| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
|
|
not use libtool to do so. This is required to correctly depend upon a
gcc runtime package (e.g. gcc47-libs) when using USE_PKGSRC_GCC_RUNTIME.
|
|
Features:
* separate ldns into core ldns inside ldns/ subdirectory. No more
configure --with-ldns is needed and unbound does not rely on libldns.
* Accept ip-address: as an alternative for interface: for
consistency with nsd.conf syntax.
* Fix ref#536: acl_deny_non_local and refuse_non_local added.
* so-reuseport: yesno option to distribute queries evenly over
threads on Linux (Thanks Robert Edmonds).
Reuseport is attempted, then fallback to without on failure.
* delay-close: msec option that delays closing ports for which
the UDP reply has timed out. Keeps the port open, only accepts
the correct reply. This correct reply is not used, but the port
is open so that no port-denied ICMPs are generated.
Bug Fixes:
* Fix #528: if very high logging (4 or more) segfault on allow_snoop.
* Fix #531: Set SO_REUSEADDR so that the wildcard interface and a
more specific interface port 53 can be used at the same time, and
one of the daemons is unbound.
* if configured --with-libunbound-only fix make install.
* Patch from Neel Goyal to fix callback in libunbound.
* Patch from Neel Goyal to fix async id assignment if callback
is called by libunbound in the mesh attach.
* Fix bug#537: compile python plugin without ldns library.
* Windows port, adjust %lld to %I64d, and warning in win_event.c.
* Fix #544: Fixed +i causes segfault when running with module conf
"iterator".
* Fix #547: no trustanchor written if filesystem full, fclose checked.
* unbound-event.h is installed if you configure --enable-event-api.
It contains low-level library calls, that use libevent's event_base
and a wireformat return packet in a buffer to perform async
resolution in the client's eventloop.
* speed up unbound, by reducing lock contention on localzones.lock.
* Fix parse (in ldns) of quoted parenthesized text strings.
* Detect libevent2 install automatically by configure and fixup
link with lib/event2 subdir.
* Fix #551: License change "Regents" to "Copyright holder", matching
the BSD license on opensource.org.
* Fix parse of #553(NSD) string in sldns, quotes without spaces.
* Be lenient when a NSEC NameError response with RCODE=NXDOMAIN is
received. This is okay according 4035, but not after revising
existence in 4592. NSEC empty non-terminals exist and thus the
RCODE should have been NOERROR. If this occurs, and the RRsets
are secure, we set the RCODE to NOERROR and the security status
of the response is also considered secure.
* iana portlist updated.
* Fix bug#561: contrib/cacti plugin did not report SERVFAIL rcodes
because of spelling..
|
|
Features:
* Return REFUSED for queries to non-hosted zones.
Bug Fixes:
* Fix expired zones to give SERVFAIL, also when parent zone loaded.
* documented nsd-control zonestatus output in nsd-control manpage.
* remove mention of nsdc from nsd-checkconf manpage.
* Disabled recvmmsg and sendmmsg usage by default because kernel
versions have implementation issues: ipv6 ignored, security issues.
* Detect libevent2 install automatically by configure, and use
event2 header files if necessary.
* Fix #551: change Regent to Copyright holder in the LICENSE,
to match the definition on opensource.org for the BSD License.
* Fix #552: zonefile loads on nsd-control reconfig when the name
of the file has changed.
* Fix leak of zone name after zonefile read and fix malloc too
large that would be leaked in the radix tree.
* Fix from 3.2: make SOA RDATA comparisons in XFR more lenient (only
check serial).
* Fix that NSD will delete and recreate not-clean-closed databases.
|
|
|
|
|
|
libnice 0.1.5 (2014-03-06)
==========================
API: nice_agent_recv() and nice_agent_recv_nonblocking() as an alternative to
the nice_agent_attach_recv()
API: nice_agent_recv_messages() and nice_agent_recv_messages_nonblocking() to
receive multiple messages at the same time
API: nice_agent_get_io_stream() to get a GIOStream in reliable mode
API: nice_agent_get_selected_socket() to extract the selected GSocket
Import Google's newer PseudoTCP code including window scaling
Improve PseudoTCP performance
Improve performance
Build fixes
|
|
|
|
These are now handled dynamically if INIT_SYSTEM is set to "rc.d", or
ignored otherwise.
|
|
* update gtk2 gem to 2.2.2
* fixes startup with broken cache
* fixes open embeded URL longer than 140 characters
|
|
0MQ version 4.0.4 stable, released on 2014/03/10
================================================
Bug Fixes
---------
* Fixed #909; out of tree build issue on Linux.
* Fixed #888; hangs on terminate when inproc connected but never bound.
* Fixed #868; assertion failure at ip.cpp:137 when using port scanner.
* Fixed #818; fix timestamp counter on s390/s390x.
* Fixed #817; only export zmq_* symbols.
* Fixed #797; fixed setting TCP keepalive on Windows.
* Fixed #775; compile error on Windows.
* Fixed #763; when talking to a ZMTP v1 peer (libzmq 2.2), a socket would
send an extra identity frame at the start of the connection.
* Fixed LIBZMQ-576 - Crash closing a socket after zmq_msg_send returns
EAGAIN (reverts LIBZMQ-497)
* Fixed LIBZMQ-584; subscription filters getting lost on reconnection.
|
|
Bugfixes in 3.2.4
=================
server
------
bug fixes
26014 prevent 541 internal error removing a nonexistent binding from a topic
exchange (since 3.2.0)
25762 fix failure to delete virtual host if a queue in the virtual host is
deleted concurrently (since 1.0.0)
26013 ensure connection.blocked is sent in all circumstances it should be
(since 3.2.0)
26006, 26038 ensure autoheal does not hang if a node is manually stopped
during autoheal (since 3.1.0)
26000 prevent crash of mirrored supervisor in some circumstances after a
network partition is healed (since 2.6.0)
25972 fix syntax error in example configuration file (since 3.2.0)
management plugin
-----------------
bug fixes
24476 prevent statistics database from vanishing after a network partition is
healed (since 2.8.3)
25983 prevent "node statistics not available" error when mochiweb is
configured with an explicit list of SSL ciphers (since 2.6.0)
federation plugin
-----------------
bug fixes
25998 ensure upstreams which are timing out establishing network connections
can be deleted in a timely fashion (since 3.0.0)
shovel plugin
-------------
bug fixes
25996 ensure shovels which are timing out establishing network connections
do not block broker shutdown (since 2.3.0)
STOMP plugin
------------
bug fixes
26028 prevent potential deadlocks during shutdown (since 2.3.0)
MQTT plugin
-----------
bug fixes
25982 ensure messages published with QOS=1 are persistent (since 3.1.0)
Erlang client
-------------
bug fixes
26041 prevent rare, fake "541 internal error" reported client-side when
shutting down connections (since 2.1.1)
.NET client
-----------
bug fixes
26016 ensure SSL connection establishment times out if necessary (since 1.0.0)
26047 ensure IModel.ConfirmSelect() is idempotent (since 2.3.0)
Bugfixes in 3.2.3
=================
server
------
bug fixes
25936 stem leak when queues with active consumers terminate (since 3.2.0)
25928 fix cosmetic error when sending connection.close-ok after client
already closed the connection (since 1.0.0)
25965 limit messages to ~2GB to prevent "Absurdly large distribution output
data buffer" VM crash (since 1.0.0)
24927 avoid broker being overwhelmed while logging benign messages starting with
"Discarding messages" (since 1.0.0)
25952 prevent "Absurdly large distribution output data buffer" VM crash when
sending many/large messages to a mirrored queue (since 2.6.0)
25925 remove extraneous service parameters when installing on windows
(since 1.5.0)
25929 prevent error being logged when connection is closed while it is still
being opened (since 1.0.0)
federation plugin
-----------------
bug fixes
25945 ensure federated queues correctly stop federating messages when channels
close or crash without cancellation from consumers (since 3.2.0)
25971 prevent crash of federated mirrored queues on deletion (since 3.2.0)
25956 prevent federation of the queues used internally by federated exchanges
(since 3.2.0)
25949 prevent unnecessary CPU use when ACKs are not in use (since 2.6.0)
shovel plugin
-----------------
bug fixes
25934 remove ordering constraint on configuration items (since 2.0.0)
25949 prevent unnecessary CPU use when ACKs are not in use (since 2.0.0)
LDAP plugin
-----------
bug fixes
25914 fix use of dn_lookup_attribute configuration on OpenLDAP (since 2.8.0)
|
|
---------------------
Bugfixes:
* Failure when expanding wildcard leading to apex and having DNSKEY records
* Failure for query to wildcard without wildcard expansion
* Bad cleanup when loading a faulty entry from a journal
* Zone file $ORIGIN and configuration comparison is case-insensitive
Features:
* Config "include" statement supports directory and includes all files within
|
|
Changelog (from History.txt)
=== 1.0.8 2014-01-28
* fix for rainbow gem v2.0.x
* fix for twitter gem v5.6.x
=== 1.0.7 2014-01-25
* Add --delete option
* thank you for contributing @janusadm
|
|
Changelog (from CHANGELOG.md)
5.7.1
-----
* [Only warn if entities are not included](https://github.com/sferik/twitter/commit/82ed19e69c03ccaccc366744421b3bb3ee444625) ([@matthewrudy](https://twitter.com/matthewrudy))
* [Fix typos in documentation](https://github.com/sferik/twitter/pull/531) ([@attilaolah](https://twitter.com/attilaolah))
5.7.0
-----
* [Remove `Twitter::Base.from_response` method](https://github.com/sferik/twitter/commit/6f9a352adaa5eee0611fa8d2e45fc7349b5cecae)
* [Remove `Twitter::REST::API` namespace](https://github.com/sferik/twitter/commit/f9c4e8214bfe0e4cbd13681a6454956f2c6ac21b)
* [Remove `descendants_tracker`](https://github.com/sferik/twitter/commit/4cbcb0fc58c55b84b642bc7c66085bb581e9b20a)
* [Remove unused `HTTP_STATUS_CODE` constants](https://github.com/sferik/twitter/commit/b45d89bc96f11079b31976f14ade4f89d50b4dc9)
* [Remove `Twitter::Error#cause`](https://github.com/sferik/twitter/commit/a5748b925aa3220e7388311bd0228a62d45d09a4)
5.6.0
-----
* [Replace custom `Twitter::NullObject` with `Naught`](https://github.com/sferik/twitter/commit/bc3990e3588f889569f1c92e465c329c508ce32e)
* [Use `URI` and `CGI` to convert query string into a hash](https://github.com/sferik/twitter/commit/6dd9d97aaef3917868b870e01896ab937cbacfbb)
* [Increase default timeout values](https://github.com/sferik/twitter/commit/350536926d1c2c0656fdc79948c5f543e306e14e)
* [Add `Twitter::Error::RequestTimeout`](https://github.com/sferik/twitter/commit/3179537af41b2e2f85c0bc74be799faea0817e48)
* [Remove unused methods `#put` and `#delete` in `Twitter::REST::Client`](https://github.com/sferik/twitter/commit/eaaf234b84a6e2e1f7695f73befaf11f30664f4a)
* [Deprecate `retweeters_count` in favor of `retweet_count`](https://github.com/sferik/twitter/commit/ea39bd013364dc24f02e9a1eb25b4b48b99a5480)
* [Deprecate `favorites_count`/`favoriters_count` in favor of `favorite_count`](https://github.com/sferik/twitter/commit/ea39bd013364dc24f02e9a1eb25b4b48b99a5480)
* [Deprecate `to_hash`/`to_hsh` in favor of `to_h` or `attrs`](https://github.com/sferik/twitter/commit/63e2cdd693aece2912564988d06786cd23a2cad5)
* [Deprecate `oauth_token` and `oauth_token_secret` accessors](https://github.com/sferik/twitter/commit/ac246717557ea02565a1d93b3f9a975e7fd39874)
|
|
- Bug Fixes
The following vulnerabilities have been fixed.
* wnpa-sec-2014-01
The NFS dissector could crash. Discovered by Moshe Kaplan.
(Bug 9672)
Versions affected: 1.10.0 to 1.10.5, 1.8.0 to 1.8.12
CVE-2014-2281
* wnpa-sec-2014-02
The M3UA dissector could crash. Discovered by Laurent
Butti. (Bug 9699)
Versions affected: 1.10.0 to 1.10.5
CVE-2014-2282
* wnpa-sec-2014-03
The RLC dissector could crash. (Bug 9730)
Versions affected: 1.10.0 to 1.10.5, 1.8.0 to 1.8.12
CVE-2014-2283
* wnpa-sec-2014-04
The MPEG file parser could overflow a buffer. Discovered by
Wesley Neelen. (Bug 9843)
Versions affected: 1.10.0 to 1.10.5, 1.8.0 to 1.8.12
CVE-2014-2299
The following bugs have been fixed:
* Customized OUI is not recognized correctly during
dissection. (Bug 9122)
* Properly decode CAPWAP Data Keep-Alives. (Bug 9165)
* Build failure with GTK 3.10 - GTK developers have gone
insane. (Bug 9340)
* SIGSEGV/SIGABRT during free of TvbRange using a chained
dissector in lua. (Bug 9483)
* MPLS dissector no longer registers itself in "ppp.protocol"
table. (Bug 9492)
* Tshark doesn't display the longer data fields (mbtcp).
(Bug 9572)
* DMX-CHAN disector does not clear strbuf between rows.
(Bug 9598)
* Dissector bug, protocol SDP: proto.c:4214: failed assertion
"length >= 0". (Bug 9633)
* False error: capture file appears to be damaged or corrupt.
(Bug 9634)
* SMPP field source_telematics_id field length different from
spec. (Bug 9649)
* Lua: bitop library is missing in Lua 5.2. (Bug 9720)
* GTPv1-C / MM Context / Authentication quintuplet / RAND is
not correct. (Bug 9722)
* Lua: ProtoField.new() is buggy. (Bug 9725)
* Lua: ProtoField.bool() VALUESTRING argument is not optional
but was supposed to be. (Bug 9728)
* Problem with CAPWAP Wireshark Dissector. (Bug 9752)
* nas-eps dissector: CS Service notification dissection stops
after Paging identity IE. (Bug 9789)
- New and Updated Features
IPv4 checksum verfification is now disabled by default.
- Updated Protocol Support
AppleTalk, CAPWAP, DMX-CHAN, DSI, DVB-CI, ESS, GTPv1, IEEE
802a, M3UA, Modbus/TCP, NAS-EPS, NFS, OpenSafety, SDP, and SMPP
- New and Updated Capture File Support
libpcap, MPEG, and pcap-ng
|
|
|
|
This change is the result of a large sweep triggered by the new
Tcl which has const'ified many interfaces -- this follows suit with
many corresponding changes internally in scotty => lots of new
patches.
Also, change so as to not access interp->errorLine and
interp->result directly, use the accessor functions instead,
and turn off the corresponding compatibility defines.
The old patch files have been renamed and expanded, the new
scheme for naming patch files is used.
Only minimal functionality testing is done, but what has been
done shows that it basically works again.
PKGREVISION bumped.
|
|
|
|
PR pkg/48590 by Jason White.
|
|
+ Fixed broken build when using --disable-ipv6 configure option
+ Fixed mod_sql "SQLAuthType Backend" MySQL issues
|
|
implicitly depending on builtin libpcap.
|
|
Bump PKGREVISION.
|
|
|
|
Bump PKGREVISION.
|
|
|
|
Changes since previous version in pkgsrc:
======
2.30.0
======
Bugs fixed:
- Fixed #596678, String fixes
Translations:
- Updated ar Translation (Khaled Hosny)
- Updated ast Translation (Xandru Armesto Fernandez)
- Updated bg Translation (Alexander Shopov)
- Updated bn Translation (Jamil Ahmed)
- Updated ca Translation (Gil Forcada)
- Updated cs Translation (Petr Kovar)
- Updated da Translation (Kenneth Nielsen)
- Updated de Translation (Christian.Kirbach)
- Updated el Translation (Kostas Papadimas)
- Updated en_GB Translation (Bruce Cowan, Philip Withnall)
- Updated en@shaw Translation (Thomas Thurman)
- Updated es Translation (Jorge González)
- Updated et Translation (Priit Laes)
- Updated eu Translation (Inaki Larranaga Murgoitio)
- Updated fi Translation (Tommi Vainikainen)
- Updated fr Translation (Claude Paroz)
- Updated gl Translation (Fran Diéguez, Antón Méixome)
- Updated he Translation (Yaron Sharabani)
- Updated hu Translation (Gabor Kelemen)
- Updated it Translation (Luca Ferretti)
- Updated ja Translation (Hideki Yamane (Debian-JP))
- Updated ko Translation (Changwoo Ryu)
- Updated lt Translation (Gintautas Miliauskas)
- Updated lv Translation (Peteris Krisjanis)
- Updated ml Translation (Praveen Arimbrathodiyil)
- Updated ms Translation (Ahmed Noor Kader Mustajir Md Eusoff)
- Updated nb Translation (Kjartan Maraas)
- Updated nl Translation (Wouter Bolsterlee)
- Updated nn Translation (Torstein Adolf Winterseth, Åsmund Skjæveland)
- Updated pa Translation (A S Alam)
- Updated pl Translation (Piotr Drąg)
- Updated pt_BR Translation (Flamarion Jorge)
- Updated pt Translation (Duarte Loreto)
- Updated ro Translation (Lucian Adrian Grijincu)
- Updated ru Translation (Leonid Kanter)
- Updated sk Translation (Roman Mátyus)
- Updated sl Translation (Matej Urbančič)
- Updated sr@latin Translation (Miloš Popović)
- Updated sr Translation (Miloš Popović)
- Updated sv Translation (Daniel Nylander)
- Updated ta Translation (drtvasudevan)
- Updated th Translation (Theppitak Karoonboonyanan)
- Updated uk Translation (Maxim V. Dziumanenko)
- Updated vi Translation (Clytie)
- Updated zh_CN Translation (Tao Wei)
- Updated zh_HK Translation (Chao-Hsiung Liao)
- Updated zh_TW Translation (Chao-Hsiung Liao)
2.28.0
* Updated translations
2.27.92 ("The Fixer")
* Drop gnome-menus dependency (Vincent Untz)
2.27.1
* Fix build with GCC 4.40
* Generate ChangeLog from git-log
|
|
14.0.1
======
Bugfix release
- Update bundled libzmq to current (4.0.3).
- Fix bug in :meth:`.Context.destroy` with no open sockets.
- Threadsafety fixes in the garbage collector.
- Python 3 fixes in :mod:`zmq.ssh`.
14.0.0
======
* Update bundled libzmq to current (4.0.1).
* Backends are now implemented in ``zmq.backend`` instead of ``zmq.core``.
This has no effect on public APIs.
* Various build improvements for Cython and CFFI backends (PyPy compiles at build time).
* Various GIL-related performance improvements - the GIL is no longer touched from a zmq IO thread.
* Adding a constant should now be a bit easier - only zmq/sugar/constant_names should need updating,
all other constant-related files should be automatically updated by ``setup.py constants``.
* add support for latest libzmq-4.0.1
(includes ZMQ_CURVE security and socket event monitoring).
New stuff
---------
- :meth:`.Socket.monitor`
- :meth:`.Socket.get_monitor_socket`
- :func:`zmq.curve_keypair`
- :mod:`zmq.utils.monitor`
- :mod:`zmq.utils.z85`
|
|
0MQ version 4.0.3 stable, released on 2013/11/24
================================================
Bug Fixes
---------
* Fixed test_many_sockets case, which failed when process socket limit
was 1024.
0MQ version 4.0.2 stable, released on 2013/11/24
================================================
Bug Fixes
---------
* Fixed LIBZMQ-583 - improved low-res timer for Windows
* Fixed LIBZMQ-578 - z85_decode was extremely slow
* Fixed LIBZMQ-577 - fault in man pages.
* Fixed LIBZMQ-574 - assertion failure when ran out of system file handles
* Fixed LIBZMQ-571 - test_stream failing in some cases
* Fixed LIBZMQ-569 - Socket server crashes with random client data and when
talking to 2.2 versions
* Fixed LIBZMQ-39 - Bad file descriptor during shutdown
* Pulled expected failing test_linger.cpp from release
* Reduced pause time in tests to allow "make check" to run faster
0MQ version 4.0.1 stable, released on 2013/10/08
================================================
Changes
-------
* Updated CURVE mechanism to track revised RFC 27 (INITIATE vouch).
The INITIATE command vouch box is Box[C',S](C->S') instead of
Box[C'](C->S), to reduce the risk of client impersonation, as per
https://codesinchaos.wordpress.com/2012/09/09/curvecp-1/.
* Fixed LIBZMQ-567, adding abstract namespaces for IPC sockets on Linux.
Converts an initial strudel or "at sign" (@) in the Unix socket path to
a NULL character ('\0') indicating that the socket uses the abstract
namespace instead of the filesystem namespace. For instance, binding a
socket to 'ipc://@/tmp/tester' will not create a file associated with
the socket whereas binding to 'ipc:///tmp/tester' will create the file
/tmp/tester. See issue 567 for more information.
* Added zmq_z85_encode and zmq_z85_decode to core libzmq API.
* Added zmq_curve_keypair to core libzmq API.
* Bumped library ABI version to 4:0:1.
Bug fixes
---------
* Fixed some build/test errors on OS/X + Clang++.
* Fixed LIBZMQ-565, typo in code.
* Fixed LIBZMQ-566, dealer-to-router connections sometimes failing.
* Fixed builds for AIX, MSVC 2008, OS/X with clang++, Solaris.
* Improved CURVE handshake error handling.
0MQ version 4.0.0 (RC1), released on 2013/09/20
===============================================
Major changes
-------------
* New wire level protocol, ZMTP/3.0, see http://rfc.zeromq.org/spec:23.
Does not yet implement the SUBSCRIBE, CANCEL, PING, and PONG commands.
* New security framework, from plain user+password to strong encryption,
see section below. See http://hintjens.com/blog:49 for a tutorial.
* New ZMQ_STREAM socket type for working as a TCP client or server. See:
tests/test_stream.cpp.
Improvements
------------
* You can now connect to an inproc:// endpoint that does not already
exist. This means inproc:// no longer needs careful set-up, but it may
break code that relied on the old behaviour. See:
tests/test_inproc_connect.cpp.
* Libzmq now checks socket types at connection time, so that trying to
connect a 'wrong' socket type will fail.
* New zmq_ctx_shutdown API method will shutdown a context and send ETERM
to blocking calls, without blocking. Use zmq_ctx_term to finalise the
process.
* The regression test suite has been significantly extended and improved.
* Contexts can now be terminated in forked child processes. See:
tests/test_fork.cpp.
* zmq_disconnect now respects the linger setting on sockets.
* New zmq_send_const API method to send constant data (without copying).
See: tests/test_inproc_connect.cpp.
* Added CMake support for static libraries.
* Added test cases for socket semantics as defined in RFCs 28, 29, 30, 31.
See: tests/test_spec_*.cpp.
* New socket option, ZMQ_PROBE_ROUTER triggers an empty message on connect.
See: tests/test_probe_router.cpp.
* New socket option, ZMQ_REQ_CORRELATE allows for correlation of replies
from a REP socket. See: tests/test_req_correlate.cpp.
* New socket option, ZMQ_REQ_RELAXED, lets you disable the state machine
on a REQ socket, so you can send multiple requests without waiting for
replies, and without getting an EFSM error. See:
tests/test_req_relaxed.cpp.
* New socket option, ZMQ_CONFLATE restricts the outgoing and incoming
socket buffers to a single message. See: tests/test_conflate.cpp.
Deprecated Options
------------------
* ZMQ_IPV4ONLY deprecated and renamed to ZMQ_IPV6 so that options are
consistently "off" by default.
* ZMQ_DELAY_ATTACH_ON_CONNECT deprecated, and renamed to ZMQ_IMMEDIATE.
See: tests/test_immediate.cpp.
Security Framework
------------------
Based on new ZMTP wire level protocol that negotiates a security
"mechanism" between client and server before exchanging any other data.
Security mechanisms are extensible. ZMTP defines three by default:
* NULL - classic ZeroMQ, with no authentication. See
http://rfc.zeromq.org/spec:23.
* PLAIN - plain-text username + password authentication. See
http://rfc.zeromq.org/spec:24.
* CURVE - secure authentication and encryption based on elliptic curve
cryptography, using the Curve25519 algorithm from Daniel Bernstein and
based on CurveCP's security handshake. See http://rfc.zeromq.org/spec:25,
http://rfc.zeromq.org/spec:26, and http://curvecp.org.
Authentication is done by pluggable "authenticators" that connect to libzmq
over an inproc endpoint, see http://rfc.zeromq.org/spec:27.
Socket options to configure PLAIN security on client or server:
* ZMQ_PLAIN_SERVER, ZMQ_PLAIN_USERNAME, ZMQ_PLAIN_PASSWORD. See
tests/test_security_plain.
Socket options to configure CURVE security on client or server:
* ZMQ_CURVE_SERVER, ZMQ_CURVE_PUBLICKEY, ZMQ_CURVE_SECRETKEY,
ZMQ_CURVE_SERVERKEY. See tests/test_security_curve.cpp.
Socket options to configure "domain" for ZAP handler:
* ZMQ_ZAP_DOMAIN, see tests/test_security_null.cpp.
Support for encoding/decoding CURVE binary keys to ASCII:
* zmq_z85_encode, zmq_z85_decode.
Other issues addressed in this release
--------------------------------------
* LIBZMQ-525 Multipart upstreaming from XSUB to XPUB
|
|
|
|
Also contains the inode check expansion for NetBSD from PR 48575
Upstream changelog:
Changes for 4.3.15 - 4.3.17
===========================
No significant changes.
Changes for 4.3.14
==================
In previous Xymon versions, a client-only configuration (i.e. one
configured with "./configure --client") would place the client
files in a "client" subdirectory below the directory specified
during configuration. This is the same directory layout as a server
installation, where the server and client parts of Xymon are
in separate subdirectories.
In 4.3.14, the default has changed so a client-only installation
now installs in the directory given during the configure-step.
The "/client" has been eliminated, so if you are upgrading an
existing client you must either move the old client installation
one level up from the "client/" directory, or change the Makefile
generated by "configure --client" and add "/client" to the
XYMONTOPDIR setting.
The SNI support added in 4.3.13 causes problems with some older
webservers, whose SSL implementation cannot handshake correctly
when SNI is used. The failed handshake causes Xymon to report
the site as down. In 4.3.14, the default is changed so SNI is
disabled. A new "--sni" option was added to xymonnet to control the
default setting, and two new tags "sni" and "nosni" can be used in
hosts.cfg to control SNI for each host that is tested.
Changes for 4.3.13
==================
This is mostly a bugfix release. Apart from simple bugs (see
the Changes file), there are some enhancements:
Alerts sent via e-mail have <CR><NL> line-endings converted
to plain <NL>, since the carriage-return characters would
cause some mailers to send alerts as a (binary) attachment
to an empty mail message.
https-URL's can be forced to use TLS only, by using
"httpst://..." similar to how SSLv2 and SSLv3 can be chosen.
SSL connections (e.g. for https URL's) now use the TLS
"Server Name Indication" (SNI) if your OpenSSL library
supports it. This allows testing of systems that have
multiple SSL websites located on the same physical IP+port
(i.e. virtual name-based hosts).
Changes for 4.3.12
==================
NOTE: This release includes a bugfix for a security issue
in the xymond_history and xymond_rrd modules. A "drophost"
command sent to the xymond port (default: 1984) from an IP
listed in the --admin-senders access control list can be
used to delete files owned by the user running the xymond
daemon. This is allowed by default, so it is highly recommended
to install this update.
Changes for 4.3.2 - 4.3.11
==========================
See the Changes file for a list of significant changes.
These releases are mostly to fix bugs.
NOTE: Some configuration parameters have changed, so you must
regenerate the top-level Makefile by running the "configure"
script before compiling the new version.
The inode-check introduced in 4.3.8 and 4.3.10 requires
that you update both the Xymon server installation and the
Xymon client on the systems where you want to monitor how
many inodes are being used.
|
|
|
|
|
|
|
|
0.4 (Jan 2014)
- bugfix: fix a bug in new list code introduced in 0.3
- portability: use $(LD)/$(LDFLAGS)/$(LIBS)
0.3 (Jan 2014)
- bugfix: refactor double-linked list implementation in udns_resolver.c
(internal to the library) to be more strict-aliasing-friendly,
because old code were miscompiled by gcc.
- bugfix: forgotten strdup() in rblcheck
|
|
|
|
|
|
are not both defined
----------------------------------------------------------------------
|
|
|
|
'sin_len'" on SunOS
|
|
|
|
|
|
|
|
Upstream changes:
1.11 February 21, 2014
! #93080 bug when SOAP::Lite is trying to parse WSDL definition by https with custom settings
1.10 January 23, 2014
! Fixed uninitialized warning when Context-Length is not set [github/dbeusee]
! avoid string eval in as_base64 [github/otrosien]
! #88915 warnings issued with using importing with +trace
1.09 January 14, 2013
! #92025 tighten multipart content-type matching [dmn@debian.org]
|
|
|
|
|
|
NetBSD platforms.
|
|
pkgtools/rc.subr works perfectly fine on other OSes. We're not doing this
anywhere else either...
|
|
Fixes issues where a newer GCC has been chosen by the user but the GCC_REQD
was forcing an older (and broken) one to be pulled regardless.
|
|
is aimed at.
|
