3.9.11 is mostly a maintenance release which fixes a couple of bugs,
and addresses warnings raised by gcc4, and merges some platform-specific
patches (MingW, NetBSD, Redhat/Fedora, Cygwin, Solaris), and other
patches (such as the new amuFormat.sh written in sh).
- new maintainer
- PKG_DESTDIR_SUPPORT
- ok by joerg
2.2.3
Feedback release after 2.2.2 and LISA 07, minor tweaks and bug fixes
"Harmless features"
IgnoreInterfaceRegex( "vm.*" ) added to control
function added for removing data from special interfaces from class data
Option checkroot=true/false added to copy directive. This switches
on/off the change in 2.2.2 about setting permissions on the
destination root when recursively copying files. Default is now
false.
Can escape colons in the strings now to avoid confusion with
expansion separator.
cfenvgraph --erasehistory users,www_in etc will now set the
average and variance of learned cfenvd data to zero. The current
week's trace is not affected.
audit=true/false flag added to most actions
2.2.2
The build procedure for cfengine changes in this version to
incorporate an intermediate library. The default behaviour is now
to build a static library which will be used by cfengine 3 and
other application interfaces. To build a shared library, use
--enable-shared=yes
NOTE to developers: if running from the compiled code you now need
to delete the files cfagent cfservd etc and recompile to see changes
appear in the code. This is due to the libtool build process.
libtoolizing compilation process for migration to cfengine shared library
(this is to support mulitple interfaces in future, and cf 3)
--
XML and HTML output options added to equip the internal instrumentation
with readable output in cfshow e.g.
cfshow --performance --html > output.html
firefox output.html
provides an easier summary and searchability in browser function
Instrumentation changed to use realtime functions where possible. Standard
unix timer is too insensitive to measure performance.
The beginning of an integrated auditing system has been added. See references
to AuditLog() in the code. This logs to a compressed database and can be extracted
in ascii, html, xml using cfshow, e.g. cfshow --audit --html > output.html
Auditing is switched on by
control:
cfinputs_version = ( 1.2.1 ) # record this version in log, e.g. cvs revision
Auditing = true
--
cfshow --classes
also shows the relative frequencies of classes
that have occurred on the system and the last time these were
observed.
cfshow -f cfagent.conf --regex "lin.*"
displays all rules in the named file whose classes match the named
regular expression. Note that the class "any" is not automatically matched
and the search is based on the class text from the file. The output is not
related to which classes are currently defined, and it will not recognise
the history of classes implicit through class-restricted imported files.
--
SCLI interface modifications.
--
Intermittency entropy code added to the copy instrumentation for
automatic host reliability measurements.
Special variable
IgnoreFriendRegex = ( regex )
prevents last-seen warnings about hosts matching the named regex
--
UserExists("name") and GroupExists("name") functions added to builtin functions.
ClassMatch function added in classes/groups to match regular expressions of other classes
--
Additional octet variables added on default IPv4 address, for convenience:
e.g.
590 : ipv4_2[eth1]=192.168
1895 : ipv4[eth1]=192.168.1.101
2100 : ipv4_1[eth1]=192
4049 : ipv4_3[eth1]=192.168.1
Methods can now expand some list variables, one list only per argument set.
This is a limited compromise pending cfengine 3. A patch for expansion of
variables in the control part of a program in methods has also been added.
Bug fix and code simplication of variable expansion.
-----
tied variable expansion added. Allows method workaround for file dissemination
by name, e.g. copy from
host1.conf -> /dir/host1/file.conf
host2.conf -> /dir/host2/file.conf e.g. for virtual or diskless machines
-----
Major changes to package manager code by Jo Rhett. Variable expansion
fixed by Mark.
-----
Option "best" added to checksum= in files action, this allows cross checking
of the two best known hash algorithms for each file. Currently this is md5 and sha
due to limitations in OpenSSL libcrypto.
UnCommentToLineMatching regex added
2.2.1
scli: type section added. This is a special case of shellcommands, which
send commands to the special shell scli by Juergen Schoenwaelder for
communicating with snmp devices.
Code refactoring for package management.
Bug fixes for problems introduced in 2.2.0.
Copy directory would not set owner correctly on root
2.2.0
Apart from minor changes, this version is about structural internal
changes that ease the eventual confluence with cfengine 3 and the work
going on behind the scenes there. Every effort is being made to
make this change easy for users and existing installations. New features
will be introduced into 2.2.x gradually, and the new front-end will
eventually merge into this.
This version accompanies a new introduction to cfengine published as
a SAGE Short Topics book.
* Some changes
EMANICS extensions and reference testing for context sensitive
network navigation patterns using voluntary cooperation contracts.
PrintFile("name") function added to alerts
!! List expansion in editfiles actions. This is an important change
because it can potentially affect existing configurations that contain
variables with a list separator in them. EditSplit is used for this.
elsdefine fixed in tidy
processes with action=warn only install fix
ifelapsed/expireafter fixed in editfiles
Instrumentation of copy/shellcommands measuring time/averages
use cfshow --performance
background=true in shellcommands was not implemented! (Fixed)
SLES10 recognition
RedHat/Fedora further classes
SELinux support begun by Jeff Sheltren UCSB, who notes.
> Currently, I have editfiles and copy working with selinux security
> contexts, although so far copy only has support for regular files; I
> haven't worked on links, etc. yet.
> Use --enable-selinux during compilation
Bug / misleading error message in ReadArray fixed
HostRange bug for numericals in hostname fixed by Steve Radar.
Package changes:
point HOMEPAGE to http://xen.org/
looks like the Xen peoples won't put a tarball on their http server
for this; I built one from their repository and put it in
${MASTER_SITE_LOCAL}
Summary of changes since 3.1.0:
some of our patches have been integrated upstream, thanks to Christoph Egger
various performances improvements and bug fixes, including some security
fixes, and one bug that would lead to floating point register
leak/corruption from HVM to PV guests on Intel VMX CPUs.
0.39 Mon 12 Nov 2007 (Adam Kennedy)
- No functional changes
- Updating to Module::Install 0.68
0.38 Mon 15 Oct 2007 (Adam Kennedy)
- Removed an extremely dangerous and reckless test case that tried
to delete a soft link to root and (when it failed) deleted the
actual root directory.
0.37 Sun 8 Jul 2007 (Adam Kennedy)
- Restoring support for broken symlinks (Marek Rouchal)
- Adding tests for the broken symlink case (Marek Rouchal)
- Tidying up the Changes file a bit
0.36 Fri 30 Jun 2007 (Adam Kennedy)
- Avoid the installation of Mac::Glue.
(It should not be necesary to test voice synthesis to delete a file)
- Anyone truly needing "trash" support will need to add a dependency
on Mac::Glue themself. The function may be split out of File::Remove
later down the track.
- Constanting the debugger flag for a minor speed and memory improvement
- Copy in a known-readonly flag for more accurate testing on Win32
- Remove assumption that -w implied deletion rights on Win32
- Validate that the file was actually deleted.
- Add better mode-handling for files.
- Add smarter implementation of "candelete" logic.
0.35 Fri 9 Feb 2007 (Stephen Steneker)
- Update makefile to require Mac::Glue version compatible with Intel macs
- Change pod heading from "methods" to "subroutines" [RT#13687]
- No functional changes from 0.34
21 November 2007
- add a startup check for amount of memory being greater than the possible
address space; prevents user confusion on 32-bit systems that use addressing
tricks to have >4GB total system memory. Thanks: Michael Kelly.
- documentation updates
Move get_password() to Backend class to standardize.
- Fix problem with ftpBackend to create target directory
if needed. Note: this creates only one level.
- Dropped ssh-command and added ssh-options to allow users
to add options to the scp and sftp commmands.
- Removed use of tempfile.TemporaryFile(). This fixes the
restore problem on Windows that was due to Python bug
1776696 reported on Sourceforge.
- Fixed Debian Bug#437694: Make bzip2 compression optional.
The default is not to do bzip2 compression. To use bzip2
add the following command line option:
--gpg-options='--compress-algo=bzip2 --bzip2-compress-level=9'
Note: do not add spaces in the string value.
- Fixed bug 20764 - unable to use port in ssh backend.
https://savannah.nongnu.org/bugs/?20764
- Remove ssh_command option, add ssh_options. This adds
options to the scp and sftp commands that are used by
the ssh backend.
- Change ssh backend to send 'quit' instead of EOF when
using sftp. This allows it to run under cron as long
as the password is supplied non-interactively.
- Change ssh backend to not pass :port part of URL to
scp or sftp. We already supply -oPort=xx for port.
The PSFTOOLS are designed to manipulate fixed-width bitmap fonts, such as
DOS or Linux console fonts. Both the PSF1 (8 pixels wide) and PSF2
(any width) formats are supported; the default output format is PSF2.
Note that these programs share no code with the Linux console utilities
(kbd).
NOTE: One may use the psf2txt utility to generate data for inclusion in
NetBSD's (or OpenBSD's) wscons built-in kernel font headers. Currently,
the output requires some additional processing; I may add additional
functionality in the future, though anyone who wishes to contribute
patches is encouraged to do so! ;)
