* Attempt to compile with OS X/pf
* Make all manufacturer info configurable thanks to Leo Moll
Merge PCP support (see https://github.com/miniupnp/miniupnp)
* Changes in Wget 1.15
** Add support for --method.
** Add support for file names longer than MAX_FILE.
** Support FTP listing for the FTP Server on Windows Server 2008 R2.
** Fix a regression when -c and --content-disposition are used together.
** Support shorthand URLs in an input file.
** Fix -c with servers that don't specify a content-length.
** Add support for MD5-SESS
** Do not fail on non fatal GNU TLS alerts during handshake.
** Add support for --https-only. When used wget will follow only
HTTPS links in recursive mode.
** Support Perfect-Forward Secrecy in --secure-protocol.
** Fix a problem with some IRI links that are not followed when contained in a
HTML document.
** Support some FTP servers that return an empty list with "LIST -a".
** Specify Host with the HTTP CONNECT method.
** Use the correct HTTP method on a redirection.
Features:
* recognizes ip-address and interface as synonyms for convenience.
* Support for EUI48 and EUI64 RR types enabled by default (RFC 7043).
* Support for CAA RRtype (RFC 6844).
* NSID can be set with "ascii_somestring" in ascii.
Bug fixes:
* Fix xfrd when zone transfer TCP contains zero length packets.
* Fix for NSEC3 zones where parent zone is co-hosted, also NSEC3,
because AXFRs overwrote nsec3 administration in the child zone.
* Fix that bad IXFR updates do not result in double SOA records,
and that an AXFR is started (attempted) when the zone state seems
to be inconsistent with the master's zone state.
* Log ip address for sendto and sendmmsg failures.
* Fix segfaults after read of zones with rr type WKS from zonefile.
* Seed PRNG for openssl at start of daemon, fixes SSL connection issue.
* Bugfix #534: IXFR query loop over UDP for zones that are unchanged.
* (same as in 3.2.16): fix wildcard cname to nxdomain repeated rrset.
* (same as in 3.2.16): Bugfix #542: Match RRSIG TTL with SOA TTL in
negative response.
* Check if configure in srcdir collides with outofdir build.
* Fix#546: output format errors in nsd_munin_ (Thanks Tom Hendrikx).
* Fix printout of high-chars in TXT on NetBSD.
from PR pkg/48546
scamper-dealias:
* many slight improvements to the implementation of the 'ally' alias
resolution algorithm.
* add flag to prefixscan that says the alias was inferred using a common
source address
* for json output, print flags, bump version.
scamper-ping:
* record ICMP parameter problem responses to ping.
* for json output, print tx time on probes.
sc_attach:
* add support for starting as a daemon.
* add support for specifying a command which will be used with each address
* document these options in manual page
sc_analysis_dump:
* update manual page to document unintuitive behaviour of -e option.
misc:
* getopt returns an int, not a char. important on arm. fixed in
sc_wartscat, sc_speedtrap, and sc_analysis_dump,
* silence benign warnings from clang on MacOS and cppcheck.
either because they themselves are not ready or because a
dependency isn't. This is annotated by
PYTHON_VERSIONS_INCOMPATIBLE= 33 # not yet ported as of x.y.z
or
PYTHON_VERSIONS_INCOMPATIBLE= 33 # py-foo, py-bar
respectively, please use the same style for other packages,
and check during updates.
Use versioned_dependencies.mk where applicable.
Use REPLACE_PYTHON instead of handcoded alternatives, where applicable.
Reorder Makefile sections into standard order, where applicable.
Remove PYTHON_VERSIONS_INCLUDE_3X lines since that will be default
with the next commit.
Whitespace cleanups and other nits corrected, where necessary.
however they are still listed in the shared mapfile. The SunOS linker is more
strict and declares them undefined, so avoid the mapfile on SunOS for the GTK3
build.
Pymetar is a python module and command line tool designed to fetch Metar
reports from the NOAA (http://www.noaa.gov) and allow access to the included
weather information.
Changes in libsoup from 2.44.1 to 2.44.2:
* Fixed a hang with internet radio streams in Rhythmbox (and
some other places). [#710494, Dan]
* Fixed a connection leak when cancelling the close of
a message GInputStream. [#711260, Dan]
* Plugged a few memory leaks [#711085, Christophe Fergeau]
* Fix build with --without-ntlm [#710267, Dan]
* Fixed a few warnings [Dan, Fabiano Fidêncio]
* Fixed connection-test to pass with current glib [#711361,
Colin Walters]
* Tests are now more verbose by default under "make check",
since current automake just redirects all the output to a
log file anyway. [Dan]
Changes in libsoup from 2.44.0 to 2.44.1:
* If you called g_input_stream_close() on SoupMessage or
SoupRequests's GInputStream before you finished reading it,
it would block until the rest of the response had been read
(which in the case of, eg, an infinite audio stream, meant
that it would block forever). This was an unintended change
from 2.42 and is now fixed. [#695652, Dan]
* soup_session_queue_message() on a plain SoupSession (not
SoupSessionAsync) was operating synchronously rather than
asynchronously as it should have. [#707711, Dan]
* soup-form methods now use the HTML5 x-www-form-urlencoded
rules rather than the HTML4 ones. (In particular, they leave
"-", "_", and "." unencoded.) [#708621, Alban Browaeys]
* The test programs now explicitly request the "memory"
GSettings backend, meaning they won't print a warning if
they get it accidentally, and they won't accidentally use
the dconf proxy settings if the dconf backend is available.
[Dan]
* Fix SoupSession so that if you override the proxy
configuration at construct time, it doesn't try to resolve
the default GProxyResolver. (This is important in particular
for programs that expect to run outside a user session,
which would otherwise spew errors from the dconf GSettings
backend about not being able to connect to dconf.) Likewise
with TLS settings and the TLS backend. [#708696, Dan]
* Fix the SoupServer:tls-certificate property;
soup_server_is_https() had not been updated to recognize it,
and so would return FALSE, which in turn meant that the
server would return 400 Bad Request in response to https
requests. [#709647, Fabiano Fidêncio]
* Fixed a sporadic failure in tests/connection-test. [Dan]
* Updated translations:
Tajik
Changes in libsoup from 2.43.92 to 2.44.0:
* New/updated translations:
Dutch, Indonesian
Changes in libsoup from 2.43.90 to 2.43.92:
* Fixed a bug in the connection-pool code, which would in
certain cases accidentally keep using a connection after a
message was cancelled while in progress, causing the next
request on that connection to get the response to the
previous request, etc. [#708006, David Woodhouse]
* Fixed some problems when falling back from samba
single-sign-on-based NTLM to ordinary ask-for-a-password
NTLM. [#703186, David Woodhouse]
* When sending a conditional GET request, SoupCache now
preserves the original message's list of disabled features,
ensure that it gets back the same kind of response the
original message would have. [#706338, Andre Moreira
Magalhaes]
* Fixed a warning when the remote host closes the connection
while we are writing something using chunked encoding.
[#703297, Dan]
* Added SoupServer:http-aliases and :https-aliases properties,
to specify URI schemes that should be treated as though they
were http (just like SoupSession:http-aliases and
:https-aliases, but on the server side). [#703694, Dan]
* Fixed race conditions in cache-test and timeout-test that
could case spurious failures. [#698305, #660581, Dan]
Changes in libsoup from 2.43.5 to 2.43.90:
* Fixed the handling of unsatisfiable range requests in
SoupServer [pointed out on mailing list, Dan]. Also, added
more documentation clarifying that you don't need to handle
range requests yourself in many cases.
* Fixed the handling of IPv6 address literals with scope IDs.
(Requires the latest glib as well for the complete fix.)
[#669724, Dan]
Changes in libsoup from 2.43.4 to 2.43.5:
* SoupProxyURIResolver is now deprecated in favor of the
SoupSession:proxy-resolver property (which takes a
GProxyResolver). [#680273, Dan]
* The SoupKnownStatusCode enum is now called SoupStatus. The
old name continues to exist as an alias, but is deprecated.
(This change has no visible effect in C; it is primarily to
help language bindings, so that, eg, SOUP_STATUS_NOT_FOUND
maps to "Soup.Status.NOT_FOUND" rather than
"Soup.KnownStatusCode.NOT_FOUND".) [#684409, Dan]
* Fixed the parsing of URI schemes in SoupURI (in particular,
to allow scheme names with digits in them). [#703776, Dan]
* Fixed SoupLogger to print a message's response headers even
if the message gets cancelled before the complete response
body is received. [#703200, Andres Gomez]
* Fixed a build problem in non-UTF-8 locales [#702534, Ross
Lagerwall]
* SoupSession now warns if you use
soup_session_pause_message() or
soup_session_unpause_message() on a synchronous message
(which has never worked, though that fact wasn't
documented). [#703461, Philip Withnall]
Changes in libsoup from 2.43.2 to 2.43.4:
* Fixed a bug that could cause synchronous sessions to get
stuck in a state where no new messages would ever get
processed. [#703463, Philip Withnall]
* Fixed another memory leak in SoupSocket (found while
added a test case for #700472)
* Switched to using g_cclosure_marshal_generic() rather than
using glib-genmarshal. [#686042, Olivier Blin]
* Changed SoupServer to call unref() on the query hash table
after calling the handler, rather than destroy(), so that
the handler can keep a copy of the query data if it wants.
[#702793, Bernhard Schuster]
* Fixed a few introspection annotations
* Updated examples/get to use SoupLogger and to allow
redirecting the output to a file [#703231, #703229, Andres
Gomez]
Changes in libsoup from 2.43.1 to 2.43.2:
* Fixed an authentication error when using NTLM when
connecting to an https site over a proxy; the code was
getting confused and thinking that the 200 OK response to
the CONNECT meant that NTLM auth had succeeded. [#698728,
Dan]
* Fixed a memory leak in SoupSocket. [#700472, Richard
Röjfors]
* Fixed a missing include error on some platforms [#700003,
Erik van Pienbroek]
* Fixed warnings when running against the "dummy" TLS backend.
[#700518, Dan]
Changes in libsoup from 2.42.1 to 2.43.1:
* Including <libsoup/soup.h> no longer pulls in the system
networking headers. This may cause some packages to no
longer compile, if they were accidentally depending on this.
Adding "#include <gio/gnetworking.h>" will fix them on both
unix and Windows. (This was done as part of fixing the build
on Windows.) [#692134, Dan]
* Fixed SoupSession:proxy-resolver [#698163, Dan]
* Added soup_message_set_priority(), to mark messages as being
high, low, or normal priority, and update the message queue
to prioritize them accordingly. [#696277, Sergio]
* Fixed several test programs to still work if glib-networking
isn't installed [Dan], and fixed another to still work if
the kernel has no IPv6 support. [#698220, Dan]
Changes since omniORB 4.1.6
---------------------------
- Bug fixes and platform updates. See bugfixes-416.xml
- ZIOP support. See src/examples/ziop/README.txt for details.
Changes since omniORB 4.1.5
---------------------------
- Bug fixes. See bugfixes-415.xml
- New clientOpenConnection and serverAcceptConnection interceptors.
dnspython is a DNS toolkit for Python. It provides both high and low
level access to DNS. The high level classes perform queries for data
of a given name, type, and class, and return an answer set. The low
level classes allow direct manipulation of DNS zones, messages, names,
and records.
This is the python-3.x version of the module.
* (Version 1.11.1 released)
* dns/tsigkeyring.py (to_text): we want keyname.to_text(), not
dns.name.to_text(keyname). Thangs to wangwang for the fix.
* dns/tsig.py (sign): multi-message TSIGs were broken for
algorithms other than HMAC-MD5 because we weren't passing the
right digest module to the HMAC code. Thanks to salzmdan for
reporting the bug.
* dns/dnssec.py (_find_candidate_keys): we tried to extract the
key from the wrong variable name. Thanks to Andrei Fokau for the
fix.
* dns/resolver.py: we want 'self.retry_servfail' not just
retry_servfail. Reported by many, thanks! Thanks to
Jeffrey C. Ollie for the fix.
* tests/grange.py: fix tests to use older-style print formatting
for backwards compatibility with python 2.4. Thanks to
Jeffrey C. Ollie for the fix.
* (Version 1.11.0 released)
* dns/name.py (Name.to_wire): Do not add items with offsets >= 2^14
to the compression table. Thanks to Casey Deccio for discovering
this bug.
* dns/ipv6.py (inet_ntoa): We now comply with RFC 5952 section
5.2.2, by *not* using the :: syntax to shorten just one 16-bit
field. Thanks to David Waitzman for reporting the bug and
suggesting the fix.
* lock caches in case they are shared
* raise YXDOMAIN if we see one
* do not print empty rdatasets
* Add contributed $GENERATE support (thanks uberj)
* Remove DNSKEY keytag uniqueness assumption (RFC 4034, section 8)
(thanks James Dempsey)
* added set_flags() method to dns.resolver.Resolver
* added support for TLSA RR
* dns/rdtypes/ANY/NSEC3.py (NSEC3.from_text): The NSEC3 from_text()
method could erroneously emit empty bitmap windows (i.e. windows
with a count of 0 bytes); such bitmaps are illegal.
* (Version 1.10.0 released)
* dns/message.py (make_query): All EDNS values may now be
specified when calling make_query()
* dns/query.py: Specifying source_port had no effect if source was
not specified. We now use the appropriate wildcard source in
that case.
* dns/resolver.py (Resolver.query): source_port may now be
specified.
* dns/resolver.py (Resolver.query): Switch to TCP when a UDP
response is truncated. Handle nameservers that serve on UDP
but not TCP.
* dns/zone.py (from_xfr): dns.zone.from_xfr() now takes a
'check_origin' parameter which defaults to True. If set to
False, then dnspython will not make origin checks on the zone.
Thanks to Carlos Perez for the report.
* dns/rdtypes/ANY/SSHFP.py (SSHFP.from_text): Allow whitespace in
the text string. Thanks to Jan Andres for the report and the
patch.
* dns/message.py (from_wire): dns.message.from_wire() now takes
an 'ignore_trailing' parameter which defaults to False. If set
to True, then trailing junk will be ignored instead of causing
TrailingJunk to be raised. Thanks to Shane Huntley for
contributing the patch.
* dns/resolver.py: Added LRUCache. In this cache implementation,
the cache size is limited to a user-specified number of nodes, and
when adding a new node to a full cache the least-recently used
node is removed.
* dns/resolver.py: dns.resolver.override_system_resolver()
overrides the socket module's versions of getaddrinfo(),
getnameinfo(), getfqdn(), gethostbyname(), gethostbyname_ex() and
gethostbyaddr() with an implementation which uses a dnspython stub
resolver instead of the system's stub resolver. This can be
useful in testing situations where you want to control the
resolution behavior of python code without having to change the
system's resolver settings (e.g. /etc/resolv.conf).
dns.resolver.restore_system_resolver() undoes the change.
* dns/ipv4.py: dnspython now provides its own, stricter, versions
of IPv4 inet_ntoa() and inet_aton() instead of using the OS's
versions.
* dns/ipv6.py: inet_aton() now bounds checks embedded IPv4 addresses
more strictly. Also, now only dns.exception.SyntaxError can be
raised on bad input.
* Old DNSSEC types (KEY, NXT, and SIG) have been removed.
* Bounds checking of slices in rdata wire processing is now more
strict, and bounds errors (e.g. we got less data than was
expected) now raise dns.exception.FormError rather than
IndexError.
HATop is an interactive ncurses client and real-time monitoring, statistics
displaying tool for the HAProxy TCP/HTTP load balancer.
HATop's appearance is similar to top(1). It supports various modes for detailed
statistics of all configured proxies and services in near realtime. In addition,
it features an interactive CLI for the haproxy unix socket. This allows
administrators to control the given haproxy instance (change server weight, put
servers into maintenance mode, ...) directly out of hatop (using keybinds or
the CLI) and monitor the results immediately.
HATop is written in pure Python and has no external dependencies.
1.) Handle installation of the script to determine the amount of free
memory and swap space on the local machine automatically.
2.) Fix the NetBSD implementation of the above script.
3.) Create a wrapper shell script for invoking Cacti's poller.
4.) Simplify the installation instrunctions using the above enhancements.
5.) Don't included the log file in the package list. It doesn't belong
there and "pkg_delete" will correctly complain that it has been
modified.
ToDo:
- The log file and the "rrdtool" database still need to be moved to
a directory under "${VARBASE}".
- "config.php" should really be a config file to allow using a
non-default password for the MySQL database. But the file would have
to be readable by both the user of the webserver and that cacti user.
pkgsrc change: remove patches/patch-configure.in.
--- 9.9.4-P2 released ---
3693. [security] memcpy was incorrectly called with overlapping
ranges resulting in malformed names being generated
on some platforms. This could cause INSIST failures
when serving NSEC3 signed zones. [RT #35120]
3658. [port] linux: Address platform specific compilation issue
when libcap-devel is installed. [RT #34838]
--- 9.8.6-P2 released ---
3693. [security] memcpy was incorrectly called with overlapping
ranges resulting in malformed names being generated
on some platforms. This could cause INSIST failures
when serving NSEC3 signed zones. [RT #35120]
3658. [port] linux: Address platform specific compilation issue
when libcap-devel is installed. [RT #34838]
