������rsync-3.2.7-150600.3.8.1��������������������������������������������������������������������������<���>�������,���������������������������������������������������������gMp9|����z�e�=4�M5�_}9q~+-�
EZP8]�شu蜄q+�H)y�!%#�Y0ZU?D �~o�\�
kcN풢{+5c2u/v~'A7�9A|c�<O�|!5|&`j�E���W�n�BsHן�N*(�M~g�֫9z8�~�@�0`C?O=>6�p��ov[\1��'�na�|�!O���>��������������������I��|���?������|�������d��������������������������������������������������������������� �������������� ���M�������������������������������������������������������������������������������������������������������������� ���-��������������K��������������d��������������j��������������r����������������������������� ����������������������������������,��������������,��� �������$���,���
�������|���,�����������,���,�����������X���,���
����������,�����������<���,���������������,������������������������������,�����������������������������������������d��������������!�������(������" �������8������"(���3���9������"���3���:������&���3���=������p�������>������p�������?������p�������@������p�������F������p�������G������q����,���H������q���,���I������rt���,���X������r�������Y������r�������\������r���,���]������s���,���^������u�������b������v�������c������wA�������d������w�������e������w�������f������w�������l������w�������u������w���,���v������x�������w������z���,���x������{l���,���y������|��������z������|l�������������||�������������|�������������|�������������|�������������|�������������|�������������|����C�rsync�3.2.7�150600.3.8.1�Versatile tool for fast incremental file transfer�Rsync is a fast and extraordinarily versatile file copying tool. It can copy
locally, to/from another host over any remote shell, or to/from a remote rsync
daemon. It offers a large number of options that control every aspect of its
behavior and permit very flexible specification of the set of files to be
copied. It is famous for its delta-transfer algorithm, which reduces the amount
of data sent over the network by sending only the differences between the
source files and the existing files in the destination. Rsync is widely used
for backups and mirroring and as an improved copy command for everyday use.����gMh04-armsrv1����SUSE Linux Enterprise 15�SUSE LLC �GPL-3.0-or-later�https://www.suse.com/�Productivity/Networking/Other�https://rsync.samba.org/�linux�aarch64�
if [ -x /usr/bin/systemctl ]; then
test -n "$FIRST_ARG" || FIRST_ARG="$1"
[ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || :
for service in rsyncd.service ; do
sysv_service=${service%.*}
if [ ! -e /usr/lib/systemd/system/$service ] &&
[ ! -e /etc/init.d/$sysv_service ]; then
mkdir -p /run/systemd/rpm/needs-preset
touch /run/systemd/rpm/needs-preset/$service
elif [ -e /etc/init.d/$sysv_service ] &&
[ ! -e /var/lib/systemd/migrated/$sysv_service ]; then
/usr/sbin/systemd-sysv-convert --save $sysv_service || :
mkdir -p /run/systemd/rpm/needs-sysv-convert
touch /run/systemd/rpm/needs-sysv-convert/$service
fi
done
fi�
if [ -x /usr/bin/systemctl ]; then
test -n "$FIRST_ARG" || FIRST_ARG="$1"
[ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || :
if [ "$YAST_IS_RUNNING" != "instsys" ]; then
/usr/bin/systemctl daemon-reload || :
fi
for service in rsyncd.service ; do
sysv_service=${service%.*}
if [ -e /run/systemd/rpm/needs-preset/$service ]; then
/usr/bin/systemctl preset $service || :
rm "/run/systemd/rpm/needs-preset/$service" || :
elif [ -e /run/systemd/rpm/needs-sysv-convert/$service ]; then
/usr/sbin/systemd-sysv-convert --apply $sysv_service || :
rm "/run/systemd/rpm/needs-sysv-convert/$service" || :
touch /var/lib/systemd/migrated/$sysv_service || :
fi
done
fi�
test -n "$FIRST_ARG" || FIRST_ARG="$1"
if [ "$FIRST_ARG" -eq 0 -a -x /usr/bin/systemctl ]; then
# Package removal, not upgrade
/usr/bin/systemctl --no-reload disable rsyncd.service || :
(
test "$YAST_IS_RUNNING" = instsys && exit 0
test -f /etc/sysconfig/services -a \
-z "$DISABLE_STOP_ON_REMOVAL" && . /etc/sysconfig/services
test "$DISABLE_STOP_ON_REMOVAL" = yes -o \
"$DISABLE_STOP_ON_REMOVAL" = 1 && exit 0
/usr/bin/systemctl stop rsyncd.service
) || :
fi�
test -n "$FIRST_ARG" || FIRST_ARG="$1"
if [ $1 -eq 0 ]; then
# Package removal
for service in rsyncd.service ; do
sysv_service="${service%.*}"
rm -f "/var/lib/systemd/migrated/$sysv_service" || :
done
fi
if [ -x /usr/bin/systemctl ]; then
/usr/bin/systemctl daemon-reload || :
fi
if [ "$FIRST_ARG" -ge 1 ]; then
# Package upgrade, not uninstall
if [ -x /usr/bin/systemctl ]; then
(
test "$YAST_IS_RUNNING" = instsys && exit 0
test -f /etc/sysconfig/services -a \
-z "$DISABLE_RESTART_ON_UPDATE" && . /etc/sysconfig/services
test "$DISABLE_RESTART_ON_UPDATE" = yes -o \
"$DISABLE_RESTART_ON_UPDATE" = 1 && exit 0
/usr/bin/systemctl try-restart rsyncd.service
) || :
fi
fi����������R������G������!���8�������������������,����������P���F���������H�������>��
��
���P�������T���y���q���8��
9�����1_������Q������!�����9S������������u��P�큤A큤A큤A큤����������������������������������������������������������������������������������������g�g�g�g�g�g�g�g�g�g�g�gMcQrb?8;cQrA�a�^q^q^q^qbTO^qcQ^qao!a[^q^q^qa"_+bc�|a�Ma�M^qEB(6XgMaQ �g�g�g�2b23c79a944a91d6a759bedcd5a6caac09af49231642d7081f7f53b8a98a4ddd�9f8bc6d4c4850de792fd91c10336d4cedf930148d326b1c6166ea6b32902f779�88effba41a7fc1038f4f9698215fd0f153276ffd3ee0290b9fe72b5b89d96d70�fa941e47ed0cb40f8c4865b54b2f835607a10506e349156be7f26e5edff0dffe�b25e002f448246d7271adb0d9e72281e33aa822b07afff4c96c476d79fe1fc80�2dee595625bc9c8adc0059a930ff337a343804301d895cf0beaeb341eb73ba18�670f510aca69036fb81feb6a97fb3d84000fd7c3b33493b100ace39ca20e4561�4007292da2af4ef8c8d7891cf667d83b8b33090955a87d10a38e6cf6f4f35d2e�1d15a0f645dcff7ce4d2c1841bea633a09ab5393e829b21f75c09a78248c99a7��59e012f5d2e611e520ab658d4b2d25caaa53d3c1bb675d393039fdb30e6669e4��b69afcd7778c58096d638dce98880587a0de398029fd740c832043ed84510529�228f82cd200891183e260a8dc72b0c12b4e1c6b7f89761cb5583606de0d9f7f5��d79e65fb53fbb8933360a9604dbe0d0bc3d5f0b3990d382e6855e4cb997c03cc�e10e5958f709484242ed3e2dd090956bd1f9b6dc15c93face624722eafe357e5�b8d12ee2e30a44d15c9ad5c1025c097f7c78f62db32267884e0a434dfea701f6�4a8148d2b4f75848e7bc7bf71c64c62fd37175e0fbe4850f2eabe6c2822e9dad�53f93f4bd2cfe4a9e35814d6071c998bc97d370d7a04af5d9639bd4328759046�3d66b47a811db453464341a6150b5f75a9319a9a6bf475122a6d158bfda84992�1d9683b03c10b3639654ceaac106277fbba763bd996209f312dec847f59894c9�96264d08b18356ca98fbbab92ad05a8d32bb71436731f1e6a6374344ecb999fe�21bb9d3d2cc8b113fd8b5d25dc721cf64175f55106e0024992a262e7dda0a8d3�456fad82b56e4afa0d708d6aefa31d7db6ab4d58a97f8fa52e90e1210b4e6e00�5886d1e0c1ae4232f213c05b29dd24bea7e4cef713fde7fc1f49cb393f7ec2f2�99a448de8200a76b5af57d61518b4992097f952aca08c70fa93b0c74b5937623�cce4375b5cf48bc74c5289849eb98c12b0d8b21b179dfb4bb0eb324c8a8c448c�24427a41c751e2682934a447b4729ec48dbabc454910ba33649212fa09e8a939�9703ae9fdd20175a2875caaf87f2c6e75a1643496fde4ea4801957388a00476e�2a387e54959e9942fbdc2bc3824ff22592e73fbe494ccd8b89c5387266470af7�a90aba06776553c13a61ed4680fc25e275a5345a71c6144109e00243ed6c9eb8�cb46c1bf89c25e1193eb16e9201405bc0e39d2c2d03bff42d3cee86ef15e3050�f808492fbbbcac078252c5ca18b8093507dc11135f40bfde1ff82b5ad158c778�1dbbc370ebe15955a0c20cbd1e113ee1908f182816c8af864a712fab8cd29ae0�c81f71fe753ed7be279f76ecb006a1acaa96704e4bebbba5654345bb1aa36445�2dee595625bc9c8adc0059a930ff337a343804301d895cf0beaeb341eb73ba18�f8ca799f25dea134d6945c1438228c92e356c25d69b26182640f139f63165d08�a93be19bcd9bbff81fea958f0aba800c8d319784e2d2f16e80e5384d4fa09a9d��85c19ea50a224c2d0067a69c083584e5717b40b76610ec1218f91385775067dd�74bfa2f396741a189b243d9a6b32c2fab5a90efb47fb422b6cf2ed3df4d14bc5�d6e65287dc5b20aee7e084fbdcf382f5ede9f8523c4ca287f8f901998ebf0464�b2d814ac3fa4a2dd8741d10876968b85bf455ac1a05ce5d702db58535867b83d����������service�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�root�rsync-3.2.7-150600.3.8.1.src.rpm����config(rsync)�rsync�rsync(aarch-64)����������� �������@���@�����������@���@���@���@���@���@���@���@���@���@���@���@���@���@���@���@���@����
���
���
���
����/bin/sh�/bin/sh�/bin/sh�/bin/sh�/bin/sh�/usr/bin/env�config(rsync)�grep�ld-linux-aarch64.so.1()(64bit)�ld-linux-aarch64.so.1(GLIBC_2.17)(64bit)�libacl.so.1()(64bit)�libacl.so.1(ACL_1.0)(64bit)�libc.so.6()(64bit)�libc.so.6(GLIBC_2.17)(64bit)�libc.so.6(GLIBC_2.33)(64bit)�libc.so.6(GLIBC_2.34)(64bit)�libc.so.6(GLIBC_2.38)(64bit)�libcrypto.so.3()(64bit)�libcrypto.so.3(OPENSSL_3.0.0)(64bit)�liblz4.so.1()(64bit)�libpopt.so.0()(64bit)�libpopt.so.0(LIBPOPT_0)(64bit)�libslp.so.1()(64bit)�libz.so.1()(64bit)�libzstd.so.1()(64bit)�rpmlib(CompressedFileNames)�rpmlib(FileDigests)�rpmlib(PayloadFilesHavePrefix)�rpmlib(PayloadIsXz)�sed�������3.2.7-150600.3.8.1�������������������3.0.4-1�4.6.0-1�4.0-1�5.2-1��4.14.3��g@g@gZ@e_>didid�@d�@d
d.@cRcQ8@c>@c!@c��@c�*c�bb@bba@b^@a@aZ_R,@_-B@_*@_*@_�c]'$\r@\@[E@ZlZo�Z`@ZTZ�OYw2Yu@Yu@Yg`YA%@V�V� @V�UT@TfTeTCangel.yankov@suse.com�angel.yankov@suse.com�angel.yankov@suse.com�david.anes@suse.com�david.anes@suse.com�kukuk@suse.com�dmueller@suse.com�fvogt@suse.com�antonio.teixeira@suse.com�jsegitz@suse.com�michael@stroeder.com�david.anes@suse.com�david.anes@suse.com�david.anes@suse.com�dmueller@suse.com�bwiedemann@suse.com�schubi@suse.com�david.anes@suse.com�david.anes@suse.com�schubi@suse.com�schubi@suse.de�david.anes@suse.com�jsegitz@suse.com�pmonreal@suse.com�pmonreal@suse.com�idonmez@suse.com�idonmez@suse.com�idonmez@suse.com�idonmez@suse.com�antoine.belvire@opensuse.org�pmonrealgonzalez@suse.com�matwey.kornilov@gmail.com�kukuk@suse.de�kukuk@suse.de�pmonrealgonzalez@suse.com�pmonrealgonzalez@suse.com�pmonrealgonzalez@suse.com�pmonrealgonzalez@suse.com�tchvatal@suse.com�tchvatal@suse.com�tchvatal@suse.com�tchvatal@suse.com�tchvatal@suse.com�hsk@imb-jena.de�vcizek@suse.com�vcizek@suse.com�vcizek@suse.com�crrodriguez@opensuse.org�vcizek@suse.com�dimstar@opensuse.org�p.drouand@gmail.com�- Fix duplication of flag causing illegal hashkey failures.
* Added rsync-fix-duplicate.patch�- Security update,CVE-2024-12747, bsc#1235475 race condition in handling symbolic links
* Added rsync-CVE-2024-12747.patch�- Security update, fix multiple vulnerabilities:
* CVE-2024-12084, bsc#1234100 - Heap Buffer Overflow in Checksum Parsing
* CVE-2024-12085, bsc#1234101 - Info Leak via uninitialized Stack contents defeats ASLR
* CVE-2024-12086, bsc#1234102 - Server leaks arbitrary client files
* CVE-2024-12087, bsc#1234103 - Server can make client write files outside of destination directory using symbolic links
* CVE-2024-12088, bsc#1234104 - --safe-links Bypass
* Added rsync-CVE-2024-12084-overflow-01.patch
* Added rsync-CVE-2024-12084-overflow-02.patch
* Added rsync-CVE-2024-12085.patch
* Added rsync-CVE-2024-12086_01.patch
* Added rsync-CVE-2024-12086_02.patch
* Added rsync-CVE-2024-12086_03.patch
* Added rsync-CVE-2024-12086_04.patch
* Added rsync-CVE-2024-12087_01.patch
* Added rsync-CVE-2024-12087_02.patch
* Added rsync-CVE-2024-12088.patch�- Update to latest version from Factory (3.2.7)
- Deleted the following patches, already included in that version:
- rsync-CVE-2020-14387.patch
- rsync-CVE-2022-29154-trust-sender-1.patch
- rsync-CVE-2022-29154-trust-sender-2.patch
- rsync-CVE-2022-29154.patch
- rsync-fix-delay-updates-never-updates-after-interruption.patch�- Rename patch to follow naming patch policies:
fortified-strlcpy-fix.patch -> rsync-fortified-strlcpy-fix.patch�- Use "slp" for bcond, not "openslp", like we use for all other
packages, too.
- Disable slp patch and configure option if bcond slp is disabled.�- add fortified-strlcpy-fix.patch (bsc#1214616, bsc#1214249)�- Disable openslp support on new distros (bsc#1214884)�- Add support directory to %docdir.
Includes some upstream provided scripts such as rrsync. (bsc#1212198)�- Switch rsyncd symlink to a wrapper script to allow setting a distinct
SELinux type (bsc#1209654)�- New version fixes bug (boo#1203727): implicit containing directory
sometimes rejected as unrequested
- update to 3.2.7
* BUG FIXES:
- Fixed the client-side validating of the remote sender's filtering behavior.
- More fixes for the "unrequested file-list name" name, including a copy of
"/" with `--relative` enabled and a copy with a lot of related paths with
`--relative` enabled (often derived from a `--files-from` list).
- When rsync gets an unpack error on an ACL, mention the filename.
- Avoid over-setting sanitize_paths when a daemon is serving "/" (even if
"use chroot" is false).
* ENHANCEMENTS:
- Added negotiated daemon-auth support that allows a stronger checksum digest
to be used to validate a user's login to the daemon. Added SHA512, SHA256,
and SHA1 digests to MD5 & MD4. These new digests are at the highest priority
in the new daemon-auth negotiation list.
- Added support for the SHA1 digest in file checksums. While this tends to be
overkill, it is available if someone really needs it. This overly-long
checksum is at the lowest priority in the normal checksum negotiation list.
See [`--checksum-choice`](rsync.1#opt) (`--cc`) and the `RSYNC_CHECKSUM_LIST`
environment var for how to customize this.
- Improved the xattr hash table to use a 64-bit key without slowing down the
key's computation. This should make extra sure that a hash collision doesn't
happen.
- If the `--version` option is repeated (e.g. `-VV`) then the information is
output in a (still readable) JSON format. Client side only.
- The script `support/json-rsync-version` is available to get the JSON style
version output from any rsync. The script accepts either text on stdin
* *or** an arg that specifies an rsync executable to run with a doubled
`--version` option. If the text we get isn't already in JSON format, it is
converted. Newer rsync versions will provide more complete json info than
older rsync versions. Various tweaks are made to keep the flag names
consistent across versions.
- The [`use chroot`](rsyncd.conf.5#) daemon parameter now defaults to "unset"
so that rsync can use chroot when it works and a sanitized copy when chroot
is not supported (e.g., for a non-root daemon). Explicitly setting the
parameter to true or false (on or off) behaves the same way as before.
- The `--fuzzy` option was optimized a bit to try to cut down on the amount of
computations when considering a big pool of files. The simple heuristic from
Kenneth Finnegan resuled in about a 2x speedup.
- If rsync is forced to use protocol 29 or before (perhaps due to talking to an
rsync before 3.0.0), the modify time of a file is limited to 4-bytes. Rsync
now interprets this value as an unsigned integer so that a current year past
2038 can continue to be represented. This does mean that years prior to 1970
cannot be represented in an older protocol, but this trade-off seems like the
right choice given that (1) 2038 is very rapidly approaching, and (2) newer
protocols support a much wider range of old and new dates.
- The rsync client now treats an empty destination arg as an error, just like
it does for an empty source arg. This doesn't affect a `host:` arg (which is
treated the same as `host:.`) since the arg is not completely empty. The use
of [`--old-args`](rsync.1#opt) (including via `RSYNC_OLD_ARGS`) allows the
prior behavior of treating an empty destination arg as a ".".
* PACKAGING RELATED:
- The checksum code now uses openssl's EVP methods, which gets rid of various
deprecation warnings and makes it easy to support more digest methods. On
newer systems, the MD4 digest is marked as legacy in the openssl code, which
makes openssl refuse to support it via EVP. You can choose to ignore this
and allow rsync's MD4 code to be used for older rsync connections (when
talking to an rsync prior to 3.0.0) or you can choose to configure rsync to
tell openssl to enable legacy algorithms (see below).
- A simple openssl config file is supplied that can be installed for rsync to
use. If you install packaging/openssl-rsync.cnf to a public spot (such as
`/etc/ssl/openssl-rsync.cnf`) and then run configure with the option
`--with-openssl-conf=/path/name.cnf`, this will cause rsync to export the
configured path in the OPENSSL_CONF environment variable (when the variable
is not already set). This will enable openssl's MD4 code for rsync to use.
- The packager may wish to include an explicit "use chroot = true" in the top
section of their supplied /etc/rsyncd.conf file if the daemon is being
installed to run as the root user (though rsync should behave the same even
with the value unset, a little extra paranoia doesn't hurt).
- I've noticed that some packagers haven't installed support/nameconvert for
users to use in their chrooted rsync configs. Even if it is not installed
as an executable script (to avoid a python3 dependency) it would be good to
install it with the other rsync-related support scripts.
- It would be good to add support/json-rsync-version to the list of installed
support scripts.�- Fix --delay-updates never updates after interruption [bsc#1204538]
* Added patch rsync-fix-delay-updates-never-updates-after-interruption.patch�- Add support for --trust-sender parameter (patch by Jie Gong in
bsc#1202970). (related to CVE-2022-29154, bsc#1201840)
* Added patch rsync-CVE-2022-29154-trust-sender-1.patch
* Added patch rsync-CVE-2022-29154-trust-sender-2.patch�- Use bundled SLP patch now that upstream fixed it:
* Remove rsync-3.2.5-slp.patch�- update to 3.2.6:
* More path-cleaning improvements in the file-list validation code to avoid
rejecting of valid args.
* A file-list validation fix for a --files-from file that ends without a
line-terminating character.
* Added a safety check that prevents the sender from removing destination
files when a local copy using --remove-source-files has some files that are
shared between the sending & receiving hierarchies, including the case
where the source dir & destination dir are identical.
* Fixed a bug in the internal MD4 checksum code that could cause the digest
to be sporadically incorrect (the openssl version was/is fine).
* A minor tweak to rrsync added "copy-devices" to the list of known args, but
left it disabled by default.�- Build SLE version with g++-11
to work around nondeterministic g++-7 (boo#1193895)�- Migration to /usr/etc: Saving user changed configuration files
in /etc and restoring them while an RPM update.�- Add upstream patch rsync-3.2.5-slp.patch, as the one included in
the released tarball doesn't fully apply.
- Drop patch rsync-CVE-2022-29154.patch, already included upstream.
- Update to 3.2.5
* SECURITY FIXES:
- Added some file-list safety checking that helps to ensure that a rogue
sending rsync can't add unrequested top-level names and/or include recursive
names that should have been excluded by the sender. These extra safety
checks only require the receiver rsync to be updated. When dealing with an
untrusted sending host, it is safest to copy into a dedicated destination
directory for the remote content (i.e. don't copy into a destination
directory that contains files that aren't from the remote host unless you
trust the remote host). Fixes CVE-2022-29154.
- A fix for CVE-2022-37434 in the bundled zlib (buffer overflow issue).
* BUG FIXES:
- Fixed the handling of filenames specified with backslash-quoted wildcards
when the default remote-arg-escaping is enabled.
- Fixed the configure check for signed char that was causing a host that
defaults to unsigned characters to generate bogus rolling checksums. This
made rsync send mostly literal data for a copy instead of finding matching
data in the receiver's basis file (for a file that contains high-bit
characters).
- Lots of manpage improvements, including an attempt to better describe how
include/exclude filters work.
- If rsync is compiled with an xxhash 0.8 library and then moved to a system
with a dynamically linked xxhash 0.7 library, we now detect this and disable
the XX3 hashes (since these routines didn't stabilize until 0.8).
* ENHANCEMENTS:
- The [`--trust-sender`](rsync.1#opt) option was added as a way to bypass the
extra file-list safety checking (should that be required).
* PACKAGING RELATED:
- A note to those wanting to patch older rsync versions: the changes in this
release requires the quoted argument change from 3.2.4. Then, you'll want
every single code change from 3.2.5 since there is no fluff in this release.
- The build date that goes into the manpages is now based on the developer's
release date, not on the build's local-timezone interpretation of the date.
* DEVELOPER RELATED:
- Configure now defaults GETGROUPS_T to gid_t when cross compiling.
- Configure now looks for the bsd/string.h include file in order to fix the
build on a host that has strlcpy() in the main libc but not defined in the
main string.h file.�- Security fix: [bsc#1201840, CVE-2022-29154]
* arbitrary file write vulnerability via do_server_recv function
* Added patch rsync-CVE-2022-29154.patch�- Removed %config flag for files in /usr directory.�- Moved logrotate files from user specific directory /etc/logrotate.d
to vendor specific directory /usr/etc/logrotate.d.�- Update to 3.2.4
* A new form of arg protection was added that works similarly to
the older `--protect-args` (`-s`) option but in a way that
avoids breaking things like rrsync.
* A long-standing bug was preventing rsync from figuring out the
current locale's decimal point character, which made rsync
always output numbers using the "C" locale.
* Too many changes to list, see included NEWS.md file.
- Drop rsync-CVE-2020-14387.patch, already included upstream.�- Added hardening to systemd service(s) (bsc#1181400). Modified:
* rsyncd.service�- Update to 3.2.3 in SLE-15-SP4 [jsc#SLE-21252]
* Rebase rsync-no-libattr.patch�- Security fix: [bsc#1176160, CVE-2020-14387]
* rsync-ssl: Verify the hostname in the certificate when using openssl.
- Add rsync-CVE-2020-14387.patch�- Updated to version 3.2.3
* Fixes a memory usage regression introduced in 3.2.2
* Too many changes to list, see included NEWS.md file.
- acls.diff, time-limit.diff and xattrs.diff are now upstream.
- Drop rsync-add_back_use_slp_directive.patch, included in upstream
slp.diff�- Add BR on c++_compiler needed for SIMD support
- Add --enable-simd configure option on x86_64�- Change BR on xxhash-devel to pkgconfig(libxxhash) and depend
on xxhash >= 0.8.0 since this is needed for XXH3
- Use xxhash only on suse_version >= 1550 since xxhash 0.8.0 is not
available elsewhere.�- Updated to version 3.2.2
* Too many changes to list, see included NEWS.md file.
- Add BR on pkgconfig(openssl), rsync now uses openssl for MD4/MD5
- Add BR on libzstd-devel and liblz4-devel to enable lz4 and zstd
compression support.
- Add BR on xxhash-devel to enable xxhash checksum support.
- Refresh rsync-add_back_use_slp_directive.patch
- Drop rsync-both-compressions.patch, rsync-send_error_to_sender.patch,
rsync-avoid-uploading-after-error.patch,
rsync-fix-prealloc-to-keep-file-size-0-when-possible.patch:
Fixed upstream.�- Remove SuSEfirewall2 service since SuSEfirewall2 has been
replaced by firewalld (which already provides a rsyncd service).�- Fixed bug numbers in spec file�- Add patch: rsync-fix-prealloc-to-keep-file-size-0-when-possible.patch (boo#1108562)�- Don't require systemd explicit, spec file can handle both cases
correct and in containers we don't have systemd [bsc#1100786].�- Use %license instead of %doc [bsc#1082318]�- Update to version 3.1.3 [bsc#1076503]:
Protocol: 31 (unchanged)
- SECURITY FIXES:
* Fixed a buffer overrun in the protocol's handling of xattr names and
ensure that the received name is null terminated.
* Fix an issue with --protect-args where the user could specify the arg
in the protected-arg list and short-circuit some of the arg-sanitizing
code.
- BUG FIXES:
* Don't output about a new backup dir without appropriate info verbosity.
* Fixed some issues with the sort functions in support/rsyncstats script.
* Added a way to specify daemon config lists (e.g. users, groups, etc)
* that contain spaces (see "auth users" in the latest rsyncd.conf manpage).
* If a backup fails (e.g. full disk) rsync exits with an error.
* Fixed a problem with a doubled --fuzzy option combined with --link-dest.
* Avoid invalid output in the summary if either the start or end time had
an error.
* We don't allow a popt alias to affect the --daemon or --server options.
* Fix daemon exclude code to disallow attribute changes in addition to
disallowing transfers.
* Don't force nanoseconds to match if a non-transferred, non-checksummed
file only passed the quick-check w/o comparing nanosecods.
- ENHANCEMENTS:
* Added the ability for rsync to compare nanosecond times in its
file-check
comparisons, and added support nanosecond times on Mac OS X.
* Added a short-option (-@) for --modify-window.
* Added the --checksum-choice=NAME[,NAME] option to choose the checksum
algorithms.
* Added hashing of xattr names (with using -X) to improve the handling of
files with large numbers of xattrs.
* Added a way to filter xattr names using include/exclude/filter rules
(see the --xattrs option in the manpage for details).
* Added "daemon chroot|uid|gid" to the daemon config (in addition to the
old chroot|uid|gid settings that affect the daemon's transfer process).
* Added "syslog tag" to the daemon configuration.
* Some manpage improvements.
- DEVELOPER RELATED:
* Tweak the "make" output when yodl isn't around to create the man pages.
* Changed an obsolete autoconf compile macro.
* Support newer yodl versions when converting man pages.
- Dropped patches fixed upstream:
* rsync-CVE-2017-16548.patch
* rsync-3.1.2-CVE-2018-5764.patch
- Refreshed patches:
* rsync-send_error_to_sender.patch�- Security fix: Ignore --protect-args when already sent by client
[bsc#1076503, CVE-2018-5764]
* Added patch rsync-3.1.2-CVE-2018-5764.patch�- Fix: Stop file upload after errors [bsc#1062063]
- Added patches:
* rsync-send_error_to_sender.patch
* rsync-avoid-uploading-after-error.patch�- Security fix [bsc#1066644, CVE-2017-16548]
* Missing trailing '\0' character check could lead to remote DoS
* Added rsync-CVE-2017-16548.patch�- Try more in supporting all scenarios bsc#1046197#c24
* rsync-both-compressions.patch�- Execute tests to ensure the basics are still working�- Refresh patch rsync-both-compressions.patch to include
fix when using old-compress on new zlib on server too�- Add patch to build with both bundled and external zlib to support
both compression methods at once bsc#1046197:
* rsync-both-compressions.patch�- We no longer need to inject the pid in post as we do not use
the iniscript relying on it
- Add socket activation service instead of the xinetd service
- Verify in services the configuration to run actually exist
- Drop sle11 support as it does not autoreconf anymore
- Drop patch system-zlib.diff that was never applied
- Switch to system popt and zlib:
* This should not cause issues now because upstream states the
underlying issue why we used the bundled one was fixed by
using more safeguarded error detection�- update to 3.1.2
- drop patches rsync-CVE-2014-9512.patch,
rsync-equivalent_of_CVE-2014-8242.patch (applied upstream)�- better disable slp by default, it doesn't seem to be used much
and it often caused problems (eg boo#898513, bsc#922710)
* set "use slp" in rsyncd.conf to enable
* modified rsync-add_back_use_slp_directive.patch�- add a compatibility flag to avoid checksum collisions (bsc#900914)
* fixes rsync equivalent of librsync's CVE-2014-8242
* added rsync-equivalent_of_CVE-2014-8242.patch
- modify rsync-add_back_use_slp_directive.patch�- reintroduce "use slp" directive (bsc#922710)
* added rsync-add_back_use_slp_directive.patch�- rsync-no-libattr.patch: Use AC_SEARCH_LIBS([getxattr], [attr])
instead of AC_CHECK_LIB(attr,getxattr) so libattr is
not injected as a dependency when glibc is enough since
several years to use getxattr.�- fix for CVE-2014-9512 (bnc#915410)
* path spoofing attack vulnerability
* added rsync-CVE-2014-9512.patch�- No longer perform gpg validation; osc source_validator does it
implicit:
+ Drop gpg-offline BuildRequires.
+ No longer execute gpg_verify.�- Do not depend on insserv if the system supports systemd; it's
useless�/bin/sh�/bin/sh�/bin/sh�/bin/sh�h04-armsrv1 1736960589���������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������� ���
�����������
��������������������������������������������������������������������������� ���!���"���#���$���%���&���'���(���)���*���+���,��������������������������������������������������������3.2.7-150600.3.8.1�3.2.7-150600.3.8.1�3.2.7-150600.3.8.1����������������������������������������������������������������������������������������������������������������������������������������������������������������������� ���
���
����rsync�rsyncd.conf�rsyncd.secrets�rsync�rsync-ssl�rsyncstats�rsyncd.service�rsyncd.socket�rsyncd@.service�rcrsyncd�rsyncd�rsync�NEWS.md�README.md�support�Makefile�atomic-rsync�cvs2includes�deny-rsync�file-attr-restore�files-to-excludes�git-set-file-times�instant-rsyncd�json-rsync-version�logfilter�lsh�lsh.sh�mapfrom�mapto�mnt-excl�munge-symlinks�nameconvert�rrsync�rrsync.1.md�rsync-no-vanished�rsync-slash-strip�rsyncstats�savetransfer.c�tech_report.tex�rsync�COPYING�rsync-ssl.1.gz�rsync.1.gz�rsyncd.conf.5.gz�/etc/logrotate.d/�/etc/�/usr/bin/�/usr/lib/systemd/system/�/usr/sbin/�/usr/share/doc/packages/�/usr/share/doc/packages/rsync/�/usr/share/doc/packages/rsync/support/�/usr/share/licenses/�/usr/share/licenses/rsync/�/usr/share/man/man1/�/usr/share/man/man5/�-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -g�obs://build.suse.de/SUSE:Maintenance:37073/SUSE_SLE-15-SP6_Update/7577571d7449b5f046908c6322f0c4e2-rsync.SUSE_SLE-15-SP6_Update�drpm�xz�5�aarch64-suse-linux���������������������������������������������������������������������������������������������������������������������������������������������������������� ���
��������������������ASCII text�ELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, interpreter /lib/ld-linux-aarch64.so.1, for GNU/Linux 3.7.0, BuildID[sha1]=4fb27ef1112410d648b068395d707d76549b85f1, stripped�Bourne-Again shell script, ASCII text executable�Perl script text executable��POSIX shell script, ASCII text executable�directory�makefile script, ASCII text�Python script, ASCII text executable�C source, ASCII text�LaTeX 2e document, ASCII text�troff or preprocessor input, ASCII text (gzip compressed data, max compression, from Unix)������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������R���R�� R���R���R���R���R���R��
R��
R���R���R���R���R���R���R���R���R���R���R���ā&s|��t����logrotate�������utf-8�8a0720603dabbde9484ff3354b83040b007e382414bb1fdc3bb659091ae756fd���������?����p����7zXZ��
���!�����t/J�9�]�"��k%n��}·Ĩ���8�Q\��q��H˘Ѓ)#r.kV7�8y@VfUҕiT{(4_sI 2�c�*;�e�0 ]�SsjBkmr5Z?)�S�@��귖=Gm1s�b{�J~8δ�c\|��J>?�M��&fY��
b,ugݿG:}DFφ%�]<&#?2�E��+l�D9^��ye(A4néX��e"(+Cɸ{
\*�Ջx -�+ �XW�!ڒ|z8b!^R! y[DG�Gs��T95j˄=J���Lv8sx+A�0)��A
=�Hځd�C]�HcU�AU��o}c� DK8*(x6 �ۅ<�9+&|��AI�i5zse��1,=˅|�.:g�>@���S��~e
*
3;�z?O�-�зI�UV�����Xk�'�V|�FL�rC܀ҡk
*ruoy��p�E_6OZ�gT<�(?�W�VOC�@R u)7V YuZT� gY.�Q]&?܌fEt�_L
JkT"0�yoXpL�9�uHP�StPٺ~��p7�/�܋͢�xz
�Vy�b`nZRm�Vg/Gj<��f#Dj�Rd�ht9��;~�x!=m ����OQXUN���T{xa͡��?ΞP;k�w[aYz(Z[r�)��Ƨ9_�%皪0�R!};)0so0�@?�k@�?#W�J-DY#M]o�nTI( ?0�d2j,"� xPY�/f)
:^�hf�\�ݳ!il$t$P/dq��㴎 *!�R{,%[paeۢ~0�d���HD㦳]�hdÓtCq09�ĜE�Rz�
}
ŻVW$dD#j�p7rv�vdüūy�'t3b�)M[�^tՌ�ɗa鴴 I]|9|L�#hc>}lU�O]g�&Mu�W{s!Tט�1�}&uR/g#^{eK)2X!Y|�rnEw.W�@T)�#L�X�cǦhR�c�̅Wf-WwU�٧ꖳS<"JhڐBqC>}%�À�h�\`�]E394_�TfiS����qZ;OYo7[(gP�0|uÅV"'_9i�?)|Y+94[mrt0n���.Р̘pig��q�$�O¦3{a]9m��5�w,;��~F(
;FEhxOS1x)<�%qz�\n'%V�wvqJ<(7`���yB�mZ�&.fI·�*ds;ՍGZ2AHn:��e�E�gy2^s�?�h�Y�yEaHQ߃�؈���JU%��%/ n�dJ*ͮ[,}��p�K�2E�CX�漃@,*$]N=Oc>�E<3�-NU�ٿ���#?`��Z>C6g�7{�˼xi��T�W�W�ሻDٌ*�Z�{3O_Y�&�rUAT~5a⟟3jOsn,jhO�_~\vS�JЎSd�ή�bu�+
ِ@hawd��ir㻚tpb)X�%�9pow5f2j}ÁYa�Ng29j����q,G�Wsz��-�-�6Fe~EUVr�(qjb}Ȥ%qZz&uӌ{T�K_ƻ �(TU�H�4�rjk04Ny=�i�-�6Fz؏¸st
i�=ں�E{rm�F٢o#idY�Z�
|?Hݽ{@[p7)0n0"h�qy4 |mlq�ލ f�$
�}kp�1@[F"w*�OuEtt'�tD7~p7M̑/֬�1�_5i�1��1~
BO#��Jer8�q U:�]В%W���|nْE�bJ?K+"�b/�?Uݴlk��yy�}(m]ȬOk|?9ƤF��mЃxҁ�.�n,��ٲWG,*-_e7}Bp�m(�i|��5�!̎V�7^�rmlvѢ+�G?7�|3�E�D?oy�wAާ�SA`@M�
��=u�O)g�(Xu0l"pmy4`B"7B�ٮD/d݁h�A�ûC$�@]
ZV�A�B"V�"zzfNC�YCn�N#;.A-RX
�G℥*P�%i��Kk�*�R$p1"�*9��|U�����o_(beV&�4mg2:R��ֿ�eFo�1>I�E_$iRWzȎSt9
(�,0G707,zZ<(x2�s֖{�oGЁw�8�u3~q
>e`֣ן�E�98UXD×ܚ�e0 ;#IxlhV>�Wy{4ɜX\�Sp�z��$�,cr�);$�%OWvyt],WӸx$�L�{1#6y3�_/4G�z/�o�6ةٝG]Gdl���Ƞ�Ƨutl�ȷL?Q � KZ9#��xYY���7h[]u�^(}�owUrT6�0V8e� *M^6�$��H�Q�C0r�)�\ݜ�Ŝ"϶.�d�k!]�`Q� ZlP{6^፡ �u�Wh5�b[|�ɂIu{0PIa,Q�0o#IJ{Kh*U%-^\��"Ԣ�s�5OyN+##�$u#fϳf#K�3.$ ��Il�Ɗ\^73D\at(�g��z�R)�0�⥙:��ܹuI'5@�8}PP����ɽ��"�=
~��A(�I�"vz��a`7-Fo69&/�&FC! m^rB>Yc�Y�ʚxX$�8�])<�=νlQy ,.*a衿,�VQ(�|Gi�m�n~iy�[?Pngi&�dyŪxe4/
HrFS1&LL�۱y>Wu]�\�"�<�o]�[�ަWq!
[@ i{j
sֲ�fT�7>kԐ#�vZ�(k� UuVBOn� !2��\[�#%*̣6㩩�䝳!2h�!���-R�9����pm�kF�5_M$cgK�>w �Is5{HW�nʸ;k�#A��t�Df}߾�2+t
(�#l`'e�gJ;@�[ �":+�� |�Ry�G~~;2X(:e"�]��\{*J��CW��g�:uue*UE�j��#�Kfi^(�=L@���b�4C0Kٲ2?�Y�G
kV6:8&=B\ܓs`��b%�RuyuЛwRRN\�Zۼȣt�a�7^Hc�F@R6�S*�[i��.5e'㌸z|ʺ^Bu��v4f/(2b'�wH�!��5��$Ъ�N0��QZ� ${aF�~~w���W�NwA|}5pF\t���ex�z�|.�0aq
]_�s|e&��=@;U2fQ-'[ٿ�+\p�>Xm-4�4aNԡ��՚92K䕂k〡v@ZЯwtAq=\]ɕy��ʚ}bo��Vɢ2M�$<�*rt]r3AQc}aƥZ/�'h+gPۥ�$Bİt}2�B7س11Д�ڌirO�O}�
^x{h�wq�0V�3]!8�Yg�zz<�R�j-M.>mpp�pb�tL���,0�.淖�aY�ߖ��Doni�
#NL�Kv.��cg#,r(C6$¿9}��5vW.V�QQ*ؼ]�H98G=m/;qV_[%i�fߑ]7lZ͘Kyv�o8⽈�syz�:ݑ��jc^4M�`s��F;i?O6�CB\x"\�F�+Yڣqv�
|qV,`��A�4�c!ܶu M0�D�ɋ,gj�L"jòN'%Zp�SdguÉ/`K�\�Mh8�YmOsx-~ia�+5oL@Zc�x"�Y�8)K>el%鑙i4qj}hv6u,DOe�"B8|Po�!�m+j~\rl�Q\L��V�¨�;1Flٻ�VWn�cH�0�%ΈHb'+-S��=^o/2
�#kz�;N�|7@JKwkQfר:ҔvLCK+4Q&ONқ.C9id���ŭF"
jE)o�.=7Eo�1 �[Ӎ�s� Q?U&T߿B0xO-75=
VnVYis%L�
t+`;p>�#D9P�/sͧb;p
zoo#@qUrug-;W�kKHR�ֆ:�:*�� �~G�n\KۓXՑb��9*O�e�(fq�^rNVhAx"�(YX
нForxe_dKaN��K��V�Le/��^|G|��^&k�
u_3-��{
u!գֶ�$�x&#eD�E
']mYU��ϗp��3H1�{�˻�F�:gm֔*1@4YXddN(1$~UبСyOJ��b8��?$!ȋS2R$]�|r?3�b˝ى14��0al{[i��?�h�\~ �}^��={�81sn{gOY�0gC�әI��ݫ@ <�=<<$L��F��BhXl���o��� ^L1BN[�
E]%x.Jxo+kDtu
/0W�[W�?G�{G>>ǭ�bj@W@jCW7h�փB�H�r;�U8�M�g5�wzN [L-��p&|@`�w
SobҿZJ}Q�҉3°�_t�)_oy�8y�֎f�8��3�uA~kKIԙk�=�k7�V8�Fp&�k-qg%su]AbxV[̧9�9h^j�ܩG9ћ/J>B�H]oFM�PNc]kT.ap 7TDԋ^[�N�zf mzagU�o�]!VҦ\ ɨI����߈Hԗ3r,��D_H^�
r�Z�b�Bj��o+
TƜ&�A�`[}q�뎩VyI�K.;V٣!!x* ¯���~yA����~JĕF�b_D륁HӴ{s uʫW3��;�eR
9n�L�jR_f"&�\+ P˞8$3��[tXu�ǡ&H146Vg!x}�Uֺ]J�ӡj賊�L:a�r
߽
�lF�OׄheN;Ao 5S
�b�#'Pug��/0���)dSImE.xBb\?�7tDMxBjTYqS b*>�IJ
ɓӹ}9?13�DL)qw�|>M�-S�ΫfF^@\�4�|Z;�8Pf�#�0m�K�U!jY0�aي�4;mR&!21f��t�*\-a�@�w1HAj� Y!-5�3f6,�Q1^0��D3L+�U5Rn(qa~(�d9S;\;B>1d�|W�u֥���ET
k�]i��|��&�+�w 49P争�PFd36#wIkȎ)d�{'ao5F)�� V�6}�Fʌ�*C�18b�Ҧfրr�,)}�z�r�O=;ZB�F�e=h|!^/\B,c3,��lb�Rjqr5TLˆ9��*um����q(,oب�,]�=߁Ht��GJ,?b7b�#X̴��#ӮVV i}b Cu~^P�eUL��ԐbξZ�5Z�_uR`%k��exRzf|vA>Mtߺ�Gvu q;?o(-U:&���de�FRe=σ&9u�]�4;�{vԳED�\�c}H?KSs
$\[U,TjTأPd�&GLEBfχ`�mc���83k/E$Lco)uQG%)�'/�ӔݵS@O��q:dA=?dmM
i|c�Ҝ�
u5:�?!h�x!Qb?u'we�j3Rp[Bt��'|�JQ�>Y.D]7�����xll��@N;WwWDK�_�=1E�)% W&SI�ܐoE�P_��#=깝]aK�jd[7a0��`ytx�Ʌ{�f�
D<]BѮS�Hhx�Fz/�T҅�_� I9��K49�)ܬmBJȔn
�e{fN@�ݫ:av`}�� m��8g*oCG~^W}�>�J A�pDz9�0WmDz^
�eod/Sٸ�jq*IO/pN�iB&M
ht_��vɏV1�u
��U��cV�5M�$�|w��X9O_?�{<\~C��)߷!�II�ړӀFinEQ=�I:6B|r=+]@!Qe"GupBR/i�(g^�D�h\s"/�O�*pQ.-JGs`ف��ۣO)�
zQ�aF�w-w��H99N�Lh�JI (�O'f71$�:h��Y�*BϹdhU�^*�>��Q#�sN�qn�eB/!��FE4�*u���5$���q]�/QA�O`"?`���~
u)~pvE��f#nņη�MP��1;lf_�|aYS�յ^���0��2֚@�hJQ_~䍓(Q�(�O�>�ZZ܍�A(~>b<5��bGW�e�|7�W�"L#�yVmKT�Cczb8EL2̦�%=&X��AISj k?`_,/�h=QW�j+�I�1�:�BQ�7\{�T�xZxr`x�k%jC�P�$p%u�_�/^}rbԿ<��ĢkdC b9>+shbb7SA�u�H{ʹ�iC*rɏMksk�f4M@Y
#~IbkHILR7˗a_r$Q95���_�ݬN^]ꙣ$R�u1�*{S.s�A98˄��*���Iz�H��M�|B&Zи_r
b&?=ZD%�Lm1Ǚé;J����qA�~��ƅw�Zfl,ϖk>YA�t�yd�ak,�G^��rB=`V:-�m#P���2hK�rǔڶKsMn�\OaM�3\�UW%��r#�'I�/u@\xz+7UG4j>Iw) KU�C!Mj`]�LϮ �!ZWPD7���VȄ-`.Л(�=n%>ǐ`emQ�p�v?ښ/AD�̪g3U\45LjE�S�R|eSGztx4D']ߟurN�`Ѯ.홗'l#�F
�Ґ]��ܴgewQ3+�6vl2�0UlNag�_]կY?T�X#ww#N9IrGݷj�l;��Iv+�z4ӻ[=GŴ�ow1{Q��cH>�4@�m@`:0jeZ'j ezr:�=X�T5n)FO<\xMYôW@Bzn��'hYө~;^�%�ߢG�!"�Ns4y^�2l�[]_�p,���:@�{�ǍˏYe�$Pt��5�E%[|fx>WfK�ݛl�i�oPقsowڂGW{F\��Zή�>rDf�<�sј@qL-�e�~�*r}-M�A?I|�
8>�X�˖CA̷ϫAe扣x[6vL<�*Sa�������įQέg(�7>@Э+z-�`h���r��[xζ������
YZ