Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

pmacct-1.7.6-1.2 RPM for armv7hl

From OpenSuSE Ports Tumbleweed for armv7hl

Name: pmacct Distribution: openSUSE Tumbleweed
Version: 1.7.6 Vendor: openSUSE
Release: 1.2 Build date: Fri May 28 07:50:42 2021
Group: Productivity/Networking/Diagnostic Build host: armbuild02
Size: 8668945 Source RPM: pmacct-1.7.6-1.2.src.rpm
Packager: http://bugs.opensuse.org
Url: http://www.pmacct.net/
Summary: Accounting and aggregation toolsuite for IPv4 and IPv6
pmacct is a set of passive network monitoring tools to measure, account,
classify and aggregate IPv4 and IPv6 traffic; a pluggable
architecture allows to store the collected traffic data into memory tables or
SQL (MySQL, SQLite, PostgreSQL) databases. pmacct supports customizable
historical data breakdown, flow sampling, filtering and tagging, recovery
actions, and triggers. Libpcap, sFlow v2/v4/v5 and NetFlow v1/v5/v7/v8/v9 are
supported, both unicast and multicast. A client program can export
export data to tools like RRDtool, GNUPlot, Net-SNMP, MRTG, and Cacti.

Provides

Requires

License

GPL-2.0-only

Changelog

* Sun Mar 14 2021 Martin Hauke <mardnh@gmx.de>
  - Update to versino 1.7.6
    + BGP daemon: added suppport for Accumulated IGP Metric Attribute
      (AIGP) and Label-Index TLV of Prefix-SID Attribute.
    + BGP daemon: added SO_KEEPALIVE TCP socket option (ie. to keep the
      sessions alive via a firewall / NAT kind of device).
    + BGP daemon: if comparing source TCP ports among BGP peers is
      being enabled (config directive tmp_bgp_lookup_compare_ports),
      print also BGP Router-ID as distinguisher as part of log/dump
      output.
    + BMP daemon: added support for HAProxy Proxy Protocol Header in
      the first BMP message in order to determine the original sender
      IP address and port. The new bmp_daemon_parse_proxy_header config
      directive enables the feature.
    + BMP daemon: improved support and brought implementation on par
      with the latest drafting efforts at IETF wrt draft-cppy-grow-bmp-
      path-marking-tlv, draft-xu-grow-bmp-route-policy-attr-trace,
      draft-ietf-grow-bmp-tlv and draft-lucente-grow-bmp-tlv-ebit.
    + BMP daemon: added 'bgp_agent_map' equivalent feature for BMP.
    + nfacctd, nfprobe plugin: added support for collection and export
      of NetFlow/IPFIX data over Datagram Transport Layer Security (in
      short DTLS). The feature depends on the GnuTLS library.
    + nfacctd: added support for deprecated NetFlow v9 IE #104
      (layer2packetSectionData) as it is implemented for NetFlow-lite
      on Cisco devices. Reused code from IPFIX IE #315.
    + nfacctd: added support for MPLS VPN RD IE #90. This comes in two
      flavours both found across vendor implementations: 1) IE present
      in flow data and 2) IE present in Options data as a lookup from
      IE #234 (ingressVRFID) and #235 (egressVRFID).
    + nfacctd: added a new timestamp_export aggregation primitive to
      record the timestamp being carried in the header of NetFlow/IPFIX
      messates (that is, the time at which the export was performed).
    + nfprobe plugin: added support for ICMP/ICMPv6 information as part
      of the NetFlow/IPFIX export. The piece of info is encoded in the
      destination port field as per the current common understandings
      across vendors. As a result of that, the 'dst_port' primitive is
      to be part of the aggregation method in order to leverage this
      feature.
    + MySQL plugin: introduced support to connect to a MySQL server
      via UNIX sockets.
    + tee plugin: added crc32 hash algorithm as a new balancing option
      for nodes in the receiving pool. It hashes original exporter IP
      address against a crc32 function. Thanks to @edge-intelligence
      for the contribution.
    ! fix, BGP daemon: re-worked internal structuring of 'modern' BGP
      attributes: for the sake of large-scale space optimization
      certain attributes are confined in a separate (less used)
      bgp_info_extra structure.
    ! fix, BGP daemon: improved support for BGP ADD-PATH, ie. made it
      per Address-Family rather than global. Also comparisons upon
      doing route looup were improved and normalized.
    ! fix, BGP daemon: use split buffers for recv and send functions
      of the BGP x-connects feature. Also improved validation when
      processing a bgp_daemon_xconnect_map.
    ! fix, BGP daemon: when using BGP x-connects, close unused file
      descriptors in bgp_peer_xconnect_init() in order to avoid
      quickly reaching the maximum amount of allowed open descriptors
      in case of BGP flaps.
    ! fix, BGP daemon: trigger a log message for a missing entry while
      processing bgp_daemon_xconnect_map in bgp_peer_xconnect_init().
    ! fix, BGP daemon: enabled log notifications (that is, log anti-
      spam measure) upon reaching limit of allowed BGP peers.
    ! fix, BGP daemon: ecommunity_ecom2str(), first thing make sure
      that the destination size is enough! Missing this did cause some
      SEGVs due to heap corruption.
    ! fix, BGP daemon: solved a memory leak in aspath_make_str_count()
      by returning result from aspath_make_empty(), if any. Thanks very
      much to Peter Pothier ( @pothier-peter ) for his contribution.
    ! fix, BMP daemon: several encoding issues when using Apache Avro
      ie. missing conditional branching, wrong field names, etc.
    ! fix, BMP daemon: throw an error for any issues (error or zero
      length) related to the BGP Update PDU parsing; also added marker
      and length checks for BGP Open PDU in Peer Up messages.
    ! fix, BMP daemon: both timestamp of the BMP event and its
      arrival at the collector are now recorded and printed out
      separately; before they were wrongly muxed on one single field
      making it uncertain for the user what was the time reference.
    ! fix, BMP daemon: correctly print Peer Distinguisher for Route
      Monitoring messages. Also improved BMP lookup comparisons in
      order to factor in Peer Distinguisher if any.
    ! fix, BMP daemon: print 'is_in' boolean for Adj-Rib-In data
      instead of having it implicit. Also print 'is_post' for Post-
      Policy Adj-Rib-In data.
    ! fix, BMP daemon: upon receipt of a Termination message, do
      proactively close the TCP session.
    ! fix, nDPI: newer versions of the library (ie. >= 3.2) require
      calling ndpi_finalize_initialization() somewhere after the
      detection module init finished.
    ! fix, pmacctd: link checks were being mistakenly skipped when
      reading from a pcap_savefile. Also now if a selected aggregation
      primitive is unsuitable for a given Layer2, it is simply cleared
      (with an info message issued) instead of making the daemon bail
      out.
    | fix, print plugin: bail the plugin out if its output was set to
      stdout while the daemon was started as daemonized.
    ! fix, PostgreSQL plugin: in PG_compose_conn_string() allow any
      intersection of host, port and cafile options.
    ! fix, nfprobe plugin: changed default export version from NetFlow
      v5 to IPFIX.
    ! fix, sfprobe plugin: FreeBSD was complaining of errno 22 (Invalid
      argument) upon sendto().
    ! fix, tee plugin: replication of IPv6 packets has been now tested
      working. Previously the output message size was obviously encoded
      wrongly and the checksum (mandatory piece of info to fill in IPv6,
      contrary to IPv4 where it is optional) was not being computed.
    ! fix, kafka_common.c: improved p_kafka_check_outq_len() error log
      message to report the amount of elements have been successfully
      processed in order to better assess impact and dynamics of the
      problem when inspecting logs.
    ! fix, net_aggr.c: if networks_file_filter is set to true, don't
      add a default route to the table.
    ! fix, cfg.c: throw error if config file is not a regular file.
    ! fix, compiling against gcc10: renamed some variables and unified
      declaration of others in order to be more friendly to the new
      version of gcc. Also fixed several code warnings catched gcc8.
    - Removed the IP prefix label feature that was enabled via the
    - -enable-plabel configure script switch.
* Sun Jun 28 2020 Martin Hauke <mardnh@gmx.de>
  - Update to versino 1.7.5
    * See /usr/share/doc/packages/pmacct/ChangeLog for all changes
  - Drop patch (addressed by upstream in 686495dd):
    * pmacct-fix-overflow.patch
* Sun Jun 07 2020 Martin Hauke <mardnh@gmx.de>
  - Set CFLAGS+=-fcommon
* Mon Mar 30 2020 Marcus Meissner <meissner@suse.com>
  - pmacct-fix-overflow.patch: fixed bufferoverflow in sfacctd.
  - reenable _FORTIFY_SOURCE that showed that failure
* Sun Feb 09 2020 Martin Hauke <mardnh@gmx.de>
  - Update to version 1.7.4p1
    fix, pre_tag_map: a memory leak in pretag_entry_process() has been
    introduced in 1.7.4.
* Thu Jan 02 2020 Martin Hauke <mardnh@gmx.de>
  - Update to version 1.7.4
    + Introduced support for the 'vxlan' VXLAN/VNI primitive in all
      traffic daemons
    + BMP daemon: added support for Peer Up message namespace for TLVs
    + sfprobe plugin: added support for IPv6 transport for sFlow export.
    See /usr/share/doc/packages/pmacct/ChangeLog for all changes
* Thu Nov 07 2019 Martin Hauke <mardnh@gmx.de>
  - Do not longer build with support for the obsolete GeoIP
    The GeoIP-interface has been discontinued by Maxmind. See
    https://support.maxmind.com/geolite-legacy-discontinuation-notice/
    for details. Without the database GeoIP is useless.
    pmacct is now build with support for libmaxminddb (GeoIPv2) that
    provides the same features but with a new supported interface.
* Thu May 16 2019 Martin Hauke <mardnh@gmx.de>
  - Update to version 1.7.3
    + Introduced the RPKI daemon to build a ROA database and check prefixes
      validation status and coverages. Resource Public Key Infrastructure
      (RPKI) is a specialized public key infrastructure (PKI) framework
      designed to secure the Internet routing. RPKI uses certificates to
      allow Local Internet Registries (LIRs) to list the Internet number
      resources they hold. These attestations are called Route Origination
      Authorizations (ROAs). ROA information can be acquired in one of the
      two following ways: 1) importing it using the rpki_roas_file config
      directive from a file in the RIPE Validator format or 2) connecting
      to a RPKI RTR Cache for live ROA updates; the cache IP address/port
      being defined by the rpki_rtr_cache config directive (and a few more
      optional rpki_rtr_* directives are available and can be reviwed in
      the CONFIG-KEYS doc). The ROA fields will be populated with one of
      these five values: 'u' Unknown, 'v' Valid, 'i' Invalid no overlaps,
      'V' Invalid with a covering Valid prefix, 'U' Invalid with a covering
      Unknown prefix.
    + Introducing pmgrpcd.py, written in Python, a daemon to handle gRPC-
      based Streaming Telemetry sessions and unmarshall GPB data. Code
      was mostly courtesy by Matthias Arnold ( @tbearma1 ). This is in
      addition (or feeding into) pmtelemetryd, written in C, a daemon to
      handle TCP/UDP-based Streaming Telemetry sessions with JSON-encoded
      data.
    + pmacctd, uacctd: added support for CFP (Cisco FabricPath) and Cisco
      Virtual Network Tag protocols.
    + print plugin: added 'custom' to print_output. This is to cover two
      main use-cases: 1) use JSON or Avro encodings but fix the format of
      the messages in a custom way and 2) use a different encoding than
      JSON or Avro. See also example in examples/custom and new directives
      print_output_custom_lib and print_output_custom_cfg_file. The patch
      was courtesy by Edge Intelligence ( @edge-intelligence ).
    + Introducing mpls_pw_id aggregation primitive and mpls_pw_id key in
      pre_tag_map to filter on signalled L2 MPLS VPN Pseudowire IDs.
    + BGP daemon: added bgp_disable_router_id knob to enable/disable BGP
      Router-ID check, both at BGP OPEN time and BGP lookup. Useful, for
      example, in scenarios with split BGP v4/v6 AFs over v4/v6 transports.
    + BGP, BMP daemons: translate origin attribute numeric value into IGP
      (i), EGP (e) and Incomplete (u) strings.
    + plugins: added new plugin_exit_any feature to make the daemon bail
      out if any (not all, which is the default behaviour) of the plugins
      exits.
    + maps_index: improved selection of buckets for index hash structure
      by picking the closest prime number to the double of the entries of
      the map to be indexed in order to achieve better elements dispersion
      and hence better performances.
    + nfacctd: added support for IPFIX templateId-scoped (IE 145) sampling
      information.
    + pmacctd, uacctd, sfacctd, nfacctd: added a -M command-line option to
      set *_markers (ie. print_markers) to true and fixed -A command-line
      option to set print_output_file_append to align to true/false.
    ! fix, BGP, BMP, Streaming Telemetry daemons: improved sequencing of
      dump events by assigning a single sequence number per event (ie. for
      streaming pipeline scenarios in order to reduce correlation with
      dump_init/dump_close messages). Also amount of record dumped was
      added to the close message.
    ! fix, BGP, BMP, Streaming Telemetry daemons: removed hierarchical
      json_decref() since json_object_get() borrows reference. This was
      occasionaly leading to SEGVs.
    ! fix, uacctd: dynamically allocate jumbo_container buffer size as
      packets larger than 10KB, previous static allocation, would lead to
      crashes.
    ! fix, nfacctd: wired (BGP, BMP, ISIS, etc.) lookups to the NEL/NSEL
      use-case.
    ! fix, nfacctd: search for IE 408 (dataLinkFrameType) was leading to
      SEGVs. Also improved handling of variable-length IPFIX templates.
    ! fix, BMP daemon: solved an occasional truncation of the last message
      in a packet.
    ! fix, BGP daemon: when processing bgp_daemon_md5_file, ipv4 addresses
      were incorrectly translated to ipv4-mapped ipv6 ones as a result of
      which TCP-MD5 hashes were not correctly bound to sockets.
    ! fix, BGP daemon: improved label-unicast and mpls-vpn SAFIs handling
      (some bogus messages, multiple labels, etc.).
    ! fix, BGP daemon: introduced PREFIX_STRLEN to make enough room for
      prefix2str() calls (before unsufficient INET6_ADDRSTRLEN was used).
    ! fix, BMP daemon: improved handling of ADD-PATH capability.
    ! fix, plugins: an incorrect evaluation in P_cache_attach_new_node did
      make possible to buffer overrun in plugins cache allocation. This was
      found related to a "[..]: Assertion `!cache_ptr->stitch' failed."
      daemon bail-out message.
    ! fix, plugins: if pidfile directive was enabled, exit_gracefully() was
      mistakenly deleting the plugin pidfile when called by a child process
      (ie. writer, dumper, etc.).
    ! fix, plugins: when taking exit_gracefully(), if the process is marked
      as 'is_forked', just exit and don't perform extra ops in exit_all()
      or exit_plugin().
    ! fix, plugins: re-evaluate dynamic tables/files name if *_refresh_time
      is different than *_history period.
    ! fix, SQL plugins: a missing 'AND' was making SQL statements related
      to src_host_coords and dst_host_coords fail.
    ! fix, GeoIPv2: if no match is returned by libmaxminddb, return O1 code
      (Other Country) instead of a null value.
    ! fix, flow_to_rd_map: mpls_vpn_id was not working when maps_index was
      enabled. Also partly re-written mpls_vpn_id handler.
    ! fix, nfprobe plugin: serialize_bin() function introduced for correct
      serialization of custom primitives defined with 'raw' semantics.
    ! fix, PostgreSQL plugin: testing for presence of PQlibVersion() in
      libpq to prevent compiling issues (ie. on CentOS 6).
    ! fix, MySQL plugin: including mysql_version.h to compile successfully
      against newer MariaDB releases.
    ! fix, nDPI classification: send log message if 'class' primitive is
      selected but nDPI is not compiled in; also updated code to follow
      API changes in versions >= 2.6 of the library. Dropped support for
      versions < 2.4.
    ! fix, sfprobe plugin: added (and documented) conditional for optional
      export of classification info.
    ! fix, aggregate_primitives: field_type is now also allowed for pmacctd
      and uaccd daemons so that it can be used for NetFlow v9/IPFIX export
      (nfprobe plugin) purposes.
    ! fix, pre_tag_map: if no 'ip' keyword is specified, an entry of the
      map gets recirculated in order to be set for both v4 and v6 maps. If
      a 'set_label' is also specified, it was causing a SEGV. Now the label
      is correctly copied in case of recirculation.
    ! fix, zmq_common.c: added option for non-blocking p_zmq_send_bin() as
      otherwise program would block in case of no consumers (main use-case:
      flow replication over ZeroMQ queues); as a result, a generous hwm
      value was added on both sides of these queues.
    ! fix, zmq_common.c: ZAP socket moved inside thread to prevent failed
      assert() when compiling with gcc7/gcc8. Also a single user/password
      auto-generated combination is used for all plugins.
    ! fix, signals.c: SIGUSR1 handler for nfacctd and nfacctd is changed to
      syncronous in order to prevent race conditions. Also, in pmacctd,
      upon sending SIGUSR1, stats were not printed when reading packets
      from a pcap_interfaaces_map.
    ! fix, plugin_cmn_json.c: if leaving protocols numerical (ie. proto,
      tunnel_proto primitives), convert them to string-represented numbers
      for data consistency for consumers.
    ! fix, util.c: open_output_file(), if file exists and it's a FIFO then
      set O_NONBLOCK when opening.
    ! fix, pretag.c: pretag_index_report() was reporting incorrect info of
      the hash structure built for the maps_index feature. Its format was
      has also changed to be better parseable.
    ! fix, compile time warnings: several warnings were addressed including
      but not restricted to -Wformat ones. Also an annotation was added to
      the Log function to inform the compiler it's a printf-style function,
      allowing it to give warnings for argument mismatches.
    - --enable-ipv6 configure script switch has been deprecated and, as a
      result, IPv6 support was made mandatory.
    - BGP daemon: removed unused pathlimit field from bgp_attr structure.
    - pmacct client: removed deprecated SYM field from from formatted and
      CSV headers.
  - Build with support for
    * ZeroMQ
    * Maxmind GeoIP DB v2
* Thu Dec 20 2018 mardnh@gmx.de
  - Don't enable support for nDPI by default
* Mon Dec 17 2018 Jan Engelhardt <jengelh@inai.de>
  - Trim filler wording from description.
* Mon Nov 26 2018 mardnh@gmx.de
  - Drop support for older distributions
  - Update to version 1.7.2
    + nfacctd, sfacctd: added Kafka broker among the options to receive
      NetFlow/IPFIX, sFlow data from. Host, port and topic should all be
      specified along with an optional config file to pass to librdkafka.
    + nfacctd, sfacctd, pmtelemetryd: added ZeroMQ queue among the options
      to receive NetFlow/IPFIX, sFlow or Streaming Telemetry data from. An
      IP address and port should be specified.
    + nfacctd, sfacctd: added sampling_direction to the set of supported
      primitives, valid values being ingress, egress and unknown.
    + nfacctd, sfacctd: stats, ie. amount of NetFlow/IPFIX or sFlow packets
      received per router, are now available when in tee mode. Stats can be
      retrieved via a SIGUSR1 UNIX signal.
    + pcap_savefile_replay: a feature to replay content for the specified
      amounf of time when reading from a pcap_savefile.
    + pre_tag_map: added several new keys: src_net and dst_net (to tag on
      source and destination IP prefixes respectively), bgp_nexthop (to
      tag on BGP nexthop) and nat_event.
    + BGP daemon: added bgp_lrgcomm_pattern feature to filter large BGP
      communities (in addition to existing equivalent knobs to filter on
      standard and extended communities).
    + BMP, Streaming Telemetry daemons: msglog_file and dump_file config
      directives now offer $bmp_router, $bmp_router_port, $telemetry_node
      and $telemetry_node_port variables.
    + BGP, BMP, Streaming Telemetry daemons: added BGP, BMP and Streaming
      Telemetry exporter TCP/UDP port as variable for dump/log filenames
      (to better support NAT traversal scenarios).
    + BGP, BMP daemons: added message sequencing to both BGP and BMP dumps
      (bgp_table_dump_*, bmp_dump_*). If dumping and logging are enabled
      in parallel then sequencing the dumps allows for check pointing at
      regular time intervals.
    + BMP daemon: implemented draft-hsmit-bmp-extensible-routemon-msgs for
      a tlv-based encoding of route-monitoring messages with a new message
      type.
    + Streaming Telemetry daemon: added sample decoders for gRPC / GPB for
      Cisco and Huawei platforms, written in Python. Telemetry data is
      decoded using vendor-supplied proto files and output in JSON format
      in a ZeroMQ queue - suitable for ingestion in pmtelemetryd. Docs and
      sample code is available in the telemetry/ directory. This is all in
      addition to TCP/UDP transports and JSON encoding supported natively
      in pmtelemetryd.
    + kafka plugin: introduced support for Confluent Schema Registry via
      libserdes. A registry can be supplied via kafka_avro_schema_registry
      config directive; the schema is generated automatically. The feature
      enables validation of data passed through a Kafka broker and uses
      Avro encoding.
    + kafka plugin: added $in_iface key (input interface) to the set of
      variables supported by kafka_partition_key. Extremely useful when
      coupled to $peer_src_ip in some scenarios.
    + print, IMT plugins: separator for CSV format can now be space (\s)
      or tab (\t).
    + tee plugin: added Kafka broker among the emitters. kafka_broker and
      kafka_topic knobs are now available in the tee_receivers map and a
      tee_kafka_config_file directive allows to define a file with config
      to pass to librdkafka.
    + tee plugin: added ZeroMQ queue among the emitters. zmq_address knob
      defines the queue IP address and port to emit to.
    + tee plugin: introducing support for complex pre_tag_map when doing
      replication of NetFlow/IPFIX (sFlow replication had already this).
      With this feature flows are individually evaluated against supplied
      filters (input interface, BGP next-hop, etc.) and (not) replicated
      accordingly.
    + GeoIP v2: added support for latitude and longitude primitives via
      src_host_coords and dst_host_coords knobs. This is in addition to
      existing country and pocode supports.
    + files_uid, files_gid: now also user and group strings are accepted.
      This is in addition to user and group IDs.
    ! fix, nfacctd: NF_evaluate_flow_type() improved to not detect Cisco
      ASA flows (ie. those including initiator and responder octets) as
      events. Also improved sanity checking of received NetFlow v9/IPFIX
      data and options templates and reviwed modulo functions and improved
      template hashing.
    ! fix, BGP, BMP, Streaming Telemetry daemons: improved log sequencing
      by handling counter wrap-up more gracefully. Also a log sequencing
      API was developed to improve code re-use.
    ! fix, BGP daemon: added check for duplicate Router-IDs at BGP OPEN
      parsing time. If a duplicate is detected, the session BGP OPENing of
      the new session is dropped.
    ! fix, BGP daemon: ADD-PATH capability was checked only in the first
      AFI/SAFI and was being set in the reply for last AFI/SAFI RECEIVE(1)
      if first included SEND(2) or SEND-RECEIVE(3). Thanks to Markus Weber
      ( @FvDxxx ) for his patch.
    ! fix, BGP daemon: upon route lookup, don't perform ADD-PATH logics if
      no PATH-ID (even if ADD-PATH capability is announced by the peer).
      Thanks to Camilo Cardona ( @jccardonar ) for his support solving the
      issue.
    ! fix, BGP daemon: graceful handling of invalid AS-PATH segment types
      (ie. AS-PATH in BGP UPDATE inconsistent with capabilities passed in
      BGP OPEN) in order to avoid SEGVs.
    ! fix, pmtelemetryd: improved support for UDP timeouts. Also reviewed
      natively supported encodings: removed zjson and GPB was moved to pre-
      processors (with samples available in telemetry/decoders directory).
    ! fix, pmtelemetryd: no dump_init / dump_close events sequencing since
      all messages are sequenced anyway (consistency with other daemons).
    ! fix, kafka_common.c: now destroying both config and topic config as
      part of p_kafka_close() in order to avoid memory leaks. Also, port is
      omitted from broker string if not passed to p_kafka_set_broker(). And
      finally output queue length checks in p_kafka_check_outq_len() have
      been relaxed (to counter temporary hickups that need more patience).
    ! fix, kafka plugin: kafka_partition default was zero (that is, a valid
      partition number) instead of -1 (RD_KAFKA_PARTITION_UA or unassigned)
      which allows librdkafka to attach a partitioner.
    ! fix, SQL plugins: sql_table_schema is honoured even if sql_table_name
      is non-dynamic. This is to cover cases where the table is rotated
      externally.
    ! fix, mysql plugin: my_bool replaced with bool. The plugin now does
      compile against MySQL 8.0. Also added inclusion of stdbool.h as on
      some systems bool is not defined. Improved overall probing for MySQL
      headers.
    ! fix, pgsql plugin: sql_recovery_backup_host was not being honoured.
      PG_create_backend() now composes a proper conn_string.
    ! fix, print plugin: increase successful queries number, QN, only if
      the output file was successfully opened.
    ! fix, zmq_common.c: moved ZAP socket initialization inside the ZAP
      handler. See: https://github.com/zeromq/libzmq/issues/3313 .
    ! fix, util.c: length checks in handle_dynname_internal_strings() were
      reviewed. Existings were not working in absence of starting/trailing
      non-variable strings.
    ! fix, util.c: use lockf() instead of more problematic flock(). Thanks
      to Yuri Lachin ( @yuyutime ) and Miki Takata ( @mikiT ) for their
      support.
    ! fix, util.c: in compose_timestamp() pad usecs and use "%ld" since
      time fields are signed longs. Thanks to @raymondrussell for the
      patch.
    ! fix, ndpi_util.c: a protocol bitmask is now set in order to increase
      match rate. Patch is courtesy by @rsolsn.
    ! fix, compile time warnings: several warnings were addressed including
      but not restricted to -Wreturn-time, -Wunused-variable, implicit func
      declarations, -Wformat-extra-args, -Wunused-label, -Wunused-value,
    - Wunused-function, sbrk calls, -Wpointer-to-int-cast, -Wparentheses
      and -Wint-to-pointer-cast.
    ! fix, dangerous uninitialized values: net_aggr.c, pmacct.c: in merge()
      argument with non-NULL attribute could be passed NULL; bmp_msg.c: in
      bmp_process_msg_route_monitor() bdata.tstamp could be uninitialized;
      sfprobe_plugin.c: calloc() return value (possibly null) was not being
      checked; sflow_agent.c: uninitialized ret value in sfl_agent_init()
      could lead to undefined bind() error behaviour.
    ! fix, thread_pool.c: reviewed logics in deallocate_thread_pool() and
      solved a minor memory leak in allocate_thread_pool().
    - pmacctd: removed support for FDDI
    - nfacctd: discontinued support for NetFlow v1, v7 and v8 collection
      and replication.
    - pre_tag_map: matching on 'sampling_rate' is not supported anymore as
      a sampling_rate primitive is now available; the 'return' feature to
      return matched data before completing the map workflow has started
      being obsoleted (retired from docs but still available).
    - plugin_pipe_check_core_pid: deprecating feature given RabbitMQ and
      Kafka are not supported anymore for internal message delivery.
    - tee plugin: obsoleted tee_dissect_send_full_pkt knob, entire packets
      are now replicated only if no pre_tag_map or a simple pre_tag_map is
      defined.
    - nfprobe plugin: removed support for NetFlow v1 export.
* Sun May 06 2018 mardnh@gmx.de
  - update to version 1.7.1
    + pmbgpd: introduced a BGP connect feature meant to map BGP peers
      (ie. PE routers) to BGP collectors (ie. nfacctd, sfacctd) via a
      standalone BGP daemon (pmbgpd). The aim is to facilitate operations
      when re-sizing/re-balancing the collection infrastructure without
      impacting (ie. re-configuring) BGP peers. bgp_daemon_xconnect_map
      expects full pathname to a file where cross-connects are defined;
      mapping works only against the IP source address and not the BGP
      Router ID, only 1:1 relationships can be formed (ie. this is about
      cross-connecting, not replication) and only one session per BGP
      peer is supported (ie. multiple BGP agents are running on the same
      IP address or NAT traversal scenarios are not supported [yet]).
      A sample map is provided in 'examples/bgp_xconnects.map.example'.
    + pmbgpd: introduced a BGP Looking Glass server allowing to perform
      queries, ie. lookup of IP addresses/prefixes or get the list of BGP
      peers, against available BGP RIBs. The server is asyncronous and
      uses ZeroMQ as transport layer to serve incoming queries. Sample
      C/Python LG clients are available in 'examples/lg'. A sample LG
      server config is available in QUICKSTART. Request/Reply Looking
      Glass formats are documented in 'docs/LOOKING_GLASS_FORMAT'.
    + pmacctd: a single daemon can now listen for traffic on multiple
      interfaces via a polling mechanism. This can be configured via a
      pcap_interfaces_map feature (interface/pcap_interface can still be
      used for backward compatiblity to listen on a single interface). The
      map allows to define also ifindex mapping and capturing direction on
      a per-interface basis. The map can be reloaded at runtime via a USR2
      signal and a sample map is in examples/pcap_interfaces.map.example.
    + Kafka plugin: dynamic partitioning via kafka_partition_dynamic and
      kafka_partition_key knobs is introduced. The Kafka topic can contain
      variables, ie. $peer_src_ip, $src_host, $dst_port, $tag, etc., which
      are all computed when data is purged to the backend. This feature is
      in addition to the existing kafka_partition feature which allows to
      rely on the built-in Kafka partitioning to assign data statically to
      one partition or rely dynamically on the default partitioner. The
      feature is courtesy by Corentin Neau / Codethink ( @weyfonk ).
    + Introduced rfc3339 formatted timestamps: in logs, ie. UTC timezone
      represented as yyyy-MM-ddTHH:mm:ss(.ss)Z; for aggregation primitives
      the timestamps_rfc3339 knob can be used to enable this feature (left
      disabled by default for backward compatibility).
    + timestamps_utc: new knob to decode timestamps to UTC timezone even
      if the Operating System is set to a different timezone. On the goods
      of running a system set to UTC please read Q18 of FAQS.
    + sfacctd: implemented mpls_label_top, mpls_label_bottom and
      mpls_stack_depth primitives decoded from sFlow flow sample headers.
      Thanks to David Barroso ( @dbarrosop ) for his support.
    + nfacctd: added support for IEs 130 (exporterIPv4Address) and 131
      (exporterIPv6Address) when passed as part of NetFlow v9/IPFIX
      option packets (these IEs were already supported when passed in flow
      data). Also added support for IE 351 (dataLinkFrameSection) which
      carries the initial portion of a sampled raw packet headers (a-la
      sFlow). This was tested working against a Cisco NCS 5k platform.
    + nfprobe plugin: added a new nfprobe_dont_cache knob allowing to
      disable caching and summarisation of flows (essentially letting the
      NetFlow/IPFIX probe behave like a sFlow probe).
    + nfprobe plugin: added support for MPLS_LABEL_1, NetFlow v9/IPFIX IE
      70; improved support for BGP next-hop IE 18 and 63. Also support for
      IE 130/131 vi NetFlow v9/IPFIX Options was added.
    + sfprobe plugin: added sfprobe_source_ip knob to define the local IP
      address from which sFlow datagrams are exported; improved support
      for BGP next-hop.
    + nfacctd, sfacctd, BGP, BMP, Streaming Telemetry daemons: on Linux,
      if supported, use SO_REUSEPORT for the listening socket (added to
      existing SO_REUSEADDR option).
    + nfacctd, sfacctd: introduced new 'export_proto_sysid' primitive to
      give visibility to NetFlow v5/v8 engine_id / NetFlow v9 source ID /
      IPFIX Obs Domain ID / sFlow agentSubID.
    + nfacctd, sfacctd: extended nDPI support to NetFlow v9/IPFIX packets
      with IE 315 (dataLinkFrameSection) and sFlow v5 packets with header
      section.
    + nfacctd, sfacctd: extended custom primitives definition framework,
      aggregate_primitives, to NetFlow v9/IPFIX packets with IE 315
      (dataLinkFrameSection) and sFlow v5 sampled headers section.
    + nfacctd, sfacctd: added per-collector packets and bytes counts to
      stats emitted via SIGUSR1. Also the output was made more formal (so
      to be more easily parsed) and is documented in the UPGRADE notes.
    + nfacctd, pmacctd, sfacctd: pcap_savefile_delay feature introduced
      to sleep for the supplied amount of seconds before playing a given
      pcap_savefile. Useful, for example, to let BGP/BMP sessions come up
      so that routing data is available for correlation when processing
      data in the trace.
    + Kafka plugin: configuring statistics.interval.ms to a positive value
      in a kafka_config_file makes now librdkafka log plenty of internal
      metrics.
    + BGP daemon: added support for Extended BGP Administrative Shutdown
      Communication (draft-snijders-idr-rfc8203bis-00).
    + BMP daemon: added support for draft-ietf-grow-bmp-adj-rib-out-01 and
      draft-ietf-grow-bmp-loc-rib-01. As a result of that, Route Monitor
      log messages now contain indication of is_out and is_filtered.
    + BMP daemon: added support for stats reports 9, 10, 11, 12 and 13 and
      descriptions for the different Peer Types and and Peer Down reasons.
      Finally, indication of is_post is now making to Route Monitor log
      messages.
    + plugin_pipe_zmq: introduced plugin_pipe_zmq_hwm (high water mark)
      knob to control the maximum amount of messages than can be stored in
      the ZeroMQ queue.
    + [ns]facctd_allow_file: the map is now made reloadable at runtime via
      SIGUSR2 and accepts IPv4/IPv6 prefixes increasing its scale (before
      it was only accepting individual IP addresses).
    + pmacctd: added support for IPv6, MPLS for DLT_LINUX_SLL captures.
      Thanks to David Barroso ( @dbarrosop ) for his support.
    + uacctd: added a global 'direction' knob to give visibility of data
      capturing direction, ie. in/out. Useful for pre_tag_map use.
    + MySQL plugin: added sql_port knob in order to specify non-default
      ports for connecting to the database. Patch is courtesy by Vadim
      Tkachenko ( @vadimtk ).
    ! fix, plugins: getppid() parent process health check improved so
      to work in Docker environments not assuming anymore parent PID is
      1. Patch is courtesy by Hidde van der Heide ( @hvanderheide ).
    ! fix, plugins: imposing a budget for received messages (100) so to
      preserve fairness of other operations (ie. time keeping, bucketing,
      reloading maps, etc.) and prevent starvations.
    ! fix, zmq_common.c: retry if zmq_getsockopt() for ZMQ_EVENTS returns
      EINTR. Thanks to Wouter de Jong for his support solving the issue.
    ! fix, plugins: when executing triggers, the first argument passed to
      execv() should be the path to the invoked executable to prevent
      execv(3) to fail and return EFAULT on OpenBSD. Patch is courtesy
      by @higgsd.
    ! fix, BGP daemon: improved support of multiple capabilities per
      optional parameter in the OPEN message. Also add-path capability is
      now advertised if neighbor supports send/receive (previously it was
      sent back on send only) of such capability. Thanks to Radu Anghel
      ( @cozonac ) for his support.
    ! fix, BGP daemon: upon route lookup, don't perform ADD-PATH logics if
      no PATH-ID (even if ADD-PATH capability is announced by the peer).
      Thanks to Camilo Cardona ( @jccardonar ) for his support solving the
      issue.
    ! fix, BGP daemon: wrong type 2 32-bit ASN Route Distinguisher was
      defined in network.h. Thanks to Thomas Graf for reporting the issue.
    ! fix, BGP, BMP daemons: lookup of BGP-LU entries is now performed
      against the correct RIB.
    ! fix, BMP daemon: the BMP thread is now made mutually exclusive with
      the BGP one (until an use-case needs to run them both). This is to
      potentially prevent BGP and BMP information to interfere with each
      other when correlated. Also the 'bmp' keyword was added for *_as and
    * _net config directives (ie. nfacctd_as, nfacctd_net). Thanks to
      Juan Camilo Cardona ( @jccardonar ) for his support.
    ! fix, BMP daemon: improved correlation of BMP data with traffic data
      by supporting a replication use-case (the BMP exporter is a route
    - server rather than an actual Edge Router) upon lookup. Thanks to
      Juan Camilo Cardona ( @jccardonar ) for his support.
    ! fix, BMP daemon: in bgp_peer_cmp() and bgp_peer_host_addr_cmp() the
      comparison function has been changed from generic memcmp() to a more
      specific host_addr_cmp() as paddings were giving issues. Thanks to
      Juan Camilo Cardona ( @jccardonar ) for reporting the issue.
    ! fix, BMP daemon: a pm_tdestroy call in bmp_peer_close() was leading
      to SEGV under certain conditions by not NULL'ing all pointers. Thanks
      to Juan Camilo Cardona ( @jccardonar ) for reporting the issue.
    ! fix, nfacctd: prevent time calculations to underflow in cases in
      which sysUptime < first or last flow switched timestamps in NetFlow
      v5. Patch is courtesy by David Steinn Geirsson ( @dsgwork ).
    ! fix, nfacctd: in the context of aggregate_primitives, now enforcing
      terminating the zero when decoding variable-length IEs when applying
      string semantics.
    ! fix, nfprobe: changed ifIndex fields from u_int16_t to u_int32_t in
      order to prevent overflows and aligning to the rest of structs.
    ! fix, MySQL plugin: minor code revisions to restore compiling against
      MariaDB 10.2.
    ! fix, sql_common.c: increased read_SQLquery_from_file() buffer size
      so that sql_table_schema can be fed with longer CREATE TABLE
      statements.
    ! fix, print, SQL plugins: post_tag, post_tag2 support was added to
      sql_table and print_output_file. Also for Kafka, RabbitMQ plugins
      kafka_topic and amqp_routing_key variables support was harmonized
      with print and SQL plugins (ie. $pre_tag renamed to $tag), see
      UPGRADE notes.
    ! fix, SQL plugins: sql_startup_delay was not being honored when
      sql_trigger_exec was defined without a sql_trigger_time resulting
      in empty environment variables being passed to the triggered script.
      Thanks to Johannes Maybaum for his support resolving the issue.
    ! fix, pkt_handlers.c: tmp_asa_bi_flow value was ignored when applied
      to a specific plugin.
    ! fix, util.c: when data timestamp is not available, dynamic file and
      table names variables were populated with a 1-Jan-1970 date. Now the
      current timestamp is used instead as last resort. Patch is courtesy
      by Ivan F. Martinez ( @ivanfmartinez ).
    ! fix, addr.c: host_addr_mask_sa_cmp() and str_to_addr_mask() network
      mask computation for IPv6 addresses was wrong. allow_file feature
      was affected.
    ! fix, build system: several patches committed to the build system to
      simplify libraries probing, make sure to bail out upon error. Also
      now a minimum required version is imposed to almost all libraries.
    - --enable-threads / --disable-threads: removed the configure switch
      that was allowing to compile pmacct even when no pthreads library was
      available on a system. From now on support for threads is mandatory.
    - BGP daemon: offline code, ie. bgp_daemon_offline_* config directives,
      has been deprecated in favor of other approaches, ie. BGP Looking
      Glass and BGP Xconnects.
    - pkt_len_distrib: the primitive, which was meant to bucket packet /
      flow / sample lengths in a distribution has been obsoleted.
  - Remove patch:
    * pmacct-pgsql-fix-header-detection-without-autoreconf.diff

Files

/etc/pmacct
/etc/pmacct/nfacctd.conf
/etc/pmacct/pmacctd.conf
/etc/pmacct/sfacctd.conf
/usr/bin/pmacct
/usr/lib/systemd/system/nfacctd.service
/usr/lib/systemd/system/pmacctd.service
/usr/lib/systemd/system/sfacctd.service
/usr/sbin/nfacctd
/usr/sbin/pmacctd
/usr/sbin/pmbgpd
/usr/sbin/pmbmpd
/usr/sbin/pmtelemetryd
/usr/sbin/sfacctd
/usr/sbin/uacctd
/usr/share/doc/packages/pmacct
/usr/share/doc/packages/pmacct/AUTHORS
/usr/share/doc/packages/pmacct/CONFIG-KEYS
/usr/share/doc/packages/pmacct/ChangeLog
/usr/share/doc/packages/pmacct/FAQS
/usr/share/doc/packages/pmacct/QUICKSTART
/usr/share/doc/packages/pmacct/UPGRADE
/usr/share/fillup-templates/sysconfig.nfacctd
/usr/share/fillup-templates/sysconfig.pmacctd
/usr/share/fillup-templates/sysconfig.sfacctd
/usr/share/licenses/pmacct
/usr/share/licenses/pmacct/COPYING
/usr/share/man/man1/pmacct.1.gz
/usr/share/pmacct
/usr/share/pmacct/examples
/usr/share/pmacct/examples/allow.lst.example
/usr/share/pmacct/examples/amqp
/usr/share/pmacct/examples/amqp/amqp_receiver.py
/usr/share/pmacct/examples/avro
/usr/share/pmacct/examples/avro/avro_file_decoder.py
/usr/share/pmacct/examples/bgp_agent.map.example
/usr/share/pmacct/examples/bgp_md5.lst.example
/usr/share/pmacct/examples/bgp_xconnects.map.example
/usr/share/pmacct/examples/flow_to_rd.map.example
/usr/share/pmacct/examples/kafka
/usr/share/pmacct/examples/kafka/kafka_consumer.py
/usr/share/pmacct/examples/networks.lst.example
/usr/share/pmacct/examples/nfacctd-sql.conf.example
/usr/share/pmacct/examples/pcap_interfaces.map.example
/usr/share/pmacct/examples/peers.map.example
/usr/share/pmacct/examples/pmacctd-imt.conf.example
/usr/share/pmacct/examples/pmacctd-multiple-plugins.conf.example
/usr/share/pmacct/examples/pmacctd-sql.conf.example
/usr/share/pmacct/examples/pmacctd-sqlite3.conf.example
/usr/share/pmacct/examples/ports.lst.example
/usr/share/pmacct/examples/pretag.map.example
/usr/share/pmacct/examples/primitives.lst.example
/usr/share/pmacct/examples/probe_netflow.conf.example
/usr/share/pmacct/examples/probe_sflow.conf.example
/usr/share/pmacct/examples/sampling.map.example
/usr/share/pmacct/examples/tee_receivers.lst.example
/usr/share/pmacct/sql
/usr/share/pmacct/sql/README.64bit
/usr/share/pmacct/sql/README.GeoIP
/usr/share/pmacct/sql/README.IPv6
/usr/share/pmacct/sql/README.cos
/usr/share/pmacct/sql/README.custom_primitives
/usr/share/pmacct/sql/README.etype
/usr/share/pmacct/sql/README.export_proto
/usr/share/pmacct/sql/README.iface
/usr/share/pmacct/sql/README.label
/usr/share/pmacct/sql/README.mask
/usr/share/pmacct/sql/README.mpls
/usr/share/pmacct/sql/README.mysql
/usr/share/pmacct/sql/README.nat
/usr/share/pmacct/sql/README.pgsql
/usr/share/pmacct/sql/README.sampling
/usr/share/pmacct/sql/README.sqlite3
/usr/share/pmacct/sql/README.tag2
/usr/share/pmacct/sql/README.timestamp
/usr/share/pmacct/sql/README.tunnel
/usr/share/pmacct/sql/pmacct-create-db.pgsql
/usr/share/pmacct/sql/pmacct-create-db_bgp_v1.mysql
/usr/share/pmacct/sql/pmacct-create-db_v1.mysql
/usr/share/pmacct/sql/pmacct-create-db_v2.mysql
/usr/share/pmacct/sql/pmacct-create-db_v3.mysql
/usr/share/pmacct/sql/pmacct-create-db_v4.mysql
/usr/share/pmacct/sql/pmacct-create-db_v5.mysql
/usr/share/pmacct/sql/pmacct-create-db_v6.mysql
/usr/share/pmacct/sql/pmacct-create-db_v7.mysql
/usr/share/pmacct/sql/pmacct-create-db_v8.mysql
/usr/share/pmacct/sql/pmacct-create-db_v9.mysql
/usr/share/pmacct/sql/pmacct-create-table_bgp_v1.pgsql
/usr/share/pmacct/sql/pmacct-create-table_bgp_v1.sqlite3
/usr/share/pmacct/sql/pmacct-create-table_v1.pgsql
/usr/share/pmacct/sql/pmacct-create-table_v1.sqlite3
/usr/share/pmacct/sql/pmacct-create-table_v2.pgsql
/usr/share/pmacct/sql/pmacct-create-table_v2.sqlite3
/usr/share/pmacct/sql/pmacct-create-table_v3.pgsql
/usr/share/pmacct/sql/pmacct-create-table_v3.sqlite3
/usr/share/pmacct/sql/pmacct-create-table_v4.pgsql
/usr/share/pmacct/sql/pmacct-create-table_v4.sqlite3
/usr/share/pmacct/sql/pmacct-create-table_v5.pgsql
/usr/share/pmacct/sql/pmacct-create-table_v5.sqlite3
/usr/share/pmacct/sql/pmacct-create-table_v6.pgsql
/usr/share/pmacct/sql/pmacct-create-table_v6.sqlite3
/usr/share/pmacct/sql/pmacct-create-table_v7.sqlite3
/usr/share/pmacct/sql/pmacct-create-table_v7_v8.pgsql
/usr/share/pmacct/sql/pmacct-create-table_v8.sqlite3
/usr/share/pmacct/sql/pmacct-create-table_v9.pgsql
/usr/share/pmacct/sql/pmacct-create-table_v9.sqlite3
/usr/share/pmacct/sql/pmacct-grant-db.mysql


Generated by rpm2html 1.8.1

Fabrice Bellet, Tue Oct 12 23:35:28 2021