* BUG FIXES:
- fixed handling of -H flag with conflict in internal flag values
- fixed a user after free in logging of failed rename
- fixed build on systems without openat()
- removed dependency on alloca() in bundled popt
* DEVELOPER RELATED:
- fix to permissions handling in the developer release script
- Drop 705.patch, because now in upstream.
OBS-URL: https://build.opensuse.org/package/show/network/rsync?expand=0&rev=134
- add patch rsync-run-dir.patch:
* Drop dependency on /var/run compat symlink, this causes problems
on image based systems
* rsync-patches-3.2.7.tar.gz
* rsync-patches-3.2.7.tar.gz.asc
- Update to 3.3.0
- Fixed a bug with --sparse --inplace where a trailing gap in
the source file would not clear out the trailing data in the
- Fixed an buffer overflow in the checksum2 code if SHA1 is
that the extra tests don't complain about a strlcpy() limit
the larger value to cause an overflow).
- Add a backtick to the list of characters that the filename
- Fixed a string-comparison issue in the internal handling of
- Change the argv handling to work with a newer popt library
- Rsync now calls OpenSSL_add_all_algorithms() when compiled
- Fixed a problem in the daemon auth for older protocols
(29 and before) if the openssl library is being used to
nroff doesn't support these idioms, touch the file
- New version fixes bug (boo#1203727): implicit containing directory
in /etc and restoring them while an RPM update.
the older `--protect-args` (`-s`) option but in a way that
current locale's decimal point character, which made rsync
instead of AC_CHECK_LIB(attr,getxattr) so libattr is
- Do not depend on insserv if the system supports systemd; it's
- Remove sysvinit support on distros that have systemd
not link to libattr but it picks the glibc implementation
- Build with PIE and full RELRO
* Apply drop-cache patch from rsync-patches tarball, adds option
--drop-cache so rsync is drop the memory cache of files when
OBS-URL: https://build.opensuse.org/request/show/1198081
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/rsync?expand=0&rev=89
* Drop dependency on /var/run compat symlink, this causes problems
on image based systems
* rsync-patches-3.2.7.tar.gz
* rsync-patches-3.2.7.tar.gz.asc
- Update to 3.3.0
- Fixed a bug with --sparse --inplace where a trailing gap in
the source file would not clear out the trailing data in the
- Fixed an buffer overflow in the checksum2 code if SHA1 is
that the extra tests don't complain about a strlcpy() limit
the larger value to cause an overflow).
- Add a backtick to the list of characters that the filename
- Fixed a string-comparison issue in the internal handling of
- Change the argv handling to work with a newer popt library
- Rsync now calls OpenSSL_add_all_algorithms() when compiled
- Fixed a problem in the daemon auth for older protocols
(29 and before) if the openssl library is being used to
nroff doesn't support these idioms, touch the file
- New version fixes bug (boo#1203727): implicit containing directory
in /etc and restoring them while an RPM update.
the older `--protect-args` (`-s`) option but in a way that
current locale's decimal point character, which made rsync
instead of AC_CHECK_LIB(attr,getxattr) so libattr is
- Do not depend on insserv if the system supports systemd; it's
- Remove sysvinit support on distros that have systemd
not link to libattr but it picks the glibc implementation
- Build with PIE and full RELRO
* Apply drop-cache patch from rsync-patches tarball, adds option
--drop-cache so rsync is drop the memory cache of files when
- updated summary (bnc#691944) and description
OBS-URL: https://build.opensuse.org/package/show/network/rsync?expand=0&rev=123
- Update to 3.3.0
* BUG FIXES:
- Fixed a bug with --sparse --inplace where a trailing gap in
the source file would not clear out the trailing data in the
destination file.
- Fixed an buffer overflow in the checksum2 code if SHA1 is
being used for the checksum2 algorithm.
- Fixed an issue when rsync is compiled using _FORTIFY_SOURCE so
that the extra tests don't complain about a strlcpy() limit
value (which was too large, even though it wasn't possible for
the larger value to cause an overflow).
(fix bsc#1214616, bsc#1214249)
- Add a backtick to the list of characters that the filename
quoting needs to escape using backslashes.
- Fixed a string-comparison issue in the internal handling of
--progress (a locale such as tr_TR.utf-8 needed the internal
triggering of --info options to use upper-case flag names to
ensure that they match).
- Make sure that a local transfer marks the sender side as
trusted.
- Change the argv handling to work with a newer popt library
-- one that likes to free more data than it used to.
- Rsync now calls OpenSSL_add_all_algorithms() when compiled
against an older openssl library.
- Fixed a problem in the daemon auth for older protocols
(29 and before) if the openssl library is being used to
compute MD4 checksums.
- Fixed rsync -VV on Cygwin -- it needed a flush of stdout.
- Fixed an old stats bug that counted devices as symlinks.
* ENHANCEMENTS:
OBS-URL: https://build.opensuse.org/request/show/1168828
OBS-URL: https://build.opensuse.org/package/show/network/rsync?expand=0&rev=119
- New version fixes bug (boo#1203727): implicit containing directory
sometimes rejected as unrequested
- update to 3.2.7
* BUG FIXES:
- Fixed the client-side validating of the remote sender's filtering behavior.
- More fixes for the "unrequested file-list name" name, including a copy of
"/" with `--relative` enabled and a copy with a lot of related paths with
`--relative` enabled (often derived from a `--files-from` list).
- When rsync gets an unpack error on an ACL, mention the filename.
- Avoid over-setting sanitize_paths when a daemon is serving "/" (even if
"use chroot" is false).
* ENHANCEMENTS:
- Added negotiated daemon-auth support that allows a stronger checksum digest
to be used to validate a user's login to the daemon. Added SHA512, SHA256,
and SHA1 digests to MD5 & MD4. These new digests are at the highest priority
in the new daemon-auth negotiation list.
- Added support for the SHA1 digest in file checksums. While this tends to be
overkill, it is available if someone really needs it. This overly-long
checksum is at the lowest priority in the normal checksum negotiation list.
See [`--checksum-choice`](rsync.1#opt) (`--cc`) and the `RSYNC_CHECKSUM_LIST`
environment var for how to customize this.
- Improved the xattr hash table to use a 64-bit key without slowing down the
key's computation. This should make extra sure that a hash collision doesn't
happen.
- If the `--version` option is repeated (e.g. `-VV`) then the information is
output in a (still readable) JSON format. Client side only.
- The script `support/json-rsync-version` is available to get the JSON style
version output from any rsync. The script accepts either text on stdin
**or** an arg that specifies an rsync executable to run with a doubled
`--version` option. If the text we get isn't already in JSON format, it is
OBS-URL: https://build.opensuse.org/request/show/1030355
OBS-URL: https://build.opensuse.org/package/show/network/rsync?expand=0&rev=100
- Use bundled SLP patch now that upstream fixed it:
* Remove rsync-3.2.5-slp.patch
- update to 3.2.6:
* More path-cleaning improvements in the file-list validation code to avoid
rejecting of valid args.
* A file-list validation fix for a --files-from file that ends without a
line-terminating character.
* Added a safety check that prevents the sender from removing destination
files when a local copy using --remove-source-files has some files that are
shared between the sending & receiving hierarchies, including the case
where the source dir & destination dir are identical.
* Fixed a bug in the internal MD4 checksum code that could cause the digest
to be sporadically incorrect (the openssl version was/is fine).
* A minor tweak to rrsync added "copy-devices" to the list of known args, but
left it disabled by default.
OBS-URL: https://build.opensuse.org/request/show/1003500
OBS-URL: https://build.opensuse.org/package/show/network/rsync?expand=0&rev=98
- Add upstream patch rsync-3.2.5-slp.patch, as the one included in
the released tarball doesn't fully apply.
- Drop patch rsync-CVE-2022-29154.patch, already included upstream.
- Update to 3.2.5
* SECURITY FIXES:
- Added some file-list safety checking that helps to ensure that a rogue
sending rsync can't add unrequested top-level names and/or include recursive
names that should have been excluded by the sender. These extra safety
checks only require the receiver rsync to be updated. When dealing with an
untrusted sending host, it is safest to copy into a dedicated destination
directory for the remote content (i.e. don't copy into a destination
directory that contains files that aren't from the remote host unless you
trust the remote host). Fixes CVE-2022-29154.
- A fix for CVE-2022-37434 in the bundled zlib (buffer overflow issue).
* BUG FIXES:
- Fixed the handling of filenames specified with backslash-quoted wildcards
when the default remote-arg-escaping is enabled.
- Fixed the configure check for signed char that was causing a host that
defaults to unsigned characters to generate bogus rolling checksums. This
made rsync send mostly literal data for a copy instead of finding matching
data in the receiver's basis file (for a file that contains high-bit
characters).
- Lots of manpage improvements, including an attempt to better describe how
include/exclude filters work.
- If rsync is compiled with an xxhash 0.8 library and then moved to a system
with a dynamically linked xxhash 0.7 library, we now detect this and disable
the XX3 hashes (since these routines didn't stabilize until 0.8).
* ENHANCEMENTS:
- The [`--trust-sender`](rsync.1#opt) option was added as a way to bypass the
extra file-list safety checking (should that be required).
OBS-URL: https://build.opensuse.org/request/show/997517
OBS-URL: https://build.opensuse.org/package/show/network/rsync?expand=0&rev=93
