X-Git-Url: https://mattmccutchen.net/rsync/rsync.git/blobdiff_plain/870dddc5eb59aa4615f4fe335d9ae83226604260..85909931857090541511e7ab9a085225e0db0407:/NEWS diff --git a/NEWS b/NEWS index e6f53437..8cac8e6a 100644 --- a/NEWS +++ b/NEWS @@ -1,84 +1,70 @@ -NEWS for rsync 2.6.6 (UNRELEASED) +NEWS for rsync 2.6.9 (unreleased) Protocol: 29 (unchanged) -Changes since 2.6.5: - - SECURITY FIXES: - - - The zlib code was upgraded to version 1.2.3 in order to make it more - secure. While the widely-publicized security problem in zlib 1.2.2 did - not affect rsync, another security problem surfaced that affects rsync's - zlib 1.1.4. +Changes since 2.6.8: BUG FIXES: - - The setting of flist->high in clean_flist() was wrong for an empty list. - This could cause flist_find() to crash in certain rare circumstances - (e.g. if just the right directory setup was around when --fuzzy was - combined with --link-dest). - - - The outputting of hard-linked files when verbosity was > 1 was not right: - without -i it would output the name of each hard-linked file as though - it had been changed (it now outputs a "is hard linked" message for the - file); with -i it would output all dots for the unchanged attributes of - a hard-link (it now changes those dots to spaces, as is done for other - totally unchanged items). - - - When backing up a changed symlink or device, get rid of any old backup - item so that we don't get an "already exists" error. - - - A couple places that were comparing a local and a remote modification- - time were not honoring the --modify-window option. - - - Fixed a really old, minor bug that could cause rsync to warn about being - unable to mkdir() a path that ends in "/." because it just created the - directory (required --relative, --no-implied-dirs, a source path that - ended in either a trailing slash or a trailing "/.", and a non-existing - destination dir to tickle the bug in a recent version). - - - If the user specifies a remote-host for both the source and destination, - we now output a syntax error rather than trying to open the destination - hostspec as a filename. - - - Rsync now outputs a targeted error if both the source and destination - path appear to be a remote filespecs rather than treating the dest as - a very strange local path and (most likely) generating an error about - non-existent directories. + - An rsync daemon that is receiving files with "use chroot = no" no longer + sanitizes the symlink target strings. This means that each symlink's + value will now be accepted (and thus returned) with its symlink info + intact. Also, in order to keep things safe, all arg paths and any + dereferenced symlinks (e.g. via --copy-links or --keep-dirlinks) are + manually verified to ensure that no symlinks try to escape past the top + of the module's path. These changes make a non-chroot daemon behave the + same way as a chroot daemon with regard to symlinks, and also avoids a + potential problem where a pre-existing symlink could have escaped the + module's hierarchy. + + - Fixed an overzealous sanitizing bug in the handling of the --link-dest, + --copy-dest, and --compare-dest options to a daemon without chroot: if + the copy's destination dir is deeper than the top of the module's path, + these options now accept a safe number of ../ (parent-dir) references + (since these options are relative to the destination dir). The old code + incorrectly chopped off all "../" prefixes for these options, no matter + how deep the destination directory was in the module's hierarchy. + + - Fixed a bug where a deferred info/error/log message could get sent + directly to the sender instead of being handled by rwrite() in the + generator. This fixes an "unexpected tag 3" fatal error, and should + also fix a potential problem where a deferred info/error message from + the receiver might bypass the log file and get sent only to the client + process. (These problems could only affect an rsync daemon that was + receiving files.) + + - Make sure that the --link-dest option can still do its job even when -I + is specified. + + - If --link-dest is specified with --checksum but without --times, rsync + will now allow a hard-link to be created to a matching link-dest file + regardless of the file's modify-time. + + - The daemon now calls more timezone-using functions prior to doing a + chroot. This should help some C libraries to generate proper timestamps + from inside a chrooted daemon (and to not try to access /etc/timezone + over and over again). + + - Fixed a bug in the handling of an absolute --partial-dir=ABS_PATH option: + it now deletes an alternate basis file from the partial-dir that was used + to successfully update a destination file. ENHANCEMENTS: - - Added the --append option that makes rsync append data onto files - that are longer on the source than the destination (this includes new - files). - - - The configure script now checks for lutimes() and lchmod() so that - rsync can make use of them to update attributes of symlinks (on - systems that support this). - - - Made the "max verbosity" setting in the rsyncd.conf file settable on a - per-module basis (which now matches the documentation). - - - Added two config items to the rsyncd.conf parsing: "pre-xfer exec" - and "post-xfer exec". These allow a command to be specified on a - per-module basis that will be run before and/or after a daemon-mode - transfer. - - - The support/rrsync script has been upgraded to verify the args of options - that take args (instead of rejecting any such options). The script was - also changed to try to be more secure and to fix a problem in the parsing - of a pull operation that has multiple sources. - - - Improved the documentation that explains the difference between a - normal daemon transfer and a daemon-over remote-shell transfer. + - Added the --log-file=FILE and --log-file-format=FORMAT options. These + can be used to tell any rsync to output what it is doing to a log file. + They work with a client rsync, a non-daemon server rsync (see the man + page for instructions), and also allows the overriding of rsyncd.conf + settings when starting a daemon. - - Some of the diffs supplied in the patches dir were fixed and/or - improved. + - The --log-format option was renamed to be --out-format to avoid confusing + it with affecting the log-file output. (The old option remains as an + alias for the new to preserve backward compatibility.) - BUILD CHANGES: + DEVELOPER RELATED: - - Made configure define NOBODY_USER (currently hard-wired to "nobody") and - NOBODY_GROUP (set to either "nobody" or "nogroup" depending on what we - find in the /etc/group file). + - The acls.diff and xattrs.diff patches have received a bunch of work to + make them much closer to being acceptable in the main distribution. - - Added a test to the test suite, itemized.test, that tests the output of - -i (log-format w/%i) and some double-verbose messages. + - Updated config.guess and config.sub to their 2006-02-23 version. + - Updated various files to include the latest FSF address and to have + consistent opening comments.