Version 8.18.0 [v8-stable] 2016-04-19
- testbench: When running privdrop tests testbench tries to drop
user to "rsyslog", "syslog" or "daemon" when running as root and
you don't explict set RSYSLOG_TESTUSER environment variable.
Make sure the unprivileged testuser can write into tests/ dir!
- templates: add option to convert timestamps to UTC
closes https://github.com/rsyslog/rsyslog/issues/730
- omjournal: fix segfault (regression in 8.17.0)
- imptcp: added AF_UNIX support
Thanks to Nathan Brown for implementing this feature.
- new template options
* compressSpace
* date-utc
- redis: support for authentication
Thanks to Manohar Ht for the patch
- omkafka: makes kafka-producer on-HUP restart optional
As of now, omkafka kills and re-creates kafka-producer on HUP.
This is not always desirable. This change introduces an action param
(reopenOnHup="on|off") which allows user to control re-cycling of
kafka-producer.
It defaults to on (for backward compatibility). Off allows user to
ignore HUP as far as kafka-producer is concerned.
Thanks to Janmejay Singh for implementing this feature
- imfile: new "FreshStartTail" input parameter
Thanks to Curu Wong for implementing this.
- omjournal: fix libfastjson API issues
This module accessed private data members of libfastjson
- ommongodb: fix json API issues
This module accessed private data members of libfastjson
- testbench improvements (more tests and more thourough tests)
among others:
- tests for omjournal added
- tests for KSI subsystem
- tests for priviledge drop statements
- basic test for RELP with TLS
- some previously disabled tests have been re-enabled
- dynamic stats subsystem: a couple of smaller changes
they also involve the format, which is slightly incompatible to
previous version. As this was out only very recently (last version),
we considered this as acceptable.
Thanks to Janmejay Singh for developing this.
- foreach loop: now also iterates over objects (not just arrays)
Thanks to Janmejay Singh for developing this.
- improvements to the CI environment
- enhancement: queue subsystem is more robst in regard to some
corruptions
It is now detected if a .qi file states that the queue contains more
records than there are actually inside the queue files. Previously this
resulted in an emergency switch to direct mode, now the problem is only
reported but processing continues.
- enhancement: Allow rsyslog to bind UDP ports even w/out specific
interface being up at the moment.
Alternatively, rsyslog could be ordered after networking, however,
that might have some negative side effects. Also IP_FREEBIND is
recommended by systemd documentation.
Thanks to Nirmoy Das and Marius Tomaschewski for the patch.
- cleanup: removed no longer needed json-c compatibility layer
as we now always use libfastjson, we do not need to support old
versions of json-c (libfastjson was based on the newest json-c
version at the time of the fork, which is the newest in regard
to the compatibility layer)
- new External plugin for sending metrics to SPM Monitoring SaaS
Thanks to Radu Gheorghe for the patch.
- bugfix imfile: fix memory corruption bug when appending @cee
Thanks to Brian Knox for the patch.
- bugfix: memory misallocation if position.from and position.to is used
a negative amount of memory is tried to be allocated if position.from
is smaller than the buffer size (at least with json variables). This
usually leads to a segfault.
closes https://github.com/rsyslog/rsyslog/issues/915
- bugfix: fix potential memleak in TCP allowed sender definition
depending on circumstances, a very small leak could happen on each
HUP. This was caused by an invalid macro definition which did not rule
out side effects.
- bugfix: $PrivDropToGroupID actually did a name lookup
... instead of using the provided ID
- bugfix: small memory leak in imfile
Thanks to Tomas Heinrich for the patch.
- bugfix: double free in jsonmesg template
There has to be actual json data in the message (from mmjsonparse,
mmnormalize, imjournal, ...) to trigger the crash.
Thanks to Tomas Heinrich for the patch.
- bugfix: incorrect formatting of stats when CEE/Json format is used
This lead to ill-formed json being generated
- bugfix omfwd: new-style keepalive action parameters did not work
due to being inconsistently spelled inside the code. Note that legacy
parameters $keepalive... always worked
see also: https://github.com/rsyslog/rsyslog/issues/916
Thanks to Devin Christensen for alerting us and an analysis of the
root cause.
- bugfix: memory leaks in logctl utility
Detected by clang static analyzer. Note that these leaks CAN happen in
practice and may even be pretty large. This was probably never detected
because the tool is not often used.
- bugfix omrelp: fix segfault if no port action parameter was given
closes https://github.com/rsyslog/rsyslog/issues/911
- bugfix imtcp: Messages not terminated by a NL were discarded
... upon connection termination.
Thanks to Tomas Heinrich for the patch.
Changes:
9 April 2016: mitmproxy 0.17
* Simplify repository and release structure. mitmproxy now comes as a single package, including netlib and pathod.
* Rename the Python package from libmproxy to mitmproxy.
* New option to add server certs to client chain (CVE-2016-2402, John Kozyrakis)
* Enable HTTP/2 by default (Thomas Kriechbaumer)
* Improved HAR extractor (Shadab Zafar)
* Add icon for OSX and Windows binaries
* Add content view for query parameters (Will Coster)
* Initial work on Python 3 compatibility
* locust.io export (Zohar Lorberbaum)
* Fix XSS vulnerability in HTTP errors (Will Coster)
* Numerous bugfixes and minor improvements
pkgsrc changes:
o Simplify MASTER_SITES
o Add LICENSE
o Disable the tests for now (that were also broken for 3.1.2 version).
All the modules are builded in build/lib.*/PIL/ while selftest.py just
checks in PIL/. Manually cp(1)-ing all the build/lib.*/PIL/ files in PIL/
work as a workaround (and all test are passed) although implementing a
similar (distutils.cmd) logic will be easily buggy.
Changes:
3.2.0 (2016-04-01)
------------------
- Added install docs for Fedora 23 and FreeBSD #1729, #1739, #1792
[koobs, zandermartin, wiredfool]
- Fixed TIFF multiframe load when the frames have different compression types #1782
[radarhere, geka000]
- Added __copy__ method to Image #1772
[radarhere]
- Updated dates in PIL license in OleFileIO README #1787
[radarhere]
- Corrected Tiff tag names #1786
[radarhere]
- Fixed documented name of JPEG property #1783
[radarhere]
- Fixed UnboundLocalErrorwhen loading a corrupt jpeg2k file #1780
[wiredfool]
- Fixed integer overflow in path.c #1773
[wiredfool, nedwill]
- Added debug to command line help text for pilprint #1766
[radarhere]
- Expose many more fields in ICC Profiles #1756
[lambdafu]
- Documentation changes, URL update, transpose, release checklist
[radarhere]
- Fixed saving to nonexistant files specified by pathlib.Path objects, fixes#1747
[radarhere]
- Round Image.crop arguments to the nearest integer, fixes#1744
[hugovk]
- Fix uninitialized variable warning in _imaging.c:getink, fixes#486
[wiredfool]
- Disable multiprocessing install on cygwin, fixes#1690
[wiredfool]
- Fix the error reported when libz is not found #1764
[wiredfool]
- More general error check to avoid Symbol not found: _PyUnicodeUCS2_AsLatin1String on OS X #1761
[wiredfool]
- Added py35 to tox envlist #1724
[radarhere]
- Fix EXIF tag name typos #1736
[zarlant, radarhere]
- Updated freetype to 2.6.3, Tk/Tcl to 8.6.5 and 8.5.19
[radarhere]
- Add a loader for the FTEX format from Independence War 2: Edge of Chaos #1688
[jleclanche]
- Improved alpha_composite documentation #1698
[radarhere]
- Extend ImageDraw.text method to pass on multiline_text method specific arguments #1647
[radarhere]
- Allow ImageSequence to seek to zero #1686
[radarhere]
- ImageSequence Iterator is now an iterator #1649
[radarhere]
- Updated windows test builds to jpeg9b
[radarhere]
- Fixed support for .gbr version 1 images, added support for version 2 in GbrImagePlugin #1653
[wiredfool]
- Clarified which YCbCr format is used #1677
[radarhere]
- Added TiffTags documentation, Moved windows build documentation to winbuild/ #1667
[wiredfool]
- Add tests for OLE file based formats #1678
[radarhere]
- Add TIFF IFD test #1671
[radarhere]
- Add a basic DDS image plugin with more tests #1654
[jleclanche, hugovk, wiredfool]
- Fix incorrect conditional in encode.c #1638
[manisandro]
XXX is SUBST_CLASSES.Darwin+= libname still needed?
Changes in dconf 0.26.0
========================
None.
Changes in dconf 0.25.1
========================
- the libdbus-1 backend has been removed. dconf now always uses GDBus.
- support has been added for system administration frameworks to set up
the dconf profile via a file placed in the XDG_RUNTIME_DIR or in
/run/dconf/. In the case of the file in /run/dconf/, it is not
possible to modify the proile, even via the DCONF_PROFILE environment
variable, which makes it slightly more difficult to evade lockdown.
- directory resets are now implemented properly in DConfChangeset which
means that reading a subkey through a changeset that contains a reset
for a parent directory of that key will return TRUE with a NULL value
- a new API dconf_client_read_full() has been added which allows
reading the user value, the default value, or querying what the
effective value would be if a changeset were to be applied.
- a new API has been added for listing the locks that are in effect:
dconf_client_list_locks()
- DConfClient has a new "writability-changed" signal
- support for reading default values and listing locks have been added
to the dconf commandline tool
- support for g_autoptr() has been added for DConfClient and
DConfChangeset
- the handling of reading of default values via GSettings has been made
more efficient. More major changes to the GSettings backend are
expected in the near future.
Changes in dconf 0.24.0
========================
The version number was increased and a new entry was added to the NEWS.
Changes in dconf 0.23.2
========================
- remove dconf-editor manpage (accidentally missed during the split)
- fix whitespace issues in 'dconf --help'
Changes in dconf 0.23.1
========================
- dconf-editor is now in a separate package
- portability improvements
This package supports both conventional Roman algarisms (which range
from 1 to 3999) and Milhar Romans, a variation which uses a bar across
the algarism to indicate multiplication by 1_000. For the purposes of
this module, acceptable syntax consists of an underscore suffixed to
the algarism e.g. IV_V = 4_005. The term Milhar apparently derives
from the Portuguese word for "thousands" and the range of this
notation extends the range of Roman numbers to 3999 * 1000 + 3999 =
4_002_999.
* Added support for 3.5 and Django 1.7, 1.8 and 1.9
* Django 1.6 is no longer supported.
* Remove deprecated backports needed for now unsupported Django versions
* Fixed a bug with queryset deletion not handling inheritance correctly.
* Assorted documentation fixes
* New ``Alias`` namer.
* Avoid a potential concurrency issue with creating the cache.
* Fix incorrect use of select_related for source thumbnail model.
* Removed some vestigal processor arguments.
* Allow ``HIGH_RESOLUTION`` argument on thumbnail template tag.
* Add logic to correctly handle thumbnail images on deferred models (e.g. when using ``.only()``).
* Add a ``data_uri`` filter to allow rendering of an image inline as a data uri.
Changes:
2.2.3 (2016-04-13)
------------------
Bugfixes
~~~~~~~~
- Allowed the 4.X series of hyperframe releases as dependencies.
2.1.4 (2016-04-13)
------------------
Bugfixes
~~~~~~~~
- Allowed the 4.X series of hyperframe releases as dependencies.
2.2.2 (2016-04-05)
------------------
Bugfixes
~~~~~~~~
- Fixed issue where informational responses were erroneously not allowed to be
sent in the ``HALF_CLOSED_REMOTE`` state.
- Fixed issue where informational responses were erroneously not allowed to be
received in the ``HALF_CLOSED_LOCAL`` state.
- Fixed issue where we allowed information responses to be sent or received
after final responses.
2.2.1 (2016-03-23)
------------------
Bugfixes
~~~~~~~~
- Fixed issue where users using locales that did not default to UTF-8 were
unable to install source distributions of the package.
2.2.0 (2016-03-23)
------------------
API Changes (Backward-Compatible)
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
- Added support for sending informational responses (responses with 1XX status)
codes as part of the standard flow. HTTP/2 allows zero or more informational
responses with no upper limit: hyper-h2 does too.
- Added support for receiving informational responses (responses with 1XX
status) codes as part of the standard flow. HTTP/2 allows zero or more
informational responses with no upper limit: hyper-h2 does too.
- Added a new event: ``ReceivedInformationalResponse``. This response is fired
when informational responses (those with 1XX status codes).
- Added an ``additional_data`` field to the ``ConnectionTerminated`` event that
carries any additional data sent on the GOAWAY frame. May be ``None`` if no
such data was sent.
- Added the ``initial_values`` optional argument to the ``Settings`` object.
Bugfixes
~~~~~~~~
- Correctly reject all of the connection-specific headers mentioned in RFC 7540
§ 8.1.2.2, not just the ``Connection:`` header.
- Defaulted the value of ``SETTINGS_MAX_CONCURRENT_STREAMS`` to 100, unless
explicitly overridden. This is a safe defensive initial value for this
setting.
2.1.3 (2016-03-16)
------------------
Deprecations
~~~~~~~~~~~~
- Passing dictionaries to ``send_headers`` as the header block is deprecated,
and will be removed in 3.0.
2.1.2 (2016-02-17)
------------------
Bugfixes
~~~~~~~~
- Reject attempts to push streams on streams that were themselves pushed:
streams can only be pushed on streams that were initiated by the client.
- Correctly allow CONTINUATION frames to extend the header block started by a
PUSH_PROMISE frame.
- Changed our handling of frames received on streams that were reset by the
user.
Previously these would, at best, cause ProtocolErrors to be raised and the
connection to be torn down (rather defeating the point of resetting streams
at all) and, at worst, would cause subtle inconsistencies in state between
hyper-h2 and the remote peer that could lead to header block decoding errors
or flow control blockages.
Now when the user resets a stream all further frames received on that stream
are ignored except where they affect some form of connection-level state,
where they have their effect and are then ignored.
- Fixed a bug whereby receiving a PUSH_PROMISE frame on a stream that was
closed would cause a RST_STREAM frame to be emitted on the closed-stream,
but not the newly-pushed one. Now this causes a ``ProtocolError``.
Changes:
16.0.0 (2016-03-19)
-------------------
This is the first release under full stewardship of PyCA.
We have made *many* changes to make local development more pleasing.
The test suite now passes both on Linux and OS X with OpenSSL 0.9.8,
1.0.1, and 1.0.2. It has been moved to `py.test <https://pytest.org/>`_,
all CI test runs are part of `tox <https://testrun.org/tox/>`_ and
the source code has been made fully `flake8
<https://flake8.readthedocs.org/>`_ compliant.
We hope to have lowered the barrier for contributions significantly
but are open to hear about any remaining frustrations.
Backward-incompatible changes:
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
- Python 3.2 support has been dropped.
It never had significant real world usage and has been dropped
by our main dependency ``cryptography``. Affected users should
upgrade to Python 3.3 or later.
Deprecations:
^^^^^^^^^^^^^
- The support for EGD has been removed.
The only affected function ``OpenSSL.rand.egd()`` now uses
``os.urandom()`` to seed the internal PRNG instead. Please see
`pyca/cryptography#1636
<https://github.com/pyca/cryptography/pull/1636>`_ for more
background information on this decision. In accordance with our
backward compatibility policy ``OpenSSL.rand.egd()`` will be
*removed* no sooner than a year from the release of 16.0.0.
Please note that you should `use urandom
<http://sockpuppet.org/blog/2014/02/25/safely-generate-random-numbers/>`_
for all your secure random number needs.
- Python 2.6 support has been deprecated.
Our main dependency ``cryptography`` deprecated 2.6 in version
0.9 (2015-05-14) with no time table for actually dropping it.
pyOpenSSL will drop Python 2.6 support once ``cryptography``
does.
Changes:
^^^^^^^^
- Fixed ``OpenSSL.SSL.Context.set_session_id``,
``OpenSSL.SSL.Connection.renegotiate``,
``OpenSSL.SSL.Connection.renegotiate_pending``, and
``OpenSSL.SSL.Context.load_client_ca``.
They were lacking an implementation since 0.14. `#422
<https://github.com/pyca/pyopenssl/pull/422>`_
- Fixed segmentation fault when using keys larger than 4096-bit to sign data.
`#428 <https://github.com/pyca/pyopenssl/pull/428>`_
- Fixed ``AttributeError`` when ``OpenSSL.SSL.Connection.get_app_data()``
was called before setting any app data.
`#304 <https://github.com/pyca/pyopenssl/pull/304>`_
- Added ``OpenSSL.crypto.dump_publickey()`` to dump ``OpenSSL.crypto.PKey``
objects that represent public keys, and ``OpenSSL.crypto.load_publickey()``
to load such objects from serialized representations.
`#382 <https://github.com/pyca/pyopenssl/pull/382>`_
- Added ``OpenSSL.crypto.dump_crl()`` to dump a certificate revocation
list out to a string buffer.
`#368 <https://github.com/pyca/pyopenssl/pull/368>`_
- Added ``OpenSSL.SSL.Connection.get_state_string()`` using the
OpenSSL binding ``state_string_long``.
`#358 <https://github.com/pyca/pyopenssl/pull/358>`_
- Added support for the ``socket.MSG_PEEK`` flag to
``OpenSSL.SSL.Connection.recv()`` and
``OpenSSL.SSL.Connection.recv_into()``.
`#294 <https://github.com/pyca/pyopenssl/pull/294>`_
- Added ``OpenSSL.SSL.Connection.get_protocol_version()`` and
``OpenSSL.SSL.Connection.get_protocol_version_name()``.
`#244 <https://github.com/pyca/pyopenssl/pull/244>`_
- Switched to ``utf8string`` mask by default.
OpenSSL formerly defaulted to a ``T61String`` if there were UTF-8
characters present. This was changed to default to ``UTF8String``
in the config around 2005, but the actual code didn't change it
until late last year. This will default us to the setting that
actually works. To revert this you can call
``OpenSSL.crypto._lib.ASN1_STRING_set_default_mask_asc(b"default")``.
`#234 <https://github.com/pyca/pyopenssl/pull/234>`_
-------------------------------------------------
7.12 Tue Apr 19 12:24:41 BST 2016
Enhancements:
- version ranges are now supported for PREREQS, etc.
- Metadata is now represented internally as Meta Spec 2.0
- ExtUtils::Command has been re-incorporated at 1.19 of that module
- Refactored XS handling
- XSMULTI=>1 - put multiple *.xs under lib, it "just works" and XSBUILD
for refined control of XSMULTI
- can do "make test" without first doing "make"
Bug fixes:
- Handle new warnings from File::Path
- Resolve RT#106572 specifying AUTHOR via command-line is broken
- Warning on missing TEST_REQUIRES and CONFIGURE_REQUIRES
- Sanitise make_type on Win32
- Cygwin rebase fixes
- Makefile starting comments reflect decoded @ARGV, not raw
- Add various targets to .PHONY to avoid disk IO with dmake
- Fixed race condition in realclean
- improve static-build lib detection
- Eliminate non-error STDERR
- Make WriteEmptyMakefile Makefile functional when called in subdir
- manifypods fixes
- perllocal.pod generation "Perl in Space" fix
- PASTHRU fixes
- Fix distsignature dependencies for parallel make
- Check exit status for commands in "make ci" target
- Less noisey output during building sub-modules
- Fix dos2unix() on Windows
- stop makeaperl from polluting @ARGV in cases where ARGV contains args with spaces
- Fix regression when both test.pl and t/*.t are present
- Refactored internals to remove DirHandle usage
- MM_Unix::find_perl() dont repeatedly stat the same path in a loop
- No longer repeatedly attempt to load CPAN::Meta if it is now available
VMS fixes:
- Made MM_VMS::oneline build continuation lines properly
- Implemented XSMULTI and XSBUILD
- Resurrect PASTHRU on VMS
- make_macro should handle multiple macros
- Fix regression with File::Spec changes in previous release
Win32 fixes:
- t/echo.t needs SHELL env for Win32 gmake
Dist fixes:
- Made %ExtraPrereqs match bundled prereqs
- Included MANIFEST.SKIP from ExtUtils::Manifest
- The bundled Encode::Locale has been updated to 1.04
Test fixes:
- test PL_FILES of a "module"
- Various tests no longer require a separate .pm file for testing
- Support v5.6.1 in various tests
- test static build if $ENV{AUTHOR_TESTING}
- XS tests now pluggable
- test for "Perl in Space"
Doc fixes:
- better document for PL_FILES, oneliner method
- FAQ updated
7.11_06 Tue Mar 29 19:22:38 BST 2016
Bug fixes:
- Backported change from blead for Win32 miniperl
7.11_05 Sat Mar 19 09:41:02 GMT 2016
Bug fixes:
- Less noisey output during building sub-modules
- Fix dos2unix() on Windows
VMS fixes:
- Implemented XSMULTI and XSBUILD
- Resurrect PASTHRU on VMS
7.11_04 Mon Feb 15 11:20:14 GMT 2016
Enhancements:
- Added find_tests_recursive_in() method
Bug fixes:
- Fix regression when both test.pl and t/*.t are present
- Refactored internals to remove DirHandle usage
VMS fixes:
- make_macro should handle multiple macros
- Fix regression with File::Spec changes in previous release
Win32 fixes:
- t/echo.t needs SHELL env for Win32 gmake
7.11_03 Wed Nov 25 15:23:25 GMT 2015
Bug fixes:
- stop makeaperl from polluting @ARGV in cases where ARGV contains args with spaces
7.11_02 Sat Nov 21 20:05:45 GMT 2015
Bug fixes:
- MM_Unix::find_perl() dont repeatedly stat the same path in a loop
7.11_01 Thu Nov 12 11:58:58 GMT 2015
Includes all the Changes noted for v7.06 and the following:
Bug fixes:
- Use of intermediate files to store META.* and *.ppd files has been reverted
- No longer repeatedly attempt to load CPAN::Meta if it is now available
- Made MM_VMS::oneline build continuation lines properly
-------------------------------------------
version 2.64 at 2016-04-14 09:58:30 +0000
-----------------------------------------
Updated for v5.24.0-RC1
-----------------------------------------------------------------
Overview of changes in Glib::Object::Introspection 0.040
========================================================
* Makefile.PL: Make G:O:I dependent on Glib version >= 1.320
* Makefile.PL: Module marked as "stable"; no code changes since 0.033
Overview of changes in Glib::Object::Introspection 0.033
========================================================
* perli11ndoc: Add a path bar to the results display
Overview of changes in Glib::Object::Introspection 0.032
========================================================
* Makefile.PL/setup.pl: change library extensions on OS X
* Docs: include an edited version of Gtk2::api
* perli11ndoc: hush a warning when run in text mode without args
* perli11ndoc: display a synopsis for callables
* perli11ndoc: make Control+k focus the search entry
* perli11ndoc: make Right/Left expand/collapse rows in the tree view
* perli11ndoc: make the result text view readonly
* Croak in setup for unhandled modificaion combinations
* perli11ndoc: when filtering, show children of matching elements
Overview of changes in Glib::Object::Introspection 0.031
========================================================
* Add perli11ndoc, an interactive documentation viewer
* Added perli11ndoc to MANIFEST
Overview of changes in Glib::Object::Introspection 0.030
========================================================
* Avoid repeating setting up a library as this can lead to issues.
* Add some missing version guards to the tests
* Added t/variants.t to MANIFEST
Overview of changes in Glib::Object::Introspection 0.029
========================================================
* Hook up the generic Glib::Boxed constructor on load, not in setup()
* Add support for marshalling GVariants.
* Add support for marshalling GArrays, GPtrArrays and GByteArrays.
* Support flat arrays when converting from C to Perl.
Overview of changes in Glib::Object::Introspection 0.028
========================================================
* Harmonize the format of type names in error messages
* Add a FIXME about a corner case of GInitiallyUnowned handling
