If we need to make an exception we can do it and properly document the
reason but by default we should just use the default login class.
rc.d uses daemon or the login class provided in login.conf.d so this has
no impact there.
discussed with sthen@, tb@ and robert@
praying that my grep/sed skills did not break anything and still
believing in portbump :-)
NEWS: https://download.samba.org/pub/rsync/NEWS#3.2.4
originally from tj@ with tweaks by me:
- --with-nobody-user=_rsync
- remove compat.c (fixed)
- remove configure.sh (use --with-nobody-user=_rsync instead)
- remove receiver.c (upstreamed)
- rrsync patch: churn and moves from perl to python3
- --with-rrsync and brings in python as BUILD_DEPENDS (not RUN_DEPENDS)
and textproc/py-commonmark, needed to run
${WRKSRC}/md-convert. md-convert converts rsync.1.md --> rsync.1, so
remove patches for man pages and patch markdown files instead.
- When patching markdown files, mainly keep these two changes:
/usr/bin --> ${PREFIX}/bin and nobody --> _rsync.
- remove rsyncd.conf.5 from ${SUBST_CMD}
- --enable-md5-asm only on amd64, as configure check fails on other
platforms (from naddy@ to retain
checking whether to enable MD5 ASM optimizations... yes (x86_64))
feedback from tj@ espie@ sthen@ naddy@
ok sthen@
The dependencies are too big, rsync should stay mostly self contained as
discussed/demanded after the last update commit enabled them.
This fixes the iconv flavour as well which I broke by moving CONFIGURE_ENV
out of the FLAVOR conditional, although in practise -liconv is still picked
up when building with --disable-rsync, so something else seems fishy here.
OK jca espie
Those are registered as CVE-2016-9843, CVE-2016-9842, CVE-2016-9841,
CVE-2016-9840, but judging from the code, it's not even clear how to build
an exploit from this (mostly underspecified C behavior, plus it's deep
within zlib's streams).
So, don't get too alarmed about this.
Okay sthen@, naddy@
Note that there is no xattr support on OpenBSD so we're not affected by
all the bugs upstreams fixed
discussed with jca, naddy and espie
ok espie (maintainer)
fix for a transfer from a sender that you don't fully trust.
Originally gonzalo@ submitted a broken update to espie@ who passed
it around and then everybody forgot.
Add support for a new-compression idiom that does not compress all the
matching data in a transfer. This can help rsync to use less cpu when a
transfer has a lot of matching data,
Switch to bundled zlib in order to support both old and new compression.
ok sthen@, espie@
changes, and now uses the system zlib.
https://rsync.samba.org/ftp/rsync/src/rsync-3.1.0-NEWS
Clean up some cruft:
* Dropped the -T from --with-rsh. No tty allocation is the default
for ssh, and if somebody sets RequestTTY in .ssh/config, they should
get what they want.
* Removed pointless SECURITY file.
* Replaced the outdated DESCR text with the description from the man page.
ok espie@
Tweak man pages accordingly.
While here:
simplify @extra marker in PLIST
set GPL version
"looks good" to naddy@
with inputs from and ok schwarze@, ok sthen@
