-
Notifications
You must be signed in to change notification settings - Fork 51
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
nodejs in tools distro should not depend on python #97
Comments
There's also the option of configuring using --without-npm and going with a npm-less package. FreeBSD ports has the node package(s) implemented this way, then provides separate npm packages. |
This is done for 2018Q1 and new packages are available (if already installed then |
So, will this be available if I bootstrapped from 2017Q4-tools? |
I didn't force a rebuild of 2017Q4, I prefer not to do things like that in an LTS release and it's better that users always use the latest, but I can do if necessary. |
Changes: 1.5.1 ----- - Added support for: * `piczel` - https://piczel.tv/ - Added support for related pins on `pinterest` - Fixed accessing "offensive" galleries on `exhentai` (#97) - Fixed extraction issues for `mangadex`, `komikcast` and `behance` - Removed original-image functionality from `tumblr`, since "raw" images are no longer accessible
2.2.2 ------ - Add pool `size` and `available` accessors for metrics and monitoring purposes [#97, robholland]
Changelog: New Libraries Outcome: A set of tools for reporting and handling function failures in contexts where directly using C++ exception handling is unsuitable, from Niall Douglas. Histogram: Fast and extensible multi-dimensional histograms with convenient interface for C++14, from Hans Dembinski. Updated Libraries Asio: This release includes a number of new features, bug fixes, performance enhancements, and documentation improvements. Notable changes include: Added the ability to use custom I/O executors with I/O objects (such as sockets). Added a new async_result form with an initiate static member function. Updated the Coroutines TS support and promoted it to the asio namespace. Added a new DynamicBuffer_v2 concept which is CopyConstructible. Added a new async_compose function that simplifies the implementation of user-defined asynchronous operations. Added a make_strand helper function. Relaxed the completion condition type requirements to only require move-constructibility rather than copy-constructibility. Added a constructor for local::basic_endpoint that takes a string_view. Added the noexcept qualifier to various functions. Added a new BOOST_ASIO_DISABLE_VISIBILITY configuration #define. Enabled recycling of the memory used to type-erase a function object with the polymorphic executor. Changed receive operations to return the correct number of bytes transferred when truncation (error::message_size) occurs on a datagram-oriented socket. Fixed calculation of absolute timeout when the backend uses pthread_cond_timedwait. Changed the range-based asynchronous connect operation to deduce the EndpointSequence iterator type. Fixed buffer_sequence_begin and buffer_sequence_end to prevent implicit conversion. Ensured SSL handshake errors are propagated to the peer before the local operation completes. Suppressed the eof error on SSL shutdown as it actually indicates success. Added a fallback error code for when we OpenSSL produces an SSL_ERROR_SYSCALL result without an associated error. Changed composed asynchronous read and write operations to move buffer sequence objects. Fixed a macOS-specific warning about the deprecation of OSMemoryBarrier. Fixed compile errors that occur when using the composed read and write operations with MSVC 11.0. Improved dispatch, post and defer documentation. Fixed a Windows-specific memory leak that may occur when system_executor is used. Consult the Revision History for further details. Beast: BIG Update!!! Some APIs have changed. The reference shows a star ★ next to each new item. Beast needs your help! Tell Us how you or your company use Beast Please report any bugs, feature requests, or general feedback Join the C++ Slack Workspace for free and chat with us in the #beast and #boost channels Don't forget to star the repository ⭐! More tutorials, code like the pros! Networking Refresher teaches you from the ground up. Updated Asynchronous Echo example Updated Detect SSL composed operation tutorial websocket-chat-multi threaded chat server with a JavaScript browser client basic_stream and tcp_stream offer: Timeouts: async_read_some, async_write_some complete with error::timeout on expiration! Traffic-shaping policies simple and unlimited, or a user-defined RatePolicy! Put the strand directly on the socket using P1322R0, no more bind_executor at call sites! Base classes async_base and stable_async_base and handle all composed operation boilerplate for you. ssl_stream provides a movable, assignable SSL stream with a flat write optimization. All asynchronous operations use Asio's async_initiate for efficient integration with Coroutines TS. ⚡ faster compilation, define BOOST_BEAST_SEPARATE_COMPILATION and #include <boost/beast/src.hpp> in one of your .cpp files! See the full Release Notes for a complete list of changes. Context: #91: cleanup of stack if creating ucontext fails #97: add missing BOST_CONTEXT_DECL in stack_context #98: fix jump_i386_sysv_macho writing garbage to the x87 control word Coroutine2: #28: don't crash on pthread_cancel DLL: New macro BOOST_DLL_USE_STD_FS. Define it to 1 to make the Boost.DLL use C++17's std::filesystem::path, std::system_error and std::error_code (#21). Note that exception types change from boost::system::system_error to std::system_error, so make sure to update catches. Significant rewrite of the dynamic loadable detection and decoration logic. More precise errors are now reported in case of loading failures. Added shared_library::decorate() function that returns a decorated path to the library without doing any platform related queries and detections. Prefer using shared_library::load and shared_library constructors for better results (many thanks to Loïc Touraine for the work PR#23). CI hardening, docs updates, typos fixes, cleanups and mg #196: fix high contention on remote_ready_splk_ Filesystem: Fixed a few instances of dereferencing std::string::end() in path implementation. Fixed program termination in case of out of memory condition in directory iteratorsnce to error_code. (#58) Fixed possible linking errors caused by missing definitions of static members of path. (#12759) Fixed possible use of uninitialized data in directory iterator increment operation on Linux. Added support fortatus query overloads for directory_entry. This avoids a relatively expensive OS query when file status is requested for a result of dereferencing a directory iterator. (PR#55) Reworked current_path and read_symlink implementation to avoid possiblfilesystems. The functions now have an internal limit of the path size they will accept from the OS, which is currently 16 MiB. Increased the size of the internal buffer used by copy_file. Integer: Added Extended Euclidean Algorithm and Modular Multiplicative Inverse function. (Nick Thompson, PR#11) Log: New features: Added support for generating another log file name before collecting the file in the text file sink backend. This allows to combine appending to aexisting log file with timestamps and file counters in log filenames, and, consequently, file collection in general. See changelog for more details. Math: New features: Add Lanczos smoothing derivatives Move numols/ to boost/math/differentiation/finite_difference.hpp. Add mean, variance, skewness, kurtosis, median, Gini coefficient, and median absolute deviation to tools/univariate_statistics.hpp. Add correlation coefficients and covariand absolute Gini coefficient, Hoyer sparsity, oracle SNR, and the M[sub 2]M[sub 4] SNR estimator to tools/signal_statistics.hpp. Add total variation, l0, l1, l2, and sup norms, as well as corresponding distance functions to tools/norms.hpp. for polynomials, support complex coefficients, add .prime() and .integrate() methods. Add quadratic_roots to tools/roots.hpp. Add support for complex-valued functions to Newton's method in roots.hpp. Add Catmull-Rom inted mp_invoke to mp_invoke_q Added mp_similar Added mp_set_union, mp_set_intersection, mp_set_difference Added mp_not_fn Added mp_transform_first, mp_transform_second, mp_transform_third Added mp_filter Addedp_valid_q Added mp_back, mp_pop_back Multi-index Containers: size_type and difference_type are now defined as the allocator's same-named types. This will not make any difference in the vast majority of cases, but allows for some degreevia user-defined allocator types (see issue #17 for motivation). For the moment being, this change is not documented in the reference section (i.e., it has semi-official status). Maintenance work. Multiprecision: Fix various conversioncheck for compatibility with Boost.Optional. Prevent instantiation of std::numeric_limits on any old type when checking for convertibility. See #98. Update variable precision code to account for arbitrary precision integers. See #103. lization archives. Fix bug in fixed precision iostream formatting in mpf_float and mpfr_float. See #113. Add more overloads for special functions which are better handled natively by MPFR. Fixed bug in generic exp implementation wh. Fixed generic conversion from float to integer to avoid undefined behaviour. See #110. PolyCollection: Improved handling of stateful allocators and allocator propagation traits, after an error reported by Billy O'Neal (PR#9). ug with an internal cache structure. Spirit: Removed use of deprecated boost/detail/iterator.hpp header. PR#432 X3 Integer parsers should now handle user defined types. PR#429 Note: The check_overflow trait defan std::numeric_limits<T>::is_bounded instead of boost::integer_traits<T>::is_integral. Removed sequence into plain parsing. Now it triggers a compile time error instead of silently parsing the the sequence and taking the last value as a resulte_rule instantiation with BOOST_SPIRIT_INSTANTIATE when: A rule has no attribute. PR#455 An actual attribute is not of type a rule was declared with. PR#456 #457 A huge thanks goes out to Xeverous for reporting Fixed unneded attribute synthesization and no-transformation attribute reference pass-through in rules. #444 PR#449 PR#452 Removed broken 1.0#INF parser. It was poorly documented and never worked. #415 PR#458 #8699 The undocumenoved due to bugs PR#449 and to simplify attribute transformation. PR#460 If you were using it to workaround bugs in attribute transformation - they should not be needed anymore as of this release. The integer value parser now respe10 value. PR#469 Fixed underflow check for a (Min % Base) == 0 corner case. PR#469 Fixed an output value on overflow of IgnoreOverflowDigits=true integer parser. PR#470 Container attribute elements were copyied, but notial handling of references in transform_attribute was removed. PR#480 V2 Macro name collisions and namespace conflicts with Boost.Endian were fixed. PR#349 PR#482 utree Fixed UB in tag getter due to left shi Fixed double-conversion (spirit::string -> std::string -> spirit::string). PR#462 Qi Added static asserts for rule skipper type problems. PR#427 The check_overflow trait default implementation now reoost::integer_traits<T>::is_integral PR#429 Integer parsers should now handle user defined types. PR#429 Note: The check_overflow trait default implementation now relies on std::numeric_limits<T>::is_bounded instead of boosl. Removed broken 1.0#INF parser. It was poorly documented and never worked. #415 PR#458 #8699 The undocumented make_attribute trait was merged into transform_attribute trait. PR#471 The pre_transform, post_tility functions were removed in favor of directly using pre/post/fail of the transform trait. PR#467 The integer value parser now respects std::numeric_limits<T>::digits10 value. PR#469 Fixed underflow check for a (Min % B Fixed an output value on overflow of IgnoreOverflowDigits=true integer parser. PR#470 Special handling of references in transform_attribute was removed. PR#480 Lex Fixed UB in default constructor of ken type. PR#420 Classic: Fixed position_iterator forming reference to local when the underlying iterator dereference operator returns a non-reference type. PR#422 #9737 Stacktrace: Build fix for iOS 32-bit ARM (many thanksng the fix PR#70) Fixed multiple typos, warnings and updated the docs. Test: Boost.test v3.10 see the Changes log for more details. Breaking changes: Boost.Test minimal.hpp is now showing a deprecation warning, omparison may fail tests that were silently not using the floating point comparison logic prior to this release, Internal API change to unit_test_log_formatter, see detailed change log, New feature: Floating point compariso non-floating point and arithmetic operands: expressions like BOOST_TEST(3.0001 == 3) now use floating point support of Boost.Test, Custom datasets are not required to declare the sample type field anymore, Extending template test riadic definition, Windows support for timed tests, Timed test on test-suites, Removed dependency to Boost.Timer, New macro BOOST_TEST_INFO_SCOPE for scoped context declaration, Improved BOOST_TE and pull requests: Trac tickets: #7397, #9434, #13106, #13418 GitHub Issues: #133, #138, #141, #157, #160, #174, #176, #177, #180, #181, #194, #196, #198, #199, #202, #203, #204 GitHub Pull Requests: PR#171, PR#172, PR PR#195, PR#195, PR#197, PR#205 TypeIndex: Support for the GHS C++ compiler added (many thanks to Brandon Castellano for providing the patch PR#28) Optimized string and type comparisons (many thanks to Andrey Semashev for providing the-win compilation (many thanks to Peter Dimov for providing the patch PR#25) CI hardening. TypeTraits: Added is_bounded_array and is_unbounded_array (Glen Fernandes). Added copy_reference and copy_cv_ref (Glen Fernandes). /clr option. Misc compiler compatibility fixes. Variant: Many cleanups and internal improvements, many thanks to Nikita Kniazev (PR#55, PR#56, PR#57) and Louis Dionne (PR#51) CI hardening. uBlas: Addition of tensorassoy PR#65) Addition of basic OpenCL support (many thanks to Fady Essam PR#59) Integration of basic benchmark suite (many thanks to Stefan Seefeld PR#57) CI integration and hardening Compilers Tested Boost's primary test compileang: 3.0, 4.0.1, 6.0.1 Clang, C++0x: 3.0 Clang, C++11: 3.0, 3.1, 3.2, 3.3, 3.4, 4.0.1, 6.0.1, 7.0.0, 8.0.0 Clang, C++14: 3.5.0, 3.6.0, 3.7.1, 3.8.0, 3.9.1, 4.0.0, 4.0.1, 5.0.2, 6.0.1, 7.0.0, 8.0.0 Clang, C++17: 5.0.2, 6.0.17, 4.5.3, 4.6.3, 5.4.0, 8.0.1 GCC, C++0x: 4.4.7 GCC, C++11: 4.7.3, 4.8.5, 4.9.4, 5.4.0, 6.4.0, 7.1.0, 8.0.1 GCC, C++14: 5.4.0, 5.5.0, 6.4.0, 7.1.0, 7.3.0, 8.0.1 GCC, C++17: 7.3.0, 8.0.1 Intel, C++14: 18.0 OS X: , 9.1.0, 10.0.0 Apple Clang, C++11: 9.0.0, 9.1.0, 10.0.0 Apple Clang, C++14: 9.0.0, 9.1.0, 10.0.0 Apple Clang, C++17: 9.1.0, 10.0.0 Apple Clang, C++1z: 9.0.0 Apple Clang, C++2a: 10.0.0 Windows: GCC: 3.4.4.0, 4.5.4 GCC, C++0x: 4.6.4 GCC, C++11: 4.7.3, 4.8.1, 4.9.3 GCC, C++14: 5.1.0, 5.2.0, 5.3.0, 6.1.0, 6.2.0, 6.3.0, 6.4.0 GCC, C++17: 7.1.0, 7.2.0, 7.3.0 Visual C++: 7.1, 8.0, 9.0, 10.0, 11.0, 12.0, 14.0, 14.1 Fr Clang, C++11: 4.0.0 Clang, C++14: 4.0.0 Clang, C++1z: 4.0.0 Boost's additional test compilers include: Linux: Clang: 3.0, 3.8.1, 3.9.1, 4.0.1, 5.0.2, 6.0.1 Clang, C++0x: 3.0 Clang, C++11: 3.0, 3.1, 3..0.0, 8.0.0 Clang, C++14: 3.5.0, 3.6.0, 3.7.1, 3.8.0, 3.9.1, 4.0.0, 4.0.1, 5.0.2, 6.0.1, 7.0.0, 8.0.0 Clang, C++17: 5.0.2, 6.0.1, 7.0.0, 8.0.0 GCC: 4.4.7, 4.5.3, 4.6.3, 4.9.4, 5.4.0, 5.5.0, 8.0.1 GCC, C++0x: 4.4.7 G9.4, 5.4.0, 6.4.0, 7.1.0, 8.0.1 GCC, C++14: 5.4.0, 5.5.0, 6.3.0, 6.4.0, 7.1.0, 7.3.0, 8.0.1, 8.1.0 GCC, C++17: 7.3.0, 8.0.1 Intel, C++14: 18.0 OS X: Apple Clang: 9.0.0, 9.1.0, 10.0.0 Apple Clang, C++11: 9.0.0, 9ang, C++14: 9.0.0, 9.1.0, 10.0.0 Apple Clang, C++17: 9.1.0, 10.0.0 Apple Clang, C++1z: 9.0.0 Apple Clang, C++2a: 10.0.0 Windows: GCC: 3.4.5, 4.1.2, 4.2.4, 4.3.3, 4.4.0, 4.5.4 GCC, C++0x: 4.6.4 GCC, C++11 GCC, C++14: 5.1.0, 5.2.0, 5.3.0, 6.1.0, 6.2.0, 6.3.0, 6.4.0 GCC, C++17: 7.1.0, 7.2.0, 7.3.0 Visual C++: 7.1, 8.0, 9.0, 10.0, 11.0, 12.0, 14.0, 14.1 FreeBSD: Clang: 4.0.0 Clang, C++11: 4.0.0 Clang, C++14: 4.0.0
libcec (4.0.4.1~#DIST#) #DIST#; urgency=medium * fixed: only prevent TV polls when a Samsung TV is detected instead of suppressing all logical addresses. issue #424 #444 -- Pulse-Eight Packaging <[email protected]> Fri, 21 Dec 2018 22:34:14 +0100 libcec (4.0.3.1~#DIST#) #DIST#; urgency=medium * fixed: * detect debian based distros properly when installing python. closes #314 * don't filter out broadcast in HandleDeviceVendorCommandWithId(). issue #309 * send an active source message when a routing change has been received with libCEC's address as new route and no active source message has been sent yet. issue #309 #205 #233 * vs2015 c++ redistributables * fix missing tinfo linking in cec-client. #341 * set wrong variable. #343 #352 * LG - don't activate the source when receiving vendor command 0xB. #344 * LG TV always changing input when turned on #307 * Fix menu language string. #360 * correct python lib path for python 2.7+/3+. #356 * Fix build if tinfo library is not present. #398 * disable autonomous mode when a Samsung TV is connected. Samsung 2017+ TVs will power on randomly (Samsung bug). don't poll the TV. #424 * CRPiCECAdapterMessageQueue::Write() accessed the queue without locking. #423 * use sig_atomic_t for shared object between sig handler and main. #425 * python 3.5+ import. #356 * TDA995x: Fix logical address readback. #303 * TDA995x: Handle physical address change, optimize logical address setup. #303 * Pulse-Eight USB CEC adapter detection on macOS Mojave. #434 * Fix broken Python version check and failure to build on cmake < 3.7. #409 * 13 char device name got truncated * changed: * log a warning when we detect that RPi's CEC service is used by something else, blocking libCEC. issue #191 * const IAdapterCommunication::GetLogicalAddresses(), making the mutex mutable for now without changing the platform lib. closes #259 * Add a Reinitialze action. Useful for after the device has been powered down. #299 * Panasonic media control info to the readme * detect WIN64 in cmake automatically. #322 * README.developers.md. #330 * instructions for hdmi_force_hotplug=1 on the pi * eventghost plugin install/create. #375 * Include C version of libCEC loader when installing. #397 * Explicitly use python3 in pyCecClient. #433 * build with vs 2015 -- Pulse-Eight Packaging <[email protected]> Thu, 8 Nov 2018 18:05:36 +0100 libcec (4.0.2.1~#DIST#) #DIST#; urgency=medium * fixed: * windows: device detection. credits: @Portisch * don't automatically assume that an AVR is active in some situations * don't take Panasonic's vendor id when emulating an AVR * drm EDID parser not compiled in. credits @gdachs * python: have Swig generate Python threading support * python: only pass unsigned * python: allow empty callback parameters * python: install demo app as executable * python: correct install path. credits @Lo0k @mkreisl. #284 #288 #289 #291 * python: possible crash when passing an invalid callback -- Pulse-Eight Packaging <[email protected]> Mon, 23 Jan 2017 16:28:00 +0100 libcec (4.0.1.1~#DIST#) #DIST#; urgency=medium * fixed: * TransmitVolumeDown to use CEC_USER_CONTROL_CODE_VOLUME_DOWN. credits: @michaelarnauts * HAVE_AOCEC_API missing in if in AdapterFactory. credits: @gdachs * env.h had 'ON' instead of '1' for some values -- Pulse-Eight Packaging <[email protected]> Tue, 3 Jan 2017 19:12:00 +0100 libcec (4.0.0.3~#DIST#) #DIST#; urgency=medium * fixed: * headers weren't installed after package name changes -- Pulse-Eight Packaging <[email protected]> Tue, 14 Nov 2016 10:15:00 +0100 libcec (4.0.0.2~#DIST#) #DIST#; urgency=medium * changed: * updated readme files * renamed 'libcec-dev' to 'libcec4-dev' * fixed: * removed debian Replaces/Provides/Conflicts * crash in drm edid code. credits: @zivillian * compilation with -DHAVE_AOCEC_API=1 -- Pulse-Eight Packaging <[email protected]> Tue, 7 Nov 2016 22:43:00 +0100 libcec (4.0.0.1~#DIST#) #DIST#; urgency=medium * API cleaned up for v4 * changed: * signature for GetDeviceMenuLanguage() changed * signature for GetDeviceOSDName() changed * signature for libcec_get_device_menu_language() changed * signature for get_device_osd_name() changed * cec_datapacket size reduced to 16 bytes * callbacks changed to pass pointers instead of copies * obsolete entries removed from libcec_configuration * removed deprecated FindAdapters() and MuteAudio() * send volume change commands to the TV if no audio system is present. Only some TVs support this. closes #223 * added: * bAutoWakeAVR entry in libcec_configuration, which controls whether to automatically power on the avr or not when the source is activated. issue #156 * iDoubleTapTimeoutMs replacing iDoubleTapTimeout50Ms. time is now in milliseconds * new AO CEC adapter. credits: @gdachs * fixed: * compilation with full debugging enabled * handling of LG vendor command 0x0B. Issue #256. Credits @Vollstrecker * return value wasn't checked correctly in CLibCEC::RegisterClient() * Raspberry Pi fixes for issues #252 and #191 -- Pulse-Eight Packaging <[email protected]> Tue, 26 Oct 2016 18:08:00 +0100 libcec (3.2.0.1~#DIST#) #DIST#; urgency=medium * Slit up repositories for libCEC and .Net utilities. -- Pulse-Eight Packaging <[email protected]> Wed, 19 Oct 2016 16:57:00 +0100 libcec (3.1.0.1~#DIST#) #DIST#; urgency=medium * changed / added: * bump platform lib (windows) * use a template that can be used by scripts for the changelog * make released key polling wait for exact time until key gets released. credits @popcornmix * keep track of time since initial button press and last button update credits @popcornmix * support repeating button presses with configurable repeat rate. credits @popcornmix * pass through duration on all button repeats. credits @popcornmix * updated README.md * moved the buffer in CDRMEdidParser::GetPhysicalAddress() from the stack to heap * added #include to make the IDE happy. not actually used when compiling * clean up device detection code a bit and replace winapi calls with CM_* calls. issue #130 * replaced lockdev by flock. closes #141 * use a single number as major SO version like others. credits @rbalint * Sharp uses vendor id 0x534850 too. issue #36 * use p8-platform instead of platform * detect dirty trees * support for vs2015 to build scripts * update build scripts for vs2015 and win10uni * fixed: * missing version.h when installing on windows * skip double press removal. It is handled through other means. credits @popcornmix * don't generate an invalid env.h when not built with the .git dir present. closes #112 * fix multi-arch libdir locations. credits @wsnipex * fix for holding buttons on remotes of Philips TVs. credits @mrgreywater * initialisation issue found on Raspberry Pi with Buildroot. credits @elouet * crash on systems without /sys/class/drm. credits @rbalint * segfault when an empty EDID blob is passed to GetPhysicalAddressFromEDID() * combo key (stop by default) in the EventGhost plugin. fixes #128 * silence compiler warnings * git-rev.sh script * clean/fix platform detection * display a nice error message if LibCecSharp failed to load * limit the log in cectray to 100k * open cec-tray minimised if configured. don't open and minimise. issue #158 * cosmetics: persist -> save * query commands in eventghost. fixes #160 * eventghost demo config * don't call PowerOnDevices() if no devices to wake have been configured. issue #97 * Don't skip checking for Rasperry Pi library (Fixes #166). credits @kingosticks * TDA99x check * disable DRM for FreeBSD -- Pulse-Eight Packaging <[email protected]> Wed, 20 Jan 2016 00:37:32 +0100 libcec (3.0.1-1~#DIST#) #DIST#; urgency=low * changed / added: * autodetect physical ID from DRM. credits @PoppyPop * cmake command line options for raspberry pi distributions that don't use standard system paths for libs for some reason * convenience methods for compilation on the raspberry pi with non-standard system directories and cross compilation * explanation in README.md for Exynos and TDA995x * don't treat failed acks from the tv as error when sending an active source message * compilation info when building libCEC * build shared libraries by default * cec-client: 'tx' command parsing * fixed: * return code of CCECClient callbacks after async changed. credits: @mk01 * polling addresses on RPi. credits: @mk01 * interruptable Sleep() in RPiCECAdapterMessageQueue * Exynos support. credits: @YamashitaRen * XCASE got removed from posix termios in some recent version * don't return an abort code if sending a response code fails -- Pulse-Eight Packaging <[email protected]> Fri, 03 Jul 2015 15:19:00 +0200 libcec (3.0.0-2) unstable; urgency=low * fixed: * build fixes on non-linux -- Pulse-Eight Packaging <[email protected]> Fri, 01 May 2015 01:41:00 +0200 libcec (3.0.0-1) unstable; urgency=low * changed / added: * initial version of an EventGhost plugin * Python API added through Swig, based on the C++ API * switched from autotools to cmake * added curses support. credits @joao29a * added cecc-client (testclient for the C api) * added runtime libCEC loading for C * updated the C interface to include new features and no longer use a global library instance * some AVRs fail to be powered up by the TV when it powers up. power up the AVR explicitly * added support for CEC_DEVICE_TYPE_TV (useful for testing) * compile with c++11 * removed CStdString * drop 'using namespace std' * autogenerated version numbers, drop some backwards compat code * LibCecSharp: added PhysicalAddressToString() * CecSharpClient: better formatting of the scan command * fixed: * Debian packaging cleaned up. Credits @PimentNoir * fixed Raspberry Pi compilation. Credits @NHellFire * ignore vendor command with id from pioneer AVRs. bugzid: 3853 * update the vendor id of a device when receiving a vendor command with id before receiving a vendor id * XBMC->Kodi rebranding * don't delete m_client when m_cec hasn't been deleted yet in CLibCEC::~CLibCEC(). issue #63 * change device types in CCECProcessor::Process(), not directly. issue #63 * use shared_ptr<CPVRClient> instead of passing raw pointers around that can be unregistered from another thread and crash * check if the port or device actually changed in CCECClient::SetHDMIPort() * potential buffer overflow * fixed setting the physical address at startup when using default settings * don't call callbacks directly in libCEC, but queue them and process from a worker thread * libCEC Tray: crash when retrying to find adapters * libCEC Tray: don't show the "no device found" warning when resuming from standby * libCEC Tray: reconnect to the adapter after resuming from standby * libCEC Tray: send key presses to the active window when none of the predefined (wmc/kodi) ones are active * libCEC Tray: fixed key combinations with the windows key -- Pulse-Eight Packaging <[email protected]> Fri, 03 Apr 2015 21:13:00 +0200
Update pear to 1.10.10 contains two pear pacakge updates: o PEAR 1.10.10 o Console_Getopt 1.4.3 PEAR 1.10.10 (2019-11-19) Changelog: * PR #89: Fix scripts/* include paths * PR #90: Non-interactive configureoption answers * PR #91: Added missing preg quote * PR #92: handle "lib64" case for glibc detection * PR #93: Fix PHP Notice: Trying to access array offset on value of type bool with 7.4 * PR #94: Updated logic in useLocalCache to reuse getCacheId * PR #95: Fix manpage warning * PR #96: Implement the SOURCE_DATE_EPOCH specification * PR #97: Fix PHP 7.4 deprecation: array/string curly braces access * PR #98: Fix use of null/false as array * PR #99: Fix Travis builds on PHP 5.4 and 5.5 * PR #100: Honor PHP temp directory config * PR #101: Fix documentation: the `--force` is required Console_Getopt 1.4.3 (2019-11-20) Changelog: * PR #4: Fix PHP 7.4 deprecation: array/string curly braces access * PR #5: fix phplint warnings
Pkgsrc changes: * Remove now integrated patch. Upstream changes: This release contains a number of security related fixes, contributed by X41 D-Sec. They have conducted a security audit of Unbound, funded by OSTIF. The previous CVEs fixed in 1.9.4 and 1.9.5 were the most important ones, less important fixes and side findings for more robust code have been included in this release, alongside a normal number of bug fixes. The sort order for included config snippets is now ascending by name, it previously was reversed due to an oversight. Most config snippets do not depend on the order as they add a stub or forward zone or some server: section config entries. Features: - The unbound.conf includes are sorted ascending, for include statements with a '*' from glob. - drop-tld.diff in contrib/ : adds option drop-tld: yesno that drops 2 label queries, to stop random floods. Apply with patch -p1 < contrib/drop-tld.diff and compile. From Saksham Manchanda (Secure64). Please note that we think this will drop DNSKEY and DS lookups for tlds and hence break DNSSEC lookups for downstream clients. - Add new configure option `--enable-fully-static` to enable full static build if requested; in relation to #91. - Add make distclean that removes everything configure produced, and make maintainer-clean that removes bison and flex output. - unbound-fuzzers.tar.bz2 in contrib/ : three programs for fuzzing, that are 1:1 replacements for unbound-fuzzme.c that gets created after applying the contrib/unbound-fuzzme.patch. They are contributed by Eric Sesterhenn from X41 D-Sec. Bug Fixes: - Fix that pkg-config is setup before --enable-systemd needs it. - Fix contrib/fastrpz.patch asprintf return value checks. - ipset module #28: log that an address is added, when verbosity high. - ipset: refactor long routine into three smaller ones. - updated Makefile dependencies. - squelch DNS over TLS errors 'ssl handshake failed crypto error' on low verbosity, they show on verbosity 3 (query details), because there is a high volume and the operator cannot do anything for the remote failure. Specifically filters the high volume errors. - Fix #71: fix openssl error squelch commit compilation error. - Fix #72: configure --with-syslog-facility=LOCAL0-7 with default LOG_DAEMON (as before) can set the syslog facility that the server uses to log messages. - Use explicit bzero for wiping clear buffer of hash in cachedb, reported by Eric Sesterhenn from X41 D-Sec. - Fix #78: Memory leak in outside_network.c. - Merge pull request #76 from Maryse47: Improvements and fixes for systemd unbound.service. - oss-fuzz badge on README.md. - Fix fix for #78 to also free service callback struct. - Fix for oss-fuzz build warning. - Fix wrong response ttl for prepended short CNAME ttls, this would create a wrong zero_ttl response count with serve-expired enabled. - Merge #80 from stasic: Improve wording in man page. - Merge #82 from hardfalcon: Downgrade CAP_NET_ADMIN to CAP_NET_RAW in unbound.service. - Merge #81 from Maryse47: Consistently use /dev/urandom instead of /dev/random in scripts and docs. - Merge #83 from Maryse47: contrib/unbound.service.in: do not fork into the background. - Merge #85 for #84 from sam-lunt: Add kill capability to systemd service file to fix that systemctl reload fails. - Merge #87 from hardfalcon: Fix contrib/unbound.service.in, Drop CAP_KILL, use + prefix for ExecReload= instead. - Merge #90 from vcunat: fix build with nettle-3.5. - Fix for CVE-2019-16866. That fix is also in 1.9.4. - Merge #86 from psquarejho: Added -b source address option to smallapp/unbound-anchor.c, from Lukas Wunner. - Add doxygen comments to unbound-anchor source address code, in #86. - Merge #97: manpage: Add missing word on unbound.conf, from Erethon. - Fix #99: Memory leak in ub_ctx (event_base will never be freed). - Fix #109: check number of arguments for stdin-pipes in unbound-control and fail if too many arguments. - Merge #102 from jrtc27: Add getentropy emulation for FreeBSD. - iana portlist updated. - contrib/fastrpz.patch updated to apply for current code. - fixes for splint cleanliness, long vs int in SSL set_mode. - In unbound-host use separate variable for get_option to please code checkers. - update to bison output of 3.4.1 in code repository. - Provide a prototype for compat malloc to remove compile warning. - Portable grep usage for reuseport configure test. - Check return type of HMAC_Init_ex for openssl 0.9.8. - gitignore .source tempfile used for compatible make. - Fix for CVE-2019-18934, shell execution in ipsecmod. This fix is also in 1.9.5. - Fix authzone printout buffer length check. - Fixes to please lint checks. - Fix Integer Overflow in Regional Allocator, reported by X41 D-Sec. - Fix Unchecked NULL Pointer in dns64_inform_super() and ipsecmod_new(), reported by X41 D-Sec. - Fix Out-of-bounds Read in rr_comment_dnskey(), reported by X41 D-Sec. - Fix Integer Overflows in Size Calculations, reported by X41 D-Sec. - Fix Integer Overflow to Buffer Overflow in sldns_str2wire_dname_buf_origin(), reported by X41 D-Sec. - Fix Out of Bounds Read in sldns_str2wire_dname(), reported by X41 D-Sec. - Fix Out of Bounds Write in sldns_bget_token_par(), reported by X41 D-Sec. - Fix Out of Bounds Read in rrinternal_get_owner(), reported by X41 D-Sec. - Fix Race Condition in autr_tp_create(), reported by X41 D-Sec. - Fix Shared Memory World Writeable, reported by X41 D-Sec. - Adjust unbound-control to make stats_shm a read only operation. - Fix Weak Entropy Used For Nettle, reported by X41 D-Sec. - Fix Randomness Error not Handled Properly, reported by X41 D-Sec. - Fix Out-of-Bounds Read in dname_valid(), reported by X41 D-Sec. - Fix Config Injection in create_unbound_ad_servers.sh, reported by X41 D-Sec. - Fix Local Memory Leak in cachedb_init(), reported by X41 D-Sec. - Fix Integer Underflow in Regional Allocator, reported by X41 D-Sec. - Upgrade compat/getentropy_linux.c to version 1.46 from OpenBSD. - Synchronize compat/getentropy_win.c with version 1.5 from OpenBSD, no changes but makes the file, comments, identical. - Upgrade compat/getentropy_solaris.c to version 1.13 from OpenBSD. - Upgrade compat/getentropy_osx.c to version 1.12 from OpenBSD. - Changes to compat/getentropy files for, no link to openssl if using nettle, and hence config.h for HAVE_NETTLE variable. compat definition of MAP_ANON, for older systems. ifdef stdint.h inclusion for older systems. ifdef sha2.h inclusion for older systems. - Fixed Compat Code Diverging from Upstream, reported by X41 D-Sec. - Fix compile with --enable-alloc-checks, reported by X41 D-Sec. - Fix Terminating Quotes not Written, reported by X41 D-Sec. - Fix Useless memset() in validator, reported by X41 D-Sec. - Fix Unrequired Checks, reported by X41 D-Sec. - Fix Enum Name not Used, reported by X41 D-Sec. - Fix NULL Pointer Dereference via Control Port, reported by X41 D-Sec. - Fix Bad Randomness in Seed, reported by X41 D-Sec. - Fix python examples/calc.py for eval, reported by X41 D-Sec. - Fix comments for doxygen in dns64. - Fix dname loop maximum, reported by Eric Sesterhenn from X41 D-Sec. - Fix compiler warnings. - Merge pull request #122 from he32: In tcp_callback_writer(), don't disable time-out when changing to read. - Merge pull request #124 from rmetrich: Changed log lock from 'quick' to 'basic' because this is an I/O lock. - Fix text around serial arithmatic used for RRSIG times to refer to correct RFC number. - Fix Assert Causing DoS in synth_cname(), reported by X41 D-Sec. - Fix similar code in auth_zone synth cname to add the extra checks. - Fix Assert Causing DoS in dname_pkt_copy(), reported by X41 D-Sec. - Fix OOB Read in sldns_wire2str_dname_scan(), reported by X41 D-Sec. - Fix Out of Bounds Write in sldns_str2wire_str_buf(), reported by X41 D-Sec. - Fix Out of Bounds Write in sldns_b64_pton(), fixed by check in sldns_str2wire_int16_data_buf(), reported by X41 D-Sec. - Fix Insufficient Handling of Compressed Names in dname_pkt_copy(), reported by X41 D-Sec. - Fix Out of Bound Write Compressed Names in rdata_copy(), reported by X41 D-Sec. - Fix Hang in sldns_wire2str_pkt_scan(), reported by X41 D-Sec. This further lowers the max to 256. - Fix snprintf() supports the n-specifier, reported by X41 D-Sec. - Fix Bad Indentation, in dnscrypt.c, reported by X41 D-Sec. - Fix Client NONCE Generation used for Server NONCE, reported by X41 D-Sec. - Fix compile error in dnscrypt. - Fix _vfixed not Used, removed from sbuffer code, reported by X41 D-Sec. - Fix Hardcoded Constant, reported by X41 D-Sec. - make depend - Fix lock type for memory purify log lock deletion. - Fix testbound for alloccheck runs, memory purify and lock checks. - update contrib/fastrpz.patch to apply more cleanly. - Fix Make Test Fails when Configured With --enable-alloc-nonregional, reported by X41 D-Sec. - Fix ipsecmod compile - Fix Makefile.in for ipset module compile, from Adi Prasaja.
2.26.2 - December 9, 2019 ========================= - Fix handshake_context crashes (#97)
2.64.0 - March 6, 2020 ====================== - Fix OpenSSL backend on RHEL 6 (!116) 2.63.92 - February 27, 2020 =========================== - Revert fix for #127, which broke libsoup (#129) 2.63.91 - February 14, 2020 =========================== - Fix peer-certificate properties changing too soon (#127) - GnuTLS backend: reduce session resumption cache lifetime (!113) - GnuTLS backend: restore TLS 1.2 support for copy session state (!114) 2.63.90 - February 1, 2020 ========================== - Remove PKCS#11 support, deferred until next cycle (#104) - Remove OpenSSL backend's OCSP support (#124) 2.63.3 - January 3, 2019 ======================== - Fix OpenSSL backend regressions and reenable OpenSSL testsuite (#54) - Temporarily disable cancellation of sync handshakes (#97) - Disable flaky test (#104) and resolve testsuite flakiness (#105) - Fix leak of base iostream (or base datagram socket), 2.62 regression - Fix duplicate notifies of peer-certificate and peer-certificate-errors - Fix regression where GnuTLS connection init could theoretically fail without error - Fix obscure corner case where SNI might not work - Fix various build warnings on Windows - Fix multiple build failures on Windows (Chun-wei Fan) - Fix installed tests (Iain Lane) 2.63.2 - November 22, 2019 ========================== - Fix crash when handshake context is reset too late (#97) - Require GnuTLS 3.6.5 (#100) - Build mock PKCS #11 module only for GnuTLS backend (#101) - Rework session resumption support for TLS 1.3 (!69) - Run GnuTLS tests under TLS 1.2 in addition to TLS 1.3 (!69) - Support OpenSSL 1.0.1 (!81) - Drop rehandshake mode and protocol version fallback support (!83) - Add logging functions (!89, MARTINSONS Frederic) - Fix PKCS #11 tests with TLS 1.2 (!91, Patrick Griffis) - Add more debug logging for PKCS #11 (!92, Patrick Griffis) - Fix leak in GTlsCertificateGnutls finalizer (!93, Patrick Griffis) 2.63.1 - October 11, 2019 ========================= - Add support for new PKCS#11 APIs to facilitate use with smartcards (Patrick Griffis) - Disable TLS 1.0 and TLS 1.1 when using GnuTLS - Fix threadsafety issue (#95)
Update ruby-net-http-persistent to 3.1.0. === 3.1.0 2019-07-24 New features: * Support ruby 2.6 Net::HTTP#write_timeout=. Pull request #99 by Víctor Roldán Betancort. * Support setting TLS min/max version. Pull request #94 by Bart. Bug fixes: * Reduce potential for memory leak through Hash default proc bindings. Pull request #64 by Dominic Metzger. * Test proxy auto detection from no_proxy in ENV. Pull request #60 by HINOHARA Hiroshi. * Add missing timestamp for 3.0 release. Pull request #78 by Joe Van Dyk. * Support IPv6 URLs in proxy checks. Pull request #82 by Nicolás Sanguinetti. * Use Net::HTTPGenericRequest#method to check idempotence for improved compatibility. Pull request #83 by Fotos Georgiadis. * Run net-http-pipeline tests in travis. Pull request #86 by T.J. Schuck. * Correct +no_proxy+ support to override Net::HTTP proxy fallback. Pull request #88 by Jared Kauppila. * Mitigate memory leak when combined with faraday. Pull request #105 by Yohei Kitamura. * Set default connection pool size for Windows. Pull request #90 by Jared Kauppila. * Fix missing +name:+ argument in documentation. Pull requests #85 by T.J. Schuck, #84 by James White. * Fix memory leak from connection pooling. Pull request #97 by Aaron Patterson. * Update tests for minitest assert_equal deprecation. Pull request #92 by Olle Jonsson. * Fix typo in Net::HTTP::Persistent#pipeline. Pull request #91 by Kazuma Furuhashi. Other: * Added bundler hoe plugin. Pull request #103 by Michael Grosser. * Updated ruby versions in Travis CI. Pull request #93 by Olle Jonsson. Pull request #103 by Michael Grosser.
Changelog: 7 July 2020: Wouter - Tag for 4.3.2rc1. 6 July 2020: Wouter - Fix compile includes for xfr-inspect tool on FreeBSD. - Add tpkg/run_vm.sh that runs test when in a virtual machine. - Merge #112 from jaredmauch: log old and new serials when NSD rejects an IXFR due to an old serial number. - Fix bug034 test for vm test changes. 22 June 2020: Wouter - Remove errno reset behaviour from sendmmsg and recvmmsg replacement functions. - Fix unit test for different nsd-control-setup -h exit code. 19 June 2020: Wouter - Merge #108 from Nomis: Make the max-retry-time description clearer. - Retry when udp send buffer is full to wait until buffer space is available. 18 June 2020: Wouter - Do not log EAGAIN errors for sendmmsg, to stop log spam on OpenBSD. 17 June 2020: Wouter - Fix #107: nsd -v shows configure line, openssl version and libevent version. 27 May 2020: Wouter - Fix unlink of pidfile warning if not possible due to permissions, nsd can display the message at high verbosity levels. - Update contrib/nsd.service for chown of nsd.log and /var/log in ReadWritePaths. - Removed contrib/nsd.service, example is too complicated and not useful. 15 May 2020: Wouter - Merge PR#102 from and0x000: add missing default in documentation for drop-updates. - Fix checkconf test for log-only-syslog option. 14 May 2020: Wouter - Document default value for tcp-timeout. 13 May 2020: Jeroen - Fix #99: Fix copying of socket properties with reuseport enabled. 24 April 2020: Wouter - Fix #97: EDNS unknown version: query not in response. 21 April 2020: Wouter - Fix #96: log-only-syslog: yes sets to only use syslog, fixes that the default configuration and systemd results in duplicate log messages. 20 April 2020: Wouter - Fix #95: Removed make test check because tpkg not included in release tarballs. - Fix unused parameter compile warnings.
Pkgsrc changes: * Added a patch to cope with fromStatT on NetBSD * Added a patch to cope with docker client default settings (build also on NetBSD) Upstream changes: 1.5.3 (August 27th, 2020) NOTE: All security content from 1.5.2, 1.5.1, 1.4.5, 1.4.4, 1.3.9, 1.3.8, 1.2.6, and 1.2.5 has been made fully open source, and the git tags for 1.5.3, 1.4.6, 1.3.10, and 1.2.7 will build correctly for open source users. BUG FIXES: * auth/aws: Made header handling for IAM authentication more robust * secrets/ssh: Fixed a bug with role option for SSH signing algorithm to allow more than RSA signing ## 1.5.1 CHANGES: * pki: The tidy operation will now remove revoked certificates if the parameter `tidy_revoked_certs` is set to `true`. This will result in certificate entries being immediately removed, as opposed to awaiting until its NotAfter time. Note that this only affects certificates that have been already revoked. [[GH-9609](https://github.com/hashicorp/vault/pull/9609)] IMPROVEMENTS: * auth/jwt: Add support for fetching groups and user information from G Suite during authentication. [[GH-9574](https://github.com/hashicorp/vault/pull/9574)] * secrets/openldap: Add "ad" schema that allows the engine to correctly rotate AD passwords. [[GH-9740](https://github.com/hashicorp/vault/pull/9740)] * ui: Wrap TTL option on transit engine export action is updated to a new component. [[GH-9632](https://github.com/hashicorp/vault/pull/9632)] BUG FIXES: * secrets/gcp: Ensure that the IAM policy version is appropriately set after a roleset's bindings have changed. [[GH-9603](https://github.com/hashicorp/vault/pull/9603)] * replication (enterprise): Fix status API output incorrectly stating replication is in `idle` state. * core: Fix panic when printing over-long info fields at startup [[GH-9681](https://github.com/hashicorp/vault/pull/9681)] ## 1.5.0 ### July 21st, 2020 CHANGES: * storage/raft: The storage configuration now accepts a new `max_entry_size` config that will limit the total size in bytes of any entry committed via raft. It defaults to `"1048576"` (1MiB). [[GH-9027](https://github.com/hashicorp/vault/pull/9027)] * token: Token creation with custom token ID via `id` will no longer allow periods (`.`) as part of the input string. The final generated token value may contain periods, such as the `s.` prefix for service token indication. [[GH-8646](https://github.com/hashicorp/vault/pull/8646/files)] * token: Token renewals will now return token policies within the `token_policies` , identity policies within `identity_policies`, and the full policy set within `policies`. [[GH-8535](https://github.com/hashicorp/vault/pull/8535)] * cubbyhole: Reject reads and writes to an empty ("") path. [[GH-8971](https://github.com/hashicorp/vault/pull/8971)] * core: Remove the addition of newlines to parsed configuration when using integer/boolean values [[GH-8928](https://github.com/hashicorp/vault/pull/8928)] * audit: Token TTL and issue time are now provided in the auth portion of audit logs. [[GH-9091](https://github.com/hashicorp/vault/pull/9091)] IMPROVEMENTS: * audit: Replication status requests are no longer audited. [[GH-8877](https://github.com/hashicorp/vault/pull/8877)] * audit: Added mount_type field to requests and responses. [[GH-9167](https://github.com/hashicorp/vault/pull/9167)] * auth/aws: Add support for Web Identity credentials [[GH-7738](https://github.com/hashicorp/vault/pull/7738)] * auth/jwt: Support users that are members of more than 200 groups on Azure [[GH-120](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/120)] * auth/kubernetes: Allow disabling `iss` validation [[GH-91](https://github.com/hashicorp/vault-plugin-auth-kubernetes/pull/91)] * core: Add the Go version used to build a Vault binary to the server message output. [[GH-9078](https://github.com/hashicorp/vault/pull/9078)] * core: Added Password Policies for user-configurable password generation [[GH-8637](https://github.com/hashicorp/vault/pull/8637)] * core: New telemetry metrics covering token counts, token creation, KV secret counts, lease creation. [[GH-9239](https://github.com/hashicorp/vault/pull/9239)] [[GH-9250](https://github.com/hashicorp/vault/pull/9250)] [[GH-9244](https://github.com/hashicorp/vault/pull/9244)] [[GH-9052](https://github.com/hashicorp/vault/pull/9052)] * cli: Support reading TLS parameters from file for the `vault operator raft join` command. [[GH-9060](https://github.com/hashicorp/vault/pull/9060)] * plugin: Add SDK method, `Sys.ReloadPlugin`, and CLI command, `vault plugin reload`, for reloading plugins. [[GH-8777](https://github.com/hashicorp/vault/pull/8777)] * plugin (enterprise): Add a scope field to plugin reload, which when global, reloads the plugin anywhere in a cluster. [[GH-9347](https://github.com/hashicorp/vault/pull/9347)] * sdk/framework: Support accepting TypeFloat parameters over the API [[GH-8923](https://github.com/hashicorp/vault/pull/8923)] * secrets/aws: Add iam_groups parameter to role create/update [[GH-8811](https://github.com/hashicorp/vault/pull/8811)] * secrets/database: Add static role rotation for MongoDB Atlas database plugin [[GH-11](https://github.com/hashicorp/vault-plugin-database-mongodbatlas/pull/11)] * secrets/database: Add static role rotation for MSSQL database plugin [[GH-9062](https://github.com/hashicorp/vault/pull/9062)] * secrets/database: Allow InfluxDB to use insecure TLS without cert bundle [[GH-8778](https://github.com/hashicorp/vault/pull/8778)] * secrets/gcp: Support BigQuery dataset ACLs in absence of IAM endpoints [[GH-78](https://github.com/hashicorp/vault-plugin-secrets-gcp/pull/78)] * secrets/pki: Allow 3072-bit RSA keys [[GH-8343](https://github.com/hashicorp/vault/pull/8343)] * secrets/ssh: Add a CA-mode role option to specify signing algorithm [[GH-9096](https://github.com/hashicorp/vault/pull/9096)] * secrets/transit: Transit requests that make use of keys now include a new field `key_version` in their responses [[GH-8775](https://github.com/hashicorp/vault/pull/8775)] * secrets/transit: Improving transit batch encrypt and decrypt latencies [[GH-9100](https://github.com/hashicorp/vault/pull/9100)] * sentinel: Add a sentinel config section, and "additional_enabled_modules", a list of Sentinel modules that may be imported in addition to the defaults. * ui: Update TTL picker styling on SSH secret engine [[GH-8891](https://github.com/hashicorp/vault/pull/8891)] * ui: Only render the JWT input field of the Vault login form on mounts configured for JWT auth [[GH-8952](https://github.com/hashicorp/vault/pull/8952)] * cli: Add a new subcommand, `vault monitor`, for tailing server logs in the console. [[GH-8477](https://github.com/hashicorp/vault/pull/8477)] * ui: Add replication dashboards. Improve replication management workflows. [[GH-8705]](https://github.com/hashicorp/vault/pull/8705). BUG FIXES: * agent: Restart template server when it shuts down [[GH-9200](https://github.com/hashicorp/vault/pull/9200)] * auth/oci: Fix issue where users of the Oracle Cloud Infrastructure (OCI) auth method could not authenticate when the plugin backend was mounted at a non-default path. [[GH-7](https://github.com/hashicorp/vault-plugin-auth-oci/pull/7)] * core: Extend replicated cubbyhole fix in 1.4.0 to cover case where a performance primary is also a DR primary [[GH-9148](https://github.com/hashicorp/vault/pull/9148)] * secrets/aws: Fix issue where performance standbys weren't able to generate STS credentials after an IAM access key rotation in AWS and root IAM credential update in Vault [[GH-9186](https://github.com/hashicorp/vault/pull/9186)] * secrets/database: Fix issue where rotating root database credentials while Vault's storage backend is unavailable causes Vault to lose access to the database [[GH-8782](https://github.com/hashicorp/vault/pull/8782)] * secrets/database: Fix issue that prevents performance standbys from connecting to databases after a root credential rotation [[GH-9129](https://github.com/hashicorp/vault/pull/9129)] * secrets/gcp: Fix issue were updates were not being applied to the `token_scopes` of a roleset. [[GH-90](https://github.com/hashicorp/vault-plugin-secrets-gcp/pull/90)] * secrets/kv: Return the value of delete_version_after when reading kv/config, even if it is set to the default. [[GH-42](https://github.com/hashicorp/vault-plugin-secrets-kv/pull/42)] * ui: Add Toggle component into core addon so it is available in KMIP and other Ember Engines. [[GH-8913]](https://github.com/hashicorp/vault/pull/8913) * ui: Disallow max versions value of large than 9999999999999999 on kv2 secrets engine. [[GH-9242](https://github.com/hashicorp/vault/pull/9242)] ## 1.4.3 (TBD) IMPROVEMENTS: * auth/aws: Add support for Web Identity credentials [[GH-9251](https://github.com/hashicorp/vault/pull/9251)] * core: Add the Go version used to build a Vault binary to the server message output. [[GH-9078](https://github.com/hashicorp/vault/pull/9078)] * secrets/database: Add static role rotation for MongoDB Atlas database plugin [[GH-9311](https://github.com/hashicorp/vault/pull/9311)] * ui: Link to the Vault Changelog in the UI footer [[GH-9216](https://github.com/hashicorp/vault/pull/9216)] BUG FIXES: * auth/oci: Fix issue where users of the Oracle Cloud Infrastructure (OCI) auth method could not authenticate when the plugin backend was mounted at a non-default path. [[GH-9278](https://github.com/hashicorp/vault/pull/9278)] * replication: The issue causing cubbyholes in namespaces on performance secondaries to not work, which was fixed in 1.4.0, was still an issue when the primary was both a performance primary and DR primary. * secrets/aws: Fix issue where performance standbys weren't able to generate STS credentials after an IAM access key rotation in AWS and root IAM credential update in Vault [[GH-9207](https://github.com/hashicorp/vault/pull/9207)] * secrets/database: Fix issue that prevents performance standbys from connecting to databases after a root credential rotation [[GH-9208](https://github.com/hashicorp/vault/pull/9208)] * secrets/gcp: Fix issue were updates were not being applied to the `token_scopes` of a roleset. [[GH-9277](https://github.com/hashicorp/vault/pull/9277)] ## 1.4.2 (May 21st, 2020) SECURITY: * core: Proxy environment variables are now redacted before being logged, in case the URLs include a username:password. This vulnerability, CVE-2020-13223, is fixed in 1.3.6 and 1.4.2, but affects 1.4.0 and 1.4.1, as well as older versions of Vault [[GH-9022](https://github.com/hashicorp/vault/pull/9022)] * secrets/gcp: Fix a regression in 1.4.0 where the system TTLs were being used instead of the configured backend TTLs for dynamic service accounts. This vulnerability is CVE-2020-12757. [[GH-85](https://github.com/hashicorp/vault-plugin-secrets-gcp/pull/85)] IMPROVEMENTS: * storage/raft: The storage stanza now accepts `leader_ca_cert_file`, `leader_client_cert_file`, and `leader_client_key_file` parameters to read and parse TLS certificate information from paths on disk. Existing non-path based parameters will continue to work, but their values will need to be provided as a single-line string with newlines delimited by `\n`. [[GH-8894](https://github.com/hashicorp/vault/pull/8894)] * storage/raft: The `vault status` CLI command and the `sys/leader` API now contain the committed and applied raft indexes. [[GH-9011](https://github.com/hashicorp/vault/pull/9011)] BUG FIXES: * auth/aws: Fix token renewal issues caused by the metadata changes in 1.4.1 [[GH-8991](https://github.com/hashicorp/vault/pull/8991)] * auth/ldap: Fix 1.4.0 regression that could result in auth failures when LDAP auth config includes upndomain. [[GH-9041](https://github.com/hashicorp/vault/pull/9041)] * secrets/ad: Forward rotation requests from standbys to active clusters [[GH-66](https://github.com/hashicorp/vault-plugin-secrets-ad/pull/66)] * secrets/database: Prevent generation of usernames that are not allowed by the MongoDB Atlas API [[GH-9](https://github.com/hashicorp/vault-plugin-database-mongodbatlas/pull/9)] * secrets/database: Return an error if a manual rotation of static account credentials fails [[GH-9035](https://github.com/hashicorp/vault/pull/9035)] * secrets/openldap: Forward all rotation requests from standbys to active clusters [[GH-9028](https://github.com/hashicorp/vault/pull/9028)] * secrets/transform (enterprise): Fix panic that could occur when accessing cached template entries, such as a requests that accessed templates directly or indirectly from a performance standby node. * serviceregistration: Fix a regression for Consul service registration that ignored using the listener address as the redirect address unless api_addr was provided. It now properly uses the same redirect address as the one used by Vault's Core object. [[GH-8976](https://github.com/hashicorp/vault/pull/8976)] * storage/raft: Advertise the configured cluster address to the rest of the nodes in the raft cluster. This fixes an issue where a node advertising 0.0.0.0 is not using a unique hostname. [[GH-9008](https://github.com/hashicorp/vault/pull/9008)] * storage/raft: Fix panic when multiple nodes attempt to join the cluster at once. [[GH-9008](https://github.com/hashicorp/vault/pull/9008)] * sys: The path provided in `sys/internal/ui/mounts/:path` is now namespace-aware. This fixes an issue with `vault kv` subcommands that had namespaces provided in the path returning permission denied all the time. [[GH-8962](https://github.com/hashicorp/vault/pull/8962)] * ui: Fix snowman that appears when namespaces have more than one period [[GH-8910](https://github.com/hashicorp/vault/pull/8910)] ## 1.4.1 (April 30th, 2020) CHANGES: * auth/aws: The default set of metadata fields added in 1.4.1 has been changed to `account_id` and `auth_type` [[GH-8783](https://github.com/hashicorp/vault/pull/8783)] * storage/raft: Disallow `ha_storage` to be specified if `raft` is set as the `storage` type. [[GH-8707](https://github.com/hashicorp/vault/pull/8707)] IMPROVEMENTS: * auth/aws: The set of metadata stored during login is now configurable [[GH-8783](https://github.com/hashicorp/vault/pull/8783)] * auth/aws: Improve region selection to avoid errors seen if the account hasn't enabled some newer AWS regions [[GH-8679](https://github.com/hashicorp/vault/pull/8679)] * auth/azure: Enable login from Azure VMs with user-assigned identities [[GH-33](https://github.com/hashicorp/vault-plugin-auth-azure/pull/33)] * auth/gcp: The set of metadata stored during login is now configurable [[GH-92](https://github.com/hashicorp/vault-plugin-auth-gcp/pull/92)] * auth/gcp: The type of alias name used during login is now configurable [[GH-95](https://github.com/hashicorp/vault-plugin-auth-gcp/pull/95)] * auth/ldap: Improve error messages during LDAP operation failures [[GH-8740](https://github.com/hashicorp/vault/pull/8740)] * identity: Add a batch delete API for identity entities [[GH-8785]](https://github.com/hashicorp/vault/pull/8785) * identity: Improve performance of logins when no group updates are needed [[GH-8795]](https://github.com/hashicorp/vault/pull/8795) * metrics: Add `vault.identity.num_entities` metric [[GH-8816]](https://github.com/hashicorp/vault/pull/8816) * secrets/kv: Allow `delete-version-after` to be reset to 0 via the CLI [[GH-8635](https://github.com/hashicorp/vault/pull/8635)] * secrets/rabbitmq: Improve error handling and reporting [[GH-8619](https://github.com/hashicorp/vault/pull/8619)] * ui: Provide One Time Password during Operation Token generation process [[GH-8630]](https://github.com/hashicorp/vault/pull/8630) BUG FIXES: * auth/okta: Fix MFA regression (introduced in [GH-8143](https://github.com/hashicorp/vault/pull/8143)) from 1.4.0 [[GH-8807](https://github.com/hashicorp/vault/pull/8807)] * auth/userpass: Fix upgrade value for `token_bound_cidrs` being ignored due to incorrect key provided [[GH-8826](https://github.com/hashicorp/vault/pull/8826/files)] * config/seal: Fix segfault when seal block is removed [[GH-8517](https://github.com/hashicorp/vault/pull/8517)] * core: Fix an issue where users attempting to build Vault could receive Go module checksum errors [[GH-8770](https://github.com/hashicorp/vault/pull/8770)] * core: Fix blocked requests if a SIGHUP is issued during a long-running request has the state lock held. Also fixes deadlock that can happen if `vault debug` with the config target is ran during this time. [[GH-8755](https://github.com/hashicorp/vault/pull/8755)] * core: Always rewrite the .vault-token file as part of a `vault login` to ensure permissions and ownership are set correctly [[GH-8867](https://github.com/hashicorp/vault/pull/8867)] * database/mongodb: Fix context deadline error that may result due to retry attempts on failed commands [[GH-8863](https://github.com/hashicorp/vault/pull/8863)] * http: Fix superflous call messages from the http package on logs caused by missing returns after `respondError` calls [[GH-8796](https://github.com/hashicorp/vault/pull/8796)] * namespace (enterprise): Fix namespace listing to return `key_info` when a scoping namespace is also provided. * seal/gcpkms: Fix panic that could occur if all seal parameters were provided via environment variables [[GH-8840](https://github.com/hashicorp/vault/pull/8840)] * storage/raft: Fix memory allocation and incorrect metadata tracking issues with snapshots [[GH-8793](https://github.com/hashicorp/vault/pull/8793)] * storage/raft: Fix panic that could occur if `disable_clustering` was set to true on Raft storage cluster [[GH-8784](https://github.com/hashicorp/vault/pull/8784)] * storage/raft: Handle errors returned from the API during snapshot operations [[GH-8861](https://github.com/hashicorp/vault/pull/8861)] * sys/wrapping: Allow unwrapping of wrapping tokens which contain nil data [[GH-8714](https://github.com/hashicorp/vault/pull/8714)] ## 1.4.0 (April 7th, 2020) CHANGES: * cli: The raft configuration command has been renamed to list-peers to avoid confusion. FEATURES: * **Kerberos Authentication**: Vault now supports Kerberos authentication using a SPNEGO token. Login can be performed using the Vault CLI, API, or agent. * **Kubernetes Service Discovery**: A new Kubernetes service discovery feature where, if configured, Vault will tag Vault pods with their current health status. For more, see [#8249](https://github.com/hashicorp/vault/pull/8249). * **MongoDB Atlas Secrets**: Vault can now generate dynamic credentials for both MongoDB Atlas databases as well as the [Atlas programmatic interface] (https://docs.atlas.mongodb.com/tutorial/manage-programmatic-access/). * **OpenLDAP Secrets Engine**: We now support password management of existing OpenLDAP user entries. For more, see [#8360] (https://github.com/hashicorp/vault/pull/8360/). * **Redshift Database Secrets Engine**: The database secrets engine now supports static and dynamic secrets for the Amazon Web Services (AWS) Redshift service. * **Service Registration Config**: A newly introduced `service_registration` configuration stanza, that allows for service registration to be configured separately from the storage backend. For more, see [#7887] (https://github.com/hashicorp/vault/pull/7887/). * **Transform Secrets Engine (Enterprise)**: A new secrets engine that handles secure data transformation and tokenization against provided input value. * **Integrated Storage**: Promoted out of beta and into general availability for both open-source and enterprise workloads. IMPROVEMENTS: * agent: add option to force the use of the auth-auth token, and ignore the Vault token in the request [[GH-8101](https://github.com/hashicorp/vault/pull/8101)] * api: Restore and fix DNS SRV Lookup [[GH-8520](https://github.com/hashicorp/vault/pull/8520)] * audit: HMAC http_raw_body in audit log; this ensures that large authenticated Prometheus metrics responses get replaced with short HMAC values [[GH-8130](https://github.com/hashicorp/vault/pull/8130)] * audit: Generate-root, generate-recovery-token, and generate-dr-operation-token requests and responses are now audited. [[GH-8301](https://github.com/hashicorp/vault/pull/8301)] * auth/aws: Reduce the number of simultaneous STS client credentials needed [[GH-8161](https://github.com/hashicorp/vault/pull/8161)] * auth/azure: subscription ID, resource group, vm and vmss names are now stored in alias metadata [[GH-30](https://github.com/hashicorp/vault-plugin-auth-azure/pull/30)] * auth/jwt: Additional OIDC callback parameters available for CLI logins [[GH-80](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/80) & [GH-86](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/86)] * auth/jwt: Bound claims may be optionally configured using globs [[GH-89](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/89)] * auth/jwt: Timeout during OIDC CLI login if process doesn't complete within 2 minutes [[GH-97](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/97)] * auth/jwt: Add support for the `form_post` response mode [[GH-98](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/98)] * auth/jwt: add optional client_nonce to authorization flow [[GH-104](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/104)] * auth/okta: Upgrade okta sdk lib, which should improve handling of groups [[GH-8143](https://github.com/hashicorp/vault/pull/8143)] * aws: Add support for v2 of the instance metadata service (see [issue 7924](https://github.com/hashicorp/vault/issues/7924) for all linked PRs) * core: Separate out service discovery interface from storage interface to allow new types of service discovery not coupled to storage [[GH-7887](https://github.com/hashicorp/vault/pull/7887)] * core: Add support for telemetry option `metrics_prefix` [[GH-8340](https://github.com/hashicorp/vault/pull/8340)] * core: Entropy Augmentation can now be used with AWS KMS and Vault Transit seals * core: Allow tls_min_version to be set to TLS 1.3 [[GH-8305](https://github.com/hashicorp/vault/pull/8305)] * cli: Incorrect TLS configuration will now correctly fail [[GH-8025](https://github.com/hashicorp/vault/pull/8025)] * identity: Allow specifying a custom `client_id` for identity tokens [[GH-8165](https://github.com/hashicorp/vault/pull/8165)] * metrics/prometheus: improve performance with high volume of metrics updates [[GH-8507](https://github.com/hashicorp/vault/pull/8507)] * replication (enterprise): Fix race condition causing clusters with high throughput writes to sometimes fail to enter streaming-wal mode * replication (enterprise): Secondary clusters can now perform an extra gRPC call to all nodes in a primary cluster in an attempt to resolve the active node's address * replication (enterprise): The replication status API now outputs `last_performance_wal`, `last_dr_wal`, and `connection_state` values * replication (enterprise): DR secondary clusters can now be recovered by the `replication/dr/secondary/recover` API * replication (enterprise): We now allow for an alternate means to create a Disaster Recovery token, by using a batch token that is created with an ACL that allows for access to one or more of the DR endpoints. * secrets/database/mongodb: Switched internal MongoDB driver to mongo-driver [[GH-8140](https://github.com/hashicorp/vault/pull/8140)] * secrets/database/mongodb: Add support for x509 client authorization to MongoDB [[GH-8329](https://github.com/hashicorp/vault/pull/8329)] * secrets/database/oracle: Add support for static credential rotation [[GH-26](https://github.com/hashicorp/vault-plugin-database-oracle/pull/26)] * secrets/consul: Add support to specify TLS options per Consul backend [[GH-4800](https://github.com/hashicorp/vault/pull/4800)] * secrets/gcp: Allow specifying the TTL for a service key [[GH-54](https://github.com/hashicorp/vault-plugin-secrets-gcp/pull/54)] * secrets/gcp: Add support for rotating root keys [[GH-53](https://github.com/hashicorp/vault-plugin-secrets-gcp/pull/53)] * secrets/gcp: Handle version 3 policies for Resource Manager IAM requests [[GH-77](https://github.com/hashicorp/vault-plugin-secrets-gcp/pull/77) * secrets/nomad: Add support to specify TLS options per Nomad backend [[GH-8083](https://github.com/hashicorp/vault/pull/8083)] * secrets/ssh: Allowed users can now be templated with identity information [[GH-7548](https://github.com/hashicorp/vault/pull/7548)] * secrets/transit: Adding RSA3072 key support [[GH-8151](https://github.com/hashicorp/vault/pull/8151)] * storage/consul: Vault returns now a more descriptive error message when only a client cert or a client key has been provided [[GH-4930]](https://github.com/hashicorp/vault/pull/8084) * storage/raft: Nodes in the raft cluster can all be given possible leader addresses for them to continuously try and join one of them, thus automating the process of join to a greater extent [[GH-7856](https://github.com/hashicorp/vault/pull/7856)] * storage/raft: Fix a potential deadlock that could occur on leadership transition [[GH-8547](https://github.com/hashicorp/vault/pull/8547)] * storage/raft: Refresh TLS keyring on snapshot restore [[GH-8546](https://github.com/hashicorp/vault/pull/8546)] * storage/etcd: Bumped etcd client API SDK [[GH-7931](https://github.com/hashicorp/vault/pull/7931) & [GH-4961](https://github.com/hashicorp/vault/pull/4961) & [GH-4349](https://github.com/hashicorp/vault/pull/4349) & [GH-7582](https://github.com/hashicorp/vault/pull/7582)] * ui: Make Transit Key actions more prominent [[GH-8304](https://github.com/hashicorp/vault/pull/8304)] * ui: Add Core Usage Metrics [[GH-8347](https://github.com/hashicorp/vault/pull/8347)] * ui: Add refresh Namespace list on the Namespace dropdown, and redesign of Namespace dropdown menu [[GH-8442](https://github.com/hashicorp/vault/pull/8442)] * ui: Update transit actions to codeblocks & automatically encode plaintext unless indicated [[GH-8462](https://github.com/hashicorp/vault/pull/8462)] * ui: Display the results of transit key actions in a modal window [[GH-8462](https://github.com/hashicorp/vault/pull/8575)] * ui: Transit key version styling updates & ability to copy key from dropdown [[GH-8480](https://github.com/hashicorp/vault/pull/8480)] BUG FIXES: * agent: Fix issue where TLS options are ignored for agent template feature [[GH-7889](https://github.com/hashicorp/vault/pull/7889)] * auth/jwt: Use lower case role names for `default_role` to match the `role` case convention [[GH-100](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/100)] * auth/ldap: Fix a bug where the UPNDOMAIN parameter was wrongly used to lookup the group membership of the given user [[GH-6325]](https://github.com/hashicorp/vault/pull/8333) * cli: Support autocompletion for nested mounts [[GH-8303](https://github.com/hashicorp/vault/pull/8303)] * cli: Fix CLI namespace autocompletion [[GH-8315](https://github.com/hashicorp/vault/pull/8315)] * identity: Fix incorrect caching of identity token JWKS responses [[GH-8412](https://github.com/hashicorp/vault/pull/8412)] * metrics/stackdriver: Fix issue that prevents the stackdriver metrics library to create unnecessary stackdriver descriptors [[GH-8073](https://github.com/hashicorp/vault/pull/8073)] * replication: Fix issue causing cubbyholes in namespaces on performance secondaries to not work. * replication (enterprise): Unmounting a dynamic secrets backend could sometimes lead to replication errors. Change the order of operations to prevent that. * seal (enterprise): Fix seal migration when transactional seal wrap backend is in use. * secrets/database/influxdb: Fix potential panic if connection to the InfluxDB database cannot be established [[GH-8282](https://github.com/hashicorp/vault/pull/8282)] * secrets/database/mysql: Ensures default static credential rotation statements are used [[GH-8240](https://github.com/hashicorp/vault/pull/8240)] * secrets/database/mysql: Fix inconsistent query parameter names: {{name}} or {{username}} for different queries. Now it allows for either for backwards compatibility [[GH-8240](https://github.com/hashicorp/vault/pull/8240)] * secrets/database/postgres: Fix inconsistent query parameter names: {{name}} or {{username}} for different queries. Now it allows for either for backwards compatibility [[GH-8240](https://github.com/hashicorp/vault/pull/8240)] * secrets/pki: Support FQDNs in DNS Name [[GH-8288](https://github.com/hashicorp/vault/pull/8288)] * storage/raft: Allow seal migration to be performed on Vault clusters using raft storage [[GH-8103](https://github.com/hashicorp/vault/pull/8103)] * telemetry: Prometheus requests on standby nodes will now return an error instead of forwarding the request to the active node [[GH-8280](https://github.com/hashicorp/vault/pull/8280)] * ui: Fix broken popup menu on the transit secrets list page [[GH-8348](https://github.com/hashicorp/vault/pull/8348)] * ui: Update headless Chrome flag to fix `yarn run test:oss` [[GH-8035](https://github.com/hashicorp/vault/pull/8035)] * ui: Update CLI to accept empty strings as param value to reset previously-set values * ui: Fix bug where error states don't clear when moving between action tabs on Transit [[GH-8354](https://github.com/hashicorp/vault/pull/8354)] ## 1.3.6 (May 21st, 2020) SECURITY: * core: proxy environment variables are now redacted before being logged, in case the URLs include a username:password. This vulnerability, CVE-2020-13223, is fixed in 1.3.6 and 1.4.2, but affects 1.4 and 1.4.1, as well as older versions of Vault [[GH-9022](https://github.com/hashicorp/vault/pull/9022) BUG FIXES: * auth/aws: Fix token renewal issues caused by the metadata changes in 1.3.5 [[GH-8991](https://github.com/hashicorp/vault/pull/8991)] * replication: Fix mount filter bug that allowed replication filters to hide local mounts on a performance secondary ## 1.3.5 (April 28th, 2020) CHANGES: * auth/aws: The default set of metadata fields added in 1.3.2 has been changed to `account_id` and `auth_type` [[GH-8783](https://github.com/hashicorp/vault/pull/8783)] IMPROVEMENTS: * auth/aws: The set of metadata stored during login is now configurable [[GH-8783](https://github.com/hashicorp/vault/pull/8783)] ## 1.3.4 (March 19th, 2020) SECURITY: * A vulnerability was identified in Vault and Vault Enterprise such that, under certain circumstances, an Entity's Group membership may inadvertently include Groups the Entity no longer has permissions to. This vulnerability, CVE-2020-10660, affects Vault and Vault Enterprise versions 0.9.0 and newer, and is fixed in 1.3.4. [[GH-8606](https://github.com/hashicorp/vault/pull/8606)] * A vulnerability was identified in Vault Enterprise such that, under certain circumstances, existing nested-path policies may give access to Namespaces created after-the-fact. This vulnerability, CVE-2020-10661, affects Vault Enterprise versions 0.11 and newer, and is fixed in 1.3.4. ## 1.3.3 (March 5th, 2020) BUG FIXES: * approle: Fix excessive locking during tidy, which could potentially block new approle logins for long enough to cause an outage [[GH-8418](https://github.com/hashicorp/vault/pull/8418)] * cli: Fix issue where Raft snapshots from standby nodes created an empty backup file [[GH-8097](https://github.com/hashicorp/vault/pull/8097)] * identity: Fix incorrect caching of identity token JWKS responses [[GH-8412](https://github.com/hashicorp/vault/pull/8412)] * kmip: role read now returns tls_client_ttl * kmip: fix panic when templateattr not provided in rekey request * secrets/database/influxdb: Fix potential panic if connection to the InfluxDB database cannot be established [[GH-8282](https://github.com/hashicorp/vault/pull/8282)] * storage/mysql: Fix potential crash when using MySQL as coordination for high availability [[GH-8300](https://github.com/hashicorp/vault/pull/8300)] * storage/raft: Fix potential crash when using Raft as coordination for high availability [[GH-8356](https://github.com/hashicorp/vault/pull/8356)] * ui: Fix missing License menu item [[GH-8230](https://github.com/hashicorp/vault/pull/8230)] * ui: Fix bug where default auth method on login is defaulted to auth method that is listing-visibility=unauth instead of "other" [[GH-8218](https://github.com/hashicorp/vault/pull/8218)] * ui: Fix bug where KMIP details were not shown in the UI Wizard [[GH-8255](https://github.com/hashicorp/vault/pull/8255)] * ui: Show Error messages on Auth Configuration page when you hit permission errors [[GH-8500](https://github.com/hashicorp/vault/pull/8500)] * ui: Remove duplicate form inputs for the GitHub config [[GH-8519](https://github.com/hashicorp/vault/pull/8519)] * ui: Correct HMAC capitalization [[GH-8528](https://github.com/hashicorp/vault/pull/8528)] * ui: Fix danger message in DR [[GH-8555](https://github.com/hashicorp/vault/pull/8555)] * ui: Fix certificate field for LDAP config [[GH-8573](https://github.com/hashicorp/vault/pull/8573)] ## 1.3.2 (January 22nd, 2020) SECURITY: * When deleting a namespace on Vault Enterprise, in certain circumstances, the deletion process will fail to revoke dynamic secrets for a mount in that namespace. This will leave any dynamic secrets in remote systems alive and will fail to clean them up. This vulnerability, CVE-2020-7220, affects Vault Enterprise 0.11.0 and newer. IMPROVEMENTS: * auth/aws: Add aws metadata to identity alias [[GH-7985](https://github.com/hashicorp/vault/pull/7985)] * auth/kubernetes: Allow both names and namespaces to be set to "*" [[GH-78](https://github.com/hashicorp/vault-plugin-auth-kubernetes/pull/78)] BUG FIXES: * auth/azure: Fix Azure compute client to use correct base URL [[GH-8072](https://github.com/hashicorp/vault/pull/8072)] * auth/ldap: Fix renewal of tokens without configured policies that are generated by an LDAP login [[GH-8072](https://github.com/hashicorp/vault/pull/8072)] * auth/okta: Fix renewal of tokens without configured policies that are generated by an Okta login [[GH-8072](https://github.com/hashicorp/vault/pull/8072)] * core: Fix seal migration error when attempting to migrate from auto unseal to shamir [[GH-8172](https://github.com/hashicorp/vault/pull/8172)] * core: Fix seal migration config issue when migrating from auto unseal to auto unseal [[GH-8172](https://github.com/hashicorp/vault/pull/8172)] * plugin: Fix issue where a plugin unwrap request potentially used an expired token [[GH-8058](https://github.com/hashicorp/vault/pull/8058)] * replication: Fix issue where a forwarded request from a performance/standby node could run into a timeout * secrets/database: Fix issue where a manual static role rotation could potentially panic [[GH-8098](https://github.com/hashicorp/vault/pull/8098)] * secrets/database: Fix issue where a manual root credential rotation request is not forwarded to the primary node [[GH-8125](https://github.com/hashicorp/vault/pull/8125)] * secrets/database: Fix issue where a manual static role rotation request is not forwarded to the primary node [[GH-8126](https://github.com/hashicorp/vault/pull/8126)] * secrets/database/mysql: Fix issue where special characters for a MySQL password were encoded [[GH-8040](https://github.com/hashicorp/vault/pull/8040)] * ui: Fix deleting namespaces [[GH-8132](https://github.com/hashicorp/vault/pull/8132)] * ui: Fix Error handler on kv-secret edit and kv-secret view pages [[GH-8133](https://github.com/hashicorp/vault/pull/8133)] * ui: Fix OIDC callback to check storage [[GH-7929](https://github.com/hashicorp/vault/pull/7929)]. * ui: Change `.box-radio` height to min-height to prevent overflow issues [[GH-8065](https://github.com/hashicorp/vault/pull/8065)] ## 1.3.1 (December 18th, 2019) IMPROVEMENTS: * agent: Add ability to set `exit-after-auth` via the CLI [[GH-7920](https://github.com/hashicorp/vault/pull/7920)] * auth/ldap: Add a `request_timeout` configuration option to prevent connection requests from hanging [[GH-7909](https://github.com/hashicorp/vault/pull/7909)] * auth/kubernetes: Add audience to tokenreview API request for Kube deployments where issuer is not Kube. [[GH-74](https://github.com/hashicorp/vault/pull/74)] * secrets/ad: Add a `request_timeout` configuration option to prevent connection requests from hanging [[GH-59](https://github.com/hashicorp/vault-plugin-secrets-ad/pull/59)] * storage/postgresql: Add support for setting `connection_url` from enviornment variable `VAULT_PG_CONNECTION_URL` [[GH-7937](https://github.com/hashicorp/vault/pull/7937)] * telemetry: Add `enable_hostname_label` option to telemetry stanza [[GH-7902](https://github.com/hashicorp/vault/pull/7902)] * telemetry: Add accept header check for prometheus mime type [[GH-7958](https://github.com/hashicorp/vault/pull/7958)] BUG FIXES: * agent: Fix issue where Agent exits before all templates are rendered when using and `exit_after_auth` [[GH-7899](https://github.com/hashicorp/vault/pull/7899)] * auth/aws: Fixes region-related issues when using a custom `sts_endpoint` by adding a `sts_region` parameter [[GH-7922](https://github.com/hashicorp/vault/pull/7922)] * auth/token: Fix panic when getting batch tokens on a performance standby from a role that does not exist [[GH-8027](https://github.com/hashicorp/vault/pull/8027)] * core: Improve warning message for lease TTLs [[GH-7901](https://github.com/hashicorp/vault/pull/7901)] * identity: Fix identity token panic during invalidation [[GH-8043](https://github.com/hashicorp/vault/pull/8043)] * plugin: Fix a panic that could occur if a mount/auth entry was unable to mount the plugin backend and a request that required the system view to be retrieved was made [[GH-7991](https://github.com/hashicorp/vault/pull/7991)] * replication: Add `generate-public-key` endpoint to list of allowed endpoints for existing DR secondaries * secrets/gcp: Fix panic if bindings aren't provided in roleset create/update. [[GH-56](https://github.com/hashicorp/vault-plugin-secrets-gcp/pull/56)] * secrets/pki: Prevent generating certificate on performance standby when storing [[GH-7904](https://github.com/hashicorp/vault/pull/7904)] * secrets/transit: Prevent restoring keys to new names that are sub paths [[GH-7998](https://github.com/hashicorp/vault/pull/7998)] * storage/s3: Fix a bug in configurable S3 paths that was preventing use of S3 as a source during `operator migrate` operations [[GH-7966](https://github.com/hashicorp/vault/pull/7966)] * ui: Ensure secrets with a period in their key can be viewed and copied [[GH-7926](https://github.com/hashicorp/vault/pull/7926)] * ui: Fix status menu after demotion [[GH-7997](https://github.com/hashicorp/vault/pull/7997)] * ui: Fix select dropdowns in Safari when running Mojave [[GH-8023](https://github.com/hashicorp/vault/pull/8023)] ## 1.3 (November 14th, 2019) CHANGES: * Secondary cluster activation: There has been a change to the way that activating performance and DR secondary clusters works when using public keys for encryption of the parameters rather than a wrapping token. This flow was experimental and never documented. It is now officially supported and documented but is not backwards compatible with older Vault releases. * Cluster cipher suites: On its cluster port, Vault will no longer advertise the full TLS 1.2 cipher suite list by default. Although this port is only used for Vault-to-Vault communication and would always pick a strong cipher, it could cause false flags on port scanners and other security utilities that assumed insecure ciphers were being used. The previous behavior can be achieved by setting the value of the (undocumented) `cluster_cipher_suites` config flag to `tls12`. * API/Agent Renewal behavior: The API now allows multiple options for how it deals with renewals. The legacy behavior in the Agent/API is for the renewer (now called the lifetime watcher) to exit on a renew error, leading to a reauthentication. The new default behavior is for the lifetime watcher to ignore 5XX errors and simply retry as scheduled, using the existing lease duration. It is also possible, within custom code, to disable renewals entirely, which allows the lifetime watcher to simply return when it believes it is time for your code to renew or reauthenticate. FEATURES: * **Vault Debug**: A new top-level subcommand, `debug`, is added that allows operators to retrieve debugging information related to a particular Vault node. Operators can use this simple workflow to capture triaging information, which can then be consumed programmatically or by support and engineering teams. It has the abilitity to probe for config, host, metrics, pprof, server status, and replication status. * **Recovery Mode**: Vault server can be brought up in recovery mode to resolve outages caused due to data store being in bad state. This is a privileged mode that allows `sys/raw` API calls to perform surgical corrections to the data tore. Bad storage state can be caused by bugs. However, this is usually observed when known (and fixed) bugs are hit by older versions of Vault. * **Entropy Augmentation (Enterprise)**: Vault now supports sourcing entropy from external source for critical security parameters. Currently an HSM that supports PKCS#11 is the only supported source. * **Active Directory Secret Check-In/Check-Out**: In the Active Directory secrets engine, users or applications can check out a service account for use, and its password will be rotated when it's checked back in. * **Vault Agent Template**: Vault Agent now supports rendering templates containing Vault secrets to disk, similar to Consul Template [[GH-7652](https://github.com/hashicorp/vault/pull/7652)] * **Transit Key Type Support**: Signing and verification is now supported with the P-384 (secp384r1) and P-521 (secp521r1) ECDSA curves [[GH-7551](https://github.com/hashicorp/vault/pull/7551)] and encryption and decryption is now supported via AES128-GCM96 [[GH-7555](https://github.com/hashicorp/vault/pull/7555)] * **SSRF Protection for Vault Agent**: Vault Agent has a configuration option to require a specific header before allowing requests [[GH-7627](https://github.com/hashicorp/vault/pull/7627)] * **AWS Auth Method Root Rotation**: The credential used by the AWS auth method can now be rotated, to ensure that only Vault knows the credentials it is using [[GH-7131](https://github.com/hashicorp/vault/pull/7131)] * **New UI Features**: The UI now supports managing users and groups for the Userpass, Cert, Okta, and Radius auth methods. * **Shamir with Stored Master Key**: The on disk format for Shamir seals has changed, allowing for a secondary cluster using Shamir downstream from a primary cluster using Auto Unseal. [[GH-7694](https://github.com/hashicorp/vault/pull/7694)] * **Stackdriver Metrics Sink**: Vault can now send metrics to [Stackdriver](https://cloud.google.com/stackdriver/). See the [configuration documentation](https://www.vaultproject.io/docs/config/index.html) for details. [[GH-6957](https://github.com/hashicorp/vault/pull/6957)] * **Filtered Paths Replication (Enterprise)**: Based on the predecessor Filtered Mount Replication, Filtered Paths Replication allows now filtering of namespaces in addition to mounts. * **Token Renewal via Accessor**: Tokens can now be renewed via the accessor value through the new `auth/token/renew-accessor` endpoint if the caller's token has permission to access that endpoint. * **Improved Integrated Storage (Beta)**: Improved raft write performance, added support for non-voter nodes, along with UI support for: using raft storage, joining a raft cluster, and downloading and restoring a snapshot. IMPROVEMENTS: * agent: Add ability to set the TLS SNI name used by Agent [[GH-7519](https://github.com/hashicorp/vault/pull/7519)] * agent & api: Change default renewer behavior to ignore 5XX errors [[GH-7733](https://github.com/hashicorp/vault/pull/7733)] * auth/jwt: The redirect callback host may now be specified for CLI logins [[GH-71](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/71)] * auth/jwt: Bound claims may now contain boolean values [[GH-73](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/73)] * auth/jwt: CLI logins can now open the browser when running in WSL [[GH-77](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/77)] * core: Exit ScanView if context has been cancelled [[GH-7419](https://github.com/hashicorp/vault/pull/7419)] * core: re-encrypt barrier and recovery keys if the unseal key is updated [[GH-7493](https://github.com/hashicorp/vault/pull/7493)] * core: Don't advertise the full set of TLS 1.2 cipher suites on the cluster port, even though only strong ciphers were used [[GH-7487](https://github.com/hashicorp/vault/pull/7487)] * core (enterprise): Add background seal re-wrap * core/metrics: Add config parameter to allow unauthenticated sys/metrics access. [[GH-7550](https://github.com/hashicorp/vault/pull/7550)] * metrics: Upgrade DataDog library to improve performance [[GH-7794](https://github.com/hashicorp/vault/pull/7794)] * replication (enterprise): Write-Ahead-Log entries will not duplicate the data belonging to the encompassing physical entries of the transaction, thereby improving the performance and storage capacity. * replication (enterprise): Added more replication metrics * replication (enterprise): Reindex process now compares subpages for a more accurate indexing process. * replication (enterprise): Reindex API now accepts a new `skip_flush` parameter indicating all the changes should not be flushed while the tree is locked. * secrets/aws: The root config can now be read [[GH-7245](https://github.com/hashicorp/vault/pull/7245)] * secrets/database/cassandra: Add ability to skip verfication of connection [[GH-7614](https://github.com/hashicorp/vault/pull/7614)] * secrets/gcp: Fix panic during rollback if the roleset has been deleted [[GH-52](https://github.com/hashicorp/vault-plugin-secrets-gcp/pull/52)] * storage/azure: Add config parameter to Azure storage backend to allow specifying the ARM endpoint [[GH-7567](https://github.com/hashicorp/vault/pull/7567)] * storage/cassandra: Improve storage efficiency by eliminating unnecessary copies of value data [[GH-7199](https://github.com/hashicorp/vault/pull/7199)] * storage/raft: Improve raft write performance by utilizing FSM Batching [[GH-7527](https://github.com/hashicorp/vault/pull/7527)] * storage/raft: Add support for non-voter nodes [[GH-7634](https://github.com/hashicorp/vault/pull/7634)] * sys: Add a new `sys/host-info` endpoint for querying information about the host [[GH-7330](https://github.com/hashicorp/vault/pull/7330)] * sys: Add a new set of endpoints under `sys/pprof/` that allows profiling information to be extracted [[GH-7473](https://github.com/hashicorp/vault/pull/7473)] * sys: Add endpoint that counts the total number of active identity entities [[GH-7541](https://github.com/hashicorp/vault/pull/7541)] * sys: `sys/seal-status` now has a `storage_type` field denoting what type of storage the cluster is configured to use * sys: Add a new `sys/internal/counters/tokens` endpoint, that counts the total number of active service token accessors in the shared token storage. [[GH-7541](https://github.com/hashicorp/vault/pull/7541)] * sys/config: Add a new endpoint under `sys/config/state/sanitized` that returns the configuration state of the server. It excludes config values from `storage`, `ha_storage`, and `seal` stanzas and some values from `telemetry` due to potential sensitive entries in those fields. * ui: when using raft storage, you can now join a raft cluster, download a snapshot, and restore a snapshot from the UI [[GH-7410](https://github.com/hashicorp/vault/pull/7410)] * ui: clarify when secret version is deleted in the secret version history dropdown [[GH-7714](https://github.com/hashicorp/vault/pull/7714)] BUG FIXES: * agent: Fix a data race on the token value for inmemsink [[GH-7707](https://github.com/hashicorp/vault/pull/7707)] * api: Fix Go API using lease revocation via URL instead of body [[GH-7777](https://github.com/hashicorp/vault/pull/7777)] * api: Allow setting a function to control retry behavior [[GH-7331](https://github.com/hashicorp/vault/pull/7331)] * auth/gcp: Fix a bug where region information in instance groups names could cause an authorization attempt to fail [[GH-74](https://github.com/hashicorp/vault-plugin-auth-gcp/pull/74)] * cli: Fix a bug where a token of an unknown format (e.g. in ~/.vault-token) could cause confusing error messages during `vault login` [[GH-7508](https://github.com/hashicorp/vault/pull/7508)] * cli: Fix a bug where the `namespace list` command with JSON formatting always returned an empty object [[GH-7705](https://github.com/hashicorp/vault/pull/7705)] * cli: Command timeouts are now always specified solely by the `VAULT_CLIENT_TIMEOUT` value. [[GH-7469](https://github.com/hashicorp/vault/pull/7469)] * core: Don't allow registering a non-root zero TTL token lease. This is purely defense in depth as the lease would be revoked immediately anyways, but there's no real reason to allow registration. [[GH-7524](https://github.com/hashicorp/vault/pull/7524)] * identity (enterprise): Fixed identity case sensitive loading in secondary cluster [[GH-7327](https://github.com/hashicorp/vault/pull/7327)] * identity: Ensure only replication primary stores the identity case sensitivity state [[GH-7820](https://github.com/hashicorp/vault/pull/7820)] * raft: Fixed VAULT_CLUSTER_ADDR env being ignored at startup [[GH-7619](https://github.com/hashicorp/vault/pull/7619)] * secrets/pki: Don't allow duplicate SAN names in issued certs [[GH-7605](https://github.com/hashicorp/vault/pull/7605)] * sys/health: Pay attention to the values provided for `standbyok` and `perfstandbyok` rather than simply using their presence as a key to flip on that behavior [[GH-7323](https://github.com/hashicorp/vault/pull/7323)] * ui: using the `wrapped_token` query param will work with `redirect_to` and will automatically log in as intended [[GH-7398](https://github.com/hashicorp/vault/pull/7398)] * ui: fix an error when initializing from the UI using PGP keys [[GH-7542](https://github.com/hashicorp/vault/pull/7542)] * ui: show all active kv v2 secret versions even when `delete_version_after` is configured [[GH-7685](https://github.com/hashicorp/vault/pull/7685)] * ui: Ensure that items in the top navigation link to pages that users have access to [[GH-7590](https://github.com/hashicorp/vault/pull/7590)] ## 1.2.4 (November 7th, 2019) SECURITY: * In a non-root namespace, revocation of a token scoped to a non-root namespace did not trigger the expected revocation of dynamic secret leases associated with that token. As a result, dynamic secret leases in non-root namespaces may outlive the token that created them. This vulnerability, CVE-2019-18616, affects Vault Enterprise 0.11.0 and newer. * Disaster Recovery secondary clusters did not delete already-replicated data after a mount filter has been created on an upstream Performance secondary cluster. As a result, encrypted secrets may remain replicated on a Disaster Recovery secondary cluster after application of a mount filter excluding those secrets from replication. This vulnerability, CVE-2019-18617, affects Vault Enterprise 0.8 and newer. * Update version of Go to 1.12.12 to fix Go bug golang.org/issue/34960 which corresponds to CVE-2019-17596. CHANGES: * auth/aws: If a custom `sts_endpoint` is configured, Vault Agent and the CLI should provide the corresponding region via the `region` parameter (which already existed as a CLI parameter, and has now been added to Agent). The automatic region detection added to the CLI and Agent in 1.2 has been removed. IMPROVEMENTS: * cli: Ignore existing token during CLI login [[GH-7508](https://github.com/hashicorp/vault/pull/7508)] * core: Log proxy settings from environment on startup [[GH-7528](https://github.com/hashicorp/vault/pull/7528)] * core: Cache whether we've been initialized to reduce load on storage [[GH-7549](https://github.com/hashicorp/vault/pull/7549)] BUG FIXES: * agent: Fix handling of gzipped responses [[GH-7470](https://github.com/hashicorp/vault/pull/7470)] * cli: Fix panic when pgp keys list is empty [[GH-7546](https://github.com/hashicorp/vault/pull/7546)] * cli: Command timeouts are now always specified solely by the `VAULT_CLIENT_TIMEOUT` value. [[GH-7469](https://github.com/hashicorp/vault/pull/7469)] * core: add hook for initializing seals for migration [[GH-7666](https://github.com/hashicorp/vault/pull/7666)] * core (enterprise): Migrating from one auto unseal method to another never worked on enterprise, now it does. * identity: Add required field `response_types_supported` to identity token `.well-known/openid-configuration` response [[GH-7533](https://github.com/hashicorp/vault/pull/7533)] * identity: Fixed nil pointer panic when merging entities [[GH-7712](https://github.com/hashicorp/vault/pull/7712)] * replication (Enterprise): Fix issue causing performance standbys nodes disconnecting when under high loads. * secrets/azure: Fix panic that could occur if client retries timeout [[GH-7793](https://github.com/hashicorp/vault/pull/7793)] * secrets/database: Fix bug in combined DB secrets engine that can result in writes to static-roles endpoints timing out [[GH-7518](https://github.com/hashicorp/vault/pull/7518)] * secrets/pki: Improve tidy to continue when value is nil [[GH-7589](https://github.com/hashicorp/vault/pull/7589)] * ui (Enterprise): Allow kv v2 secrets that are gated by Control Groups to be viewed in the UI [[GH-7504](https://github.com/hashicorp/vault/pull/7504)]
… tks wiz@ # pkgbuild 1.1.0 * `compile_dll()` now supports automatic cpp11 registration if the package links to cpp11. * `rtools_needed` returns correct version instead of "custom" (@burgerga, #97) # pkgbuild 1.0.8 * Fixes for capability RStudio 1.2. and Rtools 40, R 4.0.0 # pkgbuild 1.0.7 * Additional fixes for Rtools 40
Changelog, taken from NEWS file and https://github.com/immerrr/lua-mode/releases: v20201010 * minimum Emacs version requirement is now 24.3 * fix multiline literals propertization not to break subsequent syntax * lua--fill-paragraph: fix to not move point away * lua-default-application: ensure it is possible to use (HOST . PORT) to connect to remote lua process * lua-kill-process: clean up process-related variables * lua-indent-nested-block-content-align, lua-indent-close-paren-align: new variables to control placement of nested blocks and their respective closers. With lua-indent-nested-block-content-align and lua-indent-close-paren-align set to nil, it is now possible to auto-indent code like this: foo = bar(baz, { qux, quux, }, { xyzzy }) * lua-rx: fix compatibility with new-style rx macros introduced in Emacs 27 * lua-start-process: ensure comint-prompt-regexp is set locally in inferior process buffer * make "git archive" revision format reproduceable by not including the date of the archiving operation * imenu: add "require" lines to the index * lua-backward-up-list: new navigation command that puts point before the current parenthetic construction/block * lua-indent-line: improve auto-indentation of implicitly continued statements, add some performance optimizations * font-lock: stop highlighting syntax errors in assignment statements * font-lock: add highlighting of function parameters and "for" loop variables * font-lock: fix couple of corner cases of highlighting of keywords inside strings and comments * Release v20151025 ** allow setting lua-indent-level as file local variable (issue #108) ** add luadoc keyword fontification (issue #71) ** fix comments being spilled into the code (issue #25) ** add `run-lua' alias for `lua-start-process' (issue #97) ** skip shebang line when sending to inferior buffer (issue #61) ** add builtin functions and modules for Lua 5.3 (issue #90) ** fix lua-beginning-of-proc matching (issue #85) ** add `lua-documentation-function' to customize the way the documentation is shown, rename `lua-search-url-prefix' to `lua-documentation-url', auto-detect lua documentation installed in /usr/share/doc/lua (issue #82) ** fix some errors with `lua-kill-process' (issue #69) ** improve `next-error' integration in Lua subprocess buffer: "stdin:N:" entries are no longer highlighted and no longer prompt for "stdin" files * release v20140514 ** add support for Lua 5.2 goto statements ** when indenting, don't anchor to block-open tokens somefunc({ ^ don't indent next line relative to this brace ** fix several `indent-new-comment-line'-related bugs ** add support for local functions in imenu (issue #65) ** fix font lock of functions with underscores (issue #63) ** don't send shebang when sending lua buffer to subprocess (issue #61) ** fix interaction with electric-pair-mode (issue #54) ** rewrite lua-send-region to use "loadstring" rather than "dofile" - sending code to processes on remote hosts is now supported - stack traces for errors occurred in sent code point to proper lines in files - script path is preserved when sending code (issue #55) - no more hang ups when waiting for input (issue #48) or after sending code with no output (issue #60) ** increase consistency with Emacs ecosystem to improve user experience - fix character syntax hacks: '.' is now punctuation and '_' is now symbol - remove number highlighting - font-lock "nil", "true" and "false" as constants rather than keywords ** make builtin font-locking more stable, enable it after ".." operator ** add missing modulo operator (%) to line-continuation tokens ** fix interaction with electric-pair-mode (issue #54) ** when unindenting block-close tokens consider all of them, not just the first one x = foobar('arg1', function () print('foobar') end) ^ this line starts with two block-close tokens and is unindented accordingly
Pkgsrc changes: * Added a patch to cope with docker client default settings (build also on NetBSD) Upstream changes: 1.6.1 ===== December 16, 2020 SECURITY: * LDAP Auth Method: We addressed an issue where error messages returned by the LDAP auth methold allowed user enumeration [GH-10537]. This vulnerability affects Vault OSS and Vault Enterprise and is fixed in 1.5.6 and 1.6.1 (CVE-2020-35177). * Sentinel EGP: We've fixed incorrect handling of namespace paths to prevent users within namespaces from applying Sentinel EGP policies to paths above their namespace. This vulnerability affects Vault Enterprise and is fixed in 1.5.6 and 1.6.1 (CVE-2020-35453). IMPROVEMENTS: * auth/ldap: Improve consistency in error messages [GH-10537] * core/metrics: Added "vault operator usage" command. [GH-10365] * secrets/gcp: Truncate ServiceAccount display names longer than 100 characters. [GH-10558] BUG FIXES: * agent: Only set the namespace if the VAULT_NAMESPACE env var isn't present [GH-10556] * auth/jwt: Fixes bound_claims validation for provider-specific group and user info fetching. [GH-10546] * core (enterprise): Vault EGP policies attached to path * were not correctly scoped to the namespace. * core: Avoid deadlocks by ensuring that if grabLockOrStop returns stopped=true, the lock will not be held. [GH-10456] * core: Fix client.Clone() to include the address [GH-10077] * core: Fix rate limit resource quota migration from 1.5.x to 1.6.x by ensuring purgeInterval and staleAge are set appropriately. [GH-10536] * core: Make all APIs that report init status consistent, and make them report initialized=true when a Raft join is in progress. [GH-10498] * secrets/database/influxdb: Fix issue where not all errors from InfluxDB were being handled [GH-10384] * secrets/database/mysql: Fixes issue where the DisplayName within generated usernames was the incorrect length [GH-10433] * secrets/database: Sanitize private_key field when reading database plugin config [GH-10416] * secrets/transit: allow for null string to be used for optional parameters in encrypt and decrypt [GH-10386] * storage/raft (enterprise): The parameter aws_s3_server_kms_key was misnamed and didn't work. Renamed to aws_s3_kms_key, and make it work so that when provided the given key will be used to encrypt the snapshot using AWS KMS. * transform (enterprise): Fix bug tokenization handling metadata on exportable stores * transform (enterprise): Fix transform configuration not handling stores parameter on the legacy path * transform (enterprise): Make expiration timestamps human readable * transform (enterprise): Return false for invalid tokens on the validate endpoint rather than returning an HTTP error * transform (enterprise): Fix bug where tokenization store changes are persisted but don't take effect * ui: Fix bug in Transform secret engine when a new role is added and then removed from a transformation [GH-10417] * ui: Fix footer URL linking to the correct version changelog. [GH-10491] * ui: Fox radio click on secrets and auth list pages. [GH-10586] 1.6.0 ===== November 11th, 2020 NOTE: Binaries for 32-bit macOS (i.e. the darwin_386 build) will no longer be published. This target was dropped in the latest version of the Go compiler. CHANGES: * agent: Agent now properly returns a non-zero exit code on error, such as one due to template rendering failure. Using error_on_missing_key in the template config will cause agent to immediately exit on failure. In order to make agent properly exit due to continuous failure from template rendering errors, the old behavior of indefinitely restarting the template server is now changed to exit once the default retry attempt of 12 times (with exponential backoff) gets exhausted. [GH-9670] * token: Periodic tokens generated by auth methods will have the period value stored in its token entry. [GH-7885] * core: New telemetry metrics reporting mount table size and number of entries [GH-10201] * go: Updated Go version to 1.15.4 [GH-10366] FEATURES: * Couchbase Secrets: Vault can now manage static and dynamic credentials for Couchbase. [GH-9664] * Expanded Password Policy Support: Custom password policies are now supported for all database engines. * Integrated Storage Auto Snapshots (Enterprise): This feature enables an operator to schedule snapshots of the integrated storage backend and ensure those snapshots are persisted elsewhere. * Integrated Storage Cloud Auto Join: This feature for integrated storage enables Vault nodes running in the cloud to automatically discover and join a Vault cluster via operator-supplied metadata. * Key Management Secrets Engine (Enterprise; Tech Preview): This new secret engine allows securely distributing and managing keys to Azure cloud KMS services. * Seal Migration: With Vault 1.6, we will support migrating from an auto unseal mechanism to a different mechanism of the same type. For example, if you were using an AWS KMS key to automatically unseal, you can now migrate to a different AWS KMS key. * Tokenization (Enterprise; Tech Preview): Tokenization supports creating irreversible "tokens" from sensitive data. Tokens can be used in less secure environments, protecting the original data. * Vault Client Count: Vault now counts the number of active entities (and non-entity tokens) per month and makes this information available via the "Metrics" section of the UI. IMPROVEMENTS: * auth/approle: Role names can now be referenced in templated policies through the approle.metadata.role_name property [GH-9529] * auth/aws: Improve logic check on wildcard BoundIamPrincipalARNs and include role name on error messages on check failure [GH-10036] * auth/jwt: Add support for fetching groups and user information from G Suite during authentication. [GH-123] * auth/jwt: Adding EdDSA (ed25519) to supported algorithms [GH-129] * auth/jwt: Improve cli authorization error [GH-137] * auth/jwt: Add OIDC namespace_in_state option [GH-140] * secrets/transit: fix missing plaintext in bulk decrypt response [GH-9991] * command/server: Delay informational messages in -dev mode until logs have settled. [GH-9702] * command/server: Add environment variable support for disable_mlock. [GH-9931] * core/metrics: Add metrics for storage cache [GH_10079] * core/metrics: Add metrics for leader status [GH 10147] * physical/azure: Add the ability to use Azure Instance Metadata Service to set the credentials for Azure Blob storage on the backend. [GH-10189] * sdk/framework: Add a time type for API fields. [GH-9911] * secrets/database: Added support for password policies to all databases [GH-9641, and more] * secrets/database/cassandra: Added support for static credential rotation [GH-10051] * secrets/database/elasticsearch: Added support for static credential rotation [GH-19] * secrets/database/hanadb: Added support for root credential & static credential rotation [GH-10142] * secrets/database/hanadb: Default password generation now includes dashes. Custom statements may need to be updated to include quotes around the password field [GH-10142] * secrets/database/influxdb: Added support for static credential rotation [GH-10118] * secrets/database/mongodbatlas: Added support for root credential rotation [GH-14] * secrets/database/mongodbatlas: Support scopes field in creations statements for MongoDB Atlas database plugin [GH-15] * seal/awskms: Add logging during awskms auto-unseal [GH-9794] * storage/azure: Update SDK library to use azure-storage-blob-go since previous library has been deprecated. [GH-9577] * secrets/ad: rotate-root now supports POST requests like other secret engines [GH-70] * ui: Add ui functionality for the Transform Secret Engine [GH-9665] * ui: Pricing metrics dashboard [GH-10049] BUG FIXES: * auth/jwt: Fix bug preventing config edit UI from rendering [GH-141] * cli: Don't open or overwrite a raft snapshot file on an unsuccessful vault operator raft snapshot [GH-9894] * core: Implement constant time version of shamir GF(2^8) math [GH-9932] * core: Fix resource leak in plugin API (plugin-dependent, not all plugins impacted) [GH-9557] * core: Fix race involved in enabling certain features via a license change * core: Fix error handling in HCL parsing of objects with invalid syntax [GH-410] * identity: Check for timeouts in entity API [GH-9925] * secrets/database: Fix handling of TLS options in mongodb connection strings [GH-9519] * secrets/gcp: Ensure that the IAM policy version is appropriately set after a roleset's bindings have changed. [GH-93] * ui: Mask LDAP bindpass while typing [GH-10087] * ui: Update language in promote dr modal flow [GH-10155] * ui: Update language on replication primary dashboard for clarity [GH-10205] * core: Fix bug where updating an existing path quota could introduce a conflict. [GH-10285] 1.5.6 ===== December 16, 2020 SECURITY: * LDAP Auth Method: We addressed an issue where error messages returned by the LDAP auth methold allowed user enumeration [GH-10537]. This vulnerability affects Vault OSS and Vault Enterprise and is fixed in 1.5.6 and 1.6.1 (CVE-2020-35177). * Sentinel EGP: We've fixed incorrect handling of namespace paths to prevent users within namespaces from applying Sentinel EGP policies to paths above their namespace. This vulnerability affects Vault Enterprise and is fixed in 1.5.6 and 1.6.1. IMPROVEMENTS: * auth/ldap: Improve consistency in error messages [GH-10537] BUG FIXES: * core (enterprise): Vault EGP policies attached to path * were not correctly scoped to the namespace. * core: Fix bug where updating an existing path quota could introduce a conflict [GH-10285] * core: Fix client.Clone() to include the address [GH-10077] * quotas (enterprise): Reset cache before loading quotas in the db during startup * secrets/transit: allow for null string to be used for optional parameters in encrypt and decrypt [GH-10386] 1.5.5 ===== October 21, 2020 IMPROVEMENTS: * auth/aws, core/seal, secret/aws: Set default IMDS timeouts to match AWS SDK [GH-10133] BUG FIXES: * auth/aws: Restrict region selection when in the aws-us-gov partition to avoid IAM errors [GH-9947] * core (enterprise): Allow operators to add and remove (Raft) peers in a DR secondary cluster using Integrated Storage. * core (enterprise): Add DR operation token to the remove peer API and CLI command (when DR secondary). * core (enterprise): Fix deadlock in handling EGP policies * core (enterprise): Fix extraneous error messages in DR Cluster * secrets/mysql: Conditionally overwrite TLS parameters for MySQL secrets engine [GH-9729] * secrets/ad: Fix bug where password_policy setting was not using correct key when ad/config was read [GH-71] * ui: Fix issue with listing roles and methods on the same auth methods with different names [GH-10122] 1.5.4 ===== September 24th, 2020 SECURITY: * Batch Token Expiry: We addressed an issue where batch token leases could outlive their TTL because we were not scheduling the expiration time correctly. This vulnerability affects Vault OSS and Vault Enterprise 1.0 and newer and is fixed in 1.4.7 and 1.5.4 (CVE-2020-25816). IMPROVEMENTS: * secrets/pki: Handle expiration of a cert not in storage as a success [GH-9880] * auth/kubernetes: Add an option to disable defaulting to the local CA cert and service account JWT when running in a Kubernetes pod [GH-97] * secrets/gcp: Add check for 403 during rollback to prevent repeated deletion calls [GH-97] * core: Disable usage metrics collection on performance standby nodes. [GH-9966] * credential/aws: Added X-Amz-Content-Sha256 as a default STS request header [GH-10009] BUG FIXES: * agent: Fix disable_fast_negotiation not being set on the auth method when configured by user. [GH-9892] * core (enterprise): Fix hang when cluster-wide plugin reload cleanup is slow on unseal * core (enterprise): Fix an error in cluster-wide plugin reload cleanup following such a reload * core: Fix crash when metrics collection encounters zero-length keys in KV store [GH-9811] * mfa (enterprise): Fix incorrect handling of PingID responses that could result in auth requests failing * replication (enterprise): Improve race condition when using a newly created token on a performance standby node * replication (enterprise): Only write failover cluster addresses if they've changed * ui: fix bug where dropdown for identity/entity management is not reflective of actual policy [GH-9958]
Change log: 0.5.3 ====== - Appearance Changes: - Use old style menu alignment (#97, !77) - Bug Fixes: - Add a keybinding to reset font size - Fix inverted return value of scroll event handler - Various small improvements regarding accels - Block the right signal handler for tooltip updates - A clarification about action groups - Translation Updates: Basque, French, Galician, Portuguese (Brazil), Russian, Slovenian, Swedish 0.5.2 ====== - New Features: - Add a "Viewer Mode" toggle (#50, !72) - Improve `--quit` option: close all windows interactively (!71) - Improve encoding management (#42, !69) - Display the current encoding in the status bar - Make the default encoding configurable via GSettings - Allow to choose encoding in the "Open" and "Save As" dialogs (#42) - Add a command line option to choose encoding - Add a "Delete Line" action (#13, !66) - Make automatic addition of the last EOL character configurable (#53, !65) - Switch to GFile for I/O operations (#4, #27, #75, !64) - Add file monitoring (#75) - Add a setting to create a tilde-backup file when saving (#27) - Make saving atomic (#4) - Appearance Changes: - Filter files on mime type in the "Open" and "Save As" dialogs (#2, #35, !67) - Code Refactoring: - Improve encoding management (#42, !69) - Make encoding dialog more generic and self-contained - Encodings definition review - Clarify encoding management when opening files - Improve unicode BOM management - Switch to GFile for I/O operations (#4, #27, #75, !64) - Set the save action sensitivity more precisely - Let GFile APIs check for file existence when reading - Let GFile APIs check for external modifications when saving - Basic switch to GFile for I/O operations - Bug Fixes: - Make "replace" and "replace all" behaviors consistent (#94) - Ensure that the page setup is properly applied when printing (#90) - Avoid character escape issues in menu item action names (#91) - Properly initialize document search properties - Avoid illegal memory access when searching with tab changes (!73) - Revert to "Wrap Around" always true for the search bar (#83) - Prevent too late accesses to the buffer in selection mode - Direct call to keybinding signals for "Delete" and "Select All" (#83) - Improve editing keybindings consistency (#83) - Translation Updates: Albanian, Arabic, Armenian (Armenia), Basque, Belarusian, Bulgarian, Catalan, Chinese (China), Chinese (Taiwan), Croatian, Czech, Danish, Dutch, Eastern Armenian, English (Australia), English (United Kingdom), Estonian, Finnish, French, Galician, German, Greek, Hebrew, Hungarian, Icelandic, Indonesian, Interlingue, Italian, Japanese, Kazakh, Korean, Lithuanian, Malay, Norwegian Bokmål, Occitan (post 1500), Polish, Portuguese, Portuguese (Brazil), Romanian, Russian, Serbian, Slovak, Slovenian, Spanish, Swedish, Thai, Turkish, Ukrainian, Uyghur
2021-03-18 -- 0.9.5 * Fixed: Fix a bug regarding section "5.2.4. Remove Dot Segments" of RFC 3986 that affected both normalization and reference resolution with regard to trailing slashes (GitHub #92, #97) Thanks to Dan Pape for the report! * Fixed: MinGW: Fix name of static library (GitHub #90) Thanks to SpaceIm for the patch and Sandro Mani for review! * Fixed: Use correct inline marker "__forceinline" for Intel C++ Compiler (GitHub #93) Thanks to jensenrichardson for the patch! * Fixed: Link against pthreads for (default) -DURIPARSER_BUILD_TESTS=ON (GitHub #99, #100) * Fixed: When integrated using CMake function add_subdirectory, installation could fail due to lack of prefix ${CMAKE_CURRENT_SOURCE_DIR} (GitHub #98) Thanks for the patch to Shehzan Mohammed! * Fixed: Addressed MSVC compile warning about lack of /EHsc when compiling the C++ test suite code (GitHub #102) * Fixed: Stopped misadvertising wide characters as Unicode support (GitHub #104) * Added: CMake option URIPARSER_WARNINGS_AS_ERRORS=(ON|OFF) to turn compile warnings into errors, defaults to "OFF" (GitHub #102) * Improved: pkg-config: Use ${prefix} and ${exec_prefix} to ease overriding variables using --define-variable=NAME=VALUE, e.g. as done on OpenWRT (GitHub #91) Thanks to Karel Kočí for the pull request! * Improved: Auto-detection of the qhelpgenerator command based on CMake package "Qt5Help" when available. CMake option "QHG_LOCATION" can still be used to enforce a specific location (GitHub #103) Thanks for his help to Andreas Sturmlechner! * Improved: Make documentation use pkg-config in example on how to check for uriparser from within configure.ac (GNU Autoconf) (GitHub #37, #106) * Improved: In testing code, add a missing 'extern "C"' (GitHub #109) Thanks to Jørgen Ibsen for the patch! * Soname: 1:28:0 — see https://verbump.de/ for what these numbers do
- Easier to understand error messages (closes #97)
# 1.3.0 * Adding authors with long names or other fields (`comment`, typically) works well now (#91). * `get_deps()` now removes unneeded whitespace from version requirements (#84). * `normalize()` now does not drop `Authors@R` on non-UTF-8 systems when it has non-ASCII characters (#80). * `has_dep()` now works well with dependencies listed multiple times (#97, @richfitz). * Add `coerce_authors_at_r()` method to convert `Author` to `Authors@R` (#44, @muschellij2). * `add_author()` and similar functions now allow a character vector of multiple roles (@niceume, #89). * `desc_set_deps()` now inserts new packages in (case-insensitive) alphabetical order, if the existing packages are already in alphabetical order. * New `add_author_gh()` method and `desc_add_author_gh()` function to add an author using the information available from GitHub V3 API. This method and function depend on `gh` and are limited when the GitHub user full name is incomplete or not well parsed by `as.person()` and when their email address isn't available (@maelle, #71). * When using `desc_normalize()` the package dependencies are now alphabetically sorted (#66, @llrs). * New `add_orcid()` method and `desc_add_orcid()` functions make it possible to add ORCID IDs to authors directly instead of via the `comment` argument (@maelle, #70). * All functions and methods managing authors (`add_me`, `add_author()`, `del_author()`, `add_role()`, `del_role()`, `change_maintainer()`, `search_for_author()`, `add_me()`, etc.) gain an `orcid` argument (@maelle, #70). * In `person()` within the `Authors@R` field, `comment` can now be a named character vector (@maelle, #69; @gvegayon, #65). * When using `desc(text=)` parameter, set `textConnection(encoding = "bytes")` to handle cases when the input text is in a different marked encoding than the default encoding, such as UTF-8 input on Windows.
# pillar 1.6.2 ## Options - Options `pillar.print_max`, `pillar.print_min`, `pillar.width` and `pillar.max_extra_cols` are now queried before the corresponding `tibble.` or `dplyr.` options are consulted, the latter will be soft-deprecated in pillar v2.0.0 (#353). - New `pillar.bidi` option. When active, control characters are inserted to improve display of data with right-to-left text (#333). - The new `pillar.max_footer_lines` option (default: 7) allows controlling the maximum number of footer lines shown. It is applied in addition to the existing `tibble.max_extra_cols` option (#263). ## Formatting - If a column doesn't make use of all horizontal width offered to it, the excess width is distributed over other columns (#331). - Improved allocation of free space in multi-tier tables with `getOption("tibble.width") > getOption("width")` (#344). - All pillars are shown with their true horizontal extent, irrespective of the indicated `width`. This simplifies the implementation of custom `pillar_shaft()` methods (#347). ## Features - `num()` gains `extra_sigfig` argument to automatically show more significant figures for numbers of the same magnitude with subtle differences (#97). - `print.tbl()` and `format.tbl()` support the `max_extra_cols` and `max_footer_lines` arguments that override the corresponding options (#360). - `print.tbl()` and `format.tbl()` maps the now deprecated `n_extra` argument to `max_extra_cols` for consistency (#360). ## Bug fixes - Avoid mangling of duplicate column names in footer (#332). - Fix warning with zero of type `bit64::integer64()` (#319). ## Documentation - All package options are now documented in `?pillar_options` (#339). - `obj_sum()` no longer calls `type_sum()` for vectors since pillar v1.6.1, this is now documented (#321). - Fix documentation on usage of `vctrs::vec_proxy()` and `vctrs::vec_restore()` (#322). ## Internal - Using `attr(exact = TRUE)` everywhere. - `is_vector_s3()` is no longer generic (#181). - Fix internal logic around `vec_proxy()` and `vec_restore()` (#316).
### v1.1.0 2021-10-11 Paris (France) - Add Keccak256 module (ethereum padding) (@maxtori, @dinosaure, #118) - Update README.md to include the documentation (@mimoo, @dinosaure, 65a5c12) - Remove deprecated function from `fmt` library (@dinosaure, #121) - **NOTE**: This version lost the support of OCaml 4.03 and OCaml 4.04. ### v1.0.1 2020-02-08 Paris (France) - Fix `esy` support (@dinosaure, #115) - Fix big-endian support (@dinosaure, #113) ### v1.0.0 2020-11-02 Paris (France) - **breaking changes** Upgrade the library with MirageOS 3.9 (new layout of artifacts) Add tests about compilation of unikernels (execution and link) (#105, @dinosaure, @hannesm) - Fix `esy` installation (#104, @dinosaure) - **breaking changes** Better GADT (#103, @dinosaure) As far as I can tell, nobody really use this part of `digestif`. The idea is to provide a GADT which contains the type of the hash. From third-part libraries point-of-view, it's better to _pattern-match_ with such information instead to use a polymorphic variant (as before). - **breaking changes** key used for HMAC is a constant `string` (#101, @dinosaure, @hannesm) The key should not follow the same type as the digest value (`string`, `bytes`, `bigstring`). This update restricts the user to user only constant key (as a `string`). ### v0.9.0 2020-07-10 Paris (France) - Add sha3 implementation (#98), @lyrm, @dinosaure, @hannesm and @cfcs ### v0.8.1 2020-06-15 Paris (France) - Move to `dune.2.6.0` (#97) - Apply `ocamlformat.0.14.2` (#97) - Fix tests according `alcotest.1.0.0` (#95) ### v0.8.0 2019-20-09 Saint Louis (Sénégal) - Fake version to prioritize dune's variants instead of old linking trick - Use `stdlib-shims` to keep compatibility with < ocaml.4.07.0 ### v0.7.3 2019-07-09 Paris (France) - Fix bug about specialization of BLAKE2{B,S} (#85, #86) reported by @samoht, fixed by @dinosaure, reviewed by @hannes and @cfcs
Upstream changes: #-#-#-#-#-#-#-#-#-# Changes in TTR version 0.24.2 #-#-#-#-#-#-#-#-#-# BUG FIXES - Check for 'ratio > 0' before calculating 'n' in zlema() C code. The prior code could result in division by 0, which was flagged by clang-UBSAN. Thanks to Prof Brian Ripley for the report. (#100) #-#-#-#-#-#-#-#-#-# Changes in TTR version 0.24.1 #-#-#-#-#-#-#-#-#-# BUG FIXES - Fix leading NA accounting in wma() C code. The prior code caused invalid reads under valgrind. Thanks to Prof Brian Ripley for the report. (#99) - Check for 'ratio > 0' before calculating 'n' in ema() C code. The prior code could result in division by 0, which was flagged by UBSAN. Thanks to Prof Brian Ripley for the report. (#100) - Make ALMA() output length equal input length when the input can not be converted to xts. This was caused by the difference between rollapply.default() and rollapply.xts(). Thanks to GitHub user marksimmonds for the report. (#29) - Fix stoch() in very rare cases where fastK is Inf. I could only reproduce this if the Close is > High and High and Low are equal, but that is a data error. I fixed anyway because there may be other cases I don't anticipate. Thanks to GitHub user cjuncosa for the report. (#52) - Fix MFI() when money flow is always zero or positive. The denominator of the money ratio will be zero if there is no negative money flow for 'n' consecutive observations (e.g. during a strong up-trend), which causes the money flow index to be Inf. Set the money flow index to 100 in this case. And the money ratio will be NaN if there's no money flow for 'n' consecutive observations (e.g. if there are no trades), which causes the money flow index to be NaN. Set the money flow index to 50 in this case. Thanks to GitHub user jgehw for the report, reproducible example, and suggested patch. (#81) #-#-#-#-#-#-#-#-#-# Changes in TTR version 0.24.0 #-#-#-#-#-#-#-#-#-# SIGNIFICANT USER-VISIBLE CHANGES - Updated stockSymbols() to use the NASDAQ FTP site instead of downloading the CSV from the NASDAQ stock screener page. Some columns are no longer populated because they are not provided in the FTP file: LastSale ,MarketCap, IPOyear, Sector, Industry These columns will be removed in a future version. (#98, #5, #97) - runPercentRank(x, n, cumulative = TRUE) now sets observations in the initialization period to NA. This is consistent with the other running/rolling functions in TTR. If you want the previous behavior, you should use runPercentRank(x, n = 1, cumulative = TRUE). Thanks to GitHub user httassadar for the report. (#73) NEW FEATURES - Add Ehler's Correlation Trend Indicator. Thanks to Evelyn Mitchell for the suggestion, and for Ethan Smith for the initial implementation. (#92) BUG FIXES - runMAD() returned incorrect values when 'cumulative = TRUE' and the input contained leading NA. Thanks to GitHub user stellathecat for the report. This also affected runMedian() also. (#93) - ZLEMA() would crash when 'ratio = 0.0' and 'n' was not specified. Thanks to GitHub user yogat3ch for the report! (#95) - WMA() did not return an xts object when passed an xts object for 'x' that had leading NA, with the default 'wts = 1:n'. Thanks to Cory Fletcher for reporting this issue via email. (#96) - stoch() was wrong when 'bounded = FALSE'. Thanks to GitHub user rfinfun for the report and patch. (#74) - HMA() threw an error when 'n' was an odd number. This was because the first call to WMA() used 'n = n / 2' which caused 'n' to not be an integer. Thanks to GitHub user dragie for the report. (#76)
2.72.1 - June 29, 2022 ====================== - Discard empty proxy environment variables (#189) 2.72.0 - March 22, 2022 ======================= - Fix proxy tests (#186) - GnuTLS: use IANA-style ciphersuite names with GnuTLS 3.7.4 (!202) - Windows build fixes (!206, !207, Chun-wei Fan) - meson devenv (!208, Xavier Claessens) - Updated translations 2.72.beta - February 11, 2022 ============================= - Add environment variable proxy resolver (#162) - OpenSSL: fix uninitialized memory use (!201, Daniel Kolesa) 2.72.alpha - January 6, 2022 ============================ - OpenSSL: fix unsafe error handling (!187, Patrick Griffis) - Correctly load libsoup DLL on Windows (!190, Chun-wei Fan) - OpenSSL: use system trust on Windows (!192, Francesco Conti) - GnuTLS: fix TLS 1.3 ciphersuite names, should use underscores (!194) - OpenSSL: fail when appropriate if Must-Staple extension is set (!197) - Improve failure of tls-unique channel binding requests (!198, Ruslan Marchenko) - Do not fill SNI extension with IP address (!200, Matteo Biggio) 2.70.1 - December 6, 2021 ========================= - Fix crashes when handshake is cancelled (#97, #176) - OpenSSL: fix spurious certificate expired verification errors (#179) - GnuTLS: Fix tests on 32-bit systems (!188, Simon McVittie) - GnuTLS: Fix crash when invalid priority string is forced (!189) 2.70.0 - September 16, 2021 =========================== - Updated translations 2.70.rc - September 3, 2021 =========================== - gnutls: revert AuthorityInformationAccess implementation for now (#160) - gnutls: fix use of non-default GTlsDatabases, Geary crash on startup (#169) - openssl: remove openssl-util (!181) - gnutls: fix leak in g_tls_certificate_gnutls_copy (!182, Patrick Griffis) - gnutls: Unbreak GTLS_GNUTLS_CHECK_VERSION (!185) 2.70.beta - August 12, 2021 =========================== - gnutls: Ensure that PKCS #11 pins are NUL terminated (!178, Patrick Griffis) - openssl: Restore OCSP support (!179, !180, Patrick Griffis) 2.70.alpha - July 2, 2021 ========================= - Fix TLS channel bindings tests (#164) - Require OpenSSL 1.0.2 (#166) - Fix threadsafety issue in certificate verification (!148) - dlopen libsoup for performing HTTP requests (!149, Patrick Griffis) - Implement new get_negotiated_protocol vfunc (!150) - Implement new protocol version and ciphersuite name accessors (!151) - OpenSSL: use system keychain on macOS (!154) - OpenSSL: add DTLS support, plus many related improvements (!155, Ole André Vadla Ravnås) - Implement new GTlsCertificate details APIs (!156, !165, Ross Wollman) - GnuTLS: improve error handling for PIN failures (!158, Patrick Griffis) - GnuTLS: expose PIN type on PIN requests (!159, Patrick Griffis) - GnuTLS: check cancellable in pull timeout callback (!160) - Add support for Android (!162, Ole André Vadla Ravnås) - Improve automation of test certificate creation (!167, !168, !169, Patrick Griffis) - GnuTLS: use GnuTLS to implement all channel bindings (!172) - GnuTLS: rework certificate verification to use TLS session (!173) - GnuTLS: improve peer identity verification (!176) - Bring back automatic downloading of missing intermediate certificates (not fixed, may go away again) 2.68.1 - April 22, 2021 ======================= - Fix threadsafety issue in certificate verification (!148) - Temporarily remove support for downloading missing intermediate certificates with GnuTLS 3.7 (#160) 2.68.0 - March 19, 2021 ======================= - Fix double free in GnuTLS client certificate request code (!147) 2.68.rc - March 12, 2021 ======================== - Improve heuristic for returning G_TLS_ERROR_CERTIFICATE_REQUIRED - Fix check for certain handshake failure conditions 2.68.alpha - January 7, 2021 ============================ - Download and validate missing intermediate certificates (requires GnuTLS 3.7) (#96) - OpenSSL backend now uses system crypto policy (#106) - Remove use of g_assert in testsuite (#137) - Restore support for old versions of OpenSSL (#156) - Implement TLS channel bindings API (!139, Ruslan Marchenko) - Implement PKCS#11 API (!140, Patrick Griffis) - Update testsuite for Fedora 33 crypto policy (!141) - Fix NULL dereference in g_tls_connection_base_read_message (!144, Vladimir D. Seleznev) - Fix a couple code issues found by Coverity 2.66.0 - September 11, 2020 =========================== - Updated translations 2.65.90 - August 6, 2020 ======================== - Many fixes to OpenSSL backend (!128, Ruslan Marchenko) 2.65.1 - July 2, 2020 ===================== - Fix peer-certificate[-errors] props set too soon (#127) - Implement ALPN for OpenSSL backend (!126, Ruslan Marchenko) - Fix Windows build (!127, Cun-wei Fan)
[0.8.1] - 2022-07-12 Bug Fixes Set fail-fast strategy to false Miscellaneous Tasks Update windows runners to windows-2022 [0.8.0] - 2022-07-12 Bug Fixes Update lychee arguments to skip checking protonmail Documentation Clarify that --tag argument can be an unexisting tag Switch chronological and topological (#99) Features Support external commands for commit preprocessors (#86) Support changing commit scope with commit_parsers (#94) [breaking] Pass footer token and separator to template (#97) Miscellaneous Tasks Set MSRV to 1.58.1 (#87) Update tera to 1.16.0 (#70) Disable building arm64 docker images temporarily Upgrade dependencies Refactor Apply clippy suggestions Apply clippy suggestions
## Version 0.5.3.0 * Improve error messages for `lookup` and NamedRecord parsers (#197) * Fix bug (infinite loop) in `FromField Const` instance (#185) * Turn flag `bytestring--LT-0_10_4` off by default (#183) * Doc: Add cassava usage example of reading/writing to file (#97) * Update to latest version of dependencies (#190, #193, #199) * Tested with GHC 7.4 - 9.4 (#184, #204)
3.0.27 (2022-06-08) Merged Pull Requests * Update chefstyle requirement from 1.2.1 to 1.3.2 TritonDataCenter#84 (dependabot-preview[bot]) * Update chefstyle requirement from 1.3.2 to 1.4.0 TritonDataCenter#85 (dependabot-preview[bot]) * Update chefstyle requirement from 1.4.0 to 1.4.2 TritonDataCenter#86 (dependabot-preview[bot]) * Update chefstyle requirement from 1.4.2 to 1.4.3 TritonDataCenter#87 (dependabot-preview[bot]) * Update chefstyle requirement from 1.4.3 to 1.4.5 TritonDataCenter#89 (dependabot-preview[bot]) * Update chefstyle requirement from 1.4.5 to 1.5.0 TritonDataCenter#90 (dependabot-preview[bot]) * Update chefstyle requirement from 1.5.0 to 1.5.2 TritonDataCenter#92 (dependabot-preview[bot]) * Update chefstyle requirement from 1.5.2 to 1.5.8 TritonDataCenter#96 (dependabot-preview[bot]) * Update chefstyle requirement from 1.5.8 to 1.5.9 TritonDataCenter#97 (dependabot-preview[bot]) * Remove parallel pin now that it supports Ruby 2.4 again TritonDataCenter#98 (tas50) * Add Ruby 2.7 testing + cache gem installs in CI TritonDataCenter#99 (tas50) * Update chefstyle requirement from 1.5.9 to 1.6.2 TritonDataCenter#101 (dependabot-preview[bot]) * Update chefstyle requirement from 1.6.2 to 1.7.1 TritonDataCenter#102 (dependabot-preview[bot]) * Update chefstyle requirement from 1.7.1 to 1.7.2 TritonDataCenter#104 (dependabot-preview[bot]) * Update chefstyle requirement from 1.7.2 to 1.7.5 TritonDataCenter#106 (dependabot-preview[bot]) * Upgrade to GitHub-native Dependabot TritonDataCenter#107 (dependabot-preview[bot]) * add ruby tests 3.0 and 3.1 in verify pipeline TritonDataCenter#109 (jayashrig158) * Fix in nested_hash parsing in config TritonDataCenter#115 (Nik08)
Change log: 1.10.2 (2023-01-02) ====== - Fix capture of CSD windows - Fix active window and region capture modes - Consider scale factor while capturing screenshots with cairo (#95) - Support libsoup2 and 3 simultaneously (#97) - save dialog: show preview of selected file (#94) - Save preferences of panel plugin (#96) - Translation Updates: Albanian, Arabic, Armenian (Armenia), Basque, Belarusian, Bulgarian, Catalan, Chinese (China), Chinese (Taiwan), Croatian, Czech, Danish, Dutch, Eastern Armenian, English (Australia), Estonian, Finnish, French, Galician, Georgian, German, Greek, Hebrew, Hungarian, Icelandic, Indonesian, Interlingue, Italian, Japanese, Korean, Lithuanian, Malay, Norwegian Bokm��l, Occitan (post 1500), Persian (Iran), Polish, Portuguese, Portuguese (Brazil), Russian, Serbian, Slovak, Slovenian, Spanish, Swedish, Thai, Turkish, Ukrainian 1.10.1 (2022-12-21) ====== - Fixes capture of screenshots after first time (#89) - libsoup: Migrate to 3.0 (#88) - Fix typo in NEWS file - Translation Updates: Albanian, Arabic, Armenian (Armenia), Basque, Belarusian, Bulgarian, Catalan, Chinese (China), Chinese (Taiwan), Croatian, Czech, Danish, Dutch, Eastern Armenian, English (Australia), Estonian, Finnish, French, Galician, Georgian, German, Greek, Hebrew, Hungarian, Icelandic, Indonesian, Interlingue, Italian, Japanese, Korean, Lithuanian, Malay, Norwegian Bokm��l, Occitan (post 1500), Persian (Iran), Polish, Portuguese, Portuguese (Brazil), Russian, Serbian, Slovak, Slovenian, Spanish, Swedish, Thai, Turkish, Ukrainian
pkgsrc change: clean up pkglint warnings * Remove redundant PKGNAME. * Remove ruby from CATEGORIES. 1.5.3 (2022-07-18) * Ruby 3.1 compatibility (h/t: @casperisfine) 1.5.2 (2022-05-24, YANKED) * Ruby 3.1 compatibility and zookeeper client updates. * This release had build issues in the wild and was yanked 1.5.1 (2021-11-16) * Update config.guess to support newer environments (h/t: @malmckay) 1.5.0 (2021-09-27) * (housekeeping) Moves build to Github Actions from TravisCI * (housekeeping) Drops build support for MRI Ruby < 2.5 and other rubies * Build on Ruby 3 (#99) (h/t: @malmckay) * Build on MacOS (#98) (h/t: @malmckay) * Work around compiler errors on newer versions of gcc (#97) (h/t: @nickmarden) * Fix a typo on a has_key (#83) (h/t: @lexspoon) * Adds support macOS dylib (#86) (h/t: @pftg) * Fix compilation on ARM (#82) (h/t: @cdonati)
[1.1.2] - 2023-03-18 - Added new translations of the GUI, bringing the total number of supported languages to 8! - German 🇩🇪 (#87) - Simplified Chinese 🇨🇳 (#89 - #93) - Ukrainian 🇺🇦 (#94) - Added keyboard shortcuts to make the whole experience more enjoyable and efficient: check out issue #97 to see all the available hotkeys or to suggest new ones! - Changed GUI font to sarasa-gothic-mono to support the introduction of Simplified Chinese language - Minor improvements to Overview page proportions and paddings
New features - Added feature to warn you when a newer version of Sniffnet is available on GitHub 🆕 (#118) - Added badge on tab bar to show unread notifications count - Added Romanian translation 🇷🇴 (#113) Improvements - Introduction of lazy widgets to improve the application efficiency (#122) - Aesthetic improvements to create a more modern and minimal UI (use #119 to suggest me further improvements) - Changed keyboard shortcut to open settings from ctrl+S to ctrl+,, as suggested in #97 - Refactored and cleaned code modules (#123) Fixes - Fixed problem that was causing a switch to the initial page when back button was pressed with settings opened on running page and with no packets received - Fixed problem that was causing application logo to be partially hidden when resizing the window to a lower dimension - Show - option in app protocol picklist only when a filter is active - Fixed header alignment
1.3.0 add command-line options "-g", "-u", "-p" by @jschauma in #97 1.2.0 Add support for redis-sentinel by @acteru in #95 advertise new kind of supported cache by @acteru in #96 1.1.5 Warn about overriding DANE by @oh2fih in #92 Fix tests by @Snawoot in #93 1.1.4 docs: Fix a few typos by @timgates42 in #87 fix tests by @Snawoot in #88 allow unicode requests by @Snawoot in #91
2.5.0 C<2023-02-05> * Set minimal Perl version to 5.16 (#91) * Per default enviroment from vscode will be passed to debuggee, syntax check and perltidy. * Add configuration C<disablePassEnv> to not pass enviroment variables. * Support for C<logLevel> and C<logFile> settings via LanguageServer protocol and not only via command line options (#97) [schellj] * Fix: "No DB::DB routine defined" (#91) [peterdragon] * Fix: Typos and spelling in README (#159) [dseynhae] * Fix: Update call to gensym(), to fix 'strict subs' error (#164) [KohaAloha] * Convert identention from tabs to spaces and remove trailing whitespaces
0.6.3 (2013-05-17) What's Changed * Bump actions/deploy-pages from 1 to 2 by @dependabot in #90 * Fix copy paste snafu for rdoc ref by @r0ckarong in #96 * Fix edge direction setting example by @r0ckarong in #97 New Contributors * @r0ckarong made their first contribution in #96 and #88
2.1.0 (2023-06-30) What's Changed * Address warning: mismatched indentations at 'when' with 'case' by @yahonda in #74 * Make assert_dom_equal ignore insignificant whitespace when walking the node tree by @jduff in #84 * Expand Substitution Matching Types support by @seanpdoyle in #90 * Alias assert_select methods to assert_dom versions by @seanpdoyle in #93 * Raise an error if the last arg is the wrong format by @ghiculescu in #96 * Fix replacement for multiple substitutions by @speckins in #76 * Better error message if response.body is blank or not parseable by Nokogiri by @ghiculescu in #97 * selector_assertions/html_selector: No trailing . on content_mismatch by @issyl0 in #102 * Use Minitest::Assertion#diff for content failure messages by @flavorjones in #106 New Contributors * @nicolasleger made their first contribution in #73 * @yahonda made their first contribution in #74 * @dependabot made their first contribution in #79 * @jduff made their first contribution in #86 * @amatsuda made their first contribution in #88 * @seanpdoyle made their first contribution in #90 * @ghiculescu made their first contribution in #96 * @jbampton made their first contribution in #95 * @speckins made their first contribution in #76 * @issyl0 made their first contribution in #102 * @flavorjones made their first contribution in #103 2.1.1 (2023-06-30) What's Changed * Fix issue when application isn't using minitest.
What's Changed - Fixed: Prevent release generation in forks by @kevinmatthes in #86 - Added: Add package name to CHANGELOG assembly workflow by @kevinmatthes in #85 - Changed: Call Docker images of linters directly by @kevinmatthes in #89 - Fixed: Fix Release action using MakeFile by @AmmarAbouZor in #97 - Added: Fuzzy Finder for Journals by @AmmarAbouZor in #105 - Added: Fuzzy Find Demo by @AmmarAbouZor in #107
Upstream changes: 1.716 2023-06-26 14:14:46-05:00 America/Chicago [Added] - Added a parameter to show stack trace arguments when using the WithStackTrace proxy. Since these arguments may contain sensitive information, they are now removed by default. Thanks @sam-ng and @GrantStreetGroup for submitting this patch! [Github #97]
0.9.1 (2023-08-13) * Fix bug where Buffer#[] with 0 returned the last line of the buffer (#97)
cargo repository URL by @Sighery in #97 fix: escaped newline immediately after a char, resolves #100 by @ahlinc in #102 Fixed CRLF behavior for tests, run tests on all platforms in GitHub CI by @ahelwer in #106 Support for 'select' loops by @mjambon in #111 Add support for 'until' loops by @mjambon in #112 Handle words containing bare '#' by @oxalica in #109 adding zsh expansion flags by @ryaminal in #115 Update CI by @verhovsky in #131 Update Cargo.toml by @nokome in #117 Rename ansii_c_string and string_expansion by @verhovsky in #121 rust: enables highlights query by @Dav1dde in #132 Swift Package Manager by @lukepistrol in #124 Fix scanning of heredoc_body to allow empty bodies by @jaopaulolc in #137 [fix] Here-documents: parse a “real” shell word (or close enough) after << by @domq in #142 Parse Bash's tests by @verhovsky in #135 Fix CI by @verhovsky in #145 Support file descriptors for here docs/strings by @verhovsky in #156 Support optional opening paren in case by @verhovsky in #157 Highlight "select" and "until" as keywords by @verhovsky in #168 Undo misguided package.json changes by @verhovsky in #173 Restore prebuild dependencies by @verhovsky in #174 feat: rewrite the scanner in C by @amaanq in #179 fix: make helper functions static to avoid compilation conflicts with other parsers by @amaanq in #182 Fixes by @amaanq in #186 fix: negated variable assignments in if statements by @kelly-lin in #183 Fixes by @amaanq in #187
Switch to GH Actions CI. by @patrickt in #41 Add the same PR template as for tree-sitter-javascript by @mjambon in #43 Update package.json to include the repository key by @msftenhanceprovenance in #50 Loosen Rust crate's tree-sitter dependency by @dcreager in #52 adding make support by @mattmassicotte in #56 feat: treat iota as predeclared identifier by @kawaemon in #58 feat: add support to parse of type parameters by @kawaemon in #57 feat: allow to put type arguments in calling expressions by @kawaemon in #59 Update C code by @aryx in #66 Document reason for statements at top level by @adonovan in #67 Make method bodies non-optional by @adonovan in #68 Fix node naming in {param,field}_declaration by @adonovan in #65 Structure Query by @mattmassicotte in #70 Remove field_identifier from keyed_element by @adonovan in #71 Generic Makefile by @mattmassicotte in #72 Bump tree-sitter version to 0.20 by @hendrikvanantwerpen in #78 Swift Package by @mattmassicotte in #79 Made body optional for method_declaration by @lmaruvada in #90 Allow GenericType to accept QualifiedType by @kawaemon in #92 feat(queries/highlight): highlight built-in functions as @function.builtin by @jimeh in #96 feat(grammar): capture comment directives by @matoous in #97 Revert "Merge pull request #97 from matoous/md/comment-directives" by @matoous in #98 feat(ci): run build & test action on PRs by @matoous in #99 fix: fix string literal rule by @SuperBo in #91 Add more types and struct/parameter fix by @amaanq in #118 Param fix by @amaanq in #119 Update identifiers and top level declarations by @amaanq in #120 Fix single import spec list without terminator by @amaanq in #122 Materialize expression_statement nodes by @josharian in #124 Formatting & CI fixes by @amaanq in #126
2.47 2023-12-28 (by Todd Rinaldo) - #84 use $fh instead of $foo - #85 Fix typo in documentation - #89 Devel::CheckLib to from 0.99 -> 1.14 - Devel::CheckLibn 1.16 - #91 POD fix for verbatim text - #97 Add a LICENSE file - #94 Don't ship Expat/Makefile - Various github workflow improvements. Windows is still not working.
2.78.1 (stable): Glib: * Dispatcher: Allow destroy during emit (Kjell Ahlstedt) Issue #116 (PBS) gmmproc: * h2def.py: Make return types that are unsigned work. Required by gtkmm4, GdkDmabufTextureBuilder (Kjell Ahlstedt) Build: * Meson build: Don't fail if warning_level=everything (Daniel Boles, Kjell Ahlstedt) Merge request gtkmm!87 * MSVC, NMake: Make dep paths configurable (Chun-wei Fan) 2.78.0 (stable): Glib: * ustring: Add a std::hash<> specialization Not included by #include <glibmm.h>. Activate with #include <glibmm/ustring_hash.h>. (Kjell Ahlstedt) Issue #16 (Murray Cumming), merge request !61 2.77.0 (unstable): Glib, Gio: * Use callback functions with C linkage (Kjell Ahlstedt) Issue #1 (Murray Cumming) Glib: * Add create_variant() (Kjell Ahlstedt) Issue #109 (ilya-fedin) * Add VariantBase::get_dynamic() (Kjell Ahlstedt) Issue #110 (ilya-fedin) * Variant: Provide Variant<long long> whenever possible (Kjell Ahlstedt) Issue #111 (ilya-fedin) * VariantContainerBase: Add a const version of get_child() and deprecate the non-const version (Kjell Ahlstedt) Issue #112 (ilya-fedin) * Add DBusHandle and Variant<DBusHandle> (Kjell Ahlstedt) Issue #113 (ilya-fedin) * ustring: Add truncate_middle() (Kjell Ahlstedt) Gio: * Add Subprocess and SubprocessLauncher (Kjell Ahlstedt) Issue #106 (ilya-fedin) * Resolver: Add set/get/property_timeout() (Kjell Ahlstedt) Documentation: * Gio::File: Fix various spelling errors (Daniel Boles) * Remove AUTHORS and README.SUN; add info to README.md (Kjell Ahlstedt) Issue gtkmm#140 gmmproc: * Generate callback functions with C linkage (Kjell Ahlstedt) Issue #1 (Murray Cumming) Examples: * Add subprocess example (Kjell Ahlstedt) Issue #106 (ilya-fedin) Tests: * Giomm tests: Test for /etc/passwd instead of /etc/fstab (Jeremy Bicha) Merge request !60 Build: * Require glib-2.0 >= 2.77.0 * Autotools build: Don't include config.h in ustring.cc (Kjell Ahlstedt) 2.76.0 (stable): Glib: * Dispatcher: Don't warn when a Dispatcher is deleted while messages are pending. (Kjell Ahlstedt) Issue #108 (PBS) * Dispatcher: Add const versions of emit() and operator()() and deprecate the non-const versions. (Kjell Ahlstedt) Issue #103 (PBS) Gio: * ListModel: Add get_typed_object() (Kjell Ahlstedt) See issue gtkmm#132 2.75.0 (unstable): Glib: * Module: Deprecate build_path() * Binding: Fix the bind_property() with two transformation functions * Add the GLIBMM_CHECK_VERSION() preprocessor macro (Kjell Ahlstedt) Gio: * NetworkMonitor::get_default(): Add refreturn (Kjell Ahlstedt) Issue #104 (ilya-fedin) * AppInfo: Add get_[recommended|fallback]_for_type() (Kjell Ahlstedt) Issue #105 (ilya-fedin) * Add BytesIcon (Kjell Ahlstedt) Issue #107 (ilya-fedin) * ListStore: Rename a local variable (Chun-wei Fan) Merge request !59 * Settings: Add bind() with mapping functions and unbind() (Kjell Ahlstedt) Documentation: * Glib::Binding::unbind(): Fix documentation (Kjell Ahlstedt) gmmproc: * generate_wrap_init.pl.in: Disable warning C4273 on Visual Studio (Chun-wei Fan) Merge request !57 Tests: * Fix giomm_simple test on Windows (Chun-wei Fan) Merge request !58 Meson build: * Detect if we build from a git subtree (William Roy) Merge request gtkmm!72 (Kjell Ahlstedt) Issue gtkmm#131 (William Roy) * Don't copy files with configure_file() (Kjell Ahlstedt) 2.74.0 (stable): Gio: * ListStore: Add find() * File: Add create_tmp() (Kjell Ahlstedt) Documentation: * File: Document create_for_parse_name() (Kjell Ahlstedt) 2.73.2 (unstable): Glib: * ustring: Add release() (Kjell Ahlstedt) Issue #101 (PBS) Gio: * ListStore: Don't derive a gtkmm__GListStore GType (Kjell Ahlstedt) Issue glib#2661 * DBus::Proxy: get_connection(), get_interface_info(): Add refreturn (Kjell Ahlstedt) Issue #102 (우정모) * AppInfo: Add get_default_for_type_async/finish(), get_default_for_uri_scheme_async/finish() * File: Add make_symbolic_link_async/finish() * ListStore: Add property_n_items() * Resolver: Add lookup_by_name_with_flags(), lookup_by_name_with_flags_async/finish() (Kjell Ahlstedt) Documentation: * Glib::RefPtr: Improve the documentation (Kjell Ahlstedt) Issue gtkmm#119 (David Marceau) * Gio::Action: Improve the documentation (Kjell Ahlstedt) Issue #100 (Diederik van Lierop) gmmproc: * Improved handling of final types (Kjell Ahlstedt) Issue glib#2661 * Improve handling of gi-docgen syntax in C documentation (Kjell Ahlstedt) Build: * Meson build: Avoid unnecessary configuration warnings (Kjell Ahlstedt) * Meson/MSVC: Add more warnings to ignore (Chun-wei Fan) * NMake Makefiles: Ensure g[lib|io]mm[config.h|.rc] are created (Chun-wei Fan) Issue #99 (Martin Ammermüller) * Require glib-2.0 >= 2.73.2 (Kjell Ahlstedt) 2.72.1 (stable): Glib: * ustring_Iterator: Don't declare copy constructor =default. A fix in the 2.72.0 release broke ABI. (Kjell Ahlstedt) Issue #98 (Scotty Trees) 2.72.0 (stable): Glib: * MainContext: Add create(MainContextFlags flags) (Kjell Ahlstedt) Gio: * Add AppInfoMonitor (Kjell Ahlstedt, technic93) Issue #97 * DBus::Proxy: signal_signal() accepts a signal name * File: Add move_async() and move_finish() * SocketClient: Deprecate set/get/property_tls_validation_flags() * TlsCertificate: Add properties private_key, private_key_pem, pkcs11_uri, private_key_pkcs11_uri. Fix the create*() methods. * TlsClientConnection.hg: Deprecate set/get/property_validation_flags() (Kjell Ahlstedt) gmmproc: * Add "ignore_deprecations" argument in _WRAP_METHOD() (Kjell Ahlstedt) Build: * Require glib-2.0 >= 2.71.2 (Kjell Ahlstedt) * MSVC build: Support VS2022 builds (Chun-wei Fan) * Meson build: Specify 'check' option in run_command() Require Meson >= 0.55.0 (Kjell Ahlstedt) 2.70.0 (stable): Glib: * Timer: Add resume() and is_active() (Kjell Ahlstedt) Issue #87 (chamignoom) * Add the Environ class (Kjell Ahlstedt) Issue #89 (Alexander Shaduri) * Binding: Add dup_source(), dup_target(). Deprecate get_source(), get_target(). TimeZone: Add operator bool(), create_identifier(). Deprecate create(). (Kjell Ahlstedt) Gio: * FileInfo: Add get/set_access_date(), get/set_creation_date(). Notification: Add set_category(). TlsCertificate: Add property/get_not_valid_before(), property/get_not_valid_after(), property/get_subject_name(), property/get_issuer_name(). TlsConnection: Add property/get_protocol_version(), property/get_ciphersuite_name(). (Kjell Ahlstedt) Tests: * Add test of Glib::Environ (Kjell Ahlstedt) Issue #89 (Alexander Shaduri) gmmproc: * Handle gi-docgen syntax in C documentation (Kjell Ahlstedt) Build: * Require glib-2.0 >= 2.69.1 (Kjell Ahlstedt) 2.68.2 (stable): Glib: * Replace all g_quark_from_static_string() by g_quark_from_string() (Kjell Ahlstedt) Issue #96 (小太) Gio: * FileEnumerator: Remove refreturn to avoid memory leak (talisein) Merge request !53 * ListModel::get_object(): Make it work for interface classes (Kjell Ahlstedt) Issue #93 (pumkinpal) * AppInfo::get_all(): Avoid a crash on Windows (Kjell Ahlstedt) Issue #94 (Lawrence37) Build: * MSVC build: Remove extraneous GLIBMM_API in Glib::ustring (Kjell Ahlstedt) Issue #92 (Christoph Reiter)
v20.4.0 ======= Features -------- - Replace deprecated ssl.wrap_socket with SSLContext.wrap_socket and update examples in connection.py docs. (#216) v20.3.1 ======= No significant changes. v20.3.0 ======= Features -------- - Added support for SASL login. (#195) Bugfixes -------- - Better handling of escape sequences in message tags. (#205) v20.2.0 ======= Features -------- - Require Python 3.8 or later. v20.1.1 ======= * #213: Pinned against jaraco.text 3.10 due to change in interface. v20.1.0 ======= * #196: In irc.bot, avoid hanging idle when the first connection attempt fails. v20.0.0 ======= * ``SingleServerIRCBot`` no longer accepts ``reconnection_interval`` as a parameter. * Added server support for NOTICE commands. * Require Python 3.7 or later. v19.0.1 ======= * #176: Fix issues with version number reporting. Restored version version number reporting in bot and client. v19.0.0 ======= * ``irc.client`` no longer exposes a ``VERSION`` or ``VERSION_STRING``. To get the version, call ``importlib.metadata.version('irc')`` directly. v18.0.0 ======= * Require Python 3.6 or later. 17.1 ==== * Rely on `importlib_metadata <https://pypi.org/project/importlib_metadata/>`_ for loading version from metadata. Removes implicit dependency on setuptools and pkg_resources. * #158: The AsyncIO server now accepts a connection factory to enable features like SSL and IPv6 support. * #155: ``SimpleIRCClient`` now has a ``dcc`` method for initiating and associating a DCCConnection object with the client. ``DCCConnection.listen`` now accepts a ``address`` parameter. Deprecated ``SimpleIRCClient.dcc_listen`` and ``SimpleIRCClient.dcc_connect`` in favor of the better separation of concerns. Clients should replace:: client.dcc_connect(addr, port, type) client.dcc_listen(type) with:: client.dcc(type).connect(addr, port) client.dcc(type).listen() 17.0 ==== * Removed ``irc.buffer`` module, deprecated in 14.2. * #153: Drop support for Python 3.3 and 2.7. 16.4 ==== * Long Term Service release for Python 2.7. * #149: ``AioConnection.connect`` moved to coroutine, added disconnect handling for AsyncIO. 16.3 ==== * #140: Methods now use 'connection' and 'event' for parameter names. * #135 via #144: Added AsyncIO implementation. 16.2.1 ====== * Package refresh and cleanup. 16.2 ==== * #133: In ``irc.server``, add support for ISON. 16.1 ==== * #131: Add ``Connection.encode`` and ``Connection.transmit_encoding`` to enable encodings other than UTF-8 to be used when transmitting text. 16.0 ==== * Removed deprecated ``execute_*`` methods on ``Connection`` and ``Reactor`` as introduced in 15.0. * Fixed link in README. 15.1.1 ====== * New ``send_items`` method takes star args for simplicity in the syntax and usage. 15.1 ==== * Introduce ``ServerConnection.send_items``, consolidating common behavior across many methods previously calling ``send_raw``. 15.0.6 ====== * Now publish `documentation <https://python-irc.readthedocs.io/>`_ to Read The Docs. 15.0.5 ====== * #119: Handle broken pipe exception in IRCClient _send() (server.py). 15.0.4 ====== * #116: Correct invocation of execute_every. 15.0.3 ====== * #115: Fix AttributeError in ``execute_at`` in scheduling support. 15.0.2 ====== * #113: Use preferred scheduler in the bot implementation. 15.0.1 ====== * Deprecated calls to Connection.execute_* and Reactor.execute_*. Instead, call the equivalently-named methods on the reactor's scheduler. 15.0 ==== * The event scheduling functionality has been decoupled from the client.Reactor object. Now the reactor will construct a Scheduler from the scheduler_class property, which must be an instance of irc.schedule.IScheduler. The ``_on_schedule`` parameter is no longer accepted to the Reactor class. Implementations requiring a signal during scheduling should hook into the ``add`` method of the relevant scheduler class. * Moved the underlying scheduler implementation to `tempora <https://pypi.org/project/tempora>`_, allowing it to be re-used for other purposes. 14.2.2 ====== * Issue #98: Add an ugly hack to force ``build_sphinx`` command to have the requisite libraries to build module documentation. 14.2.1 ====== * Issue #97: Restore ``irc.buffer`` module for compatibility. * Issue #95: Update docs to remove missing or deprecated modules. * Issue #96: Declare Gitter support as a badge in the docs. 14.2 ==== * Moved buffer module to `jaraco.stream <https://pypi.python.org/pypi/jaraco.stream>`_ for use in other packages. 14.1 ==== * ``SingleServerIRCBot`` now accepts a ``recon`` parameter implementing a ReconnectStrategy. The new default strategy is ExponentialBackoff, implementing an exponential backoff with jitter. The ``reconnection_interval`` parameter is now deprecated but retained for compatibility. To customize the minimum time before reconnect, create a custom ExponentialBackoff instance or create another ReconnectStrategy object and pass that as the ``recon`` parameter. The ``reconnection_interval`` parameter will be removed in future versions. * Issue #82: The ``ExponentialBackoff`` implementation now protects from multiple scheduled reconnects, avoiding the issue where reconnect attempts accumulate exponentially when the bot is immediately disconnected by the server. 14.0 ==== * Dropped deprecated constructor ``connection.Factory.from_legacy_params``. Use the natural constructor instead. * Issue #83: ``connection.Factory`` no longer attempts to bind before connect unless a bind address is specified. 13.3.1 ====== * Now remove mode for owners, halfops, and admins when the user is removed from a channel. * Refactored the Channel class implementation for cleaner, less repetitive code. * Expanded tests coverage for Channel class. 13.3 ==== * Issue #75: In ``irc.bot``, add support for tracking admin status (mode 'a') in channels. Use ``channel.is_admin`` or ``channel.admins`` to identify admin users for a channel. * Removed deprecated irc.logging module. 13.2 ==== * Moved hosting to github. 13.1.1 ====== * Issue #67: Fix infinite recursion for ``irc.strings.IRCFoldedCase`` and ``irc.strings.lower``. 13.1 ==== * Issue #64: ISUPPORT PREFIX now retains the order of permissions for each prefix. 13.0 ==== * Updated ``schedule`` module to properly support timezone aware times and use them by default. Clients that rely on the timezone naïve datetimes may restore the old behavior by overriding the ``schedule.now`` and ``schedule.from_timestamp`` functions like so: schedule.from_timestamp = datetime.datetime.fromtimestamp schedule.now = datetime.datetime.now Clients that were previously patching ``schedule.DelayedCommand.now`` will need to instead patch the aforementioned module-global methods. The classmethod technique was a poor interface for effectively controlling timezone awareness, so was likely unused. Please file a ticket with the project for support with your client as needed. 12.4.2 ====== * Bump to jaraco.functools 1.5 to throttler failures in Python 2. 12.4 ==== * Moved ``Throttler`` class to `jaraco.functools <https://bitbucket.org/jaraco/jaraco.functools>`_ 1.4. 12.3 ==== * Pull Request #33: Fix apparent escaping issue with IRCv3 tags. 12.2 ==== * Pull Request #32: Add numeric for WHOX reply. * Issue #62 and Pull Request #34: Add support for tags in message processing and ``Event`` class. 12.1.2 ====== * Issue #59: Fixed broken references to irc.client members. * Issue #60: Fix broken initialization of ``irc.server.IRCClient`` on Python 2. 12.1.1 ====== * Issue #57: Better handling of Python 3 in testbot.py script. 12.1 ==== * Remove changelog from package metadata. 12.0 ==== * Remove dependency on jaraco.util. Instead depend on surgical packages. * Deprecated ``irc.logging`` in favor of ``jaraco.logging``. * Dropped support for Python 3.2.
Changelog: ### GMime 3.2.15 * Fixed the g_mime_object_get_header API definition to note that it can return null * Fixed a memory leak in address_parse() (issue #159) * Added custom header folding logic for the Newsgroups: header (issue #162) * Fixed a configure issue regarding ac_cv_sys_file_offset_bits (issue #158) * Fixed an infinite loop in the Content-Type and Content-Disposition parameter serialization logic (issue #165) ### GMime 3.2.14 * Avoid clearing the header list of a GMimeMessage when adding addresses to an address header. (issue #129) * Added the internet_address_list_append_parse() prototype definition to internet-address.h. (issue #128) * Use gtk-doc ulink syntax in doc comments instead of `<a href=...>`. (issue #131) * Fixed rfc2047 token decoding logic for base64 encodings. (issue #133) * Properly handle GDateTime UTC offsets with non-zero seconds. (issue #134) * Improved introspection data for bindings such as Vala. * Improved address name quoting. * Added a GNotifyDestroy to the GMimeParserOptions callback. * Fixed the URL linkifier logic to properly handle links without a '/' before the query string. * Fixed the URL linkifier logic to handle domains that start with numbers. (issue #152) * Reverted base64 decoder optimizations from 3.2.10 and 3.2.11 to support chunked base64. (issue #150) ### GMime 3.2.13 * Optimized parsing of messages with lots of address headers. (issue #126) ### GMime 3.2.12 * Fixed a memory leak in g_mime_gpgme_get_decrypt_result(). * Updated vapigen.m4, introspection.m4, and gpgme.m4 to improve cross-platform builds. * Add and use ax_lib_socket_nsl.m4 so that systems that do not require linkage with libnsl are not forced to link with it unnecessesarily. * Changed the build system to no longer use dolt (which is obsolete). ### GMime 3.2.11 * Fixed a bug in the base64 decoder. D'oh! ### GMime 3.2.10 * Improved performance of base64 encoder by ~5%. * Improved performance of base64 decoder by ~25%. * Unref the autocrypt header after adding it to the list. (issue #118) * Work around a bug in g_time_zone_new_offset() by using identifiers instead. (issue #120) ### GMime 3.2.9 * g_mime_multipart_signed_verify() now allows type/subtype and type/x-subtype signature parts. (issue #115) * Fixed header folding logic to avoid folding the first line of a header value. (issue #112 and issue #113) * Fixed bugs discovered by static analysis. (issue #110) * Fixed GMimeStreamPipe to set errno to ESPIPE for seek/tell/length methods. * Fixed GMimeCertificates to prefer gpgme_user_id_t's address field over the email field. (issue #102) ### GMime 3.2.8 * Various fixes to Vala (and other?) language bindings. (issue #96 and issue #101) * Enabled build for PPC64LE architecture (issue #100) * Added g_mime_object_write_content_to_stream() (issue #97) * Fixed parameter list parsing logic to not report a warning when everything is valid. * Fixed the parser to handle MIME parts without headers -or- content of any kind.
Revision history for App-ClusterSSH 4.16 2020-06-20 Duncan Ferguson <[email protected]> - Further fix for 'resolve_names' error when adding hosts via the UI - Fix missing space separator for ssh_args (thanks to Petr Vorel) 4.15 2020-05-18 Duncan Ferguson <[email protected]> - Include all utilies within each man page - Add in 'command_pre' and 'command_post' configuration options - Fix 'Add Host' menu error finding 'resolved_names' - Ensure lib path is added to range tests to find the libraries - Mark permission test as TODO as it appears to be inconsistent 4.14 2019-08-21 Duncan Ferguson <[email protected]> - Include README within the repository, not just created tar.gz files - Add 'autoquit' setting to 'File' menu (Github issue #114) - Correct macro_hostname to be the FQDN of the server where cssh is being run (Github issue #116) - Add in user defined macros 4.13.2_02 2019-01-14 Duncan Ferguson <[email protected]> - Fix Getopt-Long minimum version - Fix excess test output when Sort::Naturally isn't installed 4.13.2_01 2018-11-24 Duncan Ferguson <[email protected]> - Move all Tk code into its own module as-is - Fix for 'bad pad value "3m"' error when using Tk 804.034 - Update to Perl::Tidy 20181117 - Convert to using Dist::Zilla 4.13.2 2018-03-14 Duncan Ferguson <[email protected]> - Fix for running builds in parallel - Improvements to SUPPORT and REPORTING BUGS sections in documentation 4.13.1 2018-03-05 Duncan Ferguson <[email protected]> - Minor update to fix failing tests due to 3rd party perltidy changes 4.13 2017-12-27 Duncan Ferguson <[email protected]> - Ensure ssh_args is keep unset if it is emptied in the configuration file - Obey configured console position (Debian bug 758215) (Github issue #100) 4.12 2017-12-23 Duncan Ferguson <[email protected]> - Fix 'undefined value' error 4.11 2017-12-22 Duncan Ferguson <[email protected]> - Fix for multiple range expansion, as in 'h{a,b}{1,2}' (Github issue #97) (Thanks to lazyfrosch) - Upgrade Perl::Tidy requirement to version 20171214 (Github issue #99) (Thanks to eserte) - Add in 'external command pipe' to allow for some commands being passed in from the command line 4.10_02 2017-08-08 Duncan Ferguson <[email protected]> - Include coverage tests in the resources - Include the version of cssh in the utility documentation and README - Fix dashes (-) not being accepted in hostname range expansion (Github issue #89) - Amend ranges to work on ports, FQDN's and IP addresses - Fix bug tracker links in the main documentation (Github issue #92) - New options to specify --rows, --columns and --fillscreen (Github pull request #88) (Thanks to AsharLohmar) 4.10_01 2017-04-12 Duncan Ferguson <[email protected]> - Allow 'include' directives when reading SSH configuration files (Github issue #77) (thanks to Azenet) - Generate README when creating the distribution from cssh man page so www.cpan.org and www.metacpan.org can display documentation 4.09 2017-03-11 Duncan Ferguson <[email protected]> - Add perl-5.24 Travis-CI automated testing config - Correct a logic bug around the --debug option (Github issue #75) - Fix 'Re-add closed windows' not using the correct username (Github issue #72) - Update copyright year - Make WM decorations algorithm configurable as causes problems on some systems (Debian bug 842965, re Github pull request #66) (thanks to Tony Mancill) 4.08 2016-10-18 Duncan Ferguson <[email protected]> - Add perl-5.8, 5.10 and 5.12 to Travis-CI automated testing - Fix building and testing on perl-5.8.9 - Improve testing on systems that do not have xterm installed - Take into account WM decorations when tiling (Github pull request #66) (thanks to Andrew Stevenson) - Add option in the config file to hide the menu (Github issue #69) - Add 'unique_servers' into the configuration file to match command line option (Github issue #70) 4.07 2016-04-30 Duncan Ferguson <[email protected]> - Fixed tests on systems where bash is not installed in /bin/bash (Github issue #60) - Include link to travis-ci site in release emails for automated build and test reports - Rework hostname expansion to be pure-perl rather than relying on the bash shell (Github issue #53) 4.06 2016-03-26 Duncan Ferguson <[email protected]> - Failure to find the terminal binary should not be fatal - Fix processing of '--extra_tag_file' and its configuration item (Github issue #51) - Add bash shell expansion on host names containing a '{' character (Github issue #53) - Fix tests when running on a server without xterm installed (such as Travis CI via GitHub) - Expand $HOME and ~ correctly when looking for files (thanks to Andrew Stevenson) - Typo correction in README (thanks to Ankit Vadehra) 4.05 2015-11-28 Duncan Ferguson <[email protected]> - Change default key_quit from 'Control-q' to 'Alt-q' (Github issue #50) - Amend tests to always use C locale as some error messages are hardcoded in English (Github issue #49) 4.04_01 2015-11-21 Duncan Ferguson <[email protected]> - Ensure documentation is generated using same perl as the build (Github issue #45) - Pass '--action' through macro parsing (Github issue #42) - Workaround for glitch in KDE where windows can become unmoveable (Github issue #46) (thanks to Brandon Perkins) - Add in '--quiet | -Q ' option to reduce output in certian scenarios - Add in 'csftp' command 4.04 2015-11-03 Duncan Ferguson <[email protected]> - Include bash completion script in distribution (Github issue #29) - Allow re-adding closed session (Github issue #27 - thanks to Andrew Stevenson) - Allow sorting windows in natural order (Github isue #28 - thanks to Andrew Stevenson) - Fix links in metadata files to trackers (Github issue #41) - Fix ctel and ccon not working correctly (Github issue #35) - Amend t/10host.t to use a random hostname to prevent clashes (Github issue #23) - Amend coght message in README to match all other files for the perl license
Chatted with @jperkin, tools could set
PYTHON_FOR_BUILD_ONLY=yes
The text was updated successfully, but these errors were encountered: