Upstream changes:
3.13008 2010-08-26
- use HTTPS for all OAuth token negotiation steps
3.13007 2010-07-06
- decode_html_entities now decodes all fields (incl source in search
results)
- Role::OAuth doc patch by Doug Bell <doug@plainblack.com>
- fixed: incompatibility between "since" and InflateObjects
3.13006 2010-06-18
- test fix: bump the skip count for a new test in t/unicode.t for
optional module
3.13005 2010-06-18
- fixed: since (synthetic arg) filtering
- fixed: don't use args for OAuth signature on multi-part mime posts
3.13004 2010-06-18
- fixed: OAuth signature error with unicode args (RT#58493)
3.13003 2010-05-21
- production release with Lists API refactor and OAuth changes
3.13002_03 2010-05-13
- fixed: generate new OAuth authorization hearder on retry
(RetryOnError trait)
3.13002_02 2010-05-12
- fixed: removed redundant alias declarations
3.13002_01 2010-05-12
- Refactored the Lists API to use Net::Twitter::API
3.13001 2010-11
- use POST with Authorization header for XAuth (per Twitter
documentation)
- replace homegrown XAuth support with Net::OAuth's native support
- accommodate 2 base URLs for API::Search (search and trends* methods
use different base URLs)
- enable SSL support for API::Search
3.13000 2010-05-09
- added support and documentation for optional timeline parameter
skip_user
- fixed tests: plan was called twice when LWP was too old
- added friends_incoming and friendships_outgoing methods
3.12000 2010-03-19
- added new API methods: retweeted_by and retweeted_by_ids
- fixed: t/51_since.t was actually connecting to twitter
==============================
Release Notes for Samba 3.3.14
September 14, 2010
==============================
This is a security release in order to address CVE-2010-3069.
o CVE-2010-3069:
All current released versions of Samba are vulnerable to
a buffer overrun vulnerability. The sid_parse() function
(and related dom_sid_parse() function in the source4 code)
do not correctly check their input lengths when reading a
binary representation of a Windows SID (Security ID). This
allows a malicious client to send a sid that can overflow
the stack variable that is being used to store the SID in the
Samba smbd server.
--- 4.0.12 2010/08/17
Z39.50 facet support. Facet specifications are passed for search in
other-information with ASN.1 as defined in facet.asn and OID
.10.1000.81.5 . Facets are expressed as an Attribute list as known
from Type-1/RPN queries. Type 1 is field. Type 2 is sort order. Type
3 is limit (number of entries to get in response). yaz-ztest returns
dummy facets if a client asks for them.
1.06
- depend to Test::SharedFork 0.14. It fixes issue with Test::Builder2.
1.05
- workaround for $@ issue in test case.
Data::Util's method modifier clears $@.
Addressable is a replacement for the URI implementation that is part of
Ruby's standard library. It more closely conforms to the relevant RFCs and
adds support for IRIs and URI templates.
* Add LICENSE.
* Ajust new ruby package's framework.
* Add PKG_DESTDIR_SUPPORT.
* Add "-Ku" option on shbang line to specify scripts' character encoding
explicitly. (Hopefully, it work on ruby19).
2008-03-19 Simon Leinen <simon.leinen@switch.ch>
* lib/SNMP_Session.pm: Improved initialization of the flags for
non-blocking behavior in receive_response_3(). The __DIE__ and
__WARN__ signal handlers should be bound to the defaults, because
the caller might be binding those and get in our way. Also, we
only want to compute the flags once, on initialization.
2007-12-22 Simon Leinen <simon.leinen@switch.ch>
* lib/SNMP_util.pm, lib/SNMP_Session.pm, lib/BER.pm:
Upgraded to Artistic License 2.0.
Copyright notice updated for 2008.
* Artistic: Upgraded to Artistic License 2.0, from
http://svn.perl.org/viewcvs/parrot/trunk/LICENSE?view=markup&rev=19096
2007-11-01 Simon Leinen <simon.leinen@switch.ch>
* lib/SNMP_util.pm: New MIB parsing code from Mike Mitchell.
2007-10-13 Simon Leinen <simon.leinen@switch.ch>
* lib/SNMP_Session.pm ($VERSION):
Upgraded to 1.11, to pick up change to SNMP_util.pm.
* changes.html: Document loop detection fix in SNMP_util.pm.
* faq.html, index.html: Updated my e-mail address.
* README, README.SNMP_util, lib/SNMP_Session.pm, lib/SNMP_util.pm,
changes.html: Changed Tobi Oetiker's mail address.
* README, index.html: Changed MRTG URL.
* lib/SNMP_util.pm: [All changes from Mike Mitchell]
Global replace || => or, && => and, to avoid precedence errors.
(snmpwalk_flg): Improved loop detection.
2007-10-13 Simon Leinen <simon.leinen@switch.ch>
* lib/SNMP_Session.pm ($VERSION): Upgraded to 1.11, to pick up
change to SNMP_util.pm.
* README, README.SNMP_util, changes.html, lib/SNMP_Session.pm:
Changed Tobi Oetiker's mail address.
* lib/SNMP_util.pm: [All changes from Mike Mitchell]
Changed Tobi Oetiker's mail address.
Global replace || => or, && => and, to avoid precedence errors.
(snmpwalk_flg): Improved loop detection.
* README: Changed MRTG URL.
2007-05-18 Simon Leinen <simon.leinen@switch.ch>
* README, changes.html, index.html: Updated copyright.
* lib/SNMP_util.pm (Check_OID):
Fix regexp for qualified OID case (Mike Mitchell).
2007-05-03 Simon Leinen <simon.leinen@switch.ch>
* lib/SNMP_Session.pm: Added Mike Fischer as a contributor.
($VERSION): Incremented to 1.10.
(receive_response_3): Added optional "dont_block" argument. If
this is present and non-zero, pass MSG_DONTWAIT to the recv()
call. MSG_DONTWAIT is wrapped in an eval, to avoid breaking the
code on systems that don't have the flag.
(request_response_5): Pass dont_block=1 to receive_response_3.
According to Mike Fisher, Linux sometimes blocks on recv() even
though a select() for readability has returned, for example when a
checksum fails.
2007-05-03 Simon Leinen <simon.leinen@switch.ch>
* lib/SNMP_Session.pm: Added Mike Fischer as a contributor.
($VERSION): Incremented to 1.10.
(receive_response_3): Added optional "dont_block" argument. If
this is present and non-zero, pass MSG_DONTWAIT to the recv()
call. MSG_DONTWAIT is wrapped in an eval, to avoid breaking the
code on systems that don't have the flag.
(request_response_5): Pass dont_block=1 to receive_response_3.
According to Mike Fisher, Linux sometimes blocks on recv() even
though a select() for readability has returned, for example when a
checksum fails.
2007-01-06 Simon Leinen <simon.leinen@switch.ch>
* lib/BER.pm: Updated copyright notice.
(pretty_print): Use PDU names according to RFC3416.
2006-12-21 Simon Leinen <simon.leinen@switch.ch>
* test/cricket-genconf-sensor:
Try to install newly generated configuration, where possible.
* test/cricket-genconf-sensor: Added header comment.
* test/cricket-genconf-sensor: New script.
2006-12-15 Simon Leinen <simon.leinen@switch.ch>
* test/entls (router_pretty_name):
New subroutine, greps RANCID configuration file
for `hostname' command. Caches the result so that files are only
opened once.
(print_physical): Use new forms of per-router defaults.
* test/entls:
Changed so that `-t' generates a Cricket configuration file to measure
all transceivers that support DOM (Digital Optical Monitoring). This
involves some structural changes.
(print_phys_tree): Implemented in terms of the new
`print_phys_tree_1'.
(print_phys_tree_1): Maintain a stack of parent nodes when traversing
the node tree. This stack is stored in each node's `parent_stack'
slot, and can be used by the node class' `tostring' method.
* test/entls ($print_vendor_type, $print_ent_physical_index):
New variables.
(Entity::PhysicalEntry::tostring): Added optional printing of index
and entPhysicalVendorType, controlled by the above variables.
2006-10-12 Simon Leinen <simon.leinen@switch.ch>
* lib/SNMP_Session.pm, lib/BER.pm: Updated copyright string.
2006-08-06 Simon Leinen <simon.leinen@switch.ch>
* faq.html:
Updated SNMPv3 text, mentioning that SNMPv3 is supported by MRTG 2.13
and up, using Net::SNMP.
* lib/SNMP_util.pm (snmpLoad_OID_Cache):
Strip single or double quotes around the OID and
value. This allows us to read SunNet Manager OID files, which are
also distributed by e.g. Cisco (ftp://ftp.cisco.com/pub/mibs/oid).
Idea by Jan van Keulen, code cleanup by Mike Mitchell.
2006-07-13 Simon Leinen <simon.leinen@switch.ch>
* lib/SNMP_Session.pm ($VERSION): Incremented to 1.08.
* lib/SNMP_Session.pm (BEGIN):
Bind the __DIE__ signal handler, so that detection of IPv6
capability works even when someone else has bound that handler.
(Patch from Tobi Oetiker.)
2006-04-09 Simon Leinen <simon.leinen@switch.ch>
* lib/SNMP_Table.pm (snmp_row_to_object): Added.
2006-04-05 Simon Leinen <simon.leinen@switch.ch>
* test/trap-listener: Added prettyfication of OIDs.
Suppressed less-than-useful output such as the trap community or the
source port.
2006-03-16 Simon Leinen <simon.leinen@switch.ch>
* README: Update copyright notice for 2006.
2006-02-17 Simon Leinen <simon.leinen@switch.ch>
* test/entls: New "entls" script.
pkgsrc changes:
- remove patch which remove a sub signature - it's fixed upstream
Upstream changes:
1.23 Sun Jun 13 2010
- Setting values for read only tied hash %! is illegal. removing code.
1.22 Fri Jun 11 09:00:00 CST 2010
- Remove Apache (mod_perl) as a dep for this module
1.21 Fri Jun 11 01:00:00 CST 2010
- Move sub around to fix prototyping bug.
- Remove broken ident hosts from list so tests don't break. Right now
i know of no working public ident hosts. Patches welcome!
- Update Makefile.PL with new options
- Add META.yml to module
- use %! to determine if error was EINPROGRESS to function in other
languages
pkgsrc changes:
- adjust dependencies according to upstream's META.yml
Upstream changes:
0.27 Wed, 16 Jun 2010 20:39:59 UTC
Added class for Yahoo! access token refresh request (thanks Marc Mims)
0.26 Wed, 16 Jun 2010 19:59:04 UTC
Message::encode no longer tries fix potential 'double-encoding' (in any
case it appeared to be doing it wrong). Now it just complains if you
try to pass in undecoded strings. (thanks Daisuke Maki and KATOU Akira)
0.25 Sun, 21 Mar 2010 03:50:40 UTC
Gah, $VERSION lameness
0.24 Sun, 21 Mar 2010 03:39:40 UTC
Fix test breakage in 0.23
0.23 Thu, 18 Mar 2010 17:23:36 UTC
Removed UNIVERSAL::require dependency
Net::OAuth->request constructor now dies if module fails to load
(thanks Mike Schleif)
Fixed https://rt.cpan.org/Ticket/Display.html?id=55635 Incorrect
dependencies (thanks Jens Rehsack)
Replaced die() with croak()
0.73 Tuesday March 16, 2010, 10:45:00 PM -0700
* MANIFEST
* t/28_parser_bugs_50013.t (deleted)
* t/90_rt50013_parser_bugs.t (added)
Rename of t/28_parser_bugs_50013.t to fit more universal scheme
for test suites that directly address specific RT bugs.
* lib/RPC/XML/Server.pm
* t/90_rt54183_sigpipe.t (added)
RT #54183: Provide handling of SIGPIPE when sending the
response to the client, in case they've terminated the
connection.
* MANIFEST
Forgot to add the new test suite to MANIFEST.
* lib/RPC/XML/Server.pm
Forgot to update the module version number.
* lib/RPC/XML.pm
Fix typo in reftype() call.
* lib/RPC/XML.pm
* t/90_rt54494_blessed_refs.t (added)
RT #54494: Fix handling of blessed references in smart_encode().
* lib/Apache/RPC/Server.pm
* lib/Apache/RPC/Status.pm
* lib/RPC/XML.pm
* lib/RPC/XML/Client.pm
* lib/RPC/XML/Function.pm
* lib/RPC/XML/Method.pm
* lib/RPC/XML/Parser.pm
* lib/RPC/XML/Parser/XMLLibXML.pm
* lib/RPC/XML/Parser/XMLParser.pm
* lib/RPC/XML/ParserFactory.pm
* lib/RPC/XML/Procedure.pm
* lib/RPC/XML/Server.pm
Large-scale code clean-up driven by Perl::Critic. All critic
flags down to severity 1 now removed.
* MANIFEST
Forgot to add t/90_rt54494_blessed_refs.t when it was created.
================================
2009-10-14 03:06:11 -0400 v1_051
================================
Prepare for release.
Add a 00_info.t test to help debug platform and dependency based
issues.
Administrivia to convert the repository to git.
================================
2009-08-28 06:46:24 +0000 v1_050
================================
Jonathan Yu found a warning while packaging this distro for Debian.
I've applied his patch from rt.cpan.org 48335, and I took his
suggestion to start using Test::NoWarnings.
Philip Gwyn found a strange case where IPv6 localhost was returned as
::1 rather than the long form. Added a check for both forms.
Bumped the version to 1.050 for release.
Fix a POD error (line too long, broken link to RT) reported by
Jonathan Yu, ironically in rt.cpan.org ticket 48336. :)
Fix a warning for /etc/hosts files that contain blank lines or
comments. Suggested by Leonid Rashkovsky in e-mail.
===============================
2009-07-28 06:01:07 +0000 v1_04
===============================
Use latest POE, and prepare for a new release.
Added a machine-readable repository directory to the distribution.
Documented the bug tracker, repository, and other resource URLs.
Resolve (heh) rt.cpan.org ticket #13899. AAAA requests will check for
IPv6 addresses in /etc/hosts or your favorite operating system's
equivalent.
Resolve rt.cpan.org ticket #13492 by Sébastien Aperghis-Tramoni,
#14723 by Branislav Gerzo, and umbrella ticket #15009 by cycling
through the list of resolvers known to Net::DNS if the top one times
out.
Applied a patch by René Mayorga, resolving rt.cpan.org ticket 41313.
René's patch uses Net::DNS to find poe.perl.org's address and use
that instead of hardcoded values. Thanks also go to René for
submitting the patch through rt.cpan.org. I may never have discovered
ticket 506915 on bugs.debian.org.
===============================
2009-02-18 04:48:06 +0000 v1_03
===============================
Fix warnings uncovered by POE's recent global-warning issue.
Make it safe to have more than one PoCoDNS object.
Somehow this bug has been no problem for people this entire time. An
amazing trick really :D
===============================
2009-01-13 20:08:27 +0000 v1_02
===============================
A host-file test was failing because its address segments were wider
than single octets.
===============================
2008-10-29 16:18:54 +0000 v1_01
===============================
New version.
Accommodate DNS change for poe.perl.org in the tests.
Apply Martin Ferrari's patch to skip network tests if there's no
detectable network. Resolves rt.cpan.org ticket 33677.
* Fixed potential local privilege escalation vulnerability in
Windows service.
* Added Python-based based alternative build system for Windows using
Visual Studio 2008 (in win directory).
* When aborting in a non-graceful way, try to execute do_close_tun in
init.c prior to daemon exit to ensure that the tun/tap interface is
closed and any added routes are deleted.
* Fixed an issue where AUTH_FAILED was not being properly delivered
to the client when a bad password is given for mid-session reauth,
causing the connection to fail without an error indication.
* Don't advance to the next connection profile on AUTH_FAILED errors.
* Fixed an issue in the Management Interface that could cause
a process hang with 100% CPU utilization in --management-client
mode if the management interface client disconnected at the
point where credentials are queried.
* Fixed an issue where if reneg-sec was set to 0 on the client,
so that the server-side value would take precedence,
the auth_deferred_expire_window function would incorrectly
return a window period of 0 seconds. In this case, the
correct window period should be the handshake window period.
* Modified ">PASSWORD:Verification Failed" management interface
notification to include a client reason string:
>PASSWORD:Verification Failed: 'AUTH_TYPE' ['REASON_STRING']
* Enable exponential backoff in reliability layer retransmits.
* Set socket buffers (SO_SNDBUF and SO_RCVBUF) immediately after
socket is created rather than waiting until after connect/listen.
* Management interface performance optimizations:
1. Added env-filter MI command to perform filtering on env vars
passed through as a part of --management-client-auth
2. man_write will now try to aggregate output into larger blocks
(up to 1024 bytes) for more efficient i/o
* Fixed minor issue in Windows TAP driver DEBUG builds
where non-null-terminated unicode strings were being
printed incorrectly.
* Fixed issue on Windows with MSVC compiler, where TCP_NODELAY support
was not being compiled in.
* Proxy improvements:
* Implemented http-proxy-override and http-proxy-fallback directives to make it
easier for OpenVPN client UIs to start a pre-existing client config file with
proxy options, or to adaptively fall back to a proxy connection if a direct
connection fails.
* Implemented a key/value auth channel from client to server.
* Fixed issue where bad creds provided by the management interface
for HTTP Proxy Basic Authentication would go into an infinite
retry-fail loop instead of requerying the management interface for
new creds.
pkgsrc changes:
- add license definition (see https://rt.cpan.org/Ticket/Display.html?id=60954)
- add homepage
- clarify that it requires a c compiler and Module::Build
Upstream changes:
0.43.1 2010-06-11 21:45:15 America/Montreal
* Change a test to use explicit number of tests instead of 'done_testing'.
0.43.0 May 23rd, 2010
* Fixed UDP checksum. Thanks to Hal Finkel. (RT#56235)
* Added Joel Knight's code for IPv6 support from
http://www.packetmischief.ca/code/netpacket/.
Thanks to Doug Farley for the bug report. (RT#57560)
0.42.0 March 25th, 2010
* Updated license to Artistic 2.0
* Fixed bad call to 'data()' in ICMP. Thanks to Ventz Petkov.
(RT#52627)
Features:
* Builtin root hints contain AAAA for I.ROOT-SERVERS.NET.
* unbound.h has extern "C" statement for easier include in c++.
* added feature to print configure date, target and options with -h.
* added feature to print event backend system details with -h.
* (ports and works on Minix 3.1.7). On Minix, add /usr/gnu/bin to PATH,
use ./configure AR=/usr/gnu/bin/gar and gmake.
* GOST enabled if SSL is recent and ldns has GOST enabled too.
Bug Fixes:
* Fix TCPreply on systems with no writev, if just 1 byte could be sent.
* Fix to use one pointer less for iterator query state store_parent_NS.
* Max referral count from 30 to 130, because 128 one character domains is valid DNS.
* added documentation for the histogram printout to syslog.
* Fix assertion failure reported by Kai Storbeck from XS4ALL, the assertion was wrong.
* updated ldns tarball.
* iana portlist updated.
* Unbound reports libev or libevent correctly in logs in verbose mode.
* Fix handling of corner case reply from lame server, follows rfc2308.
* Fix jostle list bug found by Vince (luoce at cnnic), it caused the qps in
overload situations to be about 5 qps for the class of shortly serviced
queries.
* Fix the max number of reply-address count to be applied for duplicate queries,
and not for new query list entries.
* Fix RFC4035 compliance with 2.2 statement that the DNSKEY at apex must be
signed with all algorithms from the DS rrset at the parent.
* Fix validation of qtype DNSKEY when a key-cache entry exists but no rr-cache
entry is used (it expired or prefetch), it then goes back up to the DS or
trust-anchor to validate the DNSKEY.
* log if a server is skipped because it is on the donotquery list, at verbosity
4, to enable diagnosis why no queries to 127.0.0.1.
* failure to chown the pidfile is not fatal any more.
* Neat function prototypes, unshadowed local declarations.
* Fix integer underflow in prefetch ttl creation from cache.
This fixes a potential negative prefetch ttl.
* Changed the defaults for num-queries-per-thread/outgoing-range.
* Fix ldns_rr_clone to copy question rrs properly.
* Fix ldns_sign_zone(_nsec3) to clone the soa for the new zone.
* Fix ldns_wire2dname size check from reading 1 byte beyond buffer end.
* Fix ldns_wire2dname from reading 1 byte beyond end for pointer.
* Fix crash using GOST for particular platform configurations.
* extern C declarations used in the header file.
* Removed debug fprintf from resolver.c.
* ldns-signzone checks if public key file is for the right zone.
* NETLDNS, .NET port of ldns functionality, in contrib.
* Fix handling of comments in resolv.conf parse.
* GOST code enabled if SSL recent, RFC 5933.
* bugfix #317: segfault util.c ldns_init_random() fixed.
* Fix ldns_tsig_mac_new: allocate enough memory for the hash, fix use of
b64_pton_calculate_size.
* Fix ldns_dname_cat: size calculation and handling of realloc().
* Fix ldns_rr_pop_rdf: fix handling of realloc().
* Fix ldns-signzone for single type key scheme: sign whole zone if there
are only KSKs.
* Fix ldns_resolver: also close socket if AXFR failed (if you don't,
it would block subsequent transfers).
* Fix drill: allow for a secure trace if you use DS records as trust
anchors.
1.6.5
* Catch \X where X is a digit as an error.
* Fix segfault when ip6 ldns resolver only has ip4 servers.
* Fix NSEC record after DNSKEY at zone apex not properly signed.
* Fix syntax error if last label too long and no dot at end of domain.
* Fix parse of \# syntax with space for type LOC.
* Fix ldns_dname_absolute for escape sequences, fixes some parse errs.
* bugfix #297: linking ssl, bug due to patch submitted as #296.
* bugfix #299: added missing declarations to host2str.h
* ldns-compare-zones -s to not exclude SOA record from comparison.
* --disable-rpath fix
* fix ldns_pkt_empty()
* fix ldns_resolver_new_frm_fp not ignore lines after a comment.
* python code for ldns_rr.new_question_frm_str()
* Fix ldns_dnssec_verify_denial: the signature selection routine.
* Type TALINK parsed (draft-ietf-dnsop-trust-history).
* bugfix #304: fixed dead loop in ldns_tcp_read_wire() and
ldns_tcp_read_wire_timeout().
* GOST support with correct algorithm numbers. The plan is to make it
enabled if openssl support is detected, but it is disabled by
default in this release because the RFC is not ready.
* Fixed comment in rbtree.h about being first member and data ptr.
* Fixed possibly leak in case of out of memory in ldns_native2rdf...
* ldns_dname_is_wildcard added.
* Fixed: signatures over wildcards had the wrong labelcount.
* Fixed ldns_verify() inconsistent return values.
* Fixed ldns_resolver to copy and free tsig name, data and algorithm.
* Fixed ldns_resolver to push search onto searchlist.
* A ldns resolver now defaults to a non-recursive resolver that handles
the TC bit.
* ldns_resolver_print() prints more details.
* Fixed ldns_rdf2buffer_str_time(), which did not print timestamps
on 64bit systems.
* Make ldns_resolver_nameservers_randomize() more random.
* bugfix #310: POSIX specifies NULL second argument of gettimeofday.
* fix compiler warnings from llvm clang compiler.
* bugfix #309: ldns_pkt_clone did not clone the tsig_rr.
* Fix gentoo ebuild for drill, 'no m4 directory'.
* bugfix #313: drill trace on an empty nonterminal continuation.
Pkgsrc changes:
- adjust dependencies
Upstream changes:
1.04
- fixed local $@ issue. this happens on some version of perl5.
1.03
- release to cpan
- fixed win32 issue(charsbar)
1.02_02
- use randomness on finding empty port(suggested by kazuhooku)
- try to connect the port before bind(Tatsuhiko Miyagawa)
1.02_01
- better cleanup code by RAII pattern.
https://rt.cpan.org/Ticket/Display.html?id=60657
(reported by dgl)
1.02
- lazy loading issue was fixed at Test::SharedFork 0.12.
Depend to it.
https://rt.cpan.org/Public/Bug/Display.html?id=60426
(reported by J.)
1.01
- remove unused deps for use_test_base().
1.00
- bump up version!
0.16_02
- oops. packaging miss.
0.16_01
- Do not depend to IO::Socket::INET 1.31.
Test::TCP works well with older IO, I hope.
(suggested by mst)
Changes:
2010/08/15: version 3.0.4 = tag release-3-0-4
7280: BT: fix make_torrent creates sometimes torrents without name argument
(ygrek)
7278: configure: more useful --enable-debug (ygrek)
- enable also for ocamlopt
- enable when profiling
7274: DC: Increase message buffer size to fix communication with bots
(somedamnthing)
2010/08/08
7267: http proxy authentication support (ygrek)
- new options http_proxy_login and http_proxy_password control authentication
for TCP CONNECT and plain HTTP requests through http proxy
2010/08/07
7273: Fix compile errors on Debian/kFreeBSD
7272: Configure: Use Ocaml 3.12.0 as default compiler
7269: Fix typos (glondu)
-------------------------------------------------------------------------------
2010/08/01: version 3.0.3 = tag release-3-0-3
2010/07/28
7262: BT: improve porttest (ygrek)
7254: BT/bandwidth controllers: accept incoming connections while downloading
- should improve upload when downlink is saturated (ygrek)
2010/07/24
7258: russian i18n mlnet_strings (Balamutick/ygrek)
2010/07/18
7253: Fix downloading Ocaml 3.12 archive, use lablgtk-2.12.0 for Ocaml < 3.10
7252: GTK2 GUI: Fix compile bug with lablgtk2-20100620 and Ocaml 3.12
7251: BT: OCaml 3.08.3 compatibility fix (ygrek)
7250: DC: discover self IP (ygrek)
7249: DC: fix parsing MyINFO with non-latin nicks (ygrek)
2010/07/17
7248: DC: correctly parse dchub:// entries in xml hublist (ygrek)
7247: BT tracker: remember tracked files after restart (ygrek)
2010/07/16
7245: HTML: Fix unstable option sections links position (ygrek)
7210: upload scheduler: correctly handle clock jumps (ygrek)
7219: fsync rename options files (ygrek)
2010/07/15
7208: New aliases (ygrek)
- "unpause", "continue" for command "resume"
- "man" for command "help"
7233: BT: Announce shared files when share_scan_interval = 0 (ygrek)
2010/05/26
7206: MinGW: Fix diskinfo on large partitions
2010/05/24
7201: DC: Whitespace fixes (ygrek)
7202: BT: Improve internal tracker (ygrek)
- continue tracking files even if there are no requests
- better logging and error reporting
- remove peer from peers list when it sends 'stopped' event
7203: Fix linking with binutils-gold
2010/05/23
7183: DC: magnet links and html ui usability tweaks (ygrek)
7180: DC: better encoding handling (ygrek)
- new option default_encoding for communications with hubs, default CP1252
7181: HTML: Fix sorting of friends' file list (ygrek)
7200: Allow compilation with upcoming Ocaml 3.12
-------------------------------------------------------------------------------
2010/04/25: version 3.0.2 = tag release-3-0-2
7175: DC: PtokaX compatibility (ygrek)
7169: Equal scales for graphical up/down stats (ygrek)
7167: Improve add_mail_brackets option description,
change default according to RFC (ygrek)
2010/04/11
7164: BT: more user-friendly tracker (ygrek)
- `compute_torrent` shows full path and url to generated torrent file
- `torrents` output htmlized
- corrected server header
- improved comments for tracker options
- search torrents in old directory too
7163: Fix not sending UDP packets when max_hard_upload_rate = 0 (ygrek)
2010/04/10
7162: filter longhelp output (ygrek)
- longhelp (or ??) with parameters will output only those commands that
contain all of the specified parameters as substring
2010/04/08
7161: bw_toggle: Add options "high" and "low"
- bw_toggle without options works as before
- if "high" is added, the *_2 option set is used if max_opened_connections_2
is higher than max_opened_connections, otherwise the option values are kept
- if "low" is added, the *_2 option set is used if max_opened_connections_2
is lower than max_opened_connections, otherwise the option values are kept
6959: DC: Fix invalid XML (ygrek)
- enhanced patch (use Xml.escape and properly escape attributes in Xml.to_string)
2010/04/04
7153: BT: correctly handle failed tracker requests (ygrek)
7155: DC: understand hublist.xml (ygrek)
2010/04/02
7151: BT: html ui tweaks (ygrek)
2010/04/01
7150: BT: track torrents created with compute_torrent (ygrek)
2010/03/27
7142: BT: max_uploaders_per_torrent option not restored from .ini files (xboct)
7140: MinGW: Fix linking with Ocaml 3.11.2
7139: BT: Some improvements and fixes (ygrek)
- Don't request sources from tracker (set numwant=0) if we don't need them e.g.
'stopped' event or when sharing
- Prevent client from repeatedly sending 'started' events for shared files
- Check that peer addresses, returned from tracker in compact format, are valid
and not blocked (same check as for non-compact format)
- Show torrent info_hash in html ui
7138: BT: Recognize more client brands (ygrek)
7137: Fix error in calculating average upload speed for client (ygrek)
7136: GTK2 GUI: start downloads from search results items
by double-click (soulcatcher)
2010/03/20
7128: BT: Fix ratio reporting (ygrek)
7127: Configure: Use Ocaml 3.11.2 as default compiler
7076: Support preallocating files on Unix systems (drwho)
Recent Linux kernels support fast preallocation when the filesystem is
XFS, EXT4 or BTRFS, this patch adds preallocation support when
posix_fallocate() is available
6968: GTK2 GUI: Fix switching server preferred status (dcoppa)
The most important change is in correcting handling of malformed data
in BGP sessions.
bgpd:
fix handling of AS path data
tighten bounds checking in RR ORF msg reader
ospfd:
Only refresh external default route once.
Make sure ospf_distribute_list_update_timer() eventually runs.
Make sure all external routes are updated.
zebra:
fix infinite loop when deleting an interface
ospf6d:
Fix crash when '[no] ipv6 ospf6 advertise prefix-list' is in startup-config
isisd:
change ISIS_METHOD to use C preprocessor
other:
build: ignore mkinstalldirs and texinfo.tex
build: Add QuaggaId to README.NetBSD
build/extra: Enhance README.NetBSD make/gmake decision.
git: add pointers to out-of-tree work
git: add (generated) m4 files to .gitignore
Update for git and emphasize asking for good reports.
doc: fixed spelling in bgpd.texi
to trigger/signal a rebuild for the transition 5.10.1 -> 5.12.1.
The list of packages is computed by finding all packages which end
up having either of PERL5_USE_PACKLIST, BUILDLINK_API_DEPENDS.perl,
or PERL5_PACKLIST defined in their make setup (tested via
"make show-vars VARNAMES=..."), minus the packages updated after
the perl package update.
sno@ was right after all, obache@ kindly asked and he@ led the
way. Thanks!
Correct homepage.
Include hicolor-icon-theme.
Add descriptive description.
Increased version to 0.5.1. Sorry I can't find the changelog.
This provides a manual page.
Update okayed by maintainer, Roy (but over a month ago).
Requested by PR#43761 from Kamel Derouiche.
* Update user-agent string
* Fix metacafe.com code not working due to gdaKey again (fixes issue #185)
* Merge Gavin van Lelyveld's patch for --playlist-start option
* Put back -b option as a placeholder with a warning message
* Consider the file downloaded if the size differs in less than 100 bytes
(fixes issue #175)
* Reorganize request code to make it a bit more robust
* Properly detect YouTube error messages to print them on screen (fixes issue
#172)
Changelog:
security:
fixed a stack overflow vulnerability that occurred when command
line arguments (whole addresses, host names, file names) were longer
than 512 bytes.
Note that this could only be exploited when an attacker was able to
inject data into socat's command line.
Full credits to Felix Grobert, Google Security Team, for finding and
reporting this issue
abuse of the options framework
being here, update to 0.0.13
changes:
- Add support for IPv6
- Fix crc32 function conflict with libz.so
- Various bug fixing and code cleaning
- Validate the remote candidate address before adding it
Version 2.2.12
July 25, 2010
Changes:
* Mark cctv support as broken
Bugfixes:
* [youtube] http/404, ported from quvi, fix by Daniel Schaal (quvi #7)
* break.com support, thanks to Werner Elsler for the fix (#57)
NetBSD Packages Collection.
The Perl 5 module WebService::Google::Reader provides an interface
to the Google Reader service through the unofficial (as-yet
unpublished) API.
pkgsrc changes:
- adjust dependencies
Upstream changes since 1.710.10:
0.712
! #57409 SOAP::Lite installation problem
! #52015 defined(%hash) deprecated in Perl 5.11
! #39546 use of version.pm
! #52637 error sending a request in perl 5.10.0 containing
utf-8 data using the string data type
! #55962 Spelling errors
0.711
SOAP::Transport::JABBER, SOAP::Transport::MQ and SOAP::Tranport::FTP
are now in their own distributions.
! [2790747] Bugtracker specification in META.yml missing
! #45997: Inconsistency in SOAP::Serializer documentation
! #55618: HTTP_TRANSFER_ENCODING can be undefined in SOAP/Transpo
! [2946245] / #54106 Only last Cookie Set
! #50178: Win32 isuue with IO::SessionData and IO::SessionSet
! #41527: SOAP::Lite 0.69 with Apache2 HTTP Server module and mod_perl 2
returns 500 Internal
reports using CPAN::Reporter over TLS.
Net::SMTP::TLS is a TLS and AUTH capable SMTP client which offers an
interface that users will find familiar from Net::SMTP. Net::SMTP::TLS
implements a subset of the methods provided by that module, but certainly
not (yet) a complete mirror image of that API.
Upstream changes:
1.00 - Fri Jul 02 2010
- (je) Improve parsing performance significantly.
- (je) Improve parsing of quoted data and data with escape sequences.
- (je) Add error message to unparsable line callback.
- (je) Catch more errors with invalid data sections (invalid escapes,
bad quoting).
- (je) Add support for $GENERATE directives.
- (je) Add support for $ORIGIN directives.
- (je) Add method to help construct FQDNs from record names.
- (je) Support reversed CLASS/TTL entries in zonefiles.
- (je) Increase the number of unit tests (still incomplete).
Pkgsrc changes:
- set PERL5_MODULE_TYPE to Module::Build
- adjust dependencies
Upstream changes:
0.08 12.06.10
- adding is_txt
- switched to dzil, hope it works out
Changes include:
* Compile on Slackware again
* Use dynamically sized buffers for reading kernel link events
Fixes carrier status on Linux-2.6.35 64bit kernels
* Use the active link address on NetBSD-5
* Fix syslog support in dhcpcd-run-hooks
- Bug Fixes
o The SigComp Universal Decompressor Virtual Machine could
overrun a buffer. (Bug 4867)
Versions affected: 0.10.8 to 1.0.14, 1.2.0 to 1.2.9
CVE-2010-2287
o The GSM A RR dissector could crash. (Bug 4897)
Versions affected: 1.2.2 to 1.2.9
o Due to a regression the ASN.1 BER dissector could overrun the stack.
Versions affected: 0.10.13 to 1.0.14, 1.2.0 to 1.2.9
CVE-2010-2284
o The IPMI dissector could go into an infinite loop.
Versions affected: 1.2.0 to 1.2.9
- The following bugs have been fixed:
o Wireshark crashes after configuring new Information column.
(Bug 4854)
o Crash triggered when changing display filter from right-mouse
pop-up menu via packet-list. (Bug 4860)
o Wireshark crash selecting Inter-Asterisk exchange v2 packet
data. (Bug 4868)
o zlib-1.2.5 cause tshark to stop live capture. (Bug 4916)
o Crash when adding SNMP users. (Bug 4926)
o Wireshark via ssh -X on ipv6 link-local address fails to allow
capture. (Bug 4945)
o OMAPI dissector fails to parse combined initialization
messages. (Bug 4982)
o QUERY_FS_INFO for Macintosh level 0x301 - MacSupportFlags
decodes wrong. (Bug 4993)
o SCSI dissector misidentifies ATA PASSTHROUGH command as ACCESS
CONTROL IN. (Bug 5037)
o Wrong decoding of GTP Prime (GTP') packets. (Bug 5055)
- Updated Protocol Support
ASN.1 BER, GSM A RR, GTP, IAX2, IPMI, OMAPI, PRES, SCSI, SMB, UNISTIM
Upstream changes:
4.030 Tue Jul 20 15:32:23 PDT 2010
Resolve named hosts in Lite.pm using gethostbyname, followed by
gethostbyname6 to determine whether to set ipV6 flag
Thanks to Dusty Mabe <Dusty.Mabe@tekelec.com> for spotting this bug
4.029 Thu Jul 8 18:17:38 PDT 2010
In NetAddr::IP::Lite,
added support for the sub "new" to resolve host6 names
if the OPTIONAL perl Socket6 module is available
Thanks to "Mabe, Dusty" <Dusty.Mabe@tekelec.com> for spotting
this and suggesting a fix.
4.028 Wed May 12 14:18:20 PDT 2010
In /Lite/Util/Util.xs v1.32,
changed netswap() to postincrement
*a++ = to *a and added increment after save to mollify some
picky compilers that return possible undefined behavior.
changed type of _128x10 to 'void'
Thanks to David Bolt <dbolt@davjam.org> for the above two patches
Collection.
The Perl 5 module Net::Trac is simple client library for a remote
Trac instance. Because Trac doesn't provide a web services API,
this module currently "fakes" an RPC interface around Trac's webforms
and the feeds it exports. Because of this, it's somewhat more brittle
than a true RPC client would be.
Packages Collection.
The Perl 5 module Net::Google::Code is a simple client library for
projects hosted in Google Code. It uses Google's official API and
web scrapping techniques.
Features:
* unbound-control get_option domain-insecure shows config file items.
* Autotrust anchor file can be initialized with a ZSK key as well
(if the domain's DNSKEY set is signed with that ZSK).
* Conforms to draft-ietf-dnsop-default-local-zones-13. Added default
reverse lookup blocks for IPv4 test nets 100.51.198.in-addr.arpa,
113.0.203.in-addr.arpa and Orchid prefix 0.1.1.0.0.2.ip6.arpa.
* Contribution from Migiel de Vos (Surfnet): nagios patch for unbound-host,
in contrib/ (in the source tarball). Makes unbound-host suitable for
monitoring dnssec(-chain) status.
* GOST disabled-by-default, the algorithm number is allocated but the RFC
is still has to pass AUTH48 at the IETF.
Bug Fixes:
* Fix validation failure for qtype ANY caused by a RRSIG parse failure.
The validator error message was 'no signatures from ...'.
* Squelch log message: sendto failed permission denied for 255.255.255.255,
it is visible in VERB_DETAIL (verbosity 2).
* Fix fetch from blacklisted dnssec lame servers as last resort.
The server's IP address is then given in validator errors as well.
* Fix local-zone type redirect that did not use the query name for the
answer rrset.
* Compile fix using Sun Studio 12 compiler on Solaris 5.9, use CPPFLAGS
during configure process.
* Fix if libev is installed on the base system (not libevent),
detect it from the event.h header file and link with -lev.
* Fix configlexer.lex gets config.h, and configyyrename.h added by make,
no more double include.
* More strict scrubber (Thanks to George Barwood for the idea):
NS set must be pertinent to the query.
* [bugzilla: 307 ] In 0x20 backoff fix fallback so the number of outstanding
queries does not become -1 and block the request. Fixed handling of
recursion-lame in combination with 0x20 fallback. Fix so RRsets are
compared canonicalized and sorted if the immediate comparison fails,
this makes the 0x20 option work around round-robin sites.
* Fix retry sequence if prime hints are recursion-lame.
* Fix so harden-referral-path does not result in failures due to max-depth.
You can increase the max-depth by adding numbers (' 0') after the
target-fetch-policy, this increases the depth to which is checked.
* Fix detection of GOST support in ldns (reported by Chris Smith).
* Fix for dnssec lameness detection to use the key cache.
* infra cache entries that are expired are wiped clean.
Previously it was possible to not expire host data (if accessed often).
* Fix dnssec-missing detection that was turned off by server selection.
* [bugzilla: 308 ] Fix spelling error in variable name in parser and lexer.
* Fix various compiler warnings from the clang llvm compiler.
* Fix comments in iter_utils:dp_is_useless.
* EDNS timeout code will not fire if EDNS status already known.
* EDNS failure not stored if EDNS status known to work.
* Parent-child disagreement approach altered. Older fixes are removed in
place of a more exhaustive search for misconfigured data available via
the parent of a delegation. This is designed to be throttled by cache
entries, with TTL from the parent if possible. Additionally the
loop-counter is used. It also tests for NS RRset differences between
parent and child. The fetch of misconfigured data should be more
reliable and thorough. It should work reliably even with no or only
partial data in cache. Data received from the child (as always) is
deemed more authoritative than information received from the delegation
parent. The search for misconfigured data is not performed normally.
* Fix AD flag handling, it could in some cases mistakenly copy the AD flag
from upstream servers.
* Ignore Z flag in incoming messages too.
* alloc_special_obtain out of memory is not a fatal error any more,
enabling unbound to continue longer in out of memory conditions.
* Parentside names are dispreferred but not said to be dnssec-lame.
* Fix parentside and querytargets modulestate, for dump_requestlist.
* unbound-control-setup makes keys -rw-r--- so not all users permitted.
* libtoolize 2.2.6b, autoconf 2.65 applied to configure.
* Fix compile warning if compiled without threads.
* iana portlist updated.
* included ldns tarball updated.
* Fix bug where a long loop could be entered, now cycle detection has
a loop-counter and maximum search amount.
* torrent: don't try to re-download invalid piece from the same peer.
* added a short lftp.conf(5) man page.
* fixed a problem with zeroed errno.
* fixed status of mget from file: schema.
* fixed a compilation problem on AIX.
Version 4.0.8 - 2010-05-24
* fixed get/mget -c when xfer:clobber is off.
* fixed file verification in pget.
* fixed ftp encoding for servers with LANG but without UTF8 feature.
Version 4.0.7 - 2010-04-29
* make xfer:clobber off by default.
* limit number of attempts to upload a file (net:max-retries).
* handle 426 ftp reply to STOR specially.
* retry FEAT after login even after non-standard 5xx reply.
Version 4.0.6 - 2010-03-25
* use O_EXCL flag when xfer:clobber is off.
* better validation of server-provided file name (CVE-2010-2251).
* new setting xfer:auto-rename (off by default).
* new setting ftp:ssl-copy-sid (for some broken servers).
* fixed CCC ftp command to shutdown SSL connection properly.
* fixed `pget -c' on complete files.
Version 4.0.5 - 2009-12-21
* added support for lighttpd listings.
* fixed sftp rename.
* fixed a core dump on `kill all' with pget.
* fixed interrupting of a torrent with unresponsive tracker.
* Czech translation updated
aria2 1.10.0
============
This release adds an option to limit the number of connections to the
same host in each download. aria2 now chooses server which is least
used in aria2c instance. This release also adds Chromium cookie
support and HTTP only conditional download support which is download
file only when the local file is older than remote file. aria2 now
can handle %2F in FTP URI properly. HTTP/1.1 chunked decoder was
fixed. For Linux, aria2 uses fallocate by default if it is usable.
aria2 1.9.5
============
This release fixes the bug that causes corrupted file. It also fixes
assertion error in DefaultPeerStorage class. Now aria2 doesn't reset
referer to "" on redirect. log and log-level option can be used
in aria2.changeGlobalOption XML-RPC method. This means you can
dynamically start or stop logging and change log file and log level.
aria2 1.9.4
============
This release fixes the bug that connection reuse on FTP does not work
if FTP server changes root directory based on account. It also fixes
the bug that reading Metalink document from pipe (-M- option) does not
work when aria2 is built with expat or old libxml2(2.7.6 or
earlier). Now aria2 does not emit error if given Metalink document is
empty(no file element). The response of aria2.tellStopped XML-RPC
method now has more information: totalLength, completedLength,
uploadLength, bitfield and so on.
aria2 1.9.3
============
This release fixes the bug that aria2 cuts filename after ';' if
filename in Content-Disposition header includes ';'. It also fixes
the bug that name attribute of file element in Metalink file is not
properly sanitized.
aria2 1.9.2
============
This release adds kqueue, port_associate/port_getn and poll() support
for socket event notification to eliminate 1024 file descriptor
limitation of select() call. The bug that aria2.unpause and
aria2.unpauseAll XML-RPC method fail when -s1 is given in command-line
argument was fixed.
aria2 1.9.1
============
This release adds the ability to save unfinished downloads as text
file. aria2 can read the file with -i option on restart. This
release also adds the ability to download file from scratch when aria2
sees resume is not supported by remote server. This feature is
disabled by default. See --always-resume option for
details. --no-proxy option accepts IPv4 network address with CIDR
block. aria2 now doesn't send "Accept-Encoding: deflate, gzip" by
default. --http-accept-gzip option was added to toggle this behavior.
aria2 now treats lines starting "#" in -i list as comments. Several
XML-RPC methods were added: aria2.pause, aria2.unpause,
aria2.shutdown, and their families. The new exist status code '8' was
added. The bug that makes aria2 hang when system time changes while
aria2 is running was fixed on MinGW32, Mac OS X and the system which
has clock_gettime(). Several other bugs also have been fixed.
aria2 1.9.0
============
This release adds Metalink4 support and BitTorrent Local Peer
Discovery. aria2.changeUri XML-RPC method was added. It enables you
to add/remove URIs to existing downloads dynamically. The user and
password for proxy server now can be specified in command-line
separately. We refactored the code based on profiler results, so
aria2 now runs more efficiently than ever. Russian and Simplified
Chinese translation were updated.
aria2 1.8.3
============
This release fixes the bug that --file-allocation=falloc doesn't work
with single file download. It also fixes the bug that the return value
of aria2 is unreliable if error occurs before download begins. When
custom request headers specified by --header option now override
built-in headers if they have same name.
aria2 1.8.2
============
s release fixes the bug that causes segmentation fault with
--max-file-not-found option involved. Now aria2 can handle redirected
URI which is not properly percent encoded. In MinGW32 build, console
readout is now always cut by 80 characters. 'bittorrent' key is added
to the response of tellStatus XML-RPC method. The associated value of
the key is a struct and contains data retrieved from .torrent file,
such as name, announce-list, comment, etc.
aria2 1.8.1
============
This release fixes the bug that causes segmentation fault if unknown
options exist in aria2.conf file and user cannot include empty line in
aria2.conf.
Following new command line options are added: --http-no-cache,
--bt-metadata-only and --human-readable option. --dir option now
treats "" as ".". --all-proxy, --http-proxy, --https-proxy and
--ftp-proxy option accept empty string "". When "" is given, it
erases previously defined proxy.
aria2.getSessionInfo XML-RPC method was added. aria2.tellWaiting and
aria2.tellStopped XML-RPC method accept a negative integer as
offset. For example, in aria2.tellWaiting, 'offset' == -1 points last
download in the waiting queue and 'offset' == -2 points the download
before the last download, and so on. 'dir' and 'files' key were added
to the response struct of aria2.tellStatus XML-RPC method. The value
associated with 'files' key is the list of files. Its element is the
same struct used in aria2.getFiles XML-RPC method. 'uris' key was
added to the response struct of aria2.getFiles XML-RPC method. The
value associated with 'uris' key is the list of URIs. Its element is
the same struct used in aria2.getUris XML-RPC method. aria2 now
returns gzip compressed XML-RPC response if XML-RPC client accepts
gzip content encoding.
aria2 1.8.0
============
This release fixes the bug that configure script fails to detect
GnuTLS library if --without-sqlite3 is given. The new XML-RPC methods
are added: aria2.getOption, aria2.getGetGlobalOption,
aria2.changePosition, aria2.tellStopped and system.multicall.
--bt-save-metadata option is added. This option saves metadata as
.torrent file. This option has effect only when BitTorrent Magnet URI
is used.
aria2-1.7.2
============
This release fixes the bug that aria2 listens wrong port in
BitTorrent/FTP downloads when --interface option is used. If
--metalink-file='-' is given, aria2 now reads Metalink file from
stdin. Magnet URI is printed in the output of -S option. DHT is
now enabled by default. DHT doesn't start while aria2 only handles
HTTP/FTP downloads. On the first torrent download begins, aria2
initiates DHT functionality. After that, DHT runs until aria2 exits
aria2 1.7.1
============
This release fixes the bug that --bt-prioritize-piece=tail is not
working.
aria2 1.7.0
============
This release adds BitTorrent Magnet URI support. 3 options were
added: the ability to bind to particular interface, disabling IPv6 and
prioritizing piece in BitTorrent downloads. In configure script, if
--with-PACKAGE and --enable-FEATURE are given but PACKAGE is missing
in the system or FEATURE cannot be enabled in the current
configuration, the script now prints error message and exits.
--http-auth-scheme option was removed since it is useless. Updated
Russian, Ukrainian, German and French translations.
aria2 1.6.3
============
This release fixes reported bugs and updates Polish, Catalan, French,
Italian, Russian and Japanese translations.
aria2 1.6.2
============
This release fixes segmentation fault error if URI to download
contains printf format string and logging is enabled. The build
scripts are updated to automake 1.11 and autoconf 2.64. Updated
Ukrainian translation.
aria2 1.6.1
============
This release fixes memory leak in HTTP/FTP download. It also fixes the
bug that the option values changed by XML-RPC changeOption and
changeGlobalOption methods are cleared. Now User-agent and Peer ID
include version number. Updated Simplified Chinese translations.
aria2 1.6.0
============
This release changes the default behavior of XML-RPC server. Now it
listens only on local loopback interface by default for security
reasons. If you want to connect to aria2c from remote hosts, use
--xml-rpc-listen-all option. The XML-RPC client sample script written
in Ruby are now included in the archive under doc/xmlrpc directory.
These scripts are licensed under MIT License. The help category tags
are now start "#" to distinguish them from keyword search. Several
help category tags were added: #xml-rpc, #cookie, #hook and #file.
--retry-wait option was removed because it doesn't work properly under
the architecture. Updated Bulgarian, Russian, Slovak and Japanese
translations.
aria2 1.5.2
============
This release fixes the bug that when the first attempt to establishing
connection fails, aria2 don't try to connect another address and a
download immediately fails. -S output was enhanced: exact file size
is now printed. For -S with torrent file, meta data such as comment,
comment.utf-8, created by and creation date are now printed. Ukrainian
and Russian translations were updated.
aria2 1.5.1
============
This release fixes linker error in unit test code on 32bit
systems. The unit test failure on mingw32 was also fixed. The file I/O
error handlings were written.
aria2 1.5.0
============
This release adds WEB-Seeding support for multi-file torrent.
--bt-stop-timeout option was added. This function stops BitTorrent
download if the download speed is 0 in consecutive given seconds.
aria2 now tries all resolved addresses to connect to remote servers in
HTTP(S)/FTP until it gets connected. For XML-RPC, two new methods
were added: aria2.tellWaiting and aria2.getVersion. The error code is
available in the response of aria2.tellStatus methods for
stopped/completed downloads. --use-head is now disabled by default
since using HEAD request causes problems in some web sites. The
behavior of -D option has been changed: If -D is specified, the
current working directory is set to / and stdin, stdout and stderr are
redirected to /dev/null. This release fixes the bug that zombie
processes are created when commands specified in --on-download-*
options are executed and the bug that http-user, http-passwd, ftp-user
and ftp-passwd are ignored when they are given via XML-RPC. Updated
Russian, Italian, Danish, Bulgarian, Japanese and Ukrainian
translations.
aria2 1.4.1
============
This release fixes the compile error without the development package
of c-ares library installed. The compile error under MinGW was fixed.
aria2.tellStatus XML-RPC method now returns "uploadLength" and
"numSeeders". Ukrainian translation was updated.
aria2 1.4.0
============
This release adds XML-RPC interface and the ability to run command
when download started/stopped and the ability to save cookies. The
current XML-RPC API allows users to add http(s)/ftp/torrent/Metalink
download and change options dynamically. The APIs such as reporting
download progress, file paths, URIs and peer information are also
available. For complete API specification, see XML-RPC INTERFACE
section in man page and
http://apps.sourceforge.net/trac/aria2/wiki/XmlrpcInterface. The
console readout was slightly updated and now includes the number of
seeders the client has connected to. Slovak translation was
added. Ukrainian and Brazilian Portuguese translation were updated.
aria2 1.3.3
============
This release fixes the bug that --check-integrity option doesn't work
properly if a file including last piece is missing and increases
internal receive buffer for FTP in order to receive big banner.
Ukrainian, Russian and Simplified Chinese translations were updated.
aria2 1.3.2
============
This release fixes the bug that prevents certain BitTorrent downloads
from finishing and possible segmentation fault when gzip decoding is
involved and infinite loop bug if last "0" chunk-size marker is not
received in chunked encoding transfer. aria2 now supports
WEB-Seeding(HTTP-Seeding) for single file torrent. Ukrainian
translation was updated.
aria2 1.3.1
============
This release fixes the bug that aria2 wrongly determines that
specified share ratio is reached because of miscalculation of upload
bytes and the bug that upload limit exceeds the value specified in
--seed-ratio option depending on the timing of the execution of
SeedCheckCommand.
aria2 1.3.0
============
This release adds the ability to specify the output filenames in
BitTorrent downloads and the option to limit overall download speed
and dry run mode which just checks the availability of the remote
file. -i list option can now take new options: select-file and
index-out. The default behavior of sending HTTP Authorization header
is reverted back to version 1.1.2 style. The bug in
AdaptiveURISelector was fixed. You can now seed read-only files in
BitTorrent. --file-allocation option can take new parameter
'falloc'. If it is given and you are using newer file systems such as
ext4, btrfs or xfs, large(few GiB) files are allocated almost
instantly. The performance optimization has been done and aria2 runs
more efficiently.
Indonesian, Russian, Italian, Ukrainian, Simplified Chinese, Japanese,
Spanish and Norwegian Nynorsk translations were updated.
shlib bumped to 2.
Version 1.6.0 (Dec 9, 2008)
* December 9 2008 (Gisle Vanem)
Fixes for Win32 targets using the Watt-32 tcp/ip stack.
* Dec 4 2008 (Daniel Stenberg)
Gregor Jasny provided the patch that introduces ares_set_socket_callback(),
and I edited it to also get duped by ares_dup().
* Dec 3 2008 (Daniel Stenberg)
API changes:
I made sure the public ares_config struct looks like before and yet it
supports the ROTATE option thanks to c-ares now storing the "optmask"
internally. Thus we should be ABI compatible with the past release(s)
now. My efforts mentioned below should not break backwards ABI compliance.
Here's how I suggest we proceed with the API:
ares_init() will be primary "channel creator" function.
ares_init_options() will continue to work exactly like now and before. For
starters, it will be the (only) way to set the existing options.
ares_save_options() will continue to work like today, but will ONLY save
options that you can set today (including ARES_OPT_ROTATE actually) but new
options that we add may not be saved with this.
Instead we introduce:
ares_dup() that instead can make a new channel and clone the config used
from an existing channel. It will then clone all config options, including
future new things we add.
ares_set_*() style functions that set (new) config options. As a start we
simply add these for new functionality, but over time we can also introduce
them for existing "struct ares_options" so that we can eventually deprecate
the two ares_*_options() functions.
ares_get_*() style functions for extracting info from a channel handle that
should be used instead of ares_save_options().
* Nov 26 2008 (Yang Tse)
- Brad Spencer provided changes to allow buildconf to work on OS X.
- Gerald Combs fixed a bug in ares_parse_ptr_reply() which would cause a
buffer to shrink instead of expand if a reply contained 8 or more records.
* Nov 25 2008 (Yang Tse)
- In preparation for the upcomming IPv6 nameservers patch, the internal
ares_addr union is now changed into an internal struct which also holds
the address family.
* Nov 19 2008 (Daniel Stenberg)
- Brad Spencer brought the new function ares_gethostbyname_file() which simply
resolves a host name from the given file, using the regular hosts syntax.
* Nov 1 2008 (Daniel Stenberg)
- Carlo Contavalli added support for the glibc "rotate" option, as documented
in man resolv.conf:
causes round robin selection of nameservers from among those listed. This
has the effect of spreading the query load among all listed servers, rather
than having all clients try the first listed server first every time.
You can enable it with ARES_OPT_ROTATE
* Oct 21 2008 (Yang Tse)
Charles Hardin added handling of EINPROGRESS for UDP connects.
* Oct 18 2008 (Daniel Stenberg)
Charles Hardin made adig support a regular numerical dotted IP address for the
-s option as well.
* Oct 7 2008 (Yang Tse)
- Added --enable-optimize configure option to enable and disable compiler
optimizations to allow decoupled setting from --enable-debug.
* Oct 2 2008 (Yang Tse)
- Added --enable-warnings configure option to enable and disable strict
compiler warnings to allow decoupled setting from --enable-debug.
* Sep 17 2008 (Yang Tse)
- Code reorganization to allow internal/private use of "nameser.h" to any
system that lacks arpa/nameser.h or arpa/nameser_compat.h header files.
* Sep 16 2008 (Yang Tse)
- Code reorganization to allow internal/private use of ares_writev to any
system that lacks the writev function.
* Sep 15 2008 (Yang Tse)
- Code reorganization to allow internal/private use of ares_strcasecmp to any
system that lacks the strcasecmp function.
- Improve configure detection of some string functions.
* Sep 11 2008 (Yang Tse)
- Code reorganization to allow internal/private use of ares_strdup to any
system that lacks the strdup function.
Version 1.5.3 (Aug 29, 2008)
* Aug 25 2008 (Yang Tse)
- Improvement by Brad House:
This patch addresses an issue in which a response could be sent back to the
source port of a client from a different address than the request was made to.
This is one form of a DNS cache poisoning attack.
The patch simply uses recvfrom() rather than recv() and validates that the
address returned from recvfrom() matches the address of the server we have
connected to. Only necessary on UDP sockets as they are connection-less, TCP
is unaffected.
- Fix by George Neill:
Fixed compilation of acountry sample application failure on some systems.
* Aug 4 2008 (Daniel Stenberg)
- Fix by Tofu Linden:
The symptom:
* Users (usually, but not always) on 2-Wire routers and the Comcast service
and a wired connection to their router would find that the second and
subsequent DNS lookups from fresh processes using c-ares to resolve the same
address would cause the process to never see a reply (it keeps polling for
around 1m15s before giving up).
The repro:
* On such a machine (and yeah, it took us a lot of QA to find the systems
that reproduce such a specific problem!), do 'ahost www.secondlife.com',
then do it again. The first process's lookup will work, subsequent lookups
will time-out and fail.
The cause:
* init_id_key() was calling randomize_key() *before* it initialized
key->state, meaning that the randomness generated by randomize_key() is
immediately overwritten with deterministic values. (/dev/urandom was also
being read incorrectly in the c-ares version we were using, but this was
fixed in a later version.)
* This makes the stream of generated query-IDs from any new c-ares process
be an identical and predictable sequence of IDs.
* This makes the 2-Wire's default built-in DNS server detect these queries
as probable-duplicates and (erroneously) not respond at all.
* Aug 4 2008 (Yang Tse)
- Autoconf 2.62 has changed the behaviour of the AC_AIX macro which we use.
Prior versions of autoconf defined _ALL_SOURCE if _AIX was defined. 2.62
version of AC_AIX defines _ALL_SOURCE and other four preprocessor symbols
no matter if the system is AIX or not. To keep the traditional behaviour,
and an uniform one across autoconf versions AC_AIX is replaced with our
own internal macro CARES_CHECK_AIX_ALL_SOURCE.
* Aug 1 2008 (Yang Tse)
- Configure process now checks if the preprocessor _REENTRANT symbol is already
defined. If it isn't currently defined a set of checks are performed to test
if its definition is required to make visible to the compiler a set of *_r
functions. Finally, if _REENTRANT is already defined or needed it takes care
of making adjustments necessary to ensure that it is defined equally for the
configure process tests and generated config file.
* Jul 20 2008 (Yang Tse)
- When recvfrom prototype uses a void pointer for arguments 2, 5 or 6 this will
now cause the definition, as appropriate, of RECVFROM_TYPE_ARG2_IS_VOID,
RECVFROM_TYPE_ARG5_IS_VOID or RECVFROM_TYPE_ARG6_IS_VOID.
* Jul 17 2008 (Yang Tse)
- RECVFROM_TYPE_ARG2, RECVFROM_TYPE_ARG5 and RECVFROM_TYPE_ARG6 are now defined
to the data type pointed by its respective argument and not the pointer type.
* Jul 16 2008 (Yang Tse)
- Improved configure detection of number of arguments for getservbyport_r.
Detection is now based on compilation checks instead of linker ones.
- Configure process now checks availability of recvfrom() socket function and
finds out its return type and the types of its arguments. Added definitions
for non-configure systems config files, and introduced macro sreadfrom which
will be used on udp sockets as a recvfrom() wrapper in the future.
* Jul 15 2008 (Yang Tse)
- Introduce definition of _REENTRANT symbol in setup.h to improve library
usability. Previously the configure process only used the AC_SYS_LARGEFILE
macro for debug builds, now it is also used for non-debug ones enabling the
use of configure options --enable-largefile and --disable-largefile which
might be needed for library compatibility. Remove checking the size of
curl_off_t, it is no longer needed.
* Jul 3 2008 (Daniel Stenberg)
- Phil Blundell: If you ask ares_gethostbyname() to do an AF_INET6 lookup and
the target host has only A records, it automatically falls back to an
AF_INET lookup and gives you the A results. However, if the target host has
a CNAME record, this behaviour is defeated since the original query does
return some data even though ares_parse_aaa_reply() doesn't consider it
relevant. Here's a small patch to make it behave the same with and without
the CNAME.
* Jul 2 2008 (Yang Tse)
- Fallback to gettimeofday when monotonic clock is unavailable at run-time.
* Jun 30 2008 (Daniel Stenberg)
- As was pointed out to me by Andreas Schuldei, the MAXHOSTNAMELEN define is
not posix or anything and thus c-ares failed to build on hurd (and possibly
elsewhere). The define was also somewhat artificially used in the windows
port. Now, I instead rewrote the use of gethostbyname to enlarge the host
name buffer in case of need and totally avoid the use of the MAXHOSTNAMELEN
define. I thus also removed the defien from the namser.h file where it was
once added for the windows build.
I also fixed init_by_defaults() function to not leak memory in case if
error.
* Jun 9 2008 (Yang Tse)
- Make libcares.pc generated file for pkg-config include information relative
to the libraries needed for the static linking of c-ares.
* May 30 2008 (Yang Tse)
- Brad House fixed a missing header file inclusion in adig sample program.
Version 1.5.2 (May 29, 2008)
* May 13 2008 (Daniel Stenberg)
- Introducing millisecond resolution support for the timeout option. See
ares_init_options()'s ARES_OPT_TIMEOUTMS.
* May 9 2008 (Yang Tse)
- Use monotonic time source if available, for private function ares__tvnow()
* May 7 2008 (Daniel Stenberg)
- Sebastian made c-ares able to return all PTR-records when doing reverse
lookups. It is not common practice to have multiple PTR-Records for a single
IP, but its perfectly legal and some sites have those.
- Doug Goldstein provided a configure patch: updates autoconf 2.13 usage to
autoconf 2.57 usage (which is the version you have specified as the minimum
version). It's a minor change but it does clean up some warnings with newer
autoconf (specifically 2.62).
* May 5 2008 (Yang Tse)
- Improved parsing of resolver configuration files.
* April 4 2008 (Daniel Stenberg)
- Eino Tuominen improved the code when a file is used to seed the randomizer.
- Alexey Simak made adig support NAPTR records
- Alexey Simak fixed the VC dsp file by adding the missing source file
ares_expand_string.c
* December 11 2007 (Gisle Vanem)
- Added another sample application; acountry.c which converts an
IPv4-address(es) and/or host-name(s) to country-name and country-code.
This uses the service of the DNSBL at countries.nerd.dk.
* December 3 2007 (Daniel Stenberg)
- Brad Spencer fixed the configure script to assume that there's no
/dev/urandom when built cross-compiled as then the script cannot check for
it.
- Erik Kline cleaned up ares_gethostbyaddr.c:next_lookup() somewhat
Version 1.5.1 (Nov 21, 2007)
* November 21 2007 (Daniel Stenberg)
- Robin Cornelius pointed out that ares_llist.h was missing in the release
archive for 1.5.0
Version 1.5.0 (Nov 21, 2007)
* October 2 2007 (Daniel Stenberg)
- ares_strerror() segfaulted if the input error number was out of the currently
supported range.
- Yang Tse: Avoid a segfault when generating a DNS "Transaction ID" in
internal function init_id_key() under low memory conditions.
* September 28 2007 (Daniel Stenberg)
- Bumped version to 1.5.0 for next release and soname bumped to 2 due to ABI
and API changes in the progress callback (and possibly more coming up from
Steinar)
* September 28 2007 (Steinar H. Gunderson)
- Don't skip a server if it's the only one. (Bugfix from the Google tree.)
- Made the query callbacks receive the number of timeouts that happened during
the execution of a query, and updated documentation accordingly. (Patch from
the Google tree.)
- Support a few more socket options: ARES_OPT_SOCK_SNDBUF and
ARES_OPT_SOCK_RCVBUF
- Always register for TCP events even if there are no outstanding queries, as
the other side could always close the connection, which is a valid event
which should be responded to.
* September 22 2007 (Daniel Stenberg)
- Steinar H. Gunderson fixed: Correctly clear sockets from the fd_set on in
several functions (write_tcp_data, read_tcp_data, read_udp_packets) so that
if it fails and the socket is closed the following code doesn't try to use
the file descriptor.
- Steinar H. Gunderson modified c-ares to now also do to DNS retries even when
TCP is used since there are several edge cases where it still makes sense.
- Brad House provided a fix for ares_save_options():
Apparently I overlooked something with the ares_save_options() where it
would try to do a malloc(0) when no options of that type needed to be saved.
On most platforms, this was fine because malloc(0) doesn't actually return
NULL, but on AIX it does, so ares_save_options would return ARES_ENOMEM.
* July 14 2007 (Daniel Stenberg)
- Vlad Dinulescu fixed two outstanding valgrind reports:
1. In ares_query.c , in find_query_by_id we compare q->qid (which is a short
int variable) with qid, which is declared as an int variable. Moreover,
DNS_HEADER_SET_QID is used to set the value of qid, but DNS_HEADER_SET_QID
sets only the first two bytes of qid. I think that qid should be declared as
"unsigned short" in this function.
2. The same problem occurs in ares_process.c, process_answer() . query->qid
(an unsigned short integer variable) is compared with id, which is an
integer variable. Moreover, id is initialized from DNS_HEADER_QID which sets
only the first two bytes of id. I think that the id variable should be
declared as "unsigned short" in this function.
Even after declaring these variables as "unsigned short", the valgrind
errors are still there. Which brings us to the third problem.
3. The third problem is that Valgrind assumes that query->qid is not
initialised correctly. And it does that because query->qid is set from
DNS_HEADER_QID(qbuf); Valgrind says that qbuf has unitialised bytes. And
qbuf has uninitialised bytes because of channel->next_id . And next_id is
set by ares_init.c:ares__generate_new_id() . I found that putting short r=0
in this function (instead of short r) makes all Valgrind warnings go away.
I have studied ares__rc4() too, and this is the offending line:
buffer_ptr[counter] ^= state[xorIndex]; (ares_query.c:62)
This is what triggers Valgrind.. buffer_ptr is unitialised in this function,
and by applying ^= on it, it remains unitialised.
0.6.27
some build fixes
0.6.26
This is mostly a bugfix release but also fixes a low risk security issue and
adds a couple of minor new features.
* Fix CVE-2010-2244 (Ludwig Nussel)
* Support for Gtk+ 3 and Gtk+ Introspection
* Native systemd socket activation support
* Add systemd service files
* Add various resource control options, for traffic rate limiting as well as
cache size and D-Bus client object limits.
* i18n updates
* Minor other updates
This is a ground-up rewrite of Perspective Broker, which itself is Twisted's
native RPC/RMI protocol (Remote Procedure Call / Remote Method Invocation).
If you have control of both ends of the wire, and are thus not constrained to
use some other protocol like HTTP/XMLRPC/CORBA/etc, you might consider using
Foolscap.
Fundamentally, Foolscap allows you to make a python object in one process
available to code in other processes, which means you can invoke its methods
remotely. This includes a data serialization layer to convey the object
graphs for the arguments and the eventual response, and an object reference
system to keep track of which objects you are connecting to. It uses a
capability-based security model, such that once you create a non-public
object, it is only accessible to clients to whom you've given the
(unguessable) FURL. You can of course publish world-visible objects that
have well-known FURLs.
* Partially rewritten ntop processing engine to address reliability and
performance
* Several bugs and stability issues fixed
* Added better support for IPFIX and NetFlow v9, as well as ntop PEN
(Private Enterprise Number)
* Added support for Cisco ASA firewalls
* Added ntop engine scriptability via the python programming language
* Added RRDalarm plugin for generating alerts based on thresholds
* Improved google maps integration
* Enhanced sFlow support
Some of the highlights are:
o [NSE] Added more scripts, bringing the total to 131!
o Performed a major OS detection integration run.
o Performed a large version detection integration run.
o [Zenmap] Added the ability to print Nmap output to a printer.
o [Nmap, Ncat, Nping] The default unit for time specifications is now
seconds, not milliseconds, and times may have a decimal point.
o Ports are now considered open during a SYN scan if a SYN packet
(without the ACK flag) is received in response.
o [Ncat] In listen mode, the --exec and --sh-exec options now accept a
single connection and then exit, just like in normal listen mode.
o UDP payloads are now stored in an external data file, nmap-payloads,
instead of being hard-coded in the executable.
o Added a new library, libnetutil, which contains about 2,700 lines of
networking related code which is now shared between Nmap and Nping
o Improved service detection match lines.
o Improved our brute force password guessing list by mixing in some
data sent in by Solar Designer of John the Ripper fame.
o [Zenmap] IP addresses are now sorted by octet rather than their
string representation.
o [Ncat] When receiving a connection/datagram in listen mode, Ncat now
prints the connecting source port along with the IP address.
o Added EPROTO to the list of known error codes in service scan.
o Updated IANA IP address space assignment list for random IP (-iR)
generation.
o Zenmap's "slow comprehensive scan profile" has been modified to use
the best 7-probe host discovery combination we were able to find in
extensive empirical testing
o Zenmap now lets you save scan results in normal Nmap text output
format or (as before) as XML.
o [NSE] Raw packet sending at the IP layer is now supported, in
addition to the existing Ethernet sending functionality.
o Nmap now honors routing table entries that override interface
addresses and netmasks.
o [Ncat] The HTTP proxy server now accepts client connections over
SSL, and added support for HTTP digest authentication of proxies, as
both client and server.
o Improved the MIT Kerberos version detection signatures.
Plus many bugfixes and improvements.
For full changelog, see http://nmap.org/changelog.html
Feature improvements
* Add radmin command "stats detail <file>" to see what
is going on inside of a detail file reader.
* Added documentation for CoA. See raddb/sites-available/coa
* Add sub-option support for Option 82. See dictionary.dhcp
* Add "server" field to default SQL NAS table, and documented it.
Bug fixes
* Reset "received ping" counter for Status-Server checks. In some
corner cases it was not getting reset.
* Handle large VMPS attributes.
* Count accounting responses from a home server in SNMP / statistics
code.
* Set EAP-Session-Resumed = Yes, not "No" when session is resumed.
* radmin packet counter statistics are now unsigned, for numbers
2^31..2^32. After that they roll over to zero.
* Be more careful about expanding data in PAP and MS-CHAP modules.
This prevents login failures when passwords contain '{'.
* Clean up zombie children if there were many "exec" modules being
run for one packet, all with "wait = no".
* re-open log file after HUP.
* Fix "no response to proxied packet" complaint for Coa / Disconnect
packets. It shouldn't ignore replies to packets it sent.
* Calculate IPv6 netmasks correctly.
* Fix SQL module to re-open sockets if they unexpectedly close.
* Track scope for IPv6 addresses. This lets us use link-local
addresses properly.
* Updated Makefiles to no longer use the shell for recursing into
subdirs. "make -j 2" should now work.
* Updated raddb/sql/mysql/ippool.conf to use "= NULL".
* Updated Makefiles so that "make reconfig" no longer uses the shell
for recursing into subdirs, and re-builds all "configure" files.
* Used above method to regenerate all configure scripts.
* Updated SQL module to allow "server" field of "nas" table
to be blank: "". This means the same as it being NULL.
* Fixed regex realm example. Create Realm attribute with value
of realm from User-Name, not from regex.
* If processing a DHCP Discover returns "fail / reject", ignore
the packet rather than sending a NAK.
* Allow '%' to be escaped in sqlcounter module.
* Fix typo internal hash table.
* For PEAP and TTLS, the tunneled reply is added to the reply,
rather than integrated via the operators. This allows multiple
VSAs to be added, where they would previously be discarded.
* Make request number unsigned. This changes nothing other than
the debug output when the server receives more than 2^31 packets.
* Don't block when reading child output in 'exec wait'. This means
that blocked children get killed, instead of blocking the server.
* Enabled building without any proxy functionality
* radclient now prefers IPv4, to match the default server config.
* Print useful error when a realm regex is invalid
* relaxed rules for preprocess module "with_cisco_vsa_hack". The
attributes can now be integer, ipaddr, etc. (i.e. non-string)
* Allow rlm_ldap to build if ldap_set_rebind_proc() has only
2 arguments.
* Update configure script for rlm_python to avoid dynamic linking
problems on some platforms.
* Do suid to "user" when running in debug mode as root
* Make "allow_core_dumps" work in more situations.
* In detail file reader, treat bad records as EOF.
This allows it to continue working when the disk is full.
* Fix Oracle default accounting queries to work when there are no
gigawords attributes. Other databases already had the fix.
* Fix rlm_sql to show when it opens and closes sockets. It already
says when it cannot connect, so it should say when it can connect.
* "chmod -x" for a few C source files.
* Pull update spec files, etc. from RedHat into the redhat/ directory.
* Allow spaces when parsing integer values. This helps people who
put "too much" into an SQL value field.
snmpd:
- Change default AgentX target from 0.0.0.0:705 to localhost:705
- Fix CVE-2008-4309 (GETBULK issue reported by Oscar Mira-Sanchez)
- Fix handling of multiple matching VACM entries
(Use the "best" match, rather than the first one).
Note that this could potentially affect the behaviour of
existing access control configurations.
- Latch large-disk statistics at 2Tb (rather than wrapping)
Linux:
- Fix build on modern distributions (using rpm-4.6)
Windows:
- Fix various builds (recent MSVC, MinGW, IPv6, winExtDLL)
Changes in 2.1.3
================
* FIX: afpd: fix a serious error in networking IO code
* FIX: afpd: Solaris 10 compatibilty fix: don't use SO_SNDTIMEO, use
non-blocking IO and select instead for writing/sending data.
* UPD: Support for BerkeleyDB 5.0.
Changes in 2.1.2
================
* FIX: afpd: fix for possible crash in case more then one server is
configured in afpd.conf.
* FIX: afpd: ExtendedAttributes in FreeBSD
* FIX: afpd: sharing home folders corrupted the per volume umask.
* UPD: afpd: umask for home folders is no longer taken from startup umask.
* UPD: afpd: dont and permissions with parent folder when creating new
directories on "upriv" volumes.
* UPD: afpd: use 'afpserver@fqdn' instead of 'afpserver/fqdn@realm'.
Prevents a crash in older GNU GSSAPI libs on eg. CentOS 5.x.
Changes in 2.1.1
================
* UPD: fallback to a temporary in memory tdb CNID database if the volume
database can't be opened now works with the default backend "dbd" too.
* FIX: afpd: afp_ldap.conf was missing from tarball. This only effected
[Open]Solaris.
* FIX: afpd: Check if options->server is set in set_signature, preventing
SIGSEGV.
* FIX: afpd: server signature wasn't initialized in some cases
* FIX: DESTDIR support: DESTDIR was expanded twice
* FIX: Fix for compilation error if header files of an older Netatalk
version are installed.
Changes in 2.1-release
======================
* NEW: afpd: new volume option "volsizelimit" for limitting reported volume
size. Useful for limitting TM backup size.
* UPD: dbd: -c option for rebuilding volumes which prevents the creation
of .AppleDouble stuff, only removes orphaned files.
Changes in 2.1-beta2
====================
* NEW: afpd: static generated AFP signature stored in afp_signature.conf,
cf man 5 afp_signature.conf
* NEW: afpd: clustering support: new per volume option "cnidserver".
* UPD: afpd: set volume defaults options "upriv" and "usedots" in the
volume config file AppleVolumes.default. This will only affect
new installations, but not upgrades.
* FIX: afpd: prevent security attack guessing valid server accounts. afpd
now returns error -5023 for unknown users, as does AppleFileServer.
Changes in 2.1-beta1
====================
* NEW: afpd: AFP 3.2 support
* NEW: afpd: Extended Attributes support using native attributes or
using files inside .AppleDouble directories.
* NEW: afpd: ACL support with ZFS
* NEW: cnid_metad: options -l and -f to configure logging
* NEW: IPv6 support
* NEW: AppleDouble compatible UNIX files utility suite `ad ...`.
With 2.1 only `ad ls`.
* NEW: CNID database maintanance utility dbd
* NEW: support BerkeleyDB upgrade. Starting with the next release
after 2.1 in case of BerkeleyDB library updates, Netatalk
will be able to upgrade the CNID databases.
* NEW: afpd: store and read CNIDs to/from AppleDouble files by default.
This is used as a cache and as a backup in case the database
is deleted or corrupted. It can be disabled with a new volume
option "nocnidcache".
* NEW: afpd: sending SIGINT to a child afpd process enables debug logging
to /tmp/afpd.PID.XXXXXX.
* NEW: configure args to download and install a "private" Webmin instance
including only basic Webmin modules plus our netatalk.wbm.
* NEW: fallback to a temporary in memory tdb CNID database if the volume
database can't be opened.
* NEW: support for Unicode characters in the range above U+010000 using
internal surrogate pairs
* NEW: apple_dump: utility to dump AppleSingle and AppleDouble files
* NEW: afpldaptest: utility to check afp_ldap.conf.
* UPD: atalkd and papd are now disabled by default. AppleTalk is legacy.
* UPD: slp advertisement is now disabled by default. server option -slp
SRVLOC is legacy.
* UPD: cdb/dbd CNID backend requires BerkeleyDB >= 4.6
* UPD: afpd: default CNID backend is "dbd"
* UPD: afpd: try to install PAM config that pulls in system|common auth
* UPD: afpd: symlink handling: never followed server side, client resolves
them, so it's safe to use them now.
* UPD: afpd: Comment out all extension->type/creator mappings in
AppleVolumes.system. They're unmaintained, possibly wrong and
do not fit for OS X.
* FIX: rewritten logger
* FIX: afpd: UNIX permissions handling
* FIX: cnid_dbd: always use BerkeleyDB transactions
* FIX: initscripts installation now correctly uses autoconf paths,
ie they're installed to --sysconfdir.
* FIX: UTF-8 volume name length
* FIX: atalkd: workaround for broken Linux 2.6 AT kernel module:
Linux 2.6 sends broadcast queries to the first available socket
which is in our case the last configured one. atalkd now tries to
find the right one.
Note: now a misconfigured or plugged router can broadcast a wrong route !
* REM: afpd: removed CNID backends "db3", "hash" and "mtab"
* REM: cnid_maint: use dbd
* REM: cleanappledouble.pl: use dbd
* REM: nu: use `macusers` instead
S3cmd lets you copy files from/to Amazon S3 (Simple Storage Service) using a
simple to use command line client. Supports rsync-like backup, GPG encryption,
and more. Also supports management of Amazon's CloudFront content delivery
network.
* added dnssec support.
* new setting cmd:stifle-rl-history to limit command history size.
* fixed exit code of mget/mput.
* fixed compilation on some systems.
* fixed crash of `cls -s' on MacOS X x64.
* torrent: don't try to connect back to peers which connected to us.
* rancid: remove sequences from IPv6 prefix-lists
* clogin: adjust default ssh password prompt for ExtremeOS 12.3.3.6
* rancid: Accept '>' prompt, rather than just '#'
* avologin: fix ssh command substitution
* fnrancid: filter application signature, System Time & conf_file_ver=
from GetSystem/GetConf
* mrvrancid: filter other oscillating info from show version
* xrrancid: disable timestamps
* hlogin: implement -autoenable for newer hp procurve releases
* cat5rancid: snmp community may have multiple spaces b/t community name
and permissions
* cat5rancid: filter local user password
* f5rancid: filter Failover time stamps
* hlogin: Add support for ssh identity file & passphrase for newer boxes
* rancid: split IOS-XR into its own device type: cisco-xr
* clogin: set term width for catos like for ios.
* rancid: parse admin show diag for XR better with a separate function
* hlogin: hpuifilter got omitted from the ssh spawn; replace it.
* nxrancid: match unknown command errors appropriately & GC some junk
carried-over from IOS-rancid.
* rancid: check for device busy when opening flash fails, which seems to
occur on 6500s when some other command is run.
* *login: support :port method syntax for ssh and adjust to allow spaces
in sshcmd
* jrancid: fix return values of formatting functions
* clogin: set terminal width so that o/p is consistent
* rancid: filter some crud resulting from the change in handling non-empty
comment lines. fail if the configuration buffer fills. filter
dhcp_[^[:space:].].txt from flash directories, so it does not create
constant changes resulting from the ip dhcp database saves. filter ldap host
password on PIX. when compressing consecutive comment lines, only consider
empty lines.
* arancid: handle password filter for HP 1:10Gb Ethernet Blade Switch
5.0.4-Base, running AOS
* *login: add cloginrc timeout directive
* nrancid: fix control number match
* rancid: remove ASA coredump* filter - Cisco Bug CSCsz85597, fixed in
8.2(1.2), 8.3(0.0), 100.3(0.3)M
* f5rancid: adjust fan rpm and config sync time filters for new f5 code
* rancid: ACE/SANOS report invalid input differently. skip leading blank lines
in config.remove ASA keys such as tacacs and radius. match non-space for
usernames in "Written by" line.
* *rancid: quote meta characters
* rancid: Fail on error msg "% Configuration buffer full" seen on 6500. Dont
filter 'show vlan' on Catalyst 3550/4500s
* import Arista script
* jerancid: fix for 'show environment all' for filtering with auto-sync
on BRASes
* francid,flogin: edgeiron can not disable the pager and does not offer
some commands found on the bigirons
* rancid: filter coredumpinfo/coredump.cfg found on ASA - rancid-discuss@
* f5rancid: fileter HA peer status
* WTI scripts from Geert Jan de Groot with a few tweaks
* jerancid: include standby slots in showversion o/p
* lg: add code for LG_SINGLE config knob
* clogin: run_commands() needs do_saveconfig
* f10rancid: change fan status parsing to handle c300
* nxrancid: collect license info; fix 'show env temp' & 'show
env power' parsing; drop unused code.
* change zero-config check to avoid broken awks
Upstream changes:
0.99 July 13 2010
- Add customizable check_for_spawn and min_child_ttl settings in PreFork (Graham Barr)
- Add other_child_died_hook (Daniel Kahn Gillmor)
- Make Multiplex do $mux->add($sock) for UDP sockets (Kristoffer Møllerhøj)
- Change Net::Server::Daemonize to use kill 0 rather than the unportable `ps`
- Fix calling conventions of MultiType
- Avoid select in SSLEAY that was allowing for infinite spin loop
- Fix tie_stdout mode to not warn about unopen handles.
- Added Net::Server::HTTP base class for basic HTTP daemon handling.
- Change examples/httpd to use Net::Server::HTTP
0.98 May 05 2010
- Add SSLeay proto - finally a workable SSL solution.
- Add minimal Net::Server::TiedHandle to allow for STDIN and STDOUT to work with SSLEAY
- Net::Server::TiedHandle also support tied_stdin_callback and tied_stdout_callback
Feb 08 2008
- Allow for port => 0 which lets the OS auto assign a port on some OSes (Blackie Hlasek)
- Add idle_loop_hook to PreForkSimple and PreFork (David Zuhn)
- Add consistent formatting capabilities to the log method (whethere Syslog is used or not) (David Zuhn)
- Warn when default listen value is used - try to make it a sensible default (Mark Martinec)
- Allow for non-zero exit value - particularly when called from fatal (David Schweikert)
--- 9.7.1-P2 released ---
2931. [security] Temporarily and partially disable change 2864
because it would cause inifinite attempts of RRSIG
queries. This is an urgent care fix; we'll
revisit the issue and complete the fix later.
[RT #21710]
--- 9.7.1-P1 released ---
2926. [rollback] Temporarially rollback change 2748. [RT #21594]
2925. [bug] Named failed to accept uncachable negative responses
from insecure zones. [RT# 21555]
Based on PR#43610 by Wen Heping.
While here, convert tclsh related matters to use pkgsrc frameworks.
--- 4.0.11 2010/07/09
CCL fixes: bug 2895 and bug 3539.
GR1-display: add comma in display - was removed by mistake in
version 4.0.0.
Windows installer: bundle MSVCP90.dll - used by icuuc42.dll.
SRU: Merge cookies on HTTP redirects (Giannis Kosmas <kosmas@lib.uoc.gr>).
--- 4.0.10 2010/06/18
ZOOM C: Add ZOOM_resultset_release. ZOOM_resultset_release releases a
result set from a connection. The result set will be on its own
thereafter; no operations on it will perform retrievals from a target.
Only cached copies are returned.
ZOOM C:fix case for HTTP servers responding with Connection:close.
Ensure that if there is a current task it is resumed (like fetching
more records in a result set) . Bug #3484.
PQF parser: use odr_atoi for Odr_int (not atoi)
Minor PQF encoding and decoding changes; reformat. PQF decoding: attribute
values that contain any non-digits are treated as string attributes
(previously decoding only checked for leading character ([0-9]). PQF
encoding: attribute string values are not surrounded by double-quotes.
* fix "P_DETACH" and Pod::Usage issues with perl 5.12
* relax cfgmaker option parsing when figuring whether to test for highspeed
counters or not.
* fix sorting of numbered interface names index maker
* belarusian translation for mrtg 2.16
Changes 2.16.3:
* three new config options to compliment the existing
RRDRowCount option to explicitly set the size of all RRAs
* allow to rename target in the clonedirectory option
* add import to the require File::Copy
* support multiple options in ifdesc and ifref setting for cfgmaker
* teach cfgmaker about nortel switches
* make sure rates over 4G work too
* allow group and user option to be set to roo
Changes from dhcpcd-5.2.4 include:
* Always daemonise in master mode as some interface up/downs can trigger timeout
* Improved NTP handling on Debian based systems
* dhcpcd -n will now re-read the configuration file
This switches to the gnome-2.30 release branch.
pkgsrc note: added "telepathy" option for integration with the
telepathy/farsight framework (defaults to "off" for now)
