| non port: dns/dnsmasq/distinfo |
|
SVNWeb
|
Number of commits found: 78 |
|
Mon, 6 Feb 2023
|
[ 22:00 Matthias Andree (mandree)  ]    156fb7b
dns/dnsmasq*: update to v2.89, and disable -devel port
Changelog:
https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=blob_plain;f=CHANGELOG;hb=v2.89
MFH: 2023Q1
|
|
Mon, 5 Dec 2022
|
[ 19:48 Matthias Andree (mandree) ] e5e31e3
dns/dnsmasq*: update to 2.88, and ignore -devel port
ChangeLog:
https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=blob_plain;f=CHANGELOG;hb=v2.88
|
|
Mon, 26 Sep 2022
|
[ 16:20 Matthias Andree (mandree) ] 7bf80ce
dns/dnsmasq*: update to v2.87
and set dnsmasq-devel port to IGNORE.
Changelog:
https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=blob_plain;f=CHANGELOG;hb=v2.87
https://www.mail-archive.com/dnsmasq-discuss@lists.thekelleys.org.uk/msg16445.html
MFH: 2022Q3
|
|
Thu, 9 Sep 2021
|
[ 15:48 Matthias Andree (mandree) ] d8ba062
dns/dnsmasq: update to v2.86, ignore dnsmasq-devel
Changelog:
https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=blob_plain;f=CHANGELOG;hb=v2.86
|
|
Thu, 8 Apr 2021
|
[ 21:54 Matthias Andree (mandree) ] e0a4c5c
dns/dnsmasq: security update to v2.85 release
Changelog:
https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=blob_plain;f=CHANGELOG;hb=v2.85
Configurations where server lines contain a @ character,
f.i. server=1.1.1.1@em0 or server=1.1.1.1@192.0.2.1, disabled
source port randomization, making cache poisoning attacks possible.
v2.85 mitigates this.
MFH: 2021Q2
Security: CVE-2021-3448
Security: 5b72b1ff-877c-11eb-bd4f-2f1d57dafe46 (VuXML)
|
|
Tue, 26 Jan 2021
|
[ 19:19 mandree ]  
dns/dnsmasq: upgrade to v2.84 (regression fixes)
Upstream blessed v2.84 rc2 (which 2.83_1 effectively already was)
into v2.84 release, so take it (and patch the upstream bug of
leaving "rc2" in the version out).
MFH: 2021Q1 (regression fixes for security fix release)
|
|
Wed, 20 Jan 2021
|
[ 19:20 mandree ]
dns/dnsmasq: security update to 2.83
CHANGELOG of version 2.83:
Use the values of --min-port and --max-port in outgoing
TCP connections to upstream DNS servers.
Fix a remote buffer overflow problem in the DNSSEC code. Any
dnsmasq with DNSSEC compiled in and enabled is vulnerable to this,
referenced by CVE-2020-25681, CVE-2020-25682, CVE-2020-25683
CVE-2020-25687.
Be sure to only accept UDP DNS query replies at the address
from which the query was originated. This keeps as much entropy
in the {query-ID, random-port} tuple as possible, to help defeat(Only the first 15 lines of the commit message are shown above  )
|
|
Sun, 19 Jul 2020
|
[ 23:07 mandree ]
dns/dnsmasq: update to 2.82 (regression and bug fixes)
Quoting Simon Kelley "This fixes a nasty problem
introduced in 2.81 which causes random crashes on systems where there's
significant DNS activity over TCP. It also fixes DNSSEC validation
problems with zero-TTL DNSKEY and DS records."
Changelog:
<http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=blob;f=CHANGELOG;h=e6a223119ffcd9ead6cb15153cd49bd3c61e114f;hb=f60fea1fb0a288011f57a25dfb653b8f6f8b46b9#l1>
MFH: 2020Q3 (regression and bug fixes)
|
|
Sun, 12 Apr 2020
|
[ 01:59 mandree ]
dns/dnsmasq: update to 2.81, unlink dnsmasq-devel
Update dns/dnsmasq to the new upstream version 2.81.
The Makefile has been rearranged with portfmt, except the
LDFLAGS+=..._intllibs... line that portfmt does not recognize.
Changelog:
<http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=blob;f=CHANGELOG;h=60b08d015b2d5a979f39b8ad43633b419135cb64;hb=7ddb99d251c3f5870c8c308a98bb8f283c831872#l1>
(or see CHANGELOG in the package)
Unlink dnsmasq-devel from the build, but keep the sources,
and mark it IGNORE and list dnsmasq-devel in MOVED.
|
|
Fri, 19 Oct 2018
|
[ 17:47 mandree ]
Upgrade dns/dnsmasq to v2.80.
Security: the installed example configuration file shows a way of
disabling WPAD hijacking, but leaves it commented out. Extend pkg-message.
Changelog: <http://thekelleys.org.uk/dnsmasq/CHANGELOG>
Since installing v2.80 isn't a fix against the vulnerability, and fixing
it needs administrator intervention on upgrades, I am not marking this in
vuxml for now, since we'd need to mark v2.80 vulnerable, too.
MFH: 2018Q4
Security: CERT VU#598349
|
|
Mon, 19 Mar 2018
|
[ 21:10 mandree ]
dns/dnsmasq update to release v2.79
Note there are a few incompatible changes. For details, please see the...
Changelog: <http://thekelleys.org.uk/dnsmasq/CHANGELOG>
|
|
Mon, 2 Oct 2017
|
[ 18:40 brnrd ]
dns/dnsmasq: Security update to 2.78
PR: 222739
Approved by: ports-secteam
MFH: 2017Q4
Security: b77b5646-a778-11e7-ac58-b499baebfeaf
|
|
Thu, 1 Jun 2017
|
[ 17:55 mandree ]
Update to new release 2.77.
Changelog: <http://thekelleys.org.uk/dnsmasq/CHANGELOG>
|
|
Wed, 18 May 2016
|
[ 22:17 mandree ]
Update, new upstream feature+bugfix release v2.76
The upstream maintainer's change log is here, and in the installed
CHANGELOG file:
<http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=blob_plain;f=CHANGELOG;hb=v2.76>
Drop two patch files that were previously cherry-picked from the
post-v2.75 upstream repository and should no longer be needed.
|
|
Fri, 31 Jul 2015
|
[ 17:43 mandree ]
Update to 2.75
Critical bug fix for --dhcp-script
|
|
Thu, 30 Jul 2015
|
[ 18:47 mandree ]
New dnsmasq upstream release 2.74 (bugfixes)
version 2.74
Fix reversion in 2.73 where --conf-file would attempt to
read the default file, rather than no file.
Fix inotify code to handle dangling symlinks better and
not SEGV in some circumstances.
DNSSEC fix. In the case of a signed CNAME generated by a
wildcard which pointed to an unsigned domain, the wrong
status would be logged, and some necessary checks omitted.
|
|
Tue, 16 Jun 2015
|
[ 00:48 mandree ]
Upgrade dnsmasq to new release 2.73.
Changelog: http://www.thekelleys.org.uk/dnsmasq/CHANGELOGDisable dnsmasq-devel
(older than stable).
Switch to using @sample keyword [1].
PR: 200717 [1]
Submitted by: Jimmy Olgeni
|
|
Thu, 25 Sep 2014
|
[ 18:27 mandree ]
Update to new upstream version 2.72, disabling dnsmasq-devel again.
Remove @dir* stuff from pkg-plist. @sample isn't documented properly
and isn't up to handling files with non-.sample suffix, so stay
away from that part of pkg-plist.
ChangeLog: http://www.thekelleys.org.uk/dnsmasq/CHANGELOG
|
|
Sun, 18 May 2014
|
[ 22:17 mandree ]
Upgrade to new upstream version 2.71. Upstream's changelog:
version 2.71
Subtle change to error handling to help DNSSEC validation
when servers fail to provide NODATA answers for
non-existent DS records.
Tweak code which removes DNSSEC records from answers when
not required. Fixes broken answers when additional section
has real records in it. Thanks to Marco Davids for the bug
report.
Fix DNSSEC validation of ANY queries. Thanks to Marco Davids
for spotting that too.
Fix total DNS failure and 100% CPU use if cachesize set to zero,
regression introduced in 2.69. Thanks to James Hunt and
the Ubuntu crowd for assistance in fixing this.
|
|
Sun, 27 Apr 2014
|
[ 21:05 mandree ]
Upgrade to new upstream version 2.70. Upstream changelog:
Fix crash, introduced in 2.69, on TCP request when dnsmasq compiled
with DNSSEC support, but running without DNSSEC enabled. Thanks to
Manish Sing for spotting that one.
Fix regression which broke ipset functionality. Thanks to Wang Jian
for the bug report.
Submitted by: Herbert J. Skuhra
|
|
Thu, 10 Apr 2014
|
[ 20:44 mandree ]
Update to new upstream 2.69 release. Adds DNSSEC support.
Full changelog: <http://www.thekelleys.org.uk/dnsmasq/CHANGELOG>
|
|
Sun, 8 Dec 2013
|
[ 18:05 mandree ]
Upgrade dnsmasq to new stable 2.68 release.
Fixes bind-interfaces with IPv6 on FreeBSD.
version 2.68
Use random addresses for DHCPv6 temporary address
allocations, instead of algorithmically determined stable
addresses.
Fix bug which meant that the DHCPv6 DUID was not available
in DHCP script runs during the lifetime of the dnsmasq
process which created the DUID de-novo. Once the DUID was
created and stored in the lease file and dnsmasq
restarted, this bug disappeared.
(Only the first 15 lines of the commit message are shown above )
|
|
Fri, 25 Oct 2013
|
[ 22:27 mandree ]
Upgrade dnsmasq to new upstream release 2.67.
Changelog: <http://www.thekelleys.org.uk/dnsmasq/CHANGELOG>
Enable NLS and IPV6 options by default.
Use shebangfix on files that need it.
Mark dnsmasq-devel (older than release) IGNORE.
|
|
Wed, 17 Apr 2013
|
[ 17:49 mandree ]
Update to new upstream release 2.66.
New DHCPv6 stuff, ability to act as authoritative server for local data.
Changelog: http://www.thekelleys.org.uk/dnsmasq/CHANGELOG
Feature safe: yes
|
|
Sat, 15 Dec 2012
|
[ 16:33 mandree ]
Update to new upstream release 2.65.
Upstream changes:
TCP which are not for A and AAAA and which were directed to
non-default servers. Thanks to Niax for the bug report.
Fix failure to build with DHCP support excluded. Thanks to
Gustavo Zacarias for the patch.
Fix nasty regression in 2.64 which completely broke cacheing.
|
|
Tue, 4 Dec 2012
|
[ 22:29 mandree ]
Update to new upstream release 2.64.
Feature safe: yes
Changelog for version 2.64:
Handle DHCP FQDN options with all flag bits zero and --dhcp-client-update set.
Thanks to Bernd Krumbroeck for spotting the problem.
Finesse the check for /etc/hosts names which conflict with DHCP names.
Previously a name/address pair in /etc/hosts which didn't match the
name/address of a DHCP lease would generate a warning. Now that only
happesn if there is not also a match. This allows multiple addresses for
a name in /etc/hosts with one of them assigned via DHCP.
(Only the first 15 lines of the commit message are shown above )
|
|
Mon, 20 Aug 2012
|
[ 20:33 mandree ]
Update to 2.63.
Changelog: http://www.thekelleys.org.uk/dnsmasq/CHANGELOG
|
|
Fri, 8 Jun 2012
|
[ 14:34 mandree ]
Update to bug-fix release 2.62.
Changelog: http://www.thekelleys.org.uk/dnsmasq/CHANGELOG
Convert to OptionsNG.
|
|
Mon, 30 Apr 2012
|
[ 20:38 mandree ]
Update to new upstream release 2.61. Changes are, per Simon Kelley:
Re-write interface discovery code on *BSD to use getifaddrs. This
is more portable, more straightforward, and allows us to find the
prefix length for IPv6 addresses.
Add ra-names, ra-stateless and slaac keywords for DHCPv6. Dnsmasq
can now synthesise AAAA records for dual-stack hosts which get IPv6
addresses via SLAAC. It is also now possible to use SLAAC and
stateless DHCPv6, and to tell clients to use SLAAC addresses as
well as DHCP ones. Thanks to Dave Taht for help with this.
Add --dhcp-duid to allow DUID-EN uids to be used.
Explicity send DHCPv6 replies to the correct port, instead of relying (Only the first 15 lines of the commit message are shown above )
|
|
Sun, 11 Mar 2012
|
[ 23:59 mandree ]
Update to new upstream release 2.60. Notable new features are:
- The LUA port option enables Lua support for DHCP lease-change scripts
- DHCPv6 support
- IPv6 Router Advertisement support
Changelog: http://www.thekelleys.org.uk/dnsmasq/CHANGELOG
Feature safe: yes
|
|
Tue, 18 Oct 2011
|
[ 22:24 mandree ]
Fix BUILD_DEPENDS (use += not =) creation in port.
Upgrade to new upstream regression fix release 2.59:
Fix regression in 2.58 which caused failure to start up
with some combinations of dnsmasq config and IPv6 kernel
network config. Thanks to Brielle Bruns for the bug
report.
Improve dnsmasq's behaviour when network interfaces are
still doing duplicate address detection (DAD). Previously,
dnsmasq would wait up to 20 seconds at start-up for the
DAD state to terminate. This is broken for bridge
interfaces on recent Linux kernels, which don't start DAD
until the bridge comes up, and so can take arbitrary
time. The new behaviour lets dnsmasq poll for an arbitrary
time whilst providing service on other interfaces. Thanks
to Stephen Hemminger for pointing out the problem.
Note the 2.59.tar.lzma tarball causes the startup banner to print
2.59rc1 which I deem harmless.
|
|
Fri, 26 Aug 2011
|
[ 22:32 mandree ]
Update to new upstream release 2.58
Changes: http://thekelleys.org.uk/dnsmasq/CHANGELOG
Suggested by: Loic Pefferkorn.
|
|
Mon, 21 Feb 2011
|
[ 08:50 mandree ]
Upgrade to new upstream release 2.57.
Remove support for FreeBSD releases 6.X.
Allow build with IDN but without NLS (this requires that dns/libidn
is also built WITHOUT_NLS) to expose an upstream change. Useful for embedded
devices.
Warn user if this is requested but libidn needs NLS libraries
because in that case dnsmasq inherits the NLS dependencies from libidn.
Remove files/patch-aa, it was a preview patch from a 2.57 test release,
fixing a regression in 2.56 that caused hex constants to be rejected in
the configuratino if they contained the '*' wildcard.
Further upstream changes:
- use own header for DNS protocol, rather than using arpa/nameser.h
- correct ctype.h function argument casts (isdigit(), isxdigit(), etc.)
- Accept extra empty arguments on command line to avoid libvirt breakage.
|
|
Tue, 15 Feb 2011
|
[ 21:49 mandree ]
Update to new upstream release 2.56.
Replace uni-paderborn.de master site by MASTER_SITE_LOCAL.
Add LICENSE=GPLv2.
Changelog:
http://www.thekelleys.org.uk/dnsmasq/CHANGELOG
|
|
Tue, 8 Jun 2010
|
[ 20:01 mandree ]
Upgrade to upstream bugfix release 2.55, removing version hack.
Note this version fixes two crashes on startup.
Approved by: garga (mentor)
|
|
Fri, 4 Jun 2010
|
[ 12:11 mandree ]
Upgrade to new upstream release dnsmasq 2.53/2.54.
This release was inadvertently dubbed 2.54 in its logging by Simon Kelley,
so adjust our PORTVERSION to match that, but still build the 2.53 tarball.
Simon will treat 2.53 and 2.54 the same and release 2.55 next time.
http://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2010q2/004105.html
Check work/dnsmasq-2.53/src/config.h for VERSION after "make extract" to see.
Approved by: garga (mentor)
|
[ 08:09 pav ] (Only the first 10 of 27 ports in this commit are shown above. )
- Introduce a new USE_XZ knob that handles lzma/xz compressed distfiles
- Convert a bunch of ports to use it
PR: ports/146329
Submitted by: mm
With hat: portmgr
|
|
Sat, 23 Jan 2010
|
[ 11:24 mandree ]
Change MAINTAINER to my FreeBSD address.
Update to new upstream release 2.52. Changelog excerpt below the approval.
Approved by: miwi (mentor)
Upstream changelog excerpt (omitting Linux, Solaris and MacOS X specifics):
[...] Re-read the set of network interfaces when re-loading /etc/resolv.conf
if --bind-interfaces is not set. This handles the case that loopback
interfaces do not exist when dnsmasq is first started.
Tweak the PXE code to support port 4011. This should reduce broadcasts and
make things more reliable when other servers are around. It also improves
inter-operability with certain clients.
Make a pxe-service configuration with no filename or boot service type legal: (Only the first 15 lines of the commit message are shown above )
|
|
Wed, 14 Oct 2009
|
[ 10:34 miwi ]
- Update to 2.51
PR: 139583
Submitted by: Matthias Andree <matthias.andree@gmx.de> (maintainer)
|
|
Tue, 13 Oct 2009
|
[ 16:35 wxs ]
- Update to 2.51rc1
- Add pkg-message
- Add NLS and IDN option (currently linked together in one option, this will
be changed in future releases hopefully)
- Properly handle example configuration files
PR: ports/139273
Submitted by: Matthias Andree <matthias.andree@gmx.de> (maintainer)
|
|
Wed, 2 Sep 2009
|
[ 12:18 miwi ]
- Update to 2.50
PR: 138415
Submitted by: Matthias Andree <matthias.andree@gmx.de> (maintainer)
Security:
http://www.freebsd.org/ports/portaudit/80aa98e0-97b4-11de-b946-0030843d3802.html
|
|
Mon, 15 Jun 2009
|
[ 21:07 miwi ]
- Update to 2.49
PR: 135525
Submitted by: Matthias Andree <matthias.andree@gmx.de> (maintainer)
|
|
Fri, 5 Jun 2009
|
[ 23:14 amdmi3 ]
- Update to 2.48
PR: 135270
Submitted by: Matthias Andree <matthias.andree@gmx.de> (maintainer)
|
|
Mon, 9 Feb 2009
|
[ 22:58 miwi ]
- Update to 2.47
Approved by: maintainer implicit
|
|
Sat, 15 Nov 2008
|
[ 22:53 miwi ]
- Update to 2.46
Approved by: maintainer implicit
|
|
Thu, 24 Jul 2008
|
[ 12:32 miwi ]
- Update to 2.45
Approved by: maintainer implicit
|
|
Sat, 19 Jul 2008
|
[ 13:21 miwi ]
- Update to 2.43
Approved by: maintainer implicit
|
|
Fri, 20 Jun 2008
|
[ 22:05 miwi ]
- Update to 2.42
Approved by: maintainer implicit
|
|
Thu, 20 Mar 2008
|
[ 22:59 miwi ]
- Update to 2.41
Approved by: maintainer implicit
|
|
Tue, 4 Sep 2007
|
[ 22:30 miwi ]
- Update to 2.40
Approved by: maintainer implicit
|
|
Mon, 9 Jul 2007
|
[ 12:51 miwi ]
- Update to 2.39
Approved by: maintainer implicit
|
|
Wed, 14 Feb 2007
|
[ 12:06 miwi ]
- Update to 2.38
Approved by: maintainer (implicit)
|
|
Sat, 10 Feb 2007
|
[ 11:39 miwi ]
- Update to 2.37
Approved by: maintainer (implicit)
|
|
Mon, 22 Jan 2007
|
[ 13:07 miwi ]
- Update to 2.36
Approved by: maintainer (implicit)
|
|
Sat, 4 Nov 2006
|
[ 22:36 miwi ]
- Update to 2.35
PR: ports/105013
Submitted by: Babak Farrokhi (maintainer)
Sponsored by: FreeBSD Bug-a-thon #2
|
|
Tue, 31 Oct 2006
|
[ 09:16 miwi ]
- update to 2.34
PR: ports/104527
Submitted by: Babak Farrokhi <babak@farrokhi.net> (maintainer)
|
|
Thu, 10 Aug 2006
|
[ 07:48 rafan ]
- Update to 2.33
PR: ports/101745
Submitted by: Babak Farrokhi <babak at farrokhi.net> (maintainer)
|
|
Thu, 13 Jul 2006
|
[ 18:25 rafan ]
- Update to 2.32
- Pass maintainership to submitter
PR: ports/100207
Submitted by: Babak Farrokhi <babak farrokhi.net>
|
|
Wed, 25 Jan 2006
|
[ 11:01 anray ]
Update to 2.26
PR: ports/92246
Submitted by: Jeffrey H. Johnson <CPE1704TKS@bellsouth.net>
Approved by: Steven Honson (maintainer)
|
|
Sun, 22 Jan 2006
|
[ 08:31 edwin ] (Only the first 10 of 50 ports in this commit are shown above. )
SHA256ify
Approved by: krion@
|
|
Mon, 24 Oct 2005
|
[ 01:36 mnag ]
Update to 2.23
Fix IPv6 build. Thanks to Richard Hirner
PR: 87867
Submitted by: Steven Honson <steven@honson.org> (maintainer)
|
|
Tue, 5 Apr 2005
|
[ 15:18 leeym ]
- update to 2.22
PR: 79563
Submitted by: maintainer
|
|
Mon, 14 Feb 2005
|
[ 17:12 vs ]
Update to 2.20
PR: ports/77502
Submitted by: maintainer
|
|
Sun, 26 Dec 2004
|
[ 16:59 krion ]
Update to version 2.19
PR: ports/75505
Submitted by: maintainer
|
|
Mon, 13 Dec 2004
|
[ 01:12 sem ]
- Update to 2.18
PR: ports/74704
Submitted by: maintainer
|
|
Thu, 18 Nov 2004
|
[ 12:53 vs ]
Update to 2.17
PR: ports/74032
Submitted by: maintainer
|
|
Wed, 13 Oct 2004
|
[ 09:16 sergei ]
- Update to 2.15 (major bug fix)
PR: ports/71973
Submitted by: Steven Honson (maintainer)
While I'm here:
- Shorten long lines in Makefile to avoid wrapping
|
|
Sat, 14 Aug 2004
|
[ 11:49 krion ]
Update to 2.13
PR: ports/70448
Submitted by: maintainer
|
|
Wed, 4 Aug 2004
|
[ 14:12 leeym ]
- update to version 2.11, fixes FreeBSD builds under -CURRENT
- add minor cosmetic fix
PR: 69999
Submitted by: Steven Honson <steven@honson.org>
|
|
Sat, 31 Jul 2004
|
[ 13:28 sem ]
Update to version 2.10
PR: ports/69841
Submitted by: maintainer
|
|
Wed, 30 Jun 2004
|
[ 07:14 krion ]
Update to 2.9
PR: ports/68491
Submitted by: maintainer
|
|
Thu, 29 Apr 2004
|
[ 08:24 krion ]
- Update to version 2.7
PR: ports/65930
Submitted by: maintainer
|
|
Sun, 4 Apr 2004
|
[ 13:57 pav ]
- Update to 2.6
PR: ports/65159
Submitted by: Steven Honson <steven@honson.org> (maintainer)
|
|
Thu, 18 Mar 2004
|
[ 09:16 krion ]
- Update to version 2.5
PR: ports/64407
Submitted by: maintainer
|
|
Sun, 1 Feb 2004
|
[ 23:50 pav ]
- Update to 2.2
PR: ports/62231
Submitted by: Steven Honson <steven@honson.org> (maintainer)
|
|
Fri, 30 Jan 2004
|
[ 14:01 arved ]
Update to 2.1
PR: 62083
Submitted by: Steven Honson <steven@honson.org>
|
|
Mon, 10 Nov 2003
|
[ 13:26 leeym ]
Update to version 1.18
PR: 59099
Submitted by: Steven Honson <shonson@isoproplex.net>
|
|
Mon, 13 Oct 2003
|
[ 19:36 krion ]
- Update to version 1.17
PR: 57919 57882
Submitted by: maintainer, Matt Peterson <matt@peterson.org>
|
Number of commits found: 78 |
As an Amazon Associate I earn from qualifying purchases.