TLS SNI broken with nginx on 2017Q4 #95
Assignees
Comments
|
This was on a SmartOS [email protected] image. |
|
nginx 1.13.3 on SmartOS [email protected] seems to work ok. |
|
Brian, works for me with 1.13.7 on a base-lts-17.4.0 VM. Can you share your config bits? |
|
Actually, looking at my config again I did have an error on the |
|
Same for me. In the template I was basing my configs off of there was a semi-colon missing from the index statement just before the I'm increasingly catching my brain seeing punctuation that isn't really there. |
jperkin
pushed a commit
that referenced
this issue
Aug 6, 2018
Changes: 1.5.0 ----- - Added support for: - `behance` - https://www.behance.net/ - `myportfolio` - https://www.myportfolio.com/ (#95) - Added custom format string options to handle long strings (#92, #94) - Slicing: `"{field[10:40]}"` - Replacement: `"{field:L40/too long/}"` - Improved frame rate handling for ugoira conversions - Improved private access token usage on `deviantart` - Fixed metadata extraction for some images on `nijie` - Fixed chapter extraction on `mangahere` - Removed `whatisthisimnotgoodwithcomputers` - Removed support for Python 3.3
jperkin
pushed a commit
that referenced
this issue
Aug 26, 2019
Changelog:
New Libraries
Variant2: A never-valueless, strong guarantee implementation of std::variant, from Peter Dimov.
Updated Libraries
Align:
Support for any integral type in the integral versions of align_up and align_down.
Revised the implementation of aligned_allocator to no longer require a specialization for void.
Define propagate_on_container_move_assignment and is_always_equal in aligned_allocator.
Asio:
Improved performance slightly by eliminating a redundant move construction when completed handlers are dispatched.
Eliminated a compiler warning by annotating a case fall-through in the free function connect() implementation.
Fixed the is_*_buffer_sequence detection traits for user-defined sequence types.
Fixed some Windows-specific warnings about an incompatible pointer cast when obtaining the CancelIoEx entry point.
Changed to automatically set the defaults when opening a serial port on Windows.
Changed the serial port get_option() member function to be const.
Fixed a name hiding issue with the WinRT stream-oriented socket backend's shutdown function.
Applied a minor fix to the documentation for is_dynamic_buffer.
Added some support for Haiku OS.
Added wolfSSL compatability.
Changed to require C++17 or later for coroutines TS support with clang.
Fixed a doxygen generation problem in the tutorial.
Ensured example programs are correctly incorporated into the documentation.
Any:
Static initialization of the default constructed boost::any is now possible.
Fixed performance regression in assignment on a compilers without move-semantics.
Maintenance work.
Beast:
This version consists mostly of bug fixes and performance improvements.
Substantial work included for the split compilation mode, to reduce compile time when defining BOOST_BEAST_SEPARATE_COMPILATION.
We'd love to know how you or your company use Beast, consider adding an item to the Companies and Individuals Using Beast list.
See the full Release Notes for a complete list of changes.
Circular Buffer:
Correct doxygen generated reference to no longer show internal members. (Glen Fernandes)
Eliminate ubsan warning on add and sub. (Glen Fernandes)
Fix incorrect check in is_uninitialized. (Niklas Fejes)
Container:
Fixed bugs:
GitHub #47: "added alignment specification for small_vector".
GitHub #88: "Implement C++17 MoveAssignable requirements for self-move assignments".
GitHub #107: "Alignment ignored in resource_adaptor".
GitHub #109: "Get rid of integer overflow in copy_move_algo.hpp (-fsanitize=integer)".
GitHub #110: "Avoid gcc 9 deprecated copy warnings in new_allocator.hpp".
GitHub #112: "vector::resize() compilation error with msvc-10..12: data is not a member of boost::detail::aligned_storage".
GitHub #114: "Fix small_vector noexcept specification".
GitHub #116: "MSVC + boost 1.70 compilation error when windows.h is already included (detail/thread_mutex.hpp)".
GitHub #117: "flat_map/map::insert_or_assign with hint has wrong return types".
GitHub #118: "Non-unique inplace_set_difference used in in flat_tree_merge_unique and iterator invalidation in insert_unique".
GitHub #122: "Fix has_trivial_destructor_after_move".
GitHub #123: "With heterogeneous lookup, equal_range can result in a range with length greater than 1".
deque can now have options, using deque_options. The block size/bytes can be be specified.
static_vector can now have options, using static_vector_options. Alignment and throwing behaviour can be be specified.
small_vector can now have options, using small_vector_options. Alignment and growth factor can be be specified.
Context:
Add support for RISC-V LP64D
#72: Fix ABI violation on ppc64 ELFv2
#99: cleanup of stack if creating ucontext fails
Conversion:
Maintenance work.
Core:
Added functions alloc_construct, alloc_construct_n, alloc_destroy, and alloc_destroy_n in <boost/core/alloc_construct.hpp> for allocator aware and exception safe construction and destruction of objects and arrays. (Glen Fernandes)
Added constexpr functions first_scalar in <boost/core/first_scalar.hpp> for obtaining a pointer to the first scalar element of an array. Given a pointer of type T* they return a pointer of type remove_all_extents_t<T>*. (Glen Fernandes)
Added class template noinit_adaptor in <boost/core/noinit_adaptor.hpp> which is an allocator adaptor that converts any allocator into one whose construct(ptr) performs default initialization via placement new, and whose destroy(ptr) invokes the value_type destructor directly. (Glen Fernandes)
Added class template default_allocator in <boost/core/default_allocator.hpp>, which can serve as a minimal default allocator that has interface similar to C++20 std::allocator, supports configurations with disabled exceptions and does not have std as an associated namespace. The allocator uses operator new and operator delete for allocation. (Glen Fernandes)
In <boost/core/uncaught_exceptions.hpp> header, added workarounds for better compatibility with QNX SDP 7.0 when libc++/libc++abi libraries are used. (Andrey Semashev, #59)
The <boost/detail/sp_typeinfo.hpp> header is now marked as deprecated and will be removed in a future release. <boost/core/typeinfo.hpp> should be used instead. (Peter Dimov)
Dynamic Bitset:
Enabled hardware-assisted popcount on MSVC (#38).
Added support for boost::hash and std::hash (#45).
Support copy-initialization with default constructor (#48).
Endian:
Clarified requirements on the value type template parameter
Added support for float and double
Added endian_load, endian_store
Updated endian_reverse to correctly support all non-bool integral types
Moved deprecated names to the deprecated header endian.hpp
Fiber:
documentation for shared_work updated
Filesystem:
Fixed incorrect error_code returned from directory iterator increment when readdir_r is used.
For path, fixed rvalue-aware operator/ return type to return an rvalue instead of rvalue reference. This fixes leaving a dangling reference in the user's code if the result of operator/ is bound to a const reference. (#110)
Fixes for better compatibility with Windows CE. (#24)
Added minimal support for CMake. (#106)
Flyweight:
Maintenance work.
Histogram:
New features:
Support for thread-safe storages and new thread-safe accumulators
Support for compiling without exceptions/RTTI (increases performance by 10-20 %) (with Glen Fernandes)
Performance improvements for 1D and 2D histograms
boost::histogram::indexed now returns forward iterator range instead of input iterator range
boost::histogram::indexed_range::accessor is now non-copyable and acts like reference to cell value, making more algorithms from the C++ stdlib work
boost::histogram::algorithm::reduce with new slice option and option fusion
boost::histogram::algorithm::project accepts runtime indices for static histograms
Bug Fixes:
boost::histogram::algorithm::reduce also works on histograms that have some axis types without reduction support
boost::histogram::axis::traits::update now works correctly for boost::histogram::axis::variant
Other:
100 % test coverage
Reduced internal Boost dependencies
Improved documentation and examples
Guaranteed no-throw moves for all builtin axis types
Compile cleanly at higher warning levels
See changelog for more details.
IoStreams:
Fixed processing of multi-stream files (#87).
Added support for multi-threaded LZMA (#95).
Interprocess:
GitHub #85 ("warning: Implicit conversion loses integer precision").
GitHub #86 ("warning: Possible misuse of comma operator").
Intrusive:
GitHub #42: Documentation does not describe treap priority_of_value changes
GitHub #43: Fix tests with BOOST_INTRUSIVE_VARIADIC_TEMPLATES enabled
GitHub #45: Disable variadic templates for MSVC-12 to avoid ICEs
LexicalCast:
Added tests for boost::filesystem::path conversions #25.
Maintenance work, including #28.
Log:
New features:
Improved support for C++17 std::string_view in basic_formatting_ostream. The string view can now participate in character code conversion on output.
Added auto_newline formatter and stream manipulator. It can be used to ensure that formatted output always ends with a newline while avoiding duplicate newlines.
In the output stream, text file and text multi-file sink backends added support for configuring behavior with regard to appending a trailing newline to every formatted log record. Use auto_newline_mode named parameter of the backend constructor or call the set_auto_newline_mode method on the sink backend.
Note: The default behavior with regard to trailing newlines added by sink backends has changed slightly compared to the previous Boost.Log releases. The backends will now only add a trailing newline if there isn't one in the formatted log message string already. In previous releases a newline was added unconditionally.
Added support for passing arbitrary function objects in the filter and format named parameters to sink constructors and convenience functions for initializing sinks. For example, it is now possible to specify C++11 lambda functions directly in these parameters. (#63)
In the default filter and formatter factories used in filter and formatter parsers, added support for severity level attribute values of type boost::log::trivial::severity_level. For filters, the support is limited to attributes with "Severity" name.
Bug fixes:
Fixed incorrect parsing of components of the rotated file names while scanning for files in the text file sink backend. If the file name pattern ended with a placeholder (for example, a file counter), the scan_for_files method would not find files matching that pattern in the target storage, leaving them unmanaged. In particular, such files would not be deleted to free target storage. (#78)
Updated basic_formatting_ostream and basic_record_ostream to make it possible to overload stream output operators for pointers to user-defined types. User-defined operator<< overloads taking std::basic_ostream and a pointer argument should now be picked up by the compiler when the pointer is being written to one of Boost.Log streams. (#84)
See changelog for more details.
Math:
New features:
Catmull-Rom interpolator now works in C++11
Cardinal quadratic B-spline interpolation
Domain of elliptic integrals extended
sin_pi and cos_pi performance improvements
Forward-mode automatic differentiation
Vector valued barycentric rational interpolation
Ooura's method for evaluation of Fourier integrals
Bug fixes:
Multiple compatibility issues with Multiprecision fixed
Lambert-W fixed on a rare architecture
Metaparse:
New features:
In C++11 variadic template support for the following: sequence, one_of_c, one_of, repeated_one_of, repeated_one_of1, one_char_except_c, one_char_except.
Bug fixes:
BOOST_METAPARSE_STRING does not use out of range character values as template arguments.
any_of_c<> does not create empty array in C++14.
Move:
Git Issue #26: "Invalid iterator increment/decrement in the last iteration of adaptive_sort_combine_blocks".
Multi Array:
Simplify allocator support by using new alloc_construct_n and alloc_destroy_n facilities from Core. (Glen Fernandes)
Multi-index Containers:
Added variants of const_mem_fun and mem_fun for differently qualified member functions (issue #24).
Terse key specification syntax now correctly handles noexcept-specified member functions (issue #24).
Outcome:
Enhancements:
#184 As per request from Boost release managers, relocated version.hpp and revision.hpp into detail, and added the Boost licence boilerplate to the top of every source file which was missing one (I think). Also took the opportunity to run the licence restamping script over all Outcome, so copyright dates are now up to date.
#185 Add FAQ item explaining issue #185, and why we will do nothing to fix it right now.
#189 Refactored the OUTCOME_TRY implementation to use more clarified customisation points capable of accepting very foreign inputs. Removed the std::experimental::expected<T, E> specialisations, as those are no longer necessary. Fixed the documentation for the customisation points which previously claimed that they are ADL discovered, which they are not. Added a recipe describing how to add in support for foreign input types.
#183 Added a separate motivation/plug_error_code specifically for Boost.
Bug fixes:
OUTCOME_VERSION_MINOR hadn't been updated to 1.
#181 Fix issue #181 where Outcome didn't actually implement the strong swap guarantee, despite being documented as doing so.
#190 Fix issue #190 in Boost edition where unit test suite was not runnable from the Boost release distro.
#182 Fix issue #182 where trait::is_exception_ptr_available<T> was always true, thus causing much weirdness, like not printing diagnostics and trying to feed everything to make_exception_ptr().
#192 Fix issue #192 where the std::basic_outcome_failure_exception_from_error() was being defined twice for translation units which combine standalone and Boost Outcome's.
Parameter:
Upgraded keyword generation macro BOOST_PARAMETER_TEMPLATE_KEYWORD (#15).
Moved keyword generation macro BOOST_PARAMETER_NESTED_KEYWORD from Accumulators to this library (#28).
Added support for std::reference_wrapper and std::ref() (#16).
Moved boost::parameter::required, boost::parameter::optional, and boost::parameter::deduced metafunction definitions to their own header files in directory boost/parameter (#18).
Added support for Boost.Parameter-enabled function call operators (#20).
Added support for parameter category qualifiers "forward", "consume", and "move_from" (current qualifiers are "in", "out", and "in_out") (#21) (#23) based on http://www.modernescpp.com/index.php/c-core-guidelines-how-to-pass-function-parameters. Added new usage syntax BOOST_PARAMETER_NAME((object-name), namespace-name) qualifier(tag-name)) and BOOST_PARAMETER_NAME(qualifier(name)). (Existing code that uses qualifiers directly and correctly with BOOST_PARAMETER_FUNCTION and other code generation macros should remain unaffected for now, so no breaking changes.) The reason for the change in usage is to enable applying of parameter category constraints to Boost.Parameter-enabled functions and constructors invoked through argument composition. (Otherwise, it is currently possible to use argument composition to bypass parameter category constraints applied in BOOST_PARAMETER_FUNCTION et. al.)
Added support for perfect forwarding (#23) (#26), so that parameter::parameters::operator() can accept non-const rvalues. As a positive side effect, Boost.Parameter-enabled functions and constructors are no longer bound by BOOST_PARAMETER_MAX_ARITY on compilers that support perfect forwarding. User code can now check for this support by detecting the configuration macro BOOST_PARAMETER_HAS_PERFECT_FORWARDING, or manually turn off this support by defining the configuration macro BOOST_PARAMETER_DISABLE_PERFECT_FORWARDING.
Added metafunctions boost::parameter::is_argument_pack (#27), boost::parameter::are_tagged_arguments (#52), and boost::parameter::result_of::compose (#75).
Added variadic function template boost::parameter::compose() which takes in named arguments and returns them in an argument pack (#52). For compilers that do not support perfect forwarding, the configuration macro BOOST_PARAMETER_COMPOSE_MAX_ARITY determines the maximum number of arguments that boost::parameter::compose() can take in (#61).
Added code generation macros BOOST_PARAMETER_BASIC_FUNCTION_CALL_OPERATOR, BOOST_PARAMETER_BASIC_CONST_FUNCTION_CALL_OPERATOR, BOOST_PARAMETER_NO_SPEC_FUNCTION, BOOST_PARAMETER_NO_SPEC_MEMBER_FUNCTION, BOOST_PARAMETER_NO_SPEC_CONST_MEMBER_FUNCTION, BOOST_PARAMETER_NO_SPEC_FUNCTION_CALL_OPERATOR, BOOST_PARAMETER_NO_SPEC_CONST_FUNCTION_CALL_OPERATOR, BOOST_PARAMETER_NO_SPEC_CONSTRUCTOR, and BOOST_PARAMETER_NO_SPEC_NO_BASE_CONSTRUCTOR (#52).
Added support for Boost.MP11 (#47) (#66) (#70). User code can now check for this support by detecting the configuration macro BOOST_PARAMETER_CAN_USE_MP11, or manually turn off this support by defining the configuration macro BOOST_PARAMETER_DISABLE_MP11_USAGE.
Improved support for parameter-dependent return types via SFINAE (#73).
PtrContainer:
Fix a ptr_vector regression introduced in 1.66.0 (#24).
PolyCollection:
Maintenance work.
SmartPtr:
Added aliasing constructors to weak_ptr
Added weak_ptr<T>::empty()
Added enable_shared_from, shared_from, and weak_from
Stacktrace:
Fixed output of name(), source_location() and source_line() for the default constructed frame with thread sanitizer builds in C++98 mode.
Fixed output of long strings from name() and source_location() on MSVC #78.
Maintenance work.
Test:
Boost.test v3.11 see the Changes log for more details.
Breaking changes:
Boost.Test shows deprecation warnings if some very old headers as deprecated. If you encounter such warnings, please follow the indications: those headers will be removed in a future release.
New feature:
Now BOOST_TEST can be used to compare abstract types
Bug fixes and pull requests:
GitHub Issues: #209, #218
GitHub Pull Requests: #219, #224
Utility:
Implemented function template ostream_string in <boost/utility/ostream_string.hpp> to optimally write any kind of string content to an output stream. It satisfies the requirements of [ostream.formatted.reqmts]. (Glen Fernandes)
Optimized the stream output operators of basic_string_view and basic_string_ref to write directly to the rdbuf stream buffer. (Glen Fernandes)
Uuid:
Breaking change: MD5 name-based uuid generation was corrected to be identical on all endian systems. Define BOOST_UUID_COMPAT_PRE_1_71_MD5 to keep the result in a format compatible with 1.66 through 1.70. This does not affect the default name-based uuid generation which is based on SHA1. (#109)
Variant:
Fixed compilation of boost::apply_visitor with variants passed by non const reference in #68. Many thanks to Ed Catmur for providing the fix.
Added support for std::hash (#49). Macro BOOST_VARIANT_DO_NOT_SPECIALIZE_STD_HASH could be defined to avoid those specializations.
Added micro optimizations for binary size and performance by Nikita Kniazev in #63 and #66.
Maintenance work, including #64 by Nikita Kniazev and #67 by Hans Dembinski.
YAP:
Added an example showing how to make self-evaluating YAP expressions (that is, expressions that don't need an explicit call to evaluate() or transform()).
jperkin
pushed a commit
that referenced
this issue
Oct 6, 2019
GdkPixbuf 2.38.2 (stable) Changes since 2.38.1: - Add annotations to disable deprecation warnings in our public API caused by GLib deprecating GTimeVal - Handle truncated or invalid XPM files [Bastien Nocera, #95] - Avoid a configuration warning with Meson >= 0.50
jperkin
pushed a commit
that referenced
this issue
Oct 20, 2019
GdkPixbuf 2.38.2 (stable) Changes since 2.38.1: - Add annotations to disable deprecation warnings in our public API caused by GLib deprecating GTimeVal - Handle truncated or invalid XPM files [Bastien Nocera, #95] - Avoid a configuration warning with Meson >= 0.50
jperkin
pushed a commit
that referenced
this issue
Oct 28, 2019
Switch from qt4 to qt5. Remove the qt4 option.
CHANGELOG
=========
BibleTime 2.11.2
The BibleTime team is proud to announce the immediate availability of BibleTime version 2.11.2 which is the second bugfix release in the stable 2.11 series of BibleTime.
All users of BibleTime are encouraged to upgrade, especially users still using BibleTime version 2.10 or earlier.
Notable changes since 2.11.1:
Updated translations.
Improved compatibility with Qt 5.11 (including bug #140)
Fixed crash when clicking on "full syntax" (bug #134)
Fixed Mag not always working with Hebrew / Strongs (bug #132)
Fixed BibleTime startup on some versions of Windows (bug #119)
Fixed Bookshelf Wizard buttons not being translated (bug #131)
Fixed application icon directory to match the FreeDesktop standard
Fixed bug which prevented installing of works (bug #124)
BibleTime 2.11.1
The BibleTime team is proud to announce the immediate availability of BibleTime version 2.11.1 which is the first bugfix release in the stable 2.11 series of BibleTime.
All users of BibleTime are encouraged to upgrade, especially users still using BibleTime version 2.10 or earlier.
Notable changes since 2.11.0:
Enhanced packaging for Windows.
Enhanced some error messages.
Updated translations. Thanks to all translators!.
Improved build-time detection of Qt WebEngine.
Fixed crash with Qt 5.9 (workaround for QTBUG-61213).
Fixed apocryphal books not being properly displayed (#12).
Fixed paragraphs being displayed incorrectly (#37).
Fixed some greek dictionary modules not working in mag (#52).
Fixed windows not starting on some Windows 7 computers (#90).
Fixed a bug which hindered changing to second tab in Tabbed view (#91)
Fixed Qt "More Info..." tab being blank (#92)
Fixed crash when closing module display window with Qt 5.8 (#94)
Fixed images not being displayed (#95).
Fixed reloading of "All Text Windows" shortcuts not working (#102).
Fixed problem with Save - Yes/No dialog and editing a Personal commentary (#105).
BibleTime 2.11.0
Thanks to the great mercy of our Savior and Lord, king Jesus Christ, the BibleTime team is yet again pleased to announce the immediate availability of BibleTime version 2.11.0, which is the first full release in the the stable 2.11 series of BibleTime.
All users of BibleTime are encouraged to upgrade, including users of the BibleTime version 2.10 series.
Notable changes since the 2.10 series:
Redesigned bookshelf manager
Many bugfixes and optimizations
Build requirements changes:
A C++11 compiler is now required
Qt 5 or later is now required
xml-po is no longer required
BibleTime 2.11 RC 2
The BibleTime team is proud to announce the immediate availability of BibleTime version 2.11 RC 2, which is the second release candidate in the stable 2.11 series of BibleTime, with a number of bugs fixed since RC 1.
Notable changes since the 2.10 series:
Many bugfixes and optimizations
Redesigned bookshelf manager
Build requirements changes:
A C++11 compiler is now required
Qt 5 or later is now required
xml-po is no longer required
BibleTime 2.11 RC 1
The BibleTime team is proud to announce the immediate availability of BibleTime version 2.11_rc1,
which is the first release candidate in the stable 2.11 series of BibleTime.
Notable changes since the 2.10 series:
Many bug fixes and optimizations
Redesigned bookshelf manager
Build requirements changes:
A C++11 compiler is now required
Qt 5 or later is now required
xml-po is no longer required
BibleTime 2.11 beta 1
The BibleTime team is proud to announce the immediate availability of BibleTime version 2.11_beta1,
which is the first (and only) beta release in the stable 2.11 series of BibleTime.
Notable changes since the 2.10 series:
Many bug fixes and optimizations
Redesigned bookshelf manager
Build requirements changes:
A C++11 compiler is now required
Qt 5 or later is now required
xml-po is no longer required
jperkin
pushed a commit
that referenced
this issue
Nov 6, 2019
2.40.0 (stable) === - Allow creating a GdkPixbuf instance without any property [Federico Mena Quintero, #91] 2.39.2 (development) === - Add gdk_pixbuf_init_modules() for applications with GdkPixbuf loader modules in a separate directory [Bastien Nocera, bgo#786035] - Add subproject fallback for dependencies [Nirbheek Chauhan] - Handle large XPM without crashing [Bastien Nocera, #95] - Use the appropriate gdk-pixbuf-query-loaders on install [Emmanuele Bassi, #126] - Disable deprecation warnings introduced by GLib 2.62 - Escape GIF version in error messages [Robert Ancell] - Use the appropriate fallback for libpng on Windows [Chun-wei Fan] - Render GIF frames on demand [Robert Ancell, #101]
jperkin
pushed a commit
that referenced
this issue
Dec 3, 2019
Update pear to 1.10.10 contains two pear pacakge updates: o PEAR 1.10.10 o Console_Getopt 1.4.3 PEAR 1.10.10 (2019-11-19) Changelog: * PR #89: Fix scripts/* include paths * PR #90: Non-interactive configureoption answers * PR #91: Added missing preg quote * PR #92: handle "lib64" case for glibc detection * PR #93: Fix PHP Notice: Trying to access array offset on value of type bool with 7.4 * PR #94: Updated logic in useLocalCache to reuse getCacheId * PR #95: Fix manpage warning * PR #96: Implement the SOURCE_DATE_EPOCH specification * PR #97: Fix PHP 7.4 deprecation: array/string curly braces access * PR #98: Fix use of null/false as array * PR #99: Fix Travis builds on PHP 5.4 and 5.5 * PR #100: Honor PHP temp directory config * PR #101: Fix documentation: the `--force` is required Console_Getopt 1.4.3 (2019-11-20) Changelog: * PR #4: Fix PHP 7.4 deprecation: array/string curly braces access * PR #5: fix phplint warnings
jperkin
pushed a commit
that referenced
this issue
Dec 19, 2019
Upstream changes: v1.8.3 * Security fix for CVE-2018-19757 (#79), NULL pointer dereference problem, reported by @nluedtke and fixed by @knok (#91, #94). * Security fix for CVE-2018-19762 (#81), heap-based buffer overflow problem, reported by @nluedtke and fixed by @knok (#92). * Security fix for CVE-2018-19756 (#80), heap-based buffer over-read problem, reported by @nluedtke and fixed by @knok (#93). * Security fix for CVE-2018-19763 (#82), heap-based buffer over-read problem, reported by @nluedtke and fixed by @knok (#95). * Security fix for CVE-2018-19761, illegal address access, fixed by @knok (#96). * Security fix for CVE-2018-19759, heap-based buffer over-read problem, fixed by @knok (#98). * Security fix for CVE-2018-3753 (#83), infinite loop problem, reported by @cool-tomato and fixed by @knok (#99). * Security fix for CVE-2018-19759 (#102), heap-based buffer over-read that will cause a denial of service. reported and fixed by @YourButterfly. (#106) * Security fix for CVE-2019-19635 (#103), heap-based buffer overflow, reported and fixed by @YourButterfly. (#106) * Security fix for CVE-2019-19636 (#104) and CVE-2019-19637 (#105), integer overflow problem. reported and fixed by @YourButterfly. (#106) * gif loader: check LZW code size (Issue #75), Thanks to @hongxuchen. saitoha/libsixel@7808a06 * core: Fix a global-buffer-overflow problem (Issue #72), Thanks to @fgeek. saitoha/libsixel@c868b59 * core: Fix unexpected hangs/performance issues (Issue #76), Thanks to @hongxuchen. saitoha/libsixel@88561b7 saitoha/libsixel@2d3d9ff saitoha/libsixel@c9363cd
jperkin
pushed a commit
that referenced
this issue
Mar 11, 2020
2.64.0 - March 6, 2020 ====================== - Fix OpenSSL backend on RHEL 6 (!116) 2.63.92 - February 27, 2020 =========================== - Revert fix for #127, which broke libsoup (#129) 2.63.91 - February 14, 2020 =========================== - Fix peer-certificate properties changing too soon (#127) - GnuTLS backend: reduce session resumption cache lifetime (!113) - GnuTLS backend: restore TLS 1.2 support for copy session state (!114) 2.63.90 - February 1, 2020 ========================== - Remove PKCS#11 support, deferred until next cycle (#104) - Remove OpenSSL backend's OCSP support (#124) 2.63.3 - January 3, 2019 ======================== - Fix OpenSSL backend regressions and reenable OpenSSL testsuite (#54) - Temporarily disable cancellation of sync handshakes (#97) - Disable flaky test (#104) and resolve testsuite flakiness (#105) - Fix leak of base iostream (or base datagram socket), 2.62 regression - Fix duplicate notifies of peer-certificate and peer-certificate-errors - Fix regression where GnuTLS connection init could theoretically fail without error - Fix obscure corner case where SNI might not work - Fix various build warnings on Windows - Fix multiple build failures on Windows (Chun-wei Fan) - Fix installed tests (Iain Lane) 2.63.2 - November 22, 2019 ========================== - Fix crash when handshake context is reset too late (#97) - Require GnuTLS 3.6.5 (#100) - Build mock PKCS #11 module only for GnuTLS backend (#101) - Rework session resumption support for TLS 1.3 (!69) - Run GnuTLS tests under TLS 1.2 in addition to TLS 1.3 (!69) - Support OpenSSL 1.0.1 (!81) - Drop rehandshake mode and protocol version fallback support (!83) - Add logging functions (!89, MARTINSONS Frederic) - Fix PKCS #11 tests with TLS 1.2 (!91, Patrick Griffis) - Add more debug logging for PKCS #11 (!92, Patrick Griffis) - Fix leak in GTlsCertificateGnutls finalizer (!93, Patrick Griffis) 2.63.1 - October 11, 2019 ========================= - Add support for new PKCS#11 APIs to facilitate use with smartcards (Patrick Griffis) - Disable TLS 1.0 and TLS 1.1 when using GnuTLS - Fix threadsafety issue (#95)
jperkin
pushed a commit
that referenced
this issue
Apr 19, 2020
0.99 2020-03-26 09:33:03 CST
- Use named parameters in API requests #95 (atoomic)
0.98 2020-03-19 09:29:14 CST
- rollback update_rate_limit since it requires permissions
0.97 2020-03-18 09:21:16 CST
- Fetch rate limit if it is not set. (toddr)
0.96 2020-03-06 15:39:32 CST
- add support for deprecation warnings #92 (grantm)
jperkin
pushed a commit
that referenced
this issue
May 19, 2020
pkgsrc changes: - Patches for NetBSD support removed (merged upstream) - Define "SOLARIS" for SunOS based operating systems - MESSAGE replaced by file "share/doc/doomlegacy/INSTALL.pkgsrc" - Man page is now installed in section 6 - Patch to disable launcher replaced by startscript (upstream suggested to use an unsupported option for this purpose) - Patch for extended node support added (Feature request #95) Supported formats: DeeP V4, ZDoom uncompressed, ZDoom compressed Without this patch the engine may crash with unsupported node formats - Patch for local blockmap creation added Command line option "-blockmap" added for activation (no automatic mode) The extended node and blockmap patches allow to play modern PWADs like NOVA III and Lost Civilization. Upstream changelog since 1.47.2 is very long, refer to this page: http://doomlegacy.sourceforge.net/docs/whatsnew.html
jperkin
pushed a commit
that referenced
this issue
Aug 13, 2020
Changelog: 7 July 2020: Wouter - Tag for 4.3.2rc1. 6 July 2020: Wouter - Fix compile includes for xfr-inspect tool on FreeBSD. - Add tpkg/run_vm.sh that runs test when in a virtual machine. - Merge #112 from jaredmauch: log old and new serials when NSD rejects an IXFR due to an old serial number. - Fix bug034 test for vm test changes. 22 June 2020: Wouter - Remove errno reset behaviour from sendmmsg and recvmmsg replacement functions. - Fix unit test for different nsd-control-setup -h exit code. 19 June 2020: Wouter - Merge #108 from Nomis: Make the max-retry-time description clearer. - Retry when udp send buffer is full to wait until buffer space is available. 18 June 2020: Wouter - Do not log EAGAIN errors for sendmmsg, to stop log spam on OpenBSD. 17 June 2020: Wouter - Fix #107: nsd -v shows configure line, openssl version and libevent version. 27 May 2020: Wouter - Fix unlink of pidfile warning if not possible due to permissions, nsd can display the message at high verbosity levels. - Update contrib/nsd.service for chown of nsd.log and /var/log in ReadWritePaths. - Removed contrib/nsd.service, example is too complicated and not useful. 15 May 2020: Wouter - Merge PR#102 from and0x000: add missing default in documentation for drop-updates. - Fix checkconf test for log-only-syslog option. 14 May 2020: Wouter - Document default value for tcp-timeout. 13 May 2020: Jeroen - Fix #99: Fix copying of socket properties with reuseport enabled. 24 April 2020: Wouter - Fix #97: EDNS unknown version: query not in response. 21 April 2020: Wouter - Fix #96: log-only-syslog: yes sets to only use syslog, fixes that the default configuration and systemd results in duplicate log messages. 20 April 2020: Wouter - Fix #95: Removed make test check because tpkg not included in release tarballs. - Fix unused parameter compile warnings.
jperkin
pushed a commit
that referenced
this issue
Sep 16, 2020
Pkgsrc changes:
* Added a patch to cope with fromStatT on NetBSD
* Added a patch to cope with docker client default settings (build
also on NetBSD)
Upstream changes:
1.5.3 (August 27th, 2020)
NOTE:
All security content from 1.5.2, 1.5.1, 1.4.5, 1.4.4, 1.3.9, 1.3.8,
1.2.6, and 1.2.5 has been made fully open source, and the git tags for
1.5.3, 1.4.6, 1.3.10, and 1.2.7 will build correctly for open source
users.
BUG FIXES:
* auth/aws: Made header handling for IAM authentication more robust
* secrets/ssh: Fixed a bug with role option for SSH signing algorithm
to allow more than RSA signing
## 1.5.1
CHANGES:
* pki: The tidy operation will now remove revoked certificates if the
parameter `tidy_revoked_certs` is set to `true`. This will result in
certificate entries being immediately removed, as opposed to
awaiting until its NotAfter time. Note that this only affects
certificates that have been already
revoked. [[GH-9609](https://github.com/hashicorp/vault/pull/9609)]
IMPROVEMENTS:
* auth/jwt: Add support for fetching groups and user information from
G Suite during
authentication. [[GH-9574](https://github.com/hashicorp/vault/pull/9574)]
* secrets/openldap: Add "ad" schema that allows the engine to
correctly rotate AD
passwords. [[GH-9740](https://github.com/hashicorp/vault/pull/9740)]
* ui: Wrap TTL option on transit engine export action is updated to a
new component.
[[GH-9632](https://github.com/hashicorp/vault/pull/9632)]
BUG FIXES:
* secrets/gcp: Ensure that the IAM policy version is appropriately set
after a roleset's bindings have
changed. [[GH-9603](https://github.com/hashicorp/vault/pull/9603)]
* replication (enterprise): Fix status API output incorrectly stating
replication is in `idle` state.
* core: Fix panic when printing over-long info fields at startup
[[GH-9681](https://github.com/hashicorp/vault/pull/9681)]
## 1.5.0
### July 21st, 2020
CHANGES:
* storage/raft: The storage configuration now accepts a new
`max_entry_size` config that will limit the total size in bytes of
any entry committed via raft. It defaults to `"1048576"`
(1MiB). [[GH-9027](https://github.com/hashicorp/vault/pull/9027)]
* token: Token creation with custom token ID via `id` will no longer
allow periods (`.`) as part of the input string.
The final generated token value may contain periods, such as the
`s.` prefix for service token
indication. [[GH-8646](https://github.com/hashicorp/vault/pull/8646/files)]
* token: Token renewals will now return token policies within the
`token_policies` , identity policies within `identity_policies`, and
the full policy set within
`policies`. [[GH-8535](https://github.com/hashicorp/vault/pull/8535)]
* cubbyhole: Reject reads and writes to an empty ("")
path. [[GH-8971](https://github.com/hashicorp/vault/pull/8971)]
* core: Remove the addition of newlines to parsed configuration when
using integer/boolean values
[[GH-8928](https://github.com/hashicorp/vault/pull/8928)]
* audit: Token TTL and issue time are now provided in the auth portion
of audit logs. [[GH-9091](https://github.com/hashicorp/vault/pull/9091)]
IMPROVEMENTS:
* audit: Replication status requests are no longer
audited. [[GH-8877](https://github.com/hashicorp/vault/pull/8877)]
* audit: Added mount_type field to requests and
responses. [[GH-9167](https://github.com/hashicorp/vault/pull/9167)]
* auth/aws: Add support for Web Identity credentials
[[GH-7738](https://github.com/hashicorp/vault/pull/7738)]
* auth/jwt: Support users that are members of more than 200 groups on Azure
[[GH-120](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/120)]
* auth/kubernetes: Allow disabling `iss` validation
[[GH-91](https://github.com/hashicorp/vault-plugin-auth-kubernetes/pull/91)]
* core: Add the Go version used to build a Vault binary to the server message
output. [[GH-9078](https://github.com/hashicorp/vault/pull/9078)]
* core: Added Password Policies for user-configurable password generation
[[GH-8637](https://github.com/hashicorp/vault/pull/8637)]
* core: New telemetry metrics covering token counts, token creation, KV
secret counts, lease
creation. [[GH-9239](https://github.com/hashicorp/vault/pull/9239)]
[[GH-9250](https://github.com/hashicorp/vault/pull/9250)]
[[GH-9244](https://github.com/hashicorp/vault/pull/9244)]
[[GH-9052](https://github.com/hashicorp/vault/pull/9052)]
* cli: Support reading TLS parameters from file for the `vault operator raft
join` command. [[GH-9060](https://github.com/hashicorp/vault/pull/9060)]
* plugin: Add SDK method, `Sys.ReloadPlugin`, and CLI command, `vault plugin
reload`, for reloading
plugins. [[GH-8777](https://github.com/hashicorp/vault/pull/8777)]
* plugin (enterprise): Add a scope field to plugin reload, which when global,
reloads the plugin anywhere in a
cluster. [[GH-9347](https://github.com/hashicorp/vault/pull/9347)]
* sdk/framework: Support accepting TypeFloat parameters over the API
[[GH-8923](https://github.com/hashicorp/vault/pull/8923)]
* secrets/aws: Add iam_groups parameter to role create/update
[[GH-8811](https://github.com/hashicorp/vault/pull/8811)]
* secrets/database: Add static role rotation for MongoDB Atlas database
plugin
[[GH-11](https://github.com/hashicorp/vault-plugin-database-mongodbatlas/pull/11)]
* secrets/database: Add static role rotation for MSSQL database plugin
[[GH-9062](https://github.com/hashicorp/vault/pull/9062)]
* secrets/database: Allow InfluxDB to use insecure TLS without cert bundle
[[GH-8778](https://github.com/hashicorp/vault/pull/8778)]
* secrets/gcp: Support BigQuery dataset ACLs in absence of IAM endpoints
[[GH-78](https://github.com/hashicorp/vault-plugin-secrets-gcp/pull/78)]
* secrets/pki: Allow 3072-bit RSA keys
[[GH-8343](https://github.com/hashicorp/vault/pull/8343)]
* secrets/ssh: Add a CA-mode role option to specify signing algorithm
[[GH-9096](https://github.com/hashicorp/vault/pull/9096)]
* secrets/transit: Transit requests that make use of keys now include a new
field `key_version` in their responses
[[GH-8775](https://github.com/hashicorp/vault/pull/8775)]
* secrets/transit: Improving transit batch encrypt and decrypt latencies
[[GH-9100](https://github.com/hashicorp/vault/pull/9100)]
* sentinel: Add a sentinel config section, and "additional_enabled_modules",
a list of Sentinel modules that may be imported in addition to the
defaults.
* ui: Update TTL picker styling on SSH secret engine
[[GH-8891](https://github.com/hashicorp/vault/pull/8891)]
* ui: Only render the JWT input field of the Vault login form on mounts
configured for JWT auth
[[GH-8952](https://github.com/hashicorp/vault/pull/8952)]
* cli: Add a new subcommand, `vault monitor`, for tailing server logs in the
console. [[GH-8477](https://github.com/hashicorp/vault/pull/8477)]
* ui: Add replication dashboards. Improve replication management
workflows. [[GH-8705]](https://github.com/hashicorp/vault/pull/8705).
BUG FIXES:
* agent: Restart template server when it shuts down
[[GH-9200](https://github.com/hashicorp/vault/pull/9200)]
* auth/oci: Fix issue where users of the Oracle Cloud Infrastructure (OCI)
auth method could not authenticate when the plugin backend was mounted at a
non-default path.
[[GH-7](https://github.com/hashicorp/vault-plugin-auth-oci/pull/7)]
* core: Extend replicated cubbyhole fix in 1.4.0 to cover case where a
performance primary is also a DR primary
[[GH-9148](https://github.com/hashicorp/vault/pull/9148)]
* secrets/aws: Fix issue where performance standbys weren't able to generate
STS credentials after an IAM access key rotation in AWS and root IAM
credential update in Vault
[[GH-9186](https://github.com/hashicorp/vault/pull/9186)]
* secrets/database: Fix issue where rotating root database credentials while
Vault's storage backend is unavailable causes Vault to lose access to the
database [[GH-8782](https://github.com/hashicorp/vault/pull/8782)]
* secrets/database: Fix issue that prevents performance standbys from
connecting to databases after a root credential rotation
[[GH-9129](https://github.com/hashicorp/vault/pull/9129)]
* secrets/gcp: Fix issue were updates were not being applied to the
`token_scopes` of a roleset.
[[GH-90](https://github.com/hashicorp/vault-plugin-secrets-gcp/pull/90)]
* secrets/kv: Return the value of delete_version_after when reading
kv/config, even if it is set to the default.
[[GH-42](https://github.com/hashicorp/vault-plugin-secrets-kv/pull/42)]
* ui: Add Toggle component into core addon so it is available in KMIP and
other Ember Engines.
[[GH-8913]](https://github.com/hashicorp/vault/pull/8913)
* ui: Disallow max versions value of large than 9999999999999999 on kv2
secrets engine. [[GH-9242](https://github.com/hashicorp/vault/pull/9242)]
## 1.4.3 (TBD)
IMPROVEMENTS:
* auth/aws: Add support for Web Identity credentials
[[GH-9251](https://github.com/hashicorp/vault/pull/9251)]
* core: Add the Go version used to build a Vault binary to the server message
output. [[GH-9078](https://github.com/hashicorp/vault/pull/9078)]
* secrets/database: Add static role rotation for MongoDB Atlas database
plugin [[GH-9311](https://github.com/hashicorp/vault/pull/9311)]
* ui: Link to the Vault Changelog in the UI footer
[[GH-9216](https://github.com/hashicorp/vault/pull/9216)]
BUG FIXES:
* auth/oci: Fix issue where users of the Oracle Cloud Infrastructure (OCI)
auth method could not authenticate when the plugin backend was mounted at a
non-default path. [[GH-9278](https://github.com/hashicorp/vault/pull/9278)]
* replication: The issue causing cubbyholes in namespaces on performance
secondaries to not work, which was fixed in 1.4.0, was still an issue when
the primary was both a performance primary and DR primary.
* secrets/aws: Fix issue where performance standbys weren't able to generate
STS credentials after an IAM access key rotation in AWS and root IAM
credential update in Vault
[[GH-9207](https://github.com/hashicorp/vault/pull/9207)]
* secrets/database: Fix issue that prevents performance standbys from
connecting to databases after a root credential rotation
[[GH-9208](https://github.com/hashicorp/vault/pull/9208)]
* secrets/gcp: Fix issue were updates were not being applied to the
`token_scopes` of a roleset.
[[GH-9277](https://github.com/hashicorp/vault/pull/9277)]
## 1.4.2 (May 21st, 2020)
SECURITY:
* core: Proxy environment variables are now redacted before being logged, in
case the URLs include a username:password. This vulnerability,
CVE-2020-13223, is fixed in 1.3.6 and 1.4.2, but affects 1.4.0 and 1.4.1,
as well as older versions of Vault
[[GH-9022](https://github.com/hashicorp/vault/pull/9022)]
* secrets/gcp: Fix a regression in 1.4.0 where the system TTLs were being
used instead of the configured backend TTLs for dynamic service
accounts. This vulnerability is CVE-2020-12757.
[[GH-85](https://github.com/hashicorp/vault-plugin-secrets-gcp/pull/85)]
IMPROVEMENTS:
* storage/raft: The storage stanza now accepts `leader_ca_cert_file`,
`leader_client_cert_file`, and `leader_client_key_file` parameters to read
and parse TLS certificate information from paths on disk.
Existing non-path based parameters will continue to work, but their values
will need to be provided as a single-line string with newlines delimited by
`\n`. [[GH-8894](https://github.com/hashicorp/vault/pull/8894)]
* storage/raft: The `vault status` CLI command and the `sys/leader` API now
contain the committed and applied raft indexes.
[[GH-9011](https://github.com/hashicorp/vault/pull/9011)]
BUG FIXES:
* auth/aws: Fix token renewal issues caused by the metadata changes in 1.4.1
[[GH-8991](https://github.com/hashicorp/vault/pull/8991)]
* auth/ldap: Fix 1.4.0 regression that could result in auth failures when
LDAP auth config includes upndomain.
[[GH-9041](https://github.com/hashicorp/vault/pull/9041)]
* secrets/ad: Forward rotation requests from standbys to active clusters
[[GH-66](https://github.com/hashicorp/vault-plugin-secrets-ad/pull/66)]
* secrets/database: Prevent generation of usernames that are not allowed by
the MongoDB Atlas API
[[GH-9](https://github.com/hashicorp/vault-plugin-database-mongodbatlas/pull/9)]
* secrets/database: Return an error if a manual rotation of static account
credentials fails [[GH-9035](https://github.com/hashicorp/vault/pull/9035)]
* secrets/openldap: Forward all rotation requests from standbys to active
clusters [[GH-9028](https://github.com/hashicorp/vault/pull/9028)]
* secrets/transform (enterprise): Fix panic that could occur when accessing
cached template entries, such as a requests that accessed templates
directly or indirectly from a performance standby node.
* serviceregistration: Fix a regression for Consul service registration that
ignored using the listener address as the redirect address unless api_addr
was provided. It now properly uses the same redirect address as the one
used by Vault's Core object.
[[GH-8976](https://github.com/hashicorp/vault/pull/8976)]
* storage/raft: Advertise the configured cluster address to the rest of the
nodes in the raft cluster. This fixes an issue where a node advertising
0.0.0.0 is not using a unique hostname.
[[GH-9008](https://github.com/hashicorp/vault/pull/9008)]
* storage/raft: Fix panic when multiple nodes attempt to join the cluster at
once. [[GH-9008](https://github.com/hashicorp/vault/pull/9008)]
* sys: The path provided in `sys/internal/ui/mounts/:path` is now
namespace-aware. This fixes an issue with `vault kv` subcommands that had
namespaces provided in the path returning permission denied all the time.
[[GH-8962](https://github.com/hashicorp/vault/pull/8962)]
* ui: Fix snowman that appears when namespaces have more than one period
[[GH-8910](https://github.com/hashicorp/vault/pull/8910)]
## 1.4.1 (April 30th, 2020)
CHANGES:
* auth/aws: The default set of metadata fields added in 1.4.1 has been
changed to `account_id` and `auth_type`
[[GH-8783](https://github.com/hashicorp/vault/pull/8783)]
* storage/raft: Disallow `ha_storage` to be specified if `raft` is set as the
`storage` type. [[GH-8707](https://github.com/hashicorp/vault/pull/8707)]
IMPROVEMENTS:
* auth/aws: The set of metadata stored during login is now configurable
[[GH-8783](https://github.com/hashicorp/vault/pull/8783)]
* auth/aws: Improve region selection to avoid errors seen if the account
hasn't enabled some newer AWS regions
[[GH-8679](https://github.com/hashicorp/vault/pull/8679)]
* auth/azure: Enable login from Azure VMs with user-assigned identities
[[GH-33](https://github.com/hashicorp/vault-plugin-auth-azure/pull/33)]
* auth/gcp: The set of metadata stored during login is now configurable
[[GH-92](https://github.com/hashicorp/vault-plugin-auth-gcp/pull/92)]
* auth/gcp: The type of alias name used during login is now configurable
[[GH-95](https://github.com/hashicorp/vault-plugin-auth-gcp/pull/95)]
* auth/ldap: Improve error messages during LDAP operation failures
[[GH-8740](https://github.com/hashicorp/vault/pull/8740)]
* identity: Add a batch delete API for identity entities
[[GH-8785]](https://github.com/hashicorp/vault/pull/8785)
* identity: Improve performance of logins when no group updates are needed
[[GH-8795]](https://github.com/hashicorp/vault/pull/8795)
* metrics: Add `vault.identity.num_entities` metric
[[GH-8816]](https://github.com/hashicorp/vault/pull/8816)
* secrets/kv: Allow `delete-version-after` to be reset to 0 via the CLI
[[GH-8635](https://github.com/hashicorp/vault/pull/8635)]
* secrets/rabbitmq: Improve error handling and reporting
[[GH-8619](https://github.com/hashicorp/vault/pull/8619)]
* ui: Provide One Time Password during Operation Token generation process
[[GH-8630]](https://github.com/hashicorp/vault/pull/8630)
BUG FIXES:
* auth/okta: Fix MFA regression (introduced in
[GH-8143](https://github.com/hashicorp/vault/pull/8143)) from 1.4.0
[[GH-8807](https://github.com/hashicorp/vault/pull/8807)]
* auth/userpass: Fix upgrade value for `token_bound_cidrs` being ignored due
to incorrect key provided
[[GH-8826](https://github.com/hashicorp/vault/pull/8826/files)]
* config/seal: Fix segfault when seal block is removed
[[GH-8517](https://github.com/hashicorp/vault/pull/8517)]
* core: Fix an issue where users attempting to build Vault could receive Go
module checksum errors
[[GH-8770](https://github.com/hashicorp/vault/pull/8770)]
* core: Fix blocked requests if a SIGHUP is issued during a long-running
request has the state lock held.
Also fixes deadlock that can happen if `vault debug` with the config target
is ran during this time.
[[GH-8755](https://github.com/hashicorp/vault/pull/8755)]
* core: Always rewrite the .vault-token file as part of a `vault login` to
ensure permissions and ownership are set correctly
[[GH-8867](https://github.com/hashicorp/vault/pull/8867)]
* database/mongodb: Fix context deadline error that may result due to retry
attempts on failed commands
[[GH-8863](https://github.com/hashicorp/vault/pull/8863)]
* http: Fix superflous call messages from the http package on logs caused by
missing returns after `respondError` calls
[[GH-8796](https://github.com/hashicorp/vault/pull/8796)]
* namespace (enterprise): Fix namespace listing to return `key_info` when a
scoping namespace is also provided.
* seal/gcpkms: Fix panic that could occur if all seal parameters were
provided via environment variables
[[GH-8840](https://github.com/hashicorp/vault/pull/8840)]
* storage/raft: Fix memory allocation and incorrect metadata tracking issues
with snapshots [[GH-8793](https://github.com/hashicorp/vault/pull/8793)]
* storage/raft: Fix panic that could occur if `disable_clustering` was set to
true on Raft storage cluster
[[GH-8784](https://github.com/hashicorp/vault/pull/8784)]
* storage/raft: Handle errors returned from the API during snapshot
operations [[GH-8861](https://github.com/hashicorp/vault/pull/8861)]
* sys/wrapping: Allow unwrapping of wrapping tokens which contain nil data
[[GH-8714](https://github.com/hashicorp/vault/pull/8714)]
## 1.4.0 (April 7th, 2020)
CHANGES:
* cli: The raft configuration command has been renamed to list-peers to avoid
confusion.
FEATURES:
* **Kerberos Authentication**: Vault now supports Kerberos authentication
using a SPNEGO token.
Login can be performed using the Vault CLI, API, or agent.
* **Kubernetes Service Discovery**: A new Kubernetes service discovery
feature where, if configured, Vault will tag Vault pods with their current
health status. For more, see
[#8249](https://github.com/hashicorp/vault/pull/8249).
* **MongoDB Atlas Secrets**: Vault can now generate dynamic credentials for
both MongoDB Atlas databases as well as the [Atlas programmatic
interface]
(https://docs.atlas.mongodb.com/tutorial/manage-programmatic-access/).
* **OpenLDAP Secrets Engine**: We now support password management of existing
OpenLDAP user entries. For more, see [#8360]
(https://github.com/hashicorp/vault/pull/8360/).
* **Redshift Database Secrets Engine**: The database secrets engine now
supports static and dynamic secrets for the Amazon Web Services (AWS)
Redshift service.
* **Service Registration Config**: A newly introduced `service_registration`
configuration stanza, that allows for service registration to be configured
separately from the storage backend. For more, see [#7887]
(https://github.com/hashicorp/vault/pull/7887/).
* **Transform Secrets Engine (Enterprise)**: A new secrets engine that
handles secure data transformation and tokenization against provided input
value.
* **Integrated Storage**: Promoted out of beta and into general availability
for both open-source and enterprise workloads.
IMPROVEMENTS:
* agent: add option to force the use of the auth-auth token, and ignore the
Vault token in the request
[[GH-8101](https://github.com/hashicorp/vault/pull/8101)]
* api: Restore and fix DNS SRV Lookup
[[GH-8520](https://github.com/hashicorp/vault/pull/8520)]
* audit: HMAC http_raw_body in audit log; this ensures that large
authenticated Prometheus metrics responses get replaced with short HMAC
values [[GH-8130](https://github.com/hashicorp/vault/pull/8130)]
* audit: Generate-root, generate-recovery-token, and
generate-dr-operation-token requests and responses are now
audited. [[GH-8301](https://github.com/hashicorp/vault/pull/8301)]
* auth/aws: Reduce the number of simultaneous STS client credentials needed
[[GH-8161](https://github.com/hashicorp/vault/pull/8161)]
* auth/azure: subscription ID, resource group, vm and vmss names are now
stored in alias metadata
[[GH-30](https://github.com/hashicorp/vault-plugin-auth-azure/pull/30)]
* auth/jwt: Additional OIDC callback parameters available for CLI logins
[[GH-80](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/80) &
[GH-86](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/86)]
* auth/jwt: Bound claims may be optionally configured using globs
[[GH-89](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/89)]
* auth/jwt: Timeout during OIDC CLI login if process doesn't complete within
2 minutes
[[GH-97](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/97)]
* auth/jwt: Add support for the `form_post` response mode
[[GH-98](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/98)]
* auth/jwt: add optional client_nonce to authorization flow
[[GH-104](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/104)]
* auth/okta: Upgrade okta sdk lib, which should improve handling of groups
[[GH-8143](https://github.com/hashicorp/vault/pull/8143)]
* aws: Add support for v2 of the instance metadata service (see [issue
7924](https://github.com/hashicorp/vault/issues/7924) for all linked PRs)
* core: Separate out service discovery interface from storage interface to allow
new types of service discovery not coupled to storage
[[GH-7887](https://github.com/hashicorp/vault/pull/7887)]
* core: Add support for telemetry option `metrics_prefix`
[[GH-8340](https://github.com/hashicorp/vault/pull/8340)]
* core: Entropy Augmentation can now be used with AWS KMS and Vault Transit
seals
* core: Allow tls_min_version to be set to TLS 1.3
[[GH-8305](https://github.com/hashicorp/vault/pull/8305)]
* cli: Incorrect TLS configuration will now correctly fail
[[GH-8025](https://github.com/hashicorp/vault/pull/8025)]
* identity: Allow specifying a custom `client_id` for identity tokens
[[GH-8165](https://github.com/hashicorp/vault/pull/8165)]
* metrics/prometheus: improve performance with high volume of metrics updates
[[GH-8507](https://github.com/hashicorp/vault/pull/8507)]
* replication (enterprise): Fix race condition causing clusters with high
throughput writes to sometimes fail to enter streaming-wal mode
* replication (enterprise): Secondary clusters can now perform an extra gRPC
call to all nodes in a primary
cluster in an attempt to resolve the active node's address
* replication (enterprise): The replication status API now outputs
`last_performance_wal`, `last_dr_wal`, and `connection_state` values
* replication (enterprise): DR secondary clusters can now be recovered by the
`replication/dr/secondary/recover` API
* replication (enterprise): We now allow for an alternate means to create a
Disaster Recovery token, by using a batch token that is created with an ACL
that allows for access to one or more of the DR endpoints.
* secrets/database/mongodb: Switched internal MongoDB driver to mongo-driver
[[GH-8140](https://github.com/hashicorp/vault/pull/8140)]
* secrets/database/mongodb: Add support for x509 client authorization to
MongoDB [[GH-8329](https://github.com/hashicorp/vault/pull/8329)]
* secrets/database/oracle: Add support for static credential rotation
[[GH-26](https://github.com/hashicorp/vault-plugin-database-oracle/pull/26)]
* secrets/consul: Add support to specify TLS options per Consul backend
[[GH-4800](https://github.com/hashicorp/vault/pull/4800)]
* secrets/gcp: Allow specifying the TTL for a service key
[[GH-54](https://github.com/hashicorp/vault-plugin-secrets-gcp/pull/54)]
* secrets/gcp: Add support for rotating root keys
[[GH-53](https://github.com/hashicorp/vault-plugin-secrets-gcp/pull/53)]
* secrets/gcp: Handle version 3 policies for Resource Manager IAM requests
[[GH-77](https://github.com/hashicorp/vault-plugin-secrets-gcp/pull/77)
* secrets/nomad: Add support to specify TLS options per Nomad backend
[[GH-8083](https://github.com/hashicorp/vault/pull/8083)]
* secrets/ssh: Allowed users can now be templated with identity information
[[GH-7548](https://github.com/hashicorp/vault/pull/7548)]
* secrets/transit: Adding RSA3072 key support
[[GH-8151](https://github.com/hashicorp/vault/pull/8151)]
* storage/consul: Vault returns now a more descriptive error message when
only a client cert or a client key has been provided
[[GH-4930]](https://github.com/hashicorp/vault/pull/8084)
* storage/raft: Nodes in the raft cluster can all be given possible leader
addresses for them to continuously try and join one of them, thus
automating the process of join to a greater extent
[[GH-7856](https://github.com/hashicorp/vault/pull/7856)]
* storage/raft: Fix a potential deadlock that could occur on leadership
transition [[GH-8547](https://github.com/hashicorp/vault/pull/8547)]
* storage/raft: Refresh TLS keyring on snapshot restore
[[GH-8546](https://github.com/hashicorp/vault/pull/8546)]
* storage/etcd: Bumped etcd client API SDK
[[GH-7931](https://github.com/hashicorp/vault/pull/7931) &
[GH-4961](https://github.com/hashicorp/vault/pull/4961) &
[GH-4349](https://github.com/hashicorp/vault/pull/4349) &
[GH-7582](https://github.com/hashicorp/vault/pull/7582)]
* ui: Make Transit Key actions more prominent
[[GH-8304](https://github.com/hashicorp/vault/pull/8304)]
* ui: Add Core Usage Metrics
[[GH-8347](https://github.com/hashicorp/vault/pull/8347)]
* ui: Add refresh Namespace list on the Namespace dropdown, and redesign of
Namespace dropdown menu
[[GH-8442](https://github.com/hashicorp/vault/pull/8442)]
* ui: Update transit actions to codeblocks & automatically encode plaintext
unless indicated [[GH-8462](https://github.com/hashicorp/vault/pull/8462)]
* ui: Display the results of transit key actions in a modal window
[[GH-8462](https://github.com/hashicorp/vault/pull/8575)]
* ui: Transit key version styling updates & ability to copy key from dropdown
[[GH-8480](https://github.com/hashicorp/vault/pull/8480)]
BUG FIXES:
* agent: Fix issue where TLS options are ignored for agent template feature
[[GH-7889](https://github.com/hashicorp/vault/pull/7889)]
* auth/jwt: Use lower case role names for `default_role` to match the `role`
case convention
[[GH-100](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/100)]
* auth/ldap: Fix a bug where the UPNDOMAIN parameter was wrongly used to
lookup the group membership of the given user
[[GH-6325]](https://github.com/hashicorp/vault/pull/8333)
* cli: Support autocompletion for nested mounts
[[GH-8303](https://github.com/hashicorp/vault/pull/8303)]
* cli: Fix CLI namespace autocompletion
[[GH-8315](https://github.com/hashicorp/vault/pull/8315)]
* identity: Fix incorrect caching of identity token JWKS responses
[[GH-8412](https://github.com/hashicorp/vault/pull/8412)]
* metrics/stackdriver: Fix issue that prevents the stackdriver metrics
library to create unnecessary stackdriver descriptors
[[GH-8073](https://github.com/hashicorp/vault/pull/8073)]
* replication: Fix issue causing cubbyholes in namespaces on performance
secondaries to not work.
* replication (enterprise): Unmounting a dynamic secrets backend could
sometimes lead to replication errors. Change the order of operations to
prevent that.
* seal (enterprise): Fix seal migration when transactional seal wrap backend
is in use.
* secrets/database/influxdb: Fix potential panic if connection to the
InfluxDB database cannot be established
[[GH-8282](https://github.com/hashicorp/vault/pull/8282)]
* secrets/database/mysql: Ensures default static credential rotation
statements are used
[[GH-8240](https://github.com/hashicorp/vault/pull/8240)]
* secrets/database/mysql: Fix inconsistent query parameter names: {{name}} or
{{username}} for different queries. Now it allows for either for backwards
compatibility [[GH-8240](https://github.com/hashicorp/vault/pull/8240)]
* secrets/database/postgres: Fix inconsistent query parameter names: {{name}}
or {{username}} for different queries. Now it allows for either for
backwards compatibility
[[GH-8240](https://github.com/hashicorp/vault/pull/8240)]
* secrets/pki: Support FQDNs in DNS Name
[[GH-8288](https://github.com/hashicorp/vault/pull/8288)]
* storage/raft: Allow seal migration to be performed on Vault clusters using
raft storage [[GH-8103](https://github.com/hashicorp/vault/pull/8103)]
* telemetry: Prometheus requests on standby nodes will now return an error
instead of forwarding the request to the active node
[[GH-8280](https://github.com/hashicorp/vault/pull/8280)]
* ui: Fix broken popup menu on the transit secrets list page
[[GH-8348](https://github.com/hashicorp/vault/pull/8348)]
* ui: Update headless Chrome flag to fix `yarn run test:oss`
[[GH-8035](https://github.com/hashicorp/vault/pull/8035)]
* ui: Update CLI to accept empty strings as param value to reset
previously-set values
* ui: Fix bug where error states don't clear when moving between action tabs
on Transit [[GH-8354](https://github.com/hashicorp/vault/pull/8354)]
## 1.3.6 (May 21st, 2020)
SECURITY:
* core: proxy environment variables are now redacted before being logged, in
case the URLs include a username:password. This vulnerability,
CVE-2020-13223, is fixed in 1.3.6 and 1.4.2, but affects 1.4 and 1.4.1, as
well as older versions of Vault
[[GH-9022](https://github.com/hashicorp/vault/pull/9022)
BUG FIXES:
* auth/aws: Fix token renewal issues caused by the metadata changes in 1.3.5
[[GH-8991](https://github.com/hashicorp/vault/pull/8991)]
* replication: Fix mount filter bug that allowed replication filters to hide
local mounts on a performance secondary
## 1.3.5 (April 28th, 2020)
CHANGES:
* auth/aws: The default set of metadata fields added in 1.3.2 has been
changed to `account_id` and `auth_type`
[[GH-8783](https://github.com/hashicorp/vault/pull/8783)]
IMPROVEMENTS:
* auth/aws: The set of metadata stored during login is now configurable
[[GH-8783](https://github.com/hashicorp/vault/pull/8783)]
## 1.3.4 (March 19th, 2020)
SECURITY:
* A vulnerability was identified in Vault and Vault Enterprise such that,
under certain circumstances, an Entity's Group membership may
inadvertently include Groups the Entity no longer has permissions to. This
vulnerability, CVE-2020-10660, affects Vault and Vault Enterprise versions
0.9.0 and newer, and is fixed in 1.3.4.
[[GH-8606](https://github.com/hashicorp/vault/pull/8606)]
* A vulnerability was identified in Vault Enterprise such that, under certain
circumstances, existing nested-path policies may give access to Namespaces
created after-the-fact. This vulnerability, CVE-2020-10661, affects Vault
Enterprise versions 0.11 and newer, and is fixed in 1.3.4.
## 1.3.3 (March 5th, 2020)
BUG FIXES:
* approle: Fix excessive locking during tidy, which could potentially block
new approle logins for long enough to cause an outage
[[GH-8418](https://github.com/hashicorp/vault/pull/8418)]
* cli: Fix issue where Raft snapshots from standby nodes created an empty
backup file [[GH-8097](https://github.com/hashicorp/vault/pull/8097)]
* identity: Fix incorrect caching of identity token JWKS responses
[[GH-8412](https://github.com/hashicorp/vault/pull/8412)]
* kmip: role read now returns tls_client_ttl
* kmip: fix panic when templateattr not provided in rekey request
* secrets/database/influxdb: Fix potential panic if connection to the
InfluxDB database cannot be established
[[GH-8282](https://github.com/hashicorp/vault/pull/8282)]
* storage/mysql: Fix potential crash when using MySQL as coordination for
high availability [[GH-8300](https://github.com/hashicorp/vault/pull/8300)]
* storage/raft: Fix potential crash when using Raft as coordination for high
availability [[GH-8356](https://github.com/hashicorp/vault/pull/8356)]
* ui: Fix missing License menu item
[[GH-8230](https://github.com/hashicorp/vault/pull/8230)]
* ui: Fix bug where default auth method on login is defaulted to auth method
that is listing-visibility=unauth instead of "other"
[[GH-8218](https://github.com/hashicorp/vault/pull/8218)]
* ui: Fix bug where KMIP details were not shown in the UI Wizard
[[GH-8255](https://github.com/hashicorp/vault/pull/8255)]
* ui: Show Error messages on Auth Configuration page when you hit permission
errors [[GH-8500](https://github.com/hashicorp/vault/pull/8500)]
* ui: Remove duplicate form inputs for the GitHub config
[[GH-8519](https://github.com/hashicorp/vault/pull/8519)]
* ui: Correct HMAC capitalization
[[GH-8528](https://github.com/hashicorp/vault/pull/8528)]
* ui: Fix danger message in DR
[[GH-8555](https://github.com/hashicorp/vault/pull/8555)]
* ui: Fix certificate field for LDAP config
[[GH-8573](https://github.com/hashicorp/vault/pull/8573)]
## 1.3.2 (January 22nd, 2020)
SECURITY:
* When deleting a namespace on Vault Enterprise, in certain circumstances,
the deletion process will fail to revoke dynamic secrets for a mount in
that namespace. This will leave any dynamic secrets in remote systems
alive and will fail to clean them up. This vulnerability, CVE-2020-7220,
affects Vault Enterprise 0.11.0 and newer.
IMPROVEMENTS:
* auth/aws: Add aws metadata to identity alias
[[GH-7985](https://github.com/hashicorp/vault/pull/7985)]
* auth/kubernetes: Allow both names and namespaces to be set to "*"
[[GH-78](https://github.com/hashicorp/vault-plugin-auth-kubernetes/pull/78)]
BUG FIXES:
* auth/azure: Fix Azure compute client to use correct base URL
[[GH-8072](https://github.com/hashicorp/vault/pull/8072)]
* auth/ldap: Fix renewal of tokens without configured policies that are
generated by an LDAP login
[[GH-8072](https://github.com/hashicorp/vault/pull/8072)]
* auth/okta: Fix renewal of tokens without configured policies that are
generated by an Okta login
[[GH-8072](https://github.com/hashicorp/vault/pull/8072)]
* core: Fix seal migration error when attempting to migrate from auto unseal
to shamir [[GH-8172](https://github.com/hashicorp/vault/pull/8172)]
* core: Fix seal migration config issue when migrating from auto unseal to
auto unseal [[GH-8172](https://github.com/hashicorp/vault/pull/8172)]
* plugin: Fix issue where a plugin unwrap request potentially used an expired
token [[GH-8058](https://github.com/hashicorp/vault/pull/8058)]
* replication: Fix issue where a forwarded request from a performance/standby
node could run into a timeout
* secrets/database: Fix issue where a manual static role rotation could
potentially panic [[GH-8098](https://github.com/hashicorp/vault/pull/8098)]
* secrets/database: Fix issue where a manual root credential rotation request
is not forwarded to the primary node
[[GH-8125](https://github.com/hashicorp/vault/pull/8125)]
* secrets/database: Fix issue where a manual static role rotation request is
not forwarded to the primary node
[[GH-8126](https://github.com/hashicorp/vault/pull/8126)]
* secrets/database/mysql: Fix issue where special characters for a MySQL
password were encoded
[[GH-8040](https://github.com/hashicorp/vault/pull/8040)]
* ui: Fix deleting namespaces
[[GH-8132](https://github.com/hashicorp/vault/pull/8132)]
* ui: Fix Error handler on kv-secret edit and kv-secret view pages
[[GH-8133](https://github.com/hashicorp/vault/pull/8133)]
* ui: Fix OIDC callback to check storage
[[GH-7929](https://github.com/hashicorp/vault/pull/7929)].
* ui: Change `.box-radio` height to min-height to prevent overflow issues
[[GH-8065](https://github.com/hashicorp/vault/pull/8065)]
## 1.3.1 (December 18th, 2019)
IMPROVEMENTS:
* agent: Add ability to set `exit-after-auth` via the CLI
[[GH-7920](https://github.com/hashicorp/vault/pull/7920)]
* auth/ldap: Add a `request_timeout` configuration option to prevent
connection requests from hanging
[[GH-7909](https://github.com/hashicorp/vault/pull/7909)]
* auth/kubernetes: Add audience to tokenreview API request for Kube
deployments where issuer is not Kube.
[[GH-74](https://github.com/hashicorp/vault/pull/74)]
* secrets/ad: Add a `request_timeout` configuration option to prevent
connection requests from hanging
[[GH-59](https://github.com/hashicorp/vault-plugin-secrets-ad/pull/59)]
* storage/postgresql: Add support for setting `connection_url` from
enviornment variable `VAULT_PG_CONNECTION_URL`
[[GH-7937](https://github.com/hashicorp/vault/pull/7937)]
* telemetry: Add `enable_hostname_label` option to telemetry stanza
[[GH-7902](https://github.com/hashicorp/vault/pull/7902)]
* telemetry: Add accept header check for prometheus mime type
[[GH-7958](https://github.com/hashicorp/vault/pull/7958)]
BUG FIXES:
* agent: Fix issue where Agent exits before all templates are rendered when
using and `exit_after_auth`
[[GH-7899](https://github.com/hashicorp/vault/pull/7899)]
* auth/aws: Fixes region-related issues when using a custom `sts_endpoint` by
adding a `sts_region` parameter
[[GH-7922](https://github.com/hashicorp/vault/pull/7922)]
* auth/token: Fix panic when getting batch tokens on a performance standby
from a role that does not exist
[[GH-8027](https://github.com/hashicorp/vault/pull/8027)]
* core: Improve warning message for lease TTLs
[[GH-7901](https://github.com/hashicorp/vault/pull/7901)]
* identity: Fix identity token panic during invalidation
[[GH-8043](https://github.com/hashicorp/vault/pull/8043)]
* plugin: Fix a panic that could occur if a mount/auth entry was unable to
mount the plugin backend and a request that required the system view to be
retrieved was made
[[GH-7991](https://github.com/hashicorp/vault/pull/7991)]
* replication: Add `generate-public-key` endpoint to list of allowed
endpoints for existing DR secondaries
* secrets/gcp: Fix panic if bindings aren't provided in roleset
create/update.
[[GH-56](https://github.com/hashicorp/vault-plugin-secrets-gcp/pull/56)]
* secrets/pki: Prevent generating certificate on performance standby when
storing
[[GH-7904](https://github.com/hashicorp/vault/pull/7904)]
* secrets/transit: Prevent restoring keys to new names that are sub paths
[[GH-7998](https://github.com/hashicorp/vault/pull/7998)]
* storage/s3: Fix a bug in configurable S3 paths that was preventing use of
S3 as a source during `operator migrate` operations
[[GH-7966](https://github.com/hashicorp/vault/pull/7966)]
* ui: Ensure secrets with a period in their key can be viewed and copied
[[GH-7926](https://github.com/hashicorp/vault/pull/7926)]
* ui: Fix status menu after demotion
[[GH-7997](https://github.com/hashicorp/vault/pull/7997)]
* ui: Fix select dropdowns in Safari when running Mojave
[[GH-8023](https://github.com/hashicorp/vault/pull/8023)]
## 1.3 (November 14th, 2019)
CHANGES:
* Secondary cluster activation: There has been a change to the way that
activating performance and DR secondary clusters works when using public
keys for encryption of the parameters rather than a wrapping token. This
flow was experimental and never documented. It is now officially supported
and documented but is not backwards compatible with older Vault releases.
* Cluster cipher suites: On its cluster port, Vault will no longer advertise
the full TLS 1.2 cipher suite list by default. Although this port is only
used for Vault-to-Vault communication and would always pick a strong
cipher, it could cause false flags on port scanners and other security
utilities that assumed insecure ciphers were being used. The previous
behavior can be achieved by setting the value of the (undocumented)
`cluster_cipher_suites` config flag to `tls12`.
* API/Agent Renewal behavior: The API now allows multiple options for how it
deals with renewals. The legacy behavior in the Agent/API is for the renewer
(now called the lifetime watcher) to exit on a renew error, leading to a
reauthentication. The new default behavior is for the lifetime watcher to
ignore 5XX errors and simply retry as scheduled, using the existing lease
duration. It is also possible, within custom code, to disable renewals
entirely, which allows the lifetime watcher to simply return when it
believes it is time for your code to renew or reauthenticate.
FEATURES:
* **Vault Debug**: A new top-level subcommand, `debug`, is added that allows
operators to retrieve debugging information related to a particular Vault
node. Operators can use this simple workflow to capture triaging
information, which can then be consumed programmatically or by support and
engineering teams. It has the abilitity to probe for config, host,
metrics, pprof, server status, and replication status.
* **Recovery Mode**: Vault server can be brought up in recovery mode to
resolve outages caused due to data store being in bad state. This is a
privileged mode that allows `sys/raw` API calls to perform surgical
corrections to the data tore. Bad storage state can be caused by
bugs. However, this is usually observed when known (and fixed) bugs are
hit by older versions of Vault.
* **Entropy Augmentation (Enterprise)**: Vault now supports sourcing entropy
from external source for critical security parameters. Currently an HSM
that supports PKCS#11 is the only supported source.
* **Active Directory Secret Check-In/Check-Out**: In the Active Directory
secrets engine, users or applications can check out a service account for
use, and its password will be rotated when it's checked back in.
* **Vault Agent Template**: Vault Agent now supports rendering templates
containing Vault secrets to disk, similar to Consul Template
[[GH-7652](https://github.com/hashicorp/vault/pull/7652)]
* **Transit Key Type Support**: Signing and verification is now supported
with the P-384 (secp384r1) and P-521 (secp521r1) ECDSA curves
[[GH-7551](https://github.com/hashicorp/vault/pull/7551)] and encryption
and decryption is now supported via AES128-GCM96
[[GH-7555](https://github.com/hashicorp/vault/pull/7555)]
* **SSRF Protection for Vault Agent**: Vault Agent has a configuration
option to require a specific header before allowing requests
[[GH-7627](https://github.com/hashicorp/vault/pull/7627)]
* **AWS Auth Method Root Rotation**: The credential used by the AWS auth
method can now be rotated, to ensure that only Vault knows the credentials
it is using [[GH-7131](https://github.com/hashicorp/vault/pull/7131)]
* **New UI Features**: The UI now supports managing users and groups for the
Userpass, Cert, Okta, and Radius auth methods.
* **Shamir with Stored Master Key**: The on disk format for Shamir seals has
changed, allowing for a secondary cluster using Shamir downstream from a
primary cluster using Auto
Unseal. [[GH-7694](https://github.com/hashicorp/vault/pull/7694)]
* **Stackdriver Metrics Sink**: Vault can now send metrics to
[Stackdriver](https://cloud.google.com/stackdriver/). See the
[configuration
documentation](https://www.vaultproject.io/docs/config/index.html) for
details. [[GH-6957](https://github.com/hashicorp/vault/pull/6957)]
* **Filtered Paths Replication (Enterprise)**: Based on the predecessor
Filtered Mount Replication, Filtered Paths Replication allows now
filtering of namespaces in addition to mounts.
* **Token Renewal via Accessor**: Tokens can now be renewed via the accessor
value through the new `auth/token/renew-accessor` endpoint if the caller's
token has permission to access that endpoint.
* **Improved Integrated Storage (Beta)**: Improved raft write performance,
added support for non-voter nodes, along with UI support for: using raft
storage, joining a raft cluster, and downloading and restoring a
snapshot.
IMPROVEMENTS:
* agent: Add ability to set the TLS SNI name used by Agent
[[GH-7519](https://github.com/hashicorp/vault/pull/7519)]
* agent & api: Change default renewer behavior to ignore 5XX errors
[[GH-7733](https://github.com/hashicorp/vault/pull/7733)]
* auth/jwt: The redirect callback host may now be specified for CLI logins
[[GH-71](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/71)]
* auth/jwt: Bound claims may now contain boolean values
[[GH-73](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/73)]
* auth/jwt: CLI logins can now open the browser when running in WSL
[[GH-77](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/77)]
* core: Exit ScanView if context has been cancelled
[[GH-7419](https://github.com/hashicorp/vault/pull/7419)]
* core: re-encrypt barrier and recovery keys if the unseal key is updated
[[GH-7493](https://github.com/hashicorp/vault/pull/7493)]
* core: Don't advertise the full set of TLS 1.2 cipher suites on the cluster
port, even though only strong ciphers were used
[[GH-7487](https://github.com/hashicorp/vault/pull/7487)]
* core (enterprise): Add background seal re-wrap
* core/metrics: Add config parameter to allow unauthenticated sys/metrics
access. [[GH-7550](https://github.com/hashicorp/vault/pull/7550)]
* metrics: Upgrade DataDog library to improve performance
[[GH-7794](https://github.com/hashicorp/vault/pull/7794)]
* replication (enterprise): Write-Ahead-Log entries will not duplicate the
data belonging to the encompassing physical entries of the transaction,
thereby improving the performance and storage capacity.
* replication (enterprise): Added more replication metrics
* replication (enterprise): Reindex process now compares subpages for a more
accurate indexing process.
* replication (enterprise): Reindex API now accepts a new `skip_flush`
parameter indicating all the changes should not be flushed while the tree
is locked.
* secrets/aws: The root config can now be read
[[GH-7245](https://github.com/hashicorp/vault/pull/7245)]
* secrets/database/cassandra: Add ability to skip verfication of connection
[[GH-7614](https://github.com/hashicorp/vault/pull/7614)]
* secrets/gcp: Fix panic during rollback if the roleset has been deleted
[[GH-52](https://github.com/hashicorp/vault-plugin-secrets-gcp/pull/52)]
* storage/azure: Add config parameter to Azure storage backend to allow
specifying the ARM endpoint
[[GH-7567](https://github.com/hashicorp/vault/pull/7567)]
* storage/cassandra: Improve storage efficiency by eliminating unnecessary
copies of value data
[[GH-7199](https://github.com/hashicorp/vault/pull/7199)]
* storage/raft: Improve raft write performance by utilizing FSM Batching
[[GH-7527](https://github.com/hashicorp/vault/pull/7527)]
* storage/raft: Add support for non-voter nodes
[[GH-7634](https://github.com/hashicorp/vault/pull/7634)]
* sys: Add a new `sys/host-info` endpoint for querying information about
the host [[GH-7330](https://github.com/hashicorp/vault/pull/7330)]
* sys: Add a new set of endpoints under `sys/pprof/` that allows profiling
information to be extracted
[[GH-7473](https://github.com/hashicorp/vault/pull/7473)]
* sys: Add endpoint that counts the total number of active identity entities
[[GH-7541](https://github.com/hashicorp/vault/pull/7541)]
* sys: `sys/seal-status` now has a `storage_type` field denoting what type
of storage the cluster is configured to use
* sys: Add a new `sys/internal/counters/tokens` endpoint, that counts the
total number of active service token accessors in the shared token
storage.
[[GH-7541](https://github.com/hashicorp/vault/pull/7541)]
* sys/config: Add a new endpoint under `sys/config/state/sanitized` that
returns the configuration state of the server. It excludes config values
from `storage`, `ha_storage`, and `seal` stanzas and some values
from `telemetry` due to potential sensitive entries in those fields.
* ui: when using raft storage, you can now join a raft cluster, download a
snapshot, and restore a snapshot from the UI
[[GH-7410](https://github.com/hashicorp/vault/pull/7410)]
* ui: clarify when secret version is deleted in the secret version history
dropdown [[GH-7714](https://github.com/hashicorp/vault/pull/7714)]
BUG FIXES:
* agent: Fix a data race on the token value for inmemsink
[[GH-7707](https://github.com/hashicorp/vault/pull/7707)]
* api: Fix Go API using lease revocation via URL instead of body
[[GH-7777](https://github.com/hashicorp/vault/pull/7777)]
* api: Allow setting a function to control retry behavior
[[GH-7331](https://github.com/hashicorp/vault/pull/7331)]
* auth/gcp: Fix a bug where region information in instance groups names could
cause an authorization attempt to fail
[[GH-74](https://github.com/hashicorp/vault-plugin-auth-gcp/pull/74)]
* cli: Fix a bug where a token of an unknown format (e.g. in ~/.vault-token)
could cause confusing error messages during `vault login`
[[GH-7508](https://github.com/hashicorp/vault/pull/7508)]
* cli: Fix a bug where the `namespace list` command with JSON formatting
always returned an empty object
[[GH-7705](https://github.com/hashicorp/vault/pull/7705)]
* cli: Command timeouts are now always specified solely by the
`VAULT_CLIENT_TIMEOUT`
value. [[GH-7469](https://github.com/hashicorp/vault/pull/7469)]
* core: Don't allow registering a non-root zero TTL token lease. This is
purely defense in depth as the lease would be revoked immediately anyways,
but there's no real reason to allow registration.
[[GH-7524](https://github.com/hashicorp/vault/pull/7524)]
* identity (enterprise): Fixed identity case sensitive loading in secondary
cluster [[GH-7327](https://github.com/hashicorp/vault/pull/7327)]
* identity: Ensure only replication primary stores the identity case
sensitivity state
[[GH-7820](https://github.com/hashicorp/vault/pull/7820)]
* raft: Fixed VAULT_CLUSTER_ADDR env being ignored at startup
[[GH-7619](https://github.com/hashicorp/vault/pull/7619)]
* secrets/pki: Don't allow duplicate SAN names in issued certs
[[GH-7605](https://github.com/hashicorp/vault/pull/7605)]
* sys/health: Pay attention to the values provided for `standbyok` and
`perfstandbyok` rather than simply using their presence as a key to flip on
that behavior [[GH-7323](https://github.com/hashicorp/vault/pull/7323)]
* ui: using the `wrapped_token` query param will work with `redirect_to` and
will automatically log in as intended
[[GH-7398](https://github.com/hashicorp/vault/pull/7398)]
* ui: fix an error when initializing from the UI using PGP keys
[[GH-7542](https://github.com/hashicorp/vault/pull/7542)]
* ui: show all active kv v2 secret versions even when `delete_version_after`
is configured [[GH-7685](https://github.com/hashicorp/vault/pull/7685)]
* ui: Ensure that items in the top navigation link to pages that users have
access to [[GH-7590](https://github.com/hashicorp/vault/pull/7590)]
## 1.2.4 (November 7th, 2019)
SECURITY:
* In a non-root namespace, revocation of a token scoped to a non-root
namespace did not trigger the expected revocation of dynamic secret leases
associated with that token. As a result, dynamic secret leases in non-root
namespaces may outlive the token that created them. This vulnerability,
CVE-2019-18616, affects Vault Enterprise 0.11.0 and newer.
* Disaster Recovery secondary clusters did not delete already-replicated data
after a mount filter has been created on an upstream Performance secondary
cluster. As a result, encrypted secrets may remain replicated on a Disaster
Recovery secondary cluster after application of a mount filter excluding
those secrets from replication. This vulnerability, CVE-2019-18617, affects
Vault Enterprise 0.8 and newer.
* Update version of Go to 1.12.12 to fix Go bug golang.org/issue/34960 which
corresponds to CVE-2019-17596.
CHANGES:
* auth/aws: If a custom `sts_endpoint` is configured, Vault Agent and the
CLI should provide the corresponding region via the `region` parameter
(which already existed as a CLI parameter, and has now been added to
Agent). The automatic region detection added to the CLI and Agent in 1.2
has been removed.
IMPROVEMENTS:
* cli: Ignore existing token during CLI login
[[GH-7508](https://github.com/hashicorp/vault/pull/7508)]
* core: Log proxy settings from environment on startup
[[GH-7528](https://github.com/hashicorp/vault/pull/7528)]
* core: Cache whether we've been initialized to reduce load on storage
[[GH-7549](https://github.com/hashicorp/vault/pull/7549)]
BUG FIXES:
* agent: Fix handling of gzipped responses
[[GH-7470](https://github.com/hashicorp/vault/pull/7470)]
* cli: Fix panic when pgp keys list is empty
[[GH-7546](https://github.com/hashicorp/vault/pull/7546)]
* cli: Command timeouts are now always specified solely by the
`VAULT_CLIENT_TIMEOUT`
value. [[GH-7469](https://github.com/hashicorp/vault/pull/7469)]
* core: add hook for initializing seals for migration
[[GH-7666](https://github.com/hashicorp/vault/pull/7666)]
* core (enterprise): Migrating from one auto unseal method to another never
worked on enterprise, now it does.
* identity: Add required field `response_types_supported` to identity token
`.well-known/openid-configuration` response
[[GH-7533](https://github.com/hashicorp/vault/pull/7533)]
* identity: Fixed nil pointer panic when merging entities
[[GH-7712](https://github.com/hashicorp/vault/pull/7712)]
* replication (Enterprise): Fix issue causing performance standbys nodes
disconnecting when under high loads.
* secrets/azure: Fix panic that could occur if client retries timeout
[[GH-7793](https://github.com/hashicorp/vault/pull/7793)]
* secrets/database: Fix bug in combined DB secrets engine that can result in
writes to static-roles endpoints timing out
[[GH-7518](https://github.com/hashicorp/vault/pull/7518)]
* secrets/pki: Improve tidy to continue when value is nil
[[GH-7589](https://github.com/hashicorp/vault/pull/7589)]
* ui (Enterprise): Allow kv v2 secrets that are gated by Control Groups to
be viewed in the UI
[[GH-7504](https://github.com/hashicorp/vault/pull/7504)]
jperkin
pushed a commit
that referenced
this issue
Dec 28, 2020
Change since 1.3.1 from RELEASE_NOTES
1.4.0 2018/06/??
Add ARC support. Extensive work contributed by ValiMail.
Add "DomainWhitelist" and "DomainWhitelistFile" config options.
Extract client IP address for ARC reports when provided via
Authentication-Results.
Update SQL schema to support new reporting functionality for DKIM
selectors and ARC local policy overrides (refer to the example
schema.mysql file).
Add experimental support for reporting of ARC local policy overrides.
Add support for recording and reporting of DKIM selectors.
Override a DMARC "fail" if an ARC "pass" is recorded in conjunction with
an ARC policy pass.
Fix bug #137: Handle base64 inside AR tokens that are values.
Problem reported by Joseph Coffland.
LIBOPENDMARC: Fix bug #203: Reject DMARC records that have duplicate
tags in them. Reported by Dirk Stoecker.
REPORTS: Feature request #146: Add option to pull input from a file.
REPORTS: Fix bug #153: Suppress duplicate results from the same
domain. Patch from Tomki Camp.
1.3.2 2017/03/04
Feature request #86: Change meaning of "RequiredHeaders" such that
header validity is always checked, but messages are only
rejected on that basis when the flag is set. Based
on a patch from Andreas Schulze.
Feature request #127: Log SPF results when rejecting. Requested
by Patrick Wagner; patch from Andreas Schulze, follow-up
patch from Juri Haberland.
Feature request #138: Inculde policy and disposition information
in an Authentication-Results comment. Based on a patch
from Juri Haberland.
Feature request #139: Include the client host name if known
in failure reports. Suggested by Roland Turner;
patch by Andreas Schulze.
Fix bug #95: Assume IPv6 for SPF operations. Patch from Juri Haberland.
Fix bug #120: Fix control logic around the SPF result.
Reported by Christophe Wolfhugel; patch from Andreas Schulze.
Fix bug #122: Don't skip the HELO milter phase when SPF is enabled.
Reported by Christophe Wolfhugel.
Fix bug #157: Fix logging of implicit authserv-ids. Reported
by Andreas Schulze; patch from Juri Haberland.
Fix bug #158: Log ignored connections. Patch from Andreas Schulze.
Fix bug #160: Fix "SyslogFacility" handling. Patch from
Juri Haberland.
Fix bug #163: Use a larger buffer for the raw MAIL FROM value.
Based on a patch from Andreas Schulze.
Fix bug #174: Trim "!" suffixes from reporting addresses. Problem
noted by Juri Haberland.
Fix bug #186: When reloading the configuration file, the public
suffix list was read in with the wrong comment indicator.
Patch from Federico Omoto.
Fix bug #194: Fix inappropriate DMARC status when "p=none" is
discovered. Patch from Juri Haberland.
Fix bug #195: When parsing Received-SPF, use the correct constants
in the history file entries. Patch from Juri Haberland.
LIBOPENDMARC: Fix bug #115: Fix type mismatch. Patch from
Sebastian A. Siewior via Scott Kitterman.
LIBOPENDMARC: Fix bug #121: Fix IPv6 CIDR matching in SPF code.
Patch from Christophe Wolfhugel.
LIBOPENDMARC: Fix bug #125: Compile time IPv6 fix. Reported by
Christophe Wolfhugel.
LIBOPENDMARC: Fix bug #131: Fix alignment bug. Patch from
Andreas Schulze.
LIBOPENDMARC: Fix bug #147: Fix stripping of whitespace from
DMARC DNS records. Based on a patch from Job Noorman.
LIBOPENDMARC: Fix bug #149: Apply "sp" setting, if present and
applicable. Patch from Petr Novak.
LIBOPENDMARC: Fix bug #154: Fix "rf" and "fo" processing logic.
LIBOPENDMARC: Fix bug #156: Fix variable name. Patch by
Andreas Schulze.
LIBOPENDMARC: Fix bug #165: Fix logic in checking which SPF
identifier was used. Patches from Marco Favero and
Juri Haberland.
LIBOPENDMARC: Fix bug #167: Don't return "fail" when we should
return "none". Patch from Marco Favero.
REPORTS: Fix bug #134: Handle SMTP errors correctly. Patch from
Andreas Schulze.
REPORTS: Fix bug #141: Set the HELO parameter correctly.
Reported by Alan Smith; patch from Andreas Schulze.
REPORTS: Fix bug #143: Fix logic in table truncation.
Reported by Wayne Andersen; patch from Juri Haberland.
REPORTS: Fix bug #162: Always report "sp" in aggregate reports.
Patch from Juri Haberland.
REPORTS: Fix bug #166: Fix report start/end time logic.
Patch from Juri Haberland.
REPORTS: Fix bug #188: Don't delete inputs too early in
opendmarc-reports. Patch from Juri Haberland.
TOOLS: Fix bug #161: "Forensic" reports were renamed "Failure"
reports. Patch from Andreas Schulze.
TOOLS: Fix bug #164: Handle IPv6 test addresses. Reported by
Andreas Schulze; patch from Juri Haberland.
DOCS: Patch #189: Replace the DMARC RFC with an HTML page
referencing the relevant specs, since Debian doesn't
consider RFCs to be "free". Patch from Scott Kitterman
via Juri Haberland.
jperkin
pushed a commit
that referenced
this issue
Jan 25, 2021
jperkin
pushed a commit
that referenced
this issue
May 4, 2021
Fixes: -Fixed not loading all saved albums (#59). -Fixed "Like" in track context menu not updating properly (#75). -Fixed build on Qt 5.9 and older (#76). -Fixed a crash when playing from artist (#83). -Fixed a crash when the current user had no profile image (#86). -Fixed not showing any error message when no devices were available. -Fixed not loading all artist albums. -Fixed deprecation warnings when using Qt 6. -Fixed showing "What's new" on first start. -Fixed playing a new track with the same name, not updating currently playing. -Fixed not selecting last used device when resuming playback after being idle. -Fixed style option not setting default style. Changes: -Progress bar can now be clicked to skip in the track (#62). -Added support for multiple artists (#67). -Now remembers your last used device and selects it on next start (#73). -Improved theming in snap (#79). -Added a desktop icon for snap (#80). -All networking is now done asynchronously, which should improve performance. -Spotify client can now be started and/or stopped from Spotify settings. -Windows builds are now available (see #95).
jperkin
pushed a commit
that referenced
this issue
Jun 4, 2021
Changes since 1.4.0 from the RELEASE_NOTES file
NOTE: In response to CVE-2019-20790, opendmarc has changed
how it evaluates headers added by previous
SPF milters. Users are encouraged to read the
CVE-2019-20790 file in the "SECURITY" folder
for more details. (#49, #158). Originally reported by
Jianjun Chen, feedback by Simon Wilson and
David Bürgin <[email protected]>.
NOTE: OpenDMARC's internal SPF handling will be removed
in a future version. Users are encouraged to
build linked against libspf2. Many pre-built
packages provided by OS packagers already do this.
(See https://www.libspf2.org)
Addition of defines for MUSL C Library. (#129/#133). Patches by
Marco Rebhan.
Updated opendmarc.conf manpage and opendmarc.conf.sample to point to
https://publicsuffix.org/list/.
Added a CONTRIBUTING document.
Fix two #ifdefs in arc functions for strlcpy. (#138). Reported by
Leo Bicknell.
Fixes to MySQL Schema (#98/#99). Patch by Bond Keevil.
LIBSPF2 calls would not compile on OpenBSD due to OpenBSD not
having the ns_type definition in arpa/resolv.h.
Added detection to configure script. (#134)
Reworked hcreate_r calls to use hcreate, to compile natively on
OpenBSD and MacOS. (Part of #94) Reported by Rupert
Gallagher.
Add compatibility with AutoConf 2.70. (#95)
Documentation updates about SourceForge being deprecated. (#101)
Only accept results from Received-SPF fields that indicate clearly
which identifier was being evaluated, since DMARC specifically
only wants results based on MAIL FROM.
Many build-time fixes (#100, #91, #90, #86, #85, #84, #83, #82, #81)
Patches provided by Rupert Gallagher ([email protected])
Added config option HoldQuarantinedMessages (default false), which
controls if messages with p=quarantine will be passed on to
the mail stream (if False) or placed in the MTA's "hold"
queue (if True). Issue #105. Patch by Marcos Moraes, on
the OpenDMARC mailing list.
Remove "--with-wall" from "configure". Suggested by Leo Bicknell.
LIBOPENDMARC: Fix bug #50: Ignore all RRTYPEs other than TXT.
Problem reported by Jan Bouwhuis.
LIBOPENDMARC: Fix bug #89: Repair absurd RRTYPE test in SPF code.
LIBOPENDMARC: Fix bug #104: Fix bogus header field parsing code.
LIBOPENDMARC: Fix bug #161: Don't pass the client IP address through
htonl() since it's already in network byte order. This
was causing SPF errors when the internal SPF
implementation was in use.
LIBOPENDMARC: Fix numerous problems with the internal SPF
implementation.
jperkin
pushed a commit
that referenced
this issue
Jun 4, 2021
# callr 3.7.0 * Reporting errors is much faster now (#185). * The `user_profile` option of `r_vanilla()` defaults to `FALSE` now (#194). * It is now possible to set R environment variables (`R_ENVIRON_USER`, `R_PROFILE_USER`, etc.) via the `env` argument (#193). # callr 3.6.0 * callr now supports starting an R process with a different architecture, so on Windows 64-bit R can start a 32-bit R background process, and vice-versa (#95). * callr now handles symbolic arguments properly, and does not evaluate them. E.g. `callr::r(function(x) x, list(quote(foobar)))` works now (#175). * `callr::r_session` does not leak file descriptors now in the sub-process (#184).
jperkin
pushed a commit
that referenced
this issue
Jun 4, 2021
# lifecycle 1.0.0
* New vignettes:
* `vignette("stages")` describes the lifecycle stages
* `vignette("manage")` teaches you how to manage lifecycle changes in
functions you _use_.
* `vignette("communicate")` shows how to use lifecycle in functions that
you _write_.
* In `deprecate_soft()`, `deprecate_warn()`, and `deprecate_stop()`:
* You can deprecate an argument with `foo(arg)` instead of `foo(arg =)` (#78).
This syntax is similar in spirit to the formal arguments of function
definitions.
* You can deprecate R6 methods by using `class$method()` (#54).
* A character vector `details` is now converted into a bulleted list (#55).
* Messages for non-prefix functions (like "`x<-`()" and "`%>%`()")
look a little nicer (#95).
* Manually printed warnings now omit the advice footer (#68).
* Experimental `signal_stage()` can be used to signal that a function is
experimental or superseded. These signals are not currently hooked up to any
behaviour, but we'll add tools in a future release (#44).
* `lifecycle_cnd_data()` has been removed; as far as I can tell it wasn't
used by anyone.
jperkin
pushed a commit
that referenced
this issue
Sep 12, 2021
Upstream changes:
0.98 2021-03-22
- document how to use buckets with dots, Signature V4, and HTTPS together
- fix Net::Amazon::S3::Client::Object::exists (#94)
- improve compatibility with DigitalOcean Spaces (#95)
0.97 2020-10-09
- presigned object access uri supports also PUT/DELETE methods (#89)
0.96 2020-10-07
- Signature V4 didn't work properly for services on non-standard port (issue #88)
0.95 2020-10-06
- bugfix release, with new test coverage
- small cleanups
0.94 2020-09-27
- fix undefined method call in still untested methods (thanks Russell Jenkins)
0.93 2020-09-27
- fix syntax failures on perl < v5.22 (thanks cpantesters)
0.92 2020-09-26
- misc cleanups, more tests
- Net::Amazon::S3::Client now can be constructed with same arguments as Net::Amazon::S3
- Support explicit ACL in bucket/object/upload creation
- Support set_acl on Client::Bucket / Client::Object (issue #83)
- Add support for bucket/object tagging (issue #44)
jperkin
pushed a commit
that referenced
this issue
Dec 2, 2021
Change log: 4.16.0 ====== - bump glib (and gio, gthread, etc) minimum to 2.50.0 - panel-plugin: Prefer ac-adapter-symbolic (Fixes #103) - Add new icons in size 24x24 and 32x32 - Translation Updates: Albanian, Basque, Catalan, Danish, Estonian, French, Galician, Hebrew, Indonesian, Norwegian Bokmål, Portuguese, Portuguese (Brazil), Russian, Serbian, Slovenian, Swedish, Turkish 1.7.1 ====== This is a development release. - Add new app icon and switch to rDNS icon name - Use more accurate status icons (Fixes #95) - Also use symbolic icons in battery notifications - Reorder screensavers so Xfce comes first (Fixes #101) - settings: Adjust title and show min/max buttons - settings: Allow critical battery level up to 70% (Fixes #67) - settings: Add keywords for discoverability (Bug #10694) - settings: Fix GtkSwitch signal handlers (Issue #99) - xfpm: avoid default double fork - Respect the notification daemon's timeouts (Fixes #57) - Fix Laptop lid settings (Bug #15300) - Fix spelling mistake (Bug #16698) - Only update blank time when appropriate - Bug #16717: Move from exo-csource to xdt-csource - Guard against NULL pointer dereference - More blank time debug code - Indentation fixes - Cleanup code - Move default icon names into one place - Silence compiler warnings - Add README.md - Add basic GitLab pipeline - Translation Updates: Albanian, Arabic, Armenian (Armenia), Basque, Belarusian, Bulgarian, Catalan, Chinese (China), Chinese (Hong Kong), Chinese (Taiwan), Croatian, Czech, Danish, Dutch, Eastern Armenian, English (Australia), English (Canada), English (United Kingdom), Estonian, Finnish, French, Galician, German, Greek, Hebrew, Hungarian, Icelandic, Indonesian, Interlingue, Italian, Japanese, Kannada, Kazakh, Korean, Lithuanian, Malay, Norwegian Bokmål, Norwegian Nynorsk, Occitan (post 1500), Polish, Portuguese, Portuguese (Brazil), Romanian, Russian, Serbian, Sinhala, Slovak, Slovenian, Spanish, Swedish, Telugu, Thai, Turkish, Ukrainian, Uyghur, Vietnamese 1.7.0 ====== This is a development release. - Fix inhibiting xfce4-screensaver (Bug #16364) - Fix indentation (makes git blame harder, but code more readable) - settings: Unclutter system and display tabs - settings: Move % sign out of spinbutton (Bug #15994) - Switch to symbolic window-close icons - Dismiss critical notification when connecting to AC - Make brightness steps configurable (Bug #12062) - Allow compilation with panel 4.15 - panel-plugin: Properly show 'About' menu item - panel-plugin: Add (optional) Presentation mode indicator (Bug #15773) - panel-plugin: Toggle presentation mode on middle click - panel-plugin: Add warning color to presentation mode indicator - panel-plugin: Use GtkSwitch for Presentation mode - panel-plugin: Replace deprecated call - systray: Ensure presentation mode can be toggled (Bug #16337) - Translation Updates: Albanian, Arabic, Belarusian, Catalan, Chinese (China), Chinese (Taiwan), Croatian, Czech, Danish, Dutch, Finnish, French, Galician, German, Greek, Hebrew, Italian, Japanese, Kazakh, Korean, Lithuanian, Malay, Norwegian Bokmål, Portuguese, Portuguese (Brazil), Russian, Serbian, Slovak, Slovenian, Spanish, Turkish
jperkin
pushed a commit
that referenced
this issue
Feb 21, 2022
PrBoom-Plus 2.6.2 @ 11 Feb 2022
- added a prospective fix for OpenGL rendering: don't bleed walls
through sky floors
- account for proper crosshair offsets when locked on to monsters
- relaxed "IWAD tag not present" error to a warning, which allows
loading REKKR IWAD
- fixed processing of multiple DEHs
- UMAPINFO: fixed error reporting if token == TK_NoToken
- fixed intermission screen for E0Mx
- fixed Alt+Tabbing on Windows, broken in new SDL2 version
- UMAPINFO: fixed using_FMI reset * no more crashes at textscreens
(e.g. after MAP06, MAP11 or MAP20) after viewing finale picture upon
finishing a level with UMAPINFO 'endpic' property
- fixed freezing at TITLEPIC while using mousewheel in menus
- fixed looping forever in G_NextWeapon()
- UMAPINFO: fix 'entering' and 'enterpic' shown on exit levels
- GL: adjust sky offsets for non-standard FOVs
- fixed stuttering with uncapped framerate
- added support for widescreen low resolutions
- added REKKR to launcher string list
- let G_GotoNextLevel() close the circle for maps with an endpic
- Launcher: identify IWADs either by IWAD tag, or by PWAD tag and
matching filename
- Portmidi: fix freeze after song change
- fixed scaled time interpolation when changing game speed
- fixed wrong pitch of SFX when MIDI Player is set to SDL
- v1.2 compat:
* do not use sfx_getpow for powerups
* do not render powerups and attacking Spiderdemon fullbright
- UMAPINFO: fixed par times not showing
- fixed demo playback warp consistency
- added SKILL cheat to display current skill level
- fixed calculation of interpolation frac value
- guard against screen buffer underflow
- fixed crash at startup by properly closing IWAD file handle
- added vanilla_keymap option à la Chocolate Doom
- added 'run' as a mouse-settable control (mouseb_speed)
PrBoom-Plus 2.6.1um @ 16 Aug 2021
- fixed MOD playback with DUMB 2.x
- added TNTCLxx cheat, e.g. TNTCL04 sets complevel 4 (Final DOOM)
- draw crosshair before messages, draw crosshair for fist/chainsaw and
during on-screen messages
- fixed crosshair locking on target for melee weapons
- more consistently check for ammo instead of weapon type
- fixed odd strafe values (vanilla allows even values only)
- added TNTSHORT cheat to toggle shorttics on and off while in game
- fixed typo in ZDoom-style Actor name (Slalagtite -> Stalagtite)
- fixed Windows Alt-Tab
- fixed a memory leak on SDL_Quit()
- preserve automap position/scale when toggling overlay mode
- allow binding weapon selection to mouse buttons
- add a `-pistolstart` command-line parameter
- fixed crashes on WADs with empty music lumps, e.g. Nihility.wad
- enabled loading 16 bit RIFF wavs in WADs
- make low-pass sound filter (introduced by the previous change)
optional
- if executable directory appears not writable, fall back to `.`
- made pitch-shift range independent of target samplerate
- fixed bogus condition preventing automap lines from being drawn
- fixed saving of mouse button bindings
- fixed interpolated z-coordinate after teleporting
- added a new option "Disable sound cutoffs" to allow removed map
objects to finish playing their sounds and to make seesounds
uninterruptible
- allow deleting savegames from menu
- fixed automap crash when `USE_VERTEX_ARRAYS` and `GL_VBO` are
undefined
- fluidsynth: reset all controllers when looping a song
- fixed hanging notes on exit when using Portmidi
- show current and next levels when typing IDCLEV cheat
- added a config key for "exclusive" i.e. mode-changing fullscreen
- UMAPINFO: if interbackdrop does not specify a valid flat, draw it as
a patch instead
- appended revision tracker to UMAPINFO spec document
- ALSA sequencer API backend for ALSA MIDI support (Linux only)
- extended range of maps reachable via `-warp` and IDCLEV:
* from E1M1-E4M9 to E1M0-E9M99 for D1
* from MAP01-MAP33 to MAP00-MAP99
* Limitations:
* E0My doesn't work, since episode must always be > 0
* `-warp x 0`, because zero passed to `-warp` as map number is used
to warping to first changed map in PWAD
- evaluate mouse motion only once per tick
- show Time/STS widgets above status bar
- removed lowpass-filter item from menu
- fixed `P_SetMobjState()` stack, fixes crash on
mayhem18p.wad/m18p31-1509.lmp
- fixed crash in automap on certain maps (e.g. Sunlust MAP01) when using
GL renderer, Thing Appearance = Icons and 2xIDDT
- fixed menu intermission desync
- fixed crash when leaving menu in Chex Quest
- initialize the map title widget with the generic map lump name
- make "Next Level" key simply increase map number if already outside
regular level transition range
- check for next level in IDCLEV cheat before announcing it
- make sure "Next Level" key never warps to a non-existent map
- reformatted umapinfo.txt so that it is easier to read in plaintext
- fixed custom episode select for Doom 2
- fixed shifting automap markers
- allow translucent sprites on all complevels
- allow disabling predefined translucency on all complevels
- fixed flood HOM on certain maps (e.g. Plutonia MAP11, HR MAP01) (GL)
- fixed sky walls for cases with sky vs. sky toptextures (e.g. E4M6)
(GL)
- fixed transparent spites being rendered incorrectly with transparent
walls in view (GL)
- generate a default save-slot name when saving to an empty slot
- added mouse button binds for turn left/right
- fixed sky scaling for non-standard sky sizes, e.g. Eviternity and
Ancient Aliens (GL)
- added new advanced HUD layout by Fireb3rt+
- added slice_samplecount config option
- added manifest to declare app as DPI aware, so that Windows will not
apply DPI virtualization
- added support for widescreen assets
- added ZDoom's names for the new Crispy Doom/DEHEXTRA things to
ActorNames[], so they can be used with BossAction() if needed
- fixed UMAPINFO music restarting issue
- skip the 'entering level' screen if one of endgame, endpic, endbunny
or endcast is set (UMAPINFO)
- fixed endbunny and endgame UMAPINFO fields
- reset mlook on demo recording
- added OpenGL sprite fuzz options ("darken", "shadow", "transparent",
"ghostly")
- properly check for the CreateFileMapping() symbol (build)
- always precache sound lumps
- replace W_SafeGetNumForName() with W_CheckNumForName()
- removed defunct lump locking warnings
- removed obsolete SFX usefulness references
- allow colored blood to get set/overridden by DEHACKED, implemented
Eternity's coloredblood spec, added three additional color translation
tables for black, purple and white
- made the Ouch Face fix available on all complevels
- added the autoload directory feature from Chocolate Doom
- implemented custom atexit() sequence, ported over from Chocolate Doom,
fixing crashes during shutdown e.g. on Linux using Wayland
- fixed switching weapons when reaching zero ammo with
boom_autoswitch == 0
- made Doom sound quirk fixes available on all complevels
- UMAPINFO: introduced the new 'label' field
- do not cast degenmobj_t as mobj_t, breaks aliasing rules on platforms
where mobj_t pointers are 64-bit aligned and degenmobj_t pointers are
only 32-bit aligned
- fixed `-solo-net` for demo restart
- fixed levelstat crash for MAP33 and above
- added autoload per PWAD feature, further enhancing the autoload
directory feature
- UMAPINFO: fixed 'episode' field parsing, 'label' is single-line
- removed obsolete weapon toggle setting
- added ftell() and fseek() implementations for DEHACKED lumps, allowing
the DEH parser to roll back to the start of a line following a blank
line and re-process it with the last valid block code handler
- added mouse look / vertical mouse movement toggle notifications
- fixed forcing aspect ratio correction only for the canonical 16:10
(i.e. 320x200 and 640x400) modes
- do not even attempt to play DEMO4 if it is not available
- only apply palette changes when inside a level
- fixed 32-bit widescreen pain palette
- added a `-coop_spawns` parameter for using "coop in single-player" mode
- fixed OpenGL effect palettes
- added support for non-latin paths and filenames on Windows
- made sure to always autoload prboom-plus.wad
- introduced a supplemental data directory "PRBOOMDATADIR" to install
prboom-plus.wad into (build)
- prepared for different autoload base directories, respecting the
`-noload` parameter
- fixed playback of complevel 11 demo with UMAPINFO
- fixed attempted playback of a UMAPINFO demo without UMAPINFO loaded
- never exceed desktop resolution in fullscreen desktop mode
- UMAPINFO: entries without defined 'levelname' fall back to default
- UMAPINFO: fixed default intermission
- fixed setting 'finaleflat' in FMI_StartFinale (UMAPINFO)
- fixed load game during multiplayer demo playback
- fixed OpenGL backfill
PrBoom-Plus 2.6um @ 09 Feb 2021
- fixed episode selection when playing Doom 2
- fixed Doom 1 level progression
- print a blinking arrow next to the currently highlighted menu item
- print another blinking arrow to the right of the currently selected
menu setting
- support the DOOMWADPATH environment variable
- add some extra states, sprites and mobjtypes from Doom Retro and
Crispy Doom
- fullscreen desktop for the software renderer
- improved v1.2 compat:
- fixed a desync on the internal demo in DTH1.WAD
- fixed the walkways to the BFG rising a little too high on 1_ON_1.WAD
- moving floors (except plats) should not make the floor stop sound
- fixed infinite loop in macOS launcher
- added CMake build system
- fixed the mainfest to allow 64 bit builds
- fixed PortMidi support on 64-bit Windows
- disabled the "popping skull player death" easter egg
- do not wait for VSync if running a timedemo
- added -statdump parameter from Chocolate Doom
- added mouse-strafe divisor setting
- removed and/or replace all non-free data lumps
- improved Boom random seed
- added -stroller param
- include secret exit in -levelstat
- added configurable quickstart window
- disallow 180-turn with strafe on
- fixed endianess for 32-bit ZDoom nodes
- show Extended Help screen when pressing the Help key
- made armor color depend on type, not amount
- added Chocolate Doom mouse behavior option
- fixed Boom autoswitch behavior
- reinstated the "WEAPON ATTACK ALIGNMENT" menu option
- changed "SECRET AREAS" menu option to "REPORT REVEALED SECRETS"
- fixed endianess for DeePBSP V4 nodes
- show error message boxes on Windows, except when video-dumping a demo
- unbind game speed changing keys in default config
- fixed heap buffer overflows in UDP multiplayer code
- fixed -longtics having no effect
- changed video capture to an ffmpeg-based approach
- track demo joins for TAS-detection purposes
- fixed some episode transition issues when using UMAPINFO
- added automap rotate and overlay keybindings to menus
- fixed a bug in DeHackEd string replacements with a length of exactly
four
- added "Dropped Item" menu support
- enabled automap Follow Mode by default
- disabled chorus and reverb for Fluidsynth by default
- fix segfault with -viewangle parameter
- next levels no longer reset if endscreen is disabled in UMAPINFO
- added 200 Sounds for DEHEXTRA
- respawn when using IDDQD while dead
- fixes for empty DeHackEd lumps and entries
- restrict "next level" button usage to in-level only
- added adaptations for fluidsynth 2.0
- added "No Vertical Mouse" setting and keybind
- save / load -complevel 9 friction
- added extensible demo format + "PR+UM" signature
- made canonical resolutions (320x200, 320x240, 640x400 and 640x480)
always available in menu, regardless of what video driver/SDL report
- fixed aspect ratio for canonical resolutions; be sure to set
"Aspect Ratio" to "Auto" and "Status Bar and Menu Appearance" to
"Not Adjusted" for both 320x200 and 640x400
- set minimum windows size to prevent window from shrinking when
changing video modes
- "Screen Multiple Factor" now functions like a "window size factor"
(i.e. like "-1", "-2", "-3" in Chocolate Doom) and has no effect in
fullscreen modes
- added "Integer Screen Scaling" option (Ã la Crispy Doom), which
restricts the screen size to integer multiples of the game resolution,
under Options -> General, page 5
- both executables now share the same config file "prboom-plus.cfg",
with all config keys always preserved - including the GL-related ones
- switched to the unified executable "prboom-plus" with optional OpenGL
rendering
- portmidi: pitch bends are now reset when stopping song
- added support for more mouse buttons
- fixed resolution-independent mouse sensitivity
- added demo restart functionality - record a new demo on map restart
- setup menus remember last active item
- fixed the KFA cheat sting not read from .bex patches
- UMAPINFO docs updated re: "bossaction" field
- fixed a crash when running out of space while typing in a file path
into the autoload fields (Options -> General, page 2)
- fixed the "Garbage lines at the top of weapon sprites" issue (#95)
- add support for named complevels on command line:
-complevel 1.9 = -complevel 2
-complevel doom2 = -complevel 2
-complevel ultimate = -complevel 3
-complevel udoom = -complevel 3
-complevel final = -complevel 4
-complevel tnt = -complevel 4
-complevel plutonia = -complevel 4
-complevel boom = -complevel 9
-complevel mbf = -complevel 11
-complevel vanilla = complevel autodetected according to IWAD loaded
- allow MBF sky transfers in all complevels
- add support for colored blood and gibs
- fixed key-bindings unusable after mouse-wheel up/down
PrBoom-Plus 2.5.1.7um @ 16 Jun 2019
- adds a special marker to demos recorded with UMAPINFO
- addes support for ZDBSP's compressed node format
- fixes the rendering problems in OpenGL
- fixes TRANMAP caching
PrBoom-Plus 2.5.1.6um @ 11 Jun 2019
This fixes a major bug with the episode selection menu not working and
adds IDCLEV checks for maps outside the standard range.
PrBoom-Plus 2.5.1.5um @ 10 Jun 2019
First official release with UMAPINFO support
2.5.1.4.umapinfo_test @ 22 Apr 2017
Beta version with UMAPINFO support.
Note that this is for testing as the newly added MAPINFO feature has
not seen thorough testing yet.
jperkin
pushed a commit
that referenced
this issue
Feb 21, 2022
### v1.1.0 2021-10-11 Paris (France) - Add Keccak256 module (ethereum padding) (@maxtori, @dinosaure, #118) - Update README.md to include the documentation (@mimoo, @dinosaure, 65a5c12) - Remove deprecated function from `fmt` library (@dinosaure, #121) - **NOTE**: This version lost the support of OCaml 4.03 and OCaml 4.04. ### v1.0.1 2020-02-08 Paris (France) - Fix `esy` support (@dinosaure, #115) - Fix big-endian support (@dinosaure, #113) ### v1.0.0 2020-11-02 Paris (France) - **breaking changes** Upgrade the library with MirageOS 3.9 (new layout of artifacts) Add tests about compilation of unikernels (execution and link) (#105, @dinosaure, @hannesm) - Fix `esy` installation (#104, @dinosaure) - **breaking changes** Better GADT (#103, @dinosaure) As far as I can tell, nobody really use this part of `digestif`. The idea is to provide a GADT which contains the type of the hash. From third-part libraries point-of-view, it's better to _pattern-match_ with such information instead to use a polymorphic variant (as before). - **breaking changes** key used for HMAC is a constant `string` (#101, @dinosaure, @hannesm) The key should not follow the same type as the digest value (`string`, `bytes`, `bigstring`). This update restricts the user to user only constant key (as a `string`). ### v0.9.0 2020-07-10 Paris (France) - Add sha3 implementation (#98), @lyrm, @dinosaure, @hannesm and @cfcs ### v0.8.1 2020-06-15 Paris (France) - Move to `dune.2.6.0` (#97) - Apply `ocamlformat.0.14.2` (#97) - Fix tests according `alcotest.1.0.0` (#95) ### v0.8.0 2019-20-09 Saint Louis (Sénégal) - Fake version to prioritize dune's variants instead of old linking trick - Use `stdlib-shims` to keep compatibility with < ocaml.4.07.0 ### v0.7.3 2019-07-09 Paris (France) - Fix bug about specialization of BLAKE2{B,S} (#85, #86) reported by @samoht, fixed by @dinosaure, reviewed by @hannes and @cfcs
jperkin
pushed a commit
that referenced
this issue
Feb 21, 2022
Changes for v2.13.0 (2021-12-02) ================================ - Armor against entity expansion attacks - Improve YAML loading performance by using CSafeLoader where available - Require PyYAML 5.3.1 or newer - Test and release infrastructure improvements Changes for v2.12.2 (2021-06-13) ================================ - Handle -n correctly Changes for v2.12.1 (2021-06-13) ================================ - Do not close fds on child process Changes for v2.12.0 (2021-02-05) ================================ - Add TOML support and the tomlq CLI utility to access it - Drop Python 2.7 support Changes for v2.11.1 (2020-09-26) ================================ Parse correctly when empty string is passed as jq_filter Changes for v2.11.0 (2020-09-03) ================================ - Better handling of jq_filter and files arguments (#102) - Create **main**.py (#82) Changes for v2.10.1 (2020-05-11) ================================ - Add support for xmltodict force_list definition for xq CLI (#95) - Support explicit doc markers (#93) - Ensure proper ordering of help messages (#90) Changes for v2.10.0 (2019-12-23) ================================ - Add support for in-place editing (yq -yi) - Add argcomplete integration - Docs: Migrate from RTD to gh-pages
jperkin
pushed a commit
that referenced
this issue
Feb 21, 2022
1.3.0 (2022-01-24)
Feature
bom-ref for Component and Vulnerability default to a UUID (#142) (3953bb6)
1.2.0 (2022-01-24)
Feature
Add CPE to component (#138) (269ee15)
1.1.1 (2022-01-19)
Fix
Bump dependencies (#136) (18ec498)
1.1.0 (2022-01-13)
Feature
Add support for bom.metadata.component (#118) (1ac31f4)
1.0.0 (2022-01-13)
Support for CycloneDX schema version 1.4 (#108)
Breaking Changes
Support for CycloneDX 1.4. This includes:
Support for tools having externalReferences
Allowing version for a Component to be optional in 1.4
Support for releaseNotes per Component
Support for the core schema implementation of Vulnerabilities (VEX)
Features
$schema is now included in JSON BOMs
Concrete Parsers how now been moved into downstream projects to keep this libraries focus on modelling and outputting CycloneDX - see https://github.com/CycloneDX/cyclonedx-python
Fixes
Unit tests now include schema validation (we've left schema validation out of the core library due to dependency bloat)
Ensure schema is adhered to in 1.0
URIs are now used throughout the library through a new XsUri class to provide URI validation
Other
Documentation is now hosted on readthedocs.org (https://cyclonedx-python-library.readthedocs.io/)
Added reference to release of this library on Anaconda
0.12.3 (2021-12-15)
Fix
Removed requirements-parser as dependency (temp) as not available for Python 3 as Wheel (#98) (3677d9f)
0.12.2 (2021-12-09)
Fix
Tightened dependency packageurl-python (#95) (eb4ae5c)
0.12.1 (2021-12-09)
Fix
Further loosened dependency definitions (8bef6ec)
0.12.0 (2021-12-09)
Feature
Loosed dependency versions to make this library more consumable (55f10fb)
jperkin
pushed a commit
that referenced
this issue
Apr 24, 2022
0.13.1
fix: improved shell completion for URLs by @danielgtaylor in #95
fix: simplify option handling, send explicitly passed defaults by @danielgtaylor in #96
0.13.0
feat: cache parsed/loaded APIs for faster access by @danielgtaylor in #83
fix: sending non-structured-object input via stdin, fixes #81 by @danielgtaylor in #84
fix: better handling of params with unknown types, fixes #63 by @danielgtaylor in #85
fix: trim trailing slashes from OpenAPI servers by @danielgtaylor in #86
fix: custom server usage, fixes #54 by @danielgtaylor in #87
feat: enabled & document raw mode for saving files by @danielgtaylor in #88
fix: parameter serialization for style: form, fixes #47 by @danielgtaylor in #89
fix: handle recursive schemas without crashing, fixes #21 by @danielgtaylor in #90
feat: add api sync command by @danielgtaylor in #91
feat: update dependencies by @danielgtaylor in #92
fix: simplify edit resource command code by @danielgtaylor in #93
fix: panic when multiple configured APIs have the same base URL by @danielgtaylor in #94
0.12.0
b8773c1 Merge pull request #82 from danielgtaylor/completion
b600019 feat: add auth-header command
b9d6da4 feat: completion of URI templates
b0b14ed feat: dynamic shell completion for OpenAPI operations
593acaf fix: utilize existing API loading for completion
jperkin
pushed a commit
that referenced
this issue
Jun 2, 2022
Upstream changes:
#-#-#-#-#-#-#-#-#-# Changes in TTR version 0.24.2 #-#-#-#-#-#-#-#-#-#
BUG FIXES
- Check for 'ratio > 0' before calculating 'n' in zlema() C code. The prior
code could result in division by 0, which was flagged by clang-UBSAN.
Thanks to Prof Brian Ripley for the report. (#100)
#-#-#-#-#-#-#-#-#-# Changes in TTR version 0.24.1 #-#-#-#-#-#-#-#-#-#
BUG FIXES
- Fix leading NA accounting in wma() C code. The prior code caused invalid
reads under valgrind. Thanks to Prof Brian Ripley for the report. (#99)
- Check for 'ratio > 0' before calculating 'n' in ema() C code. The prior
code could result in division by 0, which was flagged by UBSAN. Thanks to
Prof Brian Ripley for the report. (#100)
- Make ALMA() output length equal input length when the input can not be
converted to xts. This was caused by the difference between
rollapply.default() and rollapply.xts(). Thanks to GitHub user
marksimmonds for the report. (#29)
- Fix stoch() in very rare cases where fastK is Inf. I could only reproduce
this if the Close is > High and High and Low are equal, but that is a data
error. I fixed anyway because there may be other cases I don't anticipate.
Thanks to GitHub user cjuncosa for the report. (#52)
- Fix MFI() when money flow is always zero or positive. The denominator of
the money ratio will be zero if there is no negative money flow for 'n'
consecutive observations (e.g. during a strong up-trend), which causes the
money flow index to be Inf. Set the money flow index to 100 in this case.
And the money ratio will be NaN if there's no money flow for 'n'
consecutive observations (e.g. if there are no trades), which causes the
money flow index to be NaN. Set the money flow index to 50 in this case.
Thanks to GitHub user jgehw for the report, reproducible example, and
suggested patch. (#81)
#-#-#-#-#-#-#-#-#-# Changes in TTR version 0.24.0 #-#-#-#-#-#-#-#-#-#
SIGNIFICANT USER-VISIBLE CHANGES
- Updated stockSymbols() to use the NASDAQ FTP site instead of downloading
the CSV from the NASDAQ stock screener page. Some columns are no longer
populated because they are not provided in the FTP file:
LastSale ,MarketCap, IPOyear, Sector, Industry
These columns will be removed in a future version. (#98, #5, #97)
- runPercentRank(x, n, cumulative = TRUE) now sets observations in the
initialization period to NA. This is consistent with the other
running/rolling functions in TTR. If you want the previous behavior,
you should use runPercentRank(x, n = 1, cumulative = TRUE). Thanks to
GitHub user httassadar for the report. (#73)
NEW FEATURES
- Add Ehler's Correlation Trend Indicator. Thanks to Evelyn Mitchell for
the suggestion, and for Ethan Smith for the initial implementation. (#92)
BUG FIXES
- runMAD() returned incorrect values when 'cumulative = TRUE' and the input
contained leading NA. Thanks to GitHub user stellathecat for the report.
This also affected runMedian() also. (#93)
- ZLEMA() would crash when 'ratio = 0.0' and 'n' was not specified. Thanks
to GitHub user yogat3ch for the report! (#95)
- WMA() did not return an xts object when passed an xts object for 'x' that
had leading NA, with the default 'wts = 1:n'. Thanks to Cory Fletcher for
reporting this issue via email. (#96)
- stoch() was wrong when 'bounded = FALSE'. Thanks to GitHub user rfinfun
for the report and patch. (#74)
- HMA() threw an error when 'n' was an odd number. This was because the
first call to WMA() used 'n = n / 2' which caused 'n' to not be an
integer. Thanks to GitHub user dragie for the report. (#76)
jperkin
pushed a commit
that referenced
this issue
Dec 6, 2022
3.0.2 (2021-09-19) * fix align_column for nil values and colspan 3.0.1 / 2021-05-10 * Support for unicode-display_width 2.0 * Fix issue where last row of an empty table changed format 3.0.0 / 2020-01-27 * Support for (optional) Unicode border styles on tables. In order to support decent looking Unicode borders, different types of intersections get different types of intersection characters. This has the side effect of subtle formatting differences even for the ASCII table border case due to removal of certain intersections near colspans. For example, previously the output of a table may be: +------+-----+ | Title | +------+-----+ | Char | Num | +------+-----+ | a | 1 | | b | 2 | | c | 3 | +------+-----+ And now the `+` character above the word Title is removed, as it is no longer considered an intersection: +------------+ | Title | +------+-----+ | Char | Num | +------+-----+ | a | 1 | | b | 2 | +------+-----+ * The default border remains an ASCII border for backwards compatibility, however multiple border classes are included / documented, and user defined border types can be applied as needed. In support of this update, the following issues were addressed: * colspan creates conflict with colorize (#95) * Use nice UTF box-drawing characters by default (#99) - Note that `AsciiBorder` is stll the default * Border-left and border-right style (#100) * Helper function to style as Markdown (#111) - Achieved using `MarkdownBorder`
jperkin
pushed a commit
that referenced
this issue
Dec 17, 2022
Change log: 0.12.4 (2022-12-16) ====== - Dependency Changes: - GLib >= 2.56.0 - Appearance Changes: - thumbnailer: Increase thumbnail sizes (#81) - Code Refactoring: - build: Let xdt-depends.m4 macros set GLib macros - flatpak: Update D-Bus permissions after changing file manager method - flatpak: Updates from Flathub - Remove duplicated RsttoMainWindow:device-scale property - Bug Fixes: - use-thunar-properties: Add & improve comments (!37) - thumbnailer: Add a warning if D-Bus proxy creation failed - Allow Xfconf initialization to fail (#19) - thumbnailer: Add missing sanity checks - Use a better-known bus name and object path for D-Bus proxy (#95, !36) - Properly update iterator when browsing a list containing invalid files (#94) - thumbnailer: Remove invalid files after processing thumbnail queue (#94) - Translation Updates: Kazakh, Korean, Occitan (post 1500), Polish, Portuguese
jperkin
pushed a commit
that referenced
this issue
Jan 4, 2023
jperkin
pushed a commit
that referenced
this issue
Jan 4, 2023
Change log: 1.10.2 (2023-01-02) ====== - Fix capture of CSD windows - Fix active window and region capture modes - Consider scale factor while capturing screenshots with cairo (#95) - Support libsoup2 and 3 simultaneously (#97) - save dialog: show preview of selected file (#94) - Save preferences of panel plugin (#96) - Translation Updates: Albanian, Arabic, Armenian (Armenia), Basque, Belarusian, Bulgarian, Catalan, Chinese (China), Chinese (Taiwan), Croatian, Czech, Danish, Dutch, Eastern Armenian, English (Australia), Estonian, Finnish, French, Galician, Georgian, German, Greek, Hebrew, Hungarian, Icelandic, Indonesian, Interlingue, Italian, Japanese, Korean, Lithuanian, Malay, Norwegian Bokm��l, Occitan (post 1500), Persian (Iran), Polish, Portuguese, Portuguese (Brazil), Russian, Serbian, Slovak, Slovenian, Spanish, Swedish, Thai, Turkish, Ukrainian 1.10.1 (2022-12-21) ====== - Fixes capture of screenshots after first time (#89) - libsoup: Migrate to 3.0 (#88) - Fix typo in NEWS file - Translation Updates: Albanian, Arabic, Armenian (Armenia), Basque, Belarusian, Bulgarian, Catalan, Chinese (China), Chinese (Taiwan), Croatian, Czech, Danish, Dutch, Eastern Armenian, English (Australia), Estonian, Finnish, French, Galician, Georgian, German, Greek, Hebrew, Hungarian, Icelandic, Indonesian, Interlingue, Italian, Japanese, Korean, Lithuanian, Malay, Norwegian Bokm��l, Occitan (post 1500), Persian (Iran), Polish, Portuguese, Portuguese (Brazil), Russian, Serbian, Slovak, Slovenian, Spanish, Swedish, Thai, Turkish, Ukrainian
jperkin
pushed a commit
that referenced
this issue
Apr 8, 2023
Highlights The major highlight of the 0.7.0 release of Trippy is the addition of full support for Windows, for all tracing modes and protocols! This has been many months in the making and is thanks to the hard work and perseverance of @zarkdav. This release also sees the introduction of custom Tui themes and key bindings, deb and rpm package releases, as well as several important bug fixes. My thanks to all the contributors! Added - Added support for Windows (icmp, udp & tcp for IPv4 &IPv6) (#98) [@zarkdav] - Added support for custom Tui key bindings (#448) - Added support for custom Tui color themes (#411) - Added RPM packaging (#95) [@OmarAtefThabet] - Added DEB packaging (#94) [@Marwanmhks] Fixed - Variable Equal Cost Multi-path Routing (ECMP) causing truncated trace (#269) - Tracing using the tcp may ignore some incoming icmp responses (#407) - Tracer panics with large --initial-sequence and delayed TCP probe response (#435) - Trippy Docker fails to start (#277)
jperkin
pushed a commit
that referenced
this issue
May 5, 2023
1.3.0
add command-line options "-g", "-u", "-p" by @jschauma in #97
1.2.0
Add support for redis-sentinel by @acteru in #95
advertise new kind of supported cache by @acteru in #96
1.1.5
Warn about overriding DANE by @oh2fih in #92
Fix tests by @Snawoot in #93
1.1.4
docs: Fix a few typos by @timgates42 in #87
fix tests by @Snawoot in #88
allow unicode requests by @Snawoot in #91
jperkin
pushed a commit
that referenced
this issue
Jun 5, 2023
Upstream changes:
1.715 2023-05-04 13:09:22-05:00 America/Chicago
[Fixed]
- Fixed Multiplex adapter losing context details. Normally, the
Log::Any::Proxy joins all of the arguments passed in to a logging
method if the adapter it's using does not support structured data.
Multiplex supports structured data, but one of the adapters inside
may not. So, the Multiplex adapter must also perform this
concatenation to avoid losing those additional arguments.
Thanks @jrubinator and @GrantStreetGroup for discovering this bug
and providing the fix! [Github #95]
1.714 2023-03-20 11:48:30-05:00 America/Chicago
[Fixed]
- Fixed Syslog adaptor losing ident and facility information if
another library wrongly calls Sys::Syslog::closelog(). This is not
a perfect solution, but a perfect solution can only ever be to fix
the close that's calling closelog() :P
Thanks to Tom Christiansen and @GrantStreetGroup for reporting this
issue and providing the fix.
1.713 2022-12-12 12:44:52-06:00 America/Chicago
[Fixed]
- Fixed tests failing due to missing Devel::Stacktrace. This is an
optional module, so we do not explicitly depend on it. Thanks
@dbevans and @perlpunk for reporting this issue! (Github #93)
1.712 2022-12-09 11:05:10-06:00 America/Chicago
[Added]
- Added `Log::Any::Proxy::WithStackTrace` to provide a stack trace at
the caller site. Thanks @larryl and @GrantStreetGroup for providing
this feature!
[Other]
- Removed Travis, as they stopped supporting free Github repos :(
1.711 2022-11-22 11:28:01-06:00 America/Chicago
[Fixed]
- Fixed proxy not exposing 'category' attribute (#86). Thanks
@andrew-grechkin!
- Fixed not being able to get a proxy for the "root" category (empty
string) (#90). Thanks @XSven!
jperkin
pushed a commit
that referenced
this issue
Jul 10, 2023
Features/Improvements ✨ - Append suffix to download filenames to avoid overwrites (#35) - Support uploading image attachments from clipboard (#36) - Support leaving rooms (#45) - Support hiding server part of username in message scrollback (#71) - Restore opened tabs and windows upon restart (#72) - Interpret newlines as line breaks when converting Markdown to HTML (#74) - Indicate when you're editing a message (#75) - Support configuring which program :open runs (#95) - Support sending and completing Emoji shortcodes in the message bar (#100) - Indicate number of members in room (#110) - Show errors fetching space hierarchy when list is empty (#113) - Show Git SHA information when printing version information (#120) - Reduce number of Tokio workers (#129) - Indicate when there are new messages below scrollback viewport (#131) Bug Fixes 🐞 - Tab completion panics for unrecognized commands (#81) - Fix error message for undefined download directory (#87) - Gracefully handle verification events that are unknown locally (#90) - Use terminal window focus to determine when a message has actually been seen (#94) - ChatStore::set_receipts locks up app for bad connections (#99) - Need fallback behaviour when dirs::download_dir returns None (#118) - Code blocks get rendered without line breaks (#122) - Remove trailing newlines in body (#125) - Profile session token should only be readable by the user (#130) - Handle sync failure after successful password entry (#133) Documentation/README Updates 📚 - Add manual pages (#88) - Mention Minimum Supported Rust Version in README (#115) - Link to AUR pkg in README (#121) Meta 👷♀️ - Update locked Cargo dependencies (#70) - Add Nix flake (#73) - Add FUNDING.yml to project (#77) - Upload artifacts built in GitHub Actions (#105) - Cache build directory in GitHub Actions (#107) - Replace GitHub actions using deprecated features (#114) - Fix Nix flake build on Darwin (#117)
jperkin
pushed a commit
that referenced
this issue
Jul 10, 2023
2.1.0 (2023-06-30) What's Changed * Address warning: mismatched indentations at 'when' with 'case' by @yahonda in #74 * Make assert_dom_equal ignore insignificant whitespace when walking the node tree by @jduff in #84 * Expand Substitution Matching Types support by @seanpdoyle in #90 * Alias assert_select methods to assert_dom versions by @seanpdoyle in #93 * Raise an error if the last arg is the wrong format by @ghiculescu in #96 * Fix replacement for multiple substitutions by @speckins in #76 * Better error message if response.body is blank or not parseable by Nokogiri by @ghiculescu in #97 * selector_assertions/html_selector: No trailing . on content_mismatch by @issyl0 in #102 * Use Minitest::Assertion#diff for content failure messages by @flavorjones in #106 New Contributors * @nicolasleger made their first contribution in #73 * @yahonda made their first contribution in #74 * @dependabot made their first contribution in #79 * @jduff made their first contribution in #86 * @amatsuda made their first contribution in #88 * @seanpdoyle made their first contribution in #90 * @ghiculescu made their first contribution in #96 * @jbampton made their first contribution in #95 * @speckins made their first contribution in #76 * @issyl0 made their first contribution in #102 * @flavorjones made their first contribution in #103 2.1.1 (2023-06-30) What's Changed * Fix issue when application isn't using minitest.
jperkin
pushed a commit
that referenced
this issue
Sep 1, 2023
What's Changed
Exclude dependabot and pre-commit ci from release notes by @gaborbernat in #88
Bump tools and deps by @gaborbernat in #92
Make sure that the order of Requires-Dist does not matter by @frenzymadness in #95
jperkin
pushed a commit
that referenced
this issue
Sep 1, 2023
AccountsService and some Wayland-specific functionality are not enabled for pkgsrc at present. AccountsService is too out of date and bringing it fully forward seems non-trivial (though we could more easily roll it forward to the absolute minimum this package expects). Change log: 2.8.0 ===== - Fix menu toggling in Wayland. - Fix menu position in Wayland. - Add support for popping up specific menu instances. (Issue #95) - Add showing menu at center of screen. (Issue #109) - Replace options for positioning menu layout. - Replace resize widgets with options in settings dialog. - Replace command for switching users. - Replace popup script with executable. - Require Xfce 4.14. - Make linking against AccountsService explicit. - Stop including favorites in recent by default. - Store settings in Xfconf. - Translation updates: Bulgarian, Chinese (Taiwan), Danish, Dutch, German, Greek, Spanish, Basque, Finnish, French, Italian, Lithuanian, Persian, Portuguese, Russian, Slovak, Swedish, Turkish, Ukrainian.
jperkin
pushed a commit
that referenced
this issue
Sep 19, 2023
v0.9.0
This version should be the last before the v1.0.0-beta!
Added
- Added 3 new cargo features:
- pgp-commands: enables the commands PGP backend (enabled by default,
same behaviour as before)
- pgp-gpg: enables the GPG backend (requires the gpgme lib on the system)
- pgp-native: enables the native PGP backend
- Added account configuration pgp to configure the way PGP operations are
performed.
Changed
- Moved email-writing-encrypt-cmdto pgp.encrypt-cmd.
- Moved email-reading-decrypt-cmd to pgp-decrypt-cmd.
- Moved email-writing-sign-cmd to pgp.sign-cmd.
- Moved email-reading-verify-cmd to pgp.verify-cmd.
v0.8.4
Fixed
- Fixed windows releases due to cargo deps typo.
v0.8.3
Fixed
- Fixed windows releases due to coredump crate compilation error.
- Fixed macos releases due to macos 12 System Integrity Protection.
v0.8.2
Changed
- Made the code async using the tokio async runtime.
- On Linux, made the kernel keyring the default one (the one based on
keyutils).
Fixed
- Fixed the way folder aliases are resolved. In some case, aliases were
resolved CLI side and lib side, which led to alias errors [sourcehut#95].
pimalaya-email-tpl
Fixed
- Fixed default PGP verify command that was using invalid option --recipient.
pimalaya-email
Changed
- Changed the way folder aliases are resolved. They are now resolved directly
from backend implementations, which frees interfaces from this
responsibility [#95].
- Bumped [email protected].
Fixed
- Fixed absolute folder aliases for the maildir backend [#94].
- Fixed notmuch virtual folder [#92].
v0.8.1
Added
- Implemented OAuth 2.0 refresh token flow for IMAP and SMTP, which means that
access tokens are now automatically refreshed and is transparent for users.
- Added imap-oauth2-redirect-host and smtp-oauth2-redirect-host options to
customize the redirect server host name (default: localhost).
- Added imap-oauth2-redirect-port and smtp-oauth2-redirect-port options to
customize the redirect server port (default: 9999).
- Added email-listing-datetime-fmt to customize envelopes datetime format.
See format spec here.
- Added email-listing-local-datetime to transform envelopes datetime's
timezone to the user's local one. For example, if the user's local is set to
UTC, the envelope date 2023-06-15T09:00:00+02:00 becomes
2023-06-15T07:00:00-00:00.
Fixed
- Fixed missing < and > around Message-ID and In-Reply-To headers.
v0.8.0
Added
- Added keyring support, which means Himalaya can now use your system's global
keyring to get/set sensitive data like passwords or tokens.
- Added required IMAP option imap-auth and SMTP option smtp-auth. Possible
values: passwd, oauth2.
- Added OAuth 2.0 support for IMAP and SMTP.
- Added passwords and OAuth 2.0 configuration via the wizard.
- Added email-sending-save-copy option to control whenever a copy of any sent
email should be saved in the sent folder defined in folder-aliases.
- Imported id mapper from the lib, which means that the id mapping is now done
by the CLI.
- Added BackendConfig to AccountConfig::backend to match sender implementation.
- Added support for pipeline commands, which means commands can be either a
single command (string) or piped commands (list of strings). It applies for:
- email-writing-verify-cmd
- email-writing-decrypt-cmd
- email-writing-sign-cmd
- email-writing-encrypt-cmd
Changed
- Changed release archive extensions from .tar.gz to .tgz.
- Moved wizard module into domains (config, account, backend…).
- [BREAKING] Changed the way secrets are managed. A secret is a sensitive data
like passwords or tokens. There is 3 possible ways to declare a secret in
the config file:
- { raw = <secret> } for the raw secret as string (unsafe, not
recommanded),
- { cmd = <secret-cmd> } for command that exposes the secret,
- { keyring = <secret-entry> } for entry in your system's global keyring
that contains the secret.
- This applies for:
- imap-passwd
- imap-oauth2-client-secret
- imap-oauth2-access-token
- imap-oauth2-refresh-token
- smtp-passwd
- smtp-oauth2-client-secret
- smtp-oauth2-access-token
- smtp-oauth2-refresh-token
Fixed
- Fixed Windows releases corrupted archives.
Removed
- [BREAKING] Removed -s|--sanitize option. It is done by default now, except
if the -t|--mime-type html is set.
- [BREAKING] Removed native-tls support, rustls-tls is now the only TLS
provider available. Removed in consequence native-tls, rustls-tls and
rustls-native-certs cargo features.
pimalaya-email
Added
- Added IP support using rustls v0.21 [#80].
- Added AccountConfig::generate_tpl_interpreter function to generate a
template interpreter with default options based on the config (pgp encrypt,
pgp verify and attachments dir).
Changed
- Changed AccountConfig::addr return type from lettre::Mailbox to
mail_builder::Address.
- Changed AccountConfig::email_reading_headers default values to ["From",
"To", "Cc", "Subject"].
- Changed AccountConfig::email_writing_headers default values to ["From",
"To", "In-Reply-To", "Cc", "Subject"].
- Removed noise around signature by trimming it.
- Changed Email::parsed return type from mailparse::ParsedMail to
mail_parser::Message.
- Changed Email::new_tpl_builder return type from Result<TplBuilder> to
NewTplBuilder.
- Renamed Email::to_read_tpl_builder to Email::to_read_tpl which returns now a
Result<Tpl> directly.
- Changed Email::to_reply_tpl_builder return type from Result<TplBuilder> to
ReplyTplBuilder.
- Changed Email::to_forward_tpl_builder return type from Result<TplBuilder> to
ForwardTplBuilder.
- Renamed backend::imap::Error::ListEnvelopesOutOfBounds by
BuildPageRangeOutOfBoundsError.
- Replaced [lettre] by [mail-send], [mailparse] by [mail-parser] and [maildir]
by [maildirpp].
- Removed native-tls support, rustls-tls is now the only TLS provider
available. Removed in consequence native-tls, rustls-tls and
rustls-native-certs cargo features.
Fixed
- Fixed notmuch path not being expanded correctly.
- Fixed .notmuch folder created by notmuch new command being treated as a
folder. Because it is a folder starting by a dot, it was considered as a
Maildir++ folder (which is not).
- Fixed IMAP pagination error when listing envelopes [#76].
pimalaya-email-tpl
Added
- Added parsing template from raw message support. Parsing is done via the
TplInterpreter builder, and functions TplInterpreter::interpret_* return the
parsed template.
Changed
- Replaced [lettre] by [mail-builder] and [mail-parser].
- Use crate [nanohtml2text] instead of manual html to plain transform using
ammonia, html-escape and regex.
- Moved MML stuff in its own mml module, to be as close as what provides the
Emacs MML module. The tpl module contains stuff related to template.
A template is just an email composed of headers and one unique plain text
part. This plain text part can be written in MML.
- Compiler options are now attached to the Tpl structure.
v0.7.3
Fixed
- Fixed Windows releases (due to typo in the github action script).
- Fixed unit tests.
v0.7.2
Added
- Added create and delete folder commands [sourcehut#54].
- Added generated completions and man pages to releases [sourcehut#43].
- Added new account config option sync-folders-strategy which allows
to choose a folders synchronization strategy [sourcehut#59]:
- sync-folders-strategy = "all": synchronize all existing folders
for the current account
- sync-folders-strategy.include = ["folder1", "folder2", …]:
- synchronize only the given folders for the current account
- sync-folders-strategy.exclude = ["folder1", "folder2", …]:
- synchronizes all folders except the given ones for the current
account
- Also added new account sync arguments that override the account
config option:
-A|--all-folders: include all folders to the synchronization.
-F|--include-folder: include given folders to the
synchronization. They can be repeated -F folder1 folder2 or -F folder1
-F folder2.
-x|--exclude-folder: exclude given folders from the
synchronization. They can be repeated -x folder1 folder2 or -x folder1
-F folder2.
- Added cargo features native-tls (default), rustls-tls and
rustls-native-certs.
Changed
- Made global options truly global, which means they can be used
everywhere (not only before commands but also after)
[sourcehut#60].
- Replaced reply all -a argument with -A because it conflicted
with the global option -a|--account.
- Replaced himalaya-lib by pimalaya-email.
- Renamed feature vendored to native-tls-vendored.
- Removed the develop branch, all the development is now done on the
master branch.
Fixed
- Fixed config deserialization issue with email-hooks and
email-reading-format.
- Fixed flags case sensitivity.
jperkin
pushed a commit
that referenced
this issue
Oct 29, 2023
0.2.4 * Make pipe_tables extension treat backslash escapes like GH does (#112, Michael Howell). This change essentially changes the way the text \\| gets parsed inside a table. In the old version, the first backslash escapes the second backslash, and then the pipe is treated as a cell separator. In the new version, the pipe is still preceded by a backslash, so it is still literal text. The escaping rule is documented in detail in the spec for this extension. This change also aligns our escaping of pipes with GitHub's. 0.2.3.6 * Fix pipe table parser so that |s don't interfere with other block structures (Michael Howell, #111, fixing #52 and #95). This parser is structured as a system that parses the second line first, then parses the first line. That is, if it detects a delimiter row as the second line of a paragraph, it converts the paragraph into a table. This seems counterintuitive, but it works better than trying to convert a table into a paragraph, since it might need to be something else. * Improve parsing of inline math (#110). 0.2.3.5 * Resolve entities inside wikilinks (#105, Michał Kukieła). 0.2.3.4 * Require whitespace after definition list marker (#104). Otherwise we can inadvertently clobber strikeout or subscript.
jperkin
pushed a commit
that referenced
this issue
Nov 6, 2023
Overview of changes in GLib 2.78.0, 2023-09-08
==============================================
* Bugs fixed:
- #3095 Error handling of invalid GKeyFile string escape sequences changed in
GLib 2.77.3 (Philip Withnall)
- !3559 gdb: Workaround optimized out quark_seq_id
- !3561 meson: fix `gnetworking.h` install tag
- !3562 gthread: Annotate g_thread_exit() with G_NORETURN
- !3564 Fix gutils-user-database unit test
Overview of changes in GLib 2.77.3, 2023-08-31
==============================================
* Bugs fixed:
- #2575 GSettings schemas default value translations don't work when using
l10n=time (Michael Catanzaro)
- #3032 gdbus-codegen eats indentation in RST in XML comments (André)
- #3051 g_dbus_connection_export_menu_model() is not thread_safe
- #3061 Possible SEGV (null pointer deref) in distribute_method_call() (Philip
Withnall)
- #3083 `arg_data` in GOptionEntry is not a list (Philip Withnall)
- #3090 Possible SEGV (null pointer deref) in _g_resource_file_new() (Philip
Withnall)
- !3459 glib-unix: Clean up use of O_NONBLOCK
- !3503 interim solution for macOS CI
- !3519 meson: warn if -mms-bitfields is necessary
- !3526 gnetworkaddress: use reentrant getservbyname_r() if available
- !3527 tests: Use g_assert_*() rather than g_assert() in tree tests
- !3528 gio-tool-info: Move translator comments so they’re visible
- !3530 gregex: set default max stack size for PCRE2 JIT compiler to 512KiB
- !3532 tests: Disable use of ptrace() in tests on BSD and macOS
- !3533 ci: Only run pages CI job on scheduled job runs
- !3534 ci: Further fix to pages CI job
- !3535 Use 'meson setup' to configure
- !3538 glib-unix: Accept O_CLOEXEC as well as FD_CLOEXEC in
g_unix_open_pipe()
- !3540 gio: Add gresource.dtd
- !3541 gtestutils: Mention not ignoring SIGCHLD in g_test_trap_subprocess()
docs
- !3542 [th/gchildwatch-fail-message] gmain: improve g_warning() for failure
in g_child_watch_dispatch()
- !3543 [th/use-localtime-r] use localtime_r() in g_log_writer_format_fields()
- !3545 gregex: if JIT stack limit is reached, fall back to interpretive
matching
- !3547 glib/gfileutils.c: use 64 bits for value in get_tmp_file()
- !3550 glib/tests/asyncqueue.c: skip test_async_queue_timed in 2038 or later
- !3553 Generate missing docs for out arguments
- !3555 gkeyfile: Fix overwriting of GError
Overview of changes in GLib 2.77.2, 2023-08-12
==============================================
* Bugs fixed:
- #3071 g_test_trap_subprocess and g_test_subprocess broken in 2.77.1 (Jonas
Ådahl)
- !3432 ci: Don’t run pipeline after merging a MR
- !3520 Fix typos
- !3521 GTree: Handle node counter overflow and return it as an unsigned value
- !3523 gspawn, gdataset: Restore nullable callback functions
Overview of changes in GLib 2.77.1, 2023-07-30
==============================================
* Fix some regressions with `GKeyFile` comment handling (#3047, work by Gaël Bonithon)
* Improve handling of query and fragment components in `file:` URIs (#3050, work by Lukáš Tyrychtr)
* Bugs fixed:
- #473 systemtap probes for gvariant (Allison Karlitskaya)
- #623 g_type_query() doesn't work for dynamic types (Philip Withnall)
- #931 Optimise GPrivate by removing one malloc (Allison Karlitskaya)
- #2929 gio: Failing build due to race generating glib/gversionmacros.h (Eric
van Gyzen)
- #3045 2.77.0: gio pkg-config test has incorrect install location for gio-
querymodules & glib-compile-schemas (Philip Withnall)
- #3047 2.77.0 changes formatting of keyfiles (Gaël Bonithon)
- #3048 Forcing fallback for libintl does not work (Brendan Shanks)
- #3050 g_file_new_for_uri() handles query strings incorrectly ("?") (Lukáš
Tyrychtr)
- #3054 Fedora installer (anaconda) crashes early with glib 2.77.0 due to
"Attempt to unlock mutex that was not locked", when it runs `hwclock` and
changes the system time (Thomas Haller, Philip Withnall)
- !3287 Audit and fix incorrect use of (closure) in glib
- !3461 gfileinfo: add file_path methods for language bindings
- !3485 docs: Expand supported platforms documentation a little
- !3494 ci: Manually fetch submodules for style-check CI jobs
- !3495 gdbus-codegen: Error on invalid dbus types
- !3496 garray: Fix typo in doc comment of g_ptr_array_sort[_with_data]()
- !3499 strfuncs: Add missing ownership annotations for returned string
vectors
- !3504 Revert "build/gmodule-2.0.pc: Move compiler flags from Libs to Cflags"
- !3505 meson: help gobject-introspection locate source and build dirs
- !3509 build-sys: drop -mms-bitfields GCC flag
- !3510 testutils: Use prctl PR_SET_DUMPABLE to silence core dumps on Linux
- !3514 Revert "build-sys: drop -mms-bitfields GCC flag"
- !3515 gnetworkmonitor: Expand guidelines for metered data use
- !3517 tests: Add some more tests for g_type_query()
- !3518 m4macros: drop unused m4 files
Overview of changes in GLib 2.77.0, 2023-07-06
==============================================
* Fix `GSocketClient` connecting to a proxy if the port is not specified
(#2832, work by Michael Catanzaro)
* Support using `copy_file_range()` in `g_file_copy()`, if available (#2863,
work by Philip Withnall)
* Improve handling of comments above groups in key files (#2927,
work by Gaël Bonithon)
* Re-upgrade missing attribute debugs to criticals in `GFileInfo` (#2951,
work by Philip Withnall)
* Do not redefine NULL on C++ (#2973, work by Marco Trevisan)
* Make `g_signal_handlers_block_matched()` work for `G_SIGNAL_MATCH_ID`
(#2980, work by Przemyslaw Gorszkowski)
* Fixes to support building with bionic libc better (#3008, work by Øyvind Kolås)
* Fix potential stack overflow in gspawn on macOS if open file limit is very
high (#3024, work by Dario Saccavino)
* Fix support for `--force-fallback-for libpcre` in meson configuration (#3025,
work by Marius Kintel)
* Generate specific marshallers in `gdbus-codegen` (#3028, work by Marco Trevisan)
* Fix build failure on Android with `statx()` support (#3039, work by Philip Withnall)
* Improve locking performance of `GSignal` (!2824, work by Marco Trevisan)
* Improve locking performance of `g_main_context_iterate()` (!3235, work by
Marco Trevisan)
* Add an inline definition of `g_free()` to automatically use `g_free_sized()`
if available (!3252, work by Marco Trevisan)
* Fix race with `waitpid()` and `GChildWatchSource` (!3353, work by Thomas Haller)
* Add `glib_valgrind_suppressions` variable to glib pkg-config file (!3361, work
by Marco Trevisan)
* Fix build on macOS SDK 10.11 (!3385, work by Peter Williams)
* Switch to using a separate thread pool and support timeouts in
`GThreadedResolver` (!3397, work by Philip Withnall)
* Track pending `GTask`s if `G_ENABLE_DEBUG` is defined (!3404, work by Philip Withnall)
* Support GSignal fast path and more marshallers in `gobject_gdb.py` (!3437,
work by Nelson Ben)
* Disable the macOS CI because it’s too unreliable — if you rely on GLib working
on macOS, please get in touch and do something to help! (!3463, decision taken
by Philip Withnall)
* Bugs fixed:
- #65 glib-mkenums: parse_trigraph() chokes on quoted commas (Emmanuel Fleury)
- #95 GMarkupParser documentation completion (David King)
- #98 g_get_current_dir SIGSEGV on long path (Philip Withnall)
- #104 Invocation of the interface "g_key_file_remove_comment" does not remove
comment in specific case (Gaël Bonithon)
- #116 Document UTF-8 behaviour and requirements throughout GLib (Philip
Withnall)
- #252 Disagreement between runtime and docs on whether interfaces are
"classed" (Philip Withnall)
- #322 gdbus-example-proxy-subclass.c is not complete. (Colin Walters)
- #799 GAppInfoMonitor documentation deficiencies (Philip Withnall)
- #1264 Use-after-free under
send_message_with_reply_cleanup():gdbusconnection.c:1792 (Philip Withnall)
- #2289 Document clearly that libgio is not guaranteed to be safe to use in
setuid processes (Philip Withnall)
- #2307 mainloop test leaks a GMainLoop object (Philip Withnall)
- #2829 "glib-compile-resources --dependency-file=DEPFILE" creates wrong set
of dependencies (Michael Catanzaro)
- #2832 GSocketClient cannot proxy connect unless default port is explicitly
specified in proxy URL (Michael Catanzaro)
- #2855 gio/tests/socket-client.c name is too confusing because it does not
use GSocketClient (Mike Salmela)
- #2861 Check for __kernel_long_t when enabling futex()
- #2863 Use copy_file_range() whenever possible in g_file_copy (Philip
Withnall)
- #2864 Documentation mentions non-existing function `g_value_free` (Philip
Withnall)
- #2879 Job #2498619 failed: gio/tests/socket.c:1654:test_reuse_tcp: assertion
failed (error == (g-io-error-quark, 33)): error is NULL (Philip Withnall)
- #2927 GKeyFile: Inconsistent behavior of comment writing above a group (Gaël
Bonithon)
- #2939 mkenums.py test fails on FreeBSD (Philip Withnall)
- #2951 Re-upgrade missing attribute debugs to criticals in GFileInfo (Philip
Withnall)
- #2952 Not clear that GPollableInputStream methods are undefined if
can_poll() returns FALSE (Philip Withnall)
- #2953 Missing docs for GOption (commandline parser) (Sam Thursfield)
- #2958 nbd server fails with glib 2.76.0
- #2960 GDebugControllerDBus wrong default in documentation (Philip Withnall)
- #2963 Probably wrong information regarding G_PLATFORM_WIN32 in
README.win32.md
- #2965 test_measure fails with coreutils 9.2 (Joan Bruguera)
- #2966 Multiple Definition Error When Generating gio/tests/test5.gresource
(Dan Yeaw)
- #2969 user docs: GLib.DateTime.format: broken highlighting (Philip Withnall)
- #2972 GtkFileLauncher: generated paths not recognized on Win32 (Luca Bacci)
- #2973 Build failed due to NULL pointer redefinition in C++ (Marco Trevisan
(Treviño))
- #2980 g_signal_handlers_block_matched does not work for G_SIGNAL_MATCH_ID
(Przemyslaw Gorszkowski)
- #2982 Build randomly fails with: 'gmodule/gmodule-visibility.h' file not
found (Marco Trevisan (Treviño))
- #2993 g_dbus_interface_skeleton_get_vtable misses transfer annotation and is
not introspectable
- #2997 g_assert_cmpuint() should display positive, not negative values (Eric
Blake)
- #3003 glib-compile-schemas failed on directory name with no Latin symbols
(Daniyar Tleulin)
- #3007 GOptionContext group headings missing colon at the end (Philip
Withnall)
- #3008 Adaptations for building with bionic libc under termux (Øyvind Kolås)
- #3020 Races in gio/tests/portal-support-snap* tests
- #3024 Possible stack overflow in gspawn on MacOS
- #3025 libpcre and libintl cannot be chosen to use the builtins
- #3027 action exporter fails in the presence of actions with maybe parameter
types (Matthias Clasen)
- #3028 gdbus-codegen should generate marshallers (Marco Trevisan (Treviño))
- #3030 Document GListModel requiring unique instance pointers from
GListModelInterface.get_item (Christian Hergert)
- #3034 futex based g_mutex_lock sometimes splatters errno with EAGAIN on
contended locks
- #3039 Build failure due to statx fields with NDK r25.c (Philip Withnall)
- #3040 gtester in custom_target() run against system rather than built
libglib during build
- !2824 gsignal: Reduce lock/unlock pairs and ensure we always work on valid
signal nodes
- !3146 Make GVariant/GHash opaque types compatible with CHERI
- !3235 gmain: Avoid some lock/unlock dance during g_main_context_iterate
- !3252 gmem: Add an inline definition of g_free() to automatically use
g_free_sized()
- !3289 Work around an UCRT issue with _wspawn() functions taking an envp
block
- !3306 gregistrysettingsbackend: Allow a different root key path
- !3308 doc: Workaround missing API index
- !3314 gmain: More explicitly document g_main_context_release() prereqs
- !3326 unicode: add tests for g_utf8_normalize() and empty strings
- !3333 build: Drop old .gitignore files from test directories
- !3335 meson: allow -Dlibelf=enabled without pkg-config
- !3337 gio-tool-info: Fix a duplicate attribute name in the UI
- !3340 meson: Move msvc_recommended_pragmas.h to a subdirectory
- !3341 g_utf8_normalize: don't read past the end of the buffer
- !3342 Add fuzzing harness for g_utf8_normalize()
- !3344 tools: Drop check-abis.sh script
- !3345 docs: Drop section about default branch renaming from README.md
- !3347 gsocket/inotify/gwakeup: Use SOCK_NONBLOCK and O_NONBLOCK to avoid
fcntl() syscalls where possible
- !3351 tests: Update Unicode normalisation tests from Unicode 15
- !3352 meson: Fix detection of a system-provided proxy-libintl
- !3353 [th/child-watch-waitpid] fix race with waitpid() and child watcher
sources
- !3356 build/gmodule-2.0.pc: Move compiler flags from Libs to Cflags
- !3357 Make clang++ happier when using G_STATIC_ASSERT
- !3361 meson: Add glib_valgrind_suppressions variable to glib pkg-config file
- !3365 gwin32: Avoid use of function call with side effect in g_return_*
macro
- !3366 Add init macros for refcounting types
- !3367 actiongroup: Add a compiler warning
- !3371 Explicitly mark size parameter as (in)
- !3377 gsignal: Clarify documentation for GSignalMatchType matching
- !3378 build: Post-release version bump
- !3381 gtimer: Avoid doing anything on g_usleep (0)
- !3382 gsocket: Explicitly mark size parameter as (in)
- !3383 add g_timeout_add_seconds_once
- !3384 Test g_signal_handlers_disconnect_matched for G_SIGNAL_MATCH_ID match
- !3385 gio: fix build on older macOS SDKs
- !3388 appmonitor: Skip the test under OSX
- !3389 glib/tests/[rec-]mutex: Allow each thread to work
- !3390 Fix error format in gio/gunixconnection.c (part 2)
- !3392 gvariant: Fix doc for g_variant_new_object_path
- !3393 Fix small issues in docs
- !3395 gtask: Document that g_task_run_in_thread() uses a shared resource
- !3396 glib-unix: Improve documentation for g_unix_fd_source_new()
- !3397 gthreadedresolver: Switch to using a separate thread pool and support
timeouts
- !3398 Avoid having g_futex_simple() inadvertently modify errno
- !3399 meson: wrap html documentation generation with gtk_doc option
- !3400 restore error messages in gunixconnection while maintaining older
compiler support
- !3401 ci: Disable the Coverity CI job
- !3404 gtask: Track pending GTasks if G_ENABLE_DEBUG is defined
- !3405 gthreadedresolver: Remove some incorrect assertions
- !3406 gthreadpool: Clarify that item_free_func is not normally called
- !3407 gregistrysettingsbackend: Remove translatable pspec nick/blurb
- !3408 docs: Update/Drop txt documents from docs directory
- !3409 docs: Don’t ignore gunixfdlist.h when building docs on Windows
- !3410 tests: Add descriptions to environment tests
- !3416 gtestutils: Fix section marker in documentation
- !3418 docs: Add lb90 as a Windows maintainer
- !3419 docs: Update various broken/redirected links and fix list formatting
- !3420 gtestutils: print timing information per test case in TAP output
- !3421 glib/tests/fileutils:fix asserts when running as root
- !3422 Check for linux/netlink.h buildability
- !3423 gstring: add g_string_new_take
- !3425 gwin32networkmonitor: Fix returning address of local variable
- !3426 gdataset, gobject: Use atomic compare and exchange full to set
pointers
- !3429 Rename GTK+ to GTK (mostly comments and documentation)
- !3430 gobject_gdb.py: fix regression caused by bfbe7127d5
- !3431 gfile: Ensure loff_t is defined on FreeBSD
- !3435 Ignore g_task_print_alive_task() when introspecting GIO
- !3437 gobject_gdb.py: support gsignal fastpath and detect more marshallers
- !3438 gio: Check cancellable iterating local file enumerator
- !3439 gstring: Add `Since` marker to `g_string_new_take()`
- !3440 gutf8: Add a g_utf8_truncate_middle() function
- !3441 Allow proper introspection of GTypeValueTable
- !3442 gio: Add g_file_new_build_filenamev
- !3448 meson: try iconv in libintl lookup
- !3449 docs: Move README.win32.md to the docs folder and update
CONTRIBUTING.md
- !3450 gactionmap: Add g_action_map_remove_action_entries()
- !3453 docs: Use the type name as the section name for GKeyFile
- !3455 gfileinfo: add (type filename) annotation to symlink_target functions
- !3456 gmain: Document that g_steal_fd() preserves errno
- !3458 gstdio: Improve documentation of some functions as async-signal safe
- !3462 tests: Reduce thread and iteration count on CI for /thread/rec-mutex3
- !3463 ci: Disable the macOS CI
- !3465 gobject_gdb.py: adapt to recent gsignal changes
- !3466 resolver: Add space in documentations
- !3470 pcre subproject fixes: Allow fallback & static build
- !3471 gio-tool-mount: Add option to show progress when unmounting
- !3472 tests: Fix an intermittent timing error with testing g_usleep(0)
- !3477 gdbus-codegen: Fix some minor typos in the documentation
- !3484 docs: Fix a typo in the backports policy
- !3486 docs: Document issue and merge request triaging and review guidelines
- !3488 codegen: Use g_signal_emit to emit signals
- !3489 guniprop: fix param direction in g_unichar_get_mirror_char(), for
introspection
- !3490 gobject/tests: Fix running on 32-bit Windows
jperkin
pushed a commit
that referenced
this issue
Dec 4, 2023
Upstream changes:
0.080 2023-10-04
- fix #95 AES-NI troubles on MS Windows (gcc compiler)
- fix #96 Tests failure with Math::BigInt >= 1.999840
- Enabled AES-NI for platforms with gcc/clang/llvm
0.079 2023-10-01
- fix #92 update libtomcrypt
- bundled libtomcrypt update branch:develop (commit:1e629e6f 2023-06-22)
0.078 2023-04-28
- fix #89 Crypt::Mac::HMAC b64mac and b64umac object methods do not work
jperkin
pushed a commit
that referenced
this issue
Jan 15, 2024
3.5.0:
- Added the - force option
- Allows a user to force the generation of digests for strings down to
50 characters long
3.5.1:
- Fixed the error in the Python extension
3.5.2:
- Added the BlackHat Asia tool (presented at Arsenal)
3.7.0:
- merged in various fixes - ifdef for SPARC and RH73
- corrected TLSH_CTC_final.pdf
- added a SHA1 to the NOTICE.txt file
- improved the make.sh so that it calls the test.sh (and does
regression tests)
- improved regression tests to confirm that the hash is calculated
correctly in your environment
- fixed the header file C++ standard violation (reserved identifier
violation #21)
3.7.1:
- resolved issue #29 - the force option for Python
Step 1 - adding a regression test for strings approx of length 50
Step 2 - add python code
3.7.2:
- added code to set the distance parameters for ROC analysis
3.7.3:
- resolving issue #44
- making static library the default
3.7.4:
- resolving issue #45
- add a timing test for TLSH
3.7.5:
- resolving issue #46
- in include/tlsh_impl.h
#define SLIDING_WND_SIZE 5
this can be varied between 4 to 8
3.8.0:
- Adding // access functions - required by tools using TLSH library
- int Lvalue();
- int Q1ratio();
- int Q2ratio();
3.9.0:
- resolving issue #48 - tlsh_pattern program
3.9.1:
- resolving issue #38
- putting in fix in rand_tags.cpp so that it generates identical output
to previous version while safely working with pointers
3.9.2:
- Also merged the contents of NOTICE.txt into LICENSE. This was done
because NOTICE.txt is sometimes accidently removed when people clone
this repository. And the LICENSE specifically states that NOTICE.txt
should NOT be removed.
- Also added command line option -notice which displays the
NOTICE.txt file
3.9.3:
- currently tlsh_pattern returns all the matches
modify tlsh_pattern to return the best match
- remove the newline from the input fields when reading in the
tlsh_pattern file
3.9.4:
- check in order_bug program which demonstrates issue #50
- resolved issue #50 - added code to tlsh_impl.cpp to check for invalid
call sequences to update() and final()
3.9.5:
- issue #61: added a command line option -notest - do not do any testing
3.9.6:
- Have a cmake option to build tlsh with a zero byte checksum
(development / research option)
- Default build has 1 byte checksum - which is strongly recommended
3.9.7:
- resolving issue #50 for bin/timing_unittest
3.9.8:
- timing_unittest measures the time taken to do distance calculations
- add a command line option -size - so that you can measure the time
taken to evaluate different sizes of string
3.9.9:
- resolve issue #62
- remove dependancy on GNUInstallDirs
3.10.0:
- Adding // access function - required by tools using TLSH library
- int BucketValue(int bucket);
- int Checksum(int k);
3.11.0:
- Make calculation of TLSH digests approx 7 times faster (for large
files), done by
- inline functions
- unrolling loops
- fixing the -O2 optimization option
3.11.1:
- tidy up:
1. use fast_b_mapping() instead of b_mapping()
2. remove declaration of unsigned r which is never used
3. remove #include which is not required
3.12.0:
- remove floating point calculations such as log() function
use alookup table instead
3.13.0:
- .vcproj files and instructions for builing TLSH on Windows using
Visual Studio
3.13.1:
- fixing setup.py so that you can install Python Extension on Windows
3.14.0:
- adding sliding window size to tlsh_version
- changing test.sh to read the sliding window size
3.14.1:
- fixing error in test script for -xlen option (print statements about
considering length were incorrect)
- improved test.sh - tests for existance of expected output files
3.15.0:
- Refactor code - so that input of directory or digest is in a struct.
The code to process input is in library code (input_desc.cpp,
shared_file_functions.cpp). The input routines can be used by
myultiple programs. Also, preparing for things like csv input files.
3.15.1:
- added command line option -help to show full help information
3.15.2:
- tlsh_pattern uses refactored code introduced in 3.15.0
3.16.0:
- improved tlsh_pattern functionality
- added regression tests for tlsh_pattern
3.16.1:
- improved tlsh functionality
- add options
3.16.2:
- added regression tests for 3.16.1
3.17.0:
- Make command line option -force (50 char limit) the default behaviour
- Add a command line option -conservative (256 char limit)
3.17.3:
- add checking to confirm that TLSH digests are the correct length in
- -c option
- -d option
- the appropriate column of -l listfile options
3.18.0:
- resolve issue #72 - remove tlsh_version
3.19.0:
- preperation for Windows build
remove ../Testing/ from test.sh script and from regression test
results
3.19.1:
- in test.sh and testlen.sh - make TLSH_PROG a variable
4.0.0:
- version 4: adding version identifier to each digest: 'T1'
- adding command line option -old to generate old style digests
- In this version - the showvers is defaulted to off - so this will
pass the old regression tests
4.0.1:
- turing on T1 functionality by setting showvers=1 in main
- updating regression tests to have T1 at the start of digests
4.1.0:
- adding -o option for output filename (output will go to stdout if no
output file given)
- changed test scripts to use -o option
- adding -ojson option for json output
- added regression test for -ojson option
- adding -onull option to output empty files / files too small as TNULL
4.2.0:
- Windows version using minGW
4.2.1:
- resolve issue #78 json objects do not validate on windows
4.2.2:
- resolve issue #81
- Pass regression tests
4.2.3:
- add regression tests that are compatible with
https://github.com/glaslos/tlsh
4.3.0:
- issue #79 - divide by 0 if q3 == 0
solution. if (q3 == 0) return invalid hash
4.4.0:
- Fixing Python Extension
- updated python extension to T1 hashes (4.0.0)
- fixed python_test.sh (which attempted to access old expected
results files)
- added license information to py_ext/tlshmodule.cpp
4.4.1:
- Command line options to tlsh_digest.py
-conservative enforce 256 byte limit
-old generate old style hash (without "T1")
- added python functions to tlsh package (for backwards compatibility)
tlsh.oldhash(data)
tlsh.conservativehash(data)
tlsh.oldconservativehash(data)
4.5.0:
- Checking in files to create pypi package
4.6.0:
- Add architecture ppc64le to travis build (Thanks ddeka2910)
4.7.0:
- Release updated package py-tlsh on Pypi.org
- Merging in pull request that adds functions to Python package
lvalue, q1ratio, q2ratio, checksum, bucket_value and is_valid
- resolve issue #102 - correct Python version numbers
4.7.2:
- regression tests for C++ and Python functions for:
lvalue, q1ratio, q2ratio, checksum, bucket_value
- resolve issue #95 - allow Requires-Python: >=2.7
4.8.0:
- Fix the make install target by adding the version.h in the
installed files
4.8.1:
- Improve portability, add shared library build, install tlsh_unittest
4.8.2:
- fixed tlsh_win_version.h
jperkin
pushed a commit
that referenced
this issue
Feb 20, 2024
1.4.4 (2024-02-16) * Fix mingw build (#95) * Remove unused variable.
jperkin
pushed a commit
that referenced
this issue
May 1, 2024
v20.4.0 ======= Features -------- - Replace deprecated ssl.wrap_socket with SSLContext.wrap_socket and update examples in connection.py docs. (#216) v20.3.1 ======= No significant changes. v20.3.0 ======= Features -------- - Added support for SASL login. (#195) Bugfixes -------- - Better handling of escape sequences in message tags. (#205) v20.2.0 ======= Features -------- - Require Python 3.8 or later. v20.1.1 ======= * #213: Pinned against jaraco.text 3.10 due to change in interface. v20.1.0 ======= * #196: In irc.bot, avoid hanging idle when the first connection attempt fails. v20.0.0 ======= * ``SingleServerIRCBot`` no longer accepts ``reconnection_interval`` as a parameter. * Added server support for NOTICE commands. * Require Python 3.7 or later. v19.0.1 ======= * #176: Fix issues with version number reporting. Restored version version number reporting in bot and client. v19.0.0 ======= * ``irc.client`` no longer exposes a ``VERSION`` or ``VERSION_STRING``. To get the version, call ``importlib.metadata.version('irc')`` directly. v18.0.0 ======= * Require Python 3.6 or later. 17.1 ==== * Rely on `importlib_metadata <https://pypi.org/project/importlib_metadata/>`_ for loading version from metadata. Removes implicit dependency on setuptools and pkg_resources. * #158: The AsyncIO server now accepts a connection factory to enable features like SSL and IPv6 support. * #155: ``SimpleIRCClient`` now has a ``dcc`` method for initiating and associating a DCCConnection object with the client. ``DCCConnection.listen`` now accepts a ``address`` parameter. Deprecated ``SimpleIRCClient.dcc_listen`` and ``SimpleIRCClient.dcc_connect`` in favor of the better separation of concerns. Clients should replace:: client.dcc_connect(addr, port, type) client.dcc_listen(type) with:: client.dcc(type).connect(addr, port) client.dcc(type).listen() 17.0 ==== * Removed ``irc.buffer`` module, deprecated in 14.2. * #153: Drop support for Python 3.3 and 2.7. 16.4 ==== * Long Term Service release for Python 2.7. * #149: ``AioConnection.connect`` moved to coroutine, added disconnect handling for AsyncIO. 16.3 ==== * #140: Methods now use 'connection' and 'event' for parameter names. * #135 via #144: Added AsyncIO implementation. 16.2.1 ====== * Package refresh and cleanup. 16.2 ==== * #133: In ``irc.server``, add support for ISON. 16.1 ==== * #131: Add ``Connection.encode`` and ``Connection.transmit_encoding`` to enable encodings other than UTF-8 to be used when transmitting text. 16.0 ==== * Removed deprecated ``execute_*`` methods on ``Connection`` and ``Reactor`` as introduced in 15.0. * Fixed link in README. 15.1.1 ====== * New ``send_items`` method takes star args for simplicity in the syntax and usage. 15.1 ==== * Introduce ``ServerConnection.send_items``, consolidating common behavior across many methods previously calling ``send_raw``. 15.0.6 ====== * Now publish `documentation <https://python-irc.readthedocs.io/>`_ to Read The Docs. 15.0.5 ====== * #119: Handle broken pipe exception in IRCClient _send() (server.py). 15.0.4 ====== * #116: Correct invocation of execute_every. 15.0.3 ====== * #115: Fix AttributeError in ``execute_at`` in scheduling support. 15.0.2 ====== * #113: Use preferred scheduler in the bot implementation. 15.0.1 ====== * Deprecated calls to Connection.execute_* and Reactor.execute_*. Instead, call the equivalently-named methods on the reactor's scheduler. 15.0 ==== * The event scheduling functionality has been decoupled from the client.Reactor object. Now the reactor will construct a Scheduler from the scheduler_class property, which must be an instance of irc.schedule.IScheduler. The ``_on_schedule`` parameter is no longer accepted to the Reactor class. Implementations requiring a signal during scheduling should hook into the ``add`` method of the relevant scheduler class. * Moved the underlying scheduler implementation to `tempora <https://pypi.org/project/tempora>`_, allowing it to be re-used for other purposes. 14.2.2 ====== * Issue #98: Add an ugly hack to force ``build_sphinx`` command to have the requisite libraries to build module documentation. 14.2.1 ====== * Issue #97: Restore ``irc.buffer`` module for compatibility. * Issue #95: Update docs to remove missing or deprecated modules. * Issue #96: Declare Gitter support as a badge in the docs. 14.2 ==== * Moved buffer module to `jaraco.stream <https://pypi.python.org/pypi/jaraco.stream>`_ for use in other packages. 14.1 ==== * ``SingleServerIRCBot`` now accepts a ``recon`` parameter implementing a ReconnectStrategy. The new default strategy is ExponentialBackoff, implementing an exponential backoff with jitter. The ``reconnection_interval`` parameter is now deprecated but retained for compatibility. To customize the minimum time before reconnect, create a custom ExponentialBackoff instance or create another ReconnectStrategy object and pass that as the ``recon`` parameter. The ``reconnection_interval`` parameter will be removed in future versions. * Issue #82: The ``ExponentialBackoff`` implementation now protects from multiple scheduled reconnects, avoiding the issue where reconnect attempts accumulate exponentially when the bot is immediately disconnected by the server. 14.0 ==== * Dropped deprecated constructor ``connection.Factory.from_legacy_params``. Use the natural constructor instead. * Issue #83: ``connection.Factory`` no longer attempts to bind before connect unless a bind address is specified. 13.3.1 ====== * Now remove mode for owners, halfops, and admins when the user is removed from a channel. * Refactored the Channel class implementation for cleaner, less repetitive code. * Expanded tests coverage for Channel class. 13.3 ==== * Issue #75: In ``irc.bot``, add support for tracking admin status (mode 'a') in channels. Use ``channel.is_admin`` or ``channel.admins`` to identify admin users for a channel. * Removed deprecated irc.logging module. 13.2 ==== * Moved hosting to github. 13.1.1 ====== * Issue #67: Fix infinite recursion for ``irc.strings.IRCFoldedCase`` and ``irc.strings.lower``. 13.1 ==== * Issue #64: ISUPPORT PREFIX now retains the order of permissions for each prefix. 13.0 ==== * Updated ``schedule`` module to properly support timezone aware times and use them by default. Clients that rely on the timezone naïve datetimes may restore the old behavior by overriding the ``schedule.now`` and ``schedule.from_timestamp`` functions like so: schedule.from_timestamp = datetime.datetime.fromtimestamp schedule.now = datetime.datetime.now Clients that were previously patching ``schedule.DelayedCommand.now`` will need to instead patch the aforementioned module-global methods. The classmethod technique was a poor interface for effectively controlling timezone awareness, so was likely unused. Please file a ticket with the project for support with your client as needed. 12.4.2 ====== * Bump to jaraco.functools 1.5 to throttler failures in Python 2. 12.4 ==== * Moved ``Throttler`` class to `jaraco.functools <https://bitbucket.org/jaraco/jaraco.functools>`_ 1.4. 12.3 ==== * Pull Request #33: Fix apparent escaping issue with IRCv3 tags. 12.2 ==== * Pull Request #32: Add numeric for WHOX reply. * Issue #62 and Pull Request #34: Add support for tags in message processing and ``Event`` class. 12.1.2 ====== * Issue #59: Fixed broken references to irc.client members. * Issue #60: Fix broken initialization of ``irc.server.IRCClient`` on Python 2. 12.1.1 ====== * Issue #57: Better handling of Python 3 in testbot.py script. 12.1 ==== * Remove changelog from package metadata. 12.0 ==== * Remove dependency on jaraco.util. Instead depend on surgical packages. * Deprecated ``irc.logging`` in favor of ``jaraco.logging``. * Dropped support for Python 3.2.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
This affects both nginx 1.12.2 and 1.13.7. This does not affect Apache.
When visiting a server properly configured with SNI, only one server stanza is used. The certificate and content served for all SSL sites are from the first SSL enabled host.
The text was updated successfully, but these errors were encountered: