Nick Craig-Wood
6da27db844
build: fix CVE-2023-45288 by upgrading golang.org/x/net
...
See: https://pkg.go.dev/vuln/GO-2024-2687
2024-04-05 15:59:32 +01:00
Nick Craig-Wood
effad3fe4b
build: fix CVE-2024-24786 by upgrading google.golang.org/protobuf
...
See: https://pkg.go.dev/vuln/GO-2024-2611
2024-03-06 12:42:38 +00:00
Nick Craig-Wood
8f0e9f9f6b
mega: fix panic with go1.22
...
Before this fix rclone would crash with
panic: encoding alphabet includes duplicate symbols
When compiled with go1.22. This was fixed upstream in
https://github.com/t3rm1n4l/go-mega/issues/48
And this just pulls in the fix.
Fixes #7639
2024-02-21 18:41:44 +00:00
nielash
c0968a0987
operations: add logger to log list of sync results -- fixes #7282
...
Logger instruments the Sync routine with a status report for each file pair,
making it possible to output a list of the synced files, along with their
attributes and sigil categorization (match/differ/missing/etc.)
It is very customizable by passing in a custom LoggerFn, options, and
io.Writers to be written to. Possible uses include:
- allow sync to write path lists to a file, in the same format as rclone check
- allow sync to output a --dest-after file using the same format flags as lsf
- receive results as JSON when calling sync from an internal function
- predict the post-sync state of the destination
For usage examples, see bisync.WriteResults() or sync.SyncLoggerFn()
2024-01-20 14:50:08 -05:00
Nick Craig-Wood
13fb2fb2ec
build: update to go1.22rc1 and make go1.20 the minimum required version
2024-01-15 16:22:07 +00:00
Nick Craig-Wood
43cc2435c3
build: update indirect dependencies where possible
2024-01-15 16:18:42 +00:00
Nick Craig-Wood
1b1e43074f
build: update direct dependencies and fix serve nfs
...
This updates the direct dependencies.
The latest github.com/willscott/go-nfs has changed the interface
slightly so this implements a dummy InvalidateHandle method in order
to satisfy it.
2024-01-15 16:18:42 +00:00
dependabot[bot]
0563cc6314
build(deps): bump github.com/cloudflare/circl from 1.3.6 to 1.3.7
...
Bumps [github.com/cloudflare/circl](https://github.com/cloudflare/circl ) from 1.3.6 to 1.3.7.
- [Release notes](https://github.com/cloudflare/circl/releases )
- [Commits](https://github.com/cloudflare/circl/compare/v1.3.6...v1.3.7 )
---
updated-dependencies:
- dependency-name: github.com/cloudflare/circl
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
2024-01-08 17:38:09 +00:00
Nick Craig-Wood
5fa13e3e31
protondrive: fix CVE-2023-45286 / GHSA-xwh9-gc39-5298
...
A race condition in go-resty can result in HTTP request body
disclosure across requests.
See: https://pkg.go.dev/vuln/GO-2023-2328
Fixes : #7491
2024-01-04 17:14:53 +00:00
dependabot[bot]
64df4cf2db
build(deps): bump golang.org/x/crypto to fix ssh terrapin CVE-2023-48795
...
Fixes SSH terrapin attack: see https://terrapin-attack.com .
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.14.0 to 0.17.0.
- [Commits](https://github.com/golang/crypto/compare/v0.14.0...v0.17.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-03 15:47:34 +00:00
Anagh Kumar Baranwal
298c13e719
systemd: Fix detection and switch to the coreos package everywhere
...
rather than having 2 separate libraries
Signed-off-by: Anagh Kumar Baranwal <6824881+darthShadow@users.noreply.github.com>
2023-12-02 14:17:15 +00:00
halms
58339845f4
smb: fix shares not listed by updating go-smb2
...
Before this change the IP address of the server was used in the SMB
connect request (see CloudSoda/go-smb2#18 ).
The updated library now can pass the hostname instead.
The update requires a small change in the dial method call.
Fixes rclone#6672
2023-11-29 15:39:27 +00:00
Nick Craig-Wood
edb5ccdd0b
smb: fix about size wrong by switching to github.com/cloudsoda/go-smb2/ fork
...
Before this change smb drives sometimes showed a fraction of the
correct size using `rclone about`.
This fixes the problem by switching the upstream library from
github.com/hirochachacha/go-smb2 to github.com/cloudsoda/go-smb2 which
has a fix for the problem.
The new library passes the integration tests.
Fixes #6733
2023-11-25 18:45:41 +00:00
Abhinav Dhiman
36eb3cd660
imagekit: Added ImageKit backend
2023-11-24 18:18:01 +00:00
karan
b5301e03a6
Implement Azure Files backend
...
Co-authored-by: moongdal <moongdal@tutanota.com>
2023-11-18 16:42:13 +00:00
Saw-jan
d3dcc61154
serve s3: fixes before merge
...
- add context to log and fallthrough to error log level
- test: use rclone random lib to generate random strings
- calculate hash from vfs cache if file is uploading
- add server started log with server url
- remove md5 hasher
2023-11-16 16:59:56 +00:00
Artur Neumann
aa29742be2
serve s3: fix file name encoding using s3 serve with mc client
...
using the mc (minio) client file encoding were wrong
see Mikubill/gofakes3#2 for details
2023-11-16 16:59:56 +00:00
Mikubill
23abac2a59
serve s3: let rclone act as an S3 compatible server
2023-11-16 16:59:55 +00:00
albertony
4506f35f2e
build: refactor version info and icon resource handling on windows
...
This makes it easier to add resources with any build method, and also when
building librclone.dll.
Goversioninfo is now used as a library, instead of running it as a tool.
2023-11-01 12:44:04 +01:00
Nick Craig-Wood
0b90dd23c1
build: update all dependencies
2023-10-29 15:46:38 +00:00
dependabot[bot]
5c73363b16
build(deps): bump google.golang.org/grpc from 1.56.2 to 1.56.3
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.56.2 to 1.56.3.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.56.2...v1.56.3 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-10-28 18:31:35 +01:00
Ivan Yanitra
0ee6d0b4bf
azureblob: add support cold tier
2023-10-18 17:54:25 +01:00
Nick Craig-Wood
b9727cc6ab
build: upgrade golang.org/x/net to v0.17.0 to fix HTTP/2 rapid reset
...
Vulnerability1: GO-2023-2102
HTTP/2 rapid reset can cause excessive work in net/http
More info: https://pkg.go.dev/vuln/GO-2023-2102
2023-10-12 17:44:16 +01:00
Saleh Dindar
c69cf46f06
serve nfs: new serve nfs
command
...
Summary:
Adding a new command to serve any remote over NFS. This is only useful for new macOS versions where FUSE mounts are not available.
* Added willscot/go-nfs dependency and updated go.mod and go.sum
Test Plan:
```
go run rclone.go serve nfs --http-url https://beta.rclone.org :http:
```
Test that it is serving correctly by mounting the NFS directory.
```
mkdir nfs-test
mount -oport=58654,mountport=58654 localhost: nfs-test
```
Then we can list the mounted directory to see it is working.
```
ls nfs-test
```
2023-10-06 14:08:20 +01:00
Saleh Dindar
25f59b2918
vfs: Add go-billy dependency and make sure vfs.Handle implements billy.File
...
billy defines a common file system interface that is used in multiple go packages.
vfs.Handle implements billy.File mostly, only two methods needed to be added to
make it compliant.
An interface check is added as well.
This is a preliminary work for adding serve nfs command.
2023-10-06 14:08:20 +01:00
Kaloyan Raev
af260921c0
storj: update storj.io/uplink to v1.12.0
...
The improved upload logic is active by default in uplink v1.12.0, so the
`testuplink.WithConcurrentSegmentUploadsDefaultConfig(ctx)` is not
required anymore.
See https://github.com/rclone/rclone/pull/7198
2023-09-14 14:01:35 +01:00
Chun-Hung Tseng
578c75cb1e
protondrive: fix signature verification logic by accounting for legacy signing scheme ( #7278 )
2023-09-08 16:00:34 +08:00
Chun-Hung Tseng
5026a9171d
protondrive: improves 2fa and draft error messages ( #7280 )
2023-09-07 01:50:28 +08:00
Nick Craig-Wood
94a320f23c
serve ftp: update to goftp.io/server v2.0.1 - fixes #7237
2023-08-22 17:24:05 +01:00
Nick Craig-Wood
c979cde002
ftp: fix 425 "TLS session of data connection not resumed" errors
...
As an extra security feature some FTP servers (eg FileZilla) require
that the data connection re-use the same TLS connection as the control
connection. This is a good thing for security.
The message "TLS session of data connection not resumed" means that it
was not done.
The problem turned out to be that rclone was re-using the TLS session
cache between concurrent connections so the resumed TLS data
connection could from any of the control connections.
This patch makes each TLS connection have its own session cache which
should fix the problem.
This also reverts the ftp library to the upstream version which now
contains all of our patches.
Fixes #7234
2023-08-18 14:44:13 +01:00
Nick Craig-Wood
45228e2f18
build: update dependencies
...
This does not update bazil/fuse because it does not build on freebsd
https://github.com/bazil/fuse/issues/295
This partially updates the prometheus library as the latest no longer compiles with plan9
https://github.com/prometheus/procfs/issues/554
2023-07-29 01:57:23 +01:00
Chun-Hung Tseng
602e42d334
protondrive: fix a bug in parsing User metadata ( #7174 )
2023-07-28 11:03:23 +02:00
Chun-Hung Tseng
f29e284c90
protondrive: fix download signature verification bug ( #7169 )
2023-07-24 14:54:39 +02:00
Chun-Hung Tseng
9a66086fa0
protondrive: fix bug in digests parsing ( #7164 )
2023-07-24 09:00:18 +02:00
Anagh Kumar Baranwal
bb0cd76a5f
fix: mount parsing for linux
2023-07-22 17:29:20 +05:30
Chun-Hung Tseng
014acc902d
protondrive: add protondrive backend - fixes #6072
2023-07-22 10:46:21 +01:00
Anagh Kumar Baranwal
0ef0e908ca
build: update to go1.21rc3 and make go1.19 the minimum required version
...
Signed-off-by: Anagh Kumar Baranwal <6824881+darthShadow@users.noreply.github.com>
2023-07-16 10:09:25 +01:00
Anagh Kumar Baranwal
fb5125ecee
build: fix macos builds for versions < 12
...
Signed-off-by: Anagh Kumar Baranwal <6824881+darthShadow@users.noreply.github.com>
2023-07-01 18:03:50 +01:00
Tareq Sharafy
7db26b6b34
azblob: support azure workload identities
2023-05-14 12:12:24 +01:00
dependabot[bot]
38a0539096
build(deps): bump github.com/cloudflare/circl from 1.1.0 to 1.3.3
...
Bumps [github.com/cloudflare/circl](https://github.com/cloudflare/circl ) from 1.1.0 to 1.3.3.
- [Release notes](https://github.com/cloudflare/circl/releases )
- [Commits](https://github.com/cloudflare/circl/compare/v1.1.0...v1.3.3 )
---
updated-dependencies:
- dependency-name: github.com/cloudflare/circl
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-05-12 14:56:45 +01:00
Nick Craig-Wood
925c4382e2
ftp: fix "unsupported LIST line" errors on startup
...
Before this fix a blank line in the MLST output from the FTP server
would cause the "unsupported LIST line" error.
This fixes the problem in the upstream fork.
Fixes #6879
2023-05-09 17:27:35 +01:00
Anagh Kumar Baranwal
a7e6806f26
mount2: updated go-fuse version
...
Signed-off-by: Anagh Kumar Baranwal <6824881+darthShadow@users.noreply.github.com>
2023-04-30 17:56:47 +01:00
dependabot[bot]
5836da14c2
build(deps): bump github.com/aws/aws-sdk-go from 1.44.236 to 1.44.246
...
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go ) from 1.44.236 to 1.44.246.
- [Release notes](https://github.com/aws/aws-sdk-go/releases )
- [Commits](https://github.com/aws/aws-sdk-go/compare/v1.44.236...v1.44.246 )
---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-04-20 18:03:27 +01:00
dependabot[bot]
8ed07d11a0
build(deps): bump github.com/klauspost/compress from 1.16.3 to 1.16.5
...
Bumps [github.com/klauspost/compress](https://github.com/klauspost/compress ) from 1.16.3 to 1.16.5.
- [Release notes](https://github.com/klauspost/compress/releases )
- [Changelog](https://github.com/klauspost/compress/blob/master/.goreleaser.yml )
- [Commits](https://github.com/klauspost/compress/compare/v1.16.3...v1.16.5 )
---
updated-dependencies:
- dependency-name: github.com/klauspost/compress
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-04-20 18:03:18 +01:00
dependabot[bot]
1f2ee44c20
build(deps): bump golang.org/x/term from 0.6.0 to 0.7.0
...
Bumps [golang.org/x/term](https://github.com/golang/term ) from 0.6.0 to 0.7.0.
- [Release notes](https://github.com/golang/term/releases )
- [Commits](https://github.com/golang/term/compare/v0.6.0...v0.7.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/term
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-04-20 18:02:43 +01:00
dependabot[bot]
aeb568c494
build(deps): bump github.com/aws/aws-sdk-go from 1.44.228 to 1.44.236
...
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go ) from 1.44.228 to 1.44.236.
- [Release notes](https://github.com/aws/aws-sdk-go/releases )
- [Commits](https://github.com/aws/aws-sdk-go/compare/v1.44.228...v1.44.236 )
---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-04-05 15:12:35 +01:00
dependabot[bot]
b07f575d07
build(deps): bump github.com/oracle/oci-go-sdk/v65
...
Bumps [github.com/oracle/oci-go-sdk/v65](https://github.com/oracle/oci-go-sdk ) from 65.33.0 to 65.34.0.
- [Release notes](https://github.com/oracle/oci-go-sdk/releases )
- [Changelog](https://github.com/oracle/oci-go-sdk/blob/master/CHANGELOG.md )
- [Commits](https://github.com/oracle/oci-go-sdk/compare/v65.33.0...v65.34.0 )
---
updated-dependencies:
- dependency-name: github.com/oracle/oci-go-sdk/v65
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-04-05 15:12:00 +01:00
dependabot[bot]
ebae647dfa
build(deps): bump google.golang.org/api from 0.114.0 to 0.115.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.114.0 to 0.115.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.114.0...v0.115.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-04-05 15:11:18 +01:00
dependabot[bot]
6fd5b469bc
build(deps): bump github.com/spf13/cobra from 1.6.1 to 1.7.0
...
Bumps [github.com/spf13/cobra](https://github.com/spf13/cobra ) from 1.6.1 to 1.7.0.
- [Release notes](https://github.com/spf13/cobra/releases )
- [Commits](https://github.com/spf13/cobra/compare/v1.6.1...v1.7.0 )
---
updated-dependencies:
- dependency-name: github.com/spf13/cobra
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-04-05 15:10:31 +01:00
dependabot[bot]
78e822dd79
build(deps): bump github.com/shirou/gopsutil/v3 from 3.23.2 to 3.23.3
...
Bumps [github.com/shirou/gopsutil/v3](https://github.com/shirou/gopsutil ) from 3.23.2 to 3.23.3.
- [Release notes](https://github.com/shirou/gopsutil/releases )
- [Commits](https://github.com/shirou/gopsutil/compare/v3.23.2...v3.23.3 )
---
updated-dependencies:
- dependency-name: github.com/shirou/gopsutil/v3
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-04-05 15:09:55 +01:00