[build] mongodb on SmartOS: g++ version #73

hww3 · 2018-01-24T17:30:24Z

Hi,

I spent some time trying to figure out why mongodb packages aren't available on SmartOS. The solution is fairly simple yet likely would result in upheaval... I'd love for the change to be made but will settle for it being documented here.

It seems that mongodb requires g++ version 5.3 or higher, however all of its dependencies have no such requirement, so they use the default g++ version (4.9 iirc). This results in name mangling incompatibilities which prevents the mongo binaries from linking.

I was able to get it to build by changing the system minimum gcc version (GCC_REQD) to 5.3 and recompiling the C++ dependencies.

Is there any chance of (or plans to) increasing the minimum g++ (c libraries obviously don't have this sort of version incompatibility for the most part) version in future joyent build releases?

There are other possible solutions, as referenced in this developer list email, but they all seem pretty brittle and/or don't make the situation any better on smartos:

https://groups.google.com/forum/#!topic/mongodb-dev/NVDytnnOUhg

Bill

jperkin · 2018-01-24T18:04:25Z

It's something we will probably have to do at some point, but obviously it is a huge change so needs to be tested thoroughly. At present MongoDB is the only software that I'm aware of that requires a newer compiler than our current default of GCC 4.9.

I switched our daily bulk builds over to GCC 6 a while back so that we can start to look at what the state of play is, and there is quite a lot of fallout from the default compilation environment changing from C89 to C11:

http://us-east.manta.joyent.com/pkgsrc/public/reports/upstream-trunk64/20180124.0210/meta/report.html

I've been working on fixing issues as they come up when time permits but the builds with GCC 6 are still quite far behind those done with GCC 4.9. At the same time I've recently been looking at what's involved in switching to Clang to see if that might be a better option if we're going to have to do a bunch of work either way.

So, for now, we're still in a preparation and exploration phase. With only one piece of software requiring the upgrade we're not going to rush quickly into something that may cause regressions.

Hope that helps explain the situation.

hww3 · 2018-01-24T21:25:26Z

That makes complete sense to me... switching compilers is not a change undertaken lightly. I'm not at all surprised I found the one package that has a problem!

I was able to get packages built that will solve the problem for me in the short term, so I was mainly attempting to get the problem and resolution on record in case anyone else runs into the problem.

I may go back through and see if it will build using 4.9. GCC 4.9 claims C++11 compliance which is what mongodb is supposedly tracking.

mamash · 2018-01-24T21:29:55Z

One other workaround would be to make sure all the MongoDB dependencies are built embedded. That's hardly a sanctioned approach in pkgsrc, but may be better than nothing. IIRC the MongoDB source tarball used to come with vendored sources for all (most?) deps and it was the default behavior.

The other thing is that upstream has dropped all SunOS support recently and we might see ugly portability issues coming our way.

hww3 · 2018-01-24T21:59:09Z

I did attempt to build using the embedded dependencies and it didn't solve the problem (though the problem did move). I did not take the time to see if that was something that was easily fixable.

Getting on my soapbox, it's a shame that they're no longer supporting SunOS, but that seems to be an unfortunate trend. I have run into a number of projects that pretend that no other OS exist aside from Linux; that Darwin even exists is a major thorn, let alone SunOS.

2018/01/26: Version 6.7.1 2018/01/25: disable USE_TRY_IN_MATCH_LIMIT by default 2018/01/24: implement mechanism of try-in-match-limit 2018/01/24: #76: rename EXPORT to ONIGURUMA_EXPORT 2018/01/15: #73: update for automake 1.15.1 2018/01/14: #74: update description of README 2018/01/10: #72: Correct spelling and grammar in FAQ (English) 2017/12/25: remove USE_COMBINATION_EXPLOSION_CHECK codes

1.48 2018-03-26 - The last release would die if Sub::Util was not available, but this should just be an optional requirement. Fixed by Paul Howarth. Fixes GH #77. PR #78. 1.47 2018-03-25 - DateTime::Duration->multiply now only allows integer multipliers. Implemented by Dan Stewart. PR #73. - Added is_last_day_of_quarter() and is_last_day_of_year() methods. Implemented by Dan Stewart. PR #72. - When an exception was thrown while adding a duration the object could be left in a broken state, with the duration partially applied. Subsequent addition or subtraction would produce the wrong results. Reported by Pawel Pabian. GH #74.

@mephinet

Upstream changes: 1.707 2018-08-01 22:55:01-05:00 America/Chicago [Fixed] - The local context hash (`$log->context`) and the log hash (`$log->$level( $message, $hash )`) now get merged correctly, combining contextual logging and structured logging. Thanks @mephinet! [Github #76] [Github #73]

@jonasj76

Changelog: [v3.2.1][] - 2017-08-17 ----------------------- ### Fixes * Issue #101: Bump ABI major number due to incompatible change in struct when adding option annotation/comments in [v.3.1][]: `1.1.0 -> 2.0.0` [v3.2][] - 2017-06-03 --------------------- ### Fixes * Issue #96: Add Windows/mingw compatible `fmemopen()` replacement * Issue #98: Fix v3.1 regression, segfault on comment-only lines [v3.1][] - 2017-05-24 --------------------- ### Changes * Refactored `CFGF_IGNORE_UNKNOWN` support, libConfuse now properly ignores any type and sub-section without the need for declaring an `__unknown` option. When the flag is set all unknown options, including unknown sub-sections with, in turn, unknown options, are now fully ignored * Issue #69: New API for creating titled sections at runtime, by Jonas Johansson @jonasj76 * Issue #92: Support for option annotation/comments. Every option can now have a comment, which is both read and written from/to file. Disabled by default, enable with `CFGF_COMMENTS` flag in `cfg_init()` * ABI bump: 1.0.0 --> 1.1.0, due to new functionality ### Fixes * Build unit tests statically for easier debugging * Issue #21: Major refactor of lexer to fix memory leaks, `cfg_free()` now properly releases all memory. By Joachim Nilsson @troglobit * Issue #64: Fixed MSVC build errors, by George Koskeridis @Gikoskos * Issue #65: SIGSEGV when parsed default values are used with include, by Dmitri Zhabinski * Issue #71: Fix syntax in rpm spec file, for CentOS/RHEL7 * Issue #73: Adjust gettext version requirement to build on CentOS/RHEL7. GNU gettext v0.18.2.1 update `AM_GNU_GETTEXT()` to use AC_PROG_MKDIR_P instead of `AM_PROG_MKDIR_P`, but v0.18.1.1 is included in Ubuntu 12.04 LTS. Fortunately Ubuntu 14.04 LTS ships v0.18.3.1 and Debian Jessie ships v0.19.3. Unfortunately, CentOS7 and RHEL7 ships v0.18.2.1, so for best compat. level at this point in time we require v0.18.2. * Issue #74: Fix typos in documentation, by Luca Ceresoli * Issue #79: Add `fmemopen()` compat for *BSD, including macOS

VisualVM 1.4.1 released on April 25th, 2018 Features and Enhancements: Heap Viewer allows to compare heap dumps Load Snapshot dialog uses All Supported Files filter by default Full support for running on JDK 10 and monitoring/profiling Java 10 processes Fixed Bugs: GH-51: StackOverflowError at Startup Profiler GH-52: A11Y - Keyboard navigation using Tab does not work GH-53: Configurable OQL results limit GH-54: A11Y - Filter & Find actions not accessible using keyboard shortcuts GH-55: Make thread view collapsable in heapViewer GH-57: Why has the "compare to another heap dump" feature disappeared GH-59: Provide All Files file filter in File | Load GH-62: OQL engine not available GH-73: VisualVM 1.4 refuses to launch under JDK 10 VisualVM 1.4 released on December 12th, 2017 Features and Enhancements: CPU Sampler and Profiler display live call trees, delta results, selected threads, and many other improvements Memory Profiler allows profiling of defined classes, displays delta results Introducing a lightweight JDBC profiler for monitoring SQL commands executed by a Java process Heap Viewer is the new .hprof heap dumps viewer in VisualVM with a lot of improvements over the original HeapWalker Colored classes/methods in Sampler, Profiler and Heap Viewer views based on user-defined filters Full support for running on JDK 9 and monitoring/profiling Java 9 processes Built on NetBeans Platform & profiler 9.0-dev API Changes: Compatible: com.sun.tools.visualvm.core.snapshot.Snapshot.computeSnapshotID() added Fixed Bugs: GH-3: MBeans plugin doesn't repaint window GH-7: NullPointerException when starting with eclipse Launcher GH-14: Can not save snapshots of profiler or sampler when multiple users run VisualVM on the same Machine GH-31: "Peform GC" GH-38: Profile and Profiler Snapshot actions always disabled VisualVM 1.3.9 released on October 4th, 2016 Migration to GitHub: VisualVM project has been migrated to GitHub, including the sources, downloads and update centers. New project pages have been created at https://visualvm.github.io, the content will be incrementally transferred from the original pages at https://visualvm.java.net. Features and Enhancements: Issue 603: remember decisions about future host/connection resolving Issue 618: --openjmx cli option should take a connection name and allow setting skip ssl Enabled VM Coredumps support on Microsoft Windows The --openid and --openpid parameters now accept index of process tab to open Start Page has been refreshed to contain up to date links to useful resources Experimental support for running on JDK 9 and monitoring/profiling Java 9 processes Built on NetBeans Platform & profiler 8.0.2 API Changes: Compatible: com.sun.tools.visualvm.charts.SimpleXYChartDescriptor.decimal(minValue, maxValue, initialYMargin, chartFactor, customFormat, hideableItems, valuesBuffer) added Compatible: com.sun.tools.visualvm.core.options.GlobalPreferences.setDoNotShowAgain(key, value) added Compatible: com.sun.tools.visualvm.core.options.GlobalPreferences.getDoNotShowAgain(key) added Fixed Bugs: Issue 458: libprofilerinterface.so exports popular symbol names Issue 575: Fix sampler memory snapshot type Issue 594: Cannot load heap dump - ArrayIndexOutOfBoundsException Issue 601: java.lang.ClassNotFoundException: com.fubar.MyClass$$Lambda$9 Issue 602: SimpleXYChartDescriptor.decimal Should Be Able To Display > 2 decimal places Issue 604: Tracer dynamic does not work with JDK 8 Issue 605: VisualVM fails to load local java applications when NetbeansBased applications are running Issue 606: Command line arg --openjmx doesn't ask for credentials in some cases Issue 607: Incorrect snapshot name Issue 608: ArrayIndexOutOfBoundsException Issue 623: Support Lambdas in Java 8 Issue 625: Opening a thread dump may take several minutes Issue 626: ClassCastException: java.lang.String cannot be cast to [Ljava.lang.Object; Issue 627: Memory sampling does not work Issue 636: Thread dump cannot be closed IssueTracker query to list all changes in NetBeans profiler 8.0.1 and 8.0.2 affecting VisualVM IssueTracker query to list all changes in NetBeans profiler after 8.0.2 affecting VisualVM

pkgsrc changes: - Switch to www/webkit-gtk (instead of using webkit24-gtk3) - Adjust GITHUB_RELEASE to remove the trailing `a', please note that this will probably not needed for future releases! Changes: 1.12.5 ------ * #665: Webkit browser now supplies 'Liferea' component in user agent * #664: Added "Mark All As Read" button to headerbar plugin * #620: Added flatpak JSON (glitsj16) * #579: Added item list column drag and drop reordering (Yanko Kaneti) * #436, #662: Move from GnomeKeyring to libsecret (bgermann) * Fixes #663: Correct instapaper sharing link (Daniel Alexandersen) * Fixes #661: Update sharing links (Daniel Alexandersen) * Fixes #271: Consistent over usage of CPU (trigger by "Next Unread" loop) (reported by GreenLunar) * #472, #632: Dropping Inoreader support (API broke) 1.12.4 ------ * Fixes #660: Added installable plugin to change accels (Lars Windolf) * Fixes #654: Segfault on date out of range (Leaiz) * Fixes #651: Fixes Free Music Archive link in default OPMLs (reported by benjbrandall) * Fixes #649: Switch from persistent to session-only cookies (Daniel Alexandersen) * Fixes #645, #646: unread count of vfolder (Leaiz) * Fixes #637: Extra keywords in .desktop file (syndication; rss; atom) (Daniel Alexandersen) * Fixes #557: Updating counters for remote sources (Leiaz) * Updated cookie usage hint in FAQ 1.12.3 ------ * #634: Added setting for custom download commands (Leiaz) * #614: GTK Headerbar support via plugin (Lars Windolf) * #608: Refactoring UI code to switch to GAction and GtkBuilder Note: this implies not having icons in the main menu anymore which were still there for all non-GNOME users (see #626). (Leiaz) * #589: Item list view column order rework as a preparation for possible real column drag&drop. Introduces a new DConf setting for the column order. (Yanko Kaneti) * Fixes #280: Mark read toolbar button always disabled for search folders (Lars Windolf, reported by dvahalev) * Fixes #591: Please add a safety question when "marking all read" (Leiaz, reported by Nudin) * Fixes #625: Avoid exception in trayicon.py (Lars Windolf) * Fixes #627: GnomeKeyring plugin fails to activate when keyring doesn't exist (Lars Windolf) * Fixes #630: Fix feed list selection after DnD (Peter Zaitev) * Fixes #633: Big Memory leak in date code (Leiaz) * Update of Turkish translation (emintufan) * Update of French translation (guilieb) 1.12.2 ------ * Adding a plugin installer plugin that allows discovering and automatically installing 3rd party plugins * #585: Drop language from user agent to increase privacy (Daniel Aleksandersen) * #583: Add transmission-gtk and aria2 as download tool options (Daniel Aleksandersen) * #495: New command line option --disable-plugins (-p) to start with all plugins disabled. * Fixes #610: Liferea not showing up in GNOME Software (Yanko Kaneti) * Fixes #604: Correctly print error message when failing to unlock GNOME keyring (ghost) * Fixes #602: CSS style for GTK link colors not used (reported by pupyc) * Fixes #581: Redirect location updates and adds HTTP 308 (RFC 7538) support (Daniel Aleksandersen) * Fixes #578: Unable to set unread items in bold (Leiaz, reported by EverEve) * #612: Update of French translation (Guillaume Bernard) * #596: Update of Swedish translation (jony0008) * #594: Update of Polish default feed list (wmyrda) * #584: Fixes broken OPML feed list entries (Daniel Aleksandersen) * #584: Added Norwegian feed list (Daniel Aleksandersen) * #577: Fixes newsbin doc typo (Daniel Aleksandersen) 1.12.1 ------ * Fixes #562: Lintian spelling errors (reported by Paul Gevers) * Fixes #563: Appstream data has new format (patch by Paul Gevers) * Fixes #572: Doesn't remember some sort orders (reported by geplus) * Fixes #504: Fix assertions/crashes on changing view layouts (Leiaz) * Fixes #573: Workaround to avoid GtkPaned shrinking (Leiaz) * #566: Update of Italian translation (Gianvito Cavasoli) * #566: Update of Italian default feed list (Gianvito Cavasoli) * #514: Update of Indonesian translation (Samsul Ma'arif) * #514: Added Indonesian default feed list (Samsul Ma'arif) * Update of German translation 1.12.0 ------ * Fixes unhiding from tray icon when activated via GApplication (when starting Liferea a 2nd time) * #399: Reorder columns in 'Normal' email-like view to have the date column always at the end (Mikel Olasagasti) * #532: Add plugin to make unread feeds titles bold (Yanko Kaneti) * Workaround for #503: Liferea deanonymize Tor (Leiaz) * Fixes #450: #546 Resize both panes in normal and wide view (Leiaz) * Fixes #538: toggle_visibility() does not make a minimized window visible again (reported by Balló György) * Fixes #522: Segfault when switching feed in combined view (patch by jonmstone) * Fixes #419, #457: Handling of relative URLs in Atom parser (Leiaz) * Added 'View Image' context menu option in HTML view * Dropped del.icio.us from social bookmarking options as it is a read-only service now. * Redesign of the wide view mode: larger titles with small text teasers * Added optional AMP/HTML5 content enrichment feature 1.12-rc3 -------- * Fixes #459: Fixes GtkDoc warnings (Leiaz) * Fixes #415: Filter commands are not asynchronous (Rich Coe) * Fixes #363: Missing space above internal browser address bar (reported by nekohayo, patch by Mikel Olasagasti) * Fixes #208: All "Unread" search folder items marked read at once (Leiaz) * Fixes #251: Liferea does not always use theme icons when it is launched on system startup (reported by GreenLunar, fix by Leiaz) * Change headline column sorting in wide view to time sorted * Updated Finnish translation (Jorma Karvonen) * Updated Latvian translation (Rihards Prieditis) * Updated Albanian translation (Bensik Bleta) * Updated Hungarian translation (Balázs Úr) * Updated Brazlian translation (Rafael Ferreira) * Updated French translation (Guillaume Bernard) 1.12-rc2 -------- * Change all g_warnings() to g_print() for remote source to avoid "crashing" on errors. * Reorganized all UI definitions in separate files to simplify GtkBuilder handling. * Github #425: Add GeoRSS info and map link in item header (Mikel Olasagasti) * Github #407: Replacing deprecated elements in preferences (Leiaz) * Github #396: Create LifereaApplication type (Leiaz) * Github #434: Partial RFC3229+feed support for bandwidth savings (Daniel Aleksandersen) * Fixes Github #208: gtk_tree_store_get_path: assertion 'iter->stamp == priv->stamp' (reported by Mno-hime) * Fixes Github #403: Leftover OSM XSLT in item view (reported by Paul Gevers) * Fixes Github #423: Internal browser shows files system on go-back (Leiaz, reported by Paul Gevers) * Updated German translation * Github #441: Updated French translation (Surfoo) 1.12-rc1a --------- * Fixing missing header files 1.12-rc1 -------- * Github #348: Added support for downloading content that cannot be displayed by HTML widget (e.g. PDFs) (Leiaz) * Github #355: Migrate to Python3 libpeas loader (patch by picsel2) * Github #311: Upgrade to WebKit2 (patch by Leiaz) * Github #292: Show new item count in tray icon (patch by mozbugbox) * Github #297: Minimize to systray on window close (patch by Hugo Arregui) * Github #325: Auto-fitting, translated license (patches by GreenLunar and Adolfo Jayme-Barrientos) * Fixes Github #73: Problem with favicon update (reported by asl97) * Fixes Github #177, #350: Tray icon not scaled properly (patch by mozbugbox) * Removes GeoIP rendering via OSM to avoid exposing users to remote JS library resources. (reported by Paul Gevers) * Fixes Github #337: Case sensitive sorting (reported by Pi03k) * Fixes Github #361: Show all enclosuers (Leiaz) * Fixes Github #368: Segfault on liferea-feed-add (Leiaz) * Fixes Github #382: Broken Auto-Detect/No Proxy setting (Leiaz) * Fixes Github #383: Per feed don't use proxy setting is broken (reported by Leiaz) * Github #309: Update of Japanese translation (IWAI, Masaharu) * Github #329: Update of Hebrew translation (GreenLunar) * Github #330: Update of Spanish translation (Adolfo Jayme-Barrientos) * Update of Swedish translation (Andreas Ronnquist) 1.11.7 ------ * Github #287: Add support for media:group. (patch by Leiaz) * Github #287: Fixes issues with media:content. (patch by Leiaz) * Fixes Github #283: Bad .desktop categories definition (reported by Wuzzy2) * Fixes Github #279: Fixes rules no visible in searchdialog (patch by Leiaz) * Fixes Github #278: No "Download" tab in Tools/Preferences (docs error, reported by Anders Jonsson) * Fixes Github #83: Segfault when sorting feeds in folder (patch by Leiaz) * Fixes French translation (patch by polo2ro) * Github #300: Updated manpage (patch by GreenLunar) 1.11.6 ------ * Added "Do Not Track" support (enabled per default) * Github #193: Added x-scheme-handler/feed to desktop file (suggested by GreenLunar) * Github #209: Add image icons to plugins (by GreenLunar) * Github #210: Enable tests for parsing RFC822 dates with 2 digit year (patch by arunanbala) * Fixes Github #78: Shaky text in feed list (reported by GreenLunar) * Fixes Github #195: Out-dated documentation on enclose download (reported by brian-in-crawford) * Fixes Github #198: Traceback on popup notifications (reported by GreenLunar) * Fixes Github #216: Untranslatable strings (reported by GreenLunar) * Fixes Github #256: PyGIWarnings on loading plugins (patch by glitjs16) 1.11.5 ------ * Github #178: Implementing full screen mode for videos (mozbugbox) * Fixes Github #32: Prevent erroneous "Mark all as read" (reported by Mno-hime) * Improves Github #36, #113: UI lock up during refresh (suggested by mozbugbox) * Fixes Github #180: Removing item from (v)folder marks all read (reported by GreenLunar) * Fixes Github #140, #158: Vertical pane placement is forgotten. (patch by foresto) * Fixes Github #182: Missing config.h include in date.c (reported by Paul Gevers) * Update of Russian translation (bboa) 1.11.4 ------ * Fixes Github #154: Crashes while starting (corrupt icon) (reported by jcamposz) * Github #149: Fixes a random crash on startup (patch by mozbugbox) * Fixes Github #79: RTL ordering of Back/Forward icons (reported by GreenLunar) * Fixes Github #30: Segfault after updating from 1.8 to 1.10 (reported by vakuum) * Fixes Github #87: URL resolving wrong if base tag involved (reported by DanMan, fixed by mozbugbox) * Fixes all defects reported by Coverity scan * Simplied external browser handling. Now Liferea only supports the gtk_show_uri() launch mechanism for the system default browser and a user specified browser command. * Update of Albanian translation (Besnik Bleta) * Update of Hebrew translation (Genghis Khan) * Update of Spanish translation (Juan Campos Zambrana) * Fixes typo in Italian translation 1.11.3 ------ * Fixes Github #134: Broken default news feed. (reported by pvdl) * Fixes Github #133: Subscribe into TheOldReader categories * Fixes Github #122: Crashes at launch, "segmentation fault" (reported by geoffm) * Fixes some memory leaks (patch by Rich Coe) * Fixes Github #145: Incorrect method triggered for 'Launch External' (patch by mozbugbox) * Fixes Github #48: Window stays hidden on next start after Ctrl+W (reported by Jeff Fortin) * Expose LifereaHtmlView to GObject Introspection (patch by mozbugbox) * Improves Google Reader API error handling * Now using HTTPS only when accessing TheOldReader * Added LifereaNodeSourceActivatable interface to allow plugins implementing new node source types. * Downgrade enclosure drop warning from Glib warning to debug trace. 1.11.2 ------ * Fixes Github #132: Broken documentation link (reported by kallus) * Fixes Github #121: Wrapping issue in folder display (reported by Jeff Forting) * Fixes Github #114: Avoid termination on UTF-8 validation error * Fixes Github #90: Libnotify plugin not working (reported by asl97) * Fixes Github #86: Support HTTP content negotiation (suggested by DanMan) * Black-list some categories used by Google Reader clones that should not be visible. * Allowing browser history to go back to previously shown headline when browsing inside the item view. * Dropping offline option as this is duplicated with desktop environment in GNOME/network manager. * Fixes Github #100: Problems with dark Adwaita theme in GTK 3.14 (reported by majutsushi) * Fixes for preferences dialog width. (patch by Jeff Fortin) * Update of Arabic translation (Khaled Hosny) 1.11.1 ------ * Fixes Github #81: Inability to add subscriptions (reported by GreenLunar) * Fixes Javascript links not opening in new browser tabs * Updated Hebrew translation (Genghis Khan) * Fixes Github #88: Minor DE translation mistake (moraxy) 1.11.0 ------ * Added experimental InoReader support * Added experimental Reedah support * Fixes SF #1123: Mistakenly claims "TinyTinyRSS source is not self-updating" (reported by Dominik Grafenhoher) * Fixes SF #1119: Crash on font resize at startup. (reported by David Smith) * Fixes #1056, #1089, #1098: Honor preferences when opening links (patch by Daniel Seither) * Fixes #1117: Selecting last unread item in reduced feed list jumps to next feed (reported by Bruce Guenter) * Fixes missing "Via" metadata type (patch by Rich Coe) * Fixes incorrect new count reset handling in item_state.c and some of the node source implementations. * Fixes SF #1096: missing installation of liferea.convert file (reported by stqn) * Fixes SF #1135: liferea-add-feed doesn't process feed:https// (patch by Kevin Walke) * Fixes SF #1137, #1142: startup race with LifereaHtmlView (reported by Yanko Kaneti) * Fixes Github #13: Parsing errors not visible with dark themes (reported by Steve Kelly) * Fixes Github #29: Do not use bold text for feeds/folders with unread items in the leftmost treeview (repored by Jeff Fortin) * Fixes SF #1141: Liferea does not update feeds with TinyTinyRSS (reported by Dominik Grafenhofer, denk_mal, Fabian Henze) * Fixes SF #1150: subscription prop/source: not all fields and buttons visible (reported by David Smith) * Fixes Github #26: RTL comments appear incorrectly (reported by yaconf) * Fixes Github #27: Images do not autosize to fit the available space (reported by Jeff Fortin) * Fixes Github #34: Add TinyTinyRSS Enclosure Support (reported by Adrixan) * Fixes Github #43: "Any of the following" search condition doesn't work (reported by Jeff Fortin) * Fixes Github #49: Some dialogs scrolling areas do not request enough height (reported by Jeff Fortin) * Fixes Github #53: Doesn't automatically update feed name and favicon for new feed (reported by asl97) * Patch SF #224: Update to new libxml2 buffer API (Simon Kagedal Reimer) * Patch SF #209: Avoid copying list in itemset_merge_items (kaloyan) * Make Liferea use ETags and send If-None-Match (patch by Chris Siebenmann) * Support NOCONFIGURE for RPM builds (Charles A Edwards) * Rename README to README.md * Removing libindicate support (to be added as plugin maybe) * Removing libnotify support (to be added as plugin maybe) * Removing build in tray icon support * Added tray icon plugin * Added category/folder support for TheOldReader * Added folder auto-removal for TinyTinyRSS & TheOldReader * Updated README on plugin contribution * Updated Arabic translation (Khaled Hosny)

pkgsrc changes: - Backport a patch from upstream to fix the build with poppler 0.71.0. - Temporary disable opvp support, not yet ported to poppler 0.71.0 (Add a XXX comment as a reminder to reenable it once fixed). - Address all test failures (now all tests pass!) Changes: 1.21.4 ------ - cups-browsed: cups-browsed: Limit the number of retries for creating a print queue when it comes to HTTP timeouts. Number of retries given by HttpMaxRetries directive in cups-browsed.conf. Thanks to Zdenek Dohnal for the patch (Pull request #73, Red Hat bug #1648697). - cups-browsed: Read out current time right before setting the timeouts. Thanks to Zdenek Dohnal for the patch (Pull request #71, Red Hat bug #1648697). - libcupsfilters: In the PPD generator for driverless IPP printing let "*cupsManualCopies: true" lines get added to the PPD if printing is done in a raster format as then pdftopdf needs to generate the copies. - pdftoraster, pdftoopvp, pdftoijs: Fix build with Poppler >= 0.70 (Issue #69, Pull request #70). - pdftopdf: Fixed printing multiple copies on driverless IPP printers. When printing collated copies the multiple copies got applied twice, resulting in n*n instead of n copies (CUPS issue #5433). - pdftoraster, pdftoopvp, pdftoijs: Poppler removed memCheck and gMemReport functions, remove appropriate calls (Issue #62, Pull request #66).

Changes 3.7.1 Restored support for Java 8. 3.7.0 #71 Added support for empty passwords for BASIC and DIGEST auth. #72 Ability to edit URL encoded body parameter. #73 Zip distribution build was generating wrong format. 3.6.2 XML formatting now uses jxmlfmt. Built using Java 10. Requires Java 10 to run.

@nrdvana

Upstream changes: 0.83 Sun 28 Apr 2019 11:30:37 AM CEST - Reference Inline::Module in docs related to installation (PR #68 @nrdvana++) - create_config_file: don't accidentally skip rest of directory scanning (PR #73 @eserte++) - Merge per-language config, not overwrite (PR #71 @mohawk++)

2.38.1 (stable) === - Fix OOM in JPEG2000 loader [Ivan A. Melnikov, #107] - Fix thumbnailing of animated GIFs [Debarshi Ray, #99] - Multiple improvements to the GIF loader [Robert Ancell, !24, !28, !30, #22, #69 - Fix build on Windows/MSYS2 [Christoph Reiter, !29] - Fix soname versioning on macOS [Christoph Reiter, !23] - Cross-compilation fixes for Android [Matthew Waters, #64] - Fix building modules on macOS [Ignacio Casal Quinteiro, !18 and !19] - Fix introspection generation [Iain Lane, #92] - Fix error handling in PNG loader [Debarshi Ray, !16] - Improve reproducibility of the build [Chris Lamb, !15] - Speed up saving PNG files [Brion Vibber, #90] - Add variables in the pkg-config files for binary utilities [Emmanuele Bassi, #88] - Build fixes [Emmanuele Bassi, #88] 2.38.0 (stable) === - Documentation fixes 2.37.92 (release candidate) === - Ensure that GdkPixbuf's storage is safely handled [Federico Mena Quintero] - Add test case for buffer overflow in pixdata loader [Bastien Nocera, #57] 2.37.0 (development) === - Rework relocation support for loaders cache on Windows [Christoph Reiter, #776081] - Properly install test data [Emmanuele Bassi, Jeremy Bicha, #795527, #795210] - Plug a memory leak when using GBytes [Vitaly Kirsanov, #787626] - Fix introspection annotations [Iñaki García Etxebarria, #789935] - Fix documentation building with X11 disabled [Quentin Glidic, #794872] - Drop Autotools build and move to Meson [Emmanuele Bassi] - Fix OOB error when dithering [Bert Pauline, #748211] - Drop the MMX assembly optimizations for pixops [Emmanuele Bassi] - Improve compatibility for the post-install script [Brendan L, #795705] - Expose the dimensions of the original image from GdkPixbufLoader [Debarshi Ray, #778517] - Improve thumbnailer implementation [Debarshi Ray, #778517] - Make X11 a dependency if the `x11` build option is enabled [Emmanuele Bassi, #77] - Generate separate introspection data for GdkPixdata API [Emmanuele Bassi, #72] - Deprecate GDK_INTERP_HYPER [Emmanuele Bassi, #3] - Avoid a deprecation warning with recent libjasper [Emmanuele Bassi, #73] - Fix build on macOS [Emmanuele Bassi, !5] - Fix build with Visual Studio [Chun-wei Fan, !8] - Fix cross-compilation of Windows build on Linux [Benjamin Gilbert, !10]

Changelog: New Libraries Variant2: A never-valueless, strong guarantee implementation of std::variant, from Peter Dimov. Updated Libraries Align: Support for any integral type in the integral versions of align_up and align_down. Revised the implementation of aligned_allocator to no longer require a specialization for void. Define propagate_on_container_move_assignment and is_always_equal in aligned_allocator. Asio: Improved performance slightly by eliminating a redundant move construction when completed handlers are dispatched. Eliminated a compiler warning by annotating a case fall-through in the free function connect() implementation. Fixed the is_*_buffer_sequence detection traits for user-defined sequence types. Fixed some Windows-specific warnings about an incompatible pointer cast when obtaining the CancelIoEx entry point. Changed to automatically set the defaults when opening a serial port on Windows. Changed the serial port get_option() member function to be const. Fixed a name hiding issue with the WinRT stream-oriented socket backend's shutdown function. Applied a minor fix to the documentation for is_dynamic_buffer. Added some support for Haiku OS. Added wolfSSL compatability. Changed to require C++17 or later for coroutines TS support with clang. Fixed a doxygen generation problem in the tutorial. Ensured example programs are correctly incorporated into the documentation. Any: Static initialization of the default constructed boost::any is now possible. Fixed performance regression in assignment on a compilers without move-semantics. Maintenance work. Beast: This version consists mostly of bug fixes and performance improvements. Substantial work included for the split compilation mode, to reduce compile time when defining BOOST_BEAST_SEPARATE_COMPILATION. We'd love to know how you or your company use Beast, consider adding an item to the Companies and Individuals Using Beast list. See the full Release Notes for a complete list of changes. Circular Buffer: Correct doxygen generated reference to no longer show internal members. (Glen Fernandes) Eliminate ubsan warning on add and sub. (Glen Fernandes) Fix incorrect check in is_uninitialized. (Niklas Fejes) Container: Fixed bugs: GitHub #47: "added alignment specification for small_vector". GitHub #88: "Implement C++17 MoveAssignable requirements for self-move assignments". GitHub #107: "Alignment ignored in resource_adaptor". GitHub #109: "Get rid of integer overflow in copy_move_algo.hpp (-fsanitize=integer)". GitHub #110: "Avoid gcc 9 deprecated copy warnings in new_allocator.hpp". GitHub #112: "vector::resize() compilation error with msvc-10..12: data is not a member of boost::detail::aligned_storage". GitHub #114: "Fix small_vector noexcept specification". GitHub #116: "MSVC + boost 1.70 compilation error when windows.h is already included (detail/thread_mutex.hpp)". GitHub #117: "flat_map/map::insert_or_assign with hint has wrong return types". GitHub #118: "Non-unique inplace_set_difference used in in flat_tree_merge_unique and iterator invalidation in insert_unique". GitHub #122: "Fix has_trivial_destructor_after_move". GitHub #123: "With heterogeneous lookup, equal_range can result in a range with length greater than 1". deque can now have options, using deque_options. The block size/bytes can be be specified. static_vector can now have options, using static_vector_options. Alignment and throwing behaviour can be be specified. small_vector can now have options, using small_vector_options. Alignment and growth factor can be be specified. Context: Add support for RISC-V LP64D #72: Fix ABI violation on ppc64 ELFv2 #99: cleanup of stack if creating ucontext fails Conversion: Maintenance work. Core: Added functions alloc_construct, alloc_construct_n, alloc_destroy, and alloc_destroy_n in <boost/core/alloc_construct.hpp> for allocator aware and exception safe construction and destruction of objects and arrays. (Glen Fernandes) Added constexpr functions first_scalar in <boost/core/first_scalar.hpp> for obtaining a pointer to the first scalar element of an array. Given a pointer of type T* they return a pointer of type remove_all_extents_t<T>*. (Glen Fernandes) Added class template noinit_adaptor in <boost/core/noinit_adaptor.hpp> which is an allocator adaptor that converts any allocator into one whose construct(ptr) performs default initialization via placement new, and whose destroy(ptr) invokes the value_type destructor directly. (Glen Fernandes) Added class template default_allocator in <boost/core/default_allocator.hpp>, which can serve as a minimal default allocator that has interface similar to C++20 std::allocator, supports configurations with disabled exceptions and does not have std as an associated namespace. The allocator uses operator new and operator delete for allocation. (Glen Fernandes) In <boost/core/uncaught_exceptions.hpp> header, added workarounds for better compatibility with QNX SDP 7.0 when libc++/libc++abi libraries are used. (Andrey Semashev, #59) The <boost/detail/sp_typeinfo.hpp> header is now marked as deprecated and will be removed in a future release. <boost/core/typeinfo.hpp> should be used instead. (Peter Dimov) Dynamic Bitset: Enabled hardware-assisted popcount on MSVC (#38). Added support for boost::hash and std::hash (#45). Support copy-initialization with default constructor (#48). Endian: Clarified requirements on the value type template parameter Added support for float and double Added endian_load, endian_store Updated endian_reverse to correctly support all non-bool integral types Moved deprecated names to the deprecated header endian.hpp Fiber: documentation for shared_work updated Filesystem: Fixed incorrect error_code returned from directory iterator increment when readdir_r is used. For path, fixed rvalue-aware operator/ return type to return an rvalue instead of rvalue reference. This fixes leaving a dangling reference in the user's code if the result of operator/ is bound to a const reference. (#110) Fixes for better compatibility with Windows CE. (#24) Added minimal support for CMake. (#106) Flyweight: Maintenance work. Histogram: New features: Support for thread-safe storages and new thread-safe accumulators Support for compiling without exceptions/RTTI (increases performance by 10-20 %) (with Glen Fernandes) Performance improvements for 1D and 2D histograms boost::histogram::indexed now returns forward iterator range instead of input iterator range boost::histogram::indexed_range::accessor is now non-copyable and acts like reference to cell value, making more algorithms from the C++ stdlib work boost::histogram::algorithm::reduce with new slice option and option fusion boost::histogram::algorithm::project accepts runtime indices for static histograms Bug Fixes: boost::histogram::algorithm::reduce also works on histograms that have some axis types without reduction support boost::histogram::axis::traits::update now works correctly for boost::histogram::axis::variant Other: 100 % test coverage Reduced internal Boost dependencies Improved documentation and examples Guaranteed no-throw moves for all builtin axis types Compile cleanly at higher warning levels See changelog for more details. IoStreams: Fixed processing of multi-stream files (#87). Added support for multi-threaded LZMA (#95). Interprocess: GitHub #85 ("warning: Implicit conversion loses integer precision"). GitHub #86 ("warning: Possible misuse of comma operator"). Intrusive: GitHub #42: Documentation does not describe treap priority_of_value changes GitHub #43: Fix tests with BOOST_INTRUSIVE_VARIADIC_TEMPLATES enabled GitHub #45: Disable variadic templates for MSVC-12 to avoid ICEs LexicalCast: Added tests for boost::filesystem::path conversions #25. Maintenance work, including #28. Log: New features: Improved support for C++17 std::string_view in basic_formatting_ostream. The string view can now participate in character code conversion on output. Added auto_newline formatter and stream manipulator. It can be used to ensure that formatted output always ends with a newline while avoiding duplicate newlines. In the output stream, text file and text multi-file sink backends added support for configuring behavior with regard to appending a trailing newline to every formatted log record. Use auto_newline_mode named parameter of the backend constructor or call the set_auto_newline_mode method on the sink backend. Note: The default behavior with regard to trailing newlines added by sink backends has changed slightly compared to the previous Boost.Log releases. The backends will now only add a trailing newline if there isn't one in the formatted log message string already. In previous releases a newline was added unconditionally. Added support for passing arbitrary function objects in the filter and format named parameters to sink constructors and convenience functions for initializing sinks. For example, it is now possible to specify C++11 lambda functions directly in these parameters. (#63) In the default filter and formatter factories used in filter and formatter parsers, added support for severity level attribute values of type boost::log::trivial::severity_level. For filters, the support is limited to attributes with "Severity" name. Bug fixes: Fixed incorrect parsing of components of the rotated file names while scanning for files in the text file sink backend. If the file name pattern ended with a placeholder (for example, a file counter), the scan_for_files method would not find files matching that pattern in the target storage, leaving them unmanaged. In particular, such files would not be deleted to free target storage. (#78) Updated basic_formatting_ostream and basic_record_ostream to make it possible to overload stream output operators for pointers to user-defined types. User-defined operator<< overloads taking std::basic_ostream and a pointer argument should now be picked up by the compiler when the pointer is being written to one of Boost.Log streams. (#84) See changelog for more details. Math: New features: Catmull-Rom interpolator now works in C++11 Cardinal quadratic B-spline interpolation Domain of elliptic integrals extended sin_pi and cos_pi performance improvements Forward-mode automatic differentiation Vector valued barycentric rational interpolation Ooura's method for evaluation of Fourier integrals Bug fixes: Multiple compatibility issues with Multiprecision fixed Lambert-W fixed on a rare architecture Metaparse: New features: In C++11 variadic template support for the following: sequence, one_of_c, one_of, repeated_one_of, repeated_one_of1, one_char_except_c, one_char_except. Bug fixes: BOOST_METAPARSE_STRING does not use out of range character values as template arguments. any_of_c<> does not create empty array in C++14. Move: Git Issue #26: "Invalid iterator increment/decrement in the last iteration of adaptive_sort_combine_blocks". Multi Array: Simplify allocator support by using new alloc_construct_n and alloc_destroy_n facilities from Core. (Glen Fernandes) Multi-index Containers: Added variants of const_mem_fun and mem_fun for differently qualified member functions (issue #24). Terse key specification syntax now correctly handles noexcept-specified member functions (issue #24). Outcome: Enhancements: #184 As per request from Boost release managers, relocated version.hpp and revision.hpp into detail, and added the Boost licence boilerplate to the top of every source file which was missing one (I think). Also took the opportunity to run the licence restamping script over all Outcome, so copyright dates are now up to date. #185 Add FAQ item explaining issue #185, and why we will do nothing to fix it right now. #189 Refactored the OUTCOME_TRY implementation to use more clarified customisation points capable of accepting very foreign inputs. Removed the std::experimental::expected<T, E> specialisations, as those are no longer necessary. Fixed the documentation for the customisation points which previously claimed that they are ADL discovered, which they are not. Added a recipe describing how to add in support for foreign input types. #183 Added a separate motivation/plug_error_code specifically for Boost. Bug fixes: OUTCOME_VERSION_MINOR hadn't been updated to 1. #181 Fix issue #181 where Outcome didn't actually implement the strong swap guarantee, despite being documented as doing so. #190 Fix issue #190 in Boost edition where unit test suite was not runnable from the Boost release distro. #182 Fix issue #182 where trait::is_exception_ptr_available<T> was always true, thus causing much weirdness, like not printing diagnostics and trying to feed everything to make_exception_ptr(). #192 Fix issue #192 where the std::basic_outcome_failure_exception_from_error() was being defined twice for translation units which combine standalone and Boost Outcome's. Parameter: Upgraded keyword generation macro BOOST_PARAMETER_TEMPLATE_KEYWORD (#15). Moved keyword generation macro BOOST_PARAMETER_NESTED_KEYWORD from Accumulators to this library (#28). Added support for std::reference_wrapper and std::ref() (#16). Moved boost::parameter::required, boost::parameter::optional, and boost::parameter::deduced metafunction definitions to their own header files in directory boost/parameter (#18). Added support for Boost.Parameter-enabled function call operators (#20). Added support for parameter category qualifiers "forward", "consume", and "move_from" (current qualifiers are "in", "out", and "in_out") (#21) (#23) based on http://www.modernescpp.com/index.php/c-core-guidelines-how-to-pass-function-parameters. Added new usage syntax BOOST_PARAMETER_NAME((object-name), namespace-name) qualifier(tag-name)) and BOOST_PARAMETER_NAME(qualifier(name)). (Existing code that uses qualifiers directly and correctly with BOOST_PARAMETER_FUNCTION and other code generation macros should remain unaffected for now, so no breaking changes.) The reason for the change in usage is to enable applying of parameter category constraints to Boost.Parameter-enabled functions and constructors invoked through argument composition. (Otherwise, it is currently possible to use argument composition to bypass parameter category constraints applied in BOOST_PARAMETER_FUNCTION et. al.) Added support for perfect forwarding (#23) (#26), so that parameter::parameters::operator() can accept non-const rvalues. As a positive side effect, Boost.Parameter-enabled functions and constructors are no longer bound by BOOST_PARAMETER_MAX_ARITY on compilers that support perfect forwarding. User code can now check for this support by detecting the configuration macro BOOST_PARAMETER_HAS_PERFECT_FORWARDING, or manually turn off this support by defining the configuration macro BOOST_PARAMETER_DISABLE_PERFECT_FORWARDING. Added metafunctions boost::parameter::is_argument_pack (#27), boost::parameter::are_tagged_arguments (#52), and boost::parameter::result_of::compose (#75). Added variadic function template boost::parameter::compose() which takes in named arguments and returns them in an argument pack (#52). For compilers that do not support perfect forwarding, the configuration macro BOOST_PARAMETER_COMPOSE_MAX_ARITY determines the maximum number of arguments that boost::parameter::compose() can take in (#61). Added code generation macros BOOST_PARAMETER_BASIC_FUNCTION_CALL_OPERATOR, BOOST_PARAMETER_BASIC_CONST_FUNCTION_CALL_OPERATOR, BOOST_PARAMETER_NO_SPEC_FUNCTION, BOOST_PARAMETER_NO_SPEC_MEMBER_FUNCTION, BOOST_PARAMETER_NO_SPEC_CONST_MEMBER_FUNCTION, BOOST_PARAMETER_NO_SPEC_FUNCTION_CALL_OPERATOR, BOOST_PARAMETER_NO_SPEC_CONST_FUNCTION_CALL_OPERATOR, BOOST_PARAMETER_NO_SPEC_CONSTRUCTOR, and BOOST_PARAMETER_NO_SPEC_NO_BASE_CONSTRUCTOR (#52). Added support for Boost.MP11 (#47) (#66) (#70). User code can now check for this support by detecting the configuration macro BOOST_PARAMETER_CAN_USE_MP11, or manually turn off this support by defining the configuration macro BOOST_PARAMETER_DISABLE_MP11_USAGE. Improved support for parameter-dependent return types via SFINAE (#73). PtrContainer: Fix a ptr_vector regression introduced in 1.66.0 (#24). PolyCollection: Maintenance work. SmartPtr: Added aliasing constructors to weak_ptr Added weak_ptr<T>::empty() Added enable_shared_from, shared_from, and weak_from Stacktrace: Fixed output of name(), source_location() and source_line() for the default constructed frame with thread sanitizer builds in C++98 mode. Fixed output of long strings from name() and source_location() on MSVC #78. Maintenance work. Test: Boost.test v3.11 see the Changes log for more details. Breaking changes: Boost.Test shows deprecation warnings if some very old headers as deprecated. If you encounter such warnings, please follow the indications: those headers will be removed in a future release. New feature: Now BOOST_TEST can be used to compare abstract types Bug fixes and pull requests: GitHub Issues: #209, #218 GitHub Pull Requests: #219, #224 Utility: Implemented function template ostream_string in <boost/utility/ostream_string.hpp> to optimally write any kind of string content to an output stream. It satisfies the requirements of [ostream.formatted.reqmts]. (Glen Fernandes) Optimized the stream output operators of basic_string_view and basic_string_ref to write directly to the rdbuf stream buffer. (Glen Fernandes) Uuid: Breaking change: MD5 name-based uuid generation was corrected to be identical on all endian systems. Define BOOST_UUID_COMPAT_PRE_1_71_MD5 to keep the result in a format compatible with 1.66 through 1.70. This does not affect the default name-based uuid generation which is based on SHA1. (#109) Variant: Fixed compilation of boost::apply_visitor with variants passed by non const reference in #68. Many thanks to Ed Catmur for providing the fix. Added support for std::hash (#49). Macro BOOST_VARIANT_DO_NOT_SPECIALIZE_STD_HASH could be defined to avoid those specializations. Added micro optimizations for binary size and performance by Nikita Kniazev in #63 and #66. Maintenance work, including #64 by Nikita Kniazev and #67 by Hans Dembinski. YAP: Added an example showing how to make self-evaluating YAP expressions (that is, expressions that don't need an explicit call to evaluate() or transform()).

Changelog: 2.0.1 Bug Fixes Do not register hooks for documents of type :pages (#94) Append theme's sass path after all sanitizations (#96) 2.0.0 Major Enhancements Migrate to sassc gem (#75) Use and test sassc-2.1.0 pre-releases and beyond (#86) Drop support for Ruby 2.3 (#90) Minor Enhancements Generate Sass Sourcemaps (#79) Configure Sass to load from theme-gem if possible (#80) SyntaxError line and filename are set by SassC (#85) Memoize #jekyll_sass_configuration (#82) Development Fixes Target Ruby 2.3 (#70) Lint with rubocop-jekyll (#73) Clear out RuboCop TODO (#87) Cache stateless regexes in class constants (#83) Add appveyor.yml (#76) Bug Fixes Fix rendering of sourcemap page (#89) 2.0.0.pre.beta Major Enhancements Migrate to sassc gem (#75) Drop support for Ruby 2.3 (#90) Minor Enhancements Generate Sass Sourcemaps (#79) Configure Sass to load from theme-gem if possible (#80) SyntaxError line and filename are set by SassC (#85) Memoize #jekyll_sass_configuration (#82) Development Fixes Target Ruby 2.3 (#70) Lint with rubocop-jekyll (#73) Clear out RuboCop TODO (#87) Cache stateless regexes in class constants (#83) Add appveyor.yml (#76)

Upstream changes (from CHANGELOG.md): v0.16.2 (2019-12-04) Merged pull requests: * Fix regression introduced by frozen symbol fix #86 (sebjacobs) v0.16.1 (2019-11-08) Merged pull requests: * Remove ruby 1.9.2 from travis build matrix #84 (unasuke) * Make Memoist.escape_punctuation compatible with MRI 2.7 #82 (casperisfine) * add 2.5.1 to travis #77 (matthewrudy) * Remove ghit.me #74 (matthewrudy) * Place sample code for execution in README.md #73 (3nan3) * Require Ruby >=1.9.2 #69 (matthewrudy)

@Loginsoft-Research

Upstream changes: v1.8.4 * Security fix for CVE-2019-11024 (#85), recursive loop problem, reported by @Loginsoft-Research. * Security fix for #73, illegal memory access problem, reported by @hongxuchen. * Security fix for #89, core dumped issue, reported by @niugx. * Security fix for #107, large memory allocation problem, reported by @cuanduo. * Security fix for #114, heap-buffer-overflow problem, reported by @SuhwanSong. * Security fix for #116, heap-buffer-overflow problem, reported by @SuhwanSong. * Security fix for #118, heap-buffer-overflow problem, reported by @SuhwanSong. * Security fix for #121, heap-buffer-overflow problem, reported by @gutiniao

Update ruby-mixlib-config to 3.0.6. pkgsrc change: add "USE_LANGUAGES= # none". 3.0.6 (2019-12-29) * Substitute require for require_relative #80 (tas50) 3.0.5 (2019-11-14) * Add BuildKite PR Testing #75 (tas50) * Remove Travis PR testing + add foundation team as the project owner #76 (tas50) * Test on Windows and use the smaller containers #77 (tas50) * Do not crash when loading undefined context from hash #79 (marcparadise) 3.0.1 (2019-04-23) * update travis, drop ruby < 2.5, major version bump #73 (lamont-granquist) * Allow Ruby 2.4 / Update github templates #74 (tas50) 2.2.18 (2018-12-17) * Add github issue and PR templates #68 (tas50) * Resolve chefstyle and expeditor issues #69 (tas50) * Expand ruby testing in Travis #70 (tas50) * Standardize the gemfile and rakefile #71 (tas50) * Only ship the required library files in the gem artifact #72 (tas50)

Update ruby-mixlib-cli to 2.1.5. 2.1.5 (2019-12-22) * Use our standard rakefile #68 (tas50) * Fix chef-style #71 (vsingh-msys) * Add windows PR testing with Buildkite #73 (tas50) * Test on Ruby 2.7 + random testing improvements #75 (tas50) 2.1.1 (2019-06-10) * Don't explode when there are unknown keys in 'config' #66 (marcparadise) 2.1.0 (2019-06-07) * Setup BuildKite for PR testing #61 (tas50) * Disable Travis testing & Update codeowners #62 (tas50) * Fix gem homepage url #64 (tsub) * [MIXLIB-CLI-63] Add deprecated_option support #65 (marcparadise) 2.0.6 (2019-05-14) * Add additional github templates and update codeowners #58 (tas50) * Improve the --help text output of 'in:' #59 (btm) * Print out human readable lists of allowed CLI options #60 (tas50) 2.0.3 (2019-03-20) * fix global state pollution issues across examples #54 (lamont-granquist) * Add back support for Ruby 2.4 #56 (tas50) 2.0.1 (2019-01-04) * Don't ship the test files in the gem artifact #51 (tas50) 2.0.0 (2019-01-04) * remove hashrockets syntax #43 (lamont-granquist) * Remove require rubygems #44 (tas50) * Update testing and contributing boilerplate #45 (tas50) * More testing / release boilerplate #46 (tas50) * Update codeowners and add github PR template #47 (tas50) * Lint the example code #49 (tas50) * update travis, drop ruby < 2.5, major version bump #52 (lamont-granquist) * actually do the major version bump #53 (lamont-granquist)

Update ruby-redmine_lightbox2 to 0.5.1. pkgsrc change: * A few clean up. 0.5.1 (for Redmine 4.x) (2019-11-02) Features * major upgrade to fancybox library (from 2.1.5 to 3.5.7), introducing a new, modern lightbox theme * Added support for image and pdf lightbox preview in 'Files' module (#72) DMSF plugin support * support for image previews in DMSF browser (#64) * use file description as title instead of file name (#53) * add DMSF file ID to lightbox title (#73) * bugfix: checked wrong classname for imagelinks Bugfixes * general bugfixes * issues view: show consistent titles/captions * javascript bugfix for IE11 (#66) * fix wrong title of magnifier icon * reset auto image-orientation for Firefox and Safari (#67) 0.5.0 (for Redmine 4.0) (2019-01-08) * Added Support for Redmine 4.0 and Rails 5.2 Milestone: https://github.com/paginagmbh/redmine_lightbox2/milestone/4?closed=1

Update ruby-jekyll-watch to 2.2.1. pkgsrc change: add "USE_LANGUAGES= # none". 2.2.1 / 2019-03-22 Bug Fixes * Fix encoding discrepancy in excluded Windows paths (#76) * Ignore directories rather than all similar paths (#65) Development Fixes * Test against Ruby 2.6 * Relax version constraint on bundler to allow using 1.x or 2.x * dependencies: rubocop-jekyll 0.5 * style: target Ruby 2.4 2.1.2 / 2018-10-17 Development Fixes * Initialize AppVeyor CI to test plugin on Windows (#77) Bug Fixes * Fix watcher failure due to incorrect file name encoding (#78) 2.1.1 / 2018-10-10 Bug Fixes * Replace non-existent local variable (#73) 2.1.0 / 2018-10-09 Bug Fixes * Normalize watched-path encoding (#69) Development Fixes * Test against Ruby 2.5 (#62) * Drop support for Ruby 2.2 (EOL) * Style: lint with rubocop-jekyll

Overview of changes in 3.36.0 ============================= * Updated translations: Finnish Kurdish (Sorani) Overview of changes in 3.35.90 ============================== * Bugs fixed: !41 Polish some rough edges in the Meson build !43 build: Remove AC_ISC_POSIX !44 build: Remove AC_HEADER_STDC !45 kerberos-identity-manager: Remove unused signal handler ID #43 daemon, dbus: Enable checking if a provider type is supported * Updated translations: Croatian English (British) Japanese Malay Overview of changes in 3.35.3 ============================= * Remove Pocket (!18) * Bugs fixed: !36 Drop the priv pointer from the GObject instance structures !37 Port away from deprecated GLib API like g_memove and g_get_current_time !39 webview: Port to JSCValue !40 Use the G_DECLARE_* macros to reduce GObject boilerplate #83 Add Exchange and Last.fm icons * Updated translations: Galician Russian Overview of changes in 3.35.1 ============================= * Bugs fixed: #8 icons: Unbreak providers without any visual identity * Updated translations: Basque Catalan Traditional Chinese (Taiwan) Czech Danish Dutch Finnish French Friulian Galician German Greek Hungarian Indonesian Italian Japanese Korean Latvian Lithuanian Persian Polish Portuguese (Brazilian) Punjabi Romanian Serbian Slovak Slovenian Spanish Swedish Turkish Overview of changes in 3.33.91 ============================== * Support Fedora Account System (#26) * Bugs fixed: !21 owncloud: Use "Nextcloud", not "ownCloud", in user-visible errors !23 build: Allow building with gettext ≥ 0.20 !26 webview: Make it more flexible in terms of its size !28 kerberos: Use GTask's task data slot to leverage the compiler !29 daemon: Return a D-Bus error if AddAccount fails to list all providers !30 kerberos: Use GTask's task data slot to leverage the compiler #73 build: Support the use of g_autolist with GoaObject 764157 Port to GTask from GSimpleAsyncResult * Updated translations: Basque Czech German Indonesian Karbi Lithuanian Polish Romanian Spanish Swedish Overview of changes in 3.32.0 ============================= * Updated translations: Basque Finnish Gaelic (Scottish) Icelandic Overview of changes in 3.31.90 ============================== * Bugs fixed: !17 icons: Replace PNGs with SVGs and add symbolics !19 google: Only request the email field when getting the user's identity 796095 alarm: Refresh Kerberos tickets after a suspended system is resumed * Updated translations: Afrikaans French Japanese Kabyle Overview of changes in 3.31.3 ============================= * Remove Todoist * Bugs fixed: !14 build: Don't define _POSIX_PTHREAD_SEMANTICS and _REENTRANT !15 identity: Port away from deprecated g_type_class_add_private 764157 Port to GTask from GSimpleAsyncResult * Updated translations: Belarusian Esperanto Estonian Malayalam Overview of changes in 3.30.0 ============================= * Updated translations: Arabic Overview of changes in 3.29.91 ============================== * Bugs fixed: !2 build: Fix #FooObject style links !8 Remove additional unnecessary GDestroyNotify casts #10 build: Silence warning about _FORTIFY_SOURCE requiring optimization Overview of changes in 3.29.4 ============================= * Bugs fixed: !2 Port to meson build system * Updated translations: Occitan Overview of changes in 3.29.1 ============================= * Remove Telepathy support (795322) * Updated translations: Simplified Chinese Czech

Changes: - Allow truncated XLS files #55 #60 #76 tidyverse/readxl#619 - Fix long-standing "extra column" bug #73 - Support for RSTRING records (rich-text cells in older BIFF5 files) tidyverse/readxl#611 Minimum version updated in bl3 due to header changes.

3.2.5 Added IMAP Daemon: added switch to control the diffential state reload (mailbox_update_strategy=2), more information in dbmail.conf, mailbox_update_strategy_2_max_iterations [#81] IMAP Daemon: added switch to control UNSEEN first message in SELECT commands Changed IMAP Daemon: allow reporting UID COPY success in case of various failures (except quota), reporting issues are sent to error log as warnings [#87] Optimizations optimizing differential state [#81] optimizing fetch message headers [#85] Issues fixing issue related to copy message in regard to RFC 3501, section 6.4.8 fixing issues related group_concat for PostgreSql [#75], [#78] fixing issue related to lastRowId [#71] fixing issues related with differential update [#70], [#73] fixing proc not being used in BSD systems [#74] IMAP Daemon: segmentation fault [#68] 3.2.4 Added IMAP Daemon: mailbox-update-strategy switch (see dbmail.conf), experimental support for application_name in database connection uri IMAP Daemon: mailbox_search_strategy switch (see dbmail.conf) Changed systemd unit changed to type notify mailbox state is build using only valid messages [#39] Optimizations IMAP Daemon: optimization of sql queries in relation to message headers libevent increased priority on accepting new connections libevent optimization on reading and writing to sockets simplify libzdb configuration (AC_CHECK_HEADERS) Issues fix segmentation fault in imap_append_hash_as_string [#12] dbmail-users: sql issue on deleting alias user [#18] IMAP Daemon: generation of invalid BODYSTRUCTURE in Content-Type field [#23] fix support for jemalloc latest version [#35] IMAP Deamon: BYE Command now offers optional message even on normal operations IMAP Deamon: idle message now offers optional message (* OK Still Here) IMAP Daemon: random hangs when single user is connected [#37] fix fd leaks IMAP Daemon: fix MODIFIED keyword, too many '[' and ']' fix segmentation fault in find_end_of_header fix gcc 10 compilation issue, duplicated definition

Pkgsrc changes: * Added a patch to cope with fromStatT on NetBSD * Added a patch to cope with docker client default settings (build also on NetBSD) Upstream changes: 1.5.3 (August 27th, 2020) NOTE: All security content from 1.5.2, 1.5.1, 1.4.5, 1.4.4, 1.3.9, 1.3.8, 1.2.6, and 1.2.5 has been made fully open source, and the git tags for 1.5.3, 1.4.6, 1.3.10, and 1.2.7 will build correctly for open source users. BUG FIXES: * auth/aws: Made header handling for IAM authentication more robust * secrets/ssh: Fixed a bug with role option for SSH signing algorithm to allow more than RSA signing ## 1.5.1 CHANGES: * pki: The tidy operation will now remove revoked certificates if the parameter `tidy_revoked_certs` is set to `true`. This will result in certificate entries being immediately removed, as opposed to awaiting until its NotAfter time. Note that this only affects certificates that have been already revoked. [[GH-9609](https://github.com/hashicorp/vault/pull/9609)] IMPROVEMENTS: * auth/jwt: Add support for fetching groups and user information from G Suite during authentication. [[GH-9574](https://github.com/hashicorp/vault/pull/9574)] * secrets/openldap: Add "ad" schema that allows the engine to correctly rotate AD passwords. [[GH-9740](https://github.com/hashicorp/vault/pull/9740)] * ui: Wrap TTL option on transit engine export action is updated to a new component. [[GH-9632](https://github.com/hashicorp/vault/pull/9632)] BUG FIXES: * secrets/gcp: Ensure that the IAM policy version is appropriately set after a roleset's bindings have changed. [[GH-9603](https://github.com/hashicorp/vault/pull/9603)] * replication (enterprise): Fix status API output incorrectly stating replication is in `idle` state. * core: Fix panic when printing over-long info fields at startup [[GH-9681](https://github.com/hashicorp/vault/pull/9681)] ## 1.5.0 ### July 21st, 2020 CHANGES: * storage/raft: The storage configuration now accepts a new `max_entry_size` config that will limit the total size in bytes of any entry committed via raft. It defaults to `"1048576"` (1MiB). [[GH-9027](https://github.com/hashicorp/vault/pull/9027)] * token: Token creation with custom token ID via `id` will no longer allow periods (`.`) as part of the input string. The final generated token value may contain periods, such as the `s.` prefix for service token indication. [[GH-8646](https://github.com/hashicorp/vault/pull/8646/files)] * token: Token renewals will now return token policies within the `token_policies` , identity policies within `identity_policies`, and the full policy set within `policies`. [[GH-8535](https://github.com/hashicorp/vault/pull/8535)] * cubbyhole: Reject reads and writes to an empty ("") path. [[GH-8971](https://github.com/hashicorp/vault/pull/8971)] * core: Remove the addition of newlines to parsed configuration when using integer/boolean values [[GH-8928](https://github.com/hashicorp/vault/pull/8928)] * audit: Token TTL and issue time are now provided in the auth portion of audit logs. [[GH-9091](https://github.com/hashicorp/vault/pull/9091)] IMPROVEMENTS: * audit: Replication status requests are no longer audited. [[GH-8877](https://github.com/hashicorp/vault/pull/8877)] * audit: Added mount_type field to requests and responses. [[GH-9167](https://github.com/hashicorp/vault/pull/9167)] * auth/aws: Add support for Web Identity credentials [[GH-7738](https://github.com/hashicorp/vault/pull/7738)] * auth/jwt: Support users that are members of more than 200 groups on Azure [[GH-120](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/120)] * auth/kubernetes: Allow disabling `iss` validation [[GH-91](https://github.com/hashicorp/vault-plugin-auth-kubernetes/pull/91)] * core: Add the Go version used to build a Vault binary to the server message output. [[GH-9078](https://github.com/hashicorp/vault/pull/9078)] * core: Added Password Policies for user-configurable password generation [[GH-8637](https://github.com/hashicorp/vault/pull/8637)] * core: New telemetry metrics covering token counts, token creation, KV secret counts, lease creation. [[GH-9239](https://github.com/hashicorp/vault/pull/9239)] [[GH-9250](https://github.com/hashicorp/vault/pull/9250)] [[GH-9244](https://github.com/hashicorp/vault/pull/9244)] [[GH-9052](https://github.com/hashicorp/vault/pull/9052)] * cli: Support reading TLS parameters from file for the `vault operator raft join` command. [[GH-9060](https://github.com/hashicorp/vault/pull/9060)] * plugin: Add SDK method, `Sys.ReloadPlugin`, and CLI command, `vault plugin reload`, for reloading plugins. [[GH-8777](https://github.com/hashicorp/vault/pull/8777)] * plugin (enterprise): Add a scope field to plugin reload, which when global, reloads the plugin anywhere in a cluster. [[GH-9347](https://github.com/hashicorp/vault/pull/9347)] * sdk/framework: Support accepting TypeFloat parameters over the API [[GH-8923](https://github.com/hashicorp/vault/pull/8923)] * secrets/aws: Add iam_groups parameter to role create/update [[GH-8811](https://github.com/hashicorp/vault/pull/8811)] * secrets/database: Add static role rotation for MongoDB Atlas database plugin [[GH-11](https://github.com/hashicorp/vault-plugin-database-mongodbatlas/pull/11)] * secrets/database: Add static role rotation for MSSQL database plugin [[GH-9062](https://github.com/hashicorp/vault/pull/9062)] * secrets/database: Allow InfluxDB to use insecure TLS without cert bundle [[GH-8778](https://github.com/hashicorp/vault/pull/8778)] * secrets/gcp: Support BigQuery dataset ACLs in absence of IAM endpoints [[GH-78](https://github.com/hashicorp/vault-plugin-secrets-gcp/pull/78)] * secrets/pki: Allow 3072-bit RSA keys [[GH-8343](https://github.com/hashicorp/vault/pull/8343)] * secrets/ssh: Add a CA-mode role option to specify signing algorithm [[GH-9096](https://github.com/hashicorp/vault/pull/9096)] * secrets/transit: Transit requests that make use of keys now include a new field `key_version` in their responses [[GH-8775](https://github.com/hashicorp/vault/pull/8775)] * secrets/transit: Improving transit batch encrypt and decrypt latencies [[GH-9100](https://github.com/hashicorp/vault/pull/9100)] * sentinel: Add a sentinel config section, and "additional_enabled_modules", a list of Sentinel modules that may be imported in addition to the defaults. * ui: Update TTL picker styling on SSH secret engine [[GH-8891](https://github.com/hashicorp/vault/pull/8891)] * ui: Only render the JWT input field of the Vault login form on mounts configured for JWT auth [[GH-8952](https://github.com/hashicorp/vault/pull/8952)] * cli: Add a new subcommand, `vault monitor`, for tailing server logs in the console. [[GH-8477](https://github.com/hashicorp/vault/pull/8477)] * ui: Add replication dashboards. Improve replication management workflows. [[GH-8705]](https://github.com/hashicorp/vault/pull/8705). BUG FIXES: * agent: Restart template server when it shuts down [[GH-9200](https://github.com/hashicorp/vault/pull/9200)] * auth/oci: Fix issue where users of the Oracle Cloud Infrastructure (OCI) auth method could not authenticate when the plugin backend was mounted at a non-default path. [[GH-7](https://github.com/hashicorp/vault-plugin-auth-oci/pull/7)] * core: Extend replicated cubbyhole fix in 1.4.0 to cover case where a performance primary is also a DR primary [[GH-9148](https://github.com/hashicorp/vault/pull/9148)] * secrets/aws: Fix issue where performance standbys weren't able to generate STS credentials after an IAM access key rotation in AWS and root IAM credential update in Vault [[GH-9186](https://github.com/hashicorp/vault/pull/9186)] * secrets/database: Fix issue where rotating root database credentials while Vault's storage backend is unavailable causes Vault to lose access to the database [[GH-8782](https://github.com/hashicorp/vault/pull/8782)] * secrets/database: Fix issue that prevents performance standbys from connecting to databases after a root credential rotation [[GH-9129](https://github.com/hashicorp/vault/pull/9129)] * secrets/gcp: Fix issue were updates were not being applied to the `token_scopes` of a roleset. [[GH-90](https://github.com/hashicorp/vault-plugin-secrets-gcp/pull/90)] * secrets/kv: Return the value of delete_version_after when reading kv/config, even if it is set to the default. [[GH-42](https://github.com/hashicorp/vault-plugin-secrets-kv/pull/42)] * ui: Add Toggle component into core addon so it is available in KMIP and other Ember Engines. [[GH-8913]](https://github.com/hashicorp/vault/pull/8913) * ui: Disallow max versions value of large than 9999999999999999 on kv2 secrets engine. [[GH-9242](https://github.com/hashicorp/vault/pull/9242)] ## 1.4.3 (TBD) IMPROVEMENTS: * auth/aws: Add support for Web Identity credentials [[GH-9251](https://github.com/hashicorp/vault/pull/9251)] * core: Add the Go version used to build a Vault binary to the server message output. [[GH-9078](https://github.com/hashicorp/vault/pull/9078)] * secrets/database: Add static role rotation for MongoDB Atlas database plugin [[GH-9311](https://github.com/hashicorp/vault/pull/9311)] * ui: Link to the Vault Changelog in the UI footer [[GH-9216](https://github.com/hashicorp/vault/pull/9216)] BUG FIXES: * auth/oci: Fix issue where users of the Oracle Cloud Infrastructure (OCI) auth method could not authenticate when the plugin backend was mounted at a non-default path. [[GH-9278](https://github.com/hashicorp/vault/pull/9278)] * replication: The issue causing cubbyholes in namespaces on performance secondaries to not work, which was fixed in 1.4.0, was still an issue when the primary was both a performance primary and DR primary. * secrets/aws: Fix issue where performance standbys weren't able to generate STS credentials after an IAM access key rotation in AWS and root IAM credential update in Vault [[GH-9207](https://github.com/hashicorp/vault/pull/9207)] * secrets/database: Fix issue that prevents performance standbys from connecting to databases after a root credential rotation [[GH-9208](https://github.com/hashicorp/vault/pull/9208)] * secrets/gcp: Fix issue were updates were not being applied to the `token_scopes` of a roleset. [[GH-9277](https://github.com/hashicorp/vault/pull/9277)] ## 1.4.2 (May 21st, 2020) SECURITY: * core: Proxy environment variables are now redacted before being logged, in case the URLs include a username:password. This vulnerability, CVE-2020-13223, is fixed in 1.3.6 and 1.4.2, but affects 1.4.0 and 1.4.1, as well as older versions of Vault [[GH-9022](https://github.com/hashicorp/vault/pull/9022)] * secrets/gcp: Fix a regression in 1.4.0 where the system TTLs were being used instead of the configured backend TTLs for dynamic service accounts. This vulnerability is CVE-2020-12757. [[GH-85](https://github.com/hashicorp/vault-plugin-secrets-gcp/pull/85)] IMPROVEMENTS: * storage/raft: The storage stanza now accepts `leader_ca_cert_file`, `leader_client_cert_file`, and `leader_client_key_file` parameters to read and parse TLS certificate information from paths on disk. Existing non-path based parameters will continue to work, but their values will need to be provided as a single-line string with newlines delimited by `\n`. [[GH-8894](https://github.com/hashicorp/vault/pull/8894)] * storage/raft: The `vault status` CLI command and the `sys/leader` API now contain the committed and applied raft indexes. [[GH-9011](https://github.com/hashicorp/vault/pull/9011)] BUG FIXES: * auth/aws: Fix token renewal issues caused by the metadata changes in 1.4.1 [[GH-8991](https://github.com/hashicorp/vault/pull/8991)] * auth/ldap: Fix 1.4.0 regression that could result in auth failures when LDAP auth config includes upndomain. [[GH-9041](https://github.com/hashicorp/vault/pull/9041)] * secrets/ad: Forward rotation requests from standbys to active clusters [[GH-66](https://github.com/hashicorp/vault-plugin-secrets-ad/pull/66)] * secrets/database: Prevent generation of usernames that are not allowed by the MongoDB Atlas API [[GH-9](https://github.com/hashicorp/vault-plugin-database-mongodbatlas/pull/9)] * secrets/database: Return an error if a manual rotation of static account credentials fails [[GH-9035](https://github.com/hashicorp/vault/pull/9035)] * secrets/openldap: Forward all rotation requests from standbys to active clusters [[GH-9028](https://github.com/hashicorp/vault/pull/9028)] * secrets/transform (enterprise): Fix panic that could occur when accessing cached template entries, such as a requests that accessed templates directly or indirectly from a performance standby node. * serviceregistration: Fix a regression for Consul service registration that ignored using the listener address as the redirect address unless api_addr was provided. It now properly uses the same redirect address as the one used by Vault's Core object. [[GH-8976](https://github.com/hashicorp/vault/pull/8976)] * storage/raft: Advertise the configured cluster address to the rest of the nodes in the raft cluster. This fixes an issue where a node advertising 0.0.0.0 is not using a unique hostname. [[GH-9008](https://github.com/hashicorp/vault/pull/9008)] * storage/raft: Fix panic when multiple nodes attempt to join the cluster at once. [[GH-9008](https://github.com/hashicorp/vault/pull/9008)] * sys: The path provided in `sys/internal/ui/mounts/:path` is now namespace-aware. This fixes an issue with `vault kv` subcommands that had namespaces provided in the path returning permission denied all the time. [[GH-8962](https://github.com/hashicorp/vault/pull/8962)] * ui: Fix snowman that appears when namespaces have more than one period [[GH-8910](https://github.com/hashicorp/vault/pull/8910)] ## 1.4.1 (April 30th, 2020) CHANGES: * auth/aws: The default set of metadata fields added in 1.4.1 has been changed to `account_id` and `auth_type` [[GH-8783](https://github.com/hashicorp/vault/pull/8783)] * storage/raft: Disallow `ha_storage` to be specified if `raft` is set as the `storage` type. [[GH-8707](https://github.com/hashicorp/vault/pull/8707)] IMPROVEMENTS: * auth/aws: The set of metadata stored during login is now configurable [[GH-8783](https://github.com/hashicorp/vault/pull/8783)] * auth/aws: Improve region selection to avoid errors seen if the account hasn't enabled some newer AWS regions [[GH-8679](https://github.com/hashicorp/vault/pull/8679)] * auth/azure: Enable login from Azure VMs with user-assigned identities [[GH-33](https://github.com/hashicorp/vault-plugin-auth-azure/pull/33)] * auth/gcp: The set of metadata stored during login is now configurable [[GH-92](https://github.com/hashicorp/vault-plugin-auth-gcp/pull/92)] * auth/gcp: The type of alias name used during login is now configurable [[GH-95](https://github.com/hashicorp/vault-plugin-auth-gcp/pull/95)] * auth/ldap: Improve error messages during LDAP operation failures [[GH-8740](https://github.com/hashicorp/vault/pull/8740)] * identity: Add a batch delete API for identity entities [[GH-8785]](https://github.com/hashicorp/vault/pull/8785) * identity: Improve performance of logins when no group updates are needed [[GH-8795]](https://github.com/hashicorp/vault/pull/8795) * metrics: Add `vault.identity.num_entities` metric [[GH-8816]](https://github.com/hashicorp/vault/pull/8816) * secrets/kv: Allow `delete-version-after` to be reset to 0 via the CLI [[GH-8635](https://github.com/hashicorp/vault/pull/8635)] * secrets/rabbitmq: Improve error handling and reporting [[GH-8619](https://github.com/hashicorp/vault/pull/8619)] * ui: Provide One Time Password during Operation Token generation process [[GH-8630]](https://github.com/hashicorp/vault/pull/8630) BUG FIXES: * auth/okta: Fix MFA regression (introduced in [GH-8143](https://github.com/hashicorp/vault/pull/8143)) from 1.4.0 [[GH-8807](https://github.com/hashicorp/vault/pull/8807)] * auth/userpass: Fix upgrade value for `token_bound_cidrs` being ignored due to incorrect key provided [[GH-8826](https://github.com/hashicorp/vault/pull/8826/files)] * config/seal: Fix segfault when seal block is removed [[GH-8517](https://github.com/hashicorp/vault/pull/8517)] * core: Fix an issue where users attempting to build Vault could receive Go module checksum errors [[GH-8770](https://github.com/hashicorp/vault/pull/8770)] * core: Fix blocked requests if a SIGHUP is issued during a long-running request has the state lock held. Also fixes deadlock that can happen if `vault debug` with the config target is ran during this time. [[GH-8755](https://github.com/hashicorp/vault/pull/8755)] * core: Always rewrite the .vault-token file as part of a `vault login` to ensure permissions and ownership are set correctly [[GH-8867](https://github.com/hashicorp/vault/pull/8867)] * database/mongodb: Fix context deadline error that may result due to retry attempts on failed commands [[GH-8863](https://github.com/hashicorp/vault/pull/8863)] * http: Fix superflous call messages from the http package on logs caused by missing returns after `respondError` calls [[GH-8796](https://github.com/hashicorp/vault/pull/8796)] * namespace (enterprise): Fix namespace listing to return `key_info` when a scoping namespace is also provided. * seal/gcpkms: Fix panic that could occur if all seal parameters were provided via environment variables [[GH-8840](https://github.com/hashicorp/vault/pull/8840)] * storage/raft: Fix memory allocation and incorrect metadata tracking issues with snapshots [[GH-8793](https://github.com/hashicorp/vault/pull/8793)] * storage/raft: Fix panic that could occur if `disable_clustering` was set to true on Raft storage cluster [[GH-8784](https://github.com/hashicorp/vault/pull/8784)] * storage/raft: Handle errors returned from the API during snapshot operations [[GH-8861](https://github.com/hashicorp/vault/pull/8861)] * sys/wrapping: Allow unwrapping of wrapping tokens which contain nil data [[GH-8714](https://github.com/hashicorp/vault/pull/8714)] ## 1.4.0 (April 7th, 2020) CHANGES: * cli: The raft configuration command has been renamed to list-peers to avoid confusion. FEATURES: * **Kerberos Authentication**: Vault now supports Kerberos authentication using a SPNEGO token. Login can be performed using the Vault CLI, API, or agent. * **Kubernetes Service Discovery**: A new Kubernetes service discovery feature where, if configured, Vault will tag Vault pods with their current health status. For more, see [#8249](https://github.com/hashicorp/vault/pull/8249). * **MongoDB Atlas Secrets**: Vault can now generate dynamic credentials for both MongoDB Atlas databases as well as the [Atlas programmatic interface] (https://docs.atlas.mongodb.com/tutorial/manage-programmatic-access/). * **OpenLDAP Secrets Engine**: We now support password management of existing OpenLDAP user entries. For more, see [#8360] (https://github.com/hashicorp/vault/pull/8360/). * **Redshift Database Secrets Engine**: The database secrets engine now supports static and dynamic secrets for the Amazon Web Services (AWS) Redshift service. * **Service Registration Config**: A newly introduced `service_registration` configuration stanza, that allows for service registration to be configured separately from the storage backend. For more, see [#7887] (https://github.com/hashicorp/vault/pull/7887/). * **Transform Secrets Engine (Enterprise)**: A new secrets engine that handles secure data transformation and tokenization against provided input value. * **Integrated Storage**: Promoted out of beta and into general availability for both open-source and enterprise workloads. IMPROVEMENTS: * agent: add option to force the use of the auth-auth token, and ignore the Vault token in the request [[GH-8101](https://github.com/hashicorp/vault/pull/8101)] * api: Restore and fix DNS SRV Lookup [[GH-8520](https://github.com/hashicorp/vault/pull/8520)] * audit: HMAC http_raw_body in audit log; this ensures that large authenticated Prometheus metrics responses get replaced with short HMAC values [[GH-8130](https://github.com/hashicorp/vault/pull/8130)] * audit: Generate-root, generate-recovery-token, and generate-dr-operation-token requests and responses are now audited. [[GH-8301](https://github.com/hashicorp/vault/pull/8301)] * auth/aws: Reduce the number of simultaneous STS client credentials needed [[GH-8161](https://github.com/hashicorp/vault/pull/8161)] * auth/azure: subscription ID, resource group, vm and vmss names are now stored in alias metadata [[GH-30](https://github.com/hashicorp/vault-plugin-auth-azure/pull/30)] * auth/jwt: Additional OIDC callback parameters available for CLI logins [[GH-80](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/80) & [GH-86](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/86)] * auth/jwt: Bound claims may be optionally configured using globs [[GH-89](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/89)] * auth/jwt: Timeout during OIDC CLI login if process doesn't complete within 2 minutes [[GH-97](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/97)] * auth/jwt: Add support for the `form_post` response mode [[GH-98](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/98)] * auth/jwt: add optional client_nonce to authorization flow [[GH-104](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/104)] * auth/okta: Upgrade okta sdk lib, which should improve handling of groups [[GH-8143](https://github.com/hashicorp/vault/pull/8143)] * aws: Add support for v2 of the instance metadata service (see [issue 7924](https://github.com/hashicorp/vault/issues/7924) for all linked PRs) * core: Separate out service discovery interface from storage interface to allow new types of service discovery not coupled to storage [[GH-7887](https://github.com/hashicorp/vault/pull/7887)] * core: Add support for telemetry option `metrics_prefix` [[GH-8340](https://github.com/hashicorp/vault/pull/8340)] * core: Entropy Augmentation can now be used with AWS KMS and Vault Transit seals * core: Allow tls_min_version to be set to TLS 1.3 [[GH-8305](https://github.com/hashicorp/vault/pull/8305)] * cli: Incorrect TLS configuration will now correctly fail [[GH-8025](https://github.com/hashicorp/vault/pull/8025)] * identity: Allow specifying a custom `client_id` for identity tokens [[GH-8165](https://github.com/hashicorp/vault/pull/8165)] * metrics/prometheus: improve performance with high volume of metrics updates [[GH-8507](https://github.com/hashicorp/vault/pull/8507)] * replication (enterprise): Fix race condition causing clusters with high throughput writes to sometimes fail to enter streaming-wal mode * replication (enterprise): Secondary clusters can now perform an extra gRPC call to all nodes in a primary cluster in an attempt to resolve the active node's address * replication (enterprise): The replication status API now outputs `last_performance_wal`, `last_dr_wal`, and `connection_state` values * replication (enterprise): DR secondary clusters can now be recovered by the `replication/dr/secondary/recover` API * replication (enterprise): We now allow for an alternate means to create a Disaster Recovery token, by using a batch token that is created with an ACL that allows for access to one or more of the DR endpoints. * secrets/database/mongodb: Switched internal MongoDB driver to mongo-driver [[GH-8140](https://github.com/hashicorp/vault/pull/8140)] * secrets/database/mongodb: Add support for x509 client authorization to MongoDB [[GH-8329](https://github.com/hashicorp/vault/pull/8329)] * secrets/database/oracle: Add support for static credential rotation [[GH-26](https://github.com/hashicorp/vault-plugin-database-oracle/pull/26)] * secrets/consul: Add support to specify TLS options per Consul backend [[GH-4800](https://github.com/hashicorp/vault/pull/4800)] * secrets/gcp: Allow specifying the TTL for a service key [[GH-54](https://github.com/hashicorp/vault-plugin-secrets-gcp/pull/54)] * secrets/gcp: Add support for rotating root keys [[GH-53](https://github.com/hashicorp/vault-plugin-secrets-gcp/pull/53)] * secrets/gcp: Handle version 3 policies for Resource Manager IAM requests [[GH-77](https://github.com/hashicorp/vault-plugin-secrets-gcp/pull/77) * secrets/nomad: Add support to specify TLS options per Nomad backend [[GH-8083](https://github.com/hashicorp/vault/pull/8083)] * secrets/ssh: Allowed users can now be templated with identity information [[GH-7548](https://github.com/hashicorp/vault/pull/7548)] * secrets/transit: Adding RSA3072 key support [[GH-8151](https://github.com/hashicorp/vault/pull/8151)] * storage/consul: Vault returns now a more descriptive error message when only a client cert or a client key has been provided [[GH-4930]](https://github.com/hashicorp/vault/pull/8084) * storage/raft: Nodes in the raft cluster can all be given possible leader addresses for them to continuously try and join one of them, thus automating the process of join to a greater extent [[GH-7856](https://github.com/hashicorp/vault/pull/7856)] * storage/raft: Fix a potential deadlock that could occur on leadership transition [[GH-8547](https://github.com/hashicorp/vault/pull/8547)] * storage/raft: Refresh TLS keyring on snapshot restore [[GH-8546](https://github.com/hashicorp/vault/pull/8546)] * storage/etcd: Bumped etcd client API SDK [[GH-7931](https://github.com/hashicorp/vault/pull/7931) & [GH-4961](https://github.com/hashicorp/vault/pull/4961) & [GH-4349](https://github.com/hashicorp/vault/pull/4349) & [GH-7582](https://github.com/hashicorp/vault/pull/7582)] * ui: Make Transit Key actions more prominent [[GH-8304](https://github.com/hashicorp/vault/pull/8304)] * ui: Add Core Usage Metrics [[GH-8347](https://github.com/hashicorp/vault/pull/8347)] * ui: Add refresh Namespace list on the Namespace dropdown, and redesign of Namespace dropdown menu [[GH-8442](https://github.com/hashicorp/vault/pull/8442)] * ui: Update transit actions to codeblocks & automatically encode plaintext unless indicated [[GH-8462](https://github.com/hashicorp/vault/pull/8462)] * ui: Display the results of transit key actions in a modal window [[GH-8462](https://github.com/hashicorp/vault/pull/8575)] * ui: Transit key version styling updates & ability to copy key from dropdown [[GH-8480](https://github.com/hashicorp/vault/pull/8480)] BUG FIXES: * agent: Fix issue where TLS options are ignored for agent template feature [[GH-7889](https://github.com/hashicorp/vault/pull/7889)] * auth/jwt: Use lower case role names for `default_role` to match the `role` case convention [[GH-100](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/100)] * auth/ldap: Fix a bug where the UPNDOMAIN parameter was wrongly used to lookup the group membership of the given user [[GH-6325]](https://github.com/hashicorp/vault/pull/8333) * cli: Support autocompletion for nested mounts [[GH-8303](https://github.com/hashicorp/vault/pull/8303)] * cli: Fix CLI namespace autocompletion [[GH-8315](https://github.com/hashicorp/vault/pull/8315)] * identity: Fix incorrect caching of identity token JWKS responses [[GH-8412](https://github.com/hashicorp/vault/pull/8412)] * metrics/stackdriver: Fix issue that prevents the stackdriver metrics library to create unnecessary stackdriver descriptors [[GH-8073](https://github.com/hashicorp/vault/pull/8073)] * replication: Fix issue causing cubbyholes in namespaces on performance secondaries to not work. * replication (enterprise): Unmounting a dynamic secrets backend could sometimes lead to replication errors. Change the order of operations to prevent that. * seal (enterprise): Fix seal migration when transactional seal wrap backend is in use. * secrets/database/influxdb: Fix potential panic if connection to the InfluxDB database cannot be established [[GH-8282](https://github.com/hashicorp/vault/pull/8282)] * secrets/database/mysql: Ensures default static credential rotation statements are used [[GH-8240](https://github.com/hashicorp/vault/pull/8240)] * secrets/database/mysql: Fix inconsistent query parameter names: {{name}} or {{username}} for different queries. Now it allows for either for backwards compatibility [[GH-8240](https://github.com/hashicorp/vault/pull/8240)] * secrets/database/postgres: Fix inconsistent query parameter names: {{name}} or {{username}} for different queries. Now it allows for either for backwards compatibility [[GH-8240](https://github.com/hashicorp/vault/pull/8240)] * secrets/pki: Support FQDNs in DNS Name [[GH-8288](https://github.com/hashicorp/vault/pull/8288)] * storage/raft: Allow seal migration to be performed on Vault clusters using raft storage [[GH-8103](https://github.com/hashicorp/vault/pull/8103)] * telemetry: Prometheus requests on standby nodes will now return an error instead of forwarding the request to the active node [[GH-8280](https://github.com/hashicorp/vault/pull/8280)] * ui: Fix broken popup menu on the transit secrets list page [[GH-8348](https://github.com/hashicorp/vault/pull/8348)] * ui: Update headless Chrome flag to fix `yarn run test:oss` [[GH-8035](https://github.com/hashicorp/vault/pull/8035)] * ui: Update CLI to accept empty strings as param value to reset previously-set values * ui: Fix bug where error states don't clear when moving between action tabs on Transit [[GH-8354](https://github.com/hashicorp/vault/pull/8354)] ## 1.3.6 (May 21st, 2020) SECURITY: * core: proxy environment variables are now redacted before being logged, in case the URLs include a username:password. This vulnerability, CVE-2020-13223, is fixed in 1.3.6 and 1.4.2, but affects 1.4 and 1.4.1, as well as older versions of Vault [[GH-9022](https://github.com/hashicorp/vault/pull/9022) BUG FIXES: * auth/aws: Fix token renewal issues caused by the metadata changes in 1.3.5 [[GH-8991](https://github.com/hashicorp/vault/pull/8991)] * replication: Fix mount filter bug that allowed replication filters to hide local mounts on a performance secondary ## 1.3.5 (April 28th, 2020) CHANGES: * auth/aws: The default set of metadata fields added in 1.3.2 has been changed to `account_id` and `auth_type` [[GH-8783](https://github.com/hashicorp/vault/pull/8783)] IMPROVEMENTS: * auth/aws: The set of metadata stored during login is now configurable [[GH-8783](https://github.com/hashicorp/vault/pull/8783)] ## 1.3.4 (March 19th, 2020) SECURITY: * A vulnerability was identified in Vault and Vault Enterprise such that, under certain circumstances, an Entity's Group membership may inadvertently include Groups the Entity no longer has permissions to. This vulnerability, CVE-2020-10660, affects Vault and Vault Enterprise versions 0.9.0 and newer, and is fixed in 1.3.4. [[GH-8606](https://github.com/hashicorp/vault/pull/8606)] * A vulnerability was identified in Vault Enterprise such that, under certain circumstances, existing nested-path policies may give access to Namespaces created after-the-fact. This vulnerability, CVE-2020-10661, affects Vault Enterprise versions 0.11 and newer, and is fixed in 1.3.4. ## 1.3.3 (March 5th, 2020) BUG FIXES: * approle: Fix excessive locking during tidy, which could potentially block new approle logins for long enough to cause an outage [[GH-8418](https://github.com/hashicorp/vault/pull/8418)] * cli: Fix issue where Raft snapshots from standby nodes created an empty backup file [[GH-8097](https://github.com/hashicorp/vault/pull/8097)] * identity: Fix incorrect caching of identity token JWKS responses [[GH-8412](https://github.com/hashicorp/vault/pull/8412)] * kmip: role read now returns tls_client_ttl * kmip: fix panic when templateattr not provided in rekey request * secrets/database/influxdb: Fix potential panic if connection to the InfluxDB database cannot be established [[GH-8282](https://github.com/hashicorp/vault/pull/8282)] * storage/mysql: Fix potential crash when using MySQL as coordination for high availability [[GH-8300](https://github.com/hashicorp/vault/pull/8300)] * storage/raft: Fix potential crash when using Raft as coordination for high availability [[GH-8356](https://github.com/hashicorp/vault/pull/8356)] * ui: Fix missing License menu item [[GH-8230](https://github.com/hashicorp/vault/pull/8230)] * ui: Fix bug where default auth method on login is defaulted to auth method that is listing-visibility=unauth instead of "other" [[GH-8218](https://github.com/hashicorp/vault/pull/8218)] * ui: Fix bug where KMIP details were not shown in the UI Wizard [[GH-8255](https://github.com/hashicorp/vault/pull/8255)] * ui: Show Error messages on Auth Configuration page when you hit permission errors [[GH-8500](https://github.com/hashicorp/vault/pull/8500)] * ui: Remove duplicate form inputs for the GitHub config [[GH-8519](https://github.com/hashicorp/vault/pull/8519)] * ui: Correct HMAC capitalization [[GH-8528](https://github.com/hashicorp/vault/pull/8528)] * ui: Fix danger message in DR [[GH-8555](https://github.com/hashicorp/vault/pull/8555)] * ui: Fix certificate field for LDAP config [[GH-8573](https://github.com/hashicorp/vault/pull/8573)] ## 1.3.2 (January 22nd, 2020) SECURITY: * When deleting a namespace on Vault Enterprise, in certain circumstances, the deletion process will fail to revoke dynamic secrets for a mount in that namespace. This will leave any dynamic secrets in remote systems alive and will fail to clean them up. This vulnerability, CVE-2020-7220, affects Vault Enterprise 0.11.0 and newer. IMPROVEMENTS: * auth/aws: Add aws metadata to identity alias [[GH-7985](https://github.com/hashicorp/vault/pull/7985)] * auth/kubernetes: Allow both names and namespaces to be set to "*" [[GH-78](https://github.com/hashicorp/vault-plugin-auth-kubernetes/pull/78)] BUG FIXES: * auth/azure: Fix Azure compute client to use correct base URL [[GH-8072](https://github.com/hashicorp/vault/pull/8072)] * auth/ldap: Fix renewal of tokens without configured policies that are generated by an LDAP login [[GH-8072](https://github.com/hashicorp/vault/pull/8072)] * auth/okta: Fix renewal of tokens without configured policies that are generated by an Okta login [[GH-8072](https://github.com/hashicorp/vault/pull/8072)] * core: Fix seal migration error when attempting to migrate from auto unseal to shamir [[GH-8172](https://github.com/hashicorp/vault/pull/8172)] * core: Fix seal migration config issue when migrating from auto unseal to auto unseal [[GH-8172](https://github.com/hashicorp/vault/pull/8172)] * plugin: Fix issue where a plugin unwrap request potentially used an expired token [[GH-8058](https://github.com/hashicorp/vault/pull/8058)] * replication: Fix issue where a forwarded request from a performance/standby node could run into a timeout * secrets/database: Fix issue where a manual static role rotation could potentially panic [[GH-8098](https://github.com/hashicorp/vault/pull/8098)] * secrets/database: Fix issue where a manual root credential rotation request is not forwarded to the primary node [[GH-8125](https://github.com/hashicorp/vault/pull/8125)] * secrets/database: Fix issue where a manual static role rotation request is not forwarded to the primary node [[GH-8126](https://github.com/hashicorp/vault/pull/8126)] * secrets/database/mysql: Fix issue where special characters for a MySQL password were encoded [[GH-8040](https://github.com/hashicorp/vault/pull/8040)] * ui: Fix deleting namespaces [[GH-8132](https://github.com/hashicorp/vault/pull/8132)] * ui: Fix Error handler on kv-secret edit and kv-secret view pages [[GH-8133](https://github.com/hashicorp/vault/pull/8133)] * ui: Fix OIDC callback to check storage [[GH-7929](https://github.com/hashicorp/vault/pull/7929)]. * ui: Change `.box-radio` height to min-height to prevent overflow issues [[GH-8065](https://github.com/hashicorp/vault/pull/8065)] ## 1.3.1 (December 18th, 2019) IMPROVEMENTS: * agent: Add ability to set `exit-after-auth` via the CLI [[GH-7920](https://github.com/hashicorp/vault/pull/7920)] * auth/ldap: Add a `request_timeout` configuration option to prevent connection requests from hanging [[GH-7909](https://github.com/hashicorp/vault/pull/7909)] * auth/kubernetes: Add audience to tokenreview API request for Kube deployments where issuer is not Kube. [[GH-74](https://github.com/hashicorp/vault/pull/74)] * secrets/ad: Add a `request_timeout` configuration option to prevent connection requests from hanging [[GH-59](https://github.com/hashicorp/vault-plugin-secrets-ad/pull/59)] * storage/postgresql: Add support for setting `connection_url` from enviornment variable `VAULT_PG_CONNECTION_URL` [[GH-7937](https://github.com/hashicorp/vault/pull/7937)] * telemetry: Add `enable_hostname_label` option to telemetry stanza [[GH-7902](https://github.com/hashicorp/vault/pull/7902)] * telemetry: Add accept header check for prometheus mime type [[GH-7958](https://github.com/hashicorp/vault/pull/7958)] BUG FIXES: * agent: Fix issue where Agent exits before all templates are rendered when using and `exit_after_auth` [[GH-7899](https://github.com/hashicorp/vault/pull/7899)] * auth/aws: Fixes region-related issues when using a custom `sts_endpoint` by adding a `sts_region` parameter [[GH-7922](https://github.com/hashicorp/vault/pull/7922)] * auth/token: Fix panic when getting batch tokens on a performance standby from a role that does not exist [[GH-8027](https://github.com/hashicorp/vault/pull/8027)] * core: Improve warning message for lease TTLs [[GH-7901](https://github.com/hashicorp/vault/pull/7901)] * identity: Fix identity token panic during invalidation [[GH-8043](https://github.com/hashicorp/vault/pull/8043)] * plugin: Fix a panic that could occur if a mount/auth entry was unable to mount the plugin backend and a request that required the system view to be retrieved was made [[GH-7991](https://github.com/hashicorp/vault/pull/7991)] * replication: Add `generate-public-key` endpoint to list of allowed endpoints for existing DR secondaries * secrets/gcp: Fix panic if bindings aren't provided in roleset create/update. [[GH-56](https://github.com/hashicorp/vault-plugin-secrets-gcp/pull/56)] * secrets/pki: Prevent generating certificate on performance standby when storing [[GH-7904](https://github.com/hashicorp/vault/pull/7904)] * secrets/transit: Prevent restoring keys to new names that are sub paths [[GH-7998](https://github.com/hashicorp/vault/pull/7998)] * storage/s3: Fix a bug in configurable S3 paths that was preventing use of S3 as a source during `operator migrate` operations [[GH-7966](https://github.com/hashicorp/vault/pull/7966)] * ui: Ensure secrets with a period in their key can be viewed and copied [[GH-7926](https://github.com/hashicorp/vault/pull/7926)] * ui: Fix status menu after demotion [[GH-7997](https://github.com/hashicorp/vault/pull/7997)] * ui: Fix select dropdowns in Safari when running Mojave [[GH-8023](https://github.com/hashicorp/vault/pull/8023)] ## 1.3 (November 14th, 2019) CHANGES: * Secondary cluster activation: There has been a change to the way that activating performance and DR secondary clusters works when using public keys for encryption of the parameters rather than a wrapping token. This flow was experimental and never documented. It is now officially supported and documented but is not backwards compatible with older Vault releases. * Cluster cipher suites: On its cluster port, Vault will no longer advertise the full TLS 1.2 cipher suite list by default. Although this port is only used for Vault-to-Vault communication and would always pick a strong cipher, it could cause false flags on port scanners and other security utilities that assumed insecure ciphers were being used. The previous behavior can be achieved by setting the value of the (undocumented) `cluster_cipher_suites` config flag to `tls12`. * API/Agent Renewal behavior: The API now allows multiple options for how it deals with renewals. The legacy behavior in the Agent/API is for the renewer (now called the lifetime watcher) to exit on a renew error, leading to a reauthentication. The new default behavior is for the lifetime watcher to ignore 5XX errors and simply retry as scheduled, using the existing lease duration. It is also possible, within custom code, to disable renewals entirely, which allows the lifetime watcher to simply return when it believes it is time for your code to renew or reauthenticate. FEATURES: * **Vault Debug**: A new top-level subcommand, `debug`, is added that allows operators to retrieve debugging information related to a particular Vault node. Operators can use this simple workflow to capture triaging information, which can then be consumed programmatically or by support and engineering teams. It has the abilitity to probe for config, host, metrics, pprof, server status, and replication status. * **Recovery Mode**: Vault server can be brought up in recovery mode to resolve outages caused due to data store being in bad state. This is a privileged mode that allows `sys/raw` API calls to perform surgical corrections to the data tore. Bad storage state can be caused by bugs. However, this is usually observed when known (and fixed) bugs are hit by older versions of Vault. * **Entropy Augmentation (Enterprise)**: Vault now supports sourcing entropy from external source for critical security parameters. Currently an HSM that supports PKCS#11 is the only supported source. * **Active Directory Secret Check-In/Check-Out**: In the Active Directory secrets engine, users or applications can check out a service account for use, and its password will be rotated when it's checked back in. * **Vault Agent Template**: Vault Agent now supports rendering templates containing Vault secrets to disk, similar to Consul Template [[GH-7652](https://github.com/hashicorp/vault/pull/7652)] * **Transit Key Type Support**: Signing and verification is now supported with the P-384 (secp384r1) and P-521 (secp521r1) ECDSA curves [[GH-7551](https://github.com/hashicorp/vault/pull/7551)] and encryption and decryption is now supported via AES128-GCM96 [[GH-7555](https://github.com/hashicorp/vault/pull/7555)] * **SSRF Protection for Vault Agent**: Vault Agent has a configuration option to require a specific header before allowing requests [[GH-7627](https://github.com/hashicorp/vault/pull/7627)] * **AWS Auth Method Root Rotation**: The credential used by the AWS auth method can now be rotated, to ensure that only Vault knows the credentials it is using [[GH-7131](https://github.com/hashicorp/vault/pull/7131)] * **New UI Features**: The UI now supports managing users and groups for the Userpass, Cert, Okta, and Radius auth methods. * **Shamir with Stored Master Key**: The on disk format for Shamir seals has changed, allowing for a secondary cluster using Shamir downstream from a primary cluster using Auto Unseal. [[GH-7694](https://github.com/hashicorp/vault/pull/7694)] * **Stackdriver Metrics Sink**: Vault can now send metrics to [Stackdriver](https://cloud.google.com/stackdriver/). See the [configuration documentation](https://www.vaultproject.io/docs/config/index.html) for details. [[GH-6957](https://github.com/hashicorp/vault/pull/6957)] * **Filtered Paths Replication (Enterprise)**: Based on the predecessor Filtered Mount Replication, Filtered Paths Replication allows now filtering of namespaces in addition to mounts. * **Token Renewal via Accessor**: Tokens can now be renewed via the accessor value through the new `auth/token/renew-accessor` endpoint if the caller's token has permission to access that endpoint. * **Improved Integrated Storage (Beta)**: Improved raft write performance, added support for non-voter nodes, along with UI support for: using raft storage, joining a raft cluster, and downloading and restoring a snapshot. IMPROVEMENTS: * agent: Add ability to set the TLS SNI name used by Agent [[GH-7519](https://github.com/hashicorp/vault/pull/7519)] * agent & api: Change default renewer behavior to ignore 5XX errors [[GH-7733](https://github.com/hashicorp/vault/pull/7733)] * auth/jwt: The redirect callback host may now be specified for CLI logins [[GH-71](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/71)] * auth/jwt: Bound claims may now contain boolean values [[GH-73](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/73)] * auth/jwt: CLI logins can now open the browser when running in WSL [[GH-77](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/77)] * core: Exit ScanView if context has been cancelled [[GH-7419](https://github.com/hashicorp/vault/pull/7419)] * core: re-encrypt barrier and recovery keys if the unseal key is updated [[GH-7493](https://github.com/hashicorp/vault/pull/7493)] * core: Don't advertise the full set of TLS 1.2 cipher suites on the cluster port, even though only strong ciphers were used [[GH-7487](https://github.com/hashicorp/vault/pull/7487)] * core (enterprise): Add background seal re-wrap * core/metrics: Add config parameter to allow unauthenticated sys/metrics access. [[GH-7550](https://github.com/hashicorp/vault/pull/7550)] * metrics: Upgrade DataDog library to improve performance [[GH-7794](https://github.com/hashicorp/vault/pull/7794)] * replication (enterprise): Write-Ahead-Log entries will not duplicate the data belonging to the encompassing physical entries of the transaction, thereby improving the performance and storage capacity. * replication (enterprise): Added more replication metrics * replication (enterprise): Reindex process now compares subpages for a more accurate indexing process. * replication (enterprise): Reindex API now accepts a new `skip_flush` parameter indicating all the changes should not be flushed while the tree is locked. * secrets/aws: The root config can now be read [[GH-7245](https://github.com/hashicorp/vault/pull/7245)] * secrets/database/cassandra: Add ability to skip verfication of connection [[GH-7614](https://github.com/hashicorp/vault/pull/7614)] * secrets/gcp: Fix panic during rollback if the roleset has been deleted [[GH-52](https://github.com/hashicorp/vault-plugin-secrets-gcp/pull/52)] * storage/azure: Add config parameter to Azure storage backend to allow specifying the ARM endpoint [[GH-7567](https://github.com/hashicorp/vault/pull/7567)] * storage/cassandra: Improve storage efficiency by eliminating unnecessary copies of value data [[GH-7199](https://github.com/hashicorp/vault/pull/7199)] * storage/raft: Improve raft write performance by utilizing FSM Batching [[GH-7527](https://github.com/hashicorp/vault/pull/7527)] * storage/raft: Add support for non-voter nodes [[GH-7634](https://github.com/hashicorp/vault/pull/7634)] * sys: Add a new `sys/host-info` endpoint for querying information about the host [[GH-7330](https://github.com/hashicorp/vault/pull/7330)] * sys: Add a new set of endpoints under `sys/pprof/` that allows profiling information to be extracted [[GH-7473](https://github.com/hashicorp/vault/pull/7473)] * sys: Add endpoint that counts the total number of active identity entities [[GH-7541](https://github.com/hashicorp/vault/pull/7541)] * sys: `sys/seal-status` now has a `storage_type` field denoting what type of storage the cluster is configured to use * sys: Add a new `sys/internal/counters/tokens` endpoint, that counts the total number of active service token accessors in the shared token storage. [[GH-7541](https://github.com/hashicorp/vault/pull/7541)] * sys/config: Add a new endpoint under `sys/config/state/sanitized` that returns the configuration state of the server. It excludes config values from `storage`, `ha_storage`, and `seal` stanzas and some values from `telemetry` due to potential sensitive entries in those fields. * ui: when using raft storage, you can now join a raft cluster, download a snapshot, and restore a snapshot from the UI [[GH-7410](https://github.com/hashicorp/vault/pull/7410)] * ui: clarify when secret version is deleted in the secret version history dropdown [[GH-7714](https://github.com/hashicorp/vault/pull/7714)] BUG FIXES: * agent: Fix a data race on the token value for inmemsink [[GH-7707](https://github.com/hashicorp/vault/pull/7707)] * api: Fix Go API using lease revocation via URL instead of body [[GH-7777](https://github.com/hashicorp/vault/pull/7777)] * api: Allow setting a function to control retry behavior [[GH-7331](https://github.com/hashicorp/vault/pull/7331)] * auth/gcp: Fix a bug where region information in instance groups names could cause an authorization attempt to fail [[GH-74](https://github.com/hashicorp/vault-plugin-auth-gcp/pull/74)] * cli: Fix a bug where a token of an unknown format (e.g. in ~/.vault-token) could cause confusing error messages during `vault login` [[GH-7508](https://github.com/hashicorp/vault/pull/7508)] * cli: Fix a bug where the `namespace list` command with JSON formatting always returned an empty object [[GH-7705](https://github.com/hashicorp/vault/pull/7705)] * cli: Command timeouts are now always specified solely by the `VAULT_CLIENT_TIMEOUT` value. [[GH-7469](https://github.com/hashicorp/vault/pull/7469)] * core: Don't allow registering a non-root zero TTL token lease. This is purely defense in depth as the lease would be revoked immediately anyways, but there's no real reason to allow registration. [[GH-7524](https://github.com/hashicorp/vault/pull/7524)] * identity (enterprise): Fixed identity case sensitive loading in secondary cluster [[GH-7327](https://github.com/hashicorp/vault/pull/7327)] * identity: Ensure only replication primary stores the identity case sensitivity state [[GH-7820](https://github.com/hashicorp/vault/pull/7820)] * raft: Fixed VAULT_CLUSTER_ADDR env being ignored at startup [[GH-7619](https://github.com/hashicorp/vault/pull/7619)] * secrets/pki: Don't allow duplicate SAN names in issued certs [[GH-7605](https://github.com/hashicorp/vault/pull/7605)] * sys/health: Pay attention to the values provided for `standbyok` and `perfstandbyok` rather than simply using their presence as a key to flip on that behavior [[GH-7323](https://github.com/hashicorp/vault/pull/7323)] * ui: using the `wrapped_token` query param will work with `redirect_to` and will automatically log in as intended [[GH-7398](https://github.com/hashicorp/vault/pull/7398)] * ui: fix an error when initializing from the UI using PGP keys [[GH-7542](https://github.com/hashicorp/vault/pull/7542)] * ui: show all active kv v2 secret versions even when `delete_version_after` is configured [[GH-7685](https://github.com/hashicorp/vault/pull/7685)] * ui: Ensure that items in the top navigation link to pages that users have access to [[GH-7590](https://github.com/hashicorp/vault/pull/7590)] ## 1.2.4 (November 7th, 2019) SECURITY: * In a non-root namespace, revocation of a token scoped to a non-root namespace did not trigger the expected revocation of dynamic secret leases associated with that token. As a result, dynamic secret leases in non-root namespaces may outlive the token that created them. This vulnerability, CVE-2019-18616, affects Vault Enterprise 0.11.0 and newer. * Disaster Recovery secondary clusters did not delete already-replicated data after a mount filter has been created on an upstream Performance secondary cluster. As a result, encrypted secrets may remain replicated on a Disaster Recovery secondary cluster after application of a mount filter excluding those secrets from replication. This vulnerability, CVE-2019-18617, affects Vault Enterprise 0.8 and newer. * Update version of Go to 1.12.12 to fix Go bug golang.org/issue/34960 which corresponds to CVE-2019-17596. CHANGES: * auth/aws: If a custom `sts_endpoint` is configured, Vault Agent and the CLI should provide the corresponding region via the `region` parameter (which already existed as a CLI parameter, and has now been added to Agent). The automatic region detection added to the CLI and Agent in 1.2 has been removed. IMPROVEMENTS: * cli: Ignore existing token during CLI login [[GH-7508](https://github.com/hashicorp/vault/pull/7508)] * core: Log proxy settings from environment on startup [[GH-7528](https://github.com/hashicorp/vault/pull/7528)] * core: Cache whether we've been initialized to reduce load on storage [[GH-7549](https://github.com/hashicorp/vault/pull/7549)] BUG FIXES: * agent: Fix handling of gzipped responses [[GH-7470](https://github.com/hashicorp/vault/pull/7470)] * cli: Fix panic when pgp keys list is empty [[GH-7546](https://github.com/hashicorp/vault/pull/7546)] * cli: Command timeouts are now always specified solely by the `VAULT_CLIENT_TIMEOUT` value. [[GH-7469](https://github.com/hashicorp/vault/pull/7469)] * core: add hook for initializing seals for migration [[GH-7666](https://github.com/hashicorp/vault/pull/7666)] * core (enterprise): Migrating from one auto unseal method to another never worked on enterprise, now it does. * identity: Add required field `response_types_supported` to identity token `.well-known/openid-configuration` response [[GH-7533](https://github.com/hashicorp/vault/pull/7533)] * identity: Fixed nil pointer panic when merging entities [[GH-7712](https://github.com/hashicorp/vault/pull/7712)] * replication (Enterprise): Fix issue causing performance standbys nodes disconnecting when under high loads. * secrets/azure: Fix panic that could occur if client retries timeout [[GH-7793](https://github.com/hashicorp/vault/pull/7793)] * secrets/database: Fix bug in combined DB secrets engine that can result in writes to static-roles endpoints timing out [[GH-7518](https://github.com/hashicorp/vault/pull/7518)] * secrets/pki: Improve tidy to continue when value is nil [[GH-7589](https://github.com/hashicorp/vault/pull/7589)] * ui (Enterprise): Allow kv v2 secrets that are gated by Control Groups to be viewed in the UI [[GH-7504](https://github.com/hashicorp/vault/pull/7504)]

@jennybc

# withr 2.2.0 # withr 2.1.2.9000 - `defer()` can set deferred events on `.GlobalEnv` to facilitate the interactive development of code inside a function or test. Helpers `deferred_run()` (and `deferred_clear()`) provide a way to explicity run and clear (or just clear) deferred events (#76, @jennybc). - `with_connection()` now works when existing objects or connections exist with the same names (#120) - `with_makevars()` now uses `tools::makevars_user()` to determine the default user makevars file (#77, @siddharthab). - `with_options()` no longer uses `do.call()`, so optiosn are not evaluated on exit (#73, @mtmorgan). - `with_package()` no longer has the `help` argument (#94, @wendtke). - `with_package()` now does not try to detach the package if it is already attached before calling `with_package()` (#107) - `with_preserve_seed()` now restores `.Random.seed` if it is not set originally (#124). - Add `with_rng_version()` and `local_rng_version()` functions to change the version of the RNG (#90, @gaborcsardi). - `with_svg()` documentation now is consistent across R versions (#129) - Add `with_timezone()` and `local_timezone()` functions to change the time zone (#92, @gaborcsardi). - `with_tempfile()` and `local_tempfile()` now delete recursively directories on exit (#84, @meta00).

## later 1.2.0 * Closed #138: later is now licensed as MIT. (#139) * Closed #140: Previously, the event loop stopped running if the R process was forked. (#141) * Closed #143: Packages which link to later no longer need to take a direct dependency on Rcpp, because `later.h` no longer includes `Rcpp.h`. (#144) * Removed dependency on the BH package. C++11 is now required. (#147) ## later 1.1.0.1 * Private event loops are now automatically run by their parent. That is, whenever an event loop is run, its children event loops are automatically run. The `create_loop()` function has a new parameter `parent`, which defaults to the current loop. The auto-running behavior can be disabled by using `create_loop(parent=NULL)`. (#119) * Fixed #73, #109: Previously, later did not build on some platforms, notably ARM, because the `-latomic` linker was needed on those platforms. A configure script now detects when `-latomic` is needed. (#114) * Previously, `execLaterNative` was initialized when the package was loaded, but not `execLaterNative2`, resulting in a warning message in some cases. (#116)

Upstream changes: 0.073 2021-07-18 - fix #73 CPAN testers failure with Math::BigInt 1.99982 - fix #70 remove lto related hacks from Makefile.PL - fix #72 drop optional prereqs JSON::XS + Cpanel::JSON::XS, use optionally only JSON

@dmurdoch

# waldo 0.3.0 * `compare()` is now considerably faster when comparing complex objects that don't have any differences (thanks to strategic use of `identical()`) (#86). * `compare()` gains two improvements to low-level diffs: * Structurally identical data frames (#78) and numeric matrices (#76) gain a row-by-row diff that makes it easier to see where exactly values differ. * An element-by-element diff will be automatically used if it's shorter than the "smart" diff. This improves diff quality when comparing two vectors that aren't really related (#68). * `compare()` gains a `list_as_map` argument thanks to an idea from @dmurdoch. It allows you to compare the behaviour of two lists when they are used to connect names to values (i.e. the list is operating as a map or dictionary). It removes `NULL`s and sorts named components (#72). * The objects involved in `compare()` (as opposed to the caller of `compare()`) gained much greater ability to control the comparison. * Objects can now contain a `waldo_opts` attribute, a list with the same names and valid values as the arguments to `compare()`, which overrides the default comparisons (@dmurdoch). * `compare_proxy()` is now called earlier (before type comparison) making it more flexible (#65). * `compare_proxy()` gains a second argument, `path`, used to report how the proxy changed the object. This makes it easier to see when and how a proxy is used (#73). * Proxies now exist for comparing RProtoBuf objects, converting them to proto text format (#82, @michaelquinn32). * Comparing a list with symbol to a list without that element no longer errors (@mgirlich, #79).

Changes fro 2.2.1 ----------------- * The `txtInt` handles `NA` more gracefully. Changes fro 2.2.0 ----------------- * Added `htmlTable_args` attribute for making modifications to the final table easier Changes fro 2.1.0 ----------------- * Added options for how the empty spacer cell appears (see `addHtmlTableStyle()` spacer.* options) * Fixed ignored `align.header` * Fix for wrapped styles (issue #80) Changes for 2.0.1 ----------------- * Fix for txtRound not handling negative numbers (issue #76) * Fix bug for `hidden.rgroup` & `hidden_tspanner` in `tidyHtmlTable` * Documentation improvements & switched to markdown docs Changes for 2.0.0 ------------------ * Added theming and styling with `addHtmlTableStyle` and `setHtmlTableTheme` to reduce the cognitive burden of finding the right option within the docs. Note: this may impact your current tables and hence the major version (2.0.0). * Changed so that `css.cell` is properly applied to rownames, cell fillers and the actual cells of interest (may impact the final layout!) * Breaking change `tidyHtmlTable`: Moved to a fully tidyverse compatible system with tidyHtmlTable. This is a breaking change to the API as we switch from columns as strings to `tidyselect` syntax and as `gather`/`spread` have been replaced by `pivot_longer`/`pivot_wider` the default values have been updated in accordance with their defaults, e.g. `rnames = "name"` and `value = "value"`. * Breaking change `tidyHtmlTable`: Sorting of rows is skipped as we may have situations with repeating inputs and this can easily be performed pre-function by calling `dplyr::arrange`. This has furthermore the desirable feature that any custom sorting is retained. * Added *mso-number-format* to help (Issue #63) - thanks Rasmus Hertzum * txtRound can now add txtInt when formatting the integer section for easier readability * Added htmlTable css options - they should all start with `htmlTable.` * `pos.caption` now uses match.arg as expected * Fixed proper S3 function definition for `htmlTable` with all the arguments * Added `htmlTable.css.border` style option for allowing to choose border style. Also fixed bug with cgroup empty cells and vertical border. * Added `htmlTable.pretty_indentation` option for skipping the stripping of all the tabs that was required due to old Pandoc bug. * Added `attr(x, "html") <- TRUE` by default and UTF-8 encoding on all outputted strings to mimic the `htmltools::HTML` function behavior. * For simple tibble output the `tidyHtmlTable` can now be used to choose a column for the rnames argument * The print statement now respects the `chunk_output_type` in Rmd files in RStudio * `tidyHtmlTable` now accepts table function that allows switching to other table functions * Added `css.header` style as using `css.cell` wasn't entirely intuitive (fixes issue #73) Changes for 1.13.3 ------------------ * Prepared for R 4.0

Upstream changes: ## 2021 10 29 - No significant bugs have been found since the last release, but several minor issues have been fixed. Vertical alignment has been improved for lists of call args which are not contained within parens (next item). - Vertical alignment of function calls without parens has been improved with the goal of making vertical alignment essentially the same with or without parens around the call args. Some examples: # OLD mkTextConfig $c, $x, $y, -anchor => 'se', $color; mkTextConfig $c, $x + 30, $y, -anchor => 's', $color; mkTextConfig $c, $x + 60, $y, -anchor => 'sw', $color; mkTextConfig $c, $x, $y + 30, -anchor => 'e', $color; # NEW mkTextConfig $c, $x, $y, -anchor => 'se', $color; mkTextConfig $c, $x + 30, $y, -anchor => 's', $color; mkTextConfig $c, $x + 60, $y, -anchor => 'sw', $color; mkTextConfig $c, $x, $y + 30, -anchor => 'e', $color; # OLD is id_2obj($id), undef, "unregistered object not retrieved"; is scalar keys %$ob_reg, 0, "object registry empty"; is register($obj), $obj, "object returned by register"; is scalar keys %$ob_reg, 1, "object registry nonempty"; is id_2obj($id), $obj, "registered object retrieved"; # NEW is id_2obj($id), undef, "unregistered object not retrieved"; is scalar keys %$ob_reg, 0, "object registry empty"; is register($obj), $obj, "object returned by register"; is scalar keys %$ob_reg, 1, "object registry nonempty"; is id_2obj($id), $obj, "registered object retrieved"; This will cause some changes in alignment, hopefully for the better, particularly in test code which often uses numerous parenless function calls with functions like 'ok', 'is', 'is_deeply', .... - Two new parameters were added to control the block types to which the -bl (--opening-brace-on-new-line) flag applies. The new parameters are -block-left-list=s, or -bll=s, and --block-left-exclusion-list=s, or -blxl=s. Previously the -bl flag was 'hardwired' to apply to nearly all blocks. The default values of the new parameters retain the the old default behavior but allow it to be changed. - The default behavior of the -bli (-brace-left-and-indent) flag has changed slightly. Previously, if you set -bli, then the -bl flag would also automatically be set. Consequently, block types which were not included in the default list for -bli would get -bl formatting. This is no longer done, and these two styles are now controlled independently. The manual describes the controls. If you want to recover the exact previous default behavior of the -bli then add the -bl flag. - A partial fix was made for issue for git #74. The -lp formatting style was being lost when a one-line anonymous sub was followed by a closing brace. - Fixed issue git #73, in which the -nfpva flag was not working correctly. Some unwanted vertical alignments of spaced function perens were being made. - Updated the man pages to clarify the flags -valign and -novalign for turning vertical alignment on and off (issue git #72). Added parameters -vc -vsc -vbc for separately turning off vertical alignment of code, side comments and block comments. - Fixed issue git #68, where a blank line following a closing code-skipping comment, '#>>V', could be lost. - This version runs 10 to 15 percent faster on large files than the previous release due to optimizations made with the help of NYTProf. - This version of perltidy was stress-tested for many cpu hours with random input parameters. No instabilities, internal fault checks, undefined variable references or other irregularities were seen. - Numerous minor fixes have been made, mostly very rare formatting instabilities found in random testing. An effort has been made to minimize changes to existing formatting that these fixes produce, but occasional changes may occur. Many of these updates are listed at: https://github.com/perltidy/perltidy/blob/master/local-docs/BugLog.pod

7e85980 Merge pull request #72 from exo-cedric/oauth-to-stderr c8c2248 Merge pull request #73 from danielgtaylor/fix-send-headers 6e13db8 Merge pull request #74 from danielgtaylor/empty-array-header ce0c9b5 fix: oauth output corrupting JSON payload 5a1f4ba fix: prevent sending empty array header params 1537fce fix: send header params in request

Change log: 1.0.0 ====== Stable release including improvements introduced in versions 0.9.0, 0.9.1 and 0.9.2. The Shortcuts Editor requires libxfce4ui 4.17.2 or greater. Fixes - Remove remaining libxfce4ui 4.16 version guards Translation Updates: Danish, Greek, Russian, Turkish 0.9.2 ====== This is a RELEASE CANDIDATE for 1.0.0. If you want to help keep xfce4-terminal bug-free you can test this release and report any problems you encounter. DEPENDENCIES UPDATED: - VTE: 0.51.3 - Xfce-libs: 4.16.0 General Improvements: - Use XfceTitledDialog for `Find` (Issue #168) - Include '\r' in unsafe-paste checks - Update tab accelerators at runtime - Consume events that activate accelerator callbacks (Issues #159 #153) Shortcuts editor (depends on libxfce4ui 4.17): - Center on the active terminal window. - Change handling of goto-tab accelerators so they can be changed through the editor. Regressions fixed: - Menubar changes size when the window is maximized (Issue #156) - Context Menu: Revert changes in order and contents introduced by the transition to XfceGtkActionEntries - Add "Show Window Borders" entry in View menu (it was missing in the last 2 dev releases) - Revert view menu order (Zoom entries below checkboxes) - Fix the visibility flag of the scrollbar (Issue #161, could lead to broken themes) Other: - Replace GTimeVal with gint64 - Fix build warnings - Update Copyright Translation Updates: Albanian, Arabic, Armenian (Armenia), Basque, Belarusian, Bulgarian, Catalan, Chinese (China), Chinese (Taiwan), Croatian, Czech, Danish, Dutch, Eastern Armenian, English (Australia), English (United Kingdom), Estonian, Finnish, French, Galician, German, Greek, Hebrew, Hungarian, Icelandic, Indonesian, Interlingue, Italian, Japanese, Kazakh, Korean, Lithuanian, Malay, Norwegian Bokmål, Occitan (post 1500), Polish, Portuguese, Portuguese (Brazil), Romanian, Russian, Serbian, Slovak, Slovenian, Spanish, Swedish, Thai, Turkish, Ukrainian 0.9.1 ====== This is a development release. New features: - Use GtkScrolledWindow for TerminalScreen and add an overlay-scrolling preference (Issue #149) - Support the new Shortcuts editor widget (requires libxfce4ui 4.17.2 or greater) - New preference: Select right click action Enhancements: - Improved `scrolling-on-output` behaviour. - Unsafe Paste Dialog temporary override (Issue #106) Fixes: - Fix regression: File Menu missing `Close Window` entry - Fix regression: Disable Help shortcut does not work - Fix regression: go-to accelerators not working on startup - Fix regression: Revert accelerator paths to maintain backwards compatibility - Use the latest .glade file structure Documentation: - Change incorrect reference to ${XDG_CONFIG_DIRS} in man page (Issue #47) - Change outdated documentation links - Translation Updates: Albanian, Arabic, Armenian (Armenia), Basque, Belarusian, Bulgarian, Catalan, Chinese (China), Chinese (Taiwan), Croatian, Czech, Danish, Dutch, Eastern Armenian, English (Australia), English (United Kingdom), Estonian, Finnish, French, Galician, German, Greek, Hebrew, Hungarian, Icelandic, Indonesian, Interlingue, Italian, Japanese, Kazakh, Korean, Lithuanian, Malay, Norwegian Bokmål, Occitan (post 1500), Polish, Portuguese, Portuguese (Brazil), Romanian, Russian, Serbian, Slovak, Slovenian, Spanish, Swedish, Thai, Turkish, Ukrainian 0.9.0 ====== This is a development release. - Replace the deprecated GtkActionEntries with XfceGtkActionEntries (Issue #79) - Opening a dialog from a drop-down window closes the window (Issue #136) - Add `Fill` background image style (MR !23). - Improved options parsing (for both short and long forms) - Add a menu entry to send signals to the foreground process (Issue #59) - Fix `keep window open` preference being applied on restart. - Rework "--tab" and "--window" behavior (Issue #13) - Ignore unused modifiers for scroll wheel zooming - Add alternative shortcuts for zooming (Issue #126) - Expand scrolled window and make dialog size 70% of parent (!17) - Support libxfce4ui XfceTitledDialog new API Unsafe Paste Dialog: - Update unsafe paste dialog text (Issue #73) - Fix paste button focus - Replace subtitle by infobar for Unsafe paste dialog - Fix the `unsafe paste` dialog to actually paste Cleanup: - Update `.gitignore`, HACKING, AUTHORS, COPYRIGHTS - Update --preferences, --tab and --window documentation - Fix various typos - Fix compilation warnings - Remove unnecessary function call (!24) Temporary changes (will be changed before the final release): - Add a "Do not warn me again" checkbox for the "Unsafe Paste" dialog (Issue #129) Translation Updates: Albanian, Arabic, Armenian (Armenia), Basque, Belarusian, Bulgarian, Catalan, Chinese (China), Chinese (Taiwan), Croatian, Czech, Danish, Dutch, Eastern Armenian, English (Australia), English (United Kingdom), Estonian, Finnish, French, Galician, German, Greek, Hebrew, Hungarian, Icelandic, Indonesian, Interlingue, Italian, Japanese, Kazakh, Korean, Lithuanian, Malay, Norwegian Bokmål, Occitan (post 1500), Polish, Portuguese, Portuguese (Brazil), Romanian, Russian, Serbian, Slovak, Slovenian, Spanish, Swedish, Thai, Turkish, Ukrainian, Uyghur

[0.7.0] - 2022-04-24 Bug Fixes -Pin the Rust nightly version -Allow custom commit range while prepending (#68) -Remove redundant logging while using --context (#71) -Update expected changelog date Documentation -Add more regex examples for commit_preprocessors -Update GitHub Actions reference link in README.md -Add cliff-jumper to similar projects (#83) -Update the title of projects section Features -Show a message if a newer version is available (#69) -Add --context flag for outputting context (#71) -Support placing configuration inside Cargo.toml (#46) -[breaking] Prefix environment variables with GIT_CLIFF_ (#76) -Print more debug information when -vv is used (#79) -Support preprocessing commit messages using regex (#62) -Add man page generation script (#35) Miscellaneous Tasks -Return to nightly builds (#73) -Include man page in the release assets -Upgrade git-conventional dependency (#82) -Upgrade versions in Dockerfile -Build Docker images for arm64 -Disable default features for the Docker image -Strip the binaries in Docker image -Upgrade dependencies Refactor -Make update-informer opt-out via feature flag (#69) -Use implicit Result type in completions script Styling -Update the changelog template for tag message

1.5.0 (2021-12-23) * Updated the CI configuration and monkey-patch Hoe. * Kenichi Kamiya fixed a test configuration deprecation in SimpleCov. #69 * Tien introduced several corrections and code improvements: o Removed an off-by-one error when calculating an index value by embracing Ruby iteration properly. This had a side-effect of fixing a long-standing bug in #traverse_sequences where the traversal would not be transitive. That is, LCS(s2, s1) should produce a sequence that is transitive with LCS(s1, s2) on traversal, and applying the diff computed from those results would result in equivalent changes that could be played forward or backward as appropriate. #71, #75 o The above fix resulted in a changed order of the longest common subsequence when callbacks were applied. After analysis, it was determined that the computed subsequence was equivalent to the prior version, so the test was updated. This also resulted in the clarification of documentation when traversing the subsequences. #79 o An infinite loop case in the case where Diff::LCS would be included into an enumerable class has been fixed. #73 o Clarified the purpose of a threshold test in calculation of LCS. #72, #80 * Removed autotest directory

Upstream changes: #-#-#-#-#-#-#-#-#-# Changes in TTR version 0.24.2 #-#-#-#-#-#-#-#-#-# BUG FIXES - Check for 'ratio > 0' before calculating 'n' in zlema() C code. The prior code could result in division by 0, which was flagged by clang-UBSAN. Thanks to Prof Brian Ripley for the report. (#100) #-#-#-#-#-#-#-#-#-# Changes in TTR version 0.24.1 #-#-#-#-#-#-#-#-#-# BUG FIXES - Fix leading NA accounting in wma() C code. The prior code caused invalid reads under valgrind. Thanks to Prof Brian Ripley for the report. (#99) - Check for 'ratio > 0' before calculating 'n' in ema() C code. The prior code could result in division by 0, which was flagged by UBSAN. Thanks to Prof Brian Ripley for the report. (#100) - Make ALMA() output length equal input length when the input can not be converted to xts. This was caused by the difference between rollapply.default() and rollapply.xts(). Thanks to GitHub user marksimmonds for the report. (#29) - Fix stoch() in very rare cases where fastK is Inf. I could only reproduce this if the Close is > High and High and Low are equal, but that is a data error. I fixed anyway because there may be other cases I don't anticipate. Thanks to GitHub user cjuncosa for the report. (#52) - Fix MFI() when money flow is always zero or positive. The denominator of the money ratio will be zero if there is no negative money flow for 'n' consecutive observations (e.g. during a strong up-trend), which causes the money flow index to be Inf. Set the money flow index to 100 in this case. And the money ratio will be NaN if there's no money flow for 'n' consecutive observations (e.g. if there are no trades), which causes the money flow index to be NaN. Set the money flow index to 50 in this case. Thanks to GitHub user jgehw for the report, reproducible example, and suggested patch. (#81) #-#-#-#-#-#-#-#-#-# Changes in TTR version 0.24.0 #-#-#-#-#-#-#-#-#-# SIGNIFICANT USER-VISIBLE CHANGES - Updated stockSymbols() to use the NASDAQ FTP site instead of downloading the CSV from the NASDAQ stock screener page. Some columns are no longer populated because they are not provided in the FTP file: LastSale ,MarketCap, IPOyear, Sector, Industry These columns will be removed in a future version. (#98, #5, #97) - runPercentRank(x, n, cumulative = TRUE) now sets observations in the initialization period to NA. This is consistent with the other running/rolling functions in TTR. If you want the previous behavior, you should use runPercentRank(x, n = 1, cumulative = TRUE). Thanks to GitHub user httassadar for the report. (#73) NEW FEATURES - Add Ehler's Correlation Trend Indicator. Thanks to Evelyn Mitchell for the suggestion, and for Ethan Smith for the initial implementation. (#92) BUG FIXES - runMAD() returned incorrect values when 'cumulative = TRUE' and the input contained leading NA. Thanks to GitHub user stellathecat for the report. This also affected runMedian() also. (#93) - ZLEMA() would crash when 'ratio = 0.0' and 'n' was not specified. Thanks to GitHub user yogat3ch for the report! (#95) - WMA() did not return an xts object when passed an xts object for 'x' that had leading NA, with the default 'wts = 1:n'. Thanks to Cory Fletcher for reporting this issue via email. (#96) - stoch() was wrong when 'bounded = FALSE'. Thanks to GitHub user rfinfun for the report and patch. (#74) - HMA() threw an error when 'n' was an odd number. This was because the first call to WMA() used 'n = n / 2' which caused 'n' to not be an integer. Thanks to GitHub user dragie for the report. (#76)

@skryukov

0.9.1 (2022-04-19) What's Changed * Specify correct minimal Faraday version by @skryukov in #73 New Contributors * @skryukov made their first contribution in #73 Contributors * @skryukov 0.9.0 (2022-04-19) What's Changed * Allow closing underlying connection. by @ioquatix in #67 * Enhance Faraday Support by @iMacTia in #72 New Contributors * @ioquatix made their first contribution in #67 * @iMacTia made their first contribution in #72

What's Changed - Add "add-track-to-queue" support in #73 - Refactor playback rendering codes in #75 - Add seek commands in #76

Change log: 1.9.11 (2022-08-08) ====== - Add support to WebP (TritonDataCenter#76) - Fix window capture in HiDPI mode (TritonDataCenter#73) - Fix intltool lock file problem during make distcheck - Add option to Show in File Manager when saving (TritonDataCenter#47) - Do not quit after dismissing dialog if invoked from plugin (TritonDataCenter#71) - Update COPYING (Issue TritonDataCenter#70) - Translation Updates: Albanian, Basque, Belarusian, Bulgarian, Catalan, Chinese (China), Chinese (Taiwan), Czech, Danish, Dutch, Estonian, Finnish, French, Galician, German, Greek, Hebrew, Indonesian, Italian, Japanese, Korean, Lithuanian, Malay, Norwegian Bokmål, Persian (Iran), Polish, Portuguese, Portuguese (Brazil), Russian, Serbian, Slovak, Slovenian, Spanish, Swedish, Thai, Turkish, Ukrainian

@Builditluc

What's Changed Exciting New Features - Add focus keybindings to the config by @Builditluc in #79 - Better logging messages by @Builditluc in #83 - Create config file if not existent by @Builditluc in #88 - Overhaul the UI by @Builditluc in #81 Bug Fixes - Fix no article being displayed by @Builditluc in #73 - Disable logging if not enabled in the config by @Builditluc in #91 - Fix crash on non writable directory by @Builditluc in #99 Documentation Changes - Add toc configuration documentation by @Builditluc in #75 - Change Branch naming by @Builditluc in #76 - Add FreeBSD install instructions by @nunotexbsd in #86 Other Changes - Add label to exclude PRs from release notes by @Builditluc in #72 - Bump toml dependency to 0.5.9 by @Builditluc in #85 - Fix documentation action by @Builditluc in #101

@monora

0.5.10 (2023-01-02) Support Ruby 3.2 What's Changed * Improve documentation by @monora in #67 * doc: build and publish doc to github pages by @monora in #69 * chore: use dependabot by @monora in #70 * chore: add ecosystem bundler to dependabot by @monora in #71 * fix: Remove superfluous :GRAY assignment in depth first visit (#66) by @monora in #68 * chore: support ruby 3.2.0 by @monora in #73

## v0.19.1 ### 🔦 Highlights #### DHT Timeouts In v0.16.0, Kubo added the ability to configure custom content routers and DHTs with the `custom` router type, and as part of this added a default 5 minute timeout to all DHT operations. In some cases with large repos, this can cause provide and reprovide operations to fail because the timeout is reached. This release removes these timeouts on DHT operations. If users desire these timeouts, they can be added back using the `custom` router type. ### Changelog - github.com/ipfs/kubo: - chore: update version - fix: remove timeout on default DHT operations (#9783) - chore: update version - github.com/ipfs/go-blockservice (v0.5.0 -> v0.5.1): - chore: release v0.5.1 - fix: remove busyloop in getBlocks by removing batching - github.com/libp2p/go-libp2p (v0.26.3 -> v0.26.4): - release v0.26.4 - autorelay: fix busy loop bug and flaky tests in relay finder (#2208) - github.com/libp2p/go-libp2p-routing-helpers (v0.6.1 -> v0.6.2): - Release v0.6.2 (#73) - feat: zero timeout on composed routers should disable timeout (#72)

@krlmlr

# fansi Release Notes ## v1.0.4 CRAN compiled code warning suppression release. * Fix void function declarations and definitions. * Change `sprintf` to `snprintf`. ## v1.0.3 * Address problem uncovered by gcc-12 linters, although the issue itself could not manifest due to redundancy of checks in the code. ## v1.0.0-2 This is a major release and includes some behavior changes. ### Features * New functions: * [#26](brodieG/fansi#26) Replacement forms of `substr_cl` (i.e `substr_ctl<-`). * `state_at_end` to compute active state at end of a string. * `close_state` to generate a closing sequence given an active state. * [#31](brodieG/fansi#31) `trimws_ctl` as an equivalent to `trimws`. * [#64](brodieG/fansi#64) `normalize_sgr` converts compound _Control Sequences_ into normalized form (e.g. "ESC[44;31m" becomes "ESC[31mESC[44m") for better compatibility with [`crayon`](https://github.com/r-lib/crayon). Additionally, most functions gain a `normalize` parameter so that they may return their output in normalized form (h/t @krlmlr). * [#74](brodieG/fansi#74 and related functions are now all-C instead of a combination of C offset computations and R level `substr` operations. This greatly improves performance, particularly for vectors with many distinct strings. Despite documentation claiming otherwise, `substr_ctl` was quite slow in that case. * [#66](brodieG/fansi#66) Improved grapheme support, including accounting for them in `type="width"` mode, as well as a `type="graphemes"` mode to measure in graphemes instead of characters. Implementation is based on heuristics designed to work in most common use cases. * `html_esc` gains a `what` parameter to indicate which HTML special characters should be escaped. * Many functions gain `carry` and `terminate` parameters to control how `fansi` generated substrings interact with surrounding formats. * [#71](brodieG/fansi#71) Functions that write SGR and OSC are now more parsimonious (see "Behavior Changes" below). * [#73](brodieG/fansi#73) Default parameter values retrieved with `getOption` now always have explicit fallback values defined (h/t @gadenbui). * Better warnings and error messages, including more granular messages for `unhandled_ctl` for adjacent _Control Sequences_. * `term.cap` parameter now accepts "all" as value, like the `ctl` parameter. ### Deprecated Functions * All the "sgr" functions (e.g., `substr_sgr`, `strwrap_sgr`) are deprecated. They will likely live on indefinitely, but they are of limited usefulness and with the added support for OSC hyperlinks their name is misleading. * `sgr_to_html` is now `to_html` with slight modifications to semantics; the old function remains and does not warn about unescaped "<" or ">" in the input string. ### Behavior Changes The major intentional behavior change is to default `fansi` to always recognize true color CSI SGR sequences (e.g. `"ESC[38;2;128;50;245m"`). The prior default was to match the active terminal capabilities, but it is unlikely that the intent of a user manipulating a string with truecolor sequences is to interpret them incorrectly, even if their terminal does. `fansi` will continue to warn in this case. To keep the pre-1.0 behavior add `"old"` to the `term.cap` parameter. Additionally, `to_html` will now warn if it encounters unescaped HTML special character "<" or ">" in the input string. Finally, the 1.0 release is an extensive refactoring of many parts of the SGR and OSC hyperlink controls (_Special Sequences_) intake and output algorithms. In some cases this means that some `fansi` functions will output _Special Sequences_ slightly differently than they did before. In almost all cases the rendering of the output should remain unchanged, although there are some corner cases with changes (e.g. in `strwrap_ctl` SGRs embedded in whitespace sequences don't break the sequence). The changes are a side effect of applying more consistent treatment of corner cases around leading and trailing control sequences and (partially) invalid control sequences. Trailing _Special Sequences_ in the output is now omitted as it would be immediately closed (assuming `terminate=TRUE`, the default). Leading SGR is interpreted and re-output. Normally output consistency alone would not be a reason to change behavior, but in this case the changes should be almost always undetectable in the **rendered** output, and maintaining old inconsistent behavior in the midst of a complete refactoring of the internals was beyond my patience. I apologize if these behavior changes adversely affect your programs. > WARNING: we will strive to keep rendered appearance of `fansi` outputs > consistent across releases, but the exact bytes used in the output of _Special > Sequences_ may change. Other changes: * Tests may no longer pass with R < 4.0 although the package should still function correctly. This is primarily because of changes to the character width Unicode Database that ships with R, and many of the newly added grapheme tests touch parts of that database that changed (emoji). * CSI sequences with more than one "intermediate" byte are now considered valid, even though they are likely to be very rare, and CSI sequences consume all subsequent bytes until a valid closing byte or end of string is encountered. * `strip_ctl` only warns with malformed CSI and OSC if they are reported as supported via the `ctl` parameter. If CSI and OSC are indicated as not supported, but two byte escapes are, the two initial bytes of CSI and OSCs will be stripped. * "unknown" encoded strings are no longer translated to UTF-8 in UTF-8 locales (they are instead assumed to be UTF-8). * `nchar_ctl` preserves `dim`, `dimnames`, and `names` as the base functions do. * UTF-8 known to be invalid should not be output, even if present in input (UTF-8 validation is not complete, only sequences that are obviously wrong are detected). ### Bug Fixes * Fix `tabs_as_spaces` to handle sequential tabs, and to perform better on very wide strings. * Strings with invalid UTF-8 sequences with "unknown" declared encoding in UTF-8 locales now cause errors instead of being silently translated into byte escaped versions (e.g. "\xf0\xc2" (2 bytes), used to be interpreted as "<f0><c2>" (four characters). These now cause errors as they would have if they had had "UTF-8" declared encoding. * In some cases true colors of form "38;2;x;x;x" and "48;2;x;x;x" would only be partially transcribed. ### Internal Changes * More aggressive UTF-8 validation, also, invalid UTF-8 code points now advance only one byte instead of their putative width based on the initial byte. * Reduce peak memory usage by making some intermediate buffers eligible for garbage collection prior to native code returning to R. * Reworked internals to simplify buffer size computation and synchronization, in some cases this might cause slightly reduced performance. Please report any significant performance regressions. * `nchar_ctl(...)` is no longer a wrapper for `nchar(strip_ctl(...))` so that it may correctly support grapheme width calculations.

@AmmarAbouZor

What's Changed - Fixed: Release GitHub action by @AmmarAbouZor in #53 - Added: Tags (Categories) for journal + Filter Function by @AmmarAbouZor in #56 - Changed: Keep journals list in focus after closing the external editor by @AmmarAbouZor in #58 - Added: Select-Tags Popup in Create/Edit Journals Prompt by @AmmarAbouZor in #62 - Changed: Add Filter Keybindings To Footer by @AmmarAbouZor in #64 - Added: Search Functions in Filter by @AmmarAbouZor in #66 - Added: Create Cleanup Cache GitHub Action by @AmmarAbouZor in #73 - Added: Wiki Documentation by @AmmarAbouZor in #76 - Added: automatic version increment and CFF self-maintenance by @kevinmatthes in #79 - Allow Release Action To Start Manually by @AmmarAbouZor in #83

@gaborbernat

What's Changed Bump deps and tools by @gaborbernat in #56 Add pyproject-fmt by @gaborbernat in #57 Bump pypa/gh-action-pypi-publish from 1.6.5 to 1.7.1 by @dependabot in #60 docs: remove (dynamic) years from copyright by @paravoid in #58 Bump pypa/gh-action-pypi-publish from 1.7.1 to 1.8.1 by @dependabot in #61 Bump deps and tools by @gaborbernat in #62 Bump pypa/gh-action-pypi-publish from 1.8.1 to 1.8.3 by @dependabot in #63 Bump pypa/gh-action-pypi-publish from 1.8.3 to 1.8.5 by @dependabot in #66 Bump deps and tools by @gaborbernat in #67 Bump deps and tools by @gaborbernat in #70 Drop 2.7 test by @gaborbernat in #72 Add trusted-publish by @gaborbernat in #73 Add 3.12 support by @gaborbernat in #74 Bump pypa/gh-action-pypi-publish from 1.8.5 to 1.8.6 by @dependabot in #76 git ls-files -z -- .github/workflows/check.yml | xargs -0 sed -i 's|3.12.0-alpha.7|3.12.0-beta.1|g' by @gaborbernat in #80 Add ruff by @gaborbernat in #81

Features/Improvements ✨ - Append suffix to download filenames to avoid overwrites (#35) - Support uploading image attachments from clipboard (#36) - Support leaving rooms (#45) - Support hiding server part of username in message scrollback (#71) - Restore opened tabs and windows upon restart (#72) - Interpret newlines as line breaks when converting Markdown to HTML (#74) - Indicate when you're editing a message (#75) - Support configuring which program :open runs (#95) - Support sending and completing Emoji shortcodes in the message bar (#100) - Indicate number of members in room (#110) - Show errors fetching space hierarchy when list is empty (#113) - Show Git SHA information when printing version information (#120) - Reduce number of Tokio workers (#129) - Indicate when there are new messages below scrollback viewport (#131) Bug Fixes 🐞 - Tab completion panics for unrecognized commands (#81) - Fix error message for undefined download directory (#87) - Gracefully handle verification events that are unknown locally (#90) - Use terminal window focus to determine when a message has actually been seen (#94) - ChatStore::set_receipts locks up app for bad connections (#99) - Need fallback behaviour when dirs::download_dir returns None (#118) - Code blocks get rendered without line breaks (#122) - Remove trailing newlines in body (#125) - Profile session token should only be readable by the user (#130) - Handle sync failure after successful password entry (#133) Documentation/README Updates 📚 - Add manual pages (#88) - Mention Minimum Supported Rust Version in README (#115) - Link to AUR pkg in README (#121) Meta 👷‍♀️ - Update locked Cargo dependencies (#70) - Add Nix flake (#73) - Add FUNDING.yml to project (#77) - Upload artifacts built in GitHub Actions (#105) - Cache build directory in GitHub Actions (#107) - Replace GitHub actions using deprecated features (#114) - Fix Nix flake build on Darwin (#117)

@yahonda

2.1.0 (2023-06-30) What's Changed * Address warning: mismatched indentations at 'when' with 'case' by @yahonda in #74 * Make assert_dom_equal ignore insignificant whitespace when walking the node tree by @jduff in #84 * Expand Substitution Matching Types support by @seanpdoyle in #90 * Alias assert_select methods to assert_dom versions by @seanpdoyle in #93 * Raise an error if the last arg is the wrong format by @ghiculescu in #96 * Fix replacement for multiple substitutions by @speckins in #76 * Better error message if response.body is blank or not parseable by Nokogiri by @ghiculescu in #97 * selector_assertions/html_selector: No trailing . on content_mismatch by @issyl0 in #102 * Use Minitest::Assertion#diff for content failure messages by @flavorjones in #106 New Contributors * @nicolasleger made their first contribution in #73 * @yahonda made their first contribution in #74 * @dependabot made their first contribution in #79 * @jduff made their first contribution in #86 * @amatsuda made their first contribution in #88 * @seanpdoyle made their first contribution in #90 * @ghiculescu made their first contribution in #96 * @jbampton made their first contribution in #95 * @speckins made their first contribution in #76 * @issyl0 made their first contribution in #102 * @flavorjones made their first contribution in #103 2.1.1 (2023-06-30) What's Changed * Fix issue when application isn't using minitest.

@ioquatix

1.3.0 (2023-08-23) What's Changed * Rename data -> selector. by @ioquatix in #67 * Spurious wakeups by @ioquatix in #66 * Don't use EPOLLONESHOT for the wakeup event. by @Math2 in #68 * Failing test case for waiting on a reused FD. by @Math2 in #69 * Always re-register epoll descriptor. by @ioquatix in #71 * Fix potential race conditions in io_uring backend. by @ioquatix in #70 * NetBSD/OpenBSD compatibility for KQueue selector, some FreeBSD fixes by @Math2 in #72 * Introduce correct support for compacting GC. by @ioquatix in #73 * Fix external tests by @ioquatix in #75 * Add more external tests. by @ioquatix in #74 * Run coverage tests on more Ruby versions. by @ioquatix in #76 1.3.1 (2023-08-24) What's Changed * Fix a weird bug with duplicate CQEs. by @ioquatix in #78 1.3.2 (2023-08-24) What's Changed * Ensure that every io_uring_get_sqe is used correctly. by @ioquatix in #80 * Add tests for cancellation and update pure Ruby implementation. by @ioquatix in #79

@hsbt

devel/ruby-redmine51 require net-imap gem version 0.3.4 but ruby31 bundles 0.2.3. So, it add latest version of net-imap gem 0.3.x as ruby-net-imap. Ruby client api for Internet Message Access Protocol. Changes from 0.2.3: 0.3.0 (2022-11-17) What's Changed * Added dependabot.yml for actions by @hsbt in #59 * Bump actions/checkout from 2 to 3 by @dependabot in #60 * Adding RFC licenses by @nevans in #57 * Warn when using deprecated SASL mechanisms by @nevans in #62 New Contributors * @dependabot made their first contribution in #60 0.3.1 (2022-11-17) What's Changed * Add XOAUTH2 authenticator by @ssunday in #63 New Contributors * @ssunday made their first contribution in #63 0.3.2 (2022-12-09) What's Changed * Support UIDPLUS extension by @hoffi in #65 * Fixes "bundle exec rake" clash with test/unit by @nevans in #67 * Fix some UIDPLUS issues by @nevans in #69 * Fixes date-time format, and adds decode_datetime by @nevans in #66 * Add SASLprep. Code generated & tested with RFC3454 by @nevans in #64 * Add the UNSELECT command by @nevans in #72 * Fix mailbox attrs by @nevans in #73 * RFCs and references by @nevans in #71 * Nodocs and remove warning by @nevans in #70 * ResponseParser docs by @nevans in #76 * Response Data docs by @nevans in #75 New Contributors * @hoffi made their first contribution in #65 0.3.3 (2022-12-21) What's Changed * Revert "Fixes "bundle exec rake", clash with test/unit" by @znz in #88 New Contributors * @znz made their first contribution in #88 0.3.4 (2023-01-18) What's Changed * Net::IMAP Client docs by @nevans in #74 0.3.5 (2023-06-12) * Fix #response documentation error, by @nevans in 87ba74e * Add RFC3454 data, to support offline testing, by @nevans in #137 * Adds Ruby 3.2 to the CI matrix, by @petergoldstein in #99 * Use reusing workflow, by @hsbt in #151 * Decode UTF-7 more strictly, by @nobu in #152 * ️Continue testing 0.3.x branch against ruby 2.6, by @nevans in 115d190 * Fix decode utf-7 test for ruby 2.6, by @nevans in 7a60c8f * Fix XOAUTH2 authenticator for ruby 2.6, by @nevans in bd4faa0 0.3.6 (2023-06-12) * Fixes file permissions regression in v0.3.5 release, reported by @aaronjensen in #154 0.3.7 (2023-07-26) What's Changed * Backport: Fix for Digest MD5 bad challenges by @nobu in #160 PR for backport is #161

New Features: * Added cc and bcc options * Numerous TLS debugging and verification improvements o Debug output contains whether a client cert was requested and whether one was sent o Add new options tls-verify-ca and tls-verify-host to differentiate between types of certificate verification (tls- verify does both) o Add tls-target option to allow setting of hostname to be used in hostname verification. This is useful in some inet debugging situations and required to do hostname verification with socket or pipe o Add tls-chain (#60, initial implementation by Wolfgang Karall- Ahlborn) o Add tls-get-peer-chain option (analogous to tls-get-peer-cert, #73) o Certificate debug now includes all client and peer certs, it a chain was used (#73) o Certificate debug now includes notAfter, commonName, and subjectAltName Notable Changes: * output-file, output-file-stderr, and output-file-stdout now truncate the specified file if it already exists * Documentation improvements * Extensive test harness improvements * Add new stop-point XCLIENT-HELO to address lack of specificity when mixing XCLIENT usage with the HELO stop-point * Add new stop-point PROXY * Use IO::Socket::IP by default. Will still use IO::Socket::INET/INET6 to cover transition, but this is deprecated and will be removed in the future (#43) * TLS session debug information is now printed even if we decide not to continue the session (eg for failed verification) * Previously-deprecated functionality to allow some options to be either a filename or a literal string has been removed. Using the @ sigil is now the only was to specify file contents * Previously-deprecated -g option removed Notable Bugs Fixed: * TLS certificate verification did not always work. It should now

pkgsrc changes: - adapt to various upstream changes - update for newer version of pjproject - add unconditional depeendency on SDL - remove pktccops and mgcp option (has to do with supporting cable headends) - remove various 64-bit time_t fixes as upstream is finally doing these [asterisk-announce] asterisk release 18.21.0 The Asterisk Development Team would like to announce the release of asterisk-18.21.0. This release resolves issues reported by the community and would have not been possible without your participation. Thank You! Change Log for Release asterisk-18.21.0 ======================================== Summary: ---------------------------------------- - logger: Fix linking regression. - Revert "core & res_pjsip: Improve topology change handling." - menuselect: Use more specific error message. - res_pjsip_nat: Fix potential use of uninitialized transport details - app_if: Fix faulty EndIf branching. - manager.c: Fix regression due to using wrong free function. - config_options.c: Fix truncation of option descriptions. - manager.c: Improve clarity of "manager show connected". - make_xml_documentation: Really collect LOCAL_MOD_SUBDIRS documentation. - general: Fix broken links. - MergeApproved.yml: Remove unneeded concurrency - app_dial: Add option "j" to preserve initial stream topology of caller - ast_coredumper: Increase reliability - logger.c: Move LOG_GROUP documentation to dedicated XML file. - res_odbc.c: Allow concurrent access to request odbc connections - res_pjsip_header_funcs.c: Check URI parameter length before copying. - config.c: Log #exec include failures. - make_xml_documentation: Properly handle absolute LOCAL_MOD_SUBDIRS. - app_voicemail.c: Completely resequence mailbox folders. - sig_analog: Fix channel leak when mwimonitor is enabled. - res_rtp_asterisk.c: Update for OpenSSL 3+. - alembic: Update list of TLS methods available on ps_transports. - func_channel: Expose previously unsettable options. - app.c: Allow ampersands in playback lists to be escaped. - uri.c: Simplify ast_uri_make_host_with_port() - func_curl.c: Remove CURLOPT() plaintext documentation. - res_http_websocket.c: Set hostname on client for certificate validation. - live_ast: Add astcachedir to generated asterisk.conf. - SECURITY.md: Update with correct documentation URL - func_lock: Add missing see-also refs to documentation. - app_followme.c: Grab reference on nativeformats before using it - configs: Improve documentation for bandwidth in iax.conf. - logger: Add channel-based filtering. - chan_iax2.c: Don't send unsanitized data to the logger. - codec_ilbc: Disable system ilbc if version >= 3.0.0 - resource_channels.c: Explicit codec request when creating UnicastRTP. - doc: Update IP Quality of Service links. - chan_pjsip: Add PJSIPHangup dialplan app and manager action - chan_iax2.c: Ensure all IEs are displayed when dumping frame contents. - chan_dahdi: Warn if nonexistent cadence is requested. - stasis: Update the snapshot after setting the redirect - ari: Provide the caller ID RDNIS for the channels - main/utils: Implement ast_get_tid() for OpenBSD - res_rtp_asterisk.c: Fix runtime issue with LibreSSL - app_directory: Add ADSI support to Directory. - core_local: Fix local channel parsing with slashes. - Remove files that are no longer updated - app_voicemail: Add AMI event for mailbox PIN changes. - app_queue.c: Emit unpause reason with PauseQueueMember event. - bridge_simple: Suppress unchanged topology change requests - res_pjsip: Include cipher limit in config error message. - res_speech: allow speech to translate input channel - res_rtp_asterisk.c: Fix memory leak in ephemeral certificate creation. - res_pjsip_dtmf_info.c: Add 'INFO' to Allow header. - api.wiki.mustache: Fix indentation in generated markdown - pjsip_configuration.c: Disable DTLS renegotiation if WebRTC is enabled. - configs: Fix typo in pjsip.conf.sample. - res_pjsip_exten_state,res_pjsip_mwi: Allow unload on shutdown - res_pjsip: Expanding PJSIP endpoint ID and relevant resource length to 255 characters - .github: PRSubmitActions: Fix adding reviewers to PR - .github: New PR Submit workflows - .github: New PR Submit workflows - res_stasis: signal when new command is queued - ari/stasis: Indicate progress before playback on a bridge - func_curl.c: Ensure channel is locked when manipulating datastores. - .github: Fix job prereqs in PROpenedUpdated - .github: Block PR tests until approved - logger.h: Add ability to change the prefix on SCOPE_TRACE output - Add libjwt to third-party - res_pjsip: update qualify_timeout documentation with DNS note - chan_dahdi: Clarify scope of callgroup/pickupgroup. - func_json: Fix crashes for some types - res_speech_aeap: add aeap error handling - app_voicemail: Disable ADSI if unavailable. - codec_builtin: Use multiples of 20 for maximum_ms - lock.c: Separate DETECT_DEADLOCKS from DEBUG_THREADS - asterisk.c: Use the euid's home directory to read/write cli history - res_pjsip_transport_websocket: Prevent transport from being destroyed before message finishes. - cel: add publish user event helper - chan_console: Fix deadlock caused by unclean thread exit. - file.c: Add ability to search custom dir for sounds - chan_iax2: Improve authentication debugging. - res_rtp_asterisk: fix wrong counter management in ioqueue objects - make_buildopts_h, et. al. Allow adding all cflags to buildopts.h - func_periodic_hook: Add hangup step to avoid timeout - res_stasis_recording.c: Save recording state when unmuted. - res_speech_aeap: check for null format on response - func_periodic_hook: Don't truncate channel name - safe_asterisk: Change directory permissions to 755 - chan_rtp: Implement RTP glue for UnicastRTP channels - app_queue: periodic announcement configurable start time. - variables: Add additional variable dialplan functions. - Restore CHANGES and UPGRADE.txt to allow cherry-picks to work User Notes: ---------------------------------------- - ### app_dial: Add option "j" to preserve initial stream topology of caller The option "j" is now available for the Dial application which uses the initial stream topology of the caller to create the outgoing channels. - ### logger: Add channel-based filtering. The console log can now be filtered by channels or groups of channels, using the logger filter CLI commands. - ### chan_pjsip: Add PJSIPHangup dialplan app and manager action A new dialplan app PJSIPHangup and AMI action allows you to hang up an unanswered incoming PJSIP call with a specific SIP response code in the 400 -> 699 range. - ### app_voicemail: Add AMI event for mailbox PIN changes. The VoicemailPasswordChange event is now emitted whenever a mailbox password is updated, containing the mailbox information and the new password. Resolves: #398 - ### res_speech: allow speech to translate input channel res_speech now supports translation of an input channel to a format supported by the speech provider, provided a translation path is available between the source format and provider capabilites. - ### res_pjsip: Expanding PJSIP endpoint ID and relevant resource length to 255 characters With this update, the PJSIP realm lengths have been extended to support up to 255 characters. - ### res_stasis: signal when new command is queued Call setup times should be significantly improved when using ARI. - ### lock.c: Separate DETECT_DEADLOCKS from DEBUG_THREADS You no longer need to select DEBUG_THREADS to use DETECT_DEADLOCKS. This removes a significant amount of overhead if you just want to detect possible deadlocks vs needing full lock tracing. - ### file.c: Add ability to search custom dir for sounds A new option "sounds_search_custom_dir" has been added to asterisk.conf that allows asterisk to search AST_DATA_DIR/sounds/custom for sounds files before searching the standard AST_DATA_DIR/sounds/<lang> directory. - ### make_buildopts_h, et. al. Allow adding all cflags to buildopts.h The "Build Options" entry in the "core show settings" CLI command has been renamed to "ABI related Build Options" and a new entry named "All Build Options" has been added that shows both breaking and non-breaking options. - ### chan_rtp: Implement RTP glue for UnicastRTP channels The dial string option 'g' was added to the UnicastRTP channel which enables RTP glue and therefore native RTP bridges with those channels. - ### app_queue: periodic announcement configurable start time. Introduce a new queue configuration option called 'periodic-announce-startdelay' which will vary the normal (historic) behavior of starting the periodic announcement cycle at periodic-announce-frequency seconds after entering the queue to start the periodic announcement cycle at period-announce-startdelay seconds after joining the queue. The default behavior if this config option is not set remains unchanged. Signed-off-by: Jaco Kroon <jaco at uls.co.za> - ### variables: Add additional variable dialplan functions. Four new dialplan functions have been added. GLOBAL_DELETE and DELETE have been added which allows the deletion of global and channel variables. GLOBAL_EXISTS and VARIABLE_EXISTS have been added which checks whether a global or channel variable has been set. Upgrade Notes: ---------------------------------------- - ### app.c: Allow ampersands in playback lists to be escaped. Ampersands in URLs passed to the `Playback()`, `Background()`, `SpeechBackground()`, `Read()`, `Authenticate()`, or `Queue()` applications as filename arguments can now be escaped by single quoting the filename. Additionally, this is also possible when using the `CONFBRIDGE` dialplan function, or configuring various features in `confbridge.conf` and `queues.conf`. - ### pjsip_configuration.c: Disable DTLS renegotiation if WebRTC is enabled. The dtls_rekey will be disabled if webrtc support is requested on an endpoint. A warning will also be emitted. - ### res_pjsip: Expanding PJSIP endpoint ID and relevant resource length to 255 characters As part of this update, the maximum allowable length for PJSIP endpoints and relevant resources has been increased from 40 to 255 characters. To take advantage of this enhancement, it is recommended to run the necessary procedures (e.g., Alembic) to update your schemas. [asterisk-announce] asterisk release 18.20.2 The Asterisk Development Team would like to announce the release of asterisk-18.20.2. This release resolves issues reported by the community and would have not been possible without your participation. Thank You! Change Log for Release asterisk-18.20.2 ======================================== Summary: ---------------------------------------- - res_rtp_asterisk: Fix regression issues with DTLS client check [asterisk-announce] asterisk release 18.20.1 The Asterisk Development Team would like to announce security release Asterisk 18.20.1. The following security advisories were resolved in this release: - [Path traversal via AMI GetConfig allows access to outside files](https://github.com/asterisk/asterisk/s ecurity/advisories/GHSA-8857-hfmw-vg8f) - [Asterisk susceptible to Denial of Service via DTLS Hello packets during call initiation](https://github .com/asterisk/asterisk/security/advisories/GHSA-hxj9-xwr8-w8pq) - [PJSIP logging allows attacker to inject fake Asterisk log entries ](https://github.com/asterisk/asteris k/security/advisories/GHSA-5743-x3p5-3rg7) - [PJSIP_HEADER dialplan function can overwrite memory/cause crash when using 'update'](https://github.com /asterisk/asterisk/security/advisories/GHSA-98rc-4j27-74hh) Change Log for Release asterisk-18.20.1 ======================================== Summary: ---------------------------------------- - res_pjsip_header_funcs: Duplicate new header value, don't copy. - res_pjsip: disable raw bad packet logging - res_rtp_asterisk.c: Check DTLS packets against ICE candidate list - manager.c: Prevent path traversal with GetConfig. [asterisk-announce] asterisk release 18.20.0 The Asterisk Development Team would like to announce the release of asterisk-18.20.0. This release resolves issues reported by the community and would have not been possible without your participation. Thank You! Change Log for Release asterisk-18.20.0 ======================================== Summary: ---------------------------------------- - ari-stubs: Fix more local anchor references - ari-stubs: Fix more local anchor references - ari-stubs: Fix broken documentation anchors - res_pjsip_session: Send Session Interval too small response - .github: Update workflow-application-token-action to v2 - app_dial: Fix infinite loop when sending digits. - app_voicemail: Fix for loop declarations - alembic: Fix quoting of the 100rel column - pbx.c: Fix gcc 12 compiler warning. - app_audiosocket: Fixed timeout with -1 to avoid busy loop. - download_externals: Fix a few version related issues - main/refer.c: Fix double free in refer_data_destructor + potential leak - sig_analog: Add Called Subscriber Held capability. - app_macro: Fix locking around datastore access - Revert "app_stack: Print proper exit location for PBXless channels." - .github: Use generic releaser - install_prereq: Fix dependency install on aarch64. - res_pjsip.c: Set contact_user on incoming call local Contact header - extconfig: Allow explicit DB result set ordering to be disabled. - rest-api: Run make ari-stubs - res_pjsip_header_funcs: Make prefix argument optional. - pjproject_bundled: Increase PJSIP_MAX_MODULE to 38 - manager: Tolerate stasis messages with no channel snapshot. - core/ari/pjsip: Add refer mechanism - chan_dahdi: Allow autoreoriginating after hangup. - audiohook: Unlock channel in mute if no audiohooks present. - sig_analog: Allow three-way flash to time out to silence. - res_prometheus: Do not generate broken metrics - res_pjsip: Enable TLS v1.3 if present. - func_cut: Add example to documentation. - extensions.conf.sample: Remove reference to missing context. - func_export: Use correct function argument as variable name. - app_queue: Add support for applying caller priority change immediately. - .github: Fix cherry-pick reminder issues - chan_iax2.c: Avoid crash with IAX2 switch support. - res_geolocation: Ensure required 'location_info' is present. - Adds manager actions to allow move/remove/forward individual messages in a particular mailbox folder. The forward command can be used to copy a message within a mailbox or to another mailbox. Also adds a VoicemailBoxSummarry, required to retrieve message ID's. - app_voicemail: add CLI commands for message manipulation - res_rtp_asterisk: Move ast_rtp_rtcp_report_alloc using `rtp->themssrc_valid` into the scope of the rtp_i nstance lock. - .github: Minor tweak to Asterisk Releaser - .github: Suppress cherry-pick reminder for some situations - sig_analog: Allow immediate fake ring to be suppressed. User Notes: ---------------------------------------- - ### sig_analog: Add Called Subscriber Held capability. Called Subscriber Held is now supported for analog FXS channels, using the calledsubscriberheld option. This allows a station user to go on hook when receiving an incoming call and resume from another phone on the same line by going on hook, without disconnecting the call. - ### res_pjsip_header_funcs: Make prefix argument optional. The prefix argument to PJSIP_HEADERS is now optional. If not specified, all header names will be returned. - ### core/ari/pjsip: Add refer mechanism There is a new ARI endpoint `/endpoints/refer` for referring an endpoint to some URI or endpoint. - ### chan_dahdi: Allow autoreoriginating after hangup. The autoreoriginate setting now allows for kewlstart FXS channels to automatically reoriginate and provide dial tone to the user again after all calls on the line have cleared. This saves users from having to manually hang up and pick up the receiver again before making another call. - ### sig_analog: Allow three-way flash to time out to silence. The threewaysilenthold option now allows the three-way dial tone to time out to silence, rather than continuing forever. - ### res_pjsip: Enable TLS v1.3 if present. res_pjsip now allows TLS v1.3 to be enabled if supported by the underlying PJSIP library. The bundled version of PJSIP supports TLS v1.3. - ### app_queue: Add support for applying caller priority change immediately. The 'queue priority caller' CLI command and 'QueueChangePriorityCaller' AMI action now have an 'immediate' argument which allows the caller priority change to be reflected immediately, causing the position of a caller to move within the queue depending on the priorities of the other callers. - ### Adds manager actions to allow move/remove/forward individual messages in a particular mailbox folder. The forward command can be used to copy a message within a mailbox or to another mailbox. Also adds a Vo icemailBoxSummarry, required to retrieve message ID's. The following manager actions have been added VoicemailBoxSummary - Generate message list for a given mailbox VoicemailRemove - Remove a message from a mailbox folder VoicemailMove - Move a message from one folder to another within a mailbox VoicemailForward - Copy a message from one folder in one mailbox to another folder in another or the same mailbox. - ### app_voicemail: add CLI commands for message manipulation The following CLI commands have been added to app_voicemail voicemail show mailbox <mailbox> <context> Show contents of mailbox <mailbox>@<context> voicemail remove <mailbox> <context> <from_folder> <messageid> Remove message <messageid> from <from_folder> in mailbox <mailbox>@<context> voicemail move <mailbox> <context> <from_folder> <messageid> <to_folder> Move message <messageid> in mailbox <mailbox>&<context> from <from_folder> to <to_folder> voicemail forward <from_mailbox> <from_context> <from_folder> <messageid> <to_mailbox> <to_context> <to_ folder> Forward message <messageid> in mailbox <mailbox>@<context> <from_folder> to mailbox <mailbox>@<context> <to_folder> - ### sig_analog: Allow immediate fake ring to be suppressed. The immediatering option can now be set to no to suppress the fake audible ringback provided when immediate=yes on FXS channels. [asterisk-announce] Asterisk Release 18.19.0 The Asterisk Development Team would like to announce the release of Asterisk 18.19.0. This release resolves issues reported by the community and would have not been possible without your participation. Thank You! Change Log for Release 18.19.0 ======================================== Summary: ---------------------------------------- - app.h: Move declaration of ast_getdata_result before its first use - doc: Remove obsolete CHANGES-staging and UPGRADE-staging - .github: Updates for AsteriskReleaser - app_voicemail: fix imap compilation errors - res_musiconhold: avoid moh state access on unlocked chan - utils: add lock timestamps for DEBUG_THREADS - .github: Back out triggering PROpenedOrUpdated by label - .github: Move publish docs to new file CreateDocs.yml - rest-api: Updates for new documentation site - .github: Remove result check from PROpenUpdateGateTests - .github: Fix use of 'contains' - .github: Add recheck label test to additional jobs - .github: Fix recheck label typos - .github: Fix recheck label manipulation - .github: Allow PR submit checks to be re-run by label - app_voicemail_imap: Fix message count when IMAP server is unavailable - res_pjsip_rfc3326: Prefer Q.850 cause code over SIP. - res_pjsip_session: Added new function calls to avoid ABI issues. - app_queue: Add force_longest_waiting_caller option. - pjsip_transport_events.c: Use %zu printf specifier for size_t. - res_crypto.c: Gracefully handle potential key filename truncation. - configure: Remove obsolete and deprecated constructs. - res_fax_spandsp.c: Clean up a spaces/tabs issue - ast-db-manage: Synchronize revisions between comments and code. - test_statis_endpoints: Fix channel_messages test again - res_crypto.c: Avoid using the non-portable ALLPERMS macro. - tcptls: when disabling a server port, we should set the accept_fd to -1. - AMI: Add parking position parameter to Park action - test_stasis_endpoints.c: Make channel_messages more stable - build: Fix a few gcc 13 issues - .github: Rework for merge approval - ast-db-manage: Fix alembic branching error caused by #122. - app_followme: fix issue with enable_callee_prompt=no (#88) - sounds: Update download URL to use HTTPS. - configure: Makefile downloader enable follow redirects. - res_musiconhold: Add option to loop last file. - chan_dahdi: Fix Caller ID presentation for FXO ports. - AMI: Add CoreShowChannelMap action. - sig_analog: Add fuller Caller ID support. - res_stasis.c: Add new type 'sdp_label' for bridge creation. - app_queue: Preserve reason for realtime queues - .github: Fix issues with cherry-pick-reminder - indications: logging changes - .github Ignore error when adding reviewrs to PR - .github: Update field descriptions for AsteriskReleaser - callerid: Allow specifying timezone for date/time. - chan_pjsip: Allow topology/session refreshes in early media state - chan_dahdi: Fix broken hidecallerid setting. - .github: Change title of AsteriskReleaser job - asterisk.c: Fix option warning for remote console. - .github: Don't add cherry-pick reminder if it's already present - .github: Fix quoting in PROpenedOrUpdated - .github: Add cherry-pick reminder to new PRs - configure: fix test code to match gethostbyname_r prototype. - res_pjsip_pubsub.c: Use pjsip version for pending NOTIFY check. (#76) - res_sorcery_memory_cache.c: Fix memory leak - xml.c: Process XML Inclusions recursively. - .github: Tweak improvement issue type language. - .github: Tweak new feature language, and move feature requests elsewhere. - .github: Fix staleness check to only run on certain labels. User Notes: ---------------------------------------- - ### AMI: Add parking position parameter to Park action New ParkingSpace parameter has been added to AMI action Park. - ### res_musiconhold: Add option to loop last file. The loop_last option in musiconhold.conf now allows the last file in the directory to be looped once reached. - ### AMI: Add CoreShowChannelMap action. New AMI action CoreShowChannelMap has been added. - ### sig_analog: Add fuller Caller ID support. Additional Caller ID properties are now supported on incoming calls to FXS stations, namely the redirecting reason and call qualifier. - ### res_stasis.c: Add new type 'sdp_label' for bridge creation. When creating a bridge using the ARI the 'type' argument now accepts a new value 'sdp_label' which will configure the bridge to add labels for each stream in the SDP with the corresponding channel id. - ### app_queue: Preserve reason for realtime queues Make paused reason in realtime queues persist an Asterisk restart. This was fixed for non-realtime queues in ASTERISK_25732. Upgrade Notes: ---------------------------------------- - ### app_queue: Preserve reason for realtime queues Add a new column to the queue_member table: reason_paused VARCHAR(80) so the reason can be preserved. Closed Issues: ---------------------------------------- - #45: [bug]: Non-bundled PJSIP check for evsub pending NOTIFY check is insufficient/ineffective - #55: [bug]: res_sorcery_memory_cache: Memory leak when calling sorcery_memory_cache_open - #64: [bug]: app_voicemail_imap wrong behavior when losing IMAP connection - #65: [bug]: heap overflow by default at startup - #66: [improvement]: Fix preserve reason of pause when Asterisk is restared for realtime queues - #73: [new-feature]: pjsip: Allow topology/session refreshes in early media state - #87: [bug]: app_followme: Setting enable_callee_prompt=no breaks timeout - #89: [improvement]: indications: logging changes - #91: [improvement]: Add parameter on ARI bridge create to allow it to send SDP labels - #94: [new-feature]: sig_analog: Add full Caller ID support for incoming calls - #98: [new-feature]: callerid: Allow timezone to be specified at runtime - #100: [bug]: sig_analog: hidecallerid setting is broken - #102: [bug]: Strange warning - 'T' option is not compatible with remote console mode and has no effect . - #104: [improvement]: Add AMI action to get a list of connected channels - #108: [new-feature]: fair handling of calls in multi-queue scenarios - #110: [improvement]: utils - add lock timing information with DEBUG_THREADS - #116: [bug]: SIP Reason: "Call completed elsewhere" no longer propagating - #120: [bug]: chan_dahdi: Fix broken presentation for FXO caller ID - #122: [new-feature]: res_musiconhold: Add looplast option - #133: [bug]: unlock channel after moh state access - #136: [bug]: Makefile downloader does not follow redirects. - #145: [bug]: ABI issue with pjproject and pjsip_inv_session - #155: [bug]: GCC 13 is catching a few new trivial issues - #158: [bug]: test_stasis_endpoints.c: Unit test channel_messages is unstable - #174: [bug]: app_voicemail imap compile errors - #200: [bug]: Regression: In app.h an enum is used before its declaration. [asterisk-announce] Asterisk Release 18.18.1 The Asterisk Development Team would like to announce security release Asterisk 18.18.1. The following security advisories were resolved in this release: https://github.com/asterisk/asterisk/security/advisories/GHSA-4xjp-22g4-9fxm Change Log for Release 18.18.1 ======================================== Summary: ---------------------------------------- - apply_patches: Use globbing instead of file/sort. - apply_patches: Sort patch list before applying - pjsip: Upgrade bundled version to pjproject 2.13.1 User Notes: ---------------------------------------- - ### res_http_media_cache: Introduce options and customize The res_http_media_cache module now attempts to load configuration from the res_http_media_cache.conf file. The following options were added: * timeout_secs * user_agent * follow_location * max_redirects * protocols * redirect_protocols * dns_cache_timeout_secs - ### format_sln: add .slin as supported file extension format_sln now recognizes '.slin' as a valid file extension in addition to the existing '.sln' and '.raw'. - ### bridge_builtin_features: add beep via touch variable Add optional touch variable : TOUCH_MIXMONITOR_BEEP(interval) Setting TOUCH_MIXMONITOR_BEEP/TOUCH_MONITOR_BEEP to a valid interval in seconds will result in a periodic beep being played to the monitored channel upon MixMontior/Monitor feature start. If an interval less than 5 seconds is specified, the interval will default to 5 seconds. If the value is set to an invalid interval, the default of 15 seconds will be used. - ### app_senddtmf: Add SendFlash AMI action. The SendFlash AMI action now allows sending a hook flash event on a channel. - ### res_mixmonitor: MixMonitorMute by MixMonitor ID It is now possible to specify the MixMonitorID when calling the manager action: MixMonitorMute. This will allow an individual MixMonitor instance to be muted via ID. The MixMonitorID can be stored as a channel variable using the 'i' MixMonitor option and is returned upon creation if this option is used. As part of this change, if no MixMonitorID is specified in the manager action MixMonitorMute, Asterisk will set the mute flag on all MixMonitor audiohooks on the channel. Previous behavior would set the flag on the first MixMonitor audiohook found. - ### pbx_dundi: Add PJSIP support. DUNDi now supports chan_pjsip. Outgoing calls using PJSIP require the pjsip_outgoing_endpoint option to be set in dundi.conf. - ### test.c: Fix counting of tests and add 2 new tests The "tests" attribute of the "testsuite" element in the output XML now reflects only the tests actually requested to be executed instead of all the tests registered. The "failures" attribute was added to the "testsuite" element. Also added two new unit tests that just pass and fail to be used for testing CI itself. - ### cli: increase channel column width This change increases the display width on 'core show channels' amd 'core show channels verbose' For 'core show channels', the Channel name field is increased to 64 characters and the Location name field is increased to 32 characters. For 'core show channels verbose', the Channel name field is increased to 80 characters, the Context is increased to 24 characters and the Extension is increased to 24 characters. Upgrade Notes: ---------------------------------------- Closed Issues: ---------------------------------------- - #193: [bug]: third-party/apply-patches doesn't sort the patch file list before applying [asterisk-announce] Asterisk Release 18.18.0 The Asterisk Development Team would like to announce the release of Asterisk 18.18.0. This release resolves issues reported by the community and would have not been possible without your participation. Thank You! Change Log for Release 18.18.0 ======================================== Summary: ---------------------------------------- - Set up new ChangeLogs directory - .github: Add AsteriskReleaser - chan_pjsip: also return all codecs on empty re-INVITE for late offers - cel: add local optimization begin event - core: Cleanup gerrit and JIRA references. (#40) - .github: Fix CherryPickTest to only run when it should - .github: Fix reference to CHERRY_PICK_TESTING_IN_PROGRESS - .github: Remove separate set labels step from new PR - .github: Refactor CP progress and add new PR test progress - res_pjsip: mediasec: Add Security-Client headers after 401 - .github: Add cherry-pick test progress labels - LICENSE: Update link to trademark policy. - chan_dahdi: Add dialmode option for FXS lines. (#36) - .github: Update issue templates - .github: Remove unnecessary parameter in CherryPickTest - Initial GitHub PRs - Initial GitHub Issue Templates - pbx_dundi: Fix PJSIP endpoint configuration check. - Revert "app_queue: periodic announcement configurable start time." - pbx_dundi: Add PJSIP support. - res_pjsip_stir_shaken: Fix JSON field ordering and disallowed TN characters. - install_prereq: Add Linux Mint support. - chan_pjsip: fix music on hold continues after INVITE with replaces - voicemail.conf: Fix incorrect comment about #include. - app_queue: Fix minor xmldoc duplication and vagueness. - test.c: Fix counting of tests and add 2 new tests - loader.c: Minor module key check simplification. - ael: Regenerate lexers and parsers. - res_calendar: output busy state as part of show calendar. - bridge_builtin_features: add beep via touch variable - res_mixmonitor: MixMonitorMute by MixMonitor ID - format_sln: add .slin as supported file extension - app_queue: periodic announcement configurable start time. - func_json: Fix JSON parsing issues. - app_dial: Fix DTMF not relayed to caller on unanswered calls. - make_version: Strip svn stuff and suppress ref HEAD errors - configure: fix detection of re-entrant resolver functions - cli: increase channel column width - res_agi: RECORD FILE plays 2 beeps. - app_senddtmf: Add SendFlash AMI action. - contrib: rc.archlinux.asterisk uses invalid redirect. - main/iostream.c: fix build with libressl - res_http_media_cache: Introduce options and customize User Notes: ---------------------------------------- - ### cel: add local optimization begin event The new AST_CEL_LOCAL_OPTIMIZE_BEGIN can be used by itself or in conert with the existing AST_CEL_LOCAL_OPTIMIZE to book-end local channel optimizaion. - ### chan_dahdi: Add dialmode option for FXS lines. (#36) A "dialmode" option has been added which allows specifying, on a per-channel basis, what methods of subscriber dialing (pulse and/or tone) are permitted. Additionally, this can be changed on a channel at any point during a call using the CHANNEL function. - ### pbx_dundi: Add PJSIP support. DUNDi now supports chan_pjsip. Outgoing calls using PJSIP require the pjsip_outgoing_endpoint option to be set in dundi.conf. - ### cli: increase channel column width This change increases the display width on 'core show channels' amd 'core show channels verbose' For 'core show channels', the Channel name field is increased to 64 characters and the Location name field is increased to 32 characters. For 'core show channels verbose', the Channel name field is increased to 80 characters, the Context is increased to 24 characters and the Extension is increased to 24 characters. - ### app_senddtmf: Add SendFlash AMI action. The SendFlash AMI action now allows sending a hook flash event on a channel. - ### res_http_media_cache: Introduce options and customize The res_http_media_cache module now attempts to load configuration from the res_http_media_cache.conf file. The following options were added: * timeout_secs * user_agent * follow_location * max_redirects * protocols * redirect_protocols * dns_cache_timeout_secs - ### test.c: Fix counting of tests and add 2 new tests The "tests" attribute of the "testsuite" element in the output XML now reflects only the tests actually requested to be executed instead of all the tests registered. The "failures" attribute was added to the "testsuite" element. Also added two new unit tests that just pass and fail to be used for testing CI itself. - ### res_mixmonitor: MixMonitorMute by MixMonitor ID It is now possible to specify the MixMonitorID when calling the manager action: MixMonitorMute. This will allow an individual MixMonitor instance to be muted via ID. The MixMonitorID can be stored as a channel variable using the 'i' MixMonitor option and is returned upon creation if this option is used. As part of this change, if no MixMonitorID is specified in the manager action MixMonitorMute, Asterisk will set the mute flag on all MixMonitor audiohooks on the channel. Previous behavior would set the flag on the first MixMonitor audiohook found. - ### bridge_builtin_features: add beep via touch variable Add optional touch variable : TOUCH_MIXMONITOR_BEEP(interval) Setting TOUCH_MIXMONITOR_BEEP/TOUCH_MONITOR_BEEP to a valid interval in seconds will result in a periodic beep being played to the monitored channel upon MixMontior/Monitor feature start. If an interval less than 5 seconds is specified, the interval will default to 5 seconds. If the value is set to an invalid interval, the default of 15 seconds will be used. - ### format_sln: add .slin as supported file extension format_sln now recognizes '.slin' as a valid file extension in addition to the existing '.sln' and '.raw'. Upgrade Notes: ---------------------------------------- - ### cel: add local optimization begin event The existing AST_CEL_LOCAL_OPTIMIZE can continue to be used as-is and the AST_CEL_LOCAL_OPTIMIZE_BEGIN event can be ignored if desired. Closed Issues: ---------------------------------------- - #35: [New Feature]: chan_dahdi: Allow disabling pulse or tone dialing - #39: [Bug]: Remove .gitreview from repository. - #43: [Bug]: Link to trademark policy is no longer correct - #48: [bug]: res_pjsip: Mediasec requires different headers on 401 response - #52: [improvement]: Add local optimization begin cel event ### For more details, see: https://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-18.18.0.md [asterisk-announce] Asterisk 18.17.1 Now Available The Asterisk Development Team would like to announce the release of Asterisk 18.17.1. The release of Asterisk 18.17.1 resolves several issues reported by the community and would have not been possible without your participation. Thank you! The following issues are resolved in this release: Bugs fixed in this release: ----------------------------------- * ASTERISK-30469 - res_pjsip_pubsub: Regression for subscription shutdowns (Reported by N A) * ASTERISK-30472 - pbx_ael: Literal usage for variables broken (Reported by isrl) For a full list of changes in this release, please see the ChangeLog: https://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-18.17.1 Thank you for your continued support of Asterisk! [asterisk-announce] Asterisk 18.17.0 Now Available The Asterisk Development Team would like to announce the release of Asterisk 18.17.0. The release of Asterisk 18.17.0 resolves several issues reported by the community and would have not been possible without your participation. Thank you! The following issues are resolved in this release: New Features made in this release: ----------------------------------- * ASTERISK-29810 - app_signal: Add channel signaling applications (Reported by N A) * ASTERISK-30262 - res_pjsip_session: Allow a context to be specified for overlap dialing (Reported by N A) * ASTERISK-30319 - Add BYE Reason support for SIP (Reported by Igor Goncharovsky) * ASTERISK-30180 - app_broadcast: Add a channel audio multicasting application (Reported by N A) Bugs fixed in this release: ----------------------------------- * ASTERISK-27830 - Asterisk crashes on Invalid UTF-8 string (Reported by AvayaXAsterisk) * ASTERISK-30354 - chan_iax2: Lack of formats prior to receiving voice frames causes jitterbuffer to stall (Reported by N A) * ASTERISK-30162 - when chan_iax is used to relay calls, no ringing indication is played (Reported by Jaco Kroon) * ASTERISK-30424 - pjproject_bundled: cross-compilation broken when ssl autodetected (Reported by Nick French) * ASTERISK-30388 - res_phoneprov: Stale SERVER variable when multi-homed (Reported by cmaj) * ASTERISK-30419 - pjsip: Crash when sending NOTIFY in PJSIP 2.13 (Reported by Ross Beer) * ASTERISK-30417 - Copy/Paste error in UnpauseQueueMember (Reported by Sean Bright) * ASTERISK-30406 - pbx_ael: Global variables are not expanded. (Reported by Sean Bright) * ASTERISK-29604 - ari: Segfault with lots of calls (Reported by Danila Evgrafov) * ASTERISK-30391 - res_rtp_asterisk: Issue with transcoding g722 after MES changes (Reported by George Joseph) * ASTERISK-30345 - loader.c: Modules that decline to load cannot be reloaded (Reported by N A) * ASTERISK-30379 - http: fix NULL pointer dereference while enable_status on TLS-only (Reported by Boris P. Korzun) * ASTERISK-30375 - res_http_media_cache: Crash when URL has no path component. (Reported by Sean Bright) * ASTERISK-30351 - manager: Originate variables are not added when setvar used in manager.conf (Reported by Sebastian Gutierrez) * ASTERISK-30369 - res_pjsip: Websockets from same IP shut down when they shouldn't be (Reported by Joshua C. Colp) * ASTERISK-30367 - pbx: Fix outdated channel snapshots with pbx_exec (Reported by N A) * ASTERISK-28767 - chan_pjsip: Caller ID not used when checking for extension, callerid supplement executed too late (Reported by Oleg) * ASTERISK-30350 - res_pjsip_sdp_rtp: rtp_timeout_hold is not used when moh_passthrough has call on hold (Reported by Benjamin Keith Ford) * ASTERISK-30240 - app voicemail odbc build error with gcc 11.1 (Reported by Michael Bradeen) * ASTERISK-30100 - res_pjsip: Path is ignored on INVITE to endpoint (Reported by Yury Kirsanov) * ASTERISK-30198 - Error `Too many open files` occurs after about ~8000 calls when using mixmonitor (Reported by Julien Alie) Improvements made in this release: ----------------------------------- * ASTERISK-30411 - app_read: add option to include terminating digit on empty, terminated strings (Reported by Michael Bradeen) * ASTERISK-30405 - app_directory: Add 's' option to skip channel call (Reported by Michael Bradeen) * ASTERISK-30422 - app_senddtmf: add the option for senddtmf to answer (Reported by Michael Bradeen) * ASTERISK-30325 - Upgrade Asterisk to bundled pjproject 2.13 (Reported by Stanislav Abramenkov) * ASTERISK-30404 - app_directory: Add reading directory configuration from custom file (Reported by Michael Bradeen) * ASTERISK-29913 - func_json: Adds multi-level and array parsing to JSON_DECODE (Reported by N A) * ASTERISK-30353 - func_frame_trace: Print text for text frames (Reported by N A) * ASTERISK-30361 - json.h: Add missing ast_json_object_real_get (Reported by N A) * ASTERISK-30280 - Create capability to assign a Media Experience Score to RTP streams (Reported by George Joseph) * ASTERISK-30332 - func_callerid: Warn if invalid redirecting reason provided (Reported by N A) For a full list of changes in this release, please see the ChangeLog: https://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-18.17.0 Thank you for your continued support of Asterisk! [asterisk-announce] Asterisk 16.29.1, 18.15.1, 19.7.1, 20.0.1 Now Available The Asterisk Development Team would like to announce the release of Asterisk 16.29.1, 18.15.1, 19.7.1, and 20.0.1. The release of Asterisk 16.29.1, 18.15.1, 19.7.1, and 20.0.1 resolves issues reported by the community and would have not been possible without your participation.Thank you! The following issue is resolved in this release: Bugs fixed in this release: ----------------------- [ASTERISK-30103 <https://issues.asterisk.org/jira/browse/ASTERISK-30103>] chan_ooh323 vulnerability in calling/called party IE (Reported By: Michael Bradeen) [ASTERISK-30176 <https://issues.asterisk.org/jira/browse/ASTERISK-30176>] GetConfig can read files outside of Asterisk (Reported By: shawty) [ASTERISK-30244 <https://issues.asterisk.org/jira/browse/ASTERISK-30244>] Occasional crash when TCP/TLS connection terminated and subscription persistence is removed (Reported By: nappsoft) [ASTERISK-30338 <https://issues.asterisk.org/jira/browse/ASTERISK-30338>] Backport 2.13 security fixes from pjproject [asterisk-announce] Asterisk 18.15.0 Now Available The Asterisk Development Team would like to announce the release of Asterisk 18.15.0. The release of Asterisk 18.15.0 resolves several issues reported by the community and would have not been possible without your participation. Thank you! The following issues are resolved in this release: New Features made in this release: ----------------------------------- * ASTERISK-30037 - Add test support to calling external processes (Reported by Philip Prindeville) * ASTERISK-30161 - locks: add AMI event for deadlock (Reported by N A) * ASTERISK-30211 - app_confbridge: Add end_marked_any option (Reported by N A) * ASTERISK-30186 - res_pjsip: Add support for reloading TLS certificate and key information (Reported by Joshua C. Colp) * ASTERISK-29899 - features: Add advanced transfer initiation options (Reported by N A) Bugs fixed in this release: ----------------------------------- * ASTERISK-30235 - res_crypto and tests: Memory issues and and uninitialized variable error (Reported by George Joseph) * ASTERISK-30234 - res_geolocation: ...may be used uninitialized error in geoloc_config.c (Reported by George Joseph) * ASTERISK-30215 - Inbound SIP INVITE with Geo Location causing a Segmentation Fault (Reported by Dan Cropp) * ASTERISK-30135 - [res_musiconhold] Allows the moh only for the answered call (Reported by sungtae kim) * ASTERISK-26894 - pjsip should support tel uri scheme (Reported by Gergely D½½ms½½di) * ASTERISK-30210 - func_frame_trace: Channel masquerade triggers assertion (Reported by N A) * ASTERISK-30190 - res_geolocation: GEOLOC_PROFILE isn't returning correct values on incoming channel (Reported by George Joseph) * ASTERISK-29185 - chan_pjsip: Endpoint: allow = all is broken. (Reported by Alexander Traud) * ASTERISK-30192 - res_tonedetect: fix typo for frametype (Reported by N A) * ASTERISK-29453 - alembic: incoming_call_offer_pref and outgoing_call_offer_pref missing in "ps_endpoints" table (Reported by Daniel Th½½men) * ASTERISK-26826 - testsuite: Add support for Python 3 (Reported by Joshua C. Colp) * ASTERISK-30167 - res_geolocation: Refactor for issues found by users (Reported by George Joseph) * ASTERISK-28422 - Memory Leak in Confbridge menu (Reported by Ted G) * ASTERISK-29917 - ami: FilterList action doesn't exist (Reported by N A) * ASTERISK-30018 - app_meetme: MeetmeList AMI event not documented (Reported by Michael Cargile) * ASTERISK-30020 - ConfbridgeListRooms Event Not Documented (Reported by Michael Cargile) * ASTERISK-30151 - Documentation doesn't include info about "field", a 3rd required parameter. (Reported by Chris Young) Improvements made in this release: ----------------------------------- * ASTERISK-30241 - res_pjsip_gelocation: Downgrade some NOTICE scope trace debugs to DEBUG level (Reported by N A) * ASTERISK-30178 - extend user_eq_phone behavior to local uri's (Reported by Michael Bradeen) * ASTERISK-30046 - Reimplement res/res_crypto.c internals with EVP_PKEY interface to Openssl API's (Reported by Philip Prindeville) * ASTERISK-30045 - Add test coverage to res/res_crypto.c functionality (Reported by Philip Prindeville) * ASTERISK-30185 - res_geolocation: Allow location parameters to be specified in profiles (Reported by George Joseph) * ASTERISK-30177 - res_geolocation: Add option to suppress empty elements (Reported by George Joseph) * ASTERISK-30182 - res_geolocation: Add built-in profiles to use in fully dynamic configurations (Reported by George Joseph) * ASTERISK-29906 - [patch] update RLS to reflect the changes to the lists (Reported by Alexei Gradinari) * ASTERISK-30163 - general: fix minor formatting issues (Reported by N A) * ASTERISK-30164 - chan_iax2: Add missing option documentation (Reported by N A) * ASTERISK-30153 - logger: Improve log levels (Reported by N A) * ASTERISK-30160 - cdr.conf: Remove obsolete app_mysql reference (Reported by N A) * ASTERISK-30159 - general: Remove obsolete SVN references (Reported by N A) [asterisk-announce] Asterisk 18.14.0 Now Available The Asterisk Development Team would like to announce the release of Asterisk 18.14.0. The release of Asterisk 18.14.0 resolves several issues reported by the community and would have not been possible without your participation. Thank you! The following issues are resolved in this release: Improvements made in this release: ----------------------------------- * ASTERISK-30128 - Create PJSIP interface module for Geolocation (Reported by George Joseph) * ASTERISK-30127 - Create core Geolocation capability for Asterisk (Reported by George Joseph) * ASTERISK-30089 - general: fix typos (Reported by N A) * ASTERISK-30050 - Upgrade Asterisk to bundled pjproject 2.12.1 (Reported by Stanislav Abramenkov) Bugs fixed in this release: ----------------------------------- * ASTERISK-30167 - res_geolocation: Refactor for issues found by users (Reported by George Joseph) * ASTERISK-29966 - pbx_variables: ast_str_strlen can be wrong (Reported by N A) * ASTERISK-29905 - OSX: bininstall launchd issue on cross-platfrom build (Reported by Sergey V. Lobanov) * ASTERISK-30137 - manager: Global disabled event filtered is incomplete (Reported by N A) * ASTERISK-30109 - res_pjsip: no contact-status AMI event on register of prune-on-boot contact that uses the same URI as before Asterisk restart (Reported by Michael Neuhauser) * ASTERISK-29991 - chan_dahdi, callerid: Caller ID does not honor presentation (Reported by N A) * ASTERISK-30126 - Spelling mistake in configs/samples/queues.conf.sample (Reported by Sam Banks) * ASTERISK-30029 - build: Git security vulnerability fix is sad with our accessing git as root during "make install" (Reported by Joshua C. Colp) * ASTERISK-29907 - res_pjsip, app_confbridge: Video call through ConfBridge with normal endpoints causes infinite loop/crash (Reported by N A) * ASTERISK-30138 - Compile failure in res_geolocation/geoloc_eprofile.c when optimization is enabled (Reported by George Joseph) * ASTERISK-30096 - cel_odbc: Column type 9 (field 'cdr:cel:eventtime') is unsupported at this time (Reported by Morvai Szabolcs) * ASTERISK-30083 - chan_iax2: Optional dependency on openssl/res_crypto is now mandatory (Reported by Dmitry Melekhov) * ASTERISK-30099 - test_aeap_transport: transport_connect_fail sporadically causes failure (Reported by Kevin Harwell) * ASTERISK-30123 - features: Update automixmon documentation to reflect reality (Reported by Trevor Peirce) * ASTERISK-30117 - pbx_lua: Remove compiler warnings (Reported by Boris P. Korzun) * ASTERISK-30101 - res_prometheus: Optional load res_pjsip_outbound_registration.so (Reported by Boris P. Korzun) * ASTERISK-29989 - app_dial, chan_dahdi: DIALSTATUS is inconsistent for busy (Reported by N A) * ASTERISK-30001 - db: Removing nonexistent entries shows "Database entry removed" (Reported by N A) * ASTERISK-30115 - app_dial: Allow hook flashes to propogate on outbound dials (Reported by N A) * ASTERISK-30106 - res_calendar_icalendar: Microsoft online ICS calendars no longer work (Reported by N A) * ASTERISK-29822 - cli: Typing \? freezes the CLI permanently with remote console (Reported by N A) * ASTERISK-30072 - res_pjsip: allow TLS verification of wildcard cert-bearing servers (Reported by Kevin Harwell) * ASTERISK-30075 - say: Abort if channel hangs up during playback (Reported by N A) New Features made in this release: ----------------------------------- * ASTERISK-30136 - db: Add AMI action to retrieve all keys beginning with a prefix (Reported by N A) * ASTERISK-30000 - chan_dahdi: Add POLARITY function (Reported by N A) * ASTERISK-30062 - cli: Add CLI command to execute a dialplan app (Reported by N A) * ASTERISK-29999 - pjsip: Get information from 200 OK INVITE reply headers (Reported by Jos½½ Lopes) * ASTERISK-30061 - pbx: Add pbx helper application (Reported by N A) [asterisk-announce] Asterisk 18.13.0 Now Available The Asterisk Development Team would like to announce the release of Asterisk 18.13.0. The release of Asterisk 18.13.0 resolves several issues reported by the community and would have not been possible without your participation. Thank you! The following issues are resolved in this release: Improvements made in this release: ----------------------------------- * ASTERISK-29906 - [patch] update RLS to reflect the changes to the lists (Reported by Alexei Gradinari) * ASTERISK-29891 - [patch] provide a display name for RLS subscriptions (Reported by Alexei Gradinari) * ASTERISK-30090 - xmldocs: Use example tags for examples (Reported by N A) * ASTERISK-30086 - res_parking: Warn when invalid parking space requested (Reported by N A) * ASTERISK-30058 - Evaluate dialplan functions and variables in agi exec (Reported by Shloime Rosenblum) * ASTERISK-30027 - ari: expose channel driver's unique id (i.e. Call-ID for chan_sip/chan_pjsip) in ARI channel resource (Reported by Moritz Fain) * ASTERISK-29845 - res_pjsip_outbound_registration: Show time remaining until registration lapses (Reported by N A) Bugs fixed in this release: ----------------------------------- * ASTERISK-30097 - console: Recent documentation changes for connecting to remote console are inconsistent (Reported by Matthias Hensler) * ASTERISK-30043 - Wrong party is disconnected when hook-flashing on 3-way bridge (Reported by Josh Alberts) * ASTERISK-29603 - res_pjsip: UPDATE/re-INVITE not sent when "timers=always" is specified in pjsip.conf (Reported by Ray Crumrine) * ASTERISK-30092 - DateTime application: wrong inflection for one o'clock in German (Reported by Christof Efkemann) * ASTERISK-30064 - pbx: iax2 switch causes crash due to deadlock and assertion (Reported by N A) * ASTERISK-29981 - res_calendar: Asterisk crashes when starting, and will not run (Reported by N A) * ASTERISK-30039 - cli: Targeted debug on startup deadlocks and creates unstable system (Reported by N A) * ASTERISK-30051 - res_pjsip: No video after un-hold with moh_passthrough=yes (Reported by Maximilian Fridrich) * ASTERISK-24601 - [patch]Missing RFC4235 tags and attributes in PJSIP NOTIFY event: dialog XML body (Reported by Marco Paland) * ASTERISK-30059 - menuselect: libxml include fails under Gentoo (Reported by waltermoeller) * ASTERISK-30060 - loader: format warnings in dev mode (Reported by N A) * ASTERISK-30065 - pjsip: Open Websocket connection is not reused for outgoing requests (Reported by LA) * ASTERISK-30042 - res_pjsip_transport_websocket: Registration over websocket returns a rewritten contact (Reported by Thomas Guebels) * ASTERISK-29993 - chan_dahdi: Operator control option borks both lines involved on callee disconnect (Reported by N A) * ASTERISK-30044 - GCC 12 issues (Reported by George Joseph) New Features made in this release: ----------------------------------- * ASTERISK-30063 - app_voicemail: Add option to prevent deletion of messages (Reported by N A) * ASTERISK-29965 - res_pjsip_outbound_registration: Make max registration delay configurable (Reported by N A) * ASTERISK-30087 - res_parking: Add music on hold override option (Reported by N A) * ASTERISK-30036 - app_confbridge: Add CONFBRIDGE_CHANNELS function (Reported by N A) Thank you for your continued support of Asterisk! [asterisk-announce] Asterisk 18.12.1 Now Available The Asterisk Development Team would like to announce the release of Asterisk 18.12.1. The release of Asterisk 18.12.1 resolves an issue reported by the community and would have not been possible without your participation. Thank you! The following issue is resolved in this release: Bugs fixed in this release: ----------------------------------- * ASTERISK-30065 - pjsip: Open Websocket connection is not reused for outgoing requests (Reported by LA) [asterisk-announce] Asterisk 18.12.0 Now Available The Asterisk Development Team would like to announce the release of Asterisk 18.12.0. The release of Asterisk 18.12.0 resolves several issues reported by the community and would have not been possible without your participation. Thank you! The following issues are resolved in this release: Security bugs fixed in this release: ----------------------------------- * ASTERISK-29476 - res_stir_shaken: Blind SSRF vulnerabilities (Reported by Clint Ruoho) * ASTERISK-29838 - ${SQL_ESC()} not correctly escaping a terminating \ (Reported by Leandro Dardini) * ASTERISK-29872 - res_stir_shaken: Resource exhaustion with large files (Reported by Benjamin Keith Ford) New Features made in this release: ----------------------------------- * ASTERISK-29931 - Option to allow a user to not hear the join sound on enter but everyone else can (Reported by Michael Cargile) * ASTERISK-29968 - func_db: Add a function to return cardinality of keys at prefix (Reported by N A) * ASTERISK-29486 - Hint-like extension value lookup function without device state (Reported by N A) * ASTERISK-29941 - chan_pjsip: Add ability to send flash events (Reported by N A) * ASTERISK-29820 - cli: Add command to evaluate a function (Reported by N A) * ASTERISK-29876 - app_queue: Add music on hold option (Reported by N A) Bugs fixed in this release: ----------------------------------- * ASTERISK-29655 - res_pjsip_session: No video to caller if no camera available (Reported by Michael Auracher) * ASTERISK-29638 - res_pjsip_session: No video after early media (Reported by Michael Auracher) * ASTERISK-28518 - chan_dahdi: Caller ID FSK Erroneously Sent when Picking Up Dahdi Call On Hold (Reported by Josh Alberts) * ASTERISK-29990 - chan_dahdi: adding ring cadences is not idempotent on dahdi restart (Reported by N A) * ASTERISK-30007 - chan_iax2: Prevent crashes due to attempted encryption with missing secrets (Reported by N A) * ASTERISK-29728 - menuselect: Disabled by default modules that are enabled are always recompiled (Reported by N A) * ASTERISK-30002 - app_meetme: Don't erroneously set global variables when channel is NULL (Reported by N A) * ASTERISK-29994 - chan_dahdi: Round robin array size is too small for max number of groups (Reported by N A) * ASTERISK-22246 - Asterisk's "T" flag is ignored when used with "r" or "R" flags. (documentation bug) (Reported by Rusty Newton) * ASTERISK-26582 - Asterisk seems to ignore the "n" parameter for "disable console colorization" (Reported by Sebastian Gutierrez) * ASTERISK-29843 - Session timers get removed on UPDATE (Reported by Mark Petersen) * ASTERISK-29943 - file.c: seeking to negative file offset is not prevented (Reported by N A) * ASTERISK-29955 - chan_sip: SIP route header is missing on UPDATE (Reported by Mark Petersen) * ASTERISK-29842 - Do not change 180 Ringing to 183 Progress even if early_media already enabled (Reported by Mark Petersen) * ASTERISK-29948 - iostream: Infinite TCP timeout writing data (Reported by N A) * ASTERISK-29253 - Incorrect bridging on transfer (Reported by Yury Kirsanov) * ASTERISK-30006 - res_pjsip: UDP transport does not work when async_operations is greater than 1 (Reported by Ross Beer) * ASTERISK-30024 - Failed to sign STIR/SHAKEN payload with functionality not enabled (Reported by Claude Diderich) * ASTERISK-30021 - ast_variable_list_replace_variable uses variable with new keyword (Reported by Jasper Hafkenscheid) * ASTERISK-30023 - cdr_adaptive_odbc: does not support DATETIME database columns (Reported by Gregory Massel) * ASTERISK-30015 - pjsip / WebRTC: Chrome creating large number of SDP attributes (Reported by Josh Hogan) * ASTERISK-26689 - res_pjsip_sdp_rtp: 183 Session in Progress. Disconnecting channel for lack of RTP activity (Reported by Dmitriy Serov) * ASTERISK-29929 - res_pjsip_sdp_rtp: Disconnecting channel for lack of RTP activity in one way sessions (Reported by Boris P. Korzun) * ASTERISK-29411 - Crash in pjsip_msg_find_hdr_by_name (Reported by LA) * ASTERISK-29535 - Segmentation fault in libasteriskpj.so.2 (Reported by Daniel Bonazzi) * ASTERISK-26719 - pbx: Only up to 127 includes in a dialplan context (AST_PBX_MAX_STACK - 1) (Reported by Tzafrir Cohen) * ASTERISK-29986 - build: Asterisk 18.11.0 doesn't compile when wget isn't available (Reported by Stefan Ruijsenaars) * ASTERISK-29988 - REGRESSION: The build process is requiring xmllint or xmlstarlet ro be installed when it shouldn't (Reported by George Joseph) * ASTERISK-29895 - chan_iax2: Fix misaligned spacing in iax2 show netstats printout (Reported by N A) * ASTERISK-29939 - agi: Fix xmldoc bug with set music (Reported by N A) * ASTERISK-28891 - documentation: AGICommand_set+music documentation arguments displayed incorreclty (Reported by Jonathan Harris) * ASTERISK-29048 - chan_iax2: "iax2 show registry" shows host for perceived (Reported by David Herselman) * ASTERISK-29674 - Adjust for 64bit time_t (Reported by Andre Heider) * ASTERISK-29961 - RLS: domain part of 'uri' list attribute mismatch with SUBSCRIBE request (Reported by Alexei Gradinari) * ASTERISK-29928 - logging messages truncated when using MUSL runtime (Reported by Philip Prindeville) * ASTERISK-29960 - ari: Retrieving stored recording can returns wrong file (Reported by Arix) * ASTERISK-29950 - SayNumber can handle '01' to '07', but not '08' or '09' (Reported by Jim Van Meggelen) Improvements made in this release: ----------------------------------- * ASTERISK-24827 - Missing documentation for chan_dahdi dial string ring cadences (Reported by Scott Griepentrog) * ASTERISK-29940 - general: Add since tags to xmldocs (Reported by N A) * ASTERISK-29726 - Add Asterisk External Application Protocol (AEAP) implementation (Reported by Kevin Harwell) * ASTERISK-29951 - app_mf, app_sf: Return -1 on hangup (Reported by N A) * ASTERISK-29954 - app_meetme: Emit warning if conference not found (Reported by N A) * ASTERISK-29351 - Qualify pjproject 2.12 for Asterisk (Reported by George Joseph) * ASTERISK-29976 - Should Readme include information about install_prereq script? (Reported by Marcel Wagner) * ASTERISK-29970 - Use pkg-config to find libxml2 headers and libraries (Reported by Hugh McMaster) * ASTERISK-29980 - build: External binary modules don't use https (Reported by INVADE International Ltd.) * ASTERISK-25716 - Documentation: Document explanations and examples for possible values of DIALSTATUS (Reported by Rusty Newton) * ASTERISK-29967 - pbx_builtins: Add missing documentation (Reported by N A) [asterisk-announce] Asterisk 18.11.3 Now Available Asterisk Development Team asteriskteam at digium.com Tue Apr 26 12:09:50 CDT 2022 The Asterisk Development Team would like to announce the release of Asterisk 18.11.3. The release of Asterisk 18.11.3 resolves an issue reported by the community and would have not been possible without your participation. Thank you! The following issue is resolved in this release: Bugs fixed in this release: ----------------------------------- * ASTERISK-30024 - Failed to sign STIR/SHAKEN payload with functionality not enabled (Reported by Claude Diderich) [asterisk-announce] Asterisk 16.25.2, 18.11.2, 19.3.2 and 16.8-cert14 Now Available (Security) The Asterisk Development Team would like to announce security releases for Asterisk 16, 18 and 19, and Certified Asterisk 16.8. The available releases are released as versions 16.25.2, 18.11.2, 19.3.2 and 16.8-cert14. The following security vulnerabilities were resolved in these versions: * AST-2022-001: res_stir_shaken: resource exhaustion with large files When using STIR/SHAKEN, it½½½s possible to download files that are not certificates. These files could be much larger than what you would expect to download. * AST-2022-002: res_stir_shaken: SSRF vulnerability with Identity header When using STIR/SHAKEN, it½½½s possible to send arbitrary requests like GET to interfaces such as localhost using the Identity header. * AST-2022-003: func_odbc: Possible SQL Injection Some databases can use backslashes to escape certain characters, such as backticks. If input is provided to func_odbc which includes backslashes it is possible for func_odbc to construct a broken SQL query and the SQL query to fail. [asterisk-announce] Asterisk 18.11.1 Now Available Asterisk Development Team asteriskteam at digium.com Tue Mar 29 19:15:43 CDT 2022 The Asterisk Development Team would like to announce the release of Asterisk 18.11.1. The release of Asterisk 18.11.1 resolves several issues reported by the community and would have not been possible without your participation. Thank you! The following issues are resolved in this release: Bugs fixed in this release: ----------------------------------- * ASTERISK-29986 - build: Asterisk 18.11.0 doesn't compile when wget isn't available (Reported by Stefan Ruijsenaars) * ASTERISK-29988 - REGRESSION: The build process is requiring xmllint or xmlstarlet ro be installed when it shouldn't (Reported by George Joseph) [asterisk-announce] Asterisk 18.11.0 Now Available Asterisk Development Team asteriskteam at digium.com Thu Mar 24 09:06:03 CDT 2022 The Asterisk Development Tea…

@theKnightsOfRohan

v0.9.0 - Improve scrolling responsiveness for large csv - Find and filter using selected cell (# and @) to search for exact matches - Fix rendering of cursor in input prompt - Fix app freeze on line wrap in some cases - Fix potential overflow when subtracting durations in Windows (#77) - Fix rendering of right border with irregular columns (#73) - Fix misspelling (#72 by @theKnightsOfRohan)

@hsbt

1.4.5 (2024-04-23) What's Changed * Added dependabot.yml for actions by @hsbt in #72 * Bump actions/checkout from 2 to 3 by @dependabot in #73 * Add x permission to samples by @dvarrui in #71 * Bump actions/checkout from 3 to 4 by @dependabot in #82 * Add macOS directives to install curses with menu support by @AlexB52 in #84 * Add documentation of TERM by @shugo in #81 New Contributors * @dependabot made their first contribution in #73 * @AlexB52 made their first contribution in #84

20240123 + improve manpage style/formatting. + improve conversion of parameter of srand() when using srandom() (Original-Mawk #66). + minor improvement for configure script 20231210 + correct interator type in REcompile (Original-Mawk #73) + improve configure script check for arc4random + reduce compiler warnings in configure script checks 20231126 + fix a couple of problems reported by Coverity: + modify cell_destroy() to set the string pointer to NULL if zfree() might have freed it. + replace a couple of strcpy's with loop. + eliminate a fixed-size array in re_cmpl.c + change casts in strftime() and srand() to avoid truncation on 64-bit machines (report by John Naman). 20231102 + environment-fixes for building with Solaris 10. 20231101 + repair parsing for comma-separated -W options used in "#" lines (report by Leif Baron). + updated makedeps.sh and examples/deps.awk, to update Makefile.in + remove obsolete/incorrect zero-termination assignment from fillbuff() (Original-Mawk #71). + updated configure macros + update config.guess and config.sub 20230816 + start work on _CALLX + da.c: replace most of the string-literals in fprintf's with result from da_op_name() + da.c, mawk.h: simplify ifdef for da_op_name(), to reuse in refactoring of _CALL + da.c: dumping the function name in front of the offset is distracting, use just "@" + da.c: make the trace show offsets like the -Wdump option + da.c: add traces to show which function is being dumped (and possibly patched). this improves on the fix for dump_funcs() as well, freeing the linked-list + code.c: fix a use-after-free when no-leaks and traces are combined. + code.c: add trace to be_setup() + parse.y: make trace message consistent with fcall.c + execute.c: eliminate a couple of comparisons + change SYMTAB_TYPES to mixed enum/masks, to reduce comparisons for array types. + some cleanup, using NUM_ARGS and SYM_TYPE typedefs. 20230808 + modify input buffer-resizing to improve performance with very long longs (report/testcase by Leif LeBaron). 20230804 > fixes for nulls (patches by Miguel Pineiro Jr). + support nulls in toupper() and tolower(). + modify str_str() to ensure lengths for key/target are large enough for the memcmp() call. + treat special case of failure to open input file due to too many open files as a fatal error (report/testcase by Christoph Brunhuber). + fix a shift/reduce conflict for length vs length() + quote string-parameter in a few error-messages + add MinGW-code for system() calls (Original-Mawk #51). 20230730 + rexp.c: do not unroll repetition into loops if the repetition applies to more than one character. + rexp3.c: increment machine on completing M_2JC step to fix a case with infinite loop. + print.c: improve parameter-passing, eliminating a duplicate check. 20230726 + modify makefile to install mawk-array and mawk-code manpages. 20230725 + use da_string more consistently in dumps. + improve scanner to some type-checks of arrays versus scalars by deferring this into the runtime execution (report by Rajeev V Pillai). 20230716 + modify scanner to accommodate scripts which use the same name for some function-parameters as for a function (report by Kaz Kylheku). + amend/limit special case optimization for redundant wildwards (Original-Mawk #36). + regenerate parse.c using byacc 20230521 20230525 + fix a regression for big-endian machines caused by mismatch between printf/sprintf format and long integer types (Original-Mawk #69, cf: 20200731). 20230404 + add a null-pointer check in bi_mktime() (Original-Mawk #57). + cast parameter of srand() to double if it is not already (patch by "q3cpma", Original-Mawk #66). + manpage fixes (report/suggested by David Apps). + fix parsing of "--" token on command-line, from 20200828 changes (report by Pavel Vinogradov). + add a null-pointer check in the case for "-W" when parsing command options (Original-Mawk #68). + improve CF_XOPEN_SOURCE configure macro to avoid clearing the host's definition for _XOPEN_SOURCE if _POSIX_C_SOURCE is defined (report by A. Wilcox). + modify makefile "clean" rule to remove ".i" files. + modify configure script to allow for using clock_gettime vs gettimeofday. 20230322 + remove an unwanted string/number conversion in print.c, from changes in 20200717 (report by Jan Psota). + reduce compiler-warnings in configure script checks. 20230215 + update URLs, changing ftp to https + modify configure.in, moving checks for standard headers before the options, to improve check for arc4random (Redhat #2167291). 20230203 + split up do_printf to fix build with fortified mingw stdio.h + reduce compiler-warnings in configure script checks. 20221229 + fix shellcheck warnings in test-scripts. + updated configure macros + update config.guess, config.sub, and install-sh 20210824 + updated configure macros + update config.guess and config.sub 20210528 + add FreeBSD build-scripts, for test-builds + updated configure macros + update config.guess and config.sub 20201023 + start work on experimental approach to interval-expressions which does not involve loop-unrolling. + improve type-checking for builtin-regex's by using PTR only for the external-regex's. + improve dump format, showing intervals in curly-brace format. 20201016 + improve dump format, showing the jump-targets rather than offsets. 20201009 + show limits for brace-expressions in dump. + change RE_panic to stdarg, and log its message in trace file 20200925 + improve compatibility vs gawk/bwk in gsub handling of backslash by only escaping backslash with itself if those backslashes happen to precede a "&", e.g., "\\&" vs "\\" (Original-Mawk #14). + fix a regression in recent command-line option parsing. + modify configure/makefile to use .PHONY if available. + review/improve example-scripts 20200918 + build-fix for HP-UX 11.23, which lacks #define's for maximum of int64_t and uint64_t + build-fix for OpenBSD, which mis-types int64_t, just like macOS. + build-fix for macOS, which mis-types int64_t 20200911 + improve range of printf/sprintf for decimal formats by using the unsigned limit if the value is positive. + improve checks for command-line numeric options. + allow long-options to be abbreviated. 20200828 + modify configure script to move gcc -Werror flags to EXTRA_CFLAGS to avoid breaking configure-checks. + use sprintf-buffer for intermediate output of strftime, to handle extra-long format strings. + modify MAWK_LONG_OPTIONS "ignore" to limit that to the "-xxx" options in this set of changes, plus the existing --lint/--lint-old options. + allow -Wxxx options to use long-option format as -xxx, for better script-compatibility with gawk. + use standard output for -Whelp, but show usage message in standard error when no command arguments are given. + print version for -Wversion consistently in standard output. + improve use of const for making tables readonly. + change -W compat to -W traditional for better script-compatibility with gawk. 20200821 + completed first draft of mawk-code.7 20200807 + begin man/mawk-code.7 + drop noweb dependency, move docs to man/mawk-arrays.7 20200731 + amend fix for Debian #303825 to more closely match gawk and BWK. Those use larger data types, e.g., long vs int, for limits, and also provide for using int64_t and uint64_t. Internally, mawk now uses long long's where those are supported. + add --help and --version options 20200724 + modify logic for "{0}" in rexp.c so that a left-parenthesis is not trimmed when cancelling the previous token. + modify RE_cat to add a dummy M_ACCEPT as a workaround for logic in the new RE_init_it_cnt and RE_set_limit functions. + modify regexp_system.c to work with interval-expressions. + recognize gawk's --traditional and --posix as aliases for mawk's -W options, as well as -r and --re-interval to improve scripting compatibility. + add -W compat and -W posix, using the former to replace -W repetitions and the latter to replace -W posix_space + enable interval-expressions by default. 20200717 + add configure option "--disable-interval-expr" > integrated/adapted changes by James Parkinson (jlp765): + add regexp intervals, + add tests for intervals to test/mawktest and associated test/repetitions files, + add -W repetitions to enable r{m,n} + add man page updates to man/mawk.1 20200708 + update manpage comment about "nextfile" (AustinGroup #607). + amend manpage comment about "fflush" (AustinGroup #634). + amend manpage comment about "delete array" (AustinGroup #544). + updated configure macros + update config.guess and config.sub

2.3.0 - 2024-05-29 Added rework harmonized colors into custom colors Fixed nixos flake compile error update material-colors to 0.3.1 (#69) Other Merge pull request #73 from vt-d/patch-1 Fix issue #71 update material-colors to 0.3.2 update material-colors support x86_64-linux + aarch64-linux by default make supportedSystems overridable

Version 0.7.8 * Do not merge sub directives if they have not been changed. (#53 by Cédric Krier) * Silence deprecation warnings from attempting to import Ellipsis and Str (which are needed to support older Pythons). (#73 by Cédric Krier) * Remove fallback to distutils, patching of bdist_egg and use of doctools. (#74 by Simon Cross) * Clarify the escaping in _URL_FINDER. (#76 by Simon Cross) * Fix installation with setuptools >= 60. (#68 by Graham Inggs)

jperkin closed this as completed in 2c86273 Mar 31, 2018

jperkin pushed a commit that referenced this issue Sep 4, 2022

audio/spotify-player: update to 0.9.6

ea77e88

What's Changed - Add "add-track-to-queue" support in #73 - Refactor playback rendering codes in #75 - Add seek commands in #76

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[build] mongodb on SmartOS: g++ version #73

[build] mongodb on SmartOS: g++ version #73

hww3 commented Jan 24, 2018

jperkin commented Jan 24, 2018

hww3 commented Jan 24, 2018

mamash commented Jan 24, 2018

hww3 commented Jan 24, 2018

[build] mongodb on SmartOS: g++ version #73

[build] mongodb on SmartOS: g++ version #73

Comments

hww3 commented Jan 24, 2018

jperkin commented Jan 24, 2018

hww3 commented Jan 24, 2018

mamash commented Jan 24, 2018

hww3 commented Jan 24, 2018