0.59 (11/02/2009)
(cb) DigitalMusicTrack.pm was not included, reported by Matt
Okeson-Harlow.
0.58 (11/01/2009)
(cb) Update the Keywords library in Validate - reported by Dave
Hodgkinson.
(cb) Added customer_location and customer_name accessors to review
results for Scott Weisman.
(cb) Nathan Handler re-re-reported a man page issue, rt 46708.
0.57 (09/08/2009)
(cb) David Raab reported an incomplete kit via rt.cpan.org. Re-run
make manifest to address my mistake.
0.56 (09/07/2009)
(cb) Add support for searching MP3 downloads as requsted by Dave
Hodgkinson.
(cb) Required for MP3 Downloads, and inspired by Vince Veselosky's
fix, update aws4-itemsearch.
(cb) secret_key is now a required parameter. Update all of the example
scripts with the secret_key parameter.
0.55 (07/20/2009)
(cb) Yuichi Tateno implemented support for the SearchIndex all.
(cb) Vince Veselosky fixed adm/aws4-types script, and as a result
updated classes in Validate/Type.
(cb) Update to WSDL 2009-07-16.
- Fixed Bug #11385 $url was defined.
- Fixed Doc #11017 Fixed docblock problem (cweiske)
- Fixed Bug #11008 (Override object properties in initialize())
- Fixed Bug #6338 Wrong query string handling
- Fixed Bug #704 Fixed hardcoded value and use ini_get(arg_separator)
- Fixed Bug #1036 Improper default port number detection
- Fixed Bug #1447 use $_SERVER instead of HTTP_SERVER_VARS
- Fixed Bug #1558 _parseRawQueryString failed if arg_sep.input was more than
1 char.
- Fixed Bug #1682 File was in DOC format rather than Unix
- Fixed Bug #2334 Sqare brackets in var names were encoded
- Fixed Bug #2824 Better error handling support.
- Fixed bug #3159 setProtocol was calling getStandardPort incorrectly
- Fix variable name in setWriteBuffer() (PEAR Bug #11039)
- Use %d for ints (PEAR Bug #11202)
- Fix passing context to socket for both PHP 4 and PHP 5
- Catch errors from fsockopen() that happen before the socket is actually
opened (Jan Scheider, jan@horde.org)
- Restore the original track_errors setting
- Silence unsilenced fwrite call
- Update PHPDoc
1.4.1
The auth() method now includes an optional $tls parameter that determines
whether or not TLS should be attempted (if supported by the PHP runtime and
the remote SMTP server). This parameter defaults to true. (Bug #16349)
Header data can be specified separately from message body data by passing it
as the optional second parameter to ``data()``. This is especially useful when
an open file resource is being used to supply message data because it allows
header fields (like *Subject:*) to be built dynamically at runtime. (Request
#17012)
1.4.0
The data() method now accepts either a string or a file resource containing
the message data. (Request #16962)
1.3.4
All Net_Socket write failures are now recognized. (Bug #16831)
1.3.3
- Added getGreeting(), for retrieving the server's greeting string. (Request
#16066)
- We no longer attempt a TLS connection if we're already using a secure
socket. (Bug #16254)
- You can now specify a debug output handler via setDebug(). (Request #16420)
1.3.2
- TLS connection only gets started if no AUTH methods are sent. (Bug #14944)
1.3.1
- Invalid response arrays were returning false instead of a PEAR_Error
object. (Thomas Berger)
* Bugfix: parse PTR target of .tomhendrikx.nl with error not
crash. * Bugfix: handle escaped characters in TXT rdata.
* bug292: no longer crash on malformed domain names where a
label is on position 255, which was a buffer overflow by one.
* Fix ldns_get_rr_list_hosts_frm_fp_l (strncpy to strlcpy
change), which fixes resolv.conf reading badly terminated string
buffers.
* Fix ldns_pkt_set_random_id to be more random, and a little
faster, it did not do value 0 statistically correctly.
* Fix ldns_rdf2native_sockaddr_storage to set sockaddr type to
zeroes, for portability.
* bug295: nsec3-hash routine no longer case sensitive.
* bug298: drill failed nsec3 denial of existence proof.
* Support DLV records.
* New option 'tcp-query-count:', to limit the maximum number of DNS
queries on a single tcp connection.
* New option 'tcp-timeout:', to override the default tcp timeout.
The option can also be set at build time, --with-tcp-timeout.
* New option 'notify-retry:', to configure how many times NSD should
retry a NOTIFY message.
* New options 'ipv4-edns-size:' and 'ipv6-edns-size:', to set your
preferred EDNS buffer size.
* Ignore SIGHUP to child processes.
* UDP/IPv4 sockets have new options set that will disable the DF
flag in IP packets.
Based on PR#42711 by Fredrik Pettai.
Pkgsrc changes:
Honor VARBASE.
* Version 1.0.27:
- IPv6 connections are accepted again (regression from version 1.0.26)
- SSLv3 renegociation has been disabled
- .pureftpd-upload-* files can be deleted by users with no quota.
- The server can be forced to shut down on iPhone.
* Version 1.0.26:
- Fix incompatibilities with Cyberduck and dramatically speed up directory
listings and transfers when TLS is enabled with some other clients like LFTP.
- Allow authentication of non-chrooted users again. It was a regression
from version 1.0.25. Spotted by Juergen Daubert.
* Version 1.0.25:
- The FTP server can now be built as a library for iPhone and iPod Touch.
- Display symbolic links in the MSLD command as symbolic links, unless the
broken clients mode is enabled, just like STAT/LIST/NLST.
- Enhanced compatibility with gcc 2.x and with custom installation paths.
- Fix packaging issues, especially when the server isn't installed in the
default paths
- Downloads now require less CPU and less memory.
- Fix an infinite loop that could lead to a client process burning a CPU
core if the client didn't disconnect properly. Reported by Thomas Min and
Margus Kaidja.
- Handle fake download resumes the traditional way for the sake of being
compatible with weird clients that insist on doing that.
- The group name is now always displayed instead of the gid when it matches the
primary user group.
* Version 1.0.24:
- When using LDAP in BIND mode, empty passwords are refused. Reported by
Henning Brauer.
* Version 1.0.23:
- The LDAP schema has been fixed.
- LDAP authentication through binding is now possible in addition to
passwords. This allows for the FTP server to run with an unprivileged LDAP
account.
- In LDAP objects, the "enabled" value is accepted again as a FTPStatus
property.
- Privilege separation is now enabled by default.
- The server should now properly compile on Solaris with privsep.
- Charset conversions are properly made on directory names.
- Transfers now handle every kind of disconnection.
- More informative log messages for errors and activity reporting.
- Virtual quotas are way more reliable and uploads are interrupted as soon as
quotas are exceeded.
- Atomic uploads are only used when necessary and only if --notruncate is
enabled.
- Dangling .pureftpd-upload files should be a thing of past.
- Enhanced conformance with RFCs and better compatibility with FTP clients.
- Improved SSL performance, compatibility and commands support.
- By default, up to 10000 files per directory can be listed instead of 2000.
- ALLO can now tell clients whether an upload would blow quotas before the
upload actually starts.
- PAM is now enabled by default on OSX.
- Switch euid to the _pure-ftpd account (unless it's nonexistent) in the
privsep process.
- --without-banner is not necessary any more. Having a cookie file
(--fortunefile=...) automatically disables the default banner, thus allowing
full customization of the welcome banner.
- ./configure --localstatedir is now honored in order to change the
run-time directory.
- Support for building a FTPS (implicit SSL/TLS) server, using
--with-implicittls
* Version 1.0.22:
- the LDAP authentication backend now supports TLS encryption.
- TLS encryption is supported on data channels.
- downloads require way less CPU time on platforms with slow mmap() calls.
- MySQL 5+ stored procedures can now be used in the authentication process.
- time zones issues should be fixed for good.
- on-demand directories can now be created with any set of permissions.
- password scrambling of MySQL 5+ is now supported.
- a catalan translation has been contributed.
- spurious disconnections due to some clients keepalive tricks have
been fixed.
- custom authentication handlers are now informed about the encryption
status of the session.
- standard-conformance and compatibility with several clients have improved.
- large files are now supported by default.
- enhanced support for Solaris.
- a bunch of bug fixes, optimizations and compatibility with newer
libraries and operating system versions.
- "ftp" and "anonymous" user names can have passwords if the -E switch (no
anonymous logins) is specified.
- in compatibility mode, non-dangling symbolic links are now displayed as
if they were regular files/directories.
- --with-everything now includes privsep.
--- 4.0.1 2010/01/26
New glob file pattern utility. Like POSIX glob. For Windows too. Refer to
yaz/file_glob.h.
New simple local-file XML include facility which allows file glob-patterns.
Refer to yaz/xml_include.h.
Utility yaz-json-parse which parses JSON and demonstrates the JSON parser
API.
ZOOM_record_get supports new parameter "format" which makes it format XML
record content.
Fix JSON parser WRT start symbol. The start grammar symbol (referred to as
JSONText in ECMA-262) is JSONValue, not JSONObject.
--- 4.0.0 2010/01/20
Windows binaries for YAZ now compiled with Visual Studio 2008 (VC9).
Older versions of YAZ was compiled with Visual Studio 6.0 (1998).
Update so/DLL to version 4. Windows version builds YAZ4.DLL.
POSIX/Unix builds .so with major version 4.
Remove old LOG_-defines from log.h. They have been obsolete and
undefined by default for the last 5 years.
Odr_int is now of type 'long long'. Used to be 'int' in YAZ 3 series.
GFS: Remove socket (int *fd) from search_rr handler. The socket
descriptor ptr is a facility that allowed a search handler to supply
a socket which would serve as a callback - when search was complete.
This facility has now been in use for years.
COMSTACK API changes: cs_stackerr, cs_addrstr. COMSTACK method cs_stackerr
removed. It is not implemented by tcpip or unix COMSTACK, perhaps for ISO
SR which was removed 7 years ago. COMSTACK macro / method cs_addrstr now
returns 'const char *' rather than 'char *. The returned string is
read-only and should not be modified by applications. COMSTACK cs_close is
now a void function - it no longer returns int. No applications check for
the value and the implementations has always returned 0.
ZOOM: use size_t for scan hit counts and str size. Functions
ZOOM_scanset_term and ZOOM_scanset_display_term have changed, so that
occ (hit count) and len (string length) are now of type size_t pointer
rather than int pointer. This is to be able to represent large hit counts
and to also just to use the proper type for string length (strlen result).
New JSON parser. Refer to include/yaz/json.h .
WRBUF API changes.. For size parameters for WRBUF size_t is now used ..
Used to be int in some cases. Many wrbuf_-functions used to return an int
indicating some length.. These return values were never used. And so they
are now void.
ODR: odr_malloc, odr_total now takes size_t for size.
clone_z_type: fix leak; occurred for encoding failures.
pkgsrc changes:
- Adjusting dependencies
Upstream changes:
3.11003 2009-01-29
- Renamed "retweeted_of_me" REST API call to the correct "retweets_of_me" (Dan Moore @mgrdcm)
- Back the Moose requirement down to 0.09 (earliest version with native traits)
3.11002 2009-01-28
- Use Moose 0.94 with native traits (resolves CPAN testers failing reports)
3.11001 2009-01-28
- Honor synthetic args (authenticate and since) for Lists API calls
3.11000 2009-01-27
- Lists API overhaul; bug fixes, added parameters, documentation
- Create meaninful names for anonymous classes; better error context
- Added "Paging and Cursors" documentation section
3.10003 2009-12-15
- Oops! Fixed bug in new test in t/10_net-twitter-regression.t (oh, the irony!)
3.10002 2009-12-15
- Added netrc_machine option to new with default 'api.twitter.com'
- Fixed: netrc failed without trait API::REST
- Fixed: retweeted_{to,of}_me API URLs (RT#52784)
3.10001 2009-11-26
- Fixed: new t/51_rate_limit.t needs to skip tests unless LWP >= 5.819
3.10000 2009-11-24
- Fixed: ssl not applied when both Lists and REST api used
- Added Role::RateLimit
- Added trends_available and trends_location methods to the REST API
- Documented the lat and long parameters to update
(refer to RFC3720 about iSCSI) for FreeBSD 7.1 or later.
It includes iSCSI protocol processor and SPC-3 (SCSI Primary
Commands - 3) based logical unit emulation.
Version 20100125
Based on PR#42669 by Wen Heping (and take maintainership).
Version 0.70 (2009-10-29)
* New "major" version because it may break compatibility
* Fix __cmp__(): IP('0.0.0.0/0') and IP('0.0.0.0') are not equal
* Fix IP.net() of the network "::/0": "::" instead of "0.0.0.0".
IPy 0.63 should fix this bug, but it wasn't.
Version 0.64 (2009-08-19)
* Create MANIFEST.in to fix setup.py bdist_rpm, fix by Robert Nickel
Version 0.63 (2009-06-23)
* Fix formatting of "IPv4 in IPv6" network, eg. IP('::ffff:192.168.10.0/120'),
the netmask ("/120" in the example) was missing!
Version 0.62 (2008-07-15)
* Fix reverse DNS of IPv6 address: use ".ip6.arpa." suffix instead of
deprecated ".ip6.int." suffix
Version 0.61 (2008-06-12)
* Patch from Aras Vaichas allowing the [-1] operator
to work with an IP object of size 1.
Version 0.60 (2008-05-16)
* strCompressed() formats '::ffff:a.b.c.d' correctly
* Use strCompressed() instead of strFullsize() to format IP addresses,
ouput is smarter with IPv6 address
* Remove check_addr_prefixlen because it generates invalid IP address
2008-02-05
* Release IPy 0.56
* Fix IPv6 parser for unit tests: reject
'1111::2222:3333:4444:5555:6666:7777:8888' address since '::' is
useless
2007-08-16
* Release IPy 0.55
* Rewrite IPv6 parser to allow address "1:2:3:4:5:6::"
2007-06-22
* Release IPy 0.54
* make_net() match from James Teh: transform an IP address into a network
address by applying the given netmask
2007-02-28
* Release IPy 0.53
* Reject '0.0.0.0-0.0.0.4' if check_addr_prefixlen is enable
* Fix many english spelling mistakes
2006-11-06
* Release IPy 0.52
* Fix strCompressed() for IPv6 "ffff:ffff:ffff:ffff:ffff:f:f:fffc/127"
2006-11-02
* Release IPy 0.51
* Write real name of IPy author (Maximillian Dornseif)
* Use version "0.51" to help packaging since 0.5 was smaller than 0.42
* Fix unit test for Python 2.3 (don't use doctest.testfile) and 2.5
(problem of hex() lower case)
* "make test" also check IPy documentation
* IPy now works on Python 2.2 to 2.5
2006-10-26
* Release IPy 0.5
* Apply Jean Gillaux patch for netmask "/0.0.0.0" bug
* Apply William McVey patch for __nonzero__() bug
* Apply Victor Stinner patch: setup.py can use setuptools and fix URLs
* Allow "172.30.1.0/22" with new option IPy.check_addr_prefixlen=False
* Add regression tests
* Create AUTHORS file
2004-08-22
* IPy 0.42 works on Python 2.3 without warnings
2002-01-16
* IPy 0.41 has Python < 2.2 compatible unit tests and a README file
* arc4random from OpenBSD imported for better randomness on Linux
* -h, --xidhwaddr uses the last 4 bytes of the hardware address as
the DHCP xid
* no longer warn about InfiniBand being an unsupported family
* infinite lease times are valid when reading old leases
* discard address correctly if lease is invalid
The locale files are now always installed and not only if a Python
interpreter named "python" is available for whatever reasons.
This fixes PR pkg/42691 by Olaf 'Rhialto' Seibert.
Changes from 3.1.7 include:
* Fixed CVE-2009-4009 and CVE-2009-4010
* Improved error messages when parsing zones
* Resilience against whitespace in configuration
* Performance increase
Changes from dnsmasq-2.51 include
* More conservative in detecing "A for A" queries
* Increased default number of leases to 1000
* Added support for RFC3925 "Vendor-Identifying Vendor Options"
* Default DNS packet size now 4096 as recommended by RFC5625
* Security fixes for fts in the internal ls.
Received from OpenBSD via US-CERT as VU #590371.
* Portability improvements.
* Add support for Tru64 Security Integration Architecture (SIA) authentication.
* Fix shadow password expiry check for users with large sp_max values.
* A number of bugs in KIO have been squashed, making updating of shown
directories work again and solving some other stability issues
* A crash when creating an avatar from the webcam in Kopete has been fixed
* kded taking 100% CPU time in certain situations has been cured
Based on PR#42657 by Wen Heping.
1.2.4 2008-12-16
* Add charset and set_charset methods , as well as
the new attributes GeoIP.GEOIP_CHARSET_ISO_8859_1 and
GeoIP.GEOIP_CHARSET_UTF8 ( Boris Zentner )
* Add test_city_charset.py script showing howto use
charset and set_charset ( Boris Zentner )
* Add last_netmask ( Boris Zentner )
* Fix compile warnings ( Boris Zentner )
* fix small memoryleak in database_info, org_by_name and org_by_addr ( Boris Zentner )
* fix version number in setup.py ( Boris Zentner )
* remove dma_code from test_city.py example ( Boris Zentner )
1.2.3 2008-09-11
* update test.py - replace www.government.de with www.bundestag.de.
Add range_by_ip example. ( Boris Zentner )
* Add range_by_ip - returns largest start and stop ip for any ip.
Remember to use a IP not a name ( Boris Zentner )
* Add metro_code as a alias for the depreciated dma_code ( Boris Zentner )
1.2.2 2008-08-13
* Update test_city.py and test_region.py ( Boris Zentner )
* Add region_name to GeoIPRegion ( Boris Zentner )
* Add database_info and database_edition attributes to GeoIP object
(James Henstridge)
* Add region_name and time_zone keys to GeoIPRecord wrapper (James
Henstridge).
* Export the country list, country code -> country name mapping, and
country->continent mapping ( Ignacio Vazquez-Abrams )
* Raise country code counter from 251 to 253 ( Boris Zentner )
!! record_by_addr and record_by_name return None instead of throwing a
exception. See test_city.py ( Boris Zentner )
* Add a py_geoip.error Exception object. (Boris Zentner)
* Export the country list, country code -> country name mapping, and country->continent
mapping ( Ignacio Vazquez-Abrams )
* Changed license to LGPL from GPL
Revamp FTP connection cache. Move it to the common layer to be later
shared with HTTP (for persistent connection). The application controls
how much caching is desired. Drop the reference counting on connections.
Add a callback when the cached connection is dropped due to LRU.
Over all, this allows more than one session cached per host and sessions
cached to different servers.
BIND 9.4.3-P4 is a SECURITY PATCH for BIND 9.4.3. It addresses a
potential cache poisoning vulnerability, in which data in the additional
section of a response could be cached without proper DNSSEC validation.
Changes since 9.4.3-P3:
2772. [security] When validating, track whether pending data was from
the additional section or not and only return it if
validates as secure. [RT #20438]
BIND 9.4.3-P5 is a SECURITY PATCH for BIND 9.4.3. It addresses two
potential cache poisoning vulnerabilities, both of which could allow
a validating recursive nameserver to cache data which had not been
authenticated or was invalid.
CVE identifiers: CVE-2009-4022, CVE-2010-0097
CERT advisories: VU#418861, VU#360341
Changes since 9.4.3-P4:
2831. [security] Do not attempt to validate or cache
out-of-bailiwick data returned with a secure
answer; it must be re-fetched from its original
source and validated in that context. [RT #20819]
2828. [security] Cached CNAME or DNAME RR could be returned to clients
without DNSSEC validation. [RT #20737]
2827. [security] Bogus NXDOMAIN could be cached as if valid. [RT #20712]
BIND 9.5.2-P2 is a SECURITY PATCH for BIND 9.5.2. It addresses two
potential cache poisoning vulnerabilities, both of which could allow
a validating recursive nameserver to cache data which had not been
authenticated or was invalid.
CVE identifiers: CVE-2009-4022, CVE-2010-0097
CERT advisories: VU#418861, VU#360341
Changes since 9.5.2-P1:
2831. [security] Do not attempt to validate or cache
out-of-bailiwick data returned with a secure
answer; it must be re-fetched from its original
source and validated in that context. [RT #20819]
2828. [security] Cached CNAME or DNAME RR could be returned to clients
without DNSSEC validation. [RT #20737]
2827. [security] Bogus NXDOMAIN could be cached as if valid. [RT #20712]
o Directory authority changes:
- Rotate keys (both v3 identity and relay identity) for moria1
and gabelmoo.
o Major bugfixes:
- Stop bridge directory authorities from answering dbg-stability.txt
directory queries, which would let people fetch a list of all
bridge identities they track. Bugfix on 0.2.1.6-alpha.
**** 0.66 Dec 30, 2009
Feature Truncation for Nameserver
fixes rt.cpan.org #33547 and #42744
TAKE CARE:
this feature may cause unexpected behavior for your nameservers
and can be turned off by setting Truncate to 0 during the creation
of the nameserver.
my $ns = Net::DNS::Nameserver->new(
Truncate => 0,
);
Net::DNS::Packet::truncate is a new method that is called from
within Net::DNS::Nameserver that truncates a packet according to
the rules of RFC2181 section 9.
Acknowledgement Aaron Crane for an elegant test and for
inspiration for a direction.
Feature: Added Net::DNS::Domain
Net::DNS::Domain is an attemt to consistently approach the various
ways we interface with what RFC 1035 calls <domain-name>.
The class and its test script t/02-domain.t are included to be
exposed to various architectures.
The class and its methods may be subject to change, both in terms of
naming and functionality.
A contribution by Dick Franks
Fix improved fuzzy matching of CLASS and TYPE in the Question
constructor method.
A contribution by Dick Franks.
Fix rt.cpan.org #43770
Update->rr_del() was reported broken for AAAA after 0.65.
The same bug also occured in HINFO RR.
Fix rt.cpan.org #43765
Code inconsistent with documentation for loop_once.
Note: Keeping timeout undefined in loop_once will now block until
something arrived on the socket.
Fix rt.cpan.org #47050
Fixed logic error in bgsend socket acquisition code.
Fix rt.cpan.org #47265 (partial)
Frequently Net:DNS under Windows XP has a UDP problem which is
caused by a buggy implementation of SOCKS under Windows.
One liner added to not continue UDP processing when that happens.
Feature KX RR
Added support for the KX RR, RFC2230
The implementation is trivial since the KX inherets almost all of
its functionality by inheritance from the MX RR.
Fix NSAP RR string representation
RFC1706 specifies the masterfile format to have a leading "0x" and
optional dot. This was not how the RR was represented with the
rdatastr method (and hence string and print).
Fix rt.cpan.org #52307 AAAA v4compat parsing bug
Acknowledgement: BLBLACK
Fix AAAA dynamic update
Dynamic update of AAAA caused FORMERR on the prerequisite caused
by AAAA creating rdata even when an address whas never specified.
This fix may cause difference in behavior for people who expect a
NULL address ("::") when creating a AAAA without an address
specified.
Feature HIP RR
Added support for the HIP RR, RFC5205
perldoc Net::DNS::RR::HIP for more information.
Feature DHCID RR
Added rudimentary support for the DHCID RR.
Fix rt.cpan.org #50883
This is basically #11931 but for cygwin.
Codepath in Cygwin and Win32 are now the same. This adds a
dependency in cygwin.
Acknowledgements "mikaraento"
Fix rt.cpan.org #45407 and #43190
Fixed escaping of semicolon.
Note a change in behavior:
For TXT and SPF the rdatastr method (and therefore the
print, and string method) returns the escaped format while the
chr_str_list method will return unescaped format.
Fix rt.cpan.org #43393
Typo in 01-resolver.t
Fix rt.cpan.org #43273
Added check for unitialized opcode in headermask in
Nameserver.pm
Fix rt.cpan.org #46635
Minor documentation error in opt.pm
Fix rt.cpan.org #51009
Fixed handling of empty string in Net::DNS::stripdot.
Elegant one-liner supplied by JMEHNLE.
Fix rt.cpan.org #49035
Comment parsing fixed: Semicolon in character string blocks (such
as in TXT and NPTR) were only recognized when escaped.
Also fixed the NAPTR regular expression to not interpret
"bla' 'foo" as two strings bla and foo, but as one: bla' 'foo
Fix cd flag settings
Resolver bug and fix reported by Jon Haidu.
*******************
* GUPnP IGD 0.1.6 *
*******************
- Add python bindings
*******************
* GUPnP IGD 0.1.5 *
*******************
- Use the new GUPnP Context Manager from GUPnP 0.13
*******************
* GUPnP IGD 0.1.4 *
*******************
- Make it compatible with the 0.13 API (does not yet use GUPnPContextManager)
- Bug fixes
0.13.2
======
Changes since 0.13.1:
- Utilize libconic (Maemo5) if available.
- Unix context manager must signal the unavailibility of all contexts when
disposed.
- Enable silent build rules if they are available.
- Fix race-conditions in client-side notification handling.
- Unix context manager ignores point-to-point interfaces.
- Context manager ignores interfaces without IP addresses.
- Don't require timeouts to be specified in subscription requests.
- Fix build against gcc 4.[1,2].
- Make network manager thread-safe.
- Remove idle source on dispose in context manager implementations.
- Warn in docs that gupnp_service_info_get_introspection() is evil and why.
- Service retrieves introspection data in truly async way.
- Fix some leaks.
- A bunch of code clean-ups.
All contributors:
Olivier Crête <olivier.crete@collabora.co.uk>
Zeeshan Ali (Khattak) <zeeshanak@gnome.org>
Ross Burton <ross@linux.intel.com>
Jens Georg <mail@jensge.org>
Cem Eliguzel <celiguzel@ubicom.com>
Bugs fixed:
1890 - Timeout parsing problem with SUBSCRIBE method
1880 - subscription/notification handling is racy
1906 - Tests failed with gupnp 0.13
1849 - Compile error when using gcc 4.[1,2] and strict aliasing
1494 - Ability to deal with multiple network interfaces
1881 - networkmanager interaction should use its own dbus connection
0.13.1
======
Changes since 0.13:
- Use unix context manager if NetworkManager service is not available.
- Fix some minor leaks.
All contributors:
Zeeshan Ali (Khattak) <zeeshanak@gnome.org>
Ross Burton <ross@linux.intel.com>
0.13
====
Changes since 0.12.8:
- Print reason when fail to fetch description doc
- Support for dynamic/multiple networks through a new class, ContextManager.
This class creates/destroys new context as new network interfaces go up/down.
It also provides two convenient methods to take care of control point and
device reference managment for you. Currently we have two implementations of
context manager:
* unix: The static but guaranteed to work on Unix, implementation. This is the
default if none chosen at configure-time.
* network-manager: A NetworkManager based implementation.
- Idle handlers should use the assigned GMainContext.
- Gracefully handle 'no root element in description' scenerio.
- "host-ip" property moved from GUPnPContext to parent GSSDPClient.
- ControlPoint set itself inactive before getting disposed.
- New function to retrieve the capabilities of a DLNA device as announced in
the device description.
- New function to retrieve the content of arbitrary elements in the device
description.
- Fixed a crash that happens when service-proxy goes down before subscribtion to
it completes.
- Correct condition for SID being NULL.
- Don't create redundant proxies.
- Must not announce earlier versions of resources. This is strictly forbidden
according to the latest UPnP specs. Instead GSSDP now handles M-SEARCH
requests independent of version requested.
- Free app developer from hosting of description documents.
- New API to get SoupMessage associated with ServiceAction.
- Handle the SOAPAction header being missing.
- Fixed strrchr result checking.
- Provide and use a wrapper class for xmlDoc objects, GUPnPXMLDoc that is a
first-class gobject.
- New domains for XML errors.
- Many other minor fixes.
Bugs fixed:
1626 - Print reason when fail to fetch description doc
1769 - audit issues
1760 - missing/invalid SOAPAction header crashes gupnp
1705 - Provide a public API to get information about a GUPnPServiceAction's HTTP
request
Dependencies changed:
- gssdp >= 0.7
All contributors:
Zeeshan Ali (Khattak) <zeeshanak@gnome.org>
Ross Burton <ross@linux.intel.com>
Sven Neumann <s.neumann@raumfeld.com>
Jens Georg <mail@jensge.org>
Steven Dorigotti <steven.dorigotti@tvblob.com>
WARNING: This release is API and ABI incompatible with previous releases.
0.7.1
=====
- Don't leak target regex.
- Make GSSDPClient ignore Point to Point interfaces.
- Use SO_REUSEPORT if present. Darwin and some BSDs don't have SO_REUSEADDR, but
SO_REUSEPORT.
- If we can't create a request socket don't try to create a multicast socket.
- Have specific GError code for interfaces without an IP address.
- Actually remove gssdp_client_new_full().
Bugs fixed:
1898 - GSSDPClient keeps autoselecting my VPN
1810 - Not possible to run multiple ssdp clients on darwin
1800 - leak of a gregex in gssdp-resource-browser
1796 - gssdp_client_new_full is declared in header but not implemented
All contributors:
Olivier Crête <olivier.crete@collabora.co.uk>
Ross Burton <ross@linux.intel.com>
Iain Holmes <iain@linux.intel.com>
Mattias Wadman <mattias.wadman@gmail.com>
Zeeshan Ali (Khattak) <zeeshanak@gnome.org>
0.7
===
- Join the multicast group on the specified interface.
- Put the message src timeout in the specified GMainContext.
- "host-ip" property moved from GUPnPContext to parent GSSDPClient.
- Use inet_aton instead of inet_addr and handle the error from it.
- gssdp-device-sniffer ported to GtkBuilder.
- Version-independent target match. This makes client forward and backward
compatible with resources that implement different version of the specs than
the client.
- Version-independent M-SEARCH response. This has the same effect as above but
only the other way around.
- GSSDPClient now binds to interface rather than IP.
- No need to find the default route.
- Add "active" property to GSSDPClient.
- Fix pkg-config paths.
- Add basic .gitignore.
- Other minor/internal changes.
Bugs fixed:
1621 - new gssdp timeout not added to the specific maincontext
1570 - gupnp doesn't set the pkgconfig lib dir correctly in 64 bit env
Dependencies dropped:
- libglade
All contributors:
Zeeshan Ali (Khattak) <zeeshanak@gnome.org>
Ross Burton <ross@linux.intel.com>
Jens Georg <mail@jensge.org>
Olivier Crête <olivier.crete@collabora.co.uk>
WARNING: This release is API and ABI incompatible with previous releases.
--- 9.6.1-P3 released ---
2831. [security] Do not attempt to validate or cache
out-of-bailiwick data returned with a secure
answer; it must be re-fetched from its original
source and validated in that context. [RT #20819]
2828. [security] Cached CNAME or DNAME RR could be returned to clients
without DNSSEC validation. [RT #20737]
2827. [security] Bogus NXDOMAIN could be cached as if valid. [RT #20712]
NEW: afpd: Time Machine support with new volume option "tm".
FIX: papd: Remove variable expansion for BSD printers. Fixes
CVE-2008-5718.
FIX: afpd: .AppleDxxx folders were user accessible if option 'usedots'
was set
FIX: afpd: vetoed files/dirs where still accessible
FIX: afpd: cnid_resolve: don't return '..' as a valid name.
FIX: uniconv: -d option wasn't working
pkgsrc changes:
- Adding dependency to p5-XML-LibXML>=1.70
Upstream changes:
0.72 Sunday December 13, 2009, 09:45:00 PM -0700
* Makefile.PL
* t/40_server_xmllibxml.t
RT #52662: Fix requirement specification for XML::LibXML.
* lib/RPC/XML.pm
Some more clean-up of the docs, removing a redundant section.
0.71 Monday December 7, 2009, 08:00:00 PM -0700
* MANIFEST
* t/01_pod.t (deleted)
* t/02_pod_coverage.t (deleted)
* t/03_meta.t (deleted)
* t/04_minimumversion.t (deleted)
* t/05_critic.t (deleted)
* xt/01_pod.t (added)
* xt/02_pod_coverage.t (added)
* xt/03_meta.t (added)
* xt/04_minimumversion.t (added)
* xt/05_critic.t (added)
Moved author-only tests to xt/, updated MANIFEST.
* MANIFEST
Add test suite 28_parser_bugs_50013.t, which was omitted from
last release.
* xt/01_pod.t
* xt/02_pod_coverage.t
* xt/03_meta.t
* xt/04_minimumversion.t
* xt/05_critic.t
Re-engineered the author-only/release tests, since they're no
longer in the t/ directory and thus should not interfere.
0.70 Sunday December 6, 2009, 10:00:00 PM -0700
* lib/RPC/XML.pm
* t/10_data.t
RT #49406: Make Base64 data-type allow zero-length data.
* lib/RPC/XML.pm
* t/10_data.t
Hand-applied a patch (most likely from Bill Moseley) to extend
the construction of dateTime.iso8601 data-types.
* t/40_server.t
Fixed another corner-case for the url() test.
* lib/RPC/XML.pm
Fixed a case from previous work that caused "undef" warnings.
* lib/RPC/XML.pm
* lib/RPC/XML/Parser.pm
* t/28_parser_bugs_50013.t
RT #50013: Restore backwards-compatibility for projects that
use RPC::XML::Parser directly.
* lib/RPC/XML/Procedure.pm
RT #50143: Incorrectly called server_fault() as if it were a
coderef.
* lib/Apache/RPC/Server.pm
Applied patch from Frank Wiegand to fix a POD problem.
* lib/RPC/XML.pm
Some additional regexp issues on dateTime.iso8601, to handle
backwards-compatibility.
* lib/RPC/XML/ParserFactory.pm
Fixed some minor doc errors.
* lib/RPC/XML/Parser/XMLParser.pm
Moved the 'require' of some libraries to the point where they
are first needed, to delay loading until/unless necessary.
* lib/RPC/XML/Parser/XMLLibXML.pm (added)
* t/21_xml_libxml.t (added)
* t/29_parserfactory.t
* t/40_server_xmllibxml.t (added)
Implement support for XML::LibXML in the parser-factory.
Changelog:
* Implement missing tab creation from context menu
* *nix: Reduce flicker on tab creation
* Set initial focus in chmod dialog to input box for numeric value
* Correct handling of unexpected closure of SFTP connection
* New tab context menu, can be used to close or refresh current tab or to close all but the current tab.
* *nix, OS X: Display sort indicators in filelist header control
* Remember size of dialog showing all files opened for editing
* Add refresh item to filelist context menus
* Scroll treeview horizontally if needed to keep item in view on changing directories
* Fix crash of fzsftp if server closes connection
* Successfully downloaded update file is no longer deleted if user cancels the finish page of the update check wizard
* Do not retry connecting if not trusting certificate on FTP over TLS connections
* Better reporting of handshake failures on FTP over TLS connections
* *nix: Check for xdg-open. This program from the xdg-utils is an indirect runtime dependency. It is used by wxWidgets to open URLs in the default browser
* Refactored most of the tabbing code
* Use proper address type on SOCKS proxies
* Add missing default button in bookmarks dialog
The connection sharing didn't handle the case of active transfers
correctly and tried to close the connection in that case (PR 42607).
Correctly check if there is a transfer going on and just leave the
connection alone in that case.
by dillo@
Changes in version 0.2.1.21 - 2009-12-21
o Major bugfixes:
- Work around a security feature in OpenSSL 0.9.8l that prevents our
handshake from working unless we explicitly tell OpenSSL that we
are using SSL renegotiation safely. We are, of course, but OpenSSL
0.9.8l won't work unless we say we are.
- Avoid crashing if the client is trying to upload many bytes and the
circuit gets torn down at the same time, or if the flip side
happens on the exit relay. Bugfix on 0.2.0.1-alpha; fixes bug 1150.
o Minor bugfixes:
- Do not refuse to learn about authority certs and v2 networkstatus
documents that are older than the latest consensus. This bug might
have degraded client bootstrapping. Bugfix on 0.2.0.10-alpha.
Spotted and fixed by xmux.
- Fix a couple of very-hard-to-trigger memory leaks, and one hard-to-
trigger platform-specific option misparsing case found by Coverity
Scan.
- Fix a compilation warning on Fedora 12 by removing an impossible-to-
trigger assert. Fixes bug 1173.
check twice with AC_CHECK_LIB (without and with OTHER-LIBRARIES) doesn't
work due to caching. So give up and just check separately for
-lssl/-lcrypto and hope for the best.
- Fixed a bogus free when using --xattrs with --backup.
- Avoid an error when --dry-run was trying to stat a prior hard-link file
that hasn't really been created.
- Fixed a problem with --compress (-z) where the receiving side could
return the error "inflate (token) returned -5".
- Fixed a bug where --delete-during could delete in a directory before it
noticed that the sending side sent an I/O error for that directory (both
sides of the transfer must be at least 3.0.7).
- Improved --skip-compress's error handling of bad character-sets and got
rid of a lingering debug fprintf().
- Fixed the daemon's conveyance of io_error value from the sender.
- An rsync daemon use seteuid() (when available) if it used setuid().
- Get the permissions right on a --fake-super transferred directory that
needs more owner permissions to emulate root behavior.
- An absolute-path filter rule (i.e. with a '/' modifier) no longer loses
its modifier when sending the filter rules to the remote rsync.
- Improved the "--delete does not work without -r or -d" message.
- Improved rsync's handling of --timeout to avoid a weird timeout case
where the sender could timeout even though it has recently written data
to the socket (but hasn't read data recently, due to the writing).
- Some misc manpage improvements.
- Fixed the chmod-temp-dir testsuite on a system without /var/tmp.
- Make sure that a timeout specified in the daemon's config is used as a
maximum timeout value when the user also specifies a timeout.
- Improved the error-exit reporting when rsync gets an error trying to
cleanup after an error: the initial error is reported.
- Improved configure's detection of IPv6 for solaris and cygwin.
- The AIX sysacls routines will now return ENOSYS if ENOTSUP is missing.
- Made our (only used if missing) getaddrinfo() routine use inet_pton()
(which we also provide) instead of inet_aton().
- The exit-related debug messages now mention the program's role so it is
clear who output what message.
Approved by Alistair Crooks.
Changes:
- Added a simple scheduler framework.
- Don't send numwant in STOPPED messages as some trackers are stupid about
it.
- Reintroduced clearing of epoll event list when a socket is closed as
it might cause race conditions.
- Added cppUnit test framework. Tests will be added on rather unregular
basis.
- Logging for SCGI calls.
- Fixed handling of errors when writing out session torrents, it should
no longer hit an infinite loop.
- Fixed a bug that would cause reading of a piece to hang rtorrent if
the incoming data contains only data up to a file boundary, but not
the next file's data.
- Fixes a file handle leak in the execute_capture functions.
- Fixed crash on empty bitfield in 'd.bitfield'.
- Fixed the Object::flag_unordered code to handle initial zero-length
keys. Ticket #1950.
- Made torrent::Rate::rate_type uint64_t and added sanity checks due to
reports of bad download/upload values being reported to some trackers.
OK tron@ wiz@
* dhcpcd logs even in quiet mode.
* Sleep for 1/100th of a second to give time for kernel to send RELEASE.
* -S option now works.
* Only warn about using CSR on bind.
* Fix detection of route deletion on Linux.
Changes since version 1.3.2:
* Added Taiwan translation.
* Added a workaround in mod_tls to deal with the vulnerability found in
SSL/TLS protocol during renegotiation (CVE-2009-3555). Good
descriptions of this vulnerability can be found here:
http://extendedsubset.com/?p=8http://www.educatedguesswork.org/2009/11/understanding_the_tls_renegoti.html
The workaround implemented in mod_tls (Bug#3324) is one of the suggested
mitigation approaches: the server now refuses all client-initiated
SSL/TLS session renegotiations.
* Bug and regression fixes.
* Added French, Bulgarian, Korean translations.
* Various bug and regression fixes.
Changes since 1.2.4:
Bugfixes:
* The following vulnerabilities have been fixed. See the security advisory
for details and a workaround.
* The Daintree SNA file parser could overflow a buffer. (Bug 4294)
* The SMB and SMB2 dissectors could crash. (Bug 4301)
* The IPMI dissector could crash on Windows. (Bug 4319)
* Wireshark does not graph rtp streams. (Bug 3801)
* Wireshark showing extraneous data in a TCP stream. (Bug 3955)
* Wrong decoding of gtp.target identification. (Bug 3974)
* TTE dissector bug. (Bug 4247)
* Upper case in Lua pref symbol causes Wireshark to crash. (Bug 4255)
* OpenBSD 4.5 build fails at epan/dissectors/packet-rpcap.c. (Bug 4258)
* Incorrect display of stream data using "Follow tcp stream" option. (Bug 4288)
* Custom RADIUS dictionary can cause a crash. (Bug 4316)
Updated Protocol Support:
* DAP, eDonkey, GTP, IPMI, MIP, RADIUS, RANAP, SMB, SMB2, TCP, TTE, VNC,
X.509sat
Updated Capture File Support:
* Daintree SNA.
This is a bug fix release, which includes some important fixes to --extra-opts (a way of specifying command line options within files).
* check_http has options to specify the HTTP method (#2155152)
* check_users thresholds were not working exactly as documented (>= rather
than >)
Changes since 3.1.0:
* Fix for CPU hogging in service and host check scheduling logic
* New "important check command" flag for use in service templates,
to aid configuration in distributed environments
* Fix for nagios validation error when no services defined
* Fix for stylesheet link
* Fix for extinfo.cgi error message when cgi.cfg doesn't exist
* Fix for notifications.cgi where Update button on right didn't retain
host information wh en no host= was in query parameters
* Fix for potential bug where a contactgroup with no members could cause
parsing errors
* Fix for W3 validation for history.cgi
* Fix for W3 validation for extinfo.cgi
* Fix for nagiostats to return non-zero with failures in MRTG mode
* Added t/ directory for tests. Use make test to run. Requires perl on
development server
* Fix for duplicate event_id attributes in status and retention data
* Fix for duplicate unlink() during check processing
* Added missing check period column to host config display (CGI)
* Fix for embedded Perl initialization under FreeBSD
* Fix for incorrect re-initialization of mutext after program restart
* Fix for incorrect weighting in host flap detection logic
* Added libtap to distribution. Use ./configure --enable-libtap to compile
* nagios.log permissions are now kept after log rotation
* Fix for "Max concurrent service checks (X) has been reached" messages -
will now push se rvices 5 + random(10) seconds ahead for retry
* Fix for incorrect service history link text in CGIs
* Fix for useless code loop in netutils.c
* Fix for potential divide by zero in event scheduling code
* Fix for trailing backslash in plugin output causing memory corruption
in CGIs
* Fix for bug that could affect host/service scheduling during clock time
skew or changes to timeperod definitions between restarts
* Leading whitespace from continuation lines in configuration files is
now stripped out
* Fix for bug where pipe (used by IPC) file descriptors get inherited by
child processed ( e.g. event handlers) (bug #0000026)
* Fix for failure to daemonize - Nagios now bails (bug #0000011)
* Fix for notifications about flapping starting not processed properly by
retention data
* Patch to add transparency to statusmap icons for truecolor images
* Patch to add read-only permissions to extinfo CGI
* Security fix for statuswml.cgi where arbitrary shell injection was
possible
2009-11-23 Shlomi Fish <shlomif@iglu.org.il>
* Applied a modified version of a patch by Matthew Horsfall
<wolfsage@gmail.com> in order to add t/blocking.t and deal with the
blocking sockets properly.
* New Release IO-Scoket-INET6-2.57
libnice 0.0.10 (2009-11-04)
===========================
Fix some memory leaks with the gstreamer elements
Fix username/foundation for google TURN candidates
Fix the sending of hundreds of connectivity checks at once the stream is connected
Fix BSD support
Fix reprocessing of already processed early incoming checks when in dribble-mode
Fix a rare crash with failing relay candidates allocations
Add a stun_agent_set_software API
Add a nice_agent_set_software API
pkgsrc changes:
* change HOMEPAGE and MASTER_SITES to new Sourceforge's one.
* set LICENSE=2-clause-bsd
* add user-destdir support
ISIC (v0.07) 12/22/2006, by Shu Xiao (sxiao@cisco.com)
- New IPv6 utilities: isic6, tcpsic6, udpsic6, icmpsic6.
- New tool multisic for sending random multicast UDP packets.
- Fixed compilation errors with GCC v4.
- Added -k skip option for esic per the request from some users.
- Placed the flood control under low traffic limit case only.
The original flood protection code calls gettimeofday(),
and runs after sending each packet. This is time consumping
and prevents the tool from reaching high traffic limit
on high speed interface (eg. 1000Base-TX). Now the flood
control will take effect only if the specified maximum rate
is less than 10MB/s.
- Corrected -t option bug with tcpsic:
The old one was using it reversely, e.g. -t 30 would generate
packet with 30% of them having correct TCP checksum. But -t
is actually for the percentage of bad TCP checksum.
- Changed to used 32-bit random numbers for some fields:
For IPv4 *sic tools, the source/destination IP address and
TCP sequence/acknowledge numbers are 32-bit width, and
should be assigned with equal size random numbers. The old
code did not do shifting correctly.
- Changed the default value to 10 for all percentage options.
- Cleaned the usage printout of icmpsic:
There were ports used in the usage printout of icmpsic. This
was misleading since no ports arguments needed for it.
- New manual page, try to get more help with "man isic".
* buildlink bin/libnet{10,11}-config to bin/libnet-config for comvenience
(they ware renamed in pkgsrc to avoid conflict)
* remove -lnet from BUILDLINK_CPPFLAGS.libnet11.
linker flags should not be in CPPFLAGS, and it berak likage with libtool
as reported in PR 37300.
* libnet11 install just a static library, so set defaut DEPMETHOD = build
Bump PKGREVISION for libnet11 related packages (net/isic will be updated later).
* remove addition CFLAGS=-I${LOCALBASE}/include to CONFIGURE_ENV.
${LOCALBASE} should not used in package's Makefile,
and should not reset CFLAGS here, moreover, default CFLAGS is sufficient.
* add user-destdir support.
--- 3.0.52 2009/12/03
tcpip comstack: fix use of uinitialized variable in cs_straddr. This
bug was introduced in 3.0.51.
--- 3.0.51 2009/12/02
tcpip comstack: Remove TCP receiver buffer optimizations for Solaris.
tcpip comstack: fix leak for getaddrinfo.
Encoding of SRU database is performed by yaz_encode_sru_dbpath_odr or
yaz_encode_sru_dbpath_buf. Now used by yaz-client and the ZOOM API.
Decoding of SRU "path" database is performed by private function
yaz_decode_sru_dbpath_odr . This in turn is used by yaz_srw_decode
and yaz_sru_decode in server applications, GFS, yazproxy, metaproxy.
yaz-client: honor base command for SRU. Change when database setting
is applied for SRU and ensure it is kept when a connection is reset.
Change also the way errors are displayed or SRU (decoding of packages).
1.6.3 2009-12-04
* Bugfix: allow for unknown resource records in zonefile with rdlen=0.
* Bugfix: also mark an RR as question if it comes from the wire
* Bugfix: NSEC3 bitmap contained NSEC
* Bugfix: Inherit class when creating signatures
1.6.2 2009-11-12
* Fix Makefile patch from Havard Eidnes, better install.sh usage.
* Fix parse error on SOA serial of 2910532839.
Fix print of ';' and readback of '\;' in names, also for '\\'.
Fix parse of '\(' and '\)' in names. Also for file read. Also '\.'
* Fix signature creation when TTLs are different for RRs in RRset.
* bug273: fix so EDNS rdata is included in pkt to wire conversion.
* bug274: fix use of c++ keyword 'class' for RR class in the code.
* bug275: fix memory leak of packet edns rdata.
* Fix timeout procedure for TCP and AXFR on Solaris.
* Fix occasional NSEC bitmap bogus
* Fix rr comparing (was in reversed order since 1.6.0)
* bug278: fix parsing HINFO rdata (and other cases).
* Fix previous owner name: also pick up if owner name is @.
* RFC5702: enabled sha2 functions by default. This requires OpenSSL 0.9.8 or higher.
Reason for this default is the root to be signed with RSASHA256.
* Fix various LDNS RR parsing issues: IPSECKEY, WKS, NSAP, very long lines
* Fix: Make ldns_dname_is_subdomain case insensitive.
* Fix ldns-verify-zone so that address records at zone NS set are not considered glue
(Or glue records fall below delegation)
* Fix LOC RR altitude printing.
* Feature: Added period (e.g. '3m6d') support at explicit TTLs.
* Feature: DNSKEY rrset by default signed with minimal signatures
but -A option for ldns-signzone to sign it with all keys.
This makes the DNSKEY responses smaller for signed domains.
KDE SC 4.3.4 has a number of improvements:
* A bugfix in Plasma's pixmap cache makes the workspace more responsive
* Okular, the document viewer improved stability in certain situations
* Marble, the desktop globe has seen some polish
* Passphrases with non-ASCII characters have been fixed in the KGpg
encryption tool
Changes from openresolv-3.3.3 include:
* private_interfaces is now shell expandable (ie, fxp*)
* dnsmasq resolver restarting with DBus is now fixed
* unbound resolver is sent SIGHUP for reload instead of forced restart
* subscribers with the execute bit are executed, otherwise sourced into
a subshell for speed
AMQP client implementation in Ruby/EventMachine.
This library was tested primarily with RabbitMQ, although it should
be compatible with any server implementing the AMQP 0-8 spec.
