
api-change:sns: Update sns command to latest version
1.18.215
api-change:cognito-identity: Update cognito-identity command to latest version
api-change:pinpoint: Update pinpoint command to latest version
api-change:sagemaker: Update sagemaker command to latest version
api-change:s3control: Update s3control command to latest version
1.17.15
api-change🇪🇸 [botocore] Update es client to latest version
api-change:mediapackage-vod: [botocore] Update mediapackage-vod client to latest version
api-change:appflow: [botocore] Update appflow client to latest version
api-change:ecr-public: [botocore] Update ecr-public client to latest version
api-change:compute-optimizer: [botocore] Update compute-optimizer client to latest version
1.17.14
api-change:glue: [botocore] Update glue client to latest version
api-change:redshift-data: [botocore] Update redshift-data client to latest version
api-change:s3control: [botocore] Update s3control client to latest version
api-change:autoscaling: [botocore] Update autoscaling client to latest version
api-change:pinpoint: [botocore] Update pinpoint client to latest version
api-change:quicksight: [botocore] Update quicksight client to latest version
api-change:iotevents: [botocore] Update iotevents client to latest version
api-change:connect: [botocore] Update connect client to latest version
1.17.13
api-change:sagemaker-runtime: [botocore] Update sagemaker-runtime client to latest version
api-change:sagemaker: [botocore] Update sagemaker client to latest version
1.17.12
api-change:rds: [botocore] Update rds client to latest version
1.17.11
api-change:health: [botocore] Update health client to latest version
api-change:sagemaker: [botocore] Update sagemaker client to latest version
api-change:cloudformation: [botocore] Update cloudformation client to latest version
api-change:codebuild: [botocore] Update codebuild client to latest version
1.17.10
api-change:ec2: [botocore] Update ec2 client to latest version
api-change:config: [botocore] Update config client to latest version
api-change:lookoutvision: [botocore] Update lookoutvision client to latest version
1.17.9
api-change:devops-guru: [botocore] Update devops-guru client to latest version
api-change:codebuild: [botocore] Update codebuild client to latest version
1.17.8
api-change:lightsail: [botocore] Update lightsail client to latest version
api-change:medialive: [botocore] Update medialive client to latest version
api-change:kinesis-video-archived-media: [botocore] Update kinesis-video-archived-media client to latest version
api-change:config: [botocore] Update config client to latest version
api-change:pinpoint: [botocore] Update pinpoint client to latest version
api-change:redshift-data: [botocore] Update redshift-data client to latest version
api-change:workmailmessageflow: [botocore] Update workmailmessageflow client to latest version
api-change:mediatailor: [botocore] Update mediatailor client to latest version
1.17.7
api-change:personalize-events: [botocore] Update personalize-events client to latest version
api-change:eks: [botocore] Update eks client to latest version
api-change:iam: [botocore] Update iam client to latest version
api-change:codepipeline: [botocore] Update codepipeline client to latest version
api-change🕵️ [botocore] Update detective client to latest version
api-change:macie2: [botocore] Update macie2 client to latest version
api-change:wafv2: [botocore] Update wafv2 client to latest version
api-change:elbv2: [botocore] Update elbv2 client to latest version
api-change:appsync: [botocore] Update appsync client to latest version
api-change:rds: [botocore] Update rds client to latest version
1.17.6
api-change:databrew: [botocore] Update databrew client to latest version
api-change:rds: [botocore] Update rds client to latest version
1.17.5
api-change:quicksight: [botocore] Update quicksight client to latest version
api-change:mediaconvert: [botocore] Update mediaconvert client to latest version
api-change:qldb-session: [botocore] Update qldb-session client to latest version
api-change:sagemaker: [botocore] Update sagemaker client to latest version
api-change:gamelift: [botocore] Update gamelift client to latest version
1.17.4
api-change:dataexchange: [botocore] Update dataexchange client to latest version
api-change:cloudtrail: [botocore] Update cloudtrail client to latest version
api-change:elbv2: [botocore] Update elbv2 client to latest version
api-change:ivs: [botocore] Update ivs client to latest version
api-change:macie2: [botocore] Update macie2 client to latest version
api-change:globalaccelerator: [botocore] Update globalaccelerator client to latest version
api-change:iotsitewise: [botocore] Update iotsitewise client to latest version
api-change:elasticache: [botocore] Update elasticache client to latest version
1.17.3
api-change:macie: [botocore] Update macie client to latest version
api-change:elbv2: [botocore] Update elbv2 client to latest version
api-change:organizations: [botocore] Update organizations client to latest version
1.17.2
api-change:quicksight: [botocore] Update quicksight client to latest version
api-change:appflow: [botocore] Update appflow client to latest version
api-change:emr-containers: [botocore] Update emr-containers client to latest version
api-change:dlm: [botocore] Update dlm client to latest version
api-change:athena: [botocore] Update athena client to latest version
api-change:ec2: [botocore] Update ec2 client to latest version
1.17.1
api-change:lambda: [botocore] Update lambda client to latest version
api-change:codebuild: [botocore] Update codebuild client to latest version
api-change:ec2: [botocore] Update ec2 client to latest version
api-change:ce: [botocore] Update ce client to latest version
api-change:databrew: [botocore] Update databrew client to latest version
api-change:securityhub: [botocore] Update securityhub client to latest version
api-change:workmail: [botocore] Update workmail client to latest version
api-change:auditmanager: [botocore] Update auditmanager client to latest version
api-change:compute-optimizer: [botocore] Update compute-optimizer client to latest version
api-change:iotsitewise: [botocore] Update iotsitewise client to latest version
1.17.0
api-change:appmesh: [botocore] Update appmesh client to latest version
feature:Python: Dropped support for Python 3.4 and 3.5
api-change:application-autoscaling: [botocore] Update application-autoscaling client to latest version
api-change:lookoutvision: [botocore] Update lookoutvision client to latest version
api-change:organizations: [botocore] Update organizations client to latest version
feature:Python: [botocore] Dropped support for Python 3.4 and 3.5
api-change:s3control: [botocore] Update s3control client to latest version
api-change:rds-data: [botocore] Update rds-data client to latest version
api-change:medialive: [botocore] Update medialive client to latest version
api-change:route53: [botocore] Update route53 client to latest version
api-change:location: [botocore] Update location client to latest version
enhancement:s3: [botocore] Amazon S3 now supports AWS PrivateLink, providing direct access to S3 via a private endpoint within your virtual private network.
api-change:iotwireless: [botocore] Update iotwireless client to latest version
1.16.63
api-change:macie2: [botocore] Update macie2 client to latest version
api-change:connect: [botocore] Update connect client to latest version
api-change:medialive: [botocore] Update medialive client to latest version
1.16.62
api-change:wellarchitected: [botocore] Update wellarchitected client to latest version
api-change:managedblockchain: [botocore] Update managedblockchain client to latest version
api-change:cloudwatch: [botocore] Update cloudwatch client to latest version
api-change:databrew: [botocore] Update databrew client to latest version
bugfix:Validator: [botocore] Fix showing incorrect max-value in error message for range and length value validation
api-change:iot: [botocore] Update iot client to latest version
api-change:robomaker: [botocore] Update robomaker client to latest version
1.16.61
api-change:elasticache: [botocore] Update elasticache client to latest version
api-change:customer-profiles: [botocore] Update customer-profiles client to latest version
api-change:sesv2: [botocore] Update sesv2 client to latest version
api-change:accessanalyzer: [botocore] Update accessanalyzer client to latest version
api-change:lightsail: [botocore] Update lightsail client to latest version
api-change🇪🇸 [botocore] Update es client to latest version
1.16.60
api-change:backup: [botocore] Update backup client to latest version
1.16.59
api-change:greengrassv2: [botocore] Update greengrassv2 client to latest version
api-change:redshift: [botocore] Update redshift client to latest version
api-change:lexv2-runtime: [botocore] Update lexv2-runtime client to latest version
api-change:rds: [botocore] Update rds client to latest version
api-change:lexv2-models: [botocore] Update lexv2-models client to latest version
api-change:ssm: [botocore] Update ssm client to latest version
api-change:ec2: [botocore] Update ec2 client to latest version
1.16.58
api-change:securityhub: [botocore] Update securityhub client to latest version
api-change:kafka: [botocore] Update kafka client to latest version
api-change:resourcegroupstaggingapi: [botocore] Update resourcegroupstaggingapi client to latest version
1.16.57
api-change:acm-pca: [botocore] Update acm-pca client to latest version
api-change:chime: [botocore] Update chime client to latest version
api-change:ecs: [botocore] Update ecs client to latest version
1.16.56
api-change:sns: [botocore] Update sns client to latest version
1.16.55
api-change:pinpoint: [botocore] Update pinpoint client to latest version
api-change:cognito-identity: [botocore] Update cognito-identity client to latest version
api-change:s3control: [botocore] Update s3control client to latest version
api-change:sagemaker: [botocore] Update sagemaker client to latest version
1.20.15
api-change🇪🇸 Update es client to latest version
api-change:mediapackage-vod: Update mediapackage-vod client to latest version
api-change:appflow: Update appflow client to latest version
api-change:ecr-public: Update ecr-public client to latest version
api-change:compute-optimizer: Update compute-optimizer client to latest version
1.20.14
api-change:glue: Update glue client to latest version
api-change:redshift-data: Update redshift-data client to latest version
api-change:s3control: Update s3control client to latest version
api-change:autoscaling: Update autoscaling client to latest version
api-change:pinpoint: Update pinpoint client to latest version
api-change:quicksight: Update quicksight client to latest version
api-change:iotevents: Update iotevents client to latest version
api-change:connect: Update connect client to latest version
1.20.13
api-change:sagemaker-runtime: Update sagemaker-runtime client to latest version
api-change:sagemaker: Update sagemaker client to latest version
1.20.12
api-change:rds: Update rds client to latest version
1.20.11
api-change:health: Update health client to latest version
api-change:sagemaker: Update sagemaker client to latest version
api-change:cloudformation: Update cloudformation client to latest version
api-change:codebuild: Update codebuild client to latest version
1.20.10
api-change:ec2: Update ec2 client to latest version
api-change:config: Update config client to latest version
api-change:lookoutvision: Update lookoutvision client to latest version
1.20.9
api-change:devops-guru: Update devops-guru client to latest version
api-change:codebuild: Update codebuild client to latest version
1.20.8
api-change:lightsail: Update lightsail client to latest version
api-change:medialive: Update medialive client to latest version
api-change:kinesis-video-archived-media: Update kinesis-video-archived-media client to latest version
api-change:config: Update config client to latest version
api-change:pinpoint: Update pinpoint client to latest version
api-change:redshift-data: Update redshift-data client to latest version
api-change:workmailmessageflow: Update workmailmessageflow client to latest version
api-change:mediatailor: Update mediatailor client to latest version
1.20.7
api-change:personalize-events: Update personalize-events client to latest version
api-change:eks: Update eks client to latest version
api-change:iam: Update iam client to latest version
api-change:codepipeline: Update codepipeline client to latest version
api-change🕵️ Update detective client to latest version
api-change:macie2: Update macie2 client to latest version
api-change:wafv2: Update wafv2 client to latest version
api-change:elbv2: Update elbv2 client to latest version
api-change:appsync: Update appsync client to latest version
api-change:rds: Update rds client to latest version
1.20.6
api-change:databrew: Update databrew client to latest version
api-change:rds: Update rds client to latest version
1.20.5
api-change:quicksight: Update quicksight client to latest version
api-change:mediaconvert: Update mediaconvert client to latest version
api-change:qldb-session: Update qldb-session client to latest version
api-change:sagemaker: Update sagemaker client to latest version
api-change:gamelift: Update gamelift client to latest version
1.20.4
api-change:dataexchange: Update dataexchange client to latest version
api-change:cloudtrail: Update cloudtrail client to latest version
api-change:elbv2: Update elbv2 client to latest version
api-change:ivs: Update ivs client to latest version
api-change:macie2: Update macie2 client to latest version
api-change:globalaccelerator: Update globalaccelerator client to latest version
api-change:iotsitewise: Update iotsitewise client to latest version
api-change:elasticache: Update elasticache client to latest version
1.20.3
api-change:macie: Update macie client to latest version
api-change:elbv2: Update elbv2 client to latest version
api-change:organizations: Update organizations client to latest version
1.20.2
api-change:quicksight: Update quicksight client to latest version
api-change:appflow: Update appflow client to latest version
api-change:emr-containers: Update emr-containers client to latest version
api-change:dlm: Update dlm client to latest version
api-change:athena: Update athena client to latest version
api-change:ec2: Update ec2 client to latest version
1.20.1
api-change:lambda: Update lambda client to latest version
api-change:codebuild: Update codebuild client to latest version
api-change:ec2: Update ec2 client to latest version
api-change:ce: Update ce client to latest version
api-change:databrew: Update databrew client to latest version
api-change:securityhub: Update securityhub client to latest version
api-change:workmail: Update workmail client to latest version
api-change:auditmanager: Update auditmanager client to latest version
api-change:compute-optimizer: Update compute-optimizer client to latest version
api-change:iotsitewise: Update iotsitewise client to latest version
1.20.0
api-change:appmesh: Update appmesh client to latest version
api-change:application-autoscaling: Update application-autoscaling client to latest version
api-change:lookoutvision: Update lookoutvision client to latest version
api-change:organizations: Update organizations client to latest version
feature:Python: Dropped support for Python 3.4 and 3.5
api-change:s3control: Update s3control client to latest version
api-change:rds-data: Update rds-data client to latest version
api-change:medialive: Update medialive client to latest version
api-change:route53: Update route53 client to latest version
api-change:location: Update location client to latest version
enhancement:s3: Amazon S3 now supports AWS PrivateLink, providing direct access to S3 via a private endpoint within your virtual private network.
api-change:iotwireless: Update iotwireless client to latest version
1.19.63
api-change:macie2: Update macie2 client to latest version
api-change:connect: Update connect client to latest version
api-change:medialive: Update medialive client to latest version
1.19.62
api-change:wellarchitected: Update wellarchitected client to latest version
api-change:managedblockchain: Update managedblockchain client to latest version
api-change:cloudwatch: Update cloudwatch client to latest version
api-change:databrew: Update databrew client to latest version
bugfix:Validator: Fix showing incorrect max-value in error message for range and length value validation
api-change:iot: Update iot client to latest version
api-change:robomaker: Update robomaker client to latest version
1.19.61
api-change:elasticache: Update elasticache client to latest version
api-change:customer-profiles: Update customer-profiles client to latest version
api-change:sesv2: Update sesv2 client to latest version
api-change:accessanalyzer: Update accessanalyzer client to latest version
api-change:lightsail: Update lightsail client to latest version
api-change🇪🇸 Update es client to latest version
1.19.60
api-change:backup: Update backup client to latest version
1.19.59
api-change:greengrassv2: Update greengrassv2 client to latest version
api-change:redshift: Update redshift client to latest version
api-change:lexv2-runtime: Update lexv2-runtime client to latest version
api-change:rds: Update rds client to latest version
api-change:lexv2-models: Update lexv2-models client to latest version
api-change:ssm: Update ssm client to latest version
api-change:ec2: Update ec2 client to latest version
1.19.58
api-change:securityhub: Update securityhub client to latest version
api-change:kafka: Update kafka client to latest version
api-change:resourcegroupstaggingapi: Update resourcegroupstaggingapi client to latest version
1.19.57
api-change:acm-pca: Update acm-pca client to latest version
api-change:chime: Update chime client to latest version
api-change:ecs: Update ecs client to latest version
1.19.56
api-change:sns: Update sns client to latest version
1.19.55
api-change:pinpoint: Update pinpoint client to latest version
api-change:cognito-identity: Update cognito-identity client to latest version
api-change:s3control: Update s3control client to latest version
api-change:sagemaker: Update sagemaker client to latest version
Version 2.5.1
* Fix auth-token not being updated if auth-nocache is set
* Remove auth_user_pass.wait_for_push variable
* Fix port-share option with TLS-Crypt v2
* Zero initialise msghdr prior to calling sendmesg
* Fix tls-auth mismatch OCC message when tls-cryptv2 is used.
* build: Fix missing install of man page in certain environments
* Fix too early argv freeing when registering DNS
* Remove 1 second delay before running netsh
* Skip DHCP renew with Wintun adapter
* Change travis build scripts to use https when fetching prerequisites.
* Fix line number reporting on config file errors after <inline> segments
* Clarify --block-ipv6 intent and direction.
* Document common uses of 'echo' directive, re-enable logging for 'echo'.
* Make OPENVPN_PLUGIN_ENABLE_PF failures FATAL
* clean up / rewrite sample-plugins/defer/simple.c
* Fix naming error in sample-plugins/defer/simple.c
* Documentation fixes around openvpn_plugin_func_v3 in openvpn-plugin.h.in
* Update openvpn_plugin_func_v2 to _v3 in sample-plugins/defer/simple.c
* More explicit versioning compatibility in sample-plugins/defer/simple.c
* Explain structver usage in sample defer plugin.
* Man page sections corrections
* Quote the domain name argument passed to the wmic command
* tls-crypt-v2: fix server memory leak
* tls-crypt-v2: also preload tls-crypt-v2 keys (if --persist-key)
changes:
* DHCP: For anonymous, just use a generic ClientID
* link: Split hardware address randomisation out of anonymous option
* link: Only report hardware changes for active interfaces
* link: Report errors obtaining recv buffer size on overflow
* hooks: Add NOCARRIER_ROAMING reason
* hooks: interface_order now reflects priorities again
* Linux: SECCOMP fixes for privsep for various platforms
* Linux: Persist IP when wireless is roaming
XXX: why does this have so many patches?
--- 9.16.12 released ---
5578. [protocol] Make "check-names" accept A records below "_spf",
"_spf_rate", and "_spf_verify" labels in order to cater
for the "exists" SPF mechanism specified in RFC 7208
section 5.7 and appendix D.1. [GL #2377]
5577. [bug] Fix the "three is a crowd" key rollover bug in KASP by
correctly implementing Equation (2) of the "Flexible and
Robust Key Rollover" paper. [GL #2375]
5575. [bug] When migrating to KASP, BIND 9 considered keys with the
"Inactive" and/or "Delete" timing metadata to be
possible active keys. This has been fixed. [GL #2406]
5572. [bug] Address potential double free in generatexml().
[GL #2420]
5571. [bug] named failed to start when its configuration included a
zone with a non-builtin "allow-update" ACL attached.
[GL #2413]
5570. [bug] Improve performance of the DNSSEC verification code by
reducing the number of repeated calls to
dns_dnssec_keyfromrdata(). [GL #2073]
5569. [bug] Emit useful error message when "rndc retransfer" is
applied to a zone of inappropriate type. [GL #2342]
5568. [bug] Fixed a crash in "dnssec-keyfromlabel" when using ECDSA
keys. [GL #2178]
5567. [bug] Dig now reports unknown dash options while pre-parsing
the options. This prevents "-multi" instead of "+multi"
from reporting memory usage before ending option parsing
with "Invalid option: -lti". [GL #2403]
5566. [func] Add "stale-answer-client-timeout" option, which is the
amount of time a recursive resolver waits before
attempting to answer the query using stale data from
cache. [GL #2247]
5565. [func] The SONAMEs for BIND 9 libraries now include the current
BIND 9 version number, in an effort to tightly couple
internal libraries with a specific release. [GL #2387]
5562. [security] Fix off-by-one bug in ISC SPNEGO implementation.
(CVE-2020-8625) [GL #2354]
5561. [bug] KASP incorrectly set signature validity to the value of
the DNSKEY signature validity. This is now fixed.
[GL #2383]
5560. [func] The default value of "max-stale-ttl" has been changed
from 12 hours to 1 day and the default value of
"stale-answer-ttl" has been changed from 1 second to 30
seconds, following RFC 8767 recommendations. [GL #2248]
5456. [func] Added "primaries" as a synonym for "masters" in
named.conf, and "primary-only" as a synonym for
"master-only" in the parameters to "notify", to bring
terminology up-to-date with RFC 8499. [GL #1948]
5362. [func] Limit the size of IXFR responses so that AXFR will
be used instead if it would be smaller. This is
controlled by the "max-ixfr-ratio" option, which
is a percentage representing the ratio of IXFR size
to the size of the entire zone. This value cannot
exceed 100%, which is the default. [GL #1515]
- Fixed bug in tinydns formating NS records for IPv4 wrong
(IPv4-mapped IPv6).
- Added TLSA/DANE support for tinydns: '_' in data. Automatic name
synthesis.
- Included and added man pages. Added script add-tlsa.sh.
pkgsrc changes:
- Since this is derived from public-domain djbdns and no other license
is specified, set LICENSE-public-domain
- Bugfixes.
- Handshake timeout now also works with the libtls backend.
- The SNI server name is now exported after the handshake in the
SSL_TLS_SNI_SERVERNAME variable.
Changes in version 0.4.5.6 - 2021-02-15
The Tor 0.4.5.x release series is dedicated to the memory of Karsten
Loesing (1979-2020), Tor developer, cypherpunk, husband, and father.
Karsten is best known for creating the Tor metrics portal and leading
the metrics team, but he was involved in Tor from the early days. For
example, while he was still a student he invented and implemented the
v2 onion service directory design, and he also served as an ambassador
to the many German researchers working in the anonymity field. We
loved him and respected him for his patience, his consistency, and his
welcoming approach to growing our community.
This release series introduces significant improvements in relay IPv6
address discovery, a new "MetricsPort" mechanism for relay operators
to measure performance, LTTng support, build system improvements to
help when using Tor as a static library, and significant bugfixes
related to Windows relay performance. It also includes numerous
smaller features and bugfixes.
ncgopher is a gopher and gemini client for the modern internet. It uses
ncurses and is written in Rust.
Features:
-Gopher and gemini support
-Ncurses interface
-Keyboard commands for navigation
-Bookmarks support including custom title
-History of visited gopher holes
-Download of text files and gophermaps
-Download of binary files
-Menu for easy configuration
-Mouse support in some terminals
-TLS support
-Darkmode!
-Common search providers in search menu for quick access
-External commands for HTML, images and Telnet
2.5.5 (2021-02-05)
* #256 Use libev 4.33, featuring experimental io_uring
support. (@jcmfernandes)
* #260 Workaround for ARM-based macOS Ruby: Use pure Ruby for M1, since
the native extension is crashing on M1 (arm64). (@jasl)
* #252 JRuby: Fix javac -Xlint warnings (@headius)
Changes:
1.54.0
------
* New backends
* Compression remote (experimental) (buengese)
* Enterprise File Fabric (Nick Craig-Wood)
* This work was sponsored by [Storage Made Easy](https://storagemadeeasy.com/)
* HDFS (Hadoop Distributed File System) (Yury Stankevich)
* Zoho workdrive (buengese)
* New Features
* Deglobalise the config (Nick Craig-Wood)
* Global config now read from the context
* This will enable passing of global config via the rc
* This work was sponsored by [Digitalis](digitalis.io)
* Add `--bwlimit` for upload and download (Nick Craig-Wood)
* Obey bwlimit in http Transport for better limiting
* Enhance systemd integration (Hekmon)
* log level identification, manual activation with flag, automatic systemd launch detection
* Don't compile systemd log integration for non unix systems (Benjamin Gustin)
* Add a `--download` flag to md5sum/sha1sum/hashsum to force rclone to download and hash files locally (lostheli)
* Add `--progress-terminal-title` to print ETA to terminal title (LaSombra)
* Make backend env vars show in help as the defaults for backend flags (Nick Craig-Wood)
* build
* Raise minimum go version to go1.12 (Nick Craig-Wood)
* dedupe
* Add `--by-hash` to dedupe on content hash not file name (Nick Craig-Wood)
* Add `--dedupe-mode list` to just list dupes, changing nothing (Nick Craig-Wood)
* Add warning if used on a remote which can't have duplicate names (Nick Craig-Wood)
* fs
* Add Shutdown optional method for backends (Nick Craig-Wood)
* When using `--files-from` check files concurrently (zhucan)
* Accumulate stats when using `--dry-run` (Ingo Weiss)
* Always show stats when using `--dry-run` or `--interactive` (Nick Craig-Wood)
* Add support for flag `--no-console` on windows to hide the console window (albertony)
* genautocomplete: Add support to output to stdout (Ingo)
* ncdu
* Highlight read errors instead of aborting (Claudio Bantaloukas)
* Add sort by average size in directory (Adam Plánský)
* Add toggle option for average s3ize in directory - key 'a' (Adam Plánský)
* Add empty folder flag into ncdu browser (Adam Plánský)
* Add `!` (errror) and `.` (unreadable) file flags to go with `e` (empty) (Nick Craig-Wood)
* obscure: Make `rclone osbcure -` ignore newline at end of line (Nick Craig-Wood)
* operations
* Add logs when need to upload files to set mod times (Nick Craig-Wood)
* Move and copy log name of the destination object in verbose (Adam Plánský)
* Add size if known to skipped items and JSON log (Nick Craig-Wood)
* rc
* Prefer actual listener address if using ":port" or "addr:0" only (Nick Craig-Wood)
* Add listener for finished jobs (Aleksandar Jankovic)
* serve ftp: Add options to enable TLS (Deepak Sah)
* serve http/webdav: Redirect requests to the base url without the / (Nick Craig-Wood)
* serve restic: Implement object cache (Nick Craig-Wood)
* stats: Add counter for deleted directories (Nick Craig-Wood)
* sync: Only print "There was nothing to transfer" if no errors (Nick Craig-Wood)
* webui
* Prompt user for updating webui if an update is available (Chaitanya Bankanhal)
* Fix plugins initialization (negative0)
* Bug Fixes
* fs
* Fix nil pointer on copy & move operations directly to remote (Anagh Kumar Baranwal)
* Fix parsing of .. when joining remotes (Nick Craig-Wood)
* log: Fix enabling systemd logging when using `--log-file` (Nick Craig-Wood)
* check
* Make the error count match up in the log message (Nick Craig-Wood)
* move: Fix data loss when source and destination are the same object (Nick Craig-Wood)
* operations
* Fix `--cutof-mode` hard not cutting off immediately (Nick Craig-Wood)
* Fix `--immutable` error message (Nick Craig-Wood)
* sync
* Fix `--cutoff-mode` soft & cautious so it doesn't end the transfer early (Nick Craig-Wood)
* Fix `--immutable` errors retrying many times (Nick Craig-Wood)
* Docs
* Many fixes and a rewrite of the filtering docs (edwardxml)
* Many spelling and grammar fixes (Josh Soref)
* Doc fixes for commands delete, purge, rmdir, rmdirs and mount (albertony)
* And thanks to these people for many doc fixes too numerous to list
* Ameer Dawood, Antoine GIRARD, Bob Bagwill, Christopher Stewart
* CokeMine, David, Dov Murik, Durval Menezes, Evan Harris, gtorelly
* Ilyess Bachiri, Janne Johansson, Kerry Su, Marcin Zelent,
* Martin Michlmayr, Milly, Sơn Trần-Nguyễn
* Mount
* Update systemd status with cache stats (Hekmon)
* Disable bazil/fuse based mount on macOS (Nick Craig-Wood)
* Make `rclone mount` actually run `rclone cmount` under macOS (Nick Craig-Wood)
* Implement mknod to make NFS file creation work (Nick Craig-Wood)
* Make sure we don't call umount more than once (Nick Craig-Wood)
* More user friendly mounting as network drive on windows (albertony)
* Detect if uid or gid are set in same option string: -o uid=123,gid=456 (albertony)
* Don't attempt to unmount if fs has been destroyed already (Nick Craig-Wood)
* VFS
* Fix virtual entries causing deleted files to still appear (Nick Craig-Wood)
* Fix "file already exists" error for stale cache files (Nick Craig-Wood)
* Fix file leaks with `--vfs-cache-mode` full and `--buffer-size 0` (Nick Craig-Wood)
* Fix invalid cache path on windows when using :backend: as remote (albertony)
* Local
* Continue listing files/folders when a circular symlink is detected (Manish Gupta)
* New flag `--local-zero-size-links` to fix sync on some virtual filesystems (Riccardo Iaconelli)
* Azure Blob
* Add support for service principals (James Lim)
* Add support for managed identities (Brad Ackerman)
* Add examples for access tier (Bob Pusateri)
* Utilize the streaming capabilities from the SDK for multipart uploads (Denis Neuling)
* Fix setting of mime types (Nick Craig-Wood)
* Fix crash when listing outside a SAS URL's root (Nick Craig-Wood)
* Delete archive tier blobs before update if `--azureblob-archive-tier-delete` (Nick Craig-Wood)
* Fix crash on startup (Nick Craig-Wood)
* Fix memory usage by upgrading the SDK to v0.13.0 and implementing a TransferManager (Nick Craig-Wood)
* Require go1.14+ to compile due to SDK changes (Nick Craig-Wood)
* B2
* Make NewObject use less expensive API calls (Nick Craig-Wood)
* This will improve `--files-from` and `restic serve` in particular
* Fixed crash on an empty file name (lluuaapp)
* Box
* Fix NewObject for files that differ in case (Nick Craig-Wood)
* Fix finding directories in a case insentive way (Nick Craig-Wood)
* Chunker
* Skip long local hashing, hash in-transit (fixes) (Ivan Andreev)
* Set Features ReadMimeType to false as Object.MimeType not supported (Nick Craig-Wood)
* Fix case-insensitive NewObject, test metadata detection (Ivan Andreev)
* Drive
* Implement `rclone backend copyid` command for copying files by ID (Nick Craig-Wood)
* Added flag `--drive-stop-on-download-limit` to stop transfers when the download limit is exceeded (Anagh Kumar Baranwal)
* Implement CleanUp workaround for team drives (buengese)
* Allow shortcut resolution and creation to be retried (Nick Craig-Wood)
* Log that emptying the trash can take some time (Nick Craig-Wood)
* Add xdg office icons to xdg desktop files (Pau Rodriguez-Estivill)
* Dropbox
* Add support for viewing shared files and folders (buengese)
* Enable short lived access tokens (Nick Craig-Wood)
* Implement IDer on Objects so `rclone lsf` etc can read the IDs (buengese)
* Set Features ReadMimeType to false as Object.MimeType not supported (Nick Craig-Wood)
* Make malformed_path errors from too long files not retriable (Nick Craig-Wood)
* Test file name length before upload to fix upload loop (Nick Craig-Wood)
* Fichier
* Set Features ReadMimeType to true as Object.MimeType is supported (Nick Craig-Wood)
* FTP
* Add `--ftp-disable-msld` option to ignore MLSD for really old servers (Nick Craig-Wood)
* Make `--tpslimit apply` (Nick Craig-Wood)
* Google Cloud Storage
* Storage class object header support (Laurens Janssen)
* Fix anonymous client to use rclone's HTTP client (Nick Craig-Wood)
* Fix `Entry doesn't belong in directory "" (same as directory) - ignoring` (Nick Craig-Wood)
* Googlephotos
* New flag `--gphotos-include-archived` to show archived photos as well (Nicolas Rueff)
* Jottacloud
* Don't erroneously report support for writing mime types (buengese)
* Add support for Telia Cloud (Patrik Nordlén)
* Mailru
* Accept special folders eg camera-upload (Ivan Andreev)
* Avoid prehashing of large local files (Ivan Andreev)
* Fix uploads after recent changes on server (Ivan Andreev)
* Fix range requests after June 2020 changes on server (Ivan Andreev)
* Fix invalid timestamp on corrupted files (fixes) (Ivan Andreev)
* Remove deprecated protocol quirks (Ivan Andreev)
* Memory
* Fix setting of mime types (Nick Craig-Wood)
* Onedrive
* Add support for China region operated by 21vianet and other regional suppliers (NyaMisty)
* Warn on gateway timeout errors (Nick Craig-Wood)
* Fall back to normal copy if server-side copy unavailable (Alex Chen)
* Fix server-side copy completely disabled on OneDrive for Business (Cnly)
* (business only) workaround to replace existing file on server-side copy (Alex Chen)
* Enhance link creation with expiry, scope, type and password (Nick Craig-Wood)
* Remove % and # from the set of encoded characters (Alex Chen)
* Support addressing site by server-relative URL (kice)
* Opendrive
* Fix finding directories in a case insensitive way (Nick Craig-Wood)
* Pcloud
* Fix setting of mime types (Nick Craig-Wood)
* Premiumizeme
* Fix finding directories in a case insensitive way (Nick Craig-Wood)
* Qingstor
* Fix error propagation in CleanUp (Nick Craig-Wood)
* Fix rclone cleanup (Nick Craig-Wood)
* S3
* Added `--s3-disable-http2` to disable http/2 (Anagh Kumar Baranwal)
* Complete SSE-C implementation (Nick Craig-Wood)
* Fix hashes on small files with AWS:KMS and SSE-C (Nick Craig-Wood)
* Add MD5 metadata to objects uploaded with SSE-AWS/SSE-C (Nick Craig-Wood)
* Add `--s3-no-head parameter` to minimise transactions on upload (Nick Craig-Wood)
* Update docs with a Reducing Costs section (Nick Craig-Wood)
* Added error handling for error code 429 indicating too many requests (Anagh Kumar Baranwal)
* Add requester pays option (kelv)
* Fix copy multipart with v2 auth failing with 'SignatureDoesNotMatch' (Louis Koo)
* SFTP
* Allow cert based auth via optional pubkey (Stephen Harris)
* Allow user to optionally check server hosts key to add security (Stephen Harris)
* Defer asking for user passwords until the SSH connection succeeds (Stephen Harris)
* Remember entered password in AskPass mode (Stephen Harris)
* Implement Shutdown method (Nick Craig-Wood)
* Implement keyboard interactive authentication (Nick Craig-Wood)
* Make `--tpslimit` apply (Nick Craig-Wood)
* Implement `--sftp-use-fstat` for unusual SFTP servers (Nick Craig-Wood)
* Sugarsync
* Fix NewObject for files that differ in case (Nick Craig-Wood)
* Fix finding directories in a case insentive way (Nick Craig-Wood)
* Swift
* Fix deletion of parts of Static Large Object (SLO) (Nguyễn Hữu Luân)
* Ensure partially uploaded large files are uploaded unless `--swift-leave-parts-on-error` (Nguyễn Hữu Luân)
* Tardigrade
* Upgrade to uplink v1.4.1 (Caleb Case)
* WebDAV
* Updated docs to show streaming to nextcloud is working (Durval Menezes)
* Yandex
* Set Features WriteMimeType to false as Yandex ignores mime types (Nick Craig-Wood)
KD Soap is a Qt-based client-side and server-side SOAP component.
It can be used to create client applications for web services and also provides
the means to create web services without the need for any further component such
as a dedicated web server.
adns (1.6.0) UPSTREAM; urgency=medium
Bugfixes:
* adnshost: Support --reverse in -f mode input stream
* timeout robustness against clock skew: track query start time and
duration. Clock instability may now only cause spurious timeouts
rather than indefinite hangs or even assertion failures.
New features:
* adnshost: Offer ability to set adns checkc flags
* adnslogres: Honour --checkc-freq (if it comes first)
* adnsresfilter: Honour --checkc-freq and --checkc-entex
* time handling: Support use of CLOCK_MONOTONIC via an init flag.
* adns_str* etc.: Improve robustness; more allowable inputs values.
Build system improvements:
* clean targets: Delete $(TARGETS) too!
* Remove all m4 output files from the distributed source tree.
* Support DESTDIR=/some/absolute/path on `make install'.
* Provide autogen.sh.
* Rerun autoheader and autoconf (2.69).
Internal changes:
* adnshost: adh-opts.c: Whitespace adjustments to option table
Tests:
* New tests for fixes in 1.5.3.
* Fixes to test harness to avoid false positives during fuzzing.
* Other changes to support use with AFL.
* Many supporting improvements and refactorings.
* Fix skipped tests ($$ reference in Makefile)
-- Ian Jackson <ijackson@chiark.greenend.org.uk> Thu, 11 Jun 2020 15:49:39 +0100
adns (1.5.2) UPSTREAM; urgency=medium
* Important security fixes:
CVE-2017-9103 CVE-2017-9104 CVE-2017-9105 CVE-2017-9109:
Vulnerable applications: all adns callers.
Exploitable by: the local recursive resolver.
Likely worst case: Remote code execution.
CVE-2017-9106:
Vulnerable applications: those that make SOA queries.
Exploitable by: upstream DNS data sources.
Likely worst case: DoS (crash of the adns-using application)
CVE-2017-9107:
Vulnerable applications: those that use adns_qf_quoteok_query.
Exploitable by: sources of query domain names.
Likely worst case: DoS (crash of the adns-using application)
CVE-2017-9108:
Vulnerable applications: adnshost.
Exploitable by: code responsible for framing the input.
Likely worst case: DoS (adnshost crashes at EOF).
All found by AFL 2.35b. Thanks to the University of Cambridge
Department of Applied Mathematics for computing facilities.
Bugfixes:
* Do not include spurious external symbol `data' (fixes GCC10 build).
* If server sends TC flag over TCP, bail rather than retrying.
* Do not crash on certain strange resolv.conf contents.
* Fix various crashes if a global system failure occurs, or
adns_finish is called with outstanding queries.
* Correct a parsing error message very slightly.
* DNS packet parsing: Slight fix when packet is truncated.
* Fix ABI compatibility in string conversion of certain RR types.
* internal.h: Use `unsigned' for nextid; fixes theoretical C UB.
Portability fix:
* common.make.in: add -Wno-unused-value. Fixes build with GCC9.
Internal changes:
* Additional comments describing some internal code restrions.
* Robustness assert() against malfunctioning write() system call.
-- Ian Jackson <ijackson@chiark.greenend.org.uk> Thu, 11 Jun 2020 15:48:12 +0100
Packaged for wip by Edgar Fuß.
Nagios plugin to check various hardware environmental sensors, like power
supply's, fans, cards, modules etc. Cisco, Nokia, BlueCoat, IronPort, Foundry,
Linux, Extreme, Juniper, HP ProCurve, NetScreen, Citrix and Transmode.
Supported Checks:
cisco Cisco Systems: Fan, power-supply, voltage, temperature
ciscoSW Cisco Systems: Card and module status check
ciscoNEW Cisco Systems: Sensor check for devices that have the
CISCO-ENTITY-SENSOR-MIB
nokia Nokia IP: Fan, power-supply
bc Blue Coat Systems: Fan, power-supply, voltage, disk
iron IronPort: Fan, power-supply, temperature
foundry Foundry Network: power supply, temperature
linux lm-sensors: Fan, voltage, temperature, misc
extremeSW Extreme Networks: Slot, power-supply, fan, temperature
juniper Juniper Networks: Component status check
procurve HP ProCurve: Fan, power-supply, temperature
netscreen NetScreen: Slot, fan, power-supply
citrix Citrix NetScaler: Fan, voltage, temperture, HA state, SSL engine
transmode Transmode Systems: Check alarm table that is not deactivated and
not acknowledged
2.3.5
- BUG/MINOR: init: Use a dynamic buffer to set HAPROXY_CFGFILES env variable
- MINOR: config: Add failifnotcap() to emit an alert on proxy capabilities
- MINOR: server: Forbid server definitions in frontend sections
- BUG/MINOR: threads: Fixes the number of possible cpus report for Mac.
- MINOR: peers: Add traces for peer control messages.
- BUG/MINOR: dns: SRV records ignores duplicated AR records (v2)
- BUILD: peers: fix build warning about unused variable
- BUG/MEDIUM: stats: add missing INF_BUILD_INFO definition
- BUG/MINOR: peers: Possible appctx pointer dereference.
- MINOR: build: discard echoing in help target
- BUG/MINOR: peers: Wrong "new_conn" value for "show peers" CLI command.
- BUG/MINOR: mux_h2: missing space between "st" and ".flg" in the "show fd" helper
- BUG/MINOR: mworker: define _GNU_SOURCE for strsignal()
- BUG/MEDIUM: tcpcheck: Don't destroy connection in the wake callback context
- BUG/MEDIUM: mux-h2: fix read0 handling on partial frames
- BUILD/MINOR: lua: define _GNU_SOURCE for LLONG_MAX
- DOC: Improve documentation of the various hdr() fetches
- BUG/MEDIUM: filters/htx: Fix data forwarding when payload length is unknown
- BUG/MINOR: config: fix leak on proxy.conn_src.bind_hdr_name
- BUG/MINOR: ssl: init tmp chunk correctly in ssl_sock_load_sctl_from_file()
- BUG/MEDIUM: session: only retrieve ready idle conn from session
- REORG: backend: simplify conn_backend_get
- BUG/MEDIUM: backend: never reuse a connection for tcp mode
- BUG/MINOR: backend: check available list allocation for reuse
- MINOR: contrib: Make the wireshark peers dissector compile for more distribs.
- CLEANUP: tools: make resolve_sym_name() take a const pointer
- CLEANUP: cli: make "show fd" use a const connection to access other fields
- MINOR: cli: make "show fd" also report the xprt and xprt_ctx
- MINOR: xprt: add a new show_fd() helper to complete some "show fd" dumps.
- MINOR: ssl: provide a "show fd" helper to report important SSL information
- MINOR: xprt/mux: export all *_io_cb functions so that "show fd" resolves them
- MINOR: mux-h2: make the "show fd" helper also decode the h2s subscriber when known
- MINOR: mux-h1: make the "show fd" helper also decode the h1s subscriber when known
- MINOR: mux-fcgi: make the "show fd" helper also decode the fstrm subscriber when known
- MINOR: cli: give the show_fd helpers the ability to report a suspicious entry
- MINOR: cli/show_fd: report some easily detectable suspicious states
- MINOR: ssl/show_fd: report some FDs as suspicious when possible
- MINOR: mux-h2/show_fd: report as suspicious an entry with too many calls
- MINOR: mux-h1/show_fd: report as suspicious an entry with too many calls
- MINOR: h1: Raise the chunk size limit up to (2^52 - 1)
- DOC: management: fix "show resolvers" alphabetical ordering
- BUG/MINOR: stick-table: Always call smp_fetch_src() with a valid arg list
- BUG/MEDIUM: ssl/cli: abort ssl cert is freeing the old store
- BUG/MEDIUM: ssl: check a connection's status before computing a handshake
- BUG/MINOR: mux_h2: fix incorrect stat titles
- BUG/MINOR: xxhash: make sure armv6 uses memcpy()
- BUG/MINOR: ssl: do not try to use early data if not configured
- BUILD: ssl: fix build breakage with last commit
- MINOR: cli/show_fd: report local and report ports when known
- BUILD: Makefile: move REGTESTST_TYPE default setting
- BUG/MEDIUM: mux-h2: handle remaining read0 cases
- BUG/MEDIUM: mux-h2: do not quit the demux loop before setting END_REACHED
- BUG/MINOR: sock: Unclosed fd in case of connection allocation failure
- MINOR: config: Deprecate and ignore tune.chksize global option
Pkgsrc changes:
* none, other than checksums.
Upstream changes:
This release contains a number of bug fixes. There is added support
for the EDNS Padding option (RFC7830 and RFC8467), and the EDNS NSID
option (RFC 5001). Unbound control has added commands to enable and
disable rpz processing. Reply callbacks have a start time passed to
them that can be used to calculate time, these are callbacks for
response processing. With the option serve-original-ttl the TTL served
in responses is the original, not counted down, value, for when in
front of authority service.
Features
- Merge PR #375 by fhriley: Add rpz_enable and rpz_disable commands
to unbound-control.
- Merge PR #391 from fhriley: Add start_time to reply callbacks so
modules can compute the response time.
- Fix#397: [Feature request] add new type always_null to local-zone
similar to always_nxdomain.
- Support for RFC5001: DNS Name Server Identifier (NSID) Option
with the nsid: option in unbound.conf
- Padding of queries and responses with DNS over TLS as specified in
RFC7830 and RFC8467.
- Merge PR #275 from Roland van Rijswijk-Deij: Add feature to return the
original instead of a decrementing TTL ('serve-original-ttl')
Bug Fixes
- Fix#358: Squelch udp connect 'no route to host' errors on low
verbosity.
- Fix#360: for the additionally reported TCP Fast Open makes TCP
connections fail, in that case we print a hint that this is
happening with the error in the logs.
- Fix#356: deadlock when listening tcp.
- Fix unbound-dnstap-socket to not use log routine from interrupt
handler and not print so frequently when invoked in sequence.
- Fix on windows to ignore connection failure on UDP, unless verbose.
- make depend.
- Fix#371: unbound-control timeout when Unbound is not running.
- Fix to squelch permission denied and other errors from remote host,
they are logged at higher verbosity but not on low verbosity.
- Merge PR #335 from fobser: Sprinkle in some static to prevent
missing prototype warnings.
- Merge PR #373 from fobser: Warning: arithmetic on a pointer to void
is a GNU extension.
- Fix missing prototypes in the code.
- Fix error cases when udp-connect is set and send() returns an error
(modified patch from Xin Li @delphij).
- For #376: Fix that comm point event is not double removed or double
added to event map.
- iana portlist updated.
- Fix#385: autoconf 2.70 impacts unbound build
- Fix#379: zone loading over HTTP appears to have buffer issues.
- Merge PR #395 from mptre: add missing null check.
- Fix#387: client-subnet-always-forward seems to effectively bypass
any caching?
- For #391: use struct timeval* start_time for callback information.
- For #391: fix indentation.
- For #391: more double casts in python start time calculation.
- Add comment documentation.
- Fix clang analysis warning.
- Fix so local zone types always_nodata and always_deny can be used
from the config file.
- Merge #399 from xiangbao227: The lock of lruhash table should
unlocked after markdel entry.
- Fix for #93: dynlibmodule link fix for Windows.
- Fix for #93: dynlibmodule import library is named libunbound.dll.a.
- Merge #402 from fobser: Implement IPv4-Embedded addresses according
to RFC6052.
- Fix#404: DNS query with small edns bufsize fail.
- Fix declaration before statement and signed comparison warning in
dns64.
- Fix TTL of SOA record for negative answers (localzone and
authzone data) to be the minimum of the SOA TTL and the SOA.MINIMUM.
- Fix compile of unbound-dnstap-socket without dnstap installed.
- Merge PR #355 from noloader: Make ICANN Update CA and DS Trust Anchor
static data.
- Ignore cache blacklisting when trying to reply with expired data from
cache (#394).
- Merge PR #408 from fobser: Prevent a few more yacc clashes.
- Annotate that we ignore the return value of if_indextoname.
- Fix to use correct type for label count in rpz routine.
- Fix empty clause warning in config_file nsid parse.
- Fix to use correct type for label count in ipdnametoaddr rpz routine.
- Fix empty clause warning in edns pass for padding.
- Fix for doxygen 1.8.20 compatibility.
- Attempt to fix NULL keys in the reuse_tcp tree; relates to #411.
- Fix dynlibmod link on rhel8 for -ldl inclusion.
- Fix windows dependency on libssp.dll because of default stack
protector in mingw.
- Fix indentation of root anchor for use by windows install script.
StatZone 1.0.5 (2021-02-08)
- Stop forcing FORTIFY_SOURCE level 2, it should be package builders decision
- Remove hardcoded program name in the manual page
- Rename displayUsage() and displaySummary() to usage() and summary()
- Get rid of most global variables, move all declarations to main()
- Remove dead increments for argc and argv
- Refactor things to check earlier on if *lineBuffer is not NUL
- Refactor the domain comparison checks, allows removing strdup("") call
- Add an error() function to wrap errx() calls
- Check malloc() and strdup() return value and error out on failed allocations
- Group and initialize uthash struct declarations
- Free previous_domain to appease Clang's static analyzer
