-rsync 2.5.3 (not released yet)
-
- SECURITY FIXES:
-
- * Make sure that supplementary groups are removed from a server
- process after changing uid and gid. (Ethan Benson)
+NEWS for rsync 2.6.9 (unreleased)
+Protocol: 29 (unchanged)
+Changes since 2.6.8:
BUG FIXES:
- * Fixed problem that in many cases caused the error message
- unexpected read size of 0 in map_ptr
- and resulted in the wrong data being copied.
-
- * Fixed compilation errors on some systems caused by the use of
- "unsigned int64" in rsync.h.
-
- * Fixed problem on systems such as Sunos4 that do not support realloc
- on a NULL pointer; error was "out of memory in flist_expand".
-
- * Fix for rsync server processes hanging around after the client
- unexpectedly disconnects. (Colin Walters) (Debian bug #128632)
-
- * Cope with BSD systems on which mkdir() will not accept a trailing
- slash.
+ - An rsync daemon that is receiving files with "use chroot = no" no longer
+ sanitizes the symlink target strings. This means that each symlink's
+ value will now be accepted (and thus returned) with its symlink info
+ intact. Also, in order to keep things safe, all arg paths and any
+ dereferenced symlinks (e.g. via --copy-links or --keep-dirlinks) are
+ manually verified to ensure that no symlinks try to escape past the top
+ of the module's path. These changes make a non-chroot daemon behave the
+ same way as a chroot daemon with regard to symlinks, and also avoids a
+ potential problem where a pre-existing symlink could have escaped the
+ module's hierarchy.
+
+ - Fixed a overzealous sanitizing bug in the handling of the --*-dest
+ options (--link-dest, --copy-dest, and --compare-dest): if the copy's
+ destination dir is deeper than the top of the module's path, these
+ options now accept a safe number of ../ (parent-dir) references (since
+ these options are relative to the destination dir). The old code
+ incorrectly chopped off all "../" prefixes for these options, no matter
+ how deep the destination directory was in the module's hierarchy.
+
+ - Fixed a bug where a deferred info/error/log message could get sent
+ directly to the sender instead of being handled by rwrite() in the
+ generator. This fixes an "unexpected tag 3" fatal error, and should
+ also fix a potential problem where a deferred info/error message from
+ the receiver might bypass the log file and get sent only to the client
+ process. (These problems could only affect an rsync daemon that was
+ receiving files.)
+
+ - Make sure that the --link-dest option can still do its job even when -I
+ or --size-only is specified.
+
+ - The daemon now calls more timezone-using functions prior to doing a
+ chroot. This should help some C libraries to generate proper timestamps
+ from inside a chrooted daemon (and to not try to access /etc/timezone
+ over and over again).
+
+ - Fixed a bug in the handling of an absolute --partial-dir=ABS_PATH option:
+ it now deletes an alternate basis file from the partial-dir that was used
+ to successfully update a destination file.
ENHANCEMENTS:
- * Command to initiate connections is only shown with -vv, rather
- than -v as in 2.5.2. Output from plain -v is more similar to
- what was historically used so as not to break scripts that try
- to parse the output.
+ - ...
+
+ DEVELOPER RELATED:
- * Added --no-whole-file and --no-blocking-io options (Dave Dykstra)
+ - The acls.diff and xattrs.diff patches have received a bunch of work to
+ make them much closer to being acceptable in the main distribution.
- * Made the --write-batch and --read-batch options actually work
- and added documentation in the man page (Jos Backus)
+ - Updated config.guess and config.sub to their 2006-02-23 version.
- * If the daemon is unable to fork a child to accept a connection,
- print an error message. (Colin Walters)
+ - Updated various files to include the latest FSF address and to have
+ consistent opening comments.