|non port: head/dns/dnsmasq-devel/distinfo
Number of commits found: 38
Thu, 30 Jul 2015
[ 18:47 mandree ] |
Update to new release candidate #4 and mark IGNORE since 2.74 is out.
Sat, 18 Jul 2015
[ 12:58 mandree ] |
Update to new release candidate #3
DNSSEC fix, signed wildcard CNAME to unsigned domain.
Update Polish translation.
Wed, 15 Jul 2015
[ 00:57 mandree ] |
Update to new upstream release candidate 2.74rc1.
To fix three regressions in 2.73:
1) The meaning of --conf-file without an argument changed from "don't
read any conf-file" to "read the default conf-file"
2) A resolv-file which was dangling symlink at startup causes
problems, up to and including a segmentation fault.
3) Under some circumstances, dnsmasq can use more file descriptors,
and this shows up that the code doesn't handle the limit (normally
1024) in the number of descriptors handled by the select() system call.
Fri, 12 Jun 2015
[ 06:17 mandree ] |
Update to new upstream release candidate #10.
Git shortlog since rc #9:
Neil Jerram (6):
Fix logging of unknown interface in --bridge-interface, DHPCv4.
Extend --bridge-interface aliasing to DHCPv6.
Allow router advertisements to have the "off-link" bit set.
Upply --bridge-interface aliasing to solicited router advertisements.
Apply --bridge-interfaces to unsolicited router advertisements.
Documenation updates for --bridge-interface and "off-link".
Nicolas Cavallari (1):
Add Dbus methods to create and delete DHCP leases.
Simon Kelley (2):
Add a couple of missed logging strings to the catalogue.
Merge messages and fix makefile process to do this.
Wed, 10 Jun 2015
[ 17:36 mandree ] |
Update to new release candidate -rc9.
Relevant Git shortlog excerpt since -rc8:
Christian Demsar (1):
Man page typo.
John Hanks (1):
Add infiniband to example config file.
Simon Kelley (8):
Remove support for DNS Extended Label Types.
Select correct DHCP context when in PXE bootserver mode.
DHCPv6: DHCPCONFIRM should be OK for any address on link, not just dynamic
Handle corner cases in NSEC coverage checks.
Correctly sanitise DNS header bits in answer when recreating query for
Sat, 23 May 2015
[ 08:45 mandree ] |
Upgrade to new release candidate #8, fixing buffer overflow since rc6. 
Add CPE information .
Extract from shortlog, omitting irrelevant entries:
Nicolas Cavallari (1):
Constify some DHCP lease management functions.
Simon Kelley (10):
Don't remove RRSIG RR from answers to ANY queries when the do bit is not
Handle UDP packet loss when fragmentation of large packets is broken.
Check IPv4-mapped IPv6 addresses with --stop-rebind.
Tweak EDNS timeout code.
Pointer to mail-archive mailing list mirror in doc.html.
Allow T1 and T2 DHCPv4 options to be set.
Use correct DHCP context for PXE-proxy server-id.
Fix buffer overflow introduced in 2.73rc6.
PR: 199955 
Submitted by: shun, amdmi3 
Reviewed by: amdmi3 
Sun, 3 May 2015
[ 02:47 mandree ] |
Upgrade to release candidate #7.
Johnny S. Lee (1):
Make get-version work when repo is a git submodule.
Simon Kelley (2):
Logs in DHCPv6 not suppressed by dhcp6-quiet.
Fix argument-order botch which broke DNSSEC for TCP queries.
Wed, 22 Apr 2015
[ 22:25 mandree ] |
Update to new release candidate #6.
Git shortlog since release candidate #4:
Moshe Levi (1):
Check IP address command line arg in dhcp_release.c
Simon Kelley (7):
Fix crash in auth code with odd configuration.
Auth: correct replies to NS and SOA in .arpa zones.
Log domain when reporting DNSSEC validation failure.
Revert 61b838dd574c51d96fef100285a0d225824534f9 and just quieten log inste
Handle domain names with '.' or /000 within labels.
Tweaks to previous, DNS label charset commit.
Stefan Tomanek (1):
Fix (srk induced) crash in new tftp_no_fail code.
Sun, 12 Apr 2015
[ 11:15 mandree ] |
Upgrade to new release candidate #4.
Resolves checksum trouble.
Git shortlog between rc#3 and rc#4:
Simon Kelley (4):
Return INSECURE, rather than BOGUS when DS proved not to exist.
Fix compiler warning when not including DNSSEC.
Fix crash caused by looking up servers.bind when many servers defined.
Fix crash on receipt of certain malformed DNS requests.
Stefan Tomanek (2):
add --tftp-no-fail to ignore missing tftp root
Tue, 31 Mar 2015
[ 21:05 mandree ] |
Upgrade to new release candidate #3 (skipping rc2).
Changes since rc1 (git shortlog):
+ Don't fail DNSSEC when a signed CNAME dangles into an unsigned zone.
+ Return SERVFAIL when validation abandoned.
+ Protect against broken DNSSEC upstreams.
+ DNSSEC fix for non-ascii characters in labels.
+ Allow control characters in names in the cache, handle when logging.
Mon, 30 Mar 2015
[ 17:39 mandree ] |
Update to upstream 2.73rc1 (pending rc2 upload)
Changes from previous 2.73test6 (taken from CHANGELOG's Git repo):
Don't reply to DHCPv6 SOLICIT messages if we're not
configured to do stateful DHCPv6. Thanks to Win King Wan
for the patch.
Fix broken DNSSEC validation of ECDSA signatures.
Add --dnssec-timestamp option, which provides an automatic
way to detect when the system time becomes valid after boot
on systems without an RTC, whilst allowing DNS queries before the
clock is valid so that NTP can run. Thanks to
Kevin Darbyshire-Bryant for developing this idea.
Thu, 22 Jan 2015
[ 22:48 mandree ] |
Update to new 2.73test6 pre-release
Changes since test3, from CHANGELOG file:
Add --log-queries=extra option, which makes logs easier
to search automatically.
Add --min-cache-ttl option. I've resisted this for a long
time, on the grounds that disbelieving TTLs is never a
good idea, but I've been persuaded that there are
sometimes reasons to do it. (Step forward, GFW).
To avoid misuse, there's a hard limit on the TTL
floor of one hour. Thansk to RinSatsuki for the patch.
Cope with multiple interfaces with the same link-local
address. (IPv6 addresses are scoped, so this is allowed.)
Thanks to Cory Benfield for help with this.
Add --dhcp-hostsdir. This allows addition of new host
configurations to a running dnsmasq instance much more
cheaply than having dnsmasq re-read all its existing
configuration each time.
Fri, 9 Jan 2015
[ 16:41 mandree ] |
Update to new test release.
Changes: the two items at the end of v2.73 here:
Tue, 23 Dec 2014
[ 23:04 mandree ] |
Package 2.73test2, with one additional patch to make it build
(also reported upstream).
Sat, 20 Sep 2014
[ 22:24 mandree ] |
Upgrade to 2.72rc2.
+ Fix bug when resulted in NXDOMAIN answers instead of NODATA in some
+ Fix bug which caused dnsmasq to become unresponsive if it failed to
send packets due to a network interface disappearing.
+ Fix problem with --local-service option on big-endian platforms.
Wed, 10 Sep 2014
[ 15:47 mandree ] |
Update to 2.72rc1.
Announcement with ChangeLog:
Submitted by: portscout
Mon, 31 Mar 2014
[ 20:19 mandree ] |
Upgrade to new upstream release candidate #rc4.
Fixes ipset logging patch.
Known issue: The executable identifies as #rc3.
Sun, 30 Mar 2014
[ 00:42 mandree ] |
Update to new upstream release candidate #2.
Git shortlog between 2.69 rc1 and rc2:
Simon Kelley (7):
Add dnssec-check-unsigned to example config file.
Reorder sanity checks on UDP packet reception, to cope with failed recvfro
SERVFAIL is an expected error return, don't try all servers.
Terminate DS-search when reaching the root via cache entries.
Cache stats availble in CHAOS .bind domain.
Ensure ->sentto is valid for DNSSEC forwards. Otherwise retries SEGV.
Tomas Hozza (2):
Memory leak in error path.
Handle failure of hash_questions()
Wang Jian (1):
Log IPSET actions.
Sat, 22 Mar 2014
[ 22:06 mandree ] |
Upgrade to release candidate #1.
Mon, 10 Mar 2014
[ 17:01 mandree ] |
Upgrade to new upstream test release #11.
Git shortlog since test release #9:
Strip DNSSEC RRs when query doesn't have DO bit set.
Return INSECURE when validation fails with proved non-existent DS.
Negative caching for DS records.
Check that unsigned replies come from unsigned zones if --dnssec-check-uns
Fix off-by-one overwrite.
Don't free blockdata for negative DS cache entries.
Handle replies with no answers and no NS in validate_reply.
Tweak tuning params.
Don't cache secure replies which we've messsed with.
Mass edit of INSECURE->BOGUS returns for server failure/bad input.
Can have local DS records (trust anchors).
Thu, 27 Feb 2014
[ 22:55 mandree ] |
Update to new test9 release.
Relevant excerpt from git shortlog between test8 and test9:
Add RFC-6605 ECDSA DNSSEC verification.
Don't mess with the TTL of DNSSEC RRs.
No CD in forwarded queries unless dnssec-debug for TCP too.
Log BOGUS validation result when upstream sends SERVFAIL.
--rev-server option. Syntactic sugar for PTR queries.
Omit ECC from DNSSEC if nettle library is old.
Add --servers-file option.
NSEC3 validation. First pass.
Check signer name in RRSIGs.
An NSEC record cannot attest to its own non-existance!
Wed, 12 Feb 2014
[ 21:12 mandree ] |
Upgrade to test8 release, bringing these upstream fixes:
ee41586 Use DS records as trust anchors, not DNSKEYs.
83349b8 Further tidying of AD and DO bit handling.
7fa836e Handle validation when more one key is needed.
1633e30 Fix Byte-order botch: broke DNSSEC on big-endian platforms.
c8ca33f Fix DNSSEC caching problems: incomplete RRSIG RRsets.
e243c07 AD bit in queries handled as RFC6840 p5.7
Fri, 7 Feb 2014
[ 08:48 mandree ] |
Move all the way to the test7 release that has other bugfixes.
Note the +AD flag may now be missing on the first response for a given domain,
re-querying within the cache TTL would deliver it. Bug has been reported.
Wed, 5 Feb 2014
[ 01:49 mandree ] |
Upgrade to test6, which adds DNSSEC validation and caching support.
Note that this requires configuration (see dnsmasq.conf.example for
hints) and has a few rough edges with regard to caching.
Wed, 1 Jan 2014
[ 23:06 mandree ] |
Update to new upstream 2.69test3 release, with these noteworthy changes:
- Implement dynamic interface discovery on *BSD
- Fix endless loop with some bogu-nxdomain. Another F_CONFIG botch.
- Ignore ",," in dhcp-host, rather than treating it as ",0,"
Invent an additional .0 so we can later have 2.69rc... releases without
Wed, 4 Dec 2013
[ 09:54 mandree ] |
Upgrade to upstream -rc5, fixing binding to IPv6 interfaces with
non-local addresses. Important upstream changes between -rc4 and -rc5:
- Don't overwrite errno before generating message.
- Garbage collect listening sockets when their address is deleted.
- Only set scope_id in addresses to bind() for linklocal addresses.
- Check arrival interface of IPv6 requests, even in --bind-interfaces.
- Relax rules in prefix length in (IPv6) dhcp-range.
Tue, 26 Nov 2013
[ 23:41 mandree ] |
Update to new release candidate #4.
- Add missing malloc() return-code check.
- Do immediate RA when a prefix goes from old->current.
- Fixes to various compiler warnings.
Mon, 25 Nov 2013
[ 22:46 mandree ] |
Update to new upstream release candidate #3, with three changes since RC1:
2543906 Segfault with some CNAMEs. Also memory leak on reload of /etc/hosts.
241fa9c Remove arc4random, we have a good RNG and it's a portability problem.
e142a83 Merge messages to .po files.
Thu, 21 Nov 2013
[ 22:27 mandree ] |
Update to new release candidate #1 for 2.68.
Thu, 17 Oct 2013
[ 23:24 mandree ] |
Upgrade to rc4, changes over rc3 (-: removed, +: added)
REVERT: Add --force-fast-ra option. Another thanks to Uwe Schindler.
+ Update Spanish transalation. Thanks to Vicente Soriano.
+ Add --ra-param option. Thanks to Vladislav Grishenko for
+ inspiration on this.
+ Add --add-subnet configuration, to tell upstream DNS
+ servers where the original client is. Thanks to DNSthingy
+ for sponsoring this feature.
+ Add --quiet-dhcp, --quiet-dhcp6 and --quiet-ra. Thanks to
+ Kevin Darbyshire-Bryant for the initial patch.
+ Allow A/AAAA records created by --interface-name to be the
+ target of --cname. Thanks to Hadmut Danisch for the
+ Avoid treating a --dhcp-host which has an IPv6 address
+ as eligable for use with DHCPv4 on the grounds that it has
+ no address, and vice-versa. Thanks to Yury Konovalov for
+ spotting the problem.
+ Do a better job caching dangling CNAMEs. Thanks to Yves
+ Dorfsman for spotting the problem.
Fix shebang lines of two Perl scripts.
Sun, 6 Oct 2013
[ 21:56 mandree ] |
Update to 2.67 release candidate #3.
While here, support staging.
Changelog for RC1:
Git commit log with newer rc2/rc3 tags:
Mon, 15 Apr 2013
[ 15:24 mandree ] |
DNSMasq 2.66rc5 fixes a DHCPv6 issue where dnsmasq 2.66rc2 spoils its own
leases file for IPv6 records. The closest evidence to a changelog is
the mailing list message at
(and a few prior messages in that same thread).
Approved by: portmgr (bdrewery)
Sat, 23 Mar 2013
[ 14:02 mandree ] |
Update to new upstream release candidate 2.66rc2.
Mon, 3 Dec 2012
[ 21:20 mandree ] |
Update to new upstream release candidate #3 to 2.64.
Feature safe: yes
Thu, 15 Nov 2012
[ 21:38 mandree ] |
Update to new release candidate v2.64rc1 (after portscout complaint).
Feature safe: yes (leaf port)
Mon, 20 Aug 2012
[ 20:32 mandree ] |
Update to rc6, which became the formal release.
Thu, 9 Aug 2012
[ 19:38 mandree ] |
Update to rc3 to avoid nag questions.
Now uses .tar.xz suffix.
Tue, 7 Aug 2012
[ 22:22 mandree ] |
Add new dnsmasq-devel version, for development/test/release candidate versions.
This port is based on dns/dnsmasq 2.62_1,1 and has been updated to 2.63rc2.
Description (by Simon Kelley, the upstream maintainer):
Dnsmasq is a lightweight, easy to configure DNS forwarder and DHCP server.
It is designed to provide DNS and, optionally, DHCP, to a small network. It
can serve the names of local machines which are not in the global DNS. The
DHCP server integrates with the DNS server and allows machines with
DHCP-allocated addresses to appear in the DNS with names configured either
in each host or in a central configuration file. Dnsmasq supports static and
dynamic DHCP leases and BOOTP/TFTP/PXE for network booting of diskless
Number of commits found: 38