* highlight: Adapt to API change in highlight >= 3.51
* mdwn: Fix inverted footnote configuration when MultiMarkdown is
enabled. Thanks, Giuseppe Bilotta
* Updated German basewiki and directives translation from Sebastian Kuhnert.
* Updated German program translation from Sebastian Kuhnert.
pkgsrc changes:
- Add 'ikiwiki-sudo' option for portable ikiwiki-mass-rebuild, on by default
Version 4.9.1:
* get1: fixed creating the target directory.
* get1: fixed renaming the temp file.
* fixed a coredump on startup when IPv6 is not supported or configured.
* fixed build with --disable-ipv6.
* fixed build with Sun Studio.
aio-pika is a wrapper for the aiormq for asyncio and humans.
Features
* Completely asynchronous API.
* Object oriented API.
* Auto-reconnects with complete state recovery with connect_robust (e.g.
declared queues or exchanges, consuming state and bindings).
RabbitMQ 3.8.2
Changes
Core Server
Enhancements
Raft implementation optimizations.
Quorum queue optimization: enables local (not going through the leader) delivery from Raft followers
when appropriate and safe.
If x-queue-type argument is not provided at queue declaration time, the type is assumed to be classic
instead of missing.
Quorum queue consumer timeout now can be configured using new style configuration file:
# Hard timeout for quorum queue consumer acknowledgemnts of two minutes
consumer_timeout = 120000
Bug Fixes
A quorum queue could produce an empty Raft log segment if node is killed at a particular moment in time,
which would prevent the node from successfully recovering the log after restart.
Quorum queue consumer count metric could be duplicated when reported via HTTP API or to a Prometheus scraper.
Quorum queue with single active consumer enabled crashes after some basic.get calls. Quorum queues now forbid basic.get when single active consumer is enabled.
CLI Tools
Enhancements
It is now possible to export and import definitions without the use of plugins with
rabbitmqctl export_definitions and rabbitmqctl import_definitions:
# export as a JSON file
rabbitmqctl export_definitions /path/to/target.file.json
# export as JSON to standard output and pipe to jq
rabbitmqctl export_definitions "-" | jq
# export as a compressed Erlang term file
rabbitmqctl export_definitions /path/to/target.file --format=erlang
# learn more
rabbitmqctl help export_definitions
# import from a JSON file
rabbitmqctl import_definitions /path/to/target.file.json
# import JSON from standard input
cat /path/to/definitions.json | rabbitmqctl import_definitions "-"
# import from a compressed Erlang term file
rabbitmqctl import_definitions /path/to/target.file --format=erlang
# learn more
rabbitmqctl help import_definitions
Entities with amq.* prefixes are now skipped during import instead of producing an error.
Bug Fixes
rabbitmqctl await_startup failed with an exception when RabbitMQ application was stopped but the
runtime (Erlang VM) was running.
Management Plugin
Bug Fixes
Definition import via HTTP API could fail in if performed via HTTP API (but not management UI)
and contained operator policies.
Enhancements
Metric aggregation optimizations.
MQTT Plugin
Enhancements
Throughput improvements ranging from 14 to 60 percent depending on workload.
Throughput improvements and reduced CPU usage but slightly higher per connection RAM footprint.
Bug Fixes
Client ID tracker could produce an empty Raft log segment if node is killed at a particular moment in time,
which would prevent the node from successfully recovering the log after restart.
Last Will messages that use QoS 2 will now be downgraded to QoS 1 just like with "regular" published messages.
AMQP 1.0 Plugin
Enhancements
Throughput improvements.
STOMP Plugin
Enhancements
Throughput improvements.
Web STOMP Plugin
Enhancements
Clients now can authenticate using an x.509 (TLS) certificate.
Prometheus Plugin
A small number of queue metrics were not read from the metric store correctly.
v1.10.0
Support for Erlang/OTP 21+
Releases improvements
Elixir v1.9 introduced releases as a mechanism to package self-contained applications. Elixir v1.10 further improves releases with bug fixes and new enhancements based on feedback we got from the community. The highlights are:
* Allow the dual boot system of releases to be disabled on environments that are boot-time sensitive, such as embedded devices
* Track and raise if compile-time configuration is set or changes at runtime (more in the next section)
* Support for easily adding extra files to releases via overlays
* Allow RELEASE_DISTRIBUTION to be set to none in order to fully disable it
* Add a built-in :tar step that automatically packages releases
Low level spell checker and morphological analyzer based on the famous
'hunspell' library <https://hunspell.github.io>. The package can
analyze or check individual words as well as parse text, latex, html
or xml documents. For a more user-friendly interface use the
'spelling' package which builds on this package to automate checking
of files, documentation and vignettes in all common formats.
Spell checking common document formats including latex, markdown,
manual pages, and description files. Includes utilities to automate
checking of documentation and vignettes as a unit test during 'R CMD
check'. Both British and American English are supported out of the box
and other languages can be added. In addition, packages may define a
'wordlist' to allow custom terminology without having to abuse
punctuation.
The python27 incompatibility from pyobjc creates huge problems as now every
recursive dependency of this package would also need to manually handle this
only on Darwin. That's too much work to fix for now when we just need bulk
builds to not be broken.
Spleen 1.7.0 (2020-02-13)
- Improve generated PSF files so that box-drawing characters are correctly
displayed
- Add the FONT_VERSION XFLD property for all BDF sizes
- Generate OpenType (OTF) versions for the 8x16, 12x24, 16x32 and 32x64 sizes
- Stop generating .dfont files, OTF versions should be used instead
- Add links to Debian and Ubuntu packages
rabbitmq-c v0.10.0
Added:
amqp_ssl_socket_get_context can be used to get the current OpenSSL CTX*
associated with a connection.
Changed:
openssl: missing OpenSSL config is ignored as an OpenSSL init error
AMQP_DEFAULT_MAX_CHANNELS is now set to 2047 to follow current default channel
limit in the RabbitMQ broker.
Fixed:
add additional input validation to prevent integer overflow when parsing a
frame header. This addresses CVE-2019-18609.
Changes since v1.08:
v1.09 - 12.02.2020
- Fix: If a corrupt .XM doesn't contain all the sample data at the end of the
file, try to load what is left instead of showing an "Out of memory!" message.
- Fix: Prevent upscaling factors higher than 2x on ARM devices. Fixes extreme
slowdowns on Raspberry Pi 4 with 2k or higher resolution screens.
- The .MOD importer has been slightly improved for oldschool 15-sample formats
- The .S3M importer has been slightly improved for certain effect cases not
compatible with FT2.
- Audio mixer: Internal voice volumes are now calculated with 256 times higher
precision than FT2. Some other changes were also made to make sure the audio
mixing is always done at max precision regardless of the "amp" setting in
the config screen. These are changes that most people won't ever be able to
hear, but the speed performance of the mixer is still the same, so why not.
- The audio dithering routine has now been improved (rectangular->triangular),
and it's now enabled by default on a fresh configuration, or if you reset it.
v3.3.17:
Decode also private domains. The tldextract library ignores private domains, so domain test.us.com is wrongly extracted as subdomain=test, domain=us and suffix=com. When allowing private domains, the extraction of test.us.com looks like subdomain=, domain=test and suffix=us.com.
2.1.3
- BUG/MINOR: checks: refine which errno values are really errors.
- BUG/MEDIUM: checks: Only attempt to do handshakes if the connection is ready.
- BUG/MEDIUM: connections: Hold the lock when wanting to kill a connection.
- MINOR: config: disable busy polling on old processes
- MINOR: ssl: Remove unused variable "need_out".
- BUG/MINOR: h1: Report the right error position when a header value is invalid
- BUG/MINOR: proxy: Fix input data copy when an error is captured
- BUG/MEDIUM: http-ana: Truncate the response when a redirect rule is applied
- BUG/MINOR: channel: inject output data at the end of output
- BUG/MEDIUM: session: do not report a failure when rejecting a session
- BUG/MINOR: stream-int: Don't trigger L7 retry if max retries is already reached
- BUG/MEDIUM: tasks: Use the MT macros in tasklet_free().
- BUG/MINOR: mux-h2: use a safe list_for_each_entry in h2_send()
- BUG/MEDIUM: mux-h2: fix missing test on sending_list in previous patch
- BUG/MEDIUM: mux-h2: don't stop sending when crossing a buffer boundary
- BUG/MINOR: cli/mworker: can't start haproxy with 2 programs
- REGTEST: mcli/mcli_start_progs: start 2 programs
- BUG/MEDIUM: mworker: remain in mworker mode during reload
- BUG/MEDIUM: mux_h1: Don't call h1_send if we subscribed().
- BUG/MAJOR: hashes: fix the signedness of the hash inputs
- REGTEST: add sample_fetches/hashes.vtc to validate hashes
- BUG/MEDIUM: cli: _getsocks must send the peers sockets
- BUG/MINOR: stream: don't mistake match rules for store-request rules
- BUG/MEDIUM: connection: add a mux flag to indicate splice usability
- BUG/MINOR: pattern: handle errors from fgets when trying to load patterns
- BUG/MINOR: cache: Fix leak of cache name in error path
- BUG/MINOR: dns: Make dns_query_id_seed unsigned
- BUG/MINOR: 51d: Fix bug when HTX is enabled
- BUILD: pattern: include errno.h
- BUG/MINOR: http-ana/filters: Wait end of the http_end callback for all filters
- BUG/MINOR: http-rules: Remove buggy deinit functions for HTTP rules
- BUG/MINOR: stick-table: Use MAX_SESS_STKCTR as the max track ID during parsing
- BUG/MINOR: tcp-rules: Fix memory releases on error path during action parsing
- BUG/MINOR: ssl: ssl_sock_load_ocsp_response_from_file memory leak
- BUG/MINOR: ssl: ssl_sock_load_issuer_file_into_ckch memory leak
- BUG/MINOR: ssl: ssl_sock_load_sctl_from_file memory leak
- MINOR: proxy/http-ana: Add support of extra attributes for the cookie directive
- BUG/MINOR: http_act: don't check capture id in backend
- BUG/MEDIUM: netscaler: Don't forget to allocate storage for conn->src/dst.
- BUG/MINOR: ssl: ssl_sock_load_pem_into_ckch is not consistent
- BUG/MINOR: ssl/cli: free the previous ckch content once a PEM is loaded
- CLEANUP: stats: shut up a wrong null-deref warning from gcc 9.2
- BUG/MINOR: ssl: increment issuer refcount if in chain
- BUG/MINOR: ssl: memory leak w/ the ocsp_issuer
- BUG/MINOR: ssl: typo in previous patch
- BUG/MINOR: ssl/cli: ocsp_issuer must be set w/ "set ssl cert"
- BUG/MEDIUM: 0rtt: Only consider the SSL handshake.
- BUG/MINOR: stktable: report the current proxy name in error messages
- BUG/MEDIUM: mux-h2: make sure we don't emit TE headers with anything but "trailers"
- BUILD: cfgparse: silence a bogus gcc warning on 32-bit machines
- MINOR: lua: Add hlua_prepend_path function
- MINOR: lua: Add lua-prepend-path configuration option
- MINOR: lua: Add HLUA_PREPEND_C?PATH build option
- BUG/MEDIUM: ssl: Don't forget to free ctx->ssl on failure.
- BUG/MINOR: tcpchecks: fix the connect() flags regarding delayed ack
- BUG/MEDIUM: pipe: fix a use-after-free in case of pipe creation error
- BUG/MINOR: ssl: Possible memleak when allowing the 0RTT data buffer.
- BUG/MINOR: connection: fix ip6 dst_port copy in make_proxy_line_v2
- BUG/MEDIUM: connections: Don't forget to unlock when killing a connection.
- BUG/MEDIUM: memory_pool: Update the seq number in pool_flush().
- MINOR: memory: Only init the pool spinlock once.
- BUG/MEDIUM: memory: Add a rwlock before freeing memory.
- BUG/MAJOR: memory: Don't forget to unlock the rwlock if the pool is empty.
- BUG/MINOR: ssl: we may only ignore the first 64 errors
- BUG/MINOR: ssl: clear the SSL errors on DH loading failure
- CONTRIB: debug: add missing flags SF_HTX and SF_MUX
- CONTRIB: debug: add the possibility to decode the value as certain types only
- CONTRIB: debug: support reporting multiple values at once
- MINOR: acl: Warn when an ACL is named 'or'
- CONTRIB: debug: also support reading values from stdin
- SCRIPTS: announce-release: place the send command in the mail's header
- SCRIPTS: announce-release: allow the user to force to overwrite old files
- BUG/MEDIUM: ssl/cli: 'commit ssl cert' wrong SSL_CTX init
- DOC: schematic of the SSL certificates architecture
- BUG/MINOR: unix: better catch situations where the unix socket path length is close to the limit
- BUG/MINOR: dns: allow 63 char in hostname
- BUG/MEDIUM: listener: only consider running threads when resuming listeners
- BUG/MINOR: listener: enforce all_threads_mask on bind_thread on init
- BUG/MINOR: tcp: avoid closing fd when socket failed in tcp_bind_listener
- MINOR: build: add aix72-gcc build TARGET and power{8,9} CPUs
- DOC: word converter ignores delimiters at the start or end of input string
- MINOR: htx: Add a function to append an HTX message to another one
- MINOR: htx/channel: Add a function to copy an HTX message in a channel's buffer
- BUG/MINOR: http-ana: Don't overwrite outgoing data when an error is reported
- BUG/MINOR: http-ana: Set HTX_FL_PROXY_RESP flag if a server perform a redirect
- BUG/MINOR: tcp: don't try to set defaultmss when value is negative
FeatherNotes is a lightweight Qt5 hierarchical notes-manager.
It is independent of any desktop environment and has:
* Support for rich text formatting, image embedding and inserting
editable tables;
* Drag-and-drop capability for moving nodes and also for embedding images;
* A tray icon for quick access on any desktop;
* Correct position/size saving and restoring with most window managers;
* Compact but complete search and replacement widgets;
* The ability to include searchable tags (hidden info on each node);
* Support for optional node icons;
* Support for local and remote hyperlinks (bookmarks);
* Text zooming;
* Printing and exporting to HTML and PDF;
* Password protection;
* Auto-saving;
* macOS support and other features that can be found in its settings,
on its menus or when it is actually used.
Packaged in pkgsrc-wip by pin, as part of a broader effort toward
providing all of LXQt and associated utility applications. General
reviews, feedback, and testing of such by gdt@, ng0@, and myself.
FeatherPad is a lightweight Qt5 plain-text editor.
It is independent of any desktop environment and has:
* Drag-and-drop support, including tab detachment and attachment;
* X11 virtual desktop awareness;
* An optionally permanent search-bar;
* Instant highlighting of found matches when searching;
* A docked window for text replacement;
* Support for line numbers and jumping to a specific line;
* Automatic detection of text encoding;
* Syntax highlighting for common programming languages;
* Ability to open URLs with appropriate applications;
* Session management;
* Side-pane mode;
* Auto-saving;
* Spell checking with Hunspell;
* Printing;
* Text zooming;
* Haiku OS and macOS support.
Packaged in pkgsrc-wip by pin, as part of a broader effort toward
providing all of LXQt and associated utility applications. General
reviews, feedback, and testing of such by gdt@, ng0@, and myself.
Arqiver is a simple Qt5 archive manager as a front-end for libarchive
(bsdtar), gzip and 7z.
Packaged in pkgsrc-wip by pin, as part of a broader effort toward
providing all of LXQt and associated utility applications. General
reviews, feedback, and testing of such by gdt@, ng0@, and myself.
Upstream announcement:
https://helpx.adobe.com/security/products/flash-player/apsb20-06.html
Adobe Security Bulletin
Security Bulletin for Adobe Flash Player | APSB20-06
Summary
Adobe has released security updates for Adobe Flash Player for
Windows, macOS, Linux and Chrome OS. These updates address a critical
vulnerability in Adobe Flash Player. Successful exploitation could
lead to arbitrary code execution in the context of the current user.
