Skip to content
This repository has been archived by the owner on Apr 21, 2024. It is now read-only.

Latest commit

 

History

History
295 lines (224 loc) · 17.4 KB

CHANGELOG.md

File metadata and controls

295 lines (224 loc) · 17.4 KB

Changelog

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog.

[22.4] (unreleased)

Added

  • Add support for volatile keys. #460
  • Possibility to use lcrypt with $6$ (sha512) for authentication 484
  • Add function to perform an alive test and get the amount of alive hosts. 495
  • Add functions for sentry integration. #502 #506
  • Add basic support for mqtt. Original #505 #511. Reintroduction after Rebase #538
  • Refactor MQTT handling #562. Add function for mqtt init status #567. Fix prototypes in mqtt.h. #584
  • Add function to get the severity_vector, otherwise the cvss_base_vector. #568
  • Add function to duplicate host and vhost objects #590

Changed

  • Handle script timeout as script preference with ID 0 #581

Fixed

Removed

[21.4.3] (unreleased)

Added

Changed

Deprecated

Removed

Fixed

21.4.2 - 2021-08-03

Fixed

  • Fix info msg when 0 alive hosts are left to scan and max_scan_hosts limit is reached. No message will be generated for that case anymore. #564

21.4.1 - 2021-06-23

Added

  • Add function to find and return a host from a host list. 490

Changed

  • Make test_alive_hosts_only (Boreas) feature the new default. 503

Fixed

  • Unify GLib log domains #479
  • Fix double free. #499

Removed

21.4.0 - 2021-04-15

Added

  • Use dedicated port list for alive detection (Boreas only) if supplied via OSP. #391
  • Allow to re allocate the finish flag in the host queue for alive tests. #407 #410
  • Add multiple severities for nvti #317 #472
  • Add support for new OSP element for defining alive test methods via separate subelements. #409
  • Add v3 handling to get_cvss_score_from_base_metrics. #411
  • Add severity_date tag in epoch time format. #412
  • Make more scanner preferences available to openvas-nasl. #413
  • Use memory purge redis command when initializing new kb. #452

Changed

  • Add separators for a new (ip address) field in ERRMSG and DEADHOST messages. #376
  • Continuously send dead hosts to ospd-openvas to enable a smooth progress bar if only ICMP is chosen as alive test. #389
  • Retry if response via tls1.3 is still not received. #394
  • Replace current implementation of alive test arp ping with version using libnet. #423
  • Let setup_log_handlers return an error if it does not have write access to some log file or log dir instead of aborting immediately. #447 #451
  • Fix openvas preference name. The option was rename to "allow_simultaneous_ips". #461
  • Do not start the sniffer thread when only consider alive is chosen for alive test. #466]

Fixed

  • Fix finish_signal_on_queue for boreas. #464

Removed

  • Remove handling of severity class from auth #402
  • Remove version from the nvticache name. #386

20.8.4 - Unreleased

Added

  • Add function to duplicate host and vhost objects #590

Changed

  • Use better defaults for installation directories #574
    • SYSCONFDIR is /etc by default now
    • LOCALSTATEDIR is /var by default now
    • Introduced GVM_RUN_DIR that uses /run/gvm by default
    • GVM_PID_DIR is /run/gvm by default now

Deprecated

Removed

Fixed

20.8.3 - 2021-08-03

Fixed

  • Fix info msg when 0 alive hosts are left to scan and max_scan_hosts limit is reached. No message will be generated for that case anymore. #561

20.8.2 - 2021-06-23

Added

  • Add function ldap_enable_debug () #453
  • Ensure that new kb taken by the scanner are always clean. #469
  • Validate for max_scan_hosts scanner preference. #482

Changed

  • Use a char pointer instead of an zero-lenght array as kb_redis struct member. 443
  • pba verify returns INVALID instead of ERR when hash or password are null 496

Fixed

  • Fixing #434 by removing the extra parentheses in base/networking.c #437
  • Adding initialization to struct scanner in boreas/util_tests.c. #438
  • Fix warnings about uninitialized variables. #448
  • Split the log message into smaller pieces when syslog is the log destination. #455
  • Initialize reallocated memory in gvm_hosts_add #520

20.8.1 (2021-02-01)

Added

  • Add function to get duplicated hosts from the hosts list. #387
  • Add file access tests using effective UID/GID #422

Changed

  • Reduce ping timeout when using test_alive_hosts_only feature. #400
  • Retry if response via tls1.3 is still not received. #404

Fixed

  • Fix port list for tcp pings when using test_alive_hosts_only feature. #392
  • Set source address correctly and do not try to send ARP to unreachable destination. #401
  • Increase minimum gpgme version #405
  • Always NULL check ifaddrs->ifa_addr #416
  • Correct g_hash_table_remove arg #419
  • Accept underscore as valid char in hostname strings #430
  • Add throttle for pinging with test_alive_hosts_only feature when socket buffer is full. #429

20.8.0 (2020-08-12)

Added

  • Add nvti_get_tag() #285
  • Add nvti_solution_method() and nvti_set_solution_method() #283
  • Extend osp with target's alive test option.#312
  • Extend osp with target's reverse_lookup_* options.#314
  • Add unit tests for osp. #315
  • Add support for test_alive_hosts_only feature of openvas. #320
  • Add function to set and get the NVT QoD. #321
  • Add unit tests for networking.c port list functions. #325
  • Add gmp_start_task_ext_c. #327
  • Make log mutex visible. #328
  • Add new scan status QUEUED. #336 #340
  • Add gvm_routethrough which is used by Boreas alive detection module. #339
  • Move alive detection module Boreas into gvm-libs. #346
  • Add new scan status INTERRUPTED. #356
  • Add sensible default values for osp_get_vts_opts_t. #360
  • Add cli support for boreas standalone tool. #359

Changed

  • Improve validation in is_hostname #353
  • Use get_vts instead of get_version to get the feed version is osp_get_vts_version(). #357
  • Allow all alive test combination for boreas. #370

Fixed

  • Fix is_cidr_block(). #322
  • Fix is_cidr6_block() and is_short_range_network(). #337
  • Fix S/MIME keylist and improve error handling #345
  • Fix interrupted state by sending correct number of dead hosts. #371
  • Fix uninitialized variable error of the gcc. #477

Removed

  • Remove parallel from target options #347
  • Remove zero padding from version #377

11.0.1 (2020-05-12)

Added

  • Add option to set finished hosts in OSP targets #298
  • Add a fast memory-only XML parser #299
  • Add new function gvm_libs_version #301

Changed

  • Don't create an entity tree during read_string_c. #305

Fixed

  • Fix sigsegv when no plugin_feed_info.inc file present. #278
  • Fix missing linking to libgnutls in util/CMakeLists.txt. #291
  • Free string in all error exit cases #308
  • Fix trust and file handling for S/MIME #309
  • Get details with get_reports in gmp_get_report_ext #313
  • Fix escaping entity attributes in print_entity_to_string #318
  • Fix is_cidr_block() #323
  • Fix is_cidr6_block() and is_short_range_network(). #338

11.0.0 (2019-10-11)

Added

  • Allow to configure the path to the redis socket via CMake #256
  • A new data model for unified handling of cross references in the NVT meta data as been added. All previous API elements to handle cve, bid, xref have been removed. #225 #232.
  • Add function to get an osp scan status and a enum type for the different status #259
  • API functions for NVTI to handle timestamps #261
  • API function for NVTI to add a single tag #263
  • Add osp_get_performance_ext() function. #262
  • Add libldap2-dev to prerequisites. #249
  • Add function osp_get_vts_filtered(). #251
  • Add explicit attributes in nvti struct. #258

Changed

  • Change the default path to the redis socket to /run/redis/redis.sock #256
  • Handle EAI_AGAIN in gvm_host_reverse_lookup() IPv6 case and function refactor. #229
  • Prevent g_strsplit to be called with NULL. #238
  • Timestamps for NVTI modification date and creation date now internally handled as seconds since epoch. #265
  • The tag cvss_base is not added to redis anymore. #267
  • Functions in osp.c with error as argument, will set the error if the connection is missing. #268
  • Make QoD Type an explicit element of struct nvti. #250
  • Use API to access nvti information. #252
  • Make the nvti struct internal. #253
  • Make solution and solution_type explicit for nvti. #255
  • Internalize struct nvtpref_t. #260
  • Extend redis connection error msg with actual path. #264
  • Disable testhosts test as it's not really a test. #287
  • Don't create an entity tree during read_string_c. #305

Fixed

  • Prevent g_strsplit to be called with NULL. #238
  • Check filter before using it in osp_get_vts_ext. #266

Removed

  • Remove inconsistent delays in kb routines. #230

10.0.1 (2019-07-17)

Added

  • Allow multiple certificate formats for S/MIME. #231
  • Add cmake options to build with ldap and radius support. #235

Changed

  • Always add hostnames and vhosts in lower-case format. #218
  • Plugin feed version file: Show message only once if it is not found. #220
  • Use g_log instead of g_debug for No redis DB available message. #224

Fixed

  • Fix prefs key in nvticache_delete(). #214
  • Fix redis_find(). #216
  • Fixes to gvm_hosts_resolve(). #228

10.0.0 (2019-04-05)

Changed

  • The function gvm_hosts_shuffle has been improved. #200

Fixed

  • An issue which caused duplicated or removed values in the nvticache as addressed. #196
  • Performance fixes related to handling large sets of hosts have been done.203 #208
  • Memory management issues have been addressed. #187