Hello community, here is the log from the commit of package monit for openSUSE:Factory checked in at 2016-02-11 12:37:52 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/monit (Old) and /work/SRC/openSUSE:Factory/.monit.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "monit" Changes: -------- --- /work/SRC/openSUSE:Factory/monit/monit.changes 2014-12-01 14:01:18.000000000 +0100 +++ /work/SRC/openSUSE:Factory/.monit.new/monit.changes 2016-02-11 12:37:53.000000000 +0100 @@ -1,0 +2,178 @@ +Tue Feb 9 07:22:28 UTC 2016 - [email protected] + +- update to 5.16: + + New: Added a new statement for overriding default limits used by Monit. + + New: Issue #276: Allow specific source address for port and ping tests. + + New: Issue #205: Enhanced process check with a new thread counts test. + + New: Issue #280: Timestamp tests now reports both the old and the new + (changed) timestamp in alerts. + + New: Issue #299: Show the last output of the program check when running + monit status from the console. + + New: Issue #275: monit --version now shows the compile-time features that + were enabled at build time. + + New: Issue #282: Added support for setting a custom URL path with + apache-status protocol test. + + New: Changed responsetime for port and unixsocket tests to microseconds + precision. + + New: Added support for DragonFly BSD. Thanks to Daniel Bilik. + + Fixed: A lot of bugfixes + +------------------------------------------------------------------- +Mon Jan 25 13:22:24 UTC 2016 - [email protected] + +- update to 5.15: + + New: Added a statement for setting global or local SSL/TLS options. + + New: Added option to verify SSL server certificates. + + New: Support SSL client certificate authentication for SSL connections. + + New: To just connect using SSL/TLS without specifying a protocol, you can + now use SSL instead of the former type TCPSSL statement + (which is deprecated). + + New: SSL certificate expiration test. + + New: Extended SSL certificate fingerprint (checksum) test with the SHA1 hash + type in addition to the existing MD5 test. + + New: Extended the ping test to optionally allow setting a packet size + (default is 64 bytes) + + New: The ping tests now report network response time in milliseconds + rather than in seconds. + + New: PAM and SSL support are now optional when building Monit RPM. + + Fixed: The File content match test will move the read-cursor to the end + of the file the first time a file is added to Monit. + + Fixed: Support for OpenSSL 0.9.8 + + Fixed: Abbreviated file permission error message (otherwise the message, + which was rather long, could get truncated in logs and become + unintelligible). + + Fixed: Only add the User-Agent HTTP header if it is not already set. + Also allow single quotes in addition to double quotes around + header values. + + Fixed: If a check host statement contains no if-tests, emit a more + comprehensible error message. + + Fixed: Do not log "Error reading pid from ..." for non-process checks + on stop/restart. + + Fixed: Monit could freeze for a period when performing a ping test. + + Fixed: Do not cascade start action to dependant services if only parent + start was requested. + + Fixed: Implement hard dependency between services. If a service depends + on another service, it will not start until the parent service + check returns no errors. For example, if Apache depends on MySQL, + Monit will not start Apache until MySQL is confirmed up and running + and passes all its tests. Previously, Monit would start MySQL, + but not wait for MySQL to be confirmed up and running before + it started Apache. + + Fixed: The HTTP protocol test paused Monit for a few seconds if a + content match test was used and the server sent a response + using chunked encoding. + + Fixed: Monit no longer exit if it fails to fork. This is debatable, + but for Monit's use-case we think it is better to try and continue. + + Fixed: Monit leaked file descriptors if program execution failed. + Don't forget the shebang #! at the beginning of your script + + Fixed: Monit stopped on reload if the control file did not end with + an empty newline. + + Fixed: With OS X El Capitan, Apple introduced a new System Integrity + Protection policy (SIP) which, among other things, block the + system call, task_for_pid.We now check to see if SIP is enabled + and if it is, we do not call task_for_pid so as not to unnecessary + fill system logs with errors. This also means that Monit, on + El Capitan, can no longer check a process memory and CPU usage + as task_for_pid was needed to get this information. + + Fixed: Executing a command with a timeout larger than 2147 seconds would + fail on 32-bit systems. + + Fixed: Mask out SSLv3_client_method() in case SSLv3 support is not available + + Fixed: SSL SNI is optional, so do not log as error if not supported by server + + Fixed: SSL client certificate authentication with Monit's HTTP interface + + Fixed: Access to resources via secondary group membership when executing a + program with a different UID + + Fixed: Slow start/stop/restart/monitor/unmonitor actions on FreeBSD + +- update to 5.14: + + New: Enable HTTP Strict Transport Security (HSTS), ECDH ciphers and + disable IDEA ciphers on Monit HTTP interface if TLS/SSL is used. + + New: Simpler system-wide cpu usage test (total of user%, system%, wait%). + + New: Added options for the command-line commands monit status and monit + summary to only print status for a named service or a named service group. + + New: Log client address in case of HTTP request errors + + New: Report Monit version in the start/stop (instance) message + + Fixed: MySQL test might produce "HOST blocked because of too many connection errors". + +- update to 5.13: + + New: Added support for free space and free inodes monitoring as an + inverse alternative to current space/inodes consumption monitoring. + Both forms, with absolute number of bytes and with percent are supported. + + New: Added support for Server Name Indication to support testing connection to + name based virtual SSL servers. + + Security: SSL/TLS compression has been disabled, as well as RC4 and DES ciphers. + + Fixed: Monit will no longer try to check hostnames on start-up to start faster, + in case DNS is not available at start time. + + Fixed: Filesystem uid, gid and permission as reported by monit status command. + + Fixed: If the monit CLI command failed, the error description could contain + HTML in addition to plaintext. + + Fixed: RPM will now preserve an existing monitrc configuration file on update. + + Fixed: OS X system memory usage statistics included wrongly inactive memory + (i.e. memory that is available for reuse). + + Fixed: FreeBSD, OpenBSD, NetBSD: System memory usage statistics did not + include the wired part (kernel memory). + +- update to 5.12.2: + + Fixed: Monit could freeze if an error occurred during SSL read or write. + + Fixed: If Monit was started with the HTTP interface disabled, the CLI could + crashed when executing a command. + + Fixed: Network check: support for IP alias [Linux and Solaris] + +- update to 5.12.1: + + New: Allow selecting IPv4 or IPv6 explicit for port and ping tests. + + Fixed: The Upstart script needed to stop Monit earlier in the + shutdown sequence when the system stops to prevent a + possible race conditions + + Fixed: Monit may crash if the hostname of the system failed to resolve. + + Fixed: UDP connection test could fail on a dual-stack host + (IPv4 and IPv6) if the UDP service listens on IPv4 only. + + Fixed: Only show first line of program output in the Monit dashboard. + + Fixed: Monit skipped the connection test if no start program was specified. + +- update to 5.12: + + New: Support for IPv6 hosts testing. + + New: Monit HTTP interface now supports Unix Socket as an + alternative to TCP port for easier deployment on virtualization + platforms which share the IP address for containers, such + as Docker. Thanks to Alberto Miorin for suggesting this feature. + + New: The space usage test now ignore reserved blocks. Previously, + Monit excluded reserved blocks from the free space, so it + reported 100% usage as soon as all non-super user accessible + blocks were allocated, whereas the filesystem may still + have some space available for root user (usually 1-5%). + The space usage test value will now match the output of utilities + like df. + + New: File permission change test added. Thanks to Ulrich + Windl for suggesting this feature. + + New: Support for multiple existence tests (in process, file, + directory and fifo check contexts) + + New: Support for multiple fsflag tests (in filesystem + check context): + + New: Monit's HTTP interface now provides even more + details about failed HTTP requests + + Fixed: Fix speed monitoring for 10Gb/s+ interfaces [Linux] + + Fixed: Network total upload and download values could be invalid + for certain time frames. + +- update to 5.11: + + New: Monit now supports monitoring of network interfaces. + + New: Sieve protocol test implemented. + + New: The PID and PPID change tests are no longer implicit and + automatically executed. + + New: Multiple PID and PPID tests can now be used. + + Fixed: The CLI/GUI reported port timeout value in milliseconds + instead of seconds. + + Fixed: Changed memory kilobytes total title to memory + total as the unit is dynamic since Monit 5.9. + + Fixed: OpenBSD: don't narrow the 64-bit time_t on 32-bit + build (Y2038 problem). + + Fixed: If the the test is on hold due to the every option + schedule, display last status instead of Waiting. + + Fixed: If ping is not allowed (insufficient permissions), + display value as N/A instead of negative response time. + + Fixed: If the not every <cron> option matched, the test + was skipped only once per minute. + + * Deleted: monit-dirs.patch + * Updated: monit.spec + +------------------------------------------------------------------- Old: ---- monit-5.10.tar.gz monit-5.10.tar.gz.sha256 monit-dirs.patch New: ---- monit-5.16.tar.gz monit-5.16.tar.gz.sha256 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ monit.spec ++++++ --- /var/tmp/diff_new_pack.noqCWq/_old 2016-02-11 12:37:54.000000000 +0100 +++ /var/tmp/diff_new_pack.noqCWq/_new 2016-02-11 12:37:54.000000000 +0100 @@ -1,7 +1,7 @@ # # spec file for package monit # -# Copyright (c) 2014 SUSE LINUX Products GmbH, Nuernberg, Germany. +# Copyright (c) 2016 SUSE LINUX GmbH, Nuernberg, Germany. # Pascal Bleser <[email protected]> # # All modifications and additions to the file contributed by third parties @@ -18,7 +18,7 @@ Name: monit -Version: 5.10 +Version: 5.16 Release: 0 Summary: Service Manager and Monitor System License: AGPL-3.0 @@ -27,9 +27,8 @@ Source2: http://mmonit.com/monit/dist/monit-%{version}.tar.gz.sha256 Source1: monit-vendor-files.tar.gz Patch1: monit-better_default_monitrc.patch -Patch2: monit-dirs.patch Source99: monit-rpmlintrc -Url: http://mmonit.com/monit/download/ +Url: https://mmonit.com/monit/#download BuildRoot: %{_tmppath}/%{name}-%{version}-build BuildRequires: autoconf BuildRequires: automake @@ -84,7 +83,6 @@ %prep %setup -q -a1 %patch1 -p1 -%patch2 %__perl -n -e 'print $1,"\n" if /^\+{3}\s+(\S+)/' <"%PATCH3" \ | while read f; do %__perl -i -p -e ' ++++++ monit-5.10.tar.gz -> monit-5.16.tar.gz ++++++ ++++ 75177 lines of diff (skipped) ++++++ monit-5.10.tar.gz.sha256 -> monit-5.16.tar.gz.sha256 ++++++ --- /work/SRC/openSUSE:Factory/monit/monit-5.10.tar.gz.sha256 2014-12-01 14:01:18.000000000 +0100 +++ /work/SRC/openSUSE:Factory/.monit.new/monit-5.16.tar.gz.sha256 2016-02-11 12:37:53.000000000 +0100 @@ -1 +1 @@ -3791155a1b1b6b51a4a104dfe6f17b37d7c346081889f1bec9339565348d9453 monit-5.10.tar.gz +5b998e796113ce244c8b575da09d3a62bac1b2765484fe6416f224b4ba8f391f monit-5.16.tar.gz ++++++ monit-better_default_monitrc.patch ++++++ --- /var/tmp/diff_new_pack.noqCWq/_old 2016-02-11 12:37:55.000000000 +0100 +++ /var/tmp/diff_new_pack.noqCWq/_new 2016-02-11 12:37:55.000000000 +0100 @@ -1,87 +1,87 @@ -diff -rupN monit-5.8.1.old/monitrc monit-5.8.1/monitrc ---- monit-5.8.1.old/monitrc 2014-05-12 08:51:19.000000000 -0700 -+++ monit-5.8.1/monitrc 2014-07-29 17:17:04.747629705 -0700 -@@ -24,9 +24,9 @@ set daemon 60 # check serv - ## Set syslog logging with the 'daemon' facility. If the FACILITY option is - ## omitted, Monit will use 'user' facility by default. If you want to log to - ## a standalone log file instead, specify the full path to the log file --# --# set logfile syslog facility log_daemon --# -+ +--- monit-5.16/monitrc 2016-02-04 09:11:03.000000000 +0100 ++++ monit-5.16/monitrc 2016-02-09 08:51:00.185575004 +0100 +@@ -24,20 +24,20 @@ + ## Set syslog logging. If you want to log to a standalone log file instead, + ## specify the full path to the log file + # +-set logfile syslog +set logfile syslog facility log_daemon -+ + + # # ## Set the location of the Monit lock file which stores the process id of the ## running Monit instance. By default this file is stored in $HOME/.monit.pid -@@ -36,17 +36,17 @@ set daemon 60 # check serv + # +-# set pidfile /var/run/monit.pid ++set pidfile /var/run/monit.pid + # ## Set the location of the Monit id file which stores the unique id for the ## Monit instance. The id is generated and stored on first Monit start. By ## default the file is placed in $HOME/.monit.id. --# + # -# set idfile /var/.monit.id --# -+ +set idfile /run/monit/.monit.id -+ + # ## Set the location of the Monit state file which saves monitoring states ## on each cycle. By default the file is placed in $HOME/.monit.state. If - ## the state file is stored on a persistent filesystem, Monit will recover +@@ -45,7 +45,7 @@ ## the monitoring state across reboots. If it is on temporary filesystem, the ## state will be lost on reboot which may be convenient in some situations. --# + # -# set statefile /var/.monit.state --# -+ -+set statefile /run/monit/monit.state -+ ++set statefile /run/monit/.monit.state + # + # + +@@ -62,10 +62,10 @@ + ## Set global SSL options (just most common options showed, see manual for + ## full list). + # +-# set ssl { +-# verify : enable, # verify SSL certificates (disabled by default but STRONGLY RECOMMENDED) ++set ssl { ++ verify : enable, # verify SSL certificates (disabled by default but STRONGLY RECOMMENDED) + # selfsigned : allow # allow self signed SSL certificates (reject by default) +-# } ++} + # + # ## Set the list of mail servers for alert delivery. Multiple servers may be - ## specified using a comma separator. If the first mail server fails, Monit - # will use the second mail server in the list and so on. By default Monit uses -@@ -55,7 +55,9 @@ set daemon 60 # check serv - # set mailserver mail.bar.baz, # primary mailserver +@@ -77,6 +77,7 @@ # backup.bar.baz port 10025, # backup mailserver on port 10025 # localhost # fallback relay --# -+ + # +set mailserver localhost -+ # ## By default Monit will drop alert events if no mail servers are available. ## If you want to keep the alerts for later delivery retry, you can use the -@@ -67,7 +69,11 @@ set daemon 60 # check serv - # set eventqueue - # basedir /var/monit # set the base directory where events will be stored - # slots 100 # optionally limit the queue size --# -+ +@@ -85,9 +86,9 @@ + ## by using the SLOTS option (if omitted, the queue is limited by space + ## available in the back end filesystem). + # +-# set eventqueue +-# basedir /var/monit # set the base directory where events will be stored +-# slots 100 # optionally limit the queue size +set eventqueue -+ basedir /run/monit/events -+ slots 100 -+ ++ basedir /run/monit/events # set the base directory where events will be stored ++ slots 100 # optionally limit the queue size + # # ## Send status and events to M/Monit (for more informations about M/Monit - ## see http://mmonit.com/). By default Monit registers credentials with -@@ -101,16 +107,16 @@ set daemon 60 # check serv - ## You can override this message format or parts of it, such as subject +@@ -123,14 +124,14 @@ ## or sender using the MAIL-FORMAT statement. Macros such as $DATE, etc. ## are expanded at runtime. For example, to override the sender, use: --# + # -# set mail-format { from: [email protected] } --# -+ +set mail-format { from: monit@localhost } -+ + # # ## You can set alert recipients whom will receive alerts if/when a ## service defined in this file has errors. Alerts may be restricted on ## events by using a filter as in the second example below. --# + # -# set alert [email protected] # receive all alerts --# -+ -+set alert root@localhost # receive all alerts -+ ++set alert sysadm@localhost # receive all alerts + # ## Do not alert when Monit starts, stops or performs a user initiated action. ## This filter is recommended to avoid getting alerts for trivial cases. - #
