Changelog:
System emulation
Incompatible changes
The aio=native option to "-drive" now requires the cache=none option, instead of silently disabling itself for other cache modes. The newly invalid combination had been warning since QEMU 2.3.
Specifying block device parameter aio=native is now an error on POSIX systems if qemu is compiled without libaio support. The newly invalid combination had been warning since QEMU 2.3.
The experimental x-drive option for the sdhci-pci device has been removed. Instead of passing a drive directly to the SD controller device you now must create an SD card object (which will automatically be plugged into the SD controller), so "-device sdhci-pci,x-drive=mydrive -drive id=mydrive,[...]" becomes "-device sdhci-pci -device sd-card,drive=mydrive -drive id=mydrive,[...]".
The s390-virtio machine has been removed.
Machine types pc-q35-1.4, pc-q35-1.5, pc-q35-1.6, pc-q35-1.7, pc-q35-2.0, pc-q35-2.1, pc-q35-2.2 and pc-q35-2.3 have been removed.
The "virt" machine type's flash device has changed when TrustZone is active ("-machine virt,secure=on"). The first flash device is only available in secure memory, while the second is available in non-secure memory too.
Future incompatible changes
Three options are using different names on the command line and in configuration file. In particular:
The "acpi" configuration file section matches command-line option "acpitable";
The "boot-opts" configuration file section matches command-line option "boot";
The "smp-opts" configuration file section matches command-line option "smp".
-readconfig will standardize on the name for the command line option.
Behavior of automatic calculation of SMP topology when some SMP topology options for -smp are omitted (sockets, cores, threads) will change in the future. If guest ABI needs to be preserved on upgrades while using the SMP topology options, users should either set set all options explicitly (sockets, cores, threads), or omit all of them.
The original qcow2 image encryption is fatally flawed, and support for it will be disabled entirely from the system emulators. It'll remain available only in command line tools qemu-img, qemu-io, qemu-nbd to facilitate data liberation. It is recommended to use 'qemu-img convert' to convert qcow2 encrypted images to uncrypted ones. The new LUKS encryption driver can provide a secure replacement if raw files are acceptable, while a future release will integrate luks into qcow2 natively.
A few devices will be configured with explicit properties instead of implicitly. Unlikely to affect users; for the full list, see the 2.3 ChangeLog.
QMP command blockdev-add is still a work in progress. It doesn't support all block drivers, it lacks a matching blockdev-del, and more. It might change incompatibly.
ARM
Support for a separate EL3 address space
System mode supports BE8 and BE32. Note that qemu-system-arm can emulate both big-endian and little-endian guests (unlike user-mode emulation which has separate qemu-arm and qemu-armeb binaries).
Support for the SETEND instruction, used most notably on Raspbian through the arm-mem library (previously known as libcofi).
Faster boot thanks to DMA support in fw_cfg
The "virt" machine type supports a virtual power button and the "system_powerdown" monitor command
The "virt" machine type supports configuring network cards with -nic in addition to -netdev
The RAM limit for the "virt" machine type is now 255GB
The "xlnz-zynqmp" machine type now includes SPI controllers
The "xlnx-ep108" machine type now supports SPI flash
New partial Raspberry Pi 2 emulation with "raspi2" machine type. For now, it can boot older releases of Windows and Raspbian, but lacks a number of devices including USB.
New palmetto-bmc machine type using the new, partial ASPEED AST2400 SoC implementation
KVM
Support for guest debugging (software and hardware breakpoints, single step) on AArch64
MIPS
Support for FPU and MSA in KVM guests
Support for R6 Virtual Processors
Initial support for Cluster Power Controller and Global Configuration Registers allowing the guest to control the start of Virtual Processors
Support for Inter-Thread Communication Unit
Support for MAAR registers in P5600 CPU
PowerPC
Improved support for migration of g3beige and mac99 machines
Fix serial ports for g3beige and mac99 machines (OpenBIOS)
The gdb stub supports the VSX instruction set extensions
pSeries
pSeries machine types starting at pseries-2.6 use XHCI as the USB host controller instead of OHCI
Support for more hypercalls (H_SET_SPRG0, H_SET_DABR, H_SET_XDABR and H_PAGE_INIT)
Support for EEH on assigned PCI devices can use the normal spapr-pci-host-bridge instead of the special spapr-pci-vfio-host-bridge.
s390
Fixes and improvements in s390x PCI support
Support for hotplug of s390x cpus via cpu-add
Support for booting from virtio-scsi devices in the s390-ccw bios
SH
SPARC
sun4m: Fix for ldstub instruction resolves several 32-bit Solaris bugs (MUTEX_HELD hang, libC error, Java WebStart segfault)
sun4u: FreeBSD 10.3+ can now run under qemu-system-sparc64 in -nographic mode
TileGX
Tricore
Support for context management, illegal opcode and opd traps
Support for FPU instructions
x86
TCG
Support for the XSAVE/XSAVEOPT, MPX, FSGSBASE and PKE features
KVM
Support for "split irqchip". In this mode, QEMU emulates the IOAPIC, PIC (i8259) and PIT (i8254) devices while leaving the local APIC emulation to the kernel. This mode reduces the attack surface of KVM.
Support for the new PKU feature found in some Skylake processors
Support for migrating the TSC rate
Xen
Q35
Support resume (S3)
Support for legacy Windows guests (XP/2003)
Device emulation and assignment
New IPMI emulation subsystem. QEMU can now emulate an internal BMC or attach to an external BMC simulator such as OpenIPMI's lanserv. IPMI however is not yet exposed in SMBIOS and ACPI tables (do we want to docume?)
FIXME: what's the state of nvdimm?
ACPI
The floppy disk controller's characteristics are now exposed in the ACPI tables, which makes it possible to use floppies on Windows together with UEFI firmware.
Block devices
The floppy disk consk or an empty disk to a 2.88 MB disk
Improved compatibility of the SD device model with various operating systems and firmwares
The NVMe device supports the "bootindex" property.
The SDHCI device supports reset.
ivshmem
No longer available on hosts lacking eventfd(2), because inter-vm interrupts don't work there
New devices ivshmem-plain and ivshmem-doorbell, fully backwards compatible for guests, notable differences to ivshmem:
PCI revision is 1 instead of 0
ivshmem role=master becomes master=on, role=peer becomes master=off
ivshmem x-memdev=ID becomes ivshmem-plain memdev=ID
ivshmem shm=NAME,size=SZ becomes ivshmem-plain memdev=ID, with -object memory-backend-file,id=ID,mem-path=/dev/mem/NAME,size=SZ,share
ivshmem chardev=ID becomes ivshmem-doorbell,chardev=ID
Property ioeventfd defaults to on instead of off
ivshmem-plain never has MSI-X capability, and ivshmem-doorbell always has MSI-X capability
Device ivshmem is deprecated, and its experimental property x-memdev is gone
Interrupting a peer that reuses an unplugged peer's ID works again (broken in v1.2.0)
Unplug no longer destroys the character device, for consistency with other devices
The funny "no shared memory, yet" state is no longer guest-visible, and can no longer fail or mess up migration
Guests may require PCI revision 1 to make sure they're not exposed to the funny state
docs/specs/ivshmem-spec.txt rewritten for completeness and accuracy.
SCSI
Support for the LSI SAS1068 HBA (also known as "MPT Fusion"). Note that some operating systems will not recognize disks attached to this adapter, unless the disks are assigned a world-wide name (WWN).
PCI/PCIe
PCIe Multi-root support (using the new pxb-pcie root-compex)
USB
MTP: initial support for events
VFIO
Support for AMD XGBE platform passthrough
New sysfsdev property provides a more general way to specify the device to attach to.
Provided PCI option ROMs are fixed to include the same vendor and device id as the device exposed to the guest. This facilitates changing the ids of the devices.
virtio
Performance improvements via optimized vring accesses
The balloon driver statistics now include the amount of available memory (corresponding to "Available" in /proc/meminfo for Linux guests).
Character devices
The socket character device backend can now enable TLS over TCP connections, acting either as a TLS server:
$QEMU -object tls-creds-x509,id=tls0,dir=$HOME/.pki/qemutls,endpoint=server \
-chardev socket,id=s0,host=127.0.0.1,port=9000,tls-creds=tls0,server \
-device isa-serial,chardev=s0 \
...other args...
or a TLS client:
$QEMU -object tls-creds-x509,id=tls0,dir=$HOME/.pki/qemutls,endpoint=client \
-chardev socket,id=s0,host=127.0.0.1,port=9000,tls-creds=tls0 \
-device isa-serial,chardev=s0 \
...other args...
If operating in server mode, the same set of TLS credentials can be used for both character devices and the VNC server
All character devices can have their output logged to a plain file
$QEMU -chardev stdio,id=mon0,logfile=monitor.log \
-mon chardev=mon0 \
...other args...
will result in logging of all output on the HMP monitor. The logappend parameter controls whether the file is truncated at startup, defaulting to append.
GUI
SDL2 and SPICE now support OpenGL and virgl. For SPICE, Unix sockets are the only usable transport when OpenGL is enabled.
The "-vnc" and "-display vnc" options support ipv4=off and ipv6=off. Previously, only "ipv4" and "ipv6" were available.
Support getting input events directly from linux evdev devices, using "-object input-linux,id=$name,evdev=/dev/input/event$nr"
Support for ncurses on Windows.
Monitor
Support for a new "detach" option to "dump-guest-memory". The option dumps memory in the background. Progress can be queried using the new commands "info dump" (human monitor) and "query-dump" (QMP), as well as through the QMP event DUMP_COMPLETED.
Support for a new command "input-send-event" replacing the previous experimental command "x-input-send-event".
The human monitor command "drive_add -n" allows creating block devices that do not have a BlockBackend (similar to QMP blockdev-add).
Migration
Postcopy is not experimental anymore; the x-postcopy-ram capability was renamed to postcopy-ram.
Network
SLIRP now supports IPv6 for ICMP, UDP, TCP and TFTP.
mirror filter which can mirror traffic from netdev to socket chardev, vice versa.
redirector filter which can redirect traffic from netdev to socket chardev, vice versa.
Secret passing system
There is a new standard mechanism for securely passing secret credentials to QEMU, which will be used in combination with other subsystems. For example, network block device passwords, block device decryption passphrases, or TLS private key passwords can all use the same mechanism.
Passing credentials inline (insecure, only for developer testing)
$QEMU -object secret,id=sec0,data=letmein
Passing credentials via a plain file
$QEMU -object secret,id=sec0,file=mypassword.txt
Passing credentials via a base64 encoded file
$QEMU -object secret,id=sec0,file=mypassword.txt,format=base64
Passing credentials inline, encrypted with a master key (recommended for management apps)
$QEMU -object secret,id=master0,file=mykey.b64,format=base64 \
-object secret,id=sec0,data=[base64 ciphertext],\
keyid=master0,iv=[base64 IV],format=base64
TLS credential handling
It is now possible to use encrypted TLS private keys with credentials for TLS servers/clients in QEMU. The password for unlocking the private key is provided by a secret object whose id is specified via the passwordid' property
$QEMU -object secret,id=tlskey0,file=mypassword.txt \
-object tls-creds-x509,id=tls0,dir=$HOME/.pki/qemutls,endpoint=server,passwordid=tlskey0 \
...other args...
Block devices
Block device throttling now support specifying a burst length as well. While previously the burst could only be specified as a total number of IOPS (e.g. 10000 IOPS), more complex specifications such as "10000 IOPS for 10 seconds" are now possible. Note that, because of the implementation of the algorithm, a guest that is allowed "10000 IOPS for 10 seconds" will also be allowed to perform for example 5000 IOPS for 20 seconds.
The curl block device driver now supports HTTP authentication and HTTP proxy authentication via the new properties 'username', 'password-secret', 'proxy-username' and 'proxy-password-secret'.
$QEMU -object secret,id=sec0,file=password.txt \
-object secret,id=sec1,file=proxy-password.txt \
-drive driver=http,host=localhost,port=443,username=fred,password-secret=sec0,proxy-username=bob,proxy-password-secret=sec1 \
...other args...
The RBD block device driver can now use the secret object type to securely receive the authentication password without exposing it in the command line args
$QEMU -object secret,id=sec0,file=password.b64,format=base64 \
-drive driver=rbd,filename=rbd:pool/image:id=myname:auth_supported=cephx,password-secret=sec0 \
...other args...
The iSCSI block device driver can now use the secret object type to securely receive the authentication password without exposing it in the command line args
$QEMU -object secret,id=sec0,file=password.txt \
-iscsi user=fred,password-secret=sec0 \
-drive file=iscsi://192.168.122.1:3260/iqn.2013-12.com.example%3Aiscsi-chap-netpool/1
NB this syntax requires that all iSCSI backed drives use the same password
The qemu-io tool gained support for new '--object' and '--image-opts' arguments. The --object argument allows 'secret' and 'tls-creds-x509' objects to be defined for use in association with a block device backend. The '--image-opts' argument instructs qemu-io to parse the image string as a set of image options, instead of a plain filename. For example, to connect qemu-io to an NBD server using TLS
qemu-io -c "read 0 512" \
--object tls-creds-x509,id=tls0,dir=$HOME/.pki/qemutls,endpoint=client \
--image-opts driver=nbd,host=localhost,port=10809,tls-creds=tls0
The qemu-nbd tool gained support for new '--object' and '--image-opts' arguments. The --object argument allows 'secret' and 'tls-creds-x509' objects to be defined for use in association with a block device backend or the NBD server. The '--image-opts' argument instructs qemu-io to parse the image string as a set of image options, instead of a plain filename. For example, to connect qemu-nbd to an HTTP server with authentication and export it over NBD using TLS
qemu-nbd --readonly \
--object secret,id=sec0,file=passwd.txt \
--object tls-creds-x509,id=tls0,dir=$HOME/.pki/qemutls,endpoint=server \
--image-opts driver=http,url=http://some.random.host/some/image,username=fred,password-secret=sec0
The qemu-img tool gained support for new '--object' and '--image-opts' arguments. The --object argument allows 'secret' and 'tls-creds-x509' objects to be defined for use in association with a block device backend or the NBD server. The '--image-opts' argument instructs qemu-io to parse the image string as a set of image options, instead of a plain filename. For example, to a remote HTTP server with authentication
qemu-img info --object secret,id=sec0,file=passwd.txt \
--image-opts driver=http,url=http://some.random.host/some/image,username=fred,password-secret=sec0
Support for deleting snapshots on Sheepdog devices.
The NBD client and server now support use of TLS. When enabled, the server will mandate that the client also enable TLS and drop any client which attempts to continue in plain text. To run a qemu-nbd server with TLS:
qemu-nbd --object tls-creds-x509,id=tls0,dir=$HOME/.pki/qemutls,endpoint=server \
--tls-creds tls0 \
/path/to/disk/image
To connect to a server that requires TLS with qemu-img:
qemu-img info --object tls-creds-x509,id=tls0,dir=$HOME/.pki/qemutls,endpoint=client \
--image-opts driver=nbd,host=localhost,port=10809,tls-creds=tls0
To start a VM pointing to the NBD server
$QEMU -object tls-creds-x509,id=tls0,dir=$HOME/.pki/qemutls,endpoint=client \
-drive driver=nbd,host=localhost,port=10809,tls-creds=tls0 \
...other args...
The NBD server gained support for specifying an export name. When the client negotiates use of the new style NBD protocol the default export name is "". The --exportname argument allows this to be customized:
qemu-nbd --exportname myvol /path/to/myvol.qcow2
QEMU gained support for volumes formatted with the LUKSv1 data format. To format a new LUKS volume
qemu-img create -f luks \
--object secret,id=sec0,file=passphrase.txt \
-o key-secret=sec0 \
demo.luks 10G
To boot a guest from a LUKS volume:
$QEMU -object secret,id=sec0,file=passphrase.txt \
-drive driver=luks,key-secret=sec0,file=demo.luks \
...other args...
The LUKS implementation is intended to be compatible with that used by cryptsetup/dm-crypt, so it should be possible to use disk images interchangeably between them. The only caveat is that some less common cipher/hash algorithms are not yet supported by QEMU. It is also not yet possible to manage key-slots with qemu-img.
TCG
Record/replay support extended to cover character devices.
Tracing
The "stderr" tracing backend was replaced by the "log" tracing backend, which is now the default. This backend prints tracing messages to the destination specified with the "-D" option.
In addition to the existing "-trace file=...", tracepoints can be enabled using "-trace [enable=]...". The new option also supports globbing, as in "-trace bdrv_aio_*".
In addition to the existing "-trace file=...", tracepoints can be enabling using "-d trace:...". This option also supports globbing, as in "-d trace:bdrv_aio_*".
When using "-daemonize", the "-D" option also provides the file to which QEMU's stderr output will be redirected.
TCG supports a new "-dfilter" option to limit exec, out_asm, op and op_opt logging to a range of guest physical addresses. ARM also applies the filter to in_asm logging; this will be extended to other targets in future releases (FIXME: probably should do it now instead...)
A "%d" substring in the log file name is replaced with QEMU's pid.
User-mode emulation
The default CPU for ppc64 and ppc64le is now POWER8
Changelog:
Bugs fixed compared to 5.1.3 RC1:
tdf#91778 drawing the background over an active cursor [Caolán McNamara]
tdf#97380 don't destroy completely window when replace dialog [Julien Nabet]
tdf#98416 libcmis: add a patch to fix Google Drive login [Giuseppe Castagno]
tdf#99353 take the footgun away from FilterCache [David Tardon]
tdf#99417 Effect of sort does not propagate to other column (not included in sort) without hard recalc [Eike Rathke]
Bugs fixed compared to 5.1.2 final (rc2):
bnc#659631 DOC import: handle subset of STYLEREF natively [Miklos Vajna]
cid#1352479 opengl: fix inv.scale values are always integer [Tomaž Vajngerl]
lp#1560328 clear cache before disposing rest of VCL [Bjoern Michaelsen]
lp#1566050 prevent cyclic reference zombies [Bjoern Michaelsen]
tdf#40863 Bitmap Background exceeds shape borders when PRINTING or PDF EXPORT [Armin Le Grand]
tdf#65642 RTF import: page number are incorrect [Miklos Vajna]
tdf#73973 Add Plains Cree language to LibreOffice [crk-CA] [Eike Rathke]
tdf#76741 FILESAVE: DOCX Table Width Type and Alignment is not preserved [Miklos Vajna]
tdf#88027 Shortcuts ctrl+; and ctrl+shift+; does not work in ru/es/pt/fi keyboard layouts [Yousuf Philips]
tdf#88443 resize image (picture) together with frame does not work [Oliver Specht]
tdf#88453 Writer: huge table cell table layout issue [Miklos Vajna]
tdf#89095 Start Center: bigger thumbnails for templates [Akshay Deep]
tdf#89267 Reduce the amount of copy-paste in sc/qa/unit/opencl-test.cxx. [Tor Lillqvist]
tdf#89609 Explorer shell extension fails to convert date into locale specific string (sub-second precision ISO date → "strange date-information") [Muhammet Kara]
tdf#90561 Query-designer removes the SQL keyword AS in front of an Aliasname [Julien Nabet]
tdf#92963 Pasting a whole row with data crashes all open LibO apps [Arul Michael]
tdf#93127 named range changed after copy, paste [Eike Rathke]
tdf#93300 Style formatting overrides direct formatting when using conditional formatting [Markus Mohrhard]
tdf#94449 Changing the paragraph style removes index entries. [Oliver Specht]
tdf#94682 VIEWING: OpenGL text rendering performance. [Tomaž Vajngerl]
tdf#94734 Font colour icon in sidebar disappears when changing font colour (comment 4) [Bjoern Michaelsen]
tdf#95421 Cannot move object by dragging its anchor icon. [Regina Henschel]
tdf#95977 EDITING: Image moving and anchoring erratic behavior on text body style [Bjoern Michaelsen]
tdf#96172 Crash in layout SwSectionFrame after opening particular document [Caolán McNamara]
tdf#96326 FILEOPEN: RTF checkbox size too big and checkbox shows as selected [Miklos Vajna]
tdf#96484 Missing Icons in Find Toolbar with Icon Style Galaxy [Bjoern Michaelsen]
tdf#96549 EDITING --Empty calc cells show incorrect font and size after sheet is saved in xlsx format [Markus Mohrhard]
tdf#96896 Writer crashes when frame title is changed via API and user closes print preview [akash]
tdf#96989 The videos embedded in a presentation start with the maximum volume [Caolán McNamara]
tdf#96996 PIVOTTABLE Drill to details first level doesn't work [Michael Stahl]
tdf#97035 FILEOPEN: RTF wrong cell width [Guillaume Smaha]
tdf#97319 With OpenGL enabled Unicode codepoints beyond BMP not rendered, affecting SMP and plane 2 -- Windows only? [Tor Lillqvist]
tdf#97398 SIDEBAR: Content panels not independent between apps [Katarina Behrens]
tdf#97601 Accessing chart data through API results in infinite redraw loop [Miklos Vajna]
tdf#97853 SQL query crashes Base [Michael Stahl]
tdf#97863 FILEOPEN: XLS import hangs with 100% cpu usage [Markus Mohrhard]
tdf#97897 Recalculate does not always work [Eike Rathke]
tdf#98366 Not working preview the galleries created with LibreOffice version 4.4 or newer. [Caolán McNamara]
tdf#98427 array checkbox crashes calc in function wizzard [Markus Mohrhard]
tdf#98458 SLOW searches via FIND in LARGE odt-files: writer 5 ONLY [Jan Holesovsky]
tdf#98554 FILEOPEN XLSX Two different conditional formats with different colors in the same column are only working with one color [Markus Mohrhard]
tdf#98600 LO cannot read some svm pictures from old ODT file [Noel Grandin]
tdf#98622 Formula (Math object) is not shown [Noel Grandin]
tdf#98642 Calc "auto-corrects" defined names in cell formulas, and it should not [Eike Rathke]
tdf#98647 UI: Tools >Outline Numbering >Position and Spacing .. set Value is only set after touching arrows of the spin field control [Noel Grandin]
tdf#98657 SUM() isn't implemented according to general rules (with OpenCL active) [Jan Holesovsky]
tdf#98726 debug build: gtk3 scroll bars background never repainted [Caolán McNamara]
tdf#98740 Infobar should not be in the customization options [Samuel Mehrbrodt]
tdf#98771 Update DocumentList.xml and SentenceExceptionList.xml for Croatian [Krunoslav Šebetić]
tdf#98806 bad import bookmarks from an RTF file [Miklos Vajna]
tdf#98812 FILEOPEN: Writer crashes on loading a particular .doc document in Windows [Michael Stahl, Marco Cecchetti]
tdf#98849 "Not Saved" icon on Save button disappears after print preview [Maxim Monastirsky]
tdf#98882 DOCX import: inline picture is handled incorrectly (crop problem?) [Miklos Vajna]
tdf#98960 Crash with OpenGL image scaling [Marco Cecchetti]
tdf#98987 Layout: shapes imported from DOCX handled incorrectly [Miklos Vajna]
tdf#98989 Windows: non-scalable fonts like "Courier" not rendered [Michael Stahl]
tdf#98990 Defining a named range for complete column or row results in broken expression (Formula syntax = ExcelR1C1) [Eike Rathke]
tdf#99004 TextBox: draw shape and its textbox is out of sync [Miklos Vajna]
tdf#99069 assertion "SolarMutex not locked" from <Cancel> Data Ranges dialog [Markus Mohrhard]
tdf#99073 UI: double clicking on a form folder does not unfold it anymore [Noel Grandin]
tdf#99078 bump expat to 2.1.1 [David Tardon]
tdf#99089 libreoffice crashes when I select a different job number on the spreadsheet [Julien Nabet]
tdf#99100 DOC import: STYLEREF not imported even in case it can be mapped to chapter field [Miklos Vajna]
tdf#99120 DOC import: first page header shows up when title page is not set [Miklos Vajna]
tdf#99140 DOCX import: table at the bottom of the page doesn't span over multiple pages [Miklos Vajna]
tdf#99172 Basic import/export of dialogs ignores vertical alignment of text boxes [Vasily Melenchuk]
tdf#99208 Spreadsheet sort hangs [Markus Mohrhard]
tdf#99224 PPTX filter: image with text is lost on export [Miklos Vajna]
tdf#99244 OpenGL: Fat lines Miter geometry creation error [Tomaž Vajngerl]
tdf#99322 Error in Calculation after cut and paste (need hard recalc) [Eike Rathke]
tdf#99357 Syntax error in module crashes Basic IDE and Calc on attempt to edit [Julien Nabet]
---------------------------------
=====================================================
02/21/2010 - SaraB version 1.0.0
=====================================================
* SaraB can now be installed and run with path names containing space characters
* Corrected wrong samples for TOH backup schedules
=====================================================
02/15/2009 - SaraB version 0.2.7
=====================================================
Changes pointed out by Ivan Savcic <isavcic@gmail.com>:
* added -Q option by default when executing DAR
* DAR exit code variable fixed
* DAR exit code 5 is treated as warning now
* overall improved handling of warnings
=====================================================
11/28/2008 - SaraB version 0.2.6
=====================================================
* improvements to install.sh
* DAR exit code 11 is treated as warning now
* support for post backup script
=====================================================
08/30/2008 - SaraB version 0.2.5
=====================================================
* sarab.sh can be run via sudo (effective user id is checked)
* fix to install.sh
* install.sh now locates dar on path
Additions include:
- Upgrade UW-IMAP to Panda IMAP from https://github.com/jonabbey/panda-imap.
- S/MIME: Add screen to manage certificates.
- S/MIME: Signatures are validated using the user's certificates instead of the ones included in the message. Behavior can be disabled by disabling the option "Validate Using Certificate Store Only" which is enabled by default.
- S/MIME: sign messages using intermediate certificates when needed and possible.
- S/MIME: validation of certificates for servers that modify signed content.
- S/MIME: signed and encrypted messages will be signed first and encrypted second, so that they can be decoded by other clients.
- S/MIME: add the sender certificate to the list of certificates in encrypted messages to make it possible for the sender to decrypt the message they sent.
- S/MIME: When transferring certificates to a local container, create container with default names PublicContainer, PrivateContainer and CAContainer, as appropriate for these files, unless the user has provided some other names.
- HTML: Style tag in body of html message causes Alpine to not write its content until a new </style>
- HTML: <BR>, <BR />, and <BR/> are considered the same inline tag, the same is valid for the <HR> tag.
- S/MIME: Forwarding a message will include the signed part as part of the text and not as a multipart message, just as the reply command does.
- Unix Alpine: If a password file is defined, and S/MIME is enabled, the key and certificate used to encrypt the password file are saved in the ~/.alpine-smime/.pwd directory, or in the directory specified by the -pwdcertdir command line option.
- Add support to selective expunge through a subcommand of the select-apply commands.
- Pico: New subcommand of the search command, allows to reverse the direction of search.
- Add /tls1, /tls1_1, /tls1_2 and /dtls1 to the definition of a server to use different ways to connect using ssl, for example {server.com/tls1} will attempt to connect to server.com at the ssl imap port (port 993) and establish a connection using TLSv1. These flags can be used in conjunction with the /ssl flag, the ssl flag is redundant. Conversely, however, the /ssl flag does not imply any of these flags; the /ssl flag means SSLv3 or, if not available, SSLv2 in the SSL port.
- Alpine does not attempt to automatically reopen a collection that was not opened due to cancellation by the user. Instead, the user must try to open it explicitly.
- Alpine searches for a certificate that matches an email address in all addresses in a certificate (instead of just the first one) but when it tries to unlock the certificate, it asks for the password for the first email address in that certificate.
- Experimental: Write the content-type of a message in lowercase, as some non-compliant servers do not understand uppercase content-type, such as those of GMX.de.
- Experimental: Do not send the RSET command before attempting to send a message, as this causes a delay in some evily managed servers.
- Opening a folder updates recent count in maildrops (this already works for other types of folders)
- Automatically redraw screen after opening an attachment instead of simply clearing it.
- Pico: Justification works without need of a predefined quote string. This allows justification of blocks of text that are indented with spaces.
- Decode the name of attachment names, so they can be written as part of the description of the part.
- Check bounds and tie strings off to improve security. Contributed by James Jerkins.
- Replace tabs by spaces in From and Subject fields to control for size in screen of these fields. Change only in index screen display.
- Aggregate operations allows bouncing a list of messages using a role. Suggested by Ulf-Dietrich Braumann.
- Disable saving new passwords to the password file. Implemented by Louis Raphael from dpslabs.com.
- Makefile: Add $(LIBINTL) to the flags to link rpdump, rpload, alpined and alpineldap because MAC OSX 10.8 x86_64 needs it. Reported by Charles M. Register.
Bugs that have been addressed include:
- S/MIME: signed messages that contained an attachment would not validate.
- S/MIME: signed and encrypted messages from Thunderbird would not validate.
Thanks to Andreas Schamanek for testing, debugging and advising during the
process of fixing this problem.
- S/MIME: Forwarding messages with multipart content-type failed to be signed
with "Error writing pipe" message. Reported by Andreas Schamanek and Stefan
Mueller.
- S/MIME: Certificates are lost when using a pinerc file outside of the home
directory.
- S/MIME: accessing the S/MIME configuration screen would deinitialize SMIME
making it not possible to sign or encrypt messages.
- S/MIME: Forwarding a signed message might make the body contain mime
information that is not part of the body, and hence making the body of the
message seem wrong.
- S/MIME Alpine would compute incorrectly the signature of a message that
contains 8bit if the option "Enable 8bit ESMTP Negotiation" is enabled, the
message contains 8bit characters and the smtp server supports 8bit sending.
- When replying to several messages, subject will be decoded first, and then
stripped from re/fwd before they are compared to determine the subject of
the replied message.
- Fix in WebAlpine: do not use deprecated dereference in pointer, needs to
use tcl_getstringresult() instead. Reported by Ulf-Dietrich Braumann.
- WebAlpine: fail to build with debug disabled. Fix from Sam Hathaway.
- WebAlpine: add _GNU_SOURCE to make pubcookie build.
- Transformation of UTF-8 to MUTF7 was not being done when creating a folder
in an IMAP server.
- Fix _INIT_ token for reply quote string to include support for 8-bit in
personal names. Reported by Lev Gorenstein.
- When writing the .pinerc file, lines were truncated if they were longer
than 10,000 characters. This could cause data corruption, so now lines are
allowed to be of any length.
- In Unix Alpine (but not in MAC OSX) fix a problem that made Alpine remove
attachments before they were open by a mailcap viewer. It requires that the
user has an equivalent to a command such as "ps auxww" to list the list of
processes, and check if there is any program using the attachment. The default
is "/bin/ps auxww", but it can be changed at compile time with the option
--with-ps-cmd. See the help of the variable mailcap-check-interval for more
information.
- Crash when tcp connection to NNTP server was lost after connection had been
established, but lost immediately afterwards.
- Crash with message "lock when already locked", when painting an index was
based on scores that needed information from a remote addressbook in the
same server as the folder opened. Reported by Peter Koellner.
- Crash in message/rfc822 attachments encoded in base64.
- Postponed messages whose content-type is text/html, text/enriched and
text/richtext are sent with that content-type, even though, after resuming
composition, Alpine had changed its type to text/plain.
- Alpine cannot handle correctly some characters in the Windows-1256
character set, which might lead to a crash or a corruption in the screen.
Work was done to contain the bug. A more complete fix will be done in a future
release. Reported by Professor Robert Funnell.
- WebAlpine: add _GNU_SOURCE to make pubcookie build.
- Save command did not warn of existence of a message with a deleted
attachment in an aggregate save, unless cursor was positioned on a message
with a deleted attachment. Reported by Florian Herzig.
- DATE tokens were not internally transformed to UTF-8, which made their
values not appear complete in the screen. Reported by Werner Scheinast.
- Fixes to configure script so that it will not require PAM for every system.
- Fix to configure script so that it will use CPPFLAGS instead of CPPCFLAGS,
and so the --with-ssl-include-dir option take effect during the build. Fix
by Ulf-Dietrich Braumann.
- Quoted string in URL Viewers configuration variable were not unquoted
before passing to viewer.
- Fix in configure script to detect location of tcl library; add /usr/local
in FreeBSD and fix a bug in configure script that used $alpine_TCLINC
instead of $alpine_TCLINC/tcl.h. Reported and fixed by Werner Scheinast.
- Move SSL configurations from UW-IMAP to configure script, and update
OpenSSL configuration for Mac OSX.
- Remove -lregex from linker flags when building --with-supplied-regex.
- When the download of an attachment is interrumpted, Alpine stills caches
what was downloaded, making the download incomplete for subsequent calls of
Alpine attempting to open the attachment. In the future, Alpine will not cache
any downloaded part of the attachment when it is interrupted. CVS:
----------------------------------------------------------------------
(c++11), boost, gcc, mac, win)
The Latest boost update have broken the boost atomic check so it succeeds
if boost is installed (even though not buildlinked)
Since pkgsrc has a minimum gcc version of 2.8, we can just add
CXXFLAGS+= -std=c++11
and have taglib pickup the std atomics, which avoids the boost atomic detect
issue, and is arguably better anyway
bump pkgrevision
Changes since OpenNTPD 5.7p4
============================
* When a single "constraint" is specified, try all returned addresses
until one succeeds, rather than the first returned address.
* Relaxed the constraint error margin to be proportional to the number
of NTP peers, avoid constant reconnections when there is a bad NTP
peer.
* Removed disabled hotplug sensor support.
* Added support for detecting crashes in constraint subprocesses.
* Moved the execution of constraints from the ntp process to the
parent process, allowing for better privilege separation since the
ntp process can be further restricted.
* Added pledge(2) support.
* Updated to require LibreSSL 2.3.2 or greater.
* Fixed high CPU usage when the network is down.
* Fixed various memory leaks.
* Switched to RMS for jitter calculations.
* Unified logging functions with other OpenBSD base programs.
OpenNTPD portable-specific changes:
* Added support for syncing time with the Realtime Clock (RTC) on OSes
that require it.
* CFLAGS is no longer overridden by the build system.
* FreeBSD RTABLE support is disabled
* FreeBSD is no longer linked with -lmd to avoid hash function
collisions, causing failures in constraint certificate loading.
* Fixed crashes due to __progname being used before initialized.
* Added Solaris 10 compatibility.
* Added --disable-https-constraint build option for explicitly
disabling constraint support.
* Synced build system files with LibreSSL
Note that HTTPS TLS constraints are currently disabled in pkgsrc pending
evaluation of how best to deal with libressl.
mm-common 0.9.10 (2016-02-06)
* Add the MM_AX_CXX_COMPILE_STDCXX() m4 macro,
to help other *mm projects build with C++11 or C++14 compiler support.
This is based on AX_CXX_COMPILE_STDCXX() but doesn't need to
be copied into projects manually.
It is less specific than MM_AX_CXX_COMPILE_STDCXX_11.
(Murray Cumming)
mm-common 0.9.9 (2015-11-27)
* Fix install-time rewrite of documentation tag references with
newer Doxygen versions.
(Daniel Elstner)
* MM_ARG_ENABLE_WARNINGS for C++11 when using the
-Wzero-as-null-pointer-constant option with g++.
(Kjell Ahlstedt) Bug #757979.
* doc-reference.am: Don't assume all existing html files shall be rebuilt.
(Kjell Ahlstedt) Bug #686364.
mm-common 0.9.8 (2015-07-15)
* Add the MM_AX_CXX_COMPILE_STDCXX_11() m4 macro,
to help other *mm projects build with C++11 compiler support.
This is based on AX_CXX_COMPILE_STDCXX_11() but doesn't need to
be copied into projects manually.
(Kjell Ahlstedt) Bug #751432
mm-common 0.9.7 (2014-09-15)
* Add doxygen-extra.css, deprecate doxygen.css.
(Kjell Ahlstedt)
* Update for Doxygen 1.8.
(Kjell Ahlstedt)
* Update skeletonmm.
(Kjell Ahlstedt)
--------------------------------------
http://www.klayout.de/development.html
--------------------------------------
Release date: 2016-05-03
Features:
- Bugfix: XOR and different database units: With tiling, XOR
between two layouts with different database units was not
working correctly.
- Enhancements: progress bar shown also for "-z" mode
scripts: Scripts running in KLayout with the "-z" option
(don't show main window) were not experiencing progress
reporting before. Now a small modal window is shown during
long-running operations that indicates the progress and
provides a Cancel button to abort the operation.
- Bugfix: Crash on using "Edit/Make cell": This happened
sometimes if the selected objects contained instances.
- Bugfix: Invalid behavior of paths with reflecting
segments: For example a path made of the points (0, 0),
(0, 1000) and (0, 0) had a reflecting segment which cause
some computations (for example the bounding box) to return
invalid results.
New Libraries:
--------------
Compute:
Parallel/GPU-computing library
DLL:
Library for comfortable work with DLL and DSO. Library provides a portable across platforms way to:
* load libraries
* import any native functions and variables
* make alias names for C++ mangled functions and symbols
* query libraries for sections and exported symbols
* self loading and self querying
* getting program and module location by exported symbol
Hana:
A modern C++ metaprogramming library. It provides high level algorithms to manipulate heterogeneous sequences, allows writing type-level computations with a natural syntax, provides tools to introspect user-defined types and much more.
Metaparse:
A library for generating compile time parsers parsing embedded DSL code as part of the C++ compilation process. The library is similar to Spirit, however while parsers built with Spirit parse at run-time, parsers built with Metaparse parse at compile-time.
Currently for form previews and multi-step forms.
This code used to live in Django proper - in django.contrib.formtools - but was
separated into a standalone package in Django 1.8 to keep the framework's core
clean.
* Drop Django 1.5 support
* Drop Python 3.3 support (now 3.4+)
* Testrunner cleanup
* Fix many regressions and bugs in Django 1.8/1.9
* Admin UI enhancements
* Fix issues with non-default STATICFILES_STORAGE
* Hide related widget wrapper links
* Fix cancel link in delete confirmation
* Make BaseImage.subject_location field non-nullable
* Adds icon sizes
* Fixes owner search icon on detail view
* Disable submit button if only one folder to copy file
* Design improvements
* Empty folder design
* Removes disabled action button border
* Adds unsorted uploads empty view
* Fix issues with subject location being off on images smaller than 210px
* Ignores unsorted uploads from search and count
* Adds cancel link to delete confirmation page
* Adds documentation link to dropdown
* Fix hidden ckeditor toolbar under the django cms main toolbar
* Floats related widget wrapper links next to select field
* Fix cropped input text
* Adds djangocms-admin-style class to body
* Floats calendar and date pickers next to input field
* Floats calendar and date fields in modal
* Removes disabled action button border
* Adds highlighted area to error messages
- Fix packaging problem with the wheel distribution
=== 3.2.4 (2016-04-26) ===
- Fix cache settings
- Fix user lookup for view restrictions/page permissions when using raw id field
- Fixed regression when page couldn't be copied if CMS_PERMISSION was False
- Fixes an issue relating to uninstalling a namespaced application
- Adds "Can change page" permission
- Fixes a number of page-tree issues the could lead data corruption under
certain conditions
- Addresses security vulnerabilities in the `render_model` template tag that
could lead to escalation of privileges or other security issues.
- Addresses a security vulnerability in the cms' usage of the messages framework
- Fixes security vulnerabilities in custom FormFields that could lead to
escalation of privileges or other security issues.
-------------------------
## 003.009.004
- GPIO control: Fix address mismatch for RX and full duplex.
This fixes full-duplex mode for most devices.
- B200: Fixed auto rate selection (can now select 61.44 Msps)
- UBX: Fix member declaration order which could cause
segfaults for debug builds
- Manual/Docs: Numerous fixes, use dot for graphs in manual
- Utils: multiple fixes for query_gpsdo_sensors, fixed floating point
comparison
- Windows: Include registry file in installation
- Converters: Improve NEON converters
