This release adds the config option announceLANAddresses to enable
(the default) or disable announcing private (RFC1918) LAN IP addresses
to global discovery.
It also fixes various bugs, and we can delete a patch that's no longer
needed.
StatZone 1.0.4 (2020-10-19)
- Add support for seccomp on arm
- Update error message to use seccomp architecture names
- Improve experimental seccomp support mention in the README
- Make displayUsage() and displaySummary() static
- Set CMAKE_BUILD_TYPE to "Release" in CMakeLists.txt
- Enable FORTIFY_SOURCE level 2
Changelog for 4.4.0:
Released: 19th of October 2020
Bug Fixes
- Backport of CVE-2020-25829: Cache pollution.
Changelog for 4.4.0-rc2:
Released: 6th of October 2020
Improvements:
- Don’t parse any config with –version.
- Expose typed cache flush via Web API.
- Log when going Bogus because of a missing SOA in authority.
- Raise an exception on invalid content in unknown record.
Bug Fixes:
- When deciding if we are auth in the local auth or forwarding case, DS is
special.
- Fix wipe-cache-typed.
- Watch the descriptor again after an out-of-order read timeout.
Changelog for 4.4.0-rc1:
Released: 21st of September 2020
Bug Fixes:
- Only do QName Minimization for the names inside a forwarded domain.
- Fix the parsing of dont-throttle-netmasks in the presence of
dont-throttle-names.
Changelog for 4.4.0-beta1:
Released: 31st of August 2020
Improvements:
- Store RPZ trigger and hit in appliedPolicy and protobuf message and log
them in the trace log.
- Apply filtering policies (RPZ) on CNAME chains as well.
- Fix warning: initialized lambda captures are a C++14 extension.
- Clean some coverity reported cases of exceptions thrown but not caught.
- Export record cache lock (contention) stats via the various channels.
- Allow multiple local data records when doing RPZ IP matching.
- Replace the use of ‘1’ by QClass::IN to improve readability.
- Avoid name clashes on Solaris derived systems.
Bug Fixes:
- Allow some more depth headroom for the no-qname-minimization fallback case.
- If we have an NS in cache, use it in the forwarder case.
- Disable outgoing v4 when query-local-address has no v4 addresses.
- Resize hostname to final size in getCarbonHostname() (Aki Tuomi).
Changelog for 4.4.0-alpha2:
Released: 20th of July 2020
Improvements:
- Check that DNSKEYs have the zone flag set.
- Remove redundant toLogString() calls (Chris Hofstaedtler).
- Stop cluttering the global namespace with validation states.
- Use explicit flag for the specific version of c++ we’re targeting.
- Use new operator to print states.
- Refuse QType 0 right away, based on rfc6895 section 3.1.
- Specify a storage type for validation states.
- Common TCP write problems should only be logged if wanted.
- Dump the authority records of a negative cache entry as well.
- Alternative way to do “skip cname check” for DS and DNSKEY records
- Control stack depth when priming.
- Add version ‘statistic’ to prometheus.
- Cleanup cache cleaner pruneCollection function.
- RPZ policy should override gettag_ffi answer by default.
- Don’t copy the records when scanning for CNAME loops.
- Do not use using namespace std; .
- More sophisticated CNAME loop detection.
- Use std::string_view when available (Rosen Penev).
- Make sure we can install unsigned packages.
- Clarify docs (Josh Soref).
- Ensure runtime dirs for virtual services differ.
- Builder: improve shipped config files (Chris Hofstaedtler).
- Less negatives in error messages improves readability.
- Boost 1.73 moved boost::bind placeholders to the placeholders namespace.
- Fix useless copies in loop reported by clang++ 10.
- NetmaskTree: do not test node for null, the loop guarantees node is not
null.
- Wrap pthread objects
- Get rid of a naked pointer in the /dev/poll event multiplexer.
- Random engine.
Bug Fixes:
- Update proxy-protocol.cc (ihsinme).
- Kill an signed vs unsigned warning on OpenBSD.
- Don’t validate a NXD with a NSEC proving that the name is an ENT.
- Fix three shared cache issues.
- Limit the TTL of RRSIG records as well.
- Avoid throwing an exception in Logger::log().
Changelog for 4.4.0-alpha1:
Released: 22th of April 2020
New Features:
- Implement native DNS64 support, without Lua.
- Add custom tags to RPZ hits.
- Allow attaching a ‘routing’ tag string to a query in lua code and use that
tag in the record cache when appropriate.
- Share record cache between threads.
- Add support for Proxy Protocol between dnsdist and the recursor.
Improvements:
- Fix warnings with llvm10 and -Wrange-loop-construct (Kirill Ponomarev).
- Fix compilation without deprecated OpenSSL APIs (Rosen Penev).
- Detect {Libre,Open}SSL functions availability during configure.
- Better handling of reconnections in Remote Logger.
- Add ‘queue full’ metrics for our remote logger, log at debug only.
- Update boost.m4
- Keep a masked network in the Netmask class.
- Replace include guard ifdef/define with pragma once (Chris Hofstaedtler).
- YaHTTP: Support bracketed IPv6 addresses
- Rework NetmaskTree for better CPU and memory efficiency (Stephan Bosch).
- RPZ dumpFile/seedFile: store/get SOA refresh on dump/load.
- Add ‘IO wait’ and ‘steal’ metrics on Linux.
- DNSName: Don’t call strlen() when the length is already known.
- Fix build with gcc-10 (Sander Hoentjen).
Bug Fixes
- Fix compilation of the ports event multiplexer.
- Init zone’s d_priority field.
- QName Minimization sometimes uses 1 label too many.
POP3 service doesn't need qmail-pop3d(8), just qmail-popup(8) -- or the
equivalent authup(8) -- tighten qmail dependency to qmail-acceptutils.
Bump PKGREVISION.
Release 4.53 (release date: 2020-08-19)
======================================
Bug Fixes
------------------
- Remove socksipy dependency to fix proxy authentication
- Retry on errors relating to region specification for S3
Other Changes
------------------
- Prompt Daisy chain users to try STS
- Add new IAM types, and disable URL parsing for IAM b/c it has subcommands.
- Many text updates and clarifications.
Changes:
## 1.53.1
* Bug Fixes
* accounting: Remove new line from end of --stats-one-line display
(Nick Craig-Wood)
* check
* Add back missing --download flag (Nick Craig-Wood)
* Fix docs (Nick Craig-Wood)
* docs
* Note --log-file does append (Nick Craig-Wood)
* Add full stops for consistency in rclone --help (edwardxml)
* Add Tencent COS to s3 provider list (wjielai)
* Updated mount command to reflect that it requires Go 1.13 or newer
(Evan Harris)
* jottacloud: Mention that uploads from local disk will not need to
cache files to disk for md5 calculation (albertony)
* Fix formatting of rc docs page (Nick Craig-Wood)
* build
* Include vendor tar ball in release and fix startdev (Nick Craig-Wood)
* Fix "Illegal instruction" error for ARMv6 builds (Nick Craig-Wood)
* Fix architecture name in ARMv7 build (Nick Craig-Wood)
* VFS
* Fix spurious error "vfs cache: failed to _ensure cache EOF"
(Nick Craig-Wood)
* Log an ERROR if we fail to set the file to be sparse (Nick Craig-Wood)
* Local
* Log an ERROR if we fail to set the file to be sparse (Nick Craig-Wood)
* Drive
* Re-adds special oauth help text (Tim Gallant)
* Opendrive
* Do not retry 400 errors (Evan Harris)
## 1.53.0
* New Features
* The VFS layer was heavily reworked for this release - see below for
more details
* Interactive mode -i/--interactive for destructive operations (fishbullet)
* Add --bwlimit-file flag to limit speeds of individual file transfers
(Nick Craig-Wood)
* Transfers are sorted by start time in the stats and progress output
(Max Sum)
* Make sure backends expand `~` and environment vars in file names they
use (Nick Craig-Wood)
* Add --refresh-times flag to set modtimes on hashless backends
(Nick Craig-Wood)
* build
* Remove vendor directory in favour of Go modules (Nick Craig-Wood)
* Build with go1.15.x by default (Nick Craig-Wood)
* Drop macOS 386 build as it is no longer supported by go1.15
(Nick Craig-Wood)
* Add ARMv7 to the supported builds (Nick Craig-Wood)
* Enable `rclone cmount` on macOS (Nick Craig-Wood)
* Make rclone build with gccgo (Nick Craig-Wood)
* Make rclone build with wasm (Nick Craig-Wood)
* Change beta numbering to be semver compatible (Nick Craig-Wood)
* Add file properties and icon to Windows executable (albertony)
* Add experimental interface for integrating rclone into browsers
(Nick Craig-Wood)
* lib: Add file name compression (Klaus Post)
* rc
* Allow installation and use of plugins and test plugins with
rclone-webui (Chaitanya Bankanhal)
* Add reverse proxy pluginsHandler for serving plugins
(Chaitanya Bankanhal)
* Add `mount/listmounts` option for listing current mounts
(Chaitanya Bankanhal)
* Add `operations/uploadfile` to upload a file through rc using
encoding multipart/form-data (Chaitanya Bankanhal)
* Add `core/copmmand` to execute rclone terminal commands.
(Chaitanya Bankanhal)
* `rclone check`
* Add reporting of filenames for same/missing/changed (Nick Craig-Wood)
* Make check command obey `--dry-run`/`-i`/`--interactive`
(Nick Craig-Wood)
* Make check do `--checkers` files concurrently (Nick Craig-Wood)
* Retry downloads if they fail when using the `--download` flag
(Nick Craig-Wood)
* Make it show stats by default (Nick Craig-Wood)
* `rclone obscure`: Allow obscure command to accept password on STDIN
(David Ibarra)
* `rclone config`
* Set RCLONE_CONFIG_DIR for use in config files and subprocesses
(Nick Craig-Wood)
* Reject remote names starting with a dash. (jtagcat)
* `rclone cryptcheck`: Add reporting of filenames for same/missing/changed
(Nick Craig-Wood)
* `rclone dedupe`: Make it obey the `--size-only` flag for duplicate detection
(Nick Craig-Wood)
* `rclone link`: Add `--expire` and `--unlink` flags (Roman Kredentser)
* `rclone mkdir`: Warn when using mkdir on remotes which can't have empty directories
(Nick Craig-Wood)
* `rclone rc`: Allow JSON parameters to simplify command line usage
(Nick Craig-Wood)
* `rclone serve ftp`
* Don't compile on < go1.13 after dependency update (Nick Craig-Wood)
* Add error message if auth proxy fails (Nick Craig-Wood)
* Use refactored goftp.io/server library for binary shrink
(Nick Craig-Wood)
* `rclone serve restic`: Expose interfaces so that rclone can be used as a
library from within restic (Jack)
* `rclone sync`: Add `--track-renames-strategy leaf` (Nick Craig-Wood)
* `rclone touch`: Add ability to set nanosecond resolution times
(Nick Craig-Wood)
* `rclone tree`: Remove `-i` shorthand for `--noindent` as it conflicts
with `-i`/`--interactive` (Nick Craig-Wood)
* Bug Fixes
* accounting
* Fix documentation for `speed`/`speedAvg` (Nick Craig-Wood)
* Fix elapsed time not show actual time since beginning
(Chaitanya Bankanhal)
* Fix deadlock in stats printing (Nick Craig-Wood)
* build
* Fix file handle leak in GitHub release tool (Garrett Squire)
* `rclone check`: Fix successful retries with `--download` counting
errors (Nick Craig-Wood)
* `rclone dedupe`: Fix logging to be easier to understand (Nick Craig-Wood)
* Mount
* Warn macOS users that mount implementation is changing (Nick Craig-Wood)
* to test the new implementation use `rclone cmount` instead of
`rclone mount`
* this is because the library rclone uses has dropped macOS support
* rc interface
* Add call for unmount all (Chaitanya Bankanhal)
* Make `mount/mount` remote control take vfsOpt option
(Nick Craig-Wood)
* Add mountOpt to `mount/mount` (Nick Craig-Wood)
* Add VFS and Mount options to `mount/listmounts` (Nick Craig-Wood)
* Catch panics in cgofuse initialization and turn into error messages
(Nick Craig-Wood)
* Always supply stat information in Readdir (Nick Craig-Wood)
* Add support for reading unknown length files using direct IO (Windows)
(Nick Craig-Wood)
* Fix On Windows don't add `-o uid/gid=-1` if user supplies `-o uid/gid`.
(Nick Craig-Wood)
* Fix macOS losing directory contents in cmount (Nick Craig-Wood)
* Fix volume name broken in recent refactor (Nick Craig-Wood)
* VFS
* Implement partial reads for `--vfs-cache-mode full` (Nick Craig-Wood)
* Add `--vfs-writeback` option to delay writes back to cloud storage
(Nick Craig-Wood)
* Add `--vfs-read-ahead` parameter for use with `--vfs-cache-mode full`
(Nick Craig-Wood)
* Restart pending uploads on restart of the cache (Nick Craig-Wood)
* Support synchronous cache space recovery upon ENOSPC (Leo Luan)
* Allow ReadAt and WriteAt to run concurrently with themselves (Nick Craig-Wood)
* Change modtime of file before upload to current (Rob Calistri)
* Recommend `--vfs-cache-modes writes` on backends which can't stream
(Nick Craig-Wood)
* Add an optional `fs` parameter to vfs rc methods (Nick Craig-Wood)
* Fix errors when using > 260 char files in the cache in Windows
(Nick Craig-Wood)
* Fix renaming of items while they are being uploaded (Nick Craig-Wood)
* Fix very high load caused by slow directory listings (Nick Craig-Wood)
* Fix renamed files not being uploaded with `--vfs-cache-mode minimal`
(Nick Craig-Wood)
* Fix directory locking caused by slow directory listings (Nick Craig-Wood)
* Fix saving from chrome without `--vfs-cache-mode writes`
(Nick Craig-Wood)
* Local
* Add `--local-no-updated` to provide a consistent view of changing
objects (Nick Craig-Wood)
* Add `--local-no-set-modtime` option to prevent modtime changes (tyhuber1)
* Fix race conditions updating and reading Object metadata
(Nick Craig-Wood)
* Cache
* Make any created backends be cached to fix rc problems (Nick Craig-Wood)
* Fix dedupe on caches wrapping drives (Nick Craig-Wood)
* Crypt
* Add `--crypt-server-side-across-configs` flag (Nick Craig-Wood)
* Make any created backends be cached to fix rc problems (Nick Craig-Wood)
* Alias
* Make any created backends be cached to fix rc problems (Nick Craig-Wood)
* Azure Blob
* Don't compile on < go1.13 after dependency update (Nick Craig-Wood)
* B2
* Implement server side copy for files > 5GB (Nick Craig-Wood)
* Cancel in progress multipart uploads and copies on rclone exit
(Nick Craig-Wood)
* Note that b2's encoding now allows \ but rclone's hasn't changed
(Nick Craig-Wood)
* Fix transfers when using download_url (Nick Craig-Wood)
* Box
* Implement rclone cleanup (buengese)
* Cancel in progress multipart uploads and copies on rclone exit
(Nick Craig-Wood)
* Allow authentication with access token (David)
* Chunker
* Make any created backends be cached to fix rc problems (Nick Craig-Wood)
* Drive
* Add `rclone backend drives` to list shared drives (teamdrives)
(Nick Craig-Wood)
* Implement `rclone backend untrash` (Nick Craig-Wood)
* Work around drive bug which didn't set modtime of copied docs
(Nick Craig-Wood)
* Added `--drive-starred-only` to only show starred files (Jay McEntire)
* Deprecate `--drive-alternate-export` as it is no longer needed
(themylogin)
* Fix duplication of Google docs on server side copy (Nick Craig-Wood)
* Fix "panic: send on closed channel" when recycling dir entries
(Nick Craig-Wood)
* Dropbox
* Add copyright detector info in limitations section in the docs
(Alex Guerrero)
* Fix `rclone link` by removing expires parameter (Nick Craig-Wood)
* Fichier
* Detect Flood detected: IP Locked error and sleep for 30s
(Nick Craig-Wood)
* FTP
* Add explicit TLS support (Heiko Bornholdt)
* Add support for `--dump bodies` and `--dump auth` for debugging
(Nick Craig-Wood)
* Fix interoperation with pure-ftpd (Nick Craig-Wood)
* Google Cloud Storage
* Add support for anonymous access (Kai Lüke)
* Jottacloud
* Bring back legacy authentification for use with whitelabel versions
(buengese)
* Switch to new api root - also implement a very ugly workaround for the
DirMove failures (buengese)
* Onedrive
* Rework cancel of multipart uploads on rclone exit (Nick Craig-Wood)
* Implement rclone cleanup (Nick Craig-Wood)
* Add `--onedrive-no-versions` flag to remove old versions
(Nick Craig-Wood)
* Pcloud
* Implement `rclone link` for public link creation (buengese)
* Qingstor
* Cancel in progress multipart uploads on rclone exit (Nick Craig-Wood)
* S3
* Preserve metadata when doing multipart copy (Nick Craig-Wood)
* Cancel in progress multipart uploads and copies on rclone exit
(Nick Craig-Wood)
* Add `rclone link` for public link sharing (Roman Kredentser)
* Add `rclone backend restore` command to restore objects from GLACIER
(Nick Craig-Wood)
* Add `rclone cleanup` and `rclone backend cleanup` to clean unfinished
multipart uploads (Nick Craig-Wood)
* Add `rclone backend list-multipart-uploads` to list unfinished multipart
uploads (Nick Craig-Wood)
* Add `--s3-max-upload-parts` support (Kamil Trzciński)
* Add `--s3-no-check-bucket` for minimising rclone transactions and perms
(Nick Craig-Wood)
* Add `--s3-profile` and `--s3-shared-credentials-file` options
(Nick Craig-Wood)
* Use regional s3 us-east-1 endpoint (David)
* Add Scaleway provider (Vincent Feltz)
* Update IBM COS endpoints (Egor Margineanu)
* Reduce the default `--s3-copy-cutoff` to < 5GB for Backblaze S3
compatibility (Nick Craig-Wood)
* Fix detection of bucket existing (Nick Craig-Wood)
* SFTP
* Use the absolute path instead of the relative path for listing for
improved compatibility (Nick Craig-Wood)
* Add `--sftp-subsystem` and `--sftp-server-command` options (aus)
* Swift
* Fix dangling large objects breaking the listing (Nick Craig-Wood)
* Fix purge not deleting directory markers (Nick Craig-Wood)
* Fix update multipart object removing all of its own parts
(Nick Craig-Wood)
* Fix missing hash from object returned from upload (Nick Craig-Wood)
* Tardigrade
* Upgrade to uplink v1.2.0 (Kaloyan Raev)
* Union
* Fix writing with the all policy (Nick Craig-Wood)
* WebDAV
* Fix directory creation with 4shared (Nick Craig-Wood)
* dhcpcd: carrier handling issue fixed from 9.3.0
* dhcpcd: log if interface type is unsupported in debug
* duid: memory leak fixed if UUID wanted but none available
* privsep: fix receiving inet and no BPF running
* privsep: allow gettimeofday for SECCOMP
* privsep: fix stderr redirection again
* Linux: use libbsd setproctitle as it works with more kernel configs
pysmb-1.2.4
- Remove dependency on pycrypto as it is no longer under active maintenance
pysmb-1.2.3
- Fix bug in session key generation during session negotiation
- Fix bug in SMB message signing which leads to operation failures with Samba services.
pkgsrc changes:
- Remove no longer needed patch-rt.py, now applied upstream.
Changes:
2.0.1
-----
- Fix UnicodeDecodeError in logging code for non-text attachments
- Documentation: Add a search example
- edit_ticket: Handle possible empty responses: When a ticket is not
modified, at least with RT 4.x, an empty response could be returned.
Gracefully handle that as success.
2.2.4
- BUILD: threads: better workaround for late loading of libgcc_s
- BUG/MEDIUM: pattern: Renew the pattern expression revision when it is pruned
- BUG/MINOR: Fix type passed of sizeof() for calloc()
- BUG/MINOR: ssl: verifyhost is case sensitive
- BUG/MINOR: server: report correct error message for invalid port on "socks4"
- BUG/MEDIUM: ssl: Don't call ssl_sock_io_cb() directly.
- BUG/MINOR: ssl/crt-list: crt-list could end without a \n
- BUG/MINOR: h2/trace: do not display "stream error" after a frame ACK
- BUG/MINOR: http-fetch: Don't set the sample type during the htx prefetch
- BUG/MINOR: config: Fix memory leak on config parse listen
- BUG/MEDIUM: h2: report frame bits only for handled types
- BUG/MINOR: Fix memory leaks cfg_parse_peers
- MINOR: h2/trace: also display the remaining frame length in traces
- MINOR: backend: make the "whole" option of balance uri take only one bit
- MINOR: backend: add a new "path-only" option to "balance uri"
- REGTESTS: add a few load balancing tests
- BUG/MEDIUM: listeners: do not pause foreign listeners
- BUILD: trace: include tools.h
- REGTESTS: use "command" instead of "which" for better POSIX compatibility
- DOC: agent-check: fix typo in "fail" word expected reply
- BUG/MINOR: ssl/crt-list: exit on warning out of crtlist_parse_line()
- REGTEST: fix host part in balance-uri-path-only.vtc
- REGTEST: make agent-check.vtc require 1.8
- REGTEST: make abns_socket.vtc require 1.8
- REGTEST: make map_regm_with_backref require 1.7
libtorrent-1.2.10
fix regression in python binding for move_storage()
improve stat_file() performance on Windows
fix issue with loading invalid torrents with only 0-sized files
fix to avoid large stack allocations
libtorrent-1.2.9
add macro TORRENT_CXX11_ABI for clients building with C++14 against
libtorrent build with C++11
refreshed m4 scripts for autotools
removed deprecated wstring overloads on non-windows systems
drop dependency on Unicode's ConvertUTF code (which had a license
incompatible with Debian)
fix bugs exposed on big-endian systems
fix detection of hard-links not being supported by filesystem
fixed resume data regression for seeds with prio 0 files
Pkgsrc changes:
* Add option for doh (DNS-over-HTTPS), default enabled.
Upstream changes:
This release contains the DNS Flag Day 2020 changes. This sets the
default EDNS buffer size to 1232, that should reduce fragmentation.
https://dnsflagday.net/2020/
There is inclusive language in the configuration. There is caps-exempt,
ipsecmod-allow and primary server options for auth-zones. The older
terms are accepted to keep configuration working.
DNS-over-HTTPS is supported in this release. The DoH is enabled when
Unbound is compiled with the nghttp2 library, with configure
--with-libnghttp2. Then have an interface on the https port, that can
be configured with the https-port option. Also have a cert and key
available with the tls-service-key and tls-service-pem options. Further
settings can be configured for the http-endpoint, http-max-streams,
http-query-buffer-size, http-response-buffer-size and http-nodelay
options. The max streams sets the maximum concurrent streams, the
buffer size options the number of bytes in buffers, and the nodelay
option can turn on TCP_NODELAY for DNS-over-HTTPS service. In the
statistics the memory used is reported in mem.http.query_buffer and
mem.http.response_buffer. The number of queries is reported in
num.query.https, they are also included in the tcp and tls counts
because https uses TLS and TCP.
The DLV options and code to handle DLV lookups have been removed from
the code base. The DLV repository is empty nowadays, it has been
decommissioned.
There is a new feature where it is possible to use interface names to
bind to the IP addresses on that interface. It pulls in the addresses
at the start of the server, if the addresses change, use the existing
freebind and other socket options to register for addresses before they
appear, or the interface-automatic option that copies them from queries
to answers with ancillary data.
There is a new option for the edns-tag draft specification. It can be
enabled if you need the tentative implementation to add those tags to
outgoing messages.
Features
- DNS Flag Day 2020: change edns-buffer-size default to 1232.
- Merge PR #255: DNS-over-HTTPS support.
- Use inclusive language in configuration
- Merge PR #284 and Fix#246: Remove DLV entirely from Unbound.
The DLV has been decommisioned and in unbound 1.5.4, in 2015, there
was advise to stop using it. The current code base does not contain
DLV code any more. The use of dlv options displays a warning.
- Similar to NSD PR#113, implement that interface names can be used,
eg. something like interface: eth0 is resolved at server start and
uses the IP addresses for that named interface.
- Merge PR #272: Add EDNS client tag functionality.
- Add edns-client-tag-opcode option
Bug Fixes
- Merge PR #270 from cgzones: munin plugin: always exit 0 in autoconf
- Merge PR #269, Fix python module len() implementations, by Torbjörn
Lönnemark
- Merge PR #268, draft-ietf-dnsop-serve-stale-10 has become RFC 8767 on
March 2020, by and0x000.
- Fix doxygen comment for no ssl for tls session ticket key callback
routine.
- Fix mini_event.h on OpenBSD cannot find fd_set.
- Improve error log message when inserting rpz RR.
- Merge PR #280, Make tvOS & watchOS checks verify truthiness as well as
definedness, by Felipe Gasper.
- contrib/aaaa-filter-iterator.patch file renewed diff content to
apply cleanly to the current coderepo for the current code version.
- Fix#287: doc typo: "Additionaly".
- Merge (modified) PR #277, use EVP_MAC_CTX_set_params if available,
by Vít#zslav #í#ek.
- Create and init edns tags data for libunbound.
- Fix stats double count issue (#289).
- Fix that dnstap reconnects do not spam the log with the repeated
attempts. Attempts on the timer are only logged on high verbosity,
if they produce a connection failure error.
- Fix to apply chroot to dnstap-socket-path, if chroot is enabled.
- Change configure to use EVP_sha256 instead of HMAC_Update for
openssl-3.0.0.
- Update documentation in python example code.
- Review fix interface, doxygen and assign null in case of error free.
- Merge PR #293: Add missing prototype. Also refactor to use the new
shorthand function to clean up the code.
- Refactor to use sock_strerr shorthand function.
- Fix#296: systemd nss-lookup.target is reached before unbound can
successfully answer queries. Changed contrib/unbound.service.in.
- Fix num.expired statistics output.
- Remove x file mode on ipset/ipset.c and h files.
- Spelling fix.
- Introduce test for statistics.
- Fix that prefer-ip4 and prefer-ip6 can be get and set with
unbound-control, with libunbound and the unbound-checkconf option
output function.
- Merge PR #311 by luismerino: Dynlibmod leak.
- Error message is logged for dynlibmod malloc failures.
- iana portlist updated.
- Fix#304: dnstap logging not recovering after dnstap process restarts
- Fix edns-client-tags get_option typo
- Fix#305: dnstap logging significantly affects unbound performance
(regression in 1.11).
- Fix#305: only wake up thread when threshold reached.
- Fix to ifdef fptr wlist item for dnstap.
- Fix memory leak of edns tags at libunbound context delete.
- Fix double loopexit for unbound-dnstap-socket after sigterm.
Matroska Server Mk2
This project is the result of years of thinking, trying and finally
succeeding.
This software makes it possible to stream (almost) anything remuxed
as matroska live in real-time over http to multiple clients.
This is probably also one of the first real world usages of FFmpeg's
http server component (which I wrote as part of GSoC 2015).
0.12.0
- Remove support for Python 3.4.
0.11.0
- Added the `match` parameter to `add()`.
- Added `responses.urlencoded_params_matcher()` and `responses.json_params_matcher()`.
* dhcpcd: Backticks have been removed from quoting filenames
* dhcpcd: Only manipulate stdin, stdout and stderr if they are valid
* duid: Adjust option so the type can be specified
* logerr: Don't leak logfile fd to scripts
* privsep: Support SECCOMP on Linux
* privsep: Run the launcher process in the sandbox
* privsep: getifaddrs now carries ifa_data for BSD
* BSD: Use `ifi_link_state` as the single source of truth about carrier
* BSD: Ignore vether(4) devices by default
* Linux: If in a network namespace, don't load udev plugin
4.0.0:
API Changes (Backward-Incompatible)
Support for Python 2.7 has been removed.
Support for Python 3.4 has been removed.
Support for Python 3.5 has been removed.
Support for PyPy (Python 2.7 compatible) has been removed.
Support for Python 3.8 has been added.
Bugfixes
Performance improvement of static header search. Use dict search instead of linear search.
Fix debug output of headers during encoding.
these patches:
- Uwe Ohse's djbdns-1.05-multiip.diff for tinydns
- Dan Peterson's dnscache-1.05-multiple-ip.patch for dnscache
The patches came with different list separators, but this is pkgsrc! The
default separator for both is now a comma, and you can override it by
setting DJBDNS_IP_SEPARATOR. (Add that to BUILD_DEFS if the option was
enabled, and unconditionally add all the users and groups.) Bump
PKGREVISION.
While here, make djbdns-1.05-ignoreip2.patch fetchable via archive.org.
This release fixes#19
phetch was aborting whenever it encountered a connection error instead of trying
the alternate socket addrs it was given.
Special thanks to @Ramiferous and @voidpin and rvp!
Upstream changes:
mikutter 4.1.2
https://mikutter.hatenablog.com/entry/2020/10/03/140927
* excessive workload on redrawring MiraclePainter using a large set of
Photo Model as drawing objects
* fix versions of dependent libraries
V0.94
Aaron Lipinski (10):
gtk_menu_append -> gtk_menu_shell_append
GTK_OBJECT -> G_OBJECT
gtk_button_new_from_stock -> gtk_button_new_with_label
gtk3
hbox/vbox -> gtk_box_new
gtk_menu_popup -> gtk_menu_popup_at_pointer
show resolved hostname in raw dnsline
rely on final return NULL
introduce libasan
avoid stack use after scope
Alejandro Leal (2):
few updates to manual page and README.md
Updating some comments
Chongyu Zhu (1):
probe: fix find_source_addr
Konrad Bucheli (1):
fix segmentation fault if there is no IP address on an interface (fixes#320)
Kulemin Alexander (1):
report: json: reworked with libjansson
Mark Egan-Fuller (1):
Add display of destination.
Markus Kötter (6):
simplification - remove sockaddrtop
simplification - remove addrcpy
simplification - remove rsa{4,6}
simplification - address addrcmp
simplification - improve readability
ip6 udp - fix probes with local or remote port
R.E. Wolff (29):
fix warning on recent compilers.
Merge branch 'master' of github.com:traviscross/mtr
net find local address fix by meingtsla
proposed patch for bsd compile error
fix closing brace
Added include errno --obouizi
Merge branch 'master' of github.com:traviscross/mtr
More compilation warning fixes from obouizi
Added extra help text to configure --yvs
Changed MAXPATH to MAX_PATH for AIX compatibility. -- aixtools
make the code for gtk2/3 a bit nicer.
Merge branch 'gtk3_with_fallback' of https://github.com/krisl/mtr
Merge branch 'master' of github.com:traviscross/mtr
in hindsight my previous patch wasn't so nice. And nobody told me.
Sean Wei (1):
Fix parameter in ui/net.c
Siyuan Miao (1):
show mpls information in raw output
atib (1):
Added code to print multiple addresses regitered on the same hop count
atibdialpad (2):
Change TTL dynamically to adjust for path changes
TODO list changes
meingtsla (2):
asn_{open,close}: Always initialize ipinfo hash table
Merge branch 'master' of https://github.com/traviscross/mtr into asn-open-always-hcreate
Upstream changelog :
* Supports updating of Snort 3.0 signatures (0.8 will be released when Snort 3.0 moves out of BETA).
* Fixed some of the logic to allow updating with Perl on Windows
* ability to modify rules via regex in modifysid.conf
* Removal of opensource.gz processing (will speed up signature updating)
* Updated OS Distro list to match so_rules
* Added error checking around writing to directories that do not exist (i.e., block_list)
* Updated for new location of block list
Upstream changelog from 2.9.15.1 to 2.9.16 :
* src/preprocessors/Stream6/snort_stream_tcp.c :
Addressed an issue when out-of-order FIN is received by dropping it.
* src/output-plugins/spo_unified2.c,
src/preprocessors/Stream6/snort_stream_tcp.c :
Fixed an issue in which xtradata is not added to the alert in unified file.
* src/reload.c,
src/snort.c :
Fixed potential race condition between reload and exit path (main thread).
* etc/file_magic.conf :
Updated the file magic to detect ALZ file types.
* src/sfutil/sf_ip.h :
Added support for gcc version 9.2.1.
* src/dynamic-preprocessors/appid/detector_plugins/detector_dns.c :
Fixed an issue in which APPID returns no match.
* src/dynamic-preprocessors/dcerpc2/sf_dce2.vcxproj,
src/dynamic-preprocessors/dnp3/sf_dnp3.vcxproj,
src/dynamic-preprocessors/dns/sf_dns.vcxproj,
src/dynamic-preprocessors/dynamic_preprocessors.vcxproj,
src/dynamic-preprocessors/ftptelnet/sf_ftptelnet.vcxproj,
src/dynamic-preprocessors/gtp/sf_gtp.vcxproj,
src/dynamic-preprocessors/imap/sf_imap.vcxproj,
src/dynamic-preprocessors/libs/sfdynamic_preproc_libs.vcxproj,
src/dynamic-preprocessors/modbus/sf_modbus.vcxproj,
src/dynamic-preprocessors/pop/sf_pop.vcxproj,
src/dynamic-preprocessors/reputation/sf_reputation.vcxproj,
src/dynamic-preprocessors/sdf/sf_sdf.vcxproj,
src/dynamic-preprocessors/sf_dynamic_initialize/sf_dynamic_initialize.vcxproj,
src/dynamic-preprocessors/sip/sf_sip.vcxproj,
src/dynamic-preprocessors/smtp/sf_smtp.vcxproj,
src/dynamic-preprocessors/ssh/sf_ssh.vcxproj,
src/dynamic-preprocessors/ssl/sf_ssl.vcxproj,
src/win32/WIN32-Prj/build_all.vcxproj,
src/win32/WIN32-Prj/sf_engine.vcxproj,
src/win32/WIN32-Prj/sf_engine_initialize.vcxproj,
src/win32/WIN32-Prj/snort.vcxproj,
src/win32/WIN32-Prj/snort_initialize.vcxproj,
src/win32/WIN32-Prj/snort_installer_x64.nsi,
src/win32/WIN32-Prj/snort_x64.dsw,
src/win64/WIN64-Libraries/Packet.lib,
src/win64/WIN64-Libraries/libdnet/dnet.lib,
src/win64/WIN64-Libraries/pcre.lib,
src/win64/WIN64-Libraries/wpcap.lib,
src/win64/WIN64-Libraries/zlib.lib,
tools/u2spewfoo/u2spewfoo.vcxproj :
Added 64-bit support for Windows 10 operating system.
* src/dynamic-preprocessors/pop/snort_pop.c :
Fixed an issue where POP preprocessor was not generating alert in some cases.
* src/dynamic-preprocessors/gtp/gtp_parser.c :
Fixed the alerting logic for GTP v2 with missing TEID.
* src/preprocessors/HttpInspect/utils/hi_paf.c :
Fixed file policy not working with character prefix in chunk size.
* configure.in,
src/reload.c,
src/side-channel/sidechannel.c,
src/snort.c,
src/target-based/sftarget_reader.c,
src/util.h :
Added support for glibc version 2.30.
* src/decode.h,
src/dynamic-plugins/sf_engine/sf_snort_packet.h,
src/preprocessors/HttpInspect/utils/hi_paf.c,
src/preprocessors/Stream6/snort_stream_tcp.c,
src/preprocessors/Stream6/stream_paf.c,
src/preprocessors/snort_httpinspect.c,
src/preprocessors/snort_httpinspect.h,
src/preprocessors/stream_api.h :
Added support for early inspection of HTTP payload before flushing in pre-ack mode.
* src/file-process/file_api.h,
src/file-process/file_service.c,
src/preprocessors/HttpInspect/include/hi_norm.h,
src/preprocessors/HttpInspect/include/hi_ui_config.h,
src/preprocessors/HttpInspect/server/hi_server_norm.c,
src/preprocessors/snort_httpinspect.c :
Normalize randomly encoded nulls interspersed in the HTTP server response to UTF-8.
Upstream changelog from 2.9.16 to 2.9.16.1 :
* src/dynamic-preprocessors/appid/appIdConfig.h,
src/dynamic-preprocessors/appid/appInfoTable.c,
src/dynamic-preprocessors/appid/flow.h,
src/dynamic-preprocessors/appid/fw_appid.c :
Added packet counters to make sure flows with one-way data don't pend forever.
* src/detection-plugins/sp_flowbits.c,
src/snort.c :
Fixed potential race condition between reload and exit path.
* src/detection-plugins/sp_session.c,
src/preprocessors/Stream6/stream_paf.h,
src/sfutil/util_jsnorm.c :
Added support for GCC version 10.1.1.
Pkgsrc changes :
* added patch for NetBSD to get the definition for endrpcent(), which fixes compilation
* snort now depends on bash since a bundled tool is a bash shell script
* some pkglint compliance changes in Makefile and options.mk
* Released: 1st of October 2020
* Improvements:
- Add the "clearConsoleHistory" command
* Bug Fixes:
- Stop the related responder thread when a backend is removed
- Fix getEDNSOptions() for {AN,NS}COUNT != 0 and ARCOUNT = 0
- Fix building with LLVM11 (@RvdE)
- Only add EDNS on negative answers if the query had EDNS
Changelog:
Version 3.0.0
Wednesday, September 9, 2020
Features:
+ High-performance networking mode using XDP sockets (requires Linux
4.18+)
+ Support for Catalog zones including kcatalogprint utility
+ New DNSSEC validation mode
+ New kzonesign utility --- an interface for manual DNSSEC signing
+ New kxdpgun utility --- high-performance DNS over UDP traffic generator
for Linux
+ DoH support in kdig using GnuTLS and libnghttp2
+ New KSK revoked state (RFC 5011) in manual DNSSEC key management mode
+ Deterministic signing with ECDSA algorithms (requires GnuTLS 3.6.10+)
+ Module synthrecord supports reverse pointer shortening
+ Safe persistent zone data backup and restore
Improvements:
+ Processing depth of CNAME and DNAME chains is limited to 20
+ Non-FQDN is allowed as 'update-owner-name' configuration option value
+ Kdig prints detailed algorithm idendifier for PRIVATEDNS and PRIVATEOID
in multiline mode #334
+ Queries with QTYPE ANY or RRSIG are always responded with at most one
random RRSet
+ The statistics module has negligible performance overhead on modern
CPUs
+ If multithreaded zone signing is enabled, some additional zone
maintenance steps are newly parallelized
+ ACL can be configured by reference to a remote
+ Better CPU cache locality for higher query processing performance
+ Logging to non-syslog streams contains timestamps with the timezone
+ Keeping initial DNSKEY TTL and zone maximum TTL in KASP database to
ensure proper rollover timing in case of TTL changes during the
rollover
+ Responding FORMERR to queries with more OPT records
Bugfixes:
+ Module onlinesign responds NXDOMAIN insted of NOERROR (NODATA) if
DNSSEC not requested
+ Outgoing multi-message transfer can contain invalid compression
pointers under specific conditions
Version 2.9.6
Monday, August 31, 2020
Features:
+ New kdig option '+[no]opttext' to print unknown EDNS options as text if
possible (Thanks to Robert Edmonds)
Improvements:
+ Better error message if no key is ready for submission
+ Improved logging when master is not usable
+ Improved control logging of zone-flush errors if output directory is
specified
+ More precise system error messages when a zone transfer fails
+ Some documentation improvements (especially Offline KSK)
Bugfixes:
+ In the case of many zones, control operations over all zones take lots
of memory
+ Misleading error message on keymgr import-bind #683
+ DS push is triggered upon every zone change even though CDS wasn't
changed
+ Kzonecheck performance penalty with passive keys #688
CSK->KSK+ZSK scheme rollover can end too early
Changelog for 4.3.4:
Released: 8th of September 2020
* Improvements:
- Ensure runtime dirs for virtual services differ.
* Bug Fixes:
- Allow some more depth headroom for the no-qname-minimization fallback case
- Resize hostname to final size in getCarbonHostname().
Changelog for 4.3.3:
Released: 17th of July 2020
* Bug Fixes:
- Validate cached DNSKEYs against the DSs, not the RRSIGs only.
- Ignore cache-only for DNSKEYs and DS retrieval.
- A ServFail while retrieving DS/DNSKEY records is just that.
- Refuse DS records received from child zones.
- Better exception handling in houseKeeping/handlePolicyHit.
- Take initial refresh time from loaded zone.
pkgsrc-specific changes:
- Move pdns socket directory to /var/run/pdns-recursor
to reduce diff
- Introduce SMF method script that also creates the
socket directory on platforms where /var/run is not
persistent (i.e. swap or tmpfs-mounted)
1.18.149
api-change:schemas: Update schemas command to latest version
api-change:timestream-query: Update timestream-query command to latest version
api-change:ssm: Update ssm command to latest version
api-change:timestream-write: Update timestream-write command to latest version
api-change:ec2: Update ec2 command to latest version
api-change:connect: Update connect command to latest version
1.18.148
api-change:application-autoscaling: Update application-autoscaling command to latest version
api-change:rds: Update rds command to latest version
1.18.147
api-change:ec2: Update ec2 command to latest version
api-change:frauddetector: Update frauddetector command to latest version
api-change:config: Update config command to latest version
api-change:docdb: Update docdb command to latest version
api-change:sts: Update sts command to latest version
api-change:batch: Update batch command to latest version
1.18.146
api-change:eks: Update eks command to latest version
api-change:textract: Update textract command to latest version
api-change:synthetics: Update synthetics command to latest version
api-change:amplify: Update amplify command to latest version
api-change:savingsplans: Update savingsplans command to latest version
api-change:transcribe: Update transcribe command to latest version
1.18.145
api-change:quicksight: Update quicksight command to latest version
api-change:backup: Update backup command to latest version
api-change:ce: Update ce command to latest version
api-change:translate: Update translate command to latest version
1.18.144
api-change:comprehend: Update comprehend command to latest version
api-change:workmail: Update workmail command to latest version
api-change:lex-models: Update lex-models command to latest version
api-change:dynamodbstreams: Update dynamodbstreams command to latest version
1.18.143
api-change:rds: Update rds command to latest version
api-change:events: Update events command to latest version
api-change:iotsitewise: Update iotsitewise command to latest version
api-change:glue: Update glue command to latest version
api-change:resource-groups: Update resource-groups command to latest version
api-change:resourcegroupstaggingapi: Update resourcegroupstaggingapi command to latest version
1.18.142
api-change:sso-admin: Update sso-admin command to latest version
api-change:medialive: Update medialive command to latest version
api-change:codestar-connections: Update codestar-connections command to latest version
1.18.141
api-change:kendra: Update kendra command to latest version
api-change:comprehend: Update comprehend command to latest version
api-change🇪🇸 Update es command to latest version
api-change:apigateway: Update apigateway command to latest version
api-change:apigatewayv2: Update apigatewayv2 command to latest version
api-change:cloudfront: Update cloudfront command to latest version
1.18.140
api-change:greengrass: Update greengrass command to latest version
api-change:connect: Update connect command to latest version
api-change:ssm: Update ssm command to latest version
api-change:servicecatalog: Update servicecatalog command to latest version
api-change:dlm: Update dlm command to latest version
1.18.139
api-change:kendra: Update kendra command to latest version
api-change:sagemaker: Update sagemaker command to latest version
api-change:budgets: Update budgets command to latest version
api-change:medialive: Update medialive command to latest version
api-change:ec2: Update ec2 command to latest version
api-change:kafka: Update kafka command to latest version
api-change:transcribe: Update transcribe command to latest version
api-change:organizations: Update organizations command to latest version
1.18.138
api-change:docdb: Update docdb command to latest version
api-change:managedblockchain: Update managedblockchain command to latest version
api-change:stepfunctions: Update stepfunctions command to latest version
api-change:ec2: Update ec2 command to latest version
1.18.137
api-change:workspaces: Update workspaces command to latest version
1.18.136
api-change:s3: Update s3 command to latest version
api-change:cloudfront: Update cloudfront command to latest version
api-change:sso-admin: Update sso-admin command to latest version
api-change:ebs: Update ebs command to latest version
1.18.135
api-change:glue: Update glue command to latest version
api-change:redshift-data: Update redshift-data command to latest version
api-change:kinesisanalyticsv2: Update kinesisanalyticsv2 command to latest version
1.18.134
api-change:elbv2: Update elbv2 command to latest version
api-change:quicksight: Update quicksight command to latest version
api-change:apigatewayv2: Update apigatewayv2 command to latest version
api-change:codebuild: Update codebuild command to latest version
api-change:lex-models: Update lex-models command to latest version
1.18.133
api-change:xray: Update xray command to latest version
api-change:workspaces: Update workspaces command to latest version
api-change:ssm: Update ssm command to latest version
1.18.132
api-change:kendra: Update kendra command to latest version
api-change:mediapackage: Update mediapackage command to latest version
api-change:guardduty: Update guardduty command to latest version
api-change:stepfunctions: Update stepfunctions command to latest version
1.18.131
api-change:ec2: Update ec2 command to latest version
api-change:macie2: Update macie2 command to latest version
1.18.130
api-change:securityhub: Update securityhub command to latest version
api-change:codeguru-reviewer: Update codeguru-reviewer command to latest version
1.18.129
api-change:cloudfront: Update cloudfront command to latest version
api-change:backup: Update backup command to latest version
api-change:ec2: Update ec2 command to latest version
api-change:sqs: Update sqs command to latest version
1.18.128
api-change:cur: Update cur command to latest version
api-change:cloudfront: Update cloudfront command to latest version
api-change:emr: Update emr command to latest version
api-change:route53: Update route53 command to latest version
1.18.127
api-change:redshift: Update redshift command to latest version
api-change:ec2: Update ec2 command to latest version
api-change:mediaconvert: Update mediaconvert command to latest version
api-change:gamelift: Update gamelift command to latest version
1.18.126
api-change:route53resolver: Update route53resolver command to latest version
api-change:appflow: Update appflow command to latest version
1.18.125
api-change:xray: Update xray command to latest version
api-change:dms: Update dms command to latest version
api-change:kafka: Update kafka command to latest version
api-change:iotsitewise: Update iotsitewise command to latest version
api-change:ec2: Update ec2 command to latest version
api-change:ssm: Update ssm command to latest version
api-change:logs: Update logs command to latest version
1.18.124
api-change:chime: Update chime command to latest version
api-change:apigatewayv2: Update apigatewayv2 command to latest version
api-change:fsx: Update fsx command to latest version
1.15.8
api-change:timestream-write: [botocore] Update timestream-write client to latest version
api-change:connect: [botocore] Update connect client to latest version
api-change:ssm: [botocore] Update ssm client to latest version
api-change:ec2: [botocore] Update ec2 client to latest version
api-change:schemas: [botocore] Update schemas client to latest version
api-change:timestream-query: [botocore] Update timestream-query client to latest version
1.15.7
api-change:application-autoscaling: [botocore] Update application-autoscaling client to latest version
api-change:rds: [botocore] Update rds client to latest version
1.15.6
api-change:frauddetector: [botocore] Update frauddetector client to latest version
api-change:config: [botocore] Update config client to latest version
api-change:batch: [botocore] Update batch client to latest version
api-change:docdb: [botocore] Update docdb client to latest version
api-change:ec2: [botocore] Update ec2 client to latest version
api-change:sts: [botocore] Update sts client to latest version
1.15.5
api-change:transcribe: [botocore] Update transcribe client to latest version
api-change:textract: [botocore] Update textract client to latest version
api-change:amplify: [botocore] Update amplify client to latest version
api-change:eks: [botocore] Update eks client to latest version
api-change:savingsplans: [botocore] Update savingsplans client to latest version
api-change:synthetics: [botocore] Update synthetics client to latest version
1.15.4
api-change:translate: [botocore] Update translate client to latest version
api-change:ce: [botocore] Update ce client to latest version
api-change:quicksight: [botocore] Update quicksight client to latest version
api-change:backup: [botocore] Update backup client to latest version
1.15.3
api-change:comprehend: [botocore] Update comprehend client to latest version
api-change:dynamodbstreams: [botocore] Update dynamodbstreams client to latest version
api-change:workmail: [botocore] Update workmail client to latest version
api-change:lex-models: [botocore] Update lex-models client to latest version
1.15.2
api-change:glue: [botocore] Update glue client to latest version
api-change:resourcegroupstaggingapi: [botocore] Update resourcegroupstaggingapi client to latest version
api-change:iotsitewise: [botocore] Update iotsitewise client to latest version
api-change:events: [botocore] Update events client to latest version
api-change:resource-groups: [botocore] Update resource-groups client to latest version
api-change:rds: [botocore] Update rds client to latest version
1.15.1
api-change:medialive: [botocore] Update medialive client to latest version
api-change:sso-admin: [botocore] Update sso-admin client to latest version
api-change:codestar-connections: [botocore] Update codestar-connections client to latest version
1.15.0
api-change:kendra: [botocore] Update kendra client to latest version
api-change:cloudfront: [botocore] Update cloudfront client to latest version
api-change:comprehend: [botocore] Update comprehend client to latest version
api-change:apigateway: [botocore] Update apigateway client to latest version
api-change🇪🇸 [botocore] Update es client to latest version
api-change:apigatewayv2: [botocore] Update apigatewayv2 client to latest version
feature:dependency: [botocore] botocore has removed docutils as a required dependency
1.14.63
api-change:servicecatalog: [botocore] Update servicecatalog client to latest version
api-change:dlm: [botocore] Update dlm client to latest version
api-change:greengrass: [botocore] Update greengrass client to latest version
api-change:connect: [botocore] Update connect client to latest version
api-change:ssm: [botocore] Update ssm client to latest version
1.14.62
api-change:transcribe: [botocore] Update transcribe client to latest version
api-change:ec2: [botocore] Update ec2 client to latest version
api-change:sagemaker: [botocore] Update sagemaker client to latest version
api-change:medialive: [botocore] Update medialive client to latest version
api-change:budgets: [botocore] Update budgets client to latest version
api-change:kafka: [botocore] Update kafka client to latest version
api-change:kendra: [botocore] Update kendra client to latest version
api-change:organizations: [botocore] Update organizations client to latest version
1.14.61
api-change:ec2: [botocore] Update ec2 client to latest version
api-change:managedblockchain: [botocore] Update managedblockchain client to latest version
api-change:stepfunctions: [botocore] Update stepfunctions client to latest version
api-change:docdb: [botocore] Update docdb client to latest version
1.14.60
api-change:workspaces: [botocore] Update workspaces client to latest version
1.14.59
api-change:cloudfront: [botocore] Update cloudfront client to latest version
api-change:ebs: [botocore] Update ebs client to latest version
api-change:sso-admin: [botocore] Update sso-admin client to latest version
api-change:s3: [botocore] Update s3 client to latest version
1.14.58
api-change:kinesisanalyticsv2: [botocore] Update kinesisanalyticsv2 client to latest version
api-change:glue: [botocore] Update glue client to latest version
api-change:redshift-data: [botocore] Update redshift-data client to latest version
1.14.57
api-change:lex-models: [botocore] Update lex-models client to latest version
api-change:apigatewayv2: [botocore] Update apigatewayv2 client to latest version
api-change:codebuild: [botocore] Update codebuild client to latest version
api-change:quicksight: [botocore] Update quicksight client to latest version
api-change:elbv2: [botocore] Update elbv2 client to latest version
1.14.56
api-change:workspaces: [botocore] Update workspaces client to latest version
api-change:xray: [botocore] Update xray client to latest version
api-change:ssm: [botocore] Update ssm client to latest version
1.14.55
api-change:stepfunctions: [botocore] Update stepfunctions client to latest version
api-change:guardduty: [botocore] Update guardduty client to latest version
api-change:mediapackage: [botocore] Update mediapackage client to latest version
api-change:kendra: [botocore] Update kendra client to latest version
1.14.54
api-change:ec2: [botocore] Update ec2 client to latest version
api-change:macie2: [botocore] Update macie2 client to latest version
1.14.53
api-change:codeguru-reviewer: [botocore] Update codeguru-reviewer client to latest version
api-change:securityhub: [botocore] Update securityhub client to latest version
1.14.52
api-change:sqs: [botocore] Update sqs client to latest version
api-change:backup: [botocore] Update backup client to latest version
api-change:cloudfront: [botocore] Update cloudfront client to latest version
api-change:ec2: [botocore] Update ec2 client to latest version
1.14.51
api-change:cur: [botocore] Update cur client to latest version
api-change:route53: [botocore] Update route53 client to latest version
api-change:cloudfront: [botocore] Update cloudfront client to latest version
api-change:emr: [botocore] Update emr client to latest version
1.14.50
api-change:ec2: [botocore] Update ec2 client to latest version
api-change:redshift: [botocore] Update redshift client to latest version
api-change:gamelift: [botocore] Update gamelift client to latest version
api-change:mediaconvert: [botocore] Update mediaconvert client to latest version
1.14.49
api-change:appflow: [botocore] Update appflow client to latest version
api-change:route53resolver: [botocore] Update route53resolver client to latest version
1.14.48
api-change:iotsitewise: [botocore] Update iotsitewise client to latest version
api-change:xray: [botocore] Update xray client to latest version
api-change:ec2: [botocore] Update ec2 client to latest version
api-change:logs: [botocore] Update logs client to latest version
api-change:dms: [botocore] Update dms client to latest version
api-change:ssm: [botocore] Update ssm client to latest version
api-change:kafka: [botocore] Update kafka client to latest version
1.14.47
api-change:chime: [botocore] Update chime client to latest version
api-change:fsx: [botocore] Update fsx client to latest version
api-change:apigatewayv2: [botocore] Update apigatewayv2 client to latest version
1.18.8
api-change:timestream-write: Update timestream-write client to latest version
api-change:connect: Update connect client to latest version
api-change:ssm: Update ssm client to latest version
api-change:ec2: Update ec2 client to latest version
api-change:schemas: Update schemas client to latest version
api-change:timestream-query: Update timestream-query client to latest version
1.18.7
api-change:application-autoscaling: Update application-autoscaling client to latest version
api-change:rds: Update rds client to latest version
1.18.6
api-change:frauddetector: Update frauddetector client to latest version
api-change:config: Update config client to latest version
api-change:batch: Update batch client to latest version
api-change:docdb: Update docdb client to latest version
api-change:ec2: Update ec2 client to latest version
api-change:sts: Update sts client to latest version
1.18.5
api-change:transcribe: Update transcribe client to latest version
api-change:textract: Update textract client to latest version
api-change:amplify: Update amplify client to latest version
api-change:eks: Update eks client to latest version
api-change:savingsplans: Update savingsplans client to latest version
api-change:synthetics: Update synthetics client to latest version
1.18.4
api-change:translate: Update translate client to latest version
api-change:ce: Update ce client to latest version
api-change:quicksight: Update quicksight client to latest version
api-change:backup: Update backup client to latest version
1.18.3
api-change:comprehend: Update comprehend client to latest version
api-change:dynamodbstreams: Update dynamodbstreams client to latest version
api-change:workmail: Update workmail client to latest version
api-change:lex-models: Update lex-models client to latest version
1.18.2
api-change:glue: Update glue client to latest version
api-change:resourcegroupstaggingapi: Update resourcegroupstaggingapi client to latest version
api-change:iotsitewise: Update iotsitewise client to latest version
api-change:events: Update events client to latest version
api-change:resource-groups: Update resource-groups client to latest version
api-change:rds: Update rds client to latest version
1.18.1
api-change:medialive: Update medialive client to latest version
api-change:sso-admin: Update sso-admin client to latest version
api-change:codestar-connections: Update codestar-connections client to latest version
1.18.0
api-change:kendra: Update kendra client to latest version
api-change:cloudfront: Update cloudfront client to latest version
api-change:comprehend: Update comprehend client to latest version
api-change:apigateway: Update apigateway client to latest version
api-change🇪🇸 Update es client to latest version
api-change:apigatewayv2: Update apigatewayv2 client to latest version
feature:dependency: botocore has removed docutils as a required dependency
1.17.63
api-change:servicecatalog: Update servicecatalog client to latest version
api-change:dlm: Update dlm client to latest version
api-change:greengrass: Update greengrass client to latest version
api-change:connect: Update connect client to latest version
api-change:ssm: Update ssm client to latest version
1.17.62
api-change:transcribe: Update transcribe client to latest version
api-change:ec2: Update ec2 client to latest version
api-change:sagemaker: Update sagemaker client to latest version
api-change:medialive: Update medialive client to latest version
api-change:budgets: Update budgets client to latest version
api-change:kafka: Update kafka client to latest version
api-change:kendra: Update kendra client to latest version
api-change:organizations: Update organizations client to latest version
1.17.61
api-change:ec2: Update ec2 client to latest version
api-change:managedblockchain: Update managedblockchain client to latest version
api-change:stepfunctions: Update stepfunctions client to latest version
api-change:docdb: Update docdb client to latest version
1.17.60
api-change:workspaces: Update workspaces client to latest version
1.17.59
api-change:cloudfront: Update cloudfront client to latest version
api-change:ebs: Update ebs client to latest version
api-change:sso-admin: Update sso-admin client to latest version
api-change:s3: Update s3 client to latest version
1.17.58
api-change:kinesisanalyticsv2: Update kinesisanalyticsv2 client to latest version
api-change:glue: Update glue client to latest version
api-change:redshift-data: Update redshift-data client to latest version
1.17.57
api-change:lex-models: Update lex-models client to latest version
api-change:apigatewayv2: Update apigatewayv2 client to latest version
api-change:codebuild: Update codebuild client to latest version
api-change:quicksight: Update quicksight client to latest version
api-change:elbv2: Update elbv2 client to latest version
1.17.56
api-change:workspaces: Update workspaces client to latest version
api-change:xray: Update xray client to latest version
api-change:ssm: Update ssm client to latest version
1.17.55
api-change:stepfunctions: Update stepfunctions client to latest version
api-change:guardduty: Update guardduty client to latest version
api-change:mediapackage: Update mediapackage client to latest version
api-change:kendra: Update kendra client to latest version
1.17.54
api-change:ec2: Update ec2 client to latest version
api-change:macie2: Update macie2 client to latest version
1.17.53
api-change:codeguru-reviewer: Update codeguru-reviewer client to latest version
api-change:securityhub: Update securityhub client to latest version
1.17.52
api-change:sqs: Update sqs client to latest version
api-change:backup: Update backup client to latest version
api-change:cloudfront: Update cloudfront client to latest version
api-change:ec2: Update ec2 client to latest version
1.17.51
api-change:cur: Update cur client to latest version
api-change:route53: Update route53 client to latest version
api-change:cloudfront: Update cloudfront client to latest version
api-change:emr: Update emr client to latest version
1.17.50
api-change:ec2: Update ec2 client to latest version
api-change:redshift: Update redshift client to latest version
api-change:gamelift: Update gamelift client to latest version
api-change:mediaconvert: Update mediaconvert client to latest version
1.17.49
api-change:appflow: Update appflow client to latest version
api-change:route53resolver: Update route53resolver client to latest version
1.17.48
api-change:iotsitewise: Update iotsitewise client to latest version
api-change:xray: Update xray client to latest version
api-change:ec2: Update ec2 client to latest version
api-change:logs: Update logs client to latest version
api-change:dms: Update dms client to latest version
api-change:ssm: Update ssm client to latest version
api-change:kafka: Update kafka client to latest version
1.17.47
api-change:chime: Update chime client to latest version
api-change:fsx: Update fsx client to latest version
api-change:apigatewayv2: Update apigatewayv2 client to latest version
3.4.3:
Modified
Improve versions constraints by declaring latest major versions known to work with Lexicon
3.4.2:
Modified
Relax versions constraints on Lexicon dependencies until there is a real need.
3.4.1:
Added
Add the Njalla provider
3.4.0:
Added
Use poetry to manage dependencies, build and package Lexicon.
Add integration tests for Mac OS X
Changed
The beautifulsoup4 dependency has been integrated to the core ones for generic purpose. As a consequence henet, easyname and gratisdns providers do not have optional dependencies anymore.
Update Docker image to use Python 3.8, and install Lexicon with full extras.
Removed
Remove support for Python 2.7.
Remove support for Python 3.5.
Remove the extra security from requests dependency which does not make sense anymore on recent versions of Python.
Release RPyC 4.1.2:
* Fixed CVE-2019-16328 which was caused by a missing protocol security check.
* Fixed RPyC over RPyC for mutable parameters and extended unit testing for #346
Release RPyC 4.1.1:
* Fixed netref.class_factory id_pack usage per #339 and added test cases
* Name pack casted in _unbox to fix IronPython bug. Fixed#337
* Increased chunk size to improve multi-client response time and throughput of large data #329
* Added warning to _remote_tb when the major version of local and remote mismatch (#332)
* OneShotServer termination was fixed by WilliamBruneau (#343)
Release RPyC 4.1.0:
* Added connection back-off and attempts for congested workloads
* Fixed minor resource leak for ForkingServer
* Cross-connection instance check for cached netref classes
Note:
* Requests/replies are not compatible between >=4.1.0 and earlier versions
Release rpyc 4.0.2
- fix default hostname for ipv6 in rpyc_classic.py (#277)
- fix ThreadPoolServer not working
Release rpyc 4.0.1
- fix ValueError during install due to absolute PATH in SOURCES.txt (`#276`_)
Release rpyc 4.0.0
This release brings a few minor backward incompatibilities, so be sure to read
on before upgrading. However, fear not: the ones that are most likely relevant
to you have a relatively simple migration path.
Release rpyc 3.4.4
- Fix refcount leakage when unboxing from cache (#196)
- Fix TypeError when dispatching exceptions on py2 (unicode)
- Respect ``rpyc_protocol_config`` for default Service getattr (#202)
- Support unix domain sockets (#100,#208)
- Use first accessible server in ``connect_by_service`` (#220)
- Fix deadlock problem with logging (#207,#212)
Release rpyc 3.4.3
- Add missing endpoints config in ThreadPoolServer (#222)
- Fix jython support (#156,#171)
- Improve documentation (#158,#185,#189,#198 and more)
After verification, the version shipped in this package does not seem to be
vulnerable to the CVE entry referenced there (or to have been in any version
packaged in pkgsrc).
Thanks leot@ for the heads up!
0.28.5
Enabled ignoring duplicated messages which decreases CPU usage, thanks to J. Nick Koston.
Fixed spurious AttributeError: module 'unittest' has no attribute 'mock' in tests.
avahi 0.8 release brings a number of new features and bug fix changes
including a backward-compatible addition to the D-Bus API and the avahi-core
API.
The existing API is still fully supported however clients using the new
API will not work with older Avahi releases. The avahi-client library is not
affected. See the "API Changes" section for further details.
New Features:
- New options for filtering reflected queries between networks (reflect-filter)
- New mainloop integration for Qt5 and libevent
- docs/THREADS: Information for multi-threaded avahi-client apps
- Listen on loopback interfaces by default, allowing local-only services to be
consumed by the local machine
- New D-Bus V2 API and additions to the avahi-core API for splitting "New"
calls into "Prepare" and "Start". See "API Changes" for more details.
* Add support for binary values in TXT records in XML service files by
specifying value-format="text|binary-hex|binary-base64". If not specified,
defaults to the normal value of "text" (thus backwards compatible)
* avahi-gobject: Allow starting the client in a custom GMainContext by
passing context to ga_client_start_in_context instead of ga_client_start
(avahi-gobject minor version has been incremented)
Security Fixes:
- Drop legacy unicast queries from address not on local link which can lead to
UDP traffic amplification attacks (CVE-2017-6519)
For full details, see:
https://github.com/lathiat/avahi/blob/v0.8/docs/NEWS
2.2.3
- SCRIPTS: git-show-backports: make -m most only show the left branch
- SCRIPTS: git-show-backports: emit the shell command to backport a commit
- BUG/MEDIUM: mux-h1: Refresh H1 connection timeout after a synchronous send
- CLEANUP: dns: typo in reported error message
- BUG/MAJOR: dns: disabled servers through SRV records never recover
- BUG/MINOR: spoa-server: fix size_t format printing
- DOC: spoa-server: fix false friends `actually`
- BUG/MINOR: ssl: fix memory leak at OCSP loading
- BUG/MEDIUM: ssl: memory leak of ocsp data at SSL_CTX_free()
- BUG/MEDIUM: map/lua: Return an error if a map is loaded during runtime
- MINOR: arg: Add an argument type to keep a reference on opaque data
- BUG/MINOR: converters: Store the sink in an arg pointer for debug() converter
- BUG/MINOR: lua: Duplicate map name to load it when a new Map object is created
- BUG/MINOR: arg: Fix leaks during arguments validation for fetches/converters
- BUG/MINOR: lua: Check argument type to convert it to IPv4/IPv6 arg validation
- BUG/MINOR: lua: Check argument type to convert it to IP mask in arg validation
- MINOR: hlua: Don't needlessly copy lua strings in trash during args validation
- BUG/MINOR: lua: Duplicate lua strings in sample fetches/converters arg array
- MEDIUM: lua: Don't filter exported fetches and converters
- BUG/MINOR: snapshots: leak of snapshots on deinit()
- BUG/MEDIUM: ssl: fix the ssl-skip-self-issued-ca option
- BUG/MINOR: ssl: ssl-skip-self-issued-ca requires >= 1.0.2
- BUG/MINOR: stats: use strncmp() instead of memcmp() on health states
- BUG/MEDIUM: htx: smp_prefetch_htx() must always validate the direction
- BUG/MEDIUM: ssl: never generates the chain from the verify store
- BUG/MEDIUM: ssl: fix ssl_bind_conf double free w/ wildcards
- BUG/MINOR: reload: do not fail when no socket is sent
- BUG/MEDIUM: http-ana: Don't wait to send 1xx responses received from servers
- MINOR: http-htx: Add an option to eval query-string when the path is replaced
- BUG/MINOR: http-rules: Replace path and query-string in "replace-path" action
- BUG/MEDIUM: ssl: crt-list negative filters don't work
- DOC: cache: Use '<name>' instead of '<id>' in error message
- MINOR: cache: Reject duplicate cache names
- BUILD: tools: include auxv a bit later
- BUILD: task: work around a bogus warning in gcc 4.7/4.8 at -O1
- BUG/MAJOR: contrib/spoa-server: Fix unhandled python call leading to memory leak
- BUG/MINOR: contrib/spoa-server: Ensure ip address references are freed
- BUG/MINOR: contrib/spoa-server: Do not free reference to NULL
- BUG/MINOR: contrib/spoa-server: Updating references to free in case of failure
- BUG/MEDIUM: contrib/spoa-server: Fix ipv4_address used instead of ipv6_address
- BUG/MINOR: startup: haproxy -s cause 100% cpu
- Revert "BUG/MINOR: http-rules: Replace path and query-string in "replace-path" action"
- BUG/MEDIUM: doc: Fix replace-path action description
- MINOR: http-rules: Add set-pathq and replace-pathq actions
- MINOR: http-fetch: Add pathq sample fetch
- REGTEST: Add a test for request path manipulations, with and without the QS
- BUG/MEDIUM: ssl: check OCSP calloc in ssl_sock_load_ocsp()
- MINOR: arg: Use chunk_destroy() to release string arguments
- BUG/MEDIUM: ssl: does not look for all SNIs before chosing a certificate
- BUG/MINOR: threads: work around a libgcc_s issue with chrooting
- BUILD: thread: limit the libgcc_s workaround to glibc only
- MINOR: Commit .gitattributes
- CLEANUP: Update .gitignore
- CLEANUP: dns: remove 45 "return" statements from dns_validate_dns_response()
- BUG/MEDIUM: dns: Don't store additional records in a linked-list
- BUG/MEDIUM: dns: Be sure to renew IP address for already known servers
- MINOR: server: Improve log message sent when server address is updated
- DOC: ssl-load-extra-files only applies to certificates on bind lines
- BUG/MINOR: auth: report valid crypto(3) support depending on build options
- BUG/MEDIUM: mux-h1: always apply the timeout on half-closed connections
dpkt-1.9.3:
- drop python 2.6 support
- add python 3.7, 3.8 support
- fix netbios name encoding and decoding
- properly set type of last vlan tag to type of eth.data layer
- fix QinQ vlan tag parsing with miscellaneous data
- add explicit iter to dpkt.Packet so dict() maps the fields nicely
- fix ipv6 packet so that it can be used for generating IPv6 data
- handle zero Eth type
- python 3 compatibility fixes
dpkt-1.9.0:
- add support for Python 3.4, 3.5. Python 2.6 and 2.7 are still supported.
RPyC (pronounced like are-pie-see), or Remote Python Call, is a transparent
library for symmetrical remote procedure calls, clustering and
distributed-computing.
RPyC makes use of object-proxying, a technique that employs python's dynamic
nature, to overcome the physical boundaries between processes and computers,
so that remote objects can be manipulated as if they were local.
v1.0.5
Very minor release that fixes a crash introduced in 1.0.4.
v1.0.4
Small release. The ctrl-u and ctrl-g keyboard shortcuts can now be used to
reload the current page.
Wireshark 3.2.7 Release Notes
The Windows installers now ship with Npcap 0.9997. They previously
shipped with Npcap 0.9994.
The Windows installers now ship with Qt 5.12.9. They previously
shipped with Qt 5.12.8.
Bug Fixes
The following vulnerabilities have been fixed:
• wnpa-sec-2020-11[1] MIME Multipart dissector crash. Bug 16741[2].
Fixed in master: 2411eae9ed Fixed in master-3.2: 21f082cb6e Fixed
in master-3.0: 14e274f3be Fixed in master-2.6: 5803c7b87b
• wnpa-sec-2020-12[3] TCP dissector crash. Bug 16816[4]. Fixed in
master: c4634b1e99 Fixed in master-3.2: e9b727595b Fixed in
master-3.0: 7f3fe6164a Fixed in master-2.6: 9d7ab8b46f
• wnpa-sec-2020-13[5] BLIP dissector crash. Bug 16866[6]. Fixed in
master: 4a94842710 Fixed in master-3.2: 594d312b12 Fixed in
master-3.0: 2fb6002559 Fixed in master-2.6: n/a
The following bugs have been fixed:
• HTTP dissector fails to display correct UTF-16 XML Bug 9069[7].
• TFTP dissector does not track conversations correctly. Source
file and Destination File redundant or disagree. Bug 10305[8].
• Dissector skips DICOM command Bug 13110[9].
• Editcap time adjustment doesn’t work when both infile and outfile
are ERF Bug 16578[10].
• dissect_tds7_colmetadata_token() has wrong return value if count
is 0 Bug 16682[11].
• "total block length …<U+200B> is too small" for Systemd Journal Export
Block Bug 16734[12].
• MNC 11 is showing Mobile Network Code (MNC): NTT DoCoMo Tokai
Inc. (11) But its belonging to Rakuten Network Bug 16755[13].
• DICOM object extraction: discrepancy between tshark and wireshark
Bug 16771[14].
• S1-U data forwarding info and S103 PDN data forwarding info IE’s
showing improper value Bug 16777[15].
• Wireshark crashes while opening a capture Bug 16780[16].
• Changing preferences via Decode As does not call callback Bug
16787[17].
• Decoding of PFCP IE 'Remote GTP-U Peer' is incorrect Bug
16805[18].
• Ng-enb not decoded correctly for Target Identification IE for
GTPV2 Bug 16822[19].
• The client timestamp is parsed error for Google QUIC (version
Q039) Bug 16839[20].
• NAS-5G : PDU session reactivation result Bug 16842[21].
• Wireshark fails to detect libssh >= 0.9.5 Bug 16845[22].
Security fix:
* CVE-2020-17482:
https://doc.powerdns.com/authoritative/security-advisories/powerdns-advisory-2020-05.html
An issue has been found in PowerDNS Authoritative Server before 4.3.1
where an authorized user with the ability to insert crafted records
into a zone might be able to leak the content of uninitialized memory.
Such a user could be a customer inserting data via a control panel,
or somebody with access to the REST API. Crafted records cannot be
inserted via AXFR.
Changelog:
* New Features
- Add ubuntu focal target
* Improvements
- EL8 pkgs: Build mysql backend against mariadb-connector-c-devel
- gpgsql: Reintroduce prepared statements
- gsqlite3backend: add missing indexes
- Use real remote for supermaster createSlaveDomain()
- Optimize IXFR-to-AXFR fallback path
- Install bind SQL schema files as part of bindbackend
- Do not send out of zone lookups to the backends
* Bug Fixes:
- Raise an exception on invalid hex content in unknown records.
- Handle the extra single-row result set of MySQL stored procedures
* pkgsrc-specific:
- The default pid file patch in rc.d script has been fixed
- use ${PLUGINDIR} environment to specify plugin dir (for future move)
- update streaming plugin to 2.1 (I didn't notice the update)
- depends on mikutter>=4.1.0
Upstream changes:
mikutter 4.1.1
https://mikutter.hatenablog.com/entry/2020/09/19/232625
* improve image preview for Pixiv as mastodon does
* thanks Izumi Tsutsui
* image cache was not updated when image cache was hit on calling
Gtk::WebIcon#load_model
* [mastodon] fix image URL matcher
* modelviewer: fix bug that caused crash
* thanks Yuto Tokunaga
New features of mikutter 4.1
https://mikutter.hatenablog.com/entry/2020/06/23/233809
* New features
* Reactive API
* Added methods
1. Stream
2. Generate
3. collect
4. collection
* Improvements
* Extract tab
* subscribe data sources by plugin
* copying subscriber
* Toots are retrieved only when data sources are subcribed
* Form DSL
* listview widget
* keybind widget
* Intent
* improved list and dialog
* All methods of Mtk module have been obsolete
* Delayed execution
* Image cache management has been changed
* memory cache
* file cache
* All other things forgotten to be written
Changes:
20200920
--------
Core
* [extractor/common] Relax interaction count extraction in _json_ld
+ [extractor/common] Extract author as uploader for VideoObject in _json_ld
* [downloader/hls] Fix incorrect end byte in Range HTTP header for
media segments with EXT-X-BYTERANGE (#14748, #24512)
* [extractor/common] Handle ssl.CertificateError in _request_webpage (#26601)
* [downloader/http] Improve timeout detection when reading block of data
(#10935)
* [downloader/http] Retry download when urlopen times out (#10935, #26603)
Extractors
* [redtube] Extend URL regular expression (#26506)
* [twitch] Refactor
* [twitch:stream] Switch to GraphQL and fix reruns (#26535)
+ [telequebec] Add support for brightcove videos (#25833)
* [pornhub] Extract metadata from JSON-LD (#26614)
* [pornhub] Fix view count extraction (#26621, #26614)
This gem wraps the ZeroMQ networking library using the ruby FFI
(foreign function interface). It's a pure ruby wrapper so this gem
can be loaded and run by any ruby runtime that supports FFI.
The intention of this gem is to provide a very basic FFI wrapper
around the Zeromq libzmq C API. This gem isn't intended to be used
directly by any Ruby programmer looking to write Zeromq code. They
should use a higher-level gem like ffi-rzmq which pulls in this
gem for its FFI definitions.
backtrace(3) does not work on netbsd-9 ending up in a SIGSEGV and tor
process hanging forever (a simple way to reproduce without configuring
tor is just invoking tor via `tor --version').
Workaround for PR port-evbarm/55669.
PKGREVISION++
Update samba4 package to 4.12.7.
==============================
Release Notes for Samba 4.12.7
September 18, 2020
==============================
This is a security release in order to address the following defect:
o CVE-2020-1472: Unauthenticated domain takeover via netlogon ("ZeroLogon").
The following applies to Samba used as domain controller only (most
seriously the Active Directory DC, but also the classic/NT4-style DC).
Installations running Samba as a file server only are not directly
affected by this flaw, though they may need configuration changes to
continue to talk to domain controllers (see "file servers and domain
members" below).
The netlogon protocol contains a flaw that allows an authentication
bypass. This was reported and patched by Microsoft as CVE-2020-1472.
Since the bug is a protocol level flaw, and Samba implements the
protocol, Samba is also vulnerable.
However, since version 4.8 (released in March 2018), the default
behaviour of Samba has been to insist on a secure netlogon channel,
which is a sufficient fix against the known exploits. This default is
equivalent to having 'server schannel = yes' in the smb.conf.
Therefore versions 4.8 and above are not vulnerable unless they have
the smb.conf lines 'server schannel = no' or 'server schannel = auto'.
Samba versions 4.7 and below are vulnerable unless they have 'server
schannel = yes' in the smb.conf.
Note each domain controller needs the correct settings in its smb.conf.
Vendors supporting Samba 4.7 and below are advised to patch their
installations and packages to add this line to the [global] section if
their smb.conf file.
The 'server schannel = yes' smb.conf line is equivalent to Microsoft's
'FullSecureChannelProtection=1' registry key, the introduction of
which we understand forms the core of Microsoft's fix.
Some domains employ third-party software that will not work with a
'server schannel = yes'. For these cases patches are available that
allow specific machines to use insecure netlogon. For example, the
following smb.conf:
server schannel = yes
server require schannel:triceratops$ = no
server require schannel:greywacke$ = no
will allow only "triceratops$" and "greywacke$" to avoid schannel.
More details can be found here:
https://www.samba.org/samba/security/CVE-2020-1472.html
Update bind916 pacakge to 9.16.7.
--- 9.16.7 released ---
5501. [func] Log CDS/CDNSKEY publication. [GL #1748]
5500. [bug] Fix (non-)publication of CDS and CDNSKEY records.
[GL #2103]
5499. [func] Add '-P ds' and '-D ds' arguments to dnssec-settime.
[GL #1748]
5497. [bug] 'dig +bufsize=0' failed to disable EDNS. [GL #2054]
5496. [bug] Address a TSAN report by ensuring each rate limiter
object holds a reference to its task. [GL #2081]
5495. [bug] With query minimization enabled, named failed to
resolve ip6.arpa. names that had extra labels to the
left of the IPv6 part. [GL #1847]
5494. [bug] Silence the EPROTO syslog message on older systems.
[GL #1928]
5493. [bug] Fix off-by-one error when calculating new hash table
size. [GL #2104]
5492. [bug] Tighten LOC parsing to reject a period (".") and/or "m"
as a value. Fix handling of negative altitudes which are
not whole meters. [GL #2074]
5491. [bug] rbtversion->glue_table_size could be read without the
appropriate lock being held. [GL #2080]
5489. [bug] Named erroneously accepted certain invalid resource
records that were incorrectly processed after
subsequently being written to disk and loaded back, as
the wire format differed. Such records include: CERT,
IPSECKEY, NSEC3, NSEC3PARAM, NXT, SIG, TLSA, WKS, and
X25. [GL !3953]
5488. [bug] NTA code needed to have a weak reference on its
associated view to prevent the latter from being deleted
while NTA tests were being performed. [GL #2067]
5486. [func] Add 'rndc dnssec -checkds' command, which signals to
named that the DS record for a given zone or key has
been updated in the parent zone. [GL #1613]
Update bind911 package to 9.11.23.
--- 9.11.23 released ---
5497. [bug] 'dig +bufsize=0' failed to disable EDNS. [GL #2054]
5496. [bug] Address a TSAN report by ensuring each rate limiter
object holds a reference to its task. [GL #2081]
5492. [bug] Tighten LOC parsing to reject a period (".") and/or "m"
as a value. Fix handling of negative altitudes which are
not whole meters. [GL #2074]
5489. [bug] Named erroneously accepted certain invalid resource
records that were incorrectly processed after
subsequently being written to disk and loaded back, as
the wire format differed. Such records include: CERT,
IPSECKEY, NSEC3, NSEC3PARAM, NXT, SIG, TLSA, WKS, and
X25. [GL !3953]
5488. [bug] NTA code needed to have a weak reference on its
associated view to prevent the latter from being deleted
while NTA tests were being performed. [GL #2067]
* Use :tl for lower case PKGNAME.
Changelog:
v1.4.8
Adding timout option for RDP connections. !2091 @antenore
Avoid quickconnect to empty hostnames. Fixes#2240. !2092 @giox069
Using full paths instead of variables !2094 @antenore
Add support for quick connecting to RDP, VNC and SPICE from the command line !2093 @espentveit
Add SSH support to the protocol handler !2095 @espentveit
Restart SSH session when user has provided new username or password to allow for changing SSH user !2096 @espentveit
Use inline with AppStream 0.12 specification. !2097 @ghost1
Enabled GDK_SCROLL_SMOOTH for RDP/VNC !2098 @kenansun0
Some fixes for the RDP backend !2099 @pnowack
Trim white from ip addresses input into quick connect bar !2100 @daxkelson
Enhancing the SNAP info dialog box !2102 @antenore
Adding FreeRDP log level setting !2103 @antenore
Patron tally badge added to README !2090 @kingu
v1.4.7
Allow compilation with libwinpr (freerdp) pre commit 8c5d96784d !2083 @giox069
Bug fixing v1.4.6 !2082 @antenore
Spelling: Automatic negotiation !2084 @kingu
Spelling: GNOME Shell, opt-in desc, comments !2085 @kingu
Memory leaks fixes!2086 @antenore
RDP: Replacing deprecated freerdp function VeryfyCertificate !2087 @antenore
3.50.0 (2020-08-27)
- Minor fixes to Tardigrade integration
3.50.0-rc1 (2020-08-21)
+ Update Storj/Tardigrade integration, now based on the uplink-c library
- Fix layout issues in the Site Manager if switching protocol
- Restored natural sort option for file list sorting
3.49.1 (2020-07-15)
- Fixed selection changes not being reflected in the Site Manager in some circumstances
3.49.0 (2020-07-13)
- Fixed retrying initial connection attempts
3.49.0-rc1 (2020-07-07)
- MSW: Tab bar icons now scale on high-DPI displays
- The sizing and spacing of several dialogs has been improved on high-DPI displays
- MSW: Fix visual glitches when changing the selected site in the Site Manager
- When creating a new tab, the pane sizes are now inherited from the previous tab.
- macOS: Additional fixes for handling Cmd+V, Cmd+C and Cmd+X in text input controls
- Refactored internal settings and option handling
Features
- Add gh release commands for managing GitHub Releases
- Add gh pr checks command
- Add gh gist list/view/edit commands
- Improve resolving the base repository for all commands
- Additionally, gh pr create now prompts for where to push the current branch,
including an option to create a fork, instead of trying to guess the head
repository or automatically fork in the background.
- Add gh pr create --head <branch> flag to explicitly set the head branch for
automation and opt out of any forking/pushing functionality.
- Add gh config set prompt disabled config setting
- Add gh help environment help topic listing all supported environment
variables
- Add support for PAGER environment variable to enable a terminal pager program
such as less, also supported through the pager config option
- Add gh auth login --web flag
Bugs
- pr merge --squash: add pull request title to the commit subject
- pr create: prepend body defaults to the selected template
- repo view: do not HTML-escape output
- issue list: fix misalignment due to Unicode and emoji characters
- Fix terminal color display under various color schemes
- Fix zsh completion script
- Fix opening the web browser under WSL
While here fix the build on SunOS, based on patches in joyent/pkgsrc#266
from mrferda.
0.24.1 (2020-08-27)
- fz::to_integral can now handle strongly typed enum return types
0.24.0 (2020-08-21)
+ Added fz::equal_consttime
- fz::sprintf now works corrcetly if arguments are passed as (w)string_view
0.23.0 (2020-07-07)
+ Added reader/writer locks
- fz::mkdir can now return the the longest created path in case of partial failures
From upstream's release notes:
Major changes since 0.8.2:
- mostly bugfixes and performance improvements
New plugins:
- plugin_stats: write some statistics about currently active calls
- plugin_blacklist: new plugin to block UACs that cause excessive
failures during REGISTER attempts
Upgrade Notes 0.8.2 to 0.8.3:
- Merge the configuration file
Changes in version 0.4.4.5 - 2020-09-15
Tor 0.4.4.5 is the first stable release in the 0.4.4.x series. This
series improves our guard selection algorithms, adds v3 onion balance
support, improves the amount of code that can be disabled when running
without relay support, and includes numerous small bugfixes and
enhancements. It also lays the ground for some IPv6 features that
we'll be developing more in the next (0.4.5) series.
Per our support policy, we support each stable release series for nine
months after its first stable release, or three months after the first
stable release of the next series: whichever is longer. This means
that 0.4.4.x will be supported until around June 2021--or later, if
0.4.5.x is later than anticipated.
Note also that support for 0.4.2.x has just ended; support for 0.4.3
will continue until Feb 15, 2021. We still plan to continue supporting
0.3.5.x, our long-term stable series, until Feb 2022.
o Major features (Proposal 310, performance + security):
- Implements Proposal 310, "Bandaid on guard selection". Proposal
310 solves load-balancing issues with older versions of the guard
selection algorithm, and improves its security. Under this new
algorithm, a newly selected guard never becomes Primary unless all
previously sampled guards are unreachable. Implements
recommendation from 32088. (Proposal 310 is linked to the CLAPS
project researching optimal client location-aware path selections.
This project is a collaboration between the UCLouvain Crypto Group,
the U.S. Naval Research Laboratory, and Princeton University.)
o Major features (fallback directory list):
- Replace the 148 fallback directories originally included in Tor
0.4.1.4-rc (of which around 105 are still functional) with a list
of 144 fallbacks generated in July 2020. Closes ticket 40061.
o Major features (IPv6, relay):
- Consider IPv6-only EXTEND2 cells valid on relays. Log a protocol
warning if the IPv4 or IPv6 address is an internal address, and
internal addresses are not allowed. But continue to use the other
address, if it is valid. Closes ticket 33817.
- If a relay can extend over IPv4 and IPv6, and both addresses are
provided, it chooses between them uniformly at random. Closes
ticket 33817.
- Re-use existing IPv6 connections for circuit extends. Closes
ticket 33817.
- Relays may extend circuits over IPv6, if the relay has an IPv6
ORPort, and the client supplies the other relay's IPv6 ORPort in
the EXTEND2 cell. IPv6 extends will be used by the relay IPv6
ORPort self-tests in 33222. Closes ticket 33817.
o Major features (v3 onion services):
- Allow v3 onion services to act as OnionBalance backend instances,
by using the HiddenServiceOnionBalanceInstance torrc option.
Closes ticket 32709.
o Major bugfixes (NSS):
- When running with NSS enabled, make sure that NSS knows to expect
nonblocking sockets. Previously, we set our TCP sockets as
nonblocking, but did not tell NSS, which in turn could lead to
unexpected blocking behavior. Fixes bug 40035; bugfix
on 0.3.5.1-alpha.
o Major bugfixes (onion services, DoS):
- Correct handling of parameters for the onion service DoS defense.
Previously, the consensus parameters for the onion service DoS
defenses were overwriting the parameters set by the service
operator using HiddenServiceEnableIntroDoSDefense. Fixes bug
40109; bugfix on 0.4.2.1-alpha.
o Major bugfixes (stats, onion services):
- Fix a bug where we were undercounting the Tor network's total
onion service traffic, by ignoring any traffic originating from
clients. Now we count traffic from both clients and services.
Fixes bug 40117; bugfix on 0.2.6.2-alpha.
o Minor features (security):
- Channels using obsolete versions of the Tor link protocol are no
longer allowed to circumvent address-canonicity checks. (This is
only a minor issue, since such channels have no way to set ed25519
keys, and therefore should always be rejected for circuits that
specify ed25519 identities.) Closes ticket 40081.
o Minor features (bootstrap reporting):
- Report more detailed reasons for bootstrap failure when the
failure happens due to a TLS error. Previously we would just call
these errors "MISC" when they happened during read, and "DONE"
when they happened during any other TLS operation. Closes
ticket 32622.
o Minor features (client-only compilation):
- Disable more code related to the ext_orport protocol when
compiling without support for relay mode. Closes ticket 33368.
- Disable more of our self-testing code when support for relay mode
is disabled. Closes ticket 33370.
- Most server-side DNS code is now disabled when building without
support for relay mode. Closes ticket 33366.
o Minor features (code safety):
- Check for failures of tor_inet_ntop() and tor_inet_ntoa()
functions in DNS and IP address processing code, and adjust
codepaths to make them less likely to crash entire Tor instances.
Resolves issue 33788.
o Minor features (continuous integration):
- Run unit-test and integration test (Stem, Chutney) jobs with
ALL_BUGS_ARE_FATAL macro being enabled on Travis and Appveyor.
Resolves ticket 32143.
o Minor features (control port):
- If a ClientName was specified in ONION_CLIENT_AUTH_ADD for an
onion service, display it when we use ONION_CLIENT_AUTH_VIEW.
Closes ticket 40089. Patch by Neel Chauhan.
- Return a descriptive error message from the 'GETINFO status/fresh-
relay-descs' command on the control port. Previously, we returned
a generic error of "Error generating descriptor". Closes ticket
32873. Patch by Neel Chauhan.
o Minor features (defense in depth):
- Wipe more data from connection address fields before returning
them to the memory heap. Closes ticket 6198.
o Minor features (denial-of-service memory limiter):
- Allow the user to configure even lower values for the
MaxMemInQueues parameter. Relays now enforce a minimum of 64 MB,
when previously the minimum was 256 MB. On clients, there is no
minimum. Relays and clients will both warn if the value is set so
low that Tor is likely to stop working. Closes ticket 24308.
o Minor features (developer tooling):
- Add a script to help check the alphabetical ordering of option
names in the manual page. Closes ticket 33339.
- Refrain from listing all .a files that are generated by the Tor
build in .gitignore. Add a single wildcard *.a entry that covers
all of them for present and future. Closes ticket 33642.
- Add a script ("git-install-tools.sh") to install git hooks and
helper scripts. Closes ticket 33451.
o Minor features (directory authority):
- Authorities now recommend the protocol versions that are supported
by Tor 0.3.5 and later. (Earlier versions of Tor have been
deprecated since January of this year.) This recommendation will
cause older clients and relays to give a warning on startup, or
when they download a consensus directory. Closes ticket 32696.
o Minor features (directory authority, shared random):
- Refactor more authority-only parts of the shared-random scheduling
code to reside in the dirauth module, and to be disabled when
compiling with --disable-module-dirauth. Closes ticket 33436.
o Minor features (directory):
- Remember the number of bytes we have downloaded for each directory
purpose while bootstrapping, and while fully bootstrapped. Log
this information as part of the heartbeat message. Closes
ticket 32720.
o Minor features (entry guards):
- Reinstate support for GUARD NEW/UP/DOWN control port events.
Closes ticket 40001.
o Minor features (IPv6 support):
- Adds IPv6 support to tor_addr_is_valid(). Adds tests for the above
changes and tor_addr_is_null(). Closes ticket 33679. Patch
by MrSquanchee.
- Allow clients and relays to send dual-stack and IPv6-only EXTEND2
cells. Parse dual-stack and IPv6-only EXTEND2 cells on relays.
Closes ticket 33901.
o Minor features (linux seccomp2 sandbox, portability):
- Allow Tor to build on platforms where it doesn't know how to
report which syscall caused the linux seccomp2 sandbox to fail.
This change should make the sandbox code more portable to less
common Linux architectures. Closes ticket 34382.
- Permit the unlinkat() syscall, which some Libc implementations use
to implement unlink(). Closes ticket 33346.
o Minor features (logging):
- When trying to find our own address, add debug-level logging to
report the sources of candidate addresses. Closes ticket 32888.
o Minor features (onion service client, SOCKS5):
- Add 3 new SocksPort ExtendedErrors (F2, F3, F7) that reports back
new type of onion service connection failures. The semantics of
these error codes are documented in proposal 309. Closes
ticket 32542.
o Minor features (onion service v3):
- If a service cannot upload its descriptor(s), log why at INFO
level. Closes ticket 33400; bugfix on 0.3.2.1-alpha.
o Minor features (python scripts):
- Stop assuming that /usr/bin/python exists. Instead of using a
hardcoded path in scripts that still use Python 2, use
/usr/bin/env, similarly to the scripts that use Python 3. Fixes
bug 33192; bugfix on 0.4.2.
o Minor features (testing, architecture):
- Our test scripts now double-check that subsystem initialization
order is consistent with the inter-module dependencies established
by our .may_include files. Implements ticket 31634.
- Initialize all subsystems at the beginning of our unit test
harness, to avoid crashes due to uninitialized subsystems. Follow-
up from ticket 33316.
- Our "make check" target now runs the unit tests in 8 parallel
chunks. Doing this speeds up hardened CI builds by more than a
factor of two. Closes ticket 40098.
o Minor features (v3 onion services):
- Add v3 onion service status to the dumpstats() call which is
triggered by a SIGUSR1 signal. Previously, we only did v2 onion
services. Closes ticket 24844. Patch by Neel Chauhan.
o Minor features (windows):
- Add support for console control signals like Ctrl+C in Windows.
Closes ticket 34211. Patch from Damon Harris (TheDcoder).
o Minor bugfixes (control port, onion service):
- Consistently use 'address' in "Invalid v3 address" response to
ONION_CLIENT_AUTH commands. Previously, we would sometimes say
'addr'. Fixes bug 40005; bugfix on 0.4.3.1-alpha.
o Minor bugfixes (correctness, buffers):
- Fix a correctness bug that could cause an assertion failure if we
ever tried using the buf_move_all() function with an empty input
buffer. As far as we know, no released versions of Tor do this.
Fixes bug 40076; bugfix on 0.3.3.1-alpha.
o Minor bugfixes (directory authorities):
- Directory authorities now reject votes that arrive too late. In
particular, once an authority has started fetching missing votes,
it no longer accepts new votes posted by other authorities. This
change helps prevent a consensus split, where only some authorities
have the late vote. Fixes bug 4631; bugfix on 0.2.0.5-alpha.
o Minor bugfixes (git scripts):
- Stop executing the checked-out pre-commit hook from the pre-push
hook. Instead, execute the copy in the user's git directory. Fixes
bug 33284; bugfix on 0.4.1.1-alpha.
o Minor bugfixes (initialization):
- Initialize the subsystems in our code in an order more closely
corresponding to their dependencies, so that every system is
initialized before the ones that (theoretically) depend on it.
Fixes bug 33316; bugfix on 0.4.0.1-alpha.
o Minor bugfixes (IPv4, relay):
- Check for invalid zero IPv4 addresses and ports when sending and
receiving extend cells. Fixes bug 33900; bugfix on 0.2.4.8-alpha.
o Minor bugfixes (IPv6, relay):
- Consider IPv6 addresses when checking if a connection is
canonical. In 17604, relays assumed that a remote relay could
consider an IPv6 connection canonical, but did not set the
canonical flag on their side of the connection. Fixes bug 33899;
bugfix on 0.3.1.1-alpha.
- Log IPv6 addresses on connections where this relay is the
responder. Previously, responding relays would replace the remote
IPv6 address with the IPv4 address from the consensus. Fixes bug
33899; bugfix on 0.3.1.1-alpha.
o Minor bugfixes (linux seccomp2 sandbox):
- Fix a regression on sandboxing rules for the openat() syscall. The
fix for bug 25440 fixed the problem on systems with glibc >= 2.27
but broke with versions of glibc. We now choose a rule based on
the glibc version. Patch from Daniel Pinto. Fixes bug 27315;
bugfix on 0.3.5.11.
- Makes the seccomp sandbox allow the correct syscall for opendir
according to the running glibc version. This fixes crashes when
reloading torrc with sandbox enabled when running on glibc 2.15 to
2.21 and 2.26. Patch from Daniel Pinto. Fixes bug 40020; bugfix
on 0.3.5.11.
o Minor bugfixes (logging, testing):
- Make all of tor's assertion macros support the ALL_BUGS_ARE_FATAL
and DISABLE_ASSERTS_IN_UNIT_TESTS debugging modes. (IF_BUG_ONCE()
used to log a non-fatal warning, regardless of the debugging
mode.) Fixes bug 33917; bugfix on 0.2.9.1-alpha.
- Remove surprising empty line in the INFO-level log about circuit
build timeout. Fixes bug 33531; bugfix on 0.3.3.1-alpha.
o Minor bugfixes (mainloop):
- Better guard against growing a buffer past its maximum 2GB in
size. Fixes bug 33131; bugfix on 0.3.0.4-rc.
o Minor bugfixes (onion service v3 client):
- Remove a BUG() warning that could occur naturally. Fixes bug
34087; bugfix on 0.3.2.1-alpha.
o Minor bugfixes (onion service, logging):
- Fix a typo in a log message PublishHidServDescriptors is set to 0.
Fixes bug 33779; bugfix on 0.3.2.1-alpha.
o Minor bugfixes (onion services v3):
- Avoid a non-fatal assertion failure in certain edge-cases when
opening an intro circuit as a client. Fixes bug 34084; bugfix
on 0.3.2.1-alpha.
o Minor bugfixes (protocol versions):
- Sort tor's supported protocol version lists, as recommended by the
tor directory specification. Fixes bug 33285; bugfix
on 0.4.0.1-alpha.
o Minor bugfixes (rate limiting, bridges, pluggable transports):
- On a bridge, treat all connections from an ExtORPort as remote by
default for the purposes of rate-limiting. Previously, bridges
would treat the connection as local unless they explicitly
received a "USERADDR" command. ExtORPort connections still count
as local if there is a USERADDR command with an explicit local
address. Fixes bug 33747; bugfix on 0.2.5.1-alpha.
o Minor bugfixes (refactoring):
- Lift circuit_build_times_disabled() out of the
circuit_expire_building() loop, to save CPU time when there are
many circuits open. Fixes bug 33977; bugfix on 0.3.5.9.
o Minor bugfixes (relay, self-testing):
- When starting up as a relay, if we haven't been able to verify
that we're reachable, only launch reachability tests at most once
a minute. Previously, we had been launching tests up to once a
second, which was needlessly noisy. Fixes bug 40083; bugfix
on 0.2.8.1-alpha.
o Minor bugfixes (relay, usability):
- Adjust the rules for when to warn about having too many
connections to other relays. Previously we'd tolerate up to 1.5
connections per relay on average. Now we tolerate more connections
for directory authorities, and raise the number of total
connections we need to see before we warn. Fixes bug 33880; bugfix
on 0.3.1.1-alpha.
o Minor bugfixes (SOCKS, onion service client):
- Detect v3 onion service addresses of the wrong length when
returning the F6 ExtendedErrors code. Fixes bug 33873; bugfix
on 0.4.3.1-alpha.
o Minor bugfixes (tests):
- Fix the behavior of the rend_cache/clean_v2_descs_as_dir when run
on its own. Previously, it would exit with an error. Fixes bug
40099; bugfix on 0.2.8.1-alpha.
o Minor bugfixes (v3 onion services):
- Remove a BUG() warning that could trigger in certain unlikely
edge-cases. Fixes bug 34086; bugfix on 0.3.2.1-alpha.
- Remove a BUG() that was causing a stacktrace when a descriptor
changed at an unexpected time. Fixes bug 28992; bugfix
on 0.3.2.1-alpha.
o Minor bugfixes (windows):
- Fix a bug that prevented Tor from starting if its log file grew
above 2GB. Fixes bug 31036; bugfix on 0.2.1.8-alpha.
o Code simplification and refactoring:
- Define and use a new constant TOR_ADDRPORT_BUF_LEN which is like
TOR_ADDR_BUF_LEN but includes enough space for an IP address,
brackets, separating colon, and port number. Closes ticket 33956.
Patch by Neel Chauhan.
- Merge the orconn and ocirc events into the "core" subsystem, which
manages or connections and origin circuits. Previously they were
isolated in subsystems of their own.
- Move LOG_PROTOCOL_WARN to app/config. Resolves a dependency
inversion. Closes ticket 33633.
- Move the circuit extend code to the relay module. Split the
circuit extend function into smaller functions. Closes
ticket 33633.
- Rewrite port_parse_config() to use the default port flags from
port_cfg_new(). Closes ticket 32994. Patch by MrSquanchee.
- Updated comments in 'scheduler.c' to reflect old code changes, and
simplified the scheduler channel state change code. Closes
ticket 33349.
- Refactor configuration parsing to use the new config subsystem
code. Closes ticket 33014.
- Move a series of functions related to address resolving into their
own files. Closes ticket 33789.
o Documentation:
- Replace most http:// URLs in our code and documentation with
https:// URLs. (We have left unchanged the code in src/ext/, and
the text in LICENSE.) Closes ticket 31812. Patch from Jeremy Rand.
- Document the limitations of using %include on config files with
seccomp sandbox enabled. Fixes documentation bug 34133; bugfix on
0.3.1.1-alpha. Patch by Daniel Pinto.
o Removed features:
- Our "check-local" test target no longer tries to use the
Coccinelle semantic patching tool parse all the C files. While it
is a good idea to try to make sure Coccinelle works on our C
before we run a Coccinelle patch, doing so on every test run has
proven to be disruptive. You can still run this tool manually with
"make check-cocci". Closes ticket 40030.
- Remove the ClientAutoIPv6ORPort option. This option attempted to
randomly choose between IPv4 and IPv6 for client connections, and
wasn't a true implementation of Happy Eyeballs. Often, this option
failed on IPv4-only or IPv6-only connections. Closes ticket 32905.
Patch by Neel Chauhan.
- Stop shipping contrib/dist/rc.subr file, as it is not being used
on FreeBSD anymore. Closes issue 31576.
o Testing:
- Add a basic IPv6 test to "make test-network". This test only runs
when the local machine has an IPv6 stack. Closes ticket 33300.
- Add test-network-ipv4 and test-network-ipv6 jobs to the Makefile.
These jobs run the IPv4-only and dual-stack chutney flavours from
test-network-all. Closes ticket 33280.
- Remove a redundant distcheck job. Closes ticket 33194.
- Run the test-network-ipv6 Makefile target in the Travis CI IPv6
chutney job. This job runs on macOS, so it's a bit slow. Closes
ticket 33303.
- Sort the Travis jobs in order of speed. Putting the slowest jobs
first takes full advantage of Travis job concurrency. Closes
ticket 33194.
- Stop allowing the Chutney IPv6 Travis job to fail. This job was
previously configured to fast_finish (which requires
allow_failure), to speed up the build. Closes ticket 33195.
- Test v3 onion services to tor's mixed IPv4 chutney network. And
add a mixed IPv6 chutney network. These networks are used in the
test-network-all, test-network-ipv4, and test-network-ipv6 make
targets. Closes ticket 33334.
- Use the "bridges+hs-v23" chutney network flavour in "make test-
network". This test requires a recent version of chutney (mid-
February 2020). Closes ticket 28208.
- When a Travis chutney job fails, use chutney's new "diagnostics.sh"
tool to produce detailed diagnostic output. Closes ticket 32792.
o Deprecated features (onion service v2):
- Add a deprecation warning for version 2 onion services. Closes
ticket 40003.
o Documentation (manual page):
- Add cross reference links and a table of contents to the HTML tor
manual page. Closes ticket 33369. Work by Swati Thacker as part of
Google Season of Docs.
- Alphabetize the Denial of Service Mitigation Options, Directory
Authority Server Options, Hidden Service Options, and Testing
Network Options sections of the tor(1) manual page. Closes ticket
33275. Work by Swati Thacker as part of Google Season of Docs.
- Refrain from mentioning nicknames in manpage section for MyFamily
torrc option. Resolves issue 33417.
- Updated the options set by TestingTorNetwork in the manual page.
Closes ticket 33778.
This is 2.51.3_rc1. It is believed to interoperate with 2.51.2 (no
wire protocol break), but this is not 100% certain.
Upstream changes relative to the last snapshot:
(not provided, probably many, mostly bugfixes)
A change since 2.51.2 caused a protocol break; this has been reverted.
Upstream NEWS relative to the last release:
Changes since 2.51.2:
* Some nontrivial changes to profile parsing (G.raud Meyer)
+ ’=’ has been considered whitespace until now: several
following chars are considered as only one; trailing chars are
discarded; any non emty sequence of char is splitting. This is
non standard and leads to confusion, for example -ignore==
’Name .*=*’ is valid when -ignore=’Name .*=*’ is not, and
worse -ignore=’Name *=’ is the same as -ignore=’Name *’. The
parser now takes just a single ’=’ as delimiter after the
option name. Other = characters are considered as part of the
value being assigned to the option.
* Numerous improvements to the text user-interface (G.raud Meyer)
+ New key-commands that restrict the display to a set of
"matching" items: ones that are offering to propagate changes
in a particular direction, conflicts, files to be merged,
etc., plus several more useful key-commands. Type "?" to
Unison to see all available commands.
6.7.0:
Reworked tests and finally applied
Improve documentation examples and snippets
Restore RobustChannel.default_exchange on reconnect
Improve the docs a bit
3.0.1:
This release fixes an issue with Basic.Reject requeue=False always being set to True
3.0.0:
This represents the first stable release of the 3.0 branch for pamqp. It is Python 3.6+ only and is focused on protocol correctness and completeness.
Changes
Bugfix for encoding of unsigned small integers being treated as signed small integers
Updated tests around timezone behavior issues
Update ruby-train-core package to 3.3.21.
3.3.21 (2020-09-14)
Merged Pull Requests
* Resolve test failures on Ruby 2.4 #632 (tas50)
* Update chefstyle requirement from 1.2.0 to 1.2.1 #631
(dependabot-preview[bot])
* Update Google gem versions for train #635 (lhasadreams)
* Switch from FILE to dir where we can #638 (tas50)
* Allow for docker-api 2.x #637 (tas50)
3.3.16 (2020-08-17)
Merged Pull Requests
* Fix spelling mistakes including misidentification of XenServer #628
(tas50)
* Remove 1.x branch config from Expeditor #622 (tas50)
* Speed up requires in non-omnibus Ruby installs #630 (tas50)
3.3.13 (2020-08-05)
Merged Pull Requests
* Update chefstyle requirement from 1.1.1 to 1.1.2 #619
(dependabot-preview[bot])
* Get the old integration tests closer to running #620 (tas50)
* Run Chefstyle on the oldest ruby we support #621 (tas50)
* Remove the redundant encoding comments #623 (tas50)
* Update chefstyle requirement from 1.1.2 to 1.1.3 #624
(dependabot-preview[bot])
* Avoid minor rubocop warning #626 (tas50)
* Update chefstyle requirement from 1.1.3 to 1.2.0 #627
(dependabot-preview[bot])
3.3.6 (2020-07-02)
Merged Pull Requests
* Fix incorrect error message when password is expired #616 (vsingh-msys)
* Properly detect macOS Big Sur as being platform mac_os_x #618 (tas50)
3.3.4 (2020-06-25)
Merged Pull Requests
* Add DragonflyBSD detection #614 (tecracer-theinen)
* Update chefstyle requirement from 1.1.0 to 1.1.1 #611
(dependabot-preview[bot])
* Fix SSH Connection reuse #613 (tecracer-theinen)
Update ruby-recog package to 2.3.14.
2.3.14 - 2020.08.07
Highlights:
* HTTP: Improved coverage of VNC related web services (#282)
* HTTP: Improved coverage and CPEs of SonicWall and Cisco Expressway (#283)
2.3.13 - 2020.08.03
Highlights:
* Improving coverage of Moxa devices (#280)
* Adding fingerprints for certain high volume services as observed by
Project Sonar (#280, #281)
* CPE: Improving the number of fingerprints and Project Sonar matches that
returned CPEs (#281)
2.3.12 - 2020.07.23
Highlights:
* HTTP: Additional SAP NetWeaver and Glassfish coverage and fixes (#279)
* FTP: Serv-U and Filezilla improvements (#279)
* CPE: Tweaks to vendor, service, and cpe-remap.yaml which resulted in much
better coverage for services frequently seen on the Internet. See PR for
stats. (#279)
2.3.11 - 2020.07.16
Highlights:
* HTTP: Adjust banner for $ProjectRevision (Treck TCP/IP) by Anderson Luan
(#272)
* HTTP: SAP Internet Graphics Server and Message Server fingerprints (#275)
* DNS: Windows Server 2008 SP2, performance and other coverage tweaks (#276)
* DNS: Avoid spoofed Microsoft DNS Server, add Debian Buster (#277)
* CPE: Correct CPE generating automation (#278)
2.3.10 - 2020.07.14
Highlights:
* SAP NetWeaver: Telnet and HTTP tweaks (#274)
2.3.9 - 2020.07.14
Highlights:
* Upgrade lxml, improve fingerprint readability (#268)
* New fingerprints and completed normalization by HD Moore (#269)
* New Database: favicons.xml (MD5 fingerprints for favicon.ico files) by HD
Moore (#270)
* HTTP: Project Sonar HTTP updates (including SAP Netweaver / Oracle) (#273)
Update ruby-net-ldap package to 0.16.3.
0.16.3 (2020-08-18)
* Add Net::LDAP::InvalidDNError #371
* Use require_relative instead of require #360
* Address some warnings and fix JRuby test omissions #365
* Bump rake dev dependency to 12.3 #359
* Enable rubocop in ci #251
* Enhance rubocop configuration and test syntax #344
* CI: Drop rbx-2, uninstallable #364
* Fix RuboCop warnings #312
* Fix wrong error class #305
* CONTRIBUTING.md: Repair link to Issues #309
* Make the generate() method more idiomatic... #326
* Make encode_sort_controls() more idiomatic... #327
* Make the instrument() method more idiomatic... #328
* Fix uninitialised Net::LDAP::LdapPduError #338
* README.rdoc: Use SVG build badge #310
* Update TravisCI config to inclue Ruby 2.7 #346
* add explicit ** to silence Ruby 2.7 warning #342
* Support parsing filters with attribute tags #345
* Bump rubocop development dependency version #336
* Add link to generated and hosted documentation on rubydoc #319
* Fix 'uninitialized constant Net::LDAP::PDU::LdapPduError' error #317
* simplify encoding logic: no more chomping required #362
Update ruby-dnsruby package to 1.61.4.
## v1.61.4
* Dnsruby::Name : document .punycode
* gemspec enhancement
* add yard build file
* fix create name include url special characters
* Fix uninitialized constant error when using via Rails
* Implement ECDSAP256SHA256 (13) / ECDSAP384SHA384 (14) algorithms for DNSKEY
* Reinitialize all IANA TAR keys with Dnssec.reset
Update ruby-amq-protocol package to 2.3.2.
## Changes between 2.3.1 and 2.3.2 (July 10th, 2020)
### Safer Encoding Handling When Serialising Message Properties and Headers
Contributed by @bbascarevic-tti.
2.5 Fri, 12 Apr 2019
core:
* linux: reload logger during daemonize to avoid issues like not listening http
daemon if logger has still not been used before starting the listener
* Fix#646: HTTP daemon not starting on CentOS 7
* revert dfcb64573e as now more generic fix has been implemented in a538abaed7
(tested on CentOS 6)
* win32: don't show service memory usage on OS not supporting GetProcessMemoryInfo
* Fix#601: Log URL for server target and log path for local target
* win32: add early stderr logging support for service
Just rename "fusioninventory-win32-service.rc.sample" removing ".sample" part
to enable this feature. This can be handy to investigate start service failures.
* Added support for HTTPD plugins
* Added Inventory HTTPD plugins to permit remote inventory request (disabled by default)
* Added Listener target to permit agent to only answer http requests
* Updated configuration to support HTTPD plugins dedicated configuration file
* Added fusioninventory-remoteinventory script to request agent with Inventory
HTTPD plugin enabled
* Fix HTTPD local address reuse
* Added SSL HTTPD plugins to support SSL in any server plugins
* Limit the reload target check to 30 seconds
* win32: report memory usage as Working Set Size (WSS) and Page File Usage (PFU)
* win32: revert handling service with callbacks. Even if Win32::Daemon proposes
the callbacks usage obsoletes the typical skeleton code, the callbacks usage
is known to leak memory and tests with latest Win32::Daemon shows that's true.
* win32: handle task run in a managed thread as this is more efficient than using
perl fork with thread emulation under win32 and preserve a little memory usage.
* win32: wait service control manager is ready before really starting the service
* logger: don't use File::stat module to just get logfile file size, better use -s
as File::stat module seems to fail in rare case.
inventory:
* Bump Inventory task version to 1.7
* Fix lspci command subsystem parsing
* Fix hponcfg.exe can output on stderr on win32 when not really usable
* Skip not working under win32 Generic::Users inventory
Also avoid error in log on /etc/passwd and /etc/group not found files
* Fix#601: Log deviceid as agentid and related target when running an inventory
* Fix#644: Make WORKGROUP inventory consistent
* Fix#541: Don't try to scan virtualbox VM in win32 users directories
* Updated pci.ids to 2019.04.12 version
* Updated usb.ids to 2019.03.20 version
netdiscovery/netinventory:
* Bump NetDiscovery task version to 2.9
* Bump NetInventory task version to 3.3
* Add Lancom in networking devices recognized by description parsing
* Fix#650: discard empty consumable level elements
* Fix#651: discard empty type element
* Add Netdisco export contrib script from Stoatwblr, see contrib/netdisco
* Fix#638: Fix Kyocera counters handling thanks to Stoatwblr
* Printers: assume -2 counter value means a WARNING level and report it
Thanks Stoatwblr for the deep investigation
* Add Oki printer support
* Add APC serialnumber support
* Fix#612: Enhanced Ubnt AccessPoint support
* Updated sysobject.ids (tagged fia-2.5 tag on github repository)
deploy:
* Bump Deploy task version to 2.8
* Fix#394: Check file parts source/mirror url to guaranty it ends with a slash
and trigger an error if it doesn't look like a valid URL.
collect:
* Bump Collect task version to 2.6
* WMI properties can now be a list of properties with comma or space as separator
2.4.3 Fri, 22 Feb 2019
core:
* fix some cases where a file handle was not closed
* win32: fix a handle leak case when agent was running as service
* Fix#637: Don't depend on GNU install during "make install" to support
more Unix systems
* daemon/service: reload target when the stat file has been updated by
another script to use the updated next run timeout
* For server target, server connection attempts are delayed from 60 seconds,
doubled at each new failed attempt, now until reaching max defined by delaytime
configuration parameter.
inventory:
* Bump Inventory task version to 1.6
* win32 antivirus support update:
- nicer product name report for ESET
- report expiration date for ESET
* Fix#582: Add other Acer monitors support
* Fix#687: Virtuozzo inventory task doesn't include first container
* Add few minor fix to virtuozzo containers inventory
* Fix LXC containers support to support recent LXC versions
* Fix#625: Container UUID is the same than host UUID
* Fix#624: Skip incomplete battery infos from dmidecode (seen on MacOS)
* Fix#631: Fix duplicated memory inventory on MacOS
* linux: fix storage size inventory
* linux: try to set storage serialnumber from mbr partition id or even
PV UUID when not found (hdparm missing or virtual drive)
* Fix#604: Only inventory Windows Store on recent win32 platforms
* Fix#596: Openstack container seen as Physical on win32
* Fix#593: Correct detection of machine type when /var/log/dmesg is too short
* Fix#583: Add BitDefender antivirus support
* Encrypted filesystems support added
* Updated pci.ids to 2019.02.20 version
* Updated usb.ids to 2019.01.17 version
netdiscovery/netinventory:
* Bump NetDiscovery task version to 2.8
* Bump NetInventory task version to 3.2
* Add BlueCoat proxy appliance serialnumber support
* win32: Support arp table check for NetDiscovery task
* Fix#634: Net::Ping version may not numeric with win32 installer
* Add Panasas PanFS support
* Add few HP/Compaq serialnumber cases support
* Fix#605: try 'ip neighbor show' if 'arp' is not available for netdiscovery
* Add UPS-MIB support for Riello, S2S & APC
* Components support added
* Updated sysobject.ids (tagged fia-2.4.3 tag on github repository)
2.4.2 Wed, 03 Oct 2018
core:
* Linux: fix agent not listening on http port when syslog logger is active
and Sys::Sylog module is too old
inventory:
* Bump Inventory task version to 1.5
* Fix physical memory error correction detection via WMI under win32
* Fix#299: Added UWP/APPX/Windows Store software inventory
* win32 antivirus detection enhanced support:
- add support for few antivirus base versions (defender, kaspersky,
EST, avira, MSE, McAfee, F-Secure)
- try to set license expiration date for F-Secure, kaspersky & avira
* Fix#442: kaspersky not fully recognized in russia
* Fix#501: wrong status was reported when windows defender was disabled
* Enhanced software inventory under Arch Linux
* Fix#453: under MacOS, skip XML DTD validation for software inventory as
parsing may fail if a proxy is enabled
* Fix#473: fix arch detection under MacOS
* Fix#475: fix video cards support under MacOS
* Fix#504: support non-standard ssh port to report local ssh server pubkey
* Updated pci.ids to 2018.10.02 version
* Updated usb.ids to 2018.08.15 version
deploy:
* Bump Deploy task version to 2.7
* Fix deployment of private packages: their downloaded parts were not
fully found when download were too long (closes: #542)
* Handle retention duration differently for p2p and not p2p files
* P2p files have a default retention of 3 days by default
* P2p files have a default retention of 3 times the target prolog delay
after download, parts retention is reset to the same delay for all file parts,
so the retention duration applies at the time parts has been downloaded
* P2p file parts are now cleaned up after job success if retention duration
is null
* Fix WinKeyNotEquals audit check to also be true when the registry key is
simply missing
* Add support to "startjob" key for failing deploy audit check to permit
to skip remaining checks when a failing condition makes them obsolete.
esx:
* Bump ESX task version to 2.4
* Support 2 ServiceTags case to cover chassis & lame board S/N inventory
* Updated AssetTag support
* fix wrong cpu core computation when only one package is available
netdiscovery/netinventory:
* Bump NetDiscovery task version to 2.7
* Bump NetInventory task version to 3.1
* Thanks to @QuickNerd357, Brocade devices will now show serial number and
firmware informations.
* Sanitize VLAN names. This fixes an issue with Cisco Small Business Switches.
* Get rid of unofficial Net::Ping::TimeStamp support to only use official
support if available. Net::Ping v2.67 is now mandatory to discover
devices thanks to timestamp ping.
* Fix#481: Add Synology NAS support
* Fix#480: Add CheckPoint support
* Fix#488: Update HP Printers support
* Updated LLDP/CDP connection match checks
* Updated sysobject.ids (tagged fia-2.4.2 tag on github repository)
collect:
* Bump Collect task version to 2.5
* Thanks to David Durieux, add support for dynamic pattern in registry key
collect under win32. The dynamic pattern is '**' to glob subkeys like in:
HKEY_USERS/**/Software/**/**/CurrentVersion
maintenance:
* Bump Maintenance task version to 1.1
* Disable Maintenance task if no maintenance module could be used
test suite:
* Make snmp walk tests faster
2.4.1 Fri, 29 Jun 2018
core:
* Update setup & FusionInventory::Agent::Version modules during make install
* Can set FusionInventory::Agent::Version module VERSION & COMMMENTS during
perl Makefile.PL configuration stage
* Normalized Target class APIs
* Register planned tasks at target level so target class can filter out
unsupported tasks
* Add Scheduler target support to be used at the same time than Server target
but more often to make maintenance other server target storage
* One scheduler target is created for each configured server target
* Scheduler target will trigger between one to 2 minutes
* Get rid of Time::Piece dependency
maintenance:
* New Maintenance v1.0 task
* Maintenance task handles quick server target storage cleanup to deploy
packages are really removed afetr their expiration time
* Task only supported by Scheduler target
inventory:
* Fix BSD Storages support
* Don't try to run dmidecode inventories if it returns no output
* Set Bios && Hardware from /sys/class/dmi on recent Linux when dmidecode is missing
* Add PowerSupplies support
* Add BSD batteries support
* Add UUID to LXD containers under Linux
* Fix#439: Wrong network interface speed under win32
* Fix#472: On MacOS, add monitors serial number when available
* Fix#479: No virtual machine memory under Proxmox
* Fix#485: Fix df output parsing under MacOS
* Fix#500: Add Acer monitor EDID id match
* Better SQL Server software inventory under win32
* Update Xen Server support
* Fix get-edid command output parsing, thanks to David Durieux
* Updated pci.ids to 2018.06.29 version
* Updated usb.ids to 2018.05.04 version
netdiscovery/netinventory:
* Bump NetDiscovery task version to 2.6
* Bump NetInventory task version to 3.0
* fusioninventory-netdiscovery & fusioninventory-netinventory scripts
now support '--port' and '--protocol' options for not standard snmp support.
* Fix RAM & CPU are missing from net inventory
* Fix MEMORY/RAM OID support
* Added support for HP Net Peripheral, involving better HP printers inventory
* Get Serial number & firmware version
* Fix total printed pages counter in many case
* Added total color pages counter support
* Don't assume colors table was read: fixes black toner detection on many HP printers
* Added Microtik devices support
* Enhanced Epson printers support, including model name, serial number and firmwares
* Updated LLDP support
* NetInventory task protocol upgrade to fix multithreading scheduling according to
upgrades done server-side.
* Fix discovery of devices with only ping responding and without found hostname. In
that case, we default the DNSHOSTNAME to the scanned ip.
* fix entity option in fusioninventory-netdiscovery script
* Get rid of nmap support for NetDiscovery task
* Add Zebra printer support
* Add QuesCom Appliance detection
* Add Linux Appliance template support
* Closes: #441,#519
* Update extmod function calls, thanks to Vadim Pisarev
* Add custom OID for Canon printer counters
* Updated sysobject.ids (tagged fia-2.4.1 tag on github repository)
deploy:
* Bump Deploy task version to 2.6
* Fix file retention support
* Add P2P peers caching to reduce peers discovery load in the meantime
* Reduced timeout for peer discovery and file parts downloading for P2P. This
efficiently limits the time passed to discover the local peers and disqualify
any busy or not responding peers in a more acceptable delay.
* For better P2P support, agent ajusts its 404 message to "Nothing found" when it
has nothing to share with other agents. So peers won't ask again and again for
any file part during 20 minutes by default.
2.4 Fri, 29 Dec 2017
core:
* Cleanup confdir use in task so using deprecated etc/softwares folder is no more
logged in journal
* Get rid of confdir setup in setup.pm
* Added "include" directive support while reading configuration file to make
configuration maintenance easy
* Update syslog name to fullname agent
* Get rid of List::Util & Proc::PID::File module dependencies
* Try to load more recent IDS database files if found in well-known places
* Fixed default daemon pid filename
* When --pidfile is used, don't permit to manually start daemon even in foreground
unless --pidfile parameter is different
* Makes --pidfile filename optional to compute a default one
* Check if we need to include libdir while daemonize
* Class refactoring: Get rid of discouraged 'use base' syntax in favor of lighter
'use parent' and as fields pragma is not used (see 'base' man)
* Logger refactoring: no more an Exporter based class to simplify its usage and
as Logger object should be commonly shared everywhere it is used.
* Fix command run to also time out while an alarm has been set
* Fix WMI calls to also time out under win32
* Few code refactoring
* remove devtom30 from maintainers
inventory:
* Bump Inventory task version to 1.4
* Fixed Provider program name in agent context
* Fixed HyperV VM issue while BIOSGUID is not defined
* Fix#349: Include last logged user as usual computer user on win32 platform
* Linux distro: Add support for reading os-release file and removing LSB support
* Fix Solaris drives df output parsing adding better zfs handling
* Make backend-collect-timeout working even while waiting on command output
* Support ASM filesystems on Oracle Grid
* Introduce getDeviceId() API on Inventory class so it returns task deviceid if set
or set a new deviceid (aka agentid or machineid) in case of remote inventory
* Fix#161: Support retrieving License software via WMI, including Office 2016
* Fix#364: [win32] Get antivirus version from software installation and get
Windows Defender version via WMI
* Added Windows 10 version support
* Updated pci.ids to 2017.12.20 version
* Updated usb.ids to 2017.12.28 version
netdiscovery/netinventory:
* Bump NetDiscovery & NetInventory task version to 2.5
* Added section support for MODEMS, SIMCARDS & FIRMWARES
* Added new detection algorithm based on exposed device supported MIB (sysORID list)
and/or sysObjectID
* Added support for HP iLO cards
* Added support for Digi devices with enhanced MODEMS, SIMCARDS & FIRMWARES support
* Updated sysobject.ids with a lot of new devices support
* Keep first MAC address found while discovering
* Try first to select MAC address from SNMP session during SNMP device scan
* Updated sysobject.ids (tagged fia-2.4 tag on github repository)
deploy:
* Bump Deploy task version to 2.5
* ddurieux fixed a regression introduced in 2.3.18 preventing to re-use known
good peer to download file parts.
esx:
* Bump ESX task version to 2.3
* Removed no more needed createFakeDeviceid() API
injector:
* Support --no-ssl-check option to avoid checking server SSL certificate
wmi-inventory:
* Added new task and script to permit agent-less inventory on win32 platform based
on remote WMI support.
The Amazon ECS Command Line Interface (CLI) is a command line tool for
Amazon Elastic Container Service (Amazon ECS) that provides high-level
commands to simplify creating, updating, and monitoring clusters and
tasks from a local development environment. The Amazon ECS CLI supports
Docker Compose, a popular open-source tool for defining and running
multi-container applications. Use the CLI as part of your everyday
development and testing cycle as an alternative to the AWS Management
Console or the AWS CLI.
While there is 1.9.0, it is only two days old and isn't in f-droid
yet. I am choosing to avoid new releases for a bit, on the theory
that it's better to let people other than pkgsrc users find any new
issues.
Tested with syncthing Android/f-droid 1.8.0.
Upstream changes:
bugfixes and minor enhanceements
adds the experimental copyRangeMethod config on folders, for use
on filesystems with copy-on-write support. Please see
https://docs.syncthing.net/advanced/folder-copyrangemethod.html
for details.
adds TCP hole punching, used to establish high performance TCP
connections in certain NAT scenarios where only relay or QUIC
connections could be used previously.
adds a configuration to file versioning for how often to run
cleanup. This defaults to once an hour, but is configurable from
very frequently to never.
0.28.4
Improved cache reaper performance significantly, thanks to J. Nick Koston.
Added ServiceListener to __all__ as it's part of the public API, thanks to Justin Nesselrotte.
0.28.3
Reduced a time an internal lock is held which should eliminate deadlocks in high-traffic networks, thanks to J. Nick Koston.
0.28.2
Stopped asking questions we already have answers for in cache, thanks to Paul Daumlechner.
Removed initial delay before querying for service info, thanks to Erik Montnemery.
Release v1.32.0
This release contains refinements, improvements, and bug fixes, with highlights listed below.
Core
Remove stream from stalled lists on remove_stream.
Do not cancel RPC if send metadata size if larger than peer's limit.
Don't consider receiving non-OK status as an error for HTTP2.
Keepalive throttling.
Include the target_uri in "target uri is not valid" error messages.
Fix "cannot send compressed message large than 1024B" in cronet_transport.
Receive SETTINGS frame on clients before declaring subchannel READY.
Enabled GPR_ABSEIL_SYNC.
Experimental xDS v3 support.
C++
Upgrade bazel used for all tests to 2.2.0.
Remove test targets and test helper libraries from Makefile.
Fix repeated builds broken by re2's cmake.
Log the peer address of grpc_cli CallMethod RPCs to stderr.
Python
[gRPC Easy] GA: This release enables runtime import of .proto Files. (gRFC, PR) Together with support for simple stubs present since 1.29, this completes gRPC Easy. To start using these features, take a look at the example. If using simple stubs without runtime proto import, generated code must be regenerated with an up-to-date version of the grpcio-tools package.
[Aio] Graduation from experimental folder.
[Aio] Prevent call objects from outliving its parent channel or server.
[Aio] Add a fail-back polling mode for Windows+3.8+.
Raises an exception when port binding failed.
Implement compute_engine_channel_credentials in Python.
Fix bazel out directory when using external repo.
