Nick Craig-Wood
b9727cc6ab
build: upgrade golang.org/x/net to v0.17.0 to fix HTTP/2 rapid reset
...
Vulnerability1: GO-2023-2102
HTTP/2 rapid reset can cause excessive work in net/http
More info: https://pkg.go.dev/vuln/GO-2023-2102
2023-10-12 17:44:16 +01:00
Saleh Dindar
c69cf46f06
serve nfs: new serve nfs
command
...
Summary:
Adding a new command to serve any remote over NFS. This is only useful for new macOS versions where FUSE mounts are not available.
* Added willscot/go-nfs dependency and updated go.mod and go.sum
Test Plan:
```
go run rclone.go serve nfs --http-url https://beta.rclone.org :http:
```
Test that it is serving correctly by mounting the NFS directory.
```
mkdir nfs-test
mount -oport=58654,mountport=58654 localhost: nfs-test
```
Then we can list the mounted directory to see it is working.
```
ls nfs-test
```
2023-10-06 14:08:20 +01:00
Saleh Dindar
25f59b2918
vfs: Add go-billy dependency and make sure vfs.Handle implements billy.File
...
billy defines a common file system interface that is used in multiple go packages.
vfs.Handle implements billy.File mostly, only two methods needed to be added to
make it compliant.
An interface check is added as well.
This is a preliminary work for adding serve nfs command.
2023-10-06 14:08:20 +01:00
Kaloyan Raev
af260921c0
storj: update storj.io/uplink to v1.12.0
...
The improved upload logic is active by default in uplink v1.12.0, so the
`testuplink.WithConcurrentSegmentUploadsDefaultConfig(ctx)` is not
required anymore.
See https://github.com/rclone/rclone/pull/7198
2023-09-14 14:01:35 +01:00
Chun-Hung Tseng
578c75cb1e
protondrive: fix signature verification logic by accounting for legacy signing scheme ( #7278 )
2023-09-08 16:00:34 +08:00
Chun-Hung Tseng
5026a9171d
protondrive: improves 2fa and draft error messages ( #7280 )
2023-09-07 01:50:28 +08:00
Nick Craig-Wood
94a320f23c
serve ftp: update to goftp.io/server v2.0.1 - fixes #7237
2023-08-22 17:24:05 +01:00
Nick Craig-Wood
c979cde002
ftp: fix 425 "TLS session of data connection not resumed" errors
...
As an extra security feature some FTP servers (eg FileZilla) require
that the data connection re-use the same TLS connection as the control
connection. This is a good thing for security.
The message "TLS session of data connection not resumed" means that it
was not done.
The problem turned out to be that rclone was re-using the TLS session
cache between concurrent connections so the resumed TLS data
connection could from any of the control connections.
This patch makes each TLS connection have its own session cache which
should fix the problem.
This also reverts the ftp library to the upstream version which now
contains all of our patches.
Fixes #7234
2023-08-18 14:44:13 +01:00
Nick Craig-Wood
45228e2f18
build: update dependencies
...
This does not update bazil/fuse because it does not build on freebsd
https://github.com/bazil/fuse/issues/295
This partially updates the prometheus library as the latest no longer compiles with plan9
https://github.com/prometheus/procfs/issues/554
2023-07-29 01:57:23 +01:00
Chun-Hung Tseng
602e42d334
protondrive: fix a bug in parsing User metadata ( #7174 )
2023-07-28 11:03:23 +02:00
Chun-Hung Tseng
f29e284c90
protondrive: fix download signature verification bug ( #7169 )
2023-07-24 14:54:39 +02:00
Chun-Hung Tseng
9a66086fa0
protondrive: fix bug in digests parsing ( #7164 )
2023-07-24 09:00:18 +02:00
Anagh Kumar Baranwal
bb0cd76a5f
fix: mount parsing for linux
2023-07-22 17:29:20 +05:30
Chun-Hung Tseng
014acc902d
protondrive: add protondrive backend - fixes #6072
2023-07-22 10:46:21 +01:00
Anagh Kumar Baranwal
0ef0e908ca
build: update to go1.21rc3 and make go1.19 the minimum required version
...
Signed-off-by: Anagh Kumar Baranwal <6824881+darthShadow@users.noreply.github.com>
2023-07-16 10:09:25 +01:00
Anagh Kumar Baranwal
fb5125ecee
build: fix macos builds for versions < 12
...
Signed-off-by: Anagh Kumar Baranwal <6824881+darthShadow@users.noreply.github.com>
2023-07-01 18:03:50 +01:00
Tareq Sharafy
7db26b6b34
azblob: support azure workload identities
2023-05-14 12:12:24 +01:00
dependabot[bot]
38a0539096
build(deps): bump github.com/cloudflare/circl from 1.1.0 to 1.3.3
...
Bumps [github.com/cloudflare/circl](https://github.com/cloudflare/circl ) from 1.1.0 to 1.3.3.
- [Release notes](https://github.com/cloudflare/circl/releases )
- [Commits](https://github.com/cloudflare/circl/compare/v1.1.0...v1.3.3 )
---
updated-dependencies:
- dependency-name: github.com/cloudflare/circl
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-05-12 14:56:45 +01:00
Nick Craig-Wood
925c4382e2
ftp: fix "unsupported LIST line" errors on startup
...
Before this fix a blank line in the MLST output from the FTP server
would cause the "unsupported LIST line" error.
This fixes the problem in the upstream fork.
Fixes #6879
2023-05-09 17:27:35 +01:00
Anagh Kumar Baranwal
a7e6806f26
mount2: updated go-fuse version
...
Signed-off-by: Anagh Kumar Baranwal <6824881+darthShadow@users.noreply.github.com>
2023-04-30 17:56:47 +01:00
dependabot[bot]
5836da14c2
build(deps): bump github.com/aws/aws-sdk-go from 1.44.236 to 1.44.246
...
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go ) from 1.44.236 to 1.44.246.
- [Release notes](https://github.com/aws/aws-sdk-go/releases )
- [Commits](https://github.com/aws/aws-sdk-go/compare/v1.44.236...v1.44.246 )
---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-04-20 18:03:27 +01:00
dependabot[bot]
8ed07d11a0
build(deps): bump github.com/klauspost/compress from 1.16.3 to 1.16.5
...
Bumps [github.com/klauspost/compress](https://github.com/klauspost/compress ) from 1.16.3 to 1.16.5.
- [Release notes](https://github.com/klauspost/compress/releases )
- [Changelog](https://github.com/klauspost/compress/blob/master/.goreleaser.yml )
- [Commits](https://github.com/klauspost/compress/compare/v1.16.3...v1.16.5 )
---
updated-dependencies:
- dependency-name: github.com/klauspost/compress
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-04-20 18:03:18 +01:00
dependabot[bot]
1f2ee44c20
build(deps): bump golang.org/x/term from 0.6.0 to 0.7.0
...
Bumps [golang.org/x/term](https://github.com/golang/term ) from 0.6.0 to 0.7.0.
- [Release notes](https://github.com/golang/term/releases )
- [Commits](https://github.com/golang/term/compare/v0.6.0...v0.7.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/term
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-04-20 18:02:43 +01:00
dependabot[bot]
aeb568c494
build(deps): bump github.com/aws/aws-sdk-go from 1.44.228 to 1.44.236
...
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go ) from 1.44.228 to 1.44.236.
- [Release notes](https://github.com/aws/aws-sdk-go/releases )
- [Commits](https://github.com/aws/aws-sdk-go/compare/v1.44.228...v1.44.236 )
---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-04-05 15:12:35 +01:00
dependabot[bot]
b07f575d07
build(deps): bump github.com/oracle/oci-go-sdk/v65
...
Bumps [github.com/oracle/oci-go-sdk/v65](https://github.com/oracle/oci-go-sdk ) from 65.33.0 to 65.34.0.
- [Release notes](https://github.com/oracle/oci-go-sdk/releases )
- [Changelog](https://github.com/oracle/oci-go-sdk/blob/master/CHANGELOG.md )
- [Commits](https://github.com/oracle/oci-go-sdk/compare/v65.33.0...v65.34.0 )
---
updated-dependencies:
- dependency-name: github.com/oracle/oci-go-sdk/v65
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-04-05 15:12:00 +01:00
dependabot[bot]
ebae647dfa
build(deps): bump google.golang.org/api from 0.114.0 to 0.115.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.114.0 to 0.115.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.114.0...v0.115.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-04-05 15:11:18 +01:00
dependabot[bot]
6fd5b469bc
build(deps): bump github.com/spf13/cobra from 1.6.1 to 1.7.0
...
Bumps [github.com/spf13/cobra](https://github.com/spf13/cobra ) from 1.6.1 to 1.7.0.
- [Release notes](https://github.com/spf13/cobra/releases )
- [Commits](https://github.com/spf13/cobra/compare/v1.6.1...v1.7.0 )
---
updated-dependencies:
- dependency-name: github.com/spf13/cobra
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-04-05 15:10:31 +01:00
dependabot[bot]
78e822dd79
build(deps): bump github.com/shirou/gopsutil/v3 from 3.23.2 to 3.23.3
...
Bumps [github.com/shirou/gopsutil/v3](https://github.com/shirou/gopsutil ) from 3.23.2 to 3.23.3.
- [Release notes](https://github.com/shirou/gopsutil/releases )
- [Commits](https://github.com/shirou/gopsutil/compare/v3.23.2...v3.23.3 )
---
updated-dependencies:
- dependency-name: github.com/shirou/gopsutil/v3
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-04-05 15:09:55 +01:00
albertony
0374ea2c79
Use jwt-go (golang-jwt) instead of deprecated jws (x/oauth2/jws)
...
golang.org/x/oauth2/jws is deprecated: this package is not intended for public use and
might be removed in the future. It exists for internal use only. Please switch to another
JWS package or copy this package into your own source tree.
github.com/golang-jwt/jwt/v4 seems to be a good alternative, and was already
an implicit dependency.
2023-03-26 19:20:50 +02:00
dependabot[bot]
3b4a57dab9
build(deps): bump github.com/aws/aws-sdk-go from 1.44.227 to 1.44.228
...
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go ) from 1.44.227 to 1.44.228.
- [Release notes](https://github.com/aws/aws-sdk-go/releases )
- [Commits](https://github.com/aws/aws-sdk-go/compare/v1.44.227...v1.44.228 )
---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-03-24 20:49:50 +00:00
dependabot[bot]
866600a73b
build(deps): bump github.com/aws/aws-sdk-go from 1.44.226 to 1.44.227
...
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go ) from 1.44.226 to 1.44.227.
- [Release notes](https://github.com/aws/aws-sdk-go/releases )
- [Commits](https://github.com/aws/aws-sdk-go/compare/v1.44.226...v1.44.227 )
---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-03-23 11:27:14 +00:00
dependabot[bot]
53853116fb
build(deps): bump github.com/aws/aws-sdk-go from 1.44.223 to 1.44.226
...
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go ) from 1.44.223 to 1.44.226.
- [Release notes](https://github.com/aws/aws-sdk-go/releases )
- [Commits](https://github.com/aws/aws-sdk-go/compare/v1.44.223...v1.44.226 )
---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-03-22 11:51:03 +00:00
dependabot[bot]
a887856998
build(deps): bump github.com/oracle/oci-go-sdk/v65
...
Bumps [github.com/oracle/oci-go-sdk/v65](https://github.com/oracle/oci-go-sdk ) from 65.32.1 to 65.33.0.
- [Release notes](https://github.com/oracle/oci-go-sdk/releases )
- [Changelog](https://github.com/oracle/oci-go-sdk/blob/master/CHANGELOG.md )
- [Commits](https://github.com/oracle/oci-go-sdk/compare/v65.32.1...v65.33.0 )
---
updated-dependencies:
- dependency-name: github.com/oracle/oci-go-sdk/v65
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-03-22 11:50:24 +00:00
dependabot[bot]
97276ce765
build(deps): bump google.golang.org/api from 0.112.0 to 0.114.0
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.112.0 to 0.114.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.112.0...v0.114.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-03-17 16:25:06 +00:00
dependabot[bot]
a23a7a807f
build(deps): bump github.com/klauspost/compress from 1.16.0 to 1.16.3
...
Bumps [github.com/klauspost/compress](https://github.com/klauspost/compress ) from 1.16.0 to 1.16.3.
- [Release notes](https://github.com/klauspost/compress/releases )
- [Changelog](https://github.com/klauspost/compress/blob/master/.goreleaser.yml )
- [Commits](https://github.com/klauspost/compress/compare/v1.16.0...v1.16.3 )
---
updated-dependencies:
- dependency-name: github.com/klauspost/compress
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-03-17 16:24:20 +00:00
dependabot[bot]
c6a4caaf7e
build(deps): bump goftp.io/server
...
Bumps goftp.io/server from 0.4.2-0.20210615155358-d07a820aac35 to 1.0.0-rc1.
---
updated-dependencies:
- dependency-name: goftp.io/server
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-03-17 16:23:37 +00:00
dependabot[bot]
5574733dcb
build(deps): bump github.com/oracle/oci-go-sdk/v65
...
Bumps [github.com/oracle/oci-go-sdk/v65](https://github.com/oracle/oci-go-sdk ) from 65.32.0 to 65.32.1.
- [Release notes](https://github.com/oracle/oci-go-sdk/releases )
- [Changelog](https://github.com/oracle/oci-go-sdk/blob/master/CHANGELOG.md )
- [Commits](https://github.com/oracle/oci-go-sdk/compare/v65.32.0...v65.32.1 )
---
updated-dependencies:
- dependency-name: github.com/oracle/oci-go-sdk/v65
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-03-17 16:22:54 +00:00
dependabot[bot]
49c21d0b6e
build(deps): bump github.com/aws/aws-sdk-go from 1.44.218 to 1.44.223
...
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go ) from 1.44.218 to 1.44.223.
- [Release notes](https://github.com/aws/aws-sdk-go/releases )
- [Commits](https://github.com/aws/aws-sdk-go/compare/v1.44.218...v1.44.223 )
---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-03-17 16:22:08 +00:00
Nick Craig-Wood
22daeaa6f3
build: update dependencies
...
This fixes the azureblob backend so it builds again after the SDK
changes.
This doesn't update bazil.org/fuse because it doesn't build on FreeBSD
https://github.com/bazil/fuse/issues/295
2023-03-10 11:15:07 +00:00
dependabot[bot]
4edcd16f5f
build(deps): bump github.com/gdamore/tcell/v2 from 2.5.4 to 2.6.0
...
Bumps [github.com/gdamore/tcell/v2](https://github.com/gdamore/tcell ) from 2.5.4 to 2.6.0.
- [Release notes](https://github.com/gdamore/tcell/releases )
- [Changelog](https://github.com/gdamore/tcell/blob/main/CHANGESv2.md )
- [Commits](https://github.com/gdamore/tcell/compare/v2.5.4...v2.6.0 )
---
updated-dependencies:
- dependency-name: github.com/gdamore/tcell/v2
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-03-09 18:38:47 +00:00
dependabot[bot]
534e3acd06
build(deps): bump github.com/iguanesolutions/go-systemd/v5
...
Bumps [github.com/iguanesolutions/go-systemd/v5](https://github.com/iguanesolutions/go-systemd ) from 5.1.0 to 5.1.1.
- [Release notes](https://github.com/iguanesolutions/go-systemd/releases )
- [Commits](https://github.com/iguanesolutions/go-systemd/compare/v5.1.0...v5.1.1 )
---
updated-dependencies:
- dependency-name: github.com/iguanesolutions/go-systemd/v5
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-03-09 18:38:04 +00:00
dependabot[bot]
cf75ddabd3
build(deps): bump golang.org/x/term from 0.5.0 to 0.6.0
...
Bumps [golang.org/x/term](https://github.com/golang/term ) from 0.5.0 to 0.6.0.
- [Release notes](https://github.com/golang/term/releases )
- [Commits](https://github.com/golang/term/compare/v0.5.0...v0.6.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/term
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-03-09 18:37:23 +00:00
dependabot[bot]
6edcacf932
build(deps): bump github.com/Azure/azure-sdk-for-go/sdk/azidentity
...
Bumps [github.com/Azure/azure-sdk-for-go/sdk/azidentity](https://github.com/Azure/azure-sdk-for-go ) from 1.2.0 to 1.2.2.
- [Release notes](https://github.com/Azure/azure-sdk-for-go/releases )
- [Changelog](https://github.com/Azure/azure-sdk-for-go/blob/sdk/azidentity/v1.2.2/CHANGELOG.md )
- [Commits](https://github.com/Azure/azure-sdk-for-go/compare/v1.2...sdk/azidentity/v1.2.2 )
---
updated-dependencies:
- dependency-name: github.com/Azure/azure-sdk-for-go/sdk/azidentity
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-03-09 18:36:23 +00:00
dependabot[bot]
51506a7ccd
build(deps): bump github.com/Azure/azure-sdk-for-go/sdk/azcore
...
Bumps [github.com/Azure/azure-sdk-for-go/sdk/azcore](https://github.com/Azure/azure-sdk-for-go ) from 1.3.0 to 1.4.0.
- [Release notes](https://github.com/Azure/azure-sdk-for-go/releases )
- [Changelog](https://github.com/Azure/azure-sdk-for-go/blob/main/documentation/release.md )
- [Commits](https://github.com/Azure/azure-sdk-for-go/compare/sdk/azcore/v1.3.0...sdk/azcore/v1.4.0 )
---
updated-dependencies:
- dependency-name: github.com/Azure/azure-sdk-for-go/sdk/azcore
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-03-09 18:33:40 +00:00
Nick Craig-Wood
96609e3d6e
ftp: revert to upstream github.com/jlaffaye/ftp now fix is merged
...
This reverts to using the upstream now the patch to fix hang when
using ExplicitTLS to certain servers is merged.
Fixes #6426
2023-03-07 12:12:07 +00:00
Nick Craig-Wood
ab2cdd840f
serve ftp: fix timestamps older than 1 year in listings
...
Fixes #6785
2023-03-06 15:59:56 +00:00
NodudeWasTaken
fe26d6116d
mega: add --mega-use-https flag
...
Some ISPs throttle HTTP which MEGA uses by default, so some users may find using HTTPS beneficial.
2023-03-02 20:28:10 +00:00
Manoj Ghosh
ce8b1cd861
oracle-object-storage: bring your own encryption keys
2023-02-21 14:45:02 +00:00
Manoj Ghosh
5bd6e3d1e9
fix vulnerablities: upgrade golang.org/x/net@v0.5.0 to golang.org/x/net@v0.7.0
2023-02-21 10:11:16 +00:00
Nick Craig-Wood
d4d7a6a55e
sftp: fix uploads being 65% slower than they should be with crypt
...
The block size for crypt is 64k + a few bytes. The default block size
for sftp is 32k. This means that the blocks for crypt get split over 3
sftp packets two of 32k and one of a few bytes.
However due to a bug in pkg/sftp it was sending 32k instead of just a
few bytes, leading to the 65% slowdown.
This was fixed in the upstream library.
This bug probably affected transfers from over the network sources
also.
Fixes #6763
See: https://github.com/pkg/sftp/pull/537
2023-02-14 15:47:19 +00:00
Nick Craig-Wood
21459f3cc0
tree: fix nil pointer exception on stat failure
...
This fixes the crash by updating the upstream.
See: https://forum.rclone.org/t/error-with-build-v1-61-1-tree-command-panic-runtime-error-invalid-memory-address-or-nil-pointer-dereference/35922/
See: https://github.com/a8m/tree/pull/21
2023-02-08 16:21:25 +00:00
Nick Craig-Wood
1680c5af8f
build: update to go1.20rc3 and make go1.17 the minimum required version
2023-01-16 11:19:16 +00:00
Nick Craig-Wood
10bf8a769e
build: update dependencies
...
This fixes the azureblob backend so it builds again after the SDK
changes.
2023-01-16 11:19:16 +00:00
Nick Craig-Wood
2001cc0831
Version v1.61.0
2022-12-20 17:16:14 +00:00
Nick Craig-Wood
53ff5bb205
build: Update golang.org/x/net/http2 to fix GO-2022-1144
...
An attacker can cause excessive memory growth in a Go server accepting
HTTP/2 requests. HTTP/2 server connections contain a cache of HTTP
header keys sent by the client. While the total number of entries in
this cache is capped, an attacker sending very large keys can cause
the server to allocate approximately 64 MiB per open connection.
2022-12-12 12:49:12 +00:00
Nick Craig-Wood
a131da2c35
azureblob: Port to new SDK
...
This commit switches from using the old Azure go modules
github.com/Azure/azure-pipeline-go/pipeline
github.com/Azure/azure-storage-blob-go/azblob
github.com/Azure/go-autorest/autorest/adal
To the new SDK
github.com/Azure/azure-sdk-for-go/
This stops rclone using deprecated code and enables the full range of
authentication with Azure.
See #6132 and #5284
2022-12-06 15:07:01 +00:00
Nick Craig-Wood
e3d593d40c
build: update dependencies
2022-11-24 11:05:54 +00:00
Nick Craig-Wood
83551bb02e
cmount: update cgofuse for FUSE-T support for mounting volumes on Mac
...
See: https://forum.rclone.org/t/fr-fuse-t-support-for-mounting-volumes-on-mac/33110/
2022-11-24 10:51:16 +00:00
albertony
22abcc9fd2
build: update golang.org/x/net dependency
...
This fixes vulnerability GO-2022-0969 reported by govulncheck:
HTTP/2 server connections can hang forever waiting for a clean
shutdown that was preempted by a fatal error. This condition can
be exploited by a malicious client to cause a denial of service.
Call stacks in your code:
Error: cmd/serve/restic/restic.go:150:22: github.com/rclone/rclone/cmd/serve/restic.init$1$1 calls golang.org/x/net/http2.Server.ServeConn
Found in: golang.org/x/net/http2@v0.0.0-20220805013720-a33c5aa5df48
Fixed in: golang.org/x/net/http2@v0.0.0-20220906165146-f3363e06e74c
More info: https://pkg.go.dev/vuln/GO-2022-0969
2022-10-26 12:59:31 +02:00
Nick Craig-Wood
5e59e7f442
ftp: Fix hang when using ExplicitTLS to certain servers.
...
It was discovered that doing the tls Handshake immediately on
connection causes some FTP servers (proftpd and pureftpd) to hang.
This imports a fix for it by temporarily hard forking jlaffaye/ftp to
include the fix submitted as a pull request.
See: https://forum.rclone.org/t/rclone-ftps-explicit-rclone-touch-empty-files-proftpd-unable-to-build-data-connection-operation-not-permitted/22522
See: https://github.com/rclone/rclone/issues/6426#issuecomment-1243993039
See: https://github.com/jlaffaye/ftp/pull/283
See: https://github.com/jlaffaye/ftp/issues/282
2022-10-14 12:10:03 +01:00
Manoj Ghosh
b16e50851a
Add a native backend for oracle object storage - fixes #6299
2022-10-13 13:04:56 +01:00
YanceyChiew
966654e23a
dlna: run assets_generate to make new icons
2022-10-06 16:59:51 +01:00
Lesmiscore
2aa264b33c
smb: backend to support SMB - fixes #2042
2022-09-30 16:10:57 +01:00
Øyvind Heddeland Instefjord
91f8894285
ftp: Add force_list_hidden option
...
Forces the use of `LIST -a` command
when listing a directory which should
list all hidden folders and files.
2022-09-14 12:10:58 +01:00
Nick Craig-Wood
df513ca90a
build: update dependencies
2022-08-05 17:43:53 +01:00
Nick Craig-Wood
f49be033c6
mega: Fix nil pointer exception when bad node received
...
Fixes : #6336
2022-08-04 10:22:57 +01:00
Nick Craig-Wood
ba60984f33
build: update to go1.19 and make go1.17 the minimum required version
2022-08-03 18:04:58 +01:00
albertony
5c6a958ad8
go mod tidy: github.com/pkg/xattr should be direct
2022-07-04 11:24:59 +02:00
albertony
1f9560e873
selfupdate: replace deprecated x/crypto/openpgp package with ProtonMail/go-crypto
2022-07-04 11:24:59 +02:00
Nick Craig-Wood
c556e98f49
local: add Metadata support #111
2022-06-29 14:29:36 +01:00
eNV25
36add0afbf
ncdu: replace termbox with tcell's termbox wrapper
...
The https://github.com/nsf/termbox-go library is no longer maintained
so this change replaces it with the maintained
github.com/gdamore/tcell library which has a termbox backwards
compatibility layer.
There are a few minor changes from the termbox library:
- Using Clear with fg bg ColorDefault resulted in a white background for some reason.
- Clear with fg ColorWhite bg ColorBlack was used instead.
- tcell's termbox wrapper doesn't support ColorLightYellow.
- ColorYellow + 8 was used instead.
2022-06-19 11:22:45 +01:00
Nick Craig-Wood
bb6edb3c39
build: update dependencies
...
Also:
- azureblob: fix compile after API change in upstream library
2022-06-08 18:29:42 +01:00
Nick Craig-Wood
26db80c270
ftp: revert to upstream github.com/jlaffaye/ftp from our fork
...
...now all of our patches have been merged #5810
2022-06-08 11:58:32 +01:00
Mateusz Puczyński
607172b6ec
go: run go mod tidy
and set version to minimum supported go - go1.16
...
This fixes `go mod tidy` needing manual intervention to build with
previous go versions.
2022-05-01 13:28:20 +01:00
Nick Craig-Wood
94757277bc
build: fix go mod tidy removing golang.org/x/mobile dependency
...
Before this running `go mod tidy` caused the build to break because it
removed the dependency on golang.org/x/mobile and a command line tool
from this package is needed for the build.
This adds an explicit dependency which will mean the tool is always present.
2022-05-01 13:28:20 +01:00
Nick Craig-Wood
1b0128ecb2
cmount: update winfsp/cgofuse dependency for windows/arm64 build
2022-04-29 18:04:21 +01:00
Nick Craig-Wood
4c02f50ef5
build: update github.com/billziss-gh to github.com/winfsp
2022-04-13 10:18:26 +01:00
Nick Craig-Wood
285747b1d1
build: update to go1.18 and make go1.16 the minimum required version
2022-04-04 20:35:17 +01:00
Nick Craig-Wood
59c242bbf6
build: update dependencies
...
Also:
- dropbox: fix compile after API change in upstream library
2022-04-04 20:35:17 +01:00
KARBOWSKI Piotr
4f78226f8b
sftp: Fix OpenSSH 8.8+ RSA keys incompatibility ( #6076 )
...
Updates golang.org/x/crypto to v0.0.0-20220331220935-ae2d96664a29.
Fixes the issues with connecting to OpenSSH 8.8+ remotes in case the
client uses RSA key pair due to OpenSSH dropping support for SHA1 based
ssh-rsa signature.
Bug: https://github.com/rclone/rclone/issues/6076
Bug: https://github.com/golang/go/issues/37278
Signed-off-by: KARBOWSKI Piotr <piotr.karbowski@gmail.com>
2022-04-01 12:49:39 +01:00
Tobias Klauser
54c9c3156c
fs/config, lib/terminal: use golang.org/x/term
...
golang.org/x/crypto/ssh/terminal is deprecated in favor of
golang.org/x/term, see https://pkg.go.dev/golang.org/x/crypto/ssh/terminal
The latter also supports ReadPassword on solaris, so enable the
respective functionality in fs/config for solaris as well.
2022-04-01 12:48:18 +01:00
Nick Craig-Wood
f9354fff2f
Version v1.58.0
2022-03-18 12:29:54 +00:00
Nick Craig-Wood
847868b4ba
ftp: hard fork github.com/jlaffaye/ftp to fix go get
...
Having a replace directive in go.mod causes "go get
github.com/rclone/rclone" to fail as it discussed in this Go issue:
https://github.com/golang/go/issues/44840
This is apparently how the Go team want go.mod to work, so this commit
hard forks github.com/jlaffaye/ftp into github.com/rclone/ftp so we
can remove the `replace` directive from the go.mod file.
Fixes #5810
2022-03-07 09:55:49 +00:00
Nick Craig-Wood
251b84ff2c
sftp: fix unecessary seeking when uploading and downloading files
...
This stops the SFTP library issuing out of order writes which fixes
the problems uploading to `serve sftp` from the `sftp` backend.
This was fixes upstream in this pull request: https://github.com/pkg/sftp/pull/482
Fixes #5806
2022-03-03 17:02:35 +00:00
Max Sum
c217145cae
crypt: add base64 and base32768 filename encoding options #5801
2021-11-15 17:57:02 +00:00
Nick Craig-Wood
4198763c35
build: update all dependencies
2021-11-10 10:34:56 +00:00
Nick Craig-Wood
3de47b8ed4
build: upgrade go.mod file to go1.17
2021-11-10 10:34:56 +00:00
Nick Craig-Wood
e43b5ce5e5
Remove github.com/pkg/errors and replace with std library version
...
This is possible now that we no longer support go1.12 and brings
rclone into line with standard practices in the Go world.
This also removes errors.New and errors.Errorf from lib/errors and
prefers the stdlib errors package over lib/errors.
2021-11-07 11:53:30 +00:00
Ivan Andreev
6210e22ab5
bisync: implementation #5164
...
Fixes #118
Co-authored-by: Chris Nelson <stuff@cjnaz.com>
2021-11-01 21:00:27 +03:00
Ivan Andreev
1d50336615
ftp: replace jlaffaye/ftp by rclone/ftp in the build #5596
2021-10-21 14:18:23 +03:00
Rajat Goel
db6002952e
dropbox: upgrade sdk version
2021-10-16 10:55:02 +01:00
Nick Craig-Wood
8b4a89d34b
Update github.com/ncw/swift to v2.0.1
2021-10-07 12:02:09 +01:00
Ivan Andreev
8b8a943dd8
mountlib: correctly daemonize for compatibility with automount - #5593
...
This patch will:
- add --daemon-wait flag to control the time to wait for background mount
- remove dependency on sevlyar/go-daemon and implement backgrounding directly
- avoid setsid during backgrounding as it can result in race under Automount
- provide a fallback PATH to correctly run `fusermount` under systemd as it
runs mount units without standard environment variables
- correctly handle ^C pressed while background process is being setting up
2021-10-02 23:45:16 +03:00
Ivan Andreev
8c10dee510
mountlib: use procfs to validate mount on linux - #5593
...
Current way of checking whether mountpoint has been already mounted (directory
list) can result in race if rclone runs under Automount (classic or systemd).
This patch adopts Linux ProcFS for the check. Note that mountpoint is considered
empty if it's tagged as "mounted" by autofs. Also ProcFS is used to check whether
rclone mount was successful (ie. tagged by a string containing "rclone").
On macOS/BSD where ProcFS is unavailable the old method is still used.
This patch also moves a few utility functions unchanged to utils.go:
CheckOverlap, CheckAllowings, SetVolumeName.
2021-10-02 23:45:16 +03:00
Ivan Andreev
aa0ceb6c5c
cmd/version: add support for openbsd/386
...
After this patch the version command will be fully
supported on openbsd/amd64 and openbsd/386.
Remaining os/arch combinations stay as is.
2021-09-02 11:13:12 +03:00
Nick Craig-Wood
09fd258b5c
build: update all dependencies
2021-08-20 22:03:38 +01:00
Nick Craig-Wood
8bd26c663a
build: update golang.org/x/sys for go1.17 build
2021-08-20 19:04:29 +01:00
Ivan Andreev
e45c23ab79
cmd/version: add support for openbsd/amd64
...
After this patch the version command will be
- fully supported on openbsd/amd64
- stay stub on openbsd/i386 until we deprecate go 1.17
Remaining os/arch combinations stay as is.
2021-08-16 11:39:34 +03:00
Antoine GIRARD
daf449b5f2
cmd/serve: add serve docker command ( #5415 )
...
Fixes #4750
Co-authored-by: Ivan Andreev <ivandeex@gmail.com>
2021-07-10 23:56:09 +03:00
Nolan Woods
95ee14bb2c
feat: Add lib/http
...
lib/http provides an abstraction for a central http server that services can bind routes to
2021-04-28 22:54:15 +01:00