Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump github.com/beevik/ntp from 0.3.0 to 1.3.1 #812

Merged

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Dec 24, 2023

Bumps github.com/beevik/ntp from 0.3.0 to 1.3.1.

Release notes

Sourced from github.com/beevik/ntp's releases.

Release v1.3.1

Changes

  • Added AES-256-CMAC support for symmetric authentication.
  • Symmetric auth keys may now be specified as ASCII or HEX using the "ASCII:" or "HEX:" prefixes.
  • Updated dependencies to address security issues.

Fixes

  • Added proper handling of the empty string when used as a server address.

Release v1.3.0

Changes

  • Added the ReferenceString function to Response. This generates a stratum-specific string for the ReferenceID value.
  • Optimized the AES CMAC calculation for 64-bit architectures.

Fixes

  • Fixed a bug introduced in release v1.2.0 that was causing IPv6 addresses to be interpreted incorrectly.

Release v1.2.0

Changes

  • Added support for NTP extensions by exposing an extension interface. Extensions are able to (1) modify NTP messages before being sent to the server, and (2) process NTP messages after they arrive from the server. This feature has been added in preparation for NTS support.
  • Added support for RFC 5905 symmetric key authentication.
  • Allowed server address to be specified as a "host:port" pair.
  • Brought package into further compliance with IETF draft on client data minimization.
  • Declared error variables as part of the public API.
  • Added a Dialer field to QueryOptions. This replaces the deprecated Dial field.
  • Added an IsKissOfDeath function to the Response type.

Deprecated

  • Deprecated the Port field in QueryOptions.
  • Deprecated the Dial field in QueryOptions.

Release v1.1.1

Fixes

  • Fixed a missing indirect go module dependency.

Release v1.1.0

Changes

  • Added the Dial property to the QueryOptions struct. This allows the user to override the default UDP dialer when setting up a connection to a remote NTP server.

... (truncated)

Changelog

Sourced from github.com/beevik/ntp's changelog.

Release v1.3.1

Changes

  • Added AES-256-CMAC support for symmetric authentication.
  • Symmetric auth keys may now be specified as ASCII or HEX using the "ASCII:" or "HEX:" prefixes.
  • Updated dependencies to address security issues.

Fixes

  • Added proper handling of the empty string when used as a server address.

Release v1.3.0

Changes

  • Added the ReferenceString function to Response. This generates a stratum-specific string for the ReferenceID value.
  • Optimized the AES CMAC calculation for 64-bit architectures.

Fixes

  • Fixed a bug introduced in release v1.2.0 that was causing IPv6 addresses to be interpreted incorrectly.

Release v1.2.0

Changes

  • Added support for NTP extensions by exposing an extension interface. Extensions are able to (1) modify NTP messages before being sent to the server, and (2) process NTP messages after they arrive from the server. This feature has been added in preparation for NTS support.
  • Added support for RFC 5905 symmetric key authentication.
  • Allowed server address to be specified as a "host:port" pair.
  • Brought package into further compliance with IETF draft on client data minimization.
  • Declared error variables as part of the public API.
  • Added a Dialer field to QueryOptions. This replaces the deprecated Dial field.
  • Added an IsKissOfDeath function to the Response type.

Deprecated

  • Deprecated the Port field in QueryOptions.
  • Deprecated the Dial field in QueryOptions.

... (truncated)

Commits
  • fd508b2 Update RELEASE_NOTES for 1.3.1
  • 5abd37f Add go build status badge to README
  • 891bfa5 Properly handle empty address string instead of panic
  • 7672f86 Upgrade golang.org/x/net dependency to 1.19
  • b74468f Add github actions workflow
  • e013a8b go.mod go version updated from 1.13 to 1.17
  • 31586e5 Symmetric auth enhancements
  • b536f10 Update RELEASE_NOTES
  • 4137e12 Improve documentation for address parameters
  • 196f2d4 Fix a bug in the parsing of host addresses
  • Additional commits viewable in compare view

Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Dec 24, 2023
Copy link
Member

@ne-sachirou ne-sachirou left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@dependabot rebase

Bumps [github.com/beevik/ntp](https://github.com/beevik/ntp) from 0.3.0 to 1.3.1.
- [Release notes](https://github.com/beevik/ntp/releases)
- [Changelog](https://github.com/beevik/ntp/blob/main/RELEASE_NOTES.md)
- [Commits](beevik/ntp@v0.3.0...v1.3.1)

---
updated-dependencies:
- dependency-name: github.com/beevik/ntp
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/go_modules/github.com/beevik/ntp-1.3.1 branch from ded5d92 to acaba99 Compare April 23, 2024 08:52
@ne-sachirou ne-sachirou merged commit 9ba824a into master Apr 23, 2024
16 checks passed
@ne-sachirou ne-sachirou deleted the dependabot/go_modules/github.com/beevik/ntp-1.3.1 branch April 23, 2024 09:01
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file go Pull requests that update Go code
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant