commit uftpd for openSUSE:Factory
Hello community,
here is the log from the commit of package uftpd for openSUSE:Factory checked
in at 2020-07-05 01:18:36
Comparing /work/SRC/openSUSE:Factory/uftpd (Old)
and /work/SRC/openSUSE:Factory/.uftpd.new.3060 (New)
Package is "uftpd"
Sun Jul 5 01:18:36 2020 rev:10 rq:818523 version:2.13
Changes:
--- /work/SRC/openSUSE:Factory/uftpd/uftpd.changes 2020-05-29
21:37:39.294699494 +0200
+++ /work/SRC/openSUSE:Factory/.uftpd.new.3060/uftpd.changes2020-07-05
01:20:29.325427370 +0200
@@ -1,0 +2,13 @@
+Tue Jun 30 22:19:31 UTC 2020 - Martin Hauke
+
+- Update to version 2.13
+ Changes
+ * Unit test framework in place, with regression test for issue
+ Fixes
+ * Socket leak in daemon accept() handling causing "Too many open
+files". Effectively causing denial of service
+ * Minor memory leak fixed, only allocated once at startup.
+Affects only non-MMU systems
+- Run testsuite
+
+---
Old:
uftpd-2.12.tar.gz
New:
uftpd-2.13.tar.gz
Other differences:
--
++ uftpd.spec ++
--- /var/tmp/diff_new_pack.czkpmh/_old 2020-07-05 01:20:30.245430192 +0200
+++ /var/tmp/diff_new_pack.czkpmh/_new 2020-07-05 01:20:30.249430205 +0200
@@ -2,7 +2,7 @@
# spec file for package uftpd
#
# Copyright (c) 2020 SUSE LLC
-# Copyright (c) 2018, Martin Hauke
+# Copyright (c) 2018-2020, Martin Hauke
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -18,12 +18,12 @@
Name: uftpd
-Version:2.12
+Version:2.13
Release:0
Summary:A combined TFTP/FTP server
License:ISC
Group: Productivity/Networking/Ftp/Servers
-URL:http://troglobit.com/uftpd.html
+URL:https://troglobit.com/uftpd.html
#Git-Clone: https://github.com/troglobit/uftpd.git
Source:
https://github.com/troglobit/%{name}/archive/v%{version}.tar.gz#/%{name}-%{version}.tar.gz
BuildRequires: autoconf
@@ -31,9 +31,14 @@
BuildRequires: pkgconfig
BuildRequires: pkgconfig(libite)
BuildRequires: pkgconfig(libuev) >= 2.2.0
-Conflicts: tftp
Conflicts: atftp
+Conflicts: tftp
Provides: tftp(server)
+# SECTION test requirements
+BuildRequires: ftp
+BuildRequires: netcfg
+BuildRequires: tftp
+# /SECTION
%description
uftpd serves both TFTP and FTP without any configuration file, starts
@@ -46,12 +51,16 @@
%build
autoreconf -fiv
%configure
-make %{?_smp_mflags}
+%make_build
%install
%make_install
rm -rf %{buildroot}/%{_datadir}/doc
+%check
+ulimit -n 1024
+make check || find . -name test-suite.log -exec cat {} +
+
%files
%doc README.md
%license LICENSE
++ uftpd-2.12.tar.gz -> uftpd-2.13.tar.gz ++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/uftpd-2.12/.github/CODE-OF-CONDUCT.md
new/uftpd-2.13/.github/CODE-OF-CONDUCT.md
--- old/uftpd-2.12/.github/CODE-OF-CONDUCT.md 1970-01-01 01:00:00.0
+0100
+++ new/uftpd-2.13/.github/CODE-OF-CONDUCT.md 2020-06-30 23:45:05.0
+0200
@@ -0,0 +1,45 @@
+Contributor Code of Conduct
+===
+
+As contributors and maintainers of this project, and in the interest of
+fostering an open and welcoming community, we pledge to respect all
+people who contribute through reporting issues, posting feature
+requests, updating documentation, submitting pull requests or patches,
+and other activities.
+
+We are committed to making participation in this project a
+harassment-free experience for everyone, regardless of level of
+experience, gender, gender identity and expression, sexual orientation,
+disability, personal appearance, body size, race, ethnicity, age,
+religion, or nationality.
+
+Examples of unacceptable behavior by participants include:
+
+* The use of sexualized language or imagery
+* Personal attacks
+* Trolling or insulting/derogatory comments
+* Public or private harassment
+* Publishing other's private information, such as physical or electronic
+ addresses, without explicit permission
+* Other unethical or unprofessional conduct.
+
+Project maintainers have the right and responsibility to remove, edit,
+or reject comments, commits, code, wiki edits, issues, and other
+contributions that are not aligned to this Code of Conduct. By adopting
+this Code of Conduct, project maintainers commit themselves to fairly
+and consistently applying these principles to every aspect of managing
+this project. Project maintainers who do not follow or enforce the Code
+of Conduct may be permanently removed from the project team.
+
+This code of conduct applies both
commit uftpd for openSUSE:Factory
Hello community, here is the log from the commit of package uftpd for openSUSE:Factory checked in at 2020-05-29 21:23:44 Comparing /work/SRC/openSUSE:Factory/uftpd (Old) and /work/SRC/openSUSE:Factory/.uftpd.new.3606 (New) Package is "uftpd" Fri May 29 21:23:44 2020 rev:9 rq:809770 version:2.12 Changes: --- /work/SRC/openSUSE:Factory/uftpd/uftpd.changes 2020-01-05 15:22:49.657611262 +0100 +++ /work/SRC/openSUSE:Factory/.uftpd.new.3606/uftpd.changes2020-05-29 21:37:39.294699494 +0200 @@ -1,0 +2,16 @@ +Mon May 25 17:27:46 UTC 2020 - Martin Hauke + +- Update to version 2.12 + Changes + * Use common log message format and log level when user enters +an invalid path. This unfortunately affects changes introduced +in v2.11 to increase logging at default log level. + * Fixes +Issue #30: When entering an invalid directory with the FTP +command CWD, a NULL ptr was deref. in a DBG() message even +though the log level is set to a value lower than LOG_DEBUG. +This caused uftpd to crash and cause denial of service. +Depending on the init/inetd system used this could be +permanent. + +--- Old: uftpd-2.11.tar.gz New: uftpd-2.12.tar.gz Other differences: -- ++ uftpd.spec ++ --- /var/tmp/diff_new_pack.eXcYMf/_old 2020-05-29 21:37:39.638700518 +0200 +++ /var/tmp/diff_new_pack.eXcYMf/_new 2020-05-29 21:37:39.642700530 +0200 @@ -1,7 +1,7 @@ # # spec file for package uftpd # -# Copyright (c) 2020 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2020 SUSE LLC # Copyright (c) 2018, Martin Hauke # # All modifications and additions to the file contributed by third parties @@ -18,7 +18,7 @@ Name: uftpd -Version:2.11 +Version:2.12 Release:0 Summary:A combined TFTP/FTP server License:ISC ++ uftpd-2.11.tar.gz -> uftpd-2.12.tar.gz ++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/uftpd-2.11/.travis.yml new/uftpd-2.12/.travis.yml --- old/uftpd-2.11/.travis.yml 2020-01-05 08:51:54.0 +0100 +++ new/uftpd-2.12/.travis.yml 2020-05-25 18:09:12.0 +0200 @@ -29,7 +29,7 @@ name: "troglobit/uftpd" description: "uftpd -- the no nonsense (T)FTP server" notification_email: troglo...@gmail.com -build_command_prepend: "./autogen.sh && PKG_CONFIG_PATH=/tmp/lib/pkgconfig ./configure --disable-silent-rules --prefix=/tmp" +build_command_prepend: "./autogen.sh && PKG_CONFIG_PATH=/tmp/lib/pkgconfig ./configure --disable-silent-rules --prefix=" build_command: "make -j5 clean all" branch_pattern: dev @@ -43,10 +43,10 @@ script: - ./autogen.sh - - PKG_CONFIG_PATH=/tmp/lib/pkgconfig ./configure --disable-silent-rules --prefix=/tmp + - PKG_CONFIG_PATH=/tmp/lib/pkgconfig ./configure --disable-silent-rules --prefix= - make clean - make -j5 - - make install-strip - - tree /tmp - - ldd /tmp/sbin/uftpd - - LD_LIBRARY_PATH=/tmp/lib /tmp/sbin/uftpd -h + - DESTDIR=~/tmp make install-strip + - tree ~/tmp + - ldd ~/tmp/sbin/uftpd + - LD_LIBRARY_PATH=/tmp/lib ~/tmp/sbin/uftpd -h diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/uftpd-2.11/ChangeLog.md new/uftpd-2.12/ChangeLog.md --- old/uftpd-2.11/ChangeLog.md 2020-01-05 08:51:54.0 +0100 +++ new/uftpd-2.12/ChangeLog.md 2020-05-25 18:09:12.0 +0200 @@ -4,6 +4,22 @@ All notable changes to the project are documented in this file. +[v2.12][] - 2020-05-25 +-- + +### Changes +- Use common log message format and log level when user enters an + invalid path. This unfortunately affects changes introduced in + [v2.11][] to increase logging at default log level. + +### Fixes +- Issue #30: When entering an invalid directory with the FTP command CWD, + a NULL ptr was deref. in a DBG() message even though the log level is + set to a value lower than `LOG_DEBUG`. This caused uftpd to crash + and cause denial of service. Depending on the init/inetd system used + this could be permanent. + + [v2.11][] - 2020-01-05 -- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/uftpd-2.11/README.md new/uftpd-2.12/README.md --- old/uftpd-2.11/README.md2020-01-05 08:51:54.0 +0100 +++ new/uftpd-2.12/README.md2020-05-25 18:09:12.0 +0200 @@ -104,6 +104,14 @@ Build & Install --- +### Debian/Ubuntu + +curl -sS https://deb.troglobit.com/pubkey.gpg | sudo apt-key add - +echo "deb [arch=amd64] https://deb.troglobit.com/debian stable main" | sudo tee
commit uftpd for openSUSE:Factory
Hello community, here is the log from the commit of package uftpd for openSUSE:Factory checked in at 2020-01-05 15:22:47 Comparing /work/SRC/openSUSE:Factory/uftpd (Old) and /work/SRC/openSUSE:Factory/.uftpd.new.6675 (New) Package is "uftpd" Sun Jan 5 15:22:47 2020 rev:8 rq:760936 version:2.11 Changes: --- /work/SRC/openSUSE:Factory/uftpd/uftpd.changes 2019-08-27 10:27:48.227912562 +0200 +++ /work/SRC/openSUSE:Factory/.uftpd.new.6675/uftpd.changes2020-01-05 15:22:49.657611262 +0100 @@ -1,0 +2,12 @@ +Sun Jan 5 09:44:30 UTC 2020 - Martin Hauke + +- Update to version 2.11 + * Increased logging at default log level. Now all relevant +interaction is logged. See the man page for how to adjust. + * Fix buffer overflow in FTP PORT parser + * Fix TFTP/FTP directory traversal regression + * Fix potential DOS through non-busy loop and segfault + * Fix potential segfault through empty FTP password + * Fix potential segfault through FTP PORT command + +--- Old: uftpd-2.10.tar.gz New: uftpd-2.11.tar.gz Other differences: -- ++ uftpd.spec ++ --- /var/tmp/diff_new_pack.Z0iMcQ/_old 2020-01-05 15:22:50.089611478 +0100 +++ /var/tmp/diff_new_pack.Z0iMcQ/_new 2020-01-05 15:22:50.093611480 +0100 @@ -1,7 +1,7 @@ # # spec file for package uftpd # -# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2020 SUSE LINUX GmbH, Nuernberg, Germany. # Copyright (c) 2018, Martin Hauke # # All modifications and additions to the file contributed by third parties @@ -18,7 +18,7 @@ Name: uftpd -Version:2.10 +Version:2.11 Release:0 Summary:A combined TFTP/FTP server License:ISC ++ uftpd-2.10.tar.gz -> uftpd-2.11.tar.gz ++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/uftpd-2.10/ChangeLog.md new/uftpd-2.11/ChangeLog.md --- old/uftpd-2.10/ChangeLog.md 2019-08-15 09:20:03.0 +0200 +++ new/uftpd-2.11/ChangeLog.md 2020-01-05 08:51:54.0 +0100 @@ -4,6 +4,22 @@ All notable changes to the project are documented in this file. +[v2.11][] - 2020-01-05 +-- + +### Changes +- Increased logging at default log level. Now users logging in, + downloading, uploading, directory creation/removal is logged by + default. Start with `-l error` to silence uftpd again + +### Fixes +- Fix buffer overflow in FTP PORT parser, reported by Aaron Esau +- Fix TFTP/FTP directory traversal regression , reported by Aaron Esau +- Fix potential DOS through non-busy loop and segfault, by Aaron Esau +- Fix potential segfault through empty FTP password, by Aaron Esau +- Fix potential segfault through FTP PORT command, by Aaron Esau + + [v2.10][] - 2019-08-15 -- @@ -436,7 +452,8 @@ Lines must end in the old `\r\n` format, rather than UNIX `\n`. -[UNRELEASED]:https://github.com/troglobit/uftpd/compare/v2.10...HEAD +[UNRELEASED]:https://github.com/troglobit/uftpd/compare/v2.11...HEAD +[v2.11]: https://github.com/troglobit/uftpd/compare/v2.10...v2.11 [v2.10]: https://github.com/troglobit/uftpd/compare/v2.9...v2.10 [v2.9]: https://github.com/troglobit/uftpd/compare/v2.8...v2.9 [v2.8]: https://github.com/troglobit/uftpd/compare/v2.7...v2.8 diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/uftpd-2.10/README.md new/uftpd-2.11/README.md --- old/uftpd-2.10/README.md2019-08-15 09:20:03.0 +0200 +++ new/uftpd-2.11/README.md2020-01-05 08:51:54.0 +0100 @@ -25,7 +25,7 @@ uftpd [-hnsv] [-l LEVEL] [-o ftp=PORT,tftp=PORT,writable] [PATH] -h Show this help text - -l LEVEL Set log level: none, err, info, notice (default), debug + -l LEVEL Set log level: none, err, notice (default), info, debug -n Run in foreground, do not detach from controlling terminal -o OPT Options: ftp=PORT @@ -63,6 +63,9 @@ uftpd -o writable PATH +> **Note:** since v2.11 uftpd logs a lot more events by default. Set up +> your syslogd to redirect `LOG_FTP` to a separate log file, or reduce +> the log level of uftpd using `-l error` to only log errors and higher. Running from inetd -- @@ -88,7 +91,7 @@ Caveat -- -uftpd is primarily not targetted at secure installations, it is targeted +uftpd is primarily not targeted at secure installations, it is targeted at users in need of a *simple* FTP/TFTP server. uftpd allows symlinks outside the FTP root, as well as a group writable diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
commit uftpd for openSUSE:Factory
Hello community, here is the log from the commit of package uftpd for openSUSE:Factory checked in at 2019-08-27 10:27:44 Comparing /work/SRC/openSUSE:Factory/uftpd (Old) and /work/SRC/openSUSE:Factory/.uftpd.new.7948 (New) Package is "uftpd" Tue Aug 27 10:27:44 2019 rev:7 rq:726274 version:2.10 Changes: --- /work/SRC/openSUSE:Factory/uftpd/uftpd.changes 2019-07-30 12:39:25.914933313 +0200 +++ /work/SRC/openSUSE:Factory/.uftpd.new.7948/uftpd.changes2019-08-27 10:27:48.227912562 +0200 @@ -1,0 +2,10 @@ +Mon Aug 26 20:56:41 UTC 2019 - Martin Hauke + +- Update to version 2.10 + * Add support for TFTP WRQ, i.e. for clients sending files to +server + * Fix invalid TFTP error codes, now uses custom error string to +code 0 + * Slightly improved debug messages + +--- Old: uftpd-2.9.tar.gz New: uftpd-2.10.tar.gz Other differences: -- ++ uftpd.spec ++ --- /var/tmp/diff_new_pack.13v7ay/_old 2019-08-27 10:27:48.687912528 +0200 +++ /var/tmp/diff_new_pack.13v7ay/_new 2019-08-27 10:27:48.691912528 +0200 @@ -18,7 +18,7 @@ Name: uftpd -Version:2.9 +Version:2.10 Release:0 Summary:A combined TFTP/FTP server License:ISC ++ uftpd-2.9.tar.gz -> uftpd-2.10.tar.gz ++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/uftpd-2.9/ChangeLog.md new/uftpd-2.10/ChangeLog.md --- old/uftpd-2.9/ChangeLog.md 2019-07-29 10:53:23.0 +0200 +++ new/uftpd-2.10/ChangeLog.md 2019-08-15 09:20:03.0 +0200 @@ -4,6 +4,18 @@ All notable changes to the project are documented in this file. +[v2.10][] - 2019-08-15 +-- + +### Changes +- Issue #25: Add support for TFTP write support (WRQ) +- Slightly improved debug messages. + +### Fixes +- Minor fix to TFTP error codes, only use standardized codes, and + code 0 + custom error message for everything else + + [v2.9][] - 2019-07-29 - @@ -16,7 +28,7 @@ - Fixes failing `dpkg -P uftpd` due to bug in postrm script ### Fixes -- Issue #21: Check for `pkg-config` before lookging for deps. +- Issue #21: Check for `pkg-config` before looking for deps. - Issue #22: Check FTP root security *after* having dropped privs. This means no longer having to run with `-o writable` by default - Issue #23: FTP command `CWD /` does not work, affects all clients. @@ -44,7 +56,7 @@ - Require libuEv v2.2, or later ### Fixes -- Issue #17: Issues with relative FTP root when running unpriviliged +- Issue #17: Issues with relative FTP root when running unprivileged [v2.6][] - 2018-07-03 @@ -90,7 +102,7 @@ ### Changes - Handle non-chrooted use-cases better, ensure CWD starts with / -- Increased default inactivty timer: 20 sec --> 180 sec +- Increased default inactivity timer: 20 sec --> 180 sec - Ensure FTP `PASV` and `PORT` sockets are set non-blocking to prevent blocking the event loop - [README.md][] updates, add usage section and improve build + install @@ -175,7 +187,7 @@ [v2.0][] - 2016-01-22 - -Sleak, smart, simple ... UNIX +Sleek, smart, simple ... UNIX ### Changes - Greatly simplified command line syntax @@ -220,7 +232,7 @@ - Major refactor of both FTP and TFTP servers to use libuEv better. - Move to use [libite][] v1.0.0 for `strlcpy()`, `strlcat()`, `pidfile()` and more. -- Add proper session timout to TFTP, like what FTP already has. +- Add proper session timeout to TFTP, like what FTP already has. - Add support for `NLST` FTP command, needed for multiple get operations. This fixes issue #2, thanks to @oz123 on GitHub for pointing this out! - Add support for `FEAT` and `HELP` FTP commands used by some clients. @@ -301,7 +313,7 @@ ### Fixes - Fix nasty invalid `sizeof()` argument to `recv()` causing uftpd to only read 4/8 bytes (32/64 bit arch) at a time from the FTP socket. - This should greatly reduce CPU utilisation and improve xfer speeds. + This should greatly reduce CPU utilization and improve xfer speeds. Found by [Coverity Scan][]. - Fix minor resource leak in `ftp_session()` when `getsockname()` or `getpeername()` fail. Minor fix because the session exits and the OS @@ -349,7 +361,7 @@ - Incompatible changes to the command line arguments, compared to v1.2! - Add libuEv as a GIT submodule, handles signals, timers, and all I/O. - Refactor all signal handling, timers, and socket `poll()` calls to - use libuEv instead. Much cleaner and maintaiable code as a result. + use libuEv instead. Much cleaner and maintainable code as a result. - Clarify copyright claims, not much remains of the original
commit uftpd for openSUSE:Factory
Hello community, here is the log from the commit of package uftpd for openSUSE:Factory checked in at 2019-07-30 12:39:21 Comparing /work/SRC/openSUSE:Factory/uftpd (Old) and /work/SRC/openSUSE:Factory/.uftpd.new.4126 (New) Package is "uftpd" Tue Jul 30 12:39:21 2019 rev:6 rq:719745 version:2.9 Changes: --- /work/SRC/openSUSE:Factory/uftpd/uftpd.changes 2019-06-01 09:51:55.111274741 +0200 +++ /work/SRC/openSUSE:Factory/.uftpd.new.4126/uftpd.changes2019-07-30 12:39:25.914933313 +0200 @@ -1,0 +2,10 @@ +Mon Jul 29 20:02:51 UTC 2019 - Martin Hauke + +- Update to version 2.9 + * Check FTP root security after dropping privileges + * Revert insecure default: "writable FTP root", introduced in v2.8 + * Revert part of issue #18 to fix issue #23; "CWD /" doesn't work + * Fix spelling errors found by Lintian + * Fix package description, more formal and less personal + +--- Old: uftpd-2.8.tar.gz New: uftpd-2.9.tar.gz Other differences: -- ++ uftpd.spec ++ --- /var/tmp/diff_new_pack.DZVk68/_old 2019-07-30 12:39:26.678933186 +0200 +++ /var/tmp/diff_new_pack.DZVk68/_new 2019-07-30 12:39:26.682933185 +0200 @@ -18,7 +18,7 @@ Name: uftpd -Version:2.8 +Version:2.9 Release:0 Summary:A combined TFTP/FTP server License:ISC ++ uftpd-2.8.tar.gz -> uftpd-2.9.tar.gz ++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/uftpd-2.8/.gitignore new/uftpd-2.9/.gitignore --- old/uftpd-2.8/.gitignore2019-05-28 06:22:26.0 +0200 +++ new/uftpd-2.9/.gitignore2019-07-29 10:53:23.0 +0200 @@ -10,7 +10,7 @@ Makefile.in aclocal.m4 ar-lib -/autom4te.cache/* +autom4te.cache/* compile config.* configure @@ -18,19 +18,10 @@ install-sh libtool ltmain.sh -misc/ missing stamp-h1 -uftpd -debian/files -debian/uftpd.* TAGS -/GPATH -/GRTAGS -/GSYMS -/GTAGS -/CHANGELOG.html -/README.html -/uftpd.html -/tok -/uftp +GPATH +GRTAGS +GSYMS +GTAGS diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/uftpd-2.8/ChangeLog.md new/uftpd-2.9/ChangeLog.md --- old/uftpd-2.8/ChangeLog.md 2019-05-28 06:22:26.0 +0200 +++ new/uftpd-2.9/ChangeLog.md 2019-07-29 10:53:23.0 +0200 @@ -4,6 +4,25 @@ All notable changes to the project are documented in this file. +[v2.9][] - 2019-07-29 +- + +### Changes +- Reduced log level for "Invalid path" and "Failed realpath()" syslog + messages. Only relevant when debugging. For use on the Internet it + will otherwise cause an excessive amount of logs due to GXHLGSL.txt +- Debian packaging fixes and updates: + - Reverts `-o writable`, due to fixing issue #22 + - Fixes failing `dpkg -P uftpd` due to bug in postrm script + +### Fixes +- Issue #21: Check for `pkg-config` before lookging for deps. +- Issue #22: Check FTP root security *after* having dropped privs. + This means no longer having to run with `-o writable` by default +- Issue #23: FTP command `CWD /` does not work, affects all clients. + This is a regression introduced in v2.8 while fixing #18 + + [v2.8][] - 2019-05-28 - @@ -405,7 +424,8 @@ Lines must end in the old `\r\n` format, rather than UNIX `\n`. -[UNRELEASED]:https://github.com/troglobit/uftpd/compare/v2.8...HEAD +[UNRELEASED]:https://github.com/troglobit/uftpd/compare/v2.9...HEAD +[v2.9]: https://github.com/troglobit/uftpd/compare/v2.8...v2.9 [v2.8]: https://github.com/troglobit/uftpd/compare/v2.7...v2.8 [v2.7]: https://github.com/troglobit/uftpd/compare/v2.6...v2.7 [v2.6]: https://github.com/troglobit/uftpd/compare/v2.5...v2.6 diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/uftpd-2.8/Makefile.am new/uftpd-2.9/Makefile.am --- old/uftpd-2.8/Makefile.am 2019-05-28 06:22:26.0 +0200 +++ new/uftpd-2.9/Makefile.am 2019-07-29 10:53:23.0 +0200 @@ -1,5 +1,5 @@ SUBDIRS= src man -doc_DATA = README.md LICENSE +doc_DATA = README.md LICENSE ChangeLog.md EXTRA_DIST = README.md LICENSE ChangeLog.md ## Generate .deb package diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/uftpd-2.8/README.md new/uftpd-2.9/README.md --- old/uftpd-2.8/README.md 2019-05-28 06:22:26.0 +0200 +++ new/uftpd-2.9/README.md 2019-07-29 10:53:23.0 +0200 @@ -58,8 +58,8 @@ Set `PORT` to zero (0) to disable either service. -By default, uftpd will exit if it detects the FTP root is writable. To -allow writable FTP root: +New
commit uftpd for openSUSE:Factory
Hello community, here is the log from the commit of package uftpd for openSUSE:Factory checked in at 2019-06-01 09:51:53 Comparing /work/SRC/openSUSE:Factory/uftpd (Old) and /work/SRC/openSUSE:Factory/.uftpd.new.5148 (New) Package is "uftpd" Sat Jun 1 09:51:53 2019 rev:5 rq:706243 version:2.8 Changes: --- /work/SRC/openSUSE:Factory/uftpd/uftpd.changes 2019-03-04 09:24:43.176554076 +0100 +++ /work/SRC/openSUSE:Factory/.uftpd.new.5148/uftpd.changes2019-06-01 09:51:55.111274741 +0200 @@ -1,0 +2,14 @@ +Tue May 28 17:44:15 UTC 2019 - Martin Hauke + +- Update to version 2.8 + Changes: + * The FTP command processor now always converts all inbound +commands to uppercase to handle clients sending commands in +lowercase + * Any arguments to the FTP LIST command are now ignored + * Improved user feedback on bad FTP root error message + Fixes + * Fix #18: KDE Dolphin, FTP client interop problems. + * Fix off-by-one regression introduced in v2.5 + +--- Old: uftpd-2.7.tar.gz New: uftpd-2.8.tar.gz Other differences: -- ++ uftpd.spec ++ --- /var/tmp/diff_new_pack.5uAhHY/_old 2019-06-01 09:51:55.599274574 +0200 +++ /var/tmp/diff_new_pack.5uAhHY/_new 2019-06-01 09:51:55.599274574 +0200 @@ -18,7 +18,7 @@ Name: uftpd -Version:2.7 +Version:2.8 Release:0 Summary:A combined TFTP/FTP server License:ISC ++ uftpd-2.7.tar.gz -> uftpd-2.8.tar.gz ++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/uftpd-2.7/ChangeLog.md new/uftpd-2.8/ChangeLog.md --- old/uftpd-2.7/ChangeLog.md 2019-03-03 15:52:00.0 +0100 +++ new/uftpd-2.8/ChangeLog.md 2019-05-28 06:22:26.0 +0200 @@ -4,6 +4,19 @@ All notable changes to the project are documented in this file. +[v2.8][] - 2019-05-28 +- + +### Changes +- The FTP command processor now always converts all inbound commands + to uppercase to handle clients sending commands in lowercase +- Any arguments to the FTP `LIST` command are now ignored +- Improved user feedback on bad FTP root error message + +### Fixes +- Fix #18: KDE Dolphin, FTP client interop problems. + + [v2.7][] - 2019-03-03 - @@ -392,7 +405,8 @@ Lines must end in the old `\r\n` format, rather than UNIX `\n`. -[UNRELEASED]:https://github.com/troglobit/uftpd/compare/v2.7...HEAD +[UNRELEASED]:https://github.com/troglobit/uftpd/compare/v2.8...HEAD +[v2.8]: https://github.com/troglobit/uftpd/compare/v2.7...v2.8 [v2.7]: https://github.com/troglobit/uftpd/compare/v2.6...v2.7 [v2.6]: https://github.com/troglobit/uftpd/compare/v2.5...v2.6 [v2.5]: https://github.com/troglobit/uftpd/compare/v2.4...v2.5 diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/uftpd-2.7/configure.ac new/uftpd-2.8/configure.ac --- old/uftpd-2.7/configure.ac 2019-03-03 15:52:00.0 +0100 +++ new/uftpd-2.8/configure.ac 2019-05-28 06:22:26.0 +0200 @@ -1,4 +1,4 @@ -AC_INIT([uftpd], [2.7], [https://github.com/troglobit/uftpd/issues],, [http://troglobit.com/uftpd.html]) +AC_INIT([uftpd], [2.8], [https://github.com/troglobit/uftpd/issues],, [http://troglobit.com/uftpd.html]) AM_INIT_AUTOMAKE([1.11 foreign no-dist-gzip dist-xz]) AM_SILENT_RULES([yes]) diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/uftpd-2.7/debian/changelog new/uftpd-2.8/debian/changelog --- old/uftpd-2.7/debian/changelog 2019-03-03 15:52:00.0 +0100 +++ new/uftpd-2.8/debian/changelog 2019-05-28 06:22:26.0 +0200 @@ -1,3 +1,12 @@ +uftpd (2.8) unstable; urgency=medium + + * Fix off-by-one regression introduced in v2.5 + * Convert all commands from user to uppercase for processing + * Skip any and *all* FTP LIST options + * Enable users group writable FTP root in /etc/inetd.conf + + -- Joachim Nilsson Tue, 28 May 2019 06:22:18 +0200 + uftpd (2.7) unstable; urgency=medium * Bug fix release diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/uftpd-2.7/debian/postinst new/uftpd-2.8/debian/postinst --- old/uftpd-2.7/debian/postinst 2019-03-03 15:52:00.0 +0100 +++ new/uftpd-2.8/debian/postinst 2019-05-28 06:22:26.0 +0200 @@ -6,8 +6,8 @@ # Source debconf library. . /usr/share/debconf/confmodule -FTPENTRY="ftp stream tcp nowait root/usr/sbin/tcpd /usr/sbin/in.ftpd" -TFTPENTRY="tftpdgram udp waitroot/usr/sbin/tcpd /usr/sbin/in.tftpd" +FTPENTRY="ftp
commit uftpd for openSUSE:Factory
Hello community, here is the log from the commit of package uftpd for openSUSE:Factory checked in at 2019-03-04 09:24:10 Comparing /work/SRC/openSUSE:Factory/uftpd (Old) and /work/SRC/openSUSE:Factory/.uftpd.new.28833 (New) Package is "uftpd" Mon Mar 4 09:24:10 2019 rev:4 rq:681113 version:2.7 Changes: --- /work/SRC/openSUSE:Factory/uftpd/uftpd.changes 2018-07-31 15:59:14.079529655 +0200 +++ /work/SRC/openSUSE:Factory/.uftpd.new.28833/uftpd.changes 2019-03-04 09:24:43.176554076 +0100 @@ -1,0 +2,10 @@ +Sun Mar 3 16:50:58 UTC 2019 - Martin Hauke + +- Update to version 2.7 + Changes + * Documentation updates, commands added in v2.5 and writable opt + * Require libuEv v2.2, or later + Fixes + * Issues with relative FTP root when running unpriviliged + +--- Old: uftpd-2.6.tar.gz New: uftpd-2.7.tar.gz Other differences: -- ++ uftpd.spec ++ --- /var/tmp/diff_new_pack.Aj6LIA/_old 2019-03-04 09:24:43.776553968 +0100 +++ /var/tmp/diff_new_pack.Aj6LIA/_new 2019-03-04 09:24:43.780553967 +0100 @@ -1,7 +1,7 @@ # # spec file for package uftpd # -# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany. # Copyright (c) 2018, Martin Hauke # # All modifications and additions to the file contributed by third parties @@ -13,12 +13,12 @@ # license that conforms to the Open Source Definition (Version 1.9) # published by the Open Source Initiative. -# Please submit bugfixes or comments via http://bugs.opensuse.org/ +# Please submit bugfixes or comments via https://bugs.opensuse.org/ # Name: uftpd -Version:2.6 +Version:2.7 Release:0 Summary:A combined TFTP/FTP server License:ISC @@ -30,7 +30,7 @@ BuildRequires: automake BuildRequires: pkgconfig BuildRequires: pkgconfig(libite) -BuildRequires: pkgconfig(libuev) +BuildRequires: pkgconfig(libuev) >= 2.2.0 Conflicts: tftp Conflicts: atftp Provides: tftp(server) ++ uftpd-2.6.tar.gz -> uftpd-2.7.tar.gz ++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/uftpd-2.6/.travis.yml new/uftpd-2.7/.travis.yml --- old/uftpd-2.6/.travis.yml 2018-07-03 17:32:03.0 +0200 +++ new/uftpd-2.7/.travis.yml 2019-03-03 15:52:00.0 +0100 @@ -34,11 +34,11 @@ branch_pattern: dev install: - - wget https://github.com/troglobit/libuev/releases/download/v2.1.0/libuev-2.1.0.tar.xz + - wget https://github.com/troglobit/libuev/releases/download/v2.2.0/libuev-2.2.0.tar.xz - wget https://github.com/troglobit/libite/releases/download/v1.5.0/libite-1.5.0.tar.xz - - tar xf libuev-2.1.0.tar.xz + - tar xf libuev-2.2.0.tar.xz - tar xf libite-1.5.0.tar.xz - - (cd libuev-2.1.0 && ./configure --prefix=/tmp && make && make install-strip) + - (cd libuev-2.2.0 && ./configure --prefix=/tmp && make && make install-strip) - (cd libite-1.5.0 && ./configure --prefix=/tmp && make && make install-strip) script: diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/uftpd-2.6/ChangeLog.md new/uftpd-2.7/ChangeLog.md --- old/uftpd-2.6/ChangeLog.md 2018-07-03 17:32:03.0 +0200 +++ new/uftpd-2.7/ChangeLog.md 2019-03-03 15:52:00.0 +0100 @@ -3,8 +3,20 @@ All notable changes to the project are documented in this file. -[v2.6][UNRELEASED] --- + +[v2.7][] - 2019-03-03 +- + +### Changes +- Documentation updates, commands added in v2.5 and `writable` opt +- Require libuEv v2.2, or later + +### Fixes +- Issue #17: Issues with relative FTP root when running unpriviliged + + +[v2.6][] - 2018-07-03 +- Bug fix release. @@ -380,8 +392,10 @@ Lines must end in the old `\r\n` format, rather than UNIX `\n`. -[UNRELEASED]:https://github.com/troglobit/uftpd/compare/v2.5...HEAD -[v2.5]: https://github.com/troglobit/uftpd/compare/v2.5...v2.5 +[UNRELEASED]:https://github.com/troglobit/uftpd/compare/v2.7...HEAD +[v2.7]: https://github.com/troglobit/uftpd/compare/v2.6...v2.7 +[v2.6]: https://github.com/troglobit/uftpd/compare/v2.5...v2.6 +[v2.5]: https://github.com/troglobit/uftpd/compare/v2.4...v2.5 [v2.4]: https://github.com/troglobit/uftpd/compare/v2.3...v2.4 [v2.3]: https://github.com/troglobit/uftpd/compare/v2.2...v2.3 [v2.2]: https://github.com/troglobit/uftpd/compare/v2.1...v2.2 diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/uftpd-2.6/LICENSE new/uftpd-2.7/LICENSE --- old/uftpd-2.6/LICENSE
commit uftpd for openSUSE:Factory
Hello community, here is the log from the commit of package uftpd for openSUSE:Factory checked in at 2018-07-31 15:59:10 Comparing /work/SRC/openSUSE:Factory/uftpd (Old) and /work/SRC/openSUSE:Factory/.uftpd.new (New) Package is "uftpd" Tue Jul 31 15:59:10 2018 rev:3 rq:626023 version:2.6 Changes: --- /work/SRC/openSUSE:Factory/uftpd/uftpd.changes 2018-07-06 10:42:20.099230511 +0200 +++ /work/SRC/openSUSE:Factory/.uftpd.new/uftpd.changes 2018-07-31 15:59:14.079529655 +0200 @@ -1,0 +2,5 @@ +Fri Jul 27 14:47:13 UTC 2018 - jeng...@inai.de + +- Remove rhetoric filler wording from descriptions. + +--- Other differences: -- ++ uftpd.spec ++ --- /var/tmp/diff_new_pack.5yJuFu/_old 2018-07-31 15:59:14.607530551 +0200 +++ /var/tmp/diff_new_pack.5yJuFu/_new 2018-07-31 15:59:14.611530557 +0200 @@ -20,7 +20,7 @@ Name: uftpd Version:2.6 Release:0 -Summary:The no nonsense TFTP/FTP server +Summary:A combined TFTP/FTP server License:ISC Group: Productivity/Networking/Ftp/Servers URL:http://troglobit.com/uftpd.html @@ -36,14 +36,9 @@ Provides: tftp(server) %description -An excellent choice for those of us who never wanted to learn every -config file format on this planet. uftpd has no configuration, and -starts automatically from the traditional UNIX inetd super server, -neatly tcpwrapped for your safety. - -Hardcore Internet users and anyone concerned about security should -probably consider a separate TFTP server and for FTP look at one of: -vsftpd, proftpd or pure-ftpd. +uftpd serves both TFTP and FTP without any configuration file, starts +automatically from the traditional UNIX inetd super server, and is +tcpwrapped. %prep %setup -q
commit uftpd for openSUSE:Factory
Hello community,
here is the log from the commit of package uftpd for openSUSE:Factory checked
in at 2018-07-06 10:42:14
Comparing /work/SRC/openSUSE:Factory/uftpd (Old)
and /work/SRC/openSUSE:Factory/.uftpd.new (New)
Package is "uftpd"
Fri Jul 6 10:42:14 2018 rev:2 rq:620668 version:2.6
Changes:
--- /work/SRC/openSUSE:Factory/uftpd/uftpd.changes 2018-06-29
22:36:15.266009424 +0200
+++ /work/SRC/openSUSE:Factory/.uftpd.new/uftpd.changes 2018-07-06
10:42:20.099230511 +0200
@@ -1,0 +2,9 @@
+Wed Jul 4 15:20:38 UTC 2018 - mar...@gmx.de
+
+- Update to version 2.6
+ Fixes
+ * Issue #16: 100% CPU when client session exits
+ * Add missing include file for `gettimeofday()`
+ * Flush stdout logging when running in the foreground
+
+---
Old:
uftpd-2.5.tar.gz
New:
uftpd-2.6.tar.gz
Other differences:
--
++ uftpd.spec ++
--- /var/tmp/diff_new_pack.TgoElx/_old 2018-07-06 10:42:20.547229978 +0200
+++ /var/tmp/diff_new_pack.TgoElx/_new 2018-07-06 10:42:20.547229978 +0200
@@ -1,6 +1,7 @@
#
# spec file for package uftpd
#
+# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany.
# Copyright (c) 2018, Martin Hauke
#
# All modifications and additions to the file contributed by third parties
@@ -17,7 +18,7 @@
Name: uftpd
-Version:2.5
+Version:2.6
Release:0
Summary:The no nonsense TFTP/FTP server
License:ISC
++ uftpd-2.5.tar.gz -> uftpd-2.6.tar.gz ++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/uftpd-2.5/ChangeLog.md new/uftpd-2.6/ChangeLog.md
--- old/uftpd-2.5/ChangeLog.md 2018-06-06 21:57:05.0 +0200
+++ new/uftpd-2.6/ChangeLog.md 2018-07-03 17:32:03.0 +0200
@@ -3,6 +3,16 @@
All notable changes to the project are documented in this file.
+[v2.6][UNRELEASED]
+--
+
+Bug fix release.
+
+### Fixes
+- Issue #16: 100% CPU when client session exits
+- Add missing include file for `gettimeofday()`
+- Flush stdout logging when running in the foreground
+
[v2.5][] - 2018-06-06
-
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/uftpd-2.5/configure.ac new/uftpd-2.6/configure.ac
--- old/uftpd-2.5/configure.ac 2018-06-06 21:57:05.0 +0200
+++ new/uftpd-2.6/configure.ac 2018-07-03 17:32:03.0 +0200
@@ -1,4 +1,4 @@
-AC_INIT([uftpd], [2.5], [https://github.com/troglobit/uftpd/issues])
+AC_INIT([uftpd], [2.6], [https://github.com/troglobit/uftpd/issues])
AM_INIT_AUTOMAKE([1.11 foreign no-dist-gzip dist-xz])
AM_SILENT_RULES([yes])
@@ -12,7 +12,8 @@
# Configuration.
AC_HEADER_STDC
-AC_CHECK_FUNCS(strstr getopt getsubopt)
+AC_CHECK_HEADERS(sys/time.h)
+AC_CHECK_FUNCS(strstr getopt getsubopt gettimeofday)
# Check for uint[8,16,32]_t
AC_TYPE_UINT8_T
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/uftpd-2.5/debian/changelog
new/uftpd-2.6/debian/changelog
--- old/uftpd-2.5/debian/changelog 2018-06-06 21:57:05.0 +0200
+++ new/uftpd-2.6/debian/changelog 2018-07-03 17:32:03.0 +0200
@@ -1,3 +1,11 @@
+uftpd (2.6) unstable; urgency=medium
+
+ * Bug fix release
+ * Really fix 100% CPU issue, take two. Some clients managed to trigger
+a bug caused by calling `uev_exit()` twice on client session exit
+
+ -- Joachim Nilsson Tue, 03 Jul 2018 17:14:00 +0200
+
uftpd (2.5) unstable; urgency=critical
* Really fix 100% CPU issue
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/uftpd-2.5/src/common.c new/uftpd-2.6/src/common.c
--- old/uftpd-2.5/src/common.c 2018-06-06 21:57:05.0 +0200
+++ new/uftpd-2.6/src/common.c 2018-07-03 17:32:03.0 +0200
@@ -280,13 +280,10 @@
int del_session(ctrl_t *ctrl, int isftp)
{
- uev_ctx_t *ctx;
-
DBG("%sFTP Client session ended.", isftp ? "": "T" );
if (!ctrl)
return -1;
- ctx = ctrl->ctx;
if (isftp && ctrl->sd > 0) {
shutdown(ctrl->sd, SHUT_RDWR);
@@ -310,9 +307,6 @@
free(ctrl->ctx);
free(ctrl);
- if (!inetd)
- return uev_exit(ctx);
-
return 0;
}
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/uftpd-2.5/src/ftpcmd.c new/uftpd-2.6/src/ftpcmd.c
--- old/uftpd-2.5/src/ftpcmd.c 2018-06-06 21:57:05.0 +0200
+++ new/uftpd-2.6/src/ftpcmd.c 2018-07-03 17:32:03.0 +0200
@@ -17,6 +17,9 @@
#include "uftpd.h"
#include
+#ifdef HAVE_SYS_TIME_H
+# include
+#endif
typedef struct {
char
