notbugAs an Amazon Associate I earn from qualifying purchases.
Want a good read? Try FreeBSD Mastery: Jails (IT Mastery Book 15)
Want a good monitor light? See my photosAll times are UTC
Ukraine
Port details
dnsmasq Lightweight DNS forwarder, DHCP, and TFTP server
2.90_2,1 dns on this many watch lists=32 search for ports that depend on this port An older version of this port was marked as vulnerable. Find issues related to this port Report an issue related to this port View this port on Repology. pkg-fallout 2.90_2,1Version of this port present on the latest quarterly branch.
Maintainer: mandree@FreeBSD.org search for ports maintained by this maintainer
Port Added: 2003-09-05 04:55:22
Last Update: 2024-07-20 09:03:06
Commit Hash: 93449df
People watching this port, also watch:: sudo, rsync, wget, curl, libiconv
License: GPLv2
WWW:
https://www.thekelleys.org.uk/dnsmasq/doc.html
Description:
Dnsmasq is a lightweight, easy to configure DNS forwarder and DHCP server. It is designed to provide DNS and, optionally, DHCP, to a small network. It can serve the names of local machines which are not in the global DNS. The DHCP server integrates with the DNS server and allows machines with DHCP-allocated addresses to appear in the DNS with names configured either in each host or in a central configuration file. Dnsmasq supports static and dynamic DHCP leases and BOOTP/TFTP/PXE for network booting of diskless machines. Dnsmasq is targeted at home networks using NAT and connected to the internet via a modem, cable-modem or ADSL connection but would be a good choice for any smallish network (up to 1000 clients is known to work) where low resource use and ease of configuration are important. -- Simon Kelley
Homepage    cgit ¦ Codeberg ¦ GitHub ¦ GitLab ¦ SVNWeb

Manual pages:
FreshPorts has no man page information for this port.
pkg-plist: as obtained via: make generate-plist
Expand this list (24 items)
Collapse this list.
  1. /usr/local/share/licenses/dnsmasq-2.90_2,1/catalog.mk
  2. /usr/local/share/licenses/dnsmasq-2.90_2,1/LICENSE
  3. /usr/local/share/licenses/dnsmasq-2.90_2,1/GPLv2
  4. sbin/dnsmasq
  5. @sample etc/dnsmasq.conf.sample
  6. share/dnsmasq/trust-anchors.conf
  7. share/examples/dnsmasq/dnslist/dhcp.css
  8. share/examples/dnsmasq/dnslist/dnslist.pl
  9. share/examples/dnsmasq/dnslist/dnslist.tt2
  10. share/examples/dnsmasq/dynamic-dnsmasq/dynamic-dnsmasq.pl
  11. share/locale/de/LC_MESSAGES/dnsmasq.mo
  12. share/locale/es/LC_MESSAGES/dnsmasq.mo
  13. share/locale/fi/LC_MESSAGES/dnsmasq.mo
  14. share/locale/fr/LC_MESSAGES/dnsmasq.mo
  15. share/locale/id/LC_MESSAGES/dnsmasq.mo
  16. share/locale/it/LC_MESSAGES/dnsmasq.mo
  17. share/locale/no/LC_MESSAGES/dnsmasq.mo
  18. share/locale/pl/LC_MESSAGES/dnsmasq.mo
  19. share/locale/pt_BR/LC_MESSAGES/dnsmasq.mo
  20. share/locale/ro/LC_MESSAGES/dnsmasq.mo
  21. share/man/man8/dnsmasq.8.gz
  22. @owner
  23. @group
  24. @mode
Collapse this list.
Dependency lines:
  • dnsmasq>0:dns/dnsmasq
Conflicts:
CONFLICTS_INSTALL:
  • dnsmasq-devel
To install the port:
cd /usr/ports/dns/dnsmasq/ && make install clean
To add the package, run one of these commands:
  • pkg install dns/dnsmasq
  • pkg install dnsmasq
NOTE: If this package has multiple flavors (see below), then use one of them instead of the name specified above.
PKGNAME: dnsmasq
Flavors: there is no flavor information for this port.
distinfo:
TIMESTAMP = 1707863813 SHA256 (dnsmasq-2.90.tar.xz) = 8e50309bd837bfec9649a812e066c09b6988b73d749b7d293c06c57d46a109e4 SIZE (dnsmasq-2.90.tar.xz) = 570672

Packages (timestamps in pop-ups are UTC):
dnsmasq
ABIaarch64amd64armv6armv7i386powerpcpowerpc64powerpc64le
FreeBSD:13:latest2.90_2,12.90_2,12.83,12.90_2,12.90_2,1-2.82,1-
FreeBSD:13:quarterly2.90_1,12.90_1,12.89_1,12.90_1,12.90_1,12.89_1,12.89_1,12.90,1
FreeBSD:14:latest2.90_2,12.90_2,12.88,12.90_2,12.90_2,12.89_1,1-2.89_1,1
FreeBSD:14:quarterly2.90_1,12.90_1,1-2.90_1,12.90_1,12.89_1,12.89_1,12.90,1
FreeBSD:15:latest2.90_2,12.90_2,1n/a2.90_2,1n/a2.89_1,12.89_1,12.90,1
Dependencies
NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.
Build dependencies:
  1. gettext-runtime>=0.22_1 : devel/gettext-runtime
  2. msgfmt : devel/gettext-tools
  3. gmake>=4.4.1 : devel/gmake
  4. pkgconf>=1.3.0_1 : devel/pkgconf
Library dependencies:
  1. libidn2.so : dns/libidn2
  2. libgmp.so : math/gmp
  3. libnettle.so : security/nettle
  4. libintl.so : devel/gettext-runtime
This port is required by:
for Build
  1. devel/libvirt
for Run
  1. devel/libvirt

Configuration Options:
===> The following configuration options are available for dnsmasq-2.90_2,1: DBUS=off: D-Bus IPC system support DNSSEC=on: Enable DNSSEC caching and validation (needs nettle) DOCS=on: Build and/or install documentation IPSET=on: Dynamic firewall management of resolved names (needs PF) IPV6=on: IPv6 protocol support LUA=off: Support lease-change scripts written in Lua ====> Internationalization Support Level: you can only select none or one of them IDN=off: IDN: Int'l Domain Names WITHOUT full NLS NLS=on: IDN+NLS: Int'l Domain Names & National Language support ===> Use 'make config' to modify these settings
Options name:
dns_dnsmasq
USES:
cpe shebangfix tar:xz gettext gmake iconv pkgconfig pkgconfig
pkg-message:
To enable dnsmasq, edit /usr/local/etc/dnsmasq.conf and set dnsmasq_enable="YES" in /etc/rc.conf[.local] Further options and actions are documented inside /usr/local/etc/rc.d/dnsmasq SECURITY RECOMMENDATION ~~~~~~~~~~~~~~~~~~~~~~~ It is recommended to enable the wpad-related options at the end of the configuration file (you may need to copy them from the example file to yours) to fix CERT Vulnerability VU#598349.
Master Sites:
Expand this list (5 items)
Collapse this list.
  1. http://distcache.FreeBSD.org/local-distfiles/mandree/
  2. http://distcache.eu.FreeBSD.org/local-distfiles/mandree/
  3. http://distcache.us-east.FreeBSD.org/local-distfiles/mandree/
  4. http://distcache.us-west.FreeBSD.org/local-distfiles/mandree/
  5. https://www.thekelleys.org.uk/dnsmasq/
Collapse this list.

Number of commits found: 174 (showing only 100 on this page)

1 | 2  »  

Commit History - (may be incomplete: for full details, see links to repositories near top of page)
CommitCreditsLog message
2.90_2,1
20 Jul 2024 09:03:06
commit hash: 93449dfa01a515bf3b2c7d6e6c08d7e56e0aabf6commit hash: 93449dfa01a515bf3b2c7d6e6c08d7e56e0aabf6commit hash: 93449dfa01a515bf3b2c7d6e6c08d7e56e0aabf6commit hash: 93449dfa01a515bf3b2c7d6e6c08d7e56e0aabf6 files touched by this commit
Matthias Andree (mandree) search for other commits by this committer
Author: Dmitry Selivanov
dns/dnsmasq*: add a checkconfig option to rcfile

and automatically invoke it before restart or stop.
Under the hood, this runs dnsmasq --test.

Bump PORTREVISION of dnsmasq only, the -devel port is not
built regularly.

[commit message by Matthias Andree <mandree@FreeBSD.org>]
2.90_1,1
05 Mar 2024 23:35:42
commit hash: 649f03afc9b91d3834ae7d6f4b875198ac94d787commit hash: 649f03afc9b91d3834ae7d6f4b875198ac94d787commit hash: 649f03afc9b91d3834ae7d6f4b875198ac94d787commit hash: 649f03afc9b91d3834ae7d6f4b875198ac94d787 files touched by this commit
Vladimir Druzenko (vvd) search for other commits by this committer
dns/dnsmasq: fix pkg-plist order

Approved by:	portmgr (blanket)
2.90_1,1
05 Mar 2024 23:35:41
commit hash: c950b689ccfa3bb97954e798e692ffcd274cbbd3commit hash: c950b689ccfa3bb97954e798e692ffcd274cbbd3commit hash: c950b689ccfa3bb97954e798e692ffcd274cbbd3commit hash: c950b689ccfa3bb97954e798e692ffcd274cbbd3 files touched by this commit
Vladimir Druzenko (vvd) search for other commits by this committer
dns/dnsmasq: Move man pages to share/man

Approved by:	portmgr (blanket)
2.90,1
13 Feb 2024 23:15:53
commit hash: af6c1440146a94063573c048e0eacdccd1108062commit hash: af6c1440146a94063573c048e0eacdccd1108062commit hash: af6c1440146a94063573c048e0eacdccd1108062commit hash: af6c1440146a94063573c048e0eacdccd1108062 files touched by this commit
Matthias Andree (mandree) search for other commits by this committer
dns/dnsmasq: security update to 2.90 (fixes dnssec validation DoS)

ChangeLog:	https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=blob_plain;f=CHANGELOG;hb=v2.90
Security:       21a854cc-cac1-11ee-b7a7-353f1e043d9a
Security:       CVE-2023-50387
Security:       CVE-2023-50868
MFH:		2024Q1
2.89_1,1
18 Mar 2023 09:17:49
commit hash: 7a10b554651ee1e9d051856b99c76c9311313947commit hash: 7a10b554651ee1e9d051856b99c76c9311313947commit hash: 7a10b554651ee1e9d051856b99c76c9311313947commit hash: 7a10b554651ee1e9d051856b99c76c9311313947 files touched by this commit
Matthias Andree (mandree) search for other commits by this committer
dns/dnsmasq: cherry-pick several upstream fixes

all from dnsmasq's Git repository hosted by Simon Kelley:

+ Fix DHCPv6 "use multicast" response
+ Avoid undefined behaviour with the ctype(3) functions.
+ Document suppressing default options in --dhcp-option.
+ Fix --rev-server option.
+ Set the default maximum DNS UDP packet size to 1232.
+ Generalise cached NXDOMAIN replies.
+ Fix possible SEGV when no servers defined.

and bump PORTREVISION. This is so we can let it mature
for two weeks before 2023Q2 and because the upstream
release schedule is unforeseeable.

Obtained from: Simon Kelley <simon@thekelleys.org.uk>
Obtained from: Dominik Derigs <dl6er@dl6er.de>
Obtained from: Taylor R Campbell <campbell+dnsmasq@mumble.net>
2.89,1
06 Feb 2023 22:00:20
commit hash: 156fb7b95d82fbedecb72e54e58257275d4f713ccommit hash: 156fb7b95d82fbedecb72e54e58257275d4f713ccommit hash: 156fb7b95d82fbedecb72e54e58257275d4f713ccommit hash: 156fb7b95d82fbedecb72e54e58257275d4f713c files touched by this commit
Matthias Andree (mandree) search for other commits by this committer
dns/dnsmasq*: update to v2.89, and disable -devel port

Changelog:
https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=blob_plain;f=CHANGELOG;hb=v2.89

MFH:		2023Q1
2.88_1,1
14 Jan 2023 09:19:23
commit hash: 038ffa5e63e3b419b68989e5c822b8cb108af7dacommit hash: 038ffa5e63e3b419b68989e5c822b8cb108af7dacommit hash: 038ffa5e63e3b419b68989e5c822b8cb108af7dacommit hash: 038ffa5e63e3b419b68989e5c822b8cb108af7da files touched by this commit
Matthias Andree (mandree) search for other commits by this committer
dns/dnsmasq: fix rare cache corruption problem

Simon Kelley sent an advisory that in rare circumstances, the cache can
become corrupted and the DNS subsystem then became disfunctional.
This is reported as regression in 2.88.
Chances seem higher this happens with DNSSEC enabled, but seems not limited
to it.  For details, please see the patch contained in this commit, or
https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2023q1/016821.html

The symptom of this happening is apparently a cache internal error.

2.89 with this fix and a few others is slated for release in a week.
Let's fix the patch already and MFH to 2023Q1 so we keep our liberties
to decide whether we need to move quarterly to 2.89 or rather stick
with 2.88_1.

originally
Reported by:	Timo van Roermund (to Simon Kelley in private)
Reported by:	Simon Kelley (upstream maintainer, through mailing list)
Obtained from:	Simon Kelley (upstream maintainer, Git repository)
MFH:		2023Q1
2.88,1
05 Dec 2022 19:48:39
commit hash: e5e31e3f2f02d5128c018fa0d2a035da8648297bcommit hash: e5e31e3f2f02d5128c018fa0d2a035da8648297bcommit hash: e5e31e3f2f02d5128c018fa0d2a035da8648297bcommit hash: e5e31e3f2f02d5128c018fa0d2a035da8648297b files touched by this commit
Matthias Andree (mandree) search for other commits by this committer
dns/dnsmasq*: update to 2.88, and ignore -devel port

ChangeLog:
https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=blob_plain;f=CHANGELOG;hb=v2.88
2.87,1
26 Sep 2022 16:20:57
commit hash: 7bf80ce8165de85b5c550ea7aba984c6093a9496commit hash: 7bf80ce8165de85b5c550ea7aba984c6093a9496commit hash: 7bf80ce8165de85b5c550ea7aba984c6093a9496commit hash: 7bf80ce8165de85b5c550ea7aba984c6093a9496 files touched by this commit
Matthias Andree (mandree) search for other commits by this committer
dns/dnsmasq*: update to v2.87

and set dnsmasq-devel port to IGNORE.

Changelog:
https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=blob_plain;f=CHANGELOG;hb=v2.87
https://www.mail-archive.com/dnsmasq-discuss@lists.thekelleys.org.uk/msg16445.html

MFH:		2022Q3
07 Sep 2022 21:58:51
commit hash: fb16dfecae4a6efac9f3a78e0b759fb7a3c53de4commit hash: fb16dfecae4a6efac9f3a78e0b759fb7a3c53de4commit hash: fb16dfecae4a6efac9f3a78e0b759fb7a3c53de4commit hash: fb16dfecae4a6efac9f3a78e0b759fb7a3c53de4 files touched by this commit
Stefan Eßer (se) search for other commits by this committer
Remove WWW entries moved into port Makefiles

Commit b7f05445c00f has added WWW entries to port Makefiles based on
WWW: lines in pkg-descr files.

This commit removes the WWW: lines of moved-over URLs from these
pkg-descr files.

Approved by:		portmgr (tcberner)
2.86_4,1
07 Sep 2022 21:10:59
commit hash: b7f05445c00f2625aa19b4154ebcbce5ed2daa52commit hash: b7f05445c00f2625aa19b4154ebcbce5ed2daa52commit hash: b7f05445c00f2625aa19b4154ebcbce5ed2daa52commit hash: b7f05445c00f2625aa19b4154ebcbce5ed2daa52 files touched by this commit
Stefan Eßer (se) search for other commits by this committer
Add WWW entries to port Makefiles

It has been common practice to have one or more URLs at the end of the
ports' pkg-descr files, one per line and prefixed with "WWW:". These
URLs should point at a project website or other relevant resources.

Access to these URLs required processing of the pkg-descr files, and
they have often become stale over time. If more than one such URL was
present in a pkg-descr file, only the first one was tarnsfered into
the port INDEX, but for many ports only the last line did contain the
port specific URL to further information.

There have been several proposals to make a project URL available as
a macro in the ports' Makefiles, over time.
(Only the first 15 lines of the commit message are shown above View all of this commit message)
2.86_4,1
20 Jul 2022 14:21:47
commit hash: 66ee090ccad0160bf913ee776daa9c3bfdab1868commit hash: 66ee090ccad0160bf913ee776daa9c3bfdab1868commit hash: 66ee090ccad0160bf913ee776daa9c3bfdab1868commit hash: 66ee090ccad0160bf913ee776daa9c3bfdab1868 files touched by this commit
Tobias C. Berner (tcberner) search for other commits by this committer
dns: remove 'Created by' lines

A big Thank You to the original contributors of these ports:

  *  Aaron Dalton <aaron@FreeBSD.org>
  *  Akinori MUSHA aka knu <knu@idaemons.org>
  *  Alex Samorukov <samm@freebsd.org>
  *  Alexey Dokuchaev <danfe@FreeBSD.org>
  *  Allan Jude <allanjude@freebsd.org>
  *  Amar Takhar <verm@drunkmonk.net>
  *  Anders Nordby <anders@fix.no>
  *  Andrew Greenwood <greenwood.andy@gmail.com>
  *  Anton Berezin <tobez@FreeBSD.org>
  *  Ashish SHUKLA <ashish@FreeBSD.org>
  *  Attila Nagy <bra@fsn.hu>
(Only the first 15 lines of the commit message are shown above View all of this commit message)
2.86_4,1
03 Apr 2022 11:15:58
commit hash: 03b5b25346d359e29c16da94772d41637320bdf2commit hash: 03b5b25346d359e29c16da94772d41637320bdf2commit hash: 03b5b25346d359e29c16da94772d41637320bdf2commit hash: 03b5b25346d359e29c16da94772d41637320bdf2 files touched by this commit
Matthias Andree (mandree) search for other commits by this committer
dns/dnsmasq: fix CVE-2022-0934 DHCPv6 vuln

Security:	3f321a5a-b33b-11ec-80c2-1bb2c6a00592
Security:	CVE-2022-0934
MFH:		2022Q2
2.86_3,1
06 Feb 2022 11:23:10
commit hash: 41b0378ad42663d34174e79f2fc0c5e091efabadcommit hash: 41b0378ad42663d34174e79f2fc0c5e091efabadcommit hash: 41b0378ad42663d34174e79f2fc0c5e091efabadcommit hash: 41b0378ad42663d34174e79f2fc0c5e091efabad files touched by this commit This port version is marked as vulnerable.
Matthias Andree (mandree) search for other commits by this committer
dns/dnsmasq: cherry-pick 2.86-related man update

https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commitdiff;h=10cd342f5c847a5e0226d6f0f9ff4ca16db610a5

Obtained from:	Simon Kelley's upstream git repository
2.86_2,1
11 Dec 2021 09:51:28
commit hash: f727ae28aad85b8545ca5e2ee1752c006d63aa47commit hash: f727ae28aad85b8545ca5e2ee1752c006d63aa47commit hash: f727ae28aad85b8545ca5e2ee1752c006d63aa47commit hash: f727ae28aad85b8545ca5e2ee1752c006d63aa47 files touched by this commit This port version is marked as vulnerable.
Matthias Andree (mandree) search for other commits by this committer
dns/dnsmasq: pull in three more upstream fixes

Cherry-pick these Git commits from the upstream:

--local should behave as --server, not as --address [...]
Fix confusion in DNS retries and --strict-order.
Fix confusion with log-IDs and DNS retries.

loosely prompted by Olivier's
PR:		260331
2.86_1,1
11 Dec 2021 09:51:28
commit hash: 1f05895ca06edbf6ba8bdf7e221c8a1057c0fd71commit hash: 1f05895ca06edbf6ba8bdf7e221c8a1057c0fd71commit hash: 1f05895ca06edbf6ba8bdf7e221c8a1057c0fd71commit hash: 1f05895ca06edbf6ba8bdf7e221c8a1057c0fd71 files touched by this commit This port version is marked as vulnerable.
Matthias Andree (mandree) search for other commits by this committer
Author: Olivier Cochard
dns/dnsmasq: fix error "config error is REFUSED (EDE: not ready)"

Fix --address=/#/...... which was lost in 2.86

ML message:
https://www.mail-archive.com/dnsmasq-discuss@lists.thekelleys.org.uk/msg15508.html

Git commit:
https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commit;h=26bbf5a314d833beaf0f147d24409969f05f3dba

PR:		260331
Obtained from:	Simon Kelley (upstream maintainer)
2.86,1
25 Nov 2021 21:40:11
commit hash: 04b9da414081a733478d3def4e1e3777908536c6commit hash: 04b9da414081a733478d3def4e1e3777908536c6commit hash: 04b9da414081a733478d3def4e1e3777908536c6commit hash: 04b9da414081a733478d3def4e1e3777908536c6 files touched by this commit This port version is marked as vulnerable.
Stefan Eßer (se) search for other commits by this committer
*/*: Remove redundant '-*' from CONFLICTS definitions

The conflict checks compare the patterns first against the package
names without version (as reported by "pkg query "%n"), then - if
there was no match - agsinst the full package names including the
version (as reported by "pkg query "%n-%v").

Approved by: portmgr (blanket)
2.86,1
09 Sep 2021 15:48:31
commit hash: d8ba06237d5018b525a15ae5823f2e1fb9900854commit hash: d8ba06237d5018b525a15ae5823f2e1fb9900854commit hash: d8ba06237d5018b525a15ae5823f2e1fb9900854commit hash: d8ba06237d5018b525a15ae5823f2e1fb9900854 files touched by this commit This port version is marked as vulnerable.
Matthias Andree (mandree) search for other commits by this committer
dns/dnsmasq: update to v2.86, ignore dnsmasq-devel

Changelog:
https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=blob_plain;f=CHANGELOG;hb=v2.86
2.85_1,1
06 Jun 2021 08:09:02
commit hash: 89893207e7cd5b2328e72dd2a2ba2b7250ac037fcommit hash: 89893207e7cd5b2328e72dd2a2ba2b7250ac037fcommit hash: 89893207e7cd5b2328e72dd2a2ba2b7250ac037fcommit hash: 89893207e7cd5b2328e72dd2a2ba2b7250ac037f files touched by this commit This port version is marked as vulnerable.
Tobias Kortkamp (tobik) search for other commits by this committer
*: Clean up some things

- Fix typos
- Remove duplicate variables
- Remove nop variables
- Sort categories
- Add missing USES

Reported by:	portscan
2.85_1,1
15 May 2021 09:24:25
commit hash: 505d608290a2efa7d064c4d4f7ca75b17c675405commit hash: 505d608290a2efa7d064c4d4f7ca75b17c675405commit hash: 505d608290a2efa7d064c4d4f7ca75b17c675405commit hash: 505d608290a2efa7d064c4d4f7ca75b17c675405 files touched by this commit This port version is marked as vulnerable.
Matthias Andree (mandree) search for other commits by this committer
dns/dnsmasq: cherry-pick upstream-fixes

 *  Handle DHCPREBIND requests in the DHCPv6 server.
 *  Fix bug in TCP process handling.
2.85,1
15 Apr 2021 08:31:56
commit hash: ffbc3bd9376a3672e16eafddf55b233b8fed1674commit hash: ffbc3bd9376a3672e16eafddf55b233b8fed1674commit hash: ffbc3bd9376a3672e16eafddf55b233b8fed1674commit hash: ffbc3bd9376a3672e16eafddf55b233b8fed1674 files touched by this commit This port version is marked as vulnerable.
Tobias Kortkamp (tobik) search for other commits by this committer
Clean up some things

- Remove duplicate variables
- Remove nop variables
- Sort categories
- Remove redundant option descriptions that match the default ones

Reported by:	portscan
2.85,1
08 Apr 2021 21:54:51
commit hash: e0a4c5c8be306418d09950162d513a6cedab613acommit hash: e0a4c5c8be306418d09950162d513a6cedab613acommit hash: e0a4c5c8be306418d09950162d513a6cedab613acommit hash: e0a4c5c8be306418d09950162d513a6cedab613a files touched by this commit This port version is marked as vulnerable.
Matthias Andree (mandree) search for other commits by this committer
dns/dnsmasq: security update to v2.85 release

Changelog:
https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=blob_plain;f=CHANGELOG;hb=v2.85

Configurations where server lines contain a @ character,
f.i. server=1.1.1.1@em0 or server=1.1.1.1@192.0.2.1, disabled
source port randomization, making cache poisoning attacks possible.
v2.85 mitigates this.

MFH:		2021Q2
Security:	CVE-2021-3448
Security:	5b72b1ff-877c-11eb-bd4f-2f1d57dafe46 (VuXML)
2.84,1
06 Apr 2021 14:31:13
commit hash: 135fdeebb99c3569e42d8162b265e15d29bd937dcommit hash: 135fdeebb99c3569e42d8162b265e15d29bd937dcommit hash: 135fdeebb99c3569e42d8162b265e15d29bd937dcommit hash: 135fdeebb99c3569e42d8162b265e15d29bd937d files touched by this commit This port version is marked as vulnerable.
Mathieu Arnold (mat) search for other commits by this committer
all: Remove all other $FreeBSD keywords.
2.84,1
06 Apr 2021 14:31:07
commit hash: 305f148f482daf30dcf728039d03d019f88344ebcommit hash: 305f148f482daf30dcf728039d03d019f88344ebcommit hash: 305f148f482daf30dcf728039d03d019f88344ebcommit hash: 305f148f482daf30dcf728039d03d019f88344eb files touched by this commit This port version is marked as vulnerable.
Mathieu Arnold (mat) search for other commits by this committer
Remove # $FreeBSD$ from Makefiles.
2.84,1
18 Mar 2021 00:12:31
Revision:568702Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
dnsmasq-devel: add test release 2.85rc1

This is to fix a port randomization flaw that subjects dnsmasq to a cache
poisoning attack.

ChangeLog:
https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=blob;f=CHANGELOG;h=155fc966f9542259596b41594f4b85775d1f9c9a;hb=023ace8e54c2e83e88082a1073a281d659f2a860#l1

Add CONFLICTS_INSTALL markers.

Security: CVE-2021-3448
Security: 5b72b1ff-877c-11eb-bd4f-2f1d57dafe46
2.84,1
26 Jan 2021 19:19:44
Revision:562980Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
dns/dnsmasq: upgrade to v2.84 (regression fixes)

Upstream blessed v2.84 rc2 (which 2.83_1 effectively already was)
into v2.84 release, so take it (and patch the upstream bug of
leaving "rc2" in the version out).

MFH:		2021Q1 (regression fixes for security fix release)
2.83_1,1
24 Jan 2021 11:01:20
Revision:562461Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
dns/dnsmasq: regression fixes from upstream Git

Apparently there are situations where dnsmasq 2.83 can confuse
its peers or sockets, and the upstream Git contains fixes for them.

These four fixes essentially take dnsmasq to 2.84test3.

Obtained from:	Simon Kelley <simon@thekelleys.org.uk>'s Git repository
2.83,1
20 Jan 2021 19:20:39
Revision:562154Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
dns/dnsmasq: security update to 2.83

CHANGELOG of version 2.83:

        Use the values of --min-port and --max-port in outgoing
        TCP connections to upstream DNS servers.

        Fix a remote buffer overflow problem in the DNSSEC code. Any
        dnsmasq with DNSSEC compiled in and enabled is vulnerable to this,
        referenced by CVE-2020-25681, CVE-2020-25682, CVE-2020-25683
        CVE-2020-25687.

        Be sure to only accept UDP DNS query replies at the address
        from which the query was originated. This keeps as much entropy
        in the {query-ID, random-port} tuple as possible, to help defeat
(Only the first 15 lines of the commit message are shown above View all of this commit message)
2.82,1
19 Jul 2020 23:07:11
Revision:542600Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
dns/dnsmasq: update to 2.82 (regression and bug fixes)

Quoting Simon Kelley "This fixes a nasty problem
introduced in 2.81 which causes random crashes on systems where there's
significant DNS activity over TCP. It also fixes DNSSEC validation
problems with zero-TTL DNSKEY and DS records."

Changelog:
<http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=blob;f=CHANGELOG;h=e6a223119ffcd9ead6cb15153cd49bd3c61e114f;hb=f60fea1fb0a288011f57a25dfb653b8f6f8b46b9#l1>

MFH:		2020Q3 (regression and bug fixes)
2.81_2,1
16 May 2020 10:51:33
Revision:535391Original commit files touched by this commit This port version is marked as vulnerable.
sunpoet search for other commits by this committer
Bump PORTREVISION for security/nettle shlib change
2.81_1,1
12 Apr 2020 02:16:10
Revision:531475Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
dns/dnsmasq: repair damage from UNAUTHORIZED UCL conversion of pkg-message

The pkg-message contains a security note that is necessary on
new installs and on updates alike.

Since per the porter's handbook, the UCL does not support enumeration
of types, and this is not relevant on removal, the UCL change must be
reverted.  While here, remove formatting.

Failure inducing commit:
|------------------------------------------------------------------------
|r508835 | mat | 2019-08-13 18:01:59 +0200 (Tue, 13 Aug 2019) | 2 lines
|
|Convert to UCL & cleanup pkg-message (categories d)
|
|------------------------------------------------------------------------

NOTE: The UCL conversion of files/pkg-message.in was not authorized
and damaging and no heads-up was sent to the maintainer.

portmgr@ MUST act more carefully with sweeping changes and hand them out
for review first.
2.81,1
12 Apr 2020 01:59:59
Revision:531473Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
dns/dnsmasq: update to 2.81, unlink dnsmasq-devel

Update dns/dnsmasq to the new upstream version 2.81.
The Makefile has been rearranged with portfmt, except the
LDFLAGS+=..._intllibs... line that portfmt does not recognize.

Changelog:
<http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=blob;f=CHANGELOG;h=60b08d015b2d5a979f39b8ad43633b419135cb64;hb=7ddb99d251c3f5870c8c308a98bb8f283c831872#l1>
(or see CHANGELOG in the package)

Unlink dnsmasq-devel from the build, but keep the sources,
and mark it IGNORE and list dnsmasq-devel in MOVED.
2.80_4,1
23 Feb 2020 13:50:25
Revision:526921Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
dns/dnsmasq: Remove obsolete REINPLACE_CMD line.

Reported by:	swills@ (IRC)
2.80_4,1
13 Oct 2019 15:25:56
Revision:514404Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
dns/dnsmasq: Fix TFTP regression on recent FreeBSD versions.

Add a patch taken from upstream. Tested successfully on 11.3-RELEASE amd64.

The upstream fix is an extended version of a fix proposed by
Dave Mueller in the PR.

See also:
http://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2019q4/013412.html

PR:		241068
Reported by:	Phil Chadwick
Obtained from:	Simon Kelley,
http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commit;h=936bd82755e8f75fc09c1e9a67fb390175b157d4
MFH:		2019Q4
2.80_3,1
09 Oct 2019 10:34:57
Revision:514130Original commit files touched by this commit This port version is marked as vulnerable.
bapt search for other commits by this committer
Drop the ipv6 virtual category for d* category as it is not relevant anymore
2.80_3,1
13 Aug 2019 16:01:59
Revision:508835Original commit files touched by this commit Sanity Test Failure This port version is marked as vulnerable.
mat search for other commits by this committer
Convert to UCL & cleanup pkg-message (categories d)
2.80_3,1
09 Jul 2019 17:13:07
Revision:506289Original commit files touched by this commit This port version is marked as vulnerable.
sunpoet search for other commits by this committer
Update security/nettle to 3.5.1

- Bump PORTREVISION of dependent ports for shlib change
- Fix build of devel/pijul [1]

Changes:	https://git.lysator.liu.se/nettle/nettle/blob/master/NEWS
PR:		238991
Exp-run by:	antoine
Thanks to:	tobik [1]
2.80_2,1
08 Jul 2019 01:40:36
Revision:506199Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Make compatible with nettle >= 3.5 (not yet in ports)

Pull in patch from
https://github.com/themiron/dnsmasq/commit/6fd9aba7abe1e084123bc5002959350897774ace

Obtained from:	Vladislav Grishenko
2.80_2,1
09 Feb 2019 23:25:37
Revision:492534Original commit files touched by this commit This port version is marked as vulnerable.
sunpoet search for other commits by this committer
Update dns/libidn2 to 2.1.1

- Bump PORTREVISION of dependent ports for shlib change

Changes:	https://gitlab.com/libidn/libidn2/blob/master/NEWS
2.80_1,1
06 Jan 2019 20:39:43
Revision:489529Original commit files touched by this commit This port version is marked as vulnerable.
sunpoet search for other commits by this committer
Update dns/libidn2 to 2.1.0

- Bump PORTREVISION of dependent ports for shlib change

Changes:	https://gitlab.com/libidn/libidn2/blob/master/NEWS
2.80,1
19 Oct 2018 17:47:56
Revision:482439Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Upgrade dns/dnsmasq to v2.80.

Security: the installed example configuration file shows a way of
disabling WPAD hijacking, but leaves it commented out. Extend pkg-message.

Changelog: 	<http://thekelleys.org.uk/dnsmasq/CHANGELOG>

Since installing v2.80 isn't a fix against the vulnerability, and fixing
it needs administrator intervention on upgrades, I am not marking this in
vuxml for now, since we'd need to mark v2.80 vulnerable, too.

MFH:		2018Q4
Security:	CERT VU#598349
2.79,1
19 Mar 2018 21:10:34
Revision:465034Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
dns/dnsmasq update to release v2.79

Note there are a few incompatible changes. For details, please see the...
Changelog: <http://thekelleys.org.uk/dnsmasq/CHANGELOG>
2.78,1
02 Oct 2017 18:40:30
Revision:451095Original commit files touched by this commit This port version is marked as vulnerable.
brnrd search for other commits by this committer
dns/dnsmasq: Security update to 2.78

PR:		222739
Approved by:	ports-secteam
MFH:		2017Q4
Security:	b77b5646-a778-11e7-ac58-b499baebfeaf
2.77_1,1
07 Jun 2017 20:00:42
Revision:442888Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Fix up pxelogic.0 suffix logic.

Regression in v2.77 caused by a patch proposed by yours truly.

Reported by:	Steven Shiau (via upstream dnsmasq-discuss mailing list)
Obtained from:	Chris Novakovich and Simon Kelley
Pointyhat to:	mandree@
2.77,1
01 Jun 2017 17:55:27
Revision:442303Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to new release 2.77.

Changelog: <http://thekelleys.org.uk/dnsmasq/CHANGELOG>
2.76,1
21 Mar 2017 22:45:44
Revision:436661Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Correct placement of option helpers.

Related to:
PR: 217900
2.76,1
21 Mar 2017 22:43:56
Revision:436660Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Allow build on PF-less (NO_IPSET) systems.

This adds a new ports option, IPSET, defaulting to on.

Use the opportunity to use the options helpers OPT_CFLAGS[_OFF] on the
trivial options.

PR:		217900
Submitted by:	Oliver Pinter <oliver.pinter@hardenedbsd.org>
2.76,1
09 Feb 2017 00:18:49
Revision:433702Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Use readelf instead of objdump, unbreaking arm64 build.

Submitted by:	emaste@
Differential Revision:	https://reviews.freebsd.org/D7881
2.76,1
23 May 2016 20:35:01
Revision:415742Original commit files touched by this commit This port version is marked as vulnerable.
amdmi3 search for other commits by this committer
Remove NLS, DOCS, EXAMPLES and IPV6 from OPTIONS_DEFAULT, they are enabled by
default anyway and don't need to be listed

Approved by:	portmgr blanket
2.76,1
18 May 2016 22:17:10
Revision:415466Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Update, new upstream feature+bugfix release v2.76

The upstream maintainer's change log is here, and in the installed
CHANGELOG file:
<http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=blob_plain;f=CHANGELOG;hb=v2.76>

Drop two patch files that were previously cherry-picked from the
post-v2.75 upstream repository and should no longer be needed.
2.75_2,1
01 Apr 2016 14:00:57
Revision:412346Original commit files touched by this commit This port version is marked as vulnerable.
mat search for other commits by this committer
Remove ${PORTSDIR}/ from dependencies, categories d, e, f, and g.

With hat:	portmgr
Sponsored by:	Absolight
2.75_2,1
23 Jan 2016 21:14:18
Revision:407058Original commit files touched by this commit This port version is marked as vulnerable.
johans search for other commits by this committer
Bump versions to chase Nettle shared library update
2.75_1,1
07 Jan 2016 23:44:00
Revision:405491Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Cherry-pick two upstream fixes for crashers.

(But bump PORTREVISION instead of PORTEPOCH ;-))

http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commit;h=0007ee90646a5a78a96ee729932e89d31c69513a
http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commit;h=41a8d9e99be9f2cc8b02051dd322cb45e0faac87

Submitted by:	garga@
Obtained from:	Edwin Torok, Simon Kelley
Differential Revision:	D4813
2.75,1
29 Dec 2015 11:15:00
Revision:404736Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Quench unused-parameter warnings during build.
2.75,1
31 Jul 2015 17:43:31
Revision:393361Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to 2.75

Critical bug fix for --dhcp-script
2.74,1
30 Jul 2015 18:47:34
Revision:393256Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
New dnsmasq upstream release 2.74 (bugfixes)

version 2.74
            Fix reversion in 2.73 where --conf-file would attempt to
            read the default file, rather than no file.

            Fix inotify code to handle dangling symlinks better and
            not SEGV in some circumstances.

            DNSSEC fix. In the case of a signed CNAME generated by a
            wildcard which pointed to an unsigned domain, the wrong
            status would be logged, and some necessary checks omitted.
2.73,1
16 Jun 2015 00:48:02
Revision:389788Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Upgrade dnsmasq to new release 2.73.

Changelog: http://www.thekelleys.org.uk/dnsmasq/CHANGELOGDisable dnsmasq-devel
(older than stable).
Switch to using @sample keyword [1].

PR:           200717 [1]
Submitted by: Jimmy Olgeni
2.72_1,1
06 May 2015 19:59:08
Revision:385553Original commit files touched by this commit This port version is marked as vulnerable.
garga search for other commits by this committer
- Add a patch to fix CVE-2015-3294
- Bump PORTREVISION

PR:		199999
Approved by:	mandree@ (maintainer)
Obtained
from:	http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commit;h=ad4a8ff7d9097008d7623df8543df435bfddeac8
MFH:		2015Q2
Security:	CVE-2015-3294
Sponsored by:	Netgate
2.72,1
18 Apr 2015 02:43:51
Revision:384203Original commit files touched by this commit This port version is marked as vulnerable.
amdmi3 search for other commits by this committer
- Add CPE info

Approved by:	portmgr blanket
2.72,1
25 Sep 2014 18:27:56
Revision:369281Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to new upstream version 2.72, disabling dnsmasq-devel again.

Remove @dir* stuff from pkg-plist.  @sample isn't documented properly
and isn't up to handling files with non-.sample suffix, so stay
away from that part of pkg-plist.

ChangeLog:	http://www.thekelleys.org.uk/dnsmasq/CHANGELOG
2.71_2,1
10 Sep 2014 20:30:07
Revision:367886Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Remove excess output from pre-configure.
2.71_2,1
30 Aug 2014 18:18:14
Revision:366659Original commit files touched by this commit This port version is marked as vulnerable.
tijl search for other commits by this committer
dns/libidn:
- Add USES=libtool and bump dependent ports
- Add INSTALL_TARGET=install-strip
- Always install libidn-components.png because it is used by libidn.info
- Add -lintl to Libs.private instead of Libs in libidn.pc
2.71_1,1
31 Jul 2014 17:56:46
Revision:363645Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Add ldconfig to rc.d script requisites to make sure we can link to,
say, libnettle.so.

Submitted by:	Allen Hewes
2.71,1
15 Jul 2014 15:09:59
Revision:361941Original commit files touched by this commit This port version is marked as vulnerable.
adamw search for other commits by this committer
Add DOCS to OPTIONS_DEFINE to ports that check for PORT_OPTIONS:MDOCS.
2.71,1
23 May 2014 21:11:03
Revision:354963Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Fix build with DNSSEC and without NLS/DBUS options.

PR:		190149
Submitted by:	Kevin Zheng
2.71,1
18 May 2014 22:17:30
Revision:354476Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Upgrade to new upstream version 2.71.  Upstream's changelog:

version 2.71
            Subtle change to error handling to help DNSSEC validation
	    when servers fail to provide NODATA answers for
	    non-existent DS records.

	    Tweak code which removes DNSSEC records from answers when
	    not required. Fixes broken answers when additional section
	    has real records in it. Thanks to Marco Davids for the bug
	    report.

	    Fix DNSSEC validation of ANY queries. Thanks to Marco Davids
	    for spotting that too.

	    Fix total DNS failure and 100% CPU use if cachesize set to zero,
	    regression introduced in 2.69. Thanks to James Hunt and
	    the Ubuntu crowd for assistance in fixing this.
2.70,1
27 Apr 2014 21:05:59
Revision:352463Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Upgrade to new upstream version 2.70. Upstream changelog:

   Fix crash, introduced in 2.69, on TCP request when dnsmasq compiled
   with DNSSEC support, but running without DNSSEC enabled. Thanks to
   Manish Sing for spotting that one.

   Fix regression which broke ipset functionality. Thanks to Wang Jian
   for the bug report.

Submitted by:	Herbert J. Skuhra
2.69_1,1
21 Apr 2014 21:56:55
Revision:351724Original commit files touched by this commit This port version is marked as vulnerable.
bapt search for other commits by this committer
Switch to use lua 5.2
2.69_1,1
15 Apr 2014 17:40:46
Revision:351356Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Propose local-service option in default .example configuration.

PR:		ports/188548
Submitted by:	Jeroen van der Ham <jeroen@1sand0s.nl>
2.69,1
10 Apr 2014 20:44:30
Revision:350849Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to new upstream 2.69 release. Adds DNSSEC support.

Full changelog: <http://www.thekelleys.org.uk/dnsmasq/CHANGELOG>
2.68,1
08 Dec 2013 18:05:35
Revision:335916Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Upgrade dnsmasq to new stable 2.68 release.

Fixes bind-interfaces with IPv6 on FreeBSD.

version 2.68
            Use random addresses for DHCPv6 temporary address
            allocations, instead of algorithmically determined stable
            addresses.

    Fix bug which meant that the DHCPv6 DUID was not available
    in DHCP script runs during the lifetime of the dnsmasq
    process which created the DUID de-novo. Once the DUID was
    created and stored in the lease file and dnsmasq
    restarted, this bug disappeared.
(Only the first 15 lines of the commit message are shown above View all of this commit message)
2.67,1
27 Oct 2013 15:30:33
Revision:331782Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Assorted fixes to dependencies on various build options,
particularly with NLS enabled when libidn was built without NLS.

While here, group OPTIONS and clean up things a bit, and print
configuration of port and libidn port for debugging.

The particular build failure was
Reported by:	Yuri Vorobyev
2.67,1
25 Oct 2013 22:27:59
Revision:331639Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Upgrade dnsmasq to new upstream release 2.67.
Changelog: <http://www.thekelleys.org.uk/dnsmasq/CHANGELOG>
Enable NLS and IPV6 options by default.
Use shebangfix on files that need it.

Mark dnsmasq-devel (older than release) IGNORE.
2.66,1
30 Sep 2013 16:44:42
Revision:328831Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Convert to support STAGEDIR; misc. LIB_DEPENDS cleanups.
2.66,1
20 Sep 2013 16:31:58
Revision:327719Original commit files touched by this commit This port version is marked as vulnerable.
bapt search for other commits by this committer
Add NO_STAGE all over the place in preparation for the staging support (cat:
dns)
2.66
14 Aug 2013 22:35:54
Revision:324744Original commit files touched by this commit Sanity Test Failure This port version is marked as vulnerable.
ak search for other commits by this committer
- Remove MAKE_JOBS_SAFE variable

Approved by:	portmgr (bdrewery)
2.66,1
26 Apr 2013 15:10:57
Revision:316620Original commit files touched by this commit This port version is marked as vulnerable.
bapt search for other commits by this committer
Convert USE_GETTEXT -> USES=gettext

While here:
- Trim headers
- Remove some useless pre.mk/post.mk
- Convert to optionsng
2.66,1
23 Apr 2013 07:24:02
Revision:316315Original commit files touched by this commit This port version is marked as vulnerable.
bapt search for other commits by this committer
Convert dns to USES=pkgconfig
2.66,1
17 Apr 2013 17:50:27
Revision:315999Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Kill blank line at EOF, to please portlint.

Feature safe: yes
2.66,1
17 Apr 2013 17:49:50
Revision:315998Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to new upstream release 2.66.
New DHCPv6 stuff, ability to act as authoritative server for local data.

Changelog: http://www.thekelleys.org.uk/dnsmasq/CHANGELOG

Feature safe: yes
2.65,1
11 Mar 2013 18:22:58
Revision:313926Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Tidy up Makefile header.
2.65,1
11 Mar 2013 18:21:52
Revision:313925Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Drop default options, to keep the Makefile tidy.

Submitted by:	bapt@
2.65,1
15 Dec 2012 16:34:12
Revision:308953Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to new upstream release 2.65.

Upstream changes:

    Fix regression which broke forwarding of queries sent via
    TCP which are not for A and AAAA and which were directed to
    non-default servers. Thanks to Niax for the bug report.

    Fix failure to build with DHCP support excluded. Thanks to
    Gustavo Zacarias for the patch.

    Fix nasty regression in 2.64 which completely broke cacheing.
2.65,1
15 Dec 2012 16:33:08
Revision:308952Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to new upstream release 2.65.

Upstream changes:

    TCP which are not for A and AAAA and which were directed to
    non-default servers. Thanks to Niax for the bug report.

    Fix failure to build with DHCP support excluded. Thanks to
    Gustavo Zacarias for the patch.

    Fix nasty regression in 2.64 which completely broke cacheing.
2.64,1
04 Dec 2012 22:29:10
Revision:308283Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to new upstream release 2.64.

Feature safe:	yes

Changelog for version 2.64:

Handle DHCP FQDN options with all flag bits zero and --dhcp-client-update set.
Thanks to Bernd Krumbroeck for spotting the problem.

Finesse the check for /etc/hosts names which conflict with DHCP names.
Previously a name/address pair in /etc/hosts which didn't match the
name/address of a DHCP lease would generate a warning. Now that only
happesn if there is not also a match. This allows multiple addresses for
a name in /etc/hosts with one of them assigned via DHCP.
(Only the first 15 lines of the commit message are shown above View all of this commit message)
2.63,1
20 Aug 2012 20:40:29
Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Demote USE_PKGCONFIG to =build (was =yes).
2.63,1
20 Aug 2012 20:33:27
Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to 2.63.

Changelog: http://www.thekelleys.org.uk/dnsmasq/CHANGELOG
2.62_1,1
07 Aug 2012 22:22:11
Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Add new dnsmasq-devel version, for development/test/release candidate versions.
This port is based on dns/dnsmasq 2.62_1,1 and has been updated to 2.63rc2.

Description (by Simon Kelley, the upstream maintainer):
Dnsmasq is a lightweight, easy to configure DNS forwarder and DHCP server.
It is designed to provide DNS and, optionally, DHCP, to a small network. It
can serve the names of local machines which are not in the global DNS. The
DHCP server integrates with the DNS server and allows machines with
DHCP-allocated addresses to appear in the DNS with names configured either
in each host or in a central configuration file. Dnsmasq supports static and
dynamic DHCP leases and BOOTP/TFTP/PXE for network booting of diskless
machines.
2.62_1,1
05 Aug 2012 23:19:40
Original commit files touched by this commit This port version is marked as vulnerable.
dougb search for other commits by this committer
Move the rc.d scripts of the form *.sh.in to *.in

Where necessary add $FreeBSD$ to the file

No PORTREVISION bump necessary because this is a no-op
2.62_1,1
26 Jul 2012 05:40:24
Original commit files touched by this commit This port version is marked as vulnerable.
bapt search for other commits by this committer
new devel/pkgconf added to replace devel/pkg-config. new version of pkg-config
are no more self hosting so we are stuck with 0.25 version while pkgconf provide
the same set of features as 0.27 and a compatible frontend. A symlink to
pkg-config has been added for convenience and compatibility

This also introduces a new macro to use pkgconf in your ports:
USE_PKGCONFIG

it can take the following arguments:
 - yes (meaning build only dep)
 - build (meaning build only dep)
 - run (meaning run only dep)
 - both (meaning run and build dep)

From now USE_GNOME= pkgconfig is deprecated in favour of USE_PKGCONFIG
The old gnome macro has been modified to use pkgconf but still the sameway: run
and build dep to avoid large breakage.

While here fix some ports relying on pkg-config but not specifying it, fix some
ports broken because testing wrong .pc files, and fix ports using pkg-config
--version to determine pkg-config version instead of
pkg-config --modversion pkg-config like recommanded by pkg-config

With Hat:	portmgr
Exp-runs by:	bapt (pointhat-west), beat (pointyhat)
2.62_1,1
25 Jul 2012 06:32:08
Original commit files touched by this commit This port version is marked as vulnerable.
cs search for other commits by this committer
Fix typos in COMMENT
2.62_1,1
11 Jun 2012 20:49:30
Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Fix inverted PORT_OPTIONS:MDOCS logic, regression from optionsNG migration.

Reported by: Spil Oss
Reported by: pointyhat (by way of pav@)
2.62,1
08 Jun 2012 14:34:17
Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to bug-fix release 2.62.
Changelog: http://www.thekelleys.org.uk/dnsmasq/CHANGELOG

Convert to OptionsNG.
2.61,1
30 Apr 2012 20:38:13
Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to new upstream release 2.61. Changes are, per Simon Kelley:

Re-write interface discovery code on *BSD to use getifaddrs. This
is more portable, more straightforward, and allows us to find the
prefix length for IPv6 addresses.

Add ra-names, ra-stateless and slaac keywords for DHCPv6.  Dnsmasq
can now synthesise AAAA records for dual-stack hosts which get IPv6
addresses via SLAAC. It is also now possible to use SLAAC and
stateless DHCPv6, and to tell clients to use SLAAC addresses as
well as DHCP ones.  Thanks to Dave Taht for help with this.

Add --dhcp-duid to allow DUID-EN uids to be used.

Explicity send DHCPv6 replies to the correct port, instead of relying
(Only the first 15 lines of the commit message are shown above View all of this commit message)
2.60_1,1
01 Apr 2012 11:18:18
Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Fix a rare configuration-dependent crash.  Simon Kelley, upstream
maintainer, wrote in message <4F70361B.7080306@thekelleys.org.uk>:

    A bug has been found in dnsmasq 2.60 that can cause crashes. This is
    configuration dependent: it either crashes frequently or not at all.
    The configuration required is one which allows dnsmasq to receive
    DHCPINFORM requests for which there is no valid dhcp-range. This is
    rare.

Adding the patch he offers for download.

Feature safe: yes
2.60,1
11 Mar 2012 23:59:44
Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to new upstream release 2.60.  Notable new features are:
- The LUA port option enables Lua support for DHCP lease-change scripts
- DHCPv6 support
- IPv6 Router Advertisement support

Changelog:    http://www.thekelleys.org.uk/dnsmasq/CHANGELOG
Feature safe: yes
2.59,1
14 Jan 2012 08:57:23
Original commit files touched by this commit This port version is marked as vulnerable.
dougb search for other commits by this committer
In the rc.d scripts, change assignments to rcvar to use the
literal name_enable wherever possible, and ${name}_enable
when it's not, to prepare for the demise of set_rcvar().

In cases where I had to hand-edit unusual instances also
modify formatting slightly to be more uniform (and in
some cases, correct). This includes adding some $FreeBSD$
tags, and most importantly moving rcvar= to right after
name= so it's clear that one is derived from the other.
2.59,1
18 Oct 2011 22:24:47
Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Fix BUILD_DEPENDS (use += not =) creation in port.

Upgrade to new upstream regression fix release 2.59:

            Fix regression in 2.58 which caused failure to start up
            with some combinations of dnsmasq config and IPv6 kernel
            network config. Thanks to Brielle Bruns for the bug
            report.

            Improve dnsmasq's behaviour when network interfaces are
            still doing duplicate address detection (DAD). Previously,
            dnsmasq would wait up to 20 seconds at start-up for the
            DAD state to terminate. This is broken for bridge
            interfaces on recent Linux kernels, which don't start DAD
            until the bridge comes up, and so can take arbitrary
            time. The new behaviour lets dnsmasq poll for an arbitrary
            time whilst providing service on other interfaces. Thanks
            to Stephen Hemminger for pointing out the problem.

Note the 2.59.tar.lzma tarball causes the startup banner to print
2.59rc1 which I deem harmless.
2.58,1
26 Aug 2011 22:32:47
Original commit files touched by this commit This port version is marked as vulnerable.
mandree search for other commits by this committer
Update to new upstream release 2.58
Changes: http://thekelleys.org.uk/dnsmasq/CHANGELOG

Suggested by: Loic Pefferkorn.
2.57_3,1
14 Mar 2011 08:40:07
Original commit files touched by this commit This port version is marked as vulnerable.
wen search for other commits by this committer
- Bump PORTREVISION to chase the update of dns/libidn

Number of commits found: 174 (showing only 100 on this page)

1 | 2  »