mirror/rclone
1
0
Fork 0
mirror of https://github.com/rclone/rclone.git synced 2026-05-12 18:38:00 -04:00
Code Issues Packages Projects Releases Wiki Activity
9,671 Commits 212 Branches 136 Tags
d2b8b73ea342dae9062c0394d45e290fa4b97d21
Commit Graph

324 Commits

Author SHA1 Message Date
Nick Craig-Wood
7c56eff1a7 rc: add user directories to core/disks and filter mounts better 2026-04-27 15:07:33 +01:00
dlaumen
a71c6f0459 protondrive: update to latest go-proton-api to use new host 2026-04-27 14:33:47 +01:00
dependabot[bot]
1f44b2ee93 build: bump github.com/Azure/go-ntlmssp to 0.1.1 to fix CVE-2026-32952 
Fix CVE-2026-32952: A malicious NTLM challenge message can causes an slice out
of bounds panic, which can crash any Go process using ntlmssp.Negotiator as an
HTTP transport.

This is in use in rclone in the webdav backend to access sharepoint.

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-04-24 16:18:05 +01:00
Nick Craig-Wood
9dedb12b9d build: update golang.org/x/image/webp to v0.39.0 to fix CVE-2026-33813 
Parsing a WEBP image with an invalid, large size panics on 32-bit platforms.

This only affects users on 32 bit platforms using the Internxt backend.

See: https://pkg.go.dev/vuln/GO-2026-4961
 2026-04-23 18:46:18 +01:00
Nick Craig-Wood
513d2fc17e serve nfs: fix EOF flag in READ response not being set when read reaches end of file 
This was fixed in the upstream library

See: https://github.com/willscott/go-nfs/pull/149
 2026-04-15 17:53:00 +01:00
Nick Craig-Wood
0fa16e8638 build: update all dependencies 
This also streamlines the update process in RELEASE.md and the Makefile
 2026-04-08 12:08:28 +01:00
dependabot[bot]
f757e6c0a7 build: fix Denial of Service due to Panic in AWS SDK for Go v2 SDK EventStream Decoder 
Bumps [github.com/aws/aws-sdk-go-v2/service/s3](https://github.com/aws/aws-sdk-go-v2) from 1.96.0 to 1.97.3.
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases)
- [Commits](https://github.com/aws/aws-sdk-go-v2/compare/service/s3/v1.96.0...service/s3/v1.97.3)

---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go-v2/service/s3
  dependency-version: 1.97.3
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-04-08 09:03:49 +01:00
Suyun
e7deebdf40 build: fix loong64 and s390x build 2026-04-06 10:54:17 +01:00
Enduriel
da7a3d8d64 filen: update SDK version 
- increase timeout for http requests
- only use a single URL per request type
 2026-03-30 22:56:32 +01:00
dependabot[bot]
2362b4ca50 build(deps): bump golang.org/x/image from 0.36.0 to 0.38.0 
Bumps [golang.org/x/image](https://github.com/golang/image) from 0.36.0 to 0.38.0.
- [Commits](https://github.com/golang/image/compare/v0.36.0...v0.38.0)

---
updated-dependencies:
- dependency-name: golang.org/x/image
  dependency-version: 0.38.0
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-03-30 22:55:35 +01:00
dependabot[bot]
589d45a0bf build(deps): bump github.com/buger/jsonparser from 1.1.1 to 1.1.2 
Bumps [github.com/buger/jsonparser](https://github.com/buger/jsonparser) from 1.1.1 to 1.1.2.
- [Release notes](https://github.com/buger/jsonparser/releases)
- [Commits](https://github.com/buger/jsonparser/compare/v1.1.1...v1.1.2)

---
updated-dependencies:
- dependency-name: github.com/buger/jsonparser
  dependency-version: 1.1.2
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-03-23 17:05:35 +00:00
dependabot[bot]
7dfc5b3076 build(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3 
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.79.1 to 1.79.3.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.79.1...v1.79.3)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-version: 1.79.3
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-03-19 11:02:37 +00:00
nielash
72c561d209 bisync: auto-generate rc help docs 
This adds a go generate ./cmd/bisync command to autogenerate the bisync rc docs,
including the list of params.
 2026-03-03 16:13:00 -05:00
Nick Craig-Wood
056adc97d6 build: update to golang.org/x/net v0.51.0 to fix CVE-2026-27141 #9220 
See: https://pkg.go.dev/vuln/GO-2026-4559
 2026-02-27 11:24:16 +00:00
jzunigax2
7eed0b6825 internxt: fix Entry doesn't belong in directory errors on windows 2026-02-26 11:13:16 +00:00
Nick Craig-Wood
cf97f250df build: update all dependencies 
Could not update github.com/coreos/go-systemd as the new version doesn't build under freebsd

See: https://github.com/coreos/go-systemd/issues/509
 2026-02-18 11:33:48 +00:00
Nick Craig-Wood
f14945f9c1 build: update to go1.26 and make go1.25 the minimum required version 2026-02-18 11:33:48 +00:00
José Zúniga
33859568d6 internxt: implement re-login under refresh logic, improve retry logic - fixes #9174 2026-02-13 19:18:51 +00:00
albertony
54c2078f25 build: bump github.com/go-chi/chi/v5 from 5.2.3 to 5.2.5 to fix GO-2026-4316 2026-02-11 11:34:29 +01:00
Enduriel
ed5bd327c0 filen: fix 32 bit targets not being able to list directories Fixes #9142 
or do pretty much anything,
this was caused by timestamps not being read to 64 bit integers
 2026-02-05 12:06:20 +00:00
Nick Craig-Wood
fac7ba4bd0 internxt: remove use of CVE laden github.com/disintegration/imaging 2026-01-30 17:28:52 +00:00
jzunigax2
85d13c4e34 internxt: add Internxt backend - fixes #7610 
Co-Authored-By: lullius <lullius@users.noreply.github.com>
Co-Authored-By: StarHack <StarHack@users.noreply.github.com>
 2026-01-30 16:02:50 +00:00
Nick Craig-Wood
824257583c protondrive: update to use forks of upstream modules 
This updates rclone to use forks of the upstream proton drive modules
in preparation for making changes.

The go-proton-api modules has had changes from master merged so rclone
and Proton-API-Bridge are using the same version.
 2026-01-28 11:38:38 +00:00
Nick Owens
264e75d892 cmount: fix OpenBSD mount support. 
this pulls in https://github.com/winfsp/cgofuse/pull/100 to fix OpenBSD
mount support.

part of #1727
 2026-01-27 13:47:00 +00:00
Enduriel
63cfe260a2 filen: swap to blake3 hashes 2026-01-22 00:11:46 +00:00
Enduriel
9bef7f0dbf filen: add Filen backend - Fixes #6728 2026-01-13 12:50:27 +00:00
Vladislav Tropnikov
a99d155fd4 s3: The ability to specify an IAM role for cross-account interaction 2025-11-29 13:53:00 +00:00
dependabot[bot]
bd99e05ff0 build: bump golang.org/x/crypto from 0.43.0 to 0.45.0 to fix CVE-2025-58181 
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-11-20 13:09:29 +00:00
Nick Craig-Wood
31df39d356 build: fix tls: failed to verify certificate: x509: negative serial number 
Before Go 1.23, x509.ParseCertificate accepted certificates with
negative serial numbers. Rejecting these certificates caused a small
number of users to see this error.

From Go 1.23 debug flags can be added to go.mod so this change adds a
debug flag to ensure negative serial numbers are still allowed since
this is a spec violation, not a security issue.

See: https://forum.rclone.org/t/ssl-validation-broken-between-v1-69-1-latest-version/
 2025-11-14 12:51:17 +00:00
Nick Craig-Wood
2ebfedce85 build: update all dependencies 2025-11-12 10:36:30 +00:00
Nick Craig-Wood
5052b80298 webdav: fix out of memory with sharepoint-ntlm when uploading large file 
Fixes #7469
Fixes #8959
See: https://forum.rclone.org/t/huge-memory-usage-10gb-when-upload-a-single-large-file-16gb-in-webdav/43312/
 2025-11-10 16:57:18 +00:00
Alex
8f74e7d331 backend/compress: add zstd compression 
Added support for reading and writing zstd-compressed archives in seekable format
using "github.com/klauspost/compress/zstd" and
"github.com/SaveTheRbtz/zstd-seekable-format-go/pkg".

Bumped Go version from 1.24.0 to 1.24.4 due to requirements of
"github.com/SaveTheRbtz/zstd-seekable-format-go/pkg".
 2025-11-04 14:50:56 +00:00
iTrooz
1056ace80f mega: implement 2FA login 2025-11-01 19:03:49 +00:00
Fawzib Rojas
cc09978b79 Added rclone archive command to create and read archive files 
Co-Authored-By: Nick Craig-Wood <nick@craig-wood.com>
 2025-10-30 16:20:48 +00:00
Nick Craig-Wood
a0bcdc2638 Archive backend to read archives on cloud storage. 
Initial support with Zip and Squashfs archives.

Fixes #8633
See #2815
 2025-10-28 11:05:41 +00:00
dougal
f28c83c6de s3: make it easier to add new S3 providers 
Before this change, you had to modify a fragile data-structure
containing all providers. This often led to things being out of order,
duplicates and conflicts whilst merging. As well as the changes for
one provider being in different places across the file.

After this change, new providers are defined in an easy to edit YAML file,
one per provider.

The config output has been tested before and after for all providers
and any changes are cosmetic only.
 2025-10-25 19:37:29 +01:00
Nick Craig-Wood
3afa563eaf mega: fix 402 payment required errors - fixes #8758 
The underlying library now supports hashcash which should fix this
problem.
 2025-10-09 11:58:49 +01:00
Microscotch
94829aaec5 proton: automated 2FA login with OTP secret key 
add OTP secret key to config to generate 2FA code
 2025-10-06 16:18:38 +01:00
Nick Craig-Wood
4ad40b6554 build: update all dependencies 2025-09-26 14:53:36 +01:00
Nick Craig-Wood
b0b3b04b3b config: fix problem reading pasted tokens over 4095 bytes 
Before this change we were reading input from stdin using the terminal
in the default line mode which has a limit of 4095 characters.

The typical culprit was onedrive tokens (which are very long) giving the error

    Couldn't decode response: invalid character 'e' looking for beginning of value

This change swaps over to use the github.com/peterh/liner read line
library which does not have that limitation and also enables more
sensible cursor editing.

Fixes #8688 #8323 #5835
 2025-08-16 16:44:35 +01:00
Nick Craig-Wood
8d353039a6 log: add log rotation to --log-file - fixes #2259 2025-08-16 16:38:23 +01:00
Nick Craig-Wood
2c91772bf1 build: update all dependencies 2025-08-13 17:54:45 +01:00
Nick Craig-Wood
c3f721755d build: update to go1.25 and make go1.24 the minimum required version 2025-08-13 17:54:45 +01:00
albertony
df9c921dd5 hash: add support for BLAKE3, XXH3, XXH128 2025-07-07 09:11:29 +02:00
dependabot[bot]
c38ca6b2d1 build: bump github.com/go-chi/chi/v5 from 5.2.1 to 5.2.2 to fix GHSA-vrw8-fxc6-2r93 
See: https://github.com/go-chi/chi/security/advisories/GHSA-vrw8-fxc6-2r93
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-06-20 18:27:36 +01:00
Nick Craig-Wood
dda6a863e9 build: update all dependencies 
This updates all direct and indirect dependencies

It stops the linter complaining about deprecated azidentiy APIs also.
 2025-06-09 14:19:53 +01:00
Nick Craig-Wood
dfa4d94827 fs: Remove github.com/sirupsen/logrus and replace with log/slog 
This removes logrus which is not developed any more and replaces it
with the new log/slog from the Go standard library.

It implements its own slog Handler which is backwards compatible with
all of rclone's previous logging modes.
 2025-05-23 11:27:49 +01:00
albertony
6644bdba0f build: update github.com/ebitengine/purego to v0.8.3 to fix mac_amd64 build 
Fixes #8552
 2025-05-12 09:08:15 +02:00
dependabot[bot]
5f4e983ccb build: bump golang.org/x/net from 0.36.0 to 0.38.0 
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.36.0 to 0.38.0.
- [Commits](https://github.com/golang/net/compare/v0.36.0...v0.38.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-version: 0.38.0
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-04-22 13:49:35 +02:00
Nick Craig-Wood
385465bfa9 sync: implement --list-cutoff to allow on disk sorting for reduced memory use 
Before this change, rclone had to load an entire directory into RAM in
order to sort it so it could be synced.

With directories with millions of entries, this used too much memory.

This fixes the probem by using an on disk sort when there are more
than --list-cutoff entries in a directory.

Fixes #7974
 2025-04-08 18:02:24 +01:00