pkgsrc changes:
- Take MAINTAINERship
Changes:
1.7.3.2
-------
corrections:
- SIGSEGV and other signals could lead to a 100% CPU loop
- Failing name resolution could lead to SIGSEGV
Thanks to Max for reporting this issue.
- Include <stddef.h> for ptrdiff_t
Thanks to Jeroen Roovers for reporting this issue.
- Building with --disable-sycls failed due to missing sslcls.h defines
Socat hung when configured with --disable-sycls.
- Some minor corrections with includes etc.
- Option so-reuseport did not work. Thanks to Some Raghavendra Prabhu
for sending a patch.
- Programs invoked with EXEC, nofork, and -u or -U had stdin and stdout
incorrectly assigned
Test: EXEC_NOFORK_UNIDIR
Thanks to David Reiss for reporting this problem.
- Socat exited with status 0 even when a program invoked with SYSTEM or
EXEC failed.
Tests: SYSTEM_RC EXEC_RC
Issue reported by Felix Winkelmann.
- AddressSanitizer reported a few buffer overflows (false positives).
Nevertheless fixed Socat source.
Issue reported by Hanno Böck.
- Socat did not use option ipv6-join-group.
Test: USE_IPV6_JOIN_GROUP
Thanks to Linux Lüssing for sending a patch.
- UDP-LISTEN did not honor the max-children option.
Test: UDP4MAXCHILDREN UDP6MAXCHILDREN
Thanks to Leander Berwers for reporting this issue.
- Options so-rcvtimeo and so-sndtimeo do not work with poll()/select()
and therefore were useless.
Thanks to Steve Borenstein for reporting this issue.
- Option dhparam was documented as dhparams. Added the alias name
dhparams to fix this.
Thanks to Alexander Neumann for sending a patch.
- Options shut-down and shut-close did not work.
Thanks to Stefan Schimanski for providing a patch.
- There was a bug in printing readline log message caused by a misleading
indentation.
Thanks to Paul Wouters for reporting.
- The internal vsnprintf_r function looped or crashed on size parameter
with hexadecimal output.
- Ignore exit code of child process when it was killed by master due to
EOF
- Corrected byte order on read of IPV6_TCLASS value from ancillary
message
- Fixed type of the bool element in options. This had bug caused failures
e.g. of ignoreeof on big-endian systems when bool was not based on int.
- On systems with predefined bool type whose size differs from int some
IPv6 and TCP options (per setsockopt()) failed.
- Length of integral data in ancillary messages varies (TOS: 1 byte,
TTL: 4 bytes), the old implementation failed for TTL on big-endian
hosts.
- Fixed an issue in options processing: TUN and DNS flags had failed on
big-endian systems and the NO- forms had probable never worked.
porting:
- Type conflict between int and sig_atomic_t between declaration and
definition of diag_immediate_type and diag_immediate_exit broke
compilation on FreeBSD 10.1 with clang. Thanks to Emanuel Haupt for
reporting this bug.
- Socat failed to compile on platforms with OpenSSL without
DTLSv1_client_method or DTLSv1_server_method.
Thanks to Simon Matter for sending a patch.
- NuttX OS headers do not provide struct ip, thus socat did not compile.
Made struct ip subject to configure.
Thanks to SP for reporting this issue.
- Socat failed to compile with OpenSSL version 1.0.2d where
SSLv3_server_method and SSLv3_client_method are no longer defined.
Thanks to Mischa ter Smitten for reporting this issue and providing
a patch.
- configure checked for OpenSSL EC_KEY assuming it is a define but it
is a type, thus OpenSSL ECDHE ciphers failed even on Linux.
Thanks to Andrey Arapov for reporting this bug.
- Changes to make socat compile with OpenSSL 1.1.
Thanks to Sebastian Andrzej Siewior e.a. from the Debian team for
providing the base patch.
Debian Bug#828550
- Make Socat compatible with BoringSSL.
Thanks to Matt Braithwaite for providing a patch.
- OpenSSL: Use RAND_status to determine PRNG state
Thanks to Adam Langley for providing a patch
- AIX-7 uses an extended O_ACCMODE that does not fit socat's internal
requirements. Thanks to Garrick Trowsdale for providing a patch
- LibreSSL support: check for OPENSSL_NO_COMP
Thanks to Bernard Spil for providing a patch
testing:
- socks4echo.sh and socks4a-echo.sh hung with new bash with read -n
- test.sh: stderr; option -v (verbose); FDOUT_ERROR description
- improved proxy.sh - it now also takes hostnames
- A few corrections in test.sh
- DTLS1 test hangs on some distributions. Test is now only performed
with OpenSSL 1.0.2 or higher.
- More corrections to test.sh that reveal a mistake with IPV6_TCLASS
docu:
- Corrected source of socat man page to correctly show man references
like socket(2); removed obseolete entries from See Also
- Docu and some comments mentioned addresses SSL-LISTEN and SSL-CONNECT
that do not exist (OPENSSL-LISTEN, SSL-L; and OPENNSSL-CONNECT, SSL
are correct).
Thanks to Zhigang Wang for reporting this issue.
- Fixed a couple of English spelling and grammar mistakes.
Thanks to Jakub Wild for sending the patches.
- NOEXPAND() was not resolved 2 times.
- More minor docu corrections
legal:
- Added contributors to copyright notices. Suggested by Matt Braithwaite.
Tuesday, Oct. 25, 2016 mcr@sandelman.ca
Summary for 1.8.1 libpcap release
Add a target in Makefile.in for Exuberant Ctags use: 'extags'.
Rename configure.in to configure.ac: autoconf 2.59
Clean up the name-to-DLT mapping table.
Add some newer DLT_ values: IPMI_HPM_2,ZWAVE_R1_R2,ZWAVE_R3,WATTSTOPPER_DLM,ISO_14443,RDS
Clarify what the return values are for both success and failure.
Many changes to build on windows
Check for the "break the loop" condition in the inner loop for TPACKET_V3.
Fix handling of packet count in the TPACKET_V3 inner loop: GitHub issue #493.
Filter out duplicate looped back CAN frames.
Fix the handling of loopback filters for IPv6 packets.
Add a link-layer header type for RDS (IEC 62106) groups.
Use different intermediate folders for x86 and x64 builds on Windows.
On Linux, handle all CAN captures with pcap-linux.c, in cooked mode.
Removes the need for the "host-endian" link-layer header type.
Compile with '-Wused-but-marked-unused' in devel mode if supported
Have separate DLTs for big-endian and host-endian SocketCAN headers.
Reflect version.h being renamed to pcap_version.h.
Require that version.h be generated: all build procedures we support generate version.h (autoconf, CMake, MSVC)!
Properly check for sock_recv() errors.
Re-impose some of Winsock's limitations on sock_recv().
Replace sprintf() with pcap_snprintf().
Fix signature of pcap_stats_ex_remote().
Initial cmake support for remote packet capture.
Have rpcap_remoteact_getsock() return a SOCKET and supply an "is active" flag.
Clean up {DAG, Septel, Myricom SNF}-only builds.
Do UTF-16-to-ASCII conversion into the right place.
pcap_create_interface() needs the interface name on Linux.
Clean up hardware time stamp support: the "any" device does not support any time stamp types.
Add support for capturing on FreeBSD usbusN interfaces.
Add a LINKTYPE/DLT_ value for FreeBSD USB.
Go back to using PCAP_API on Windows.
CMake support
Add TurboCap support from WinPcap.
Recognize 802.1ad nested VLAN tag in vlan filter.
Thursday Sep. 3, 2015 guy@alum.mit.edu
Summary for 1.7.5 libpcap release
Man page cleanups.
Add some allocation failure checks.
Fix a number of Linux/ucLinux configure/build issues.
Fix some memory leaks.
Recognize 802.1ad nested VLAN tag in vlan filter.
Fix building Bluetooth Linux Monitor support with BlueZ 5.1+
fixes the most crazy number of buffer overflow CVEs in printing
functions (41 of them).
changelog
Wednesday January 18, 2017 devel.fx.lebail@orange.fr
Summary for 4.9.0 tcpdump release
General updates:
Improve separation frontend/backend (tcpdump/libnetdissect)
Don't require IPv6 library support in order to support IPv6 addresses
Introduce data types to use for integral values in packet structures
Fix display of timestamps with -tt, -ttt and -ttttt options
Fix some heap overflows found with American Fuzzy Lop by Hanno Boeck and others
(More information in the log with CVE-2016-* and CVE-2017-*)
Change the way protocols print link-layer addresses (Fix heap overflows
in CALM-FAST and GeoNetworking printers)
Pass correct caplen value to ether_print() and some other functions
Fix lookup_nsap() to match what isonsap_string() expects
Clean up relative time stamp printing (Fix an array overflow)
Fix some alignment issues with GCC on Solaris 10 SPARC
Add some ND_TTEST_/ND_TCHECK_ macros to simplify writing bounds checks
Add a fn_printztn() which returns the number of bytes processed
Add nd_init() and nd_cleanup() functions. Improve libsmi support
Add CONTRIBUTING file
Add a summary comment in all printers
Compile with more warning options in devel mode if supported (-Wcast-qual, ...)
Fix some leaks found by Valgrind/Memcheck
Fix a bunch of de-constifications
Squelch some Coverity warnings and some compiler warnings
Update Coverity and Travis-CI setup
Update Visual Studio files
Frontend:
Fix capsicum support to work with zerocopy buffers in bpf
Try opening interfaces by name first, then by name-as-index
Work around pcap_create() failures fetching time stamp type lists
Fix a segmentation fault with 'tcpdump -J'
Improve addrtostr6() bounds checking
Add exit_tcpdump() function
Don't drop CAP_SYS_CHROOT before chrooting
Fixes issue where statistics not reported when -G and -W options used
New printers supporting:
Generic Protocol Extension for VXLAN (VXLAN-GPE)
Home Networking Control Protocol (HNCP), RFCs 7787 and 7788
Locator/Identifier Separation Protocol (LISP), type 3 and type 4 packets
Marvell Extended Distributed Switch Architecture header (MEDSA)
Network Service Header (NSH)
REdis Serialization Protocol (RESP)
Updated printers:
802.11: Beginnings of 11ac radiotap support
802.11: Check the Protected bit for management frames
802.11: Do bounds checking on last_presentp before dereferencing it (Fix a heap overflow)
802.11: Fix the radiotap printer to handle the special bits correctly
802.11: If we have the MCS field, it's 11n
802.11: Only print unknown frame type or subtype messages once
802.11: Radiotap dBm values get printed as dB; Update a test output accordingly
802.11: Source and destination addresses were backwards
AH: Add a bounds check
AH: Report to our caller that dissection failed if a bounds check fails
AP1394: Print src > dst, not dst > src
ARP: Don't assume the target hardware address is <= 6 octets long (Fix a heap overflow)
ATALK: Add bounds and length checks (Fix heap overflows)
ATM: Add some bounds checks (Fix a heap overflow)
ATM: Fix an incorrect bounds check
BFD: Update specification from draft to RFC 5880
BFD: Update to print optional authentication field
BGP: Add decoding of ADD-PATH capability
BGP: Add support for the AIGP attribute (RFC7311)
BGP: Print LARGE_COMMUNITY Path Attribute
BGP: Update BGP numbers from IANA; Print minor values for FSM notification
BOOTP: Add a bounds check
Babel: Add decoder for source-specific extension
CDP: Filter out non-printable characters
CFM: Fixes to match the IEEE standard, additional bounds and length checks
CSLIP: Add more bounds checks (Fix a heap overflow)
ClassicalIPoATM: Add a bounds check on LLC+SNAP header (Fix a heap overflow)
DHCP: Fix MUDURL and TZ options
DHCPv6: Process MUDURL and TZ options
DHCPv6: Update Status Codes with RFCs/IANA names
DNS: Represent the "DNSSEC OK" bit as "DO" instead of "OK". Add a test case
DTP: Improve packet integrity checks
EGP: Fix bounds checks
ESP: Don't use OpenSSL_add_all_algorithms() in OpenSSL 1.1.0 or later
ESP: Handle OpenSSL 1.1.x
Ethernet: Add some bounds checking before calling isoclns_print (Fix a heap overflow)
Ethernet: Print the Length/Type field as length when needed
FDDI: Fix -e output for FDDI
FR: Add some packet-length checks and improve Q.933 printing (Fix heap overflows)
GRE: Add some bounds checks (Fix heap overflows)
Geneve: Fix error message with invalid option length; Update list option classes
HNCP: Fix incorrect time interval format. Fix handling of IPv4 prefixes
ICMP6: Fetch a 32-bit big-endian quantity with EXTRACT_32BITS()
ICMP6: dagid is always an IPv6 address, not an opaque 128-bit string
IGMP: Add a length check
IP: Add a bounds check (Fix a heap overflow)
IP: Check before fetching the protocol version (Fix a heap overflow)
IP: Don't try to dissect if IP version != 4 (Fix a heap overflow)
IP: Stop processing IPPROTO_ values once we hit IPPROTO_IPCOMP
IPComp: Check whether we have the CPI before we fetch it (Fix a heap overflow)
IPoFC: Fix -e output (IP-over-Fibre Channel)
IPv6: Don't overwrite the destination IPv6 address for routing headers
IPv6: Fix header printing
IPv6: Stop processing IPPROTO_ values once we hit IPPROTO_IPCOMP
ISAKMP: Clean up parsing of IKEv2 Security Associations
ISOCLNS/IS-IS: Add support for Purge Originator Identifier (RFC6232) and test cases
ISOCLNS/IS-IS: Don't overwrite packet data when checking the signature
ISOCLNS/IS-IS: Filter out non-printable characters
ISOCLNS/IS-IS: Fix segmentation faults
ISOCLNS/IS-IS: Have signature_verify() do the copying and clearing
ISOCLNS: Add some bounds checks
Juniper: Make sure a Juniper header TLV isn't bigger than what's left in the packet (Fix a heap overflow)
LLC/SNAP: With -e, print the LLC header before the SNAP header; without it, cut the SNAP header
LLC: Add a bounds check (Fix a heap overflow)
LLC: Clean up printing of LLC packets
LLC: Fix the printing of RFC 948-style IP packets
LLC: Skip the LLC and SNAP headers with -x for 802.11 and some other protocols
LLDP: Implement IANA OUI and LLDP MUD option
MPLS LSP ping: Update printing for RFC 4379, bug fixes, more bounds checks
MPLS: "length" is now the *remaining* packet length
MPLS: Add bounds and length checks (Fix a heap overflow)
NFS: Add a test that makes unaligned accesses
NFS: Don't assume the ONC RPC header is nicely aligned
NFS: Don't overflow the Opaque_Handle buffer (Fix a segmentation fault)
NFS: Don't run past the end of an NFSv3 file handle
OLSR: Add a test to cover a HNA sgw case
OLSR: Fix 'Advertised networks' count
OLSR: Fix printing of smart-gateway HNAs in IPv4
OSPF: Add a bounds check for the Hello packet options
OSPF: Do more bounds checking
OSPF: Fix a segmentation fault
OSPF: Fix printing 'ospf_topology_values' default
OTV: Add missing bounds checks
PGM: Print the formatted IP address, not the raw binary address, as a string
PIM: Add some bounds checking (Fix a heap overflow)
PIMv2: Fix checksumming of Register messages
PPI: Pass an adjusted struct pcap_pkthdr to the sub-printer
PPP: Add some bounds checks (Fix a heap overflow)
PPP: Report invalid PAP AACK/ANAK packets
Q.933: Add a missing bounds check
RADIUS: Add Value 13 "VLAN" to Tunnel-Type attribute
RADIUS: Filter out non-printable characters
RADIUS: Translate UDP/1700 as RADIUS
RESP: Do better checking of RESP packets
RPKI-RTR: Add a return value check for "fn_printn" call
RPKI-RTR: Remove printing when truncated condition already detected
RPL: Fix 'Consistency Check' control code
RPL: Fix suboption print
RSVP: An INTEGRITY object in a submessage covers only the submessage
RSVP: Fix an infinite loop; Add bounds and length checks
RSVP: Fix some if statements missing brackets
RSVP: Have signature_verify() do the copying and clearing
RTCP: Add some bounds checks
RTP: Add some bounds checks, fix two segmentation faults
SCTP: Do more bounds checking
SFLOW: Fix bounds checking
SLOW: Fix bugs, add checks
SMB: Before fetching the flags2 field, make sure we have it
SMB: Do bounds checks on NBNS resource types and resource data lengths
SNMP: Clean up the "have libsmi but no modules loaded" case
SNMP: Clean up the object abbreviation list and fix the code to match them
SNMP: Do bounds checks when printing character and octet strings
SNMP: Improve ASN.1 bounds checks
SNMP: More bounds and length checks
STP: Add a bunch of bounds checks, and fix some printing (Fix heap overflows)
STP: Filter out non-printable characters
TCP: Add bounds and length checks for packets with TCP option 20
TCP: Correct TCP option Kind value for TCP Auth and add SCPS-TP
TCP: Fix two bounds checks (Fix heap overflows)
TCP: Make sure we have the data offset field before fetching it (Fix a heap overflow)
TCP: Put TCP-AO option decoding right
TFTP: Don't use strchr() to scan packet data (Fix a heap overflow)
Telnet: Add some bounds checks
TokenRing: Fix -e output
UDLD: Fix an infinite loop
UDP: Add a bounds check (Fix a heap overflow)
UDP: Check against the packet length first
UDP: Don't do the DDP-over-UDP heuristic check up front
VAT: Add some bounds checks
VTP: Add a test on Mgmt Domain Name length
VTP: Add bounds checks and filter out non-printable characters
VXLAN: Add a bound check and a test case
ZeroMQ: Fix an infinite loop
Tuesday October 25, 2016 mcr@sandelman.ca
Summary for 4.8.1 tcpdump release
Fix "-x" for Apple PKTAP and PPI packets
Use PRIx64 to print a 64-bit number in hex.
Printer for HNCP (RFCs 7787 and 7788).
dagid is always an IPv6 address, not an opaque 128-bit string, and other fixes to RPL printer.
RSVP: Add bounds and length checks
OSPF: Do more bounds checking
Handle OpenSSL 1.1.x.
Initial support for the REdis Serialization Protocol known as RESP.
Add printing function for Generic Protocol Extension for VXLAN
draft-ietf-nvo3-vxlan-gpe-01
Network Service Header: draft-ietf-sfc-nsh-01
Don't recompile the filter if the new file has the same DLT.
Pass an adjusted struct pcap_pkthdr to the sub-printer.
Add three test cases for already fixed CVEs
CVE-2014-8767: OLSR
CVE-2014-8768: Geonet
CVE-2014-8769: AODV
Don't do the DDP-over-UDP heuristic first: GitHub issue #499.
Use the new debugging routines in libpcap.
Harmonize TCP source or destination ports tests with UDP ones
Introduce data types to use for integral values in packet structures.
RSVP: Fix an infinite loop
Support of Type 3 and Type 4 LISP packets.
Don't require IPv6 library support in order to support IPv6 addresses.
Many many changes to support libnetdissect usage.
Add a test that makes unaligned accesses: GitHub issue #478.
add a DNSSEC test case: GH #445 and GH #467.
BGP: add decoding of ADD-PATH capability
fixes to LLC header printing, and RFC948-style IP packets ----------------------------------------------------------------------
16.0.2
- Workaround bug in libzmq-4.2.0 causing EINVAL on poll.
16.0.1
- Fix erroneous EAGAIN that could happen on async sockets
- Bundle libzmq 4.1.6
16.0
- Support for Python 2.6 and Python 3.2 is dropped. For old Pythons, use
:command:`pip install "pyzmq<16"` to get the last version of pyzmq
that supports these versions.
- Include zmq.h
- Deprecate zmq.Stopwatch. Native Python timing tools can be used
instead.
- Better support for using pyzmq as a Cython library - bundle zmq.h when
pyzmq bundles libzmq as an extension - add
:func:`zmq.get_library_dirs` to find bundled libzmq
- Updates to setup.py for Cython 0.25 compatibility
- Various asyncio/future fixes: - support raw sockets in pollers - allow
cancelling async sends
- Fix :meth:`IOLoop.current` in :mod:`zmq.green`
15.4
- Load bundled libzmq extension with import rather than CDLL, which
should fix some manifest issues in certain cases on Windows.
- Avoid installing asyncio sources on Python 2, which confuses some
tools that run python -m compileall, which reports errors on the
Python 3-only files.
- Bundle msvcp.dll in Windows wheels on CPython 3.5, which should fix
wheel compatibility systems without Visual C++ 2015 redistributable.
- :meth:`zmq.Context.instance` is now threadsafe.
- FIX: sync some behavior in zmq_poll and setting LINGER on
close/destroy with the CFFI backend.
- PERF: resolve send/recv immediately if events are available in async
Sockets
- Async Sockets (asyncio, tornado) now support send_json, send_pyobj,
etc.
- add preliminary support for zmq.DRAFT_API reflecting
ZMQ_BUILD_DRAFT_API, which indicates whether new APIs in prereleases
are available.
15.3
- Bump bundled libzmq to 4.1.5, using tweetnacl for bundled curve
support instead of libsodium
- FIX: include .pxi includes in installation for consumers of Cython API
- FIX: various fixes in new async sockets
- Introduce :mod:`zmq.decorators` API for decorating functions to create
sockets or contexts
- Add :meth:`zmq.Socket.subscribe` and :meth:`zmq.Socket.unsubscribe`
methods to sockets, so that assignment is no longer needed for
subscribing. Verbs should be methods! Assignment is still supported for
backward-compatibility.
- Accept text (unicode) input to z85 encoding, not just bytes
- :meth:`zmq.Context.socket` forwards keyword arguments to the
:class:`Socket` constructor
15.2
- FIX: handle multiple events in a single register call in
:mod:`zmq.asyncio`
- FIX: unicode/bytes bug in password prompt in :mod:`zmq.ssh` on Python 3
- FIX: workaround gevent monkeypatches in garbage collection thread
- update bundled minitornado from tornado-4.3.
- improved inspection by setting binding=True in cython compile options
- add asyncio Authenticator implementation in :mod:`zmq.auth.asyncio`
- workaround overflow bug in libzmq preventing receiving messages larger
than MAX_INT
15.1
- FIX: Remove inadvertant tornado dependency when using
:mod:`zmq.asyncio`
- FIX: 15.0 Python 3.5 wheels didn't work on Windows
- Add GSSAPI support to Authenticators
- Support new constants defined in upcoming libzmq-4.2.dev
15.0
- PyZMQ 15 adds Future-returning sockets and pollers for both
:mod:`asyncio` and :mod:`tornado`.
- add :mod:`asyncio` support via :mod:`zmq.asyncio`
- add :mod:`tornado` future support via :mod:`zmq.eventloop.future`
- trigger bundled libzmq if system libzmq is found to be < 3. System
libzmq 2 can be forced by explicitly requesting --zmq=/prefix/.
14.7.0
Changes:
- Update bundled libzmq to 4.1.2.
- Following the lead of Python 3.5, interrupted system calls will be
retried.
Fixes:
- Fixes for CFFI backend on Python 3 + support for PyPy 3.
- Verify types of all frames in :meth:`~zmq.Socket.send_multipart`
before sending, to avoid partial messages.
- Fix build on Windows when both debug and release versions of libzmq
are found.
- Windows build fixes for Python 3.5.
14.6.0
Changes:
- improvements in :meth:`zmq.Socket.bind_to_random_port`:
- use system to allocate ports by default
- catch EACCES on Windows
- include libsodium when building bundled libzmq on Windows (includes
wheels on PyPI)
- pyzmq no longer bundles external libzmq when making a bdist. You can
use delocate to do this.
Bugfixes:
- add missing :attr:`ndim` on memoryviews of Frames
- allow :func:`copy.copy` and :func:`copy.deepcopy` on Sockets, Contexts
14.5.0
Changes:
- use pickle.DEFAULT_PROTOCOL by default in send_pickle
- with the release of pip-6, OS X wheels are only marked as 10.6-intel,
indicating that they should be installable on any newer or single-arch
Python.
- raise SSHException on failed check of host key
Bugfixes:
- fix method name in utils.wi32.allow_interrupt
- fork-related fixes in garbage collection thread
- add missing import in zmq.__init__, causing failure to import in some
circumstances
0MQ version 4.2.1 stable, released on 2016/12/31
=============================================
* New DRAFT (see NEWS for 4.2.0) Socket Monitor events:
- ZMQ_EVENT_HANDSHAKE_SUCCEED
- ZMQ_EVENT_HANDSHAKE_FAILED
These events trigger when the ZMTP security mechanism handshake is
completed. See doc/zmq_socket_monitor.txt for more information.
* New DRAFT (see NEWS for 4.2.0) Context options:
- ZMQ_MSG_T_SIZE
See doc/zmq_ctx_get.txt for more information.
* Fixed#2268 - improved compatibility with mingw32
* Fixed#2254 - ZMQ_PUB compatibility with libzmq 2.x broken
* Fixed#2245 - added support for VS2017, Windows SDK 10.0.14393.0, toolset v141
* Fixed#2242 - file descriptors leaks on fork+exec
* Fixed#2239 - retired poller item crash from reaper thread
* Fixed#2234 - improved compatibility with AIX 7.1
* Fixed#2225 - cannot pick select for poller
* Fixed#2217 - CMake build uses library version as the ABI version
* Fixed#2208 - added support for ZMQ_TOS on IPv6
* Fixed#2200 - no documentation for ZMQ_SOCKS_PROXY
* Fixed#2199 - no documentation for zmq_curve_public
* Fixed#2196 - fixed build and runtime errors on kFreeBSD
0MQ version 4.2.0 stable, released on 2016/11/04
=============================================
* For Pieter. Thanks for making all of this possible.
"Tell them I was a writer.
A maker of software.
A humanist. A father.
And many things.
But above all, a writer.
Thank You. :)"
- Pieter Hintjens
* This release introduces new APIs, but it is ABI compatible with
libzmq 4.1.2 and up.
* Note for ARM and SPARC users: an alignment problem in zmq_msg_t that could in
some cases and on some CPUs cause a SIGBUS error was solved, but it requires
a rebuild of your application against the 4.2.0 version of include/zmq.h.
To clarify, this change does not affect the internals of the library but only
the public definition of zmq_msg_t, so there is no ABI incompatibility.
* Security with Curve is now available by default thanks to Tweetnacl sources:
https://tweetnacl.cr.yp.to/index.html
Libsodium is still fully supported but has to be enabled with the build flag
--with-libsodium. Distribution and package maintainers are encouraged to use
libsodium so that the security implementation can be audited and maintained
separately.
* New Context options:
- ZMQ_MAX_MSGSZ
- ZMQ_BLOCKY
See doc/zmq_ctx_set.txt and doc/zmq_ctx_get.txt for details.
* New Socket options:
- ZMQ_HANDSHAKE_IVL
- ZMQ_SOCKS_PROXY
- ZMQ_XPUB_NODROP
- ZMQ_XPUB_MANUAL
- ZMQ_XPUB_WELCOME_MSG
- ZMQ_STREAM_NOTIFY
- ZMQ_INVERT_MATCHING
- ZMQ_HEARTBEAT_IVL
- ZMQ_HEARTBEAT_TTL
- ZMQ_HEARTBEAT_TIMEOUT
- ZMQ_XPUB_VERBOSER
- ZMQ_CONNECT_TIMEOUT
- ZMQ_TCP_MAXRT
- ZMQ_THREAD_SAFE
- ZMQ_MULTICAST_MAXTPDU
- ZMQ_VMCI_BUFFER_SIZE
- ZMQ_VMCI_BUFFER_MIN_SIZE
- ZMQ_VMCI_BUFFER_MAX_SIZE
- ZMQ_VMCI_CONNECT_TIMEOUT
- ZMQ_USE_FD
See doc/zmq_setsockopt.txt and doc/zmq_getsockopt.txt for details.
* New CURVE helper function to derive z85 public key from secret key:
zmq_curve_public
* New cross-platform atomic counter helper functions:
zmq_atomic_counter_new, zmq_atomic_counter_set, zmq_atomic_counter_inc,
zmq_atomic_counter_dec, zmq_atomic_counter_value, zmq_atomic_counter_destroy
See doc/zmq_atomic_*.txt for details.
* New DRAFT APIs early-release mechanism. New APIs will be introduced early
in public releases, and until they are stabilized and guaranteed not to
change anymore they will be unavailable unless the new build flag
--enable-drafts is used. This will allow developers and early adopters to
test new APIs before they are finalized.
NOTE: as the name implies, NO GUARANTEE is made on the stability of these APIs.
They might change or disappear entirely. Distributions are recommended NOT to
build with them.
New socket types have been introduced in DRAFT state:
ZMQ_SERVER, ZMQ_CLIENT, ZMQ_RADIO, ZMQ_DISH, ZMQ_GATHER, ZMQ_SCATTER,
ZMQ_DGRAM
All these sockets are THREAD SAFE, unlike the existing socket types. They do
NOT support multipart messages (ZMQ_SNDMORE/ZMQ_RCVMORE).
ZMQ_RADIO, ZMQ_DISH and ZMQ_DGRAM also support UDP as transport,
both unicast and multicast. See doc/zmq_udp.txt for more details.
New methods to support the new socket types functionality:
zmq_join, zmq_leave, zmq_msg_set_routing_id, zmq_msg_routing_id,
zmq_msg_set_group, zmq_msg_group
See doc/zmq_socket.txt for more details.
New poller mechanism and APIs have been introduced in DRAFT state:
zmq_poller_new, zmq_poller_destroy, zmq_poller_add, zmq_poller_modify,
zmq_poller_remove, zmq_poller_wait, zmq_poller_wait_all, zmq_poller_add_fd
zmq_poller_modify_fd, zmq_poller_remove_fd
and a new supporting struct typedef: zmq_poller_event_t
They support existing socket type, new thread-safe socket types and file
descriptors (cross-platform).
Documentation will be made available in the future before these APIs are declared
stable.
New cross-platform timers helper functions have been introduced in DRAFT state:
zmq_timers_new, zmq_timers_destroy, zmq_timers_add, zmq_timers_cancel,
zmq_timers_set_interval, zmq_timers_reset, zmq_timers_timeout,
zmq_timers_execute
and a new supporting callback typedef: zmq_timer_fn
* Many, many bug fixes. The most important fixes are backported and captured in the
4.1.x and 4.0.x changelogs.
0MQ version 4.2.0 rc1, released on 2016/11/01
=============================================
* Many changes, see ChangeLog.
0MQ version 4.1.6 stable, released on 2016/11/01
================================================
* Fixed#2051 - getifaddrs can fail with ECONNREFUSED
* Fixed#2091 - testutil.hpp fails to build on Windows XP
* Fixed#2096 - add tests/CMakeLists.in and version.rc.in to dist tar
* Fixed#2107 - zmq_connect with IPv6 "source:port;dest:port" broken
* Fixed#2117 - ctx_term assert with inproc zmq_router connect-before-bind
* Fixed#2158 - Socket monitor uses internal Pair from multiple threads
* Fixed#2161 - messages dropped due to HWM race
* Fixed#1325 - alignment issue with zmq_msg_t causes SIGBUS on SPARC and ARM
0MQ version 4.1.5 stable, released on 2016/06/17
================================================
* Fixed#1673 - CMake on Windows put PDB in wrong directory.
* Fixed#1723 - Family is not set when resolving NIC on Android.
* Fixed#1608 - Windows 7 TCP slow start issue.
* Fixed#1806 - uninitialised read in curve getsockopt.
* Fixed#1807 - build broken with GCC 6.
* Fixed#1831 - potential assertion failure with latest libsodium.
* Fixed#1850 - detection issues with tweetnacl/libsodium.
* Fixed#1877 - Avoid terminating connections prematurely
* Fixed#1887 - zmq_bind IPv4 fallback still tries IPv6
* Fixed#1866 - fails to build on SunOS 5.10 / Solaris 10
* Fixed#919 - ZMQ_LINGER (related to #1877)
* Fixed#114 - cannot unbind with same endpoint with IPv6 enabled.
* Fixed#1952 - CMake scripts not part of release tarballs
* Fixed#1542 - Fix a crash on Windows when port 5905 is in use.
* Fixed#2021 - Fix building on sparc32.
It appears that sometimes the reception of SNMP trap messages can somehow
get out of sync, and all too often this results in a scotty process which
apparently endlessly does a read() of 1 byte and gets EAGAIN, just to try
again. Instead, do some rudimentary check on the length of trap messages,
and try to re-sync the stream by finishing re-sync on first EAGAIN.
Bump PKGREVISION.
* Remove an included patches for --disable-video
Changelog:
- Fix a crash when going back from a tweet with media to another
tweet with media
- Fix compilation with --disable-video
- Decrease log level of UserStream output to debug when no internet
connection is present
Upstream changes:
# mikutter 3.5.2
* Retriever.URI was not implemented as documented
* fix custom Model related bugs
* field value dereference via [] where Model method should be called
* accessor method was not defined when Model field type was array
* multiselect widget wrote unnecessary values each time config window was open
* fix reference of deprecated method in mikutter core
* name attribute of about method in setting DSL was not used
* adjust field values for Twitter related Models
This is a hotfix release recommended for all users.
Resolved issues:
#3931: The -logfile option now works again.
Also:
The GUI "network error" dialog no longer shows up as easily in some scenarios when using Syncthing behind a reverse proxy.
XMLRPC::Lite is a Perl modules which provides a simple nterface to the
XML-RPC protocol both on client and server side. Based on SOAP::Lite
module, it gives you access to all features and transports available in
that module.
See t/26-xmlrpc.t for client examples and examples/XMLRPC/* for server
implementations.
XML::RPC module provides simple Pure Perl methods for XML-RPC
communication. It's goals are simplicity and flexibility. XML::RPC uses
XML::TreePP for parsing.
Thanks bsiegert@ for suggestion to category.
This is a regularly scheduled bugfix and improvement release recommended for all users.
Resolved issues:
#3197: There is now a warning when adding a folder that is a parent of an existing folder.
#3912: Using -logfile flag together with -no-restart now causes an error instead of silently failing.
#3891: Weak hashing is now disabled completely when the threshold percentage is > 100.
#3921: Rate limiting now actually works on ARM64 builds again.
#3924: An issue where UPnP port allocations would be incorrect under some circumstances has been fixed.
Also:
Weak hashing is a bit faster and allocates less memory.
The hashing performance reported at startup now includes weak hashing.
Changes in version 0.2.9.9 - 2017-01-23
Tor 0.2.9.9 fixes a denial-of-service bug where an attacker could
cause relays and clients to crash, even if they were not built with
the --enable-expensive-hardening option. This bug affects all 0.2.9.x
versions, and also affects 0.3.0.1-alpha: all relays running an affected
version should upgrade.
This release also resolves a client-side onion service reachability
bug, and resolves a pair of small portability issues.
o Major bugfixes (security):
- Downgrade the "-ftrapv" option from "always on" to "only on when
--enable-expensive-hardening is provided." This hardening option,
like others, can turn survivable bugs into crashes -- and having
it on by default made a (relatively harmless) integer overflow bug
into a denial-of-service bug. Fixes bug 21278 (TROVE-2017-001);
bugfix on 0.2.9.1-alpha.
o Major bugfixes (client, onion service):
- Fix a client-side onion service reachability bug, where multiple
socks requests to an onion service (or a single slow request)
could cause us to mistakenly mark some of the service's
introduction points as failed, and we cache that failure so
eventually we run out and can't reach the service. Also resolves a
mysterious "Remote server sent bogus reason code 65021" log
warning. The bug was introduced in ticket 17218, where we tried to
remember the circuit end reason as a uint16_t, which mangled
negative values. Partially fixes bug 21056 and fixes bug 20307;
bugfix on 0.2.8.1-alpha.
o Minor features (geoip):
- Update geoip and geoip6 to the January 4 2017 Maxmind GeoLite2
Country database.
o Minor bugfixes (portability):
- Avoid crashing when Tor is built using headers that contain
CLOCK_MONOTONIC_COARSE, but then tries to run on an older kernel
without CLOCK_MONOTONIC_COARSE. Fixes bug 21035; bugfix
on 0.2.9.1-alpha.
- Fix Libevent detection on platforms without Libevent 1 headers
installed. Fixes bug 21051; bugfix on 0.2.9.1-alpha.
This is a security update for TigerVNC 1.7.0 which fixes a memory
overflow issue via the RRE decoder. A malicious server could possibly
use this issue to take control of the TigerVNC viewer.
Users are advised to upgrade as soon as possible.
- Fix translation order
- Add legacy auth stream feature support
- Better support subtags with empty namespaces
- Add dialback feature support
- Fix error generation for raw xml elements
- Treat unknown message type as "normal"
- Allow including #text{} elements into #sm_failed{}
- Add xmpp:del_meta/2 function
- Fix typo in add_delay_info/4
- Make it possible to get text by lang
- Don't crash if previous delay tag misses 'from' attribute
MASTER_SITES= site1 \
site2
style continuation lines to be simple repeated
MASTER_SITES+= site1
MASTER_SITES+= site2
lines. As previewed on tech-pkg. With thanks to rillig for fixing pkglint
accordingly.
* Release 0.12.6 (12-Jan-2017)
This is a minor release to improve compatibility with Twisted and I2P.
In this release, the Foolscap test suite no longer uses several deprecated
and/or internal Twisted attributes, so it should pass cleanly on the next
release of Twisted (which will probably be named Twisted-17.0.0).
In addition, the I2P connection handler was enhanced to let applications pass
arbitrary kwargs through to the underlying "SAM" API.
Finally connection-status error messages should be slightly cleaner and
provide more useful information in the face of unrecogized exceptions.
No changelog published. From the commitlog:
lexicon 1.2.1
- Fix ttl handling.
lexicon 1.2.0
- Python 3 compatibility, removed support for Python 2.6.
- Fix route53 compat errors.
- Remove gandi and transip support. Transip library is no longer
maintained and is incompatible with python3.
3.24.0 (2017-01-13)
- Fixed a possible crash if sending FTP commands fails during a directory listing operation
- *nix: Fixed a scrolling issue in the message log if wxWidgets is built against GTK3
3.24.0-rc1 (2017-01-06)
+ The context menu for remote file search results now has a "Copy URL(s) to clipboard" item
+ Alt+number can now be used to switch between tabs in addition to Ctrl+number
+ SFTP hostkey fingerprints are now also shown as base64 encoded SHA256 hashes to match the new format displayed by OpenSSH
- Errors at the end of SFTP transfers now correctly result in transfer failures instead
- Cancelling synchronized browsing questions no longer prevents further directory changes
- Fix display issues for the filter conditions dialog
- Fix deleting multiple extensions on the filetype page in the settings
- OS X: Do not open dialogs while already processing an event, e.g. while a context menu is open
Changelog:
Version 1.4.1 (2017-01-08)
- Lower the required gspell version to 1.0
- Work around a binding problem in the gtk+ 3.18 vapi of vala 0.30
Version 1.4 (2017-01-06)
- Images in quoted tweets now look more like they actually belong to
the quoted tweet instead of the quoting tweet.
- Allow deleting tweets from the tweet info page and not just from
timelines.
- Fix the user completion not showing all possible results
- Focus the already opened window for an account if the account gets
selected in the accounts popover
- Avoid window resizing when typing in the Direct Message text box
- Add 'q' accelerator to tweet rows for quoting
- Add spellchecking. This add a dependency to gspell
- Increase gtk+ dependency to 3.18 to get rid of some workarounds.
- Increase avatar size in profiles and slightly overlap them over the
banner. Also, always show the full banner.
- Fix completion popup positioning under Wayland
- Add experimental meson build files
- Fix some videos not playing correctly
- Add a minimal video progress indicator to the video dialog
- Fix the retweet/favorite count updating in the tweet info page
