Public bug reported:
Binary package hint: inspircd
Hello,
I request a Feature Freeze Exception for inspircd in order to sync with Debian
unstable. Inspircd has many large bugs and security holes fixed in 1.1.17.
There is also a serious packaging bug in the 1.1.15 package which prevents the
removal or upgrade of inspircd.
Some of the security and bug fixes include:
- bug #458: servers go missing on collision (functionality issue)
- when an oper is on a notify list and the oper sets +Q, then the watch list
for that user goes into an undefined state , due to the metadata not being
correctly cleared from the user in m_watch OnUserQuit (crash/security).
As this is also a sync request i'm including the Debian changelog as
well as the usual stuff. As a final note upstreams changelogs are not in
diff friendly format so i have included the entry for 1.1.17.
Regards
Matt
Upstream Changelog
The key changes are that users will now quit faster (e.g. in netsplits,
glines, etc), Windows should no longer have weird problems with "ghost"
users and high CPU use.
K|G|Z|E:Line can now also be used on a nickname - e.g. /zline w00t 1d
:foo would place an IP ban on my IP for one day.
A low risk crash with m_invisible and m_watch was also fixed.
Other miscellaneous fixes are also included, see the changelog (below)
for full details.
I'd like to thank everyone who helped with QA for their time and effort
- here's hoping the process continues to be as effective.
* Fix: trying to send out all lines in one hit is different from the way we
do users, etc - and also won't be too healthy for the socket buffer with lots
of them. This also removes a data copy, which in theory will make it
fractionally faster. Fixes bug #496 reported by Skip.
* Manually merge patch from danieldg, thanks
* Make select socketengine build on vs80
* Fix oper quit messages (needed to be set to regular quit if empty) - same
fix may apply to 1.2..?
* Backport reworked culllist from 1.2: drastically improves performance
when quitting a lot of users (e.g. on netsplit). I was originally not going to
do this for 1.1, but it seems to perform well, and I can't break it under clone
flooding - so in it goes. QA: please test this with lots of activity
(connecting, disconnecting, ping timeouts, socket errors, anything you can
throw at it)
* K|G|Z|ELine fix, from 8901
* Don't declare a dupe InspIRCd *
* Set FD_SETSIZE to 12000, this allows 12000 users per ircd rather than 64.
I doubt select can scale this high, but 64 is rediculous.
* Commit stuff from fez that he couldnt get committed - fixes to make
socketengine-select work in windows (should be more stable than iocp as the api
is known to us unix devs)
* Rewrite nick targeted bans to [EMAIL PROTECTED] or IP bans where
necessary. I don't know why this didn't happen already.
* Backport r8866: make K|G|Z|ELine actually work with a nickname target
(code was there but not functional)
* Backport low risk memory leak fix to m_cgiirc (r8852)
* MODEACTION_ALLOW was being used instead of DENY, fixes bug #490
* Probably fix a crash in randquote (it does for me)
* Backport r8810: minor FTOPIC desync fix
* Backport r8786 from dz: closes bug #391
* Merge in patches to fix bug #487, submitted by dz, thanks
* Update SAMODE
* Apply patch from bug #484 written by John. In 1.1 this applies without
modification, thanks
* Check that exec() macros havent failed before commencing build
* Backport: Fix for bug found by eLement, when an oper is on a notify list
and the oper sets +Q, then the watch list for that user goes into an undefined
state , due to the metadata not being correctly cleared from the user in
m_watch OnUserQuit. Thanks
Debian Changelog:
inspircd (1.1.17+dfsg-1) unstable; urgency=low
[ Darren Blaber ]
* New upstream release, fix /etc/init.d/inspircd stop.
* Fix the postrm script so there is no duplicate update-rc.d
* Fix the manpage so there are no more errors in it
[ Matt Arnold ]
* Fix prerm so it works (Closes: #466924)
[ Giacomo Catenazzi ]
* Added me as uploader
* Add again support of dpatch in debian/rules
* Build sources only once!
* Correct make clean target, not to include generated ./inspircd on sources
* Don't change permission of configuration files, when starting inspircd
(separation of policy and program).
-- Giacomo Catenazzi <[EMAIL PROTECTED]> Thu, 06 Mar 2008 07:56:47 +0100
** Affects: inspircd (Ubuntu)
Importance: Undecided
Status: New
--
FreezeException request-- Sync with Debian unstable
https://bugs.launchpad.net/bugs/201941
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
