| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
|
|
|
|
|
|
|
|
All checksums have been double-checked against existing RMD160 and
SHA512 hashes
Not committed (merge conflicts...):
net/radsecproxy/distinfo
The following distfiles could not be fetched (fetched conditionally?):
./net/citrix_ica/distinfo citrix_ica-10.6.115659/en.linuxx86.tar.gz
./net/djbdns/distinfo dnscache-1.05-multiple-ip.patch
./net/djbdns/distinfo djbdns-1.05-test28.diff.xz
./net/djbdns/distinfo djbdns-1.05-ignoreip2.patch
./net/djbdns/distinfo djbdns-1.05-multiip.diff
./net/djbdns/distinfo djbdns-cachestats.patch
|
|
|
|
Changelog:
1.36.0
Changes
-------
* Update wslay
* Bump Windows build dependencies
* Bump android build dependencies
* Fix segfault when time_t is 64bit on 32bit arch
Patch from Natanael Copa
bug 1666
* Updates the make_bash_completion script to Python3.
Patch from sleepymac
bug 1672
* Prevent corrupt downloads after app and/or system crash
Patch from Ali MJ Al-Nasrawy
bug 1644
* Reset sessionDownloadLength and sessionUploadLength on download start
bug 1486
* AppleTLS: Add TLSv1.3 support
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
pkgsrc changes:
- Address several pkglint suggestions (NFCI)
Changes:
1.35.0
======
Release Note
------------
This release fixes several bugs. See Changes for details.
Changes
-------
* Update mingw build dependencies (GH-1469)
* Update android build dependencies (GH-1467)
Update android build dependencies. Use android NDK r20 and build
aarch64 binary.
* Drop SSLv3.0 and TLSv1.0 and add TLSv1.3 (GH-1385)
TLSv1.3 support is added for GNUTLS and OpenSSL.
* Platform: Fix compilation without deprecated OpenSSL APIs (GH-1315)
Patch from Rosen Penev
* Remove linux getrandom and use C++ stdlib instead (GH-1306)
* Don't send Accept Metalink header if Metalink is disabled (GH-1300)
* gnutls: Fix bug that commonName is always empty (GH-1214)
* Fix openssl API version logic for libressl 2.7.x
Patch from Ben Chaney (GH-1213)
* Fix build failure when InternalDHKeyExchange is used
1.34.0
======
Release Note
------------
This release fixes several bugs. See Changes for details.
Changes
-------
* mingw: Use SetFileTime to avoid DST adjustment (GH-1079)
* UnknownLengthPieceStorage: return piece length (GH-1065)
show something in console status when downloading items
with unknown content length
Patch from kwkam
* WinConsoleFile: fix colour properly (GH-1058)
Patch from kwkam
* util: also detect xdg_* env variables on windows (GH-1057)
so if people like to keep FHS they could define XDG_* for it
Patch from kwkam
* MacOS: Allocate once (apfs compat)
* Fix bug that signal handler does not work with libaria2 (GH-1053)
This commit fixes the bug that signal handler does not work with
libaria2 when aria2::RUN_ONCE is passed to aria2::run().
* Retry on HTTP 502 (GH-1038)
Patch from nicolov
1.33.1
======
Release Note
------------
This release fixes a bug that causes high CPU usage in mingw build.
Changes
-------
* mingw: Fix high CPU usage in BitTorrent downloads
This commit fixes high CPU usage in BitTorrent downloads. Only
mingw build is affected by this bug.
Thank you kwkam for identifying the cause of the issue, and helping
debugging this patch.
1.33.0
======
Release Note
------------
This release fixes several bugs, and add new features.
Changes
-------
* Include arm in a filename of android zip
* Upgrade base image of Dockerfile.mingw to ubuntu:16.04
* wintls: Potential fix for undecrypted read (GH-1021)
* libaria2: Return last error code from DownloadHandle::getErrorCode (GH-991)
* Windows: pass writefds also as exceptfds to select()
winsock notifies connect() failures on exceptfds instead of
writefds.
Fixes GH-969 and GH-975
* libuv: use pkg-config
* FeatureConfig: align text
* Update Dockerfile.mingw (GH-970)
avoid docker cache when using git
Patch from qweaszxcdf
* Add --peer-agent option (GH-947)
Add --peer-agent for setting the version/user agent used in the
extended handshake protocol for bittorrent.
Patch from Kurt Kartaltepe
* OSX: Allow to specify a build
* OSX: update c-ares
* [Docs, libaria2] Fix type of obj pushed into options vector (GH-941)
aria::KeyVals is a vector of pair of std strings, therefore the type
of object being pushed should be std::pair<std::string,
std::string>, however in the docs, the type of the said object is
KeyVals. If one follows the docs, their code will fail to compile.
Patch from geetam
* AppleTLS: Silence cipher suite selection
* Unbreak build OSX build
* Update macOS versions
* Add --bt-load-saved-metadata option (GH-909)
Before getting torrent metadata from DHT when downloading with
magnet link, first try to read file saved by --bt-save-metadata
option. If it is successful, then skip downloading metadata from
DHT. By default, this feature is turned off.
* Fix regression in bfc54d0 (GH-917)
Don't save control file if --auto-save-interval is 0.
* Fix infinite loop bug when file is not found
|
|
|
|
|
|
|
|
Resolves issue reported in joyent/pkgsrc#21. Bump PKGREVISION.
|
|
|
|
|
|
|
|
|
|
|
|
aria2 1.32.0
============
Release Note
------------
This release fixes several minor bugs, and spelling mistakes.
Changes
-------
* Clarify --max-concurrent-downloads option
GH-833
* Fix compile error with toolchain which lacks IPV6_TCLASS
GH-895
* Log directed URI in notice log level
GH-884
* Fix typo
Patch from Tse Kit Yam
GH-879, GH-899
* Spelling fixes
Patch from klemens
GH-870
* Remove unused Android parts
These parts where unused after merging
https://github.com/aria2/aria2/pull/736
Patch from Fredrik Fornwall
GH-868
* Save control file early
GH-859
* Update links in Dockerfile.raspberrypi
Some links used in Dockerfile.raspberrypi are not accessible
anymore, because they were pointing to old versions of some source
packages and new versions were released. This commit fixes this by
changing the links to point to the newest versions.
Patch from Michał Leśniewski
GH-860
* Propagate disk full error on pre-allocation to last error code
GH-856
|
|
|
|
Changes:
1.31.0
------
* Better error message when local file status cannot be retrieved
(GH-836)
* Fix assertion failure in SimpleRandomizer::getRandomBytes
* Add option content-disposition-default-utf8
Patch from JimmyZ (GH-813)
|
|
* Update HOMEPAGE
Chagnelog:
aria2 1.30.0
============
Release Note
------------
This release fixes several bugs. See Changes below for detailed bug
fixes. This release adds an ability to expand `${HOME}` to user's
home directory in several options. It would be useful when used in
configuration file. -S option against torrent file now prints out DHT
nodes.
Changes
-------
* mingw: Use sqlite 3.15.2
* Fix bug that --disable-websocket causes build error
* Fix bug that lower bound of optimize-concurrent-downloads becomes 1
GH-798
* Print DHT nodes with -S option
GH-795
* Take into account address family when resolving DHT node address
GH-794
* Allow block device file to -i option
GH-785
* Expand `${HOME}` to user's home directory in several options
The following options implement this substitution:
* --ca-certificate
* --certificate
* --dht-file-path
* --dht-file-path6
* --dir
* --input-file
* --load-cookies
* --log
* --metalink-file
* --netrc-path
* --on-bt-download-complete
* --on-download-complete
* --on-download-error
* --on-download-start
* --on-download-stop
* --on-download_pause
* --out
* --private-key
* --rpc-certificate
* --rpc-private-key
* --save-cookies
* --save-session
* --server-stat-if
* --server-stat-of
* --torrent-file
GH-780
* Document that libaria2 is not thread safe
GH-775
* configure: Use pkg-config to find libs whenever possible
Use pkg-config to find cppunit, libxml2 and expat. All those
libraries provide pkg-config files, and in all of those cases the
pkg-config macro is superior to the custom macros used currently.
The advantages of pkg-config files include:
- Explicit static linking support via --static. Currently, e.g.
'xml2-config --libs' prints all libraries needed for static
linking when doing dynamic linking unnecessary, resulting in
unnecessary direct deps.
- Better cross-build support. You don't have to build the additional
*-config tools for target.
- Better multilib support. Per-ABI pkgconfig directories are
commonly supported while packages usually fail to look for
per-CHOST *-config variants.
- Better override support. The current macros allow little to no
result overrides, the pkg-config macros let you pass FOO_CFLAGS
and FOO_LIBS manually.
- Cleaner version checks. The code used in libxml.m4 is really
creepy.
Patch from Michał Górny
GH-773
* WinTLS: Rewrite writeData
We re-wrote WinTLSSession::writeData. The major points are:
* Buffer is now preallocated once handshake is finished.
Previously, they are allocated each time when we send one TLS
record.
* Schannel uses header, body and trailer for each secBuffer. Now we
send them off at once using WSASend which is windows counterpart
of sendv. Previously, we do memmove if some of them are
truncated.
* We don't try to send application data in
WinTLSSession::closeConnection, since semantically we need same
application data used to create TLS record before. Using 0 length
data to finish sending buffered data looks like a hack.
GH-772
|
|
Many of these definitely do not depend on readline.
So there must be a different underlying problem, and that
should be tracked down instead of papering over it.
|
|
|
|
Solves:
/usr/libexec/binutils225/elf/ld.gold: error: cannot find -lreadline
The missing specification is obvious on DragonFly because there's
no publically accessible version of readline in base.
|
|
|
|
|
|
|
|
|
|
Release Note
------------
This release fixes the bug that progress summary is not shown timely.
Changes
-------
* Fix bug that progress summary is not shown timely
|
|
|
|
|
|
* Fix "-sqlite ssl" build (pkg-config required).
* Fix -nls build (PLIST problem).
Changelog:
aria2 1.18.10
=============
Release Note
------------
This releases fixes several bugs reported since the last release.
Changes
-------
* Add encoding specifier to Russian man page
Fixes GH-341
* Mingw: Use _wgetenv to get user's home directory
Fixes GH-342
* Handle linux getrandom returning EINTR on interrupts/signals
Also handle ENOTSUP failures where aria2 was build with linux
headers newer than the actual running kernel.
Fixes GH-336
aria2 1.18.9
============
Release Note
------------
This releases fixes memory leak with OpenSSL and crash on OSX when
proxy is used. We added several new features. Adler32 checksum is
now available in --checksum option and hash element in Metalink files.
We added --bt-detach-seed-only option, which excludes seed-only
downloads when counting concurrent active downloads (-j option). We
disabled SSLv3 by default. If you ever want to enable it or further
tune the TLS protocols to enable, use new --min-tls-version option.
--bt-force-encryption option was added to make requiring BitTorrent
full encryption easier. From this release, we build Android binary
using API level 16.
Changes
-------
* Support HTTP date ending "+0000" as well as "GMT".
Closes GH-330
* Revise getRandom facilities
Use one of the following to provide random bytes:
- Windows CryptGenRandom
- Linux getrandom (syscall interface to urandom, without nasty
corner cases such as file descriptor exhaustion or re-linked
/dev/urandom)
- std::device_random (C++ random device, which usually will be
urandom)
This also equalizes util::getRandom and SimpleRandomizer (the former
will now use the latter) instead of having essentially two different
PRNG interfaces with potentially different quality.
Closes GH-320
* Added debug log of all Metalink URLs with final priorities
Patch from Dan Fandrich
* Use gcc-4.9 and android-16 API level for android build
* Add --bt-force-encryption option
This option requires BitTorrent message payload encryption with
arc4. This is a shorthand of --bt-requre-crypto
--bt-min-crypto-level=arc4. If true is given, deny legacy
BitTorrent handshake and only use Obfuscation handshake and always
encrypt message payload. This option defaults to false.
* TLS: Fix memory leak with OpenSSL
Based on the patch submitted by midnight2k
* Warn about insecure SSL connections.
Fixed GH-313
* Add --min-tls-version option
The --min-tls-version option specifies minimum SSL/TLS version to
enable. Possible Values: SSLv3, TLSv1, TLSv1.1, TLSv1.2 Default:
TLSv1
* LibsslTLSContext: Disable SSLv3 and enable ECDHE cipher suites
* Add Dockerfile.mingw
Dockerfile.mingw builds aria2 Windows binary. It is probably the
easiest way to build the Windows binary.
* Fix crash when JSON batch response vector is empty
* Fix doc: Wrong rpc secret token prefix
* Add --bt-detach-seed-only option
This option excludes seed only downloads when counting concurrent
active downloads (-j option). This means that if -j3 is given and
this option is turned on and 3 downloads are active and one of those
enters seed mode, then it is excluded from active download count
(thus it becomes 2), and the next download waiting in queue gets
started. But be aware that seeding item is still recognized as
active download in RPC method.
* mingw: Use MoveFileExW for better atomic move
* Work around libintl's vprintf macro messing with OutputFile::vprintf
Patch from David Macek
* Fix crash on OSX when proxy is used
See GH-275
* Support Adler32 checksum
Adler32 checksum is available for --checksum option and hash element
in Metalink files. Currently, we use Adler32 implementation in
Zlib.
|
|
|
|
Changelog:
aria2 1.18.8
============
Release Note
------------
This releases fixes the bug that aria2 cannot read piped stdin on
mingw32. It also fixes busy loop on mingw32 when SSL/TLS is used. We
also fixed 2 crashes which can occur on all platforms.
Changes
-------
* WinTLS: Fix abrupt connection closing and closing in general.
Fixes GH-277
* LibsslTLSSession: Treat 0 from readData as EOF
* Enable dynamicbase and nxcompat in Windows binaries
* Fix crash in OpenedFileCounter::ensureMaxOpenFileLimit()
The crash happens if PieceStorage and/or DiskAdaptor are not
initialized in one of active RequestGroups.
* mingw32: Fix bug that aria2 does not read piped stdin
* Fix std::length_error when no_proxy is used
This is regression introduced in 8cada497.
* Try to set sane limits for RLIMIT_NO_FILE
E.g. on OSX the default is 256, which isn't exactly compatible with
torrent downloads.
Closes GH-257
* Delay auth failures instead of PBKDF2
Closes GH-256
aria2 1.18.7
============
Release Note
------------
This release fixes regression which makes 100% CPU utilization in
multi-file torrent download with -V option. It also fixes build error
on big endian platforms.
Changes
-------
* Fixed segfault unsupported encodings
Patch from diadistis
* Fix regression 100% CPU utility when -V is used and download is
multi-file bittorrent downloads.
This is regression of a3426821c8a7f9cf8d80a81726157d4eb844f661
* Fix compile error on big endian platform
aria2 1.18.6
============
Release Note
------------
This release fixes several bugs reported in github issues and adds a
feature to make RPC authentication more resilient to certain attacks.
New option --pause-metadata is added. The explanation is a bit log,
so check the changelog and manual. The session is now only saved if
there are changes from the last saved state.
From this release, MinGW32 build uses Windows native TLS
implementation and no longer use OpenSSL library.
Changes
-------
* Disard cache when checking checksum
This will slow down checksum checking but does not thrash cache.
* Compat with libuv 0.11 (Unstable)
Fixes #241
* Drop WinMessageDigestImpl.
The algorithms the `CryptProv` on Windows supports does not
currently include SHA-224, so there is a "dark spot" in this
implementation. Also on Win XP < SP3, most of the SHA-2 family is
not actually supported. All other implementation provide support
for MD5, SHA-1 and all of the SHA-2 family, hence drop the
incomplete WinMessageDigest implementation in favor of any other
supported implementation (at least the internal implementation is
always available at compile-time).
* Add --pause-metadata option
This option pauses downloads created as a result of metadata
download. There are 3 types of metadata downloads in aria2: (1)
downloading .torrent file. (2) downloading torrent metadata using
magnet link. (3) downloading metalink file. These metadata
downloads will generate downloads using their metadata. This option
pauses these subsequent downloads.
* Improve compiler/platform/libs information in logs
Add and use usedCompilerAndPlatform(). This adds compiler
information to INFO logs and the --version output, and may be
helpful when trying to diagnose/reproduce user-reported problems.
Also make INFO logs include usedLibs() output.
Closes #235
* Fix use-after-free on exit with multi-file torrent download + DHT
DefaultPieceStorage may be referenced by one of DHT task (e.g.,
DHTPeerLookupTask), after RequestGroup was deleted, and even after
RequestGroupMan was deleted. DefaultPieceStorage has a reference to
MultiDiskAdaptor which calls RequestGroupMan object on destruction.
So when DHT task is destroyed, DefaultPieceStorage is destroyed,
which in turn destroys MultiDiskAdaptor. DHT task is destroyed
after RequestGroupMan was destroyed, MultiDiskAdaptor will use now
freed RequestGroupMan object, this is use-after-free.
* Fix bug that zero length file is not opened when flushing cache
This bug was only seen when MultiDiskAdaptor was used.
* Support PREF_DIR change for Metalink files
Reworked previous commit adeead6f0396e2f8551d1182972e277728fd6c8b,
and now support changing PREF_DIR for Metalink downloads.
* Fix assertion failure when dir option of paused HTTP/FTP download is
changed
When the directory is changed via aria2.changeOption RPC method, we
directly change first FileEntry's path using FileEntry::setPath().
If there is no PREF_OUT option is given, basically file name is
unknown, so we just set empty string and let the next run determine
the correct file name and new directory is applied there. But
previous code does not reset length property of FileEntry, so the
unexpected code path is taken when unpaused and its path expects
path is not empty string. This commit fixes this issue by setting
length to 0 using FileEntry::setLength().
* Save session only when there is change since the last serialization
This is a slight optimization not to cause useless disk access.
This only applies to saving session automatically (see
--save-session-interval). aria2.saveSession and serialization at
the end of the session are always performed as before.
When serialization, we first check that whether there is any change
since the last serialization. To do this, we first calculate hash
value of serialized content without writing into file. Then compare
this value to the value of last serialization. If they do not
match, perform serialization.
* Fix (unknown length) downloads larger than 2GiB
Closes #215
* Fix F_PREALLOC based allocation on some OSX versions
* Use index.html as filename for conditional-get when file is missing
in URI
Previously we disabled conditional-get if file part is missing in
URI. But we use constant string "index.html" in this case, so we
can do the same to determine the modification time. In this patch,
if we have file part in URI, we are not going to set absolute file
path in FileEntry, since it prevents content-disposition from
working.
* Always add README.html to dist_doc_DATA
rst2html is required to produce README.html from README.rst. We
include generated README.html to distribution. And rst2html is not
required when compiling sources in distribution and always
README.html is available.
* Validate token using PBKDF2-HMAC-SHA1.
This change should make token validation more resilient to:
- timing attacks (constant time array compare)
- brute-force/dictionary attacks (PBKDF2)
Closes #220
* Add --disable-websocket configure option
* mingw32: Enable wintls and compile with GMP
By enabling wintls, we can use Windows certificate store to validate
server's certificate. Previously, we built windows build using
openssl and since we don't bundle CA certificates, aria2 fails to
validate server's certificate unless user setups their CA
certificates. GMP provides fast big integer calculations, whic is
used in BitTorrent encryption.
* AppleTLS: Enable BEAST mitigations in ST
Only available in 10.9+, but since we might be building on a
previous version but running on 10.9+, always try to set the option.
* WinTLS: Accept chains with no revocation information.
This is kind what browser do anyway (IE, Firefox, Chrome tested),
what AppleTLS does, what GnuTLS does and what OpenSSL
does. Actually, most browsers will also be OK with the CRL/OCSP
provider being offline. WinTLS will still fail in that case.
Should revocation information be available in the trust chain (CRL
or OCSP) the certificate still will be checked!
"Real" CAs, aka. those provided by the OS or system CA bundle,
usually provide revocation information and are thus still checked.
It should be mostly (only?) custom (organization) CAs that lack
revocation information, but those users might want to use aria2 in
their intranets and VPNs anyway ;)
See #217
* Fix GnuTLS 2.x compatiblity
Closes GH-216
* AppleTLS: Use newer, non-deprecated API in 10.8+
aria2 1.18.5
============
Release Note
------------
This release fixes BitTorrent download failure on Mingw build.
Changes
-------
* Ignore error when setting DSCP value
Setting DSCP is additional feature and failure to enable it should
not abort download entirely. This change fixes the bug that windows
build does not perform bittorrent downloads.
|
|
|
|
|
|
|
|
Changelog:
aria2 1.18.4
============
Release Note
------------
This release adds new RPC authorization mechanism using --rpc-secret
option. The existing --rpc-user and --rpc-passwd options are now
deprecated, and all applications using RPC API is strongly encouraged
to migrate to the new mechanism. See RPC INTERFACE section in aria2
manual page for the details. The new RPC method, aria2.saveSession,
was added, which tells aria2 server to save session file immediately.
There are several enhancements and bug fixes. See the changes for the
details.
Changes
-------
* Added support for RPC channel encryption in aria2rpc
Patch from David Macek
* Add aria2.saveSession RPC method
This method saves the current session to a file specified by
--save-session option. This method returns "OK" if it succeeds.
* Add numStoppedTotal key to aria2.getGlobalStat() RPC method response
It shows the number of stopped downloads in the current session and
not capped by --max-download-result option. On the other hand, the
existing numStopped key also shows the number of stopped downloads,
but it is capped by --max-download-result option.
* Better handling of 30x HTTP status codes
Reference: http://greenbytes.de/tech/tc/httpredirects/
* Implement new RPC authorization using --rpc-secret option
Add future deprecation warning to --rpc-user and --rpc-passwd. Warn
if neither --rpc-secret nor a combination of --rpc-user/rpc-passwd
is set.
* Add --enable-color option to enable/disable terminal color output
* Add DSCP support
* gnutls: Don't fail handshake if returned error is not fatal
* Add workaround GnuTLS bug with OCSP status extension and
non-blocking socket
GnuTLS version 3.1.3 - 3.1.18 and 3.2.0 - 3.2.8, inclusive, has this
bug. For these versions, we disable OCSP status extension.
* Make GnuTLS log level dependent on the aria2 ones
aria2 1.18.3
============
Release Note
------------
This release fixes the bug which may cause assertion failure after
multi-file downloads (e.g., multi-file metalink or torrent) are
performed several times due to the bad handling of --bt-max-open-files
option.
Changes
-------
* Fix crash if unpause failed before assigning BtProgressInfoFile
object
* Enable and check PIE in makerelease-osx
* Fix bug that numOpenFile_ is not reduced when MultiDiskAdaptor is
deleted
This bug caused assertion error in
RequestGroupMan::ensureMaxOpenFileLimit
|
|
Fixes issues where a newer GCC has been chosen by the user but the GCC_REQD
was forcing an older (and broken) one to be pulled regardless.
|
|
|
|
|
