File: NEWS

package info (click to toggle)
cvm 0.96-1.1
  • links: PTS
  • area: main
  • in suites: jessie, jessie-kfreebsd
  • size: 928 kB
  • ctags: 622
  • sloc: ansic: 4,126; sh: 1,382; makefile: 120; sql: 15
file content (410 lines) | stat: -rw-r--r-- 15,704 bytes parent folder | download | duplicates (3)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
-------------------------------------------------------------------------------
Changes in version 0.96

- Added support for checking permissions in cvm-qmail.  See discussion
  of $CVM_QMAIL_CHECK_PERMS in cvm-qmail.html

- Added support for I/O timeouts for cvm-local modules.

- Fixed the SQLite module to copy the row data.

- Fixed cvm-qmail dieing if control/locals is missing.

Development of this version has been sponsored by FutureQuest, Inc.
ossi@FutureQuest.net  http://www.FutureQuest.net/
-------------------------------------------------------------------------------
Changes in version 0.95

- Added a "lookaside" mode to cvm-qmail, to assist with proper chaining
  to cvm-vmailmgr or other modules.

- Fixed failure in cvm-qmail when virtualdomains did not exist.

- Fixed client.h symlink to point to v2client.h to match the library.

- Fixed cvm-vmailmgr to fail with OUTOFSCOPE=1 when the virtual password
  table file does not exist, instead of failing with an I/O error.  This
  should improve its ability to chain with other modules.

- Added cvm-sqlite from Wayne Marshall

Development of this version has been sponsored by FutureQuest, Inc.
ossi@FutureQuest.net  http://www.FutureQuest.net/
-------------------------------------------------------------------------------
Changes in version 0.90

- Added support for chaining modules within the version client library.
  To use this, specify the module string as a list of modules separated
  with commas.  For example:

	cvm-command:/path/to/module,cvm-local:/path/to/socket

  This enhancement deprecates the cvm-chain module.

- Introduced an "out of scope" fact, to be used on credential rejection
  results when the supplied credentials are outside of the scope of
  authority of the module.  The cvm-vmailmgr and cvm-qmail modules
  report this fact as appropriate, and cvm-chain copies it as
  appropriate from the modules it invokes.

- A random anti-spoofing tag is added to all version 2 client requests.
  Its length is set by $CVM_RANDOM_BYTES and defaults to 8.

- Fixed a bug that caused the domain output to be set incorrectly when
  doing qmail lookups with a domain not in the control files with
  $CVM_QMAIL_ASSUME_LOCAL set.

Development of this version has been sponsored by FutureQuest, Inc.
ossi@FutureQuest.net  http://www.FutureQuest.net/
-------------------------------------------------------------------------------
Changes in version 0.82

- Fixed handling of user/domain name splitting in the client library
  when the caller doesn't initially provide a domain name.

- cvm_client_setenv now also sets $MAILDIR for use with Courier IMAP.

Development of this version has been sponsored by FutureQuest, Inc.
ossi@FutureQuest.net  http://www.FutureQuest.net/
-------------------------------------------------------------------------------
Changes in version 0.81

- Fixed a typo in the INSTHIER file that caused incomplete
  installations.

Development of this version has been sponsored by FutureQuest, Inc.
ossi@FutureQuest.net  http://www.FutureQuest.net/
-------------------------------------------------------------------------------
Changes in version 0.80

- Modified the build procedures to use libtool to produce and install
  shared libraries.

Development of this version has been sponsored by FutureQuest, Inc.
ossi@FutureQuest.net  http://www.FutureQuest.net/
-------------------------------------------------------------------------------
Changes in version 0.76

- Fixed the autoconvert feature of cvm-vmailmgr to set the permissions
  and ownership of the created password table to that of the original.

- Added a feature to all qmail-based modules to treat all domains as
  local if $CVM_QMAIL_ASSUME_LOCAL is set.

Development of this version has been sponsored by FutureQuest, Inc.
ossi@FutureQuest.net  http://www.FutureQuest.net/
-------------------------------------------------------------------------------
Changes in version 0.75

- Added an "autoconvert" mode to cvm-vmailmgr, which converts encrypted
  passwords to plain-text on successful authentication if
  $VMAILMGR_AUTOCONVERT is set.

Development of this version has been sponsored by FutureQuest, Inc.
ossi@FutureQuest.net  http://www.FutureQuest.net/
-------------------------------------------------------------------------------
Changes in version 0.71

- Several brown-paper-bag bug fixes.

- Updated the cvm-vchkpw module.

Development of this version has been sponsored by FutureQuest, Inc.
ossi@FutureQuest.net  http://www.FutureQuest.net/
-------------------------------------------------------------------------------
Changes in version 0.70

- Major SASL rewrite:

  - Rewrote SASL API to eliminate static data, making it reentrant.

  - Fixed up the SASL library to use the v2 client library.

  - Added SASL generic text I/O authentication framework from mailfront.

Development of this version has been sponsored by FutureQuest, Inc.
ossi@FutureQuest.net  http://www.FutureQuest.net/
-------------------------------------------------------------------------------
Changes in version 0.60

* This version brings major API changes. *

- All module symbols are named cvm_module_*

- All client symbols are named cvm_client_*

- Macros are used to preserve source compatability with existing code.

- Added cvm-chain combination client/module program
  (adapted from code contributed by Dale Woolridge).

Development of this version has been sponsored by FutureQuest, Inc.
ossi@FutureQuest.net  http://www.FutureQuest.net/
-------------------------------------------------------------------------------
Changes in version 0.50

* This version is a major upgrade providing support for the CVM2
* protocol.  All the modules included here now support both the new CVM2
* protocol and the existing CVM1 protocol.  There are two seperate
* client libraries, cvm-v1client and cvm-v2client.  The previous library
* and header names are retained as symlinks to the v1client files.

NOTE: The version 1 client library is now depricated and may be removed
in future versions of the package.  All new software should target the
version 2 API.

Development of this version has been sponsored by FutureQuest, Inc.
ossi@FutureQuest.net  http://www.FutureQuest.net/
-------------------------------------------------------------------------------
Changes in version 0.33

- Added compile fix for cvm-vchkpw.  Thanks Peter Palmreuther.

- Fixed handling qmail lookups of extensions containing periods.

- Fixed handling qmail lookups with missing domains by reading
  control/me and control/envnoathost.

- Fixed handling qmail lookups when cdb/users exists but does not
  contain all users.  Thanks Dale Woolridge.

Development of this version has been sponsored by FutureQuest, Inc.
ossi@FutureQuest.net  http://www.FutureQuest.net/
-------------------------------------------------------------------------------
Changes in version 0.32

- Fixed the qmail lookups in cvm-qmail to lower-case both the username
  and the "-ext" part in .qmail-ext files, just like qmail-local does.

Development of this version has been sponsored by FutureQuest, Inc.
ossi@FutureQuest.net  http://www.FutureQuest.net/
-------------------------------------------------------------------------------
Changes in version 0.31

- Changed error code in the qmail code from EBADMSG to EDOM to allow
  compilation on *BSD systems.

This is strictly a compile-fix version.  If the previous version
compiled for you, there is no reason to upgrade.

Development of this version has been sponsored by FutureQuest, Inc.
ossi@FutureQuest.net  http://www.FutureQuest.net/
-------------------------------------------------------------------------------
Changes in version 0.30

- Added "lookup mode" common code, available in all modules.

- Added new cvm-qmail module, which can be used to verify validity of
  recipient addresses on qmail systems.

- Fixed cvm/module.h header file include problem.
  Thanks Paul Jarc for pointing this out.

- Significantly factorized the qmail code underlying the vmailmgr
  modules, making them more conformant to qmail's delivery process.

- Removed the now obsoleted cvm-vmlookup lookup-only module.

Development of this version has been sponsored by FutureQuest, Inc.
ossi@FutureQuest.net  http://www.FutureQuest.net/
-------------------------------------------------------------------------------
Changes in version 0.20

- Merged cvm-vmailmgr (including cvm-vmlookup) into this package.

- Re-merged in SQL modules from cvm-sql package (cvm-mysql and cvm-pgsql).

- Fixed a bug in the module library: cvm_fact_shell was treated as
  mandatory instead of optional.

- Fixed a bug in client.c that prevented at least OpenBSD from using UDP
  modules.  Thanks Balazs Nagy.

Development of this version has been sponsored by FutureQuest, Inc.
ossi@FutureQuest.net  http://www.FutureQuest.net/
-------------------------------------------------------------------------------
Changes in version 0.18

- Changed the order of the chdir in cvm_setugid, to avoid problems with
  NFS mounted file shares.

- Fixed yet another typo in installer that put a header file in place of
  a library.

- The cvm_setenv routine now exports both $MAIL and $MAILBOX, as some
  programs (notably Dovecot IMAP) prefer to use $MAIL.

Development of this version has been sponsored by FutureQuest, Inc.
ossi@FutureQuest.net  http://www.FutureQuest.net/
-------------------------------------------------------------------------------
Changes in version 0.17

- Corrected typo in installer code that left out the all-important "lib"
  prefix on files installed in /usr/lib

- Fixed cvm-testclient to work with modules that accept zero credentials
  (ie unprotected lookup modules).

Development of this version has been sponsored by FutureQuest, Inc.
ossi@FutureQuest.net  http://www.FutureQuest.net/
-------------------------------------------------------------------------------
Changes in version 0.16

- Merged cvm-sasl library from bglibs into this package.

- Bug fix for SIGPIPE (on at least Solaris) if modules exit unexpectedly
  (from Lars Uffmann).

- Modified the module command mode to always write the output, even if
  authentication failed.  This allows command mode to be used with a
  UCSPI server to provide other modes of servers.

- The module library now allows for setting the ownership of the created
  local socket by setting $CVM_SOCKET_MODE, $CVM_SOCKET_OWNER, and
  $CVM_SOCKET_GROUP.

Development of this version has been sponsored by FutureQuest, Inc.
ossi@FutureQuest.net  http://www.FutureQuest.net/
-------------------------------------------------------------------------------
Changes in version 0.15

- Added a new generic module library that supports all three operation
  modes (command, local socket, UDP socket) from the same binary.  The
  separated module libraries have been retained for compatibility, but
  the separated modules have been removed from this package.

- Fixed cvm-unix to properly handle shadow passwords.

Development of this version has been sponsored by FutureQuest, Inc.
ossi@FutureQuest.net  http://www.FutureQuest.net/
-------------------------------------------------------------------------------
Changes in version 0.12

- Fixed a buffer mis-allocation bug in the getpwnam code.

- Fixed a one-off bug in the client code that parses user/domain names.

- Fixed a Solaris/SysV portability problem.

- Switched to external bglibs.

- Dropped use of non-portable fgetpwent in cvm-pwfile.

Development of this version has been sponsored by FutureQuest, Inc.
ossi@FutureQuest.net  http://www.FutureQuest.net/
-------------------------------------------------------------------------------
Changes in version 0.11

- Removed the MySQL and PgSQL modules from this package, and bundled
  them into a seperate cvm-sql package.

- Bugfix: cvm-unix did not lowercase the account name before calling
  getpwnam.

- Added some convenience functions to the client library.

Development of this version has been sponsored by FutureQuest, Inc.
ossi@FutureQuest.net  http://www.FutureQuest.net/
-------------------------------------------------------------------------------
Changes in version 0.10

- Added support to the MySQL and PgSQL modules for executing a query
  after credential validation, useful for updating a "last logged in at"
  field or similar.

- Modified the client->server protocol to include a protocol identifier
  byte (to allow for future revisions) and a domain name.

- Modified the client library to optionally parse a domain name out of
  the account name.

- Modified the MySQL and PgSQL modules to deal with domain names.

- The MySQL module will now read connection options out of a defaults
  file if specified.

NOTE:  Modules built against this version of CVM will be incompatible
with clients built against older versions, and vice versa!  Use care
when upgrading.

Development of this version has been sponsored by FutureQuest, Inc.
ossi@FutureQuest.net  http://www.FutureQuest.net/
-------------------------------------------------------------------------------
Changes in version 0.8

- Added additional error codes.

- Added a MySQL module.

- Added a PgSQL module.

- Use pwcmp for password comparisons in all modules except for cvm-unix.

- Added a required function "cvm_auth_stop" to the module API, which is
  called once at module shutdown.

- Bug fix in the cvm-unix module from Paul Jarc to make the supplemental
  group id list reported by cvm-unix actually follow the fact
  specification.

- Bug fix in the client library code that caused the shell fact to be
  required.

Development of this version has been sponsored by FutureQuest, Inc.
ossi@FutureQuest.net  http://www.FutureQuest.net/
-------------------------------------------------------------------------------
Changes in version 0.7

- Added a text-file module, cvm-pwfile.

- Modified the client and module APIs to add "cvm_" in front of all
  exported symbols.

- Added a required function "cvm_auth_init" to the module API, which is
  called once at program startup.

- Modified cvm-unix to output the group name and the supplemental group
  list.

- Fixed the APIs to use "unsigned long" for the integer type instead of
  just "unsigned".

- Fixed the client library to properly handle lists of facts.

- Fixed use of iopoll to properly support systems with a missing or broken
  poll syscall.

Note: This release doesn't make any of the protocol changes discussed in
the mailing lists.  Since those changes are fairly radical, they will go
into a second version of CVM, named either CVM2 or CVMX or something.

Development of this version has been sponsored by FutureQuest, Inc.
ossi@FutureQuest.net  http://www.FutureQuest.net/
-------------------------------------------------------------------------------
Changes in version 0.6

- Fixed some client library bugs.

- Added a benchmarking client.

- Added a checkpassword client.
-------------------------------------------------------------------------------
Changes in version 0.5

- Added support for long-running UDP and local-domain socket modules.
-------------------------------------------------------------------------------
Changes in version 0.3

- Fixed handling of negative values in client library.

- Fixed a bug in the client library that caused handling bad data to not
  indicate any error.
-------------------------------------------------------------------------------
Changes in version 0.2

- Renamed cvm_unix to cvm-unix.

- Fixed a bug in parsing in fact_uint, which incorrectly used strtol.

- Added more documentation.
-------------------------------------------------------------------------------