v1.10.2-stable
==============
Bug fixes:
- #6495 Event queue memory leak in server cleanup
- #6471 Unable to stop core retry loop in config app
- #6460 TLS memory leak on Linux server when using client
- #6407 Enterprise config app shows auto-config elements
- #6403 Mouse cursor movement drifts over time
- #6392 Hostname alert shows unnecessarily on every open
- #6373 Compile fails on BSD Unix with dl error
Enhancements:
- #6485 Readme for master branch with download help
- #6475 Change master branch to current version
- #6470 CI solution with on-demand containers
- #6397 Remember last server used in Auto Config
- #6375 Support for Qt 5.11 framework on Windows
1.3.2
This new version adds better compilation compatibility with a wider
range of system versions and improvements to the whitelist extension
(acl_wl).
Note: 1.3.1 was exactly the same as 1.3.0 but fixes a version number
problem only...
Changes:
1.8.5
-----
### Additions
- Support for
- `keenspot` (#223)
- `sankakucomplex` (#258)
- `folders` option for `deviantart` to add a list of containing folders to
each file's metadata (#276)
- `captcha` option for `kissmanga` and `readcomiconline` to control CAPTCHA
handling (#279)
- `filename` metadata for files downloaded with youtube-dl (#291)
### Changes
- Adjust `wallhaven` extractors to new page layout:
- use API and add `api-key` option
- removed traditional login support
- Provide original filenames for `patreon` downloads (#268)
- Use e-hentai.org or exhentai.org depending on input URL (#278)
### Fixes
- Fix pagination over `sankaku` popular listings (#265)
- Fix folder and collection extraction on `deviantart` (#271)
- Detect "AreYouHuman" redirects on `readcomiconline` (#279)
- Miscellaneous fixes for `hentainexus`, `livedoor`, `ngomik`
rt allows you to interact with an RT server over HTTP, and offers
an interface to RT's functionality that is better-suited to automation
and integration with other tools.
Release v1.21.2
This is the 1.21.2 patch release for the PHP extension only. Please do not use this release for other language.
PkgSrc:
Fix linking with c-ares.
pypiserver is a minimal PyPI compatible server for pip or easy_install. It is
based on bottle and serves packages from regular directories. Wheels, bdists,
eggs and accompanying PGP-signatures can be uploaded either with pip,
setuptools, twine, pypi-uploader, or simply copied with scp.
freediameter (1.3.0)
Many thanks to Thomas Klausner for his contribution of several important extensions.
freediameter (1.2.1) UNRELEASED; urgency=low
* New extension: rt_randomize (load-balancing on possible destinations)
* New contrib: Gx extension.
* rt_redirect.fdx and rt_load_balance.fdx improvement: use a hash table. Thanks Thomas.
* New hook HOOK_MESSAGE_SENDING to give a last chance to edit messages before they are sent.
This will be mostly used for enforcing interoperability constraints on non-compliant peers.
* Simplified log output. Old output can be recovered with DEBUG_WITH_META build option.
* Updated the internal counters for finer control on the load.
* Fixes in message expiry mechanism.
* Bug fixes in error messages generation and various parts.
* Improvements on shutdown sequence handling.
* Improvements to the dict_dcca_* extensions.
* Improved default CMake configuration.
* Improved build for MacOSX
* Fixes for a few newer operating systems compatibility.
* Fixed default secure Diameter port number 5868 instead of5658 (errata of RFC 6733)
-- Sebastien Decugis <sdecugis@freediameter.net> Sat, 30 Jan 2016 23:38:03 +0800
Release v1.21.1
This is the 1.21.1 patch release of gRPC Core. This patch is for gRPC-Python only. gRPC Python pkgs for 1.21.0 release could not be uploaded to PyPi due to the issue 19105.
Release v1.21.1
This is the 1.21.1 patch release of gRPC Core. This patch is for gRPC-Python only. gRPC Python pkgs for 1.21.0 release could not be uploaded to PyPi.
pkgsrc changes:
- pull upstream patch for ticket #1323
(insert newline to each attached image URL)
Upstream changelog:
mikutter 3.8.8
* <>& in Twitter messages are not converted from HTML entity references
* thanks cob odo
* keep world account settings even if restoring account fails
on loading the world
* pluggaloid 1.1.2
3.42.1 (2019-06-08)
- OS X: Fix a compatibility issue with macOS 10.13
3.42.0 (2019-05-02)
- Fixed a potential crash if the first-launch welcome dialog is shown at an inopportune moment
- Fixed display of subject and issuer details in the certificate verification dialogs with some certificates
- Official binaries are now built againt GnuTLS 3.6.7, minimum required GnuTLS version to build FileZilla is now 3.5.7
3.42.0-rc1 (2019-04-26)
- Switching from using a master password to not saving passwords at all no longer requires entering the master password
- *nix: Fixed support for internationalized domain names on systems having AI_IDN when using SFTP
- Fixed an assertion after importing a manipulated queue file
- When importing sites, any imported passwords are now immediately protected/deleted depending on the password protection settings
- The ability to import Site Manager entries from antique FileZilla 2, last updated over a dozen years ago, has been removed
3.42.0-beta1 (2019-04-21)
- Building and running FileZilla now depends on libfilezilla >= 0.16.0 (https://lib.filezilla-project.org/)
- Limit the maximum length of site, bookmark and filter names to prevent display issues and crashes due to some operating systems badly handling long texts
- When displaying message boxes, insert zero-width spaces into long unbroken words to prevent display issues and crashes due to some operating systems badly handling long texts
- Fix crash in the external IP address resolver
- Fix some assertions if a server sends bad file sizes
- Large refactoring of the socket code
- The thread pool from libfilezilla is now used for all worker threads
ok gdt
Bugfixes
#5332: Duplicate Files Names in Out of Sync List
#5456: Folder marked as "Up to Date" with failed items
#5578: Filesystem Watcher Error on v1.1.0
#5624: Simple Syncthing invocations take a long time to run
#5676: Systemd circular dependency prevents startup
#5531: Flush to database based on size instead of entries
#5571: Dir/symlink updates overwrite conflicts & unscanned files
#5599: Default folder in v1.1.0 isn’t created with useLargeBlocks = true
#5482: minHomeDiskFreePct is still present in fresh configs
#5493: Monitor bug: TERM signaling not passed to syncthing process
#5557: Hashing performance degradation when using large blocks
Enhancements
#1223: Mention license in "About" dialog
#5554: Unnecessary time precision in pendingFolder/pendingDevice config entries
#4921: Syncthing should guard against running old versions with new config
#5065: Add support for TLS1.3
#5346: Systemd unit should declare after=multiuser.target
#5560: Change "Introduced by" icon
#5569: Outdated copyright notes in "About" dialog
#5365: .desktop files: desktop-entry-lacks-keywords-entry
#5445: User/group ownership following parent dir
Other issues:
#1101: Syncthing has no easter eggs
#5480: Better describe exposed volumes in our Docker image
#5077: TestWatchIgnore is flaky (OpenBSD (-current) Test failed)
#5246: TestParentDeletion fails on OpenBSD
#5311: Update prometheus/common/expfmt to pass tests on go1.11
#5454: build.go setup problems with gomodules
#5495: Dockerhub Docker builds fail continously
#5515: Missing string from Transifex
API Changes
Change #5479 introduces the new copyOwnershipFromParent folder
configuration option. The default, false, matches the old behavior of
not copying ownership information.
Since change #5405, large (variable size) blocks are enabled by default for newly created folders.
3.0.2:
What’s New
• The Windows installers now ship with Qt 5.12.3. They previously
shipped with Qt 5.12.1.
• The Windows installers now ship with Npcap 0.995. They previously
shipped with Npcap 0.992.
• The macOS packages are now notarized[1].
Bug Fixes
The following vulnerabilities have been fixed:
• wnpa-sec-2019-19[2] Wireshark dissection engine crash. Bug
15778[3].
The following bugs have been fixed:
• Add (IETF) QUIC Dissector. Bug 13881[4].
• Wireshark Hangs on startup initializing external capture plugins.
Bug 14657[5].
• [oss-fuzz] ERROR: Adding ospf.v3.prefix.options.nu would put more
than 1000000 items in the tree — possible infinite loop. Bug
14978[6].
• Wireshark can call extcap with empty multicheck argument. Bug
15065[7].
• CMPv2 KUR message disection gives unexpected value for
serialNumber under OldCertId fields. Bug 15154[8].
• "(Git Rev Unknown from unknown)" in version string for official
tarball. Bug 15544[9].
• External extcap does not get all arguments sometimes. Bug
15586[10].
• Help file doesn’t display for extcap interfaces. Bug 15592[11].
• Buildbot crash output: randpkt-2019-03-14-4670.pcap. Bug
15604[12].
• Building only libraries on windows fails due to CLEAN_C_FILES
empty. Bug 15662[13].
• Statistics→Conversations→TCP→Follow Stream - incorrect behavior.
Bug 15672[14].
• Wrong NTP timestamp for RTCP XR RR packets (hf_rtcp_xr_timestamp
field). Bug 15687[15].
• ws_pipe: leaks pipe handles on errors. Bug 15689[16].
• Build issue in Wireshark - 3.0.1 on RHEL6. Bug 15706[17].
• ISAKMP: Segmentation fault with non-hex string for IKEv1
Decryption Table Initiator Cookie. Bug 15709[18].
• extcap: non-boolean call arguments can be appended without value
on selector Reload. Bug 15725[19].
• Incorrectly interpreted format of MQTT PUBLISH payload data. Bug
15738[20].
• print.c: Memory leak in ek_check_protocolfilter. Bug 15758[21].
• IETF QUIC dissector incorrectly parses retry packet. Bug
15764[22].
• Bacnet(app): fix wrong value for id 183 (logging-device →
logging-object). Bug 15767[23].
• The SMB2 code to look up decryption keys by session ID assumes
it’s running on a little-endian machine. Bug 15772[24].
• tshark -G folders leaves mmdbresolve process behind. Bug
15777[25].
• Dissector bug, protocol TLS - failed assertion "data". Bug
15780[26].
• WSMP : header_opt_ind field is not correctly set.
Release v1.21.0
Core
Service Config Changes to set channel in transient failure on invalid service config.
Add a backup poller to c-ares resolver to take better advantage of c-ares query timeout/retry logic.
Pass WSA_FLAG_NO_HANDLE_INHERIT flag to the WSASocketA() to avoid handle leaking on the Windows in case of using CreateProcess() on the server.
Add fallback-at-startup into xds.
Retire the GRPC_ARENA_INIT_STRATEGY env variable.
Fix gevent segfault with C-Ares as DNS resolver.
Explicitly call getsockname after accept for unix sockets to get the sun_path.
RBE Windows c-core build.
Loosen the dependency on the googleapis-common-protos-types gem.
pick_first: don't go into TRANSIENT_FAILURE upon empty update when in IDLE.
Add guard to the tv_nsec field of gpr_now return value.
Re-enable ALPN check in gRPC C core SSL stack.
C++
Global config variables migration.
Make cc_grpc_library compatible with native proto_library and cc_proto_library rules.
Add alarm in callback streaming test.
Make C++ Channel Interceptors work for lame channels.
libnice 0.1.16 (2019-05-09)
===========================
Add API to make it easier to implement ICE trickle
Add async closing of agent, to cleanly close TURN allocations
Add Google non-standard NOMINATION STUN attribute
Fix tests on Windows
Fix some racy tests
pkgsrc change: remove "USE_CWRAPPERS=no".
--- 9.14.2 released ---
5233. [bug] Negative trust anchors did not work with "forward only;"
to validating resolvers. [GL #997]
5231. [protocol] Add support for displaying CLIENT-TAG and SERVER-TAG.
[GL #960]
5229. [protocol] Enforce known SSHFP fingerprint lengths. [GL #852]
5228. [cleanup] If trusted-keys and managed-keys are configured
simultaneously for the same name, the key cannot
be rolled automatically. This configuration now
logs a warning. [GL #868]
5224. [bug] Only test provide-ixfr on TCP streams. [GL #991]
5223. [bug] Fixed a race in the filter-aaaa plugin accessing
the hash table. [GL #1005]
5222. [bug] 'delv -t ANY' could leak memory. [GL #983]
5221. [test] Enable parallel execution of system tests on
Windows. [GL !4101]
5220. [cleanup] Refactor the isc_stat structure to take advantage
of stdatomic. [GL !1493]
5219. [bug] Fixed a race in the filter-aaaa plugin that could
trigger a crash when returning an instance object
to the memory pool. [GL #982]
5218. [bug] Conditionally include <dlfcn.h>. [GL #995]
5217. [bug] Restore key id calculation for RSAMD5. [GL #996]
5216. [bug] Fetches-per-zone counter wasn't updated correctly
when doing qname minimization. [GL #992]
5215. [bug] Change #5124 was incomplete; named could still
return FORMERR instead of SERVFAIL in some cases.
[GL #990]
5214. [bug] win32: named now removes its lock file upon shutdown.
[GL #979]
5213. [bug] win32: Eliminated a race which allowed named.exe running
as a service to be killed prematurely during shutdown.
[GL #978]
5211. [bug] Allow out-of-zone additional data to be included
in authoritative responses if recursion is allowed
and "minimal-responses" is disabled. This behavior
was inadvertently removed in change #4605. [GL #817]
5210. [bug] When dnstap is enabled and recursion is not
available, incoming queries are now logged
as "auth". Previously, this depended on whether
recursion was requested by the client, not on
whether recursion was available. [GL #963]
5209. [bug] When update-check-ksk is true, add_sigs was not
considering offline keys, leaving record sets signed
with the incorrect type key. [GL #763]
5208. [test] Run valid rdata wire encodings through totext+fromtext
and tofmttext+fromtext methods to check these methods.
[GL #899]
5207. [test] Check delv and dig TTL values. [GL #965]
5206. [bug] Delv could print out bad TTLs. [GL #965]
5205. [bug] Enforce that a DS hash exists. [GL #899]
5204. [test] Check that dns_rdata_fromtext() produces a record that
will be accepted by dns_rdata_fromwire(). [GL #852]
5203. [bug] Enforce whether key rdata exists or not in KEY,
DNSKEY, CDNSKEY and RKEY. [GL #899]
5202. [bug] <dns/ecs.h> was missing ISC_LANG_ENDDECLS. [GL #976]
5190. [bug] Ignore trust anchors using disabled algorithms.
[GL #806]
Update bind911 to 9.11.7, this is maintenance releases.
--- 9.11.7 released ---
5233. [bug] Negative trust anchors did not work with "forward only;"
to validating resolvers. [GL #997]
5232. [bug] Fix a high-load race/crash in isc_socket_cancel().
[GL #834]
5231. [protocol] Add support for displaying CLIENT-TAG and SERVER-TAG.
[GL #960]
5229. [protocol] Enforce known SSHFP fingerprint lengths. [GL #852]
5228. [cleanup] If trusted-keys and managed-keys are configured
simultaneously for the same name, the key cannot
be rolled automatically. This configuration now
logs a warning. [GL #868]
5224. [bug] Only test provide-ixfr on TCP streams. [GL #991]
5222. [bug] 'delv -t ANY' could leak memory. [GL #983]
5221. [test] Enable parallel execution of system tests on
Windows. [GL !4101]
5218. [bug] Conditionally include <dlfcn.h>. [GL #995]
5214. [bug] win32: named now removes its lock file upon shutdown.
[GL #979]
5213. [bug] win32: Eliminated a race which allowed named.exe running
as a service to be killed prematurely during shutdown.
[GL #978]
5210. [bug] When dnstap is enabled and recursion is not
available, incoming queries are now logged
as "auth". Previously, this depended on whether
recursion was requested by the client, not on
whether recursion was available. [GL #963]
5209. [bug] When update-check-ksk is true, add_sigs was not
considering offline keys, leaving record sets signed
with the incorrect type key. [GL #763]
5208. [test] Run valid rdata wire encodings through totext+fromtext
and tofmttext+fromtext methods to check these methods.
[GL #899]
5207. [test] Check delv and dig TTL values. [GL #965]
5205. [bug] Enforce that a DS hash exists. [GL #899]
5204. [test] Check that dns_rdata_fromtext() produces a record that
will be accepted by dns_rdata_fromwire(). [GL #852]
5203. [bug] Enforce whether key rdata exists or not in KEY,
DNSKEY, CDNSKEY and RKEY. [GL #899]
5197. [bug] dig could die in best effort mode on multiple SIG(0)
records. Similarly on multiple OPT and multiple TSIG
records. [GL #920]
5194. [bug] Enforce non empty ZOMEMD hash. [GL #899]
5193. [bug] EID and NIMLOC failed to do multi-line output
correctly. [GL #899]
5192. [bug] configure --fips-mode failed. [GL #946]
5191. [port] Darwin: dlzexternal/driver.so was not building.
[GL #948]
5189. [cleanup] Remove revoked root DNSKEY from bind.keys. [GL #945]
5187. [test] Set time zone before running any tests in dnstap_test.
[GL #940]
5185. [bug] PKCS11 build could fail if ECDSA is not supported.
[GL #935]
5184. [bug] Missing unlocks in sdlz.c. [GL #936]
5182. [bug] Fix a high-load race/crash in handling of
isc_socket_close() in resolver. [GL #834]
5180. [bug] delv now honors the operating system's preferred
ephemeral port range. [GL #925]
5179. [cleanup] Replace some vague type declarations with the more
specific dns_secalg_t and dns_dsdigest_t.
Thanks to Tony Finch. [GL !1498]
5178. [bug] Handle EDQUOT (disk quota) and ENOSPC (disk full)
errors when writing files. [GL #902]
5176. [tests] Remove a dependency on libxml in statschannel system
test. [GL #926]
5175. [bug] Fixed a problem with file input in dnssec-keymgr,
dnssec-coverage and dnssec-checkds when using
python3. [GL #882]
5174. [doc] Tidy dnssec-keygen manual. [GL !1557]
5172. [bug] nsupdate now honors the operating system's preferred
ephemeral port range. [GL #905]
5170. [test] Added --with-dlz-filesystem to feature-test. [GL !1587]
5168. [test] Do not crash on shutdown when RPZ fails to load. Also,
keep previous version of the database if RPZ fails to
load. [GL #813]
5167. [bug] nxdomain-redirect could sometimes lookup the wrong
redirect name. [GL #892]
_ Fix detection of utun support on OS X (#18).
_ Fix Cisco DTLSv1.2 support for AES256-GCM-SHA384.
_ Fix Solaris 11.4 build by properly detecting memset_s().
_ Fix recognition of OTP password fields (#24).
2019-04-21 - libfilezilla 0.16.0 released
New features:
Add fz::socket
Add operator*= to fz::duration
fz::event_loop can now also be created using fz::thread_pool or threadless.
Bugfixes and minor changes:
fz::async_task now releases the thread back to the pool immediately when the task has completed without waiting for the join
*nix: Fix file descriptor leaks on exec()
1.22 - 2019-04-30
- Add 'b' and 'B' keys to connections tab (Daniel Kamil Kozar)
- Add 'max_ul_per_user' setting to support multiple upload slots per user (Daniel Kamil Kozar)
- Add support for TLS ALPN (Denys Smirnov)
- Fix build against ncurses with separate libtinfo (Lars Wendler)
0.6.4:
Pin selectors2 to Python versions <= 3.4
Fix config examples to actually use the nc namespace
fix: correctly set port for paramiko when using ssh_config file
test: add test to check ProxyCommand uses correct port
Update commits for py3
Enhance Alcatel-Lucent -support
Juniper RPC: allow specifying format in CompareConfiguration
Parsing of NETCONF 1.1 frames no longer decodes each chunk of bytes...
Fix filter in create_subscription
Validate 'with-defaults' mode based on supported modes advertised in capability URI
Changes:
### Additions
- Support for
- `patreon` (#226)
- `hentainexus` (#256)
- `date` metadata fields for `pixiv` (#248), `instagram` (#250),
`exhentai`, and `newgrounds`
### Changes
- Improved `flickr` metadata and video extraction (#246)
### Fixes
- Download original GIF animations from `deviantart` (#242)
- Ignore missing `edge_media_to_comment` fields on `instagram` (#250)
- Fix serialization of `datetime` objects for `--write-metadata` (#251, #252)
- Allow multiple post-processor command-line options at once (#253)
- Prevent crash on `booru` sites when no tags are available (#259)
- Fix extraction on `instagram` after `rhx_gis` field removal (#266)
- Avoid Cloudflare CAPTCHAs for Python interpreters built
against OpenSSL < 1.1.1
- Miscellaneous fixes for `luscious`
New in version 3.5
==================
Enhancements
------------
* Add support for more accurate reading of PHC on Linux 5.0
* Add support for hardware timestamping on interfaces with read-only
timestamping configuration
* Add support for memory locking and real-time priority on FreeBSD,
NetBSD, Solaris
* Update seccomp filter to work on more architectures
* Validate refclock driver options
Bug fixes
---------
* Fix bindaddress directive on FreeBSD
* Fix transposition of hardware RX timestamp on Linux 4.13 and later
* Fix building on non-glibc systems
Samba 4.10.3, 4.9.8 and 4.8.12 Security Releases Available
These are security releases in order to address CVE-2018-16860 (Samba AD DC S4U2Self/S4U2Proxy unkeyed checksum).
Some vpn clients pass multiple domains for DNS search scope, which
requires that we use search rather than domain. The generic path was
already using search, so just switch the resolvconf path to also use
search.
In a container, /etc/nsswitch.conf might not exist.
Silence the error grep: /etc/nsswitch.conf: No such file or directory
Inside a container, running 'ip route flush cache' can spam with
"ip: can't open '/proc/sys/net/ipv4/route/flush': Read-only file system"
Hide that the error output for that command.
Changes:
2019.05.11
----------
Core
* [utils] Transliterate "þ" as "th" (#20897)
Extractors
+ [cloudflarestream] Add support for videodelivery.net (#21049)
+ [byutv] Add support for DVR videos (#20574, #20676)
+ [gfycat] Add support for URLs with tags (#20696, #20731)
+ [openload] Add support for verystream.com (#20701, #20967)
* [youtube] Use sp field value for signature field name (#18841, #18927,
#21028)
+ [yahoo:gyao] Extend URL regular expression (#21008)
* [youtube] Fix channel id extraction (#20982, #21003)
+ [sky] Add support for news.sky.com (#13055)
+ [youtube:entrylistbase] Retry on 5xx HTTP errors (#20965)
+ [francetvinfo] Extend video id extraction (#20619, #20740)
* [4tube] Update token hosts (#20918)
* [hotstar] Move to API v2 (#20931)
* [fox] Fix API error handling under python 2 (#20925)
+ [redbulltv] Extend URL regular expression (#20922)
