Age | Commit message (Collapse) | Author | Files | Lines |
|
Upstream changes:
version 3.27 (2015-05-05)
[ENHANCEMENTS]
* Cisco Aironet PSU information
* Only log adding mibdirs at debug level 2
[BUG FIXES]
* [#221] Drop Cisco Voice VLAN 4096
version 3.26 (2015-03-07)
[ENHANCEMENTS]
* Add fan and psu reporting to Layer3::Dell
* Include Voice VLANs in (tagged) VLAN Membership on Cisco devices
[BUG FIXES]
* Fix typo in MRO::print_superclasses
version 3.25 (2015-02-25)
[ENHANCEMENTS]
* Add new model name mappings for to Layer2::HP
version 3.24 (2015-02-04)
[ENHANCEMENTS]
* Support RSTP and ieee8021d STP operating modes in RapidCity
[BUG FIXES]
* Fix single instance leafs defined in %FUNCS to behave like table leafs
* Fix incorrect FDB ID to VLAN ID mapping in Bridge and L3:Enterasys
version 3.23 (2014-12-09)
[ENHANCEMENTS]
* Update MIB used in L1::Asante
* Enhanced STP support for L3::Extreme
[BUG FIXES]
* Fix Cisco VLAN membership issue introduced in 3.22 related to capturing
port VLANs on Cisco interfaces which are configured for trunking but
are not in operational trunking mode
version 3.22 (2014-12-02)
[NEW FEATURES]
* Support obtaining FDB in Avaya SPBM edge deployments in L2::Baystack
NOTE: This requires a RAPID-CITY MIB with the rcBridgeSpbmMacTable
* Support for Fortinet devices in new class L3::Fortinet
[ENHANCEMENTS]
* Include LLDP support in base Layer2 and Layer3 classes. Due to the
widespread adoption of LLDP, this should improve mapping networks
when devices aren't supported in a more specific class.
* No longer ignore interfaces based on name, in base L2/L3/L7 device
classes. For several device classes SNMP::Info will now return tunnel
interfaces and/or loopbacks, if present.
* Use dot1qVlanCurrentTable if available to capture dynamic and static
VLANs, fall back to dot1qVlanStaticTable if not available.
* New method i_vlan_membership_untagged() for VLANs transmitted as
untagged frames.
* Capture Aruba AP hardware and software version when available
* New STP methods to support gathering information from devices running
mutiple STP instances such as PVST and MST
* Enhanced STP support for Avaya and Foundry classes
[BUG FIXES]
* [#64] Misdetection: Wireless APs, add products MIB to L2::3Com
* Use FDB ID to VID mapping if available to determine end station VLAN
rather than assuming they are the same.
* Capture port VLANs on Cisco interfaces which are configured for
trunking but are not in operational trunking mode
* Correct munging of stp_p_port(), i_stp_port(), and stp_root() methods
in Bridge
* In LLDP.pm don't create a variable in a conditional
version 3.20 (2014-09-08)
[NEW FEATURES]
* Override layers in Juniper for routers with switch modules
[BUG FIXES]
* Update MANIFEST to include Ubiquiti files
version 3.19 (2014-08-01)
[NEW FEATURES]
* Support for Ubiquiti Access Points in new class L2::Ubiquiti (begemot)
* Preliminary support for 3Com switches in new class L2::3Com (begemot)
[BUG FIXES]
* Fix Avaya detection lldp_port()
* Silence uninitialized value warning in L3::Cisco
* H3C fixes (begemot)
* Only use L2::ZyXEL_DSLAM for ZyXEL DSL modules
version 3.18 (2014-07-02)
[ENHANCEMENTS]
* Pseudo ENTITY-MIB methods added to L3::Tasman for hardware information
* Capture VPC Keepalive IP addresses in L3::Nexus (jeroenvi)
* L2::Netgear inheritance clean up and removal of unnecessary c_* methods
defined in Info base class
[BUG FIXES]
* Correctly identify device type (class) for instantiated objects which
have overridden layers.
* [#58] Fix inheritance in L3::FWSM and L3::CiscoASA
* [#71] Don't try to match on a false port description in lldp_if
* [#54] Possible bad values returned for cdp_id and lldp_port with some HP
gear (Joel Leonhardt)
version 3.17 (2014-06-23)
[ENHANCEMENTS]
* POD tests are not required for distribution.
version 3.16 (2014-06-23)
[ENHANCEMENTS]
* Add method resolution discovery in SNMP::Info::MRO helper module
* Consolidate CiscoImage class into CiscoStats class
* Clean up inheritance for Cisco classes. With this change
all applicable classes now inherit CiscoAgg, CiscoStpExtensions,
CiscoPortSecurity, CiscoPower, and LLDP classes.
* Remove inheritance of classes the devices do not support in L3::FWSM
and L3::CiscoASA
[BUG FIXES]
* Use CiscoVTP methods to get interface VLAN in L3::Cisco rather than
solely relying on the interface description.
version 3.15 (2014-07-10)
[NEW FEATURES]
* Offline mode and Cache export/priming.
[ENHANCEMENTS]
* Return serial number for Cisco 3850 from entPhysicalSerialNum
[BUG FIXES]
* Cisco SB serial number probably did not work
version 3.14 (2014-06-07)
[ENHANCEMENTS]
* Improvements to Mikrotik module (Alex Z)
* Don't unshift length from broken lldpRemManAddrTable implementations (G. Shtern)
* 802.3ad LAG support in Layer3::H3C
* Add LLDP capabilities to Layer2::HPVC class
[BUG FIXES]
* Return correct VLAN info with qb_fw_table() on Layer2::HP
version 3.13 (2014-03-27)
[ENHANCEMENTS]
* Cisco PAgP support added to LAG method
* HP ProCurve LAG support by inheriting Info::Aggregate class
version 3.12 (2014-02-10)
[ENHANCEMENTS]
* Modify L3::Passport to obtain forwarding table information from
RAPID-CITY if information is not available in either Q-BRIDGE-MIB or
BRIDGE-MIB. Needed for VSP 9000 prior to version 4.x (Tobias Gerlach)
[BUG FIXES]
* [#52] NETSCREEN-IP-ARP-MIB considered harmful
* Foundry/Brocade aggreate port master ifIndex resolved properly
version 3.11 (2014-01-26)
[NEW FEATURES]
* [#31] port-channel (aggregate) support. Aggregate support added in new
agg_ports() method. Inital support added for Arista (ifStack),
Avaya (MLT), Brocade (MST), and Cisco (802.3ad).
[ENHANCEMENTS]
* Use Q-BRIDGE-MIB as default with fallback to BRIDGE-MIB across all
classes for the fw_mac, fw_port, and fw_status methods
* Additional support for Avaya 8800 series in L3::Passport
[BUG FIXES]
* Modify cdp_cap() to handle devices which return space delimited strings
for cdpCacheCapabilities rather than hex strings
* [#51] Netdisco shows broken topology for devices with no alias entry
for primary IP - Collect nsIfMngIp when getting IP interfaces in
L3::Netscreen
* Fix Extreme XOS i_vlan_membership - Revert [28bbe0], fix bug with
untagged being added to @ret twice (Robert Kerr)
* Skip default CPU management addresses on VSP and 8800/8600 series in
L3::Passport to prevent erroneous duplicate addresses
version 3.10 (2013-12-16)
[BUG FIXES]
* Data values of zero are now sent to munge method instead of skipped
version 3.09 (2013-12-15)
[NEW FEATURES]
* [#45] IBM (Blade Network Technologies) Rackswitch support in new class
L3::IBMGbTor
* [] set_i_untagged combines both set_i_vlan and set_i_pvid in one method
* [#41] Riverbed Steelhead support added in new class L3::Steelhead
* New c_cap(), cdp_cap(), and lldp_cap() methods which return a hash of
arrays with each array containing the system capabilities reported as
supported by the remote system via CDP or LLDP.
[ENHANCEMENTS]
* Remove "Switch" from model name in L3::Foundry
* [#49] IOS-XR support, add identification of IOS XR and version in
CiscoStats
* Aruba POE Support
* Aruba utilizes Q-BRIDGE-MIB when available for VLAN information to
better support wired switches
* Add lldp_platform() method which uses lldp_rem_sysdesc() or
lldp_rem_sysname() to provide a clue to type of remote LLDP capable
device.
* [RT#78232] Extend cdpCacheCapabilities to show more CDP bits
[BUG FIXES]
* Modify _xos_i_vlan_membership() in L3::Extreme to only include tagged
ports
* When determining the BSSID in Airespace there is only one hexadecimal
digit available so skip if outside the range of 1-16, 17 is reserved
for 3rd party AP's
* Don't assume entity index 1 is the chassis and has serial in Layer3
* Capture serial number on newer Aruba devices
* munge_bits() correctly unpacks BITS
* Fix for single instance table leafs in test_class_mocked.pl
* Fix power module indexing
version 3.08 (2013-10-22)
[ENHANCEMENTS]
* Rewrite of L3::Aruba, now supports pseudo ENTITY-MIB methods to gather
module information, more interface information for APs, more
wireless information to include client stats, and arpnip information
from wireless clients. WARNING: AP device interfaces are now based on
AP MAC and radio versus BSSID to align with other wireless classes.
* [#64] Add i_speed_admin() to L2::2900 (psychiatric)
* [#66] Support for VSS via CISCO-VIRTUAL-SWITCH-MIB in L3::6500
* [#67] Add the possibility to set speed for Layer3::C4000 (psychiatric)
* [#69] set speed and duplex on Cisco VSS system (psychiatric)
* munge_null() now removes all non-printable control characters
* Support Aironet standalone access points (Layer2::Aironet) running IOS15
* lldp_port() returns port ID instead of port description if the port ID
subtype is "interface name". This improves the ability to correlate
ports by name when a port description is also set.
* Add docs note about make_snmpdata.pl under EXTENDING SNMP::Info
* [#46] Brocade (Foundry) Module Support
* Brocade (Foundry) POE Support
* Support peth_port_power() power supplied by PoE ports in L2::Baystack
* Update test_class.pl utility to allow ignore of snmp.conf and test
summarize more standard class methods
* On EOS, the LLDP port ID is a dot1d port
* Use LLDP in Layer3::Aruba, for switches
* Clean up more model names in L2::Baystack
[BUG FIXES]
* [#68] Fix device_port entries for switches with non-unique
ifDesc (Nic Bernstein)
* Don't try to munge undef values
* [#49] Perl 5.18 UNIVERSAL::can change could cause infinite loop
* Silence warning from uninitialized variable in L3::Passport e_descr()
version 3.07 (2013-10-01)
[ENHANCEMENTS]
* Support for Pica8 switches in L3::Pica8
* Factor out cache/munge code from global/attr methods
[BUG FIXES]
* [#48] Switch duplicate J9624A for J9626A in Layer2/HP (R. Kerr)
* Correct device serial number reporting for Nexus devices
* Override ipAddrTable methods in L3::Nexus as some versions do not
index the table with the IPv4 address in accordance with the MIB
definition.
version 3.05 (2013-08-16)
[ENHANCEMENTS]
* [#47] Add model info on HP 2530 and HP 2920 series
* Add support for Cisco Small Business series
Layer2/CiscoSB class
* Add proper LLDP support to Netgear.pm
* Change $netgear->interfaces() to use ifName rather than ifDescr
as the former is unique per interface while the latter is not.
If ifName is not present, concatenate ifDescr and ifIndex
to achieve a unique value.
* Properly report hardware version, Serial No. and OS Version for
Netgear.
version 3.03 (2013-07-11)
[BUG FIXES]
* Add missing =back to POD (A. Hartmaier)
version 3.02 (2013-07-08)
[ENHANCEMENTS]
* Properly pull os_ver from Netgear GS series switches.
* Support Alcatel devices with layer3 features.
* Identify Cisco Aironet 1140 APs as Layer2::Aironet
* LAN switch support added to Layer3::Aruba class
* [RT#86725] - Identify Cisco Catalyst 3850 as Layer3::C6500 (C. Causer)
version 3.01 (2013-04-13)
[API Changes]
* The methods c_ip(), c_if(), c_port(), c_id(), and c_platform() now
represent common topology methods and will try to return a combined
hash of data from all L2 topology protocols either running on the
device or specified in the method call. The topology specific methods
have been been prefixed with the protocol name in lowercase so that
they can be called directly, sonmp_ip(), cdp_ip(), etc.
* L2::Bay and L2::Foundry have been removed from the distribution. Both
classes were depreciated and all functionality is available through
L2::Baystack and L3::Foundry.
[NEW FEATURES]
* [3160037] - Support _raw suffix on methods to skip munging
* [3185391] - Support for F5 devices in new class L3::F5
* [3323814] - Arp support for Netscreen (David Baldwin)
* [3323821] - Support for Netscreen w/ WLAN (eg SSG5) (David Baldwin)
* [3599277] - Q-BRIDGE Support to collect VLAN in macsuck
* [3033731] - Alcatel-Lucent OmniSwich AMAP Support in new AMAP class
* [3598896] - Lantronix device support (J R Binks)
* [3598337] - Lantronix SLC support
* Support for Cisco ASA in L3::CiscoASA (Kraus/Hartmaier/Bernstein)
* Support for Avaya VSP 9000 series in L3::Passport
* Support for Avaya VSP 7000 series in L2::Baystack
* Support Avaya (Trapeze) Wireless Controllers in new class L2::NWSS2300
* Support Juniper (Trapeze) Wireless Controllers in new class L2::Trapeze
* Support for newer Radware Alteon ADC switches 4408/4416/5412/5224 and
older AWS 2000/3000 series in existing L3::AlteonAD
* Support for H3C & HP A-series in new class L3::H3C
* Support for Citrix Netscaler appliances in new class L7::Netscaler
* New configuration option IgnoreNetSNMPConf will ignore Net-SNMP
configuration files on object initialization
* Two new utilities added in t/util to assist in developing device
support; make_snmpdata.pl gathers SNMP data (snmpwalk) in a format that
can be used with test_class_mocked.pl which mocks an SNMP agent to
enable testing with no network access to a device.
[ENHANCEMENTS]
* UNIVERSAL::can() now works with dynamic methods
* Dynamically generated methods are added to symbol table to avoid
AUTOLOAD on subsequent calls
* L2::Airespace now supports 802.11n client tx rates
* L2::Airespace now reports AP Ethernet MAC as port MAC for radio ports
* CiscoStats improvements to determine os versions, eg IOS XE ver on Sup7L-E
* CiscoStats now reports 'ios-xe' if the device runs IOS XE (used to be 'ios')
* Improved support of XOS based Extreme devices
[BUG FIXES]
* [3564920] - lldp_if gives wrong data for Enterasys
version 2.11 (2012-12-09)
[BUG FIXES]
* Add fall-back for sysDescr on Force10
version 2.10 (2012-12-08)
[NEW FEATURES]
* Support for Force10 devices (W. Bulley)
|
|
Update DEPENDS
Upstream changes:
1.14 March 24, 2015
+ Add header and body tags [@bubi6608]
! Fixed typo in trace logging example [@oschwald]
+ Converted the dist from using ExtUtils::MakeMaker to using Dist::Zilla [@mvuets]
! Cleaned up prereqs [@mvuets]
! Cleaned up author and release tests [@mvuets]
1.13 December 30, 2014
! Fixed undefined value error when using bugzilla's xmlrpc.cgi (bugzilla's API) [dbeusee]
1.12 November 26, 2014
! #100557 Redefined sub in SOAP::Lite::Deserializer::XMLSchema2001
|
|
|
|
IO::SessionData is a supporting module for SOAP::Lite.
|
|
NetBSD's libc and Samba both proide SHA2 function with the same
protoype, but with different private context structures. The
Samba version must not override the libc version, otherwise they
are used when using LDAP/SSL, through libldap/libssl/libcrypto
but libcrtypo expect to use the libc flavor.
Without this fix, Samba cannot connect to a LDAP directory that
has a SHA2-signed certificate. This rather cryptic error is raised
in smbd logs:
error:0D0C5006:asn1 encoding routines:ASN1_item_verify:EVP lib
|
|
|
|
Python 3.3's ipaddress for Python 2.6 and 2.7.
Note that you must pass in unicode objects when constructing from
a character representation!
|
|
Twisted Core 15.2.0 (2015-05-18)
================================
Features
--------
- twisted.internet.process has now been ported to Python 3. (#5987)
- twisted.cred.credentials is now ported to Python 3. (#6176)
- twisted.trial.unittest.TestCase's assertEqual, assertTrue, and
assertFalse methods now pass through the standard library's more
informative failure messages. (#6306)
- The new package twisted.logger provides a new, fully tested, and
feature-rich logging framework. The old module twisted.python.log
is now implemented using the new framework. The new logger HOWTO
documents the new framework. (#6750)
- twisted.python.modules is now ported to Python 3. (#7804)
- twisted.python.filepath.FilePath now supports Unicode (text) paths.
Like the os module, instantiating it with a Unicode path will
return a Unicode-mode FilePath, instantiating with a bytes path
will return a bytes-mode FilePath. (#7805)
- twisted.internet.kqreactor is now ported to Python 3 (#7823)
- twisted.internet.endpoints.ProcessEndpoint is now ported to Python
3. (#7824)
- twisted.python.filepath.FilePath now has asBytesMode and asTextMode
methods which return a FilePath in the requested mode. (#7830)
- twisted.python.components.proxyForInterface now creates method
proxies that can be used with functools.wraps. (#7832)
- The tls optional dependency will now also install the idna package
to validate idna2008 names. (#7853)
Bugfixes
--------
- Don't raise an exception if `DefaultLogObserver.emit()` gets an
event with a message that raises when `repr()` is called on it.
Specifically: use `textFromEventDict()` instead of a separate (and
inferior) message rendering implementation. (#6569)
- twisted.cred.credentials.DigestedCredentials incorrectly handled
md5-sess hashing according to the RFC, which has now been fixed.
(#7835)
- Fixed an issue with twisted.internet.task.LoopingCall.withCount
where sometimes the passed callable would be invoked with "0" when
we got close to tricky floating point boundary conditions. (#7836)
- twisted.internet.defer now properly works with the new logging
system. (#7851)
- Change `messages` key to `log_io` for events generated by
`LoggingFile`. (#7852)
- twisted.logger had literal characters in docstrings that are now
quoted. (#7854)
- twisted.logger now correctly formats a log event with a key named
`message` when passed to a legacy log observer. (#7855)
- twisted.internet.endpoints.HostnameEndpoint now uses getaddrinfo
properly on Python 3.4 and above. (#7886)
Improved Documentation
----------------------
- Fix a typo in narrative documentation for logger (#7875)
Deprecations and Removals
-------------------------
- tkunzip and tapconvert in twisted.scripts were deprecated in 11.0
and 12.1 respectively, and are now removed. (#6747)
- twisted.protocols.gps is deprecated in preference to
twisted.positioning. (#6810)
- twisted.scripts.tap2deb and twisted.scripts.tap2rpm are now
deprecated. (#7682)
- twisted.trial.reporter.TestResult and
twisted.trial.reporter.Reporter contained deprecated methods (since
8.0) which have now been removed. (#7815)
Other
-----
- #6027, #7287, #7701, #7727, #7758, #7776, #7786, #7812, #7819,
#7831, #7838, #7865, #7866, #7869, #7872, #7877, #7878, #7885
Twisted Conch 15.2.0 (2015-05-18)
=================================
Features
--------
- twisted.conch.ssh.forwarding now supports local->remote forwarding
of IPv6 (#7751)
Twisted Mail 15.2.0 (2015-05-18)
================================
Features
--------
- twisted.mail.smtp.sendmail now uses ESMTP. It will
opportunistically enable encryption and allow the use of
authentication. (#7257)
Twisted Web 15.2.0 (2015-05-18)
===============================
Features
--------
- twisted.web.static is now ported to Python 3. (#6177)
- twisted.web.server.Site accepts requestFactory as constructor
argument. (#7016)
Deprecations and Removals
-------------------------
- twisted.web.util had some HTML generation functions deprecated
since 12.1 that have now been removed. (#7828)
Other
-----
- #6927, #7797, #7802, #7846
Twisted Words 15.2.0 (2015-05-18)
=================================
Bugfixes
--------
- The resumeOffset argument to
twisted.words.protocol.irc.DccFileReceive now works as it is
documented. (#7775)
|
|
|
|
This contains various bugfixes (hangs, excessive logging) related to SSL
protocol use.
There is no mention in release notes but please be advised that the client
appears to refuse to talk to servers running old versions due to protocol
incompatibility.
|
|
Pkgsrc changes: adapt PLIST; the healtcheck script moved
Upstream changes:
This release is a bug fix "mostly" release, back porting fixes
performed in master.
* Change: install healthcheck in bin
* Feature: Allow single line flow route requested by: Pavel Odintsov
* Feature: show route (extensive) can take a neighbor as parameter
requested by: jtkdpu
* Fix: Do shutdown when waiting for a new connection to a peer
* Fix: Bad ASN enconding when ASN4 is not negotiated reported by:
Orangefish on github
* Fix: Shutdown when waiting for a new outgoing connection to establish
* Fix: JSON counter reported by:
* Fix: JSON flow printing for source and destination
* Fix: Do not always locate exabgp.env reported by: Florian Obser
* Fix: Correctly drop root privileges reported by: Florian Obser
* Fix: validation of flow routes
* Fix: Python differences between Unix version breaking process forking
* Fix: Allow = with flowspec singleton reported by: Pavel Odintsov
* Fix: selfcheck feature
* Fix: do not refuse to parse multiple MP attributes in an update
* Fix: possible bug with attribute information due to caching
|
|
is used. Bump PKGREVISION.
|
|
|
|
|
|
- Fix: JSON output syntax during first day of newly created databases
(pull request by Stefan Merettig)
- Fix: field padding when using UTF-8 locale
- Add optional mode parameter to --json and --xml for limiting the output
to only selected information
1.13 / 18-Jan-2015
- Fix: getgroup() test in Debian GNU/kFreeBSD (patch by Felix Geyer)
- Fix: struct if_data usage after freeifaddrs() call in BSD
- Dynamic unit selection in hourly output instead of being fixed to KiB
- New options in image output (vnstati)
* -nl / --nolegend for hiding the rx/tx legend
* --altdate for using alternative date and time text location
* --headertext for using custom text string in image header section
- Add legend to hourly output image
- Add option for content alignment and page background color to vnstat.cgi
- Document keyword value ranges in configuration file man page
- Import Makefile improvements from OpenBSD
(pull requests by Jasper Lievisse Adriaanse)
- Automatic interface bandwidth detection, BandwidthDetection in config,
default fallback value MaxBandwidth changed from 100 to 1000
- JSON output (--json), vnstat-json.cgi and vnstat-json.php examples
provided in the 'examples' directory
- Drop support for over 10 year old database formats (versions 1.0 - 1.2)
1.12 / 30-Aug-2014
- Fix: Memory allocation when zero interfaces are available, also lo needed
to be missing in order to trigger this leak
- Fix: Rebuild total indexing (thanks to William Epp for reporting this)
- Fix: Some error situations could leave database file open until the end
of command execution
- Fix: Live traffic meter occasionally showing higher minimum than average
in end statistics (Debian Bug #687812)
- Fix: Setting locale when none is specified in config (Debian Bug #606397)
- Fix: Cppcheck findings (may fix Debian Bug #692330)
- Improve traffic meter output accuracy
- Add tests and debug compilation target
- Remove use of -D parameter in Makefile install commands in order to
improve cross-compilation support
- Set CFLAGS in Makefiles only when not already defined
- Add support for database import from text file (--importdb)
(based on patch by Tilmann Bubeck)
- Rename --dumpdb to --exportdb
- Add example systemd service file
- Add example launchd plist file for OS X
- Use ISO YYYY-MM-DD date format timestamps if logfile is used
- Improve daemon startup prints
- Add parameters for changing daemon process user and group
- Add example upstart job configuration file (thanks to Cameron Norman)
- Create database, pid and log dirs during daemon startup if necessary
- Update ownership of database, log and pid files if needed during daemon
startup if started as root and configured to change process user and group
- Remove cron update related example files and documentation, the cron
update method should be considered as deprecated
- --create parameter for database creation
|
|
Changes in version 0.2.6.8 - 2015-05-21
Tor 0.2.6.8 fixes a bit of dodgy code in parsing INTRODUCE2 cells, and
fixes an authority-side bug in assigning the HSDir flag. All directory
authorities should upgrade.
o Major bugfixes (hidden services, backport from 0.2.7.1-alpha):
- Revert commit that made directory authorities assign the HSDir
flag to relay without a DirPort; this was bad because such relays
can't handle BEGIN_DIR cells. Fixes bug 15850; bugfix
on tor-0.2.6.3-alpha.
o Minor bugfixes (hidden service, backport from 0.2.7.1-alpha):
- Fix an out-of-bounds read when parsing invalid INTRODUCE2 cells on
a client authorized hidden service. Fixes bug 15823; bugfix
on 0.2.1.6-alpha.
o Minor features (geoip):
- Update geoip to the April 8 2015 Maxmind GeoLite2 Country database.
- Update geoip6 to the April 8 2015 Maxmind GeoLite2
Country database.
Changes in version 0.2.6.7 - 2015-04-06
Tor 0.2.6.7 fixes two security issues that could be used by an
attacker to crash hidden services, or crash clients visiting hidden
services. Hidden services should upgrade as soon as possible; clients
should upgrade whenever packages become available.
This release also contains two simple improvements to make hidden
services a bit less vulnerable to denial-of-service attacks.
o Major bugfixes (security, hidden service):
- Fix an issue that would allow a malicious client to trigger an
assertion failure and halt a hidden service. Fixes bug 15600;
bugfix on 0.2.1.6-alpha. Reported by "disgleirio".
- Fix a bug that could cause a client to crash with an assertion
failure when parsing a malformed hidden service descriptor. Fixes
bug 15601; bugfix on 0.2.1.5-alpha. Found by "DonnchaC".
o Minor features (DoS-resistance, hidden service):
- Introduction points no longer allow multiple INTRODUCE1 cells to
arrive on the same circuit. This should make it more expensive for
attackers to overwhelm hidden services with introductions.
Resolves ticket 15515.
- Decrease the amount of reattempts that a hidden service performs
when its rendezvous circuits fail. This reduces the computational
cost for running a hidden service under heavy load. Resolves
ticket 11447.
|
|
- Add TEST_TARGET= check, but still all the numbers are zero.
(upstream)
- Update to 0.7.15
----------------
0.7.15 [2015-05-21 08:45:55 +0200]:
- [b6371c9f6664] lib: don't use priority with constructor (Vincent Bernat)
- [441d53f9ae8e] redhat: don't build with JSON by default (Vincent Bernat)
- [f42b82148976] build: only uses -pie when linking programs (Vincent Bernat)
- [84942a4aeb58] build: when checking for additional flags, be fatal on errors (Vincent Bernat)
- [1cce9f1a07c7] lldp: do appropriate cleanup when unable to allocate memory (Vincent Bernat)
- [151ed0cd9708] travis: don't install libtool/autoconf/automake (Vincent Bernat)
- [a53e59f264aa] tests: document the suppression file for valgrind (Vincent Bernat)
- [3db3d0633eee] build: don't use -Wl,-pie (Vincent Bernat)
- [2216fdf1ef0f] redhat: fix dates in .spec (Vincent Bernat)
- [f4a0a3fc7b19] build: require json-c >= 0.10 (Vincent Bernat)
- [36d72b11b57f] redhat: fix a typo in conditional JSON support (Vincent Bernat)
- [5592bec999ab] redhat: provide a simpler buildroot (Vincent Bernat)
- [b896513bc25e] release: prepare new version (Vincent Bernat)
- [39a39abf7c9c] lldpcli: fix another memory leak when querying statistics (Vincent Bernat)
- [d68bcbe9653a] lldpcli: fix a memory leak when querying custom TLVs (Vincent Bernat)
- [74d82c9dfac6] build: rename valgrind suppression file to match the right tool (Vincent Bernat)
- [38d74e8a04e1] ctl: don't use C99 designated initializer for structs to travel on a socket (Vincent Bernat)
- [389ac8bd97cd] tests: provide a complete test file for lldpcli (Vincent Bernat)
- [a6509ccc4ea6] lib: use ssize_t to store result from write() (Vincent Bernat)
- [26498cf46f10] doc: fix example of "configure dot3 power" command (Vincent Bernat)
- [120c071a0365] doc: fix example of "configure med location address" command (Vincent Bernat)
- [4edc4960671f] doc: fix documentation of "configure lldp portidsubtype" (Vincent Bernat)
- [a52e464f4582] tests: remove old reference to ifdump.txt (Vincent Bernat)
- [24133f559158] doc: add an entry for setting custom TLV in lldpcli manual page (Vincent Bernat)
- [d0e76b5f6e42] doc: add a NEWS entry for custom/unknown TLV (Vincent Bernat)
- [11f906138450] Merge pull request #109 from commodo/add-custom-tlvs (Vincent Bernat)
- [5666332755c8] build: compile libevent with -fPIC (Vincent Bernat)
- [d24247edcbe2] build: try -Wl,-pie before trying -pie for clang (Vincent Bernat)
- [1aa3748ca854] build: don't enable PIE when using embedded libevent (Vincent Bernat)
- [c4edeadc8b08] build: also try to build a PIE when hardening is not disabled. (Vincent Bernat)
- [8738a36d30e2] build: add a switch to disable hardening functions (Vincent Bernat)
- [8caf43416452] lldpd: convert 'oui_info' member to dynamic array (Alexandru Ardelean)
- [fb1b78bb7611] lldpd: make custom TLV code optional (Alexandru Ardelean)
- [26331a26d551] client: display custom TLVs when lldpctl is called (Alexandru Ardelean)
- [41cb778179b2] client: implement client interface for custom TLVs (Alexandru Ardelean)
- [6cff1e665e72] daemon: implement client interface for custom TLVs (Alexandru Ardelean)
- [c576fd21a416] lib: add custom TLV + list atom(s) (Alexandru Ardelean)
- [cd5de7a2ea13] daemon: add basic custom TLV send & receive (Alexandru Ardelean)
- [9c242613cd7b] daemon: reduce log_info() to log_debug() for unknown TLV types (Alexandru Ardelean)
- [86f4c1ef8be4] lib: move lldpd-structs.h include into atom.h (Alexandru Ardelean)
- [e7113d69b9cb] lib: add null check to lldpctl_atom_inc_ref() (Alexandru Ardelean)
- [b1bebd3f2550] lldpd: move LLDP_TLV_ORG to lldp-const.h (Alexandru Ardelean)
- [2389d2ccf7be] lib: enable ability to change log level on-the-fly (Vincent Bernat)
- [082c03a94583] lldpcli: ensure we also display logs from liblldpctl (Vincent Bernat)
- [c11e6765727b] tests: fix typo in SNMP checks with protocol identity (Vincent Bernat)
- [63e52965607e] frame: change checksum function (Vincent Bernat)
- [6d3c1ce032f8] tests: fix SNMP tests (Vincent Bernat)
- [d99c23687985] tests: fix signed/unsigned discrepancy (Vincent Bernat)
- [8d92800b8801] build: cleaner way to not alter CFLAGS/CPPFLAGS/LDFLAGS (Vincent Bernat)
- [dd8c9fe3b168] build: enable JSON/XML support automatically by default (Vincent Bernat)
- [3250e17b3649] redhat: enable JSON support if recent enough (Vincent Bernat)
- [ec6a8dcffbc9] debian: enable JSON support (Vincent Bernat)
- [fa9b12c57b7a] build: automatic detection of optional features (Vincent Bernat)
- [3fa294062b97] client: only output supported formats (Vincent Bernat)
- [a742670827b8] client: complain if the provided format is not supported (Vincent Bernat)
- [bacc4a6ad3c4] client: fix a trivial typo (Vincent Bernat)
- [e613fdaa7f8a] Merge pull request #106 from commodo/make-some-tlvs-optional (Vincent Bernat)
- [e119d5ddf364] client: add some log_debug() messages (Alexandru Ardelean)
- [1d7c86b56ce0] tests/check_lldp: add global config object for testing (Alexandru Ardelean)
- [1c2217aa0df9] lldpd: make management addresses advertisement optional (Alexandru Ardelean)
- [ca838758db3c] lldpd: make chassis capabilities advertisement optional (Alexandru Ardelean)
- [8262175deca8] daemon/lldpd.c: free() cfg at end of main function (Alexandru Ardelean)
- [7d67839872b3] daemon/protocols/lldp.c: do not send system capabilities if none available (Alexandru Ardelean)
- [ef8140572e04] lib: don't define __constructor__ twice (Vincent Bernat)
- [e8d465451a3b] Merge pull request #105 from commodo/cleanup (Vincent Bernat)
- [9e2db64f1cce] daemon: move protocol files into subfolder (Alexandru Ardelean)
- [4b2ee1a0a9de] lib/atom.c: move here remaining code from atom-private.c (Alexandru Ardelean)
- [a5f987172cbe] lib/private.h: rename to atom.h (Alexandru Ardelean)
- [94c9815776cc] lib/atom-private.c: break it into smaller modules (Alexandru Ardelean)
- [9bec20443e7e] lib/atom-private.c: move 'struct atom-builder' to private.h (Alexandru Ardelean)
- [84b41218830f] configure.ac: add 'subdir-objects' option (Alexandru Ardelean)
|
|
|
|
|
|
|
|
* Change CACHE directory.
|
|
* Add py-expat dependency to fix build.
* Add knob for gettext.
|
|
|
|
* fix crash on opening certain URLs
* fix crash during G/C on some environment
* support a new image service
* adopt ruby-gtk2 2.2.5
|
|
* Fix IPv6 prefix underflow when confirming deprecated but valid leases
* eloop.c and .h are now 100% portable outside of dhcpcd
(provided the system supports recent POSIX and either you or
the system provide working TAILQ macros)
* Allow waitip to work per interface.
* Handle ND options in the same way we handle DHCP and DHCPv6 options.
* Add new variable of type bitflags:flags where the flags ABCDEFGH,
A is 10000000, B is 01000000, etc.
Variables with the name reserved are no longer processed.
* Improve IN_IFF_TENTATIVE with ip sharing.
|
|
|
|
Pretty-print TCP session monitor/analyzer from KLab Inc.
|
|
- Bug Fixes
The following vulnerabilities have been fixed.
* wnpa-sec-2015-14
The WCP dissector could crash while decompressing data. (Bug 10978)
CVE-2015-3811
* wnpa-sec-2015-15
The X11 dissector could leak memory. (Bug 11088)
CVE-2015-3812
* wnpa-sec-2015-17
The IEEE 802.11 dissector could go into an infinite loop. (Bug 11110)
CVE-2015-3814
The following bugs have been fixed:
* Wireshark crashes if "Update list of packets in real time" is
disabled and a display filter is applied while capturing. (Bug 6217)
* Wireshark relative ISN set incorrectly if raw ISN set to 0.
(Bug 10713)
* Buffer overrun in encryption code. (Bug 10849)
* ICMP Parameter Problem message contains Length of original datagram
is treated as the total IPv4 length. (Bug 10991)
* ICMP Redirect takes 4 bytes for IPv4 payload instead of 8. (Bug
10992)
* Interface Identifier incorrectly represented by Wireshark. (Bug
11053)
* Annoying popup when trying to capture on bonding devices on Linux.
(Bug 11058)
* CanOpen dissector fails on frames with RTR and 0 length. (Bug 11083)
* Typo in secp521r1 curve wrongly identified as sect521r1. (Bug 11106)
* packet-zbee-zcl.h: IS_ANALOG_SUBTYPE doesn't filter ENUM. (Bug 11120)
* Typo: "LTE Positioning Protocol" abbreviated as "LPP", not "LLP".
(Bug 11141)
- Updated Protocol Support
ASN.1 PER, CANopen, GSM RLC/MAC, GSMTAP, ICMP, IEEE 802.11, LPP,
MEGACO, PKCS-1, PPP IPv6CP, SRVLOC, SSL, TCP, WCP, X11, and ZigBee ZCL
- New and Updated Capture File Support
Savvius OmniPeek Visual Networks
|
|
imported 5 weeks before the actual release.
Use DIST_SUBDIR to make this release fetchable. PKGREVISION++.
|
|
|
|
Samba is the standard Windows interoperability suite of programs
for Linux and Unix.
Samba is Free Software licensed under the GNU General Public License,
the Samba project is a member of the Software Freedom Conservancy.
Since 1992, Samba has provided secure, stable and fast file and
print services for all clients using the SMB/CIFS protocol, such
as all versions of DOS and Windows, OS/2, Linux and many others.
Samba is an important component to seamlessly integrate Linux/Unix
Servers and Desktops into Active Directory environments. It can
function both as a domain controller or as a regular domain member.
This package tracks 4.x branch release.
|
|
Platform support for Go. This is needed to break apart a circular dependency.
|
|
|
|
fam for File Alteration Monitor.
|
|
Changes:
2015.05.04:
o Various fixes for existing extractors.
2015.05.03:
o Add extractor to [foxsports]
o Remove [Grooveshark] extractor (grooveshark.com was shut down on 2015/04/30)
o Add new extractor [baiduvideo]
2015.04.28:
o Various fixes for existing extractors.
2015.04.26:
o Add support for [gfycat]
o Add extractor to [Senate]
o Various fixes for existing extractors.
|
|
devel/autoconf (but just add 2.69 status)
devel/dejagnu
devel/p5-ExtUtils-AutoInstall (infinite loop)
devel/p5-Inline-C (fail at t/27inline_maker.t)
devel/p5-Search-Elasticsearch (several items)
Some other {net,devel}/p5-packages
Set BUILD_DEPENDS+= for make test
|
|
icons for it and icons for the tcpdump/pcap mimetype.
|
|
3.10.3 (2015-03-29)
- Fixed crash if changing number of simultaneous transfers while
transferring files
- Fixed local filelist statusbar regression introduced in 3.10.3-beta2
3.10.3-rc1 (2015-03-21)
- If saving passwords is disabled, don't ask for the password again
after connecting via the quickconnect bar and then starting a
download via drag&drop.
- Small performance improvements
3.10.3-beta2 (2015-03-16)
- Minimum timeout value is now 10 seconds, up from 5 seconds to
prevent timeouts uploading to servers with slow storage
- Fixed an assert with invalid file sizes
- Small performance improvements
3.10.3-beta1 (2015-03-14)
+ Added option to enable SFTP compression
3.10.2 (2015-03-02)
- When finding the local name of a remote file to be edited, use
case-insensitive comparison
- Updated SFTP components from PuTTY
- MSW: Cleaned up runtime dependencies
- Fix crash introduced in rc2 when there is no password element
for a saved item
3.10.2-rc2 (2015-02-25)
+ MSW: The installer configures Windows Error Reporting to save
minidumps in %LOCALAPPDATA%\CrashDumps if filezilla.exe crashes
+ The updater now submits CPU capabilities when checking for updates.
In a future version support for CPUs without SSE2 support will be
dropped
+ In the XML files, passwords are now base64 encoded
- Fix HTTP proxy handshake if no proxy username is set
- Fix state of filter toolbar button if dismissing filter dialog
- At the end of transfers, errors writing all downloaded data to
disk were not always detected
3.10.2-rc1 (2015-02-21)
+ When reopening files already being edited, preselect the previously
used selection
+ The subject area in the certificate verification can now be
scrolled if the certificate contains many alternative names
+ Many performance improvements
- Fixed display of total transfer size in message log for SFTP
transfers
- MSW: Fixed sorting of sites in Site Manager
- MSW: Fix initial focus after starting FileZilla to be in the
quickconnect bar again
- Fixed bug in GnuTLS where the AES-NI instruction set wasn't always
used when available
- Refresh directory trees if sort mode changes
- Fix potential crash if disconnecting during ongoing transfers
- Fix updating the transfer progress bar when uploading files via
SFTP with a low speed limit set
3.10.1.1 (2015-02-01)
- Fix editing of files with the same name in different directories
3.10.1 (2015-01-31)
- Don't override proxy settings if loading an implicit session from
PuTTY
- Silently delete junk files left behind by some editors in the
temporary directory
3.10.1-rc1 (2015-01-24)
+ Fixed wording of some error messages when using FTP over TLS
+ Display subject alternative names in certificate verification
dialog
+ If re-editing multiple files already being edited, add a checkbox
to apply action to all selected file
- Editing the same local file multiple times no longer results in
an error message
- Display SHA-256 fingerprints in certificate verification dialog,
no longer display MD5 fingerprints.
- Disable insecure RC4 algorithm in FTP over TLS
- *nix: Fix assertion when opening the file exists dialog on some
multi-display systems
- Deleting items in the Site Manager now correctly upates the
right-hand side of the dialog
- Dragging items in the Site Manager no longer makes the default
port appear in the port input box
|
|
-------------------
version 2.72
Add ra-advrouter mode, for RFC-3775 mobile IPv6 support.
Add support for "ipsets" in *BSD, using pf. Thanks to
Sven Falempim for the patch.
Fix race condition which could lock up dnsmasq when an
interface goes down and up rapidly. Thanks to Conrad
Kostecki for helping to chase this down.
Add DBus methods SetFilterWin2KOption and SetBogusPrivOption
Thanks to the Smoothwall project for the patch.
Fix failure to build against Nettle-3.0. Thanks to Steven
Barth for spotting this and finding the fix.
When assigning existing DHCP leases to intefaces by comparing
networks, handle the case that two or more interfaces have the
same network part, but different prefix lengths (favour the
longer prefix length.) Thanks to Lung-Pin Chang for the
patch.
Add a mode which detects and removes DNS forwarding loops, ie
a query sent to an upstream server returns as a new query to
dnsmasq, and would therefore be forwarded again, resulting in
a query which loops many times before being dropped. Upstream
servers which loop back are disabled and this event is logged.
Thanks to Smoothwall for their sponsorship of this feature.
Extend --conf-dir to allow filtering of files. So
--conf-dir=/etc/dnsmasq.d,\*.conf
will load all the files in /etc/dnsmasq.d which end in .conf
Fix bug when resulted in NXDOMAIN answers instead of NODATA in
some circumstances.
Fix bug which caused dnsmasq to become unresponsive if it
failed to send packets due to a network interface disappearing.
Thanks to Niels Peen for spotting this.
Fix problem with --local-service option on big-endian platforms
Thanks to Richard Genoud for the patch.
version 2.71
Subtle change to error handling to help DNSSEC validation
when servers fail to provide NODATA answers for
non-existent DS records.
Tweak code which removes DNSSEC records from answers when
not required. Fixes broken answers when additional section
has real records in it. Thanks to Marco Davids for the bug
report.
Fix DNSSEC validation of ANY queries. Thanks to Marco Davids
for spotting that too.
Fix total DNS failure and 100% CPU use if cachesize set to zero,
regression introduced in 2.69. Thanks to James Hunt and
the Ubuntu crowd for assistance in fixing this.
version 2.70
Fix crash, introduced in 2.69, on TCP request when dnsmasq
compiled with DNSSEC support, but running without DNSSEC
enabled. Thanks to Manish Sing for spotting that one.
Fix regression which broke ipset functionality. Thanks to
Wang Jian for the bug report.
version 2.69
Implement dynamic interface discovery on *BSD. This allows
the contructor: syntax to be used in dhcp-range for DHCPv6
on the BSD platform. Thanks to Matthias Andree for
valuable research on how to implement this.
Fix infinite loop associated with some --bogus-nxdomain
configs. Thanks fogobogo for the bug report.
Fix missing RA RDNS option with configuration like
--dhcp-option=option6:23,[::] Thanks to Tsachi Kimeldorfer
for spotting the problem.
Add [fd00::] and [fe80::] as special addresses in DHCPv6
options, analogous to [::]. [fd00::] is replaced with the
actual ULA of the interface on the machine running
dnsmasq, [fe80::] with the link-local address.
Thanks to Tsachi Kimeldorfer for championing this.
DNSSEC validation and caching. Dnsmasq needs to be
compiled with this enabled, with
make dnsmasq COPTS=-DHAVE_DNSSEC
this add dependencies on the nettle crypto library and the
gmp maths library. It's possible to have these linked
statically with
make dnsmasq COPTS='-DHAVE_DNSSEC -DHAVE_DNSSEC_STATIC'
which bloats the dnsmasq binary, but saves the size of
the shared libraries which are much bigger.
To enable, DNSSEC, you will need a set of
trust-anchors. Now that the TLDs are signed, this can be
the keys for the root zone, and for convenience they are
included in trust-anchors.conf in the dnsmasq
distribution. You should of course check that these are
legitimate and up-to-date. So, adding
conf-file=/path/to/trust-anchors.conf
dnssec
to your config is all thats needed to get things
working. The upstream nameservers have to be DNSSEC-capable
too, of course. Many ISP nameservers aren't, but the
Google public nameservers (8.8.8.8 and 8.8.4.4) are.
When DNSSEC is configured, dnsmasq validates any queries
for domains which are signed. Query results which are
bogus are replaced with SERVFAIL replies, and results
which are correctly signed have the AD bit set. In
addition, and just as importantly, dnsmasq supplies
correct DNSSEC information to clients which are doing
their own validation, and caches DNSKEY, DS and RRSIG
records, which significantly improve the performance of
downstream validators. Setting --log-queries will show
DNSSEC in action.
If a domain is returned from an upstream nameserver without
DNSSEC signature, dnsmasq by default trusts this. This
means that for unsigned zone (still the majority) there
is effectively no cost for having DNSSEC enabled. Of course
this allows an attacker to replace a signed record with a
false unsigned record. This is addressed by the
--dnssec-check-unsigned flag, which instructs dnsmasq
to prove that an unsigned record is legitimate, by finding
a secure proof that the zone containing the record is not
signed. Doing this has costs (typically one or two extra
upstream queries). It also has a nasty failure mode if
dnsmasq's upstream nameservers are not DNSSEC capable.
Without --dnssec-check-unsigned using such an upstream
server will simply result in not queries being validated;
with --dnssec-check-unsigned enabled and a
DNSSEC-ignorant upstream server, _all_ queries will fail.
Note that DNSSEC requires that the local time is valid and
accurate, if not then DNSSEC validation will fail. NTP
should be running. This presents a problem for routers
without a battery-backed clock. To set the time needs NTP
to do DNS lookups, but lookups will fail until NTP has run.
To address this, there's a flag, --dnssec-no-timecheck
which disables the time checks (only) in DNSSEC. When dnsmasq
is started and the clock is not synced, this flag should
be used. As soon as the clock is synced, SIGHUP dnsmasq.
The SIGHUP clears the cache of partially-validated data and
resets the no-timecheck flag, so that all DNSSEC checks
henceforward will be complete.
The development of DNSSEC in dnsmasq was started by
Giovanni Bajo, to whom huge thanks are owed. It has been
supported by Comcast, whose techfund grant has allowed for
an invaluable period of full-time work to get it to
a workable state.
Add --rev-server. Thanks to Dave Taht for suggesting this.
Add --servers-file. Allows dynamic update of upstream servers
full access to configuration.
Add --local-service. Accept DNS queries only from hosts
whose address is on a local subnet, ie a subnet for which
an interface exists on the server. This option
only has effect if there are no --interface --except-interface,
--listen-address or --auth-server options. It is intended
to be set as a default on installation, to allow
unconfigured installations to be useful but also safe from
being used for DNS amplification attacks.
Fix crashes in cache_get_cname_target() when dangling CNAMEs
encountered. Thanks to Andy and the rt-n56u project for
find this and helping to chase it down.
Fix wrong RCODE in authoritative DNS replies to PTR queries. The
correct answer was included, but the RCODE was set to NXDOMAIN.
Thanks to Craig McQueen for spotting this.
Make statistics available as DNS queries in the .bind TLD as
well as logging them.
version 2.68
Use random addresses for DHCPv6 temporary address
allocations, instead of algorithmically determined stable
addresses.
Fix bug which meant that the DHCPv6 DUID was not available
in DHCP script runs during the lifetime of the dnsmasq
process which created the DUID de-novo. Once the DUID was
created and stored in the lease file and dnsmasq
restarted, this bug disappeared.
Fix bug introduced in 2.67 which could result in erroneous
NXDOMAIN returns to CNAME queries.
Fix build failures on MacOS X and openBSD.
Allow subnet specifications in --auth-zone to be interface
names as well as address literals. This makes it possible
to configure authoritative DNS when local address ranges
are dynamic and works much better than the previous
work-around which exempted contructed DHCP ranges from the
IP address filtering. As a consequence, that work-around
is removed. Under certain circumstances, this change wil
break existing configuration: if you're relying on the
contructed-range exception, you need to change --auth-zone
to specify the same interface as is used to construct your
DHCP ranges, probably with a trailing "/6" like this:
--auth-zone=example.com,eth0/6 to limit the addresses to
IPv6 addresses of eth0.
Fix problems when advertising deleted IPv6 prefixes. If
the prefix is deleted (rather than replaced), it doesn't
get advertised with zero preferred time. Thanks to Tsachi
for the bug report.
Fix segfault with some locally configured CNAMEs. Thanks
to Andrew Childs for spotting the problem.
Fix memory leak on re-reading /etc/hosts and friends,
introduced in 2.67.
Check the arrival interface of incoming DNS and TFTP
requests via IPv6, even in --bind-interfaces mode. This
isn't possible for IPv4 and can generate scary warnings,
but as it's always possible for IPv6 (the API always
exists) then we should do it always.
Tweak the rules on prefix-lengths in --dhcp-range for
IPv6. The new rule is that the specified prefix length
must be larger than or equal to the prefix length of the
corresponding address on the local interface.
|
|
* Compile on QNX
* Fix handling of ND6_IFF_OVERRIDE_RTADV
* Fix adding host routes on BSD
* If RTF_LOCAL is defined, don't create local routes
* Don't destroy existing routes where possible
* Support kqueue(2) and epoll(7) if available
* dhcpcd can now act as a pure BOOTP client
* IPv6 default route only installed when a working address is added
* Fixed host routes inside a CSR option
* Support IN_IFF_TENTATIVE on NetBSD
|
|
=========
FEATURES:
- Incoming notifies have serial number logged (at verbosity 1).
BUG FIXES:
- Remove some duplicate header includes.
- Fix tcp waiting list for zone transfers where the bind and connect
calls fail.
- Fix segfault in zone reader on invalid input.
- Fix segfault on double origin in zone reader.
- Fix b64pton out of bounds error on invalid zonefile input.
- Fix origin directive from unused old value and subdomain parser
failure.
- Fix use after free after zonefile syntax error followed by ttl
or origin directive.
- Fix syntax error followed by too many TXT elements parse crash.
- Fix buffer overflow in config parse of domain name.
- Use reallocarray for integer overflow protection.
- Fix allocation integer overflow checks.
- Fix #654: Fix contradiction in notify logging verbosity level.
- Fix #655: Fix contradiction in verbosity for zone transfers.
- Made log message more consistent, changed 'axfr refused' log message
to be more consistent with other messages. Also notify refused.
- verbosity 2 logs axfr refused and notify refused.
verbosity 1 contains less log messages.
|
|
installation. Require users/groups to be created before install as well.
|
|
- Add comment on DEPENDS related, make test may fail
# if Net::Server exists, t/60 may fail due to more test items
# t/60_net_server.t ............... skipped: Net::Server not available
#DEPENDS+= p5-Net-Server-[0-9]*:../../net/p5-Net-Server
(upstream)
- Update to 0.79
--------------
0.79 Friday May 1, 2015, 09:00:00 AM -0700
* t/40_server.t
* t/40_server_xmllibxml.t
* t/41_server_hang.t
* t/60_net_server.t
* t/70_compression_detect.t
* t/90_rt54183_sigpipe.t
* t/util.pl
Test clean-up/fixes to address CPAN test failures. Should
address problems with having IO::Socket::IP acting in place of
IO::Socket::INET and also address some issues with a dynloader
bug being triggered by t/70_compression_detect.t.
* t/00_load.t
* t/10_data.t
* t/11_base64_fh.t
* t/12_nil.t
* t/13_no_deep_recursion.t
* t/14_datetime_iso8601.t
* t/15_serialize.t
* t/20_xml_parser.t
* t/21_xml_libxml.t
* t/25_parser_negative.t
* t/29_parserfactory.t
* t/30_procedure.t
* t/35_namespaces.t
* t/40_server.t
* t/40_server_xmllibxml.t
* t/41_server_hang.t
* t/50_client.t
* t/51_client_with_host_header.t
* t/60_net_server.t
* t/90_rt50013_parser_bugs.t
* t/90_rt54183_sigpipe.t
* t/90_rt54494_blessed_refs.t
* t/90_rt58065_allow_nil.t
* t/90_rt58323_push_parser.t
* t/util.pl
Perl::Critic clean-up of test suites.
* lib/RPC/XML/Parser/XMLParser.pm
Fix to prevent a new sprintf-related warning in 5.21.
* README
* lib/Apache/RPC/status.code
Merge pull request #8 from jkg/docfixes (James Green). Replace
indirect object notation with direct.
|
|
+devel/p5-MetaCPAN-Client version 1.013000
+devel/p5-Search-Elasticsearch version 1.19
+net/p5-Test-RequiresInternet version 0.04
+www/p5-Any-URI-Escape version 0.01
+www/p5-Hijk version 0.20
+www/p5-WWW-Mechanize-Cached version 1.48
|
|
This module is intended to easily test network connectivity before
functional tests begin to non-local Internet resources. It does not
require any modules beyond those supplied in core Perl.
|
|
Remove myself as maintainer.
|
|
includes Test::use:ok since 1.001010.
PKGREVISION++.
(For BUILD_DEPENDS, assuming Test::use:ok will be removed sometime.)
|
|
|
|
should be handled if desired.
|
|
(XXX: shouldn't the wrappers be taking care of -Werror for compilers
that don't understand it?)
|