| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
Based on PR 41772 by Robert Elz.
Pkgsrc changes:
o MAKE_JOBS_SAFE=no, README said "Do not use a parallel make".
o remove patch-aj, libbind has been removed from the BIND 9 distribution
since 9.6.0.
o add bind-dig-sigchase option. requested by PR 41751.
Changes since 9.6.0:
--- 9.6.1 released ---
2607. [bug] named could incorrectly delete NSEC3 records for
empty nodes when processing a update request.
[RT #19749]
2606. [bug] "delegation-only" was not being accepted in
delegation-only type zones. [RT #19717]
2605. [bug] Accept DS responses from delegation only zones.
[RT # 19296]
2603. [port] win32: handle .exe extension of named-checkzone and
named-comilezone argv[0] names under windows.
[RT #19767]
2602. [port] win32: fix debugging command line build of libisccfg.
[RT #19767]
--- 9.6.1rc1 released ---
2599. [bug] Address rapid memory growth when validation fails.
[RT #19654]
2597. [bug] Handle a validation failure with a insecure delegation
from a NSEC3 signed master/slave zone. [RT #19464]
2596. [bug] Stale tree nodes of cache/dynamic rbtdb could stay
long, leading to inefficient memory usage or rejecting
newer cache entries in the worst case. [RT #19563]
2595. [bug] Fix unknown extended rcodes in dig. [RT #19625]
2592. [bug] Treat "any" as a type in nsupdate. [RT #19455]
2591. [bug] named could die when processing a update in
removed_orphaned_ds(). [RT #19507]
2588. [bug] SO_REUSEADDR could be set unconditionally after failure
of bind(2) call. This should be rare and mostly
harmless, but may cause interference with other
processes that happen to use the same port. [RT #19642]
2586. [bug] Missing cleanup of SIG rdataset in searching a DLZ DB
or SDB. [RT #19577]
2585. [bug] Uninitialized socket name could be referenced via a
statistics channel, triggering an assertion failure in
XML rendering. [RT #19427]
2584. [bug] alpha: gcc optimization could break atomic operations.
[RT #19227]
2583. [port] netbsd: provide a control to not add the compile
date to the version string, -DNO_VERSION_DATE.
2582. [bug] Don't emit warning log message when we attempt to
remove non-existant journal. [RT #19516]
2579. [bug] DNSSEC lookaside validation failed to handle unknown
algorithms. [RT #19479]
2578. [bug] Changed default sig-signing-type to 65534, because
65535 turns out to be reserved. [RT #19477]
2499. [port] solaris: lib/lwres/getaddrinfo.c namespace clash.
[RT #18837]
--- 9.6.1b1 released ---
2577. [doc] Clarified some statistics counters. [RT #19454]
2576. [bug] NSEC record were not being correctly signed when
a zone transitions from insecure to secure.
Handle such incorrectly signed zones. [RT #19114]
2574. [doc] Document nsupdate -g and -o. [RT #19351]
2573. [bug] Replacing a non-CNAME record with a CNAME record in a
single transaction in a signed zone failed. [RT #19397]
2568. [bug] Report when the write to indicate a otherwise
successful start fails. [RT #19360]
2567. [bug] dst__privstruct_writefile() could miss write errors.
write_public_key() could miss write errors.
dnssec-dsfromkey could miss write errors.
[RT #19360]
2564. [bug] Only take EDNS fallback steps when processing timeouts.
[RT #19405]
2563. [bug] Dig could leak a socket causing it to wait forever
to exit. [RT #19359]
2562. [doc] ARM: miscellaneous improvements, reorganization,
and some new content.
2561. [doc] Add isc-config.sh(1) man page. [RT #16378]
2560. [bug] Add #include <config.h> to iptable.c. [RT #18258]
2559. [bug] dnssec-dsfromkey could compute bad DS records when
reading from a K* files. [RT #19357]
2557. [cleanup] PCI compliance:
* new libisc log module file
* isc_dir_chroot() now also changes the working
directory to "/".
* additional INSISTs
* additional logging when files can't be removed.
2556. [port] Solaris: mkdir(2) on tmpfs filesystems does not do the
error checks in the correct order resulting in the
wrong error code sometimes being returned. [RT #19249]
2554. [bug] Validation of uppercase queries from NSEC3 zones could
fail. [RT #19297]
2553. [bug] Reference leak on DNSSEC validation errors. [RT #19291]
2552. [bug] zero-no-soa-ttl-cache was not being honoured.
[RT #19340]
2551. [bug] Potential Reference leak on return. [RT #19341]
2550. [bug] Check --with-openssl=<path> finds <openssl/opensslv.h>.
[RT #19343]
2549. [port] linux: define NR_OPEN if not currently defined.
[RT #19344]
2548. [bug] Install iterated_hash.h. [RT #19335]
2547. [bug] openssl_link.c:mem_realloc() could reference an
out-of-range area of the source buffer. New public
function isc_mem_reallocate() was introduced to address
this bug. [RT #19313]
2545. [doc] ARM: Legal hostname checking (check-names) is
for SRV RDATA too. [RT #19304]
2544. [cleanup] Removed unused structure members in adb.c. [RT #19225]
2543. [contrib] Update contrib/zkt to version 0.98. [RT #19113]
2542. [doc] Update the description of dig +adflag. [RT #19290]
2541. [bug] Conditionally update dispatch manager statistics.
[RT #19247]
2539. [security] Update the interaction between recursion, allow-query,
allow-query-cache and allow-recursion. [RT #19198]
2538. [bug] cache/ADB memory could grow over max-cache-size,
especially with threads and smaller max-cache-size
values. [RT #19240]
2537. [experimental] Added more statistics counters including those on socket
I/O events and query RTT histograms. [RT #18802]
2536. [cleanup] Silence some warnings when -Werror=format-security is
specified. [RT #19083]
2535. [bug] dig +showsearh and +trace interacted badly. [RT #19091]
2532. [bug] dig: check the question section of the response to
see if it matches the asked question. [RT #18495]
2531. [bug] Change #2207 was incomplete. [RT #19098]
2530. [bug] named failed to reject insecure to secure transitions
via UPDATE. [RT #19101]
2529. [cleanup] Upgrade libtool to silence complaints from recent
version of autoconf. [RT #18657]
2528. [cleanup] Silence spurious configure warning about
--datarootdir [RT #19096]
2527. [bug] named could reuse cache on reload with
enabling/disabling validation. [RT #19119]
2525. [experimental] New logging category "query-errors" to provide detailed
internal information about query failures, especially
about server failures. [RT #19027]
2524. [port] sunos: dnssec-signzone needs strtoul(). [RT #19129]
2523. [bug] Random type rdata freed by dns_nsec_typepresent().
[RT #19112]
2522. [security] Handle -1 from DSA_do_verify() and EVP_VerifyFinal().
2521. [bug] Improve epoll cross compilation support. [RT #19047]
2519. [bug] dig/host with -4 or -6 didn't work if more than two
nameserver addresses of the excluded address family
preceded in resolv.conf. [RT #19081]
2517. [bug] dig +trace with -4 or -6 failed when it chose a
nameserver address of the excluded address.
[RT #18843]
2516. [bug] glue sort for responses was performed even when not
needed. [RT #19039]
2514. [bug] dig/host failed with -4 or -6 when resolv.conf contains
a nameserver of the excluded address family.
[RT #18848]
2511. [cleanup] dns_rdata_tofmttext() add const to linebreak.
[RT #18885]
2506. [port] solaris: Check at configure time if
hack_shutup_pthreadonceinit is needed. [RT #19037]
2505. [port] Treat amd64 similarly to x86_64 when determining
atomic operation support. [RT #19031]
2503. [port] linux: improve compatibility with Linux Standard
Base. [RT #18793]
2502. [cleanup] isc_radix: Improve compliance with coding style,
document function in <isc/radix.h>. [RT #18534]
|
|
* Version 3.6 [2008 Oct 27]
SNMP interface auto-discovery (oid: ifInOctets[POS1/0])
better handling of solaris low descriptor limit
faster startup
correctly count aliases
new severity features
new data directory structure
show test results on webpage
overview webpage
friendlier notification messages
compute service
bugfixes
=> some config file changes may be needed
* Version 3.5 [2007 June 14]
SNMPv2c
SNMP get-bulk
UDP bug fixes
faster startup/shutdown
faster graphs
faster with large configs
Resolv in displayed config
checknow button
notification %O fix
notification conditional text
DARP (Failover and Redundancy)
acl simplification
detect GD at runtime
can specify units for time duration parameters
web page changes
data archiving interface
various config parameter inheritance changes
=> some config file changes may be needed
|
|
Based on PR 41779 by Fredrik Pettai.
Version 20090128:
I added a new feature to dnstop today that filters on "refused" response codes.
This might be useful in tracking the ongoing DNS-based DDoS attacks.
To use this new feature:
dnstop -R -f refused eth0
Version 20080321:
The interesting changes came in a patch from Dave Plonka:
Fixed a bug that cause dnstop to Memory fault when processing
a DNS packet greater than PCAP_SNAPLEN (previously 1460) bytes
in size.
Raised PCAP_SNAPLEN to 65535 to avoid truncating large DNS
packets.
Eliminated unnecessary stack buffers and memcpy calls when
handling packets.
Also some variables have been added to the Makefile at the request
of a packager so that it may be easier to customize where files are
installed, etc.
|
|
|
|
Issue raised by Koh-ichi Ito on nsd-users.
|
|
|
|
Shared directories can now be created independently by the pacakges
needing them and will be removed automatically by pkg_delete when empty.
Packages needing empty directories can use the @pkgdir command in PLIST.
Discussed and ok'd in thread starting at
http://mail-index.netbsd.org/tech-pkg/2009/06/30/msg003546.html
|
|
New features:
- Wireshark has a spiffy new start page.
- Display filters now autocomplete.
- Support for the c-ares resolver library has been added. It has many
- advantages over ADNS.
- Many new protocol dissectors and capture file formats have been added.
- Macintosh OS X support has been improved.
- GeoIP database lookups.
- OpenStreetMap + GeoIP integration.
- Improved Postscript(R) print output.
- The preference handling code is now much smarter about changes.
- Support for Pcap-ng, the next-generation capture file format.
- Support for process information correlation via IPFIX.
- Column widths are now saved.
- The last used configuration profile is now saved.
- Protocol preferences are changeable from the packet details context menu.
- Support for IP packet comparison.
- Capinfos now shows the average packet rate.
Security fixes:
- The AFS dissector could crash.
- The Infiniband dissector could crash on some platforms.
|
|
|
|
- Updating package for p5 module Cisco::Abbrev from 0.02 to 0.03
- Adjusting license according to module POD
Upstream changes:
0.03 2009-04-17
Added 'Eth' --> 'Ethernet' mapping.
Thanks to: Petya Kohts <kohts@yandex-team.ru>
|
|
|
|
|
|
Fix for PR#41506
Fix missing @dirrm entries from PLIST*
Before we go into the detailed changes, here are the top 5 improvements in Nmap 5:
1. The new Ncat tool aims to be your Swiss Army Knife for data transfer, redirection, and debugging. We released a whole users' guide detailing security testing and network administration tasks made easy with Ncat.
2. The addition of the Ndiff scan comparison tool completes Nmap's growth into a whole suite of applications which work together to serve network administrators and security practitioners. Ndiff makes it easy to automatically scan your network daily and report on any changes (systems coming up or going down or changes to the software services they are running). The other two tools now packaged with Nmap itself are Ncat and the much improved Zenmap GUI and results viewer.
3. Nmap performance has improved dramatically. We spent last summer scanning much of the Internet and merging that data with internal enterprise scan logs to determine the most commonly open ports. This allows Nmap to scan fewer ports by default while finding more open ports. We also added a fixed-rate scan engine so you can bypass Nmap's congestion control algorithms and scan at exactly the rate (packets per second) you specify.
4. We released Nmap Network Scanning, the official Nmap guide to network discovery and security scanning. From explaining port scanning basics for novices to detailing low-level packet crafting methods used by advanced hackers, this book suits all levels of security and networking professionals. A 42-page reference guide documents every Nmap feature and option, while the rest of the book demonstrates how to apply those features to quickly solve real-world tasks. More than half the book is available in the free online edition.
5. The Nmap Scripting Engine (NSE) is one of Nmap's most powerful and flexible features. It allows users to write (and share) simple scripts to automate a wide variety of networking tasks. Those scripts are then executed in parallel with the speed and efficiency you expect from Nmap. All existing scripts have been improved, and 32 new ones added. New scripts include a whole bunch of MSRPC/NetBIOS attacks, queries, and vulnerability probes; open proxy detection; whois and AS number lookup queries; brute force attack scripts against the SNMP and POP3 protocols; and many more. All NSE scripts and modules are described in the new NSE documentation portal.
Details are here: http://nmap.org/changelog.html
|
|
|
|
Notes:
Version 1.2.5.
-msdl
- 11th release
- all message goes to stderr
- -o - (stdout) option added
- changed uinq filtering function in get_url_list_from_file()
- FreeBSD test done
|
|
ChangeLog:
V 1.7.1.1:
corrections:
corrected the "fixed possible SIGSEGV" fix because SIGSEGV still might
occur under those conditions. Thanks to Toni Mattila for first
reporting this problem.
ftruncate64 cut its argument to 32 bits on systems with 32 bit long type
socat crashed on systems without setenv() (esp. SunOS up to Solaris 9);
thanks to Todd Stansell for reporting this bug
with unidirectional EXEC and SYSTEM a close() operation was performed
on a random number which could result in hanging e.a.
fixed a compile problem caused by size_t/socklen_t mismatch on 64bit
systems
docu mentioned option so-bindtodev but correct name is so-bindtodevice.
Thanks to Jim Zimmerman for reporting.
docu changes:
added environment variables example to doc/socat-multicast.html
V 1.7.1.0:
new features:
address options shut-none, shut-down, and shut-close allow to control
socat's half close behaviour
with address option shut-null socat sends an empty packet to the peer
to indicate EOF
option null-eof changes the behaviour of sockets that receive an empty
packet to see EOF instead of ignoring it
introduced option names substuser-early and su-e, currently equivalent
to option substuser (thanks to Mike Perry for providing the patch)
corrections:
fixed some typos and improved some comments
V 1.7.0.1:
corrections:
fixed possible SIGSEGV in listening addresses when a new connection was
reset by peer before the socket addresses could be retrieved. Thanks to
Mike Perry for sending a patch.
fixed a bug, introduced with version 1.7.0.0, that let client
connections with option connect-timeout fail when the connections
succeeded. Thanks to Bruno De Fraine for reporting this bug.
option end-close "did not apply" to addresses PTY, SOCKET-CONNECT,
and most UNIX-* and ABSTRACT-*
half close of EXEC and SYSTEM addresses did not work for pipes and
sometimes socketpair
help displayed for some option a wrong type
under some circumstances shutdown was called multiple times for the
same fd
|
|
ChangeLog:
1.3.0 httping used to put an absolute URI in the GET/HEAD request when
not via proxy which is incorrect, that is now fixed
|
|
Changes:
- Modify "more pages" check in YouTube playlist.
- Delay opening file until there is data to write.
|
|
Upstream changes:
0.67 Friday July 10, 2009, 01:30:00 AM -0700
* lib/RPC/XML/Client.pm
* lib/RPC/XML/Server.pm
* t/70_compression_detect.t (added)
RT #47219: Mis-read the patch from previous fix, this actually
fixes it. Also added a test suite to check for
compression-detection.
0.66 Thursday July 9, 2009, 07:36:15 AM -0700
* lib/RPC/XML/Client.pm
* lib/RPC/XML/Server.pm
RT #47219: Re-did the detection of compression availability
(testing for the Compress::Zlib module) based on comments in
this bug.
* t/60_net_server.t
RT #47220: Net::Server tests are not (currently) viable on
Windows. Also made script taint-safe.
* t/40_server.t
* t/50_client.t
* t/util.pl
RT #47221: Applied a patch from kmx@volny.cz, for better
Windows testing.
* lib/Apache/RPC/Server.pm
* lib/Apache/RPC/Status.pm
* lib/RPC/XML.pm
* lib/RPC/XML/Client.pm
* lib/RPC/XML/Function.pm
* lib/RPC/XML/Method.pm
* lib/RPC/XML/Parser.pm
* lib/RPC/XML/Procedure.pm
* lib/RPC/XML/Server.pm
All modules now use the "warnings" pragma.
|
|
Version 2.2.1
(June 21, 2009)
User-visible changes:
* Add: support for Vimeo (closes issue #19)
* Add: return codes for each error case (closes issue #22)
* Fix: return code is always 0 (closes issue #20)
* Change: --hosts output now matches cclive output
Version 2.2.0
(June 14, 2009)
FOREWORD
--------
This release is a major overhaul aimed to fix the previous design flaws
and clean up the codebase. Note that 2.2.0 breaks compatibility with
the earlier versions of clive.
Most users will not notice much differences after upgrading to 2.2.0
but those users who have used clive for anything more than "clive URL"
should read the changes carefully. The summary of changes section
includes more detailed changes that is recommended reading for all
users and maintainers.
2.2.0 changes the license from ISC to GPLv3. The license was last
changed in 2.1.0 to ISC but has now been reverted back to GPLv3 after
some further consideration.
Config::Tiny has been replaced with Getopt::ArgvFile. The latter had
some advantages over Config::Tiny that lead to the switch. For example,
instead of trying to memorize the (often confusing) config variable
names, users can now use command line options in the config file.
This also means that everytime a new feature is added to the program,
we are no longer required to modify the code responsible for parsing
the config file. Using Getopt::ArgvFile also required adding only one
line of code to the project whereas Config::Tiny required several.
cache no longer reads by default. This means that --cache-read option
must be invoked for clive to read previously stored video records
from the cache. The change was made after seeing how most users found
the reading from cache too confusing and frequently reported expired
link errors such as HTTP 403 as bugs even though the behaviour was
documented in the manual page. DAERTM?
--emit-csv now outputs very few details about the videos. Only those
fields that are known to be any use are printed out.
2.2.0 also removes a number of less used features that have lingered
in the project since the 1.x. Most of these features were never
requested and have only been burdening the program codebase since
their introduction.
Part time hackers and/or developers will notice that clive now follows
a new OO design -- as well as Perl5 allows it. While there are still
some considerations regarding the design and limitations that could not
quite be ported from C++ used in cclive, WYSIWYG.
Package/port maintainers will want to read the README file. The previously
used GNU Makefile is no longer used and clive installation now depends on
ExtUtils::MakeMaker instead.
SUMMARY of CHANGES
------------------
User-visible changes:
* License change
1. ISC -> GPLv3
2. Last changed in 2.1.0 (-> ISC)
* Slight improvements to program startup time
* Config file format changes (Config::Tiny -> Getopt::ArgvFile)
1. Command line options can now be used in config file
2. Breaks compatibility with previous versions
3. Cleaner and new format allows using cmdline options in configs
4. Format was last changed in 2.0.0
Example:
-----------------------------------------------
# Config::Tiny: clive 2.0 - 2.1
cat >> ~/.config/clive/config
[http]
proxy = "http://foo:1234"
[output]
savedir = "/home/user/videos"
# Getopt::ArgvFile: clive 2.2
cat >> ~/.cliverc
--proxy="http://foo:1234"
--savedir="/home/user/videos"
-----------------------------------------------
* Fix: Redtube video title parsing
* Cache changes
1. Cache is now passive (read:no, write:yes)
2. Add: --cache- option prefix
3. New option: --cache-read, --no-cache
5. Rename: misc. options (e.g. --show -> --cache-dump)
6. Record field changes
o Breaks compatibility with previous versions
7. New field delimiter '#'
8. New field order
* File path changes
1. ~/.config/clive/config -> ~/.cliverc
2. ~/.config/clive/recall -> ~/.clivelast
3. ~/.config/clive/cache -> ~/.clivecache
* --format changes
1. Add: --format=best support (closes issue #15 )
2. Rename: mp4 -> fmt18 (Youtube)
3. Rename: Dailymotion ID spark -> flv
* Bugfixes
1. cURL error handling
2. Google mp4 support
3. Do not strip link params (closes debian bug #530659)
4. --format=fmt6 (no longer supported by Youtube?)
5. Dailymotion ID parsing
* New options:
1. --home-dir
2. --recall-file
3. --cache-file
4. --no-cclass
5. --raw
6. --stop-after (closes issue #18)
* --emit-csv: changes to CSV fields (cleanup, print only the necessary fields)
1. clive 2.0 - 2.1:
page_link, video_link, filename, file_length_mb,
file_length_bytes, video_id, time_stamp, page_title,
initial_length, remaining_bytes
2. clive 2.2:
base_filename, file_length, video_link
* Remove options:
1. --savebatch
2. --renew (now obsolete)
3. --youtube-user (broken since 2.1)
4. --youtube-pass (...)
5. --no-login (...)
6. --clivepass (...)
7. --emit-xml
8. --background
9. --progress
10. --output
11. --append
12. --paste
13. --format=fmt6
* Other changes:
1. Long options: aliases (e.g. --output_file | --output-file | --outputfile)
2. --filename-format: new specifiers, rename some of the old ones
3. --format: exit with an error if id is not recognized by clive
4. Rename: -r -> -l (--recall)
5. Many short options have been removed (or reused)
Version 2.1.14
(May 25, 2009)
User-visible changes:
* Add: support for youtube-nocookie.com (closes issue #12)
* Add: fmt35 format ID for Youtube [closes issue #10 (and #13)]
* Fix: liveleak id parsing
* Rename: --format IDs for Youtube
** mp4_hd -> fmt22
** 3gpp -> fmt17
** xflv -> fmt6
* Rename: --output-video -> --output-file
* Rename: output:file -> output:filename_format (config file)
* Remove: --overwrite option (use --output-file instead)
|
|
- Updating package for p5 module Net::Packet from 3.25nb1 to 3.26
- Adjusting / Reordering dependencies according to META.yml
- Adding homepage / license
Upstream changes:
3.26 Sat Apr 19 18:41:12 CEST 2008
- new: added possibility to adjust snaplen in Dump.pm
=> contributed by Darien Kindlund
- bugfix: examples/read-pcap.pl
|
|
- Updating package for p5 module Net::Libdnet from 0.01nb1 to 0.92
- Adjusting master site and homepage
Upstream changes:
0.92 Wed May 13 20:59:41 CEST 2009
- applied http://rt.cpan.org/Ticket/Display.html?id=43899
- applied http://rt.cpan.org/Ticket/Display.html?id=45697
- copyright notice update
0.91 Sun Dec 7 19:15:43 CET 2008
- new: Net::Libdnet::Intf methods now return a Net::Libdnet::Entry::Intf object
- new: Net::Libdnet::Intf now also has getSrcIntfFromDst(), getSrcIpFromDst()
- update: constants renamed to be prefixed with DNET_
0.90 Tue Nov 25 22:44:42 CET 2008
- complete rewrite of XS code
- near full implementation of libdnet API
- two APIs: a low-level and a high-level object oriented one
- backward compatibility should remain
0.02 Tue Nov 25 20:59:27 CET 2008
- ownership transfered to me
- updated copyright notices
- still uses a BSD license
|
|
0.54 (06/17/2009)
(cb) Alfons Wittmann reported that signing requests broke caching due
to the current time being incorporated into every signed URL
submitted.
|
|
|
|
|
|
Add DESTDIR support.
changes since wide-dhcpv6-20070507
[common]
- fixed several memory-related problems
- fixed a improper handling of a domain-name ending with '.'
- fixed a replay-check failure
- fixed a typo in manuals
[dhcp6s]
- fixed a lifetime calculation failure in RENEW/REBIND process
for stateful-address.
- fixed a bug that dhcp6s cannot accept a relayed
request message with authentication option.
|
|
* A stack overflow vulnerability was fixed in dhclient that could allow remote attackers to execute arbitrary commands as root on the system, or simply terminate the client, by providing an over-long subnet-mask option.
|
|
* A stack overflow vulnerability was fixed in dhclient that could allow remote attackers to execute arbitrary commands as root on the system, or simply terminate the client, by providing an over-long subnet-mask option.
|
|
|
|
the MonoTorrent library, 0.70, which contains numerous bugfixes and
performance enhancements. Numerous minor bugfixes were also included.
|
|
|
|
This is a bugfix release to address a few reported issues and also a few
issues that were discovered via my own testing.
* Add a helper method which ensures all data is flushed to disk
* Added additional error handling to prevent malformed DHT messages
crashing the library
* Fixed issue when zeroing unused bits for torrents with an exact
multiple of 32 pieces
* Fixed issue where data could be written to the wrong file if a file
with the same name existed in multiple torrents
* Fixed the handling of torrents where the last file(s) are of zero
length
* Fixed regression with global download rate limiting
* Fixed a performance regression with the new piece picking pipeline
which resulted in lots of CPU cycles being used up on peers which
have not sent an unchoke message
|
|
|
|
|
|
|
|
changes:
-bugfixes
-fixed interoperability problems, in particular for https and
for proxy use
|
|
maintainer update request via PR 41688.
Changes in version 0.2.0.35 - 2009-06-24
o Security fix:
- Avoid crashing in the presence of certain malformed descriptors.
Found by lark, and by automated fuzzing.
- Fix an edge case where a malicious exit relay could convince a
controller that the client's DNS question resolves to an internal IP
address. Bug found and fixed by "optimist"; bugfix on 0.1.2.8-beta.
o Major bugfixes:
- Finally fix the bug where dynamic-IP relays disappear when their
IP address changes: directory mirrors were mistakenly telling
them their old address if they asked via begin_dir, so they
never got an accurate answer about their new address, so they
just vanished after a day. For belt-and-suspenders, relays that
don't set Address in their config now avoid using begin_dir for
all direct connections. Should fix bugs 827, 883, and 900.
- Fix a timing-dependent, allocator-dependent, DNS-related crash bug
that would occur on some exit nodes when DNS failures and timeouts
occurred in certain patterns. Fix for bug 957.
o Minor bugfixes:
- When starting with a cache over a few days old, do not leak
memory for the obsolete router descriptors in it. Bugfix on
0.2.0.33; fixes bug 672.
- Hidden service clients didn't use a cached service descriptor that
was older than 15 minutes, but wouldn't fetch a new one either,
because there was already one in the cache. Now, fetch a v2
descriptor unless the same descriptor was added to the cache within
the last 15 minutes. Fixes bug 997; reported by Marcus Griep.
|
|
to version 0.8.4. Changes since 0.12.2 respectively 0.8.2:
- Fixed EINTR handling in execute command.
- Fixed a couple of memory leaks in xmlrpc.cc.
- Initial seeding support added.
- Added a work-around for the stdin kqueue bug in MacOSX.
- Numerous bug-fixes and patches.
- Work-around for OpenBSD's broken sys/event.h, which fails to compile
if it's the first (or only) included header. (Ticket #1470)
- Fixes compilation with old libcurl versions. (Ticket #1471)
- Fix compile error on systems that lack mincore(2).
- Fixes a crash in epoll due to libcurl/c-ares bug:
PollEPoll::modify(...) epoll_ctl call failed.
- Enforce an http transfer timeout when libcurl fails to honor
it. Also set a 5-minute timeout for (previously unlimited) torrent
transfers and fixes the argument type for curl_easy_setopt values.
- Allows bandwidth throttles to work without floating point support.
- Added the 'd.add_peer=host[:port]' command to manually add a peer
(not for torrents marked "private"), port 6881 is the default.
- Allows banning the selected peer with "B". No unbanning is possible
yet.
- Added system.method.{insert,erase} commands that allows
user-specified commands. E.g "system.method.insert=foo,print=Bar".
- Differentiate between commands that have no target, and those that
take generic targets, when using XMLRPC.
- Added 'event.download.inserted_{new,session}' that are triggered
when a new or a session torrent is added. Ticket #1516.
- Added 'system.method.get', 'ui.current_view.set' and 'group.insert'
commands.
- Enabled different ratio settings for different groups of
downloads.
- Added 'view.persistance' command that makes downloads inserted into
that view persist across sessions. Only call on user-created views.
- Added 'ratio.*' commands that call the 'group.seeding.ratio.*'
equivalents.
- Changed torrent::DownloadList::close_directly() so doesn't save the
session if the underlying file/directory has been moved or
removed. This change, in addition to calling 'd.set_directory=' before
'execute=mv,...', as previously shown in the examples, will make
rtorrent behave correctly when 'check_hash=no' is set.
|
|
Changes from dhcpcd-5.0.4 include
* Fix crash on MIPS
* Default to requesting interface MTU
* Save and restore interface MTU when changing
* IP whitelist
* Fix detecting correct dstaddr for PtP interfaces at startup
* Ensure that the lease and pidfile directories exist at startup
|
|
- CVE-2009-1888:
In Samba 3.0.31 to 3.3.5 (inclusive), an uninitialized read of a
data value can potentially affect access control when "dos filemode"
is set to "yes".
This security fix has already been integrated into "pkggsrc" via a patch
previously. The package was only updated to make future maintenance easier.
|
|
|
|
|
|
(I had some partial success using it to connect "rhythmbox" to
a "mediatomb" media server.)
|
|
|
|
Setting license to artistic according to module documentation
Upstream changes:
4.027 Tue Jun 9 10:31:11 PDT 2009
In NetAddr::IP::Util v1.31,
ferret out shell value for Makefile.PL when calling
./configure for systems where the 'x' bit gets lost
due to bug in Archive::Tar
|
|
Setting license to artistic according to META.yml
Upstream changes:
1.05 Wed Jun 10 20:37:44 CEST 2009
- bugfix: removed a warning on AF_INET6 constant declaration
- update: copyright notice
1.04 Sun Oct 19 17:47:11 CEST 2008
- bugfix: IP_HDRINCL with IPv6 under Linux 2.6.x
|
|
Setting LICENSE to ${PERL5_LICENSE} according to module documentation
Upstream changes:
1.03:
* Enforce the rules from the Auth 2.0 spec about which fields
MUST be signed in positive assertion messages.
* Return a more sensible error (no_head_tag) if the identifier
URL returns an empty (0-byte) HTML document.
* Verify delegate on the non-fragment version of the resulting
identifier, so that you can delegate to providers that add
fragments to their identifiers.
Found and fixed by avarix <mindsectr@gmail.com>.
|
|
- Updating package for p5 module RPC::XML from 0.64 to 0.65
- Adjusting license and dependencies according to META.yml
Upstream changes:
0.65 Wednesday June 17, 2009, 06:00:00 AM -0700
* etc/make_method
* etc/rpc-method.dtd
* lib/RPC/XML/Procedure.pm
* t/30_method.t
* t/35_namespaces.t (added)
* t/namespace1.xpl (added)
* t/namespace2.xpl (added)
* t/namespace3.xpl (added)
Support for declaration of namespaces in XPL code. Adds a new
test suite and includes a rewrite/update of the method tests.
Change also covers the make_method tool and the DTD for XPL
files.
* lib/RPC/XML.pm
* lib/RPC/XML/Client.pm
* lib/RPC/XML/Server.pm
* t/02_pod_coverage.t
Interim fix for encoding issues, prior to the mega-encoding
work. This makes the library correctly create octet-based
messages, rather than letting UTF-8 leak in if it was passed in
initially.
* lib/Apache/RPC/Server.pm
* lib/RPC/XML.pm
* lib/RPC/XML/Client.pm
Follow-up to previous commit, some serialization-related
problems. Not all instances of bytelength() had been removed
after the previous slate of changes, and once that was done
some tests in 15_serialize.t broke.
* lib/RPC/XML.pm
* lib/RPC/XML/Parser.pm
* t/12_nil.t (added)
* t/30_method.t
RT #34132: Based on a patch from the requestor, added support
for <nil/>. Documentation and tests are present, but a little
sparse. This change also incorporates a small add to
lib/RPC/XML/Parser.pm to address RT #42033.
* t/40_server.t
* t/41_server_hang.t
RT #27778: Fix problems with child-process management on
Windows that was causing t/40_server.t to hang during test
runs. Also put skip-clause into t/41_server_hang.t, as
according to the person reporting, it doesn't work at all on
MSWin (the network code is very UNIX-y).
* lib/RPC/XML.pm
* t/10_data.t
Applied a regexp-fix from Joakim Mared for stringification of
doubles.
* lib/RPC/XML.pm
* lib/RPC/XML/Client.pm
* lib/RPC/XML/Parser.pm
* lib/RPC/XML/Procedure.pm
* lib/RPC/XML/Server.pm
* t/10_data.t
RT ticket #35106: Make the behavior of RPC::XML::array
constructor work as expected. This led to adding use of
Scalar::Util and cleaning up the places where I was still doing
"UNIVERSAL::isa(...)" hacks to test refs without the risk of
directly calling ->isa() on a potentially-unblessed ref.
* lib/Apache/RPC/Server.pm
* lib/Apache/RPC/Status.pm
* lib/RPC/XML.pm
* lib/RPC/XML/Client.pm
* lib/RPC/XML/Function.pm
* lib/RPC/XML/Method.pm
* lib/RPC/XML/Parser.pm
* lib/RPC/XML/Procedure.pm
* lib/RPC/XML/Server.pm
Update the copyright year and license information, and add
contact data to all POD sections for RT, AnnoCPAN, GitHub, etc.
* lib/RPC/XML/Client.pm
* t/50_client.t
RT ticket #34559: Allow control of LWP::UA timeouts from within
client class.
* lib/RPC/XML/Server.pm
RT ticket #43019: Small hack to the existing SSL hack for
Socket6 problems.
* lib/Apache/RPC/Server.pm
* lib/Apache/RPC/Status.pm
* lib/RPC/XML.pm
* lib/RPC/XML/Client.pm
* lib/RPC/XML/Function.pm
* lib/RPC/XML/Method.pm
* lib/RPC/XML/Parser.pm
* lib/RPC/XML/Procedure.pm
* lib/RPC/XML/Server.pm
Since Scalar::Util requires 5.006, make that (5.006001,
actually) the base required Perl version.
|
|
as mandated by X/Open.
|
|
Support PPP interfaces on NetBSD. Bump revision.
|
