The basic intent remains: if there is a protocol break we have to
coordinate with f-droid. However, syncthing seems to have matured to
the point where protocol breaks no longer happen.
syncthing phones home to check the version; not only is this a privacy
leak, but pkgsrc does updates differently so it isn't really useful.
Add a flag to the build to disable this.
From pkg/53951 by Daniel Ziltener.
Upstream changes:
mikutter 3.9.3
* avoid use of deperecated NUL separated strings for patterns
passed to Dir.glob
* discard widgets when setting window is switched
* make it possible to define event listeners and filters in Setting DSL
for this change
18.1.0
- Compatibility with Python 3.8 release candidate by regenerating Cython courses with Cython 0.29.13
- bump bundled libzmq to 4.3.2
- handle cancelled futures in asyncio
- make :meth:`zmq.Context.instance` fork-safe
- fix errors in :meth:`zmq.Context.destroy` when opening and closing many sockets
libzmq 4.3.2
CVE-2019-13132: a remote, unauthenticated client connecting to a
libzmq application, running with a socket listening with CURVE
encryption/authentication enabled, may cause a stack overflow and
overwrite the stack with arbitrary data, due to a buffer overflow in
the library. Users running public servers with the above configuration
are highly encouraged to upgrade as soon as possible, as there are no
known mitigations. All versions from 4.0.0 and upwards are affected.
Thank you Fang-Pen Lin for finding the issue and reporting it!
New DRAFT (see NEWS for 4.2.0) zmq_socket_monitor_versioned API that supports
a versioned monitoring events protocol as a parameter. Passing 1 results in
the same behaviour as zmq_socket_monitor.
Version 2 of the events protocol allows new events, new metadata, different
socket types for the monitors and more. It is described in details in
doc/zmq_socket_monitor_versioned.txt
New DRAFT (see NEWS for 4.2.0) zmq_socket_monitor_pipes_stats that triggers
a new ZMQ_EVENT_PIPES_STATS to be delivered via zmq_socket_monitor_versioned
v2 API, which contains the current status of all the queues owned by the
monitored socket. See doc/zmq_socket_monitor_versioned.txt for details.
New DRAFT (see NEWS for 4.2.0) zmq_poller_fd that returns the FD of a thread
safe socket. See doc/zmq_poller.txt for details.
New DRAFT (see NEWS for 4.2.0) socket options:
ZMQ_XPUB_MANUAL_LAST_VALUE is similar to ZMQ_XPUB_MANUAL but allows to avoid
duplicates when using last value caching.
ZMQ_SOCKS_USERNAME and ZMQ_SOCKS_PASSWORD that implement SOCKS5 proxy
authentication.
See doc/zmq_setsockopt.txt and doc/zmq_getsockopt.txt for details.
Implemented background thread names for Windows, when the Visual Studio
debugger is being used.
Fixed 3358 - test_security_zap failing due to SIGBUS on SPARC64, hard-coded
IPC socket binds in tests cause race conditions
Fixed 3361 - enabling GSSAPI support (when using autools) does not work due
to regression introduced in 4.2.3
Fixed 3362 - remove documentation for ZMQ_THREAD_PRIORITY context option
getter, it's not implemented
Fixed 3363 - tests fail to build due to stricter compiler printf validation
in new versions of GCC
Fixed 3367 - try to infer cacheline size at build time, first with
getconf LEVEL1_DCACHE_LINESIZE, and then by reading
/sys/devices/system/cpu/cpu0/cache/index0/coherency_line_size
(autoconf only), and only then falling back to the previous
default of 64 bytes. Avoids false sharing on POWER and s390x.
Import ax_func_posix_memalign.m4 as a more reliable check for
posix_memalign presence on some unix platforms.
Prefer c++11 atomic primitives to compiler intrinsics, when
both are available, as the former is more reliable.
Set test_pair_ipc and test_rebind_ipc to XFAIL on GNU/Hurd due
to non-functioning getsockname on AF_UNIX.
Fixed 3370 - Make queue length and HWM state observable
Fixed 3373 - performance regression in zmq_poll on CentOS 6/7
Fixed 3375 - assign names to all pthreads created by the library to ease
debugging
Fixed 3376 - assigned random TIPC port is not returned by ZMQ_LAST_ENDPOINT
Fixed 3385 - TCP port in ZMQ_LAST_ENDPOINT depends on global locale
Fixed 3404 - use std::condition_variable_any when possible
Fixed 3436 - reconnect interval exponential backoff and may lead to integer
overflows
Fixed 3440 - improve zmq_proxy performance by batching of up to 1000
consecutive messages (if any) and add perf/proxy_thr tool
Fixed 3451 - fix support of /dev/poll on Solaris
Fixed 3452 - strnlen may not be available
Fixed 1462 - test failure in test_filter_ipc due to invalid system groups
Fixed 3269 - Boost.ASIO integration stopped working with v4.3.0
Fixed 3479 - ZeroMQ does not build for QNX 6.6 with CMake
Fixed 3481 - add include to fix uClibc++ compilation
Fixed 3491 - build broken on Fedora 30
Fixed 3494 - ZeroMQConfig.cmake fails if shared libraries are not built
Fixed 3498 - syntax error on Windows related to socket descriptor type
Fixed 3500 - PLAIN HELLO message incorrectly uses WELCOME literal, regression
introduced in 4.3.0
Fixed 3517 - configure errors because of syntax errors in the use of test
shell command
Fixed 3521 - document how to achieve high performance with the PGM transport
Fixed 3526 - failure case behavior unclear in zmq_msg_send documentation
Fixed 3537 - fix build on z/OS by using pthread_equal instead of comparing
variables directly
Fixed 3546 - CMake links with librt on MinGW which is not available
Many coding style, duplication, testing and static analysis improvements.
The canonical form [1] of an R package Makefile includes the
following:
- The first stanza includes R_PKGNAME, R_PKGVER, PKGREVISION (as
needed), and CATEGORIES.
- HOMEPAGE is not present but defined in math/R/Makefile.extension to
refer to the CRAN web page describing the package. Other relevant
web pages are often linked from there via the URL field.
This updates all current R packages to this form, which will make
regular updates _much_ easier, especially using pkgtools/R2pkg.
[1] http://mail-index.netbsd.org/tech-pkg/2019/08/02/msg021711.html
The content that belongs in NEWS are often in a blog. Thanks to
thorpej@ for pointing this out; perhaps in-lieu-of-upstream-NEWS
contents will be better in future commits.
- Fixed potential stack corruption in sslclient/sslhandle/sslserver
while assigning hostname => 0.
- Improved OpenSSL + LibreSSL compatibility:
- LibreSSL 2.5 to 2.9 is working
- OpenSSL 1.0.2 to 1.1.1 is working
- Added SNI for sslclient.
- Fixes for sslhandle.
- Included new CIPHERLIST API for ssl_ciphers.
- Removed dependency on conf-tcpbin; modules are expected to be
in the path.
- Modules rts.base and rts.sslperl are working now.
- Fix for tcprulescheck abending if environment variable IP is not present.
- Fix for potential stack corruption calling tcpserver/tcpclient with
'0' for hostname.
- Removed constraints on building IPv4 CIDR rules with tcprules.
- Cleanups and tweaked package/rts to work well again.
Beta-tested by Veera.
- Fixed bug in rblsmtpd not calculating the inverse IPv6 address correctly.
- package/rts usage explained (README.rts) and finally straightend.
- tcprules and tcprulescheck improved for IPv4/IPv6 CIDR address reporting.
- Fixed missing DNS A lookup in dns_ip.c.
- Removed (one) obsolete return value check for iopause in timeoutconn.c.
- Checking carefully all dnsstub return codes while using a coherent scheme.
Changes 4.10.6:
* BUG 13956: s3: winbind: Fix crash when invoking winbind idmap scripts.
* BUG 13964: smbd does not correctly parse arguments passed to dfree and
quota scripts.
* BUG 13965: samba-tool dns: use bytes for inet_ntop.
* BUG 13828: samba-tool domain provision: Fix --interactive module in
python3.
* BUG 13893: ldb_kv: Skip @ records early in a search full scan.
* BUG 13981: docs: Improve documentation of "lanman auth" and "ntlm auth"
connection.
* BUG 14002: python/ntacls: Use correct "state directory" smb.conf option
instead of "state dir".
* BUG 13840: registry: Add a missing include.
* BUG 13944: Fix SMB guest authentication.
* BUG 13958: AppleDouble conversion breaks Resourceforks.
* BUG 13968: vfs_fruit makes direct use of syscalls like mmap() and pread().
* BUG 13987: s3:mdssvc: Fix flex compilation error.
* BUG 13872: s3/vfs_glusterfs[_fuse]: Avoid using NAME_MAX directly:
* BUG 13799: dsdb:samdb: schemainfo update with relax control.
* BUG 13964: s3:util: Move static file_pload() function to lib/util.
* BUG 13957: smbd: Fix a panic.
* BUG 12478: ldap server: Generate correct referral schemes.
* BUG 13941: s4 dsdb/repl_meta_data: fix use after free in
dsdb_audit_add_ldb_value.
* BUG 13942: s4 dsdb: Fix use after free in
samldb_rename_search_base_callback.
* BUG 12204: dsdb/repl: we need to replicate the whole schema before we can
apply it.
* BUG 12478: ldb: Release ldb 1.5.5
* BUG 13713: Schema replication fails if link crosses chunk boundary
backwards.
* BUG 13799: 'samba-tool domain schemaupgrade' uses relax control and skips
the schemaInfo update provision.
* BUG 13916: dsdb_audit: avoid printing "... remote host [Unknown]
SID [(NULL SID)] ..."
* BUG 13917: python/ntacls: We only need security.SEC_STD_READ_CONTROL in
order to get the ACL.
* BUG 13947: s3:loadparm: Ensure to truncate FS Volume Label at multibyte
boundary.
* BUG 13939: Using Kerberos credentials to print using spoolss doesn't work.
* BUG 13998: wafsamba: Use native waf timer.
* BUG 13984: ctdb-scripts: Fix tcp_tw_recycle existence check.
New Features:
Add consistent hash builtin policy
Add EDNSOptionRule
Add DSTPortRule (phonedph1)
Make getOutstanding usable from both lua and console (phonedph1)
Added :excludeRange and :includeRange methods to DynBPFFilter class
(Reinier Schoof)
Add Prometheus stats support (Pavel Odintsov, Kai S)
Name threads in the programs
Support the NXDomain action with dynamic blocks
Add security polling
Add a PoolAvailableRule to easily add backup pools (Robin Geuze)
Improvements:
Get rid of some allocs/copies in DNS parsing
Set a correct EDNS OPT RR for self-generated answers
Fix a sign-comparison warning in isEDNSOptionInOPT()
Add warning rates to DynBlockRulesGroup rules
Add support for exporting a server id in protobuf
dnsdist did not set TCP_NODELAY, causing needless latency
Add a setting to control the number of stored sessions
Wrap GnuTLS and OpenSSL pointers in smart pointers
Add a ‘creationOrder’ field to rules
Fix return-type detection with boost 1.69’s tribool
Fix format string issue on 32bits ARM
Wrap TCP connection objects in smart pointers
Add the setConsoleOutputMaxMsgSize function
Add the ability to update webserver credentials
Bug Fixes:
Display dynblocks’ default action, None, as the global one
Fix compilation when SO_REUSEPORT is not defined
Release memory on DNS over TLS handshake failure
Handle trailing data correctly when adding OPT or ECS info
Changes:
1.10.0
------
### Warning
- Prior to version 1.10.0 all cache files were created world readable
(mode `644`) leading to possible sensitive information disclosure on
multi-user systems.
It is recommended to restrict access permissions of already existing files
(`/tmp/.gallery-dl.cache`) with `chmod 600`.
Windows users should not be affected.
### Additions
- Support for
- `vsco` (#331)
- `imgbb` (#361)
- `adultempire` (#340)
- `restrict-filenames` option to create Windows-compatible filenames on any
platform (#348)
- `forward-cookies` option to control cookie forwarding to youtube-dl (#352)
### Changes
- The default cache file location on non-Windows systems is now
`$XDG_CACHE_HOME/gallery-dl/cache.sqlite3` or
`~/.cache/gallery-dl/cache.sqlite3`
- New cache files are created with mode `600`
- `exhentai` extractors will always use `e-hentai.org` as domain
### Fixes
- Logging into `exhentai` now collects more cookies than just `ipb_member_id`
and `ipb_pass_hash`
- Better handling of `exhentai` image limits and errors (#356, #360)
- Try to prevent ZIP file corruption (#355)
- Miscellaneous fixes for `behance`, `ngomik`
Briefly, 2.51 is current, 2.48 is old but not ridiculously so, and
2.32 and 2.40 are likely not in use. Point out that old versions are
present because unison does not interoperate across versions.
* NetBSD: Can be build without ARP support but listen to kernel DaD
* ND6: Removed NA support from SMALL builds
* ND6: Remove and warn about NA on OS's other than NetBSD and Linux
* script: tmp files are removed for systems without open_memstream(3)
* configure: open_memstream(3) detected on recent glibc
* DHCP: Avoid duplicate read of UDP socket when BPF is also open
* IP: Avoid adding address if already exists on OS other than Linux
* IP6: Avoid adding address is already exists on Solaris
* route: Fixed a NULL de-reference error on static routes
* DHCP6: Move to REQUEST if any IA has no-binding in REWNEW/REBIND
* DragonFlyBSD: Now compiles and works for
* IP: Accept packets with IP header options
Changes:
The feature-bind branch is still not ready, so here's more bug-fixes and
pull requests merged.
Please consider donating (https://rakshasa.github.io/rtorrent/donate.html)
to help fund the development of this client.
* Close log files when reusing a name. (pyroscope)
* Increased max timeout for tracker requests.
* Set max piece size 512mb.
* Switch to C++11 MRT RNG for random bytes. (lps-rocks)
* Added support for openssl 1.1.
* Fix honoring throttle.min_peers* settings in rtorrent. (chros)
* Improved failed tracker bencode parsing. (chros)
* Added example rtorrent.rc. (g0tmi1k)
* Added a temporary name filter. (Toff)
* Added 'log.close' command.
* Added 'd.tracker_announce.force' command.
* Added 'event.system.startup_done/shutdown' commands/events. (chros)
* Added 'd.custom.if_z' command. (pyroscope)
* Added 'd.multicall.filtered' command. (pyroscope)
* Added 'event.view.hide/show' commands. (pyroscope)
Changes:
* Fixes for UTF-8 encoding of CSV output
* Ensure the UTC ISO8601 date includes a Z offset
* Fix calculation of uploads to perform per size
* Pre-allocate upload data, but allow to disable pre-allocation, for memory limited devices
* Support using --csv-delimiter with --csv-header
* Redesigned Python API
* Add option to exclude servers, and allow --server and --exclude to be specified multiple times
* Address Exception issues
* Print errors to stderr
* Remove deprecated speedtest_cli.py
* Handle malformed XML responses
* Ensure --share works with --csv
* Fix SSL communication during latency tests on python 2.6 and older
* Handle error where latitude and longitude from config are invalid
* Ensure we are utilizing the context created by HTTPSConnection, or falling back to ssl.
* Automatically resolve .best property
* Pass Content-Length header with POST requests
* Fix install instructions with git clone
* Add functionality for single threaded testing
* Add debug support to show if a URL request resulted in a redirect
* Add the python version to the version output
* Switch from platform.system to platform.platform when building the User-Agent header
* Don't pass server_hostname to ssl.wrap_socket
* ensure ERROR doesn't print an empty string
* Fix SSL support on Python2.4 and Python2.5
This is a re-import of net/unison, but with all paths changed from
"unison" to "unison-2.48". This way, you can install it in parallel
with unison2.51. Run unison-2.48 with "-addversionno" to run
the appropriate unison binary on the other side.
Unison is a file-synchronization tool for Unix and Windows. It allows
two replicas of a collection of files and directories to be stored
on different hosts (or different disks on the same host), modified
separately, and then brought up to date by propagating the changes
in each replica to the other.
This package contains the outdated 2.48 release.
Pkgsrc changes:
* Adapt to patches adopted upstream.
Upstream changes:
* bugfix: Manage verification paths for OpenSSL >= 1.1.0
Thanks Marco Davids
* bugfix #4106: find the SDK on MacOS X <= 10.6
Thanks Bill Cole
* bugfix #4155: ldns-config contains never used variables
Thanks Petr Men#ík
* bugfix #4221: drill -x crashes with malformed IPv4 address
Thanks Oleksandr Tymoshenko
* bugfix #3437: CDS & CDNSKEY RRsets should be signed with the KSK
Thanks Tony Finch
* bugfix #1566, #1568, #1569, #1570: Potential NULL Dereferences
Thanks Bill Parker
* bugfix #1260: Anticipate strchr returning NULL on unfound char
Thanks Stephan Zeisberg
* bugfix #1257: Free after reallocing to 0 size
Thanks Stephan Zeisberg
* bugfix #1256: Check parse limit before t increment
Thanks Stephan Zeisberg
* bugfix #1245: Only one signature per RRset needs to be valid with
ldns-verify-zone. Thanks Emil Natan.
* ldns-notify can use all supported hash algorithms with -y.
* bugfix #1209: make install ldns.pc file
Thanks Oleksandr Natalenko
* bugfix #1218: Only chase DS if signer is parent of owner.
Thanks Emil Natan
* bugfix #617: Retry WKS service and protocol names lower case.
Thanks Siali Yan
* Spelling errors in binaries and man pages
Thanks Andreas Schulze
* removed duplicate condition in ldns_udp_send_query.
* ldns_wire2pkt: fix null pointer dereference if pkt allocation fails
and fix memory leak with more EDNS sections
Thanks Jan Vcelak
* bugfix #1399: ldns_pkt2wire() Python binding is broken.
Thanks James Raftery
* ED25519 and ED448 support. Default is to autodetect support in
OpenSSL. Disable with --disable-ed25519 and --disable-ed448.
* ldns-notify: can have IPv6 address as argument.
* Fix time sensitive TSIG compare vulnerability.
* Fix that ldns-testns ignores sigpipe.
* Fix that ldns-notify sets the query RR as question RR, this
removes the wrong TTL and 0 rdata from the packet printout.
* Allow -T flag to be used together with drill -x
* Python bindings compile with swig 4.0
Thanks Jitka Plesníková
* bugfix #4248: drill -DT fails for CNAME domain
Thanks Thom Wiggers
* bugfix #4214: Various fixes and leaks found by coverity.
Thanks Petr Men#ík
* Feature #3394: An -I option to ldns-notify to specify a source
IP address to send to notify from. Thanks Geert Hendrickx
* Bugfix #279: New API functions ldns_udp_connect2,
ldns_tcp_connect2, ldns_udp_bgsend2 and ldns_tcp_bgsend2,
that return -1 on failure and allow socket number 0
to be returned too. Thanks Joerg Sonnenberger
* Bugfix #1447: More verbose reporting of chasing problems with
ldns-verify-zone. Thanks Stephane Guedon
* OpenSSL engine support with ldns-signzone.
See also https://penzin.net/ldns-signzone/
Many thanks Vadim Penzin.
* Various improvements found with shellcheck.
Thanks Jeffrey Walton
* PR #36 Update manpage of ldns-notify to mention algorithm
support with TSIG. Thanks Anand Buddhdev
* Compile warnings with signed char input to to_lower()
and is_digit() with NetBSD. Thanks Håvard Eidnes
* Missing Makefile.PL in DNS-LDNS perl module contribution.
Thanks Jaap Akkerhuis
* ARP now supports many requests
* Routing tables now use Red-Black Trees
* Script variables are no longer allocated manually
* DHCP addresses are added with vltime of the lease time and pltime
of the rebind time (Linux only)
Changes:
2.12.3
------
* Allow hub use within GitHub Actions by specifying GITHUB_USER
* Show friendlier error message when GITHUB_TOKEN is set, but fetching
the current user fails
