| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
This is a hotfix release to fix connectivity issues between 0.14.17 and previous Syncthing releases.
Resolved issues:
#3855: Connections to older Syncthing versions are no longer closed due to unmarshalling message: proto: wrong wireType = 2 for field BlockIndexes.
|
|
Changelog:
Add SHA256 support for server cert hashes.
Enable DHE ciphers for Cisco DTLS.
Increase initial oNCP configuration buffer size.
Reopen CONIN$ when stdin is redirected on Windows.
Improve support for point-to-point routing on Windows.
Check for non-resumed DTLS sessions which may indicate a MiTM attack.
Add TUNIDX environment variable on Windows.
Fix compatibility with Pulse Secure 8.2R5.
Fix IPv6 support in Solaris.
Support DTLS automatic negotiation.
Support --key-password for GnuTLS PKCS#11 PIN.
Support automatic DTLS MTU detection with OpenSSL.
Drop support for combined GnuTLS/OpenSSL build.
Update OpenSSL to allow TLSv1.2, improve compatibility options.
Remove --no-cert-check option. It was being (mis)used.
Fix OpenSSL support for PKCS#11 EC keys without public key.
Support for final OpenSSL 1.1 release.
Fix polling/retry on "tun" socket when buffers full.
Fix AnyConnect server-side MTU setting.
Fix ESP replay detection.
Allow build with LibreSSL (for fetishists only; do not use this as DTLS is broken).
Add certificate torture test suite.
Support PKCS#11 PIN via pin-value= and --key-password for OpenSSL.
Fix integer overflow issues with ESP packet replay detection.
Add --pass-tos option as in OpenVPN.
Support rôle selection form in Juniper VPN.
Support DER-format certificates, add certificate format torture tests.
For OpenSSL >= 1.0.2, fix certificate validation when only an intermediate CA is specified with the --cafile option.
Support Juniper "Pre Sign-in Message".
|
|
Upstream changes:
v1.60.0
TCP multi-packet support fixed
Response 'Message' now included with exception.
Docs added
CNAME dynamic update fix
|
|
This update fixes SSL connexions.
|
|
|
|
3.23.0.2 (2016-12-06)
Bugfixes and minor changes:
Key file paths entered in the Site Manager are now saved to corresponding server entries in the transfer queue
MSW: Work around a bug in wxWidgets causing bad icons in the remote directory tree due to wxImageList::GetBitmap errorneously stripping the alpha channel from images
Allow relative paths and environment variables in the "Cache directory" setting.
3.23.0.1 (2016-12-06)
Bugfixes and minor changes:
Work around a bug in wxWidgets that has been causing a virtually infinite loop when deleting toolbar buttons
3.23.0 (2016-12-05)
Bugfixes and minor changes:
Speed up icon scaling and cache scaled icons for faster subsequent loading. The cache directory can be changed through fzdefaults.xml using the "Cache directory" setting
OS X: Fixed icon display on high-DPI displays in a few more dialogs
Loading a corrupted layout.xml or search.xml no longer shows an error message, these files are now silently overwritten
MSW: Fixed a regression where UNC paths where not handled correctly as config location in fzdefaults.xml
3.23.0-rc1 (2016-11-28)
New features:
New high-resolution icons
Improvements to the sizing of icons and other user interface elements on high-DPI displays. For technical reasons, existing theme settings have been reverted to their default values. They can be changed again in the settings dialog.
Make use of the Unix.ownername and Unix.groupname facts for MLSD if available
Bugfixes and minor changes:
The bookmarks menu updates again after changing global bookmarks
Adding a site to the Site Manager as part of adding a site-specific bookmark no longer fails if sitemanager.xml does not yet exist
Strip byte order marks at the beginning of directory listings
Add an option to filezilla.xml to control cache ttl
3.22.2.2 (2016-11-01)
Bugfixes and minor changes:
Fixed trimming of FEAT response lines leading to incorrectly detected server features
3.22.2.1 (2016-11-01)
Bugfixes and minor changes:
OS X: Rebuilt to work around a nasty bug in XCode: Even when linking with -Wl,-no-weak-imports it links against functions not available on older OS X versions
Fixed a crash on exotic servers only implementing factless MLST/MLSD
3.22.2 (2016-11-01)
Bugfixes and minor changes:
Tuned appearance of progress bar in transfer queue
3.22.2-rc2 (2016-10-28)
Bugfixes and minor changes:
SFTP: Renaming a file or directory where the new name already refers to a directory no longer moves the file into this directory.
Fix regression from -rc1 with custom ports in the quickconnect bar
Fix regression from -rc1 parsing the EPSV reply
3.22.2-rc1 (2016-10-25)
New features:
Building and running FileZilla now depends on libfilezilla >= 0.8.0 (https://lib.filezilla-project.org/).
Bugfixes and minor changes:
Non-existing key files are no longer silently dropped from the SFTP page in the settings dialog
Further abbreviate log output if transferring files using SFTP
Generic proxy usernames and passwords containing non-ASCII characters are again handled correctly
Fixed an assertion if Ctrl+A is pressed in an empty file list
*nix: Fixed color of status message in the message log
*nix, OS X: Fixed an assertion adding files to the queue after having selected a large range of items
*nix, OS X: Fixed an assertion due to a timing issue when renaming local files
3.22.1 (2016-10-03)
Bugfixes and minor changes:
OS X: Work around a nasty bug in XCode where programs explicitly compiled for older versions of OS X were silently pulling in features exclusive to the new version, resulting in crashes at runtime
Fixed a potential crash when using SFTP
3.22.0 (2016-10-01)
Bugfixes and minor changes:
Bookmarks with the "Directory comparison" checkbox set now work correctly
MSW: Fix background clearing issue on the size format settings page
MSW: Toggling the log timestamp option no longer results in wrong log colors
Fix for premature queue completion action
3.22.0-rc1 (2016-09-24)
New features:
Directory listing filters can now be exported and imported
Added the "not all" filter match type to filter out all items not matching all conditions
Added the "not all" search match type to search for all items not matching all conditions
Building and running FileZilla now depends on libfilezilla >= 0.7.0 (https://lib.filezilla-project.org/).
Building and running FileZilla now depends on GnuTLS >= 3.4.15
Bugfixes and minor changes:
Speed up creation of socket and file i/o threads through the use of a thread pool
Replace invalid characters in filenames when calculating the local filename for editing remote files
The updater can now handle HTTPS servers that redirect to other HTTPS servers
SFTP: Try password based login if a password-protected keyfile is rejected by the server instead of failing the login
MSW: Tee shell extension now supports long paths on Windows 10
|
|
2016-11-28 - libfilezilla 0.9.0 released
New features:
Added parameter to fz::to_integral to specify which value is
returned on error.
Added fz::remove_file
Added fz::hex_encode and fz::hex_decode
2016-10-25 - libfilezilla 0.8.0 released
New features:
Added fz::str_toupper_ascii to complement fz::str_tolower_ascii
Added fz::trim and fz::trimmed for removing leading and trailing
whitespace from string
Added fz::str_is_ascii
Bugfixes and minor changes:
Fixed zero-padding for x and X string format conversion specifiers
2016-10-03 - libfilezilla 0.7.1 released
Bugfixes and minor changes:
OS X: Work around a nasty bug in XCode where programs explicitly
compiled for older versions of OS X were silently pulling in
features exclusive to the new version, resulting in crashes at
runtime
MSW: Fix detection of thread creation failures
|
|
|
|
**** 1.07 December 29, 2016
Fix rt.cpan.org #118598/#108908
Serious Makefile.PL issues
"make install" now suppressed if pre-1.01 version detected
Fix rt.cpan.org #115558
Net::DNS::Nameserver does not allow EDNS replies
Fix rt.cpan.org #114917
Net::DNS::ZoneFile fails to parse mixed case mnemonics
Fix rt.cpan.org #114876
Use of uninitialized value in lc at MSWin32.pm line 77
Fix rt.cpan.org #114819
Net::DNS fails to compile with taint checks enabled
|
|
* Update HOMEPAGE
Chagnelog:
aria2 1.30.0
============
Release Note
------------
This release fixes several bugs. See Changes below for detailed bug
fixes. This release adds an ability to expand `${HOME}` to user's
home directory in several options. It would be useful when used in
configuration file. -S option against torrent file now prints out DHT
nodes.
Changes
-------
* mingw: Use sqlite 3.15.2
* Fix bug that --disable-websocket causes build error
* Fix bug that lower bound of optimize-concurrent-downloads becomes 1
GH-798
* Print DHT nodes with -S option
GH-795
* Take into account address family when resolving DHT node address
GH-794
* Allow block device file to -i option
GH-785
* Expand `${HOME}` to user's home directory in several options
The following options implement this substitution:
* --ca-certificate
* --certificate
* --dht-file-path
* --dht-file-path6
* --dir
* --input-file
* --load-cookies
* --log
* --metalink-file
* --netrc-path
* --on-bt-download-complete
* --on-download-complete
* --on-download-error
* --on-download-start
* --on-download-stop
* --on-download_pause
* --out
* --private-key
* --rpc-certificate
* --rpc-private-key
* --save-cookies
* --save-session
* --server-stat-if
* --server-stat-of
* --torrent-file
GH-780
* Document that libaria2 is not thread safe
GH-775
* configure: Use pkg-config to find libs whenever possible
Use pkg-config to find cppunit, libxml2 and expat. All those
libraries provide pkg-config files, and in all of those cases the
pkg-config macro is superior to the custom macros used currently.
The advantages of pkg-config files include:
- Explicit static linking support via --static. Currently, e.g.
'xml2-config --libs' prints all libraries needed for static
linking when doing dynamic linking unnecessary, resulting in
unnecessary direct deps.
- Better cross-build support. You don't have to build the additional
*-config tools for target.
- Better multilib support. Per-ABI pkgconfig directories are
commonly supported while packages usually fail to look for
per-CHOST *-config variants.
- Better override support. The current macros allow little to no
result overrides, the pkg-config macros let you pass FOO_CFLAGS
and FOO_LIBS manually.
- Cleaner version checks. The code used in libxml.m4 is really
creepy.
Patch from Michał Górny
GH-773
* WinTLS: Rewrite writeData
We re-wrote WinTLSSession::writeData. The major points are:
* Buffer is now preallocated once handshake is finished.
Previously, they are allocated each time when we send one TLS
record.
* Schannel uses header, body and trailer for each secBuffer. Now we
send them off at once using WSASend which is windows counterpart
of sendv. Previously, we do memmove if some of them are
truncated.
* We don't try to send application data in
WinTLSSession::closeConnection, since semantically we need same
application data used to create TLS record before. Using 0 length
data to finish sending buffered data looks like a hack.
GH-772
|
|
for compatibility with 0caml 4.03 (and .04).
|
|
|
|
This is a normally scheduled feature and bugfix release.
Resolved issues:
#3689: Panics caused by corrupt on disk database are now better explained in the panic message.
#3817: Statically configured device addresses without port number now correctly defaults to port 22000 again.
#3829: Inotify clients no longer cause 'invalid subpath' errors to be displayed.
New and improved functionality:
#215: Folders can now be paused.
#2679: "Master" folders are now called "send only" in order to standardize on a terminology of sending and receiving changes.
#3407: Pausing devices and folders now persists across restarts.
#3527: A rolling checksum is used to identify and reuse blocks that have moved within a file.
#3790: Syncthing allows setting the type-of-service field on outgoing packets, configured by the advanced setting "trafficClass".
#3809: Which device introduced another device is now visible in the GUI.
|
|
OK from wiz@
|
|
|
|
Upstream changes:
# mikutter 3.5.0
Changes from alpha2
* update po translations
* cannot open URLs if Entity info is not sent by Twitter
* crash on clicking timestamp in message detail view
* crash with Ruby 2.1
# mikutter 3.5.0-alpha2
* deprecated warnings against continuation
* crash on changing keybind of mikutter commands
* remove unnecessary Model display settings
* print not only username but also screenname in Activity
* print post user for related resources in Tweet Activity
* omit permanent link to Tweet in Tweet Activity
* Resoerver no longer creates unnecesary Thread
|
|
|
|
Upstream changes:
* 3.3.1 (2016/12/23)
* buf fixes including resouce leak
|
|
ios.pm: filter license registration timestamp
fnrancid: filter oscillating md5-keys
par.c: fix misplaced pointer deref
3.6
rancid.pm: ipaddrval() if IPv6 prefix length is missing, simply set 128.
*login: in_proc must be global in expect_after. had trouble reproducing
the original error, but this should be the correct fix.
xlogin: escape the * in lastprompt - Mattieu Beretti
*login: change handling of ssh key-related prompts to one line at a time
to eliminate timing-related problem.
alogin: login() eat one line at a time
a10login: remove the aflex-specific stuff. This is the wrong way to
do this and it doesn't work properly anyway.
control_rancid: create <group>/configs if it does not exist
hrancid: use rancid.pm (removes code duplication)
rancid.pm: check for existence of functions for given device type after
loading the modules for the type. return failure if any are missing.
par: add -FH options
rancid.types.conf, iosshtech.pm: Add device type ciscoshtech for
example purposes
acos.pm: filter trailing WS & recognize incomplete/invalid command
error in basicFilter()
acos.pm: filter trailing WS in ShowAflex()
acos.pm: 'show vlan' is 'show vlans' in ACOS 4.x.
acos.pm: Add cmd 'show partition-config all' for ACOS 4.x, where
'show running-config all-partitions' does not work.
acos.pm: recognize invalid cmd error in ShowRunningConfig() and filter
the config size comment
fnlogin: missing "end" to exit global mode for -[csx] - Richard Goode
plogin: add -m & -M
rancid.pm: missing variable initialization
nxos.pm: fix bug in recognizing the end of an access-list
hlogin: set tty init options when there is no controlling tty and set
set the term width to 132 when there is no controlling tty and for -[sc]
so that the hp device does not wrap lines.
ios.pm: also filter IPv6 PDP addresses - Reuben Farrelly
ios.pm: evaluation license periods are displayed differently
lg: Add show interface optics
iosxr.pm: More useless FPD messages
junos.pm: handle a transient cmd protocol failure seen in show version
control_rancid: use git ls-files instead of git status for .gitignore
and <group>/rancid.conf
fnrancid: fix formatting around removal of private-keys
bigip.pm: filter snmpv3 oscillating auth-password-encrypted
iosxr.pm: filter useless FPD upgrade message
|
|
=============
Features:
---------
- Added generic EDNS code for registering known EDNS option codes,
bypassing the cache response stage and uniquifying mesh states. Four
EDNS option lists were added to module_qstate
(module_qstate.edns_opts_*) to store EDNS options from/to front/back side.
- Added two flags to module_qstate (no_cache_lookup, no_cache_store)
that control the modules' cache interactions.
- Added code for registering inplace callback functions. The registered
functions can be called just before replying with local data or Chaos,
replying from cache, replying with SERVFAIL, replying with a resolved
query, sending a query to a nameserver. The functions can inspect the
available data and maybe change response/query related data (i.e. append
EDNS options).
- Updated Python module for the above.
- Updated Python documentation.
- Added views functionality.
- Added qname-minimisation-strict config option.
- Patch that resolves CNAMEs entered in local-data conf statements that
point to data on the internet.
- serve-expired config option: serve expired responses with TTL 0.
- .gitattributes line for githubs code language display.
- log-identity: config option to set sys log identity.
- Added stub-ssl-upstream and forward-ssl-upstream options.
- Added local-zones and local-data bulk addition and removal
functionality in unbound-control (local_zones, local_zones_remove,
local_datas and local_datas_remove).
- g.root-servers.net has AAAA address.
Bug Fixes:
----------
- Fix #836: unbound could echo back EDNS options in an error response.
- Fix #838: 1.5.10 cannot be built on Solaris, undefined PATH_MAX.
- Fix #839: Memory grows unexpectedly with large RPZ files.
- Fix #840: infinite loop in unbound_munin_ plugin on unowned lockfile.
- Fix #841: big local-zone's make it consume large amounts of memory.
- Fix dnstap relaying "random" messages instead of resolver/forwarder
responses.
- Fix Nits for 1.5.10.
- Fix #1117: spelling errors, from Robert Edmonds.
- iana portlist update.
- fix memoryleak logfile when in debug mode.
- Re-fix #839 from view commit overwrite.
- Fixup const void cast warning.
- Removed patch comments from acllist.c and msgencode.c
- Added documentation doc/CNAME-basedRedirectionDesignNotes.pdf
- Fix #1125: unbound could reuse an answer packet incorrectly for
clients with different EDNS parameters.
- Fix #1118: libunbound.pc sets strange Libs, Libs.private values.
- Added Requires line to libunbound.pc
- Fix #1130: whitespace in example.conf.in more consistent.
- suppress compile warning in lex files.
- init lzt variable, for older gcc compiler warnings.
- fix --enable-dsa to work, instead of copying ecdsa enable.
- Fix DNSSEC validation of query type ANY with DNAME answers.
- Fixup query_info local_alias init.
- Ported tests for local_cname unit test to testbound framework.
- Fix #1134: unbound-control set_option -- val-override-date: -1 works
immediately to ignore datetime, or back to 0 to enable it again. The --
is to ignore the '-1' as an option flag.
- Patch for server.num.zero_ttl stats for count of expired replies.
- Fix failure to build on arm64 with no sbrk.
- Set OpenSSL security level to 0 when using aNULL ciphers.
- configure detects ssl security level API function in the autoconf
manner. Every function on its own, so that other libraries (eg.
LibreSSL) can develop their API without hindrance.
- Fix #1154: segfault when reading config with duplicate zones.
- Note that for harden-below-nxdomain the nxdomain must be secure, this
means nsec3 with optout is insufficient.
- Fix #1155: test status code of unbound-control in 04-checkconf, not
the status code from the tee command.
- Fix #1158: reference RFC 8020 "NXDOMAIN: There Really Is Nothing
Underneath" for the harden-below-nxdomain option.
- patch from Dag-Erling Smorgrav that removes code that relies on sbrk().
- Make access-control-tag-data RDATA absolute. This makes the RDATA
origin consistent between local-data and access-control-tag-data.
- Fix NSEC ENT wildcard check. Matching wildcard does not have to be a
subdomain of the NSEC owner.
- QNAME minimisation uses QTYPE=A, therefore always check cache for this
type in harden-below-nxdomain functionality.
- Added unit test for QNAME minimisation + harden below nxdomain synergy.
- Fix that with openssl 1.1 control-use-cert: no uses less cpu, by using
no encryption over the unix socket.
- hyphen as minus fix.
- Fix #1170: document that 'inform' local-zone uses local-data.
- Fix #1173: differ local-zone type deny from unset tag_actions element.
- Add DSA support for OpenSSL 1.1.0
- Fix remote control without cert for LibreSSL
- Fix downcast warnings from visual studio in sldns code
|
|
Updating during the freeze since the previous version stopped
working for me since the availability of this version.
Changes:
This is an extra bugfix release to fix issues introduced in v0.14.14.
Resolved issues:
#3829: Receiving 'invalid subpath' errors on syncthing-inotify full folder sync trigger
|
|
What's New
Bug Fixes
The following vulnerabilities have been fixed:
* Arbitrary file deletion on Windows. ([1]Bug 13217)
The following bugs have been fixed:
* Saving all exported objects (SMB/SMB2) results in out of physical
memory. ([2]Bug 11133)
* Export HTTP Objects - Single file shows as multiple files in 2.0.2.
([3]Bug 12230)
* Follow Stream and graph buttons remain greyed out in conversation
window. ([4]Bug 12893)
* Dicom list of tags in element of VR=AT not properly decoded.
([5]Bug 13077)
* Malformed Packet: BGP Update (withdraw) message. ([6]Bug 13146)
* Install fail on macOS Sierra (error PKInstallErrorDomain Code=112).
([7]Bug 13152)
* GTP: "Create PDP Context response" message shows back-off timer as
malformed when included in the response. ([8]Bug 13153)
* ICMP dissector fails to properly detect timestamps. ([9]Bug 13161)
* RLC misdissection. ([10]Bug 13162)
* Text2pcap on Windows produces corrupt output when writing the
capture file to the standard output. ([11]Bug 13165)
* HTML escaping of quotes in error message. ([12]Bug 13178)
* TShark doesn't respect protocols.display_hidden_proto_items
setting. ([13]Bug 13192)
* RPC/RDMA dissector should exit when frame is not RPC-over-RDMA.
([14]Bug 13195)
* Some RPC-over-RDMA frames are not recognized as RPC-over-RDMA.
([15]Bug 13196)
* RPC-over-RDMA frames with chunk lists are "Malformed". ([16]Bug
13197)
* TShark fails to pass RPC-over-RDMA frames to RPC subdissector.
([17]Bug 13198)
* Adding a DOF DPS Identity Secret, session Key, or Mode Template
causes Wireshark to crash. ([18]Bug 13209)
* Wireshark shows "MS Video Source Request" in a RTCP packet as
"Malformed". ([19]Bug 13212)
Updated Protocol Support
BGP, BOOTP/DHCP, BTLE, DICOM, DOF, Echo, GTP, ICMP, Radiotap, RLC, RPC
over RDMA, RTCP, SMB, TCP, UFTP4, and VXLAN
|
|
library name in devel/ncurses changed.
|
|
Changes:
version 2016.12.18
Core
+ [extractor/common] Recognize DASH formats in html5 media entries
Extractors
+ [ccma] Add support for ccma.cat (#11359)
* [laola1tv] Improve extraction
+ [laola1tv] Add support embed URLs (#11460)
* [nbc] Fix extraction for MSNBC videos (#11466)
* [twitch] Adapt to new videos pages URL schema (#11469)
+ [meipai] Add support for meipai.com (#10718)
* [jwplatform] Improve subtitles and duration extraction
+ [ondemandkorea] Add support for ondemandkorea.com (#10772)
+ [vvvvid] Add support for vvvvid.it (#5915)
version 2016.12.15
Core
+ [utils] Add convenience urljoin
Extractors
+ [openload] Recognize oload.tv URLs (#10408)
+ [facebook] Recognize .onion URLs (#11443)
* [vlive] Fix extraction (#11375, #11383)
+ [canvas] Extract DASH formats
+ [melonvod] Add support for vod.melon.com (#11419)
version 2016.12.12
Core
+ [utils] Add common user agents map
+ [common] Recognize HLS manifests that contain video only formats (#11394)
Extractors
+ [dplay] Use Safari user agent for HLS (#11418)
+ [facebook] Detect login required error message
* [facebook] Improve video selection (#11390)
+ [canalplus] Add another video id pattern (#11399)
* [mixcloud] Relax URL regular expression (#11406)
* [ctvnews] Relax URL regular expression (#11394)
+ [rte] Capture and output error message (#7746, #10498)
+ [prosiebensat1] Add support for DASH formats
* [srgssr] Improve extraction for geo restricted videos (#11089)
* [rts] Improve extraction for geo restricted videos (#4989)
|
|
|
|
Bug #5592 - Some keys don't work for macOS Sierra clients
Bug #5186 - Cursor stuck on client when using multi-DPI server
Bug #5722 - Malformed serial key in registry will crash GUI on startup
Bug #5752 - Tab order is incorrect on Settings dialog
Enhancement #5699 - Unified installers on macOS
Feature #4836 - macOS Sierra build
Bug #5680 - Server crashes when disconnecting SSL clients
Bug #5626 - Build fails using Xcode 8 and macOS SDK 10.12
Feature #5657 - Trial version support
Feature #5707 - User upgrade statistics
|
|
|
|
The user name is configurable now.
|
|
|
|
|
|
dependendencies.
|
|
This is an extra bugfix release to fix issues discovered in the upgrade from 0.14.13 to 0.14.14.
Resolved issues:
#3804: Inotify no longer triggers "invalid subpath" error
#3802: Symlinks are not deleted on upgrade
|
|
|
|
chroot support.
Also, don't look for named.conf in PKG_SYSCONFDIR as the package is
configured to always use /etc.
|
|
|
|
Coursera provides a variety of massive open online courses (MOOC)
covering many different topics. This script makes it easier to batch
download lecture resources (e.g., videos, ppt, etc) for Coursera classes.
Given one or more class names and account credentials, it obtains week
and class names from the lectures page, and then downloads the related
materials into appropriately named files and directories.
|
|
|
|
Upstream changes:
New features of mikutter 3.5
* Model
* resources handled on mikutter are now wrapped as Model
* third party plugins can also add own Models
* timelines can print any Models other than tweet messages
* new Models are added in standard plugins
* user icons can be taken via Message#icon
* any images like user icons, tab icons, skins, and attached images
are handled as PhotoModel instance like Plugin::Photo::Photo
* direct messages gets own Model and are now drawn as timeline using
MiraclePainter
* Intent
* Capability to select which plugins to be used to open URLs
* Extract tab
* DirectMessage is added as a new data source
* Configuration
* style configuration of timelines per Models
* mikutter command
* added "Open" command to issue Intent
* activity
* added named arg "children:" to Plugin#activity
* and more
|
|
|
|
(Update to latest IPv6 patch while here, since it's commented out anyway.)
|
|
the latter restricts the allowed python versions.
|
|
This is a security release recommended for all users.
Two distinct security vulnerabilities have been corrected in this
release. Either would let a remote attacker, controlling a device
that is already accepted by Syncthing, perform arbitrary reads and
writes to files outside the configured folders.
The first issue is that path validation was lacking in several
places, resulting in Syncthing accepting index entries for files
like "../../foo", thus resulting in a path above the configured
folder.
The second issue is that where path validation was correct, symlinks
could be used to trick Syncthing. An attacker could create a symlink
"foo -> ../../" and then request the contents of "foo/something",
again escaping the constraints of the folder.
Syncing symlinks between v0.14.14 and previous versions will not
work.
This is due to the fix to the above issue. Normal files and
directories will sync fine. To continue syncing symlinks, both
sides must be upgraded to v0.14.14.
Further resolved issues:
#3753: The build no longer requires Go 1.7.
#3769: The wording in the GUI around "last file received" is
now clearer.
|
|
v 3.6.1
Bug fixes in custom HTTP methods.
Support for PEM files in SSL truststore / keystore configuration.
JS and CSS file content rendered with correct syntax highlighting.
v 3.6
#46 #47 Added support for custom HTTP methods.
#48 #50 option to ignore all SSL certificate warnings.
#49 GET now supports body.
Build moved to Gradle.
|
|
* Release 0.12.5 (07-Dec-2016)
** Connection Status Reporting
This release adds an object named `ConnectionInfo`, which encapsulates
information about a connection (both progress while being established, and
the outcome once connected). This includes which connection hint was
successful, what happened with the other hints, which handlers were used for
each, and when the connection was made or lost. To get one of these, use
`tub.getConnectionInfoForFURL(furl)` any time after `getReference()` is
called, or `rref.getConnectionInfo()` after it resolves. #267
It also adds `ReconnectionInfo`, a similar object for Reconnectors. These
capture the state of reconnection process (trying, established, waiting), and
will provide a `ConnectionInfo` for the most recent (possibly successful)
connection attempt. The API is `reconnector.getReconnectionInfo()`. #268
For details, see "Connection Progress/Status" and "Reconnector Status" in
`doc/using-foolscap.rst`.
** Connection Handler API Changes
To support `ConnectionInfo`, the Connection Handler API was changed.
The one backwards-incompatible change was that the `hint_to_endpoint()`
method now takes a third argument, to update the status as the handler makes
progress. External handler functions will need to be modified to accept this
new argument, and applications which use them should declare a dependency
upon the latest Foolscap version, to avoid runtime breakage.
Several backwards-compatible changes were made too: handlers can provide a
`describe()` method (which feeds `ConnectionInfo.connectionHandlers`), and
they can now set a special attribute on any exception they raise, to further
influence the status string.
In addition, the `tor.control_endpoint_maker()` handler now accepts an
optional second argument, which causes the maker function to be called with a
additional `update_status` argument. This backwards-compatible change allows
the maker function to influence the `ConnectionInfo` status too.
The Tor connection handler was enhanced to report distinct statuses for the
different phases of connection: launching a new copy of Tor, connecting to an
existing Tor daemon, etc.
** Minor Fixes
Foolscap-0.12.0 broke `flappserver create`, causing the command to hang
rather than exiting cleanly (although the flappserver directory itself was
probably created properly). This release finally fixes it. #271
|
|
The underlying problem should be debugged and fixed instead.
|
|
Many of these definitely do not depend on readline.
So there must be a different underlying problem, and that
should be tracked down instead of papering over it.
|
|
Changes in version 0.2.8.11 - 2016-12-08
Tor 0.2.8.11 backports fixes for additional portability issues that
could prevent Tor from building correctly on OSX Sierra, or with
OpenSSL 1.1. Affected users should upgrade; others can safely stay
with 0.2.8.10.
o Minor bugfixes (portability):
- Avoid compilation errors when building on OSX Sierra. Sierra began
to support the getentropy() and clock_gettime() APIs, but created
a few problems in doing so. Tor 0.2.9 has a more thorough set of
workarounds; in 0.2.8, we are just using the /dev/urandom and mach
monotonic time interfaces. Fixes bug 20865. Bugfix
on 0.2.8.1-alpha.
o Minor bugfixes (portability, backport from 0.2.9.5-alpha):
- Fix compilation with OpenSSL 1.1 and less commonly-used CPU
architectures. Closes ticket 20588.
|
|
|
|
|
|
===========================
Bugfixes:
---------
- Double free when failed to apply zone journal
- Zone bootstrap retry interval not preserved upon zone reload
- DNSSEC related records not flushed if not signed
- False semantic checks warning about incorrect type in NSEC bitmap
- Memory leak in kzonecheck
Improvements:
-------------
- All zone names are fully-qualified in log
Features:
---------
- New kjournalprint utility
Knot DNS 2.3.2 (2016-11-04)
===========================
Bugfixes:
---------
- Incorrect %s expansion for the root zone
- Failed to refresh not existing slave zone after restart
- Immediate zone refresh upon restart if refresh already scheduled
- Early zone transfer after restart if transfer already scheduled
- Not ignoring empty non-terminal parents during delegation lookup
- CD bit preservation in responses
- Compilation error on GNU/kFreeBSD
- Server crash after double zone-commit if journal error
Improvements:
-------------
- Speed-up of knotc if control operation and known socket
- Zone purge operation purges also zone timers
Features:
---------
- Simple modules don't require empty configuration section
- New zone journal path configuration option
- New timeout configuration option for module dnsproxy
|
