-NEWS for rsync 2.6.1 (UNRELEASED)
-Protocol: 28 (changed)
-Changes since 2.6.0:
+NEWS for rsync 2.6.3 (UNRELEASED)
+Protocol: 28 (unchanged)
+Changes since 2.6.2:
+
+ SECURITY FIXES:
+
+ - A bug in the sanitize_path routine (which affects a non-chrooted
+ rsync daemon) could allow a user to craft a pathname that would get
+ transformed into an absolute path for certain options (but not for
+ file-transfer names). If you're running an rsync daemon with chroot
+ disabled, *please upgrade*, ESPECIALLY if the user privs you run
+ rsync under is anything above "nobody".
+
+ OUTPUT CHANGES (ATTN: those using a script to parse the verbose output):
+
+ - Please note that the 2-line footer (output when verbose) now uses the
+ term "sent" instead of "wrote" and "received" instead of "read". If
+ you are not parsing the numeric values out of this footer, a script
+ would be better off using the empty line prior to the footer as the
+ indicator that the verbose output is over.
+
+ - The output from the --stats option was similarly affected to change
+ "written" to "sent" and "read" to "received".
- ENHANCEMENTS:
+ - Rsync ensures that a filename that contains a newline gets mentioned
+ with each newline transformed into a question mark (which prevents a
+ filename from causing an empty line to be output).
- * Lower memory use and more optimal transfer of data over
- the socket (see the INTERNAL section for details).
+ BUG FIXES:
- * The RSYNC_PROXY environment variable can now contain a
- "USER:PASS@" prefix before the "HOST:PORT" information.
- (Bardur Arantsson)
+ - Fixed a crash bug that might appear when --delete was used and
+ multiple source directories were specified.
- * The --progress output now mentions how far along in the
- transfer we are, including both a count of files transferred
- and a percentage of the total file-count that we've processed.
- It also shows better current-rate-of-transfer and remaining-
- transfer-time values.
+ - Fixed the 32-bit truncation of the file length when generating the
+ checksums.
- * The configure script now accepts --with-rsyncd-conf=PATH
- to override the default value of the /etc/rsyncd.conf file.
+ - The --backup code no longer attempts to create some directories
+ over and over again (generating warnings along the way).
- * Added a couple extra diffs in the "patches" dir, removed the
- ones that got applied, and rebuilt the rest.
+ - Fixed a bug in the reading of the secrets file (by the daemon) and
+ the password file (by the client): the files no longer need to be
+ terminated by a newline for their content to be read in.
- BUG FIXES:
+ - If a file has a read error on the sending side or the reconstructed
+ data doesn't match the expected checksum (perhaps due to the basis
+ file changing during the transfer), the receiver will no longer
+ retain the resulting file unless the --partial option was specified.
+ (Note: for the read-error detection to work, neither side can be
+ older than 2.6.3 -- older receivers will always retain the file, and
+ older senders don't tell the receiver that the file had a read
+ error.)
- * When -x (--one-file-system) is combined with -L (--copy-links)
- or --copy-unsafe-links, no symlinked files are skipped, even
- if the referent file is on a different filesystem.
+ - If a file gets resent in a single transfer and the --backup option
+ is enabled, rsync no longer performs a duplicate backup (it used to
+ overwrite the original file in the backup area).
- * The --link-dest code now works properly for a non-root user
- when (1) the UIDs of the source and destination differ and -o
- was specified, or (2) when the group of the source can't be
- used on the destination and -g was specified.
+ - Files specified in the daemon's "exclude" or "exclude from" config
+ items are now excluded from being uploaded (assuming that the module
+ allows uploading at all) in addition to the old download exclusion.
- * Fixed a bug in the handling of -H (hard-links) that might
- cause the expanded PATH/NAME value of the current item to
- get overwritten (due to an expanded-name caching bug).
-
- * We now reset the "new data has been sent" flag at the start
- of each file we send. This makes sure that an interrupted
- transfer with the --partial option set doesn't keep a shorter
- temp file than the current basis file when no new data has been
- transfered over the wire for that file.
+ - Got rid of a potential hang in the receiver when near the end of a
+ phase.
- * Fixed a byte-order problem in --batch-mode on big-endian
- machines. (Jay Fenlason)
+ - When using --backup without a --backup-dir, rsync no longer preserves
+ the modify time on directories. This avoids confusing NFS.
- * Fixed configure bug when running "./configure --disable-ipv6".
+ - When --copy-links (-L) is specified, we now output a separate error
+ for a symlink that has no referent instead of claiming that a file
+ "vanished".
- * Fixed "make test" bug when build dir is not the source dir.
+ - The --copy-links (-L) option no longer has the side-effect of telling
+ the receiving side to follow symlinks. See the --keep-dirlinks
+ option (mentioned below) for a way to specify that behavior.
- * When using --cvs-exclude, the exclude items we get from a
- directory's .cvsignore file once again only affect that one
- directory (and not all following directories too). The
- items are also now properly word-split and parsed without
- any +/- prefix munging.
+ - Error messages from the daemon server's option-parsing (such as
+ refused options) now get sent back to the client (the server used
+ to just exit because the socket wasn't in the right state to send
+ the message).
- * When specifying the USER@HOST: prefix for a file, the USER
- part can now contain an '@', if needed (i.e. the last '@'
- is used to find the HOST, not the first).
+ - Most errors that occur during a daemon transfer are now returned to
+ the user in addition to being logged (some messages are intended to
+ be daemon-only).
- * Fixed some bugs in the handling of group IDs for non-root
- users: (1) It properly handles a group that the sender didn't
- have a name for (it would previously skip changing the group
- on any files in that group). (2) If --numeric-ids is used,
- rsync no longer attempts to set groups that the user doesn't
- have the permission to set.
+ - Fixed a bug in the daemon authentication code when using one of the
+ batch-processing options.
- * Fixed the "refuse options" setting in the rsyncd.conf file.
+ - We try to work around some buggy IPv6 implementations that fail to
+ implement IPV6_V6ONLY. This should fix the "address in use" error
+ that some daemons get when running on an OS with a buggy IPv6
+ implementation. Also, if the new code gets this error, we might
+ suggest that the user specify --ipv4 or --ipv6 (if we think it will
+ help).
- * Improved the -x (--one-file-system) flag's handling of any
- mount-point directories we encounter. It is both more optimal
- (in that it no longer does a useless scan of the contents of
- the mount-point dirs) and also fixes a bug where a remapped
- mount of the original filesystem could get discovered in a
- subdir we should be ignoring.
+ - When the remote rsync dies, make a better effort to recover any error
+ messages it may have sent before dying (the local rsync used to just
+ die with a socket-write error).
- * Rsync no longer discards a double-slash at the start of a filename
- when trying to open the file. It also no longer constructs names
- that start with a double slash (unless the user supplied them).
+ - When using --delete and a --backup-dir that contains files that are
+ hard-linked to their destination equivalents, rsync now makes sure
+ that removed files really get removed (works around a really weird
+ rename() behavior).
- * Fixed compilation problem on Tru64 Unix (having to do with
- sockaddr.sa_len and sockaddr.sin_len).
+ - Avoid a bogus run-time complaint about a lack of 64-bit integers when
+ the int64 type is defined as an off_t and it actually has 64-bits.
- * Fixed a compatibility problem interacting with older rsync
- versions that might send us an empty suffix without telling us
- about the backup-dir.
+ - Added a configure check for open64() without mkstemp64() so that we
+ can avoid using mkstemp() when such a combination is encountered.
+ This bypasses a problem writing out large temp files on OSes such as
+ AIX and HP-UX.
- * The "hosts allow" option for a daemon-over-remote-shell
- process now has improved support for IPv6 addresses and a fix
- for systems that have a length field in their socket structs.
+ - Fixed an age-old crash problem with --read-batch on a local copy
+ (rsync was improperly assuming --whole-file for the local copy).
- * Fixed the ability to request an empty backup suffix when
- sending files to an rsync daemon.
+ - When --dry-run (-n) is used and the destination directory does not
+ exist, rsync now produces a correct report of files that would be
+ sent instead of dying with a chdir() error.
- INTERNAL:
+ ENHANCEMENTS:
+
+ - Added the --partial-dir=DIR option that lets you specify where to
+ (temporarily) put a partially transferred file (instead of over-
+ writing the destination file). E.g. --partial-dir=.rsync-partial
+
+ - Added --keep-dirlinks (-K), which allows you to symlink a directory
+ onto another partition on the receiving side and have rsync treat it
+ as matching a normal directory from the sender.
+
+ - Added the --inplace option that tells rsync to write each destination
+ file without using a temporary file. The matching of existing data
+ in the destination file can be severely limited by this, but there
+ are also cases where this is more efficient (such as appending data).
+ Use only when needed (see the man page for more details).
+
+ - Added the "write only" option for the daemon's config file.
- * Most of the I/O is now buffered, which results in a pretty
- large speedup when running under MS Windows. (Craig Barratt)
+ - Added long-option names for -4 and -6 (namely --ipv4 and --ipv6)
+ and documented all these options in the man page.
+
+ - Improved the handling of the --bwlimit option so that it's less
+ bursty, more accurate, and works properly over a larger range of
+ values.
+
+ - The rsync daemon-over-ssh code now looks for SSH_CONNECTION and
+ SSH2_CLIENT in addition to SSH_CLIENT to figure out the IP address.
+
+ - Added the --checksum-seed=N option for advanced users.
+
+ - Batch writing/reading has a brand-new implementation that is simpler,
+ fixes a few weird problems with the old code (such as no longer
+ sprinkling the batch files into different dirs or even onto different
+ systems), and is much less intrusive into the code (making it easier
+ to maintain for the future). The new code generates just one data
+ file instead of three, which makes it possible to read the batch via
+ stdin via a remote shell. Also, the old requirement of forcing the
+ same fixed checksum-seed for all batch processing has been removed.
+
+ - If an rsync daemon has a module set with "list = no" (which hides its
+ presence in the list of available modules), a user that fails to
+ authenticate gets the same "unknown module" error that they would get
+ if the module were actually unknown (while still logging the real
+ error to the daemon's log file). This prevents fishing for module
+ names.
+
+ - The daemon's "refuse options" config item now allows you to match
+ option names using wildcards and/or the single-letter option names.
+
+ - Each transferred file now gets its permissions and modified-time
+ updated before the temp-file gets moved into place. Previously, the
+ finished file would have a very brief window where its permissions
+ disallowed all group and world access.
+
+ - Support for literal IPv6 addresses was added to the URL parser for the
+ "rsync:" scheme (e.g. rsync://[2001:638:500:101::21]:873/module/dir).
+
+ - Added the ability to parse a literal IPv6 address in an "rsync:" URL
+ (e.g. rsync://[2001:638:500:101::21]:873/module/dir).
+
+ INTERNAL:
- * Optimizations to the name-handling/comparing code have made
- some significant reductions in user-CPU time for large file
- sets.
+ - Some cleanup in the exclude code has saved some per-exclude memory
+ and made the code easier to maintain.
- * Some variable-type cleanup that makes the code more consistent.
+ - Improved the argv-overflow checking for a remote command that has a
+ lot of args.
- * Reduced memory requirements of hard link preservation.
- (J.W. Schultz)
+ - Use rsyserr() in the various places that were still calling rprintf()
+ with strerror() as an arg.
- * Implemented a new algorithm for hard-link handling that speeds
- up the code significantly. (J.W. Schultz and Wayne Davison)
+ - If an rsync daemon is listening on multiple sockets (to handle both
+ IPv4 and IPv6 to a single port), we now close all the unneeded file
+ handles after we accept a connection (we used to close just one of
+ them).
- * The --hard-link option now uses the first existing file in the
- group of linked files as the basis for the transfer. This
- prevents the sub-optimal transfer of a file's data when a new
- hardlink is added on the sending side and it sorts alphabetically
- earlier in the list than the files that are already present on the
- receiving side.
+ - Optimized the handling of larger block sizes (rsync used to slow to a
+ crawl if the block size got too large).
- * Dropped support for protocol versions less than 20
- (2.3.0 released 15 Mar 1999) and activated warnings for
- protocols less than 25 (2.5.0 released 23 Aug 2001)
- (Wayne Davison and J.W. Schultz, severally)
+ - Optimized away a loop in hash_search().
- * More optimal data transmission for --hard-links (protocol 28).
+ - Some improvements to the sanitize_path() and clean_fname() functions
+ makes them more efficient and produce better results (while still
+ being compatible with the file-name cleaning that gets done on both
+ sides when sending the file-list).
- * More optimal data transmission for --checksum (protocol 28).
+ - Got rid of alloc_sanitize_path() after adding a destination-buffer
+ arg to sanitize_path() made it possible to put all the former's
+ functionality into the latter.
- * Less memory is used when --checksum is specified.
+ BUILD CHANGES:
- * Less memory is used in the file list (a per-file savings).
+ - Added a "gen" target to rebuild most of the generated files,
+ including configure, config.h.in, the man pages, and proto.h.
- * The generator is now better about not modifying the file list
- during the transfer in order to avoid a copy-on-write memory
- bifurcation (on systems where fork() uses shared memory).
- Previously, rsync's shared memory would slowly become unshared,
- resulting in real memory usage nearly doubling on the receiving
- side by the end of the transfer. Now, as long as permissions
- are being preserved, the shared memory should remain that way
- for the entire transfer.
+ - If "make proto" doesn't find some changes in the prototypes, the
+ proto.h file is left untouched (its time-stamp used to always be
+ updated).
- * Changed hardlink info and file_struct + strings to use
- allocation pools. This reduces memory use for large file-
- sets and permits freeing memory to the OS. (J.W. Schultz)
+ - The variable $STRIP (that is optionally set by the install-strip
+ target's rule) was changed to $INSTALL_STRIP because some systems
+ have $STRIP set in the environment.
- * The 2 pipes used between the receiver and generator processes
- (which are forked on the same machine) were reduced to 1 pipe
- and the protocol improved so that (1) it is now impossible to
- have the "redo" pipe fill up and hang rsync, and (2) trailing
- messages from the receiver don't get lost on their way through
- the generator over to the sender (the latter mainly affected
- hard-link messages and verbose --stats output).
+ - Fixed a build problem when SUPPORT_HARD_LINKS isn't defined.
- * The reading & writing of the file-list in batch-mode is now
- handled by the same code that sends & receives the list over
- the wire. This makes it much easier to maintain.
+ DEVELOPER RELATED:
- * Improved the internal uid/gid code to be more portable and
- a little more optimized.
+ - The scripts in the testsuite dir were cleaned up a bit and a few
+ new tests added.
- * Device numbers are now sent as separate major/minor values
- with 32-bit accuracy for each one (protocol 28). Previously
- hard-link device data was sent as a single 64-bit number, and
- copied devices were sent as a single 32-bit number. This will
- make inter-operation of 64-bit binaries more compatible with
- their 32-bit brethren. Note that optimizations in the binary
- protocol often sends the device data using fewer bytes than
- before, even though more precision is now available.
+ - Some new diffs were added to the patches dir, and some accepted
+ ones were removed.
- * Some cleanup of the exclude/include structures and its code
- made things clearer, simpler, and more efficient.