notbugAs an Amazon Associate I earn from qualifying purchases.
Want a good read? Try FreeBSD Mastery: Jails (IT Mastery Book 15)
Port details
dnsmasq-devel Lightweight DNS forwarder, DHCP, and TFTP server
2.86.r3,4 dns on this many watch lists=1 search for ports that depend on this port An older version of this port was marked as vulnerable. Find issues related to this port Report an issue related to this port View this port on Repology. pkg-fallout 2.86.r3,4Version of this port present on the latest quarterly branch.
Deprecated DEPRECATED: Short-lived test branch, to be removed after v2.86 release
Ignore IGNORE: please use dns/dnsmasq, which is newer
Maintainer: mandree@FreeBSD.org search for ports maintained by this maintainer
Port Added: 2012-08-07 22:23:04
Last Update: 2021-09-09 15:48:31
Commit Hash: d8ba062
People watching this port, also watch:: ufoai, gimp, otrs, lumina
License: GPLv2
Description:
SVNWeb : git : Homepage
pkg-plist: as obtained via: make generate-plist
Expand this list (24 items)
Collapse this list.
  1. /usr/local/share/licenses/dnsmasq-devel-2.86.r3,4/catalog.mk
  2. /usr/local/share/licenses/dnsmasq-devel-2.86.r3,4/LICENSE
  3. /usr/local/share/licenses/dnsmasq-devel-2.86.r3,4/GPLv2
  4. sbin/dnsmasq
  5. @sample etc/dnsmasq.conf.sample
  6. man/man8/dnsmasq.8.gz
  7. share/dnsmasq/trust-anchors.conf
  8. share/examples/dnsmasq/dnslist/dhcp.css
  9. share/examples/dnsmasq/dnslist/dnslist.pl
  10. share/examples/dnsmasq/dnslist/dnslist.tt2
  11. share/examples/dnsmasq/dynamic-dnsmasq/dynamic-dnsmasq.pl
  12. share/locale/de/LC_MESSAGES/dnsmasq.mo
  13. share/locale/es/LC_MESSAGES/dnsmasq.mo
  14. share/locale/fi/LC_MESSAGES/dnsmasq.mo
  15. share/locale/fr/LC_MESSAGES/dnsmasq.mo
  16. share/locale/id/LC_MESSAGES/dnsmasq.mo
  17. share/locale/it/LC_MESSAGES/dnsmasq.mo
  18. share/locale/no/LC_MESSAGES/dnsmasq.mo
  19. share/locale/pl/LC_MESSAGES/dnsmasq.mo
  20. share/locale/pt_BR/LC_MESSAGES/dnsmasq.mo
  21. share/locale/ro/LC_MESSAGES/dnsmasq.mo
  22. @owner
  23. @group
  24. @mode
Collapse this list.
Dependency lines:
  • dnsmasq-devel>0:dns/dnsmasq-devel
Conflicts:
CONFLICTS_INSTALL:
  • dnsmasq-2*
Conflicts Matches:
There are no Conflicts Matches for this port. This is usually an error.
To install the port:
cd /usr/ports/dns/dnsmasq-devel/ && make install clean
A package is not available for ports marked as:
Forbidden / Broken / Ignore / Restricted
PKGNAME: dnsmasq-devel
Flavors: there is no flavor information for this port.
distinfo:
Packages (timestamps in pop-ups are UTC):
dnsmasq-devel
ABIlatestquarterly
FreeBSD:11:aarch642.80.t6,2-
FreeBSD:11:amd642.86.r3,42.86.r3,4
FreeBSD:11:armv6--
FreeBSD:11:i3862.86.r3,42.86.r3,4
FreeBSD:11:mips--
FreeBSD:11:mips64--
FreeBSD:12:aarch642.80.t7,2-
FreeBSD:12:amd64--
FreeBSD:12:armv62.80.t7,2-
FreeBSD:12:armv72.80.t8,2-
FreeBSD:12:i386--
FreeBSD:12:mips--
FreeBSD:12:mips642.80.t8,2-
FreeBSD:12:powerpc64-2.85.r2,3
FreeBSD:13:aarch64--
FreeBSD:13:amd64--
FreeBSD:13:armv6-2.85.r2,3
FreeBSD:13:armv7--
FreeBSD:13:i386--
FreeBSD:13:mips--
FreeBSD:13:mips64--
FreeBSD:13:powerpc64-2.86.r3,4
FreeBSD:14:aarch64--
FreeBSD:14:amd64--
FreeBSD:14:armv6--
FreeBSD:14:armv7--
FreeBSD:14:i386--
FreeBSD:14:mips--
FreeBSD:14:mips64--
FreeBSD:14:powerpc64--
 

Dependencies
NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.
Build dependencies:
  1. msgfmt : devel/gettext-tools
  2. gmake>=4.3 : devel/gmake
  3. pkgconf>=1.3.0_1 : devel/pkgconf
Library dependencies:
  1. libidn2.so : dns/libidn2
  2. libgmp.so : math/gmp
  3. libnettle.so : security/nettle
  4. libintl.so : devel/gettext-runtime
There are no ports dependent upon this port

Configuration Options:
Options name:

USES:

FreshPorts was unable to extract/find any pkg message
Master Sites:
Expand this list (5 items)
Collapse this list.
  1. http://distcache.FreeBSD.org/local-distfiles/mandree/
  2. http://distcache.eu.FreeBSD.org/local-distfiles/mandree/
  3. http://distcache.us-east.FreeBSD.org/local-distfiles/mandree/
  4. http://distcache.us-west.FreeBSD.org/local-distfiles/mandree/
  5. https://www.thekelleys.org.uk/dnsmasq/release-candidates/
Collapse this list.

Number of commits found: 121 (showing only 100 on this page)

1 | 2  »  

Commit History - (may be incomplete: see SVNWeb link above for full details)
DateByDescription
09 Sep 2021 15:48:31
 files touched by this commit commit hash:d8ba06237d5018b525a15ae5823f2e1fb9900854  2.86.r3,4
Matthias Andree (mandree) search for other commits by this committer
dns/dnsmasq: update to v2.86, ignore dnsmasq-devel

Changelog:
https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=blob_plain;f=CHANGELOG;hb=v2.86
02 Sep 2021 20:38:41
 files touched by this commit commit hash:17426ba8b1c664edd43d57c735f2193030e5a170  2.86.r3,4
Matthias Andree (mandree) search for other commits by this committer
dns/dnsmasq-devel: update to 2.86rc3

Git change:
* c83e33d 2021-09-01 | Final logging tweaks. [Dominik DL6ER]
01 Sep 2021 19:50:12
 files touched by this commit commit hash:a41b136cce04e8f822319b992d39f95db2ca5885  2.86.r2,4
Matthias Andree (mandree) search for other commits by this committer
dns/dnsmasq-devel: update to 2.86rc2

Git history:

* 7b80c75 2021-08-31 | Rationalise query-reply logging. [Simon Kelley]
* 79337f9 2021-08-29 | Support limited wildcards in the input tags for
		       --tag-if. [Geoff Back]
25 Aug 2021 15:59:44
 files touched by this commit commit hash:64736881ef05a7e44878848bac0622be7504bad8  2.86.r1,4
Matthias Andree (mandree) search for other commits by this committer
dns/dnsmasq-devel: update to rc1 release candidate

Changes:
* a42ee39 2021-08-16 | Man page BNF error fix. [Geert Stappers]
* e58f8bb 2021-08-25 | Merge message changes into I18N files. [Simon Kelley]
* 58cf958 2021-08-20 | Fix empty domain in server option parsing when more than
one domain is given [Dominik DL6ER]
* 06d01f7 2021-07-22 | Make comment style consistent. [Etan Kissling]
* 1a33eec 2021-07-22 | Adjust logging levels for connmark patterns. [Etan
Kissling]
* 82de7a1 2021-07-22 | Re-order UBus teardown logic. [Etan Kissling]
* 8e9bde5 2021-07-22 | Eliminate redundant UBus `notify` variable. [Etan
Kissling]
* 1bb70e0 2021-07-22 | Handle UBus serialization errors. [Etan Kissling]
* 9afcb7a 2021-08-12 | Revert "There was a `notify` variable to keep track
whether a subscriber is" [Simon Kelley]
* 545c495 2021-08-12 | Revert "Re-order UBus teardown logic." [Simon Kelley]
* 2f2d59b 2021-08-12 | Define order of reading files when --addn-hosts given a
directory. [Simon Kelley]

CHANGELOG addition:

+       When --dhcp-hostsfile --dhcp-optsfile and --addn-hosts are
+       given a directory as argument, define the order in which
+       files within that directory are read (alphabetical order
+       of filename). Thanks to Ed Wildgoose for the initial patch
+       and motivation for this.
19 Aug 2021 15:56:15
 files touched by this commit commit hash:47af927eedf2af55ad3e3b96353a101d8d41e632  2.86.t7,3
Matthias Andree (mandree) search for other commits by this committer
dns/dnsmasq-devel: update to v2.86test7

Changes since test6, per Git, without merges, and by Simon Kelley unless
noted otherwise:
* a1729de 2021-08-11 | Fiz sizeof() confusion in 527c3c7 (tag:
  v2.86test7)
* fc64b97 2021-08-10 | dhcp_buff2 not availble in log_packet, use
  daemon->addrbuff
* a163c63 2021-08-05 | CONNTRACK needs CAP_NET_ADMIN.
* 527c3c7 2021-08-10 | Remove remaining uses of  deprecated inet_ntoa()
  [Petr Menšík]
* fcb4dca 2021-08-10 | Remove remaining uses of deprecated inet_addr()
  function. [Petr Menšík]
* 3ca4995 2021-08-10 | CHANGELOG: spell-check [Matthias Andree]
* d387f8f 2021-07-22 | Re-order UBus teardown logic. [Etan Kissling]
* ea43234 2021-08-10 | There was a `notify` variable to keep track
  whether a subscriber is observing our UBus object. However, it was not
  properly cleaned up in `ubus_destroy`, potentially becoming stale over
  UBus reconnections. The variable was removed and the current state is
  examined when sending notifications, similarly as is done in other
  existing OpenWrt code. [Etan Kissling]
* 867e56a 2021-08-08 | Fix NOERR/NXDOMAIN in answers configured by
  --domain-needed.
22 Jul 2021 08:40:42
 files touched by this commit commit hash:35d8b4a982cb1902fdb8e336ced81f1134652367  2.86.t6,3
Matthias Andree (mandree) search for other commits by this committer
dns/dnsmasq-devel: update to 2.86test6

CHANGELOG additions since test5:

* Allow smaller then 64 prefix lengths in synth-domain, with caveats.
  --synth-domain=1234:4567::/56,example.com is now valid.

* Make domains generated by --synth-domain appear in replies
  when in authoritative mode.

Git log since v2.86test5:

* 8389b94 2021-07-21 | Better fix than f2266d9678d71633d62d70238be3782ea74019c9
(tag: v2.86test6) [Simon Kelley]
* f2266d9 2021-07-21 | Add UINT32_MAX if not defined by system. [Simon Kelley]
* 56bd806 2021-07-21 | Typo in new EDE code. [Simon Kelley]
* ac7eeea 2021-07-21 | Handle empty hostmaster in --auth-soa [Simon Kelley]
* b741059 2021-07-20 | Detect malformed --dhcp-relay option. [Simon Kelley]
* cbd9842 2021-07-20 | Fix argument checking for --dhcp-match. [Simon Kelley]
* 32e15c3 2021-07-20 | canonicalise_opt must always return heap memory. [Simon
Kelley]
* f0dc324 2021-07-20 | Checks on prefix-length in --domain --synth-domain and
--rev-server. [Simon Kelley]
* f83c6cf 2021-07-20 | Return REFUSED in auth mode when we are not authoritative
for the query. [Simon Kelley]
* c068b3a 2021-07-19 | --synth-domain now works in auth mode. [Simon Kelley]
* adf9dec 2021-07-18 | Allow shorter IPv6 prefix lengths in (some)
--synth-domain options. [Simon Kelley]
* 767d9cb 2021-07-09 | Add --quiet-tftp. [Kevin Darbyshire-Bryant]
16 Jul 2021 16:26:23
 files touched by this commit commit hash:0184db0c0590d7b58913669a6d890bba9257dff7  2.86.t5,3
Matthias Andree (mandree) search for other commits by this committer
dns/dnsmasq-devel: update to v2.86test5

git history since test4:
* e7ccd95 2021-07-09 | Add EDE return when no matching key found. (tag:
v2.86test5) [Dominik DL6ER]
* 719f79a 2021-07-06 | Subtle change to priority of --server types. [Simon
Kelley]
* 96f6444 2021-07-05 | Fix thinko in a92c6d77dcd475579c39bdff141f5eb128e2a048
[Kevin Darbyshire-Bryant]
* df25f20 2021-07-05 | Fix logical error in
d0ae3f5a4dc094e8fe2a3c607028c1c59f42f473 [Simon Kelley]
* 8acdc3e 2021-07-04 | Add calls to dump internally generated answers for
dumpmask=0x0002 [Simon Kelley]
* 857b445 2021-07-04 | Fix order of calls to resize-packet() and
add_pseudoheader(). [Simon Kelley]
* 5bcca12 2021-07-04 | Support IPv6 in --bogus-nxdomian and --ignore-address
[Simon Kelley]
* 4558c26 2021-07-04 | Make --rebind-localhost-ok apply to :: and 0.0.0.0 [Simon
Kelley]
* a92c6d7 2021-07-03 | Tidy domain parsing, make --server=/*/1.2.3.4 equivalent
to --server=1.2.3.4 [Simon Kelley]
* 0c95a5f 2021-07-02 | Modify and propagate changed lease. [Petr Menšík]
* cb6d06b 2021-07-01 | Rationalise SERV_MARK use. [Simon Kelley]
* 3ef955c 2021-07-01 | Fix oversight in  build_server_array(). [Simon Kelley]
* 5e95c16 2021-07-01 | Allow wildcards in domain patterns. [Simon Kelley]
* 4205e2e 2021-07-01 | Reuse workspace bit in struct server ->flags. [Simon
Kelley]
* 9d806c5 2021-06-29 | Fix ipset support. [Etan Kissling]
* a38bb31 2021-06-30 | Revert "Treat failure of ubus_add_object() in ubus_init()
as retry-able." [Simon Kelley]
* 8a1ef36 2021-06-27 | Treat failure of ubus_add_object() in ubus_init() as
retry-able. [Simon Kelley]
* 1291865 2021-06-27 | Fix trivial breakage of DBUS done by
85bc7534dae7711f6c82742feaa7dacb41af3f36 [Simon Kelley]
* a9ebbee 2021-06-27 | Compiler warnings. [Simon Kelley]
* 06df5ad 2021-06-27 | Tidy up interface to dbus and ubus modules. [Simon
Kelley]
28 Jun 2021 19:35:31
 files touched by this commit commit hash:d23863a56a537a0eab0e317381ddefb33cdcf988  2.86.t4,3
Matthias Andree (mandree) search for other commits by this committer
dns/dnsmasq-devel: update to v2.86test4

Changes, taken from upstream Git log
(all by Simon Kelley, upstream maintainer):

* 66b863c 2021-06-26 | Fix problem with re-allocation of serverarray.
* c9efe8e 2021-06-26 | Rationalise domain parsing for --rev-server and --domain.
* d515223 2021-06-26 | Don't re-use datastructures for --address and --local.
*   b908f43 2021-06-26 | Merge branch 'extended-error'
|\
| * 6261aba 2021-06-26 | Initial implementation of RFC-8914 extended DNS errors.
| * 11c52d0 2021-06-21 | Initial changes for extended DNS error codes.
* 85bc753 2021-06-25 | Rationalise --server parsing and datastructure building.
* 1b30fd1 2021-06-25 | Merge branch 'master' of
ssh://thekelleys.org.uk/var/local/git/dnsmasq
* 8c9196b 2021-06-24 | Correct domain search algorithm.
25 Jun 2021 20:13:42
 files touched by this commit commit hash:d52c9b534f129b4ae9252c30f0130fece37d8a5a  2.86.t3,3
Matthias Andree (mandree) search for other commits by this committer
dns/dnsmasq-devel: update to v2.86test3

Git history between v2.86test2 and v2.86test3:

* b1daf44 2021-06-24 | Correct domain search algorithm. (tag: v2.86test3) [Simon
Kelley]
* be291d9 2021-06-21 | Include EDNS0 in connmark REFUSED replies. [Simon Kelley]
* 6d1edd8 2021-06-21 | Use correct packet-size limit in make_local_answer()
[Simon Kelley]
* 25ff956 2021-06-21 | Tidy up name buffer use in report_addresses(). [Simon
Kelley]
* 3817950 2021-06-21 | CHANGELOG entry for new connmark code. [Simon Kelley]
* 5f7be5f 2021-06-21 | Fix compiler warning. [Simon Kelley]
* 627056f 2021-06-16 | Connection track mark based DNS query filtering. [Etan
Kissling]
* cbd7644 2021-06-21 | Further work from
a0a3b8ad3e91db5181023fceea6732eb6c6f0759 [Simon Kelley]
* a60a233 2021-06-20 | Fix bug introduced in
6860cf932baeaf1c2f09c2a58e38be189ae394de [Simon Kelley]
* a0a3b8a 2021-06-20 | Fix bug in 6860cf932baeaf1c2f09c2a58e38be189ae394de
[Simon Kelley]
* d0ae3f5 2021-06-17 | Fix specific NOERR/NXDOMAIN confusion. [Simon Kelley]
* 6860cf9 2021-06-17 | Optimise lokkup_domain() [Simon Kelley]
*   0276e08 2021-06-16 | merge development machines. Merge branch 'master' of
ssh://thekelleys.org.uk/var/local/git/dnsmasq [Simon Kelley]
|\
| * 1a3b69a 2021-06-16 | Fix error in new domain-search code. [Simon Kelley]
* 06ff3d8 2021-06-16 | Log the correct name when we retry a DNSSEC query. [Simon
Kelley]
* 8237d06 2021-06-15 | Typo in FAQ. [Simon Kelley]
16 Jun 2021 15:46:58
 files touched by this commit commit hash:d4ba4c52ce2100f1d066d4a3ab04934f86ba33dc  2.86.t2,3
Matthias Andree (mandree) search for other commits by this committer
dns/dnsmasq-devel: update to 2.86test2

* 1c9f136 2021-06-15 | Man page update, lease times can be given in days or
weeks. (tag: v2.86test2) [Simon Kelley]
* 5ab7e4a 2021-06-14 | Improve efficiency of DNSSEC. [Simon Kelley]
* 3236f35 2021-06-13 | Revise resource handling for number of concurrent DNS
queries. [Simon Kelley]
* 4a6550d 2021-06-10 | Move make_local_answer() to domain-match.c
(refs/bisect/bad) [Simon Kelley]
* ff523d0 2021-06-10 | Fix TCP replies with --domain-needed. [Simon Kelley]
* 3c93e8e 2021-06-08 | Re-order UBus initialisation to avoid logging before logs
set up. [Simon Kelley]

Reported by:	portscout
12 Jun 2021 10:36:06
 files touched by this commit commit hash:4f76735ccc3637a7d2c05faafebb6312560c12f4  2.86.t1,3
Matthias Andree (mandree) search for other commits by this committer
dns/dnsmasq-devel: update to 2.86test1.
12 Jun 2021 10:36:05
 files touched by this commit commit hash:f892b650daedac14afed179850d229696d82e918  2.85.r2,3
Matthias Andree (mandree) search for other commits by this committer
dns/dnsmasq-devel: revive from 6a7b12367
09 Apr 2021 15:02:18
 files touched by this commit commit hash:98bc55de696fd47a20478d3f97ff056c28d77e7a  2.85.r2,3
Antoine Brodin (antoine) search for other commits by this committer
Finish removal of dns/dnsmasq-devel
08 Apr 2021 21:55:22
 files touched by this commit commit hash:6a7b1236749008c79b325e05a0ea0a26a4c90589  2.85.r2,3
Matthias Andree (mandree) search for other commits by this committer
dns/dnsmasq-devel: deorbit now that there is a v2.85 release.
06 Apr 2021 14:31:13
 files touched by this commit commit hash:135fdeebb99c3569e42d8162b265e15d29bd937d  2.85.r2,3
Mathieu Arnold (mat) search for other commits by this committer
all: Remove all other $FreeBSD keywords.
06 Apr 2021 14:31:07
 files touched by this commit commit hash:305f148f482daf30dcf728039d03d019f88344eb  2.85.r2,3
Mathieu Arnold (mat) search for other commits by this committer
Remove # $FreeBSD$ from Makefiles.
27 Mar 2021 12:40:51
Original commit files touched by this commit Revision:569327  2.85.r2,3
mandree search for other commits by this committer
dns/dnsmasq-devel: update to v2.85rc2

* ea28d0e 2021-03-26 | Scale the DNS random scket pool on the value of
dns-forward-max. (HEAD -> master, tag: v2.85rc2, origin/master, origin/HEAD)
[Simon Kelley]
* 4a8c098 2021-03-26 | Change the method of allocation of random source ports
for DNS. [Simon Kelley]
* ffa4628 2021-03-22 | Fix thinko in 51f7bc924cbcdeb09cbb83249b70c121d1ffa31e
[Li Xing Cong ]
* e10a923 2021-03-15 | Move repeated test pattern to server_test_type [Petr
Mensik]
* 51f7bc9 2021-03-18 | Create common function for forward dump, log and send
[Petr Mensik]
* 6c0bf79 2021-03-18 | Reduce few repetitions in forward code [Petr Mensik]
* 4b03170 2021-03-20 | Update German translation for 2.85rc1. [Matthias Andree]
* 1de6bbc 2021-03-19 | Fix FTBS on FreeBSD due to Linux-specific optimisation of
if_nametoindex() [Simon Kelley]
21 Mar 2021 08:34:45
Original commit files touched by this commit Revision:568907  2.85.r1_1,3
mandree search for other commits by this committer
dnsmasq-devel: Use original patch from upstream Git to fix compilation.
18 Mar 2021 00:27:18
Original commit files touched by this commit Revision:568706  2.85.r1,3
mandree search for other commits by this committer
fixup PORTEPOCH for dnsmasq-devel

which used to be at 3 already earlier. Adjust vuxml entry accordingly.

Security:	CVE-2021-3448
Security:	5b72b1ff-877c-11eb-bd4f-2f1d57dafe46
18 Mar 2021 00:19:52
Original commit files touched by this commit Revision:568703  2.85.r1,1 This port version is marked as vulnerable.
mandree search for other commits by this committer
mark deprecated right away and expire before 2021Q2,

to keep this out of the quarterly branch, it should use the formal release
instead.
18 Mar 2021 00:12:31
Original commit files touched by this commit Revision:568702  2.85.r1,1 This port version is marked as vulnerable.
mandree search for other commits by this committer
dnsmasq-devel: add test release 2.85rc1

This is to fix a port randomization flaw that subjects dnsmasq to a cache
poisoning attack.

ChangeLog:
https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=blob;f=CHANGELOG;h=155fc966f9542259596b41594f4b85775d1f9c9a;hb=023ace8e54c2e83e88082a1073a281d659f2a860#l1

Add CONFLICTS_INSTALL markers.

Security: CVE-2021-3448
Security: 5b72b1ff-877c-11eb-bd4f-2f1d57dafe46
24 Sep 2020 18:01:39
Original commit files touched by this commit Revision:549934  2.82.r1,3 This port version is marked as vulnerable.
rene search for other commits by this committer
Remove expired port:

2020-09-20 dns/dnsmasq-devel: use dns/dnsmasq instead, which is newer
19 Jul 2020 23:10:44
Original commit files touched by this commit Revision:542601  2.82.r1,3 This port version is marked as vulnerable.
mandree search for other commits by this committer
dnsmasq-devel: set IGNORE, deprecate, and expire port in two months.
13 Jul 2020 20:25:00
Original commit files touched by this commit Revision:542155  2.82.r1,3 This port version is marked as vulnerable.
mandree search for other commits by this committer
dns/dnsmasq-devel: revive port and update to 2.82rc1

http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=blob;f=CHANGELOG;h=4b4e5b345170ab1e3a54d8d2847f500664a84d8d;hb=4d85e409cd2f4b0935d6ac5e8c72f6a151735d52#l1
28 Apr 2020 19:27:35
Original commit files touched by this commit Revision:533265  2.81.r5,3 This port version is marked as vulnerable.
antoine search for other commits by this committer
Finish dnsmasq-devel removal
12 Apr 2020 01:59:59
Original commit files touched by this commit Revision:531473  2.81.r5,3 This port version is marked as vulnerable.
mandree search for other commits by this committer
dns/dnsmasq: update to 2.81, unlink dnsmasq-devel

Update dns/dnsmasq to the new upstream version 2.81.
The Makefile has been rearranged with portfmt, except the
LDFLAGS+=..._intllibs... line that portfmt does not recognize.

Changelog:
<http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=blob;f=CHANGELOG;h=60b08d015b2d5a979f39b8ad43633b419135cb64;hb=7ddb99d251c3f5870c8c308a98bb8f283c831872#l1>
(or see CHANGELOG in the package)

Unlink dnsmasq-devel from the build, but keep the sources,
and mark it IGNORE and list dnsmasq-devel in MOVED.
05 Apr 2020 09:38:24
Original commit files touched by this commit Revision:530759  2.81.r5,3 This port version is marked as vulnerable.
mandree search for other commits by this committer
dns/dnsmasq-devel update to 2.81 release candidate #5

Git changes since rc4:
* 532246f 2020-04-04 | Tweak to DNSSEC logging. (tag: v2.81rc5, origin/master,
origin/HEAD) [Simon Kelley]
* 8caf3d7 2020-04-04 | Fix rare problem allocating frec for DNSSEC. [Simon
Kelley]
* d162bee 2020-03-20 | Allow overriding of ubus service name. [Oldrich Jedlicka]
* b43585c 2020-03-28 | Fix nameserver list in auth mode. [Simon Kelley]
* 3f60ecd 2020-03-18 | Fixed resource leak on ubus_init failure. [Oldrich
Jedlicka]
* 0506a5e 2020-03-19 | Handle old kernels that don't do NETLINK_NO_ENOBUFS.
[Simon Kelley]
* e7ee1aa 2020-03-17 | Extend stop-dns-rebind to reject IPv6 LL and ULA
addresses. We also reject the loopback address if rebind-localhost-ok is NOT
set. [Dominik DL6ER]
21 Mar 2020 09:53:42
Original commit files touched by this commit Revision:528842  2.81.r4,3 This port version is marked as vulnerable.
mandree search for other commits by this committer
dns/dnsmasq-devel: update to upstream release candidate #4

FreeBSD-relevant changes, since rc #3, from Git:
* 63e21bd 2020-03-17 | Remove 19036 trust anchor, now expired. [Simon Kelley]
* b837c45 2020-03-10 | Update German translation. [Conrad Kostecki]
09 Mar 2020 21:29:24
Original commit files touched by this commit Revision:528134  2.81.r3,3 This port version is marked as vulnerable.
mandree search for other commits by this committer
dns/dnsmasq-devel: Update to 2.81rc3 (from rc2).

Git changelog:
* 46bdfe6 2020-03-08 | Fix error in IPv6 prefix calculation. (HEAD -> master,
tag: v2.81rc3, origin/master, origin/HEAD) [Petr Mensik]
* dded78b 2020-03-08 | Add DHCPv6 ntp-server (56) option handling. [Vladislav
Grishenko]
* b594e8d 2020-03-06 | rfc3315: fix incorrect logical '&&' warning [Kevin
Darbyshire-Bryant]
* 70c50ef 2020-03-06 | suppress non linux network unused var warnings [Kevin
Darbyshire-Bryant]
* ea3c60a 2020-03-08 | Diverge error handling between *BSD and Linux. [Brad
Smith]

Replace patch-Makefile by a $REINPLACE_CMD that support
nondefault lua versions 5.1 and 5.3, too.

Remove patch-src_rfc3315.c, same as b594e8d but written independently.
06 Mar 2020 01:44:54
Original commit files touched by this commit Revision:527854  2.81.r2,3 This port version is marked as vulnerable.
mandree search for other commits by this committer
dns/dnsmasq-devel: Update to new upstream release candidate #2.

Changelog (from Git):
* fc19399 2020-03-05 | Fix compiler warning. (HEAD -> master, tag: v2.81rc2,
origin/master, origin/HEAD) [Simon Kelley]
* 980b14f 2020-03-05 | Compiler warning. [Simon Kelley]
* 1df73fe 2020-03-05 | Remove compiler warnings in IPv6 checksum code in dump.c
[Simon Kelley]
* c125c1d 2020-03-05 | Update decline address handling in DHCPv6 for new
multi-address world. [Simon Kelley]
* e39c484 2020-03-05 | Fix parameters to setsockopt() for TCP_FASTOPEN.
[Matthias Andree]
* 977a5a2 2020-03-02 | Merge i18n messages. [Simon Kelley]
* 02df000 2020-03-02 | Trivial formatting fix. [Simon Kelley]

Drop previous patches, and add two new ones,
one to fix pkgconfig for lua,
one to fix the bitfield flag testing in rfc3315.c/DHCPv6 decline handling.
04 Mar 2020 22:27:14
Original commit files touched by this commit Revision:527801  2.81.r1,3 This port version is marked as vulnerable.
mandree search for other commits by this committer
Update dnsmasq-devel to 2.81rc1.

This currently adds two portability fixes that have been reported upstream.

Changelog:
<http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=blob;f=CHANGELOG;h=31b395c987fe50174533065afe816dec3d4284a1;hb=b2ed691eb3ca6488a8878f5f3dd950a07b14a9db#l1>
09 Oct 2019 10:34:57
Original commit files touched by this commit Revision:514130  2.80.r1_3,3 This port version is marked as vulnerable.
bapt search for other commits by this committer
Drop the ipv6 virtual category for d* category as it is not relevant anymore
13 Aug 2019 16:01:59
Original commit files touched by this commit Revision:508835  2.80.r1_3,3  Sanity Test Failure This port version is marked as vulnerable.
mat search for other commits by this committer
Convert to UCL & cleanup pkg-message (categories d)
09 Jul 2019 17:13:07
Original commit files touched by this commit Revision:506289  2.80.r1_3,3 This port version is marked as vulnerable.
sunpoet search for other commits by this committer
Update security/nettle to 3.5.1

- Bump PORTREVISION of dependent ports for shlib change
- Fix build of devel/pijul [1]

Changes:	https://git.lysator.liu.se/nettle/nettle/blob/master/NEWS
PR:		238991
Exp-run by:	antoine
Thanks to:	tobik [1]
09 Feb 2019 23:25:37
Original commit files touched by this commit Revision:492534  2.80.r1_2,3 This port version is marked as vulnerable.
sunpoet search for other commits by this committer
Update dns/libidn2 to 2.1.1

- Bump PORTREVISION of dependent ports for shlib change

Changes:	https://gitlab.com/libidn/libidn2/blob/master/NEWS
06 Jan 2019 20:39:43
Original commit files touched by this commit Revision:489529  2.80.r1_1,3 This port version is marked as vulnerable.
sunpoet search for other commits by this committer
Update dns/libidn2 to 2.1.0

- Bump PORTREVISION of dependent ports for shlib change

Changes:	https://gitlab.com/libidn/libidn2/blob/master/NEWS
19 Oct 2018 17:48:30
Original commit files touched by this commit Revision:482440  2.80.r1,3 This port version is marked as vulnerable.
mandree search for other commits by this committer
dns/dnsmasq-devel: Set to ignore now that 2.80 has been released and dns/dnsmasq
has been updated.
16 Oct 2018 22:36:47
Original commit files touched by this commit Revision:482262  2.80.r1,3 This port version is marked as vulnerable.
mandree search for other commits by this committer
Update dns/dnsmasq-devel to release candidate #1

Updates German translation.
07 Oct 2018 16:30:33
Original commit files touched by this commit Revision:481458  2.80.t8,2 This port version is marked as vulnerable.
mandree search for other commits by this committer
dns/dnsmasq-devel: upgrade to 2.80test8 release

CHANGELOG since test7:
  Include in the example config file a formulation which stops DHCP clients
  from claiming the DNS name "wpad".
  This is a fix for the CERT Vulnerability VU#598349.
03 Oct 2018 23:24:33
Original commit files touched by this commit Revision:481194  2.80.t7,2 This port version is marked as vulnerable.
mandree search for other commits by this committer
dns/dnsmasq-devel: update to 2.80test7

Changes since test6, from CHANGELOG:

  Change anti cache-snooping behaviour with queries with the
  recursion-desired bit unset. Instead to returning SERVFAIL, we
  now always forward, and never answer from the cache. This
  allows "dig +trace" command to work.

  Include in the example config file a formulation which
  stops DHCP clients from claiming the DNS name "wpad".
  This is a fix for the CERT Vulnerability VU#598349.
09 Sep 2018 10:18:27
Original commit files touched by this commit Revision:479284  2.80.t6,2 This port version is marked as vulnerable.
mandree search for other commits by this committer
Update dnsmasq-devel to v2.80test6.

Changes from git log --oneline:
af3bd07 Man page typo.
d682099 Picky changes to 47b45b2967c931fed3c89a2e6a8df9f9183a5789
47b45b2 Fix lengths of interface names
2b38e38 Minor improvements in lease-tools
282eab7 Mark die function as never returning
c346f61 Handle ANY queries in context of
da8b6517decdac593e7ce24bde2824dd841725c8
03212e5 Manpage typo.

Reported by:	portscout
07 Sep 2018 17:57:08
Original commit files touched by this commit Revision:479203  2.80.t5,2 This port version is marked as vulnerable.
mandree search for other commits by this committer
Update dnsmasq-devel to v2.80test5

CHANGELOG extract:
       Implement --address=/example.com/# as (more efficient) syntactic
       sugar for --address=/example.com/0.0.0.0 and
       --address=/example.com/::
27 Aug 2018 23:52:58
Original commit files touched by this commit Revision:478262  2.80.t4,2 This port version is marked as vulnerable.
mandree search for other commits by this committer
Update dnsmasq-devel to v2.80test4.

CHANGELOG diff since v2.80test3:

  Fix crash on startup with a --synth-domain which has no prefix.

  Fix missing EDNS0 section in some replies generated by local
  DNS configuration which confused systemd-resolvd.

  Add --dhcp-name-match config option.

  Add --caa-record config option.
16 Aug 2018 07:08:08
Original commit files touched by this commit Revision:477310  2.80.t3,2 This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to 2.80test3 release.

Changelog:
<http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=blob_plain;f=CHANGELOG;hb=3b6eb197a88ff450fb6abeff67152a592a7d683a>
20 Mar 2018 16:53:16
Original commit files touched by this commit Revision:465092  2.77.r5,2 This port version is marked as vulnerable.
mandree search for other commits by this committer
Mark IGNORE since the stable version dns/dnsmasq is newer.
22 May 2017 22:53:11
Original commit files touched by this commit Revision:441496  2.77.r5,2 This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to new upstream release candidate #5.

Switch IDN support from libidn to libidn2.
Drop patches integrated upstream.
21 May 2017 11:05:56
Original commit files touched by this commit Revision:441373  2.77.r4,2 This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to upstream release candidate #4, with two more fixes.

Additionally, zero out *addrp in edns0.c, and fix two typoes in
forward.c where && should be &. These fixes have all been reported
upstream.

Note that the build rig is currently not up to using I18N and IDN2, so
we forgo IDN2 for now. Also reported upstream.

Changelog since -test5:

1835343 (tag: v2.77rc4) Update German translation.
2aaea18 Add .gitattributes to substitute VERSION on export.
7ab78b9 (tag: v2.77rc3) Fix c7be0164ce6ae89d6f2f0ffea14e2612418dd5da
c7be016 (tag: v2.77rc2) Suppress DHCP ping checks when allocating on the
loopback interface.
d203af4 Add optional support for libidn2 and therefore IDNA2008.
05f76da Don't die() on failing to parse lease-script output.
bf05f8f Fix crash introduced by 09f3b2cd9c7b5b5e0e96ba41f666e69808862620.
09f3b2c (tag: v2.77rc1) Fix case of DS queries to domains marked as not doing
DNSSEC.
2282787 Fix botch introduced by 561441320f0cb67ea97f81c59332da5c6d14b494
4583dd9 Replace obsolete utime() usage with utimes().
5614413 Fix a couple of crashes on malformed config files.
b2a9c57 Add "known-othernet" DHCP tag.
04 May 2017 22:50:30
Original commit files touched by this commit Revision:440120  2.77.t5,1 This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to new upstream test release -test5.

Diff from upstream CHANGELOG:
+           Allow use of MAC addresses with --tftp-unique-root. Thanks
+           to Floris Bos for the patch.
+
+            Add --dhcp-reply-delay option. Thanks to Floris Bos
+           for the patch.
+
+            Add mtu setting facility to --ra-param. Thanks to David
+           Flamand for the patch.
+
+           Capture STDOUT and STDERR output from dhcp-script and log
+           it as part of the dnsmasq log stream. Makes life easier
+           for diagnosing unexpected problems in scripts.
(Only the first 15 lines of the commit message are shown above View all of this commit message)
21 Mar 2017 22:50:44
Original commit files touched by this commit Revision:436662  2.77.t4,1 This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to -test4 release, forward port IPSET [1]

Changes since -test3 release (edited diff from CHANGELOG):
* Improve logging of upstream servers when there are a lot of "local
  addresses only" entries.
* Implement RFC 6842.
* Make --bogus-priv apply to IPv6, for the prefixes specified in RFC6303.

Forward port IPSET option from ../dnsmasq port, to permit build on
PF-less systems.

PR:		217900 [1]
Submitted by:	Oliver Pinter <oliver.pinter@hardenedbsd.org>
12 Feb 2017 13:02:41
Original commit files touched by this commit Revision:433940  2.77.t3,1 This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to 2.77.test3.

Simon Kelley (2):
      Improve connection handling when talking to TCP upsteam servers.
      Add forthcoming 2017 root zone trust anchor to trust-anchors.conf.
09 Feb 2017 00:22:14
Original commit files touched by this commit Revision:433703  2.77.t2,1 This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to new 2.77test2 release.

Changelog:	<http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=blob_plain;f=CHANGELOG;hb=68f6312d4bae30b78daafcd6f51dc441b8685b1e>

Use readelf instead of objdump, unbreaking arm64 build. [1]
Submitted by:	emaste@ [1]
Differential Revision:	https://reviews.freebsd.org/D7881 [1]
24 May 2016 06:27:04
Original commit files touched by this commit Revision:415765  2.76.r2,1 This port version is marked as vulnerable.
mandree search for other commits by this committer
Mark port IGNORE.
23 May 2016 20:35:01
Original commit files touched by this commit Revision:415742  2.76.r2,1 This port version is marked as vulnerable.
amdmi3 search for other commits by this committer
Remove NLS, DOCS, EXAMPLES and IPV6 from OPTIONS_DEFAULT, they are enabled by
default anyway and don't need to be listed

Approved by:	portmgr blanket
16 May 2016 22:57:23
Original commit files touched by this commit Revision:415366  2.76.r2,1 This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to new upstream release candidate #2.

Changes in upstream Git between releases (git shortlog):
Sergey Nechaev (1):
      Stricter command line args validation to dhcp_release6.

Simon Kelley (4):
      Fix error in PXE arch names and add ARM32 and ARM64.
      Tweak CSAs affected by UEFI PXE workaround code.
      Tweak UEFI workaround code.
      Merge messages into translation files.

Upstream CHANGELOG diff since rc #1:
      Swap the values if BC_EFI and x86-64_EFI in --pxe-service.
      These were previously wrong due to an error in RFC 4578.
      If you're using BC_EFI to boot 64-bit EFI machines, you
      will need to update your config.

      Add ARM32_EFI and ARM64_EFI as valid architectures in
      --pxe-service.
11 May 2016 21:37:50
Original commit files touched by this commit Revision:415035  2.76.r1,1 This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to release candidate #1.

Changes since test#13:
+           Move the dhcp_release and dhcp_lease_time tools from
+           contrib/wrt to contrib/lease-tools.
+
+           Add dhcp_release6 to contrib/lease-tools. Many thanks
+           to Sergey Nechaev for this code.
+
+           To avoid filling logs in configurations which define
+           many upstream nameservers, don't log more that 30 servers.
+           The number to be logged can be changed as SERVERS_LOGGED
+           in src/config.h.

Changelog since v2.75 at:
http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=blob_plain;f=CHANGELOG;hb=8628cd603fd0c55c7d41b84488446db44f58ff5b
05 May 2016 12:37:15
Original commit files touched by this commit Revision:414641  2.76.0test13 This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to new upstream test release ...test13.

Upstream's CHANGELOG since test12:
* Check return-code of inet_pton() when parsing dhcp-option.  Bad
  addresses could fail to generate errors and result in garbage
  dhcp-options being sent. Thanks to Marc Branchaud for spotting this.

* Fix wrong value for EDNS UDP packet size when using --servers-file to
  define upstream DNS servers. Thanks to Scott Bonar for the bug report.
01 Apr 2016 14:00:57
Original commit files touched by this commit Revision:412346  2.76.0test12 This port version is marked as vulnerable.
mat search for other commits by this committer
Remove ${PORTSDIR}/ from dependencies, categories d, e, f, and g.

With hat:	portmgr
Sponsored by:	Absolight
04 Mar 2016 08:49:12
Original commit files touched by this commit Revision:410092  2.76.0test12 This port version is marked as vulnerable.
mandree search for other commits by this committer
New upstream test release #12.

Git shortlog since test release #10:

Simon Kelley (14):
      Add TTL parameter to --host-record and --cname.
      Add --dhcp-ttl option.
      Update CHANGELOG.
      Add --tftp-mtu option.
      Apply ceiling of lease length to TTL when --dhcp-ttl in use.
      Fix --add-subnet when returning empty or default subnet.
      Replace incoming EDNS0_OPTION_NOMDEVICEID and EDNS0_OPTION_NOMCPEID
options.
      Fix typo in last commit.
      Check return code from open()
      format fix.
      Fix pointer declaration botch.
      Tidy parsing code.
      Fix broken DNSMASQ_USER<x> envvars in script with more than one class.
      Tighten syntax checking for dhcp-range and clarify man page.
19 Feb 2016 08:54:49
Original commit files touched by this commit Revision:409162  2.76.0test10 This port version is marked as vulnerable.
mandree search for other commits by this committer
Upgrade to -test10 release.

Upstream's CHANGELOG since -test8:
  Don't crash with divide-by-zero if an IPv6 dhcp-range is declared as a
  whole /64.  (ie xx::0 to xx::ffff:ffff:ffff:ffff)
  Thanks to Laurent Bendel for spotting this problem.
17 Feb 2016 08:12:11
Original commit files touched by this commit Revision:409031  2.76.0test8 This port version is marked as vulnerable.
mandree search for other commits by this committer
Upgrade to upstream -test8 pre-release.

Changes per diff of the CHANGELOG file:

  Fix wrong answer to simple name query when --domain-needed set, but no
  upstream servers configured. Dnsmasq returned REFUSED, in this case,
  when it should be the same as when upstream servers are configured -
  NOERROR. Thanks to Allain Legacy for spotting the problem.

  Return REFUSED when running out of forwarding table slots, not SERVFAIL.

  Add --max-port configuration. Thanks to Hans Dedecker for the patch.

  Add --script-arp and two new functions for the dhcp-script.  These are
  "arp" and "arp-old" which announce the arrival and removal of entries
  in the ARP or nieghbour tables.

  Extend --add-mac to allow a new encoding of the MAC address as base64,
  by configurting --add-mac=base64

  Add --add-cpe-id option.
23 Jan 2016 21:14:18
Original commit files touched by this commit Revision:407058  2.76.0test5_1 This port version is marked as vulnerable.
johans search for other commits by this committer
Bump versions to chase Nettle shared library update
16 Jan 2016 18:30:04
Original commit files touched by this commit Revision:406261  2.76.0test5 This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to new test5 release.

Changes, taken from Git shortlog:

Andre Glupker (1):
      Fix bad cache-size calculation when hosts-file read fails.

Simon Kelley (7):
      Handle building with script support enabled and DHCP disabled.
      Update copyright notices. Happy new year!
      Fix FTBFS when scripts excluded at compilation time.
      Inhibit DNSSEC validation when forwarding to private servers for a domain.
      DNSSEC: Handle non-root trust anchors, and check we have a root trust
anchor.
      Disable DNSSEC for server=/domain/.. servers unless trust-anchor provided.
      arp.c tidy up.
04 Jan 2016 19:02:24
Original commit files touched by this commit Revision:405263  2.76.0test4 This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to -test4 release.

Changelog:
<http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=blob;f=CHANGELOG;h=93c73d01e19562d27d5c56a3a87c8211422f20a1;hb=d917275e481add809cd5c40650f339ae994ee35f#l1>
29 Dec 2015 11:15:00
Original commit files touched by this commit Revision:404736  2.76.0test1 This port version is marked as vulnerable.
mandree search for other commits by this committer
Quench unused-parameter warnings during build.
21 Dec 2015 23:22:35
Original commit files touched by this commit Revision:404197  2.76.0test1 This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to 2.76test1.
30 Jul 2015 18:47:53
Original commit files touched by this commit Revision:393257  2.74.r4 This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to new release candidate #4 and mark IGNORE since 2.74 is out.
18 Jul 2015 12:58:18
Original commit files touched by this commit Revision:392420  2.74.r3 This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to new release candidate #3

      DNSSEC fix, signed wildcard CNAME to unsigned domain.
      Update Polish translation.
15 Jul 2015 00:57:19
Original commit files touched by this commit Revision:392113  2.74.r1 This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to new upstream release candidate 2.74rc1.

To fix three regressions in 2.73:

1) The meaning of --conf-file without an argument changed from "don't
read any conf-file" to "read the default conf-file"

2) A resolv-file which was dangling symlink at startup causes
problems, up to and including a segmentation fault.

3) Under some circumstances, dnsmasq can use more file descriptors,
and this shows up that the code doesn't handle the limit (normally
1024) in the number of descriptors handled by the select() system call.
16 Jun 2015 00:48:02
Original commit files touched by this commit Revision:389788  2.73.r10 This port version is marked as vulnerable.
mandree search for other commits by this committer
Upgrade dnsmasq to new release 2.73.

Changelog: http://www.thekelleys.org.uk/dnsmasq/CHANGELOGDisable dnsmasq-devel
(older than stable).
Switch to using @sample keyword [1].

PR:           200717 [1]
Submitted by: Jimmy Olgeni
12 Jun 2015 06:17:43
Original commit files touched by this commit Revision:389262  2.73.r10 This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to new upstream release candidate #10.

Git shortlog since rc #9:

Neil Jerram (6):
      Fix logging of unknown interface in --bridge-interface, DHPCv4.
      Extend --bridge-interface aliasing to DHCPv6.
      Allow router advertisements to have the "off-link" bit set.
      Upply --bridge-interface aliasing to solicited router advertisements.
      Apply --bridge-interfaces to unsolicited router advertisements.
      Documenation updates for --bridge-interface and "off-link".

Nicolas Cavallari (1):
      Add Dbus methods to create and delete DHCP leases.

Simon Kelley (2):
      Add a couple of missed logging strings to the catalogue.
      Merge messages and fix makefile process to do this.
10 Jun 2015 17:36:17
Original commit files touched by this commit Revision:389107  2.73.r9 This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to new release candidate -rc9.

Relevant Git shortlog excerpt since -rc8:

Christian Demsar (1):
      Man page typo.

John Hanks (1):
      Add infiniband to example config file.

Simon Kelley (8):
      Remove support for DNS Extended Label Types.
      Select correct DHCP context when in PXE bootserver mode.
      DHCPv6: DHCPCONFIRM should be OK for any address on link, not just dynamic
addresses.
      Handle corner cases in NSEC coverage checks.

swigger (1):
      Correctly sanitise DNS header bits in answer when recreating query for
retry.
23 May 2015 08:45:03
Original commit files touched by this commit Revision:387119  2.73.r8 This port version is marked as vulnerable.
mandree search for other commits by this committer
Upgrade to new release candidate #8, fixing buffer overflow since rc6. [1]
Add CPE information [2].

Extract from shortlog, omitting irrelevant entries:

Nicolas Cavallari (1):
      Constify some DHCP lease management functions.

Simon Kelley (10):
      Don't remove RRSIG RR from answers to ANY queries when the do bit is not
set.
      Handle UDP packet loss when fragmentation of large packets is broken.
      Check IPv4-mapped IPv6 addresses with --stop-rebind.
      Tweak EDNS timeout code.
      Pointer to mail-archive mailing list mirror in doc.html.
      Allow T1 and T2 DHCPv4 options to be set.
      Use correct DHCP context for PXE-proxy server-id.
      Fix buffer overflow introduced in 2.73rc6.

PR:		199955 [2]
Submitted by:	shun, amdmi3 [2]
Reviewed by:	amdmi3 [2]
Security:	7927165a-0126-11e5-9d98-080027ef73ec
03 May 2015 02:47:10
Original commit files touched by this commit Revision:385230  2.73.r7 This port version is marked as vulnerable.
mandree search for other commits by this committer
Upgrade to release candidate #7.

Git shortlog:
Johnny S. Lee (1):
      Make get-version work when repo is a git submodule.

Simon Kelley (2):
      Logs in DHCPv6 not suppressed by dhcp6-quiet.
      Fix argument-order botch which broke DNSSEC for TCP queries.
22 Apr 2015 22:25:45
Original commit files touched by this commit Revision:384526  2.73.r6 This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to new release candidate #6.

Git shortlog since release candidate #4:

Moshe Levi (1):
      Check IP address command line arg in dhcp_release.c

Simon Kelley (7):
      Fix crash in auth code with odd configuration.
      Auth: correct replies to NS and SOA in .arpa zones.
      Note CVE-2015-3294
      Log domain when reporting DNSSEC validation failure.
      Revert 61b838dd574c51d96fef100285a0d225824534f9 and just quieten log inste
      Handle domain names with '.' or /000 within labels.
      Tweaks to previous, DNS label charset commit.

Stefan Tomanek (1):
      Fix (srk induced) crash in new tftp_no_fail code.
12 Apr 2015 11:15:49
Original commit files touched by this commit Revision:383861  2.73.r4 This port version is marked as vulnerable.
mandree search for other commits by this committer
Upgrade to new release candidate #4.

Resolves checksum trouble.
Git shortlog between rc#3 and rc#4:

Simon Kelley (4):
      Return INSECURE, rather than BOGUS when DS proved not to exist.
      Fix compiler warning when not including DNSSEC.
      Fix crash caused by looking up servers.bind when many servers defined.
      Fix crash on receipt of certain malformed DNS requests.

Stefan Tomanek (2):
      add --tftp-no-fail to ignore missing tftp root
05 Apr 2015 20:50:43
Original commit files touched by this commit Revision:383357  2.73.r3  Sanity Test Failure This port version is marked as vulnerable.
bapt search for other commits by this committer
Mark as broken unfetchable ports
31 Mar 2015 21:05:23
Original commit files touched by this commit Revision:382866  2.73.r3 This port version is marked as vulnerable.
mandree search for other commits by this committer
Upgrade to new release candidate #3 (skipping rc2).

Changes since rc1 (git shortlog):

 +    Don't fail DNSSEC when a signed CNAME dangles into an unsigned zone.
 +    Return SERVFAIL when validation abandoned.
 +    Protect against broken DNSSEC upstreams.
 +    DNSSEC fix for non-ascii characters in labels.
 +    Allow control characters in names in the cache, handle when logging.
30 Mar 2015 17:39:51
Original commit files touched by this commit Revision:382696  2.73.r1 This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to upstream 2.73rc1 (pending rc2 upload)

Changes from previous 2.73test6 (taken from CHANGELOG's Git repo):

           Don't reply to DHCPv6 SOLICIT messages if we're not
           configured to do stateful DHCPv6. Thanks to Win King Wan
           for the patch.

           Fix broken DNSSEC validation of ECDSA signatures.

           Add --dnssec-timestamp option, which provides an automatic
           way to detect when the system time becomes valid after boot
           on systems without an RTC, whilst allowing DNS queries before the
           clock is valid so that NTP can run. Thanks to
           Kevin Darbyshire-Bryant for developing this idea.
22 Jan 2015 22:48:56
Original commit files touched by this commit Revision:377701  2.73.0t6 This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to new 2.73test6 pre-release

Changes since test3, from CHANGELOG file:

           Add --log-queries=extra option, which makes logs easier
           to search automatically.

           Add --min-cache-ttl option. I've resisted this for a long
           time, on the grounds that disbelieving TTLs is never a
           good idea, but I've been persuaded that there are
           sometimes reasons to do it. (Step forward, GFW).
           To avoid misuse, there's a hard limit on the TTL
           floor of one hour. Thansk to RinSatsuki for the patch.

           Cope with multiple interfaces with the same link-local
           address. (IPv6 addresses are scoped, so this is allowed.)
           Thanks to Cory Benfield for help with this.

           Add --dhcp-hostsdir. This allows addition of new host
           configurations to a running dnsmasq instance much more
           cheaply than having dnsmasq re-read all its existing
           configuration each time.
09 Jan 2015 16:41:33
Original commit files touched by this commit Revision:376623  2.73.0t3 This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to new test release.

Changes: the two items at the end of v2.73 here:
<http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=blob;f=CHANGELOG;h=e8bf80f81baac3366dfecbdb6e80c4102fb21574;hb=424c4a8a53c8aa5d6ac899c95803b97410abec8f#l26>
23 Dec 2014 23:04:35
Original commit files touched by this commit Revision:375366  2.73.0t2 This port version is marked as vulnerable.
mandree search for other commits by this committer
Package 2.73test2, with one additional patch to make it build
(also reported upstream).

CHANGELOG at:
<http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=blob_plain;f=CHANGELOG;hb=fbc5205702c7f6f431d9f1043c553d7fb62ddfdb>
25 Sep 2014 18:27:56
Original commit files touched by this commit Revision:369281  2.72.r2 This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to new upstream version 2.72, disabling dnsmasq-devel again.

Remove @dir* stuff from pkg-plist.  @sample isn't documented properly
and isn't up to handling files with non-.sample suffix, so stay
away from that part of pkg-plist.

ChangeLog:	http://www.thekelleys.org.uk/dnsmasq/CHANGELOG
20 Sep 2014 22:24:59
Original commit files touched by this commit Revision:368699  2.72.r2 This port version is marked as vulnerable.
mandree search for other commits by this committer
Upgrade to 2.72rc2.

+ Fix bug when resulted in NXDOMAIN answers instead of NODATA in some
  circumstances.
+ Fix bug which caused dnsmasq to become unresponsive if it failed to
  send packets due to a network interface disappearing.
+ Fix problem with --local-service option on big-endian platforms.
10 Sep 2014 21:12:09
Original commit files touched by this commit Revision:367894  2.72.r1_1 This port version is marked as vulnerable.
mandree search for other commits by this committer
Forward port dnsmasq changes from previous versions, to update the port and fix
10/11 build issues.
10 Sep 2014 15:47:57
Original commit files touched by this commit Revision:367867  2.72.r1 This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to 2.72rc1.

Announcement with ChangeLog:
http://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2014q3/008793.html

Submitted by:	portscout
30 Aug 2014 18:18:14
Original commit files touched by this commit Revision:366659  2.69r4_1 This port version is marked as vulnerable.
tijl search for other commits by this committer
dns/libidn:
- Add USES=libtool and bump dependent ports
- Add INSTALL_TARGET=install-strip
- Always install libidn-components.png because it is used by libidn.info
- Add -lintl to Libs.private instead of Libs in libidn.pc
15 Jul 2014 15:09:59
Original commit files touched by this commit Revision:361941  2.69r4 This port version is marked as vulnerable.
adamw search for other commits by this committer
Add DOCS to OPTIONS_DEFINE to ports that check for PORT_OPTIONS:MDOCS.
21 Apr 2014 21:56:55
Original commit files touched by this commit Revision:351724  2.69r4 This port version is marked as vulnerable.
bapt search for other commits by this committer
Switch to use lua 5.2
10 Apr 2014 20:45:05
Original commit files touched by this commit Revision:350850  2.69r4 This port version is marked as vulnerable.
mandree search for other commits by this committer
Ignore this port while the release is newer than the candidates.
31 Mar 2014 20:19:29
Original commit files touched by this commit Revision:349799  2.69r4 This port version is marked as vulnerable.
mandree search for other commits by this committer
Upgrade to new upstream release candidate #rc4.

Fixes ipset logging patch.

Known issue: The executable identifies as #rc3.
30 Mar 2014 00:42:43
Original commit files touched by this commit Revision:349600  2.69r2 This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to new upstream release candidate #2.

Git shortlog between 2.69 rc1 and rc2:

Simon Kelley (7):
      Add dnssec-check-unsigned to example config file.
      Reorder sanity checks on UDP packet reception, to cope with failed recvfro
      SERVFAIL is an expected error return, don't try all servers.
      Terminate DS-search when reaching the root via cache entries.
      Cache stats availble in CHAOS .bind domain.
      Ensure ->sentto is valid for DNSSEC forwards. Otherwise retries SEGV.
      Add --dnssec-no-timecheck

Tomas Hozza (2):
      Memory leak in error path.
      Handle failure of hash_questions()

Wang Jian (1):
      Log IPSET actions.
22 Mar 2014 22:06:07
Original commit files touched by this commit Revision:348810  2.69r1 This port version is marked as vulnerable.
mandree search for other commits by this committer
Upgrade to release candidate #1.
10 Mar 2014 17:01:14
Original commit files touched by this commit Revision:347783  2.69.0test11 This port version is marked as vulnerable.
mandree search for other commits by this committer
Upgrade to new upstream test release #11.

Git shortlog since test release #9:

      Speeling.
      Strip DNSSEC RRs when query doesn't have DO bit set.
      Return INSECURE when validation fails with proved non-existent DS.
      Negative caching for DS records.
      Check that unsigned replies come from unsigned zones if --dnssec-check-uns
      Tidy.
      Fix off-by-one overwrite.
      Don't free blockdata for negative DS cache entries.
      Handle replies with no answers and no NS in validate_reply.
      Tweak tuning params.
      Don't cache secure replies which we've messsed with.
      Mass edit of INSECURE->BOGUS returns for server failure/bad input.
      Can have local DS records (trust anchors).
27 Feb 2014 22:55:28
Original commit files touched by this commit Revision:346402  2.69.0test9 This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to new test9 release.

Relevant excerpt from git shortlog between test8 and test9:

      Add RFC-6605 ECDSA DNSSEC verification.
      Don't mess with the TTL of DNSSEC RRs.
      No CD in forwarded queries unless dnssec-debug for TCP too.
      Log BOGUS validation result when upstream sends SERVFAIL.
      --rev-server option. Syntactic sugar for PTR queries.
      Omit ECC from DNSSEC if nettle library is old.
      Add --servers-file option.
      NSEC3 validation. First pass.
      Check signer name in RRSIGs.
      An NSEC record cannot attest to its own non-existance!
12 Feb 2014 21:12:37
Original commit files touched by this commit Revision:344016  2.69.0test8 This port version is marked as vulnerable.
mandree search for other commits by this committer
Upgrade to test8 release, bringing these upstream fixes:

ee41586 Use DS records as trust anchors, not DNSKEYs.
83349b8 Further tidying of AD and DO bit handling.
7fa836e Handle validation when more one key is needed.
1633e30 Fix Byte-order botch: broke DNSSEC on big-endian platforms.
c8ca33f Fix DNSSEC caching problems: incomplete RRSIG RRsets.
e243c07 AD bit in queries handled as RFC6840 p5.7
07 Feb 2014 08:48:01
Original commit files touched by this commit Revision:343200  2.69.0test7 This port version is marked as vulnerable.
mandree search for other commits by this committer
Move all the way to the test7 release that has other bugfixes.
Note the +AD flag may now be missing on the first response for a given domain,
re-querying within the cache TTL would deliver it.  Bug has been reported.
07 Feb 2014 08:35:24
Original commit files touched by this commit Revision:343196  2.69.0test6_2 This port version is marked as vulnerable.
mandree search for other commits by this committer
really add the promised AD flag patch.

Pointy hat to: yours truly
07 Feb 2014 08:30:34
Original commit files touched by this commit Revision:343194  2.69.0test6_1 This port version is marked as vulnerable.
mandree search for other commits by this committer
Add Simon's patch from Git for AD flag treatment (dig ... +ad).
05 Feb 2014 01:49:52
Original commit files touched by this commit Revision:342621  2.69.0test6 This port version is marked as vulnerable.
mandree search for other commits by this committer
Upgrade to test6, which adds DNSSEC validation and caching support.

Note that this requires configuration (see dnsmasq.conf.example for
hints) and has a few rough edges with regard to caching.
01 Jan 2014 23:06:40
Original commit files touched by this commit Revision:338400  2.69.0test3 This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to new upstream 2.69test3 release, with these noteworthy changes:

- Implement dynamic interface discovery on *BSD
- Fix endless loop with some bogu-nxdomain. Another F_CONFIG botch.
- Ignore ",," in dhcp-host, rather than treating it as ",0,"

Invent an additional .0 so we can later have 2.69rc... releases without
touching PORTEPOCH.

Number of commits found: 121 (showing only 100 on this page)

1 | 2  »