Fixed a bug introduced in 3.3.0 where the supervisorctl reload command would crash supervisord with the error OSError: [Errno 9] Bad file descriptor if the kqueue poller was used. Patch by Jared Suttles.
Fixed a bug introduced in 3.3.0 where supervisord could get stuck in a polling loop after the web interface was used, causing high CPU usage. Patch by Jared Suttles.
Fixed a bug where if supervisord attempted to start but aborted due to another running instance of supervisord with the same config, the pidfile of the running instance would be deleted. Patch by coldnight.
Fixed a bug where supervisorctl fg would swallow most XML-RPC faults. fg now prints the fault and exits.
Parsing the config file will now fail with an error message if a process or group name contains a forward slash character (/) since it would break the URLs used by the web interface.
supervisorctl reload now shows an error message if an argument is given. Patch by Joel Krauska.
supervisorctl commands avail, reread, and version now show an error message if an argument is given.
Tarsnap 1.0.38 is now available. This version brings several new features
compared to tarsnap 1.0.37:
* Tarsnap now supports OpenSSL 1.1.
* tarsnap accepts an --iso-dates option, which causes times to be printed in
YYYY-MM-DD HH:MM:SS format rather than the traditional unix "ls -l" style.
* tarsnap accepts a --force-resources option to proceed with decryption of a
passphrase-encrypted key file even if it is anticipated to use an excessive
amount of memory or CPU time. (This may be useful if tarsnap inaccurately
estimates the amount of memory your system has available.)
* tarsnap accepts an --archive-names <file> option, which reads a list of
archive names to operate on when operating in -d and --print-stats modes.
(This should make some scripts simpler; no more need to construct a command
line which has '-f' inserted before each archive name.)
Potentially (but unlikely) breaking changes in this code compared to tarsnap
1.0.37:
* tarsnap now applies the --humanize-numbers option to the "progress" output
printed by SIGINFO / SIGUSR1. If you have scripts which send signals to
tarsnap and parse its output, they may need to be updated.
* tarsnap -v now prints 'Deleting archive "foo"' even if only one archive is
being deleted. If you have scripts which parse the output of tarsnap -v,
they may need to be updated.
* tarsnap now prints a warning if you pass '--configfile /nosuchfile'. If you
have scripts which rely on being able to specify nonexistent configuration
files and not get any warnings from tarsnap, they may need to be updated.
(Also, if you were doing that, I *really* want to know why.)
There are also two changes which most users should not encounter:
* tarsnap now has an --initialize-cachedir mode; this is intended for use by
the GUI. (The cache directory will be initialized automatically in normal
usage of the tarsnap command-line utility.)
* tarsnap's configure script takes a --with-conf-no-sample option which
results in the sample tarsnap configuration file being installed as
"tarsnap.conf" rather than "tarsnap.conf.sample". This is intended for use in
some packaging systems which have mechanisms for managing configuration files,
and should probably not be used by hand (since it will overwrite your existing
tarsnap.conf).
3.5.1 - 15 June 2017
- Doc fix: Missed a curly brace in an example. (#412)
- Feature: Dynamic metadata functions (#392) - It is now possible to
dynamically add metadata to lager messages. See the "dynamic
metadata" section above for more information.
- Doc fix: Add information about the "application" placeholder. (#414)
3.5.0 - 28 May 2017
- Bugfix: Support OTP 20 gen_event messages (#410)
- Feature: Enable console output to standard_error.
Convert to proplist configuration style (like file handler)
Deprecate previous configuration directives (#409)
- Bugfix: Enable the event shaper to filter messages before they're
counted; do not count application/supervisor start/stops
toward high water mark. (#411)
- Docs: Add PR guidelines; add info about the #lager chat room on freenode.
3.4.2 - 26 April 2017
- Docs: Document how to make lager use UTC timestamps (#405)
- Docs: Add a note about our triage cadence.
- Docs: Update lager_syslog URL
- Docs: Document placeholders for error_logger integration (#404)
- Feature: Add hex.pm metadata and full rebar3 support.
3.4.1 - 28 March 2017
- Docs: Added documentation around using lager in the context of elixir applications (#398)
- Bugfix: Properly expand paths when log_root is set. (#386)
- Policy: Removed R15 from Travis configuration
3.4.0 - 16 March 2017
- Policy: Adopt official OTP support policy. (This is the **last** lager 3.x release
that will support R15.)
- Test: Fix timeouts, R15 missing functions on possibly long-running tests in Travis. (#394, #395)
- Feature: capture and log metadata from error_logger messages (#397)
- Feature: Expose new trace filters and enable filter composition (#389)
- Feature: Log crashes from gen_fsm and gen_statem correctly (#391)
- Docs: Typo in badge URL (#390)
3.3.0 - 16 February 2017
- Docs: Fix documentation to make 'it' unambiguous when discussing asychronous
operation. (#387)
- Test: Fix test flappiness due to insufficient sanitation between test runs (#384, #385)
- Feature: Allow metadata only logging. (#380)
- Feature: Add an upper case severity formatter (#372)
- Feature: Add support for suppressing start/stop messages from supervisors (#368)
- Bugfix: Fix ranch crash messages (#366)
- Test: Update Travis config for 18.3 and 19.0 (#365)
3.2.4 - 11 October 2016
- Test: Fix dialyzer warnings.
3.2.3 - 29 September 2016
- Dependency: Update to goldrush 0.19
3.2.2 - 22 September 2016
- Bugfix: Backwards-compatibility fix for `{crash_log, undefined}` (#371)
- Fix documentation/README to reflect the preference for using `false`
as the `crash_log` setting value rather than `undefined` to indicate
that the crash log should not be written (#364)
- Bugfix: Backwards-compatibility fix for `lager_file_backend` "legacy"
configuration format (#374)
2017-07-05 Martin Mares <mj@ucw.cz>
* Released as 3.5.5.
* Better decoding of AER capability.
* "Slot Implemented" flag is decoded for PCI/PCI-X to PCIe bridges.
* Minor fixes of decoding other capabilities.
* As usually, updated pci.ids to the current snapshot of the database.
- omfwd: add parameter "tcp_frameDelimiter"
- omkafka: large refactor of kafka subsystem
- imfile: improved handling of atomically renamed file (w/ wildcards)
- imfile: add capability to truncate oversize messages or split into
multiple
- mmdblookup
* upgraded from "contrib" to "fully supported" state
* refactored and simplified code
* added ability to specify custom names for extracted fields
* bugfix: fixed multiple memory leaks
- imptcp: add new parameter "flowControl"
- imrelp: add "maxDataSize" config parameter
- multiple modules: gtls: improve error if certificate file can't be
opened
- omsnare: allow different tab escapes
- omelasticsearch: converted to use libfastjson instead of json-c
- imjournal: _PID fallback
- multiple modules: add better error messages when regcomp is failing
- omhiredis: fix build warnings
- imfile bugfix: files mv-ed in into directory were not handled
- omprog bugfix: execve() incorrectly called
- imfile bugfix: multiline timeout did not work if state file exists
- lmsig_ksi-ls12 bugfix: build problems on some platforms
- core bugfix: invalid object type assertion
- regression fix: local hostname was not always detected properly on
early start (w/o network).
- bugfix: format security issues in zmq3 modules
- bugfix build system: add libksi only to those binaries that need it
- bugfix KSI ls12 components: invalid tree height calculation
- testbench/CI enhancements
D-Bus 1.10.20 (2017-06-29)
==
The “suggesting a delivery gone horribly wrong” release.
Fixes:
• Fix a reference leak when blocking on a pending call on a connection
that has been disconnected (fd.o #101481, Shin-ichi MORITA)
• Don't put timestamps in the Doxygen-generated documentation, for
closer-to-reproducible builds (fd.o #100692, Simon McVittie)
• Avoid an assertion failure when connecting to a semicolon-separated
series of addresses, one of which fails (fd.o #101257, Simon McVittie)
Documentation:
• Update git URIs in HACKING document to sync up with cgit.freedesktop.org
(fd.o #100715, Simon McVittie)
BREAKING CHANGES:
- agent: Parse values given to `?passing` for health endpoints.
- agent: The default value of `-disable-host-node-id` has been changed
from false to true.
IMPROVEMENTS:
- agent: Added a `-disable-keyring-file` option to prevent writing
keyring data to disk.
- agent: Added automatic notify to systemd on Linux after LAN join is
complete, which makes it easier to order services that depend on
Consul being available.
- agent: The `http_api_response_headers` config has been moved into a
new `http_config` struct, so the old form is still supported but is
deprecated.
- dns: Added support for EDNS(0) size adjustments if set in the
request frame.
- server: Added a startup warning for servers when expecting to
bootstrap with an even number of nodes.
- agent: (Consul Enterprise) Added support for non rotating,
statically named snapshots for S3 snapshots using the snapshot
agent.
BUG FIXES:
- agent: Fixed a regression where configuring -1 for the port was no
longer disabling the DNS server.
- agent: Fix `consul leave` shutdown race.
- agent: Show a better error message than 'EOF' when attempting to
join with the wrong gossip key.
- agent: Fixed an issue where the `Method` and `Header` features of
HTTP health checks were not being applied.
- agent: Fixed an issue where internally-configured watches were not
working because of an incorrect protocol error, and unified internal
watch handling during reloads of the Consul agent.
- server: Fixed an issue where the leader could return stale data
duing queries as it is starting up.
From DESCR:
Monitoring::Plugin and its associated Monitoring::Plugin::* modules are
a family of perl modules to streamline writing Monitoring plugins. The
main end user modules are Monitoring::Plugin, providing an
object-oriented interface to the entire Monitoring::Plugin::*
collection, and Monitoring::Plugin::Functions, providing a simpler
functional interface to a useful subset of the available functionality.
recommends using `etckeeper unclean` to determine if there are any
changes in need of committing, which works with every VCS that
etckeeper supports. Bump PKGREVISION.
* Handle possible IOError
* avoid crashing on Ruby 2.3.1 when fd is closed
* Add license info to the gemspec.
* Add test environment.
* Initial move to bundler and travis testing.
* Update readme with travis, code climate and coveralls
* Fix invalid or closed file descriptor issues on JRuby
* Modernize copyright/documentation
* Fix incorrect development dependency on ffi
* Update homepage = guard
* Update badge links for guard org
* Add JRuby and Rubinius cases on Travis CI.
* Delete watchers that received the "IN_IGNORED" flag
* Made size more accurately allocated.
* Fix for breaking change for Ruby and runtime dependency version condition.
* Remove stuff that doesn't work on older rubies.
* Remove wrong comment for utopia.gemspec from Gemfile.
* Fix to suppress warning when "gem build rb-inotify.gemspec" (#70)
Puppet 4.10.4 Released June 19, 2017.
This is a single issue release to resolve a regression introduced in Puppet
4.10.3. Resources created using the syntax Resource[xx::yy] would cause an
error because Puppet would not find an existing xx::yy user defined resource
type. This was caused by fixing another problem with inconsistent use of
upper and lowercase in references. (PUP-7671)
Puppet 4.10.3 Released June 15, 2017.
This is a minor bug fix release. Using ampersands (&) in custom facts was
causing Puppet runs to fail in Puppet 4.10.2. This release resolves that
issue. (PUP-7658)
Puppet 4.10.2 Released June 13, 2017.
This is a bug fix release included in Puppet agent 1.10.2, that also includes
two new deprecations for Puppet.
Note: There is a known issue with this release when using ampersands in custom
facts. You can revert back to 4.10.1, or upgrade to 4.10.4.
Affecting all Beats
- Removed empty sections from the template files, causing indexing
errors for array objects.
Metricbeat
- Fix issue affecting Windows services timing out at startup.
- Add filtering to system filesystem metricset to remove relative
mountpoints like those from Linux network namespaces.
Packetbeat
- Clean configured geoip.paths before attempting to open the database.
2017/01/28 - Version 1.1.0
- Gtk 3.22 supported
- Allow several spaces in mountpoint names
- Support fuseblk devices by not using fusermount -u for them (checks for fuse.* now)
2016/05/29 - Version 1.0.0
- Gtk 3 Support only
- Panel Version 4.12 only
2017-06-16 20:10
* New version 0.8.0
* New plugin is not compatible with previous versions;
you will have to add and configure it again!
* Port to GTK+3
* Add xfconf support
* Add new "system" layout style
* Allow adjusting widget size
* Allow displaying language name instead of country name
* Allow hiding tooltip icon
* Load flags from XDG_DATA_HOME if present
* Translation updates: ar ast bg ca cs da de el en_AU es fr he hr hu
id is it ja kk ko lt ms nb nl oc pl pt pt_BR ru sk sr sv th tr ug uk
zh_CN zh_TW
* Fix Indian flag filename
* Fix charset for layout names
1.2.1 (2017/02/09)
-----------------
- rework sizing of the progressbar (#12948, #12974)
- rework the use of GtkCssProvider to use a singleton
- fix progressbar color with Gtk 3.16/3.18
- da, is and oc translation updates
1.2.0 (2016/11/01)
-----------------
- set progressbar trough and color minimal width/height to 4px so that it looks like with gtk+2
- Use MemAvailable on Linux 3.14+ (#12686)
1.3.1
=====
- Set progressbar minimal width and height depending on the orientation (#12941,#12949)
- Apply css on the correct widget class for Gtk 3.16/3.18
- rework the use of GtkCssProvider to use a singleton
- da and oc translation updates
1.3.0
=====
- Fix progress bar grow direction in deskbar and vertical modes
- set progressbar minimal width/height to 4px so that it looks like with gtk+2
4.0.0 (2017/02/25)
==================
- Fix PangoFontDescription not being able to display initial default string
3.99 (2016/11/02)
================
- Port to Gtk3
- Fix font styling to work with Gtk 3.22
- Add support for "genmon" in 'xfce4-panel --plugin-event' (Bug #10734)
- Fix default tooltip does not work (bug #11284)
- Add <txtclick> functionality (Bug #3437)
* === Released 0.1.5 ===
* Tons of svn improvements/fixes, courtesy of Stefan Sperling
* Fixed MACRO naming in makefiles. Bug #7850
* Fixed invalid usage of g_quark_from_static_string. Bug #6322
1.2.0
- New Feature: identify windows by clicking on them (Simon Steinbeiss, Florian Sch?ller)
- Give the filter/search entry focus by default (Bug #11868)
- Add delete and shift/delete keyboard shortcuts to the treeview
- Improve kill and terminate dialog wording
- Add Ctrl+q keyboard shortcut to close the taskmanager
- Improve memory usage on FreeBSD system (Olivier Duchateau)
- Lots and lots of translation updates (thanks to everyone!)
1.6.11
======
- Fix a crash for on cut/pasting of multiple files (Bug #12260)
- Fix a crash when renaming files (Bug #12264)
- Fix missing return value for debug in thunar_file_reload (bug #12827)
- Fix thunar history being deleted after view change (bug #12708)
- Expand the name column by default in details view (#11357)
- Silently ignore G_IO_ERROR_FAILED_HANDLED (#8695)
- Fixing missing return value in standard view
- Fix crashes when reloading target file after move (bug #11983)
- Translation updates: Arabic, Asturian, Basque, Bulgarian, Catalan, Croatian,
Danish, Dutch (Flemish), English (Australia), English (Great Britain), Finnish,
French, Galician, German, Greek, Hebrew, Hungarian, Icelandic, Italian, Korean,
Lithuanian, Norwegian Bokmal, Norwegian Nynorsk, Occitan, Portuguese,
Portuguese (Brazilian), Slovak, Swedish
May 23, 2017
- Fix account daemon behavior when block-project-ssh-keys is unset in metadata.
April 26, 2017
- Remove logic that overrides home directory permissions.
March 27, 2017
- Prevent unchanged authorized keys file writes.
- Accounts daemon sets the home directory permission to 750 instead of 755.
Affecting all Beats
- Fix importing the dashboards when the limit for max open files is
too low.
- Fix console output.
- Binaries upgraded to Go 1.7.6 which contains security fixes.
Filebeat
- Fix issue that new prospector was not reloaded on conflict.
- Fix grok pattern in filebeat module system/auth without hostname.
- Fix the Mysql slowlog parsing of IP addresses.
Winlogbeat
- Add the ability to use LevelRaw if Level isn't populated in the
event XML.
- Build system: The Notify Email plugin is no longer linked with
indirect dependencies.
- collectd: A race condition when calculating a metric's rate has been
fixed.
- AMQP, Exec, UnixSock, Write Kafka plugins: Parsing of the PUTVAL
command with multiple values has been fixed.
- AMQP plugin: The "ExchangeType" option is now also valid for
publishers.
- BIND plugin: Fix parsing of the sample time provided by BIND.
Previously, the time was assumed to be in the local timezone when in
fact it was in UTC.
- BIND plugin: Memory leaks have been fixed.
- cURL-JSON plugin: Handling of arrays has been fixed.
- DPDKStat plugin: Error handling during initialization has been
improved.
- DPDKStat plugin: Handling of a number of metrics has been improved,
for example "rx_q0bytes".
- Intel RDT plugin: Configuration handling has been changed to be more
graceful.
- Log Logstash plugin: If writing the log entry fails, print it to
"STDERR" instead.
- LogFile plugin: If writing to the file fails, print log messages on
"STDERR" instead.
- memcachec, Tail plugins: A resource leak in the matching
infrastructure has been fixed.
- MQTT plugin: Invalid symbols in topic names are now replaced and a
resource leak has been fixed.
- Network plugin: A potential endless-loop has been fixed. This can be
triggered remotely by sending a signed network packet to a server
which is not set up to check signatures.
- Perl plugin: A potential double-free has been fixed.
- Processes plugin: A compilation error on AIX has been fixed.
- SMART plugin: A check for the "CAP_SYS_RAWIO" capability has been
added.
- Write Graphite plugin: Error handling in the case that calculating a
metric's rate fails has been improved. Previously, the raw counter
values were sent to Graphite.
- Write Prometheus plugin: An incorrect use of "realloc(3)" has been
fixed.
FEATURES:
- agent: Added a method for transitioning to gossip encryption on an
existing cluster
- agent: Added a method for transitioning to TLS on an existing cluster
- agent: Added support for RetryJoin on Azure
- agent: (Consul Enterprise) Added AWS server side encryption support
for S3 snapshots using the snapshot agent.
IMPROVEMENTS:
- agent: Added a check which prevents advertising or setting a service
to a zero address (`0.0.0.0`, `[::]`, `::`).
- agent: Allow binding to any public IPv6 address with `::`
- agent: Removed SCADA-related code for Atlas and deprecated all
Atlas-related configuration options.
- agent: Added support for custom check id and name when registering
checks along with a service.
- agent: Updated go-sockaddr library to add support for new helper
functions in bind address templates (`GetPrivateIPs`, `GetPublicIPs`),
new math functions, and to pick up fixes for issues with detecting
addresses on multi-homed hosts.
- agent: Watches now reset their index back to zero after an error, or
if the index goes backwards, which allows watches to recover after a
server restart with fresh state.
- agent: HTTP health checks now upport custom method and headers.
- agent: Increased the graceful leave timeout from 5 to 15 seconds.
- agent: Added additional logging when the agent handles signals and
when it exits.
- build: Added support for linux/arm64 binaries.
- build: Consul now builds with Go 1.8.3.
- ui: Added a sticky scroll to the KV side panel so the KV edit box
always stays in place.
BUG FIXES:
- agent: Added defensive code to prevent agents from infecting the
network coordinates with `NaN` or `Inf` values, and added code to
clean up in environments where this has happened.
- api: Added code to always read from the body of a request so that
connections will always be returned to the pool.
- build: Added a vendor fix to allow compilation on Illumos.
- cli: Fixed an issue where `consul exec` would return a 0 exit code,
even when there were nodes that didn't respond.
* pkgsrc change: ruby-chef support ruby23 only.
Changes from previous version are too many to write here. Please refer
<6b9ebb11c6/CHANGELOG.md> in detail.
The devicetree is a data structure for describing hardware. Rather than
hard coding every detail of a device into an operating system, many aspects
of the hardware can be described in a data structure that is passed to the
operating system at boot time.
This package includes Device Tree Blob (.dtb) files generated from
the Linux kernel for Samsung Exynos5422 devices.
Changes:
- Improved pre/post send and receive commands
- make daemon NOT abort even if there is no configuration found
- change smf dependency to multi-user so that iscsi is running
Logger::Syslog is a Logger replacement that logs to syslog. It is almost
drop-in with a few caveats. You can add Logger::Syslog to your Rails
production environment to aggregate logs between multiple machines.
NOTE! You can only set the Logger::Syslog program name and facility when you
initialize Logger::Syslog for the first time. This is a limitation of the way
Logger::Syslog uses syslog (and in some ways, a limitation of the way
syslog(3) works). Attempts to change Logger::Syslog's program name or
facility after the first initialization will be ignored.
This particular Logger::Syslog improves the original by correctly mapping
Rails log severities to the Syslog counterparts. It also adds the ability to
select a syslog facility other than "user."
The devicetree is a data structure for describing hardware. Rather than
hard coding every detail of a device into an operating system, many aspects
of the hardware can be described in a data structure that is passed to the
operating system at boot time.
This package includes Device Tree Blob (.dtb) files generated from
the Linux kernel for ARM Ltd. Versatile Express boards.
Fix case where OWN_DIRS_PERMS obviously was intended instead of OWN_DIRS.
Also use ${REAL_ROOT_USER}:${REAL_ROOT_GROUP} instead of hardcoding
root:wheel.
Bump PKGREVISION for fixes that changed binary package.
Bug fixes
1000: fixed some setup.py warnings.
1002: [SunOS] remove C macro which will not be available on new Solaris versions. (patch by Danek Duvall)
1004: [Linux] Process.io_counters() may raise ValueError.
1006: [Linux] cpu_freq() may return None on some Linux versions does not support the function; now the function is not declared instead.
1009: [Linux] sensors_temperatures() may raise OSError.
1010: [Linux] virtual_memory() may raise ValueError on Ubuntu 14.04.
----------------------------------------------------------------------
The project is long time abandoned but it can be still usable to rescue
data from old STACKER and DOUBLESPACE volumes.
The version dmsdos-0.9.2.3-pre2-alt2 is based on patches found at
http://packages.altlinux.org/en/Sisyphus/srpms/dmsdos/get
2012-06-07 Fr. Br. George <george at altlinux.ru> 0.9.2.3-alt2
- Fix gcc4.6 build
2012-03-25 Fr. Br. George <george at altlinux.ru> 0.9.2.3-alt1
- Initial build
The modified version disables kernel code build which allows
to build userspace tools for volume dump.
(pkgsrc changes)
- LICENSE= gnu-gpl-v2
- Drop two patches, alt2 version included them.
The devicetree is a data structure for describing hardware. Rather than
hard coding every detail of a device into an operating system, many aspects
of the hardware can be described in a data structure that is passed to the
operating system at boot time.
This package includes Device Tree Blob (.dtb) files generated from
the Linux kernel for NVIDIA Tegra210 devices.
The devicetree is a data structure for describing hardware. Rather than
hard coding every detail of a device into an operating system, many aspects
of the hardware can be described in a data structure that is passed to the
operating system at boot time.
This package includes Device Tree Blob (.dtb) files generated from
the Linux kernel for NVIDIA Tegra124 devices.
Changes since 2.1.2.0, excluding module changes which are too numerous:
## 2.3 "Ramble On" - 2017-04-12
### Major Changes
* Documented and renamed the previously released 'single var vaulting' feature, allowing user to use vault encryption for single variables in a normal YAML vars file.
* Allow module_utils for custom modules to be placed in site-specific directories and shipped in roles
* On platforms that support it, use more modern system polling API instead of select in the ssh connection plugin.
This removes one limitation on how many parallel forks are feasible on these systems.
* Windows/WinRM supports (experimental) become method "runas" to run modules and scripts as a different user, and to transparently access network resources.
* The WinRM connection plugin now uses pipelining when executing modules, resulting in significantly faster execution for small tasks.
* The WinRM connection plugin can now manage Kerberos tickets automatically when `ansible_winrm_transport=kerberos` and `ansible_user`/`ansible_password` are specified.
* Refactored/standardized most Windows modules, adding check-mode and diff support where possible.
* Extended Windows module API with parameter-type support, helper functions. (i.e. Expand-Environment, Add-Warning, Add-DeprecatationWarning)
* restructured how async works to allow it to apply to action plugins that choose to support it.
### Minor Changes
* The version and release facts for OpenBSD hosts were reversed.
This has been changed so that version has the numeric portion and release has the name of the release.
* removed 'package' from default squash actions as not all package managers support it and it creates errors when using loops,
any user can add back via config options if they don't use those package managers or otherwise avoid the errors.
* Blocks can now have a `name` field, to aid in playbook readability.
* default strategy is now configurable via ansible.cfg or environment variable.
* Added 'ansible_playbook_python' which contains 'current python executable', it can be blank in some cases in which Ansible is not invoked via the standard CLI (sys.executable limitation).
* Added 'metadata' to modules to enable classification
* ansible-doc now displays path to module and existing 'metadata'
* added optional 'piped' transfer method to ssh plugin for when scp and sftp are missing, ssh plugin is also now 'smarter' when using these options
* default controlpersist path is now a custom hash of host-port-user to avoid the socket path length errors for long hostnames
* Various fixes for Python3 compatibility
* Fixed issues with inventory formats not handling 'all' and 'ungrouped' in an uniform way.
* 'service' tasks can now use async again, we had lost this capability when changed into an action plugin.
* made any_errors_fatal inheritable from play to task and all other objects in between.
* many small performance improvements in inventory and variable handling and in task execution.
### Deprecations
* Specifying --tags (or --skip-tags) multiple times on the command line
currently leads to the last one overriding all the previous ones. This behaviour is deprecated.
In the future, if you specify --tags multiple times the tags will be merged together.
From now on, using --tags multiple times on one command line will emit a deprecation warning.
Setting the merge_multiple_cli_tags option to True in the ansible.cfg file will enable the new behaviour.
In 2.4, the default will be to merge and you can enable the old overwriting behaviour via the config option.
In 2.5, multiple --tags options will be merged with no way to go back to the old behaviour.
## 2.2.1 "The Battle of Evermore" - 2017-01-16
### Major Changes
* Security fix for CVE-2016-9587 - An attacker with control over a client system being managed by Ansible and the ability to send facts back to the Ansible server could use this flaw to execute arbitrary code on the Ansible server as the user and group Ansible is running as.
### Minor Changes
* Fixes a bug where undefined variables in with_* loops would cause a task failure even if the when condition would cause the task to be skipped.
* Fixed a bug related to roles where in certain situations a role may be run more than once despite not allowing duplicates.
* Fixed some additional bugs related to atomic_move for modules.
* Fixes multiple bugs related to field/attribute inheritance in nested blocks and includes, as well as task iteration logic during failures.
* Fixed pip installing packages into virtualenvs using the system pip instead of the virtualenv pip.
* Fixed dnf on systems with dnf-2.0.x (some changes in the API).
* Fixed traceback with dnf install of groups.
* Fixes a bug in which include_vars was not working with failed_when.
* Fix for include_vars only loading files with .yml, .yaml, and .json extensions. This was only supposed to apply to loading a directory of vars files.
* Fixes several bugs related to properly incrementing the failed count in the host statistics.
* Fixes a bug with listening handlers which did not specify a `name` field.
* Fixes a bug with the `play_hosts` internal variable, so that it properly reflects the current list of hosts.
* Fixes a bug related to the v2_playbook_on_start callback method and legacy (v1) plugins.
* Fixes an openssh related process exit race condition, related to the fact that connections using ControlPersist do not close stderr.
* Improvements and fixes to OpenBSD fact gathering.
* Updated `make deb` to use pbuilder. Use `make local_deb` for the previous non-pbuilder build.
* Fixed Windows async to avoid blocking due to handle inheritance.
* Fixed bugs in the mount module on older Linux kernels and *BSDs
* Various minor fixes for Python 3
* Inserted some checks for jinja2-2.9, which can cause some issues with Ansible currently.
## 2.2 "The Battle of Evermore" - 2016-11-01
### Major Changes:
* Added the `listen` feature for modules. This feature allows tasks to more easily notify multiple handlers, as well as making it easier for handlers from decoupled roles to be notified.
* Major performance improvements.
* Added support for binary modules
* Added the ability to specify serial batches as a list (`serial: [1, 5, 10]`), which allows for so-called "canary" actions in one play.
* Fixed 'local type' plugins and actions to have a more predictable relative path. Fixes a regression of 1.9 (PR #16805). Existing users of 2.x will need to adjust related tasks.
* `meta` tasks can now use conditionals.
* `raw` now returns `changed: true` to be consistent with shell/command/script modules. Add `changed_when: false` to `raw` tasks to restore the pre-2.2 behavior if necessary.
* New privilege escalation become method `ksu`
* Windows `async:` support for long-running or background tasks.
* Windows `environment:` support for setting module environment vars in play/task.
* Added a new `meta` option: `end_play`, which can be used to skip to the end of a play.
* roles can now be included in the middle of a task list via the new `include_role` module, this also allows for making the role import 'loopable' and/or conditional.
* The service module has been changed to use system specific modules if they exist and fall back to the old service module if they cannot be found or detected.
* Add ability to specify what ssh client binary to use on the controller. This
can be configured via ssh_executable in the ansible config file or by setting
ansible_ssh_executable as an inventory variable if different ones are needed
for different hosts.
* Windows:
* several facts were modified or renamed for consistency with their Unix counterparts, and many new facts were added. If your playbooks rely on any of the following keys, please ensure they are using the correct key names and/or values:
- ansible_date_time.date (changed to use yyyy-mm-dd format instead of default system-locale format)
- ansible_date_time.iso8601 (changed to UTC instead of local time)
- ansible_distribution (now uses OS caption string, e.g.: "Microsoft Windows Server 2012 R2 Standard", version is still available on ansible_distribution_version)
- ansible_totalmem (renamed to ansible_memtotal_mb, units changed to MB instead of bytes)
* `async:` support for long-running or background tasks.
* `environment:` support for setting module environment vars in play/task.
* Tech Preview: Work has been done to get Ansible running under Python3. This work is not complete enough to depend upon in production environments but it is enough to begin testing it.
* Most of the controller side should now work. Users should be able to run python3 /usr/bin/ansible and python3 /usr/bin/ansible-playbook and have core features of ansible work.
* A few of the most essential modules have been audited and are known to work. Others work out of the box.
* We are using unit and integration tests to help us port code and not regress later. Even if you are not familiar with python you can still help by contributing integration tests (just ansible roles) that exercise more of the code to make sure it continues to run on both Python2 and Python3.
* scp_if_ssh now supports True, False and "smart". "smart" is the default and will retry failed sftp transfers with scp.
* Network:
* Refactored all network modules to remove duplicate code and take advantage of Ansiballz implementation
* All functionality from *_template network modules have been combined into *_config module
* Network *_command modules not longer allow configuration mode statements
### Minor Changes
* now -vvv shows exact path from which 'currently executing module' was picked up from.
* loop_control now has a label option to allow fine grained control what gets displayed per item
* loop_control now has a pause option to allow pausing for N seconds between loop iterations of a task.
* New privilege escalation become method `ksu`
* `raw` now returns `changed: true` to be consistent with shell/command/script modules. Add `changed_when: false` to `raw` tasks to restore the pre-2.2 behavior if necessary.
* removed previously deprecated ';' as host list separator.
* Only check if the default ssh client supports ControlPersist once instead of once for each host + task combination.
* Fix a problem with the pip module updating the python pip package itself.
* ansible_play_hosts is a new magic variable to provide a list of hosts in scope for the current play. Unlike play_hosts it is not subject to the 'serial' keyword.
* ansible_play_batch is a new magic variable meant to substitute the current play_hosts.
## 2.1.4 "The Song Remains the Same" - 2017-01-16
* Security fix for CVE-2016-9587 - An attacker with control over a client system being managed by Ansible and the ability to send facts back to the Ansible server could use this flaw to execute arbitrary code on the Ansible server as the user and group Ansible is running as.
* Fixed a bug with conditionals in loops, where undefined variables and other errors will defer raising the error until the conditional has been evaluated.
* Added a version check for jinja2-2.9, which does not fully work with Ansible currently.
## 2.1.3 "The Song Remains the Same" - 2016-11-04
* Security fix for CVE-2016-8628 - Command injection by compromised server via fact variables. In some situations, facts returned by modules could overwrite connection-based facts or some other special variables, leading to injected commands running on the Ansible controller as the user running Ansible (or via escalated permissions).
* Security fix for CVE-2016-8614 - apt_key module not properly validating keys in some situations.
###Minor Changes:
* The subversion module from core now marks its password parameter as no_log so
the password is obscured when logging.
* The postgresql_lang and postgresql_ext modules from extras now mark
login_password as no_log so the password is obscured when logging.
* Fixed several bugs related to locating files relative to role/playbook directories.
* Fixed a bug in the way hosts were tested for failed states, resulting in incorrectly skipped block sessions.
* Fixed a bug in the way our custom JSON encoder is used for the to_json* filters.
* Fixed some bugs related to the use of non-ascii characters in become passwords.
* Fixed a bug with Azure modules which may be using the latest rc6 library.
* Backported some docker_common fixes.
availability and performance of IT infrastructure components. Zabbix is open
source and comes at no cost.
With Zabbix it is possible to gather virtually limitless types of data from
the network. High performance real-time monitoring means that tens of thousands
of servers, virtual machines and network devices can be monitored
simultaneously. Along with storing the data, visualization features are
available (overviews, maps, graphs, screens, etc), as well as very flexible
ways of analyzing the data for the purpose of alerting.
Due to the critical nature of issue 41230 we have decided to patch the 2016.11.5 packages with P.R.41244. This issue affects all calls to a salt-minion if there is an ipv6 nameserver set on the minion's host. The patched packages on repo.saltstack.com will divert from the v2016.11.5 tag and pypi packages due to the additional PR applied to the packages.
Bug fixes.
* New upstream release:
* merged Makefile patch
* update standards version, no change
* Remove pre-compiled .pyc for bzr plugin from Debian package,
and add python:Depends to Depends so that dh_python2 will install
maintainer script snippets. Unfortunately, this adds a completely
unnecessary dependency on python, which etckeeper does not need in
normal operation.
* Make etckeeper commit store metadata changes. The pre-commit
hook has always (and continues) to do that, but pre-commit is only
run when there are changes to tommit. This makes metadata-only
changes get committed.
* Move systemd files to /lib/systemd; /usr/lib/systemd is not used
on Debian.
* Optimised find for special and hard linked files.
Thanks, Rike-Benjamin Schuppner.
* Adjust when Pacman 5 calls etckeeper hooks.
Thanks, Tilman Blumenbach and Christian Hesse.
* Only run Pacman hooks when files in /etc have changed.
Thanks, Christian Hesse.
* Added systemd timer that can run etckeeper 10 minutes after boot, and also
daily. It's not enabled by default, partly because of overlap with the
cron job.
Thanks, Christian Hesse.
* Added support for pacmatic, contributed by nicolaichuk.
* bzr: make sure EMAIL is defined
Thanks, Serge E. Hallyn
* Fix Makefile version patterns to ignore non-native version number
(Antoine Beaupré)
* Support ~/.config/git/config when determining the author name and email.
Thanks, Richard Savio
* Added support for Arch's pacman package manager version 5.
Thanks, Tilman Blumenbach.
* Set HOME if it's not set, as is the case when using ubuntu's
update-manager.
* Move bash completion out of etc and into usr.
* Prepare upload to Debian unstable
* Fix Makefile version patterns to ignore non-native version number
* Fix lintian warnings:
* remove .pyc files on build
* install bash completions in standard location
* ignore missing debian/config file, we ask only on purge on purpose
* ignore full path for /usr/bin/etckeeper, we use it to stash it for
later
* Update to standards 3.9.6, no change
* Remove obsolete XS-Python-Version field
* Run debconf-updatepo, outdating a bunch of translations
* Use getent utility instead of perl. (Elan Ruusamäe)
* Initial FreeBSD support with pkgng plugin. (William Johansson)
* Fix README.md symlink in package (Sebastian Schmidt, Antoine Beaupré,
closes: #791566)
* Fix typo of GIT_COMMITTER_EMAIL.
* Update git URL in control file.
* Send yum pre-commit output to /dev/null
Thanks, Andrew Colin Kissa
* Set LANG=C internally when doing some operations that have
been reported to fail in other locales.
* Fix name of DNF plugin.
* Add --version
Thanks Andreas Wansner.
* New website, http://etckeeper.branchable.com/
* Add build-depends on dh-python.
* Added support for Fedora's DNF highlevel package manager.
Thanks, Peter Listiak and Petr Spacek.
* Add architecture info to dpkg list-installed. Closes: #768145
* Orphaned the Debian package.
* Recommend cron-daemon, rather than cron, as etckeeper only needs
cron.daily functionality. Closes: #762721
* Handle failure to commit in post-install, pre-install by showing a
warning, rather than propigating the error to apt.
This avoids breaking the apt run when eg, git is misconfigured and
cannot commit.
pre-install already did this when it was able to use debconf to display a
message, but now debconf is not used, and it always behaves this way.
Closes: #760011
* Ignore check-mk-agent-logwatch's FHS violating
/etc/check_mk/logwatch.state. Closes: #753903
* Only allow [-a-z_] in etckeeper commands to avoid any possible directory
traversal etc issues.
* update-ignore, uninit: Fix parsing of ignore files containing '\'
* Portability fixes. Thanks, Harald Dunkel.
* Add support for pushing to multiple remote repositories.
Thanks, Rouben.
* Fix handling of git ignores like dir/*
Thanks, Pim van den Berg
* Fix too broad matching of .gitignored files.
Closes: #732339
* Remove lvm/backup from default ignores, because lvm
documentation recommends backing that up, for use by
vgcfgrestore.
* Fix exporting of some git variables. Closes: #728583
* Fix git update-ignore syntax. Closes: #721873
* Avoid listing .gitignored files in .etckeeper file. Closes: #607665
Thanks, Zdenek Crha
* Fix hilarious typo hardcoding my name. Closes: #718425
* Guard git config calls. Closes: #717957
* Quote user and group names, in case one contains a space.
* Added support for the pacman package manager.
(Thanks, Tiago Stürmer Daitx)
* Use user.name and user.email from the .gitconfig file belonging to the
user who sued or sudoed to root, in preference to making up values for
that user.
* cron.daily: Fix typo in stale lockfile handling code.
Closes: #717908
* Deal with unix^wlinux portability nonsense.
Version 8.27.0 [v8-stable] 2017-05-16
- imkafka: add module
- imptcp enhancements:
* optionally emit an error message if incoming messages are truncated
* optionally emit connection tracking message (on connection create and
close)
* add "maxFrameSize" parameter to specify the maximum size permitted
in octet-counted mode
* add parameter "discardTruncatedMsg" to permit truncation of
oversize messages
* improve octect-counted mode detection: if the octet count is larger
then the set frame size (or overly large in general), it is now
assumed that octet-stuffing mode is used. This probably solves a
number of issues seen in real deployments.
- imtcp enhancements:
* add parameter "discardTruncatedMsg" to permit truncation of
oversize messages
* add "maxFrameSize" parameter to specify the maximum size permitted
in octet-counted mode
- imfile bugfix: "file not found error" repeatedly being reported
for configured non-existing file.
- imfile: in inotify mode, add error message if configured file cannot
be found
- imfile: add parameter "fileNotFoundError" to optinally disable
"file not found" error messages
- core: replaced gethostbyname() with getaddrinfo() call
- omkafka: add "origin" field to stats output
- imuxsock: rate-limiting also uses process name
both for the actual limit procesing as well as warning messages emitted
- Added new module: KSI log signing ver. 1.2 (lmsig_ksi_ls12)
- rsylsog base functionality now builds on osx (Mac)
- build now works on solaris again
- imfile: fix cross-platform build issue
- bugfix core: segfault when no parser could parse message
- bugfix core: rate-limit internal messages when going to external log system
- bugfix core: when obtaining local hostname, a NULL pointer could be
accessed.
- bugfix core: on shutdown, stderr was written to, even if alrady closed
- bugfix core: perform MainqObj destruction only when not NULL already
- bugfix core: memory leak when internal messages not processed internally
- bugfix imptcp: potential overflow in octet count computation
when a very large octet count was specified, the counter could overflow
- agent: Fixed an issue where NAT-configured agents with a non-routable
advertise address would refuse to make RPC connections to Consul
servers. This was a regression related to GH-2822 in Consul 0.8.2.
==== Bugfixes
Affecting all Beats
- Improve error message when downloading the dashboards fails.
- Fix potential Elasticsearch output URL parsing error if protocol
scheme is missing.
- Downgrade Elasticsearch per batch item failure log to debug level.
- Make `@timestamp` accessible from format strings.
Filebeat
- Allow log lines without a program name in the Syslog fileset.
- Don't stop Filebeat when modules are used with the Logstash output.
Metricbeat
- Fixing panic on the Prometheus collector when label has a comma.
- Make system process metricset honor the `cpu_ticks` config option.
Winlogbeat
- Fix null terminators include in raw XML string when include_xml is
enabled.
==== Added
Affecting all Beats
- Update index mappings to support future Elasticsearch 6.X.
Filebeat
- Add auditd module for reading audit logs on Linux.
- Add fileset for the Linux authorization logs.
Heartbeat
- Add default ports in HTTP monitor.
Metricbeat
- Add beta Jolokia module.
- Add dashboard for the MySQL module.
- Module configuration reloading is now beta instead of experimental.
- Marked http fields from the HAProxy module optional to improve
compatibility with 1.5.
- Add support for custom HTTP headers and TLS for the Metricbeat
modules.
Packetbeat
- Add DNS dashboard for an overview the DNS traffic.
- Add DNS Tunneling dashboard to highlight domains with large numbers
of subdomains or high data volume.
BREAKING CHANGES:
- api: HttpClient now defaults to nil in the client config and will be
generated if left blank. A NewHttpClient function has been added for
creating an HttpClient with a custom Transport or TLS config.
IMPROVEMENTS:
- agent: Added an error at agent startup time if both -ui and -ui-dir
are configured together.
- agent: Added the datacenter of a node to the catalog, health, and
query API endpoints which contain a Node structure.
- agent: Added the ca_path, tls_cipher_suites, and
tls_prefer_server_cipher_suites options to give more flexibility
around configuring TLS.
- agent: Reduced the timeouts for the -dev server mode so that the
development server starts up almost instantly.
- agent: Added verify_incoming_rpc and verify_incoming_https options
for more granular control over incoming TLS enforcement.
- agent: Use bind address as source for outgoing connections.
- api: Added the ACL replication status endpoint to the Go API client
library.
- cli: Added Raft protocol version to output of operator raft
list-peers command.
- ui: Added optional JSON validation when editing KV entries in the
web UI.
- ui: Updated ACL guide links and made guides open in a new tab.
BUG FIXES:
- server: Fixed a panic when the tombstone garbage collector was
stopped.
- server: Fixed a panic in Autopilot that could occur when a node is
elected but cannot complete leader establishment and steps back
down.
- server: Added a new peers.json format that allows outage recovery
when using Raft protocol version 3 and higher. Previously, you'd
have to set the Raft protocol version back to 2 in order to manually
recover a cluster.
- ui: Add and update favicons
-------------------------------------
v3.8.0
- Additional Intel GPU checks
- Gentoo release check (whether it's stable/testing/experimental)
- Chromebrew detection for Chrome OS pkgs
- OpenBSD fixes
- Manjaro logo updated
- Added Fux logo
- Enable easily addable custom lines through customlines() function
- Line wrapping with '-w' command line option
- Fix issue with extra space and host variable
- Improvements to OS X font detection
- Fixed package count, shell detection and colors on NetBSD
- Added pkgsrc support for OS X
- Use new NixOS logo
- Use new KaOS logo
- PCLinuxOS logo added
- pomf host removed (does not exist anymore)
- Display the package count, resolution, GPU and OS version on Haiku
- Display release version and package count on TinyCore Linux
- Display exact release version on Windows 10
- Use modern logo on Windows 10 and Windows 8
- Support for Blackbox on Windows
- Improve BusyBox shell detection
- Added detection for Trinity/TWin, chromeos-wm, FLWM, howm,
sway, LXQt and Deepin [DEs/WMs]
- Added detection for Alpine, BunsenLabs, Chrome OS, Chromium
OS, Devuan, Fux, GrombyangOS, KDE neon, Kogaion, Mer, Msys,
Netrunner, Oracle Linux, PCLinuxOS, Qubes OS, Parrot
Security, Pardus, Red Star OS, ROSA, SailfishOS,
SparkyLinux, SteamOS, SUSE Linux Enterprise and SwagArch
(pkgsrc changes)
- Drop patch, upstream now included.
Launch a subprocess in a pseudo terminal (pty), and interact with both
the process and its pty.
Sometimes, piping stdin and stdout is not enough. There might be a
password prompt that doesn’t read from stdin, output that changes when
it’s going to a pipe rather than a terminal, or curses-style
interfaces that rely on a terminal. If you need to automate these
things, running the process in a pseudo terminal (pty) is the answer.
### Version 0.6.3 / 2017-03-24
See beta release notes.
### Version 0.6.3.beta.1 / 2017-03-10
* Bug fix: Fixed child process creation problems on Windows 7 when a child was declared as a leader.
### Version 0.6.2 / 2017-02-25
* Bug fix: Fixed a potentially broken edge case that could occur on older 32-bit OSX systems.
### Version 0.6.1 / 2017-01-22
* Bug fix: Fixed a dependency that was accidentally declared as a runtime
dependency instead of a development dependency.
### Version 0.6.0 / 2017-01-22
* Support for Ruby 2.4 added
Affecting all Beats
- Fix panic when testing regex-AST to match against date patterns.
Filebeat
- Fix modules default file permissions.
- Allow - in Apache access log byte count.
Metricbeat
- Avoid errors when some Apache status fields are missing.
D-Bus 1.10.18 (2017-04-05)
==
The “can't handle a self-referential paradox” release.
Fixes:
• Re-order dbus-daemon startup so that on SELinux systems, the thread
that reads AVC notifications retains the ability to write to the
audit log (fd.o #92832, Debian #857660; Laurent Bigonville)
• Fix a harmless read overflow and some memory leaks in a unit test
(fd.o #100568, Philip Withnall)
IMPROVEMENTS:
- agent: Node IDs derived from host information are now hashed to
prevent things like common server hardware from generating IDs with
a common prefix across nodes.
- agent: Added new -disable-host-node-id CLI flag and
disable_host_node_id config option to the Consul agent to prevent it
from using information from the host when generating a node ID.
- agent: Removed useless "==> Caught signal: broken pipe" logging
since that often results from problems sending telemetry or broken
incoming client connections; operators don't need to be alerted to
these.
- cli: Added TLS options for setting the client/CA certificates to use
when communicating with Consul.
- build: Consul is now built with Go 1.8.1.
- ui: Updates Consul assets to new branding.
BUG FIXES:
- api: Added missing Raft index fields to AgentService and Node
structures.
- server: Fixed an issue where flood joins would not work with IPv6
addresses.
- server: Fixed an issue where electing a 0.8.x leader during an
upgrade would cause a panic in older servers.
- server: Fixed an issue where tracking of leadership changes could
become incorrect when changes occurred very rapidly.
- server: Fixed a panic when checking ACLs on a session that doesn't
exist.
Changelog:
Fixed:
* Authentication failure is reported as unknown general system error.
* Unable to backup virtual machines with active Docker containers.
and allows parsing separate sysfs files rather than reading the config file
on newer kernels.
Adam Jackson (1):
chmod a-x README.cygwin
Chuck Tuffli (1):
libpciaccess: Fix incorrect format specification
Emil Velikov (7):
autogen.sh: pass --force to autoreconf, quote string variables
linux sysfs: retrieve vendor, device... info via separate sysfs files
autogen.sh: use quoted string variables
Revert "linux_sysfs: include <limits.h> for PATH_MAX"
configure.ac: remove AC_CONFIG_SRCDIR macro
configure.ac: set AC_CONFIG_AUX_DIR
libpciaccess 0.13.5
Felix Janda (2):
linux_sysfs.c: Include <limits.h> for PATH_MAX
linux_sysfs: include <limits.h> for PATH_MAX
Henry Zhao (2):
probe should not hold pci nexus drivers open
use cached devinfo snapshots, remove unnecessary di_init()
Julien Cristau (1):
Include config.h before anything else in *.c
Keith Busch (1):
Ignore 32-bit domains
Mihail Konev (1):
autogen: add default patch prefix
Peter Hutterer (1):
autogen.sh: use exec instead of waiting for configure to finish
Thomas Klausner (1):
Fix quoting issue.
arsharma (2):
vgaarb: add a the trailing NULL character on read(vgaarb_fd)
device-name: handle calloc failure in insert()
- enable internal error messages at all times
- core: added logging name of source of rate-limited messages
- omfwd: omfwd: add support for network namespaces
- imrelp: honor input name if provided when submitting to impstats
- imptcp: add ability to set owner/group/access perms for uds
- mmnormalize: add ability to load a rulebase from action() parameter
- pmrfc3164 improvements
- permit to ignore leading space in MSG
- permit to use at-sign in host names
- permit to require tag to end in colon
- add new global parameter "umask"
- core: make use of -T command line option more secure
- omfile: add error if both file and dynafile are set
- bugfix: build problem on MacOS (not a supported platform)
- regression fix: in 8.25, str2num() returned error on empty string
- bugfix omsnmp: improper handling of new-style configuration
parameters
- bugfix: rsyslog identifies itself as "liblogging-stdlog" in internal
messages
- bugfix imfile: wrong files were monitored when using multiple imfile
inputs
- bugfix: setting net.aclResolveHostname/net.acladdhostnameonfail
segfaults
- bugfix: immark emitted error messages with text "imuxsock"
- bugfix tcpflood: build failed if RELP was disabled
- fix gcc6 compiler warnings
- the output module array passing interface has been removed
Version 2.0.3, 2017-03-22
- add ability to load rulebase from a string
- bugfix: string parser did not correctly parse word at end of line
- bugfix: literal parser does not always store value if name is specified
Version 2.0.2, 2016-11-15
- bugfix: no error was emitted on invalid "annotate" line
- "annnotate": permit inline comments
- fix a problem with cross-compilation
- bugfix: abort in literal path compaction when useing "alternative" parser
- bugfix: lognormalizer could loop
- fix misleading compiler warning
- testbench: add test for "annotate" functionality
BREAKING CHANGES:
- Command-Line Interface RPC Deprecation: The RPC client interface has
been removed.
- Version 8 ACLs Are Now Opt-Out: The acl_enforce_version_8
configuration now defaults to true to enable full version 8 ACL
support by default.
- Remote Exec Is Now Opt-In: The default for disable_remote_exec was
changed to "true", so now operators need to opt-in to having agents
support running commands remotely via consul exec.
- Raft Protocol Compatibility: When upgrading to Consul 0.8.0 from a
version lower than 0.7.0, users will need to set the -raft-protocol
option to 1 in order to maintain backwards compatibility with the old
servers during the upgrade.
FEATURES:
- Autopilot: A set of features has been added to allow for automatic
operator-friendly management of Consul servers.
- Dead Server Cleanup: Dead servers will periodically be cleaned up and
removed from the Raft peer set
- Server Health Checking: An internal health check has been added to
track the stability of servers.
- New Server Stabilization: When a new server is added to the cluster,
there will be a waiting period where it must be healthy and stable for
a certain amount of time before being promoted to a full, voting member.
- Advanced Redundancy: (Consul Enterprise) A new -non-voting-server
option flag has been added for Consul servers to configure a server
that does not participate in the Raft quorum.
- Upgrade Orchestration: (Consul Enterprise) Autopilot will
automatically orchestrate an upgrade strategy for Consul servers
- Network Areas: (Consul Enterprise) A new capability has been added
which allows operators to define network areas that join together two
Consul datacenters.
- WAN Soft Fail: Request routing between servers in the WAN is now more
robust by treating Serf failures as advisory but not final.
- WAN Join Flooding: A new routine was added that looks for Consul
servers in the LAN and makes sure that they are joined into the WAN as
well.
- Validate command: To provide consistency across our products, the
configtest command has been deprecated and replaced with the validate
command
IMPROVEMENTS:
- agent: Fixed a missing case where gossip would stop flowing to dead
nodes for a short while.
- agent: Changed agent to seed Go's random number generator.
- agent: Serf snapshots no longer have the executable bit set on the
file.
- agent: Consul is now built with Go 1.8.
- agent: Updated aws-sdk-go version (used for EC2 auto join) for Go 1.8
compatibility.
- agent: User-supplied node IDs are now normalized to lower-case.
- agent: Added checks to enforce uniqueness of agent node IDs at cluster
join time and when registering with the catalog.
- cli: Standardized handling of CLI options for connecting to the Consul
agent.
- cli: Updated go-cleanhttp library for better HTTP connection handling
between CLI commands and the Consul agent
- cli: The operator raft subcommand has had its two modes split into the
list-peers and remove-peer subcommands.
- cli: Added an -id flag to the operator raft remove-peer command to
allow removing a peer by ID.
- dns: Allows the .service tag to be optional in RFC 2782 lookups.
- server: Changed the internal EnsureRegistration RPC endpoint to
prevent registering checks that aren't associated with the top-level
node being registered.
BUG FIXES:
- agent: Fixed an issue with consul watch not working when http was
listening on a unix socket.
- agent: Fixed an issue where checks and services could not sync
deregister operations back to the catalog when version 8 ACL support
is enabled.
- agent: Fixed an issue where agents could use the ACL token registered
with a service when registering checks for the same service that were
registered with a different ACL token.
- cli: Fixed consul kv commands not reading the CONSUL_HTTP_TOKEN
environment variable.
- cli: Fixed an issue where prefixing an address with a protocol (such
as 'http://' or 'https://') in -http-addr or CONSUL_HTTP_ADDR would
give an error.
- cli: Fixed an issue where error messages would get printed to stdout
instead of stderr.
- server: Fixed an issue with version 8 ACLs where servers couldn't
deregister nodes from the catalog during reconciliation.
- server: Fixed an issue where servers could temporarily roll back
changes to a node's metadata or tagged addresses when making updates
to the node's health checks.
- server: Fixed an issue where the service name consul was not subject
to service ACL policies with version 8 ACLs enabled.
==== Breaking changes
Affecting all Beats
- Configuration files must be owned by the user running the Beat or by
root, and they must not be writable by others.
- Change Beat generator. Use
`$GOPATH/src/github.com/elastic/beats/script/generate.py` to
generate a beat.
Filebeat
- Always use absolute path for event and registry. This can lead to
issues when relative paths were used before.
Metricbeat
- Linux cgroup metrics are now enabled by default for the system
process metricset. The configuration option for the feature was
renamed from `cgroups` to `process.cgroups.enabled`.
- Change field names `couchbase.node.couch.*.actual_disk_size.*` to
`couchbase.node.couch.*.disk_size.*`
==== Bugfixes
Affecting all Beats
- Add `_id`, `_type`, `_index` and `_score` fields in the generated
index pattern.
Filebeat
- Fix empty registry file on machine crash.
Metricbeat
- Add error handling to system process metricset for when Linux
cgroups are missing from the kernel.
- Add labels to the Docker healthcheck metricset output.
Winlogbeat
- Fix handling of empty strings in event_data.
==== Added
Affecting all Beats
- Files created by Beats (logs, registry, file output) will have 0600
permissions.
- RPM/deb packages will now install the config file with 0600
permissions.
- Add the option to pass custom HTTP headers to the Elasticsearch
output.
- Unify `regexp` and `contains` conditionals, for both to support
array of strings and convert numbers to strings if required.
- Add the option to load the sample dashboards during the Beat startup
phase.
- Disabled date detection in Elasticsearch index templates. Date
fields must be explicitly defined in index templates.
- Using environment variables in the configuration file is now GA,
instead of experimental.
Filebeat
- Add Filebeat modules for system, apache2, mysql, and nginx.
- Add the `pipeline` config option at the prospector level, for
configuring the Ingest Node pipeline ID.
- Update regular expressions used for matching file names or lines
(multiline, include/exclude functionality) to new matchers improving
performance of simple string matches.
- The `symlinks` and `harverster_limit` settings are now GA, instead
of experimental.
- close_timeout is also applied when the output is blocking.
- Improve handling of different path variants on Windows.
Metricbeat
- Add experimental dbstats metricset to MongoDB module.
- Use persistent, direct connections to the configured nodes for
MongoDB module.
- Add dynamic configuration reloading for modules.
- Add docker health metricset
- Add docker image metricset
- System module uses new matchers for white-listing processes.
- Add Beta CEPH module with health metricset.
- Add Beta php_fpm module with pool metricset.
- The Docker, Kafka, and Prometheus modules are now Beta, instead of
experimental.
- The HAProxy module is now GA, instead of experimental.
- Add the ability to collect the environment variables from system
processes.
==== Deprecated
Affecting all Beats
- Usage of field `_type` is deprecated. It should not be used in
queries or dashboards.
Filebeat
- The experimental `publish_async` option is now deprecated and is
planned to be removed in 6.0.
This includes stub domains support, but it should be considered
experimental at this time. Stub domains hangs with serial ports,
or more more than one virual disk (multiple virtual ethernet have not been
tested).
* Avoid crashing after fd is closed
* Add support for platforms with libinotify
* Add license to gemspec.
* Do not follow into symlinked directories when traversing directories
This is pretty much a relaunch of the project,
the internet site and the accompanying documentation.
There are too much changes for a detailed report.
The most prominent feature of this version is that
the multithreaded RS03 codec reached production
quality, and all required features have been implemented.
A few things will be added with the next releases:
- adaptive reading is currently disabled as it does
not support RS03 yet and would crash or misbehave
on RS03 error correction data
- a heuristic for an exhaustive re-discovery of RS03
structures in a badly damaged medium is missing in
the decoder
But these things should not keep you from using RS03,
as the encoder is complete and future decoder enhancements
do not affect already created RS03 data.
Version 4.8.19
- Core
* Replace $MC_HOME with $MC_PROFILE_ROOT (#3684)
* Allow rebind TAB key to change panel (#3672)
* Support for True Color (16 millions colors) (#3145)
* Color aliases in skin files (#3711)
- VFS
* Support timestamps with nanosecond precision for copy/move operations (#3575)
* Introduce EXTFS helpers tester (#3730, #3744, #3752, #3753, #3751)
* Teach u7z to parse archive listings w/o sizes and/or dates (#2707)
* Teach rpm helper about transaction scripts (#3750)
* Fix hp48, uace & uarc extfs which used an obsolete date format (#3729, #3747)
- Editor
* Syntax:
- updates of HTML and ebuild highlighting
- highlight *.t (Perl test) files as Perl scripts
- disassociate .cl file extension from LISP syntax (#3691)
* Add syntax highlighting:
- OpenCL (#3690)
- OpenShadingLanguage (#3762)
- R
- YAML (#3293)
- Misc
* Code cleanup (#3693, #3703, #3721, #3763)
* Add true color skins: 'Four seasons' (#3724)
* Activate `--enable-tests` by default if `check` is found (#3708)
* Added new skin: YADT (MidnightCommander/mc#115)
- Fixes
* Segfault on switching left panel to Info (#3700)
* Broken compatibility with ncurses (#3697)
* Setting MC_HOME makes mc ignore ~/.bashrc (#3684)
* mc_tmpdir() use a buffer of only 64 characters (#3736)
* Some bugs in the parsing of hexadecimal search patterns (#3694)
* Hexadecimal search fails on binary data (#3589)
* Broken file list resorting on double click on panel header line (#3715)
* Wrong dialog resizing and positioning (#3714, #3723)
* Widget's 'disabled' status is not toggled immediately (#3716)
* Last item of 'Options/Layout/Horizontal' radiobuttons remains highlighted (#3717)
* 'Options/Layout/Equal split' checkbox gets reverted (#3718)
* Panels: cannot show more than one "column" in user defined listing mode (#3757)
* Mix of MSG_NOTIFY and MSG_FOCUS messages (#3731)
* skins: 'window-state-char' and 'window-close-char' are parsed as colors (#3710)
* Pressing <right> and <left> in the hotlist dialog doesn't refresh it (#3775)
* mcview: an error message about bad regexp isn't shown (#3720)
* mcedit: fix etags filenames parsing (#3698)
* mcedit: fix mouse active area for maximize / close buttons (#3774)
* mcedit: frames (MDI interface) don't reflect the focus state (#3766)
* mcedit: frames (MDI interface) sometimes obscure the buttonbar (#3760)
* mcedit doesn't show search error messages when searching backwards (#3735)
* help viewer: tab characters handled incorrectly (#3754)
* VFS: incorrect zoo archive listing (#3696)
* VFS: segfault in VFSs not setting block size in stat (#3749)
The guest environment denotes the Google provided configuration and tooling
inside of a Google Compute Engine (GCE) virtual machine. The metadata server is
a communication channel for transferring information from a client into the
guest. The guest environment includes a set of scripts and daemons (long
running processes) that read the content of the metadata server to make a
virtual machine run properly on our platform.
You probably do not need this package unless you are running in a virtual
machine on Google Compute Engine.
the file on kernel.org has a different checksum from other mirrors.
(contents don't appear different)
because ftp.kernel.org went down, we were not fetching it, which resulted
in a mismatch.
switch to http @ kernel.org. now the first mirror will have a mismatched
checksum, but the second won't.
Changes:
== 3.7: February 27, 2017
- Terminate subprocess in restart mode if a file under watch disappears
- Allow NOTE_ATTRIB to set '/_' only if file mode changes
- New '-s' option executes commands using $SHELL -c
- Print usage and exit if input is from a terminal instead of a pipe
Changes:
- imfile: add support for wildcards in directory names
- add new global option "parser.PermitSlashInProgramname"
- mmdblookup: fix build issues, code cleanup
- improved debug output for queue corruption cases
- an error message is now displayed when a directory owner cannot be set
- rainerscript: add new functions ipv42num and num2ipv4
- bugfix: ratelimiter does not work correctly is time is set back
- core: fix potential message loss in old-style transactional interface
- bugfix queue subsystem: queue corrupted if certain msg props are used
- bugfix imjournal: fixed situation when time goes backwards
- bugfix: bFlushOnTxEnd == 0 not honored when writing w/o async writer
- bugfix core: str2num mishandling empty strings
- bugfix rainerscript: set/unset statement do not check variable name validity
- bugfix mmrm1stspace: last character of rawmsg property was doubled
- bugfix: rsyslog loops on freebsd when trying to write /dev/console
- bugfix imtcp: fix very small (cosmetic) memory leak
- fix build issues on some platforms (detected on newer Fedora)
For full changelog see:
https://github.com/rsyslog/rsyslog/blob/v8.25.0/ChangeLog
2017-02-25 Martin Mares <mj@ucw.cz>
* Released as 3.5.4.
* Previous version broke compilation on systems, for which lib/types.h
did not provide a 64-bit integer type. It is provided everywhere now.
sandboxctl is a tool to interact with chroot-based sandboxes.
The sandboxctl tool provides an automated mechanism to create and
interact with chroot-based sandboxes. These sandboxes can be transient
(e.g. to run a single command within them) or long-lived (e.g. to run a
system service in a safe manner).
Sandboxes can be created using multiple mechanisms, which range from
extracting fresh distribution sets to bind-mounting the outer file
systems inside the sandbox. The specific mechanism depends on the
features supported by the underlying operating system and the chosen
sandbox type. Currently, sandboxctl includes support for FreeBSD,
Linux, macOS (Darwin), and NetBSD.
Each sandbox is defined via a configuration file provided by the user
and a system-specific template provided by this package. The user
configuration is simple and semantically-rich, allowing the system
administrator to not worry about the environment-specific details.
This package is primarily targetted at supporting pkgtools/pkg_comp
but is provided as a standalone tool for flexibility.
- server: Fixed a rare but serious issue where Consul servers could
panic when performing a large delete operation followed by a specific
sequence of other updates to related parts of the state store (affects
KV, sessions, prepared queries, and the catalog).
- Metricbeat: Fix go routine leak in docker module.
- Packetbeat: Fix error in the NFS sample dashboard.
- Winlogbeat: Fix error in the Winlogbeat sample dashboard.
D-Bus 1.10.16 (2017-02-16)
==
The “super digging powers” release.
The fixes in this release are arguably security fixes, but if they
affect you, please take this opportunity to rethink how you are
configuring dbus.
Enhancements:
• Do the Travis-CI build in Docker containers for Ubuntu LTS, Debian
stable and Debian testing in addition to the older Ubuntu that is
the default (fd.o #98889, Simon McVittie)
Fixes:
• Prevent symlink attacks in the nonce-tcp transport on Unix that could
allow an attacker to overwrite a file named "nonce", in a directory
that the user running dbus-daemon can write, with a random value
known only to the user running dbus-daemon. This is unlikely to be
exploitable in practice, particularly since the nonce-tcp transport
is really only useful on Windows.
On Unix systems we strongly recommend using only the unix: and systemd:
transports, together with EXTERNAL authentication. These are the only
transports and authentication mechanisms enabled by default,
(fd.o #99828, Simon McVittie)
• Avoid symlink attacks in the "embedded tests", which are not enabled
by default and should never be enabled in production builds of dbus.
(fd.o #99828, Simon McVittie)
ChangeLog:
2017-02-15 Martin Mares <mj@ucw.cz>
* Released as 3.5.3.
* When lspci looks for Linux kernel modules, it uses the default
path to module directory provided by libkmod. Previously,
it tried to construct the path explicitly, which need not
work on all systems.
* Improved formatting of memory and I/O ranges behind a bridge.
* PCIe link capabilities now display GEN4 speed (16GT/s).
* PCIe device capabilities now show bits related to atomic operations.
Thanks to Satanand Burla for a patch.
* As usually, updated pci.ids to the current snapshot of the database.
==== Bugfixes
Affecting all Beats
- Fix overwriting explicit empty config sections.
Filebeat
- Fix alignment issue were Filebeat compiled with Go 1.7.4 was crashing
on 32 bits system.
Metricbeat
- Fix service times-out at startup.
- Kafka module case sensitive host name matching.
- Fix interface conversion panic in couchbase module
Packetbeat
- Fix issue where some Cassandra visualizations were showing data from
all protocols.
==== Added
Affecting all Beats
- Add support for passing list and dictionary settings via -E flag.
- Support for parsing list and dictionary setting from environment
variables.
- Added new flags to import_dashboards (-cacert, -cert, -key,
-insecure).
- The limit for the number of fields is increased via the mapping
template.
- Updated to Go 1.7.4.
- Added a NOTICE file containing the notices and licenses of the
dependencies.
Heartbeat
- First release, containing monitors for ICMP, TCP, and HTTP.
Filebeat
- Add enabled config option to prospectors.
- Add target option for decoded_json_field.
Metricbeat
- Kafka module broker matching enhancements.
- Add a couchbase module with metricsets for node, cluster and bucket.
- Export number of cores for CPU module.
- Experimental Prometheus module.
- Add system socket module that reports all TCP sockets.
- Kafka consumer groups metricset.
Winlogbeat
- Reduced amount of memory allocated while reading event log records.
- agent: Integrated gopsutil library to use built in host UUID as node ID,
if available, instead of a randomly generated UUID. This makes it easier
for other applications on the same host to generate the same node ID
without coordinating with Consul.
- agent: Added a configuration option, tls_min_version, for setting the
minimum allowed TLS version used for the HTTP API and RPC.
- agent: Added a relay-factor option to keyring operations to allow nodes
to relay their response through N randomly-chosen other nodes in the
cluster.
- build: Consul is now built with Go 1.7.5.
- dns: Add ability to lookup Consul agents by either their Node ID or Node
Name through the node interface (e.g. DNS (node-id|node-name).node.consul).
- dns: Fixed an issue where SRV lookups for services on a node registered
with non-IP addresses were missing the CNAME record in the additional
section of the response.
Changelog (abridged):
- rsyslog now builds on AIX
- mmdblookup: new maxminddb lookup message modify plugin
- mmrm1stspace: new module; removes first space in MSG if present
- KSI signature provider: file permissions can now be specified
- omzmq: new features
- change: when the hostname is empty, we now use "localhost-empty-hostname"
- omelasticsearch: remove "asyncrepl" config parameter
- omfwd: Add support for bind-to-device (see below on same for imudp)
- imudp: Add support for bind-to-device
- imudp: limit rcvbufsize parameter to max 1GiB
- rainerscript: implement new "call_indirect" statement
- bugfix imjournal: make state file handling more robust
- bugfix core: lookup table reload was not properly integrated
- bugfix core: potential dealock on shutdown
- bugfix ommongodb: did not work in v8 due to invalid indirection
- bugfix ommongodb: fix tryResume handling
- bugfix omfwd: retry processing was not done correctly, could stall
- bugfix imuxsock: segfault non shutdown when $OmitLocalLogging is on
Solaris 11 patch; supports latest version of FreeBSD 11.0-CURRENT; adjusts
for a missing bool typdef on i386 FreeBSD 10.0; fixes Linux UNIX socket
search by name bug; adds Linux display of UNIX socket endpoint information;
makes vm defintiions once again visible on FreeBSD 11.
the checksum on any of the master sites.
Fix thys by switching to the ".tar.xz" file which is smaller and provide a
correct checksum. I've compared the SHA256 checksum my copy of against the
one list in the file "sha256sums.asc" on the master site and they match.
unburden-home-dir allows users to move cache files from browsers,
etc. off their (nfs or ssd based) home directory, i.e. on a local
harddisk or tmpfs and replace them with a symbolic link to the new
location (e.g. on /tmp/ or /scratch/) upon login.
Optionally the contents of these directories and files can be removed
instead of moved.
-------------------------------------
(from RELEASE-NOTE, some 170 lines, sorry)
-----------------------------------------
E2fsprogs 1.43.4 (January 31, 2017)
===================================
Fix e2fsck to require that the system.data extended attribute is
always present even for files smaller than 60 bytes, to be consistent
with the kernel.
Fix a bug which was causing mke2fs -d and fuse2fs to improperly handle
Posix ACL's.
Fix a bug which could cause mke2fs -d to fail if there is an
zero-length file in source directory tree.
Clarify the default for the "proceed?" question printed by mke2fs and
tune2fs. (Addresses Debian Bug: #852727)
Debugfs will now display project quota information.
Debugfs's do_set_xattr now uses C strings to parse extended attribute
values, and will print the extended attributes using either C strings
or hex bytes when using debugfs's do_get_xattr command. It will now
allow developers to see the contents of the system.data extended
attribute.
Fix a bug in mke2fs where I/O errors weren't getting properly reported
to the user.
Fix multiblock writes in the unaligned Direct I/O fallback code.
(Which is rarely needed on Linux systems, but which is required on
Freebsd systems.)
Make sure the default mke2fs.conf file includes the uninit_bg feature
flag. (Which was accidentally dropped in v1.43).
Fix a bug in resize2fs when operating on very large file systems which
have a block size different from the VM page size.
If the reported device size is absurdly large, mke2fs will now report
an error instead looping forever or crashing.
Fix various Coverity warnings and other memory leaks in fuse2fs and
extended attribute manipulation functions.
Replace a test file but which had a "non-commercial use-only"
copyright permission file with a newer version from the Cyrus imapd
package which now has a 4-clause BSD license, which was making some
lawyers nervous, even though the test file in question was only used
in lib/et's regression testing and was never included in any compiled
binary. (Addresses Debian Bug: #840733)
Stop installing mkfs.ext4dev and fsck.ext4dev
Update Chinese, Czech, Polish, Serbian, and Spanish translations and
add the Finnish and Malay translation. (Addresses-Debian-Bug: #774379)
Update various man pages (Addresses-Debian-Bug: #852726)
Programming notes
-----------------
Fix more FreeBSD-11 compatibility bugs, including some unmasked by
FreeBSD 11-rc2.
Fix the Mac build.
Fix build failure on RHEL 5.x systems caused by an old version of
libmagic.
Fix a number of bugs reported by ASAN that can cause some (mostly
harmless) memory dereferences beyond allocated memory.
E2fsprogs 1.43.3 (September 4, 2016)
====================================
Fix e2fsck's handling of timestamps on 32-bit systems.
E2fsck will now check, and if necessary repair the extra isize fields
in the inode and superblock.
Fix crashes on architectures such as sparc64 that are sensitive to
unaligned pointer derferences in the journal recovery code when
journal checksums are enabled.
Programming notes
-----------------
Support reproducible builds by not capturing the build directory into
the mk_cmds and compile_et scripts. Also fix debian build rules to
ensure build reproducibility.
Fix debian build rules to ensure build reproducibility and to avoid
hiding the linker flags for e2fsck.static so the build hardening log
scanner can properly audit the build.
Fix compatibility with FreeBSD's pmake and teach the configure script
to force the creation of pmake-compatible Makefiles if the
FORCE_NATIVE_MAKE environment variable is set to a non-empty value.
E2fsprogs 1.43.2 (September 1, 2016)
====================================
Fix resize2fs so it will not crash if there is an extended attribute
block but it doesn't need to migate any blocks during an off-line
resize
Fix a crash when mke2fs or debugfs tries to copy in a directory
hierarchy containing an empty directory
Mke2fs will now use a larger journal by default for filesystems
greater than 128 GB. (1GB instead of 128 MB.)
Fix an alignment bug in e2fsck which caused sparc64 architectures to
crash when replaying the journal on file systems with a 64-bit block
number.
Clarify the message printed by tune2fs message when the user needs to
run e2fsck so it's clear that the -f flag to e2fsck is needed to
force a full e2fsck scan. (Addresses Debian Bug: #828022)
Fix a bug in e2fsck caused by a power failure during e2fsck's journal
replay could leave the file system in a state where if the file system
is mounted without doing a full e2fsck scan, the file system could get
corrupted
Fix the logic in e2fsck which decides when to repair legacy negative
timestamp encodings.
Add a command to debugfs to copy the inode structure from one inode to
another.
Fix a typo in debugfs's stat command when printing out the dtime field
on file systems with an extended timestamp.
Fix big endian bugs in the e2undo program. (Addresses Red Hat Bug
#1344636)
Debugfs's logdump can now properly handle journals larger than 2GB.
Avoid installing the man page for fuse2fs if it has not been built.
Update the Catalan, Chinese, Danish, Dutch, French, German, Polish,
Swedish, Ukrainian translations and added new translations for
Hugarian and Serbian.
Programming notes
-----------------
Fix portability problems in fuse2fs. Previously it wouldn't build on
systems with older glibc versions where clock_gettime() is only
available in the librt library, and if libintl is not bundled into the
C library.
Remove complicated logic which caused a static code analyzer to flag a
false positive. (A static code analyzer also found a valid bug in
deciding when to repair a legacy negative timestamp encoding, so
eliminating false positives is important.)
Fixed a bug where the ext2fs library cloud provoke when a
extfs2_zero_blocks() is used (via fallocation, initializing a file
system, uninitialized uninitialized inode table blocks) after a
different file system which also used ext2fs_zero_blocks().
Enable the unix_io manager in the ext2fs library so it can accept the
use of a file descriptor. This is helpful in cases where the file
descriptor comes from temporary file created using O_TMPFILE, or
passed in from a unix domain socket.
Fix a Windows64 portability bug.
------------------------------------
Changes found in NEWS file is too lengthy, just quote the first part of it.
vifm v0.8.2
-----------
This release brings a bit of user-friendliness in form of key suggestions and
various descriptions provided in the interface. Matching of files has been
extended in many ways and become significantly more powerful than before.
Menu mode also got several enhancements.
--------------------------------------
---- Changes since 1.590 ----
The titles for existing clone modules can now be changed on the Module
Titles page.
---- Changes since 1.610 ----
- Added a page for viewing and running Webmin scheduled functions.
- Added a section to the Sending Email page to verify that the
configured mail server settings work.
---- Changes since 1.620 ----
Added a setting to the Web Server Options page to control if redirects
use just a path, or the full URL.
---- Changes since 1.640 ----
Actions on the Webmin Scheduled Functions page can now be clicked on
to change the time the function runs at.
---- Changes since 1.650 ----
Added an SSL option to use only ciphers with perfect forward secrecy.
Added support for two-factor authentication using Authy or Google Authenticator.
---- Changes since 1.660 ----
Updated the UI on several pages to use the standard Webmin library,
for a more consistent look.
---- Changes since 1.730 ----
Added an option to use an SSL connection when Webmin sends email, for
connecting to remote mail servers like Gmail that don't allow
unencrypted SMTP.
---- Changes since 1.770 ----
An SSL certificate can now be requested from Let's Encrypt using a new
tab on the SSL Encryption page.
---- Changes since 1.780 ----
Added an option for automatically renewing Let's Encrypt certificates.
If the Let's Encrypt client is not installed, Webmin will use its own
built-in client code to request a certificate.
---- Changes since 1.800 ----
Added an option to the logging page for sending Webmin action log
messages via email.
---- Changes since 1.810 ----
The Let's Encrypt key size can now be customized.
When Perfect Forward Secrecy ciphers are selected, the required DH
params file is now created and used by Webmin.
Added devel/p5-File-Flock version 2014.01
Added devel/p5-Data-Structure-Util version 0.16
Added devel/p5-TheSchwartz version 1.12
Added devel/p5-Eval-LineNumbers version 0.1
Added sysutils/p5-Daemon-Generic version 0.84
Daemon::Generic provides a framework for starting, stopping, reconfiguring
daemon-like programs. The framework provides for standard commands that
work for as init.d files and as apachectl-like commands.
Programs that use Daemon::Generic subclass Daemon::Generic to override its
behavior. Almost everything that Genric::Daemon does can be overridden as
needed.
FEATURES:
- KV Import/Export CLI: consul kv export and consul kv import can be
used to move parts of the KV tree between disconnected consul
clusters, using JSON as the intermediate representation.
- Node Metadata: Support for assigning user-defined metadata key/value
pairs to nodes has been added.
- Node Identifiers: Consul agents can now be configured with a unique
identifier, or they will generate one at startup that will persist
across agent restarts.
- Improved Blocking Queries: Consul's blocking query implementation was
improved to provide a much more fine-grained mechanism for detecting
changes.
- GCE auto-discovery: New -retry-join-gce configuration options added to
allow bootstrapping by automatically discovering Google Cloud
instances with a given tag at startup.
IMPROVEMENTS:
- build: Consul is now built with Go 1.7.4.
- cli: consul kv get now has a -base64 flag to base 64 encode the value.
- cli: consul kv put now has a -base64 flag for setting values which are
base 64 encoded.
- ui: Added a notice that JS is required when viewing the web UI with JS
disabled.
BUG FIXES:
- agent: Redacted the AWS access key and secret key ID from the
/v1/agent/self output so they are not disclosed.
- agent: Fixed a rare startup panic due to a Raft/Serf race condition.
- cli: Fixed a panic when an empty quoted argument was given to consul
kv put.
- tests: Fixed a race condition with check mock's map usage.
Upstream Changelog :
- Add taboopat configuration directive to exclude configuration
files based on globing patterns.
- Allow to change default state path at build time
(via the --with-state-file-path option of the configure script).
- Automatically determine resulting file suffix based on
the compression program in use.
- Preserve SELinux context with compress and sharedscripts properly.
- Rename already existing output files to avoid collisions.
- Import systemd service and timer for logrotate from openSUSE.
- Introduce the addextension configuration directive.
- Create CONTRIBUTING.md with instructions for logrotate contributors.
- Maintain ChangeLog.md instead of the legacy CHANGES file.
- Make createolddir configuration directive preserve sticky bit.
- Add minage configuration directive to specify minimum file age to rotate.
- Avoid using local implementation of strndup() and asprintf() if
these functions are available at build time.
- Fix parsing of su directive to accept usernames starting with
numeric symbols.
- Make sure that 64-bit file offsets are used on 32-bit systems.
Pkgsrc changes :
- due to (not so) new compilation system, and recent changes for the
manpage, patch-logrotate.8 is now unnecessary and removed ;
- fixed compilation issue in config.c about libgen.h ;
- updated existing patches to work with new version.
2017-01-23, Version 5.7.1
- collectd: Handling of boolean configuration options has been unified.
Thanks to Sebastian Harl. #2083, #2098
- collectd: Reporting of internal statistics has been fixed. Thanks to
Florian Forster. #2108
- collectd, various plugins: Bugs and issues reported by scan-build and
coverity-scan have been fixed. Thanks to Ruben Kerkhof and Florian
Forster.
- Build system: Parallel build have been fixed. Thanks to Ruben Kerkhof.
#2110
- DPDKStat plugin: Portability issues and a double-close bug have been
fixed. Thanks to Ruben Kerkhof and Marc Fournier.
- Intel RDT plugin: A check for the libpqos library version has been
added. Thanks to Serhiy Pshyk.
- NetApp plugin: Compilation problems have been corrected. Thanks to
Florian Forster. #2120
- Write Prometheus plugin: A memory leak has been fixed. Thanks to Ruben
Kerkhof.
2016-12-12, Version 5.7.0
- Documentation: The Turbostat plugin section has been improved. Thanks
to Florian Forster
- Documentation: The semantics of the "TypesDB" option have been
improved. Thanks to Florian Forster.
- collectd: A generic interface for parsing the text protocol has been
added. Thanks to Sebastian Harl. #1749
- collectd: Threads now get named, making them easier to track using
tools such as top, ps, etc. Thanks to Manuel Luis Sanmartín Rozada
and Marc Fournier. #547
- AMQP plugin, Write Graphite plugin, Write Kafka plugin: The new
"[Graphite]PreserveSeparator" option allows retaining the default dot
separator rather than escaping it. Thanks to Florian Forster. #419
- Battery plugin: A StateFS backend for gathering statistics has been
added. Thanks to Rinigus. #1795
- CPU plugin: CPU aggregation on AIX was fixed. Thanks to Chao Yang.
#1957
- Collectd::Unixsock: Fractional seconds support has been made more
robust. Thanks to Matthias Bethke. #2052
- DPDKStat plugin: This new plugin collects DPDK interface statistics.
Thanks to Maryam Tahhan, Harry van Haaren, Taras Chornyi and Kim
Jones. #1649
- gRPC plugin: The "DispatchValues" option has been renamed to
"PutValues". Thanks to Florian Forster.
- HDDTemp plugin: The 32 devices limit has been removed. Thanks to
Benjamin Gilbert. #631
- Hugepages plugin: This new plugin reports the number of used and free
hugepages on Linux. Thanks to Jaroslav Safka, Maryam Tahhan, Kim Jones
and Florian Forster. #1799
- Intel RDT plugin: This new plugin collects statistics exposed by
Intel's Resource Director Technology . Thanks to SerhiyX. #1970
- memcached plugin: The new "Address" option allows connecting to a
different server than specified by the "Host" option. Thanks to Pavel
Rochnyack. #1975
- nginx plugin: Support for reporting failed connections has been added.
Thanks to Pavel Rochnyack. #1609
- Perl plugin: Significant internal reworking has been made. The new
"RegisterLegacyFlush" option has been added. Thanks to Pavel
Rochnyack. #1731
- PostgreSQL plugin: Timestamps are now RFC 3339-formatted local time.
Thanks to Igor Peshansky and Dave Cunningham. #1918
- Processes plugin: Internal performance improvements have been made.
Thanks to Pavel Rochnyack. #1980, #1981
- RRDCacheD plugin: The plugin now tries to reconnect upon failed
operations. Thanks to Sebastian Harl. #1959
- SpamAssassin: The plugin can now run in Perl's "tainted mode" ("-T").
Thanks to Akos Vandra. #1962
- Tail plugin: Support for calculating latency distribution of matching
values has been added. Thanks to Pavel Rochnyack and Florian Forster.
#1700
- Tail plugin: The new "GaugePersist" option has been added. Thanks to
Florian Forster. #2015
- Target:Set, Target:Replace, Match:RegEx: MetaData support has been
added . Thanks to Igor Peshansky. #1922, #1923, #1930
- turbostat plugin: The new "LogicalCoreNames" option allows switching
to per-core naming rather than per-CPU. Thanks to Brock Johnson. #2056
- virt plugin: The new "BlockDeviceFormat" and
"BlockDeviceFormatBasename" options help controlling the names
reported for block-device metrics. Thanks to Deyan Chepishev. #2004
- Write Graphite plugin: A new "DropDuplicateFields" option has been
added. Thanks to Michael Leinartas. #1915
- Write Kafka plugin: The "Key Random" setting has been reintroduced.
Thanks to Florian Forster. #1977
- Write Log plugin: Support for formatting output in JSON has been
added, using the new "Format" configuration option. Thanks to Igor
Peshansky. #1924
- Write Prometheus plugin: This new plugin publishes values using an
embedded HTTP server, in a format compatible with Prometheus'
collectd_exporter. Thanks to Florian Forster. #1967
2017-01-20 Jean Delvare <jdelvare@suse.de>
* dmidecode.c: Only decode one DMI table.
This fixes Savannah bug #50022:
https://savannah.nongnu.org/bugs/?50022
2016-06-30 Petr Oros <poros@redhat.com>
* dmidecode.c: Unmask LRDIMM in memory type detail (DMI type 17).
2015-11-02 Jean Delvare <jdelvare@suse.de>
* dmidecode.c, util.c, util.h: Let read_file return the actual data
size.
* dmidecode.c: Use read_file to read the DMI table from sysfs.
This fixes Savannah bug #46176:
https://savannah.nongnu.org/bugs/?46176
2015-10-21 Xie XiuQi <xiexiuqi@huawei.com>
* dmidecode.c: Handle SMBIOS 3.0 entry points on EFI systems.
2015-10-01 Roy Franz <roy.franz@linaro.org>
* dmiopt.c: Add "--no-sysfs" option description to -h output.
MASTER_SITES= site1 \
site2
style continuation lines to be simple repeated
MASTER_SITES+= site1
MASTER_SITES+= site2
lines. As previewed on tech-pkg. With thanks to rillig for fixing pkglint
accordingly.
two per-process context switch counters to -1, indicating no support.
Our kinfo_lwp structure doesn't contain the context switch counters,
which in the kernel is part of the lwp structure.
Also make this build on netbsd-6 and on ports which don't yet have
nearbyint() by simply defining it as rint() on NetBSD.
Bump PKGREVISION.
* Changes in version 2.2.2
** @VERSION@ substitution was set up for the Stow::Util module.
* Changes in version 2.2.1
Version 2.2.1 was not released since it was rejected by pause.perl.org
due to Stow::Util missing $VERSION.
** Small improvements to documentation
** Fix Perl warnings
** Fix "Undefined subroutine &main::error" error
** Failed system calls now include error description
** Default ignore list now ignores top-level README.*, LICENSE.*,
and COPYING
** Correctly handle the stow/target directories as non-canonical paths
** Fix stowing of relative links when --no-folding is used.
* Changes in version 2.2.0
** New --no-folding option
** Remove -a option (--adopt still available)
** Improve error message when stow package is not found.
** Test suite improvements
** Documentation improvements
** Remove "There are no outstanding operations to perform" warning.
* Changes in version 2.1.3
** New --adopt / -a option
** ./configure now checks for Perl modules required by the test suite.
* Changes in version 2.1.2
Many thanks to Stefano Lattarini for help with numerous autoconf and
automake issues which are addressed in this release.
** Significantly improve the handling of --with-pmdir.
** ./configure now aborts if Perl isn't found.
** Ensured the ChangeLog is up-to-date when making a new distribution.
** Fixed bug with `make clean' removing files which the user may not
be able to rebuild.
* Changes in version 2.1.1
** Fixed bug where ./configure --with-pmdir=X was ineffectual.
** Calculated the correct default value for pmdir based on the
local Perl installation.
** Fixed some automake issues
** Improved various bits of documentation.
* Changes in version 2.1.0
** Major refactoring of code into separate Stow and Stow::Util Perl
modules.
** Added support for ignore list files.
** Added support for CPAN-style installation and distribution via
Module::Build.
** Introduced `make test' target and significantly tightened up test
suite.
** Very large number of code and documentation fixes (over 80 commits
since version 2.0.1).
** The '--conflicts' option has been removed.
** Improved debugging output.
** Converted man page to POD format.
** Include PDF, and both split- and single-page HTML versions of manual
in the distribution.
** Fixed code style consistency issues.
** Running configure from outside the source tree now works.
** `make distcheck' now works.
* Changes in version 2.0.1
** Defer operations until all potential conflicts have been assessed.
** Multiple stow directories will now cooperate in folding/unfolding.
** Conflict messages are more uniform and informative.
** Verbosity and tracing is more extensive and uniform.
** Implemented option parsing via Getopt::Long.
** Default command line arguments set via '.stowrc' and '~/.stowrc' files.
** Support multiple actions per invocation.
** New (repeatable) command line arg: --ignore='<regex>'
** New (repeatable) command line arg: --defer='<regex>'
** New (repeatable) command line arg: --defer='<regex>'
** New (repeatable) command line arg: --override='<regex>'
** By default, search less aggressively for invalid symlinks when unstowing.
** New chkstow utility for checking the integrity of the target directory.
* Noteworthy changes in release 8.26 (2016-11-30) [stable]
** Bug fixes
cp, mv, and install no longer run into undefined behavior when
handling ACLs on Cygwin and Solaris platforms. [bug introduced in
coreutils-8.24]
cp --parents --no-preserve=mode, no longer copies permissions from source
directories, instead using default permissions for created directories.
[bug introduced in coreutils-5.93]
chcon, chgrp, chmod, chown, du, and rm, or specifically utilities
using the FTS interface, now diagnose failures returned by readdir().
[this bug was inherent in the use of fts: thus, for rm the bug was
introduced in coreutils-8.0. du, chmod, chgrp and chown started using
fts in 6.0. chcon was added in coreutils-6.9.91 with fts support. ]
date, du, ls, and pr no longer mishandle time zone abbreviations on
System V style platforms where this information is available only
in the global variable 'tzname'. [bug introduced in coreutils-8.24]
factor again outputs immediately when numbers are input interactively.
[bug introduced in coreutils-8.24]
head no longer tries to process non-seekable input as seekable,
which resulted in failures on FreeBSD 11 at least.
[bug introduced in coreutils-8.24]
install -DZ and mkdir -pZ now set default SELinux context correctly even if
two or more directories nested in each other are created and each of them
defaults to a different SELinux context.
ls --time-style no longer mishandles '%%b' in formats.
[bug introduced in coreutils-7.2]
md5sum --check --ignore-missing no longer treats files with checksums
starting with "00" as missing. This also affects sha*sum.
[bug introduced with the --ignore-missing feature in coreutils-8.25]
nl now resets numbering for each page section rather than just for each page.
[This bug was present in "the beginning".]
pr now handles specified separator strings containing tabs correctly.
Previously it would have output random data from memory.
[This bug was detected with ASAN and present in "the beginning".]
sort -h -k now works even in locales that use blank as thousands separator.
stty --help no longer outputs extraneous gettext header lines
for translated languages. [bug introduced in coreutils-8.24]
stty "sane" again sets "susp" to ^z on Solaris, and leaves "swtch" undefined.
[This bug previously fixed only on some older Solaris systems]
seq now immediately exits upon write errors.
[This bug was present in "the beginning".]
tac no longer crashes when there are issues reading from non-seekable inputs.
[bug introduced in coreutils-8.15]
tail -F now continues to process initially untailable files that are replaced
by a tailable file. This was handled correctly when inotify was available,
and is now handled correctly in all cases.
[bug introduced in fileutils-4.0h]
tail -f - 'untailable file' will now terminate when there is no more data
to read from stdin. Previously it behaved as if --retry was specified.
[This bug was present in "the beginning".]
tail -f 'remote file' will now avoid outputting repeated data on network
file systems that misreport file sizes through stale metadata.
[This bug was present in "the beginning" but exacerbated in coreutils-8.24]
tail -f --retry 'missing file' will now process truncations of that file.
Previously truncation was ignored thus not outputting new data in the file.
[bug introduced in coreutils-5.3.0]
tail -f will no longer continually try to open inaccessible files,
only doing so if --retry is specified.
[This bug was present in "the beginning".]
yes now handles short writes, rather than assuming all writes complete.
[bug introduced in coreutils-8.24]
** Changes in behavior
rm no longer accepts shortened variants of the --no-preserve-root option.
seq no longer accepts 0 value as increment, and now also rejects NaN
values for any argument.
stat now outputs nanosecond information for time stamps even if
they are out of localtime range.
sort, tail, and uniq now support traditional usage like 'sort +2'
and 'tail +10' on systems conforming to POSIX 1003.1-2008 and later.
The 2008 edition of POSIX dropped the requirement that arguments
like '+2' must be treated as file names.
** Improvements
df now filters the system mount list more efficiently, with 20000
mount entries now being processed in about 1.1s compared to 1.7s.
du, shuf, sort, and uniq no longer fail to process a specified file
when their stdin is closed, which would have happened with glibc >= 2.14.
install -Z now also sets the default SELinux context for created directories.
ls is now fully responsive to signals until the first escape sequence is
written to a terminal.
ls now aligns quoted items with non quoted items, which is easier to read,
and also better indicates that the quote is not part of the actual name.
stat and tail now know about these file systems:
"balloon-kvm-fs" KVM dynamic RAM allocation support,
"cgroup2" Linux Control Groups V2 support,
"daxfs" Optical media file system,
"m1fs" A Plexistor file system,
"prl_fs" A parallels file system,
"smb2" Samba for SMB protocol V2,
"wslfs" Windows Subsystem for Linux,
"zsmalloc" Linux compressed swap support,
stat -f --format=%T now reports the file system type, and
tail -f uses polling for "prl_fs" and "smb2", and inotify for others.
stat --format=%N for quoting file names now honors the
same QUOTING_STYLE environment variable values as ls.
** New programs
b2sum is added to support the BLAKE2 digest algorithm with
a similar interface to the existing md5sum and sha1sum, etc. commands.
** New Features
comm now accepts the --total option to output a summary at the end.
date now accepts the --debug option, to annotate the parsed date string,
display timezone information, and warn about potential misuse.
date now accepts the %q format to output the quarter of the year.
Filebeat
- Fix registry migration issue from old states were files were only
harvested after second restart.
Packetbeat
- Fix error on importing dashboards due to colons in the Cassandra
dashboard.
- Fix error on importing dashboards due to the wrong type for the
geo_point fields.
Winlogbeat
- Fix for "The array bounds are invalid" error when reading large
events.
set "IsHidden" on new accounts to prevent them from showing up in the
Users & Groups Preference Pane the way normal interactive users would.
This change is probably backward-compatible all the way back to Tiger
(it doesn't break Tiger, sevan@ checked).
Bump version.
Features
- Improve parsing performance in case of keep-timestamp(no)
- TLS based transports will publish the peer's certificate in a set of
name-value pairs.
- Improve performance of the tcp() source, due to a bug, syslog-ng
attempted to apply position tracking to messages coming over a TCP
transport, which is used for file position tracking and causing
performance degradation.
- Make it possible to configure the listen-backlog() for any stream based
transports (unix-stream and tcp).
- Add a groupunset() rewrite rule that pairs up with groupset() but instead
of setting values it unsets them.
- Add support for Elastic Shield and SearchGuard
- kv-parser() is now able to cope with unquoted values with an embedded
space in them, it also trims whitespace from keys/values and is in
general more reliable in extracting key-value pairs from arbitrary log
messages.
- Improve performance for java based destinations.
- Add prefix() option to add-contextual-data()
Bugfixes
- Fix a potential crash in the file destination, in case it is a template
based filename and time-reap() is elapsed.
- Fix a potential ACK problem within syslog-ng that can cause input windows
to overflow queue sizes over time, effectively causing message drops that
shouldn't occur.
- Fix a heap corruption bug in the DNS cache, in case the maximum number of
DNS cache entries is reached.
- Fix timestamp for suppression messages.
- Fix add-contextual-data() to support CRLF line endings in its CSV input
files.
- Fixed key() option parsing in riemann() destinations.
- Find libsystemd-journal related functions in both libsystemd-journal.so
and libsystemd.so, as recent systemd versions bundled all systemd
related libs into the same library.
- Fixed the build-time detection of system-wide installed librabbitmq,
libmongoc and libcap.
- Fix the file source to repeatedly check for unexisting files, as a bug
caused syslog-ng to stop after two attempts previously.
- The performance testing tool "loggen" crashed if it was used to generate
messages on multiple threads over TLS. This was now fixed.
- Fix an issue in the syslog-parser() parser, so that timestamps parsed
earlier in the log path are properly overwritten.
- Due to a compilation issue, tcp-keepalive-time(), tcp-keepalive-intvl() and
tcp-keepalive-probes() were not working, now they are again.
- The --disable-shm-counters option is now passed to mongo-c-driver to work
around a minor security issue.
- Fix compilation issues on FreeBSD.
- Add support to month names in all caps in syslog timestamps. At least one
device seems to generate these.
- The options() option to java destination can now accept numbers and not
just strings.
- Fix a memory leak in the java destination driver, that may affect java
based destinations like ElasticSearch, Kafka & HDFS.
Other changes
- HDFS was updated to 2.7.3
- Elasticsearch was updated to 2.4.0
- Support was added for OpenSSL 1.1.x
The Beats are lightweight processes, written in Go, that you install
on your servers to capture all sorts of operational data like logs,
operating system metrics or network packet data, and to send it to
Elasticsearch, either directly or via Logstash, so it can be
visualized with Kibana.
Version 1.0.9 (2016-12-20)
Security fixes:
A flaw in the cryptographic authentication scheme in Borg
allowed an attacker to spoof the manifest. See Pre-1.0.9 manifest
spoofing vulnerability above for the steps you should take.
borg check: When rebuilding the manifest (which should only be
needed very rarely) duplicate archive names would be handled
on a âfirst come first serveâ basis, allowing an attacker to
apparently replace archives.
Bug fixes:
borg check:
rebuild manifest if itâs corrupted
skip corrupted chunks during manifest rebuild
fix TypeError in integrity error handler, #1903, #1894
fix location parser for archives with @ char (regression introduced in 1.0.8), #1930
fix wrong duration/timestamps if system clock jumped during a create
fix progress display not updating if system clock jumps backwards
fix checkpoint interval being incorrect if system clock jumps
Other changes:
docs:
add python3-devel as a dependency for cygwin-based installation
clarify extract is relative to current directory
FAQ: fix link to changelog
markup fixes
tests:
test_get_(cache|keys)_dir: clean env state, #1897
get back pytestâs pretty assertion failures, #1938
setup.py build_usage:
fixed build_usage not processing all commands
fixed build_usage not generating includes for debug commands
Version 1.0.9rc1 (2016-11-27)
Bug fixes:
files cache: fix determination of newest mtime in backup set
(which is used in cache cleanup and led to wrong âAâ [added]
status for unchanged files in next backup), #1860.
borg check:
fix incorrectly reporting attic 0.13 and earlier archives as corrupt
handle repo w/o objects gracefully and also bail out early if repo is completely empty, #1815.
fix tox/pybuild in 1.0-maint
at xattr module import time, loggers are not initialized yet
New features:
borg umount <mountpoint> exposed already existing umount code
via the CLI api, so users can use it, which is more consistent
than using borg to mount and fusermount -u (or umount) to
un-mount, #1855.
implement borg create ânoatime ânoctime, fixes#1853
Other changes:
docs:
display README correctly on PyPI
improve cache / index docs, esp. files cache docs, fixes#1825
different pattern matching for âexclude, #1779
datetime formatting examples for {now} placeholder, #1822
clarify passphrase mode attic repo upgrade, #1854
clarify âumask usage, #1859
clarify how to choose PR target branch
clarify prune behavior for different archive contents, #1824
fix PDF issues, add logo, fix authors, headings, TOC
move security verification to support section
fix links in standalone README (:ref: tags)
add link to security contact in README
add FAQ about security
move fork differences to FAQ
add more details about resource usage
tests: skip remote tests on cygwin, #1268
travis:
allow OS X failures until the brew cask osxfuse issue is fixed
caskroom osxfuse-beta gone, itâs osxfuse now (3.5.3)
vagrant:
upgrade OSXfuse / FUSE for macOS to 3.5.3
remove llfuse from tox.ini at a central place
do not try to install llfuse on centos6
fix fuse test for darwin, #1546
add windows virtual machine with cygwin
Vagrantfile cleanup / code deduplication
2015-12-30: updated README with new PUPS URL and own email address.
2004-12-22: removed some never used code observed by ian@beathoven.com.
Also - add licence
