forked from NetBSD/pkgsrc
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
clang++ missing iostream header #91
Comments
jperkin
pushed a commit
that referenced
this issue
Mar 31, 2018
## 2.2.0 / 2018-02-11 Features: * Support HTML5 `<main>` tag. #133 (Thanks, @MothOnMars!) * Recognize HTML5 block elements. #136 (Thanks, @MothOnMars!) * Support SVG `<symbol>` tag. #131 (Thanks, @baopham!) * Support for whitelisting CSS functions, initially just `calc` and `rgb`. #122/#123/#129 (Thanks, @NikoRoberts!) * Whitelist CSS property `list-style-type`. #68/#137/#142 (Thanks, @andela-ysanni and @NikoRoberts!) Bugfixes: * Properly handle nested `script` tags. #127. ## 2.1.1 / 2017-09-24 Bugfixes: * Removed warning for unused variable. #124 (Thanks, @y-yagi!) ## 2.1.0 / 2017-09-24 Notes: * Re-implemented CSS parsing and sanitization using the {crass}[https://github.com/rgrove/crass] library. #91 Features: * Added :noopener HTML scrubber (Thanks, @tastycode!) * Support `data` URIs with the following media types: text/plain, text/css, image/png, image/gif, image/jpeg, image/svg+xml. #101, #120. (Thanks, @mrpasquini!) Bugfixes: * The :unprintable scrubber now scrubs unprintable characters in CDATA nodes (like `<script>`). #124 * Allow negative values in CSS properties. Restores functionality that was reverted in v2.0.3. #91
jperkin
pushed a commit
that referenced
this issue
Apr 19, 2018
Upstream changes: 0.048 2018-03-29 11:14:42-07:00 America/Los_Angeles No changes since last development release. 0.047_090 2018-03-19 21:19:22-07:00 America/Los_Angeles (TRIAL RELEASE) update t/path_class.t to remove tilde; fixes [#41] (Jean-Damien.Durand) Unset (possible) global gpgsign [#91] (Sergey Romanov) remove timing bug in basic.t (Christian Walde) POD typo fix (小械褉谐械泄 袪芯屑邪薪芯胁) Include dist.ini in distribution (Karen Etheridge)
clang/llvm 6 is available in newer releases and works correctly. |
jperkin
pushed a commit
that referenced
this issue
May 21, 2019
Changelog: Changes from Ant 1.10.5 TO Ant 1.10.6 ===================================== Changes that could break older environments: ------------------------------------------- * image task no longer works on Java 9+ because internal classes supporting Java Advanced Imaging are removed; imageio task (based on ImageIO and AWT) is provided as a replacement. * junitlauncher task has changed the class names and package names of the task as well as some of the supporting classes of that task. If any code depended on these class or package names, they will have to be updated to reference these newly named classes. This however, doesn't impact build scripts if their reference to junitlauncher task was merely through the use of the <junitlauncher> element. * ClearCase#runS has been augmented by a two arg-version and the one-arg version will no longer be called. This may affect subclasses that have overridden runS. Fixed bugs: ----------- * fetch.xml must retrieve runtime rather than compile dependencies for mail task. Bugzilla Report 62621 * Fixes an issue in junitreport task, which used to throw a java.net.MalformedURLException when saxon was used on Windows OS. Bugzilla Report 62594 * augment task now throws a BuildException (as noted in its manual) instead of a IllegalStateException in the absence of the "id" attribute. Bugzilla Report 62655 * org.apache.tools.zip.ZipOutputStream would sometimes potentially use an incorrect compression level for a zip entry. This is now fixed. Bugzilla Report 62686 * sync task, in some cases on case insensitive file systems, would consider a file in a destination directory to be orphaned and would delete it. This task has now been fixed to infer the case sensitivity of the filesystem of the destination directory. Bugzilla Report 62890 * Fixes a potential java.util.ConcurrentModificationException in org.apache.tools.ant.Project#getCopyOfReferences. Github Pull Request #81 * cccheckout would ignore an error of the "ls checkout" command even if failOnError was set to false. Bugzilla Report 63071 * The isreachable condition could in some cases return true even if the actual address could potentially be unreachable. This is now fixed and the resolved address is actually checked for reachability. * Fixes an issue where scp transfer completion tracking wasn't being triggered for 100% completion. Github Pull Request #91 Other changes: -------------- * generatekey task now supports SubjectAlternativeName during key generation. * the <modified> selector has a new built-in algorithm 'lastmodified' which computes a value based upon the lastmodified time of the file. * junitlauncher task now supports running tests in a forked JVM. More details available in the junitlauncher task manual. * signjar and verifyjar now support the -providerName, -providerClass and -providerArg command line options of keytool via new attributes. Bugzilla Report 65234 * signjar and verifyjar now supported nested <arg> elements for command line arguments that are not supported explicitly by the tasks via attributes. * added several attributes to <javadoc> that support modules. Bugzilla Report 62424 * properties used or set by BuildFileTask/BuildFileRule are documented in MagicTestNames. A new magic property, ant.test.basedir.ignore, is introduced for cases where Ant projects set up for test purposes must ignore basedir set externally by test harness. * a new CharSet type is provided for encoding or charset attributes in tasks that must deal with different character encodings in files, file names and other string resources. * org.apache.tools.ant.AntClassLoader is now multi-release jar aware. Starting Java 9, jar files can be packaged as multi-release jars, AntClassLoader now recognizes such multi-release jar files while loading resources at runtime in Java 9+ runtime environments. Bugzilla Report 62952 * Added jmod and link tasks, to support jmod and jlink tools of JDK 9+. Github Pull Request #80 * Jsch library dependency has now been upgraded to 0.1.55. Jsch is the library behind the sshexec and scp Ant tasks. Github Pull Request #84 * The "http" condition, now has a "readTimeout" attribute which can be used to control the amount of time to wait for the read to complete. Bugzilla Report 63193 * ftp task manual has been updated to mention that the remote listing of files honours the followsymlinks attribute. Bugzilla Report 63226
jperkin
pushed a commit
that referenced
this issue
Jul 1, 2019
Changelog: New Libraries Outcome: A set of tools for reporting and handling function failures in contexts where directly using C++ exception handling is unsuitable, from Niall Douglas. Histogram: Fast and extensible multi-dimensional histograms with convenient interface for C++14, from Hans Dembinski. Updated Libraries Asio: This release includes a number of new features, bug fixes, performance enhancements, and documentation improvements. Notable changes include: Added the ability to use custom I/O executors with I/O objects (such as sockets). Added a new async_result form with an initiate static member function. Updated the Coroutines TS support and promoted it to the asio namespace. Added a new DynamicBuffer_v2 concept which is CopyConstructible. Added a new async_compose function that simplifies the implementation of user-defined asynchronous operations. Added a make_strand helper function. Relaxed the completion condition type requirements to only require move-constructibility rather than copy-constructibility. Added a constructor for local::basic_endpoint that takes a string_view. Added the noexcept qualifier to various functions. Added a new BOOST_ASIO_DISABLE_VISIBILITY configuration #define. Enabled recycling of the memory used to type-erase a function object with the polymorphic executor. Changed receive operations to return the correct number of bytes transferred when truncation (error::message_size) occurs on a datagram-oriented socket. Fixed calculation of absolute timeout when the backend uses pthread_cond_timedwait. Changed the range-based asynchronous connect operation to deduce the EndpointSequence iterator type. Fixed buffer_sequence_begin and buffer_sequence_end to prevent implicit conversion. Ensured SSL handshake errors are propagated to the peer before the local operation completes. Suppressed the eof error on SSL shutdown as it actually indicates success. Added a fallback error code for when we OpenSSL produces an SSL_ERROR_SYSCALL result without an associated error. Changed composed asynchronous read and write operations to move buffer sequence objects. Fixed a macOS-specific warning about the deprecation of OSMemoryBarrier. Fixed compile errors that occur when using the composed read and write operations with MSVC 11.0. Improved dispatch, post and defer documentation. Fixed a Windows-specific memory leak that may occur when system_executor is used. Consult the Revision History for further details. Beast: BIG Update!!! Some APIs have changed. The reference shows a star ★ next to each new item. Beast needs your help! Tell Us how you or your company use Beast Please report any bugs, feature requests, or general feedback Join the C++ Slack Workspace for free and chat with us in the #beast and #boost channels Don't forget to star the repository ⭐! More tutorials, code like the pros! Networking Refresher teaches you from the ground up. Updated Asynchronous Echo example Updated Detect SSL composed operation tutorial websocket-chat-multi threaded chat server with a JavaScript browser client basic_stream and tcp_stream offer: Timeouts: async_read_some, async_write_some complete with error::timeout on expiration! Traffic-shaping policies simple and unlimited, or a user-defined RatePolicy! Put the strand directly on the socket using P1322R0, no more bind_executor at call sites! Base classes async_base and stable_async_base and handle all composed operation boilerplate for you. ssl_stream provides a movable, assignable SSL stream with a flat write optimization. All asynchronous operations use Asio's async_initiate for efficient integration with Coroutines TS. ⚡ faster compilation, define BOOST_BEAST_SEPARATE_COMPILATION and #include <boost/beast/src.hpp> in one of your .cpp files! See the full Release Notes for a complete list of changes. Context: #91: cleanup of stack if creating ucontext fails #97: add missing BOST_CONTEXT_DECL in stack_context #98: fix jump_i386_sysv_macho writing garbage to the x87 control word Coroutine2: #28: don't crash on pthread_cancel DLL: New macro BOOST_DLL_USE_STD_FS. Define it to 1 to make the Boost.DLL use C++17's std::filesystem::path, std::system_error and std::error_code (#21). Note that exception types change from boost::system::system_error to std::system_error, so make sure to update catches. Significant rewrite of the dynamic loadable detection and decoration logic. More precise errors are now reported in case of loading failures. Added shared_library::decorate() function that returns a decorated path to the library without doing any platform related queries and detections. Prefer using shared_library::load and shared_library constructors for better results (many thanks to Loïc Touraine for the work PR#23). CI hardening, docs updates, typos fixes, cleanups and mg #196: fix high contention on remote_ready_splk_ Filesystem: Fixed a few instances of dereferencing std::string::end() in path implementation. Fixed program termination in case of out of memory condition in directory iteratorsnce to error_code. (#58) Fixed possible linking errors caused by missing definitions of static members of path. (#12759) Fixed possible use of uninitialized data in directory iterator increment operation on Linux. Added support fortatus query overloads for directory_entry. This avoids a relatively expensive OS query when file status is requested for a result of dereferencing a directory iterator. (PR#55) Reworked current_path and read_symlink implementation to avoid possiblfilesystems. The functions now have an internal limit of the path size they will accept from the OS, which is currently 16 MiB. Increased the size of the internal buffer used by copy_file. Integer: Added Extended Euclidean Algorithm and Modular Multiplicative Inverse function. (Nick Thompson, PR#11) Log: New features: Added support for generating another log file name before collecting the file in the text file sink backend. This allows to combine appending to aexisting log file with timestamps and file counters in log filenames, and, consequently, file collection in general. See changelog for more details. Math: New features: Add Lanczos smoothing derivatives Move numols/ to boost/math/differentiation/finite_difference.hpp. Add mean, variance, skewness, kurtosis, median, Gini coefficient, and median absolute deviation to tools/univariate_statistics.hpp. Add correlation coefficients and covariand absolute Gini coefficient, Hoyer sparsity, oracle SNR, and the M[sub 2]M[sub 4] SNR estimator to tools/signal_statistics.hpp. Add total variation, l0, l1, l2, and sup norms, as well as corresponding distance functions to tools/norms.hpp. for polynomials, support complex coefficients, add .prime() and .integrate() methods. Add quadratic_roots to tools/roots.hpp. Add support for complex-valued functions to Newton's method in roots.hpp. Add Catmull-Rom inted mp_invoke to mp_invoke_q Added mp_similar Added mp_set_union, mp_set_intersection, mp_set_difference Added mp_not_fn Added mp_transform_first, mp_transform_second, mp_transform_third Added mp_filter Addedp_valid_q Added mp_back, mp_pop_back Multi-index Containers: size_type and difference_type are now defined as the allocator's same-named types. This will not make any difference in the vast majority of cases, but allows for some degreevia user-defined allocator types (see issue #17 for motivation). For the moment being, this change is not documented in the reference section (i.e., it has semi-official status). Maintenance work. Multiprecision: Fix various conversioncheck for compatibility with Boost.Optional. Prevent instantiation of std::numeric_limits on any old type when checking for convertibility. See #98. Update variable precision code to account for arbitrary precision integers. See #103. lization archives. Fix bug in fixed precision iostream formatting in mpf_float and mpfr_float. See #113. Add more overloads for special functions which are better handled natively by MPFR. Fixed bug in generic exp implementation wh. Fixed generic conversion from float to integer to avoid undefined behaviour. See #110. PolyCollection: Improved handling of stateful allocators and allocator propagation traits, after an error reported by Billy O'Neal (PR#9). ug with an internal cache structure. Spirit: Removed use of deprecated boost/detail/iterator.hpp header. PR#432 X3 Integer parsers should now handle user defined types. PR#429 Note: The check_overflow trait defan std::numeric_limits<T>::is_bounded instead of boost::integer_traits<T>::is_integral. Removed sequence into plain parsing. Now it triggers a compile time error instead of silently parsing the the sequence and taking the last value as a resulte_rule instantiation with BOOST_SPIRIT_INSTANTIATE when: A rule has no attribute. PR#455 An actual attribute is not of type a rule was declared with. PR#456 #457 A huge thanks goes out to Xeverous for reporting Fixed unneded attribute synthesization and no-transformation attribute reference pass-through in rules. #444 PR#449 PR#452 Removed broken 1.0#INF parser. It was poorly documented and never worked. #415 PR#458 #8699 The undocumenoved due to bugs PR#449 and to simplify attribute transformation. PR#460 If you were using it to workaround bugs in attribute transformation - they should not be needed anymore as of this release. The integer value parser now respe10 value. PR#469 Fixed underflow check for a (Min % Base) == 0 corner case. PR#469 Fixed an output value on overflow of IgnoreOverflowDigits=true integer parser. PR#470 Container attribute elements were copyied, but notial handling of references in transform_attribute was removed. PR#480 V2 Macro name collisions and namespace conflicts with Boost.Endian were fixed. PR#349 PR#482 utree Fixed UB in tag getter due to left shi Fixed double-conversion (spirit::string -> std::string -> spirit::string). PR#462 Qi Added static asserts for rule skipper type problems. PR#427 The check_overflow trait default implementation now reoost::integer_traits<T>::is_integral PR#429 Integer parsers should now handle user defined types. PR#429 Note: The check_overflow trait default implementation now relies on std::numeric_limits<T>::is_bounded instead of boosl. Removed broken 1.0#INF parser. It was poorly documented and never worked. #415 PR#458 #8699 The undocumented make_attribute trait was merged into transform_attribute trait. PR#471 The pre_transform, post_tility functions were removed in favor of directly using pre/post/fail of the transform trait. PR#467 The integer value parser now respects std::numeric_limits<T>::digits10 value. PR#469 Fixed underflow check for a (Min % B Fixed an output value on overflow of IgnoreOverflowDigits=true integer parser. PR#470 Special handling of references in transform_attribute was removed. PR#480 Lex Fixed UB in default constructor of ken type. PR#420 Classic: Fixed position_iterator forming reference to local when the underlying iterator dereference operator returns a non-reference type. PR#422 #9737 Stacktrace: Build fix for iOS 32-bit ARM (many thanksng the fix PR#70) Fixed multiple typos, warnings and updated the docs. Test: Boost.test v3.10 see the Changes log for more details. Breaking changes: Boost.Test minimal.hpp is now showing a deprecation warning, omparison may fail tests that were silently not using the floating point comparison logic prior to this release, Internal API change to unit_test_log_formatter, see detailed change log, New feature: Floating point compariso non-floating point and arithmetic operands: expressions like BOOST_TEST(3.0001 == 3) now use floating point support of Boost.Test, Custom datasets are not required to declare the sample type field anymore, Extending template test riadic definition, Windows support for timed tests, Timed test on test-suites, Removed dependency to Boost.Timer, New macro BOOST_TEST_INFO_SCOPE for scoped context declaration, Improved BOOST_TE and pull requests: Trac tickets: #7397, #9434, #13106, #13418 GitHub Issues: #133, #138, #141, #157, #160, #174, #176, #177, #180, #181, #194, #196, #198, #199, #202, #203, #204 GitHub Pull Requests: PR#171, PR#172, PR PR#195, PR#195, PR#197, PR#205 TypeIndex: Support for the GHS C++ compiler added (many thanks to Brandon Castellano for providing the patch PR#28) Optimized string and type comparisons (many thanks to Andrey Semashev for providing the-win compilation (many thanks to Peter Dimov for providing the patch PR#25) CI hardening. TypeTraits: Added is_bounded_array and is_unbounded_array (Glen Fernandes). Added copy_reference and copy_cv_ref (Glen Fernandes). /clr option. Misc compiler compatibility fixes. Variant: Many cleanups and internal improvements, many thanks to Nikita Kniazev (PR#55, PR#56, PR#57) and Louis Dionne (PR#51) CI hardening. uBlas: Addition of tensorassoy PR#65) Addition of basic OpenCL support (many thanks to Fady Essam PR#59) Integration of basic benchmark suite (many thanks to Stefan Seefeld PR#57) CI integration and hardening Compilers Tested Boost's primary test compileang: 3.0, 4.0.1, 6.0.1 Clang, C++0x: 3.0 Clang, C++11: 3.0, 3.1, 3.2, 3.3, 3.4, 4.0.1, 6.0.1, 7.0.0, 8.0.0 Clang, C++14: 3.5.0, 3.6.0, 3.7.1, 3.8.0, 3.9.1, 4.0.0, 4.0.1, 5.0.2, 6.0.1, 7.0.0, 8.0.0 Clang, C++17: 5.0.2, 6.0.17, 4.5.3, 4.6.3, 5.4.0, 8.0.1 GCC, C++0x: 4.4.7 GCC, C++11: 4.7.3, 4.8.5, 4.9.4, 5.4.0, 6.4.0, 7.1.0, 8.0.1 GCC, C++14: 5.4.0, 5.5.0, 6.4.0, 7.1.0, 7.3.0, 8.0.1 GCC, C++17: 7.3.0, 8.0.1 Intel, C++14: 18.0 OS X: , 9.1.0, 10.0.0 Apple Clang, C++11: 9.0.0, 9.1.0, 10.0.0 Apple Clang, C++14: 9.0.0, 9.1.0, 10.0.0 Apple Clang, C++17: 9.1.0, 10.0.0 Apple Clang, C++1z: 9.0.0 Apple Clang, C++2a: 10.0.0 Windows: GCC: 3.4.4.0, 4.5.4 GCC, C++0x: 4.6.4 GCC, C++11: 4.7.3, 4.8.1, 4.9.3 GCC, C++14: 5.1.0, 5.2.0, 5.3.0, 6.1.0, 6.2.0, 6.3.0, 6.4.0 GCC, C++17: 7.1.0, 7.2.0, 7.3.0 Visual C++: 7.1, 8.0, 9.0, 10.0, 11.0, 12.0, 14.0, 14.1 Fr Clang, C++11: 4.0.0 Clang, C++14: 4.0.0 Clang, C++1z: 4.0.0 Boost's additional test compilers include: Linux: Clang: 3.0, 3.8.1, 3.9.1, 4.0.1, 5.0.2, 6.0.1 Clang, C++0x: 3.0 Clang, C++11: 3.0, 3.1, 3..0.0, 8.0.0 Clang, C++14: 3.5.0, 3.6.0, 3.7.1, 3.8.0, 3.9.1, 4.0.0, 4.0.1, 5.0.2, 6.0.1, 7.0.0, 8.0.0 Clang, C++17: 5.0.2, 6.0.1, 7.0.0, 8.0.0 GCC: 4.4.7, 4.5.3, 4.6.3, 4.9.4, 5.4.0, 5.5.0, 8.0.1 GCC, C++0x: 4.4.7 G9.4, 5.4.0, 6.4.0, 7.1.0, 8.0.1 GCC, C++14: 5.4.0, 5.5.0, 6.3.0, 6.4.0, 7.1.0, 7.3.0, 8.0.1, 8.1.0 GCC, C++17: 7.3.0, 8.0.1 Intel, C++14: 18.0 OS X: Apple Clang: 9.0.0, 9.1.0, 10.0.0 Apple Clang, C++11: 9.0.0, 9ang, C++14: 9.0.0, 9.1.0, 10.0.0 Apple Clang, C++17: 9.1.0, 10.0.0 Apple Clang, C++1z: 9.0.0 Apple Clang, C++2a: 10.0.0 Windows: GCC: 3.4.5, 4.1.2, 4.2.4, 4.3.3, 4.4.0, 4.5.4 GCC, C++0x: 4.6.4 GCC, C++11 GCC, C++14: 5.1.0, 5.2.0, 5.3.0, 6.1.0, 6.2.0, 6.3.0, 6.4.0 GCC, C++17: 7.1.0, 7.2.0, 7.3.0 Visual C++: 7.1, 8.0, 9.0, 10.0, 11.0, 12.0, 14.0, 14.1 FreeBSD: Clang: 4.0.0 Clang, C++11: 4.0.0 Clang, C++14: 4.0.0
jperkin
pushed a commit
that referenced
this issue
Oct 28, 2019
Switch from qt4 to qt5. Remove the qt4 option. CHANGELOG ========= BibleTime 2.11.2 The BibleTime team is proud to announce the immediate availability of BibleTime version 2.11.2 which is the second bugfix release in the stable 2.11 series of BibleTime. All users of BibleTime are encouraged to upgrade, especially users still using BibleTime version 2.10 or earlier. Notable changes since 2.11.1: Updated translations. Improved compatibility with Qt 5.11 (including bug #140) Fixed crash when clicking on "full syntax" (bug #134) Fixed Mag not always working with Hebrew / Strongs (bug #132) Fixed BibleTime startup on some versions of Windows (bug #119) Fixed Bookshelf Wizard buttons not being translated (bug #131) Fixed application icon directory to match the FreeDesktop standard Fixed bug which prevented installing of works (bug #124) BibleTime 2.11.1 The BibleTime team is proud to announce the immediate availability of BibleTime version 2.11.1 which is the first bugfix release in the stable 2.11 series of BibleTime. All users of BibleTime are encouraged to upgrade, especially users still using BibleTime version 2.10 or earlier. Notable changes since 2.11.0: Enhanced packaging for Windows. Enhanced some error messages. Updated translations. Thanks to all translators!. Improved build-time detection of Qt WebEngine. Fixed crash with Qt 5.9 (workaround for QTBUG-61213). Fixed apocryphal books not being properly displayed (#12). Fixed paragraphs being displayed incorrectly (#37). Fixed some greek dictionary modules not working in mag (#52). Fixed windows not starting on some Windows 7 computers (#90). Fixed a bug which hindered changing to second tab in Tabbed view (#91) Fixed Qt "More Info..." tab being blank (#92) Fixed crash when closing module display window with Qt 5.8 (#94) Fixed images not being displayed (#95). Fixed reloading of "All Text Windows" shortcuts not working (#102). Fixed problem with Save - Yes/No dialog and editing a Personal commentary (#105). BibleTime 2.11.0 Thanks to the great mercy of our Savior and Lord, king Jesus Christ, the BibleTime team is yet again pleased to announce the immediate availability of BibleTime version 2.11.0, which is the first full release in the the stable 2.11 series of BibleTime. All users of BibleTime are encouraged to upgrade, including users of the BibleTime version 2.10 series. Notable changes since the 2.10 series: Redesigned bookshelf manager Many bugfixes and optimizations Build requirements changes: A C++11 compiler is now required Qt 5 or later is now required xml-po is no longer required BibleTime 2.11 RC 2 The BibleTime team is proud to announce the immediate availability of BibleTime version 2.11 RC 2, which is the second release candidate in the stable 2.11 series of BibleTime, with a number of bugs fixed since RC 1. Notable changes since the 2.10 series: Many bugfixes and optimizations Redesigned bookshelf manager Build requirements changes: A C++11 compiler is now required Qt 5 or later is now required xml-po is no longer required BibleTime 2.11 RC 1 The BibleTime team is proud to announce the immediate availability of BibleTime version 2.11_rc1, which is the first release candidate in the stable 2.11 series of BibleTime. Notable changes since the 2.10 series: Many bug fixes and optimizations Redesigned bookshelf manager Build requirements changes: A C++11 compiler is now required Qt 5 or later is now required xml-po is no longer required BibleTime 2.11 beta 1 The BibleTime team is proud to announce the immediate availability of BibleTime version 2.11_beta1, which is the first (and only) beta release in the stable 2.11 series of BibleTime. Notable changes since the 2.10 series: Many bug fixes and optimizations Redesigned bookshelf manager Build requirements changes: A C++11 compiler is now required Qt 5 or later is now required xml-po is no longer required
jperkin
pushed a commit
that referenced
this issue
Nov 4, 2019
ChangeLog: 2019-11-04 1.3 - FIX: Escaped @ ("\@") is treated as "@" (#42, #103) - NEW: Support reading JSON array elements (#91) - UPD: Add home and removable-media interfaces to snap (#94) - FIX: fix unlikely crash after malloc fail when base64 encoding. - NEW: Support reading nested data from pipes (#82)
jperkin
pushed a commit
that referenced
this issue
Nov 6, 2019
2.40.0 (stable) === - Allow creating a GdkPixbuf instance without any property [Federico Mena Quintero, #91] 2.39.2 (development) === - Add gdk_pixbuf_init_modules() for applications with GdkPixbuf loader modules in a separate directory [Bastien Nocera, bgo#786035] - Add subproject fallback for dependencies [Nirbheek Chauhan] - Handle large XPM without crashing [Bastien Nocera, #95] - Use the appropriate gdk-pixbuf-query-loaders on install [Emmanuele Bassi, #126] - Disable deprecation warnings introduced by GLib 2.62 - Escape GIF version in error messages [Robert Ancell] - Use the appropriate fallback for libpng on Windows [Chun-wei Fan] - Render GIF frames on demand [Robert Ancell, #101]
jperkin
pushed a commit
that referenced
this issue
Nov 15, 2019
2.62.1 - October 4, 2019 ======================== - Fix two memory leaks (!71, !72, Claudio Saavedra) 2.62.0 - September 7, 2019 ========================== - Revert broken queued data fix for #15 2.61.92 - September 2, 2019 =========================== - Discard queued data after interrupted writes (#15) - Verify socket timeouts are respected (#18) - Fix a couple broken error messages 2.61.90 - August 5, 2019 ======================== - Fix translations of certain error messages 2.61.2 - July 22, 2019 ====================== - Improve certain handshake error messages (#13) - Fix regressions introduced in 2.61.1 (#91, #92) 2.61.1 - June 9, 2019 ===================== This release contains a major refactoring of the TLS codebase. The GnuTLS backend now shares the same base classes as the OpenSSL backend, to avoid duplicating as much code as possible. The base classes, previously used only by the OpenSSL backend and originally forked from glib-networking several years ago, have been enhanced to achieve feature-parity with the current state of the GnuTLS backend. Please note that the OpenSSL backend remains experimental. Further planned work is required before this backend will be production-ready.
jperkin
pushed a commit
that referenced
this issue
Dec 3, 2019
Update pear to 1.10.10 contains two pear pacakge updates: o PEAR 1.10.10 o Console_Getopt 1.4.3 PEAR 1.10.10 (2019-11-19) Changelog: * PR #89: Fix scripts/* include paths * PR #90: Non-interactive configureoption answers * PR #91: Added missing preg quote * PR #92: handle "lib64" case for glibc detection * PR #93: Fix PHP Notice: Trying to access array offset on value of type bool with 7.4 * PR #94: Updated logic in useLocalCache to reuse getCacheId * PR #95: Fix manpage warning * PR #96: Implement the SOURCE_DATE_EPOCH specification * PR #97: Fix PHP 7.4 deprecation: array/string curly braces access * PR #98: Fix use of null/false as array * PR #99: Fix Travis builds on PHP 5.4 and 5.5 * PR #100: Honor PHP temp directory config * PR #101: Fix documentation: the `--force` is required Console_Getopt 1.4.3 (2019-11-20) Changelog: * PR #4: Fix PHP 7.4 deprecation: array/string curly braces access * PR #5: fix phplint warnings
jperkin
pushed a commit
that referenced
this issue
Dec 12, 2019
Pkgsrc changes: * Remove now integrated patch. Upstream changes: This release contains a number of security related fixes, contributed by X41 D-Sec. They have conducted a security audit of Unbound, funded by OSTIF. The previous CVEs fixed in 1.9.4 and 1.9.5 were the most important ones, less important fixes and side findings for more robust code have been included in this release, alongside a normal number of bug fixes. The sort order for included config snippets is now ascending by name, it previously was reversed due to an oversight. Most config snippets do not depend on the order as they add a stub or forward zone or some server: section config entries. Features: - The unbound.conf includes are sorted ascending, for include statements with a '*' from glob. - drop-tld.diff in contrib/ : adds option drop-tld: yesno that drops 2 label queries, to stop random floods. Apply with patch -p1 < contrib/drop-tld.diff and compile. From Saksham Manchanda (Secure64). Please note that we think this will drop DNSKEY and DS lookups for tlds and hence break DNSSEC lookups for downstream clients. - Add new configure option `--enable-fully-static` to enable full static build if requested; in relation to #91. - Add make distclean that removes everything configure produced, and make maintainer-clean that removes bison and flex output. - unbound-fuzzers.tar.bz2 in contrib/ : three programs for fuzzing, that are 1:1 replacements for unbound-fuzzme.c that gets created after applying the contrib/unbound-fuzzme.patch. They are contributed by Eric Sesterhenn from X41 D-Sec. Bug Fixes: - Fix that pkg-config is setup before --enable-systemd needs it. - Fix contrib/fastrpz.patch asprintf return value checks. - ipset module #28: log that an address is added, when verbosity high. - ipset: refactor long routine into three smaller ones. - updated Makefile dependencies. - squelch DNS over TLS errors 'ssl handshake failed crypto error' on low verbosity, they show on verbosity 3 (query details), because there is a high volume and the operator cannot do anything for the remote failure. Specifically filters the high volume errors. - Fix #71: fix openssl error squelch commit compilation error. - Fix #72: configure --with-syslog-facility=LOCAL0-7 with default LOG_DAEMON (as before) can set the syslog facility that the server uses to log messages. - Use explicit bzero for wiping clear buffer of hash in cachedb, reported by Eric Sesterhenn from X41 D-Sec. - Fix #78: Memory leak in outside_network.c. - Merge pull request #76 from Maryse47: Improvements and fixes for systemd unbound.service. - oss-fuzz badge on README.md. - Fix fix for #78 to also free service callback struct. - Fix for oss-fuzz build warning. - Fix wrong response ttl for prepended short CNAME ttls, this would create a wrong zero_ttl response count with serve-expired enabled. - Merge #80 from stasic: Improve wording in man page. - Merge #82 from hardfalcon: Downgrade CAP_NET_ADMIN to CAP_NET_RAW in unbound.service. - Merge #81 from Maryse47: Consistently use /dev/urandom instead of /dev/random in scripts and docs. - Merge #83 from Maryse47: contrib/unbound.service.in: do not fork into the background. - Merge #85 for #84 from sam-lunt: Add kill capability to systemd service file to fix that systemctl reload fails. - Merge #87 from hardfalcon: Fix contrib/unbound.service.in, Drop CAP_KILL, use + prefix for ExecReload= instead. - Merge #90 from vcunat: fix build with nettle-3.5. - Fix for CVE-2019-16866. That fix is also in 1.9.4. - Merge #86 from psquarejho: Added -b source address option to smallapp/unbound-anchor.c, from Lukas Wunner. - Add doxygen comments to unbound-anchor source address code, in #86. - Merge #97: manpage: Add missing word on unbound.conf, from Erethon. - Fix #99: Memory leak in ub_ctx (event_base will never be freed). - Fix #109: check number of arguments for stdin-pipes in unbound-control and fail if too many arguments. - Merge #102 from jrtc27: Add getentropy emulation for FreeBSD. - iana portlist updated. - contrib/fastrpz.patch updated to apply for current code. - fixes for splint cleanliness, long vs int in SSL set_mode. - In unbound-host use separate variable for get_option to please code checkers. - update to bison output of 3.4.1 in code repository. - Provide a prototype for compat malloc to remove compile warning. - Portable grep usage for reuseport configure test. - Check return type of HMAC_Init_ex for openssl 0.9.8. - gitignore .source tempfile used for compatible make. - Fix for CVE-2019-18934, shell execution in ipsecmod. This fix is also in 1.9.5. - Fix authzone printout buffer length check. - Fixes to please lint checks. - Fix Integer Overflow in Regional Allocator, reported by X41 D-Sec. - Fix Unchecked NULL Pointer in dns64_inform_super() and ipsecmod_new(), reported by X41 D-Sec. - Fix Out-of-bounds Read in rr_comment_dnskey(), reported by X41 D-Sec. - Fix Integer Overflows in Size Calculations, reported by X41 D-Sec. - Fix Integer Overflow to Buffer Overflow in sldns_str2wire_dname_buf_origin(), reported by X41 D-Sec. - Fix Out of Bounds Read in sldns_str2wire_dname(), reported by X41 D-Sec. - Fix Out of Bounds Write in sldns_bget_token_par(), reported by X41 D-Sec. - Fix Out of Bounds Read in rrinternal_get_owner(), reported by X41 D-Sec. - Fix Race Condition in autr_tp_create(), reported by X41 D-Sec. - Fix Shared Memory World Writeable, reported by X41 D-Sec. - Adjust unbound-control to make stats_shm a read only operation. - Fix Weak Entropy Used For Nettle, reported by X41 D-Sec. - Fix Randomness Error not Handled Properly, reported by X41 D-Sec. - Fix Out-of-Bounds Read in dname_valid(), reported by X41 D-Sec. - Fix Config Injection in create_unbound_ad_servers.sh, reported by X41 D-Sec. - Fix Local Memory Leak in cachedb_init(), reported by X41 D-Sec. - Fix Integer Underflow in Regional Allocator, reported by X41 D-Sec. - Upgrade compat/getentropy_linux.c to version 1.46 from OpenBSD. - Synchronize compat/getentropy_win.c with version 1.5 from OpenBSD, no changes but makes the file, comments, identical. - Upgrade compat/getentropy_solaris.c to version 1.13 from OpenBSD. - Upgrade compat/getentropy_osx.c to version 1.12 from OpenBSD. - Changes to compat/getentropy files for, no link to openssl if using nettle, and hence config.h for HAVE_NETTLE variable. compat definition of MAP_ANON, for older systems. ifdef stdint.h inclusion for older systems. ifdef sha2.h inclusion for older systems. - Fixed Compat Code Diverging from Upstream, reported by X41 D-Sec. - Fix compile with --enable-alloc-checks, reported by X41 D-Sec. - Fix Terminating Quotes not Written, reported by X41 D-Sec. - Fix Useless memset() in validator, reported by X41 D-Sec. - Fix Unrequired Checks, reported by X41 D-Sec. - Fix Enum Name not Used, reported by X41 D-Sec. - Fix NULL Pointer Dereference via Control Port, reported by X41 D-Sec. - Fix Bad Randomness in Seed, reported by X41 D-Sec. - Fix python examples/calc.py for eval, reported by X41 D-Sec. - Fix comments for doxygen in dns64. - Fix dname loop maximum, reported by Eric Sesterhenn from X41 D-Sec. - Fix compiler warnings. - Merge pull request #122 from he32: In tcp_callback_writer(), don't disable time-out when changing to read. - Merge pull request #124 from rmetrich: Changed log lock from 'quick' to 'basic' because this is an I/O lock. - Fix text around serial arithmatic used for RRSIG times to refer to correct RFC number. - Fix Assert Causing DoS in synth_cname(), reported by X41 D-Sec. - Fix similar code in auth_zone synth cname to add the extra checks. - Fix Assert Causing DoS in dname_pkt_copy(), reported by X41 D-Sec. - Fix OOB Read in sldns_wire2str_dname_scan(), reported by X41 D-Sec. - Fix Out of Bounds Write in sldns_str2wire_str_buf(), reported by X41 D-Sec. - Fix Out of Bounds Write in sldns_b64_pton(), fixed by check in sldns_str2wire_int16_data_buf(), reported by X41 D-Sec. - Fix Insufficient Handling of Compressed Names in dname_pkt_copy(), reported by X41 D-Sec. - Fix Out of Bound Write Compressed Names in rdata_copy(), reported by X41 D-Sec. - Fix Hang in sldns_wire2str_pkt_scan(), reported by X41 D-Sec. This further lowers the max to 256. - Fix snprintf() supports the n-specifier, reported by X41 D-Sec. - Fix Bad Indentation, in dnscrypt.c, reported by X41 D-Sec. - Fix Client NONCE Generation used for Server NONCE, reported by X41 D-Sec. - Fix compile error in dnscrypt. - Fix _vfixed not Used, removed from sbuffer code, reported by X41 D-Sec. - Fix Hardcoded Constant, reported by X41 D-Sec. - make depend - Fix lock type for memory purify log lock deletion. - Fix testbound for alloccheck runs, memory purify and lock checks. - update contrib/fastrpz.patch to apply more cleanly. - Fix Make Test Fails when Configured With --enable-alloc-nonregional, reported by X41 D-Sec. - Fix ipsecmod compile - Fix Makefile.in for ipset module compile, from Adi Prasaja.
jperkin
pushed a commit
that referenced
this issue
Dec 19, 2019
Upstream changes: v1.8.3 * Security fix for CVE-2018-19757 (#79), NULL pointer dereference problem, reported by @nluedtke and fixed by @knok (#91, #94). * Security fix for CVE-2018-19762 (#81), heap-based buffer overflow problem, reported by @nluedtke and fixed by @knok (#92). * Security fix for CVE-2018-19756 (#80), heap-based buffer over-read problem, reported by @nluedtke and fixed by @knok (#93). * Security fix for CVE-2018-19763 (#82), heap-based buffer over-read problem, reported by @nluedtke and fixed by @knok (#95). * Security fix for CVE-2018-19761, illegal address access, fixed by @knok (#96). * Security fix for CVE-2018-19759, heap-based buffer over-read problem, fixed by @knok (#98). * Security fix for CVE-2018-3753 (#83), infinite loop problem, reported by @cool-tomato and fixed by @knok (#99). * Security fix for CVE-2018-19759 (#102), heap-based buffer over-read that will cause a denial of service. reported and fixed by @YourButterfly. (#106) * Security fix for CVE-2019-19635 (#103), heap-based buffer overflow, reported and fixed by @YourButterfly. (#106) * Security fix for CVE-2019-19636 (#104) and CVE-2019-19637 (#105), integer overflow problem. reported and fixed by @YourButterfly. (#106) * gif loader: check LZW code size (Issue #75), Thanks to @hongxuchen. saitoha/libsixel@7808a06 * core: Fix a global-buffer-overflow problem (Issue #72), Thanks to @fgeek. saitoha/libsixel@c868b59 * core: Fix unexpected hangs/performance issues (Issue #76), Thanks to @hongxuchen. saitoha/libsixel@88561b7 saitoha/libsixel@2d3d9ff saitoha/libsixel@c9363cd
jperkin
pushed a commit
that referenced
this issue
Jan 3, 2020
1.12.0 - 2019-04-13 + General changes/additions o update gnulib to 91584ed6 + Lens changes/additions o Anaconda: new lens to process /etc/sysconfig/anaconda instead of Shellvars (Pino Toscano) (Issue #597) o DevfsRules: add lens for FreeBSD devfs.rules files o Dovecot: permit ! in block titles (Nathan Ward) (Issue #599) o Hostname: Allow creation of hostname when file is missing (David Farrell) (Issue #606) o Krb5: add more pkinit_* options (Issue #603) o Logrotate: fix missing recognition of double quoted filenames (Issue #611) o Multipath: accept values enclosed in quotes (Issue #583) o Nginx: support unix sockets as server address (Issue #618) o Nsswitch: add merge action (Issue #609) o Pam: accept continuation lines (Issue #590) o Puppetfile: allow symbols as (optional) values (Issue #619) allow comments in entries (Issue #620) o Rsyslog: support dynamic file paths (Issue #622) treat #!/+/- as comment (arnolda, PR #595) o Syslog: accept 'include' directive (Issue #486) o Semanage: new lens to process /etc/selinux/semanage.conf instead of Simplevars (Pino Toscano) (Issue #594) o Shellvars: allow and/or in @if conditions (#582) accept functions wrapped in round brackets, accept variables with a dash in their name, exclude csh/tcsh profile scripts (Pino Toscano) (Issue #600) accept variable as command (Issue #601) o Ssh: accept RekeyLimit (Issue #605) o Sshd: accept '=' to separate option names from their values (Emil Dragu, #587) o Sudoers: support 'always_query_group_plugin' flag (Steve Traylen, # 588) o Strongswan: parse lists. This is a backwards-incompatible change since list entries that were parsed into a single string are now split into a list of entries (Kaarle Ritvanen) o Toml: new lens to parse .toml files (PR #91) o Xorg: accept empty values for options (arnolda, PR #596)
jperkin
pushed a commit
that referenced
this issue
Mar 22, 2020
Update ruby-net-http-persistent to 3.1.0. === 3.1.0 2019-07-24 New features: * Support ruby 2.6 Net::HTTP#write_timeout=. Pull request #99 by Víctor Roldán Betancort. * Support setting TLS min/max version. Pull request #94 by Bart. Bug fixes: * Reduce potential for memory leak through Hash default proc bindings. Pull request #64 by Dominic Metzger. * Test proxy auto detection from no_proxy in ENV. Pull request #60 by HINOHARA Hiroshi. * Add missing timestamp for 3.0 release. Pull request #78 by Joe Van Dyk. * Support IPv6 URLs in proxy checks. Pull request #82 by Nicolás Sanguinetti. * Use Net::HTTPGenericRequest#method to check idempotence for improved compatibility. Pull request #83 by Fotos Georgiadis. * Run net-http-pipeline tests in travis. Pull request #86 by T.J. Schuck. * Correct +no_proxy+ support to override Net::HTTP proxy fallback. Pull request #88 by Jared Kauppila. * Mitigate memory leak when combined with faraday. Pull request #105 by Yohei Kitamura. * Set default connection pool size for Windows. Pull request #90 by Jared Kauppila. * Fix missing +name:+ argument in documentation. Pull requests #85 by T.J. Schuck, #84 by James White. * Fix memory leak from connection pooling. Pull request #97 by Aaron Patterson. * Update tests for minitest assert_equal deprecation. Pull request #92 by Olle Jonsson. * Fix typo in Net::HTTP::Persistent#pipeline. Pull request #91 by Kazuma Furuhashi. Other: * Added bundler hoe plugin. Pull request #103 by Michael Grosser. * Updated ruby versions in Travis CI. Pull request #93 by Olle Jonsson. Pull request #103 by Michael Grosser.
jperkin
pushed a commit
that referenced
this issue
May 10, 2020
Changelog: 8 April 2020: Wouter - Tag for 4.3.1rc2. 7 April 2020: Wouter - Merge #91 by gearnode: nsd-control-setup recreate certificates. The '-r' option recreates certificates. Without it it creates them if they do not exist, and does not modify them otherwise. 6 April 2020: Wouter - Merge #90 by phicoh: O_CLOEXEC should be FD_CLOEXEC. - Merge #92 by tonysgi: Fix typo. 2 April 2020: Wouter - Tag for 4.3.1rc1. 1 April 2020: Wouter - Fix for whitespace in minimal responses test for FreeBSD. 25 March 2020: Wouter - Merge #86 from noloader: Use precious variables for GREP, EGREP, SED, AWK, LEX and YACC. - For #86: Fix that programs loaded after CFLAGS and stuff is set, specifically the compiler, so that it can work if it needs special flags from that. Fix that lex only needs to support -i if actually defined, otherwise the output included in the source tarball can be used. - Merge #72 from noloader: Increase Travis testing coverage 23 March 2020: Wouter - Fix unterminated ifdef in nsd.h. - Fix unknown u_long in util.c for Issue #80 . 20 March 2020: Wouter - Merge #83 from noloader: Fix GNU HURD sched_setaffinity compile. - Fix #82: print error when system does not have setaffinity. - Fix #80: NetBSD and implicit declaration of reallocarray. - Fix for #80: Fix reallocarray test to define before include. - Fix for #80: Define alternatives for IFNAMSIZ if it does not exist. 19 March 2020: Wouter - Fix #76: cpuid typedef for Hurd, DragonflyBSD compile. - Fix #75: configure test for sched_setaffinity, and use cpuset_setaffinity otherwise. Also test for presence of sysconf. - Fix #74: GNU Hurd fix cast from pointer to integer of different size. - Fix for #74, #75: cpuset test for header contents and provide code. - Fix #78: Fix SO_SETFIB error on FreeBSD. 18 March 2020: Wouter - Fix #70: error: 'fd_set' undeclared. - Fix #71: error: 'for' loop initial declaration used outside C99 mode. - Fix to move declarations out of for loops in event test too. - Fix to move declarations out of for loops in popen3 test too. - Another fix to move declaration out of for loop for event test. - Fix to move declarations out of for loops in cutest regex display.
jperkin
pushed a commit
that referenced
this issue
Jun 7, 2020
Update ruby-jekyll-archives to 2.2.1. 2.2.1 (2019-03-23) Minor Enhancements * Make Archive subclass of Page (#67) * Don't limit slugs/title to strings (#41) * Enable incremental operation (#58) * Remove deprecated defs (#89) Development Fixes * Target Ruby 2.3 * Allow testing and using with Jekyll 4.x (#133) * Update Travis config and Gemfile for Ruby < 2.2.2 support (#68) * Consolidate History file to work with jekyllbot (#80) * Remove Travis test for Ruby 1.9 (#87) * Inherit Jekyll's rubocop config for consistency (#65) * Bump travis ruby versions (#91) * Fix Travis build error (#93) * Define path with dir (#105) * Appease Rubocop (#104) * update Rubocop and Travis config (#110) * Update .travis.yml (#111) * Modernize tests & linting (#114) * Test against Ruby 2.5 (#118) * Lint with rubocop-jekyll (#128) Documentation * Update Installation Guide (#116) * docs/configuration: GitHub table display was messed up (#96) * Small updates for consistency across document (#130)
jperkin
pushed a commit
that referenced
this issue
Sep 16, 2020
Pkgsrc changes: * Added a patch to cope with fromStatT on NetBSD * Added a patch to cope with docker client default settings (build also on NetBSD) Upstream changes: 1.5.3 (August 27th, 2020) NOTE: All security content from 1.5.2, 1.5.1, 1.4.5, 1.4.4, 1.3.9, 1.3.8, 1.2.6, and 1.2.5 has been made fully open source, and the git tags for 1.5.3, 1.4.6, 1.3.10, and 1.2.7 will build correctly for open source users. BUG FIXES: * auth/aws: Made header handling for IAM authentication more robust * secrets/ssh: Fixed a bug with role option for SSH signing algorithm to allow more than RSA signing ## 1.5.1 CHANGES: * pki: The tidy operation will now remove revoked certificates if the parameter `tidy_revoked_certs` is set to `true`. This will result in certificate entries being immediately removed, as opposed to awaiting until its NotAfter time. Note that this only affects certificates that have been already revoked. [[GH-9609](https://github.com/hashicorp/vault/pull/9609)] IMPROVEMENTS: * auth/jwt: Add support for fetching groups and user information from G Suite during authentication. [[GH-9574](https://github.com/hashicorp/vault/pull/9574)] * secrets/openldap: Add "ad" schema that allows the engine to correctly rotate AD passwords. [[GH-9740](https://github.com/hashicorp/vault/pull/9740)] * ui: Wrap TTL option on transit engine export action is updated to a new component. [[GH-9632](https://github.com/hashicorp/vault/pull/9632)] BUG FIXES: * secrets/gcp: Ensure that the IAM policy version is appropriately set after a roleset's bindings have changed. [[GH-9603](https://github.com/hashicorp/vault/pull/9603)] * replication (enterprise): Fix status API output incorrectly stating replication is in `idle` state. * core: Fix panic when printing over-long info fields at startup [[GH-9681](https://github.com/hashicorp/vault/pull/9681)] ## 1.5.0 ### July 21st, 2020 CHANGES: * storage/raft: The storage configuration now accepts a new `max_entry_size` config that will limit the total size in bytes of any entry committed via raft. It defaults to `"1048576"` (1MiB). [[GH-9027](https://github.com/hashicorp/vault/pull/9027)] * token: Token creation with custom token ID via `id` will no longer allow periods (`.`) as part of the input string. The final generated token value may contain periods, such as the `s.` prefix for service token indication. [[GH-8646](https://github.com/hashicorp/vault/pull/8646/files)] * token: Token renewals will now return token policies within the `token_policies` , identity policies within `identity_policies`, and the full policy set within `policies`. [[GH-8535](https://github.com/hashicorp/vault/pull/8535)] * cubbyhole: Reject reads and writes to an empty ("") path. [[GH-8971](https://github.com/hashicorp/vault/pull/8971)] * core: Remove the addition of newlines to parsed configuration when using integer/boolean values [[GH-8928](https://github.com/hashicorp/vault/pull/8928)] * audit: Token TTL and issue time are now provided in the auth portion of audit logs. [[GH-9091](https://github.com/hashicorp/vault/pull/9091)] IMPROVEMENTS: * audit: Replication status requests are no longer audited. [[GH-8877](https://github.com/hashicorp/vault/pull/8877)] * audit: Added mount_type field to requests and responses. [[GH-9167](https://github.com/hashicorp/vault/pull/9167)] * auth/aws: Add support for Web Identity credentials [[GH-7738](https://github.com/hashicorp/vault/pull/7738)] * auth/jwt: Support users that are members of more than 200 groups on Azure [[GH-120](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/120)] * auth/kubernetes: Allow disabling `iss` validation [[GH-91](https://github.com/hashicorp/vault-plugin-auth-kubernetes/pull/91)] * core: Add the Go version used to build a Vault binary to the server message output. [[GH-9078](https://github.com/hashicorp/vault/pull/9078)] * core: Added Password Policies for user-configurable password generation [[GH-8637](https://github.com/hashicorp/vault/pull/8637)] * core: New telemetry metrics covering token counts, token creation, KV secret counts, lease creation. [[GH-9239](https://github.com/hashicorp/vault/pull/9239)] [[GH-9250](https://github.com/hashicorp/vault/pull/9250)] [[GH-9244](https://github.com/hashicorp/vault/pull/9244)] [[GH-9052](https://github.com/hashicorp/vault/pull/9052)] * cli: Support reading TLS parameters from file for the `vault operator raft join` command. [[GH-9060](https://github.com/hashicorp/vault/pull/9060)] * plugin: Add SDK method, `Sys.ReloadPlugin`, and CLI command, `vault plugin reload`, for reloading plugins. [[GH-8777](https://github.com/hashicorp/vault/pull/8777)] * plugin (enterprise): Add a scope field to plugin reload, which when global, reloads the plugin anywhere in a cluster. [[GH-9347](https://github.com/hashicorp/vault/pull/9347)] * sdk/framework: Support accepting TypeFloat parameters over the API [[GH-8923](https://github.com/hashicorp/vault/pull/8923)] * secrets/aws: Add iam_groups parameter to role create/update [[GH-8811](https://github.com/hashicorp/vault/pull/8811)] * secrets/database: Add static role rotation for MongoDB Atlas database plugin [[GH-11](https://github.com/hashicorp/vault-plugin-database-mongodbatlas/pull/11)] * secrets/database: Add static role rotation for MSSQL database plugin [[GH-9062](https://github.com/hashicorp/vault/pull/9062)] * secrets/database: Allow InfluxDB to use insecure TLS without cert bundle [[GH-8778](https://github.com/hashicorp/vault/pull/8778)] * secrets/gcp: Support BigQuery dataset ACLs in absence of IAM endpoints [[GH-78](https://github.com/hashicorp/vault-plugin-secrets-gcp/pull/78)] * secrets/pki: Allow 3072-bit RSA keys [[GH-8343](https://github.com/hashicorp/vault/pull/8343)] * secrets/ssh: Add a CA-mode role option to specify signing algorithm [[GH-9096](https://github.com/hashicorp/vault/pull/9096)] * secrets/transit: Transit requests that make use of keys now include a new field `key_version` in their responses [[GH-8775](https://github.com/hashicorp/vault/pull/8775)] * secrets/transit: Improving transit batch encrypt and decrypt latencies [[GH-9100](https://github.com/hashicorp/vault/pull/9100)] * sentinel: Add a sentinel config section, and "additional_enabled_modules", a list of Sentinel modules that may be imported in addition to the defaults. * ui: Update TTL picker styling on SSH secret engine [[GH-8891](https://github.com/hashicorp/vault/pull/8891)] * ui: Only render the JWT input field of the Vault login form on mounts configured for JWT auth [[GH-8952](https://github.com/hashicorp/vault/pull/8952)] * cli: Add a new subcommand, `vault monitor`, for tailing server logs in the console. [[GH-8477](https://github.com/hashicorp/vault/pull/8477)] * ui: Add replication dashboards. Improve replication management workflows. [[GH-8705]](https://github.com/hashicorp/vault/pull/8705). BUG FIXES: * agent: Restart template server when it shuts down [[GH-9200](https://github.com/hashicorp/vault/pull/9200)] * auth/oci: Fix issue where users of the Oracle Cloud Infrastructure (OCI) auth method could not authenticate when the plugin backend was mounted at a non-default path. [[GH-7](https://github.com/hashicorp/vault-plugin-auth-oci/pull/7)] * core: Extend replicated cubbyhole fix in 1.4.0 to cover case where a performance primary is also a DR primary [[GH-9148](https://github.com/hashicorp/vault/pull/9148)] * secrets/aws: Fix issue where performance standbys weren't able to generate STS credentials after an IAM access key rotation in AWS and root IAM credential update in Vault [[GH-9186](https://github.com/hashicorp/vault/pull/9186)] * secrets/database: Fix issue where rotating root database credentials while Vault's storage backend is unavailable causes Vault to lose access to the database [[GH-8782](https://github.com/hashicorp/vault/pull/8782)] * secrets/database: Fix issue that prevents performance standbys from connecting to databases after a root credential rotation [[GH-9129](https://github.com/hashicorp/vault/pull/9129)] * secrets/gcp: Fix issue were updates were not being applied to the `token_scopes` of a roleset. [[GH-90](https://github.com/hashicorp/vault-plugin-secrets-gcp/pull/90)] * secrets/kv: Return the value of delete_version_after when reading kv/config, even if it is set to the default. [[GH-42](https://github.com/hashicorp/vault-plugin-secrets-kv/pull/42)] * ui: Add Toggle component into core addon so it is available in KMIP and other Ember Engines. [[GH-8913]](https://github.com/hashicorp/vault/pull/8913) * ui: Disallow max versions value of large than 9999999999999999 on kv2 secrets engine. [[GH-9242](https://github.com/hashicorp/vault/pull/9242)] ## 1.4.3 (TBD) IMPROVEMENTS: * auth/aws: Add support for Web Identity credentials [[GH-9251](https://github.com/hashicorp/vault/pull/9251)] * core: Add the Go version used to build a Vault binary to the server message output. [[GH-9078](https://github.com/hashicorp/vault/pull/9078)] * secrets/database: Add static role rotation for MongoDB Atlas database plugin [[GH-9311](https://github.com/hashicorp/vault/pull/9311)] * ui: Link to the Vault Changelog in the UI footer [[GH-9216](https://github.com/hashicorp/vault/pull/9216)] BUG FIXES: * auth/oci: Fix issue where users of the Oracle Cloud Infrastructure (OCI) auth method could not authenticate when the plugin backend was mounted at a non-default path. [[GH-9278](https://github.com/hashicorp/vault/pull/9278)] * replication: The issue causing cubbyholes in namespaces on performance secondaries to not work, which was fixed in 1.4.0, was still an issue when the primary was both a performance primary and DR primary. * secrets/aws: Fix issue where performance standbys weren't able to generate STS credentials after an IAM access key rotation in AWS and root IAM credential update in Vault [[GH-9207](https://github.com/hashicorp/vault/pull/9207)] * secrets/database: Fix issue that prevents performance standbys from connecting to databases after a root credential rotation [[GH-9208](https://github.com/hashicorp/vault/pull/9208)] * secrets/gcp: Fix issue were updates were not being applied to the `token_scopes` of a roleset. [[GH-9277](https://github.com/hashicorp/vault/pull/9277)] ## 1.4.2 (May 21st, 2020) SECURITY: * core: Proxy environment variables are now redacted before being logged, in case the URLs include a username:password. This vulnerability, CVE-2020-13223, is fixed in 1.3.6 and 1.4.2, but affects 1.4.0 and 1.4.1, as well as older versions of Vault [[GH-9022](https://github.com/hashicorp/vault/pull/9022)] * secrets/gcp: Fix a regression in 1.4.0 where the system TTLs were being used instead of the configured backend TTLs for dynamic service accounts. This vulnerability is CVE-2020-12757. [[GH-85](https://github.com/hashicorp/vault-plugin-secrets-gcp/pull/85)] IMPROVEMENTS: * storage/raft: The storage stanza now accepts `leader_ca_cert_file`, `leader_client_cert_file`, and `leader_client_key_file` parameters to read and parse TLS certificate information from paths on disk. Existing non-path based parameters will continue to work, but their values will need to be provided as a single-line string with newlines delimited by `\n`. [[GH-8894](https://github.com/hashicorp/vault/pull/8894)] * storage/raft: The `vault status` CLI command and the `sys/leader` API now contain the committed and applied raft indexes. [[GH-9011](https://github.com/hashicorp/vault/pull/9011)] BUG FIXES: * auth/aws: Fix token renewal issues caused by the metadata changes in 1.4.1 [[GH-8991](https://github.com/hashicorp/vault/pull/8991)] * auth/ldap: Fix 1.4.0 regression that could result in auth failures when LDAP auth config includes upndomain. [[GH-9041](https://github.com/hashicorp/vault/pull/9041)] * secrets/ad: Forward rotation requests from standbys to active clusters [[GH-66](https://github.com/hashicorp/vault-plugin-secrets-ad/pull/66)] * secrets/database: Prevent generation of usernames that are not allowed by the MongoDB Atlas API [[GH-9](https://github.com/hashicorp/vault-plugin-database-mongodbatlas/pull/9)] * secrets/database: Return an error if a manual rotation of static account credentials fails [[GH-9035](https://github.com/hashicorp/vault/pull/9035)] * secrets/openldap: Forward all rotation requests from standbys to active clusters [[GH-9028](https://github.com/hashicorp/vault/pull/9028)] * secrets/transform (enterprise): Fix panic that could occur when accessing cached template entries, such as a requests that accessed templates directly or indirectly from a performance standby node. * serviceregistration: Fix a regression for Consul service registration that ignored using the listener address as the redirect address unless api_addr was provided. It now properly uses the same redirect address as the one used by Vault's Core object. [[GH-8976](https://github.com/hashicorp/vault/pull/8976)] * storage/raft: Advertise the configured cluster address to the rest of the nodes in the raft cluster. This fixes an issue where a node advertising 0.0.0.0 is not using a unique hostname. [[GH-9008](https://github.com/hashicorp/vault/pull/9008)] * storage/raft: Fix panic when multiple nodes attempt to join the cluster at once. [[GH-9008](https://github.com/hashicorp/vault/pull/9008)] * sys: The path provided in `sys/internal/ui/mounts/:path` is now namespace-aware. This fixes an issue with `vault kv` subcommands that had namespaces provided in the path returning permission denied all the time. [[GH-8962](https://github.com/hashicorp/vault/pull/8962)] * ui: Fix snowman that appears when namespaces have more than one period [[GH-8910](https://github.com/hashicorp/vault/pull/8910)] ## 1.4.1 (April 30th, 2020) CHANGES: * auth/aws: The default set of metadata fields added in 1.4.1 has been changed to `account_id` and `auth_type` [[GH-8783](https://github.com/hashicorp/vault/pull/8783)] * storage/raft: Disallow `ha_storage` to be specified if `raft` is set as the `storage` type. [[GH-8707](https://github.com/hashicorp/vault/pull/8707)] IMPROVEMENTS: * auth/aws: The set of metadata stored during login is now configurable [[GH-8783](https://github.com/hashicorp/vault/pull/8783)] * auth/aws: Improve region selection to avoid errors seen if the account hasn't enabled some newer AWS regions [[GH-8679](https://github.com/hashicorp/vault/pull/8679)] * auth/azure: Enable login from Azure VMs with user-assigned identities [[GH-33](https://github.com/hashicorp/vault-plugin-auth-azure/pull/33)] * auth/gcp: The set of metadata stored during login is now configurable [[GH-92](https://github.com/hashicorp/vault-plugin-auth-gcp/pull/92)] * auth/gcp: The type of alias name used during login is now configurable [[GH-95](https://github.com/hashicorp/vault-plugin-auth-gcp/pull/95)] * auth/ldap: Improve error messages during LDAP operation failures [[GH-8740](https://github.com/hashicorp/vault/pull/8740)] * identity: Add a batch delete API for identity entities [[GH-8785]](https://github.com/hashicorp/vault/pull/8785) * identity: Improve performance of logins when no group updates are needed [[GH-8795]](https://github.com/hashicorp/vault/pull/8795) * metrics: Add `vault.identity.num_entities` metric [[GH-8816]](https://github.com/hashicorp/vault/pull/8816) * secrets/kv: Allow `delete-version-after` to be reset to 0 via the CLI [[GH-8635](https://github.com/hashicorp/vault/pull/8635)] * secrets/rabbitmq: Improve error handling and reporting [[GH-8619](https://github.com/hashicorp/vault/pull/8619)] * ui: Provide One Time Password during Operation Token generation process [[GH-8630]](https://github.com/hashicorp/vault/pull/8630) BUG FIXES: * auth/okta: Fix MFA regression (introduced in [GH-8143](https://github.com/hashicorp/vault/pull/8143)) from 1.4.0 [[GH-8807](https://github.com/hashicorp/vault/pull/8807)] * auth/userpass: Fix upgrade value for `token_bound_cidrs` being ignored due to incorrect key provided [[GH-8826](https://github.com/hashicorp/vault/pull/8826/files)] * config/seal: Fix segfault when seal block is removed [[GH-8517](https://github.com/hashicorp/vault/pull/8517)] * core: Fix an issue where users attempting to build Vault could receive Go module checksum errors [[GH-8770](https://github.com/hashicorp/vault/pull/8770)] * core: Fix blocked requests if a SIGHUP is issued during a long-running request has the state lock held. Also fixes deadlock that can happen if `vault debug` with the config target is ran during this time. [[GH-8755](https://github.com/hashicorp/vault/pull/8755)] * core: Always rewrite the .vault-token file as part of a `vault login` to ensure permissions and ownership are set correctly [[GH-8867](https://github.com/hashicorp/vault/pull/8867)] * database/mongodb: Fix context deadline error that may result due to retry attempts on failed commands [[GH-8863](https://github.com/hashicorp/vault/pull/8863)] * http: Fix superflous call messages from the http package on logs caused by missing returns after `respondError` calls [[GH-8796](https://github.com/hashicorp/vault/pull/8796)] * namespace (enterprise): Fix namespace listing to return `key_info` when a scoping namespace is also provided. * seal/gcpkms: Fix panic that could occur if all seal parameters were provided via environment variables [[GH-8840](https://github.com/hashicorp/vault/pull/8840)] * storage/raft: Fix memory allocation and incorrect metadata tracking issues with snapshots [[GH-8793](https://github.com/hashicorp/vault/pull/8793)] * storage/raft: Fix panic that could occur if `disable_clustering` was set to true on Raft storage cluster [[GH-8784](https://github.com/hashicorp/vault/pull/8784)] * storage/raft: Handle errors returned from the API during snapshot operations [[GH-8861](https://github.com/hashicorp/vault/pull/8861)] * sys/wrapping: Allow unwrapping of wrapping tokens which contain nil data [[GH-8714](https://github.com/hashicorp/vault/pull/8714)] ## 1.4.0 (April 7th, 2020) CHANGES: * cli: The raft configuration command has been renamed to list-peers to avoid confusion. FEATURES: * **Kerberos Authentication**: Vault now supports Kerberos authentication using a SPNEGO token. Login can be performed using the Vault CLI, API, or agent. * **Kubernetes Service Discovery**: A new Kubernetes service discovery feature where, if configured, Vault will tag Vault pods with their current health status. For more, see [#8249](https://github.com/hashicorp/vault/pull/8249). * **MongoDB Atlas Secrets**: Vault can now generate dynamic credentials for both MongoDB Atlas databases as well as the [Atlas programmatic interface] (https://docs.atlas.mongodb.com/tutorial/manage-programmatic-access/). * **OpenLDAP Secrets Engine**: We now support password management of existing OpenLDAP user entries. For more, see [#8360] (https://github.com/hashicorp/vault/pull/8360/). * **Redshift Database Secrets Engine**: The database secrets engine now supports static and dynamic secrets for the Amazon Web Services (AWS) Redshift service. * **Service Registration Config**: A newly introduced `service_registration` configuration stanza, that allows for service registration to be configured separately from the storage backend. For more, see [#7887] (https://github.com/hashicorp/vault/pull/7887/). * **Transform Secrets Engine (Enterprise)**: A new secrets engine that handles secure data transformation and tokenization against provided input value. * **Integrated Storage**: Promoted out of beta and into general availability for both open-source and enterprise workloads. IMPROVEMENTS: * agent: add option to force the use of the auth-auth token, and ignore the Vault token in the request [[GH-8101](https://github.com/hashicorp/vault/pull/8101)] * api: Restore and fix DNS SRV Lookup [[GH-8520](https://github.com/hashicorp/vault/pull/8520)] * audit: HMAC http_raw_body in audit log; this ensures that large authenticated Prometheus metrics responses get replaced with short HMAC values [[GH-8130](https://github.com/hashicorp/vault/pull/8130)] * audit: Generate-root, generate-recovery-token, and generate-dr-operation-token requests and responses are now audited. [[GH-8301](https://github.com/hashicorp/vault/pull/8301)] * auth/aws: Reduce the number of simultaneous STS client credentials needed [[GH-8161](https://github.com/hashicorp/vault/pull/8161)] * auth/azure: subscription ID, resource group, vm and vmss names are now stored in alias metadata [[GH-30](https://github.com/hashicorp/vault-plugin-auth-azure/pull/30)] * auth/jwt: Additional OIDC callback parameters available for CLI logins [[GH-80](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/80) & [GH-86](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/86)] * auth/jwt: Bound claims may be optionally configured using globs [[GH-89](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/89)] * auth/jwt: Timeout during OIDC CLI login if process doesn't complete within 2 minutes [[GH-97](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/97)] * auth/jwt: Add support for the `form_post` response mode [[GH-98](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/98)] * auth/jwt: add optional client_nonce to authorization flow [[GH-104](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/104)] * auth/okta: Upgrade okta sdk lib, which should improve handling of groups [[GH-8143](https://github.com/hashicorp/vault/pull/8143)] * aws: Add support for v2 of the instance metadata service (see [issue 7924](https://github.com/hashicorp/vault/issues/7924) for all linked PRs) * core: Separate out service discovery interface from storage interface to allow new types of service discovery not coupled to storage [[GH-7887](https://github.com/hashicorp/vault/pull/7887)] * core: Add support for telemetry option `metrics_prefix` [[GH-8340](https://github.com/hashicorp/vault/pull/8340)] * core: Entropy Augmentation can now be used with AWS KMS and Vault Transit seals * core: Allow tls_min_version to be set to TLS 1.3 [[GH-8305](https://github.com/hashicorp/vault/pull/8305)] * cli: Incorrect TLS configuration will now correctly fail [[GH-8025](https://github.com/hashicorp/vault/pull/8025)] * identity: Allow specifying a custom `client_id` for identity tokens [[GH-8165](https://github.com/hashicorp/vault/pull/8165)] * metrics/prometheus: improve performance with high volume of metrics updates [[GH-8507](https://github.com/hashicorp/vault/pull/8507)] * replication (enterprise): Fix race condition causing clusters with high throughput writes to sometimes fail to enter streaming-wal mode * replication (enterprise): Secondary clusters can now perform an extra gRPC call to all nodes in a primary cluster in an attempt to resolve the active node's address * replication (enterprise): The replication status API now outputs `last_performance_wal`, `last_dr_wal`, and `connection_state` values * replication (enterprise): DR secondary clusters can now be recovered by the `replication/dr/secondary/recover` API * replication (enterprise): We now allow for an alternate means to create a Disaster Recovery token, by using a batch token that is created with an ACL that allows for access to one or more of the DR endpoints. * secrets/database/mongodb: Switched internal MongoDB driver to mongo-driver [[GH-8140](https://github.com/hashicorp/vault/pull/8140)] * secrets/database/mongodb: Add support for x509 client authorization to MongoDB [[GH-8329](https://github.com/hashicorp/vault/pull/8329)] * secrets/database/oracle: Add support for static credential rotation [[GH-26](https://github.com/hashicorp/vault-plugin-database-oracle/pull/26)] * secrets/consul: Add support to specify TLS options per Consul backend [[GH-4800](https://github.com/hashicorp/vault/pull/4800)] * secrets/gcp: Allow specifying the TTL for a service key [[GH-54](https://github.com/hashicorp/vault-plugin-secrets-gcp/pull/54)] * secrets/gcp: Add support for rotating root keys [[GH-53](https://github.com/hashicorp/vault-plugin-secrets-gcp/pull/53)] * secrets/gcp: Handle version 3 policies for Resource Manager IAM requests [[GH-77](https://github.com/hashicorp/vault-plugin-secrets-gcp/pull/77) * secrets/nomad: Add support to specify TLS options per Nomad backend [[GH-8083](https://github.com/hashicorp/vault/pull/8083)] * secrets/ssh: Allowed users can now be templated with identity information [[GH-7548](https://github.com/hashicorp/vault/pull/7548)] * secrets/transit: Adding RSA3072 key support [[GH-8151](https://github.com/hashicorp/vault/pull/8151)] * storage/consul: Vault returns now a more descriptive error message when only a client cert or a client key has been provided [[GH-4930]](https://github.com/hashicorp/vault/pull/8084) * storage/raft: Nodes in the raft cluster can all be given possible leader addresses for them to continuously try and join one of them, thus automating the process of join to a greater extent [[GH-7856](https://github.com/hashicorp/vault/pull/7856)] * storage/raft: Fix a potential deadlock that could occur on leadership transition [[GH-8547](https://github.com/hashicorp/vault/pull/8547)] * storage/raft: Refresh TLS keyring on snapshot restore [[GH-8546](https://github.com/hashicorp/vault/pull/8546)] * storage/etcd: Bumped etcd client API SDK [[GH-7931](https://github.com/hashicorp/vault/pull/7931) & [GH-4961](https://github.com/hashicorp/vault/pull/4961) & [GH-4349](https://github.com/hashicorp/vault/pull/4349) & [GH-7582](https://github.com/hashicorp/vault/pull/7582)] * ui: Make Transit Key actions more prominent [[GH-8304](https://github.com/hashicorp/vault/pull/8304)] * ui: Add Core Usage Metrics [[GH-8347](https://github.com/hashicorp/vault/pull/8347)] * ui: Add refresh Namespace list on the Namespace dropdown, and redesign of Namespace dropdown menu [[GH-8442](https://github.com/hashicorp/vault/pull/8442)] * ui: Update transit actions to codeblocks & automatically encode plaintext unless indicated [[GH-8462](https://github.com/hashicorp/vault/pull/8462)] * ui: Display the results of transit key actions in a modal window [[GH-8462](https://github.com/hashicorp/vault/pull/8575)] * ui: Transit key version styling updates & ability to copy key from dropdown [[GH-8480](https://github.com/hashicorp/vault/pull/8480)] BUG FIXES: * agent: Fix issue where TLS options are ignored for agent template feature [[GH-7889](https://github.com/hashicorp/vault/pull/7889)] * auth/jwt: Use lower case role names for `default_role` to match the `role` case convention [[GH-100](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/100)] * auth/ldap: Fix a bug where the UPNDOMAIN parameter was wrongly used to lookup the group membership of the given user [[GH-6325]](https://github.com/hashicorp/vault/pull/8333) * cli: Support autocompletion for nested mounts [[GH-8303](https://github.com/hashicorp/vault/pull/8303)] * cli: Fix CLI namespace autocompletion [[GH-8315](https://github.com/hashicorp/vault/pull/8315)] * identity: Fix incorrect caching of identity token JWKS responses [[GH-8412](https://github.com/hashicorp/vault/pull/8412)] * metrics/stackdriver: Fix issue that prevents the stackdriver metrics library to create unnecessary stackdriver descriptors [[GH-8073](https://github.com/hashicorp/vault/pull/8073)] * replication: Fix issue causing cubbyholes in namespaces on performance secondaries to not work. * replication (enterprise): Unmounting a dynamic secrets backend could sometimes lead to replication errors. Change the order of operations to prevent that. * seal (enterprise): Fix seal migration when transactional seal wrap backend is in use. * secrets/database/influxdb: Fix potential panic if connection to the InfluxDB database cannot be established [[GH-8282](https://github.com/hashicorp/vault/pull/8282)] * secrets/database/mysql: Ensures default static credential rotation statements are used [[GH-8240](https://github.com/hashicorp/vault/pull/8240)] * secrets/database/mysql: Fix inconsistent query parameter names: {{name}} or {{username}} for different queries. Now it allows for either for backwards compatibility [[GH-8240](https://github.com/hashicorp/vault/pull/8240)] * secrets/database/postgres: Fix inconsistent query parameter names: {{name}} or {{username}} for different queries. Now it allows for either for backwards compatibility [[GH-8240](https://github.com/hashicorp/vault/pull/8240)] * secrets/pki: Support FQDNs in DNS Name [[GH-8288](https://github.com/hashicorp/vault/pull/8288)] * storage/raft: Allow seal migration to be performed on Vault clusters using raft storage [[GH-8103](https://github.com/hashicorp/vault/pull/8103)] * telemetry: Prometheus requests on standby nodes will now return an error instead of forwarding the request to the active node [[GH-8280](https://github.com/hashicorp/vault/pull/8280)] * ui: Fix broken popup menu on the transit secrets list page [[GH-8348](https://github.com/hashicorp/vault/pull/8348)] * ui: Update headless Chrome flag to fix `yarn run test:oss` [[GH-8035](https://github.com/hashicorp/vault/pull/8035)] * ui: Update CLI to accept empty strings as param value to reset previously-set values * ui: Fix bug where error states don't clear when moving between action tabs on Transit [[GH-8354](https://github.com/hashicorp/vault/pull/8354)] ## 1.3.6 (May 21st, 2020) SECURITY: * core: proxy environment variables are now redacted before being logged, in case the URLs include a username:password. This vulnerability, CVE-2020-13223, is fixed in 1.3.6 and 1.4.2, but affects 1.4 and 1.4.1, as well as older versions of Vault [[GH-9022](https://github.com/hashicorp/vault/pull/9022) BUG FIXES: * auth/aws: Fix token renewal issues caused by the metadata changes in 1.3.5 [[GH-8991](https://github.com/hashicorp/vault/pull/8991)] * replication: Fix mount filter bug that allowed replication filters to hide local mounts on a performance secondary ## 1.3.5 (April 28th, 2020) CHANGES: * auth/aws: The default set of metadata fields added in 1.3.2 has been changed to `account_id` and `auth_type` [[GH-8783](https://github.com/hashicorp/vault/pull/8783)] IMPROVEMENTS: * auth/aws: The set of metadata stored during login is now configurable [[GH-8783](https://github.com/hashicorp/vault/pull/8783)] ## 1.3.4 (March 19th, 2020) SECURITY: * A vulnerability was identified in Vault and Vault Enterprise such that, under certain circumstances, an Entity's Group membership may inadvertently include Groups the Entity no longer has permissions to. This vulnerability, CVE-2020-10660, affects Vault and Vault Enterprise versions 0.9.0 and newer, and is fixed in 1.3.4. [[GH-8606](https://github.com/hashicorp/vault/pull/8606)] * A vulnerability was identified in Vault Enterprise such that, under certain circumstances, existing nested-path policies may give access to Namespaces created after-the-fact. This vulnerability, CVE-2020-10661, affects Vault Enterprise versions 0.11 and newer, and is fixed in 1.3.4. ## 1.3.3 (March 5th, 2020) BUG FIXES: * approle: Fix excessive locking during tidy, which could potentially block new approle logins for long enough to cause an outage [[GH-8418](https://github.com/hashicorp/vault/pull/8418)] * cli: Fix issue where Raft snapshots from standby nodes created an empty backup file [[GH-8097](https://github.com/hashicorp/vault/pull/8097)] * identity: Fix incorrect caching of identity token JWKS responses [[GH-8412](https://github.com/hashicorp/vault/pull/8412)] * kmip: role read now returns tls_client_ttl * kmip: fix panic when templateattr not provided in rekey request * secrets/database/influxdb: Fix potential panic if connection to the InfluxDB database cannot be established [[GH-8282](https://github.com/hashicorp/vault/pull/8282)] * storage/mysql: Fix potential crash when using MySQL as coordination for high availability [[GH-8300](https://github.com/hashicorp/vault/pull/8300)] * storage/raft: Fix potential crash when using Raft as coordination for high availability [[GH-8356](https://github.com/hashicorp/vault/pull/8356)] * ui: Fix missing License menu item [[GH-8230](https://github.com/hashicorp/vault/pull/8230)] * ui: Fix bug where default auth method on login is defaulted to auth method that is listing-visibility=unauth instead of "other" [[GH-8218](https://github.com/hashicorp/vault/pull/8218)] * ui: Fix bug where KMIP details were not shown in the UI Wizard [[GH-8255](https://github.com/hashicorp/vault/pull/8255)] * ui: Show Error messages on Auth Configuration page when you hit permission errors [[GH-8500](https://github.com/hashicorp/vault/pull/8500)] * ui: Remove duplicate form inputs for the GitHub config [[GH-8519](https://github.com/hashicorp/vault/pull/8519)] * ui: Correct HMAC capitalization [[GH-8528](https://github.com/hashicorp/vault/pull/8528)] * ui: Fix danger message in DR [[GH-8555](https://github.com/hashicorp/vault/pull/8555)] * ui: Fix certificate field for LDAP config [[GH-8573](https://github.com/hashicorp/vault/pull/8573)] ## 1.3.2 (January 22nd, 2020) SECURITY: * When deleting a namespace on Vault Enterprise, in certain circumstances, the deletion process will fail to revoke dynamic secrets for a mount in that namespace. This will leave any dynamic secrets in remote systems alive and will fail to clean them up. This vulnerability, CVE-2020-7220, affects Vault Enterprise 0.11.0 and newer. IMPROVEMENTS: * auth/aws: Add aws metadata to identity alias [[GH-7985](https://github.com/hashicorp/vault/pull/7985)] * auth/kubernetes: Allow both names and namespaces to be set to "*" [[GH-78](https://github.com/hashicorp/vault-plugin-auth-kubernetes/pull/78)] BUG FIXES: * auth/azure: Fix Azure compute client to use correct base URL [[GH-8072](https://github.com/hashicorp/vault/pull/8072)] * auth/ldap: Fix renewal of tokens without configured policies that are generated by an LDAP login [[GH-8072](https://github.com/hashicorp/vault/pull/8072)] * auth/okta: Fix renewal of tokens without configured policies that are generated by an Okta login [[GH-8072](https://github.com/hashicorp/vault/pull/8072)] * core: Fix seal migration error when attempting to migrate from auto unseal to shamir [[GH-8172](https://github.com/hashicorp/vault/pull/8172)] * core: Fix seal migration config issue when migrating from auto unseal to auto unseal [[GH-8172](https://github.com/hashicorp/vault/pull/8172)] * plugin: Fix issue where a plugin unwrap request potentially used an expired token [[GH-8058](https://github.com/hashicorp/vault/pull/8058)] * replication: Fix issue where a forwarded request from a performance/standby node could run into a timeout * secrets/database: Fix issue where a manual static role rotation could potentially panic [[GH-8098](https://github.com/hashicorp/vault/pull/8098)] * secrets/database: Fix issue where a manual root credential rotation request is not forwarded to the primary node [[GH-8125](https://github.com/hashicorp/vault/pull/8125)] * secrets/database: Fix issue where a manual static role rotation request is not forwarded to the primary node [[GH-8126](https://github.com/hashicorp/vault/pull/8126)] * secrets/database/mysql: Fix issue where special characters for a MySQL password were encoded [[GH-8040](https://github.com/hashicorp/vault/pull/8040)] * ui: Fix deleting namespaces [[GH-8132](https://github.com/hashicorp/vault/pull/8132)] * ui: Fix Error handler on kv-secret edit and kv-secret view pages [[GH-8133](https://github.com/hashicorp/vault/pull/8133)] * ui: Fix OIDC callback to check storage [[GH-7929](https://github.com/hashicorp/vault/pull/7929)]. * ui: Change `.box-radio` height to min-height to prevent overflow issues [[GH-8065](https://github.com/hashicorp/vault/pull/8065)] ## 1.3.1 (December 18th, 2019) IMPROVEMENTS: * agent: Add ability to set `exit-after-auth` via the CLI [[GH-7920](https://github.com/hashicorp/vault/pull/7920)] * auth/ldap: Add a `request_timeout` configuration option to prevent connection requests from hanging [[GH-7909](https://github.com/hashicorp/vault/pull/7909)] * auth/kubernetes: Add audience to tokenreview API request for Kube deployments where issuer is not Kube. [[GH-74](https://github.com/hashicorp/vault/pull/74)] * secrets/ad: Add a `request_timeout` configuration option to prevent connection requests from hanging [[GH-59](https://github.com/hashicorp/vault-plugin-secrets-ad/pull/59)] * storage/postgresql: Add support for setting `connection_url` from enviornment variable `VAULT_PG_CONNECTION_URL` [[GH-7937](https://github.com/hashicorp/vault/pull/7937)] * telemetry: Add `enable_hostname_label` option to telemetry stanza [[GH-7902](https://github.com/hashicorp/vault/pull/7902)] * telemetry: Add accept header check for prometheus mime type [[GH-7958](https://github.com/hashicorp/vault/pull/7958)] BUG FIXES: * agent: Fix issue where Agent exits before all templates are rendered when using and `exit_after_auth` [[GH-7899](https://github.com/hashicorp/vault/pull/7899)] * auth/aws: Fixes region-related issues when using a custom `sts_endpoint` by adding a `sts_region` parameter [[GH-7922](https://github.com/hashicorp/vault/pull/7922)] * auth/token: Fix panic when getting batch tokens on a performance standby from a role that does not exist [[GH-8027](https://github.com/hashicorp/vault/pull/8027)] * core: Improve warning message for lease TTLs [[GH-7901](https://github.com/hashicorp/vault/pull/7901)] * identity: Fix identity token panic during invalidation [[GH-8043](https://github.com/hashicorp/vault/pull/8043)] * plugin: Fix a panic that could occur if a mount/auth entry was unable to mount the plugin backend and a request that required the system view to be retrieved was made [[GH-7991](https://github.com/hashicorp/vault/pull/7991)] * replication: Add `generate-public-key` endpoint to list of allowed endpoints for existing DR secondaries * secrets/gcp: Fix panic if bindings aren't provided in roleset create/update. [[GH-56](https://github.com/hashicorp/vault-plugin-secrets-gcp/pull/56)] * secrets/pki: Prevent generating certificate on performance standby when storing [[GH-7904](https://github.com/hashicorp/vault/pull/7904)] * secrets/transit: Prevent restoring keys to new names that are sub paths [[GH-7998](https://github.com/hashicorp/vault/pull/7998)] * storage/s3: Fix a bug in configurable S3 paths that was preventing use of S3 as a source during `operator migrate` operations [[GH-7966](https://github.com/hashicorp/vault/pull/7966)] * ui: Ensure secrets with a period in their key can be viewed and copied [[GH-7926](https://github.com/hashicorp/vault/pull/7926)] * ui: Fix status menu after demotion [[GH-7997](https://github.com/hashicorp/vault/pull/7997)] * ui: Fix select dropdowns in Safari when running Mojave [[GH-8023](https://github.com/hashicorp/vault/pull/8023)] ## 1.3 (November 14th, 2019) CHANGES: * Secondary cluster activation: There has been a change to the way that activating performance and DR secondary clusters works when using public keys for encryption of the parameters rather than a wrapping token. This flow was experimental and never documented. It is now officially supported and documented but is not backwards compatible with older Vault releases. * Cluster cipher suites: On its cluster port, Vault will no longer advertise the full TLS 1.2 cipher suite list by default. Although this port is only used for Vault-to-Vault communication and would always pick a strong cipher, it could cause false flags on port scanners and other security utilities that assumed insecure ciphers were being used. The previous behavior can be achieved by setting the value of the (undocumented) `cluster_cipher_suites` config flag to `tls12`. * API/Agent Renewal behavior: The API now allows multiple options for how it deals with renewals. The legacy behavior in the Agent/API is for the renewer (now called the lifetime watcher) to exit on a renew error, leading to a reauthentication. The new default behavior is for the lifetime watcher to ignore 5XX errors and simply retry as scheduled, using the existing lease duration. It is also possible, within custom code, to disable renewals entirely, which allows the lifetime watcher to simply return when it believes it is time for your code to renew or reauthenticate. FEATURES: * **Vault Debug**: A new top-level subcommand, `debug`, is added that allows operators to retrieve debugging information related to a particular Vault node. Operators can use this simple workflow to capture triaging information, which can then be consumed programmatically or by support and engineering teams. It has the abilitity to probe for config, host, metrics, pprof, server status, and replication status. * **Recovery Mode**: Vault server can be brought up in recovery mode to resolve outages caused due to data store being in bad state. This is a privileged mode that allows `sys/raw` API calls to perform surgical corrections to the data tore. Bad storage state can be caused by bugs. However, this is usually observed when known (and fixed) bugs are hit by older versions of Vault. * **Entropy Augmentation (Enterprise)**: Vault now supports sourcing entropy from external source for critical security parameters. Currently an HSM that supports PKCS#11 is the only supported source. * **Active Directory Secret Check-In/Check-Out**: In the Active Directory secrets engine, users or applications can check out a service account for use, and its password will be rotated when it's checked back in. * **Vault Agent Template**: Vault Agent now supports rendering templates containing Vault secrets to disk, similar to Consul Template [[GH-7652](https://github.com/hashicorp/vault/pull/7652)] * **Transit Key Type Support**: Signing and verification is now supported with the P-384 (secp384r1) and P-521 (secp521r1) ECDSA curves [[GH-7551](https://github.com/hashicorp/vault/pull/7551)] and encryption and decryption is now supported via AES128-GCM96 [[GH-7555](https://github.com/hashicorp/vault/pull/7555)] * **SSRF Protection for Vault Agent**: Vault Agent has a configuration option to require a specific header before allowing requests [[GH-7627](https://github.com/hashicorp/vault/pull/7627)] * **AWS Auth Method Root Rotation**: The credential used by the AWS auth method can now be rotated, to ensure that only Vault knows the credentials it is using [[GH-7131](https://github.com/hashicorp/vault/pull/7131)] * **New UI Features**: The UI now supports managing users and groups for the Userpass, Cert, Okta, and Radius auth methods. * **Shamir with Stored Master Key**: The on disk format for Shamir seals has changed, allowing for a secondary cluster using Shamir downstream from a primary cluster using Auto Unseal. [[GH-7694](https://github.com/hashicorp/vault/pull/7694)] * **Stackdriver Metrics Sink**: Vault can now send metrics to [Stackdriver](https://cloud.google.com/stackdriver/). See the [configuration documentation](https://www.vaultproject.io/docs/config/index.html) for details. [[GH-6957](https://github.com/hashicorp/vault/pull/6957)] * **Filtered Paths Replication (Enterprise)**: Based on the predecessor Filtered Mount Replication, Filtered Paths Replication allows now filtering of namespaces in addition to mounts. * **Token Renewal via Accessor**: Tokens can now be renewed via the accessor value through the new `auth/token/renew-accessor` endpoint if the caller's token has permission to access that endpoint. * **Improved Integrated Storage (Beta)**: Improved raft write performance, added support for non-voter nodes, along with UI support for: using raft storage, joining a raft cluster, and downloading and restoring a snapshot. IMPROVEMENTS: * agent: Add ability to set the TLS SNI name used by Agent [[GH-7519](https://github.com/hashicorp/vault/pull/7519)] * agent & api: Change default renewer behavior to ignore 5XX errors [[GH-7733](https://github.com/hashicorp/vault/pull/7733)] * auth/jwt: The redirect callback host may now be specified for CLI logins [[GH-71](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/71)] * auth/jwt: Bound claims may now contain boolean values [[GH-73](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/73)] * auth/jwt: CLI logins can now open the browser when running in WSL [[GH-77](https://github.com/hashicorp/vault-plugin-auth-jwt/pull/77)] * core: Exit ScanView if context has been cancelled [[GH-7419](https://github.com/hashicorp/vault/pull/7419)] * core: re-encrypt barrier and recovery keys if the unseal key is updated [[GH-7493](https://github.com/hashicorp/vault/pull/7493)] * core: Don't advertise the full set of TLS 1.2 cipher suites on the cluster port, even though only strong ciphers were used [[GH-7487](https://github.com/hashicorp/vault/pull/7487)] * core (enterprise): Add background seal re-wrap * core/metrics: Add config parameter to allow unauthenticated sys/metrics access. [[GH-7550](https://github.com/hashicorp/vault/pull/7550)] * metrics: Upgrade DataDog library to improve performance [[GH-7794](https://github.com/hashicorp/vault/pull/7794)] * replication (enterprise): Write-Ahead-Log entries will not duplicate the data belonging to the encompassing physical entries of the transaction, thereby improving the performance and storage capacity. * replication (enterprise): Added more replication metrics * replication (enterprise): Reindex process now compares subpages for a more accurate indexing process. * replication (enterprise): Reindex API now accepts a new `skip_flush` parameter indicating all the changes should not be flushed while the tree is locked. * secrets/aws: The root config can now be read [[GH-7245](https://github.com/hashicorp/vault/pull/7245)] * secrets/database/cassandra: Add ability to skip verfication of connection [[GH-7614](https://github.com/hashicorp/vault/pull/7614)] * secrets/gcp: Fix panic during rollback if the roleset has been deleted [[GH-52](https://github.com/hashicorp/vault-plugin-secrets-gcp/pull/52)] * storage/azure: Add config parameter to Azure storage backend to allow specifying the ARM endpoint [[GH-7567](https://github.com/hashicorp/vault/pull/7567)] * storage/cassandra: Improve storage efficiency by eliminating unnecessary copies of value data [[GH-7199](https://github.com/hashicorp/vault/pull/7199)] * storage/raft: Improve raft write performance by utilizing FSM Batching [[GH-7527](https://github.com/hashicorp/vault/pull/7527)] * storage/raft: Add support for non-voter nodes [[GH-7634](https://github.com/hashicorp/vault/pull/7634)] * sys: Add a new `sys/host-info` endpoint for querying information about the host [[GH-7330](https://github.com/hashicorp/vault/pull/7330)] * sys: Add a new set of endpoints under `sys/pprof/` that allows profiling information to be extracted [[GH-7473](https://github.com/hashicorp/vault/pull/7473)] * sys: Add endpoint that counts the total number of active identity entities [[GH-7541](https://github.com/hashicorp/vault/pull/7541)] * sys: `sys/seal-status` now has a `storage_type` field denoting what type of storage the cluster is configured to use * sys: Add a new `sys/internal/counters/tokens` endpoint, that counts the total number of active service token accessors in the shared token storage. [[GH-7541](https://github.com/hashicorp/vault/pull/7541)] * sys/config: Add a new endpoint under `sys/config/state/sanitized` that returns the configuration state of the server. It excludes config values from `storage`, `ha_storage`, and `seal` stanzas and some values from `telemetry` due to potential sensitive entries in those fields. * ui: when using raft storage, you can now join a raft cluster, download a snapshot, and restore a snapshot from the UI [[GH-7410](https://github.com/hashicorp/vault/pull/7410)] * ui: clarify when secret version is deleted in the secret version history dropdown [[GH-7714](https://github.com/hashicorp/vault/pull/7714)] BUG FIXES: * agent: Fix a data race on the token value for inmemsink [[GH-7707](https://github.com/hashicorp/vault/pull/7707)] * api: Fix Go API using lease revocation via URL instead of body [[GH-7777](https://github.com/hashicorp/vault/pull/7777)] * api: Allow setting a function to control retry behavior [[GH-7331](https://github.com/hashicorp/vault/pull/7331)] * auth/gcp: Fix a bug where region information in instance groups names could cause an authorization attempt to fail [[GH-74](https://github.com/hashicorp/vault-plugin-auth-gcp/pull/74)] * cli: Fix a bug where a token of an unknown format (e.g. in ~/.vault-token) could cause confusing error messages during `vault login` [[GH-7508](https://github.com/hashicorp/vault/pull/7508)] * cli: Fix a bug where the `namespace list` command with JSON formatting always returned an empty object [[GH-7705](https://github.com/hashicorp/vault/pull/7705)] * cli: Command timeouts are now always specified solely by the `VAULT_CLIENT_TIMEOUT` value. [[GH-7469](https://github.com/hashicorp/vault/pull/7469)] * core: Don't allow registering a non-root zero TTL token lease. This is purely defense in depth as the lease would be revoked immediately anyways, but there's no real reason to allow registration. [[GH-7524](https://github.com/hashicorp/vault/pull/7524)] * identity (enterprise): Fixed identity case sensitive loading in secondary cluster [[GH-7327](https://github.com/hashicorp/vault/pull/7327)] * identity: Ensure only replication primary stores the identity case sensitivity state [[GH-7820](https://github.com/hashicorp/vault/pull/7820)] * raft: Fixed VAULT_CLUSTER_ADDR env being ignored at startup [[GH-7619](https://github.com/hashicorp/vault/pull/7619)] * secrets/pki: Don't allow duplicate SAN names in issued certs [[GH-7605](https://github.com/hashicorp/vault/pull/7605)] * sys/health: Pay attention to the values provided for `standbyok` and `perfstandbyok` rather than simply using their presence as a key to flip on that behavior [[GH-7323](https://github.com/hashicorp/vault/pull/7323)] * ui: using the `wrapped_token` query param will work with `redirect_to` and will automatically log in as intended [[GH-7398](https://github.com/hashicorp/vault/pull/7398)] * ui: fix an error when initializing from the UI using PGP keys [[GH-7542](https://github.com/hashicorp/vault/pull/7542)] * ui: show all active kv v2 secret versions even when `delete_version_after` is configured [[GH-7685](https://github.com/hashicorp/vault/pull/7685)] * ui: Ensure that items in the top navigation link to pages that users have access to [[GH-7590](https://github.com/hashicorp/vault/pull/7590)] ## 1.2.4 (November 7th, 2019) SECURITY: * In a non-root namespace, revocation of a token scoped to a non-root namespace did not trigger the expected revocation of dynamic secret leases associated with that token. As a result, dynamic secret leases in non-root namespaces may outlive the token that created them. This vulnerability, CVE-2019-18616, affects Vault Enterprise 0.11.0 and newer. * Disaster Recovery secondary clusters did not delete already-replicated data after a mount filter has been created on an upstream Performance secondary cluster. As a result, encrypted secrets may remain replicated on a Disaster Recovery secondary cluster after application of a mount filter excluding those secrets from replication. This vulnerability, CVE-2019-18617, affects Vault Enterprise 0.8 and newer. * Update version of Go to 1.12.12 to fix Go bug golang.org/issue/34960 which corresponds to CVE-2019-17596. CHANGES: * auth/aws: If a custom `sts_endpoint` is configured, Vault Agent and the CLI should provide the corresponding region via the `region` parameter (which already existed as a CLI parameter, and has now been added to Agent). The automatic region detection added to the CLI and Agent in 1.2 has been removed. IMPROVEMENTS: * cli: Ignore existing token during CLI login [[GH-7508](https://github.com/hashicorp/vault/pull/7508)] * core: Log proxy settings from environment on startup [[GH-7528](https://github.com/hashicorp/vault/pull/7528)] * core: Cache whether we've been initialized to reduce load on storage [[GH-7549](https://github.com/hashicorp/vault/pull/7549)] BUG FIXES: * agent: Fix handling of gzipped responses [[GH-7470](https://github.com/hashicorp/vault/pull/7470)] * cli: Fix panic when pgp keys list is empty [[GH-7546](https://github.com/hashicorp/vault/pull/7546)] * cli: Command timeouts are now always specified solely by the `VAULT_CLIENT_TIMEOUT` value. [[GH-7469](https://github.com/hashicorp/vault/pull/7469)] * core: add hook for initializing seals for migration [[GH-7666](https://github.com/hashicorp/vault/pull/7666)] * core (enterprise): Migrating from one auto unseal method to another never worked on enterprise, now it does. * identity: Add required field `response_types_supported` to identity token `.well-known/openid-configuration` response [[GH-7533](https://github.com/hashicorp/vault/pull/7533)] * identity: Fixed nil pointer panic when merging entities [[GH-7712](https://github.com/hashicorp/vault/pull/7712)] * replication (Enterprise): Fix issue causing performance standbys nodes disconnecting when under high loads. * secrets/azure: Fix panic that could occur if client retries timeout [[GH-7793](https://github.com/hashicorp/vault/pull/7793)] * secrets/database: Fix bug in combined DB secrets engine that can result in writes to static-roles endpoints timing out [[GH-7518](https://github.com/hashicorp/vault/pull/7518)] * secrets/pki: Improve tidy to continue when value is nil [[GH-7589](https://github.com/hashicorp/vault/pull/7589)] * ui (Enterprise): Allow kv v2 secrets that are gated by Control Groups to be viewed in the UI [[GH-7504](https://github.com/hashicorp/vault/pull/7504)]
jperkin
pushed a commit
that referenced
this issue
Jan 2, 2021
Changelog: 1.75.0 New Libraries * JSON: JSON parsing, serialization, and DOM in C++11, from Vinnie Falco and Krystian Stasiowski. + Fast compilation requiring only C++11 + Easy and safe modern API with allocator support + Compile without Boost, define BOOST_JSON_STANDALONE + Optional header-only, without linking to a library * LEAF: A lightweight error-handling library for C++11, from Emil Dotchevski. + Small single-header format, no dependencies. + Designed for maximum efficiency ("happy" path and "sad" path). + No dynamic memory allocations, even with heavy payloads. + O(1) transport of arbitrary error types (independent of call stack depth). + Can be used with or without exception handling. * PFR: Basic reflection without macro or boilerplate code for user defined types, from Antony Polukhin. Updated Libraries * Asio: + Enabled support for UNIX domain sockets on Windows. + Added executor-converting construction and assignment to ip:: basic_resolver. + Added compatibility between polymorphic executors and the (deprecated) handler invocation hook. + Added the experimental::as_single completion token adapter. + Added support for MSG_NOSIGNAL on more platforms by using _POSIX_VERSION to detect whether it is supported. + Added the ability to compile using libpthread on Windows. + Added workarounds for the Intel C++ compiler. + Added more support for detecting and optimising for handlers that have no custom executor. + Reduced lock contention for timer cancellation on Windows. + Reinstated a previously removed null-pointer check, as it had a measurable impact on performance. + Fixed the executor concept to test for a const-qualified execute(). + Fixed any_executor support for builds without RTTI support. + Fixed the thread_pool unit test to work without RTTI support. + Fixed C++20 coroutines compatibility with clang on Windows. + Fixed some compatibility issues with Windows Runtime. + Fixed shadow name warnings caused by addition of asio::query. + Fixed a "logical ‘or’ of equal expressions" warning on linux. + Fixed a benign switch fallthrough warning. + Added missing push/pop_options.hpp includes. + Suppressed zero-as-null-pointer-constant warnings. + Fixed a comma-operator warning. + Updated the documentation to clarify when the select reactor is used on Windows. + Fixed potential ambiguity caused by any_executor comparisons and conversion. + Added detection of non-experimental C++20 coroutines on MSVC 19.8. + Fixed compatibility with uClibc. + Fixed strand<> adaptation of Networking TS executors when targeting older C++ versions or less conformant compilers. + Consult the Revision History for further details. * Atomic: + Implemented SSE2 and SSE4.1 versions of address lookup algorithm, which is used in the internal lock pool implementation. This may improve performance of waiting and notifying operations in heavily contended cases. + Fixed a possible compilation error on AArch64 targets caused by incorrect instructions generated for bitwise (logical) operations with immediate constants. (#41) * Beast: + This update brings bug fixes and support for the BOOST_ASIO_ENBALE_HANDLER_TRACKING compile flag from Boost.Asio: + We'd love to know how you or your company use Beast, consider adding an entry to the Companies and Individuals Using Beast list. + See the full Release Notes for a complete list of changes. * Container: + New devector container. + Fixed bugs/issues: o #152 Tree-based containers have troubles with move-only types. o #156 Compile error with vector. o PR#157 Add missing include. o #159: pmr::monotonic_buffer_resource crashes on large single allocations. o #160: Usage of uses_allocator needs a remove_cvref_t. o #162: small_vector on MSVC x86 call-by-value crash. o #161: polymorphic_allocator(memory_resource*) non-standard extension causes headache. o PR#163: container_rebind for small_vector with options. o #165: Link error with shared library and memory_resource inline members. o PR#166: Fix encoding error in copyright headers. o PR#167: error: the address of 'msg' will always evaluate as 'true' warning with GCC 4.4. o #169: flood of warnings building dlmalloc_ext_2_8_6.c on clang11. * Endian: + endian_arithmetic no longer inherits from endian_buffer + When BOOST_ENDIAN_NO_CTORS is defined, the unaligned endian_buffer and endian_arithmetic are C++03 PODs, to enable use of __attribute__(( packed)) * Filesystem: + New: Added creation_time operation, which allows to obtain file creation time. (Inspired by PR#134) + The returned value of last_write_time(p, ec) operation in case of failure has been changed to a minimal value representable by std:: time_t instead of -1. + The returned value of hard_link_count(p, ec) operation in case of failure has been changed to static_cast<uintmax_t>(-1) instead of 0. + On POSIX systems, file_size will now indicate error code errc:: function_not_supported if the path resolves to a non-regular file. Previously, errc::operation_not_permitted was reported. + On Linux, many operations now use statx system call internally, when possible, which allows to reduce the amount of information queried from the filesystem and potentially improve performance. The statx system call was introduced in Linux kernel 4.11. + Removed const-qualification from return types of some path methods. This could prevent move construction and move assignment at the call site in some cases. (#160) + On OpenBSD 4.4 and newer, use statvfs system call to obtain filesystem space information. (Inspired by PR#162) + On Windows, space now returns with an error if the provided path does not idendify an existing file. (#167) * GIL: + BREAKING: In next release, we are going to drop support for GCC 5. We may also change the required minimum C++ version from C++11 to C++14. * Histogram: + This update brings o Bug-fixes for corner-cases o Small documentation improvements o Fixes for new warnings from latest compilers and when compiling against the C++20 standard + See the full Release Notes for a complete list of changes. * Interprocess: + Fixed bugs: o #127: static assertion failure with boost interprocess 1.74 and basic_managed_shared_memory. * Intrusive: + Fixed bugs: o PR#48: MSVC "assignment within conditional" warning fix. o PR#49: Fix empty control statement warnings. o #52: Invalid casting in BOOST_INTRUSIVE_BSR_INTRINSIC. * Log: + Bug fixes: o Corrected the file counter that would be used in text_file_backend when generating the target file name (based on the pattern set by set_target_file_name_pattern method) when the log file is rotated. (#125) o Replaced a volatile version counter in basic_sink_frontend with an atomic. (#128) o In the asynchronous_sink frontend, resolved a possible conflict between flush and run methods, if run is called from a user's thread instead of the internal dedicated thread spawned by the frontend. (#131) + See changelog for more details. * Move: + Fixed bugs: o #30: (void) C-cast is a non-portable way of suppressing compiler warnings. * Mp11: + Added mp_pairwise_fold (suggested by Barry Revzin) + Removed mp_invoke (use mp_invoke_q) * Optional: + boost::none is constexpr-declared. + Fixed issue #78. * Outcome: + Announcements: o After a year and three major Boost releases announcing this upcoming change, this is the FINAL RELEASE of the v2.1 branch. From Boost 1.76 onwards, the v2.2 branch becomes the default. This branch has a number of major breaking changes to Outcome v2.1, see the documentation for details. + Enhancements: o The ADL discovered event hooks have been replaced with policy-specified event hooks instead. This is due to brittleness (where hooks would quietly self-disable if somebody changed something), compiler bugs (a difference in compiler settings causes the wrong hooks, or some but not all hooks, to get discovered), and end user difficulty in using them at all. The policy-specified event hooks can be told to default to ADL discovered hooks for backwards compatibility: set OUTCOME_ENABLE_LEGACY_SUPPORT_FOR to less than 220 to enable emulation. o Improve configuring OUTCOME_GCC6_CONCEPT_BOOL. Older GCCs had boolean based concepts syntax, whereas newer GCCs are standards conforming. However the precise logic of when to use legacy and conforming syntax was not well understood, which caused Outcome to fail to compile depending on what options you pass to GCC. The new logic always uses the legacy syntax if on GCC 8 or older, otherwise we use conforming syntax if and only if GCC is in C++ 20 mode or later. This hopefully will resolve the corner case build failures on GCC. + Bug fixes: o Boost.Outcome should now compile with BOOST_NO_EXCEPTIONS defined. Thanks to Emil, maintainer of Boost.Exception, making a change for me, Boost.Outcome should now compile with C++ exceptions globally disabled. You won't be able to use boost::exception_ptr as it can't be included if C++ exceptions are globally disabled. o #236 In the Coroutine support the final_suspend() was not noexcept, despite being required to be so in the C++ 20 standard. This has been fixed, but only if your compiler implements noop_coroutine. Additionally, if noop_coroutine is available, we use the much more efficient coroutine handle returning variant of await_suspend() which should significantly improve codegen and context switching performance. * Polygon: + C++20 fixes for event_comparison_type, vertex_equality_predicate_type, and voronoi_predicates. (Glen Fernandes) * Preprocessor: + When variadic data is empty in C++20 mode with __VA_OPT__ support the variadic size has been corrected to be 0. This also means that in this C++20 mode it is now valid to convert to and from empty arrays and lists and variadic data. The end-user can read the "C++20 Support For Variadic Macros" part of the "variadic macros" topic for more information about empty variadic data in the library. + The macro BOOST_PP_IS_STANDARD() has been added for identifying if the currently used preprocessor is a C++ standard conforming preprocessor. A number of preprocessors which generally work correctly with the library but need various internal workarounds, including the currently default VC++ preprocessor, are not considered C++ standard conforming preprocessors. However most preprocessors, including among others gcc, clang, and the new but currently non-default VC++ preprocessor in VS2019, are C++ standard conforming preprocessors. + For C++ standard conforming preprocessors a number of the limits defined in the config/limits.hpp can now be changed to higher amounts for a TU. The end-user should read the "limitations" topic to understand how and which limits can be changed. + For C++ standard conforming preprocessors, in order to allow the maximum number of FOR and WHILE iterations, the beginning 'r' and 'd' iteration numbers in the user-defined macros start at 1 and not 2, as it did in previous releases. This could be a breaking change if these iteration numbers are used in the user-defined macros ( they probably would not be ), but the change was necessary to fix some arcane bugs when dealing with numerical/logical operations with maximum numbers as well to allow the user-defined macros to be called the correct possible maximum number of times. For non-C++ conforming preprocessors, this change was not made because those non-conforming C++ preprocessors generally have limitations which disallow the maximum number of looping constructs to be run, and it was felt not to introduce a possible breaking change to those more fragile preprocessors would be better. It was also felt that besides fixing some arcane preprocessor bugs and providing the possible maximum number of user-defined macro invocations, this change could be made because it has never been documented what the starting 'r' and 'd' iteration numbers actually are but only that these numbers are incremented for each iteration. + The library has been upgraded to assume variadic macro support for any compiler working with the library. Ostensibly this means that the library is now a C++11 on up library, yet most of the major compilers, including gcc, clang, and VC++, also support variadic macros in C++98/ C++03 mode as long as strict compliance to C++98/C++03 is not turned on when using one of those compilers. * Rational: + Fix Rational operators to not break under new C++20 operator== rewriting rules. (Glen Fernandes) * Signals2: + Correct C++ allocator model support to fix compilation in C++20 standards mode. (Glen Fernandes) * System: + The platform-specific headers windows_error.hpp, linux_error.hpp, and cygwin_error.hpp emit deprecation messages and are slated for removal. + The old names for generic_category() and system_category() emit deprecation messages and are slated for removal. + error_condition::failed is deprecated and is slated for removal. operator bool() for error_condition has been reverted to its old meaning of value() != 0. This is done for compatibility with std:: error_condition as the next release is expected to improve interoperability with <system_error> even further. Note that this does not affect error_code::failed, which is still alive and well. + The overload of error_condition::message that takes a buffer is deprecated and is slated for removal, for the same reasons. Note that this does not affect error_code::message. * uBLAS: + Correct C++ allocator model support to fix compilation in C++20 standards mode. (Glen Fernandes and Conrad Poelman) * VMD: + The VMD number parsing has been upgraded to support the ability for the end-user to change the number limits in the Preprocessor library. + The macro BOOST_VMD_IS_GENERAL_IDENTIFIER has been added to support the parsing of input that represents a preprocessor token which matches the VMD identifier syntax, without having to register the identifier as a specific identifier. * Wave: + Added new C++20 tokens, including the spaceship operator <=> + Fixed bugs: o #94: fix incorrect behavior of __LINE__ and __FILE__ under rescanning 1.74.0 New Libraries * STLInterfaces: A library of CRTP bases to ease the writing of STL views, iterators, and sequence containers, from Zach Laine. Updated Libraries * Asio: + Added an implementation of the proposed standard executors (P0443r13, P1348r0, and P1393r0). + Added support for the proposed standard executors to Asio's I/O facilities. o The supplied executors now meet the requirements for the proposed standard executors. These classes also continue to meet the existing requirements for the Networking TS model of executors. o All I/O objects, asynchronous operations, and utilities will interoperate with both new proposed standard executors, and with existing Networking TS executors. o The any_io_executor type alias has been introduced as the default runtime-polymorphic executor for all I/O objects. This defaults to the execution::any_executor<> template. If required for backward compatibility, BOOST_ASIO_USE_TS_EXECUTOR_AS_DEFAULT can be defined to use the old asio::executor polymorphic wrapper instead. o Support for the existing Networking TS model of executors can be disabled by defining BOOST_ASIO_NO_TS_EXECUTORS. + Added converting move construction and assignment to basic_waitable_timer. + Enabled C++20 coroutine support when using gcc 10. + Added overloads of co_spawn that launch an awaitable. + Added a new constructor overload to use_awaitable_t's default executor adapter, to enable conversion between executor types. + Added support for using detached_t as a default completion token, by adding members as_default_on() and as_default_on_t<>. + Added a move constructor to ssl::stream<>. + Changed ssl::stream<> write operations to linearise gather-write buffer sequences. + Added compile-time detection of the deprecated asio_handler_invoke, asio_handler_allocate, and asio_handler_deallocate hooks, when BOOST_ASIO_NO_DEPRECATED is defined. + Implemented a number of performance optimisations. + Added source location support to handler tracking. + Implemented various improvements to the handlerviz.pl tool. + Added the handlerlive.pl tool, which processes handler tracking output to produce a list of "live" handlers. + Added the handlertree.pl tool, which filters handler tracking output to include only those events in the tree that produced the nominated handlers. + Added changes for clang-based Embarcadero C++ compilers. + Fixed a deadlock that can occur when multiple threads concurrently initialise the Windows I/O completion port backend. + Fixed async_compose to work with copyable handlers when passed by lvalue. + Fixed completion signature deduction in co_spawn. + Removed a spurious Executor base class from the executor_binder implementation. + Various fixes and improvements in the documentation and examples. + Consult the Revision History for further details. * Atomic: + Added missing const qualifiers to some operations in atomic_ref. + Added support for yield instruction on ARMv8-A. The instruction is used internally in spin loops to reduce CPU power consumption. + Added support for C++20 waiting and notifying operations. The implementation includes generic backend that involves the internal lock pool, as well as specialized backends for Windows, Linux, FreeBSD, DragonFly BSD and NetBSD. Atomic types provide a new method has_native_wait_notify, a static boolean constant always_has_native_wait_notify and a set of capability macros that allow to detect if the implementation supports native waiting and notifying operations for a given type. + Changed internal representation of atomic_flag to use 32-bit storage. This allows for more efficient waiting and notifying operations on atomic_flag on some platforms. + Added support for build-time configuration of the internal lock pool size. The user can define the BOOST_ATOMIC_LOCK_POOL_SIZE_LOG2 macro to specify binary logarithm of the size of the lock pool. The default value is 8, meaning that the size of the lock pool is 256, up from 64 used in the previous release. + Added support for a new set of atomic types dedicated for inter-process communication: ipc_atomic_flag, ipc_atomic and ipc_atomic_ref. Users are recommended to port their code using non-IPC types for inter-process communication to the new types. The new types provide the same set of operations as their non-IPC counterparts, with the following differences: o Most operations have an added precondition that is_lock_free returns true for the given atomic object. The library will issue a compile time error if this precondition is known to be not satisfied at compile time. o All provided operations are address-free, meaning that the atomic object (in case of ipc_atomic_ref - the referenced object) may be located in process-shared memory or mapped into the same process at multiple different addresses. o The new has_native_wait_notify operation and always_has_native_wait_notify constant indicate support for native inter-process waiting and notifying operations. When that support is not present, the operations are implemented with a busy loop, which is less efficient, but still is address-free. A separate set of capability macros is also provided to indicate this support. + Added new atomic_unsigned_lock_free and atomic_signed_lock_free types introduced in C++20. The types indicate the atomic object type for an unsigned or signed integer, respectively, that is lock-free and preferably has native support for waiting and notifying operations. + Added new gcc assembler backends for ARMv8-A (for both AArch32 and AArch64). The new backends are used to implement operations not supported by compiler intrinsics (including 128-bit operations on AArch64) and can also be used when compiler intrinsics are not available. Both little and big endian targets are supported. AArch64 backend supports extensions defined in ARMv8.1 and ARMv8.3. + Added support for big endian targets in the legacy ARM backend based on gcc assembler blocks (this backend is used on ARMv7 and older targets). Previously, the backend assumed little endian memory layout, which is significant for 64-bit operations. + Improved performance of seq_cst stores and thread fences on x86 by using lock-prefixed instructions instead of mfence. This means that the operations no longer affect non-temporal stores, which was also not guaranteed before. Use specialized instructions and intrinsics to order non-temporal memory accesses. + Fixed capability macros for 80-bit long double on x86 targets not indicating lock-free operations even if 128-bit atomic operations were available. + Fixed compilation of gcc asm blocks on Alpha targets. + In the gcc __sync* intrinsics backend, fixed that store and load operations of large objects (larger than a pointer size) could be non-atomic. The implementation currently assumes that small objects can be stored with a single instruction atomically on all modern architectures. * Beast: + This update brings bug fixes and support for the following changes changes in Boost.Asio: + Beast supports BOOST_ASIO_NO_DEPRECATED. Define this to help identify areas of your Beast and Asio code which use deprecated Asio interfaces. + Beast also supports BOOST_ASIO_NO_TS_EXECUTORS. Define this to identify uses of executors from the now potentially outdated Networking TS + Asio will use the Standard Executors model by default. You can prevent this behaviour by defining BOOST_ASIO_USE_TS_EXECUTOR_AS_DEFAULT in which the Networking TS model will be used by default. Setting this flag does not prevent a program from using executors from the Standard Executors model explicitly. + We'd love to know how you or your company use Beast, consider adding an entry to the Companies and Individuals Using Beast list. + See the full Release Notes for a complete list of changes. * Bimap: + Correct allocator usage (fixes C++20 compilation). (Glen Fernandes) * Config: + Implement BOOST_NO_CXX11_OVERRIDE and BOOST_OVERRIDE. (Glen Fernandes) * Core: + Implemented the allocator access utilities which provide a replacement for allocator_traits with individual traits and functions for each facility. They support the C++11 allocator model when possible and provide a fallback for C++98 compatibility. These are now used in Circular_Buffer, Wave, Lockfree, Heap, Smart_Ptr, Dynamic_Bitset, Format, Bimap and more. (Glen Fernandes) * DLL: + Multiple fixes for the library_info work on empty shared objects. + Compilation fixes for C++98 and C++11 modes (#28). + Fixes for smart_library manglings (thanks to XiaLiChao82 #37). * Endian: + Enabled scoped enumeration types in endian_reverse. + Enabled bool, enum, float, double in endian_reverse_inplace. + Added an overload of endian_reverse_inplace for arrays. * Filesystem: + Removed compile-time checks for support for symlinks and hardlink on Windows. Instead, a runtime check is used. (PR#142) + Fixed handling of reparse points in canonical and read_symlink on Windows. This also affects other algorithms that involve canonical and read_symlink in their implementation. (PR#100, #85, #99, #123, #125) + Fixed that read_symlink on Windows could potentially fail or cause failures elsewhere with a sharing violation error, if the same symlink was opened concurrently. (#138) + Fixed that is_symlink(directory_entry) would always return false, even if the directory entry actually referred to a symlink. (PR#148) + Added missing status inspection operation overloads for directory_entry and error_code (e.g. is_directory(directory_entry, error_code&)). Removed incorrect noexcept specifications for the overloads not taking the error_code arguments. + copy_file implementation has been updated to perform checks on the source and target files, as required by C++20 ([fs.op.copy.file]/4.1). In particular, the operation will fail if the source or target file is not a regular file or the source and target paths identify the same file. + copy_file on POSIX systems will now also copy the source file permissions to the target file, if the target file is overwritten. + New: Added copy_file implementations based on sendfile and copy_file_range system calls on Linux, which may improve file copying performance, especially on network filesystems. + Deprecated: The copy_option enumeration that is used with the copy_file operation is deprecated. As a replacement, the new enum copy_options (note the trailing 's') has been added. The new enum contains values similar to the copy_options enum from C++20. The old enum values are mapped onto the new enum. The old enum will be removed in a future release. + New: Added copy_options::skip_existing option, which allows copy_file operation to succeed without overwriting the target file, if it exists. + New: Added copy_options::update_existing option, which allows copy_file operation to conditionally overwrite the target file, if it exists, if its last write time is older than that of the replacement file. + New: copy_file now returns bool, which indicates whether the file was copied. + New, breaking change: copy operation has been extended and reworked to implement behavior specified in C++20 [fs.op.copy]. This includes support for copy_options::recursive, copy_options::copy_symlinks, copy_options::skip_symlinks, copy_options::directories_only, copy_options::create_symlinks and copy_options::create_hard_links options. The operation performs additional checks based on the specified options. Applying copy to a directory with default copy_options will now also copy files residing in that directory (but not nested directories or files in those directories). + New: Added create_directory overload taking two paths. The second path is a path to an existing directory, which is used as a source of permission attributes to use in the directory to create. + Deprecated: copy_directory operation has been deprecated in favor of the new create_directory overload. Note that the two operations have reversed order of the path arguments. + equivalent on POSIX systems now returns the actual error code from the OS if one of the paths does not resolve to a file. Previously the function would return an error code of 1. (#141) + equivalent no longer considers file size and last modification time in order to test whether the two paths refer to the same file. These checks could result in a false negative if the file was modified during the equivalent call. + New: Added absolute overloads taking error_code argument. + Operations that have current_path() as the default value of their arguments and also have an error_code argument will use the current_path(error_code& ec) overload to obtain the current path, so that its failure is reported via the error_code argument instead of an exception. + space now initializes the space_info structure members to -1 values on error, as required by C++20 ([fs.op.space]/1). + space on Windows now accepts paths referring to arbitrary files, not only directories. This is similar to POSIX systems and corresponds to the operation description in C++20. (#73) + New: Added implementation of temp_directory_path for Windows CE. (PR#25 ) + New: Improved compatibility with WASI platform. (PR#144) + New: Improved support for Embarcadero compilers. (PR#130) + New: Added implementations of unique_path operation based on getrandom (Linux), arc4random_buf (OpenBSD/FreeBSD/CloudABI) and BCrypt (Windows) system APIs. + Deprecated: Auto-linking against system libraries on Windows with MSVC-compatible compilers is deprecated and will be removed in a future release. This affects users linking against static library of Boost.Filesystem. Users are advised to update their project build systems to either use a shared library of Boost.Filesystem, or explicitly specify the dependencies of Boost.Filesystem in the linker command line. Users of shared library of Boost.Filesystem are not affected. * Flyweight: + Maintenance work. * Format: + Correct allocator usage (fixes C++20 compilation). (Glen Fernandes) * Geometry: + Improvements o PR#720 Additional R-tree constructors (thanks to Caian Benedicto). o Various improvements in buffer, set and relational operations. + Solved issues o #709 memcpy called for object with no trivial copy-assignment. o #721 Compilation error in bgi::detail::rtree::visitors::insert. o #727 MSVC warning: conditional expression is constant. + Bugfixes o PR#700 Missing cases for default strategies in distance algorithm. o PR#738 Longitudes out of range in direct geodesic formulas. * GIL: + Added o Added new constructor initializing any_image from r-value reference to any image (PR#486). o Implemented mechanism to reverse kernel_2d (PR#489). + Changed o BREAKING: Replace Boost.Variant with Boost.Variant2 (PR#474) which completes removal on uses of Boost.MPL (missing from Boost 1.72.0 change added PR#274). o Use perfect forwarding from apply_operation to visit (PR#491). + Removed o BREAKING: Removed dependency on Boost.Variant + Fixed o Fixed invalid conversion from RGB8 to CMYK32 due to overflow (PR# 470). o Fixed image constructor from other image (PR#477). o Fixed error plane_view_t is not a class or namespace name (PR#481). o Fixed interleaved_view factory using point<std::ptrdiff_t> for dimension (PR#487). o Fixed documentation replacing uses MPL with MP11 in tutorial (PR# 494). o Fixed missing header in numeric/kernel.hpp to make it self-contained (PR#502). + Acknowledgements o Samuel Debionne, Pranam Lashkari, Mateusz Loskot, Debabrata Mandal * Heap: + Correct destruction of top node in skew_heap. (Glen Fernandes) + Correct and simplify allocator use. (Glen Fernandes) * Integer: + Fixed compilation of gcd in C++20 mode with clang 10. + Improved support for Embarcadero compilers. (PR#21) * Iterator: + boost/function_output_iterator.hpp header is now deprecated. Users should replace its inclusion with boost/iterator/ function_output_iterator.hpp. (PR#51) + Improved support for Embarcadero compilers. (PR#55) * LexicalCast: + Fixed warnings on missing override (thanks to EugeneZelenko #35, #34). + Fixes for the the Embarcadero compilers (thanks to Edward Diener). * Log: + Bug fixes: o The syslog sink backend now verifies the IP version of the local and target addresses set by user. The addresses must have the same IP version as was specified in the ip_version named parameter on the sink backend construction (by default, IPv4 is assumed). When an address is obtained as a result of host name resolution, only addresses with matching IP version are considered. (#119) + New Features: o Move constructors and assignment operators of various components were marked noexcept. o Added a new range_manip stream manipulator that can be used for outputting elements of a range, optionally separated by a delimiter. o Added a new tuple_manip stream manipulator that can be used for outputting elements of a tuple or any other heterogeneous sequence, optionally separated by a delimiter. o Added a new optional_manip stream manipulator that can be used for outputting optionally present values. + See changelog for more details. * Mp11: + Improved compilation performance of mp_with_index<N> for large N. + Added tuple_transform (contributed by Hans Dembinski.) * Multi-index Containers: + Added node extraction and insertion following the analogous interface of associative containers as introduced in C++17. This feature has also been extended to non key-based indices, in contrast to C++ standard library sequence containers, which do not provide such functionality. + Clarified documentation on read/write key extractors (issue #32). + Maintenance work. * Nowide: + The library now requires a C++11-compliant compiler and stdlib + LFS: Add support for files > 2 GB where the underlying system supports it + Generic UTF conversion functions are now available in the boost::nowide ::utf namespace + Add support for stat with UTF-8 paths * Outcome: + Announcements: o The v2.1 branch is expected to be retired end of 2020, with the v2.2 branch becoming the default. You can use the future v2.2 branch now using better_optimisation. This branch has a number of major breaking changes to Outcome v2.1, see the front page for details. + Enhancements: o BREAKING CHANGE void results and outcomes no longer default construct types during explicit construction. Previously if you explicitly constructed a result<T> from a non-errored result<void>, it default constructed T. This was found to cause unhelpful surprise, so it has been disabled. o New macro OUTCOME_ENABLE_LEGACY_SUPPORT_FOR. The macro OUTCOME_ENABLE_LEGACY_SUPPORT_FOR can be used to enable aliasing of older naming and features to newer naming and features when using a newer version of Outcome. o Concepts now have snake case style naming instead of camel case style. When Outcome was first implemented, it was thought that C++ 20 concepts were going to have camel case style. This was changed before the C++ 20 release, and Outcome's concepts have been renamed similarly. This won't break any code in Outcome v2.1, as compatibility aliases are provided. However code compiled against Outcome v2.2 will need to be upgraded, unless OUTCOME_ENABLE_LEGACY_SUPPORT_FOR is set to 210 or lower. o Concepts now live in OUTCOME_V2_NAMESPACE::concepts namespace. Previously concepts lived in the convert namespace, now they live in their own namespace. o New concepts basic_result<T> and basic_outcome<T> added. End users were finding an unhelpful gap in between is_basic_result<T> and value_or_error<T> where they wanted a concept that matched types which were basic_result, but not exactly one of those. Concepts filling that gap were added. o Operation TRY works differently from Outcome v2.2 onwards. This is a severely code breaking change which change the syntax of how one uses OUTCOME_TRY(). A regular expression suitable for upgrading code can be found in the list of changes between Outcome v2.1 and v2.2. + Bug fixes: o #224 The clang Apple ships in Xcode 11.4 (currently the latest) has not been patched with the fixes to LLVM clang that fix noexcept(std ::is_constructible<T, void>) failing to compile which I originally submitted years ago. So give up waiting on Apple to fix their clang, add a workaround to Outcome. o Spare storage could not be used from within no-value policy classes. Due to an obvious brain fart when writing the code at the time, the spare storage APIs had the wrong prototype which prevented them working from within policy classes. Sorry. * PolyCollection: + Fixed internal ambiguity problem between boost::type_erasure::any and boost::any (issue #17). + Maintenance work. * SmartPtr: + Added owner_equals to shared_ptr, weak_ptr, local_shared_ptr. + Added owner_hash_value to shared_ptr, weak_ptr. + Added owner_equal_to, owner_hash. + Added std::hash specializations for shared_ptr, local_shared_ptr. + Added boost::hash support to, and std::hash, std::equal_to specializations for, weak_ptr. * Stacktrace: + Fixed a build error when compiled with -fno-exceptions (thanks to Jeremiah Rodriguez #91). * System: + operator bool() now returns failed() instead of value() != 0. * Type_Traits: + Implemented conjunction, disjunction, negation, is_trivially_copyable, is_scoped_enum, and is_unscoped_enum. (Glen Fernandes) * Variant: + Fixed warnings on missing override (thanks to EugeneZelenko #78). + Fixes for the the Embarcadero compilers (thanks to Edward Diener #79). + Updated header locations to avoid warnings about using deprecated headers (thanks to Andrey Semashev #80) * Variant2: + Added support for derived types in visit. + Improved compilation performance for many (hundreds of) alternatives. + Added support for visit<R>. * Wave: + Implement C++20 features for variadics, including __VA_OPT__ (PR#75) + Implement __has_include (PR#102) + Introduce new sample: check_macro_naming, useful with Boost itself (PR# 97) + Fix compilation issue caused by std::allocator member removal in C++20 (PR#72) + Repair Xpressive lexer and token_statistics sample (PR#79) + Repair lexertl lexer (PR#78) + Ensure hooks are run on predefined macros as well (PR#87) + Various minor bug fixes + C++98/03 support is now deprecated and will be removed in 1.77 * YAP: + Fixed compilation errors for placeholders; they now work in the general case, and in particular work with yap::print(). + constexpr all the YAP. + Fix printing of correct value category in yap::print(). + Doc clarification. Updated Tools * Boostbook: + Change encoding of generated documentation from US-ASCII to UTF-8. (Glen Fernandes)
jperkin
pushed a commit
that referenced
this issue
Jan 25, 2021
2.1.13 (2020-12-07) Merged Pull Requests * Convert to require_relative #90 (tas50) * Update chefstyle requirement from 1.3.2 to 1.4.2 in /components/ruby #91 (dependabot-preview[bot]) * Update chefstyle requirement from 1.4.2 to 1.4.3 in /components/ruby #92 (dependabot-preview[bot]) * Update chefstyle requirement from 1.4.3 to 1.4.4 in /components/ruby #93 (dependabot-preview[bot]) * Update chefstyle requirement from 1.4.4 to 1.4.5 in /components/ruby #94 (dependabot-preview[bot]) * Update chefstyle requirement from 1.4.5 to 1.5.0 in /components/ruby #96 (dependabot-preview[bot]) * Update chefstyle requirement from 1.5.0 to 1.5.2 in /components/ruby #98 (dependabot-preview[bot]) * Update tomlrb requirement from ~> 1.2 to >= 1.2, < 3.0 in /components/ruby #100 (dependabot-preview[bot]) * Update chefstyle requirement from 1.5.2 to 1.5.6 in /components/ruby #101 (dependabot-preview[bot]) * Update chefstyle requirement from 1.5.6 to 1.5.7 in /components/ruby #102 (dependabot-preview[bot]) * Remove yard tasks / unpin parallel gem #103 (tas50)
jperkin
pushed a commit
that referenced
this issue
Feb 15, 2021
Added: -Add syntax highlighting configuration for V (#78) -Add the ability to execute external commands from the editor (#83) -Improve file opening error messages for config files (#91) Fixed: -Android: fix a bug (#87) related to a SELinux policy that would cause Kibi to crash on certain Android versions when setting the termios (#92).
jperkin
pushed a commit
that referenced
this issue
Mar 6, 2021
Change log: 0.5.3 ====== - Appearance Changes: - Use old style menu alignment (#97, !77) - Bug Fixes: - Add a keybinding to reset font size - Fix inverted return value of scroll event handler - Various small improvements regarding accels - Block the right signal handler for tooltip updates - A clarification about action groups - Translation Updates: Basque, French, Galician, Portuguese (Brazil), Russian, Slovenian, Swedish 0.5.2 ====== - New Features: - Add a "Viewer Mode" toggle (#50, !72) - Improve `--quit` option: close all windows interactively (!71) - Improve encoding management (#42, !69) - Display the current encoding in the status bar - Make the default encoding configurable via GSettings - Allow to choose encoding in the "Open" and "Save As" dialogs (#42) - Add a command line option to choose encoding - Add a "Delete Line" action (#13, !66) - Make automatic addition of the last EOL character configurable (#53, !65) - Switch to GFile for I/O operations (#4, #27, #75, !64) - Add file monitoring (#75) - Add a setting to create a tilde-backup file when saving (#27) - Make saving atomic (#4) - Appearance Changes: - Filter files on mime type in the "Open" and "Save As" dialogs (#2, #35, !67) - Code Refactoring: - Improve encoding management (#42, !69) - Make encoding dialog more generic and self-contained - Encodings definition review - Clarify encoding management when opening files - Improve unicode BOM management - Switch to GFile for I/O operations (#4, #27, #75, !64) - Set the save action sensitivity more precisely - Let GFile APIs check for file existence when reading - Let GFile APIs check for external modifications when saving - Basic switch to GFile for I/O operations - Bug Fixes: - Make "replace" and "replace all" behaviors consistent (#94) - Ensure that the page setup is properly applied when printing (#90) - Avoid character escape issues in menu item action names (#91) - Properly initialize document search properties - Avoid illegal memory access when searching with tab changes (!73) - Revert to "Wrap Around" always true for the search bar (#83) - Prevent too late accesses to the buffer in selection mode - Direct call to keybinding signals for "Delete" and "Select All" (#83) - Improve editing keybindings consistency (#83) - Translation Updates: Albanian, Arabic, Armenian (Armenia), Basque, Belarusian, Bulgarian, Catalan, Chinese (China), Chinese (Taiwan), Croatian, Czech, Danish, Dutch, Eastern Armenian, English (Australia), English (United Kingdom), Estonian, Finnish, French, Galician, German, Greek, Hebrew, Hungarian, Icelandic, Indonesian, Interlingue, Italian, Japanese, Kazakh, Korean, Lithuanian, Malay, Norwegian Bokmål, Occitan (post 1500), Polish, Portuguese, Portuguese (Brazil), Romanian, Russian, Serbian, Slovak, Slovenian, Spanish, Swedish, Thai, Turkish, Ukrainian, Uyghur
jperkin
pushed a commit
that referenced
this issue
Mar 30, 2021
2021-03-18 -- 0.9.5 * Fixed: Fix a bug regarding section "5.2.4. Remove Dot Segments" of RFC 3986 that affected both normalization and reference resolution with regard to trailing slashes (GitHub #92, #97) Thanks to Dan Pape for the report! * Fixed: MinGW: Fix name of static library (GitHub #90) Thanks to SpaceIm for the patch and Sandro Mani for review! * Fixed: Use correct inline marker "__forceinline" for Intel C++ Compiler (GitHub #93) Thanks to jensenrichardson for the patch! * Fixed: Link against pthreads for (default) -DURIPARSER_BUILD_TESTS=ON (GitHub #99, #100) * Fixed: When integrated using CMake function add_subdirectory, installation could fail due to lack of prefix ${CMAKE_CURRENT_SOURCE_DIR} (GitHub #98) Thanks for the patch to Shehzan Mohammed! * Fixed: Addressed MSVC compile warning about lack of /EHsc when compiling the C++ test suite code (GitHub #102) * Fixed: Stopped misadvertising wide characters as Unicode support (GitHub #104) * Added: CMake option URIPARSER_WARNINGS_AS_ERRORS=(ON|OFF) to turn compile warnings into errors, defaults to "OFF" (GitHub #102) * Improved: pkg-config: Use ${prefix} and ${exec_prefix} to ease overriding variables using --define-variable=NAME=VALUE, e.g. as done on OpenWRT (GitHub #91) Thanks to Karel Kočí for the pull request! * Improved: Auto-detection of the qhelpgenerator command based on CMake package "Qt5Help" when available. CMake option "QHG_LOCATION" can still be used to enforce a specific location (GitHub #103) Thanks for his help to Andreas Sturmlechner! * Improved: Make documentation use pkg-config in example on how to check for uriparser from within configure.ac (GNU Autoconf) (GitHub #37, #106) * Improved: In testing code, add a missing 'extern "C"' (GitHub #109) Thanks to Jørgen Ibsen for the patch! * Soname: 1:28:0 — see https://verbump.de/ for what these numbers do
jperkin
pushed a commit
that referenced
this issue
Jun 4, 2021
Changes since 1.4.0 from the RELEASE_NOTES file NOTE: In response to CVE-2019-20790, opendmarc has changed how it evaluates headers added by previous SPF milters. Users are encouraged to read the CVE-2019-20790 file in the "SECURITY" folder for more details. (#49, #158). Originally reported by Jianjun Chen, feedback by Simon Wilson and David Bürgin <dbuergin@gluet.ch>. NOTE: OpenDMARC's internal SPF handling will be removed in a future version. Users are encouraged to build linked against libspf2. Many pre-built packages provided by OS packagers already do this. (See https://www.libspf2.org) Addition of defines for MUSL C Library. (#129/#133). Patches by Marco Rebhan. Updated opendmarc.conf manpage and opendmarc.conf.sample to point to https://publicsuffix.org/list/. Added a CONTRIBUTING document. Fix two #ifdefs in arc functions for strlcpy. (#138). Reported by Leo Bicknell. Fixes to MySQL Schema (#98/#99). Patch by Bond Keevil. LIBSPF2 calls would not compile on OpenBSD due to OpenBSD not having the ns_type definition in arpa/resolv.h. Added detection to configure script. (#134) Reworked hcreate_r calls to use hcreate, to compile natively on OpenBSD and MacOS. (Part of #94) Reported by Rupert Gallagher. Add compatibility with AutoConf 2.70. (#95) Documentation updates about SourceForge being deprecated. (#101) Only accept results from Received-SPF fields that indicate clearly which identifier was being evaluated, since DMARC specifically only wants results based on MAIL FROM. Many build-time fixes (#100, #91, #90, #86, #85, #84, #83, #82, #81) Patches provided by Rupert Gallagher (ruga@protonmail.com) Added config option HoldQuarantinedMessages (default false), which controls if messages with p=quarantine will be passed on to the mail stream (if False) or placed in the MTA's "hold" queue (if True). Issue #105. Patch by Marcos Moraes, on the OpenDMARC mailing list. Remove "--with-wall" from "configure". Suggested by Leo Bicknell. LIBOPENDMARC: Fix bug #50: Ignore all RRTYPEs other than TXT. Problem reported by Jan Bouwhuis. LIBOPENDMARC: Fix bug #89: Repair absurd RRTYPE test in SPF code. LIBOPENDMARC: Fix bug #104: Fix bogus header field parsing code. LIBOPENDMARC: Fix bug #161: Don't pass the client IP address through htonl() since it's already in network byte order. This was causing SPF errors when the internal SPF implementation was in use. LIBOPENDMARC: Fix numerous problems with the internal SPF implementation.
jperkin
pushed a commit
that referenced
this issue
Jun 15, 2021
# 1.3.0 * Adding authors with long names or other fields (`comment`, typically) works well now (#91). * `get_deps()` now removes unneeded whitespace from version requirements (#84). * `normalize()` now does not drop `Authors@R` on non-UTF-8 systems when it has non-ASCII characters (#80). * `has_dep()` now works well with dependencies listed multiple times (#97, @richfitz). * Add `coerce_authors_at_r()` method to convert `Author` to `Authors@R` (#44, @muschellij2). * `add_author()` and similar functions now allow a character vector of multiple roles (@niceume, #89). * `desc_set_deps()` now inserts new packages in (case-insensitive) alphabetical order, if the existing packages are already in alphabetical order. * New `add_author_gh()` method and `desc_add_author_gh()` function to add an author using the information available from GitHub V3 API. This method and function depend on `gh` and are limited when the GitHub user full name is incomplete or not well parsed by `as.person()` and when their email address isn't available (@maelle, #71). * When using `desc_normalize()` the package dependencies are now alphabetically sorted (#66, @llrs). * New `add_orcid()` method and `desc_add_orcid()` functions make it possible to add ORCID IDs to authors directly instead of via the `comment` argument (@maelle, #70). * All functions and methods managing authors (`add_me`, `add_author()`, `del_author()`, `add_role()`, `del_role()`, `change_maintainer()`, `search_for_author()`, `add_me()`, etc.) gain an `orcid` argument (@maelle, #70). * In `person()` within the `Authors@R` field, `comment` can now be a named character vector (@maelle, #69; @gvegayon, #65). * When using `desc(text=)` parameter, set `textConnection(encoding = "bytes")` to handle cases when the input text is in a different marked encoding than the default encoding, such as UTF-8 input on Windows.
jperkin
pushed a commit
that referenced
this issue
Aug 25, 2021
# gh 1.3.0 * gh now shows the correct number of records in its progress bar when paginating (#147). * New `.params` argument in `gh()` to make it easier to pass parameters to it programmatically (#140). # gh 1.2.1 * Token validation accounts for the new format [announced 2021-03-04 ](https://github.blog/changelog/2021-03-04-authentication-token-format-updates/) and implemented on 2021-04-01 (#148, @fmichonneau). # gh 1.2.0 * `gh_gql()` now passes all arguments to `gh()` (#124). * gh now handles responses from pagination better, and tries to properly merge them (#136, @rundel). * gh can retrieve a PAT from the Git credential store, where the lookup is based on the targeted API URL. This now uses the gitcreds package. The environment variables consulted for URL-specific GitHub PATs have changed. - For "https://api.github.com": `GITHUB_PAT_GITHUB_COM` now, instead of `GITHUB_PAT_API_GITHUB_COM` - For "https://github.acme.com/api/v3": `GITHUB_PAT_GITHUB_ACME_COM` now, instead of `GITHUB_PAT_GITHUB_ACME_COM_API_V3` See the documentation of the gitcreds package for details. * The keyring package is no longer used, in favor of the Git credential store. * The documentation for the GitHub REST API has moved to <https://docs.github.com/rest> and endpoints are now documented using the URI template style of [RFC 6570](https://tools.ietf.org/html/rfc6570): - Old: `GET /repos/:owner/:repo/issues` - New: `GET /repos/{owner}/{repo}/issues` gh accepts and prioritizes the new style. However, it still does parameter substitution for the old style. * Fixed an error that occurred when calling `gh()` with `.progress = FALSE` (@gadenbuie, #115). * `gh()` accepts named `NA` parameters that are destined for the request body (#139). # gh 1.1.0 * Raw responses from GitHub are now returned as raw vector. * Responses may be written to disk by providing a path in the `.destfile` argument. * gh now sets `.Last.error` to the error object after an uncaught error, and `.Last.error.trace` to the stack trace of the error. * `gh()` now silently drops named `NULL` parameters, and throws an error for named `NA` parameters (#21, #84). * `gh()` now returns better values for empty responses, typically empty lists or dictionaries (#66). * `gh()` now has an `.accept` argument to make it easier to set the `Accept` HTTP header (#91). * New `gh_gql()` function to make it easier to work with the GitHub GraphQL API. * gh now supports separate personal access tokens for GitHub Enterprise sites. See `?gh_token` for details. * gh now supports storing your GitHub personal access tokens (PAT) in the system keyring, via the keyring package. See `?gh_token` for details. * `gh()` can now POST raw data, which allows adding assets to releases (#56).
jperkin
pushed a commit
that referenced
this issue
Oct 30, 2021
Pkgsrc changes: * None. Upstream changes: 2021-10-25 1.9.1 Misc: - OpenSSL 3.0 compatibility (#70) Bug Fixes: - Fix refused startup with openssl <1.1 (#82) - Fix compiler issue for Fedora 33 on s390x (#84) - Fix small memory leak in config parser - Fix lazy certificate check when connecting to TLS servers - Fix connect is aborted if first host in list has invalid certificate - Fix setstacksize for glibc 2.34 (#91) - Fix system defaults/settings for TLS version not honored (#92)
jperkin
pushed a commit
that referenced
this issue
Feb 21, 2022
0.6.0.1 * Ensure that position evaluates false inside bibliography (#99). 0.6 * Add Term parameter to TagTerm [API change]. * Add TagPrefix, TagSuffix constructors to Tag [API change]. * Make sure that extracted AuthorOnly names have the correct formatting (#55). * Do case-insensitive sorting, like Zotero (#91). * Ignore "ibid" entries in computing ambiguities. * Improved disambiguation for author-in-text citations. * In disambiguating, convert author-in-text to normal citations. Otherwise we disambiguate incorrectly. * Fix title disambiguation with note style (#90). Previously we'd been calculating ambiguities by generating renderings for citation items independently of context. This meant that we didn't detect ambiguities in "subsequent" citations (which might e.g. just have an author). * Ensure we don't do collapsing of items across a prefix or suffix (#89). If we have [@doe99; for contrasting views see @smith33; @doe00], we don't want to get collapsing to (Doe 1999, 2000; for contrasting views, see Smith 1933). This isn't strictly by the spec, but it gives better results. * Allow collapsing after an initial prefix. 0.5 * Add linkBibliography field to CiteprocOptions [API change]. When this is set to True, we hyperlink bibliography entries according to the draft of the CSL v1.02 spec (Appendix VI). When an entry has a DOI, PMCID, PMID, or URL available but none of these are rendered by the style, add a link to the title (or, if no title is present, the whole entry), using the URL for the DOI, PMCID, PMID, or URL (in that order of priority). (Benjamin Bray, #88.) * In generating citation labels, only use issued date. Not, for example, accessed (#80). * Citeproc.Locale: export lookupQuotes. [API change] * Citeproc.Types: Add localizeQuotes method to CiteprocOutput class [API change]. * Citeproc.CslJson, Citeproc.Pandoc: Implement localizeQuotes. * Citeproc: apply localizeQuotes after rendering. This ensures that quotes are properly localized and flipflopped. Previously this was done in renderCslJson (for CSL JSON) and in pandoc (for Pandoc Inlines). It is more consistent to do this as part of the rendering pipeline, in citeproc itself. * Citeproc.CslJson: Drop the Locale parameter from the signature of renderCslJson [breaking API change]. It was only needed for quote localization, which now occurs outside of this function. * Citeproc.Pandoc: use a Span with class csl-quoted for quotes, rather than a Quoted inline. This way we can leave Quoted elements passed in by pandoc alone, and we won't get strange effects like the one described in #87 (where " behaves differently when in a citation suffix). * Default to Shifted with icu flag (#83). This makes the library behave similarly whether compiled with icu or with the default unicode-collation and prevents test failures with icu. * Require recent text-icu with icu flag. Older versions don't build with newer versions of icu4c. * Support links in CslJson (Benjamin Bray). Currently they are only supported in rendering, not parsing (in support of #88). * Allow test cases to specify CiteprocOptions (Benjamin Bray). * Update locales from upstream. * Add new CSL tests to repository. 0.4.1 * Change Pandoc inNote so it creates a Span with class csl-note rather than a Note. This should make it easier to integrate citations with ordinary notes in pandoc. * Do not hyperlink author-only citations (#77). If we do this we get two consecutive hyperlinks for author-in-text forms. * movePunctuationInsideQuotes: only move , and ., not ? and !, as per the CSL spec. 0.4.0.1 * Fix bug introduced by the fix to #61 (#74). In certain circumstances, we could get doubled "et al.". * Depend on unicode-collation unconditionally (#71). It is necessary even when text-icu is used, because of Text.Collate.Lang. * Rename tests in extra/ so they fall into categories. 0.4 * We now use Lang from unicode-collation rather than defining our own. The type constructor has changed, as has the signature of parseLang. * Use unicode-collation by default for more accurate sorting. * text-icu will still be used if the icu flag is set. This may give better performance, at the cost of depending on a large C library. * Change type of SortKeyValue so it doesn't embed Lang. [API change] Instead, we now store a language-specific collator in the Eval Context. * Move compSortKeyValues from Types to Eval. * Add curly open quote to word splitters in normalizeSortKey. * Improve date sorting: use the format YYYY0000 if no month, day, and YYYYMM00 if no day when generating sort keys. * Special treatment of literal "others" as last name in a list (#61). When we convert bibtex/biblatex bibliographies, the form "and others" yields a last name with nameLiteral = "others". We detect this and generate a localized "and others" (et al). * Make abbreviations case-insensitive (#45).
jperkin
pushed a commit
that referenced
this issue
Mar 15, 2022
Internet Systems Consortium DHCP Distribution Version 4.4.3 9 March 2022 Release Notes NEW FEATURES Please note that that ISC DHCP is licensed under the Mozilla Public License, MPL 2.0. Please see https://www.mozilla.org/en-US/MPL/2.0/ to read the MPL 2.0 license terms. NOTE: The client and relay components are now End-Of-Life. 4.4.3 is the final release for those components. For information on how to install, configure, and run this software, as well as how to find documentation and report bugs, please consult the README file. ISC DHCP uses the standard GNU configure command for installation. Please review the output of `./configure --help` to see what options are available. The system has only been tested on Linux and FreeBSD, and may not work on other platforms. Please subscribe to the dhcp-users mailing list at https://lists.isc.org/mailman/listinfo/dhcp-users and report any problems and/or suggested fixes to dhcp-users@lists.isc.org. ISC DHCP is open source software maintained by Internet Systems Consortium. This product includes cryptographic software written by Eric Young (eay@cryptsoft.com). Changes since 4.4.2-P1 (New Features) - Two new OMAPI function calls were added, `dhcpctl_timed_connect()` and `dhcpctl_timed_wait_for_completion()`. These provide timed versions of creating a connection and waiting for an operation to complete. [GitLab #76] - The BIND libraries have been updated to the latest version, 9.11.36. This fixes a number of compilation issues on various systems, including OpenWRT. Thanks to Philip Prindeville for testing on OpenWRT. [GitLab #218, #171, #180, #192] - Support was added for the new DHCPv4 option v6-only-preferred, specified in RFC 8925. A new reason code, V6ONLY, was added to the client script and the client Linux script sample was updated. [GitLab #132] Changes since 4.4.2-P1 (Bug Fixes) - Minor corrections were made to allow compilation under gcc 10. [GitLab #117] - The logic in dhclient that causes it to decline DHCPv4 leases if the client script exits abnormally (i.e. crashes) has been corrected. [GitLab #123] - The limit on the size of a lease file that can be loaded at startup is now only enforced on 32-bit systems. [GitLab #92] - The PRNG initialization has been improved. It now uses the configure flag `--with-randomdev=PATH`, which specifies the device from which to read the initial seed. That is typically `/dev/random` (the default value) or `/dev/urandom`, but may be specified otherwise on the local system. The old behavior can be forced by disabling this feature (`--with-randomdev=no`). If the initialization is disabled or reading from the random device fails, the previous algorithm (retrieve the last four bytes of hardware addresses from all network interfaces that have them, and use the current time and process ID) is used. [GitLab #197] - A minor dhclient code fix was made to remove compilation warnings. [GitLab #190] - The hard-coded MD5 algorithm name was removed in OMAPI connection logic. Previously, using any other algorithm via a key-algorithm statement would allow OMAPI connections to be made, but subsequent actions such as updating an object would fail. [GitLab #148] - The parallel build has been improved. Thanks to Sergei Trofimovich for the patch. The parallel build is still experimental, as officially the BIND 9 code does not support the parallel build for libraries. [GitLab #91] - Handling of LDAP options (`ldap-gssapi-principal` and `ldap-gssapi-keytab`) has been improved. This is contributed code that has not been tested by ISC. Thank you to Petr Mensik and Pavel Zhukov for the patches! [GitLab !56,!75] - It is now possible to use `option -g ipaddr` in the dhcrelay to replace the giaddr sent to clients with the given ipaddr, to work around bogus clients like Solaris 11 grub which use giaddr instead of the announced router (3) to set up their default route. Thanks to Jens Elkner for the patch! [GitLab #223, !86, !92]
jperkin
pushed a commit
that referenced
this issue
Apr 24, 2022
0.13.1 fix: improved shell completion for URLs by @danielgtaylor in #95 fix: simplify option handling, send explicitly passed defaults by @danielgtaylor in #96 0.13.0 feat: cache parsed/loaded APIs for faster access by @danielgtaylor in #83 fix: sending non-structured-object input via stdin, fixes #81 by @danielgtaylor in #84 fix: better handling of params with unknown types, fixes #63 by @danielgtaylor in #85 fix: trim trailing slashes from OpenAPI servers by @danielgtaylor in #86 fix: custom server usage, fixes #54 by @danielgtaylor in #87 feat: enabled & document raw mode for saving files by @danielgtaylor in #88 fix: parameter serialization for style: form, fixes #47 by @danielgtaylor in #89 fix: handle recursive schemas without crashing, fixes #21 by @danielgtaylor in #90 feat: add api sync command by @danielgtaylor in #91 feat: update dependencies by @danielgtaylor in #92 fix: simplify edit resource command code by @danielgtaylor in #93 fix: panic when multiple configured APIs have the same base URL by @danielgtaylor in #94 0.12.0 b8773c1 Merge pull request #82 from danielgtaylor/completion b600019 feat: add auth-header command b9d6da4 feat: completion of URI templates b0b14ed feat: dynamic shell completion for OpenAPI operations 593acaf fix: utilize existing API loading for completion
jperkin
pushed a commit
that referenced
this issue
Jun 6, 2022
0.5.0 - 2022-06-02 Added Added support for tracing using IPv6 for icmp and udp (#35) Added BSOD error reporting to Tui (#179) Added Ctrl-C keyboard command to quit the Tui (#91) Changed Rewrite of network code to use RAW sockets (#195, #192) Fixed Setting -c (--report-cycles) to 1 returns no traces (#189) Tracer failures not being shown for reports (#183)
jperkin
pushed a commit
that referenced
this issue
Sep 2, 2022
Internet Systems Consortium DHCP Distribution Version 4.4.3 9 March 2022 Release Notes NEW FEATURES Please note that that ISC DHCP is licensed under the Mozilla Public License, MPL 2.0. Please see https://www.mozilla.org/en-US/MPL/2.0/ to read the MPL 2.0 license terms. NOTE: The client and relay components are now End-Of-Life. 4.4.3 is the final release for those components. For information on how to install, configure, and run this software, as well as how to find documentation and report bugs, please consult the README file. ISC DHCP uses the standard GNU configure command for installation. Please review the output of `./configure --help` to see what options are available. The system has only been tested on Linux and FreeBSD, and may not work on other platforms. Please subscribe to the dhcp-users mailing list at https://lists.isc.org/mailman/listinfo/dhcp-users and report any problems and/or suggested fixes to dhcp-users@lists.isc.org. ISC DHCP is open source software maintained by Internet Systems Consortium. This product includes cryptographic software written by Eric Young (eay@cryptsoft.com). Changes since 4.4.2-P1 (New Features) - Two new OMAPI function calls were added, `dhcpctl_timed_connect()` and `dhcpctl_timed_wait_for_completion()`. These provide timed versions of creating a connection and waiting for an operation to complete. [GitLab #76] - The BIND libraries have been updated to the latest version, 9.11.36. This fixes a number of compilation issues on various systems, including OpenWRT. Thanks to Philip Prindeville for testing on OpenWRT. [GitLab #218, #171, #180, #192] - Support was added for the new DHCPv4 option v6-only-preferred, specified in RFC 8925. A new reason code, V6ONLY, was added to the client script and the client Linux script sample was updated. [GitLab #132] Changes since 4.4.2-P1 (Bug Fixes) - Minor corrections were made to allow compilation under gcc 10. [GitLab #117] - The logic in dhclient that causes it to decline DHCPv4 leases if the client script exits abnormally (i.e. crashes) has been corrected. [GitLab #123] - The limit on the size of a lease file that can be loaded at startup is now only enforced on 32-bit systems. [GitLab #92] - The PRNG initialization has been improved. It now uses the configure flag `--with-randomdev=PATH`, which specifies the device from which to read the initial seed. That is typically `/dev/random` (the default value) or `/dev/urandom`, but may be specified otherwise on the local system. The old behavior can be forced by disabling this feature (`--with-randomdev=no`). If the initialization is disabled or reading from the random device fails, the previous algorithm (retrieve the last four bytes of hardware addresses from all network interfaces that have them, and use the current time and process ID) is used. [GitLab #197] - A minor dhclient code fix was made to remove compilation warnings. [GitLab #190] - The hard-coded MD5 algorithm name was removed in OMAPI connection logic. Previously, using any other algorithm via a key-algorithm statement would allow OMAPI connections to be made, but subsequent actions such as updating an object would fail. [GitLab #148] - The parallel build has been improved. Thanks to Sergei Trofimovich for the patch. The parallel build is still experimental, as officially the BIND 9 code does not support the parallel build for libraries. [GitLab #91] - Handling of LDAP options (`ldap-gssapi-principal` and `ldap-gssapi-keytab`) has been improved. This is contributed code that has not been tested by ISC. Thank you to Petr Mensik and Pavel Zhukov for the patches! [GitLab !56,!75] - It is now possible to use `option -g ipaddr` in the dhcrelay to replace the giaddr sent to clients with the given ipaddr, to work around bogus clients like Solaris 11 grub which use giaddr instead of the announced router (3) to set up their default route. Thanks to Jens Elkner for the patch! [GitLab #223, !86, !92]
jperkin
pushed a commit
that referenced
this issue
Sep 4, 2022
0.11.2 (2022-08-29) * Avoid modifying string literals #91
jperkin
pushed a commit
that referenced
this issue
Nov 15, 2022
What's Changed Exciting New Features - Add focus keybindings to the config by @Builditluc in #79 - Better logging messages by @Builditluc in #83 - Create config file if not existent by @Builditluc in #88 - Overhaul the UI by @Builditluc in #81 Bug Fixes - Fix no article being displayed by @Builditluc in #73 - Disable logging if not enabled in the config by @Builditluc in #91 - Fix crash on non writable directory by @Builditluc in #99 Documentation Changes - Add toc configuration documentation by @Builditluc in #75 - Change Branch naming by @Builditluc in #76 - Add FreeBSD install instructions by @nunotexbsd in #86 Other Changes - Add label to exclude PRs from release notes by @Builditluc in #72 - Bump toml dependency to 0.5.9 by @Builditluc in #85 - Fix documentation action by @Builditluc in #101
jperkin
pushed a commit
that referenced
this issue
Jan 4, 2023
jperkin
pushed a commit
that referenced
this issue
Feb 7, 2023
1.7.0 (2022-11-17) What's Changed * Extract creation of Net::HTTP in httpproxy by @wishdev in #41 * Fix httpd error in CJK directory by @jeremyevans in #42 * Use GitHub Actions instead of Travis CI (retry) by @deivid-rodriguez in #40 * Skip env-locale-sensitive CGI test on the "java" platform by @headius in #46 * Make readpartial limit chunk to appropriate size by @wishdev in #45 * Do not use ensure in a block without begin by @jeremyevans in #49 * Allow empty POST and PUT requests without content length by @jeremyevans in #50 * Only run test_big_bodies test on Ruby 2.5+ by @jeremyevans in #51 * Fix test when run with US-ASCII encoding by @jeremyevans in #52 * Allow shutdown_pipe to be passed in via @config by @wishdev in #44 * Ensure server port numbers are numeric and ensure they are stored as ... by @wishdev in #55 * Fix shutdown_pipe test issue by @wishdev in #54 * Allow EPROTOTYPE error when writing junk to a socket by @jeremyevans in #56 * Use ruby/setup-ruby instead of actions/setup-ruby by @hsbt in #58 * Refix test_shutdown_pipe by @wishdev in #59 * add mime type of extention mjs by @paulownia in #60 * Make it more strict to interpret some headers by @mame in #61 1.8.0 (2023-01-27) What's Changed * Use frozen strings by @kirs in #65 * Use test-unit by @hsbt in #66 * More rubies on CI, deprecating ruby 2.3 due to test failure by @mathieujobin in #68 * Adds common mime types by @gotoken in #75 * add mime type for .webmanifest extension by @olleolleolle in #76 * CI: use bundler-cache: true by @olleolleolle in #79 * Typo by @printfinn in #78 * s/RubyVM::JIT/RubyVM::MJIT/g by @k0kubun in #82 * Fix invalid use of IP addresses in SNI by @jeremyevans in #83 * Bump actions/checkout from 2 to 3 by @dependabot in #91 * remove unneeded bin/console and bin/setup files from gemspec by @Benjamin-L in #94 * Accept put requests by @bharjr01 in #70 * Move the host request parsing to a separate method. by @wishdev in #85 * Only output prime information to $stderr if $VERBOSE by @jeremyevans in #88 * Better support for connection upgrade and bi-directional streaming. by @ioquatix in #101 1.8.1 (2023-01-27) What's Changed * Body should be non-frozen by default. by @ioquatix in #103 * Join test thread. by @ioquatix in #104 * Fix several regexp warnings. by @ioquatix in #105
jperkin
pushed a commit
that referenced
this issue
Apr 8, 2023
[1.7.0] - 2023-03-30 What's Changed - Fix windows can not recognize the tag version when publishing by @Tlntin in #91 - Fix the problem that test actions cannot upload windows binary files, add the function of custom form to set tag version. by @Tlntin in #94 - Reduce default thread count by @solidiquis in #99 - option for plain text disk usage reporting by @solidiquis in #102 - Prune bug by @solidiquis in #103 - dirs-only by @solidiquis in #104 - Feature/file count by @solidiquis in #105
jperkin
pushed a commit
that referenced
this issue
Apr 28, 2023
This release fixes for installation issues on nix and updates dependencies to solve potential vulnerabilities. Other than that, installation sources in the documentation have been updated and code has been refactored to improve quality and to allow for easier integration of other weather data sources in the coming releases. What's Changed - Add API Trait by @kevinmatthes in #88 - Add Information on cargo install --git by @kevinmatthes in #91 - Add information on installation from the AUR by @orhun in #104 - Refactor 'localisation' by @danieleades in #107 - Address a bunch of pedantic clippy lints by @danieleades in #106 - Refactor get_forecast_indices() by @tobealive in #111 - Updated flake.lock by @jeiang in #114 - Updated flake.nix to exclude network tests by @jeiang in #120 - Create Local Coverage GHA Workflow by @kevinmatthes in #112
jperkin
pushed a commit
that referenced
this issue
May 5, 2023
1.3.0 add command-line options "-g", "-u", "-p" by @jschauma in #97 1.2.0 Add support for redis-sentinel by @acteru in #95 advertise new kind of supported cache by @acteru in #96 1.1.5 Warn about overriding DANE by @oh2fih in #92 Fix tests by @Snawoot in #93 1.1.4 docs: Fix a few typos by @timgates42 in #87 fix tests by @Snawoot in #88 allow unicode requests by @Snawoot in #91
jperkin
pushed a commit
that referenced
this issue
May 21, 2023
2.5.0 C<2023-02-05> * Set minimal Perl version to 5.16 (#91) * Per default enviroment from vscode will be passed to debuggee, syntax check and perltidy. * Add configuration C<disablePassEnv> to not pass enviroment variables. * Support for C<logLevel> and C<logFile> settings via LanguageServer protocol and not only via command line options (#97) [schellj] * Fix: "No DB::DB routine defined" (#91) [peterdragon] * Fix: Typos and spelling in README (#159) [dseynhae] * Fix: Update call to gensym(), to fix 'strict subs' error (#164) [KohaAloha] * Convert identention from tabs to spaces and remove trailing whitespaces
jperkin
pushed a commit
that referenced
this issue
Sep 1, 2023
Switch to GH Actions CI. by @patrickt in #41 Add the same PR template as for tree-sitter-javascript by @mjambon in #43 Update package.json to include the repository key by @msftenhanceprovenance in #50 Loosen Rust crate's tree-sitter dependency by @dcreager in #52 adding make support by @mattmassicotte in #56 feat: treat iota as predeclared identifier by @kawaemon in #58 feat: add support to parse of type parameters by @kawaemon in #57 feat: allow to put type arguments in calling expressions by @kawaemon in #59 Update C code by @aryx in #66 Document reason for statements at top level by @adonovan in #67 Make method bodies non-optional by @adonovan in #68 Fix node naming in {param,field}_declaration by @adonovan in #65 Structure Query by @mattmassicotte in #70 Remove field_identifier from keyed_element by @adonovan in #71 Generic Makefile by @mattmassicotte in #72 Bump tree-sitter version to 0.20 by @hendrikvanantwerpen in #78 Swift Package by @mattmassicotte in #79 Made body optional for method_declaration by @lmaruvada in #90 Allow GenericType to accept QualifiedType by @kawaemon in #92 feat(queries/highlight): highlight built-in functions as @function.builtin by @jimeh in #96 feat(grammar): capture comment directives by @matoous in #97 Revert "Merge pull request #97 from matoous/md/comment-directives" by @matoous in #98 feat(ci): run build & test action on PRs by @matoous in #99 fix: fix string literal rule by @SuperBo in #91 Add more types and struct/parameter fix by @amaanq in #118 Param fix by @amaanq in #119 Update identifiers and top level declarations by @amaanq in #120 Fix single import spec list without terminator by @amaanq in #122 Materialize expression_statement nodes by @josharian in #124 Formatting & CI fixes by @amaanq in #126
jperkin
pushed a commit
that referenced
this issue
Sep 3, 2023
6.3.0 (2023-08-30) Features * Allow for non-standard provisioning URI params, eg. image/icon (#91) (45d8aac)
jperkin
pushed a commit
that referenced
this issue
Jan 9, 2024
2.47 2023-12-28 (by Todd Rinaldo) - #84 use $fh instead of $foo - #85 Fix typo in documentation - #89 Devel::CheckLib to from 0.99 -> 1.14 - Devel::CheckLibn 1.16 - #91 POD fix for verbatim text - #97 Add a LICENSE file - #94 Don't ship Expat/Makefile - Various github workflow improvements. Windows is still not working.
jperkin
pushed a commit
that referenced
this issue
Jan 25, 2024
# rprojroot 2.0.4 (2023-11-05) ## Features - Add `is_renv_project` criterion looking for an `renv.lock` file (@gadenbuie, #86). - Add `is_quarto_project` criterion looking for a Quarto project (@olivroy, #91, #92). ## Chore - Update maintainer e-mail address. ## Testing - Wrap `::` to skip if not installed in tests (#94).
jperkin
pushed a commit
that referenced
this issue
Feb 7, 2024
1.5.1 (2024-01-31) * Peter Goldstein updated CI configuration to add Ruby 3.1 and Masato Nakamura added Ruby 3.2 and 3.3. #82, #89 * Updated the CI configuration, resolving #82 to add Ruby 3.1. Masato * Switched to standard ruby formatting. * Justin Steele converted the licence file to Markdown. #84 * Updated the gem SPDX identifier for GPL 2.0 or later, resolving #86 by Vit Ondruch. * Resolve a potential security issue with ldiff in its use of IO.read instead of File.read. #91 * Added MFA authentication requirement for release to RubyGems. #90 * Added dependabot management for actions and gems. #90 * Updated CodeQL coniguration. #90
jperkin
pushed a commit
that referenced
this issue
Feb 20, 2024
pkgsrc changes: - adapt to various upstream changes - update for newer version of pjproject - add unconditional depeendency on SDL - remove pktccops and mgcp option (has to do with supporting cable headends) - remove various 64-bit time_t fixes as upstream is finally doing these [asterisk-announce] asterisk release 18.21.0 The Asterisk Development Team would like to announce the release of asterisk-18.21.0. This release resolves issues reported by the community and would have not been possible without your participation. Thank You! Change Log for Release asterisk-18.21.0 ======================================== Summary: ---------------------------------------- - logger: Fix linking regression. - Revert "core & res_pjsip: Improve topology change handling." - menuselect: Use more specific error message. - res_pjsip_nat: Fix potential use of uninitialized transport details - app_if: Fix faulty EndIf branching. - manager.c: Fix regression due to using wrong free function. - config_options.c: Fix truncation of option descriptions. - manager.c: Improve clarity of "manager show connected". - make_xml_documentation: Really collect LOCAL_MOD_SUBDIRS documentation. - general: Fix broken links. - MergeApproved.yml: Remove unneeded concurrency - app_dial: Add option "j" to preserve initial stream topology of caller - ast_coredumper: Increase reliability - logger.c: Move LOG_GROUP documentation to dedicated XML file. - res_odbc.c: Allow concurrent access to request odbc connections - res_pjsip_header_funcs.c: Check URI parameter length before copying. - config.c: Log #exec include failures. - make_xml_documentation: Properly handle absolute LOCAL_MOD_SUBDIRS. - app_voicemail.c: Completely resequence mailbox folders. - sig_analog: Fix channel leak when mwimonitor is enabled. - res_rtp_asterisk.c: Update for OpenSSL 3+. - alembic: Update list of TLS methods available on ps_transports. - func_channel: Expose previously unsettable options. - app.c: Allow ampersands in playback lists to be escaped. - uri.c: Simplify ast_uri_make_host_with_port() - func_curl.c: Remove CURLOPT() plaintext documentation. - res_http_websocket.c: Set hostname on client for certificate validation. - live_ast: Add astcachedir to generated asterisk.conf. - SECURITY.md: Update with correct documentation URL - func_lock: Add missing see-also refs to documentation. - app_followme.c: Grab reference on nativeformats before using it - configs: Improve documentation for bandwidth in iax.conf. - logger: Add channel-based filtering. - chan_iax2.c: Don't send unsanitized data to the logger. - codec_ilbc: Disable system ilbc if version >= 3.0.0 - resource_channels.c: Explicit codec request when creating UnicastRTP. - doc: Update IP Quality of Service links. - chan_pjsip: Add PJSIPHangup dialplan app and manager action - chan_iax2.c: Ensure all IEs are displayed when dumping frame contents. - chan_dahdi: Warn if nonexistent cadence is requested. - stasis: Update the snapshot after setting the redirect - ari: Provide the caller ID RDNIS for the channels - main/utils: Implement ast_get_tid() for OpenBSD - res_rtp_asterisk.c: Fix runtime issue with LibreSSL - app_directory: Add ADSI support to Directory. - core_local: Fix local channel parsing with slashes. - Remove files that are no longer updated - app_voicemail: Add AMI event for mailbox PIN changes. - app_queue.c: Emit unpause reason with PauseQueueMember event. - bridge_simple: Suppress unchanged topology change requests - res_pjsip: Include cipher limit in config error message. - res_speech: allow speech to translate input channel - res_rtp_asterisk.c: Fix memory leak in ephemeral certificate creation. - res_pjsip_dtmf_info.c: Add 'INFO' to Allow header. - api.wiki.mustache: Fix indentation in generated markdown - pjsip_configuration.c: Disable DTLS renegotiation if WebRTC is enabled. - configs: Fix typo in pjsip.conf.sample. - res_pjsip_exten_state,res_pjsip_mwi: Allow unload on shutdown - res_pjsip: Expanding PJSIP endpoint ID and relevant resource length to 255 characters - .github: PRSubmitActions: Fix adding reviewers to PR - .github: New PR Submit workflows - .github: New PR Submit workflows - res_stasis: signal when new command is queued - ari/stasis: Indicate progress before playback on a bridge - func_curl.c: Ensure channel is locked when manipulating datastores. - .github: Fix job prereqs in PROpenedUpdated - .github: Block PR tests until approved - logger.h: Add ability to change the prefix on SCOPE_TRACE output - Add libjwt to third-party - res_pjsip: update qualify_timeout documentation with DNS note - chan_dahdi: Clarify scope of callgroup/pickupgroup. - func_json: Fix crashes for some types - res_speech_aeap: add aeap error handling - app_voicemail: Disable ADSI if unavailable. - codec_builtin: Use multiples of 20 for maximum_ms - lock.c: Separate DETECT_DEADLOCKS from DEBUG_THREADS - asterisk.c: Use the euid's home directory to read/write cli history - res_pjsip_transport_websocket: Prevent transport from being destroyed before message finishes. - cel: add publish user event helper - chan_console: Fix deadlock caused by unclean thread exit. - file.c: Add ability to search custom dir for sounds - chan_iax2: Improve authentication debugging. - res_rtp_asterisk: fix wrong counter management in ioqueue objects - make_buildopts_h, et. al. Allow adding all cflags to buildopts.h - func_periodic_hook: Add hangup step to avoid timeout - res_stasis_recording.c: Save recording state when unmuted. - res_speech_aeap: check for null format on response - func_periodic_hook: Don't truncate channel name - safe_asterisk: Change directory permissions to 755 - chan_rtp: Implement RTP glue for UnicastRTP channels - app_queue: periodic announcement configurable start time. - variables: Add additional variable dialplan functions. - Restore CHANGES and UPGRADE.txt to allow cherry-picks to work User Notes: ---------------------------------------- - ### app_dial: Add option "j" to preserve initial stream topology of caller The option "j" is now available for the Dial application which uses the initial stream topology of the caller to create the outgoing channels. - ### logger: Add channel-based filtering. The console log can now be filtered by channels or groups of channels, using the logger filter CLI commands. - ### chan_pjsip: Add PJSIPHangup dialplan app and manager action A new dialplan app PJSIPHangup and AMI action allows you to hang up an unanswered incoming PJSIP call with a specific SIP response code in the 400 -> 699 range. - ### app_voicemail: Add AMI event for mailbox PIN changes. The VoicemailPasswordChange event is now emitted whenever a mailbox password is updated, containing the mailbox information and the new password. Resolves: #398 - ### res_speech: allow speech to translate input channel res_speech now supports translation of an input channel to a format supported by the speech provider, provided a translation path is available between the source format and provider capabilites. - ### res_pjsip: Expanding PJSIP endpoint ID and relevant resource length to 255 characters With this update, the PJSIP realm lengths have been extended to support up to 255 characters. - ### res_stasis: signal when new command is queued Call setup times should be significantly improved when using ARI. - ### lock.c: Separate DETECT_DEADLOCKS from DEBUG_THREADS You no longer need to select DEBUG_THREADS to use DETECT_DEADLOCKS. This removes a significant amount of overhead if you just want to detect possible deadlocks vs needing full lock tracing. - ### file.c: Add ability to search custom dir for sounds A new option "sounds_search_custom_dir" has been added to asterisk.conf that allows asterisk to search AST_DATA_DIR/sounds/custom for sounds files before searching the standard AST_DATA_DIR/sounds/<lang> directory. - ### make_buildopts_h, et. al. Allow adding all cflags to buildopts.h The "Build Options" entry in the "core show settings" CLI command has been renamed to "ABI related Build Options" and a new entry named "All Build Options" has been added that shows both breaking and non-breaking options. - ### chan_rtp: Implement RTP glue for UnicastRTP channels The dial string option 'g' was added to the UnicastRTP channel which enables RTP glue and therefore native RTP bridges with those channels. - ### app_queue: periodic announcement configurable start time. Introduce a new queue configuration option called 'periodic-announce-startdelay' which will vary the normal (historic) behavior of starting the periodic announcement cycle at periodic-announce-frequency seconds after entering the queue to start the periodic announcement cycle at period-announce-startdelay seconds after joining the queue. The default behavior if this config option is not set remains unchanged. Signed-off-by: Jaco Kroon <jaco at uls.co.za> - ### variables: Add additional variable dialplan functions. Four new dialplan functions have been added. GLOBAL_DELETE and DELETE have been added which allows the deletion of global and channel variables. GLOBAL_EXISTS and VARIABLE_EXISTS have been added which checks whether a global or channel variable has been set. Upgrade Notes: ---------------------------------------- - ### app.c: Allow ampersands in playback lists to be escaped. Ampersands in URLs passed to the `Playback()`, `Background()`, `SpeechBackground()`, `Read()`, `Authenticate()`, or `Queue()` applications as filename arguments can now be escaped by single quoting the filename. Additionally, this is also possible when using the `CONFBRIDGE` dialplan function, or configuring various features in `confbridge.conf` and `queues.conf`. - ### pjsip_configuration.c: Disable DTLS renegotiation if WebRTC is enabled. The dtls_rekey will be disabled if webrtc support is requested on an endpoint. A warning will also be emitted. - ### res_pjsip: Expanding PJSIP endpoint ID and relevant resource length to 255 characters As part of this update, the maximum allowable length for PJSIP endpoints and relevant resources has been increased from 40 to 255 characters. To take advantage of this enhancement, it is recommended to run the necessary procedures (e.g., Alembic) to update your schemas. [asterisk-announce] asterisk release 18.20.2 The Asterisk Development Team would like to announce the release of asterisk-18.20.2. This release resolves issues reported by the community and would have not been possible without your participation. Thank You! Change Log for Release asterisk-18.20.2 ======================================== Summary: ---------------------------------------- - res_rtp_asterisk: Fix regression issues with DTLS client check [asterisk-announce] asterisk release 18.20.1 The Asterisk Development Team would like to announce security release Asterisk 18.20.1. The following security advisories were resolved in this release: - [Path traversal via AMI GetConfig allows access to outside files](https://github.com/asterisk/asterisk/s ecurity/advisories/GHSA-8857-hfmw-vg8f) - [Asterisk susceptible to Denial of Service via DTLS Hello packets during call initiation](https://github .com/asterisk/asterisk/security/advisories/GHSA-hxj9-xwr8-w8pq) - [PJSIP logging allows attacker to inject fake Asterisk log entries ](https://github.com/asterisk/asteris k/security/advisories/GHSA-5743-x3p5-3rg7) - [PJSIP_HEADER dialplan function can overwrite memory/cause crash when using 'update'](https://github.com /asterisk/asterisk/security/advisories/GHSA-98rc-4j27-74hh) Change Log for Release asterisk-18.20.1 ======================================== Summary: ---------------------------------------- - res_pjsip_header_funcs: Duplicate new header value, don't copy. - res_pjsip: disable raw bad packet logging - res_rtp_asterisk.c: Check DTLS packets against ICE candidate list - manager.c: Prevent path traversal with GetConfig. [asterisk-announce] asterisk release 18.20.0 The Asterisk Development Team would like to announce the release of asterisk-18.20.0. This release resolves issues reported by the community and would have not been possible without your participation. Thank You! Change Log for Release asterisk-18.20.0 ======================================== Summary: ---------------------------------------- - ari-stubs: Fix more local anchor references - ari-stubs: Fix more local anchor references - ari-stubs: Fix broken documentation anchors - res_pjsip_session: Send Session Interval too small response - .github: Update workflow-application-token-action to v2 - app_dial: Fix infinite loop when sending digits. - app_voicemail: Fix for loop declarations - alembic: Fix quoting of the 100rel column - pbx.c: Fix gcc 12 compiler warning. - app_audiosocket: Fixed timeout with -1 to avoid busy loop. - download_externals: Fix a few version related issues - main/refer.c: Fix double free in refer_data_destructor + potential leak - sig_analog: Add Called Subscriber Held capability. - app_macro: Fix locking around datastore access - Revert "app_stack: Print proper exit location for PBXless channels." - .github: Use generic releaser - install_prereq: Fix dependency install on aarch64. - res_pjsip.c: Set contact_user on incoming call local Contact header - extconfig: Allow explicit DB result set ordering to be disabled. - rest-api: Run make ari-stubs - res_pjsip_header_funcs: Make prefix argument optional. - pjproject_bundled: Increase PJSIP_MAX_MODULE to 38 - manager: Tolerate stasis messages with no channel snapshot. - core/ari/pjsip: Add refer mechanism - chan_dahdi: Allow autoreoriginating after hangup. - audiohook: Unlock channel in mute if no audiohooks present. - sig_analog: Allow three-way flash to time out to silence. - res_prometheus: Do not generate broken metrics - res_pjsip: Enable TLS v1.3 if present. - func_cut: Add example to documentation. - extensions.conf.sample: Remove reference to missing context. - func_export: Use correct function argument as variable name. - app_queue: Add support for applying caller priority change immediately. - .github: Fix cherry-pick reminder issues - chan_iax2.c: Avoid crash with IAX2 switch support. - res_geolocation: Ensure required 'location_info' is present. - Adds manager actions to allow move/remove/forward individual messages in a particular mailbox folder. The forward command can be used to copy a message within a mailbox or to another mailbox. Also adds a VoicemailBoxSummarry, required to retrieve message ID's. - app_voicemail: add CLI commands for message manipulation - res_rtp_asterisk: Move ast_rtp_rtcp_report_alloc using `rtp->themssrc_valid` into the scope of the rtp_i nstance lock. - .github: Minor tweak to Asterisk Releaser - .github: Suppress cherry-pick reminder for some situations - sig_analog: Allow immediate fake ring to be suppressed. User Notes: ---------------------------------------- - ### sig_analog: Add Called Subscriber Held capability. Called Subscriber Held is now supported for analog FXS channels, using the calledsubscriberheld option. This allows a station user to go on hook when receiving an incoming call and resume from another phone on the same line by going on hook, without disconnecting the call. - ### res_pjsip_header_funcs: Make prefix argument optional. The prefix argument to PJSIP_HEADERS is now optional. If not specified, all header names will be returned. - ### core/ari/pjsip: Add refer mechanism There is a new ARI endpoint `/endpoints/refer` for referring an endpoint to some URI or endpoint. - ### chan_dahdi: Allow autoreoriginating after hangup. The autoreoriginate setting now allows for kewlstart FXS channels to automatically reoriginate and provide dial tone to the user again after all calls on the line have cleared. This saves users from having to manually hang up and pick up the receiver again before making another call. - ### sig_analog: Allow three-way flash to time out to silence. The threewaysilenthold option now allows the three-way dial tone to time out to silence, rather than continuing forever. - ### res_pjsip: Enable TLS v1.3 if present. res_pjsip now allows TLS v1.3 to be enabled if supported by the underlying PJSIP library. The bundled version of PJSIP supports TLS v1.3. - ### app_queue: Add support for applying caller priority change immediately. The 'queue priority caller' CLI command and 'QueueChangePriorityCaller' AMI action now have an 'immediate' argument which allows the caller priority change to be reflected immediately, causing the position of a caller to move within the queue depending on the priorities of the other callers. - ### Adds manager actions to allow move/remove/forward individual messages in a particular mailbox folder. The forward command can be used to copy a message within a mailbox or to another mailbox. Also adds a Vo icemailBoxSummarry, required to retrieve message ID's. The following manager actions have been added VoicemailBoxSummary - Generate message list for a given mailbox VoicemailRemove - Remove a message from a mailbox folder VoicemailMove - Move a message from one folder to another within a mailbox VoicemailForward - Copy a message from one folder in one mailbox to another folder in another or the same mailbox. - ### app_voicemail: add CLI commands for message manipulation The following CLI commands have been added to app_voicemail voicemail show mailbox <mailbox> <context> Show contents of mailbox <mailbox>@<context> voicemail remove <mailbox> <context> <from_folder> <messageid> Remove message <messageid> from <from_folder> in mailbox <mailbox>@<context> voicemail move <mailbox> <context> <from_folder> <messageid> <to_folder> Move message <messageid> in mailbox <mailbox>&<context> from <from_folder> to <to_folder> voicemail forward <from_mailbox> <from_context> <from_folder> <messageid> <to_mailbox> <to_context> <to_ folder> Forward message <messageid> in mailbox <mailbox>@<context> <from_folder> to mailbox <mailbox>@<context> <to_folder> - ### sig_analog: Allow immediate fake ring to be suppressed. The immediatering option can now be set to no to suppress the fake audible ringback provided when immediate=yes on FXS channels. [asterisk-announce] Asterisk Release 18.19.0 The Asterisk Development Team would like to announce the release of Asterisk 18.19.0. This release resolves issues reported by the community and would have not been possible without your participation. Thank You! Change Log for Release 18.19.0 ======================================== Summary: ---------------------------------------- - app.h: Move declaration of ast_getdata_result before its first use - doc: Remove obsolete CHANGES-staging and UPGRADE-staging - .github: Updates for AsteriskReleaser - app_voicemail: fix imap compilation errors - res_musiconhold: avoid moh state access on unlocked chan - utils: add lock timestamps for DEBUG_THREADS - .github: Back out triggering PROpenedOrUpdated by label - .github: Move publish docs to new file CreateDocs.yml - rest-api: Updates for new documentation site - .github: Remove result check from PROpenUpdateGateTests - .github: Fix use of 'contains' - .github: Add recheck label test to additional jobs - .github: Fix recheck label typos - .github: Fix recheck label manipulation - .github: Allow PR submit checks to be re-run by label - app_voicemail_imap: Fix message count when IMAP server is unavailable - res_pjsip_rfc3326: Prefer Q.850 cause code over SIP. - res_pjsip_session: Added new function calls to avoid ABI issues. - app_queue: Add force_longest_waiting_caller option. - pjsip_transport_events.c: Use %zu printf specifier for size_t. - res_crypto.c: Gracefully handle potential key filename truncation. - configure: Remove obsolete and deprecated constructs. - res_fax_spandsp.c: Clean up a spaces/tabs issue - ast-db-manage: Synchronize revisions between comments and code. - test_statis_endpoints: Fix channel_messages test again - res_crypto.c: Avoid using the non-portable ALLPERMS macro. - tcptls: when disabling a server port, we should set the accept_fd to -1. - AMI: Add parking position parameter to Park action - test_stasis_endpoints.c: Make channel_messages more stable - build: Fix a few gcc 13 issues - .github: Rework for merge approval - ast-db-manage: Fix alembic branching error caused by #122. - app_followme: fix issue with enable_callee_prompt=no (#88) - sounds: Update download URL to use HTTPS. - configure: Makefile downloader enable follow redirects. - res_musiconhold: Add option to loop last file. - chan_dahdi: Fix Caller ID presentation for FXO ports. - AMI: Add CoreShowChannelMap action. - sig_analog: Add fuller Caller ID support. - res_stasis.c: Add new type 'sdp_label' for bridge creation. - app_queue: Preserve reason for realtime queues - .github: Fix issues with cherry-pick-reminder - indications: logging changes - .github Ignore error when adding reviewrs to PR - .github: Update field descriptions for AsteriskReleaser - callerid: Allow specifying timezone for date/time. - chan_pjsip: Allow topology/session refreshes in early media state - chan_dahdi: Fix broken hidecallerid setting. - .github: Change title of AsteriskReleaser job - asterisk.c: Fix option warning for remote console. - .github: Don't add cherry-pick reminder if it's already present - .github: Fix quoting in PROpenedOrUpdated - .github: Add cherry-pick reminder to new PRs - configure: fix test code to match gethostbyname_r prototype. - res_pjsip_pubsub.c: Use pjsip version for pending NOTIFY check. (#76) - res_sorcery_memory_cache.c: Fix memory leak - xml.c: Process XML Inclusions recursively. - .github: Tweak improvement issue type language. - .github: Tweak new feature language, and move feature requests elsewhere. - .github: Fix staleness check to only run on certain labels. User Notes: ---------------------------------------- - ### AMI: Add parking position parameter to Park action New ParkingSpace parameter has been added to AMI action Park. - ### res_musiconhold: Add option to loop last file. The loop_last option in musiconhold.conf now allows the last file in the directory to be looped once reached. - ### AMI: Add CoreShowChannelMap action. New AMI action CoreShowChannelMap has been added. - ### sig_analog: Add fuller Caller ID support. Additional Caller ID properties are now supported on incoming calls to FXS stations, namely the redirecting reason and call qualifier. - ### res_stasis.c: Add new type 'sdp_label' for bridge creation. When creating a bridge using the ARI the 'type' argument now accepts a new value 'sdp_label' which will configure the bridge to add labels for each stream in the SDP with the corresponding channel id. - ### app_queue: Preserve reason for realtime queues Make paused reason in realtime queues persist an Asterisk restart. This was fixed for non-realtime queues in ASTERISK_25732. Upgrade Notes: ---------------------------------------- - ### app_queue: Preserve reason for realtime queues Add a new column to the queue_member table: reason_paused VARCHAR(80) so the reason can be preserved. Closed Issues: ---------------------------------------- - #45: [bug]: Non-bundled PJSIP check for evsub pending NOTIFY check is insufficient/ineffective - #55: [bug]: res_sorcery_memory_cache: Memory leak when calling sorcery_memory_cache_open - #64: [bug]: app_voicemail_imap wrong behavior when losing IMAP connection - #65: [bug]: heap overflow by default at startup - #66: [improvement]: Fix preserve reason of pause when Asterisk is restared for realtime queues - #73: [new-feature]: pjsip: Allow topology/session refreshes in early media state - #87: [bug]: app_followme: Setting enable_callee_prompt=no breaks timeout - #89: [improvement]: indications: logging changes - #91: [improvement]: Add parameter on ARI bridge create to allow it to send SDP labels - #94: [new-feature]: sig_analog: Add full Caller ID support for incoming calls - #98: [new-feature]: callerid: Allow timezone to be specified at runtime - #100: [bug]: sig_analog: hidecallerid setting is broken - #102: [bug]: Strange warning - 'T' option is not compatible with remote console mode and has no effect . - #104: [improvement]: Add AMI action to get a list of connected channels - #108: [new-feature]: fair handling of calls in multi-queue scenarios - #110: [improvement]: utils - add lock timing information with DEBUG_THREADS - #116: [bug]: SIP Reason: "Call completed elsewhere" no longer propagating - #120: [bug]: chan_dahdi: Fix broken presentation for FXO caller ID - #122: [new-feature]: res_musiconhold: Add looplast option - #133: [bug]: unlock channel after moh state access - #136: [bug]: Makefile downloader does not follow redirects. - #145: [bug]: ABI issue with pjproject and pjsip_inv_session - #155: [bug]: GCC 13 is catching a few new trivial issues - #158: [bug]: test_stasis_endpoints.c: Unit test channel_messages is unstable - #174: [bug]: app_voicemail imap compile errors - #200: [bug]: Regression: In app.h an enum is used before its declaration. [asterisk-announce] Asterisk Release 18.18.1 The Asterisk Development Team would like to announce security release Asterisk 18.18.1. The following security advisories were resolved in this release: https://github.com/asterisk/asterisk/security/advisories/GHSA-4xjp-22g4-9fxm Change Log for Release 18.18.1 ======================================== Summary: ---------------------------------------- - apply_patches: Use globbing instead of file/sort. - apply_patches: Sort patch list before applying - pjsip: Upgrade bundled version to pjproject 2.13.1 User Notes: ---------------------------------------- - ### res_http_media_cache: Introduce options and customize The res_http_media_cache module now attempts to load configuration from the res_http_media_cache.conf file. The following options were added: * timeout_secs * user_agent * follow_location * max_redirects * protocols * redirect_protocols * dns_cache_timeout_secs - ### format_sln: add .slin as supported file extension format_sln now recognizes '.slin' as a valid file extension in addition to the existing '.sln' and '.raw'. - ### bridge_builtin_features: add beep via touch variable Add optional touch variable : TOUCH_MIXMONITOR_BEEP(interval) Setting TOUCH_MIXMONITOR_BEEP/TOUCH_MONITOR_BEEP to a valid interval in seconds will result in a periodic beep being played to the monitored channel upon MixMontior/Monitor feature start. If an interval less than 5 seconds is specified, the interval will default to 5 seconds. If the value is set to an invalid interval, the default of 15 seconds will be used. - ### app_senddtmf: Add SendFlash AMI action. The SendFlash AMI action now allows sending a hook flash event on a channel. - ### res_mixmonitor: MixMonitorMute by MixMonitor ID It is now possible to specify the MixMonitorID when calling the manager action: MixMonitorMute. This will allow an individual MixMonitor instance to be muted via ID. The MixMonitorID can be stored as a channel variable using the 'i' MixMonitor option and is returned upon creation if this option is used. As part of this change, if no MixMonitorID is specified in the manager action MixMonitorMute, Asterisk will set the mute flag on all MixMonitor audiohooks on the channel. Previous behavior would set the flag on the first MixMonitor audiohook found. - ### pbx_dundi: Add PJSIP support. DUNDi now supports chan_pjsip. Outgoing calls using PJSIP require the pjsip_outgoing_endpoint option to be set in dundi.conf. - ### test.c: Fix counting of tests and add 2 new tests The "tests" attribute of the "testsuite" element in the output XML now reflects only the tests actually requested to be executed instead of all the tests registered. The "failures" attribute was added to the "testsuite" element. Also added two new unit tests that just pass and fail to be used for testing CI itself. - ### cli: increase channel column width This change increases the display width on 'core show channels' amd 'core show channels verbose' For 'core show channels', the Channel name field is increased to 64 characters and the Location name field is increased to 32 characters. For 'core show channels verbose', the Channel name field is increased to 80 characters, the Context is increased to 24 characters and the Extension is increased to 24 characters. Upgrade Notes: ---------------------------------------- Closed Issues: ---------------------------------------- - #193: [bug]: third-party/apply-patches doesn't sort the patch file list before applying [asterisk-announce] Asterisk Release 18.18.0 The Asterisk Development Team would like to announce the release of Asterisk 18.18.0. This release resolves issues reported by the community and would have not been possible without your participation. Thank You! Change Log for Release 18.18.0 ======================================== Summary: ---------------------------------------- - Set up new ChangeLogs directory - .github: Add AsteriskReleaser - chan_pjsip: also return all codecs on empty re-INVITE for late offers - cel: add local optimization begin event - core: Cleanup gerrit and JIRA references. (#40) - .github: Fix CherryPickTest to only run when it should - .github: Fix reference to CHERRY_PICK_TESTING_IN_PROGRESS - .github: Remove separate set labels step from new PR - .github: Refactor CP progress and add new PR test progress - res_pjsip: mediasec: Add Security-Client headers after 401 - .github: Add cherry-pick test progress labels - LICENSE: Update link to trademark policy. - chan_dahdi: Add dialmode option for FXS lines. (#36) - .github: Update issue templates - .github: Remove unnecessary parameter in CherryPickTest - Initial GitHub PRs - Initial GitHub Issue Templates - pbx_dundi: Fix PJSIP endpoint configuration check. - Revert "app_queue: periodic announcement configurable start time." - pbx_dundi: Add PJSIP support. - res_pjsip_stir_shaken: Fix JSON field ordering and disallowed TN characters. - install_prereq: Add Linux Mint support. - chan_pjsip: fix music on hold continues after INVITE with replaces - voicemail.conf: Fix incorrect comment about #include. - app_queue: Fix minor xmldoc duplication and vagueness. - test.c: Fix counting of tests and add 2 new tests - loader.c: Minor module key check simplification. - ael: Regenerate lexers and parsers. - res_calendar: output busy state as part of show calendar. - bridge_builtin_features: add beep via touch variable - res_mixmonitor: MixMonitorMute by MixMonitor ID - format_sln: add .slin as supported file extension - app_queue: periodic announcement configurable start time. - func_json: Fix JSON parsing issues. - app_dial: Fix DTMF not relayed to caller on unanswered calls. - make_version: Strip svn stuff and suppress ref HEAD errors - configure: fix detection of re-entrant resolver functions - cli: increase channel column width - res_agi: RECORD FILE plays 2 beeps. - app_senddtmf: Add SendFlash AMI action. - contrib: rc.archlinux.asterisk uses invalid redirect. - main/iostream.c: fix build with libressl - res_http_media_cache: Introduce options and customize User Notes: ---------------------------------------- - ### cel: add local optimization begin event The new AST_CEL_LOCAL_OPTIMIZE_BEGIN can be used by itself or in conert with the existing AST_CEL_LOCAL_OPTIMIZE to book-end local channel optimizaion. - ### chan_dahdi: Add dialmode option for FXS lines. (#36) A "dialmode" option has been added which allows specifying, on a per-channel basis, what methods of subscriber dialing (pulse and/or tone) are permitted. Additionally, this can be changed on a channel at any point during a call using the CHANNEL function. - ### pbx_dundi: Add PJSIP support. DUNDi now supports chan_pjsip. Outgoing calls using PJSIP require the pjsip_outgoing_endpoint option to be set in dundi.conf. - ### cli: increase channel column width This change increases the display width on 'core show channels' amd 'core show channels verbose' For 'core show channels', the Channel name field is increased to 64 characters and the Location name field is increased to 32 characters. For 'core show channels verbose', the Channel name field is increased to 80 characters, the Context is increased to 24 characters and the Extension is increased to 24 characters. - ### app_senddtmf: Add SendFlash AMI action. The SendFlash AMI action now allows sending a hook flash event on a channel. - ### res_http_media_cache: Introduce options and customize The res_http_media_cache module now attempts to load configuration from the res_http_media_cache.conf file. The following options were added: * timeout_secs * user_agent * follow_location * max_redirects * protocols * redirect_protocols * dns_cache_timeout_secs - ### test.c: Fix counting of tests and add 2 new tests The "tests" attribute of the "testsuite" element in the output XML now reflects only the tests actually requested to be executed instead of all the tests registered. The "failures" attribute was added to the "testsuite" element. Also added two new unit tests that just pass and fail to be used for testing CI itself. - ### res_mixmonitor: MixMonitorMute by MixMonitor ID It is now possible to specify the MixMonitorID when calling the manager action: MixMonitorMute. This will allow an individual MixMonitor instance to be muted via ID. The MixMonitorID can be stored as a channel variable using the 'i' MixMonitor option and is returned upon creation if this option is used. As part of this change, if no MixMonitorID is specified in the manager action MixMonitorMute, Asterisk will set the mute flag on all MixMonitor audiohooks on the channel. Previous behavior would set the flag on the first MixMonitor audiohook found. - ### bridge_builtin_features: add beep via touch variable Add optional touch variable : TOUCH_MIXMONITOR_BEEP(interval) Setting TOUCH_MIXMONITOR_BEEP/TOUCH_MONITOR_BEEP to a valid interval in seconds will result in a periodic beep being played to the monitored channel upon MixMontior/Monitor feature start. If an interval less than 5 seconds is specified, the interval will default to 5 seconds. If the value is set to an invalid interval, the default of 15 seconds will be used. - ### format_sln: add .slin as supported file extension format_sln now recognizes '.slin' as a valid file extension in addition to the existing '.sln' and '.raw'. Upgrade Notes: ---------------------------------------- - ### cel: add local optimization begin event The existing AST_CEL_LOCAL_OPTIMIZE can continue to be used as-is and the AST_CEL_LOCAL_OPTIMIZE_BEGIN event can be ignored if desired. Closed Issues: ---------------------------------------- - #35: [New Feature]: chan_dahdi: Allow disabling pulse or tone dialing - #39: [Bug]: Remove .gitreview from repository. - #43: [Bug]: Link to trademark policy is no longer correct - #48: [bug]: res_pjsip: Mediasec requires different headers on 401 response - #52: [improvement]: Add local optimization begin cel event ### For more details, see: https://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-18.18.0.md [asterisk-announce] Asterisk 18.17.1 Now Available The Asterisk Development Team would like to announce the release of Asterisk 18.17.1. The release of Asterisk 18.17.1 resolves several issues reported by the community and would have not been possible without your participation. Thank you! The following issues are resolved in this release: Bugs fixed in this release: ----------------------------------- * ASTERISK-30469 - res_pjsip_pubsub: Regression for subscription shutdowns (Reported by N A) * ASTERISK-30472 - pbx_ael: Literal usage for variables broken (Reported by isrl) For a full list of changes in this release, please see the ChangeLog: https://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-18.17.1 Thank you for your continued support of Asterisk! [asterisk-announce] Asterisk 18.17.0 Now Available The Asterisk Development Team would like to announce the release of Asterisk 18.17.0. The release of Asterisk 18.17.0 resolves several issues reported by the community and would have not been possible without your participation. Thank you! The following issues are resolved in this release: New Features made in this release: ----------------------------------- * ASTERISK-29810 - app_signal: Add channel signaling applications (Reported by N A) * ASTERISK-30262 - res_pjsip_session: Allow a context to be specified for overlap dialing (Reported by N A) * ASTERISK-30319 - Add BYE Reason support for SIP (Reported by Igor Goncharovsky) * ASTERISK-30180 - app_broadcast: Add a channel audio multicasting application (Reported by N A) Bugs fixed in this release: ----------------------------------- * ASTERISK-27830 - Asterisk crashes on Invalid UTF-8 string (Reported by AvayaXAsterisk) * ASTERISK-30354 - chan_iax2: Lack of formats prior to receiving voice frames causes jitterbuffer to stall (Reported by N A) * ASTERISK-30162 - when chan_iax is used to relay calls, no ringing indication is played (Reported by Jaco Kroon) * ASTERISK-30424 - pjproject_bundled: cross-compilation broken when ssl autodetected (Reported by Nick French) * ASTERISK-30388 - res_phoneprov: Stale SERVER variable when multi-homed (Reported by cmaj) * ASTERISK-30419 - pjsip: Crash when sending NOTIFY in PJSIP 2.13 (Reported by Ross Beer) * ASTERISK-30417 - Copy/Paste error in UnpauseQueueMember (Reported by Sean Bright) * ASTERISK-30406 - pbx_ael: Global variables are not expanded. (Reported by Sean Bright) * ASTERISK-29604 - ari: Segfault with lots of calls (Reported by Danila Evgrafov) * ASTERISK-30391 - res_rtp_asterisk: Issue with transcoding g722 after MES changes (Reported by George Joseph) * ASTERISK-30345 - loader.c: Modules that decline to load cannot be reloaded (Reported by N A) * ASTERISK-30379 - http: fix NULL pointer dereference while enable_status on TLS-only (Reported by Boris P. Korzun) * ASTERISK-30375 - res_http_media_cache: Crash when URL has no path component. (Reported by Sean Bright) * ASTERISK-30351 - manager: Originate variables are not added when setvar used in manager.conf (Reported by Sebastian Gutierrez) * ASTERISK-30369 - res_pjsip: Websockets from same IP shut down when they shouldn't be (Reported by Joshua C. Colp) * ASTERISK-30367 - pbx: Fix outdated channel snapshots with pbx_exec (Reported by N A) * ASTERISK-28767 - chan_pjsip: Caller ID not used when checking for extension, callerid supplement executed too late (Reported by Oleg) * ASTERISK-30350 - res_pjsip_sdp_rtp: rtp_timeout_hold is not used when moh_passthrough has call on hold (Reported by Benjamin Keith Ford) * ASTERISK-30240 - app voicemail odbc build error with gcc 11.1 (Reported by Michael Bradeen) * ASTERISK-30100 - res_pjsip: Path is ignored on INVITE to endpoint (Reported by Yury Kirsanov) * ASTERISK-30198 - Error `Too many open files` occurs after about ~8000 calls when using mixmonitor (Reported by Julien Alie) Improvements made in this release: ----------------------------------- * ASTERISK-30411 - app_read: add option to include terminating digit on empty, terminated strings (Reported by Michael Bradeen) * ASTERISK-30405 - app_directory: Add 's' option to skip channel call (Reported by Michael Bradeen) * ASTERISK-30422 - app_senddtmf: add the option for senddtmf to answer (Reported by Michael Bradeen) * ASTERISK-30325 - Upgrade Asterisk to bundled pjproject 2.13 (Reported by Stanislav Abramenkov) * ASTERISK-30404 - app_directory: Add reading directory configuration from custom file (Reported by Michael Bradeen) * ASTERISK-29913 - func_json: Adds multi-level and array parsing to JSON_DECODE (Reported by N A) * ASTERISK-30353 - func_frame_trace: Print text for text frames (Reported by N A) * ASTERISK-30361 - json.h: Add missing ast_json_object_real_get (Reported by N A) * ASTERISK-30280 - Create capability to assign a Media Experience Score to RTP streams (Reported by George Joseph) * ASTERISK-30332 - func_callerid: Warn if invalid redirecting reason provided (Reported by N A) For a full list of changes in this release, please see the ChangeLog: https://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-18.17.0 Thank you for your continued support of Asterisk! [asterisk-announce] Asterisk 16.29.1, 18.15.1, 19.7.1, 20.0.1 Now Available The Asterisk Development Team would like to announce the release of Asterisk 16.29.1, 18.15.1, 19.7.1, and 20.0.1. The release of Asterisk 16.29.1, 18.15.1, 19.7.1, and 20.0.1 resolves issues reported by the community and would have not been possible without your participation.Thank you! The following issue is resolved in this release: Bugs fixed in this release: ----------------------- [ASTERISK-30103 <https://issues.asterisk.org/jira/browse/ASTERISK-30103>] chan_ooh323 vulnerability in calling/called party IE (Reported By: Michael Bradeen) [ASTERISK-30176 <https://issues.asterisk.org/jira/browse/ASTERISK-30176>] GetConfig can read files outside of Asterisk (Reported By: shawty) [ASTERISK-30244 <https://issues.asterisk.org/jira/browse/ASTERISK-30244>] Occasional crash when TCP/TLS connection terminated and subscription persistence is removed (Reported By: nappsoft) [ASTERISK-30338 <https://issues.asterisk.org/jira/browse/ASTERISK-30338>] Backport 2.13 security fixes from pjproject [asterisk-announce] Asterisk 18.15.0 Now Available The Asterisk Development Team would like to announce the release of Asterisk 18.15.0. The release of Asterisk 18.15.0 resolves several issues reported by the community and would have not been possible without your participation. Thank you! The following issues are resolved in this release: New Features made in this release: ----------------------------------- * ASTERISK-30037 - Add test support to calling external processes (Reported by Philip Prindeville) * ASTERISK-30161 - locks: add AMI event for deadlock (Reported by N A) * ASTERISK-30211 - app_confbridge: Add end_marked_any option (Reported by N A) * ASTERISK-30186 - res_pjsip: Add support for reloading TLS certificate and key information (Reported by Joshua C. Colp) * ASTERISK-29899 - features: Add advanced transfer initiation options (Reported by N A) Bugs fixed in this release: ----------------------------------- * ASTERISK-30235 - res_crypto and tests: Memory issues and and uninitialized variable error (Reported by George Joseph) * ASTERISK-30234 - res_geolocation: ...may be used uninitialized error in geoloc_config.c (Reported by George Joseph) * ASTERISK-30215 - Inbound SIP INVITE with Geo Location causing a Segmentation Fault (Reported by Dan Cropp) * ASTERISK-30135 - [res_musiconhold] Allows the moh only for the answered call (Reported by sungtae kim) * ASTERISK-26894 - pjsip should support tel uri scheme (Reported by Gergely D½½ms½½di) * ASTERISK-30210 - func_frame_trace: Channel masquerade triggers assertion (Reported by N A) * ASTERISK-30190 - res_geolocation: GEOLOC_PROFILE isn't returning correct values on incoming channel (Reported by George Joseph) * ASTERISK-29185 - chan_pjsip: Endpoint: allow = all is broken. (Reported by Alexander Traud) * ASTERISK-30192 - res_tonedetect: fix typo for frametype (Reported by N A) * ASTERISK-29453 - alembic: incoming_call_offer_pref and outgoing_call_offer_pref missing in "ps_endpoints" table (Reported by Daniel Th½½men) * ASTERISK-26826 - testsuite: Add support for Python 3 (Reported by Joshua C. Colp) * ASTERISK-30167 - res_geolocation: Refactor for issues found by users (Reported by George Joseph) * ASTERISK-28422 - Memory Leak in Confbridge menu (Reported by Ted G) * ASTERISK-29917 - ami: FilterList action doesn't exist (Reported by N A) * ASTERISK-30018 - app_meetme: MeetmeList AMI event not documented (Reported by Michael Cargile) * ASTERISK-30020 - ConfbridgeListRooms Event Not Documented (Reported by Michael Cargile) * ASTERISK-30151 - Documentation doesn't include info about "field", a 3rd required parameter. (Reported by Chris Young) Improvements made in this release: ----------------------------------- * ASTERISK-30241 - res_pjsip_gelocation: Downgrade some NOTICE scope trace debugs to DEBUG level (Reported by N A) * ASTERISK-30178 - extend user_eq_phone behavior to local uri's (Reported by Michael Bradeen) * ASTERISK-30046 - Reimplement res/res_crypto.c internals with EVP_PKEY interface to Openssl API's (Reported by Philip Prindeville) * ASTERISK-30045 - Add test coverage to res/res_crypto.c functionality (Reported by Philip Prindeville) * ASTERISK-30185 - res_geolocation: Allow location parameters to be specified in profiles (Reported by George Joseph) * ASTERISK-30177 - res_geolocation: Add option to suppress empty elements (Reported by George Joseph) * ASTERISK-30182 - res_geolocation: Add built-in profiles to use in fully dynamic configurations (Reported by George Joseph) * ASTERISK-29906 - [patch] update RLS to reflect the changes to the lists (Reported by Alexei Gradinari) * ASTERISK-30163 - general: fix minor formatting issues (Reported by N A) * ASTERISK-30164 - chan_iax2: Add missing option documentation (Reported by N A) * ASTERISK-30153 - logger: Improve log levels (Reported by N A) * ASTERISK-30160 - cdr.conf: Remove obsolete app_mysql reference (Reported by N A) * ASTERISK-30159 - general: Remove obsolete SVN references (Reported by N A) [asterisk-announce] Asterisk 18.14.0 Now Available The Asterisk Development Team would like to announce the release of Asterisk 18.14.0. The release of Asterisk 18.14.0 resolves several issues reported by the community and would have not been possible without your participation. Thank you! The following issues are resolved in this release: Improvements made in this release: ----------------------------------- * ASTERISK-30128 - Create PJSIP interface module for Geolocation (Reported by George Joseph) * ASTERISK-30127 - Create core Geolocation capability for Asterisk (Reported by George Joseph) * ASTERISK-30089 - general: fix typos (Reported by N A) * ASTERISK-30050 - Upgrade Asterisk to bundled pjproject 2.12.1 (Reported by Stanislav Abramenkov) Bugs fixed in this release: ----------------------------------- * ASTERISK-30167 - res_geolocation: Refactor for issues found by users (Reported by George Joseph) * ASTERISK-29966 - pbx_variables: ast_str_strlen can be wrong (Reported by N A) * ASTERISK-29905 - OSX: bininstall launchd issue on cross-platfrom build (Reported by Sergey V. Lobanov) * ASTERISK-30137 - manager: Global disabled event filtered is incomplete (Reported by N A) * ASTERISK-30109 - res_pjsip: no contact-status AMI event on register of prune-on-boot contact that uses the same URI as before Asterisk restart (Reported by Michael Neuhauser) * ASTERISK-29991 - chan_dahdi, callerid: Caller ID does not honor presentation (Reported by N A) * ASTERISK-30126 - Spelling mistake in configs/samples/queues.conf.sample (Reported by Sam Banks) * ASTERISK-30029 - build: Git security vulnerability fix is sad with our accessing git as root during "make install" (Reported by Joshua C. Colp) * ASTERISK-29907 - res_pjsip, app_confbridge: Video call through ConfBridge with normal endpoints causes infinite loop/crash (Reported by N A) * ASTERISK-30138 - Compile failure in res_geolocation/geoloc_eprofile.c when optimization is enabled (Reported by George Joseph) * ASTERISK-30096 - cel_odbc: Column type 9 (field 'cdr:cel:eventtime') is unsupported at this time (Reported by Morvai Szabolcs) * ASTERISK-30083 - chan_iax2: Optional dependency on openssl/res_crypto is now mandatory (Reported by Dmitry Melekhov) * ASTERISK-30099 - test_aeap_transport: transport_connect_fail sporadically causes failure (Reported by Kevin Harwell) * ASTERISK-30123 - features: Update automixmon documentation to reflect reality (Reported by Trevor Peirce) * ASTERISK-30117 - pbx_lua: Remove compiler warnings (Reported by Boris P. Korzun) * ASTERISK-30101 - res_prometheus: Optional load res_pjsip_outbound_registration.so (Reported by Boris P. Korzun) * ASTERISK-29989 - app_dial, chan_dahdi: DIALSTATUS is inconsistent for busy (Reported by N A) * ASTERISK-30001 - db: Removing nonexistent entries shows "Database entry removed" (Reported by N A) * ASTERISK-30115 - app_dial: Allow hook flashes to propogate on outbound dials (Reported by N A) * ASTERISK-30106 - res_calendar_icalendar: Microsoft online ICS calendars no longer work (Reported by N A) * ASTERISK-29822 - cli: Typing \? freezes the CLI permanently with remote console (Reported by N A) * ASTERISK-30072 - res_pjsip: allow TLS verification of wildcard cert-bearing servers (Reported by Kevin Harwell) * ASTERISK-30075 - say: Abort if channel hangs up during playback (Reported by N A) New Features made in this release: ----------------------------------- * ASTERISK-30136 - db: Add AMI action to retrieve all keys beginning with a prefix (Reported by N A) * ASTERISK-30000 - chan_dahdi: Add POLARITY function (Reported by N A) * ASTERISK-30062 - cli: Add CLI command to execute a dialplan app (Reported by N A) * ASTERISK-29999 - pjsip: Get information from 200 OK INVITE reply headers (Reported by Jos½½ Lopes) * ASTERISK-30061 - pbx: Add pbx helper application (Reported by N A) [asterisk-announce] Asterisk 18.13.0 Now Available The Asterisk Development Team would like to announce the release of Asterisk 18.13.0. The release of Asterisk 18.13.0 resolves several issues reported by the community and would have not been possible without your participation. Thank you! The following issues are resolved in this release: Improvements made in this release: ----------------------------------- * ASTERISK-29906 - [patch] update RLS to reflect the changes to the lists (Reported by Alexei Gradinari) * ASTERISK-29891 - [patch] provide a display name for RLS subscriptions (Reported by Alexei Gradinari) * ASTERISK-30090 - xmldocs: Use example tags for examples (Reported by N A) * ASTERISK-30086 - res_parking: Warn when invalid parking space requested (Reported by N A) * ASTERISK-30058 - Evaluate dialplan functions and variables in agi exec (Reported by Shloime Rosenblum) * ASTERISK-30027 - ari: expose channel driver's unique id (i.e. Call-ID for chan_sip/chan_pjsip) in ARI channel resource (Reported by Moritz Fain) * ASTERISK-29845 - res_pjsip_outbound_registration: Show time remaining until registration lapses (Reported by N A) Bugs fixed in this release: ----------------------------------- * ASTERISK-30097 - console: Recent documentation changes for connecting to remote console are inconsistent (Reported by Matthias Hensler) * ASTERISK-30043 - Wrong party is disconnected when hook-flashing on 3-way bridge (Reported by Josh Alberts) * ASTERISK-29603 - res_pjsip: UPDATE/re-INVITE not sent when "timers=always" is specified in pjsip.conf (Reported by Ray Crumrine) * ASTERISK-30092 - DateTime application: wrong inflection for one o'clock in German (Reported by Christof Efkemann) * ASTERISK-30064 - pbx: iax2 switch causes crash due to deadlock and assertion (Reported by N A) * ASTERISK-29981 - res_calendar: Asterisk crashes when starting, and will not run (Reported by N A) * ASTERISK-30039 - cli: Targeted debug on startup deadlocks and creates unstable system (Reported by N A) * ASTERISK-30051 - res_pjsip: No video after un-hold with moh_passthrough=yes (Reported by Maximilian Fridrich) * ASTERISK-24601 - [patch]Missing RFC4235 tags and attributes in PJSIP NOTIFY event: dialog XML body (Reported by Marco Paland) * ASTERISK-30059 - menuselect: libxml include fails under Gentoo (Reported by waltermoeller) * ASTERISK-30060 - loader: format warnings in dev mode (Reported by N A) * ASTERISK-30065 - pjsip: Open Websocket connection is not reused for outgoing requests (Reported by LA) * ASTERISK-30042 - res_pjsip_transport_websocket: Registration over websocket returns a rewritten contact (Reported by Thomas Guebels) * ASTERISK-29993 - chan_dahdi: Operator control option borks both lines involved on callee disconnect (Reported by N A) * ASTERISK-30044 - GCC 12 issues (Reported by George Joseph) New Features made in this release: ----------------------------------- * ASTERISK-30063 - app_voicemail: Add option to prevent deletion of messages (Reported by N A) * ASTERISK-29965 - res_pjsip_outbound_registration: Make max registration delay configurable (Reported by N A) * ASTERISK-30087 - res_parking: Add music on hold override option (Reported by N A) * ASTERISK-30036 - app_confbridge: Add CONFBRIDGE_CHANNELS function (Reported by N A) Thank you for your continued support of Asterisk! [asterisk-announce] Asterisk 18.12.1 Now Available The Asterisk Development Team would like to announce the release of Asterisk 18.12.1. The release of Asterisk 18.12.1 resolves an issue reported by the community and would have not been possible without your participation. Thank you! The following issue is resolved in this release: Bugs fixed in this release: ----------------------------------- * ASTERISK-30065 - pjsip: Open Websocket connection is not reused for outgoing requests (Reported by LA) [asterisk-announce] Asterisk 18.12.0 Now Available The Asterisk Development Team would like to announce the release of Asterisk 18.12.0. The release of Asterisk 18.12.0 resolves several issues reported by the community and would have not been possible without your participation. Thank you! The following issues are resolved in this release: Security bugs fixed in this release: ----------------------------------- * ASTERISK-29476 - res_stir_shaken: Blind SSRF vulnerabilities (Reported by Clint Ruoho) * ASTERISK-29838 - ${SQL_ESC()} not correctly escaping a terminating \ (Reported by Leandro Dardini) * ASTERISK-29872 - res_stir_shaken: Resource exhaustion with large files (Reported by Benjamin Keith Ford) New Features made in this release: ----------------------------------- * ASTERISK-29931 - Option to allow a user to not hear the join sound on enter but everyone else can (Reported by Michael Cargile) * ASTERISK-29968 - func_db: Add a function to return cardinality of keys at prefix (Reported by N A) * ASTERISK-29486 - Hint-like extension value lookup function without device state (Reported by N A) * ASTERISK-29941 - chan_pjsip: Add ability to send flash events (Reported by N A) * ASTERISK-29820 - cli: Add command to evaluate a function (Reported by N A) * ASTERISK-29876 - app_queue: Add music on hold option (Reported by N A) Bugs fixed in this release: ----------------------------------- * ASTERISK-29655 - res_pjsip_session: No video to caller if no camera available (Reported by Michael Auracher) * ASTERISK-29638 - res_pjsip_session: No video after early media (Reported by Michael Auracher) * ASTERISK-28518 - chan_dahdi: Caller ID FSK Erroneously Sent when Picking Up Dahdi Call On Hold (Reported by Josh Alberts) * ASTERISK-29990 - chan_dahdi: adding ring cadences is not idempotent on dahdi restart (Reported by N A) * ASTERISK-30007 - chan_iax2: Prevent crashes due to attempted encryption with missing secrets (Reported by N A) * ASTERISK-29728 - menuselect: Disabled by default modules that are enabled are always recompiled (Reported by N A) * ASTERISK-30002 - app_meetme: Don't erroneously set global variables when channel is NULL (Reported by N A) * ASTERISK-29994 - chan_dahdi: Round robin array size is too small for max number of groups (Reported by N A) * ASTERISK-22246 - Asterisk's "T" flag is ignored when used with "r" or "R" flags. (documentation bug) (Reported by Rusty Newton) * ASTERISK-26582 - Asterisk seems to ignore the "n" parameter for "disable console colorization" (Reported by Sebastian Gutierrez) * ASTERISK-29843 - Session timers get removed on UPDATE (Reported by Mark Petersen) * ASTERISK-29943 - file.c: seeking to negative file offset is not prevented (Reported by N A) * ASTERISK-29955 - chan_sip: SIP route header is missing on UPDATE (Reported by Mark Petersen) * ASTERISK-29842 - Do not change 180 Ringing to 183 Progress even if early_media already enabled (Reported by Mark Petersen) * ASTERISK-29948 - iostream: Infinite TCP timeout writing data (Reported by N A) * ASTERISK-29253 - Incorrect bridging on transfer (Reported by Yury Kirsanov) * ASTERISK-30006 - res_pjsip: UDP transport does not work when async_operations is greater than 1 (Reported by Ross Beer) * ASTERISK-30024 - Failed to sign STIR/SHAKEN payload with functionality not enabled (Reported by Claude Diderich) * ASTERISK-30021 - ast_variable_list_replace_variable uses variable with new keyword (Reported by Jasper Hafkenscheid) * ASTERISK-30023 - cdr_adaptive_odbc: does not support DATETIME database columns (Reported by Gregory Massel) * ASTERISK-30015 - pjsip / WebRTC: Chrome creating large number of SDP attributes (Reported by Josh Hogan) * ASTERISK-26689 - res_pjsip_sdp_rtp: 183 Session in Progress. Disconnecting channel for lack of RTP activity (Reported by Dmitriy Serov) * ASTERISK-29929 - res_pjsip_sdp_rtp: Disconnecting channel for lack of RTP activity in one way sessions (Reported by Boris P. Korzun) * ASTERISK-29411 - Crash in pjsip_msg_find_hdr_by_name (Reported by LA) * ASTERISK-29535 - Segmentation fault in libasteriskpj.so.2 (Reported by Daniel Bonazzi) * ASTERISK-26719 - pbx: Only up to 127 includes in a dialplan context (AST_PBX_MAX_STACK - 1) (Reported by Tzafrir Cohen) * ASTERISK-29986 - build: Asterisk 18.11.0 doesn't compile when wget isn't available (Reported by Stefan Ruijsenaars) * ASTERISK-29988 - REGRESSION: The build process is requiring xmllint or xmlstarlet ro be installed when it shouldn't (Reported by George Joseph) * ASTERISK-29895 - chan_iax2: Fix misaligned spacing in iax2 show netstats printout (Reported by N A) * ASTERISK-29939 - agi: Fix xmldoc bug with set music (Reported by N A) * ASTERISK-28891 - documentation: AGICommand_set+music documentation arguments displayed incorreclty (Reported by Jonathan Harris) * ASTERISK-29048 - chan_iax2: "iax2 show registry" shows host for perceived (Reported by David Herselman) * ASTERISK-29674 - Adjust for 64bit time_t (Reported by Andre Heider) * ASTERISK-29961 - RLS: domain part of 'uri' list attribute mismatch with SUBSCRIBE request (Reported by Alexei Gradinari) * ASTERISK-29928 - logging messages truncated when using MUSL runtime (Reported by Philip Prindeville) * ASTERISK-29960 - ari: Retrieving stored recording can returns wrong file (Reported by Arix) * ASTERISK-29950 - SayNumber can handle '01' to '07', but not '08' or '09' (Reported by Jim Van Meggelen) Improvements made in this release: ----------------------------------- * ASTERISK-24827 - Missing documentation for chan_dahdi dial string ring cadences (Reported by Scott Griepentrog) * ASTERISK-29940 - general: Add since tags to xmldocs (Reported by N A) * ASTERISK-29726 - Add Asterisk External Application Protocol (AEAP) implementation (Reported by Kevin Harwell) * ASTERISK-29951 - app_mf, app_sf: Return -1 on hangup (Reported by N A) * ASTERISK-29954 - app_meetme: Emit warning if conference not found (Reported by N A) * ASTERISK-29351 - Qualify pjproject 2.12 for Asterisk (Reported by George Joseph) * ASTERISK-29976 - Should Readme include information about install_prereq script? (Reported by Marcel Wagner) * ASTERISK-29970 - Use pkg-config to find libxml2 headers and libraries (Reported by Hugh McMaster) * ASTERISK-29980 - build: External binary modules don't use https (Reported by INVADE International Ltd.) * ASTERISK-25716 - Documentation: Document explanations and examples for possible values of DIALSTATUS (Reported by Rusty Newton) * ASTERISK-29967 - pbx_builtins: Add missing documentation (Reported by N A) [asterisk-announce] Asterisk 18.11.3 Now Available Asterisk Development Team asteriskteam at digium.com Tue Apr 26 12:09:50 CDT 2022 The Asterisk Development Team would like to announce the release of Asterisk 18.11.3. The release of Asterisk 18.11.3 resolves an issue reported by the community and would have not been possible without your participation. Thank you! The following issue is resolved in this release: Bugs fixed in this release: ----------------------------------- * ASTERISK-30024 - Failed to sign STIR/SHAKEN payload with functionality not enabled (Reported by Claude Diderich) [asterisk-announce] Asterisk 16.25.2, 18.11.2, 19.3.2 and 16.8-cert14 Now Available (Security) The Asterisk Development Team would like to announce security releases for Asterisk 16, 18 and 19, and Certified Asterisk 16.8. The available releases are released as versions 16.25.2, 18.11.2, 19.3.2 and 16.8-cert14. The following security vulnerabilities were resolved in these versions: * AST-2022-001: res_stir_shaken: resource exhaustion with large files When using STIR/SHAKEN, it½½½s possible to download files that are not certificates. These files could be much larger than what you would expect to download. * AST-2022-002: res_stir_shaken: SSRF vulnerability with Identity header When using STIR/SHAKEN, it½½½s possible to send arbitrary requests like GET to interfaces such as localhost using the Identity header. * AST-2022-003: func_odbc: Possible SQL Injection Some databases can use backslashes to escape certain characters, such as backticks. If input is provided to func_odbc which includes backslashes it is possible for func_odbc to construct a broken SQL query and the SQL query to fail. [asterisk-announce] Asterisk 18.11.1 Now Available Asterisk Development Team asteriskteam at digium.com Tue Mar 29 19:15:43 CDT 2022 The Asterisk Development Team would like to announce the release of Asterisk 18.11.1. The release of Asterisk 18.11.1 resolves several issues reported by the community and would have not been possible without your participation. Thank you! The following issues are resolved in this release: Bugs fixed in this release: ----------------------------------- * ASTERISK-29986 - build: Asterisk 18.11.0 doesn't compile when wget isn't available (Reported by Stefan Ruijsenaars) * ASTERISK-29988 - REGRESSION: The build process is requiring xmllint or xmlstarlet ro be installed when it shouldn't (Reported by George Joseph) [asterisk-announce] Asterisk 18.11.0 Now Available Asterisk Development Team asteriskteam at digium.com Thu Mar 24 09:06:03 CDT 2022 The Asterisk Development Tea…
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
The "clang" package provides a broken clang++ out of the box, as the iostream header file is missing.
When the "gcc49" package is installed, then a g++ binary can compile C++ source that uses iostream. However, clang++ continues to fail to find the header. I'm attempting compilation within a SmartOS global zone environment, in case that matters.
Please fix the "clang" package so that its clang++ can actually compile Hello World C++ programs! Have the "clang" package depend on the "gcc49" package, and setup clang++ so that it can find the headers provided by the "gcc49" package.
The text was updated successfully, but these errors were encountered: