From: NTP Release Engineering Date: Fri, 7 Jun 2019 03:36:01 +0000 (-0700) Subject: Merge ntp-build.tal1.ntfo.org:/ntpbuild/data/master/ntp-stable/ X-Git-Tag: NTP_4_3_97~1 X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=469ad7eee4a9d199292d5c9f600eda3074511bb6;p=thirdparty%2Fntp.git Merge ntp-build.tal1.ntfo.org:/ntpbuild/data/master/ntp-stable/ into ntp-build.tal1.ntfo.org:/ntpbuild/data/newdev/ntp-dev bk: 5cf9dba1Tj4l4bPRVqFU2tCk2BA0_Q --- 469ad7eee4a9d199292d5c9f600eda3074511bb6 diff --cc ChangeLog index cf288b349,dcfa59c07..2b7363aec --- a/ChangeLog +++ b/ChangeLog @@@ -1,8 -1,108 +1,112 @@@ ++From 4.2.8p11: + --- + (4.2.8p11) 2018/02/27 Released by Harlan Stenn + + * [Sec 3454] Unauthenticated packet can reset authenticated interleave + associations. HStenn. + * [Sec 3453] Interleaved symmetric mode cannot recover from bad state. HStenn. + * [Sec 3415] Permit blocking authenticated symmetric/passive associations. + Implement ippeerlimit. HStenn, JPerlinger. + * [Sec 3414] ntpq: decodearr() can write beyond its 'buf' limits + - initial patch by , extended by + * [Sec 3412] ctl_getitem(): Don't compare names past NUL. + * [Sec 3012] Sybil vulnerability: noepeer support. HStenn, JPerlinger. + * [Bug 3457] OpenSSL FIPS mode regression + * [Bug 3455] ntpd doesn't use scope id when binding multicast + - applied patch by Sean Haugh + * [Bug 3452] PARSE driver prints uninitialized memory. + * [Bug 3450] Dubious error messages from plausibility checks in get_systime() + - removed error log caused by rounding/slew, ensured postcondition + * [Bug 3447] AES-128-CMAC (fixes) + - refactoring the MAC code, too + * [Bug 3441] Validate the assumption that AF_UNSPEC is 0. stenn@ntp.org + * [Bug 3439] When running multiple commands / hosts in ntpq... + - applied patch by ggarvey + * [Bug 3438] Negative values and values > 999 days in... + - applied patch by ggarvey (with minor mods) + * [Bug 3437] ntpd tries to open socket with AF_UNSPEC domain + - applied patch (with mods) by Miroslav Lichvar + * [Bug 3435] anchor NTP era alignment + * [Bug 3433] sntp crashes when run with -a. + * [Bug 3430] ntpq dumps core (SIGSEGV) for "keytype md2" + - fixed several issues with hash algos in ntpd, sntp, ntpq, + ntpdc and the test suites + * [Bug 3424] Trimble Thunderbolt 1024 week millenium bug + - initial patch by Daniel Pouzzner + * [Bug 3423] QNX adjtime() implementation error checking is + wrong + * [Bug 3417] ntpq ifstats packet counters can be negative + made IFSTATS counter quantities unsigned + * [Bug 3411] problem about SIGN(6) packet handling for ntp-4.2.8p10 + - raised receive buffer size to 1200 + * [Bug 3408] refclock_jjy.c: Avoid a wrong report of the coverity static + analysis tool. + * [Bug 3405] update-leap.in: general cleanup, HTTPS support. Paul McMath. + * [Bug 3404] Fix openSSL DLL usage under Windows + - fix/drop assumptions on OpenSSL libs directory layout + * [Bug 3399] NTP: linker error in 4.2.8p10 during Linux cross-compilation + - initial patch by timeflies@mail2tor.com + * [Bug 3398] tests fail with core dump + - patch contributed by Alexander Bluhm + * [Bug 3397] ctl_putstr() asserts that data fits in its buffer + rework of formatting & data transfer stuff in 'ntp_control.c' + avoids unecessary buffers and size limitations. + * [Bug 3394] Leap second deletion does not work on ntpd clients + - fixed handling of dynamic deletion w/o leap file + * [Bug 3391] ntpd segfaults on startup due to small warmup thread stack size + - increased mimimum stack size to 32kB + * [Bug 3367] Faulty LinuxPPS NMEA clock support in 4.2.8 + - reverted handling of PPS kernel consumer to 4.2.6 behavior + * [Bug 3365] Updates driver40(-ja).html and miscopt.html + * [Bug 3358] Spurious KoD log messages in .INIT. phase. HStenn. + * [Bug 3016] wrong error position reported for bad ":config pool" + - fixed location counter & ntpq output + * [Bug 2900] libntp build order problem. HStenn. + * [Bug 2878] Tests are cluttering up syslog + * [Bug 2737] Wrong phone number listed for USNO. ntp-bugs@bodosom.net, + perlinger@ntp.org + * [Bug 2557] Fix Thunderbolt init. ntp-bugs@bodosom.net, perlinger@ntp. + * [Bug 948] Trustedkey config directive leaks memory. + * Use strlcpy() to copy strings, not memcpy(). HStenn. + * Typos. HStenn. + * test_ntp_scanner_LDADD needs ntpd/ntp_io.o. HStenn. + * refclock_jjy.c: Add missing "%s" to an msyslog() call. HStenn. + * Build ntpq and libntpq.a with NTP_HARD_*FLAGS. perlinger@ntp.org + * Fix trivial warnings from 'make check'. perlinger@ntp.org + * Fix bug in the override portion of the compiler hardening macro. HStenn. + * record_raw_stats(): Log entire packet. Log writes. HStenn. + * AES-128-CMAC support. BInglis, HStenn, JPerlinger. + * sntp: tweak key file logging. HStenn. + * sntp: pkt_output(): Improve debug output. HStenn. + * update-leap: updates from Paul McMath. + * When using pkg-config, report --modversion. HStenn. + * Clean up libevent configure checks. HStenn. + * sntp: show the IP of who sent us a crypto-NAK. HStenn. + * Allow .../N to specify subnet bits for IPs in ntp.keys. HStenn, JPerlinger. + * authistrustedip() - use it in more places. HStenn, JPerlinger. + * New sysstats: sys_lamport, sys_tsrounding. HStenn. + * Update ntp.keys .../N documentation. HStenn. + * Distribute testconf.yml. HStenn. + * Add DPRINTF(2,...) lines to receive() for packet drops. HStenn. + * Rename the configuration flag fifo variables. HStenn. + * Improve saveconfig output. HStenn. + * Decode restrict flags on receive() debug output. HStenn. + * Decode interface flags on receive() debug output. HStenn. + * Warn the user if deprecated "driftfile name WanderThreshold" is used. HStenn. + * Update the documentation in ntp.conf.def . HStenn. + * restrictions() must return restrict flags and ippeerlimit. HStenn. + * Update ntpq peer documentation to describe the 'p' type. HStenn. + * Rename restrict 'flags' to 'rflags. Use an enum for the values. HStenn. + * Provide dump_restricts() for debugging. HStenn. + * Use consistent 4th arg type for [gs]etsockopt. JPerlinger. + * Some tests might need LIBM. HStenn. + * update-leap: Allow -h/--help early. HStenn. + +(4.3.96) 2019/06/06 Released by Harlan Stenn +From ntp-4.2.8p10: --- +(4.2.8p10-win-beta1) 2017/03/21 Released by Harlan Stenn - (4.2.8p10) + (4.2.8p10) 2017/03/21 Released by Harlan Stenn * [Sec 3389] NTP-01-016: Denial of Service via Malformed Config (Pentest report 01.2017) diff --cc ports/winnt/scripts/mkver.bat index 4d55d2f0a,4b0dcb8e6..f902190d6 --- a/ports/winnt/scripts/mkver.bat +++ b/ports/winnt/scripts/mkver.bat @@@ -20,10 -20,14 +20,17 @@@ see notes/remarks directly below this h # # # Changes: + # 03/03/2017 Brian Inglis + # - ensure Windows system32 from COMSPEC added to start + # of PATH in case other find commands are on PATH + # 02/20/2017 Brian Inglis + # - add support for Windows 10 (Home maybe others) rename of + # registry Time Zone info from ActiveTimeBias to Bias +# 02/18/2015 David J Taylor - 4.2.8/4.3.0 +# - change to Proto.Minor.Point +# - replace the "p" before the Point with "." - # 02/23/2011 David J Taylor - Use reg instead of regedit so "run as + # 02/23/2011 David J Taylor + # - Use reg instead of regedit so "run as # administrator" is not required. # 12/21/2009 Dave Hart # - packageinfo.sh uses prerelease= now not diff --cc scripts/update-leap/update-leap.in index bd7ed1805,abf1134c1..abf1134c1 mode 100644,100755..100644 --- a/scripts/update-leap/update-leap.in +++ b/scripts/update-leap/update-leap.in