Skip to content

Latest commit

 

History

History
673 lines (507 loc) · 21.3 KB

ChangeLog.md

File metadata and controls

673 lines (507 loc) · 21.3 KB
Raw

Change Log

All notable changes to the project are documented in this file.

v2.1 - 2016-12-04

Changes

  • Use HTTPS instead of HTTP by default
  • Support for disabling HTTPS for checkip-server, per provider. Idea from Valery Frolov
  • Add -I,--ident=NAME option for syslog+pidfile name
  • Deprecate --pidfile=NAME option in favor of --ident=NAME

Fixes

  • Issue #150: Custom update URL parser fixes
  • Issue #151: Support for detecting OpenSSL v1.1
  • Issue #144: Clarify use of public vs private IP. It is possible to register private IP addresses in a public DNS
  • Clarify --foreground option in man page
  • Document minimum required versions of libite and libConfuse
  • Portability fixes, replace __progname with a small function, replace %m with %s and strerror(errno).

v2.0 - 2016-09-12

New configuration file format, changed command line options, improved HTTPS support using GnuTLS and Open/LibreSSL. Inadyn now comes with certificate validation enabled by default.

Changes

  • New configuration file format using libConfuse

  • Radically simplified command line, a .conf file is now required

  • Reorganized SSL code, split ssl.c into openssl.c and gnutls.c

  • Strict HTTPS certificate validation is now default. To disable this use strict-ssl = false in the .conf file.

  • Certificate validation uses trusted CA certificates from the system with fall-backs to certain known locations. To override this default handling a ca-trust-file = FILE setting in inadyn.conf can be used to provide the path to another CA cert bundle, in PEM format.

  • Massive overhaul of inadyn(8) and inadyn.conf(5) man pages

  • Support for reading address from interface, including IPv6 addresses

  • Support for calling an external script to get the IP address

  • Support for multiple users @ same provider, idea from Valery Frolov:

      provider [email protected]:1 {
      username    = ian
      password    = secret
      alias       = flemming.no-ip.com
  }

  provider [email protected]:2 {
      username    = james
      password    = bond
      alias       = spectre.no-ip.com
  }

  • Support for ddnss.de and dynv6.com, contributed by Sven Hoefer

  • Support for spdyn.de, on request from Frank Röhm

  • Support for strato.com, contributed by Duncan Overbruck

  • Support for disabling IP address validation: verify-address = false

  • Refactored memory handling and privilige separation to simplify code

  • Refactored logging and backgrounding to simplify code

  • Removed old compatibility symlinks and other required GNU specific files, we now distribute and install README.md and ChangeLog.md

Fixes

  • Fix issue #61: Add HTTPS certificate validation for OpenSSL/LibreSSL
  • Fix issue #67: Use GnuTLS native API for HTTPS
  • Fix DuckDNS: now requires 'www.' prefix in server URL. By Frank Aurich
  • Fix issue #110: Poodle SSL_MODE_SEND_FALLBACK_SCSV not needed
  • Fix issue #101: Remove support for custom pidfile
  • Fix issue #102: Relocate cache files /var/run/inadyn to /var/cache/inadyn
  • Fix issue #113: --drop-privs does not work
  • Add actual permissions check to os_check_perms()
  • Fix issue #121: Support for fully customizable update URL
  • Fix issue #122: Only use HTTPS connection for DNS update, not checkip
  • Fix issue #131: Use FreeDNS' own checkip server instead of DYN.com's
  • Fix issue #134: Support wildcard cert with GnuTLS backend

1.99.15 - 2015-09-09

Minor bugfix release.

Changes

  • Support for new API at https://tunnelbroker.net, fixes issue #83. Use [email protected] to use the DYN.com API to update the IPv4 address for your IPv6-in-IPv4 tunnel. Thanks goes to Horst Venzke @hvenzke for reporting this problem!
  • The old API for the IPv6-in-IPv4 system [email protected] is now deprecated. Users should migrate to [email protected]
  • Files generated by the GNU Configure & Build System is now no longer stored in GIT. Instead, users that rely on GIT must run the new ./autogen.sh script to generate the necessary files (configure).

Fixes

  • Fix issue #100: regression from 1.99.13 pidfile is no longer created. Inadyn 1.x semantics incompatible with OpenBSD pidfile() that replaced local version in 1.99.14. Problem found by David Schury @daersc.
  • Fix issue #107: If an IP address update fails, e.g. due to temporary connectivity, HTTP transmission problems, etc. then Inadyn now forces an update in the next IP check cycle. (This is the configurable period interval in inadyn.conf.) Reported by Oliver Graute @redbrain17 and audited by @BulldozerBSG, thanks!
  • Fix issue #108: Update README with correct alias syntax for Namecheap, issue reported by @quazar0

1.99.14 - 2015-07-14

Improved support for configuring custom DDNS providers and support for running in Windows, using Cygwin!

Changes

  • New setting append-myip which, instead of appending your hostname alias, appends the current IP to the server GET update URL. See README or the man pages for more details.
  • Prevent Inadyn from bugging out if it cannot write a cache file when the -o, --once flag is given.
  • Inadyn now defaults to a silent build, use V=1 (like Linux) to get a verbose build. Useful for auto-builders etc.
  • Migrate to libite for functions like pidfile(), strlcpy() etc.
  • Add support for http://GiraDNS.com, thanks to Thorsten Mühlfelder!
  • Add support for https://www.duiadns.net, thanks to Ionut Slaveanu!
  • Add Cygwin support for running Inadyn in Windows, thanks to Scott Mann!

Fixes

  • Issue #89: Fix Duck DNS support, thanks to Ismani Nieuweboer!
  • Issue #82: No rule to build target CHANGELOG, regression introduced in 1.99.13.
  • Issue #84: Sanitized default logs by placing conditions for debug logs. Big thanks to Frank Aurich for this work!

1.99.13 - 2015-02-08

Changes

Fixes

  • Fix issue #78: Parsing checkip responses may fail, by Andy Padavan
  • Fix issue #79: Don't treat inline '#' as comment if not preceeded by space, by Andy Padavan

1.99.12 - 2014-10-20

Changes

Fixes

  • Fix cross compilation issues with OpenSSL (depends on libcrypto)
  • Fix cross compilation issues with malloc vs. rpl_malloc (removed autoconf check completely)

1.99.11 - 2014-10-15

Changes

Fixes

  • Fix building on FreeBSD by converting to use GNU Configure & Build system
  • Fixes to add support for TLS 1.x with SNI, thanks to Thomas Waldmann
  • SSL mitigation fixes for POODLE

1.99.10 - 2014-09-13

Changes

  • Refactor string functions strcat() and strcpy() to use secure OpenBSD replacements strlcat() and strlcpy() instead.

Fixes

  • Fix issue #57: snprintf() causes loss of = from password string
  • Fix issue #58: Add support for GnuTLS as the default SSL library
  • Fix bugs found by Coverity Scan
  • Fix memory leaks found by GLIBC (!) on PowerPC
  • Fix include order problem with error.h

1.99.9 - 2014-05-21

Changes

Fixes

  • Fix memory leak in new HTTPS support, found by Valgrind
  • Other misc. Valgrind and Cppcheck fixes

1.99.8 - 2014-05-20

Changes

  • Support for HTTPS to secure login credentials at DNS update, issue #36
  • Support for persistent cache files with new --cache-dir PATH
  • Support for http://twoDNS.de in generic plugin, see README for details
  • Man page updates

1.99.7 - 2014-05-14

Changes

  • Support for multiple cache files, one per DDNS provider, issue #35
  • Refactor DDNS providers as plugins, issue #30

1.99.6 - 2013-12-25

Changes

  • Update documentation for custom servers and add missing compatibility entry for custom servers.

Fixes

  • Fix nasty socket leak.

1.99.5 - 2013-11-27

Changes

  • Support for --fake-address on new SIGUSR1 (forced update)
  • Support for SIGUSR2 (check now),
  • Support for --startup-delay SEC, for embedded systems
  • Man page updates

Fixes

  • Many minor bug fixes

1.99.4 - 2013-08-08

This release fixes a base64 password encoding regression in 1.99.3

1.99.3 - 2013-07-15 [YANKED]

This release adds the ability to specify the cache file and the ability to check the IP of the interface (UNIX only). If no interface is specified, no external IP check is performed. The old --iface option has been renamed --bind. changeip.com support has been added. Minor bugfixes and code optimizations have been made.

Changes

  • Add ability to specify cache file
  • Add ability to check IP of interface (UNIX only). If interface is specified, no external IP check performed Old --iface option renamed to --bind
  • Specify IP address in freedns.afraid.org update request (only autodetect was used)
  • Add changeip.com support

Fixes

  • Minor bugfixes and code optimization

[1.99.2][] - 2012-09-07

Changes

  • Get HTTP status description

Fixes

  • Fix inability to change update period (broken in 1.99.0)
  • Fix debug output description

1.99.1 - 2012-09-01

Changes

  • Make HTTP status code check server-specific
  • Update maintainer e-mail address

1.99.0 - 2012-08-17

Changes

  • Merge wl500g patches from http://code.google.com/p/wl500g:
    • 120-heipv6tb.patch adds support for tunnelbroker
    • 121-hedyndns.patch adds support for HE dyndns
    • 210-wildcard.patch makes wildcard option account specific
  • For ddns services that have their own checkip service, use it instead of dyndns.org checkip service
  • Add ability to handle non-fatal temporary errors ("update too often", system error etc.)
  • Warn if initial DNS request failed
  • Add dnsexit.com support
  • Modify http client to parse response for http status code and response body
  • Remove DynDNS ignored and deprecated parameters (wildcard, mx, backmx, system). Wildcard kept for easydns.com
  • Report detected IP to sitelutions and dynsip servers (only autodetect was used)
  • Update TZO support
  • Check HTTP status code before validating response
  • Remake zoneedit response validation
  • Little code cleanup

Fixes

  • Fix malformed HTTP request

1.98.1 - 2011-07-18

Changes

  • Preserve time since last update (forced update counter) and num interations from being reset by SIGHUP restart command
  • Extend --drop-privs to support hyphens
  • Cleanup of inadyn log messages, reformat & clarification

Fixes

  • Bug fix segfault at initial DNS lookup
  • Bug fix --drop-privs uid/gid was swapped and a possible buffer overflow
  • Typo fixes and polish to man pages inadyn(8) and inadyn.conf(5)

1.98.0 - 2011-02-28

Changes

  • New config file, command line, syntax (still backwards compatible!)
  • New option --drop-privs USER[:GROUP] to support privilege separation
  • Drop privileges before creating any files
  • Documentation updates

1.97.4 - 2010-11-02

Changes

  • Support for dynsip.org by milkfish, from DD-WRT
  • Add support for sitelutions.com, from inadyn-mt (untested)

Fixes

  • Clear DNS cache before calling getaddrinfo(), fixes GitHub issue #3

1.97.3 - 2010-11-02

Changes

  • Merge wl500g patches from http://code.google.com/p/wl500g:
    • 101-http-request.patch. This cleans up the DDNS server defintions and callbacks, evidently originating from ideas implemented by DD-WRT.
    • 102-zoneedit.patch. This fixes issues in what appears to be both request and response formats in ZoneEdit DDNS. Originating from DD-WRT.
    • 103-tzo.patch. This patch adds support for tzo.com DDNS serivices.
    • 110-dnsomatic.patch. This patch adds support for DNS-O-Matic http://dnsomatic.com/, an OpenDNS service which can act as a "meta" update to several other DDNS service providers.
    • 120-heipv6tb.patch. This patch adds support for Hurricane Electric's http://tunnelbroker.net/ DDNS services https://dns.he.net/.
  • When starting: always use cache file, if it exists, or seed with DNS lookup

Fixes

  • Fix Debian bug #575549: freedns.afraid.org example in inadyn(8) is incorrect.

1.97.2 - 2010-10-30

Changes

  • Replace gethostbyname() with getaddrinfo() and improve logging at connect()

Fixes

  • Fix missing man pages from install/uninstall targets
  • Fix GitHub issue #2: setsocktopt() takes pointer to struct timeval, not int as argument

1.97.1 - 2010-10-19

Changes

  • Add support for properly restarting inadyn on SIGHUP
  • Remove INADYN: prefix in MODULE_TAG entirely - messes up syslog output

1.97.0 - 2010-10-18

  • Apply patches by Neufbox4 from http://dev.efixo.net:
    • 100-inadyn-1.96.2.patch, cache file support
    • 100-inadyn-1.96.2.patch, bind interface support
    • 200-inadyn-1.96.2-64bits-fix.patch
    • 300-inadyn-1.96.2-pidfile-and-improve.patch
  • New README, COPYING and LICENSE file, remove readme.html
  • Refactor and cleanup Makefile (renamed from makefile)
  • Add support for SIGTERM signal
  • Relocate include files to include directory
  • Apply patch for multiple accounts from Christian Eyrich
  • Remove unused uint typedef causing trouble on ARM GCC 4.4.x
  • Fix missing strdup() of input config file and free any preexisting
  • Make sure TYPE_TCP enum relly is 0 on all compilers
  • Improve error messages using strerror() and use -1 as stale socket, not 0
  • Fix nasty socket leak
  • Merge with inadyn-advanced, http://sf.net/projects/inadyn-advanced:
    • Add support for 3322.org and easydns.org
    • Add support for domain wildcarding, --wildcard option NOTE: Domain wildcarding is now disabled by default
    • Add support for running an external command hook on IP update, new --exec option
    • Add support for datetime in debug messages
  • Refactor DBG_PRINTF((..)) --> logit(..)
  • Update man page inadyn(8) with info on --bind_interface, --wildcard, --exec options and support for easydns.org and 3322.org services
  • Misc fixes and cleanups

1.96.2 - 2007-03-12

Fixes

  • If the Dynamic DNS server responds with an error Inadyn will abort. This will prevent further retries with wrong dyndns credentials.
  • Default port number included in the request, to support the requests via Proxy, to ports different than 80.
  • Simplified main inadyn update loop function. (there was no bug there)

1.96 - 2005-09-09

Changes

  • zoneedit.com supported.
  • no-ip.com supported.
  • support for generic DNS services that support HTTP updates

Fixes

  • Immediate exit in case of --iterations=1 (not after a sleep period)
  • Add missing option for specifying the path in the DNS server

1.95 - 2005-07-20

Changes

  • UNIX signals supported - inadyn will stop gracefully in case of ALRM, HUP, INT, ...
  • New dynamic DNS service supported - www.zoneedit.com - Not tested!
  • Makefile adjusted for Solaris - compilable under Solaris.
  • Support for generic DYNDNS service that supports update via HTTP with basic authentication not yet fully complete. Not known where might be applicable.

1.90 - 2005-02-24

Changes

  • New option --change_persona uid:gid - inadyn can switch the user after launch. Typical feature for daemons
  • Addition to --ip_server_name feature, now it has another parameter: the URL to read from the given server name
  • Reduced some error messages
  • Manual pages updated. (thanks to Shaul Karl)

Fixes

  • Typo fixed (--ip_server_name option)

1.86 - 2005-01-30

Changes

  • Updated UNIX man pages for inadyn. Even a page for inadyn.conf, Thanks to Shaul Karl!
  • Inadyn doesn't print anything (e.g. ver. number) anymore when goes to background
  • New config file parser. Accepts ESCAPE character: \

Fixes

  • Corrected check of the return code from socket() call

1.85 - 2005-01-10

Changes

  • Config file related enhancements:
    • Use default location for config file, when no arguments for inadyn
    • More *NIX like format for the config file. Thanks to Jerome Benoit

Fixes

  • When 'iterations' option is specified as being '1', inadyn exits immediately after first update, not after the sleep period as before

1.81 - 2004-11-23

Changes

  • No new features, just a better integration with Linux. Reviewed usage of syslog and fork to background in daemon mode, thanks to Shaul Karl.

1.80 - 2004-10-16

Changes

  • Optional output to syslog for Linux, should work for all *nix systems
  • Run in background for Linux, should work for all *nix systems

Fixes

  • Minor compile warnings removed

1.70 - 2004-07-05

Changes

  • New --iterations cmd line option. Now one can run inadyn with only one iteration. Untested. It was a debug option now made accessible via cmd line. It should work.

Fixes

  • Custom DNS from dyndns option was not accepted by the cmd line parser. "Copy-paste" error :-(

1.60 - 2004-06-05

Changes

  • On users' request the inadyn can read the options from file.

1.51 - 2004-05-03

Changes

  • Support for more aliases for DNS service offered by freedns.afraid.org

1.5 - 2004-05-01

Changes

  • Support for dynamic DNS service offered by freedns.afraid.org
  • Support for http proxy
  • GPL copyright notice added.

1.4 - 2004-03-01

Changes

  • Support for custom DNS and static DNS services offered by dyndns.org
  • Support for forced IP update, so the account will not expire even though the IP never changes

1.35 - 2004-02-04

Fixes

  • Multiple aliases are AGAIN supported
  • In case of error in IP update the OS signal handler is not installed again.

1.34 - 2003-11-06

First port to *NIX - Linux running OK as console app.

TODO

  • Run as a background daemon in UNIX
  • Better interface

Fixes

  • Various bug fixes.

1.2 - Jun 2003

Port to pSOS

Note: no DNS support under pSOS -- hard coded IP addresses of the server.

1.0 - 20013-05-20

First stable version.

Features

  • DYNDNS client
  • free
  • works fine behind a NAT router
  • runs fine as a service
  • has a nice log file

TODO

  • port to *NIX
  • port to pSOS