Module Name:	pkgsrc
Committed By:	agc
Date:		Mon May 10 08:54:30 UTC 2004

Modified Files:
	pkgsrc/net/rsync [pkgsrc-2004Q1]: Makefile distinfo
Removed Files:
	pkgsrc/net/rsync/patches [pkgsrc-2004Q1]: patch-af

Log Message:
Pullup update of rsync to 2.6.2 to the pkgsrc-2004Q1 branch to fix a
security problem (reported as CAN-2004-0426 (cve.mitre.org)).

Requested by taca in ticket pkgsrc/27.

	Module Name:	pkgsrc
	Committed By:	tron
	Date:		Tue May  4 11:36:19 UTC 2004

	Modified Files:
		pkgsrc/net/rsync: Makefile distinfo
	Removed Files:
		pkgsrc/net/rsync/patches: patch-af

	Log Message:
	Update "rsync" package to version 2.6.2. Changes since version 2.6.0:
	- Fixed a major bug in the sorting of the filenames when --relative
	  is used for some sources (probably just "/", but don't depend on
	  that).  This fix ensures that we ask for the right file-list item
	  when requesting changes from the sender.
	- Rsync now checks the return value of the close() function to
	  better report disk-full problems on an NFS file system.
	- Paths sent to an rsync daemon are more thoroughly sanitized when
	  chroot is not used.  If you're running a non-read-only rsync
	  daemon with chroot disabled, *please upgrade*, ESPECIALLY if the
	  user privs you run rsync under is anything above "nobody".
	- Lower memory use, more optimal transfer of data over the socket,
	  and lower CPU usage (see the INTERNAL section for details).
	- The RSYNC_PROXY environment variable can now contain a
	  "USER:PASS@" prefix before the "HOST:PORT" information.
	  (Bardur Arantsson)
	- The --progress output now mentions how far along in the transfer
	  we are, including both a count of files transferred and a
	  percentage of the total file-count that we've processed.  It also
	  shows better current-rate-of-transfer and remaining-transfer-time
	  values.
	- The configure script now accepts --with-rsyncd-conf=PATH to
	  override the default value of the /etc/rsyncd.conf file.
	- Added a couple extra diffs in the "patches" dir, removed the ones
	  that got applied, and rebuilt the rest.
	- Documentation changes now attempt to describe some often mis-
	  understood features more clearly.
	- When -x (--one-file-system) is combined with -L (--copy-links) or
	  --copy-unsafe-links, no symlinked files are skipped, even if the
	  referent file is on a different filesystem.
	- The --link-dest code now works properly for a non-root user when
	  (1) the UIDs of the source and destination differ and -o was
	  specified, or (2) when the group of the source can't be used on
	  the destination and -g was specified.
	- Fixed a bug in the handling of -H (hard-links) that might cause
	  the expanded PATH/NAME value of the current item to get
	  overwritten (due to an expanded-name caching bug).
	- We now reset the "new data has been sent" flag at the start of
	  each file we send.  This makes sure that an interrupted transfer
	  with the --partial option set doesn't keep a shorter temp file
	  than the current basis file when no new data has been transfered
	  over the wire for that file.
	- Fixed a byte-order problem in --batch-mode on big-endian machines.
	  (Jay Fenlason)
	- Fixed configure bug when running "./configure --disable-ipv6".
	- Fixed "make test" bug when build dir is not the source dir.
	- When using --cvs-exclude, the exclude items we get from a
	  per-directory's .cvsignore file once again only affect that one
	  directory (not all following directories too).  The items are also
	  now properly word-split and parsed without any +/- prefix parsing.
	- When specifying the USER@HOST: prefix for a file, the USER part
	  can now contain an '@', if needed (i.e. the last '@' is used to
	  find the HOST, not the first).
	- Fixed some bugs in the handling of group IDs for non-root users:
	  (1) It properly handles a group that the sender didn't have a name
	  for (it would previously skip changing the group on any files in
	  that group).  (2) If --numeric-ids is used, rsync no longer
	  attempts to set groups that the user doesn't have the permission
	  to set.
	- Fixed the "refuse options" setting in the rsyncd.conf file.
	- Improved the -x (--one-file-system) flag's handling of any mount-
	  point directories we encounter.  It is both more optimal (in that
	  it no longer does a useless scan of the contents of the mount-
	  point dirs) and also fixes a bug where a remapped mount of the
	  original filesystem could get discovered in a subdir we should be
	  ignoring.
	- Rsync no longer discards a double-slash at the start of a filename
	  when trying to open the file.  It also no longer constructs names
	  that start with a double slash (unless the user supplied them).
	- Path-specifying options to a daemon should now work the same with
	  or without chroot turned on.  Previously, such a option (such as
	  --link-dest) would get its absolute path munged into a relative
	  one if chroot was not on, making that setting fairly useless.
	  Rsync now transforms the path into one that is based on the
	  module's base dir when chroot is not enabled.
	- Fixed compilation problem on Tru64 Unix (having to do with
	  sockaddr.sa_len and sockaddr.sin_len).
	- Fixed a compatibility problem interacting with older rsync
	  versions that might send us an empty --suffix value without
	  telling us that --backup-dir was specified.
	- The "hosts allow" option for a daemon-over-remote-shell process
	  now has improved support for IPv6 addresses and a fix for systems
	  that have a length field in their socket structs.
	- Fixed the ability to request an empty backup --suffix when sending
	  files to an rsync daemon.


To generate a diff of this commit:
cvs rdiff -r1.52 -r1.52.2.1 pkgsrc/net/rsync/Makefile
cvs rdiff -r1.13 -r1.13.2.1 pkgsrc/net/rsync/distinfo
cvs rdiff -r1.4 -r0 pkgsrc/net/rsync/patches/patch-af

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.