Changes in version 0.4.1.5 - 2019-08-20
This is the first stable release in the 0.4.1.x series. This series
adds experimental circuit-level padding, authenticated SENDME cells to
defend against certain attacks, and several performance improvements
to save on CPU consumption. It fixes bugs in bootstrapping and v3
onion services. It also includes numerous smaller features and
bugfixes on earlier versions.
GUPnP implements the UPnP specification: resource announcement and discovery,
description, control, event notification, and presentation
(GUPnP includes basic web server functionality through libsoup).
Changes to net/gupnp:
1.2.1
=====
- Fix a deadlock when cancelling an action
- Do not call-back a cancelled action
- Fix public dependencies
Bugs fixed in this release:
- https://gitlab.gnome.org/GNOME/gupnp/issues/7
All contributors to this release:
- Jens Georg <mail@jensge.org>
1.2.0
=====
- Release 1.2.0
(no changes noted)
A GObject-based API for handling resource discovery and announcement
over SSDP (Simple Service Discovery Protocol). This package also
provides a GTK-based device sniffer.
This package contains the 1.2 branch.
2.0.5
- BUG/MEDIUM: stick-table: Wrong stick-table backends parsing.
- BUG/MINOR: ssl: fix 0-RTT for BoringSSL
- MINOR: ssl: ssl_fc_has_early should work for BoringSSL
- BUG/MINOR: buffers/threads: always clear a buffer's head before releasing it
- BUG/MEDIUM: proxy: Don't forget the SF_HTX flag when upgrading TCP=>H1+HTX.
- BUG/MEDIUM: proxy: Don't use cs_destroy() when freeing the conn_stream.
- BUG/MINOR: lua: fix setting netfilter mark
- BUG/MINOR: Fix prometheus '# TYPE' and '# HELP' headers
- BUG/MEDIUM: mux_h1: Don't bother subscribing in recv if we're not connected.
- BUG/MEDIUM: lua: Fix test on the direction to set the channel exp timeout
- BUG/MINOR: stats: Wait the body before processing POST requests
- MINOR: fd: make sure to mark the thread as not stuck in fd_update_events()
- BUG/MEDIUM: mux_pt: Don't call unsubscribe if we did not subscribe.
2.0.4
- BUG/MEDIUM: protocols: add a global lock for the init/deinit stuff
- BUG/MINOR: proxy: always lock stop_proxy()
- BUILD: threads: add the definition of PROTO_LOCK
- BUG/MEDIUM: lb-chash: Fix the realloc() when the number of nodes is increased
- BUG/MEDIUM: streams: Don't switch the SI to SI_ST_DIS if we have data to send.
- BUG/MINOR: log: make sure writev() is not interrupted on a file output
- DOC: improve the wording in CONTRIBUTING about how to document a bug fix
- BUG/MINOR: hlua/htx: Reset channels analyzers when txn:done() is called
- BUG/MEDIUM: hlua: Check the calling direction in lua functions of the HTTP class
- MINOR: hlua: Don't set request analyzers on response channel for lua actions
- MINOR: hlua: Add a flag on the lua txn to know in which context it can be used
- BUG/MINOR: hlua: Only execute functions of HTTP class if the txn is HTTP ready
- BUG/MINOR: htx: Fix free space addresses calculation during a block expansion
- BUG/MAJOR: queue/threads: avoid an AB/BA locking issue in process_srv_queue()
- BUG/MINOR: debug: fix a small race in the thread dumping code
- MINOR: wdt: also consider that waiting in the thread dumper is normal
- BUG/MEDIUM: lb-chash: Ensure the tree integrity when server weight is increased
- BUG/MAJOR: http/sample: use a static buffer for raw -> htx conversion
- BUG/MINOR: stream-int: also update analysers timeouts on activity
- BUG/MEDIUM: mux-h2: unbreak receipt of large DATA frames
- BUG/MEDIUM: mux-h2: split the stream's and connection's window sizes
- BUG/MEDIUM: proxy: Make sure to destroy the stream on upgrade from TCP to H2
- BUG/MEDIUM: fd: Always reset the polled_mask bits in fd_dodelete().
- BUG/MINOR: mux-h2: don't refrain from sending an RST_STREAM after another one
- BUG/MINOR: mux-h2: use CANCEL, not STREAM_CLOSED in h2c_frt_handle_data()
- BUG/MINOR: mux-h2: do not send REFUSED_STREAM on aborted uploads
- BUG/MEDIUM: mux-h2: do not recheck a frame type after a state transition
- BUG/MINOR: mux-h2: always send stream window update before connection's
- BUG/MINOR: mux-h2: always reset rcvd_s when switching to a new frame
- BUG/MEDIUM: checks: make sure to close nicely when we're the last to speak
Upstream changes:
mikutter 3.9.4
* remove unnecessary debug outputs
* crash on opening an edit window of extract conditions when some
extract conditions don't exist
* gtk2 3.3.7
* incorrect text range on copying selected region of tweet with URL
* refer to description on extracting texts
* thanks Shibafu Midorino
Switch to meson since autotools build system was removed.
Changes in libsoup from 2.66.1 to 2.66.2:
* Make gettext optional (might not be available in Windows)
[Seungha Yang]
* MSVC: set encoding to UTF-8 to avoid errors [Seungha Yang]
* MinGW tests build fix [Tomas Popela]
* Check for TLS support only when external glib dependency is available
[Seungha Yang]
Changes in libsoup from 2.66.0 to 2.66.1:
* Fix dylib versioning in MacOS [Tom Schoonjans]
* Visual Studio build fixes [Chun-wei Fan]
* MinGW build fixes [Руслан Ижбулатов]
* Meson build system improvements [Claudio Saavedra, Jakub Adam]
* Fix random CI failures due to parallel apache tests [Claudio Saavedra]
* Code cleanups [Claudio Saavedra]
Changes in libsoup from 2.65.92 to 2.66.0:
* Fix lookup for libxml2 on Visual Studio builds [Chun-wei Fan]
Changes in libsoup from 2.65.91 to 2.65.92:
* SoupConnection: Fix check for remote disconnectin idle state
[Michael Catanzaro, #134]
* Code cleanups and warnings fixed [Michael Catanzaro]
* Remove stale .pc.in files [Claudio Saavedra, #137]
* Updated translations: Dutch
Changes in libsoup from 2.65.90 to 2.65.91:
* Remove RFCs from sources [Tomas Popela, #133]
Changes in libsoup from 2.65.2 to 2.65.90:
* Avoid using threads in SoupRequestFile asynchronous API
[Ignacio Casal Quinteiro]
Changes in libsoup from 2.65.1 to 2.65.2:
* Remove autotools build system and change to meson by default
[#12, Tomas Popela]
* Many fixes to Meson [Claudio Saavedra, Tomas Popela, Xavier
Claessens]
* Improvements to the continuous integration infrastructure
[Xavier Claessens]
* Make sure SoupSession features are not disposed until all
pending messages are processed [#130, Claudio Saavedra]
* Updated translations: Greek, Slovak, French.
Changes in libsoup from 2.64.0 to 2.65.1:
* Added MTLMv2 responses support [Michal Hrubý]
* Many fixes to the meson build system [Tomas Popela]
* Remove Visual Studio project files [Chun-wei Fan]
* Enable VAPI by default [#119, Jeremy Bicha]
* New strict header field parameter parsing API [Claudio Saavedra]
* Code cleanups [Claudio Saavedra]
* Updated translations: Belarusian, Serbian
V0.93
Adam (1):
Update README
Adrien Gallouët (1):
Add a help line for the t command in curses
Alexander Blesius (1):
convert README to markdown
Arkadiusz Miśkiewicz (2):
Also try SOCK_RAW/IPPROTO_ICMP when other fail.
mtr to a unreachable host is possible again.
Ben Williams (2):
added UI hotkeys description (from internal help) to NOTES section in mtr man page
renamed NOTES to INTERACTIVE CONTROL as per discussion in pull request
Chonggang Li (4):
mtr-packet: use ICMP and UDP without privilege on linux
mtr-packet: fix Windows compilation
mtr-packet: fix compilation on OS X
mtr-packet: fix a bug causing IPv6 raw socket not working
Markus Kötter (7):
set udp checksum
automake - configure show build options
sockaddr - unify access to sockaddr_in/6 port & address
probe - use INET6_ADDRSTRLEN
probe - extend matching to src/dst host&port
sockaddr - save a cast accessing the port
construct - fix set port
Matt Kimball (7):
mtr-packet: report ICMP destination unreachable probes as "no route to host"
ui: display "no route to host" error as host entry rather than abort
json: Fix malformed json when the "hubs" list is empty
commandline: Added --interface for using a named network interface
Link portability/error.c with mtr-packet when missing on MacOS
Mention Python mtrpacket package in mtr-packet man page
Rework Cygwin mtr-packet to respond to signals (such as SIGTERM)
R.E. Wolff (15):
fixed some outdated text in README.
minor changes top help Windows compilation on 32 bit machines
fix#204 : added exec of mtr-packet in the place where mtr was started
from. Quick and dirty, There is probably a better place to declare variables.
Alternative 'skip uid 0 checks on cygwin' to adpoliak's implmentation
fix stupid typo. Thanks adpoliak!
possible fix for mac terminal 100% problem
Sami Kerola: prevent MTR reporting unknown revision
Merge branch 'master' of github.com:traviscross/mtr
fixed split like for macos
better fix. to dave's problem.
-f equals -m fix from yvs2014
rewritten weiyixuan's patch
fixed typo
Netbsd build fixes thanks to yvs2014
Merge branch 'master' of github.com:traviscross/mtr
Robert Scheck (1):
Update incorrect FSF address
Rogier Wolff (3):
Fixed issue #286
Manpage fix for Darwin by Matt. Rewritten by REW
Added parentheses
SaintBol (9):
Update protocols.h
Update deconstruct_unix.c
Update probe.c
Update probe.h
Update cmdpipe.c
Update curses.c
Update mtr.h
Update report.c
Update mtr-packet.8.in
Sami Kerola (1):
mtr-packet: make address-not-available errors less likely
Samuel Henrique (1):
[typo]mtr.8.in: s/allows to/allows one to/
Tobias Rittweiler (2):
Add a .dir-locals.el file for Emacs.
Replace perror(...); exit(...); by error(...);
divinity76 (1):
use setup.exe's package manager mode, replacing apt-cyg
tk (1):
Fix typo (resove -> resolve)
weiyixuan (3):
Option -y can not work properly
Option --ipinfo 1 can not work properly
for tcp, fix : bind port failed, try next sequence
2019-08-15 - FileZilla Client 3.44.2 released
Bugfixes and minor changes:
MSW: Fixed a crash if using predefined sites through fzdefaults.xml
Fixes to protocol selection glitches in the Site Manager
Increase maximum length of response lines when using FTP
2019-08-09 - FileZilla Client 3.44.1 released
Bugfixes and minor changes:
Fixed a regression introduced in 3.44.0-rc1 breaking support for insecure servers
2019-08-09 - FileZilla Client 3.44.0 released
Bugfixes and minor changes:
Fixed export in context menu of Site Manager to handle multiple selected items
2019-08-15 - libfilezilla 0.18.1 released
New features:
Added fz::buffer::resize
2019-08-02 - libfilezilla 0.18.0 released
New features:
Added fz::spawn_detached_process
Add operator+ to fz::duration
*nix: If available, use eventfd instead of a self-pipe
fz::to_integral and fz::hex_decode now work with string literals
Added fz::listen_socket::fast_accept that only returns a descriptor instead of a fully-initialized fz::socket for use in a tight accept-and-dispatch loop
Functions in libfilezilla/iputils.hpp now take string_view as arguments
Added fz::socket::set_flags which can atomically enable or disable flags
Bugfixes and minor changes:
fz::socket not returns an error instead of silently failing in case of file descriptor exhaustion
Fix socket errors sometimes not being forwarded in fz::tls_layer when when writing fails in the underlying layer
Fix double-closing of socket descriptios if connection establishment fails
fz::tls_layer now fails the handshake instead of waiting indefinitely if started on a layer that has progressed passed the connected state
Small compile-time improvements to fz::sprintf
The basic intent remains: if there is a protocol break we have to
coordinate with f-droid. However, syncthing seems to have matured to
the point where protocol breaks no longer happen.
syncthing phones home to check the version; not only is this a privacy
leak, but pkgsrc does updates differently so it isn't really useful.
Add a flag to the build to disable this.
From pkg/53951 by Daniel Ziltener.
Upstream changes:
mikutter 3.9.3
* avoid use of deperecated NUL separated strings for patterns
passed to Dir.glob
* discard widgets when setting window is switched
* make it possible to define event listeners and filters in Setting DSL
for this change
18.1.0
- Compatibility with Python 3.8 release candidate by regenerating Cython courses with Cython 0.29.13
- bump bundled libzmq to 4.3.2
- handle cancelled futures in asyncio
- make :meth:`zmq.Context.instance` fork-safe
- fix errors in :meth:`zmq.Context.destroy` when opening and closing many sockets
libzmq 4.3.2
CVE-2019-13132: a remote, unauthenticated client connecting to a
libzmq application, running with a socket listening with CURVE
encryption/authentication enabled, may cause a stack overflow and
overwrite the stack with arbitrary data, due to a buffer overflow in
the library. Users running public servers with the above configuration
are highly encouraged to upgrade as soon as possible, as there are no
known mitigations. All versions from 4.0.0 and upwards are affected.
Thank you Fang-Pen Lin for finding the issue and reporting it!
New DRAFT (see NEWS for 4.2.0) zmq_socket_monitor_versioned API that supports
a versioned monitoring events protocol as a parameter. Passing 1 results in
the same behaviour as zmq_socket_monitor.
Version 2 of the events protocol allows new events, new metadata, different
socket types for the monitors and more. It is described in details in
doc/zmq_socket_monitor_versioned.txt
New DRAFT (see NEWS for 4.2.0) zmq_socket_monitor_pipes_stats that triggers
a new ZMQ_EVENT_PIPES_STATS to be delivered via zmq_socket_monitor_versioned
v2 API, which contains the current status of all the queues owned by the
monitored socket. See doc/zmq_socket_monitor_versioned.txt for details.
New DRAFT (see NEWS for 4.2.0) zmq_poller_fd that returns the FD of a thread
safe socket. See doc/zmq_poller.txt for details.
New DRAFT (see NEWS for 4.2.0) socket options:
ZMQ_XPUB_MANUAL_LAST_VALUE is similar to ZMQ_XPUB_MANUAL but allows to avoid
duplicates when using last value caching.
ZMQ_SOCKS_USERNAME and ZMQ_SOCKS_PASSWORD that implement SOCKS5 proxy
authentication.
See doc/zmq_setsockopt.txt and doc/zmq_getsockopt.txt for details.
Implemented background thread names for Windows, when the Visual Studio
debugger is being used.
Fixed 3358 - test_security_zap failing due to SIGBUS on SPARC64, hard-coded
IPC socket binds in tests cause race conditions
Fixed 3361 - enabling GSSAPI support (when using autools) does not work due
to regression introduced in 4.2.3
Fixed 3362 - remove documentation for ZMQ_THREAD_PRIORITY context option
getter, it's not implemented
Fixed 3363 - tests fail to build due to stricter compiler printf validation
in new versions of GCC
Fixed 3367 - try to infer cacheline size at build time, first with
getconf LEVEL1_DCACHE_LINESIZE, and then by reading
/sys/devices/system/cpu/cpu0/cache/index0/coherency_line_size
(autoconf only), and only then falling back to the previous
default of 64 bytes. Avoids false sharing on POWER and s390x.
Import ax_func_posix_memalign.m4 as a more reliable check for
posix_memalign presence on some unix platforms.
Prefer c++11 atomic primitives to compiler intrinsics, when
both are available, as the former is more reliable.
Set test_pair_ipc and test_rebind_ipc to XFAIL on GNU/Hurd due
to non-functioning getsockname on AF_UNIX.
Fixed 3370 - Make queue length and HWM state observable
Fixed 3373 - performance regression in zmq_poll on CentOS 6/7
Fixed 3375 - assign names to all pthreads created by the library to ease
debugging
Fixed 3376 - assigned random TIPC port is not returned by ZMQ_LAST_ENDPOINT
Fixed 3385 - TCP port in ZMQ_LAST_ENDPOINT depends on global locale
Fixed 3404 - use std::condition_variable_any when possible
Fixed 3436 - reconnect interval exponential backoff and may lead to integer
overflows
Fixed 3440 - improve zmq_proxy performance by batching of up to 1000
consecutive messages (if any) and add perf/proxy_thr tool
Fixed 3451 - fix support of /dev/poll on Solaris
Fixed 3452 - strnlen may not be available
Fixed 1462 - test failure in test_filter_ipc due to invalid system groups
Fixed 3269 - Boost.ASIO integration stopped working with v4.3.0
Fixed 3479 - ZeroMQ does not build for QNX 6.6 with CMake
Fixed 3481 - add include to fix uClibc++ compilation
Fixed 3491 - build broken on Fedora 30
Fixed 3494 - ZeroMQConfig.cmake fails if shared libraries are not built
Fixed 3498 - syntax error on Windows related to socket descriptor type
Fixed 3500 - PLAIN HELLO message incorrectly uses WELCOME literal, regression
introduced in 4.3.0
Fixed 3517 - configure errors because of syntax errors in the use of test
shell command
Fixed 3521 - document how to achieve high performance with the PGM transport
Fixed 3526 - failure case behavior unclear in zmq_msg_send documentation
Fixed 3537 - fix build on z/OS by using pthread_equal instead of comparing
variables directly
Fixed 3546 - CMake links with librt on MinGW which is not available
Many coding style, duplication, testing and static analysis improvements.
The canonical form [1] of an R package Makefile includes the
following:
- The first stanza includes R_PKGNAME, R_PKGVER, PKGREVISION (as
needed), and CATEGORIES.
- HOMEPAGE is not present but defined in math/R/Makefile.extension to
refer to the CRAN web page describing the package. Other relevant
web pages are often linked from there via the URL field.
This updates all current R packages to this form, which will make
regular updates _much_ easier, especially using pkgtools/R2pkg.
[1] http://mail-index.netbsd.org/tech-pkg/2019/08/02/msg021711.html
The content that belongs in NEWS are often in a blog. Thanks to
thorpej@ for pointing this out; perhaps in-lieu-of-upstream-NEWS
contents will be better in future commits.
- Fixed potential stack corruption in sslclient/sslhandle/sslserver
while assigning hostname => 0.
- Improved OpenSSL + LibreSSL compatibility:
- LibreSSL 2.5 to 2.9 is working
- OpenSSL 1.0.2 to 1.1.1 is working
- Added SNI for sslclient.
- Fixes for sslhandle.
- Included new CIPHERLIST API for ssl_ciphers.
- Removed dependency on conf-tcpbin; modules are expected to be
in the path.
- Modules rts.base and rts.sslperl are working now.
- Fix for tcprulescheck abending if environment variable IP is not present.
- Fix for potential stack corruption calling tcpserver/tcpclient with
'0' for hostname.
- Removed constraints on building IPv4 CIDR rules with tcprules.
- Cleanups and tweaked package/rts to work well again.
Beta-tested by Veera.
- Fixed bug in rblsmtpd not calculating the inverse IPv6 address correctly.
- package/rts usage explained (README.rts) and finally straightend.
- tcprules and tcprulescheck improved for IPv4/IPv6 CIDR address reporting.
- Fixed missing DNS A lookup in dns_ip.c.
- Removed (one) obsolete return value check for iopause in timeoutconn.c.
- Checking carefully all dnsstub return codes while using a coherent scheme.
Changes 4.10.6:
* BUG 13956: s3: winbind: Fix crash when invoking winbind idmap scripts.
* BUG 13964: smbd does not correctly parse arguments passed to dfree and
quota scripts.
* BUG 13965: samba-tool dns: use bytes for inet_ntop.
* BUG 13828: samba-tool domain provision: Fix --interactive module in
python3.
* BUG 13893: ldb_kv: Skip @ records early in a search full scan.
* BUG 13981: docs: Improve documentation of "lanman auth" and "ntlm auth"
connection.
* BUG 14002: python/ntacls: Use correct "state directory" smb.conf option
instead of "state dir".
* BUG 13840: registry: Add a missing include.
* BUG 13944: Fix SMB guest authentication.
* BUG 13958: AppleDouble conversion breaks Resourceforks.
* BUG 13968: vfs_fruit makes direct use of syscalls like mmap() and pread().
* BUG 13987: s3:mdssvc: Fix flex compilation error.
* BUG 13872: s3/vfs_glusterfs[_fuse]: Avoid using NAME_MAX directly:
* BUG 13799: dsdb:samdb: schemainfo update with relax control.
* BUG 13964: s3:util: Move static file_pload() function to lib/util.
* BUG 13957: smbd: Fix a panic.
* BUG 12478: ldap server: Generate correct referral schemes.
* BUG 13941: s4 dsdb/repl_meta_data: fix use after free in
dsdb_audit_add_ldb_value.
* BUG 13942: s4 dsdb: Fix use after free in
samldb_rename_search_base_callback.
* BUG 12204: dsdb/repl: we need to replicate the whole schema before we can
apply it.
* BUG 12478: ldb: Release ldb 1.5.5
* BUG 13713: Schema replication fails if link crosses chunk boundary
backwards.
* BUG 13799: 'samba-tool domain schemaupgrade' uses relax control and skips
the schemaInfo update provision.
* BUG 13916: dsdb_audit: avoid printing "... remote host [Unknown]
SID [(NULL SID)] ..."
* BUG 13917: python/ntacls: We only need security.SEC_STD_READ_CONTROL in
order to get the ACL.
* BUG 13947: s3:loadparm: Ensure to truncate FS Volume Label at multibyte
boundary.
* BUG 13939: Using Kerberos credentials to print using spoolss doesn't work.
* BUG 13998: wafsamba: Use native waf timer.
* BUG 13984: ctdb-scripts: Fix tcp_tw_recycle existence check.
New Features:
Add consistent hash builtin policy
Add EDNSOptionRule
Add DSTPortRule (phonedph1)
Make getOutstanding usable from both lua and console (phonedph1)
Added :excludeRange and :includeRange methods to DynBPFFilter class
(Reinier Schoof)
Add Prometheus stats support (Pavel Odintsov, Kai S)
Name threads in the programs
Support the NXDomain action with dynamic blocks
Add security polling
Add a PoolAvailableRule to easily add backup pools (Robin Geuze)
Improvements:
Get rid of some allocs/copies in DNS parsing
Set a correct EDNS OPT RR for self-generated answers
Fix a sign-comparison warning in isEDNSOptionInOPT()
Add warning rates to DynBlockRulesGroup rules
Add support for exporting a server id in protobuf
dnsdist did not set TCP_NODELAY, causing needless latency
Add a setting to control the number of stored sessions
Wrap GnuTLS and OpenSSL pointers in smart pointers
Add a ‘creationOrder’ field to rules
Fix return-type detection with boost 1.69’s tribool
Fix format string issue on 32bits ARM
Wrap TCP connection objects in smart pointers
Add the setConsoleOutputMaxMsgSize function
Add the ability to update webserver credentials
Bug Fixes:
Display dynblocks’ default action, None, as the global one
Fix compilation when SO_REUSEPORT is not defined
Release memory on DNS over TLS handshake failure
Handle trailing data correctly when adding OPT or ECS info
