[UPDATE] net/dnscrypt-proxy 2.1.8 -> 2.1.11

Wed, 21 May 2025 12:34:00 -0700 

Hello, ports!

dns-crypt rapid-fired a few releases lately. Bulk of the new features
is contained within the first one (2.1.9) while the later two are
mostly fixes. Some notes:

- We have a web UI now for viewing some statistics data (disabled by
default). Thankfully we don't need to build a 100+ MB front-end to use
it, but it is recommended that your browser supports web socket and
other JS goodies to get its full potential. The main configuration file
is world-readable. Would it make sense to reconsider this given that it
may now contain sensitive information (username and password to access
the aforementioned website)?

- Hot reloading of configuration files (also disabled by default in
the latest version). This is done automatically using fsnotify or
fallback to polling if that is not available. You can even reload it
manually and it works as advertised by shooting a classical SIGHUP to
the running process. The catch is that it's either all or nothing. That
is, you can't have automatic reload disabled while only keeping the
possibility using a manual trigger. Regardless I enabled the option in
rc. Maybe a mention in the README is in order?

Other stuff like resolving still works. Tested on yesterday's amd64
snap. QP-encoded diff below:

Index: Makefile
===================================================================
RCS file: /cvs/ports/net/dnscrypt-proxy/Makefile,v
retrieving revision 1.70
diff -u -p -u -p -r1.70 Makefile
--- Makefile    4 Apr 2025 09:33:41 -0000       1.70
+++ Makefile    21 May 2025 19:24:53 -0000
@@ -2,7 +2,7 @@ COMMENT =       flexible DNS proxy with suppor
 
 GH_ACCOUNT =   DNSCrypt
 GH_PROJECT =   dnscrypt-proxy
-GH_TAGNAME =   2.1.8
+GH_TAGNAME =   2.1.11
 
 CATEGORIES =   net
 
Index: distinfo
===================================================================
RCS file: /cvs/ports/net/dnscrypt-proxy/distinfo,v
retrieving revision 1.39
diff -u -p -u -p -r1.39 distinfo
--- distinfo    4 Apr 2025 09:33:41 -0000       1.39
+++ distinfo    21 May 2025 19:24:53 -0000
@@ -1,2 +1,2 @@
-SHA256 (dnscrypt-proxy-2.1.8.tar.gz) = 
2y1ZPQhNA0I1+q8JdDMYtAOftb4tOm4XywFXCR0j9Ns=
-SIZE (dnscrypt-proxy-2.1.8.tar.gz) = 4185376
+SHA256 (dnscrypt-proxy-2.1.11.tar.gz) = 
PxfZUoQ/SNgPkRmOK956EruY+FcDHKkghUUdM/bBSfo=
+SIZE (dnscrypt-proxy-2.1.11.tar.gz) = 4290751
Index: patches/patch-dnscrypt-proxy_example-dnscrypt-proxy_toml
===================================================================
RCS file: 
/cvs/ports/net/dnscrypt-proxy/patches/patch-dnscrypt-proxy_example-dnscrypt-proxy_toml,v
retrieving revision 1.17
diff -u -p -u -p -r1.17 patch-dnscrypt-proxy_example-dnscrypt-proxy_toml
--- patches/patch-dnscrypt-proxy_example-dnscrypt-proxy_toml    11 Mar 2022 
19:45:54 -0000      1.17
+++ patches/patch-dnscrypt-proxy_example-dnscrypt-proxy_toml    21 May 2025 
19:24:53 -0000
@@ -1,7 +1,7 @@
 Index: dnscrypt-proxy/example-dnscrypt-proxy.toml
 --- dnscrypt-proxy/example-dnscrypt-proxy.toml.orig
 +++ dnscrypt-proxy/example-dnscrypt-proxy.toml
-@@ -52,7 +52,7 @@ max_clients = 250
+@@ -50,7 +50,7 @@ max_clients = 250
  ## Note (2): this feature is not compatible with systemd socket activation.
  ## Note (3): when using -pidfile, the PID file directory must be writable by 
the new user
  
@@ -9,4 +9,4 @@ Index: dnscrypt-proxy/example-dnscrypt-p
 +user_name = '_dnscrypt-proxy'
  
  
- ## Require servers (from remote sources) to satisfy specific properties
+ 
###############################################################################
Index: pkg/DESCR
===================================================================
RCS file: /cvs/ports/net/dnscrypt-proxy/pkg/DESCR,v
retrieving revision 1.3
diff -u -p -u -p -r1.3 DESCR
--- pkg/DESCR   18 Jan 2025 04:32:55 -0000      1.3
+++ pkg/DESCR   21 May 2025 19:24:53 -0000
@@ -12,6 +12,7 @@ DNSCrypt and ODoH (Oblivious DoH), and f
   Compatible with all DNS services
 - Time-based filtering, with a flexible weekly schedule
 - Transparent redirection of specific domains to specific resolvers
+- Optional hot-reloading of configuration files
 - DNS caching, to reduce latency and improve privacy
 - Local IPv6 blocking to reduce latency on IPv4-only networks
 - Load balancing: pick a set of resolvers, dnscrypt-proxy will
Index: pkg/dnscrypt_proxy.rc
===================================================================
RCS file: /cvs/ports/net/dnscrypt-proxy/pkg/dnscrypt_proxy.rc,v
retrieving revision 1.7
diff -u -p -u -p -r1.7 dnscrypt_proxy.rc
--- pkg/dnscrypt_proxy.rc       18 Jan 2025 04:32:55 -0000      1.7
+++ pkg/dnscrypt_proxy.rc       21 May 2025 19:24:53 -0000
@@ -8,7 +8,6 @@ daemon_flags="-config ${SYSCONFDIR}/dnsc
 pexp="${daemon}${daemon_flags:+ ${daemon_flags}}.*"
 
 rc_bg=YES
-rc_reload=NO
 
 rc_configtest() {
        ${daemon} ${daemon_flags} -check

Reply via email to