Reduced to 50 the number of open file descriptors lsof
attempts to close while trying to protect itself from a
file descriptor exec() attack. This limits the overhead
lsof incurs on systems that have large file descriptor
limits, yet provides sufficient open descriptors for the
library functions lsof calls.
Updated for changes in FreeBSD 10 with advice from Eygene
Ryabinkin <rea@freebsd.org>. Taught Configure to recognize
FreeBSD 8.4.
Herein am noting that lsof for Solaris 10 or 11 is no longer
supported. I no longer have test systems. Some support is
still available from Casper Dik <Casper.Dik@oracle.com> and a
Solaris 11 patch he provided is included in this revision.
Initialized local variables in the Linux process_id() function.
Jia He <jiakernel@gmail.com> reported the problem.
Added support for FreeBSD 11.
Updated FreeBSD ZFS Configure stanza to supply a dummy
opt_kdtrace.h when needed.
Added tmpfs file system support for FreeBSD.
Since a test system is no longer available, dropped the
claim of FreeBSD 4.9 support.
Added the +|-E options for Linux. -E displays endpoint info;
+E displays endpoint info and endpopint files. Masatake YAMATO
<yamato@redhat.com> requested this support and suggested code
to implement it.
Fixed a Linux bug handling processes whose command includes a
non-printing character, particularly a NEWLINE character, and
clarified printing of single '\\' characters in command and
file names. Stephane Chazelas <stephane.chazelas@gmail.com>
reported the problem.
Added support for Linux RDMA and CRYPTO protocal names and UNIX
socket type with code from Masatake YAMATO <yamato@redhat.com>.
Fixed field output to insure that the field descriptor field is
always selected, since it identifies the file set. The bug was
reported by Gary Plewa <gary.m.plewa-1@lowes.com>.
Ok MAINTAINER bsiegert.
While doing that, update to current release, 0.29.0.
Changes since 0.24.0:
Version 0.29.0
--------------
Compatibility notes:
- when upgrading to 0.29.0 you need to upgrade client as well as server
installations due to the locking and commandline interface changes otherwise
you'll get an error msg about a RPC protocol mismatch or a wrong commandline
option.
if you run a server that needs to support both old and new clients, it is
suggested that you have a "borg-0.28.2" and a "borg-0.29.0" command.
clients then can choose via e.g. "borg --remote-path=borg-0.29.0 ...".
- the default waiting time for a lock changed from infinity to 1 second for a
better interactive user experience. if the repo you want to access is
currently locked, borg will now terminate after 1s with an error message.
if you have scripts that shall wait for the lock for a longer time, use
--lock-wait N (with N being the maximum wait time in seconds).
Bug fixes:
- hash table tuning (better chosen hashtable load factor 0.75 and prime initial
size of 1031 gave ~1000x speedup in some scenarios)
- avoid creation of an orphan lock for one case, #285
- --keep-tag-files: fix file mode and multiple tag files in one directory, #432
- fixes for "borg upgrade" (attic repo converter), #466
- remove --progress isatty magic (and also --no-progress option) again, #476
- borg init: display proper repo URL
- fix format of umask in help pages, #463
New features:
- implement --lock-wait, support timeout for UpgradableLock, #210
- implement borg break-lock command, #157
- include system info below traceback, #324
- sane remote logging, remote stderr, #461:
- remote log output: intercept it and log it via local logging system,
with "Remote: " prefixed to message. log remote tracebacks.
- remote stderr: output it to local stderr with "Remote: " prefixed.
- add --debug and --info (same as --verbose) to set the log level of the
builtin logging configuration (which otherwise defaults to warning), #426
note: there are few messages emitted at DEBUG level currently.
- optionally configure logging via env var BORG_LOGGING_CONF
- add --filter option for status characters: e.g. to show only the added
or modified files (and also errors), use "borg create -v --filter=AME ...".
- more progress indicators, #394
- use ISO-8601 date and time format, #375
- "borg check --prefix" to restrict archive checking to that name prefix, #206
Other changes:
- hashindex_add C implementation (speed up cache re-sync for new archives)
- increase FUSE read_size to 1024 (speed up metadata operations)
- check/delete/prune --save-space: free unused segments quickly, #239
- increase rpc protocol version to 2 (see also Compatibility notes), #458
- silence borg by default (via default log level WARNING)
- get rid of C compiler warnings, #391
- upgrade OS X FUSE to 3.0.9 on the OS X binary build system
- use python 3.5.1 to build binaries
- docs:
- new mailing list borgbackup@python.org, #468
- readthedocs: color and logo improvements
- load coverage icons over SSL (avoids mixed content)
- more precise binary installation steps
- update release procedure docs about OS X FUSE
- FAQ entry about unexpected 'A' status for unchanged file(s), #403
- add docs about 'E' file status
- add "borg upgrade" docs, #464
- add developer docs about output and logging
- clarify encryption, add note about client-side encryption
- add resources section, with videos, talks, presentations, #149
- Borg moved to Arch Linux [community]
- fix wrong installation instructions for archlinux
Version 0.28.2
--------------
New features:
- borg create --exclude-if-present TAGFILE - exclude directories that have the
given file from the backup. You can additionally give --keep-tag-files to
preserve just the directory roots and the tag-files (but not backup other
directory contents), #395, attic #128, attic #142
Other changes:
- do not create docs sources at build time (just have them in the repo),
completely remove have_cython() hack, do not use the "mock" library at build
time, #384
- avoid hidden import, make it easier for PyInstaller, easier fix for #218
- docs:
- add description of item flags / status output, fixes#402
- explain how to regenerate usage and API files (build_api or
build_usage) and when to commit usage files directly into git, #384
- minor install docs improvements
Version 0.28.1
--------------
Bug fixes:
- do not try to build api / usage docs for production install,
fixes unexpected "mock" build dependency, #384
Other changes:
- avoid using msgpack.packb at import time
- fix formatting issue in changes.rst
- fix build on readthedocs
Version 0.28.0
--------------
Compatibility notes:
- changed return codes (exit codes), see docs. in short:
old: 0 = ok, 1 = error. now: 0 = ok, 1 = warning, 2 = error
New features:
- refactor return codes (exit codes), fixes#61
- add --show-rc option enable "terminating with X status, rc N" output, fixes 58, #351
- borg create backups atime and ctime additionally to mtime, fixes#317
- extract: support atime additionally to mtime
- FUSE: support ctime and atime additionally to mtime
- support borg --version
- emit a warning if we have a slow msgpack installed
- borg list --prefix=thishostname- REPO, fixes#205
- Debug commands (do not use except if you know what you do: debug-get-obj,
debug-put-obj, debug-delete-obj, debug-dump-archive-items.
Bug fixes:
- setup.py: fix bug related to BORG_LZ4_PREFIX processing
- fix "check" for repos that have incomplete chunks, fixes#364
- borg mount: fix unlocking of repository at umount time, fixes#331
- fix reading files without touching their atime, #334
- non-ascii ACL fixes for Linux, FreeBSD and OS X, #277
- fix acl_use_local_uid_gid() and add a test for it, attic #359
- borg upgrade: do not upgrade repositories in place by default, #299
- fix cascading failure with the index conversion code, #269
- borg check: implement 'cmdline' archive metadata value decoding, #311
- fix RobustUnpacker, it missed some metadata keys (new atime and ctime keys
were missing, but also bsdflags). add check for unknown metadata keys.
- create from stdin: also save atime, ctime (cosmetic)
- use default_notty=False for confirmations, fixes#345
- vagrant: fix msgpack installation on centos, fixes#342
- deal with unicode errors for symlinks in same way as for regular files and
have a helpful warning message about how to fix wrong locale setup, fixes#382
- add ACL keys the RobustUnpacker must know about
Other changes:
- improve file size displays, more flexible size formatters
- explicitly commit to the units standard, #289
- archiver: add E status (means that an error occured when processing this
(single) item
- do binary releases via "github releases", closes#214
- create: use -x and --one-file-system (was: --do-not-cross-mountpoints), #296
- a lot of changes related to using "logging" module and screen output, #233
- show progress display if on a tty, output more progress information, #303
- factor out status output so it is consistent, fix surrogates removal,
maybe fixes#309
- move away from RawConfigParser to ConfigParser
- archive checker: better error logging, give chunk_id and sequence numbers
(can be used together with borg debug-dump-archive-items).
- do not mention the deprecated passphrase mode
- emit a deprecation warning for --compression N (giving a just a number)
- misc .coverragerc fixes (and coverage measurement improvements), fixes#319
- refactor confirmation code, reduce code duplication, add tests
- prettier error messages, fixes#307, #57
- tests:
- add a test to find disk-full issues, #327
- travis: also run tests on Python 3.5
- travis: use tox -r so it rebuilds the tox environments
- test the generated pyinstaller-based binary by archiver unit tests, #215
- vagrant: tests: announce whether fakeroot is used or not
- vagrant: add vagrant user to fuse group for debianoid systems also
- vagrant: llfuse install on darwin needs pkgconfig installed
- vagrant: use pyinstaller from develop branch, fixes#336
- benchmarks: test create, extract, list, delete, info, check, help, fixes#146
- benchmarks: test with both the binary and the python code
- archiver tests: test with both the binary and the python code, fixes#215
- make basic test more robust
- docs:
- moved docs to borgbackup.readthedocs.org, #155
- a lot of fixes and improvements, use mobile-friendly RTD standard theme
- use zlib,6 compression in some examples, fixes#275
- add missing rename usage to docs, closes#279
- include the help offered by borg help <topic> in the usage docs, fixes#293
- include a list of major changes compared to attic into README, fixes#224
- add OS X install instructions, #197
- more details about the release process, #260
- fix linux glibc requirement (binaries built on debian7 now)
- build: move usage and API generation to setup.py
- update docs about return codes, #61
- remove api docs (too much breakage on rtd)
- borgbackup install + basics presentation (asciinema)
- describe the current style guide in documentation
- add section about debug commands
- warn about not running out of space
- add example for rename
- improve chunker params docs, fixes#362
- minor development docs update
Version 0.27.0
--------------
New features:
- "borg upgrade" command - attic -> borg one time converter / migration, #21
- temporary hack to avoid using lots of disk space for chunks.archive.d, #235:
To use it: rm -rf chunks.archive.d ; touch chunks.archive.d
- respect XDG_CACHE_HOME, attic #181
- add support for arbitrary SSH commands, attic #99
- borg delete --cache-only REPO (only delete cache, not REPO), attic #123
Bug fixes:
- use Debian 7 (wheezy) to build pyinstaller borgbackup binaries, fixes slow
down observed when running the Centos6-built binary on Ubuntu, #222
- do not crash on empty lock.roster, fixes#232
- fix multiple issues with the cache config version check, #234
- fix segment entry header size check, attic #352
plus other error handling improvements / code deduplication there.
- always give segment and offset in repo IntegrityErrors
Other changes:
- stop producing binary wheels, remove docs about it, #147
- docs:
- add warning about prune
- generate usage include files only as needed
- development docs: add Vagrant section
- update / improve / reformat FAQ
- hint to single-file pyinstaller binaries from README
Version 0.26.1
--------------
This is a minor update, just docs and new pyinstaller binaries.
- docs update about python and binary requirements
- better docs for --read-special, fix#220
- re-built the binaries, fix#218 and #213 (glibc version issue)
- update web site about single-file pyinstaller binaries
Note: if you did a python-based installation, there is no need to upgrade.
Version 0.26.0
--------------
New features:
- Faster cache sync (do all in one pass, remove tar/compression stuff), #163
- BORG_REPO env var to specify the default repo, #168
- read special files as if they were regular files, #79
- implement borg create --dry-run, attic issue #267
- Normalize paths before pattern matching on OS X, #143
- support OpenBSD and NetBSD (except xattrs/ACLs)
- support / run tests on Python 3.5
Bug fixes:
- borg mount repo: use absolute path, attic #200, attic #137
- chunker: use off_t to get 64bit on 32bit platform, #178
- initialize chunker fd to -1, so it's not equal to STDIN_FILENO (0)
- fix reaction to "no" answer at delete repo prompt, #182
- setup.py: detect lz4.h header file location
- to support python < 3.2.4, add less buggy argparse lib from 3.2.6 (#194)
- fix for obtaining ``char *`` from temporary Python value (old code causes
a compile error on Mint 17.2)
- llfuse 0.41 install troubles on some platforms, require < 0.41
(UnicodeDecodeError exception due to non-ascii llfuse setup.py)
- cython code: add some int types to get rid of unspecific python add /
subtract operations (avoid ``undefined symbol FPE_``... error on some platforms)
- fix verbose mode display of stdin backup
- extract: warn if a include pattern never matched, fixes#209,
implement counters for Include/ExcludePatterns
- archive names with slashes are invalid, attic issue #180
- chunker: add a check whether the POSIX_FADV_DONTNEED constant is defined -
fixes building on OpenBSD.
Other changes:
- detect inconsistency / corruption / hash collision, #170
- replace versioneer with setuptools_scm, #106
- docs:
- pkg-config is needed for llfuse installation
- be more clear about pruning, attic issue #132
- unit tests:
- xattr: ignore security.selinux attribute showing up
- ext3 seems to need a bit more space for a sparse file
- do not test lzma level 9 compression (avoid MemoryError)
- work around strange mtime granularity issue on netbsd, fixes#204
- ignore st_rdev if file is not a block/char device, fixes#203
- stay away from the setgid and sticky mode bits
- use Vagrant to do easy cross-platform testing (#196), currently:
- Debian 7 "wheezy" 32bit, Debian 8 "jessie" 64bit
- Ubuntu 12.04 32bit, Ubuntu 14.04 64bit
- Centos 7 64bit
- FreeBSD 10.2 64bit
- OpenBSD 5.7 64bit
- NetBSD 6.1.5 64bit
- Darwin (OS X Yosemite)
Version 0.25.0
--------------
Compatibility notes:
- lz4 compression library (liblz4) is a new requirement (#156)
- the new compression code is very compatible: as long as you stay with zlib
compression, older borg releases will still be able to read data from a
repo/archive made with the new code (note: this is not the case for the
default "none" compression, use "zlib,0" if you want a "no compression" mode
that can be read by older borg). Also the new code is able to read repos and
archives made with older borg versions (for all zlib levels 0..9).
Deprecations:
- --compression N (with N being a number, as in 0.24) is deprecated.
We keep the --compression 0..9 for now to not break scripts, but it is
deprecated and will be removed later, so better fix your scripts now:
--compression 0 (as in 0.24) is the same as --compression zlib,0 (now).
BUT: if you do not want compression, you rather want --compression none
(which is the default).
--compression 1 (in 0.24) is the same as --compression zlib,1 (now)
--compression 9 (in 0.24) is the same as --compression zlib,9 (now)
New features:
- create --compression none (default, means: do not compress, just pass through
data "as is". this is more efficient than zlib level 0 as used in borg 0.24)
- create --compression lz4 (super-fast, but not very high compression)
- create --compression zlib,N (slower, higher compression, default for N is 6)
- create --compression lzma,N (slowest, highest compression, default N is 6)
- honor the nodump flag (UF_NODUMP) and do not backup such items
- list --short just outputs a simple list of the files/directories in an archive
Bug fixes:
- fixed --chunker-params parameter order confusion / malfunction, fixes#154
- close fds of segments we delete (during compaction)
- close files which fell out the lrucache
- fadvise DONTNEED now is only called for the byte range actually read, not for
the whole file, fixes#158.
- fix issue with negative "all archives" size, fixes#165
- restore_xattrs: ignore if setxattr fails with EACCES, fixes#162
Other changes:
- remove fakeroot requirement for tests, tests run faster without fakeroot
(test setup does not fail any more without fakeroot, so you can run with or
without fakeroot), fixes#151 and #91.
- more tests for archiver
- recover_segment(): don't assume we have an fd for segment
- lrucache refactoring / cleanup, add dispose function, py.test tests
- generalize hashindex code for any key length (less hardcoding)
- lock roster: catch file not found in remove() method and ignore it
- travis CI: use requirements file
- improved docs:
- replace hack for llfuse with proper solution (install libfuse-dev)
- update docs about compression
- update development docs about fakeroot
- internals: add some words about lock files / locking system
- support: mention BountySource and for what it can be used
- theme: use a lighter green
- add pypi, wheel, dist package based install docs
- split install docs into system-specific preparations and generic instructions
diffoscope will try to get to the bottom of what makes files or
directories different. It will recursively unpack archives of many kinds
and transform various binary formats into more human readable form to
compare them. It can compare two tarballs, ISO images, or PDF just as
easily.
It can be scripted through error codes, and a report can be produced
with the detected differences. The report can be text or HTML.
When no type of report has been selected, diffoscope defaults
to write a text report on the standard output.
diffoscope will exit with 0 if there's no differences and 1 if there
are. An HTML report can be produced with the detected differences.
diffoscope is developed as part of the "reproducible builds" Debian
project.
It is meant to be able to quickly understand why two builds of the same
package produce different outputs. diffoscope was previously named
debbindiff.
pkgsrc change: update HOMEPAGE.
0.5.8
* Merge pull request #94 from portertech/hotfix/windows-jobs
Fix Windows process job handle leak
* [windows-jobs] fix windows process job handle leak
this fixessensu/sensu#1057
0.5.7
* Fix posix_spawn bug when $stdout is overriden
* Add failing test case for $stdout = StringIO
* Fix header
* Add caveat for #89
v3.0.5
Bugfixes
* #359 - implement Adapter#stop to free resources on Linux
* #358 - rescan directory to avoid crashes when files deleted during scan
* #356 - fix error in exception handling (bad arguments passed when building
message)
v3.0.4
Bugfixes
* fix#351 - where OSX adapter couldn't listen to more than 2 given
directories
GdMap is a tool which allows you to visualize disk space in a novel way. Files
and directories are displayed in rectangular areas. The larger the file, the
larger the rectangle that represents it.
Patch via pkgsrc-wip/fdupes by Mateusz Poszwa
Changes from 1.50 to 1.51
- Added support for 64-bit file offsets on 32-bit systems.
- Using tty for interactive input instead of regular stdin. This is to
allow feeding filenames via stdin in future versions of fdupes without
breaking interactive deletion feature.
- Fixed some typos in --help.
- Turned C++ style comments into C style comments.
Changes from 1.40 to 1.50-PR2
- Fixed memory leak. [JB]
- Added "--summarize" option. [AL]
- Added "--recurse:" selective recursion option. [AL]
- Added "--noprompt" option for totally automated deletion of
duplicate files.
- Now sorts duplicates (old to new) for consistent order when
listing or deleteing duplicate files.
- Now tests for early matching of files, which should help speed up
the matching process when large files are involved.
- Added warning whenever a file cannot be deleted. [CHL, AL]
- Fixed bug where some files would not be closed after failure. [AL]
- Fixed bug where confirmmatch() function wouldn't always deal
properly with zero-length files. [AL]
- Fixed bug where progress indicator would not be cleared
when no files were found. [AL]
- Removed experimental red-black tree code (it was slower on
my system than the default code). [AL]
- Modified md5/md5.c to avoid compiler warning. [CHL]
- Changes to fdupes.c for compilation under platforms where
getopt_long is unavailable. [LR, AL]
- Changes to help text for clarity. [AL]
- Various changes and improvements to Makefile. [PB, AL]
Security Fix
CVE-2015-8034: Saving state.sls cache data to disk with insecure permissions
This affects users of the state.sls function. The state run cache
on the minion was being created with incorrect permissions. This
file could potentially contain sensitive data that was inserted
via jinja into the state SLS files. The permissions for this file
are now being set correctly. Thanks to @zmalone for bringing this
issue to our attention.
Patch based largely on a pull request by bahamat@:
https://github.com/joyent/pkgsrc/pull/307
3.7.2:
Bug fixes:
- readfile() and read*list() should print an error if they fail to read file.
(Redmine #7702)
- Fix 'AIX_PREINSTALL_ALREADY_DONE.txt: cannot create' error
message on AIX.
- If there is an error saving a mustache template file
it is now logged with log-level error (was inform).
- Change: Clarify bootstrap/failsafe reports
- Fixed several bugs which prevented CFEngine from loading
libraries from the correct location. This affected several platforms.
(Redmine #6708)
- If file_select.file_types is set to symlink and there
are regular files in the scanned directory, CFEngine no longer
produces an unneccessary error message. (Redmine #6996)
- Fix: Solaris packages no longer contain duplicate library
files, but instead symlinks to them. (Redmine #7591)
- cf-agent, cf-execd, cf-promises, cf-runagent and cf-serverd honor
multiple -D, -N and -s arguments (Redmine #7191)
- Fix "@endif" keyword sometimes being improperly processed
by policy parser. (Redmine #7413)
- It is possible to edit the same value in multiple regions
of one file. (Redmine #7460)
- Fix select_class not setting class when used in common bundle with slist.
(Redmine #7482)
- Fix broken HA policy for 3rd disaster-recovery node.
- Directories should no more be changed randomly
into files. (Redmine #6027)
- Include latest security updates for 3.7.
- Reduce malloc() thread contention on heavily loaded
cf-serverd, by not exiting early in the logging function, if no message
is to be printed. (Redmine #7624)
- Improve cf-serverd's lock contention because of getpwnam()
call. (Redmine #7643)
- action_policy "warn" now correctly produces warnings instead
of various other verbosity levels. (Redmine #7274)
- Change: Improve efficiency and debug reports (Redmine #7527)
- Change package modules permissions on hub package so that
hub can execute package promises. (Redmine #7602)
- No longer hang when changing permissions/ownership on fifos
(Redmine #7030)
- Fix exporting CSV reports through HTTPS. (Redmine #7267)
- failsafe.cf will be created when needed. (Redmine #7634)
- Mustache templates: Fix key when value is not a
primitive. The old behavior, when iterating across a map or array of
maps, was to abort if the key was requested with . The new
behavior is to always replace with either the key name or the
iteration position in the array. An error is printed if is used
outside of a Mustache iteration section.
- Legacy package promise: Result classes are now defined if
the package being promised is already up to date. (Redmine #7399)
- TTY detection should be more reliable. (Redmine #7606)
Masterfiles:
- Add: Path to svcprop in stdlib
- Add: New `results` classes body [] (Redmine #7418, #7481)
- Remove: Support for email settings from augments_file (Redmine #7682)
3.7.1:
Bug fixes:
- Fix daemons not restarting correctly on upgrade on AIX. (Redmine #7550)
- Fix upgrade causing error message under systemd because of open ports.
- Fix build with musl libc. (Redmine #7455)
- Long promiser strings with multiple lines are now
abbreviated in logs. (Redmine #3964)
- Fixed a bug which could cause daemons to not to be killed
correctly when upgrading or manually running "service cfengine3 stop".
(Redmine #7193)
- Package promise: Fix inability to install certain packages
with numbers.
- Fix package promise not removing dependant packages. (Redmine #7424)
- Fix warning "Failed to parse csv file entry" with certain very long
commands promises. (Redmine #7400)
- Fix misaligned help output in cf-hub. (Redmine #7273)
- Augmenting inputs from the augments_file (Redmine #7420)
- Add support for failover to 3rd HA node located outside cluster.
- Upgrade all dependencies for patch release.
- Fix a bug which caused daemons not to be restarted on
upgrade. (Redmine #7528)
3.7.0:
New features:
- New package promise implementation.
- Full systemd support for all relevant platforms
- New classes to determine whether certain features are enabled:
* feature_yaml
* feature_xml
For the official CFEngine packages, these are always enabled, but
packages from other sources may be built without the support.
- New readdata() support for generic data input (CSV, YAML, JSON, or auto)
- YAML support: new readyaml() function and in readdata()
- CSV support: new readcsv() function and in readdata()
- New string_mustache() function
- New data_regextract() function
- eval() can now be called with "class" as the "mode" argument, which
will cause it to return true ("any") if the calculated result is
non-zero, and false ("!any") if it is zero.
- New list_ifelse() function
- New mapjson() function as well as JSON support in maparray().
- filestat() function now supports "xattr" argument for extended
attributes.
- "ifvarclass" now has "if" as an alias, and "unless" as an inverse
alias.
- Ability to expand JSON variables directory in Mustache templates:
Prefix the name with '%' for multiline expansion, '$' for compact
expansion.
- Ability to expand the iteration *key* in Mustache templates with @
- Canonical JSON output: JSON output has reliably sorted keys so the
same data structure will produce the same JSON every time.
- New "@if minimum_version(x.x)" syntax in order to hide future language
improvements from versions that don't understand them.
- compile time option (--with-statedir) to
override the default state/ directory path.
- Fix error messages/ handling in process signalling which no longer
allowed any signals to fail silently
- Also enable shortcut keyword for cf-serverd classic protocol, eg to
simplify the bootstrap process for clients that have different
sys.masterdir settings (Redmine #3697)
- methods promises now accepts the bundle name in the promiser string,
as long as it doesn't have any parameters.
- In a services promise, if the service_method bundle is not specified,
it defaults to the promiser string (canonified) with "service_" as a
prefix. The bundle must be in the same namespace as the promise.
- inline JSON in policy files: surrounding with parsejson() is now
optional *when creating a new data container*.
- New data_expand() function to interpolate variables in a data container.
- Add configurable network bandwidth limit for all outgoing
connections ("bwlimit" attribute in "body common control") . To
enforce it in both directions, make sure the attribute is set on both
sides of the connection.
- Secure bootstrap has been facilitated by use of
"cf-agent --boostrap HUB_ADDRESS --trust-server=no"
- Implement new TLS-relevant options (Redmine #6883):
- body common control: tls_min_version
- body server control: allowtlsversion
- body common control: tls_ciphers
- body server control: allowciphers (preexisting)
Changes:
- Improved output format, less verbose, and messages are grouped.
- cf-execd: agent_expireafter default was changed to 120 minutes
(Redmine #7113)
- All embedded databases are now rooted in the state/ directory.
- TLS used as default for all outgoing connections.
- process promise now reports kept status instead of repaired if a
signal is not sent, even if the restart_class is set. The old
behavior was to set the repaired status whenever the process was not
running. (Redmine#7216).
- Bootstrapping requires keys to be generated in advance using cf-key.
- Disable class set on reverse lookup of interfaces IP addresses.
(Redmine #3993, Redmine #6870)
- Define a hard class with just the OS major version on FreeBSD.
- Abort cf-agent if OpenSSL's random number generator can't
be seeded securely.
- Masterfiles source tarball now installs using the usual commands
"./configure; make install".
- Updated Emacs syntax highlighting template to support the latest
syntax enhancements in 3.7.
Deprecations:
- Arbitrary arguments to cfruncommand (using "cf-runagent -o") are
not acceptable any more. (Redmine #6978)
- 3.4 is no longer supported in masterfiles.
Bug fixes:
- Fix server common bundles evaluation order (Redmine#7211).
- Limit LMDB disk usage by preserving sparse areas in LMDB files
(Redmine#7242).
- Fixed LMDB corruption on HP-UX 11.23. (Redmine #6994)
- Fixed insert_lines failing to converge if preserve_block was used.
(Redmine #7094)
- Fixed init script failing to stop/restart daemons on openvz/lxc
hosts. (Redmine #3394)
- rm_rf_depth now deletes base directory as advertised. (Redmine #7009)
- Refactored cf-agent's connection cache to properly differentiate
hosts using all needed attributes like host and port.
(Redmine #4646)
- Refactored lastseen database handling to avoid inconsistencies.
(Redmine #6660)
- cf-key --trust-key now supports new syntax to also update the
lastseen database, so that clients using old protocol will trust
the server correctly.
- Fixed a bug which sometimes caused an agent or daemon to kill or stop
itself. (Redmine #7075, #7244)
- Fixed a bug which made it difficult to kill CFEngine daemons,
particularly cf-execd. (Redmine #6659, #7193)
- Fixed a bug causing systemd not to be detected correctly on Debian.
(Redmine #7297)
- "cf-promises -T" will now correctly report the checked out commit,
even if you haven't checked out a Git branch. (Redmine #7332)
- Reduce verbosity of harmless errors related to socket timeouts and
missing thermal zone files. (Redmine #6486 and #7238)
- Fix process_result logic to match the purpose of body process_select
days_older_than (Redmine #3009)
Masterfiles:
Added:
- Support for user specified overring of framework defaults without
modifying policy supplied by the framework itself (see
example_def.json)
- Support for def.json class augmentation in update policy
- Run vacuum operation on postgresql every night as a part of
maintenance.
- Add measure_promise_time action body to lib (3.5, 3.6, 3.7, 3.8)
- New negative class guard `cfengine_internal_disable_agent_email` so
that agent email can be easily disabled by augmenting def.json
Changed:
- Relocate def.cf to controls/VER/
- Relocate update_def to controls/VER
- Relocate all controls to controls/VER
- Only load cf_hub and reports.cf on CFEngine Enterprise installs
- Relocate acls related to report collection from bundle server
access_rules to controls/VER/reports.cf into bundle server
report_access_rules
- Re-organize cfe_internal splitting core from enterprise specific
policies and loading the appropriate inputs only when necessary
- Moved update directory into cfe_internal as it is not generally
intended to be modified
- services/autorun.cf moved to lib/VER/ as it is not generally intended
to be modified
- To improve predictibility autorun bundles are activated in
lexicographical order
- Relocate services/file_change.cf to cfe_internal/enterprise. This
policy is most useful for a good OOTB experience with CFEngine
Enterprise Mission Portal.
- Relocate service_catalogue from promsies.cf to services/main.cf. It is
intended to be a user entry. This name change correlates with the main
bundle being activated by default if there is no bundlesequence
specified.
- Reduce benchmarks sample history to 1 day.
- Update policy no longer generates a keypair if one is not found.
(Redmine: #7167)
- Relocate cfe_internal_postgresql_maintenance bundle to lib/VER/
- Set postgresql_monitoring_maintenance only for versions 3.6.0 and
3.6.1
- Move hub specific bundles from lib/VER/cfe_internal.cf into
lib/VER/cfe_internal_hub.cf and load them only if policy_server policy
if set.
- Re-organize lib/VER/stdlib.cf from lists into classic array for use
with getvalues
Removed:
- Diff reporting on /etc/shadow (Enterprise)
- Update policy from promise.cf inputs. There is no reason to include
the update policy into promsies.cf, update.cf is the entry for the
update policy
- _not_repaired outcome from classes_generic and scoped_classes generic
(Redmine: # 7022)
Fixes:
- standard_services now restarts the service if it was not already
running when using service_policy => restart with chkconfig (Redmine
#7258)
findnewest recursively scans the directories given on the command
line and prints the UNIX timestamp (seconds since UNIX epoch) of
the newest file found.
D-Bus 1.10.6 (2015-12-01)
==
The “marzipan beetles” release.
Fixes:
• On Unix when running tests as root, don't assert that root and
the dbus-daemon user can still call UpdateActivationEnvironment;
assert that those privileged users can call BecomeMonitor instead
(fd.o #93036, Simon McVittie)
• On Windows, fix a memory leak in the autolaunch transport (fd.o #92899,
Simon McVittie)
• On Windows Autotools builds, don't run tests that rely on
dbus-run-session and other Unix-specifics (fd.o #92899, Simon McVittie)
* Add preliminary NetBSD support code.
It is sufficient to run letsencrypt python client on NetBSD.
Changelog:
3.3.0 - 2015-11-25
==================
**Enhancements**
- #558: [Linux] exposed psutil.PROCFS_PATH constant to change the default
location of /proc filesystem.
- #615: [OpenBSD] added OpenBSD support. (contributed by Landry Breuil)
**Bug fixes**
- #692: [UNIX] Process.name() is no longer cached as it may change.
3.2.2 - 2015-10-04
==================
**Bug fixes**
- #517: [SunOS] net_io_counters failed to detect network interfaces
correctly on Solaris 10
- #541: [FreeBSD] disk_io_counters r/w times were expressed in seconds instead
of milliseconds. (patch by dasumin)
- #610: [SunOS] fix build and tests on Solaris 10
- #623: [Linux] process or system connections raises ValueError if IPv6 is not
supported by the system.
- #678: [Linux] can't install psutil due to bug in setup.py.
- #688: [Windows] compilation fails with MSVC 2015, Python 3.5. (patch by
Mike Sarahan)
3.2.1 - 2015-09-03
==================
**Bug fixes**
- #677: [Linux] can't install psutil due to bug in setup.py.
3.2.0 - 2015-09-02
==================
**Enhancements**
- #644: [Windows] added support for CTRL_C_EVENT and CTRL_BREAK_EVENT signals
to use with Process.send_signal().
- #648: CI test integration for OSX. (patch by Jeff Tang)
- #663: [UNIX] net_if_addrs() now returns point-to-point (VPNs) addresses.
- #655: [Windows] different issues regarding unicode handling were fixed. On
Python 2 all APIs returning a string will now return an encoded version of it
by using sys.getfilesystemencoding() codec. The APIs involved are:
- psutil.net_if_addrs()
- psutil.net_if_stats()
- psutil.net_io_counters()
- psutil.Process.cmdline()
- psutil.Process.name()
- psutil.Process.username()
- psutil.users()
**Bug fixes**
- #513: [Linux] fixed integer overflow for RLIM_INFINITY.
- #641: [Windows] fixed many compilation warnings. (patch by Jeff Tang)
- #652: [Windows] net_if_addrs() UnicodeDecodeError in case of non-ASCII NIC
names.
- #655: [Windows] net_if_stats() UnicodeDecodeError in case of non-ASCII NIC
names.
- #659: [Linux] compilation error on Suse 10. (patch by maozguttman)
- #664: [Linux] compilation error on Alpine Linux. (patch by Bart van Kleef)
- #670: [Windows] segfgault of net_if_addrs() in case of non-ASCII NIC names.
(patch by sk6249)
- #672: [Windows] compilation fails if using Windows SDK v8.0. (patch by
Steven Winfield)
- #675: [Linux] net_connections(); UnicodeDecodeError may occur when listing
UNIX sockets.
3.1.1 - 2015-07-15
==================
**Bug fixes**
- #603: [Linux] ionice_set value range is incorrect. (patch by spacewander)
- #645: [Linux] psutil.cpu_times_percent() may produce negative results.
- #656: 'from psutil import *' does not work.
3.1.0 - 2015-07-15
==================
**Enhancements**
- #534: [Linux] disk_partitions() added support for ZFS filesystems.
- #646: continuous tests integration for Windows with
https://ci.appveyor.com/project/giampaolo/psutil.
- #647: new dev guide:
https://github.com/giampaolo/psutil/blob/master/DEVGUIDE.rst
- #651: continuous code quality test integration with
https://scrutinizer-ci.com/g/giampaolo/psutil/
**Bug fixes**
- #340: [Windows] Process.open_files() no longer hangs. Instead it uses a
thred which times out and skips the file handle in case it's taking too long
to be retrieved. (patch by Jeff Tang, PR #597)
- #627: [Windows] Process.name() no longer raises AccessDenied for pids owned
by another user.
- #636: [Windows] Process.memory_info() raise AccessDenied.
- #637: [UNIX] raise exception if trying to send signal to Process PID 0 as it
will affect os.getpid()'s process group instead of PID 0.
- #639: [Linux] Process.cmdline() can be truncated.
- #640: [Linux] *connections functions may swallow errors and return an
incomplete list of connnections.
- #642: repr() of exceptions is incorrect.
- #653: [Windows] Add inet_ntop function for Windows XP to support IPv6.
- #641: [Windows] Replace deprecated string functions with safe equivalents.
3.0.1 - 2015-06-18
==================
**Bug fixes**
- #632: [Linux] better error message if cannot parse process UNIX connections.
- #634: [Linux] Proces.cmdline() does not include empty string arguments.
- #635: [UNIX] crash on module import if 'enum' package is installed on python
< 3.4.
3.0.0 - 2015-06-13
==================
**Enhancements**
- #250: new psutil.net_if_stats() returning NIC statistics (isup, duplex,
speed, MTU).
- #376: new psutil.net_if_addrs() returning all NIC addresses a-la ifconfig.
- #469: on Python >= 3.4 ``IOPRIO_CLASS_*`` and ``*_PRIORITY_CLASS`` constants
returned by psutil.Process' ionice() and nice() methods are enums instead of
plain integers.
- #581: add .gitignore. (patch by Gabi Davar)
- #582: connection constants returned by psutil.net_connections() and
psutil.Process.connections() were turned from int to enums on Python > 3.4.
- #587: Move native extension into the package.
- #589: Process.cpu_affinity() accepts any kind of iterable (set, tuple, ...),
not only lists.
- #594: all deprecated APIs were removed.
- #599: [Windows] process name() can now be determined for all processes even
when running as a limited user.
- #602: pre-commit GIT hook.
- #629: enhanced support for py.test and nose test discovery and tests run.
- #616: [Windows] Add inet_ntop function for Windows XP.
**Bug fixes**
- #428: [all UNIXes except Linux] correct handling of zombie processes;
introduced new ZombieProcess exception class.
- #512: [BSD] fix segfault in net_connections().
- #555: [Linux] psutil.users() correctly handles ":0" as an alias for
"localhost"
- #579: [Windows] Fixed open_files() for PID>64K.
- #579: [Windows] fixed many compiler warnings.
- #585: [FreeBSD] net_connections() may raise KeyError.
- #586: [FreeBSD] cpu_affinity() segfaults on set in case an invalid CPU
number is provided.
- #593: [FreeBSD] Process().memory_maps() segfaults.
- #606: Process.parent() may swallow NoSuchProcess exceptions.
- #611: [SunOS] net_io_counters has send and received swapped
- #614: [Linux]: cpu_count(logical=False) return the number of physical CPUs
instead of physical cores.
- #618: [SunOS] swap tests fail on Solaris when run as normal user
- #628: [Linux] Process.name() truncates process name in case it contains
spaces or parentheses.
2.2.1 - 2015-02-02
==================
**Bug fixes**
- #496: [Linux] fix "ValueError: ambiguos inode with multiple PIDs references"
(patch by Bruno Binet)
2.2.0 - 2015-01-06
==================
**Enhancements**
- #521: drop support for Python 2.4 and 2.5.
- #553: new examples/pstree.py script.
- #564: C extension version mismatch in case the user messed up with psutil
installation or with sys.path is now detected at import time.
- #568: New examples/pidof.py script.
- #569: [FreeBSD] add support for process CPU affinity.
**Bug fixes**
- #496: [Solaris] can't import psutil.
- #547: [UNIX] Process.username() may raise KeyError if UID can't be resolved.
- #551: [Windows] get rid of the unicode hack for net_io_counters() NIC names.
- #556: [Linux] lots of file handles were left open.
- #561: [Linux] net_connections() might skip some legitimate UNIX sockets.
(patch by spacewander)
- #565: [Windows] use proper encoding for psutil.Process.username() and
psutil.users(). (patch by Sylvain Mouquet)
- #567: [Linux] in the alternative implementation of CPU affinity PyList_Append
and Py_BuildValue return values are not checked.
- #569: [FreeBSD] fix memory leak in psutil.cpu_count(logical=False).
- #571: [Linux] Process.open_files() might swallow AccessDenied exceptions and
return an incomplete list of open files.
Changelog:
- improved documentation on DST field names
- add notes on HUP signal in documentation
- fix dataset queries
- fix recheck handling for offline destinations
- fixed logging
- made regexps locale safe
- allow . and - in userproperties
The find-prefix infrastructure was required in a pkgviews world where
packages installed from pkgsrc could have different installation
prefixes, and this was a way for a dependency prefix to be determined.
Now that pkgviews has been removed there is no longer any need for the
overhead of this infrastructure. Instead we use BUILDLINK_PREFIX.pkg
for dependencies pulled in via buildlink, or LOCALBASE/PREFIX where the
dependency is coming from pkgsrc.
Provides a reasonable performance win due to the reduction of `pkg_info
-qp` calls, some of which were redundant anyway as they were duplicating
the same information provided by BUILDLINK_PREFIX.pkg.
D-Bus 1.10.4 (2015-11-17)
==
The “Frostburn Canyon” release.
Enhancements:
• GetConnectionCredentials, GetConnectionUnixUser and
GetConnectionUnixProcessID with argument "org.freedesktop.DBus"
will now return details of the dbus-daemon itself. This is required
to be able to call SetEnvironment on systemd.
(fd.o #92857, Jan Alexander Steffens)
Fixes:
• Make UpdateActivationEnvironment always fail with AccessDenied on the
system bus. Previously, it was possible to configure it so root could
call it, but the environment variables were not actually used,
because the launch helper would discard them.
(fd.o #92857, Jan Alexander Steffens)
• On Unix with --systemd-activation on a user bus, make
UpdateActivationEnvironment pass on its arguments to systemd's
SetEnvironment method, solving inconsistency between the environments
used for traditional activation and systemd user-service activation.
(fd.o #92857, Jan Alexander Steffens)
• On Windows, don't crash if <syslog/> or --syslog is used
(fd.o #92538, Ralf Habacker)
• On Windows, fix a memory leak when setting a DBusError from a Windows
error (fd.o #92721, Ralf Habacker)
• On Windows, don't go into infinite recursion if we abort the process
with backtraces enabled (fd.o #92721, Ralf Habacker)
• Fix various failing tests, variously on Windows and cross-platform:
· don't test system.conf features (users, groups) that only make sense
on the system bus, which is not supported on Windows
· don't call _dbus_warn() when we skip a test, since it is fatal
· fix computation of expected <standard_session_servicedirs/>
· when running TAP tests, translate newlines to Unix format, fixing
cross-compiled tests under Wine on Linux
· don't stress-test refcounting under Wine, where it's really slow
· stop assuming that a message looped-back to the test will be received
immediately
· skip some system bus tests on Windows since they make no sense there
(fd.o #92538, fd.o #92721; Ralf Habacker, Simon McVittie)
Version 4.8.15
- Core
* Minimal version of GLib is 2.26.0
* Use the PATH environment variable to search for the executable when opening pipe (#3444)
* Support more than 2 (up to 9) columns in file panel in brief mode (#3212)
* Clarify file sorting in "Unsorted" mode (#3496)
* WGroupbox: respect dialog's colors (#3468)
* Highlight find file's result in internal viewer (#3530)
- VFS
* s3 extfs vfs: bugfixes and improvements (#3470, #3502)
- Editor
* Add hidden option to choose full or base file name in the status line (#3445)
* Improvements of syntax highlighting:
- Lua (#3471)
- PKGBUILD (#3484)
- Misc
* Text alignment in Info panel (#3155)
* Select of menu file edit: change default button to "User" (#3493)
* Recognize .gmo files as well as .mo ones (#3422)
* Fix mc.pot comment tripping up Transifex and unportable inplace sed (#3479)
* A lot of code clean up (#3420, #3424, #3426, #3427, #3428, #3429, #3430, #3431, #3434, #3435, #3437, #3463, #3464, #3465, #3466, #3467, #3494, #3495, #3539)
* Documentation updates:
- Spanish man and help: Diff Viewer section and minor fixes (#3477)
- VFS garbage collection (#3472)
- Fixes
* Various memory leaks (#3438, #3439, #3440, #3457, #3458, #3459, #3460, #3461, #3462, #3475, #3520, #3521, #3522)
* Linux kernel-specific segfault on startup (#3441)
* Lost of Panelize contents in some cases (#3032, #3489, #3498, #3507)
* Wrong highlight of search result in case of "Regular expression" and "Whole words" (#3524)
* "Whole words" search works only in Normal mode (#3525)
* SFTP VFS: segfault (#3456)
* Segfault in "Find file" due to invalid UTF-8 sequences (#3449)
* Bash variable 'PROMPT_COMMAND' in pantheon-terminal (#3534)
000306f4-7 (Family 6, Model 3f, Stepping 4, Platform ID 7)
00040671-1 (Family 6, Model 47, Stepping 1, Platform ID 1)
00040671-5 (Family 6, Model 47, Stepping 1, Platform ID 5)
Version 8.14.0 [v8-stable] 2015-11-03
- add property "rawmsg-after-pri"
- bugfix: potential misadresseing in imfile
Could happen when wildcards were used.
- bugfix: re_extract RainerScript function did not work
Changes to NTFS-3G:
-------------------
Fixed inserting a new ACL after wiping out by chkdsk
Fixed Windows-type inheritance
Fixed ignoring the umask mount option when permissions are used
Fixed checking permissions when Posix ACLs are compiled in but not enabled
Disabled option remove_hiberfile on read-only mounts
Implemented an extended attribute to get/set EAs
Avoid full runlist updating in more situations
Update ctime after setting an ACL
Use MFT record 15 for the first extent to MFT:DATA
Ignore the sloppy mount option (-s)
Implemented FITRIM (fstrim) ioctl
Reengineered the compression algorithm
Changes to ntfsprogs:
---------------------
Return success from ntfsprogs utilities with options –version and the like
Implemented configure option –enable-quarantined for non functional utilities
Added manuals for ntfsdecrypt, ntfswipe, ntfstruncate and ntfsfallocate
Puppet 3.8.4
- Update Windows OpenSSL version to 1.0.2d from 1.0.0s
- PUP-5271: Windows user resource should not manage password
unless specified
- PUP-5398: Fix regression that reintroduced file watching for
directory environmnents
- PUP-5380: Slow catalog run after updating to Puppet 3.7.5
- PUP-5350: Puppet filter function does not behave consistently
across all supported argument types
- PUP-5271: Windows user resource should not manage password
unless specified
- PUP-4495: Puppet 3.5.0 introduced a regression in tag filtering
for catalog runs
Puppet 3.8.3
- PUP-5036: --parser future breaks class application {}
- PUP-3045: exec resource with timeout doesn't kill executed
command
that times out
- PUP-4639: Refreshing a LaunchDaemon leaves it disabled
- PUP-5044: launchd enable/disable on OS X 10.10
- PUP-5013: resource evaluation metrics are missing when not
using an ENC
- PUP-735: Status unchanged when "Could not apply complete
catalog"
anything but 32 bits (and unsigned is 32 bits in pretty much all
modern platforms.)
this allows ups-nut-usb to work on sparc64 for me, otherwise the
hidparser fails.
bump pkg revision for ups-nut-usb, as that pkg changes (at least
for big endian platforms.)
- reset MAINTAINER as MAINTAINER says he no longer wishes to maintain it
- also, based on commit logs, it appears that almost nobody is
respecting MAINTAINER anyways
- skip PKGREVISION bump as this is build fix and minor metadata change
Approved by: cegger@
D-Bus 1.10.2 (2015-10-26)
==
The “worst pies in London” release.
Fixes:
• Correct error handling for activation: if there are multiple attempts
to activate the same service and it fails immediately, the first attempt
would get the correct reply, but the rest would time out. We now send
the same error reply to each attempt. (fd.o #92200, Simon McVittie)
• If BecomeMonitor is called with a syntactically invalid match rule,
don't crash with an assertion failure, fixing a regression in 1.9.10.
This was not exploitable as a denial of service, because the check
for a privileged user is done first. (fd.o #92298, Simon McVittie)
• On Linux with --enable-user-session, add the bus address to the
environment of systemd services for better backwards compatibility
(fd.o #92612, Jan Alexander Steffens)
• On Windows, fix the logic for replacing the installation prefix
in service files' Exec lines (fd.o #83539; Milan Crha, Simon McVittie)
• On Windows, if installed in the conventional layout with ${prefix}/etc
and ${prefix}/share, use relative paths between bus configuration files
to allow the tree to be relocated (fd.o #92028, Simon McVittie)
• Make more of the regression tests pass in Windows builds (fd.o #92538,
Simon McVittie)
Problems found with existing digests:
Package memconf distfile memconf-2.16/memconf.gz
b6f4b736cac388dddc5070670351cf7262aba048 [recorded]
95748686a5ad8144232f4d4abc9bf052721a196f [calculated]
Problems found locating distfiles:
Package dc-tools: missing distfile dc-tools/abs0-dc-burn-netbsd-1.5-0-gae55ec9
Package ipw-firmware: missing distfile ipw2100-fw-1.2.tgz
Package iwi-firmware: missing distfile ipw2200-fw-2.3.tgz
Package nvnet: missing distfile nvnet-netbsd-src-20050620.tgz
Package syslog-ng: missing distfile syslog-ng-3.7.2.tar.gz
Otherwise, existing SHA1 digests verified and found to be the same on
the machine holding the existing distfiles (morden). All existing
SHA1 digests retained for now as an audit trail.
Rework and clean up the package, split off various bindings
into separate packages. Add SMF support.
Major features and improvements introduced in major releases since 3.2.
3.7
- OpenSSL is now a required dependency for syslog-ng.
- Java-destination driver ported from syslog-ng-incubator.
- Python language support is ported from syslog-ng incubator.
- New Java destination drivers
- New Parsers
3.6
- PCRE is now a required dependency of syslog-ng.
- Threaded mode is now enabled by default.
3.5
- Multi-line support
- STOMP destination
- Redis destination
- Template type hinting
- Template options honored everywhere
- Support for unit suffixes in the configuration
- The Incubator project
3.4
- New plugins: AMQP & SMTP destinations, JSON parser.
- New parsers for patterndb: HOSTNAME, EMAIL, PCRE and LLADDR.
- It is now possible to control what db-parser() sees as its input
via it's new template() option.
- value-pairs() gained support for programmatically
rewriting key names in bulk, via the rekey() method.
- The network() driver is introduced, unifying and extending
tcp(), udp(), syslog(), unix-dgram() and
unix-stream(). The old drivers are still available, but
- Support for junctions & channels were added, which improve
the flexibility of the syslog-ng configuration language.
3.3
- multi-core/CPU scaling: the new multi-threaded architecture allows
syslog-ng to scale into the 800k msg/sec region.
- MongoDB support: using MongoDB instead of SQL is faster and
allows better representation of log data.
- JSON support: using the $(format-json) template function it is
now possible to construct JSON (JavaScript Object Notation)
output for log messages.
- A number of enhancements all over the place: SQL, patterndb.
- The default ports have changed. syslog-ng is using the standard
Delete the AuthenticationAuthority property prior to creating the null
password entry. This prevents the user from showing up in the login window
and fast user switching on newer Darwin releases.
Tools for flashing Rockchip ARM devices.
rkcrc sign files with CRC and KRNL or PARM header
rkflashtool read/write flash data and device info via libusb
rkmisc generate a "misc" partition
rkpad pad file to 512 byte blocks
rkparameters generate a "parameters" file
rkparametersblock generate a "parameters" block
rkunpack unpack "update.img" files
rnunsign remove KRNL/PARM header and crc footer
tested at this time.
Tools to help hacking Allwinner A10 (aka sun4i) based devices and possibly
it's successors, that's why the 'x' in the package name.
fexc:
`.fex` file (de)compiler
Usage: ./fexc [-vq] [-I <infmt>] [-O <outfmt>] [<input> [<output>]]
infmt: fex, bin (default:fex)
outfmt: fex, bin (default:bin)
bin2fex:
compatibility shortcut to call `fexc` to decompile an script.bin
blob back into `.fex` format used by allwinner's SDK to configure
the boards.
fex2bin:
compatiblity shortcut to call `fexc` to compile a `.fex` file into
the binary form used by the sun4i kernel.
fel:
script interface for talking to the FEL USB handler built in to
th CPU. You activate FEL mode by pushing the usboot/recovery
button at poweron. See http://linux-sunxi.org/FEL/USBBoot for
a detailed usage guide.
fel-gpio:
Simple wrapper around fel-pio and fel to allow GPIO manipulations
via FEL
fel-sdboot:
ARM native sdcard bootloader forcing the device into FEL mode
fel-pio:
ARM native helper for fel-gpio
pio:
Manipulate PIO register dumps
jtag-loop.sunxi:
ARM native boot helper to force the SD port into JTAG
and then stop, to ease debugging of bootloaders.
bootinfo:
Dump information from Allwinner boot files (boot0/boot1)
--type=sd include SD boot info
--type=nand include NAND boot info (not implemented)
phoenix_info:
gives information about a phoenix image created by the
phoenixcard utility and optionally extracts the embedded boot
code & firmware file from their hidden partitions.
builtin. Fix obvious logic error in libxl. Disable the use of global
register variables for clang. Lesser evil, HVM users should use newer
xentools or GCC.
Enhancements:
* Merged in lp:~m4ktub/duplicity/0.6-reliability
- Per fix proposed in Bug 1395341.
* Modded .bzrignore to ignore *.egg test dependencies, normalized, sorted.
* Backport fix for bug 1278529
- Use try/except around get_bucket() rather than bare lookup()
* Backport _librsyncmodule.c compilation bug
Increase the pkgsrc UID range to 300-499. We can no longer afford to avoid
conflicts with the 400-499 range used by Fink, as pkgsrc now has around 200
users and the previous range was insufficient for bulk builds.
Ideally there would be a way to use a temporary OpenDirectory database for
builds, as while a large range is required for full bulk builds and we're going
to hit even this additional limit soon, it's unlikely a user installation will
require the full range. However, finding a way to do this is proving elusive.
Version 1.1.2, 2015-07-20
- permit newline inside parser definition
- new parser "cisco-interface-spec"
- new parser "json" to process json parts of the message
- new parser "mac48" to process mac layer addresses
- new parser "name-value-list" (currently inofficial, experimental)
- some parsers did incorrectly report success when an error occurred
- call "rest" parser only if nothing else matches.
- new API to support error callbacks
- testbench is now enabled by default
- bugfix: misadressing on some constant values
- bugfix: add missing function prototypes
Version 8.13.0 [v8-stable] 2015-09-22
- ZeroMQ enhancements:
- Added the ability to set a static publishing topic per action as an
alternative to constructing topics with templates
- ZMQ_PUB socket now defaults to bind and ZMQ_SUB socket now defaults to
connect
- Redis enhancements:
- Can now LPUSH to a Redis list in "queue" mode
- Can now PUBLISH to a Redis channel in "publish" mode
- build requirement for rsyslog/mmnormalize is now liblognorm 1.1.2 or above
- mmnormalize: liblognorm error messages are now emitted via regular
rsyslog error reporting mechanism (aka "are now logged")
- add support for TCP client side keep-alives
- bugfix: imtcp/TLS hangs on dropped packets
- bugfix testbench: some tests using imptcp are run if module is disabled
- bugfix omkafka: Fixes a bug not accepting new messages anymore.
- bugfix: Parallel build issue "cannot find ../runtime/.libs/librsyslog.a:
No such file or directory" (#479) fixed.
- bugfix: Added missing mmpstructdata testfiles into makefile.
- bugfix: Reverted FIX for issue #392 as it had unexpected side effects.
- The new fix duplicates the Listener object for static files (like
done for dynamic files already), resolving issue #392 and #490.
- bugfix: issues in queue subsystem if syncqueuefiles was enabled
- Error 14 was generated on the .qi file directory handle.
As the .qi filestream does not have a directory set, fsync
was called on an empty directory causing a error 14 in debug log.
- When queue files existed on startup, the bSyncQueueFiles
strm property was not set to 1. This is now done in the
qqueueLoadPersStrmInfoFixup function.
- bugfix/testbench: tcpflood tool could abort when random data was added
- rscryutil: Added support to decrypt a not closed log file.
This first release in almost two years brings:
- more complete VFS abstraction
- new plug-in to manage Gtk+ bookmarks
- improved CVS, Git, Make, Preview, SVN, and Volumes plug-ins
- new plug-in to track the current selection
- new experimental plug-in for the XDG trash
- improvements to the view(1) helper binary
- re-usable library, libBrowser
- Spanish translation
- support for building outside of the source tree
- further improvements to the build system
- portability fixes (SunOS)
- support for drawing the desktop as a window
- improved support for Gtk+ 3
- introduction of a test suite
- additional bugfixes and improvements (UI, performance...)
pkgsrc change: add pkg_alternatives support.
v3.0.3
Improvements
* #330 - fixed warnings on JRuby
v3.0.2
Bugfixes
* fix#328 - add missing require which crashed Listen on OSX (thanks to @noahsw for reporting)
v3.0.1
Bugfixes
* #325, #327 - fix regressions (allow Listen to run correctly without other
deps + properly handle pause())
v3.0.0
KNOWN ISSUES
* #319, #258 - TCP is no longer part of Listen, and there's currently no
alternative except downgrading to Listen 2.x
API CHANGES
* TCP functionality removed (Listen.on, Adapter::TCP,
Adapter::TCP::Broadcaster, etc.)
* Listener#start should be used instead of Listener#unpause
* Listener#directories is no longer available
* Listener#options is no longer available as public API
IMPROVEMENTS
* Major performance improvements (CPU), especially for Polling
* Celluloid is no longer required by Listen (which means: better performance,
less dependencies, less threads used, less version conflicts, easier
debugging, less potential issues/bugs)
* TCP is no longer part of Listen (which means: more maintainable codebase and
possibility to create much better TCP implementation without the tradeoffs)
Development
* major codebase rewrite
* better logging by default
Major changes in 0.12.10
========================
* Add VD_AGENT_CAP_MONITORS_CONFIG_POSITION to handle multi-monitor
configurations that are not multi-head
* Add protocol code generation scripts from spice-common
* Endianness and compiler portability fixes (clang)
Lines 83 to 84 of AN-2015-09-16 mention an issue affecting
unpriviledged users running cdda2wav on NetBSD:
cdda2wav: fixed the file setuid.c to work on NetBSD. Thanks to
Heiko Eißfeldt for reporting.
This is the referenced patch, extracted by fbrosson2014.
Bump PKGREVISION.
for PKG_HOME.haldaemon to default to /var/run/hald instead of /var/run/hal
The init script hardcoded /var/run/hald so now use the corrected variable.
Also, use OPSYSVARS for BUILDLINK_TRANSFORMS adding one for SunOS -z.ignore
bump PKGREVISION
Changelog:
==============
Version 0.4.6
==============
NOTE: ConsoleKit is no longer actively maintained and this will most
likely be the final release. You are advised to switch to logind:
http://www.freedesktop.org/software/systemd/man/systemd-logind.service.html
* Don't truncate --frequent output to 8 chars in ck-history (Ray Strode)
* Import udev-acl tool from udev (Michael Biebl)
* Add support for GNU/Hurd (Pino Toscano)
* Build system fixes (Samuli Suominen)
- Device type '-d usbprolific' for Prolific PL2571/277x USB bridges.
- SAT: Support for ATA registers returned in fixed format sense data.
- smartctl '-i' and '--identify': ATA ACS-4 and SATA 3.2 enhancements.
- smartctl '-l xerror': Support for logs with more than 255 pages.
- smartctl '-l devstat': Prints ACS-3 DSN flags.
- smartctl '-l devstat': Read via SMART command if GP log is not
available.
- smartctl '-l scttempsts': Prints SCT SMART STATUS (ACS-4) and
vendor specific SCT bytes.
- configure option '--with-systemdenvfile=auto' as new default.
- configure options '--disable-drivedb', '--enable-savestates'
and '--enable-attributelog' are deprecated.
- Corresponding '--with-*' options are enhanced accordingly.
- Configure option '--with-docdir' is deprecated.
- autoconf < 2.60 and automake < 1.10 are deprecated.
(all of the above still work but a warning is printed if used)
- HDD, SSD and USB additions to drive database.
- Linux: AACRAID fixes, SMART STATUS should work now.
- Linux: '/dev/megaraid_sas_ioctl_node' fd leak fix.
- Darwin: '-S' command implemented, '-l devstat' should work now.
- Cygwin: Compile fix.
- Windows: Device type '-d aacraid' for AACRAID controllers.
- Windows: SAT autodetection based on IOCTL_STORAGE_QUERY_PROPERTY.
- Windows installer: Fix possible loss of user PATH environment variable.
v2.10.1
* #320 - latency option was completely ignored for both OSX and when Polling
* #302 - fix bug related to move_to/move_from breaking TCP functionality
Burp is a backup and restore program. It uses librsync in order to
save on the amount of space that is used by each backup. It also uses VSS
(Volume Shadow Copy Service) to make snapshots when backing up Windows
computers.
0.108_001 2015-02-03
- add full flavored struct accessors and implement all in XS, supports now
colnames, fetchrow_arrayref, fetchall_arrayref, fetchrow_hashref, fetchall_hashref,
fetchall_hash fetchall_array fetchall_table
- as_list is deprecated in favor of fetchall_hash
0.107 2015-01-20
- eliminate potential memory leaks in get_fs_stats, get_network_io_stats,
get_network_iface_stats, get_process_stats
- add support for device_canonical
- update bundled ppport.h to 3.28 one
0.016 2015-01-06
- update meta-information
- update author tests
- take advantage of Config::AutoConf 0.306
0.105_001 2014-09-07
- take advantage of Config::AutoConf 0.23
- switch to ExtUtils::MakeMaker, it seems more active maintained
- add a test for possible leak
- improve repository documentation (README.md)
0.104 2014-02-20
- fix link targets for stats description
An advanced log file viewer for the small-scale. Watch and analyze
your log files from a terminal.
Many logging tools, like Splunk, provide great features but are
optimized for large-scale deployments. They require installing
and configuring servers before they can be effectively used. There
is still a need for a robust log file analyzer for the terminal.
Just point lnav to a directory and it will take care of the rest.
File formats are automatically detected and compressed files are
unpacked on the fly.
Log files are a wealth of information, lnav can help highlight the
parts that are important and filter out the noise.
NEW features of cdrtools-3.01:
This is the first localization step for cdrtools. All programs now (hopefully)
call gettext() for all strings that need localization.
- The next step will include dgettext() calls for the libraries.
- The following step will include the extracted strings
- The last step will include German translations and install support
for the resulting binary message object files.
D-Bus 1.10.0 (2015-08-25)
==
The “0x20” release.
This is a new stable branch, recommended for use in OS distributions.
Fixes since 1.9.20:
• distribute test/tap-test.sh.in, even if the tarball was built without
tests enabled (fd.o #91684, Simon McVittie)
• work around a fd leak in libcap-ng < 0.7.7 (fd.o #91684, Simon McVittie)
Summary of major changes since 1.8.0:
• The basic setup for the well-known system and session buses is
now done in read-only files in ${datadir} (normally /usr/share).
See the NEWS entry for 1.9.18 for details.
• AppArmor integration has been merged, with features similar to the
pre-existing SELinux integration. It is mostly compatible with the
patches previously shipped by Ubuntu, with one significant change:
Ubuntu's GetConnectionAppArmorSecurityContext method has been superseded
by GetConnectionCredentials and was not included.
• The --enable-user-session configure option can be enabled
by OS integrators intending to use systemd to provide a session bus
per user (in effect, treating all concurrent graphical and non-graphical
login sessions as one large session).
• The new listenable address mode "unix:runtime=yes" listens on
$XDG_RUNTIME_DIR/bus, the same AF_UNIX socket used by the systemd
user session. libdbus and "dbus-launch --autolaunch" will connect to
this address by default. GLib ≥ 2.45.3 and sd-bus ≥ 209 have a
matching default.
• All executables are now dynamically linked to libdbus-1.
Previously, some executables, most notably dbus-daemon, were statically
linked to a specially-compiled variant of libdbus. This results in
various private functions in the _dbus namespace being exposed by the
shared library. These are not API, and must not be used outside
the dbus source tree.
• On platforms with ELF symbol versioning, all public symbols
are versioned LIBDBUS_1_3.
New bus APIs:
• org.freedesktop.DBus.GetConnectionCredentials returns
LinuxSecurityLabel where supported
• org.freedesktop.DBus.Monitoring interface (privileged)
· BecomeMonitor method supersedes match rules with eavesdrop=true,
which are now deprecated
• org.freedesktop.DBus.Stats interface (semi-privileged)
· now enabled by default
· new GetAllMatchRules method
New executables:
• dbus-test-tool
• dbus-update-activation-environment
New optional dependencies:
• The systemd: pseudo-transport requires libsystemd or libsd-daemon
• Complete documentation requires Ducktype and yelp-tools
• Full test coverage requires GLib 2.36 and PyGI
• AppArmor integration requires libapparmor and optionally libaudit
Dependencies removed:
• dbus-glib
D-Bus 1.9.20 (2015-08-06)
==
The “Remember Tomorrow” release.
This is a release-candidate for D-Bus 1.10.0. OS distribution vendors
should test it.
Fixes:
• Don't second-guess what the ABI of poll() is, allowing it to be used
on Integrity RTOS and other unusual platforms (fd.o #90314;
Rolland Dudemaine, Simon McVittie)
• Don't duplicate audit subsystem integration if AppArmor and SELinux are
both enabled (fd.o #89225, Simon McVittie)
• Log audit events for AppArmor/SELinux policy violations whenever
we have CAP_AUDIT_WRITE, even if not the system bus
(fd.o #83856, Laurent Bigonville)
D-Bus 1.9.18 (2015-07-21)
==
The “Pirate Elite” release.
Configuration changes:
• The basic setup for the well-known system and session buses is now done
in read-only files in ${datadir}, moving a step closer to systems
that can operate with an empty /etc directory. In increasing order
of precedence:
· ${datadir}/dbus-1/s*.conf now perform the basic setup such as setting
the default message policies.
· ${sysconfdir}/dbus-1/s*.conf are now optional. By default
dbus still installs a trivial version of each, for documentation
purposes; putting configuration directives in these files is deprecated.
· ${datadir}/dbus-1/s*.d/ are now available for third-party software
to install "drop-in" configuration snippets (any packages
using those directories should explicitly depend on at least this
version of dbus).
· ${sysconfdir}/dbus-1/s*.d/ are also still available for sysadmins
or third-party software to install "drop-in" configuration snippets
· ${sysconfdir}/dbus-1/s*-local.conf are still available for sysadmins'
overrides
${datadir} is normally /usr/share, ${sysconfdir} is normally /etc,
and "s*" refers to either system or session as appropriate.
(fd.o #89280, Dimitri John Ledkov)
Fixes:
• Fix a memory leak when GetConnectionCredentials() succeeds
(fd.o #91008, Jacek Bukarewicz)
• Ensure that dbus-monitor does not reply to messages intended for others,
resulting in its own disconnection (fd.o #90952, Simon McVittie)
D-Bus 1.9.16 (2015-05-14)
==
The “titanium barns” release.
Dependencies:
• Automake 1.13 is now required when compiling from git or modifying
the build system.
Security hardening:
• On Unix platforms, change the default configuration for the session bus
to only allow EXTERNAL authentication (secure kernel-mediated
credentials-passing), as was already done for the system bus.
This avoids falling back to DBUS_COOKIE_SHA1, which relies on strongly
unpredictable pseudo-random numbers.
If you are using D-Bus over the (unencrypted!) tcp: or nonce-tcp: transport,
in conjunction with DBUS_COOKIE_SHA1 and a shared home directory using
NFS or similar, you will need to reconfigure the session bus to accept
DBUS_COOKIE_SHA1 by commenting out the <auth> element. This configuration
is not recommended.
(fd.o #90414, Simon McVittie)
• When asked for random numbers for DBUS_COOKIE_SHA1, the nonce-tcp:
transport, UUIDs or any other reason, fail if we cannot obtain entropy
(from /dev/urandom or CryptGenRandom()) or an out-of-memory condition
occurs, instead of silently falling back to low-entropy pseudorandom
numbers from rand(). (fd.o #90414; Simon McVittie, Ralf Habacker)
Enhancements:
• Add dbus_message_iter_get_element_count()
(fd.o #30350; Christian Dywan, Simon McVittie)
• Introduce new internal DBusSocket and DBusPollable types so we can
stop treating the Windows SOCKET type as if it was int. DBusSocket
is specifically a socket, cross-platform. DBusPollable is whatever
_dbus_poll() can act on, i.e. a fd on Unix or a SOCKET on Windows.
(fd.o #89444; Ralf Habacker, Simon McVittie)
• All regression tests now output TAP <https://testanything.org/>
(fd.o #89846, Simon McVittie)
• Internal APIs consistently use signed values for timestamps
(fd.o #18494, Peter McCurdy)
• Improve diagnostics when UpdateActivationEnvironment calls are rejected
(fd.o #88812, Simon McVittie)
• Clean up a lot of compiler warnings
(fd.o #17289, fd.o #89284; Ralf Habacker, Simon McVittie)
Fixes:
• Add locking to DBusCounter's reference count and notify function
(fd.o #89297, Adrian Szyndela)
• Ensure that DBusTransport's reference count is protected by the
corresponding DBusConnection's lock (fd.o #90312, Adrian Szyndela)
• Correctly release DBusServer mutex before early-return if we run out
of memory while copying authentication mechanisms (fd.o #90021,
Ralf Habacker)
• Make dbus-test-tool and dbus-update-activation-environment portable
to Windows (fd.o #90089, Ralf Habacker)
• Correctly initialize all fields of DBusTypeReader (fd.o #90021;
Ralf Habacker, Simon McVittie)
• Fix some missing \n in verbose (debug log) messages (fd.o #90004,
Ralf Habacker)
• Clean up some memory and fd leaks in test code and tools
(fd.o #90021, Ralf Habacker)
• Fix a NULL dereference if the dbus-daemon cannot read a configuration
directory for a reason that is not ENOENT (fd.o #90021, Ralf Habacker)
• CMake generates a versioned shared library even if the revision is 0,
as it usually is on the development branch. (fd.o #89450, Ralf Habacker)
D-Bus 1.9.14 (2015-03-02)
==
The “don't stand in the poison cloud” release.
Dependencies:
• dbus-daemon and dbus-daemon-launch-helper now require libdbus. They
were previously linked to a static version of libdbus.
• The tests no longer require dbus-glib in order to exercise the libdbus
shared library; they are always linked to libdbus now.
Build-time configuration:
• The new --enable-user-session option, off by default, can be enabled
by OS integrators intending to use systemd to provide a session bus
per user (in effect, treating all concurrent graphical and non-graphical
login sessions as one large session)
Enhancements:
• All executables are now linked dynamically to libdbus.
(fd.o #83115; Bertrand SIMONNET, Simon McVittie, Ralf Habacker)
• On platforms that support them (GNU libc and possibly others),
libdbus now has versioned symbols for its public API.
All public symbols (visible in the header files) are currently
versioned as LIBDBUS_1_3; private symbols starting with _dbus or
dbus_internal have a version that changes with each release, and
must not be used by applications. (also fd.o #83115)
• New listenable address mode "unix:runtime=yes" which listens on
a real filesystem (non-abstract) socket $XDG_RUNTIME_DIR/bus
(fd.o #61303; Colin Walters, Alexander Larsson, Simon McVittie)
• Add optional systemd units for a per-user bus listening on
$XDG_RUNTIME_DIR/bus (fd.o #61301; Simon McVittie, Colin Walters)
• On Unix platforms, both libdbus and "dbus-launch --autolaunch"
default to connecting to $XDG_RUNTIME_DIR/bus if it is a socket
(also fd.o #61301)
• New dbus-update-activation-environment tool uploads environment
variables to "dbus-daemon --session" and optionally "systemd --user",
primarily as a way to keep the per-user bus compatible with
distributions' existing X11 login scripts (also fd.o #61301)
• <includedir/> elements in dbus-daemon configuration are now silently
ignored if the directory does not exist. (fd.o #89280, Dimitri John Ledkov)
• Add microsecond-resolution timestamps to the default output of
dbus-monitor and dbus-send (fd.o #88896; Ralf Habacker, Simon McVittie)
Fixes:
• Fix a race condition in the 'monitor' test introduced in 1.9.10
(fd.o #89222, Simon McVittie)
D-Bus 1.9.12 (2015-02-19)
==
The “monster lasagna” release.
Dependencies:
• Ducktype and yelp-tools are now required to build complete documentation
(they are optional for normal builds).
Enhancements:
• D-Bus Specification version 0.26
· GetConnectionCredentials can return LinuxSecurityLabel or WindowsSID
· document the BecomeMonitor method
• On Linux, add LinuxSecurityLabel to GetConnectionCredentials
(fd.o #89041; Tyler Hicks, Simon McVittie)
• On Linux, add support for AppArmor mediation of message sending and
receiving and name ownership (paralleling existing SELinux mediation
support), and eavesdropping (a new check, currently AppArmor-specific)
(fd.o #75113; John Johansen, Tyler Hicks, Simon McVittie)
• In dbus-send and dbus-monitor, pretty-print \0-terminated bytestrings
that have printable ASCII contents; we previously only did this for
unterminated bytestrings (fd.o #89109, Simon McVittie)
• Add a guide to designing good D-Bus APIs (fd.o #88994, Philip Withnall)
• On Windows, add WindowsSID to GetConnectionCredentials
(fd.o #54445, Ralf Habacker)
• Improve clarity of dbus-monitor --profile output and add more columns
(fd.o #89165, Ralf Habacker)
• Add a man page for dbus-test-tool, and build it under CMake as well
as Autotools (fd.o#89086, Simon McVittie)
• If dbus-daemon was compiled with --enable-verbose, add a D-Bus API
to control it at runtime, overriding the DBUS_VERBOSE environment variable
(fd.o #88896, Ralf Habacker)
Fixes:
• Reduce the number of file descriptors used in the fd-passing test,
avoiding failure under the default Linux fd limit, and automatically
skip it if the rlimit is too small (fd.o #88998, Simon McVittie)
D-Bus 1.9.10 (2015-02-09)
==
The “sad cyborgs” release.
Security fixes merged from 1.8.16:
• Do not allow non-uid-0 processes to send forged ActivationFailure
messages. On Linux systems with systemd activation, this would
allow a local denial of service: unprivileged processes could
flood the bus with these forged messages, winning the race with
the actual service activation and causing an error reply
to be sent back when service auto-activation was requested.
This does not prevent the real service from being started,
so the attack only works while the real service is not running.
(CVE-2015-0245, fd.o #88811; Simon McVittie)
Enhancements:
• The new Monitoring interface in the dbus-daemon lets dbus-monitor and
similar tools receive messages without altering the security properties
of the system bus, by calling the new BecomeMonitor method on a
private connection. This bypasses the normal <allow> and <deny> rules
entirely, so to preserve normal message-privacy assumptions, only root
is allowed to do this on the system bus. Restricted environments,
such as Linux with LSMs, should lock down access to the Monitoring
interface. (fd.o #46787, Simon McVittie)
• dbus-monitor uses BecomeMonitor to capture more traffic, if the
dbus-daemon supports it and access permissions allow it.
It still supports the previous approach ("eavesdropping" match rules)
for compatibility with older bus daemons. (fd.o #46787, Simon)
• dbus-monitor can now log the message stream as binary data for later
analysis, with either no extra framing beyond the normal D-Bus headers,
or libpcap-compatible framing treating each D-Bus message
as a captured packet. (fd.o #46787, Simon)
Other fixes:
• Fix some CMake build regressions (fd.o #88964, Ralf Habacker)
• On Unix, forcibly terminate regression tests after 60 seconds to
prevent them from blocking continuous integration frameworks
(fd.o #46787, Simon)
D-Bus 1.9.8 (2015-02-03)
==
The “all the types of precipitation” release.
Dependencies:
• full test coverage now requires GLib 2.36
• full test coverage now requires PyGI (PyGObject 3,
"import gi.repository.GObject") instead of the
obsolete PyGObject 2 ("import gobject")
Enhancements:
• add GLib-style "installed tests" (fd.o #88810, Simon McVittie)
• better regression test coverage, including systemd activation
(fd.o #57952, #88810; Simon McVittie)
Fixes:
• fatal errors correctly make the dbus-daemon exit even if <syslog/> is
turned off (fd.o #88808, Simon McVittie)
• TCP sockets on Windows no longer fail to listen approximately 1 time
in 256, caused by a logic error that should have always made it fail but
was mitigated by incorrect endianness for the port number
(fd.o #87999, Ralf Habacker)
• fix some Windows build failures (fd.o #88009, #88010; Ralf Habacker)
• on Windows, allow up to 8K connections to the dbus-daemon instead of the
previous 64, completing a previous fix which only worked under
Autotools (fd.o #71297, Ralf Habacker)
• on Windows, if the IP family is unspecified only use IPv4,
to mitigate IPv6 not working correctly (fd.o #87999, Ralf Habacker)
• fix some unlikely memory leaks on OOM (fd.o #88087, Simon McVittie)
• lcov code coverage analysis works again (fd.o #88808, Simon McVittie)
• fix an unused function error with --disable-embedded-tests (fd.o #87837,
Thiago Macieira)
D-Bus 1.9.6 (2015-01-05)
==
The “I do have a bread knife” release.
Security hardening:
• Do not allow calls to UpdateActivationEnvironment from uids other than
the uid of the dbus-daemon. If a system service installs unsafe
security policy rules that allow arbitrary method calls
(such as CVE-2014-8148) then this prevents memory consumption and
possible privilege escalation via UpdateActivationEnvironment.
We believe that in practice, privilege escalation here is avoided
by dbus-daemon-launch-helper sanitizing its environment; but
it seems better to be safe.
• Do not allow calls to UpdateActivationEnvironment or the Stats interface
on object paths other than /org/freedesktop/DBus. Some system services
install unsafe security policy rules that allow arbitrary method calls
to any destination, method and interface with a specified object path;
while less bad than allowing arbitrary method calls, these security
policies are still harmful, since dbus-daemon normally offers the
same API on all object paths and other system services might behave
similarly.
Other fixes:
• Add missing initialization so GetExtendedTcpTable doesn't crash on
Windows Vista SP0 (fd.o #77008, Илья А. Ткаченко)
D-Bus 1.9.4 (2014-11-24)
==
The “extra-sturdy caramel” release.
Fixes:
• Partially revert the CVE-2014-3639 patch by increasing the default
authentication timeout on the system bus from 5 seconds back to 30
seconds, since this has been reported to cause boot regressions for
some users, mostly with parallel boot (systemd) on slower hardware.
On fast systems where local users are considered particularly hostile,
administrators can return to the 5 second timeout (or any other value
in milliseconds) by saving this as /etc/dbus-1/system-local.conf:
<busconfig>
<limit name="auth_timeout">5000</limit>
</busconfig>
(fd.o #86431, Simon McVittie)
• Add a message in syslog/the Journal when the auth_timeout is exceeded
(fd.o #86431, Simon McVittie)
• Send back an AccessDenied error if the addressed recipient is not allowed
to receive a message (and in builds with assertions enabled, don't
assert under the same conditions). (fd.o #86194, Jacek Bukarewicz)
D-Bus 1.9.2 (2014-11-10)
==
The “structurally unsound flapjack” release.
Security fixes:
• Increase dbus-daemon's RLIMIT_NOFILE rlimit to 65536
so that CVE-2014-3636 part A cannot exhaust the system bus'
file descriptors, completing the incomplete fix in 1.8.8.
(CVE-2014-7824, fd.o #85105; Simon McVittie, Alban Crequy)
Enhancements:
• D-Bus Specification version 0.25
· new value 'const' for EmitsChangedSignal annotation
(fd.o #72958, Lennart Poettering)
· new ALLOW_INTERACTIVE_AUTHORIZATION flag, for PolicyKit and similar
(fd.o #83449; Lennart Poettering, Simon McVittie)
· annotate table of types with reserved/basic/container, and for
basic types, fixed/string-like
· clarify arbitrary limits by quoting them in mebibytes
• New API: add accessors for the ALLOW_INTERACTIVE_AUTHORIZATION flag
(fd.o #83449, Simon McVittie)
• Add dbus-test-tool, a D-Bus swiss army knife with multiple subcommands,
useful for debugging and performance testing:
· dbus-test-tool spam: send repeated messages
· dbus-test-tool echo: send an empty reply for all method calls
· dbus-test-tool black-hole: do not reply to method calls
(fd.o #34140; Alban Crequy, Simon McVittie, Will Thompson)
• Add support for process ID in credentials-passing on NetBSD
(fd.o #69702, Patrick Welche)
• Add an example script to find potentially undesired match rules
(fd.o #84598, Alban Crequy)
• Document the central assumption that makes our use of credentials-passing
secure (fd.o #83499, Simon McVittie)
• Replace the dbus-glib section of the tutorial with a GDBus recommendation,
and add some links to GDBus and QtDBus documentation (fd.o #25140,
Simon McVittie)
Fixes:
• Use a less confusing NoReply message when disconnected with a reply pending
(fd.o #76112, Simon McVittie)
• Make the .pc file relocatable by letting pkg-config do all variable
expansion itself (fd.o #75858, Руслан Ижбулатов)
• Fix a build failure on platforms with kqueue, which regressed in 1.9.0
(fd.o #85563, Patrick Welche)
• Consistently save errno after socket calls (fd.o #83625, Simon McVittie)
• In dbus-spawn, when the grandchild process exits due to a failed exec(),
do not lose the exec() errno (fd.o #24821, Simon McVittie)
• Do not fail the tests if a parent process has leaked non-close-on-exec
file descriptors to us (fd.o #73689, fd.o #83899; Simon McVittie)
• Do not fail the tests on Unix platforms with incomplete
credentials-passing support, but do fail if we can't pass credentials
on a platform where it is known to work: Linux, FreeBSD, OpenBSD, NetBSD
(fd.o #69702, Simon McVittie)
• Detect accept4, dirfd, inotify_init1, pipe2, and Unix fd passing
when building with cmake, and expand test coverage there
(fd.o #73689; Ralf Habacker, Simon McVittie)
D-Bus 1.9.0 (2014-10-01)
==
The “tiered cheeses” release.
Requirements:
• Support for the systemd: (LISTEN_FDS) pseudo-transport on Linux now
requires either the libsystemd or libsd-daemon shared library, dropping the
embedded convenience copy of sd-daemon (fd.o #71818, Simon)
Build-time configuration changes:
• The Stats interface is now enabled by default, and locked-down to
root-only on the system bus. Configure with --disable-stats
to disable it altogether on memory- or disk-constrained systems,
or see ${docdir}/examples/ to open it up to non-root users on the
system bus or restrict access on the session bus.
(fd.o #80759; Simon McVittie, Alban Crequy)
• The CMake build system now builds the same shared library name as Autotools
on at least Linux and Windows:
- on Linux (and perhaps other Unix platforms), it previously built
libdbus-1.so, but now builds libdbus-1.so.3.* with development
symlink libdbus-1.so and SONAME/symlink libdbus-1.so.3
- on Windows, it previously built either libdbus-1.dll (release) or
libdbus-1d.dll (debug), but now builds libdbus-1-3.dll, copied to
libdbus-1.dll for compatibility with older applications.
(fd.o #74117, Ralf Habacker)
Enhancements:
• D-Bus Specification version 0.24
· document how to quote match rules (fd.o #24307, Simon McVittie)
· explicitly say that most message types never expect a reply
regardles of whether they have NO_REPLY_EXPECTED
(fd.o #75749, Simon McVittie)
• on Unix platforms, disable Nagle's algorithm on TCP connections to improve
initial latency (fd.o #75544, Matt Hoosier)
• use backtrace() if it is in -lexecinfo instead of libc, as on NetBSD
(fd.o #69702, Patrick Welche)
• in dbus-monitor, print more information about file descriptors
(fd.o #80603, Alban Crequy)
• do not install system bus configuration if built for Windows
(fd.o #83583; Ralf Habacker, Simon McVittie)
• Add GetAllMatchRules to the Stats interface (fd.o #24307, Alban Crequy)
• Add a regression test for file descriptor passing (fd.o #83622,
Simon McVittie)
Fixes:
• fix an incorrect error message if a Unix socket path is too long
(fd.o #73887, Antoine Jacoutot)
• in an MSYS/Cygwin environment, pass Unix-style filenames to xmlto,
fixing documentation generation (fd.o #75860, Руслан Ижбулатов)
• in Unix with X11, avoid giving dbus-launch a misleading argv[0]
in ps(1) (fd.o #69716, Chengwei Yang)
• avoid calling poll() with timeout < -1, which is considered invalid
on FreeBSD and NetBSD (fd.o #78480, Jaap Boender)
• be portable to BSD-derived platforms where O_CLOEXEC is unavailable in libc
(like Mac OS X 10.6), or available in libc but unsupported by the kernel
(fd.o #77032; rmvsxop, OBATA Akio, Patrick Welche)
• Fix include path for test/internal/*.c with cmake (Ralf Habacker)
• Documentation improvements
(fd.o #80795, #84313; Thomas Haller, Sebastian Rasmussen)
• in dbus-monitor, do not leak file descriptors that we have monitored
(fd.o #80603, Alban Crequy)
• Set the close-on-exec flag for the inotify file descriptor, even
if built with CMake or older libc (fd.o #73689, Simon McVittie)
• Remove some LGPL code from the Windows dbus-daemon
(fd.o #57272, Ralf Habacker)
Let me know if you need one of the removed options.
Version 4.8.14
- Core
* Minimal version of GLib is 2.14.0
* Add new panel binding "!SelectExt" to select/unselect files with the same extension as the current file (#3228)
* Speed up of directory size calculation (#3247)
* Support of italic text (#3065)
- Editor
* New syntax highlighting support:
- puppet (#3266)
- Viewer
* Rewrite mcview's rendering and scrolling (#3250, #3256)
- no more partial lines at the top and failure to scroll when Up or Down is pressed;
- better handling of CJK characters;
- handle combining accents;
- improved nroff support;
- more conventional scrolling behavior at the end of the file.
* Use VIEW_SELECTED_COLOR in plain mode (#3405)
* In !QuickView panel, don't pass any chars to command line to avoid unexpected command execution (#3253)
- Misc
* Code cleanup (#3265, #3262)
* Bind poedit to Edit action for .po files (#3287)
* Better grammar mcedit user menu (#3246)
- Fixes
* Fail to build against musl libc (#3267)
* Error compiling with glib 2.20.3 (#3333)
* Overwrite of the PROMPT_COMMAND bash variable (#2027)
* contrib/*.?sh are not recreated after rerun of configure (#3181)
* File rename handles zero-length substitutions incorrectly (#2952)
* Lose files on "Skip" when "Cannot preallocate space for target file" (#3297)
* Info panel can't obtain file system statistics on Solaris (#3277)
* "Shell patterns" broken beyond repair (#2309)
* File selection by patterns uses bytes instead of unicode characters (#2743)
* Copy files dosn't work as expected, when copying to a directory with the special symbol in its name (#3235)
* Wrong order of old_colors table items (#3404)
* Input line: Alt+Backspace on one-letter word erases too much (#3390)
* "Directory scanning" window is too narrow (#3162)
* No Help for User Menu (#3409)
* mcedit: paste from clipboard does not work (#3339)
* mcviewer: hang when viewing broken man page (#2966)
* mcview hex: incorrect highlight when search string not found (#3263)
* mcview hex edit: UTF-8 chars are not updated (#3259)
* mcview hex edit: can't enter certain UTF-8 characters (#3260)
* mcview hex edit: CJK overflow (#3261)
* mcedit: status line doesn't show full path to file (#3285)
* Freeze when copying from one FTP location to another (#358)
Version 4.8.13
- Core
* New engine of user-friendly interruption of long-time operations (#2136)
- Editor
* Improvements of syntax highlighting:
* CMake (#3216)
* PHP (#3230)
* Translate language names in the spelling assistant dialogue (#3233)
- Viewer
* Add separate normal(default) colour pair for viewer (#3204)
* Dealing with utf-8 man pages in view/open (#1539)
* "Goto line" is 1-based now (#3245)
- Misc
* Code cleanup (#3189, #3223, #3242)
* Add new skins: gray-green-purple256 and gray-orange-blue256 (#3190)
- Fixes
* First Backspace/Delete is ignored after mouse click in an input widget (#3225)
* Recursive find file doesn't work on Samba share (#3097)
* Recursive find file doesn't work on Windows NFS share (#3202)
* Incorrect file counter in move operation (#3196, #3209)
* "Directory scanning" window is too narrow (#3162)
* Colon is not recognized inside escape seq in prompt (#3241)
* Quick view doesn't grab focus on mouse click (#3251)
* fish subshell: overridden prompt (#3232, #3237)
* mcviewer: broken switch between raw and parse modes (#3219)
* mcviewer: incorrect percentage in mcview hex mode (#3258)
* RAR VFS incorrectly recognizes UnRAR version (#3240)
* viewbold and viewselected are missing from some skins (#3244)
* Incorrect enconding name for manual page (#3239)
* "User menu -> View manual page" doesn't do coloring (#3243)
Version 4.8.12
- Core
* Speed up of file find (#2290)
* If cwd is a symlink it is kept at startup (#3093)
* Improve support of Zsh (#3121, #3124, #3125, #3177)
* Launch external editor/viewer without passing line number (#3117)
* Exit without confirmation by default (#3132)
* Simple user-friendly skin selector (#2165, #3178)
* Use Joliet and RockRidge in ISO9660 image view action (#3187)
- VFS
* Use .zip extension as preferred way to recognize ZIP archives (#2857)
- Editor
* Configurable selection reset on CK_Store (#3111)
- Misc
* Code cleanup (#3113, #3151)
* Adjust script permissions to installed ones (#2274)
* Fix name of FSF in add source files (#3167)
* Skin cleanups (#3180, #3184)
* Do not consider "String not found" message as error (#3179)
- Fixes
* Broken build with NCurses (#3114)
* Incorrect tilde expansion in copy/rename/move dialog (#3131)
* Advanced chown: Escape on user list accepts value (#3150)
* Toggling hidden files using mouse doesn't update the other panel (#3156)
* Question mark in delete confirmation is on its own line (#3123)
* Popup dialogs wander upwards upon resize (#3173)
* Keypad '*' doesn't work with numlock off (#3133)
* Some inconsistencies in "Learn keys" UI (#3134)
* Unconventional behavior of "Display bits" dialog (#3152)
* Shift-Fn keys don't work in 256-color mode of tmux (#2978)
* mcedit: format paragraph produces inconsistent wrapping (#3119)
* mcedit: file out-of-date check on saving is botched (#3142)
* mcedit: 1st line is shifted after paragraph format (#1666)
* mcedit: trailing newline check applied too early when exiting (#3140)
* Inconsistency of the arrow's direction in the panel header line across skins (#3157)
* Possible segfault while passing messages to widgets (#3116)
* Possible segfault when freeing a VFS (#3116)
* Segfault in cpio VFS while reading corrupted RPM (#3116)
* Segfault in sftpfs VFS when trying to view a file (#3176)
* Incorrect handling of filenames with unrar v5 (#3073)
* FISH VFS: remote panel confused by filenames with '%' (#2983)
* iso9660: xorriso shows only one depth (#3122)
* Nicedark skin looks bad on black-on-white terminals (#3154)
* Incorrect definition of "topmiddle" and "bottommiddle" characters (#3183)
Version 4.8.11
- Core
* Live update of panels size when editing layout (#3060)
* Support "Compute totals" option in move file operation (#2075)
- VFS
* rpm extfs
- show dependency version (#2812)
- support tar payload (#3064)
- improve support for EPOCH tag (#1588)
- add support for PREINPROG/POSTINPROG/PREUNPROG/POSTUNPROG, VERIFYSCRIPTPROG and TRIGGERSCRIPTS/TRIGGERSCRIPTPROG tags (#1588)
- Editor
* Support "bracketed paste mode" of xterm (#2661)
* Clarify Java syntax highlighting (#3057)
- Misc
* Print warnings about unknown '--with-' / '--enable-' configure options (#3029)
* Code cleanup and refactoring (#3051, #3066)
- Fixes
* FTBFS on GNU Hurd (#3053, #3071)
* Segfault while moving files (#3059, #3105)
* Broken handling of mc command line arguments (#3047)
* Copy/move doesn't work if num_history_items_recorded=0 (#3076)
* No subdir path completion in current dir, if stub is not starting with './' (#3018)
* Deprecated "find -perm +xxx" syntax is used (#3089)
* Home, End, Shift-Fn keys don't work in tmux (#2978)
* Improper [en|dis]abling of layout dialog split adjustment buttons (#3061)
* Bogus strings in 'Confirmation' config dialog (#2271)
* "Configure options" first entry not highlighted (#3084)
* "Setup saved to ~/.config/mc/ini" message is misleading (#3096)
* F3 doesn't work on .so files in FreeBSD 9.x (#3101)
* Typo in mc.lib: "less=%filename +%linenog" instead of "+%lineno" (part of #3044)
* Wrong order of filename and line number for external editor (part of #3044)
* mcedit: tabs are lost when text is pasted (#1797 as part of #2661)
* mcedit: question on large file treats Escape as Yes (#3107)
* Broken case-sensitive search in editor/viewer/diffviewer (#3069)
* Changes to files in nested .zip archives are lost (#3070)
* Incorrect handling of filenames with spaces with unrar v5 (#3073)
* iso9660 VFS: filenames truncating in ISO file listing (#3091)
* vfs_path_from_str_flags() doesn't support VPF_STRIP_HOME (#3098)
* Bright colors are used as background colors in 16-color skins (#3050)
* Various defects in documentation (#3052, #3092)
Version 4.8.10
- Core
* Do not link GModule if it is not required (save space on embedded systems) (#2995)
* Behavior of the 'Right' key in the 'Directory hotlist' was changed: now 'Right' key is used only to enter into the group (#3045)
- Misc
* Code cleanup (#3035)
- Fixes
* Build failure on Cygwin (#3041)
* Broken NCurses detection (#3043)
* Broken handling of mc command line arguments (#3047)
* Cannot enter into zip archive in tar one (#3034)
* Cannot open some jar files
* mcedit: file descriptor leak (#3040)
* mcedit: paragraph format doesn't respect multibyte characters (#2713)
* Crash after entering a wrong SFTP password (#3036)
Version 4.8.9
- VFS
* extfs: support unrar-5 (#3015)
* extfs: use xorriso (if exists) for writing into ISO images (#3027)
- Editor
* Support unlimited file size (#1743)
- Misc
* Lot of code cleanups (#2990, #2071, #2164, #2998, #3003, #3005, #3022)
* Display additional info while viewing (by F3) *.iso files (#2006)
* New skins:
- modarin256: set of 256-color skins from Oliver Lange (#2737)
- Fixes
* Fail to link if system lib does not contain strverscmp (#2992)
* Segfault when mc's temporary directory doesn't belong to the correct user (#3021)
* Race condition when creating temporary directory (#3025)
* Mouse doesn't work in screen and tmux (#3011)
* Incorrect file size in copy/move overwrite query dialog (#3000)
* Garbage in subshell prompt (#3001)
* Incorrect WLabel redraw after text change (#2991)
* Find File: "All charsets" options don't work (#3026)
* When an unknown key is pressed, it is interpreted as garbage (#2988)
* Segfault on creating new file in external editor (#3020)
* Rotating dash is not removed when mc finishes reading the directory (#2163)
* mcedit: word completion failed if word to be completed is begun from begin of file (#2245)
* mcview: broken switch between raw and parse modes (#2968)
* Hex viewer: continue search doesn't work (#2706)
* sftpfs: broken SSH aliases (#2923)
Version 4.8.8
- Core
* Make copy/move progress dialog window wider up to 2/3 of screen width (#2076)
* Ask file name before create new file in editor (#2585)
* Support newer extended mouse protocol SGR-1006 instead of URXVT-1015 (#2956)
* Allow skip directory scanning before file operation. Print directory count and size in addition to directory name (#2101)
* Add jump support to target line in some external editors and viewers (#2206)
- Editor
* Update syntax highlighting:
- Jal programming language (#2855)
- gplink configuration files (.lkr extension) (#2855)
- Makefile with .mak extension (#2896)
- ZSH configuration files (#2950)
- Fortran (#2962)
- Misc
* Code cleanup (#2944, #2954)
* Report real compiler in MC_CHECK_ONE_CFLAG instead of 'gcc'
* Hints files now translated via Transifex (#2980)
- Fixes
* Segfault in file operation due to unhandled regexp error (#2493)
* Tab completion vs. spaces and escaping (#55)\
* Special chars are not escaped in autocompletion of filenames (#2626)
* Buttons in the 'Directory hotlist' window are placed incorrectly (#2958)
* Mouse doesn't select text in subshell in native console (#2964)
* Mouse click below non-droppeddown menubar activates menu box (#2971)
* Insufficient quoting and wrong message in user menu (#2947)
* mcedit: floating point exception (division by zero) (#2953)
* mcedit: broken autocompletion (#2957)
* mcview: broken magic mode (#2976)
* Broken opening of .war archives (#2974)
Version 4.8.7
- Core
* Minimal GLib version is 2.12.0
* Implementation of suspend/resume in copy/move file operations (#2111)
* Start of widget subsystem reimplementation (#2919)
- VFS
* uc1541 extfs plug-in updated up to version 2.5 (#2935)
- Editor
* Reset selection after text paste (only in non-persistent selection mode) (#2660)
* Don't indent blank lines (#303).
* Add .psgi as Perl syntax highlighting (#2912)
* Place cursor after inserted chars (#319)
* Add option in ini file to save spelling language (spell_language=NONE for disable aspell support) (#2914)
- Misc
* Code cleanup (#2888, #1950)
* Minimal "check" utility version is 0.9.8
* Remove the empty contrib/dist/debian/ since it maintained separately in Debian (#2871)
* mc.ext updates:
- add support of SVG images (#2895)
- add support of .asm file extension (#2892)
- add support of .hh file extension (#2892)
- all file extension for source files now are case insensitive (#2892)
- add support of JNG and MNG images (#2893)
- add support of Gnumeric's spreadsheets (#2894)
- add support of .war archives (#2891)
- make a choice between arj and unarj archivers (#2890)
- make a choice between 7z and 7za archivers (#2890)
- add support of ape, aac and wvm4a media formats (#2767)
- add support of cbr and cbz comic books (#2739)
- add support of epub e-book format (#2739)
- add support of PAR archives (#2739)
- use libreoffice instead of ooffice, if found, to open ODT files (#2723)
- use dvicat if dvi2tty not found to view DVI files (#1686)
- use 'see' utility as default pdf viewer, if found (#1686)
- use 'see' utility to view images in console (#1686)
* Highlight OGV files as media (#2934)
* Added new translations:
- Persian (fa)
- Croatian (hr)
- Fixes
* Build failure on Cygwin (#2917)
* Fail to check ncurses library if --with-ncurses-inc and --with-ncurses-libs options are used (#2926)
* Crash on Solaris while trying to copy a file (#2906)
* CVE-2012-4463: Does not sanitize MC_EXT_SELECTED variable properly (#2913)
* Attributes of existing directories are never preserved when copying (#2924)
* Broken path completion on paths starting with ~/ (#2898)
* Terminal settings are not changed when window is resized (#2198)
* Enter into symlink to compressed patch shows empty patch (#2910)
* Test failure on Cygwin due to incorrect linkage flag (#2918)
* Non-portable test (#2883)
Version 4.8.6
- Fixes
* mcedit: two-columns extra offset of cursor after tab character (#2881)
* diffviewer: cannot open file if name contains '$' (#2873)
Version 4.8.5
- Core
* Implemented case-insensitive patterns in mc.ext bindings (#2250)
- Editor
* Code refactoring and cleanup (#1977)
- Diff viewer
* Bidirectional merge (F5 merge left-to-right, F15 - merge right-to-left) (#2863)
- Misc
* Syntax highlighting news and updates:
- update assembler.syntax: x86 AMD64 registers highlighting (#2542)
- new cmake.syntax: preliminary and incomplete syntax file for CMakeLists.txt files (#2084)
- new dlink.syntax: syntax highlighting for D-Link switches command set (#2649)
- update properties.syntax: more nice look-and-feel (#1869)
* mc.ext enhancement (#2103):
- use chm_http text-mode handler for CHM files
- play sounds only from videos in text mode
- use pdftotext -layout -nopgbrk switches
- try to use elinks before links for HTML
- soffice2html text-mode handler for SXW files
- wvHtml text-mode handler for doc files
- xlhtml text-mode handler for XLS files
- ppthtml text-mode handler for PPT/PPS files
- open=view+pager fallback (noX) for PostScript, PDF, OD[PST] and DVI
- standarized $DISPLAY checks
* File extension support:
- SQLite database files (#2103)
- compiled Java files (*.class) (#2103)
- m4a for MP4 containers with audio data in the Advanced Audio Coding (AAC) or its own Apple Lossless (ALE, ALAC) formats (#2869)
- .ogm extension was deprecated in favor of .ogv (#2664)
- Fixes
* Bad EXTHELPERSDIR substitution if --prefix is not set (#2849)
* Partially broken loading of user-defined keymap file (#2848)
* Enter on directory named '~' goes to the home one (#2874)
* Cannot Copy/Move files with filename encoding change (#2791)
* Cannot view compressed files named like log.1.gz (with digit in name) (#2852)
* Panel is not refreshed if panel history is called using mouse (#2854)
* Duplicate entities in panel with 'tree view' mode (#2835)
* Broken synchronization with filelist and tree panels (#2862)
* Standalone mcedit doesn't load saved file position (#2853)
* mcedit segfaults when aspell (en) dictionary is not installed (#2856)
* mcedit segfaults after "Back from declaration" call (#2859)
* mcedit: unable to save changes in "Safe save" mode(#2832)
* Segfault when viewing HTML files with "mc -v" (#2858)
* Broken 'Enter' action on a rpm file containing space character in filename (#2838)
* extfs: uc1541 broken handling (#2864)
* mc.ext: OGV format handled as audio (#2869)
Version 4.8.4
- Core
* Use xdg-open by default in mc.ext.in if present to open files, fallback on current scheme otherwise (#2118)
* Improve of mouse event handling in dialogs (#2817)
* Show extended info about compiled-in paths for internal/external macros in the "mc -F" output (2495)
- VFS
* Added SFTP support (#1535)
- Editor
* Multieditor: allow edit many files in one mcedit window (#2261, #2839)
* Aspell support for spell check (#2788)
- Viewer
* Handle CK_FileNext/CK_FilePrev actions inside mcviewer (#2814)
- Misc
* Tweak and cleanup of code in case of --disable-charset option usage (#2827)
* File extension support:
- .gem - rubygems (#2797)
- .cpio.xz - compressed cpio archives (#2798)
- .webm - WebM video (#2746)
- .lib - gputils artifacts (#2751)
- Fixes
* Build failure on FreeBSD 6 (#2808)
* src/filemanager/filegui.c does not compile on Solaris due to missing macros (#2825)
* Loss of data on copy to full partition (#2829)
* Crash at Chown command (#2784)
* Crash when creating relative symlink (#2787)
* Misinterpretation of dirs as command line arguments (#2783, #2805)
* Number of panelized files was limited to 127 (#2813)
* CK_History removes CK_HistoryNext entries (#2313)
* URL with port was stored wrong in history (#2833)
* Can't find 00 (zeroes) in patterns in hex search (#2795)
* Hotkey conflicts in 'Search' dialog (#2843)
* Error message when entering into compressed tar and cpio archives (#2785)
* Garbage directory listing in ftpfs (#2800)
* Incomplete sand256 skin (#2807)
* mcedit scripts are installed as data files (#1437)
* Fails to build from source with --enable-tests (#2786)
* Tests failure on PowerPC,S390,S390x (#2804)
* Fail to compile if --without-vfs configure option specified (#2834)
* do_panel_cd: FTBFS with --enable-tests on [kfreebsd-i386,kfreebsd-amd64,ia64,armhf] (#2803)
Version 4.8.3
- Misc
* Code cleanup (#2780)
- Fixes
* Broken support of XDG_* shell variables (#1851)
* Segmentation fault while background copying (#2663)
* MC ignores second directory argument (#2762)
* Interpretation of LANG variable needs to be case insensitive (#2386)
* Cannot copy zero-length files with "Preallocate space" option (#2755)
* Problem in the Copy operation with unchecked the "Preserve attributes" option (#2278)
* * Cursor position reset after update when panel is panelized, but doesn't (#2766)
* File selection reset after exit from the archive in the root (#2776)
* Hotlist: broken newly added entries if old-style path is present (#2753)
* Can't rebind Fx keys in the file manager (#2384)
* "justified" menu alignment (#2756)
* The last (or single) word of hyperlinks in the interactive help don't act on mouse clicks (#2763)
* 'cd' command is not working in shell link (#2758)
* mc hangs on switching screens (#2608)
* Case sensitive search with SEARCH_TYPE_PCRE is broken (#2764)
* mcedit can't run w/o file as parameter (#2754)
* mcedit can't record input char (#2757)
* mcedit: save file on top of existing directory changes dir's permissions (#2761)
* Unable to edit gzipped files (#2759)
* mcedit hangs up on replace with regexp contains '^' or '$' (#1868)
* Segfault after open incorrect archive (#2775)
* mcdiff crashes if one panel is not in the listing mode (#2769)
* The password for vfs sessions remains in input history (#2760)
* Showing directory sizes is broken in VFS'es (#2765)
* Stale symlinks in vfs (#2777)
* Active VFS directories list contain incorrect current path (#2779)
* Date not set properly in manpage (#2692)
* Empty texinfo rule in mc.ext (#2774)
* Test failure if 'HOME' contains trailing slashes (#2768)
Version 4.8.2
- Core
* Added new flag -X (--no-x11) to allow dont't use X11 to get the state of modifiers Alt, Ctrl, Shift (#86)
* Support of '~' as home dir in 'Start at:' field in 'Find File' dialog (#2694)
* Support of '~' as home dir in hotlists (#2747)
* Learn of 'Back Tab' is possible now in 'Learn keys' dialog (#2628)
* Optional '0x' prefix for hexadecimal search (#2705)
* Dynamically resize panels (#2465)
* New bindings (ScrollLeft, ScrollRight) for scroll long filenames in panels (#2731)
- VFS
* Internal VFS reorganization (#2695)
- Editor
* Added as.syntax (#2708)
- Viewer
* Added action bindings for backward search (#2105)
- Misc
* Added hotkeys for all radio/check-buttons in search/replace dialogs (#2704)
* New file bindings:
- .m4v, .ts - video (#2702)
- djv - DjVu? (#2645)
* Simplify mc.menu - remove LZMA|LZ and change p7 to 7z (#2703)
* Updated list of known browsers: gnome-moz-remote mozilla firefox konqueror opera (#2725)
* Added MC_HOME environment variable to set up home directory of MC (as part of #2738)
* Lot of code cleanup (#2740)
- Fixes
* Compile failure of 4.8.1 on xBSD because "Undefined symbols: _posix_fallocate" (#2689)
* MC deletes the wrong file because of forced panel reload before file operation (#2736)
* Cannot chdir to directory if directory name contains the dollar sign (#2451)
* Incorrect panel size after change panel split type (#2521)
* Wrong total bytes counter for subdirs in copy/move dialog (#2503)
* Display corruption in panels after window shrink (#2684)
* Command line is unaccessible from tree panel (#2714)
* Extra confirmation before delete an empty hotlist group (#1576)
* Can't open an edit zero-length file from VFS in mcedit (#2710)
* mcedit crashes when ~/.config is a file (#2738)
* mcedit: reset selection after END/HOME/PgDn/PgUp (#2726)
* 'make check' fails on arm and alpha (-z muldefs) (#2732)
Version 4.8.1
- Core
* Use posix_fallocate64() when copying files/moving to a new mount point (#2610)
* Faster startup (#2637)
* Support of extended mouse clicks beyond 223 (#2662)
- VFS
* Added exit point ("..") at the top of file list (after external panelization) (#275, #278)
- Editor
* Lex/Flex sources (extension .l) handled by yxx.syntax file. Yacc/Bison syntax completed with all symbols (#1647)
* Updated syntax files:
- lua
- Misc
* Updated skins:
- sand256 (#2640)
- xoria256 (#2641)
* Added ability to move MC config files to specified place instead of multiple places in $HOME (#2636)
* Added configure option --with-homedir (default value: XDG) (#2636)
* Respect traditional placement of user preferences on Mac OS X (#2658 as part of #2636)
* A few useful additions to filehighlight.ini (#2646)
- Fixes
* Doesn't compile when using --disable-nls (#2639)
* Can't compile on OpenIndiana (Solaris) (#2643)
* Moving content of bindings to mc.ext during 4.7 -> 4.8 upgrade breaks mc
* Free space on filesystems >2TB is not displayed properly (#2338)
* Not all errors are skipped after "Ignore all" choose (#71)
* Input field in password mode is fully masked with asterisks (#2653)
* In "Copy File" dialog the "preserve Attributes" checkbox is always unchecked for filesystems mounted with FUSE (#2254)
* Command line cursor misplaced after a resize in viewer/editor (#2678)
* Save of some learned keys is broken (#2676)
* Editor sometimes shows two dots instead of letter (#2372)
* Editor: word completion should ignore the current word (#2614)
* Viewer sometimes shows two dots instead of letter (#1730)
* Viewer shows two dialogs when searcj hot found (#2677)
* Cannot navigate over spftp servers (#2634)
* mc adds spaces at the beginning of all files/dirs on ftp servers (#2635)
* VFS: broken SMB (#2652)
* man page lies about mc.keymap (#2675)
* mc does not preserve file mtime when copying over ssh (#2625)
Version 4.8.0
- Misc
* Code cleanup (#2620)
* License version updated to GPL3+ (#1551)
* Added new translation:
- Interlingua
- Fixes
* Viewer: cursor position is not restored in hex mode (#2543)
* fish: broken panels drawing after entering password (#2611)
* fish: content of modified file is appended instead of overwritten in the remote host (#2632)
* extfs: broken navigation in archives if current path is encoded (#2621)
* extfs: strange error message when opening a 7z file if p7zip is not installed (#2598)
Version 4.8.0-pre2
- Core
* Added -g/--oldmouse option to support of NORMAL/BUTTON_EVENT mouse type (useful for screen/tmux) (#2601)
- VFS
* New extfs plugin: gitfs (#2467)
* patchfs enchancement: join several hunks of the same file into one VFS entry (#2573)
- Misc
* mc.ext: use "include" for $EDITOR entries (#1689)
* New file bindings:
- .3gp - video (#2583)
- Fixes
* Cannot compile 4.8.0-pre1 and 4.7.5.3 on Solaris (#2587)
* Recent autoconf displays warnings about missing AC_LANG_SOURCE (#2589)
* Duplication of variable declarations (#2576)
* Incorrect TTY layer initialization (#2601)
* Wrong Backspace key behavior in QuickSearch mode if BS key is mapped to CdParentSmart action (#2522)
* M-o works unexpectedly on symlink shortcuts (#2590)
* Panelize doesn't honour current sorting (#2175)
* Hintbar jumps to the top of the screen and overwrites main menu (#2593)
* File size column is bogus for widths above 9 (#2580)
* Hex search: incorrect length usage in hexadecimal search (#2579)
* Editor: Incorrect Pascal syntax highlighting (#2531)
* Editor: mouse clicks are ignored on the bottom line (#2591)
* Editor: extended keybingings are broken (#2586)
* Viewer: Fixed search finds bold/underlined strings twice and highlight search results (#265)
* Broken listing in ExtFS VFS module (#81)
* File name length is limited in tar archive (#2201)
* Crash when copying symlink over ssh (#2582)
* Broken panels recode (#2595)
* ftp failures - leading white space in file name (#2594)
* FISH hangs while copiyng a lot of small files (#2605)
Version 4.8.0-pre1
WARNING: Configuration files was moved from your $HOME/.mc directory into
XDG_CONFIG_* directories to respect FDO standard
(http://standards.freedesktop.org/basedir-spec/basedir-spec-0.7.html).
To get more information, see ticket #1851.
WARNING: VFS paths now handled as vfsprefix1://vfsdata/vfsprefix2://vfsdata
(see #2361). Also, 'bindings' user file was renamed to 'mc.ext', so you need
search in this file all
Open=file.ext#vfsprefix
and replace them to
Open=file.ext/vfsprefix://
After this you should rename your 'bindings' file to 'mc.ext'.
Old-style paths are handled just in 'Directory hotlist' dialog, but you couldn't
mix URL-like and old style path elements in one path string. Support of old-style
paths will be removed in next major release (probably in 4.9, who knows...)
WARNING: keybinding names was renamed to provide some unification (see #2511).
The correspondence of old and new keybinging names are described in doc/keybind-migration.txt
file and in doc/keybindMigration web page.
Be aware.
- Core
* Added 256 colours support (#2169, #2173, #2475)
* Changed default text in filtered view (alt-!) to input command line (if not empty)
or stay old behaviour (current file under cursor) (#2266)
* Added simple swap mode that means the swap of panel locations, in addition to current swap
of panel content (#2368)
* Cofiguration files now moved to directory specified in XDG_CONFIG_HOME environment variable (#1851)
* Panel options are read now from [Panels] section only. [Midnight-Commander] section is not read (#2305)
* "Show mini info" checkbox was moved from the "Layout" dialog window to the "Panel options" one (#2305)
* Select files by shift-left/right in file panel (#2534)
* Added support of skip all errors on multi-file/dir operation (#71)
* 'Find Files' improvements:
- support relative ignored directories (#2275);
- handle of ignored directories in dialog window (#2275);
- "Search for content" checkbox is enabled by default (#2462)
* Added hardlinks detection for filehighlight (#2478)
* Unification of keybind names (#2511):
- most of keybinding names are changes to unify that names. Table of old and new names
is available in doc/keybind-migration.txt;
- improve of key rebinding: previously, to rebind some keys, used must redefine the entire section
where that bindings are placed in user keymap file. New merge algorithm doesn't require that
and allows rebind only wanted keys;
- added --nokeymap command line option to disable external keymaps
* Sources in 'lib' directory now independent to sources in 'src' one (#2501)
* Added configure parameter --enable-mclib for build libmc.so shared library (#2501)
* Added new engine for universal event system (as part of #2501)
* Optimized loading and saving of configurations and histories (#2541, #2545)
* Reimplemented i18n support in 'Chmod' dialog window (#2557)
- VFS
* VFS structure changes (as part of #2501):
- moved from lib/vfs/mc-vfs to lib/vfs;
- split VFS-modules by directories and moved to src/vfs;
- lib/vfs/vfs-impl.h was merged into lib/vfs/vfs.h
* VFS now used URL-like paths (#2361)
- Editor
* New engine of the editor macro (#323)
* Multiply repeat of the recorded actions (#323)
* Call extermal scripts from the editor (#323, #2512)
* Added REDO action (#25)
* Group UNDO by action (#27)
* Selection is not reset after execute user menu (#2463)
* Vertical selection is not reset after copy/move (#2504)
* More intuitive word left/right action (now the cursor stop beside EOL/BOL) (#2483)
* Duble-click marks the current word. Added action MarkWord to mark word, MarkLine
to mark current line (#2499)
* Regexp search&replace: support escape sequences in replacement string (#1882)
- Misc
* Minor enhancement in mc.ext:
* added -C key to nm utility in View action for static libraries (#2485)
* New file bindings:
- .torrent: view using ctorrent (#2562);
- .mts: handle as videofile (#2566)
* Added new entries in cedit.menu: "Sort selection", "Upper case", "Lower case"
* New skins:
- Xoria256 (#2469)
- mc-4.6 (#2524)
* Updated skins:
* Nice dark (#1791)
* Added support for check unit test framework (http://check.sourceforge.net) (as part of #2501)
* Added -F/--datadir-info option to show extended information about used data dirs (#2495)
* Added --configure-options to easy update & reconfigure existing mc (#2495)
* Language-specific man pages and hint and help files are not installed
if mc is built with --disable-nls option (#2514)
* Added new translation:
- Esperanto
* Code cleanup (#2481, #2515, #2518, #2560, #2570)
- Fixes
* Build failure on DragonFly BSD (#2516)
* Broken Del & Backspace in dialogs (in locale CP866) (#1634)
* Screen and input corruption under xterm in non-UTF locales (#1668)
* Alt-Backspace shortcut doesn't work (#2455)
* Broken command autocompletion (#2458)
* Swap panels doesn't respect sort options (#2368)
* File list format of panel is initialized incorrectly after switch back from quick view
or info mode to file list one (#2390)
* Main menu is not drawn correctly after change of it visibility and activity (#2466)
* MC switches to left panel after call of command history using mouse (#2459)
* Find file: don't check content regexp if search for content is not used (#2464)
* Find file: broken lynx-like navigation in panelization of search result (#2491)
* Dialog trims leading spaces in input field (#2544)
* Panelize content is lost when doing F5/F6/F8 on a file on the other panel (#2312)
* Color of panel header cannot be set in the command line (#2170)
* ctrl-g key closes file panels (#2520)
* Incorrect files mark by mouse (#2556)
* Editor: incorrect restore selection after UNDO (#2456)
* Editor: segfault after getting the previous char in utf8 (#2484)
* Editor: incorrect detection of the word boundary (added '{', '}' as end of word) (#2500)
* Bold and selected colors of viewer cannot be set in the command line (#2489)
* Viewer: fixed incorrect starting offset for 'search again' (#2294)
* Viewer: fixed problems while displaying UTF-8 manual pages (#1629)
* Diff viewer: quick left/right movements don't work in non-default key maps (#2509)
* AI_ADDRCONFIG is not optional for RFC 3493 non-compliant systems (#2401)
* FTP directories containing @ result severe security risks (eg. deletion of homedir) (#2220)
* Builtin ftp client can't download files with apostrophe in a file name (#2251)
* Unable to show FTP listing if password contains # (#2360)
* FTP: fixed access to file names starting with space (#81)
* Bashisms in extfs (#2569)
* Browsing *.deb files is broken with latest Perl (#2552)
* isoinfo adds ";1" to the end of file name when Joliet without Rock Ridge is used (#2471)
* patchfs incorrectly works with filenames containing spaces (#2572)
* cd to ~ processed incorrectly in the command line if more than one space is separating
the "cd" and "~" (#2120)
* Major changes in release 4.4.2, 2009-05-16
** Bug Fixes
#26537: find -prune now makes sure it has valid stat() information.
** Translations
Updated the Slovenian translation.
* Major changes in release 4.4.1, 2009-04-21
** Bug Fixes
On some systems without support for a boolean type (for example some
versions of the AIX C compiler), find's regular expression
implementation fails to support case-insensitive regular expression
matching, causing -iregex to behave like -regex. This is now fixed.
#25764: remove duplicate entry for 'proc' in updatedb's $PRUNEFS.
#25154: Allow compilation with C compilers that don't allow
declarations to follow statements.
#25144: Misleading error message when argument to find -user is an
unknown user or is missing.
#24283: -printf %TY causes NULL pointer dereference on Solaris.
#24169: find would segfault if the -newerXY test was not followed by
any argument.
#23996: integer overflow on some platforms when parsing "-used 3".
#23663: crash in some locales for -printf %AX (this problem seems to
have affected only the CVS code for 4.5.x, and not any public
releases, but it was a problem with the original fix for bug #22662)
#22662: find -printf %AX appends nanoseconds in the right place now.
** Functional Enhancements to find
If the POSIXLY_CORRECT environment variable is set, the system's
definition of "yes" and "no" responses are used to interpret the
response to questions from -ok and -okdir. The default is still to
use information from the findutils message translations.
** Documentation Enhancements
Both the Texinfo manual and the find manual page now include a more
precise description of how your locale configuration affects the
interpretation of regular expressions and how your response to prompts
from the -ok action are interpreted.
Added a worked example describing how to find the shallowest instances
of a given directory name (or names) in a directory hierarchy.
The file README-CVS has been renamed to README-hacking and improved.
** Translations
Updated translations: Catalan, French, German, Indonesian, Irish,
Dutch, Polish, Slovenian, Swedish, Vietnamese, Chinese (simplified),
Lithuanian.
* Major changes in release 4.4.0, 2008-03-15
The 4.4.0 release of findutils is a stable release, succeeding the
final release in the previous development series, 4.3.13. However,
since many users will have previously been using the previous stable
release series, this section describes the changes between the 4.2.33
release (which was the final 4.2.x release) and 4.3.0.
Some items in the lists of changes are prefixed by bug numbers (though
some of them are simply enhancements, not bugs).
Apart from the changes in version number and development versus stable
status, the only differences between 4.3.13 and 4.4.0 are bug fixes
#15472 and #20873.
It's possible that some of the bug fixes mentioned as fixed are in
fact fixes for bugs both introduced and fixed in 4.3.x (and thus not
present in 4.2.x at all). While I have tried not to list those, some
may have slipped through.
** Functional enhancements to locate
*** slocate compatibility
The slocate database format is supported, both for reading by locate
and writing by updatedb.
Preliminary changes intended to eventually allow setuid operation of
locate have also been made. For the moment, please don't install GNU
locate as a set-user-ID program (except for testing purposes; if you
do so, please make sure that untrusted users cannot execute the
set-user-ID locate program).
Use of an slocate database which was built with a nonzero security
mode (at the moment, GNU updatedb will not do this) forces locate's
"-e" option to be turned on, and that has an effect on the "-S" option
which is probably surprising for most users.
*** Other changes
Locate can now read old-format locate databases generated on machines
with a different byte order. It does this by guessing the byte order,
so the result is not completely reliable. If you need to share
databases between machines of different architectures, you should use
the LOCATE02 format (which has other advantages, as explained in the
documentation).
A new option, --max-database-age, has been added to locate.
Translation of locate --limit problems is improved.
The /proc filesystem is excluded from the locate database (by
default; change PRUNEPATHS to modify this behaviour).
** Functional enhancements to find
*** fts
By default, find now uses the fts() function to search the file
system. The use of fts greatly increases find's ability to search
extremely deep directory hierarchies.
You can tell that the version of find you are using uses FTS, because
the output of "find --version" will include the word "FTS".
Currently two binaries for 'find' are built. The configure option
--without-fts can be used to select whether 'find' uses fts:
With fts Without fts
default configuration find oldfind
configure --with-fts find oldfind
configure --without-fts ftsfind find
New tests, -readable, -writable, -executable. These check that a file
can be read, written or executed respectively.
*** Changes to printf
The -printf action (and similar related actions) now support %S,
which is a measurement of the sparseness of a file.
*** Changes to -perm
The test "-perm /000" now matches all files instead of no files. For
over a year find has been issuing warning messages indicating that
this change will happen. We now issue a warning indicating that the
change has already happened (in 4.3.x only, there is no plan to make
this change in the 4.2.x series).
*** Time stamp resolution
The tests -newer, -anewer, -cnewer, -mtime, -atime, -ctime, -amin,
-cmin, -mmin and -used now support sub-second time stamps, including
the ability to specify times with non-integer arguments.
The -printf format specifiers also support sub-second time stamps:
atime ctime mtime
%a %c %t
%AS %CS %TS
%AT %CT %TT
%A+ %C+ %T+
%AX %CX %TX
*** Changes to -prune
The -prune action now always evaluates as true (this is also a
bug fix).
*** New tests
The new test -newerXY supports comparison between status times for
files. One of the status times for a file being considered (denoted
X) is checked against a reference time (denoted Y) for the file whose
name id the argument. X and Y can be:
a Access time
B Birth time (st_birthtime, currently unsupported)
c Change time
m Modification time
t Valid only for the reference time; instead of comparison
against a file status time, the argument is a time string.
Not yet supported.
For example, -newermm is equivalent to -newer, and -neweram is true if
the file being considered was accessed more recently than the
reference file was modified. The -newerXY test supports subsecond
timestamps where these are available. The X=B variant is not yet
implemented.
#11668: FreeBSD extensions for time specification are now implemented.
*** Other changes to find
#20688: The warning printed by -name or -iname when the pattern to
match contains a slash can now be silenced by -nowarn. This warning
was originally introduced unconditionally in 4.2.21.
For find, debug output can now be enabled at runtime with the -D
option. This causes the printing of various sorts of information
about find's internal state and progress.
The find option -nowarn cannot itself produce a warning (this used to
happen with commands like "find . -name quux -nowarn -print").
You now get a more helpful error message when you use command lines
which have missing expressions, such as
find . ( )
find . !
find . -a
find . \( -not \)
find . \( -true -a
*** Standards conformance
POSIX will standardise -path, so the documentation no longer claims
that -wholename is the 'canonical' test, and -ipath no longer
generates a warning.
When the POSIXLY_CORRECT environment variable is set, "find -perm
+a+w" is rejected as invalid. Some other similar mode strings
starting with '+' which are not valid in POSIX are also rejected.
Find now follows POSIX rules for determining where directories end and
expressions start. This means that "find \(1 \!2 \, \)" now searches
in the four named directories, rather than trying to parse an
expression. (Savannah bug #15235).
#21039: Setting the POSIXLY_CORRECT environment variable now turns off
warnings by default, because POSIX requires that only diagnostic
messages (and -ok prompts) are printed on STDERR, and diagnostic
messages must also result in a nonzero exit status.
#20803: POSIX requires that -prune always returns true. Previously it
returned false when -depth was in effect and true otherwise.
** Functional ehnahcements to xargs
While there are a number of bug fixes in xargs in this release (as
compared to the previous stable release), there are no functional
enhancements as such.
** Performance Enhancements
*** Cost-based optimiser
Find now has a rudimentary cost-based optimiser. It has an idea of
the basic cost of each test (i.e. that -name is very cheap while -size
is more expensive). It re-orders tests bearing in mind the cost of
each test and its likely success. Predicates with side effects (for
example -delete or -exec) are not reordered. The optimiser is not
yet enabled by default, but the new option -O controls the query
optimisation level. To see this in action, try
find -D opt -O3 . -type f -o -type c -o -size 555 -name Z
and compare the optimised query with:
find -D opt -O3 . -size 555 -o -type c -o -type f -name Z
and
find -D opt . -size 555 -o -type c -o -type f -name Z
Over time, as optimisations are proven to be robust and correct, they
will be moved to lower optimisation levels. Some optimisations have
always been performed by find (for example -name is always done early
if possible).
** Security Fixes
#20014: Findutils-4.3.7 includes a patch for a potential security
problem in locate. When locate read an old-format database, it read
file names into a fixed-length buffer allocated on the heap without
checking for overflow. Although overflowing a heap buffer is often
somewhat safer than overflowing a buffer on the stack, this bug still
has potential security implications.
This bug also affected the following previous findutils releases:
- All releases prior to 4.2.31
- Findutils 4.3.0 to 4.3.6.
This bug has been assigned CVE number CVE-2007-2452.
** Bug Fixes
#22057: Actually rename the old locate database to the new one
atomically, instead of just claiming the rename is atomic in a
comment.
#22056: -Xtime tests are off by one second (e.g. rm -f x; touch x;
find x -mtime 0 should print x).
#21960: xargs should collect the exit status of child processes even
if the total count of unreaped children has not yet reached the
maximum allowed.
#21568: Switch to checking the gnulib code out with native git, not
CVS. This affects mainly those who check findutils code out of CVS.
#20970: Trailing slash on directory arguments breaks -name. "find
foo/ -name foo" now correctly matches foo and printf foo/. See POSIX
interp
http://www.opengroup.org/austin/interps/uploads/40/14959/AI-186.txt#20865: Using both -delete and -prune without explicitly using -depth
is now an error. Traditionally, -delete has always turned -depth on
anyway, so this is not a functional change. However, using -depth
(implicitly or explicitly) makes -prune a no-op. This change is
intended to avoid nasty surprises for people who test with "-print"
and then change it to "-delete" when they are happy.
#20834: Avoid segmentation violation for -execdir when $PATH is unset.
Assume that the PATH is safe in this situation.
#20802: If -delete fails, find's exit status will now be non-zero.
However, find still skips trying to delete ".".
#20547: The version information printed by find, xargs, locate,
updatedb, frcode and code now complies with the GNU Project's coding
standards.
#20310: configure uses hosts's support status for "sort -z" when
generating the updatedb script for use on the target. This is
inappropriate when cross-compiling, so avoid doing that.
#20273: When xargs is successful without consuming all of stdin (for
example, with the -E option), and stdin is seekable, xargs now
correctly restores the file position, even on platforms where exit()
does not follow the POSIX rules of doing likewise. Likewise for find
(for example, with the -ok action).
#20157: Avoid segfault in locate when run as root. This is caused by
a buffer overrun, but at this time no exploit mechanism is known.
#20139: find -[acm]time -N (wrongly) includes files from N days ago,
as well as (correctly) from less than N days ago.
#20005: Tests -mtime -n and -mtime +n incorrectly treated like -mtime
n.
#19948: Fixed an assertion failure on IRIX 6.5 (O_NOFOLLOW is defined
to 0 there).
#19923: Fixed an array overrun in groups[] array of 'locate' when run
by or as root. This bug appears not to be exploitable. If locate is
not installed setuid, the bug is not exploitable. For setuid
installations, it is conceivable that there could be an information
leak if the user uses the -d option or the -e option, though the
maintainer has been unable to provoke this on an x86 system.
#19871: Typos in find.1
#19871: Spurious .R directives in man page produced error messages from
GNU troff. This is now fixed (they are corrected to .B).
#19806: The -samefile predicate might get fooled by inode reuse. We
now hold open a file descriptor on the reference file to prevent
this.
#19768: Better detection of corrupted old-style locate databases
(e.g. if the database is too short to include a complete bigram
table).
#19766: The frcode and code programs now detect write errors more
reliably.
#19658: When cross-compiling, "make clean" no longer deletes the
generated file doc/regexprops.texi, because there is no way to
regenerate it.
#19634: Test suite now passes (again) if "." is on your $PATH.
#19619: Findutils builds once again on Cygwin.
#19605: Issue an error message (and later return nonzero exit status)
if a symbolic link loop was encountered during directory traversal.
#19596: Correct the comparison in the find man page and Texinfo manual
between %b and %s (the divisor is 512 not 1024).
#19484: bigram.c and code.c fail if the first pathname recorded begins
with a space
#19483: Inconsistent option highlighting in updatedb man page
#19416: The result of I/O operations in print-related actions is now
checked, and failures are reported. Any failure will cause find's
exit status to be nonzero. The predicate itself will continue to
return true.
#19391: When xargs knows that the system's actual exec limit is larger
than the compiled-in ARG_MAX, use the system's limit without
generating an assertion failure.
#19371: Fix compilation failure on systems which #define open to
open64 (and similarly with the close system call). This fixes
Savannah bug #19371, affecting AIX 5.3.
#18714: In the POSIX locale, vertical tabs and form feeds are not
field separators.
#18713: Quoted but empty arguments which occur last on an xargs input
line are no longer ignored, but instead produce an empty argument.
#18466: we now avoid this bug by limiting "-execdir ...+" to just one
argument for the time being. There is a performance penalty for
doing this. We hope to make a better fix in a later release.
#18414: Tests for "find -readable" are skipped for the superuser, as
on some systems (e.g. Cygwin with an Administrative user) users can
read mode-000 files.
#18384: excess bracket in xargs --help
#18320: Zero bytes in input should give warning
#18222: find -printf '%H %P' once again prints the right result if
more than one start point was given on the command line.
#18203: A duplicate report of bug #17478.
#17782: find -execdir now correctly puts the prefix "./" before the
expansion of "{}" rather than at the start of the argument it appears
in. Please note that if you use the -exec or -execdir actions with a
shell, then you may be vulnerable to shell code injection attacks, so
don't do that. It's not a security defect in find - you should not
be passing untrusted data (such as file names chosen by other people)
to the shell.
#17478: Error messages from find can garble the console.
#17477: find -printf '%' (that is, where the format has a trailing %)
now generates an error message.
#17437: Corrected the handling of X in symbolic permissions (such as
-u+w,a+X).
#17396: find -mtime -atime -ctime does not support fractional part
(see "Functional changes" below)
#17372: The fts-based find executable (the default configuration uses
fts) is now much faster when -maxdepth is used on filesystems with
high fanouts.
#16738: "find .... -exec ... {} +" now works if you have a large
environment and many files must be passed to the -exec action. The
same problem affected the -execdir action, though since the number of
files in a given directory will normally be smaller, the problem was
worse for -exec.
#16579: Updatedb now works if it is running as a user whose login
shell is not actually a shell.
#16378: Assertion failure if stat() returns 00000 as the mode of a
file. This apparently can happen occasionally with broken NFS
servers.
#15800: If find finds more subdirectories within a parent directory
than it previously expected to based on the link count of the parent,
the resulting error message now gives the correct directory name
(previously an error message was issued but it specified the wrong
directory).
#15531: The -prune action now behaves correctly when applied to a
file.
#15472: Error messages that print ino_t values are no longer truncated
on platforms with 64-bit ino_t.
#15384: Find misbehaves when parent directory is not readable.
#14748: find -perm /zzz gives wrong result when zzz evaluates to an
all-zero mask
#14535: correctly support case-folding in locate (that is, "locate
-i") for multi-byte character environments such as UTF-8. Previously,
if your search string contained a character which was outside the
single-byte-encoding range for UTF-8 for example, then the
case-folding behaviour failed to work and only exact matches would be
returned.
** Documentation Fixes
#20873: Indicate that * matches / and leading dot in filenames for
"find -path".
#18554: Documented the construct -exec sh -c 'foo "$@" bar' {} +
#15360: The global effect of options (other than -daystart and
-follow) is now explained more clearly in the manual page.
The locatedb.5 man page now documents the (default) LOCATE02 format
more clearly, and also documents the slocate database format.
The maximum and default values applying to the -s option of xargs are
now documented more clearly in the manual page.
** Compilation Fixes
If you configure the source code and then run the tests with "make
check", the test suite fails rather than defaulting to testing the
system binaries.
#19416: _FORTIFY_SOURCE warn_unused_result warnings
#19948: Assertion failure O_NOFOLLOW != 0 on IRIX 6.5
#19965: Compilation failure on OSF/1 4.0; non-declaration of uintmax_t
#19965: Fixed a compilation failure on OSF/1 4.0 (no definition of the
type uintmax_t).
#19966: Findutils should now build on systems which have the modf()
and fabs() functions in the maths library, -lm. This includes some
versions of HP-UX and Solaris.
#19966: find should link against -lm for modf() and fabs()
#19967: Build successfully with C compilers that don't support the GCC
construct __attribute__((__noreturn__)).
#19967: Use of __attribute((__noreturn__)) makes compilation fail with
some non-GCC compilers
#19970: Cannot cast from pointer to bool using gnulib's <stdbool.h>
#19970: Compile correctly on C89 systems where the "_Bool" type is not
provided, taking into account the limitations of the gnulib
replacement for stdbool.h.
#19979: Compilation errors on BeOS
#19980: Don't use the functions putw() or getw() since these are not
in current POSIX. Use the gnulib version of wcwidth() where the
system does not provide it.
#19981: Don't call setgroups if the function isn't available.
#19983: Now compiles on DEC C V5.9-005 on Digital UNIX V4.0 (or at
least, should).
#20128: Fix compilation error of find/tree.c on AIX with GCC.
#20263: Compilation fix for DEC Alpha OSF/1 cc, which forbids the
ordering comparison of function pointers.
#20594: Allow fine-tuning of the default argument size used by xargs
and find at ./configure time.
* Major changes in the 4.3.x release series
Release notes for the 4.3.x releases follow, though the changes are
mostly listed above (except bugfixes for bugs introduced in 4.3.x).
The previous stable release was 4.2.33, though 4.3.0 was actually
derived from 4.2.27.
* Major changes in release 4.3.13, 2008-02-14
** Bug Fixes
#22057: Actually rename the old locate database to the new one
atomically, instead of just claiming the rename is atomic in a
comment.
#22056: -Xtime tests are off by one second (e.g. rm -f x; touch x;
find x -mtime 0 should print x).
#21960: xargs should collect the exit status of child processes even if
the total count of unreaped children has not yet reached the maximum
allowed.
** Documentation Fixes
Documented various useful techniques with invoking "sh -c" from
xargs in the Texinfo documentation.
** Translations
Updated the German, Irish, Dutch, Polish and Vietnamese translations.
* Major changes in release 4.3.12, 2007-12-19
** Bug Fixes
#15384: Find misbehaves when parent directory is not readable.
** Documentation Fixes
More examples in the xargs manual page, including a portable analogue
for BSD's "xargs -o".
** Translations
Updated translations: Polish, Dutch, Portuguese, Swedish, Vietnamese.
* Major changes in release 4.3.11, 2007-12-02
** Functional changes
When the POSIXLY_CORRECT environment variable is set, "find -perm
+a+w" is rejected as invalid. Some other similar mode strings
starting with '+' which are not valid in POSIX are also rejected.
The -prune action now always evaluates as true (this is also a
bugfix).
** Bug Fixes
#21568: Switch to checking the gnulib code out with native git, not
CVS. This affects mainly those who check findutils code out of CVS.
This is not the first time this bug has been fixed (the previous fix
used "cvs update -D", which git-cvspserver silently does not
support).
#21039: Setting the POSIXLY_CORRECT environment variable now turns off
warnings by default, because POSIX requires that only diagnostic
messages (and -ok prompts) are printed on STDERR, and diagnostic
messages must also result in a nonzero exit status.
#20970: Trailing slash on directory arguments breaks -name. "find
foo/ -name foo" now correctly matches foo and printf foo/. See POSIX
interp http://www.opengroup.org/austin/interps/uploads/40/14959/AI-186.txt#20865: Using both -delete and -prune without explicitly using -depth
is now an error. Traditionally, -delete has always turned -depth on
anyway, so this is not a functional change. However, using -depth
(implicitly or explicitly) makes -prune a no-op. This change is
intended to avoid nasty surprises for people who test with
"-print" and then change it to "-delete" when they are happy.
#20803: POSIX requires that -prune always returns true. Previously it
returned false when -depth was in effect and true otherwise.
#20802: If -delete fails, find's exit status will now be non-zero.
However, find still skips trying to delete ".".
** Documentation Fixes
#21635: Some of the documentation files had missing copying
conditions. The missing files now have copying headers, and these
are compatible with each other (GNU FDL 1.2).
#21634: No copy of FDL 1.2 included with the source code
#21633: Missing copyright/license header in some documentation.
#21628: find -perm /000 matches all files rather than none, since
findutils-4.3.3. The Texinfo documentation is now consistent with the
manual page on this point.
#21270: Formatting fixes to the xargs.1 manual page, including making
options bold instead of italic and making OPTIONS a section header
rather than a subsection.
* Major changes in release 4.3.10, 2007-11-13
** Bug Fixes
#21568: findutils gnulib code does not match the date in
import-gnulib.config. We now check out the gnulib code via
git-cvs-pserver.
* Major changes in release 4.3.9, 2007-11-11
** Licensing
Findutils version 4.3.9 is released under version 3 of the GNU General
Public License.
** Bug Fixes
#20834: Avoid segmentation violation for -execdir when $PATH is
unset. Assume that the PATH is safe in this situation.
#20310: configure uses hosts's support status for "sort -z" when
generating the updatedb script for use on the target. This is
inappropriate when cross-compiling, so avoid doing that.
#20263: Compilation fix for DEC Alpha OSF/1 cc, which forbids the
ordering comparison of function pointers.
#20139: find -[acm]time -N (wrongly) includes files from N days ago,
as well as (correctly) from less than N days ago.
#20273: When xargs is successful without consuming all of stdin (for
example, with the -E option), and stdin is seekable, xargs now
correctly restores the file position, even on platforms where exit()
does not follow the POSIX rules of doing likewise. Likewise for find
(for example, with the -ok action).
#20547: The version information printed by find, xargs, locate,
updatedb, frcode and code now complies with the GNU Project's coding
standards.
#20662: Avoid memory leak in find -name and other places affected by
gnulib dirname module. The leak had been present since 4.3.1.
#20751: Avoid memory corruption in find -ls that has been present
since 4.3.1.
#20871: Assertion failure introduced in 4.3.3, when oldfind is invoked
in a directory where the parent directory lacks search permission.
** Enhancements
#20594: Allow fine-tuning of the default argument size used by xargs
and find at ./configure time.
#20688: The warning printed by -name or -iname when the pattern to
match contains a slash can now be silenced by -nowarn. This warning
was originally introduced unconditionally in 4.2.21.
Translation of locate --limit problems is improved.
POSIX will standardise -path, so the documentation no longer claims
that -wholename is the 'canonical' test, and -ipath no longer
generates a warning.
** Documentation Fixes
Point out more explicitly that the subsecond timestamp support
introduced by findutils-4.3.3 introduces a change in the format of
several fields.
Also explain that when reporting a bug, you should check the most
recent findutils release first.
Introduced doc/find-maint.texi, a maintenance manual for findutils.
Added an extra worked example for find (copying a subset of files).
The locate command's manual page now has a HISTORY section.
#20951: Very bad/unclear/confusing documentation of security checks in
find -execdir
#20865: Better documentation on the fact that -delete implies -depth
and that -delete interacts badly with -prune.
#20552: Fixed typos, formatting and section ordering issues in the
find manual page.
#20529: removed spurious 'o' in description of "xargs -a" in
doc/find.texi.
#20232: The --max-database-age option of locate was added in release
4.3.3, but this file (NEWS) did not previously mention this fact.
** Translations
Updated Dutch translation.
* Major changes in release 4.3.8, 2007-06-12
** Bug Fixes
#20157: Avoid segfault in locate when run as root. This is caused by
a buffer overrun, but at this time no exploit mechanism is known.
* Major changes in release 4.3.7, 2007-06-09
** Functional changes
Locate can now read old-format locate databases generated on machines
with a different byte order. It does this by guessing the byte order,
so the result is not completely reliable. If you need to share
databases between machines of different architectures, you should use
the LOCATE02 format (which has other advantages, as explained in the
documentation).
** Security Fixes
#20014: Findutils-4.3.7 includes a patch for a potential security
problem in locate. When locate read an old-format database, it read
file names into a fixed-length buffer allocated on the heap without
checking for overflow. Although overflowing a heap buffer is often
somewhat safer than overflowing a buffer on the stack, this bug still
has potential security implications.
This bug also affected the following previous findutils releases:
- All releases prior to 4.2.31
- Findutils 4.3.0 to 4.3.6.
This bug has been assigned CVE number CVE-2007-2452.
** Bug Fixes
#20128: Fix compilation error of find/tree.c on AIX with GCC.
#20005: Tests -mtime -n and -mtime +n incorrectly treated like -mtime n.
#19983: include_next causes compilation failure in findutils 4.3.6 on
non-GCC compilers
#19981: Don't call setgroups if the function isn't available. This
fixes Savannah bug# 19981.
#19980: Don't use the functions putw() or getw() since these are not
in current POSIX. Use the gnulib version of wcwidth() where the
system does not provide it.
#19979: Compilation errors on BeOS
#19970: Cannot cast from pointer to bool using gnulib's <stdbool.h>
#19967: Use of __attribute((__noreturn__)) makes compilation fail with
some non-GCC compilers
#19966: find should link against -lm for modf() and fabs()
#19965: Compilation failure on OSF/1 4.0; non-declaration of uintmax_t
#19948: Assertion failure O_NOFOLLOW != 0 on IRIX 6.5
#19871: Typos in find.1
#19596: Fixed this bug again, this time in the Texinfo manual (the
discussion should compare %b with %s/512, not %s/1024).
#19416: _FORTIFY_SOURCE warn_unused_result warnings
* Major changes in release 4.3.6, 2007-05-21
** Bug Fixes
#19948: Fixed an assertion failure on IRIX 6.5 (O_NOFOLLOW is defined
to 0 there).
#19923: Fixed an array overrun in groups[] array of 'locate' when run by
or as root. This bug appears not to be exploitable. If locate is not
installed setuid, the bug is not exploitable. For setuid
installations, it is concievable that there could be an information
leak if the user uses the -d option or the -e option, though the
maintainer has been unable to provoke this on an x86 system.
#19871: Spurious .R directives in manpage produced error messages from
GNU troff. This is now fixed (they are corrected to .B).
#19416: The result of I/O operations in print-related actions is now
checked, and failures are reported. Any failure will cause find's
exit status to be nonzero. The predicate itself will continue to
return true.
** Compilation Fixes
A variety of changes were made to allow compilation to succeed on
non-GNU systems.
#19983: Now compiles on DEC C V5.9-005 on Digital UNIX V4.0 (or at
least, should).
#19970: Compile correctly on C89 systems where the "_Bool" type is not
provided, taking into account the limitations of the gnulib
replacement for stdbool.h.
#19967: Build successfully with C compilers that don't support the GCC
construct __attribute__((__noreturn__)).
#19966: Findutils should now build on systems which have the modf()
and fabs() functions in the maths library, -lm. This includes some
versions of HP-UX and Solaris.
#19965: Fixed a compilation failure on OSF/1 4.0 (no definition of the
type uintmax_t).
* Major changes in release 4.3.5, 2007-05-05
** Functional changes
Updatedb can now support he generation of file name databases which
are compatible with slocate. For some time, GNU locate has been able
to read these.
The /proc filesystem is excluded from the locate database (by
default; change PRUNEPATHS to modify this behaviour).
** Bug Fixes
#19806: The -samefile predicate might get fooled by inode reuse. We
now hold open a file descriptor on the reference file to prevent this.
#19768: Better detection of corrupted old-style locate databases
(e.g. if the database is too short to include a complete bigram
table).
#19766: The frcode and code programs now detect write errors more
reliably.
#19371: Fix compilation failure on systems which #define open to
open64 (and similarly with the close system call). This fixes
Savannah bug #19371, affecting AIX 5.3.
#19658: When cross-compiling, "make clean" no longer deletes the
generated file doc/regexprops.texi, because there is no way to
regenerate it.
#19391: When xargs knows that the system's actual exec limit is larger
than the compiled-in ARG_MAX, use the system's limit without
generating an assertion failure.
#18203: A duplicate report of bug #17478.
#17478: Error messages from find can garble the console.
#16378: Assertion failure if stat() returns 00000 as the mode
of a file. This apparently can happen occasionally with broken NFS
servers.
#11668: FreeBSD extensions for time specification are now
implemented. In fact, these were included in findutils-4.3.3. The
change was listed as a functional change (whcih it is) and this bug
report was not mentioned.
** Documentation Fixes
The locatedb.5 manpage now documents the (default) LOCATE02 format
more clearly, and also documents the slocate database format.
The maximum and default values applying to the -s option of xargs are
now documented more clearly in the manual page.
* Major changes in release 4.3.4, 2007-04-21
** Bug Fixes
#19634: Test suite now passes (again) if "." is on your $PATH.
#19619: Findutils builds once again on Cygwin.
#19617: Nonexistent start points are (once again) diagnosed in
ftsfind. This bug affected only findutils-4.3.3.
#19616: Fix leaf optimisation and loop detection (which were
unreliable in findutils 4.3.3). This bug affected only
findutils-4.3.3.
#19615: find --version no longer claims to be using FTS_CWDFD when it
isn't. This bug affected only findutils-4.3.3.
#19613: "find -L . -type f" no longer causes an assertion failure when
it encounters a symbolic link loop. This bug affected only
findutils-4.3.3.
#19605: Issue an error message (and later return nonzero exit status)
if a symbolic link loop was encountered during directory traversal.
#19484: bigram.c and code.c fail if the first pathname recorded begins
with a space
#19483: Inconsistent option highlighting in updatedb manpage
#18414: Tests for "find -readable" are skipped for the superuser, as
on some systems (e.g. Cygwin with an Administrative user) users can
read mode-000 files.
** Translations
Findutils 4.3.4 includes a translation for the Ukranian language.
* Major changes in release 4.3.3, 2007-04-15
Fiundutils-4.3.3 was released on 2007-04-15.
** Bug Fixes
#19596: Correct the comparison in the find manpage between %b and %s
(the divisor is 512 not 1024).
#18714: In the POSIX locale, vertical tabs and form feeds are not
field separators.
#18713: Quoted but empty arguments which occur last on an xargs input
line are no longer ignored, but instead produce an empty argument.
#18554: Documented the construct -exec sh -c 'foo "$@" bar' {} +
#18466: we now avoid this bug by limiting "-execdir ...+"
to just one argument for the time being. There is a performance
penalty for doing this. We hope to make a better fix in a later
release.
#18384: excess bracket in xargs --help
#18320: Zero bytes in input should give warning
#17437: Corrected the handling of X in symbolic permissions (such
as-u+w,a+X). This change actually occurred in findutils-4.3.2, but
the NEWS file for that release didn't mention it.
#17396: find -mtime -atime -ctime does not support fractional part
(see "Functional changes" below)
#14748: find -perm /zzz gives wrong result when zzz evaluates to an
all-zero mask
#14535: correctly support case-folding in locate (that is, "locate
-i") for multibyte character environments such as UTF-8. Previously,
if your search string contained a character which was outside the
single-byte-encoding range for UTF-8 for example, then the
case-folding behaviour failed to work and only exact matches would be
returned.
** Functional changes
The -printf action (and similar related actions) now support %S,
which is a measurement of the sparseness of a file.
The test "-perm /000" now matches all files instead of no files. For
over a year find has been issuing warning messages indicating that
this change will happen. We now issue a warning indicating that the
change has already happened (in 4.3.x only, there is no plan to make
this change in the 4.2.x series).
The tests -newer, -anewer, -cnewer, -mtime, -atime, -ctime, -amin,
-cmin, -mmin and -used now support sub-second timestamps, including
the ability to specify times with non-integer arguments.
The -printf format specifiers also support sub-second timestamps:
atime ctime mtime
%a %c %t
%AS %CS %TS
%AT %CT %TT
%A+ %C+ %T+
%AX %CX %TX
The new test -newerXY supports comparison between status times for
files. One of the status times for a file being considered (denoted
X) is checked against a reference time (denoted Y) for the file whose
name id the argument. X and Y can be:
a Access time
B Birth time (st_birthtime, currently unsupported)
c Change time
m Modification time
t Valid only for the reference time; instead of comparison
against a file status time, the argument is a time string.
Not yet supported.
For example, -newermm is equivalent to -newer, and -neweram is true if
the file being considered was accessed more recently than the
reference file was modified. The -newerXY test supports subsecond
timestamps where these are available. The X=B variant is not yet
implemented.
If you configure the source code and then run the tests with "make
check", the test suite fails rather than defaulting to testing the
system binaries.
A new option, --max-database-age, has been added to locate.
* Major changes in release 4.3.2, 2006-11-25
** Bug Fixes
#18222: find -printf '%H %P' once again prints the right result if
more than one start point was given on the command line.
#17782: find -execdir now correctly puts the prefix "./" before the
expansion of "{}" rather than at the start of the argument it appears
in. Please note that if you use the -exec or -execdir actions with a
shell, then you may be vulnerable to shell code injection attacks, so
don't do that. It's not a security defect in find - you should not be
passing untrusted data (such as file names chosen by other people) to
the shell.
#17490: find -regex generated a segfault in findutils-4.3.1, but this
is fixed in findutils-4.3.2.
#17477: find -printf '%' (that is, where the format has a trailing %)
now generates an error message.
#17372: The fts-based find executable (the default configuration uses
fts) is now much faster when -maxdepth is used on filesystems with
high fanouts.
#15531: The -prune action now behaves correctly when applied to a file.
** Functional changes
The slocate database format is now supported. Preliminary changes
intended to eventually allow setuid operation of locate have also been
made. For the moment, please don't install GNU locate as a
set-user-ID program (except for testing purposes; if you do so, please
make sure that untrusted users cannot execute the set-user-ID locate
program).
Use of an slocate database which was built with a nonzero security
mode (at the moment, GNU updatedb will not do this) forces locate's
"-e" option to be turned on, which has an effect on the "-S" option
which is probably surprising for most users.
** Documentation Fixes
The global effect of options (other than -daystart and -follow) is now
explained more clearly in the manual page. Savannah bug #15360.
* Major changes in release 4.3.1, 2006-08-06
** Bug Fixes
Find now follows POSIX rules for determining where directories end and
expressions start. This means that "find \(1 \!2 \, \)" now searches
in the four named directories, rather than trying to parse an
expression. (Savannah bug #15235).
You now get a more helpful error message when you use command lines
which have missing expressions, such as
find . ( )
find . !
find . -a
find . \( -not \)
find . \( -true -a
Savannah bug #15800: If find finds more subdirectories within a parent
directory than it previously expected to based on the link count of
the parent, the resulting error message now gives the correct
directory name (previously an error message was issued but it
specified the wrong directory).
Savannah bug #16738: "find .... -exec ... {} +" now works if you have
a large environment and many files must be passed to the -exec
action. The same problem affected the -execdir action, though since
the number of files in a given directory will normally be smaller, the
problem was worse for -exec.
Savannah bug #16579: Updatedb now works if it is running as a user
whose login shell is not actually a shell.
There have also been a number of documentation improvements (includng
Savannah bug #16269).
** Functional changes
For find, debug output can now be enabled at runtime with the -D
option. This causes the printing of various sorts of information
about find's internal state and progress.
The find option -nowarn cannot itself produce a warning (this used to
happen with commands like "find . -name quux -nowarn -print").
** Performance Enhancements
Find now has a rudimentary cost-based optimiser. It has an idea of
the basic cost of each test (i.e. that -name is very cheap while -size
is more expensive). It re-orders tests bearing in mind the cost of
each test and its likely success. Predicates with side effects (for
example -delete or -exec) are not reordered. The optimiser is not
yet enabled by default, but the new option -O controls the query
optimisation level. To see this in action, try
find -D opt -O3 . -type f -o -type c -o -size 555 -name Z
and compare the optimised query with:
find -D opt -O3 . -size 555 -o -type c -o -type f -name Z
and
find -D opt . -size 555 -o -type c -o -type f -name Z
Over time, as optimisations are proven to be robust and correct, they
will be moved to lower optimisation levels. Some optimisations have
always been performed by find (for example -name is always done early
if possible).
** Translations
Findutils 4.3.1 includes updated translations for the following
languages:
Vietnamese, Belarusian, Catalan, Danish, German, Greek, Esperanto,
Spanish, Estonian, Finnish, French, Irish, Galician, Croatian, Hungarian,
Indonesian, Italian, Japanese, Korean, Luganda, Malay, Dutch, Polish,
Portuguese, Brazilian Portuguese, Romanian, Russian, Kinyarwanda,
Slovak, Slovenian, Serbian, Swedish, Turkish, Chinese (simplified),
Chinese (traditional), Bulgarian
* Major changes in release 4.3.0, 2005-12-12
The 4.3.x release series are currently 'development' releases. Please
test it, but think carefully before installing it in a production
system. New features in findutils-4.3.x are under development; they
may change or go away.
All changes up to and including findutils-4.2.27 are included in this
release. In addition the following changes are new in this release:
** Functional Changes
By default, find now uses the fts() function to search the file
system. The use of fts greatly increases find's ability to search
extremely deep directory hierarchites.
You can tell that the version of find you are using uses FTS, because
the output of "find --version" will include the word "FTS".
Currently two binaries for 'find' are built. The configure option
--without-fts can be used to select whether 'find' uses fts:
With fts Without fts
default configuration find oldfind
configure --with-fts find oldfind
configure --without-fts ftsfind find
New tests, -readable, -writable, -executable. These check that a file
can be read, written or executed respectively.
* Major changes in release 4.2.27, 2005-12-06
** Warnings of Future Changes
The test -perm /000 currently matches no files, but for greater
consistency with -perm -000, this will be changed to match all files;
this change will probably be made in early 2006. Meanwhile, a warning
message is given if you do this.
** Bug Fixes
If xargs is invoked with many short arguments on PPC systems running
the Linux kernel, we no longer get an "argument list too long" error
from the operating system.
Fixed a bug in the test suite which caused it to spuriously fail on
systems where ARG_MAX is different to the value used by the Linux
kernel on 32-bit x86-architecture systems.
On systems running the Linux kernel, "find -printf %F" no longer
produces the wrong answer for files on filesystems that have been
remounted elsewhere using "mount --bind". (Savannah bug #14921).
** Documentation Changes
Following some extensive and detailed review comments from Aaron
Hawley, the material in the manual pages and the Texinfo manual are
now synchronised.
The %M format specifier of "find -printf" is now documented, although
it has existed since release 4.2.5.
The 'find' manual page now correctly documents the fact that -regex
defaults to using Emacs-style regular expressions (though this can be
changed).
* Major changes in release 4.2.26, 2005-11-19
** Public Service Announcements
I'd like to point out a second time that the interpretation of '-perm
+mode' has changed to be more POSIX-compliant. If you want the old
behaviour of the GNU extension you should use '-perm /mode'. See the
NEWS entry for findutils version 4.2.21 for details.
** Functional Changes
The xargs command now supports a new option (--delimiter) which allows
input items to be separated by characters other than null and
whitespace. This resolves Savannah support request sr #102914.
Sometimes find needs to read the /etc/mtab file (or perform the
equivalent operation on systems not using /etc/mtab). If this
information is needed but not available, find now exits with an error
message non-zero status. If the information is not needed, find will
not spuriously fail.
A new xargs option --delimiter allows the input delimiter to be
changed (previously \0 was the only choice unless you use the -L
option, which changes other semantics too).
** Bug Fixes
If the environment size is too large to allow xargs to operate
normally, 'xargs --help' still works (now).
If the input to xargs is a large number of very short options (for
example, one character each), earlier versions of xargs would fail
with 'Argument list too long'. However, since this is precisely the
problem that xargs was invented to solve, this is a bug. Hence on
those systems we now correctly use a shorter command line. This
problem particularly affected 64-bit Linux systems because of the
larger size of pointers, although 32-bit Linux systems were also
affected (albeit for longer command lines). In theory the same
problem could affect 'find -exec {} +', but that's much less likely
(even so, the bug is fixed there too).
Bugfix for an unusual failure mode (Savannah bug #14842) where an
attempt to allocate more space for directory contents succeeds but is
incorrectly diagnosed as a failure. The likelihood of you
experiencing this depends on your architecture, operating system and
resource limits. This failure has been observed in a directory
containing 35396 entries.
** Documentation Changes
The EXAMPLES section of the find manual page now correctly describes
the symbolic and octal modes for the -perm test.
The documentation and "--help" usage information for the -L, -l, -I
and -i options have been clarified (but the behaviour has not changed).
The documentation now explains more clearly what happens when you use
"-L -type l".
* Major changes in release 4.2.25, 2005-09-03
** Bug Fixes
find -perm /440 (which should succeed if a file is readable by its
owner or group) now works. Previously there was a bug which caused
this to be treated as "find -perm 440".
Some files in the xargs test suite have been renamed to avoid problems
on operating systems whoch cannot distinguish filenames on the basis
of upper/lower case distinctions.
The software now builds on Cygwin, including the generated file
regexprops.texi.
Findutils should now build once again on systems supporting AFS, but
this support has not recently been fully tested. Findutils should
also (once again) build on Cygwin.
** Other Changes
The test suite for find is now much more extensive.
* Major changes in release 4.2.24, 2005-07-29
** Documentation Changes
The manual now includes a "Worked Examples" section which talks about
the various ways in which findutils can be used to perform common
tasks, and why some of these alternatives are better than others.
The -I option of xargs (which is required by the POSIX standard) is
now documented.
We now document the fact that find ensures that commands run by -ok
and -okdir don't steal find's input. Find does this by redirecting
the command's standard input from stdin.
Many documentation readability enhancements and proofreading fixes
were contributed by Aaron Hawley.
** Functional Changes
*** Functional changes in locate
The "--regex" option of locate now assumes the regular expression to
be in the same syntax as is used in GNU Emacs, though this can be
changed with the new option --regextype. This is a change from the
existing behaviour (which was to use POSIX Basic Regular Expressions).
Since this feature is releatively new anyway, I though it was more
useful to have compatibility between regular expression handling in
find and locate than to maintain the short-lived previous behaviour of
locate.
The locate program now also supports a "--regextype" long option which
controls which regular expression syntax is understood by locate.
This is a long option and has no single-letter 'short option'
equivalent.
*** Functional changes in find
The regular expression syntax understood by "find" can be changed with
the -regextype option; this option is positional, meaning that you can
have several tests, each using a distinct syntax (this is not
recommended practice however).
The default regular expression syntax is substantially the same as
that recognised by GNU Emacs, except for the fact that "." will match
a newline.
The leaf optimisation can be disabled with the configure option
"--disable-leaf-optimisation", which is equivalent to specifying
"-noleaf" on all find command lines. This is useful for systems
having filesystems which do not provide traditional Unix behaviour for
the link count on directories (for example Cygwin and the Solaris 9
HSFS implementation).
** Bug Fixes
*** Bug Fixes for find
The -iregex test now works once again on systems that lack
re_search() (that is, systems on which findutils needs to use the
gnulib version of this function).
find -regex now once again uses GNU Emacs-compatible regular
expressions.
If invoked with stderr closed, the -fprint and -fprintf actions now no
longer cause error messages to be sent into the output file.
If the link count of a directory is less that two, the leaf
optimisation is now disabled for that directory. This should allow
searching of non-Unix filesystems to be more reliable on systems that
don't take the trouble to make their filesystems look like traditional
Unix filesystems. Some filesystems don't even take the trouble to
have a link count of less than two and for these, -noleaf is still
required unless --disable-leaf-optimisation was used at configure time.
The "%Y" directive for the -printf action now no longer changes find's
idea of the mode of the file, so this means among other things that
"-printf %Y %y" now works properly. This is Savannah bug #13973.
* Major changes in release 4.2.23, 2005-06-19
** Documentation Changes
The -L and -I options of xargs are currently incompatible (but should
not be).
Improved the documentation for -execdir and -okdir.
** Functional Changes to updatedb
File names ending in "/" which are specified as an argument to
--prunepaths (or in $PRUNEPATHS) don't work, so we now issue an error
message if the user tries to do that. The obvious exception of course
is "/" which does work and is not rejected.
* Major changes in release 4.2.22, 2005-06-12
** Security Fixes
If a directory entry searched with "find -L" is a symbolic link to
".", we no longer loop indefinitely. This problem affected find
versions 4.2.19, 4.2.20 and 4.2.21. This problem allows users to make
"find" loop indefinitely. This is in effect a denial of service and
could be used to prevent updates to the locate database or to defeat
file security checks based on find. However, it should be noted that
you should not use "find -L" in security-sensitive scenarios.
** Other Bug Fixes
None in this release.
** Functional Changes to locate
A locate database can now be supplied on stdin, using '-' as a element
of the database-path. If more than one database-path element is '-',
later instances are ignored.
A new option to locate, '--all' ('-A') causes matches to be limited to
entries which match all given patterns, not entries which match
one or more patterns.
** Documentation Changes
Some typos in the manual pages have been fixed. Various parts of the
manual now point out that it is good practice to quote the argument of
"-name". The manpage now has a "NON-BUGS" section which explains some
symptoms that look like bugs but aren't. The explanations of the "%k"
and "%b" directives to "find -printf" have been imrpoved.
* Major changes in release 4.2.21, 2005-06-07
** Functional Changes to find
The GNU extension "find ... -perm +MODE" has been withdrawn because it
is incompatible with POSIX in obscure cases like "find ... -perm ++r".
Use the new syntax "find ... -perm /MODE" instead. Old usages will
still continue to work, so long as they don't conflict with POSIX.
If the output is going to a terminal, the -print, -fprint, -printf and
-fprintf actions now quote "unusual" characters to prevent unwanted
effects on the terminal. See "Unusual Characters in File Names" for
further details. There is no change to the behaviour when the output
is not going to a terminal. The locate program does the same thing,
unless the -0 option is in effect (in which case the filenames are
printed as-is).
** Functional Changes to locate
The locate command will now read each locate database at most once.
This means that if you are using multiple databases and are searching
for more than one name, the results will now be printed in a different
order (and if you specified a small limit with --limit, you may get a
different set of results).
A new option '--print' for locate causes it to print the matching
results even if the '--count' or '--statistics' option is in effect.
** Bug Fixes
find /blah/blah/blah -depth -empty now works once again.
The -regex and -iregex tests of find now correctly accept POSIX Basic
Regular Expressions. (Savannah bug #12999)
The updatedb program now works on systems where "su" does not support
the "-s" option, for example Solaris.
* Major changes in release 4.2.20, 2005-03-17
** Internationalization and Localization
Updated Vietnamese and Dutch translations.
** Bug Fixes
Minor bugfix affecting only those who compile from the CVS repository,
as opposed to those who compile from the source releases.
* Major changes in release 4.2.19, 2005-03-07
** Bug Fixes
find should now no longer hang on systems which lack the O_NOFOLLOW
flag to open(2) and which are clients of an unresponsive NFS server
(Savannah bug #12044).
We now avoid inappropriately failing for "find -L foo" or "find -H
foo" if foo is a symbolic link (Savannah bug #12181). Previously we
used to fail with the error message "Too many levels of symbolic
links".
"find . -false -exec foo {} +" no longer runs an extra instance of foo
when find exits (Savannah bug #12230).
If the chdir() safety check fails but we can no longer get back to
where we started, exit with an explanatory (fatal) error message.
This does not happen on GNU/Linux and FreeBSD because the safety check
is not needed (the security problem the safety check protects against
is prevented in a cleaner way on those systems).
"make distclean" no longer deletes regex.c (which "make all" needs).
** Functionality Changes
"find -printf "%h\n" will now print "." for files in the current directory.
Previously it printed nothing (but there was a bug in the %h
implementation anyway). This fixes Savannah bug #12085.
Should now build (again) on non-C99-compliant systems.
** Documentation enhancements
Fixed some typos and clarified wording in "Working with automounters".
** Internationalization and Localization
New Vietnamese message translation.
* Major changes in release 4.2.18, 2005-02-16
** Bug Fixes
*** "find -depth" was missing out non-leaf directories when they contain
non-directories. This affected findutils releases 4.2.15,
4.2.16 and 4.2.17, but the bug is now fixed.
*** Find no longer hangs on systems which are clients of unresponsive
NFS servers.
** Documentation improvements
*** Improvements and corrections to the find.1 manpage, including corrections to the descriptions of -H and -L.
* Major changes in release 4.2.17, 2005-02-08
** Bug Fixes
*** bug #11861 undefined symbol "basename" on IRIX 5.3
*** bug #11865 xargs -i regression (as compared to findutils-4.2.12)
*** bug #11866 Typo in pred_okdir renders it useless (affecting 4.2.16 only)
*** patch #3723 fix recent process_top_path change (for -execdir on /)
*** Fixing bug #11866 and applying patch #3723 made -execdir work much better.
*** find bar/baz/ugh now works again if baz is a symbolic link (broken
in 4.2.15).
* Major changes in release 4.2.16, 2005-02-05
** Functionality Changes
*** Updated the message catalogues for the translated messages.
*** The subfs filesystem is now treated the same as the autofs
filesystem is.
*** New translations: Belarusian, Catalan, Greek, Esperanto,
Finnish, Irish, Croatian, Hungarian, Japanese, Luganda,
Malay, Romanian, Slovenian, Serbian, Chinese (simplified).
** Bug Fixes
*** The -execdir action now works correctly for files named on the
command line.
* Major changes in release 4.2.15, 2005-01-29
** Functionality Changes
*** locate now supports matching regular expression (--regex).
*** --enable-d_type-optimization (introduced in findutils 4.2.13) is now turned on by default.
* Major changes in release 4.2.14, 2005-01-25
** Functionality Changes
*** New options -L, -P, -H for locate. The work in the same was as the same options for find.
** Bug Fixes
*** Don't include the "findutils/find/testsuite/find.gnu" subdirectory in the
distributed tar file more than once.
*** Should now build on Solaris once again.
*** -xtype and -printf %Y now work correctly for symbolic links once again
** Documentation improvements
*** All options for "locate" are now documented
* Major changes in release 4.2.13, 2005-01-23
** Performance Enhancements
*** On Linux and some other systems, a large performance improvement,
because we can eliminate many of the calls to lstat() (in extreme
cases, 99% of them). Limited testing shows a 2x speedup on NFS
filesystems. Other systems which can make use of this enhancement
include Mac OS X and *BSD.
* Major changes in release 4.2.12, 2005-01-22
** Functionality Changes
*** find is now POSIX-compliant, as far as I know.
*** -exec ... {} + now works.
*** New actions -execdir and -okdir which are like -exec and -ok but more secure.
*** "locate -w" is now a synonym for "locate --wholepath".
*** An empty path entry in the locate database path (for example "::" in
$LOCATE_PATH or in the argument to "locate -d") is taken to mean
the default database, whose name is hard-coded in locate.
** Bug Fixes
*** If find or xargs cannot write to stdout, for example because
output is redirected to a file and the disk is full, the
relevant program will return a non-zero exit status.
* Major changes in release 4.2.11, 2004-12-12
** Bug Fixes
*** Compilation fix for systems without EOVERFLOW.
*** More helpful error message if you make a mistake with (, ), -o or -a.
** Functionality Changes
*** If you have unclosed parentheses on the find command line,
or any of a number of similar problems, find will now produce
a more helpful error message.
*** locate -b is now a synonym for locate --basename
*** locate now supports a --statistics (or -S) option, which prints some
statistics about the locate databases.
*** Implemented the -samefile option.
** Documentation improvements
*** New chapter in the manual, "Security Considerations".
*** Better documentation for -prune (Mainly thanks to Stepan Kasal)
** Bug Fixes
*** locate's options -i and -w now work with the -e option (previously a bug
prevented this).
* Major changes in release 4.2.10, 2004-12-06
** Bug Fixes
*** Portability fix for fstype.c: should now compile on UNICOS, and possibly
also produce useful results on BeOS and Dolphin, perhaps other
systems too.
* Major changes in release 4.2.9, 2004-12-05
** Functionality Changes
*** xargs no longer treats a line containing only an underscore as a logical end-of-file. To obtain the behaviour that was previously the default, use "-E_".
*** xargs now supports the POSIX options -E, -I and -L. These are synonyms
for the existing options -e, -i and -l, but the latter three are
now deprecated.
** Bug Fixes
*** xargs -n NUM now invokes a command as soon as it has NUM arguments.
Previously, it waited until NUM+1 items had been read, and then
invoked the command with NUM arguments, saving the remaining one
for next time.
*** If "find -L" discovers a symbolic link loop, an error message is issued.
*** If you specify a directory on the find command line, but -prune
is applied to it, find will no longer chdir() into it anyway.
** Documentation improvements
*** The precise interpretation of the arguments to the -atime, -ctime
and similar tests in find has been documented more clearly.
* Major changes in release 4.2.8, 2004-11-24
*** Bugfix to the findutils 4.2.7 automount handling on Solaris. This
worked to some extent in findutils-4.2.7, but is much improved in
findutils-4.2.8.
* Major changes in release 4.2.7, 2004-11-21
** Functionality Changes
*** xargs can now read a list of arguments from a named file, allowing
the invoked program to use the same stdin as xargs started with
(for example ``xargs --arg-file=todo emacs'').
** Documentation improvements
*** The Texinfo manual now has an extra chapter, "Error Messages". Most
error messages are self-explanatory, but some of the ones which
are not are explained in this chapter.
** Bug Fixes
*** Avoid trying to link against -lsun on UNICOS, which doesn't need it or
have it.
*** Bugfix to the findutils 4.2.6 automount handling (which hadn't been enabled
on Solaris).
*** Reenabled internationalisation support (which had been accidentally
disabled in findutils-4.2.5).
* Major changes in release 4.2.6, 2004-11-21
** Bug Fixes
*** find now copes rather better when a directory appears to change just as
it is about to start examining it, which happens with automount.
This is because automount mounts filesystems as you change
directory into them. This should resolve Savannah bugs #3998,
#9043.
Version 8.12.0 [v8-stable] 2015-08-11
- Harmonize resetConfigVariables values and defaults
see also https://github.com/rsyslog/rsyslog/pull/413
Thanks to Tomas Heinrich for the patch.
- GT/KSI: fix some issues in signature file format and add conversion tool
The file format is incompatible to previous format, but tools have been
upgraded to handle both and also an option been added to convert from
old to new format.
- bugfix: ommysql did not work when gnutls was enabled
as it turned out, this was due to a check for GnuTLS functions
with the side-effect that
AC_CHECK_LIB, by default, adds the lib to LIBS, if there is no
explicit action, what was the case here. So everything was now
linked against GnuTLS, which in turn made ommysql fail.
Thanks to Thomas D. (whissi) for the analysis of the ommysql/gnutls
problem and Thomas Heinrich for pointing out that AC_CHECK_LIB might
be the culprit.
- bugfix omfile: potential memory leak on file close
see also: https://github.com/rsyslog/rsyslog/pull/423
Thanks to Robert Schiele for the patch.
- bugfix omfile: potential race in dynafile detection/creation
This could lead to a segfault.
Thanks to Tomas Heinrich for the patch.
- bugfix omfile: Fix race-condition detection in path-creation code
The affected code is used to detect a race condition in between
testing for the existence of a directory and creating it if it didn't
exist. The variable tracking the number of attempts wasn't reset for
subsequent elements in the path, thus limiting the number of
reattempts to one per the whole path, instead of one per each path
element.
This solution was provided by Martin Poole.
- bugfix parser subsystem: potential misadressing in SanitizeMsg()
could lead to a segfault
Thanks to Tomas Heinrich for the patch.
- imfile: files moved outside of directory are now (properly) handled
- bugfix: imfile: segfault when using startmsg.regex if first log line
doesn't match
Thanks to Ciprian Hacman for the patch.
- bugfix imfile: file table was corrupted when on file deletion
This could happen when a file that was statically configured (not via an
wildcard) was deleted.
- bugfix ompgsql: transaction were improperly handled
now transaction support is solidly disabled until we have enough requests
to implement it again. Module still works fine in single insert mode.
closes https://github.com/rsyslog/rsyslog/issues/399
- bugfix mmjsonparse: memory leak if non-cee-json message is processed
see also https://github.com/rsyslog/rsyslog/pull/383
Thanks to Anton Matveenko for the patch
- testbench: remove raciness from UDP based tests
- testbench: added bash into all scripts makign it mandatory
- bugfix testbench: Fixed problem building syslog_caller util when
liblogging-stdlog is not available.
Thanks to Louis Bouchard for the patch
- bugfix rscryutil.1: Added fix checking for generate_man_pages condition
Thanks to Radovan Sroka for the patch
- bugfix freebsd console: \n (NL) is prepended with \r (CR) in console
output on freebsd only. For more details see here:
https://github.com/rsyslog/rsyslog/issues/372
Thanks to AlexandreFenyo for the patch
------------------------------------------------------------------------------
Version 8.11.0 [v8-stable] 2015-06-30
- new signature provider for Keyless Signature Infrastructure (KSI) added
- build system: re-enable use of "make distcheck"
- add new signature provider for Kesless Signature Infrastructure (KSI)
This has also been added to existing tooling; KSI is kind of v2 of
the Guardtime functionality and has been added in the appropriate
places.
- bugfix imfile: regex multiline mode ignored escapeLF option
Thanks to Ciprian Hacman for reporting the problem
closes https://github.com/rsyslog/rsyslog/issues/370
- bugfix omkafka: fixed several concurrency issues, most of them related
to dynamic topics.
Thanks to Janmejay Singh for the patch.
- bugfix: execonlywhenpreviousissuspended did not work correctly
This especially caused problems when an action with this attribute was
configured with an action queue.
- bugfix core engine: ensured global variable atomicity
This could lead to problems in RainerScript, as well as probably in other
areas where global variables are used inside rsyslog. I wouldn't outrule
it could lead to segfaults.
Thanks to Janmejay Singh for the patch.
- bugfix imfile: segfault when using startmsg.regex because of empty log line
closes https://github.com/rsyslog/rsyslog/issues/357
Thanks to Ciprian Hacman for the patch.
- bugfix: build problem on Solaris
Thanks to Dagobert Michelsen for reporting this and getting us up to
speed on the openCWS build farm.
- bugfix: build system strndup was used even if not present
now added compatibility function. This came up on Solaris builds.
Thanks to Dagobert Michelsen for reporting the problem.
closes https://github.com/rsyslog/rsyslog/issues/347
- bugfix imjournal: do not pass empty messages to rsyslog core
this causes a crash of the daemon
see also https://github.com/rsyslog/rsyslog/pull/412
Thanks to Tomas Heinrich for the patch.
- bugfix imjournal: cosmetic memory leak
very small and an shutdown only, so did not affect operations
see also https://github.com/rsyslog/rsyslog/pull/411
Thanks to Tomas Heinrich for the patch.
Changes:
== 7.0 ==
=== General Improvements ===
Various fix including security fix, thanks to
* Coverity scan (Static Analysis of source code)
* afl-fuzz (security-oriented fuzzer).
* Denis Andzakovic from Security Assessment for reporting an
exploitable Stack Buffer Overflow
=== TestDisk ===
==== Improvements ====
* exFAT: better support
* ext4: handle 64 bit blocks or 64 KiB blocksize. Fix detection and file
listing
==== Bug fixes ====
* Avoid erroneous error when writing 512 bytes on hard disk using 4k sector
* FAT, NTFS: avoid NULL pointer dereference if localtime() returns NULL.
Thanks to Graham Sutherland for reporting this bug.
=== PhotoRec & QPhotoRec ===
QPhotoRec is a Graphical User Interface (Qt based GUI) version of PhotoRec.
More user friendly, it recognizes the same file formats.
PhotoRec remains recommended for advanced users, it can stop a recovery and
resume it later, it recovers more fragmented files when brute-force technology
is enabled and expert mode is available.
==== Improvements ====
* Reduced false positives for more than 80 file formats.
* .gif: fix filesize detection
* .flv: add Flash filesize detection
* .mpg: detect filesize for MPEG
* .ra: detect filesize for RealAudio3
* Improved algorithm to deal with data fragmentation resulting in a general
speed increased
* Speedup brute-force mode. Brute-force mode can recover more fragmented
files, but it's still slow and not 100% reliable. You can enable it in
PhotoRec Options menu.
New file formats recovered by PhotoRec:
* .3dm: Rhino / openNURBS
* .ari: ARRI Raw Video
* .camrec: Camtasia Studio
* .dad: Micae DVR
* .dcm: Digital Imaging and Communications in Medicine (DICOM)
* .fp12: File Maker Pro 12
* .kra: Krita
* .mlv: Magic Lantern Video
* .notebook: SMART notebook
* .ora: Mypaint
* .red: RED2 video format
* .rlv: Revelation password
* .vbm: Veeam Backup Metadata
* .woff: Web Open Font Format
do a patch refresh in xentools42
rather than split the patches for pass-through.c over 5 files, delete
xentools42/patches/patch-CVE-2015-2756 and assemble all in
xentools42/patches/patch-qemu-xen-traditional_hw_pass-through.c
sysutils/py-attic, which is no longer being developed upstream.
BorgBackup (short: Borg) is a deduplicating backup program. Optionally,
it supports compression and authenticated encryption.
The main goal of Borg is to provide an efficient and secure way to
backup data. The data deduplication technique used makes Borg suitable
for daily backups since only changes are stored. The authenticated
encryption technique makes it suitable for backups to not fully trusted
targets.
OS X lacks the POSIX-mandated clock_gettime function, and tarsnap is
not using libcperciva's "support broken operating systems" compatibility
mechanism yet. Add -DPOSIXFAIL_CLOCK_REALTIME to the build.
1. SECURITY FIX: When constructing paths of objects being archived, a buffer
could overflow by one byte upon encountering 1024, 2048, 4096, etc. byte
paths. Theoretically this could be exploited by an unprivileged user whose
files are being archived; I do not believe it is exploitable in practice,
but I am offering a $1000 bounty for the first person who can prove me wrong:
http://www.daemonology.net/blog/2015-08-21-tarsnap-1000-exploit-bounty.html
2. SECURITY FIX: An attacker with a machine's write keys, or with read keys
and control of the tarsnap service, could make tarsnap allocate a large
amount of memory upon listing archives or reading an archive the attacker
created; on 32-bit machines, tarsnap can be caused to crash under the
aforementioned conditions.
3. BUG FIX: Tarsnap no longer crashes if its first DNS lookup fails.
4. BUG FIX: Tarsnap no longer exits with "Callbacks uninitialized" when
running on a dual-stack network if the first IP stack it attempts fails to
connect.
5. tarsnap now avoids opening devices nodes on linux if it is instructed to
archive /dev/. This change may prevent "watchdog"-triggered reboots.
6. tarsnap -c --dry-run can now run without a keyfile, allowing users to
predict how much Tarsnap will cost before signing up.
7. tarsnap now has bash completion scripts.
8. tarsnap now takes a --retry-forever option.
9. tarsnap now automatically detects and uses AESNI and SSE2.
As usual, there are also many minor build fixes, harmless bug fixes, and code
refactoring / cleanup changes. For a full listing of changes, consult the
tarsnap git repository: https://github.com/Tarsnap/tarsnap
* Add support for the "irq" plugin on NetBSD.
* Declare BUILD_DEFS+= VARBASE to silence pkglint.
* Tweak Makefile.am instead; commit regenerated Makefile.in with automake.
* Adjust the patch for the df plugin so it builds both in newer (> 6.99.19)
and older NetBSD (e.g. 6.1.5)
* Adjust the entropy plugin to use <paths.h> and _PATH_URANDOM
to silence pkglint.
PKGREVISION bumped to 5.
Puppet 3.8.1-3.8.2
- Bug fixes
- Minor improvements
- Improvements for future migration to 4.0
Puppet 3.8.0
- Back-end Support for Upgrade Previews
- Logging as JSON
- Bug fixes and improvements
Release notes for 3.8.x:
https://docs.puppetlabs.com/puppet/3.8/reference/release_notes.html
Puppet 3.7.1-3.7.5
- Bug fixes
- Security fix for the POODLE vulnerability in the WEBrick master process
Puppet 3.7.0
- A nearly-final implementation of the Puppet 4 language
- Preview support for a new, fast, natively compiled Facter
- Lots of deprecations to prepare for Puppet 4.0
- Bug fixes and minor improvements
Release notes for 3.7.x:
https://docs.puppetlabs.com/puppet/3.7/reference/release_notes.html
Puppet 3.6.1-3.6.2
- Security fixes for CVE-2014-3248 and CVE-2014-3250.
- Bug fixes.
Puppet 3.6.0
- Improvements to directory environments, and the deprecation
of config file environments
- Support for purging unmanaged ssh_authorized_key resources
- Support for installing gems for a custom provider as part of a Puppet run
- A configurable global logging level
- A configurable hashing algorithm (for FIPS compliance and other purposes)
- Improvements to the experimental future parser
- Bug fixes and minor improvements
Release notes for 3.6.x:
https://docs.puppetlabs.com/puppet/3.6/reference/release_notes.html
Puppet 3.5.1
- Bug fixes.
Puppet 3.5.0
- A new way to set up environments, which replaces the popular
"dynamic environments" pattern
- A cleaner replacement for the classic import nodes/*.pp pattern
- Scriptable configuration with a new puppet config set command
- A new global $facts hash
- Early support for hashes and arrays in fact values
- Improvements to the future parser
- Support for RHEL 7, Ruby 2.1, and Facter 2.0
- Bug fixes and minor improvements
Release notes for 3.5.x:
https://docs.puppetlabs.com/puppet/3.5/reference/release_notes.html
Puppet 3.4.1-3.4.3
- Bug fixes.
- Security fix for CVE-2013-4969.
Puppet 3.4.0
- Fixes for some high-profile bugs, including the "anchor pattern" issue
and broken RDoc on Ruby 1.9+
- New certificate autosigning behavior to help quickly and securely
add new nodes in elastic environments
- Windows improvements, especially for file resources
- Trusted node data in the compiler
- Bug fixes and minor improvements
Puppet 3.3.1-3.3.2
- Bug fixes
Puppet 3.3.0
- Configurable Resource Ordering
- Data in Modules
- YAML Over the Network is Now Deprecated
- Regex Capture Variables from Node Definitions ($1, etc.)
- Redirect Response Handling
- Filebucket Improvements
- Internal Format and API Improvements
- Improvements to Resource Types
- Bug fixes and minor improvements
Puppet 3.2.1-3.2.4
- Bug fixes
- Security fixes for CVE-2013-4761 and CVE-2013-4956
- Security fix for CVE-2013-3567
Puppet 3.2.0
- An optional, experimental "Future" parser
- Ruby 2.0 support
- OpenWRT OS support
- External CA support
- A new modulo (%) operator
- New slow catalog profiling capabilities
- Bug fixes and minor improvements
Release notes for for 3.2.x-3.4.x:
- https://docs.puppetlabs.com/puppet/3/reference/release_notes.html
Upstream changes:
=================
1.10.2 2015-06-19
-----------------
[Bug] #1273: Fix issue with ssh/config not having a cross-platform default
path. Thanks to @SamuelMarks for catch & patch.
[Bug] #1286: (also #971, #1032) Recursively unwrap decorators instead of
only unwrapping a single decorator level, when obtaining task docstrings.
Thanks to Avishai Ish-Shalom for the original report & Max Kovgan for the
patch.
[Bug] #1289: Fix 'NameError: free variable referenced before assignment
in enclosing scope'. Thanks to @SamuelMarks for catch & patch.
[Bug] #980: (also #1312) Redirect output of cd to /dev/null so users
enabling bash's CDPATH (or similar features in other shells) don't have
polluted output captures. Thanks to Alex North-Keys for the original report &
Steve Ivy for the fix.
[Bug] #1305: (also #1313) Fix a couple minor issues with the operation of &
demo code for the JobQueue class. Thanks to @dioh and Horst Gutmann for the
report & Cameron Lane for the patch.
[Bug] #1318: Update functionality added in #1213 so abort error messages
don't get printed twice (once by us, once by sys.exit) but the annotated
exception error message is retained. Thanks to Felix Almeida for the report.
1.10.1 2014-12-19
-----------------
[Bug] #1226: Update get to ensure that env.user has access to tempfiles
before changing permissions. Also corrected permissions from 404 to 0400 to
match comment. Patch by Curtis Mattoon; original report from Daniel Watkins.
[Support] #1229: Add some missing API doc hyperlink references. Thanks to
Tony Narlock.
[Support] #958: Remove the Git SHA portion of our version string
generation; it was rarely useful & occasionally caused issues for users with
non-Git-based source checkouts.
[Bug] #1180: Fix issue with unicode steam outputs crashing if stream
encoding type is None. Thanks to @joekiller for catch & patch.
[Bug] #1228: Update the CommandTimeout class so it has a useful str instead
of appearing blank when caught by Fabric's top level exception handling.
Catch & patch from Tomaz Muraus.
[Support] #1213: Add useful exception message to the implicit SystemExit
raised by Fabric's use of sys.exit inside the abort function. This allows
client code catching SystemExit to have better introspection into the error.
Thanks to Ioannis Panousis.
[Bug] #1019: (also #1022, #1186) Fix is a tty tests in
environments where streams (eg sys.stdout) have been replaced with objects
lacking a .isatty() method. Thanks to Miki Tebeka for the original report, Lele
Long for a subsequent patch, and Julien Phalip for the final/merged patch.
[Bug] #1201: Don't naively glob all get targets - only glob actual
directories. This avoids incorrectly yielding permission errors in edge cases
where a requested file is within a directory lacking the read permission bit.
Thanks to Sassa Nf for the original report.
1.10.0 2014-09-04
-----------------
[Feature] #975: Fabric can now be invoked via python -m fabric in addition
to the typical use of the fab entrypoint. Patch courtesy of Jason Coombs.
(Python 2.7 only)
[Feature] #1090: Add option to skip unknown tasks. Credit goes to Jonas
Lundberg.
[Feature] #1098: Add support for dict style roledefs. Thanks to Jonas
Lundberg.
[Feature] #700: Added use_sudo and temp_dir params to get. This allows
downloading files normally not accessible to the user using sudo. Thanks to
Jason Coombs for initial report and to Alex Plugaru for the patch (#1121).
[Bug] #1188: Update local to close non-pipe file descriptors in the child
process so subsequent calls to local aren't blocked on e.g.
already-connected network sockets. Thanks to Tolbkni Kao for catch & patch.
directory in their OS for probably some twenty years. Use /var
instead. In particular, fix the defaults for CNF_INFOFILE, CNF_LOGDIR,
and CNF_INDEXDIR to use the configured LOCALSTATEDIR, which in pkgsrc
will be ${VARBASE}/amanda, instead of hardwiring /usr/adm/amanda.
PR 38958.
PKGREVISION -> 9.
Major changes in 0.12.9
=======================
* rename newly introduced SpiceImageCompress enum to SpiceImageCompression
as otherwise it was clashing with the definition used by older spice-server
releases, breaking QEMU build
Major changes in 0.12.8
=======================
* add LZ4 support
* add audio volume synchronization
* deprecate unused vdi-dev
* add 'preferred-compression' message/capability
* add a new Windows driver escape code to send
monitors capability from guest to client
Xfce4 GVfs Mount is a small application that is meant to mount remote file
systems only. It was initially written because Thunar 1.0 is lacking that
feature. The application is composed of a daemon, a mount dialog,
and a panel plugin.
Changed default tail command arguments
Fixed input-record-separator command line argument to allow for a null string
Corrected perlcode parsing and depth handling
Fixed how swatch kills off the tail command on exit
Fixed how the tail command is launched
Fixed incorrect implementation on rc4.
Hidden all the binary executable symbols but one.
Expiration date and most strings are encrypted too.
All the encrypted payload is now randomized.
Group and others read permision is now removed by default as read
permision of the script exposes it to disassembling.
Fixed bug: "rlax" used after encryption.
Fixed bug: "vfork" fails on multiprocessor systems.
Fixed sma11 -d option bug.
Fixed untraceable() problems on FreeBSD.
License clarification about the rc4 implementation.
Bug on 64bit systems with expiration dates.
Fixing a long standing bug making the source not hidden.
D-Bus 1.8.20 (2015-07-21)
==
The “Iguana Vanguard” release.
Fixes:
• Fix a memory leak when GetConnectionCredentials() succeeds
(fd.o #91008, Jacek Bukarewicz)
• Ensure that dbus-monitor does not reply to messages intended for others
(fd.o #90952, Simon McVittie)
Version 1.1.9
~~~~~~~~~~~~~
- Fixed build on VC (issues #20, #33).
- Added ``MANIFEST.in`` to the source distribution to help with RPM building
(issue #30).
NEW features of cdrtools-3.01a30:
****************
This is the final release candidate for cdrtools-3.01-final
****************
All:
- include/schily/signal.h now includes siginfo.h to make sure it
compiles even on very old Solaris versions where signal.h did not
yet include siginfo.h.
- include/schily/wait.h add a missing closing bracket for Haiku
- include/schily/wait.h added CLD_* macros and the enum idtype_t in case
they are missing. This allows to implement a waitid() emulation.
- include/schily/wait.h now includes schily/signal.h in case that
the local /usrinclude/sys/wait.h is non-POSIX and does not
define siginfo_t. This is e.g. the case on FreeBSD.
- The configure tests now include test that correctly identify Mac OS X as
non-POSIX with respect to waitid(). This prevents potential users of
waitid() from the unusable implementation on Mac OS X.
The rule for accepting an existing waitid() is the following:
- si.si_pid is set to be equal to the awaited pid
- si.si_code == CLD_EXITED for a chilt terminated by exit(2)
- si.si_status contains at least 16 bits from the exit(2)
code. This is still not POSIX but better than what we would
get from a historical wait*() call.
- The configure tests now check for the new FreeBSD wait6() and for
idtype_t.
- A new symlink for x86_64-cygwin32_nt-gcc.rul was added
- Added support for cygwin32_wow (not the already present cygwin32_wow64).
- The makefile system now allows to use:
COPTX=-DNO_PRAGMA_WEAK
to disable the use of #pragma weak. This may help to debug some
oddities of the GNU linker.
- The makefile system now includes a new test that needs constraints
that are not really supported by autoconf: it checks whether the
linker supports to link against external weak symbols in another
file. For this reason, a handcrafted complest was written.
This (currently) should fail on Cygwin due to a Cygwin bug.
A platform that allows to link against weak symbols defines
HAVE_LINK_WEAK. This permits the system to automatically detect
usability once e.g. linking on Cygwin will be fixed.
Thanks to Thomas Plank for reporting the known #pragma weak problem
in a new source file (libschily/error.c). Note that error() is a
UNIX (UNOS) libc function that exists since 1980 but some libc
implementors do not follow the rule not to introduce incompatible
interfaces for existing names. So we need to find a workaround
on these platforms.
- autoconf now checks for the type rlim_t in sys/resource.h
Libschily:
- libschily/comerr.c and libschily/fcomerr.c now have better
comment.
- libschily now uses the test:
#if defined(HAVE_PRAGMA_WEAK) && defined(HAVE_LINK_WEAK)
to prevent assuming that is suffucuent when the compiler supports
#pragma weak. We also need to have a linker that links against
weak symbols in libraries. HAVE_LINK_WEAK is e.g. not defined
on Cygwin...
Libmdigest:
- libmdigest now uses the test:
#if defined(HAVE_PRAGMA_WEAK) && defined(HAVE_LINK_WEAK)
to prevent assuming that is suffucuent when the compiler supports
#pragma weak. We also need to have a linker that links against
weak symbols in libraries. HAVE_LINK_WEAK is e.g. not defined
on Cygwin...
All:
- include/schily/sysexits.h adopts to the recent changes on Haiku that
prevent usual autoconf tests as #include <sysexits.h> works but symbols
are only defined with #define _BSD_SOURCE
- include/schily/wait.h now knows about the Haiku specific macro
WIFCORED() and #defines WCOREDUMP() to WIFCORED().
- Support for x86_64-haiku-cc.rul and x86_64-haiku-gcc.rul was added
to the makefile system.
- The file RULES/r-gmake.dep was modified to make sure that the
dependency files (*.d) depend from the include files as well.
Previous versions included xxx.d instead of $(ARCHDIR)/xxx.d
- Makefile system: two new targets have been added:
man creates localized versions of the man pages in the
OBJ directory
installman installs only the manual pages
Libschily:
- New function j_error() works where error() is to generic.
- make strlcatl() and wcslcatl() work with K&R compilers
- libschily/getargs.c now is more careful with calling va_arg()
and only calls it as many times as a related format is found in the
format string.
- libschily now contains a getdelim() implementation and always uses
getdelim() to implement the fgetaline() function.
- libschily: the *mem.c implementations now include new *mexval()
functions to set the exit code on failure to a static value instead
of the default "errno" value for the failure.
- libschily: the linker map file now also lists the forgotten new entries:
strlcatl() and wcslcatl()
- libschily/spawn.c:wait_chld() no longer returns 0 if the child process
was killed by a signal.
- libschily now adds some of the existing (old) man pages for various
functions from libschily.
Libfind:
- libfind/idcache.c now saves uname/gname as long as possible and uses
strlcpy() instead of strncpy().
- libfind: the forgotten entries find_hasexec() and find_hasprint()
have been added to the linker map file
Libsiconv:
- libsiconv: the forgotten sic_base() was added to the linker map file
Cdrecord:
- The programs cdrecord adopts to the recent Haiku
changes with a randomized address space and now use B_EXACT_ADDRESS
instead of B_ANY_ADDRESS for the clone_area() call to get shared memory
for a FIFO.
Cdda2wav (Maintained/enhanced by Jörg Schilling, originated by Heiko Eißfeldt heiko@hexco.de):
- The programs cdda2wav adopts to the recent Haiku
changes with a randomized address space and now use B_EXACT_ADDRESS
instead of B_ANY_ADDRESS for the clone_area() call to get shared memory
for a FIFO.
Mkisofs (Maintained/enhanced by Jörg Schilling since 1997, originated by Eric Youngdale):
- mkisofs: isodump did not compile on non c99 compilers.
{perl>=5.16.6,p5-ExtUtils-ParseXS>=3.15}:../../devel/p5-ExtUtils-ParseXS
since pkgsrc enforces the newest perl version anyway, so they
should always pick perl, but sometimes (pkg_add) don't due to the
design of the {,} syntax.
No effective change for the above reason.
Ok joerg
Mtx(1) is a set of low level driver programs to control features of SCSI
backup related devices such as autoloaders, tape changers, mediajukeboxes,
and tape drives. It can also report much data, including serial numbers,
maximum block sizes, and TapeAlert(tm) messages that most modern tape
drives implement, as well as do raw SCSI READ and WRITE commands to
tape drives.
It works like chio(1) but supports more features and drives and runs in
users land. There are some amanda (sysutils/amanda-server) scripts, which
depend on mtx.
Long ago, this package needed -lpci added on NetBSD. Now, the
configure script does this automatically. This commit should not
change anything, so no PKGREVISION++. (I've been running with this
diff for a long time, on an i386 machine.)
Discussed with riastradh@ back in March.
in order to be able to use 'xsltproc --nonet' (e.g. empathy, upower, ...)
Update smf files to better deal with creating /var/run/dbus structures on SunOS
update PKGREVISION
2015-02-27 18:29
* New version 0.7.1 - to be used with xfce4-settings 4.11 or later;
do *not* use this version with XFCE 4.8 or 4.10, it won't work!
* Many translation updates
* Fix crash in xkb_util_normalize_group_name
* Add Montenegrin flag; add el.svg as a synonym for gr.svg
3.9.0 -> 3.9.1
- Fix off-by-one error which can lead to crash when copytruncate is used.
3.8.9 -> 3.9.0
- Fix crash when using long dateformat. [nmerdan]
- Add support for %H dateformat. [czchen]
- Fix regression introduced in 3.8.9 when when rotating multiple
logs when one of them is missing.
- In the debug mode, do not skip the code-path which handles the case when
the last rotation does not exist. [Sergey Vidishev]
- Show more precise description when "log does not need rotating".\
- Add new -l option to log verbose output to file. The file is overwritten
on every logrotate execution.
- Allow rotation of sparse files with copytruncate.
PKgsrc changes :
Switched from old Makefile to new building procedure, using autogen,
configure and (g)make, which was introduced in version 3.8.8.
The new patch file contains a workaround to get the new building procedure
working.
-----------------
* Use the new GtkTooltip API
* Fix a memory leak in the FreeBSD codepath (#11153)
* Add support for FreeBSD (bug #10350)
* New translations: th, ms, bg, oc, hr, en_AU, sr
* Updated translations: ar, ast, bg, cs, de, es, fr, it,
hr, hu. ko, nb, nl, ug, pl, sv, tr, zh_CN, zh_TW
- pkgin changed its output delimiter from a space to ';' when outputting
to a non-tty, breaking various configuration management systems which
relied on the previous behaviour. Handle both types in ansible until
NetBSDfr/pkgin#46 is resolved.
- OS X 10.10 changed the behaviour of sysctl(8) to hide certain entries
unless they are explicitly named. Apply patch to fix hw.model and
hw.usermem from https://github.com/ansible/ansible/pull/8171/files
Clean up patches while here. Bump PKGREVISION.
Note that the patch for XSA135 for qemu-traditional, which was
no applied to the 4.5 branch before the release due to an oversight,
is applied here (xentools45/patches/patch-XSA135).
Selected entries from the relase notes:
a246727: cpupool: fix shutdown with cpupools with different schedulers [Dario Faggioli]
5b2f480: libelf: fix elf_parse_bsdsyms call [Roger Pau Monné]
8faef24: VT-d: extend quirks to newer desktop chipsets [Jan Beulich]
24fcf17: x86/VPMU: add lost Intel processor [Alan Robinson]
131889c: x86/crash: don't use set_fixmap() in the crash path [Andrew Cooper]
8791a30: x86/apic: Disable the LAPIC later in smp_send_stop() [Andrew Cooper]
fbd26f2: x86/pvh: disable posted interrupts [Roger Pau Monné]
0d8cbca: libxl: In libxl_set_vcpuonline check for maximum number of VCPUs against the cpumap. [Konrad Rzeszutek Wilk]
bf06e40: libxl: event handling: ao_inprogress does waits while reports outstanding [Ian Jackson]
97051bd: libxl: event handling: Break out ao_work_outstanding [Ian Jackson]
0bc9f98: x86/traps: loop in the correct direction in compat_iret() [Andrew Cooper]
fcfbdb4: gnttab: add missing version check to GNTTABOP_swap_grant_ref handling [Jan Beulich]
09f76cb: cpupools: avoid crashing if shutting down with free CPUs [Dario Faggioli]
f237ee4: cpupool: assigning a CPU to a pool can fail [Dario Faggioli]
b986072: xen: common: Use unbounded array for symbols_offset. [Ian Campbell]
5eac1be: x86/irq: limit the maximum number of domain PIRQs [Andrew Cooper]
9c3d34d: x86: don't unconditionally touch the hvm_domain union during domain construction [Andrew Cooper]
9d5b2b0: tools/xenconsoled: Increase file descriptor limit [Andrew Cooper]
cfc4c43: ocaml/xenctrl: Fix stub_xc_readconsolering() [Andrew Cooper]
032673c: ocaml/xenctrl: Make failwith_xc() thread safe [Andrew Cooper]
c91ed88: ocaml/xenctrl: Check return values from hypercalls [Andrew Cooper]
fa62913: libxl: Domain destroy: fork [Ian Jackson]
c9b13f3: libxl: Domain destroy: unlock userdata earlier [Ian Jackson]
0b19348: libxl: In domain death search, start search at first domid we want [Ian Jackson]
ddfe333: x86: don't change affinity with interrupt unmasked [Jan Beulich]
bf30232: x86: don't clear high 32 bits of RAX on sub-word guest I/O port reads [Jan Beulich]
a824bf9: x86_emulate: fix EFLAGS setting of CMPXCHG emulation [Eugene Korenevsky]
f653b7f: x86/hvm: implicitly disable an ioreq server when it is destroyed [Paul Durrant]
8dbdcc3: x86/hvm: actually release ioreq server pages [Paul Durrant]
56fe488: x86/hvm: fix the unknown nested vmexit reason 80000021 bug [Liang Li]
4a52101: VT-d: improve fault info logging [Jan Beulich]
5a7c042: x86/MSI: fix error handling [Jan Beulich]
51d8325: LZ4 : fix the data abort issue [JeHyeon Yeon]
0327c93: hvmloader: don't treat ROM BAR like other BARs [Jan Beulich]
f2e08aa: domctl/sysctl: don't leak hypervisor stack to toolstacks [Andrew Cooper]
3771b5a: arm64: fix fls() [Jan Beulich]
9246d2e: domctl: don't allow a toolstack domain to call domain_pause() on itself [Andrew Cooper]
f5bca81: Limit XEN_DOMCTL_memory_mapping hypercall to only process up to 64 GFNs (or less) [Konrad Rzeszutek Wilk]
7fe1c1b: x86: don't apply reboot quirks if reboot set by user [Ross Lagerwall]
969df12: Revert "cpupools: update domU's node-affinity on the cpupool_unassign_cpu() path" [Jan Beulich]
483c6cd: honor MEMF_no_refcount in alloc_heap_pages() [Jan Beulich]
6616c4d: tools: libxl: Explicitly disable graphics backends on qemu cmdline [Ian Campbell]
d0b141e: x86/tboot: invalidate FIX_TBOOT_MAP_ADDRESS mapping after use [Jan Beulich]
902998e: x86emul: fully ignore segment override for register-only operations [Jan Beulich]
25c6ee8: pre-fill structures for certain HYPERVISOR_xen_version sub-ops [Aaron Adams]
7ef0364: x86/HVM: return all ones on wrong-sized reads of system device I/O ports [Jan Beulich]
3665563: tools/libxc: Don't leave scratch_pfn uninitialised if the domain has no memory [Andrew Cooper]
75ac8cf: x86/nmi: fix shootdown of pcpus running in VMX non-root mode [Andrew Cooper]
1e44c92: x86/hvm: explicitly mark ioreq server pages dirty [Paul Durrant]
2bfef90: x86/hvm: wait for at least one ioreq server to be enabled [Paul Durrant]
d976397: x86/VPMU: disable when NMI watchdog is on [Boris Ostrovsky]
84f2484: libxc: introduce a per architecture scratch pfn for temporary grant mapping [Julien Grall]
6302c61: Install libxlutil.h [Jim Fehlig]
d8e78d6: bunzip2: off by one in get_next_block() [Dan Carpenter]
8a855b3: docs/commandline: correct information for 'x2apic_phys' parameter [Andrew Cooper]
3a777be: x86: vcpu_destroy_pagetables() must not return -EINTR [Konrad Rzeszutek Wilk]
1acb3b6: handle XENMEM_get_vnumainfo in compat_memory_op [Wei Liu]
4eec09f: x86: correctly check for sub-leaf zero of leaf 7 in pv_cpuid() [Jan Beulich]
7788cbb: x86: don't expose XSAVES capability to PV guests [Jan Beulich]
4cfc54b: xsm/evtchn: never pretend to have successfully created a Xen event channel [Andrew Cooper]
2fdd521: common/memory: fix an XSM error path [Jan Beulich]
ad83ad9: x86emul: tighten CLFLUSH emulation [Jan Beulich]
1928318: dt-uart: use ':' as separator between path and options [Ian Campbell]
9ae1853: libxl: Don't ignore error when we fail to give access to ioport/irq/iomem [Julien Grall]
In addition, this release also contains the following fixes to qemu-traditional:
afaa35b: ... by default. Add a per-device "permissive" mode similar to pciback's to allow restoring previous behavior (and hence break security again, i.e. should be used only for trusted guests). [Jan Beulich]
3cff7ad: Since the next patch will turn all not explicitly described fields read-only by default, those fields that have guest writable bits need to be given explicit descriptors. [Jan Beulich]
ec61b93: The adjustments are solely to make the subsequent patches work right (and hence make the patch set consistent), namely if permissive mode (introduced by the last patch) gets used (as both reserved registers and reserved fields must be similarly protected from guest access in default mode, but the guest should be allowed access to them in permissive mode). [Jan Beulich]
37c77b8: xen_pt_emu_reg_pcie[]'s PCI_EXP_DEVCAP needs to cover all bits as read- only to avoid unintended write-back (just a precaution, the field ought to be read-only in hardware). [Jan Beulich]
2dc4059: This is just to avoid having to adjust that calculation later in multiple places. [Jan Beulich]
29d9566: xen_pt_pmcsr_reg_write() needs an adjustment to deal with the RW1C nature of the not passed through bit 15 (PCI_PM_CTRL_PME_STATUS). [Jan Beulich]
2e19270: There's no point in xen_pt_pmcsr_reg_{read,write}() each ORing PCI_PM_CTRL_STATE_MASK and PCI_PM_CTRL_NO_SOFT_RESET into a local emu_mask variable - we can have the same effect by setting the field descriptor's emu_mask member suitably right away. Note that xen_pt_pmcsr_reg_write() is being retained in order to allow later patches to be less intrusive. [Jan Beulich]
751d20d: Without this the actual XSA-131 fix would cause the enable bit to not get set anymore (due to the write back getting suppressed there based on the OR of emu_mask, ro_mask, and res_mask). [Jan Beulich]
51f3b5b: ... to avoid allowing the guest to cause the control domain's disk to fill. [Jan Beulich]
7f99bb9: It's being used by the hypervisor. For now simply mimic a device not capable of masking, and fully emulate any accesses a guest may issue nevertheless as simple reads/writes without side effects. [Jan Beulich]
6fc82bf: The old logic didn't work as intended when an access spanned multiple fields (for example a 32-bit access to the location of the MSI Message Data field with the high 16 bits not being covered by any known field). Remove it and derive which fields not to write to from the accessed fields' emulation masks: When they're all ones, there's no point in doing any host write. [Jan Beulich]
e42b84c: fdc: force the fifo access to be in bounds of the allocated buffer [Petr Matousek]
62e4158: xen: limit guest control of PCI command register [Jan Beulich]
3499745: cirrus: fix an uninitialized variable [Jan Beulich]
This release also contains the security fixes for XSA-117 to XSA-136, with the exception of XSA-124 which documents security risks of non-standard PCI device functionality that cannot be addressed in software. It also includes an update to XSA-98 and XSA-59.
Rdfind is a program that finds duplicate files. It is useful for compressing
backup directories or just finding duplicate files. It compares files based on
their content, not on their file names.
imported from wip (thanks to bartosz.kuzma for packaing there :)
Changes since 5.4.2:
* Build system: Ability to make out-of-tree builds has been fixed.
* Build system, Disk and Users plugins: Detection and use of libstatgrab
>=0.90 has been added.
* Build system, Memory, CPU, TCPConns and Processes plugins: Numerous
fixes related to OpenBSD support have been added.
* Build system: Plugins now only export "module_register()".
* Build system: Various cleanups and improvements have been done.
* collectd: Numerous internal changes and improvements to the daemon and
the plugin API have been make.
* collectd: Numerous spelling mistakes have been corrected in comments
and documentation and several error messages have been improved.
* collectd: Rules/Targets can now be appended to existing Filter Chains.
* collectd: Failing Filter Chains destinations will now log the list of
available write targets.
* collectd: Support for process signaling and management by upstart and
systemd has been implemented for the Linux platform.
* collectd: The "CollectInternalStats" option has been added.
* collectd: The daemon source code and dependencies have moved to the
"src/daemon/" directory.
* collectd: The new "MaxReadInterval" option allows to cap the
exponential retry interval of plugins read errors.
* collectd: The "-P" command-line option now has precedence over the
"PIDFile" option.
* collection.cgi: Various data-source related adjustments have been made.
* libcollectdclient: Now propagates errors when signing / encrypting
network packets.
* Configuration: Support for unquoted IPv6 addresses has been added.
* Documentation: Various improvements have been done.
* Examples: the sample C plugin has been updated to the current plugin API.
* Licensing: The following components have been relicensed to the MIT
license: the Apple Sensors, Ascent, DBI, E-Mail, Entropy, GenericJMX,
gmond, LogFile, nginx, Notify Desktop, NTPd, NUT, olsrd, Perl, Ping,
PostgreSQL, Protocols, RouterOS, RRDCacheD, SNMP, StatsD, SysLog,
Table, Tail, UnixSock, vmem, VServer, Wireless, Write Riemann and XMMS
plugins, the core collectd daemon, the collectdmon, collectd-nagios
and collectd-tg utilities, all the Targets and Matches, liboconfig,
most of the "utils_*" files and the plugin API.
* Tests: A test suite has been added.
* Threshold: The hysteresis calculation has been made more reliable.
* Threshold: Various fixes and improvements have been made.
* AMQP plugin: The "ConnectionRetryDelay" option has been added,
allowing to delay reconnection.
* AMQP plugin: The "QueueDurable" and "QueueAutoDelete" options have
been added, giving control over queue creation and deletion.
* Apache, Ascent, BIND, cURL, cURL-JSON, cURL-XML, nginx and Write HTTP
plugins: Customizing the "User-Agent" field is now possible at
compile-time.
* Apache, Ascent, BIND, cURL, cURL-JSON, cURL-XML, nginx plugins: The
connection will be reset if it hasn't completed within the configured
"Interval". The new "Timeout" option gives control over this behavior.
* Apache, Ascent, cURL, cURL-JSON, cURL-XML, nginx, Write HTTP plugins:
Allow usernames and passwords to contain colons if built against
libcurl >= 7.19.1.
* Apache plugin: The "SSLCiphers" option gives control over the
encryption algorithms to use with TLS connections.
* Barometer plugin: This new plugin reads sensor data from various
Freescale and Bosch digital barometers.
* Battery plugin: Reporting values as percentages and reporting degraded
batteries has been added.
* Battery plugin: Support for reading values from sysfs on Linux has
been added.
* Battery plugin: The value for current is no longer supplied unless the
battery provides this information.
* BIND plugin: Bind's XML v3 API is now supported.
* Ceph plugin: This new plugin collects statistics from the Ceph
distributed storage system.
* ConnTrack plugin: Support for reporting values as percentages as well
as legacy conntrack files in "/proc" has been added.
* CPU plugin: The plugin is now able to report values as percentages and
aggregate values per-state and per-CPU.
* cURL-JSON plugin: Extracting values from complex JSON structures has
been enhanced.
* cURL-JSON plugin: Intervals can now be configured on a per-URL basis.
* cURL-JSON, cURL-XML, Write HTTP plugins: These plugins now also follow
HTTP redirects.
* cURL, cURL-JSON, cURL-XML plugins: HTTP Digest authentication has been
implemented.
* DBI, Oracle, PostgreSQL plugins: A "MetadataFrom" parameter has been
added which allows to set metadata from database columns.
* DBI plugin: Querying several databases in parallel is now possible.
* Disk plugin: On the Linux platform, disk names can now get looked up
in udev with the "UdevNameAttr" option.
* Disk plugin: This plugin now collects several additional I/O-related
metrics on the Linux platform.
* DRBD plugin: This new plugin reads Linux's Distributed Replicated
Block Device (DRBD) statistics.
* Exec, UnixSock plugins: The "PUTNOTIF" command now allows to set
metadata on notifications.
* fhcount plugin: This new plugin reports the number of used file handles.
* GenericJMX plugin: A Class Loader for "JMXConnectorFactory" has been
added, allowing the plugin to work with JBOSS > 7.
* IPC plugin: This new plugin collects information related to shared memory.
* Java plugin: Now uses the hostname defined in the configuration file.
* Load plugin: The plugin is now able to report values as percentages.
* Log Logstash plugin: This new plugin writes collectd logs and events
as Logstash JSON formatted events.
* LVM plugin: The plugin collects thin pool data volumes size, and no
longer reports virtual volumes.
* memcached plugin: "listen_disabled_num" are now also reported.
* Memory plugin: Slab memory reporting on the Linux platform has been added.
* Memory plugin: The plugin is now able to report values as percentages.
* Modbus plugin: Selecting between holding and input registers is now
possible.
* Modbus plugin: Support for accessing devices through an RS-485 serial
port has been added.
* Multimeter plugin: This plugin isn't built by default on the AIX
platform anymore.
* MySQL and PostgreSQL plugins: Passing "127.0.0.1" as a host will now
result in the global Hostname being used in metric names.
* MySQL plugin: InnoDB, Select and Sort statistics collection has been added.
* MySQL plugin: The "Alias" and "ConnectTimeout" options have been added.
* Netlink plugin: Support for 64bit netlink counters has been added.
* Network plugin: The "ReconnectInterval" configuration option has been added.
* NFS plugin: Support for NFSv4.0 has been implemented.
* OneWire plugin: Support for more temperature-providing sensor families
has been added.
* OneWire plugin: Support for full OWFS path and more device families
has been implemented.
* OpenLDAP plugin: This new plugin reads monitoring information from
OpenLDAP's "cn=Monitor" subtree.
* OpenVPN plugin: Support for OpenVPN 2.3.0 has been implemented.
* OpenVZ plugin: Various improvements have been made, making the plugin
report values like the other collectd plugins do.
* Perl plugin: A new "listval_filter" method has been added, various
internal cleanups and improvements have been made and a test suite has
been added.
* PostgreSQL plugin: The new "ExpireDelay" option allows skipping older
values pending write when the database slows down.
* PowerDNS plugin: The plugin was updated for stats from pdns 3.4.3.
* Processes plugin: A memory-usage related optimization for low-profile
systems has been added.
* Python plugin: Support for Python3 has been improved, "ModulePath" is
now prepended to "sys.path", and the "get_dataset()" function has been
added to the Python API.
* Redis and Write_Redis plugins: The support library has been switched
from credis to hiredis.
* Redis plugin: Custom commands can now be used to fetch values stored
in Redis.
* Redis plugin: Support for passwords up to 512 characters long has been added.
* Sensors plugin: Support for lm_sensors' power sensors has been added.
* SMART plugin: This new plugin collects SMART statistics from disk drives.
* SNMP plugin: A blacklist/whitelist feature can now be used to filter
which OIDs to collect.
* SNMP plugin: SNMPv3 authentication and encryption support has been
implemented.
* SNMP plugin: Two error messages have been disambiguated.
* Swap plugin: The plugin is now able to report values as percentages.
* Swap plugin: The plugin no longer fails on Linux systems where
"SwapCached" isn't exposed by the kernel.
* Tail plugin: "GaugeInc" and "GaugeAdd" options have been implemented.
* Tail plugin: Intervals can now be configured on a per-File basis.
* TCPConns plugin: The "AllPortsSummary" option, allowing to summarize
all connections, has been added.
* TCPConns plugin: Three metrics were renamed on the AIX platform, for
the sake of consistency.
* Turbostat plugin: This new plugin reads CPU frequency and C-state
residency on modern Intel turbo-capable processors.
* UnixSock plugin: The "GETTHRESHOLD" command has been re-added.
* Varnish plugin: Varnish 4 support has been added, as well as as
monitoring metrics only available in Varnish 4.
* virt plugin: Guests memory usage is now also collected.
* virt plugin: It is now possible to chose between using guests' name or
UUID as plugin_instance.
* virt plugin: The libvirt plugin has been renamed to virt.
* Write Graphite plugin: When the connection to graphite fails,
reconnection attempts are now limited to once per second.
* Write HTTP plugin: Multi-instance support of this plugin has been
improved. The "<URL "url">" block has been deprecated in favor of
"<Node "identifier">".
* Write HTTP plugin: Several TLS-related configuration options have been
added.
* Write HTTP plugin: The "LowSpeedLimit" and "Timeout" options allow to
reset slow/stalled network connections.
* Write HTTP plugin: The size of the payload posted to the HTTP server
can now be controlled with the "BufferSize" option.
* Write Kafka plugin: This new plugin sends data to Apache Kafka, a
distributed messaging queue.
ciomaire, Vincent Bernat, Marc Fournier. #670, #694, #794, #853, #014
* Write Log plugin: This new plugin dispatches collected values to the
configured log destination(s).
* Write Riemann plugin: Extra meta strings are now added as attributes
in notifications.
* Write Riemann plugin: Notification message are now sent to the Riemann
server via the description field.
* Write Riemann plugin: Support for custom attributes has been added.
* Write Riemann plugin: Support had been implemented for sending events
to Riemann in batches (when using TCP), and is enabled by default.
* Write Riemann plugin: The "EventServicePrefix" option has been added,
which adds a prefix to event service names.
* Write Riemann plugin: Threshold checks can now be passed down to the
Riemann server.
* Write Sensu plugin: This new plugin submits values to Sensu, a stream
processing and monitoring system.
* Write TSDB plugin: This new plugin sends data to OpenTSDB, a scalable
time series database.
* ZFS ARC plugin: Support for ZFS-on-Linux has been added.
* Zookeeper plugin: This new plugin reads data from the Apache Zookeeper
"MNTR" command.
v2.10.0
@e2 e2 released this on 27 Mar, 6 commits to master since this release
Major changes
* #304 - lock to Cellulloid 0.16 (if you need Celluloid 0.15, use Listen 2.9.0 and ask for backports if necessary)
Bugfixes
* #301 - avoid BSD adapter crash when watched file doesn't exist
Improvements
* #303 - allow listen tool to watch multiple directories
Facter 2.4.4
Released May 20, 2015
Facter 2.4.4 is a bug fix release in the Facter 2.4 series. It also
deprecates the --puppet command line option, since it caused circular load
dependencies. To run Facter in Puppet’s context, you should use the puppet
facts command instead.
* FACT-96: Deprecate ‘facter –puppet’
* FACT-628: facter returns incorrect value for facter virtual for Solaris Ldoms
* FACT-697: If NetworkManager is installed but not used facter throws a warning.
* FACT-975: On PPC64LE architecture, processors aren’t detected
* FACT-963: Remove pre-suite environment setup for AIO
Facter 2.4.3
Released April 2, 2015
Facter 2.4.3 is an AIO support release in the Facter 2.4 series that also
includes two improvements to performance, and multiple bug fixes.
AIO External Facts Directory Change
Changed external facts directory from /opt/puppetlabs/agent/facts.d to
/opt/puppetlabs/facter/facts.d on *nix. Windows is unchanged.
* FACT-826: Prepend AIO external facts directory for root
Improvements to Performance and Speed
* Reduced calls to ip link show for
performance. Facter::Util:IP.get_interface_value called
get_bonding_interface for every possible value, which could have caused
performance issues if many interfaces were being used.
* Improved the speed of puppetversion in standalone Facter. There is no
notable difference when calling Facter while Puppet is already
running. Previously, running Facter with --timing showed that puppetversion
was by far the slowest fact. This was not true when executed by Puppet, but
gave the impression that Puppet is slow.
Bugs
* FACT-893: selinux_config_policy returns “unknown” on Debian and RHEL7
* FACT-596: Fix to selinux_config_policy, always returned “unknown” on
Debian and RHEL7.
* FACT-825: Default timeout for prtdiag in the ‘virtual’ fact is too low
for large Solaris systems
* FACT-830: xendomains returning empty on debian hosts
* FACT-834: Only load ec2 rest once to avoid double loading warnings
* FACT-888: Facter does not properly detect KVM when CPU type is not
qenu32/qumu64
* FACT-894: Prepend ~/.puppetlabs/opt/facter/facts.d to external search path
for non-root
* FACT-805: use /etc/os-release on CoreOS
Full List of Issues
See Jira for a full list of issues resolved in Facter 2.4.3.
Facter 2.4.2
Facter 2.4.2 was not publicly released, and no packages were provided.
Version 8.10.0 [v8-stable] 2015-05-19
- imfile: add capability to process multi-line messages based on regex
input parameter "endmsg.regex" was added for that purpose. The new
mode provides much more power in processing different multiline-formats.
- pmrfc3164: add new parameters
* "detect.yearAfterTimestamp"
This supports timestamps as generated e.g. by some Aruba Networks
equipment.
* "permit.squareBracesInHostname"
Permits to use "hostnames" in the form of "[127.0.0.1]"; also seen in
Aruba Networks equipment, but we strongly assume this can also happen
in other cases, especially with IPv6.
- supplementary groups are now set when dropping privileges
closes https://github.com/rsyslog/rsyslog/issues/296
Thanks to Zach Lisinski for the patch.
- imfile: added brace glob expansion to wildcard
Thanks to Zach Lisinski for the patch.
- zmq: add the ability for zeromq input and outputs to advertise their
presence on UDP via the zbeacon API.
Thanks to Brian Knox for the contribution.
- added omhttpfs: contributed module for writing to HDFS via HTTP
Thanks to sskaje for the contribution.
- Configure option "--disable-debug-symbols" added which is disabled per
default. If you set the new option, configure won't set the appropriate
compiler flag to generate debug symbols anymore.
- When building from git source we now require rst2man and yacc (or a
replacement like bison).
That isn't any new requirement, we only added missing configure checks.
- Configure option "--enable-generate-man-pages" is now disabled for non git
source builds per default but enforced when building from git source.
- mmpstrucdata: some code cleanup
removed lots of early development debug outputs
- bugfix imuxsock: fix a crash when setting a hostname
Setting a hostname via the legacy directive would lead to a crash
during shutdown caused by a double-free.
Thanks to Tomas Heinrich for the patch.
- bugfix: memory leak in mmpstrucdata
Thanks to Gregoire Seux for reporting this issue.
closes https://github.com/rsyslog/rsyslog/issues/310
- bugfix (minor): default action name: assigned number was one off
see also https://github.com/rsyslog/rsyslog/pull/340
Thanks to Tomas Heinrich for the patch.
- bugfix: memory leak in imfile
A small leak happened each time a new file was monitored based on
a wildcard. Depending on the rate of file creation, this could result
in a serious memory leak.
