Upstream changes:
1.0047 2018-02-10 01:23:37 PST
[BUG FIXES]
- Disable FCGI/lighttpd test that was supposed to be releng only #611
1.0046 2018-02-09 23:51:10 PST
[NEW FEATURES]
- Support psgix.cleanup and psgix.harakiri in FCGI handler (afresh1) #610
[IMPROVEMENTS]
- Do not set TCP_NODELAY when it's unavailable in embedded systems (dex4er) #579
1.1.1
- Fix interval schedules by providing nowfun.
- Removing code that forced last_run_at to be timezone naive for no reason, made timezone aware. Fixes crontab schedules
- Entry.last_run_at is no-longer timezone naive.
- Use a localized PyTZ timezone object for now() otherwise conversions fail scheduling breaks resulting in constant running of tasks or possibly not running ever.
- Fix endless migrations creation for solar schedules events.
- Prevent MySQL has gone away errors.
- Added support for Django 2.0.
- Adjust CrontabSchedule's minutes, hour & day_of_month fields max length
0.47.0:
- Fix socket constructor in _open_socket to use all relevant variables from getaddrinfo.
- .send() method is very slow
- cross-platform aync multi-client solution
- Fix detecting timeouts with SSL in recv
- Fix WebSocketApp does not poll for data correctly when using SSL
- Fix Infinite ping/pong timeouts in WebSocketApp.run_forever
- Added status message when HTTP can't be upgraded to WS
Upstream changes:
6.32 2018-02-20 19:39:20Z
- Suggest LWP::ConsoleLogger as an alternative to the deprecated LWP::Debug (GH#278) (Olaf Alders)
- add send_te configuration to disable sending the TE header (GH#126) (Doug Bell)
- Added a developer feature to the http.t tests. (GH#257) (colinnewell)
Instead of (re)defining logic to build packages with Go in
`post-extract' and `do-build' directly use lang/go/go-package.mk
and adjust `do-install' target accordingly.
Discussed with <fhajny>.
Changes since 5.1.9:
- fix gh#247 when a NUL char is used as key, apcu_fetch(array) truncates the key
- fix gh#248 apcu_fetch may return values causing zend_mm_corruption or segfaults
when custom serializer is used
- fix gh#260 apcu.serializer=default results in segfault
- fix gh#274 non-portable shell == in config.m4
- fix crash when passing bad array to apcu_delete
- improve fix gh#266 refcounting errors in APCIterator
- fix for PHP 7.3 compatibility
2.0.2:
* SyncConsumer now terminates old database connections, and there is a new
database_sync_to_async wrapper to allow async connections to do the same.
2.0.1:
* AsyncWebsocketConsumer and AsyncJsonWebsocketConsumer classes added
* OriginValidator and AllowedHostsOriginValidator ASGI middleware is now available
* URLRouter now correctly resolves long lists of URLs
2.0.0:
* Major backwards-incompatible rewrite to move to an asyncio base and remove
the requirement to transport data over the network, as well as overhauled
generic consumers, test helpers, routing and more.
2.0.3:
* Unix socket listening no longer errors during startup (introduced in 2.0.2)
* ASGI Applications are now not immediately killed on disconnection but instead
given --application-close-timeout seconds to exit (defaults to 10)
2.0.2:
* WebSockets are no longer closed after the duration of http_timeout
2.0.1:
* Updated logging to correctly route exceptions through the main Daphne logger
2.0.0:
* Major rewrite to the new async-based ASGI specification and to support
Channels 2. Not backwards compatible.
v14.0.0
* Officially deprecated basic_auth and digest_auth
tools and the httpauth module, triggering DeprecationWarnings
if they're used. Applications should instead adapt to use the
more recent auth_basic and auth_digest tools.
This deprecated functionality will be removed in a subsequent
release soon.
* Removed DeprecatedTool and the long-deprecated and disabled
tidy and nsgmls tools.
aiohttp 3.0 release:
Major release, many already deprecated things are removed
Minimal supported Python version is 3.5.3.
aiohttp uses shiny async/await syntax everywhere internally (while old yield from is still supported).
Read https://docs.aiohttp.org/en/stable/whats_new_3_0.html for brief information about most important changes.
Changes with nginx 1.13.8:
*) Feature: now nginx automatically preserves the CAP_NET_RAW capability
in worker processes when using the "transparent" parameter of the
"proxy_bind", "fastcgi_bind", "memcached_bind", "scgi_bind", and
"uwsgi_bind" directives.
*) Feature: improved CPU cache line size detection.
Thanks to Debayan Ghosh.
*) Feature: new directives in vim syntax highlighting scripts.
Thanks to Gena Makhomed.
*) Bugfix: binary upgrade refused to work if nginx was re-parented to a
process with PID different from 1 after its parent process has
finished.
*) Bugfix: the ngx_http_autoindex_module incorrectly handled requests
with bodies.
*) Bugfix: in the "proxy_limit_rate" directive when used with the
"keepalive" directive.
*) Bugfix: some parts of a response might be buffered when using
"proxy_buffering off" if the client connection used SSL.
Thanks to Patryk Lesiewicz.
*) Bugfix: in the "proxy_cache_background_update" directive.
*) Bugfix: it was not possible to start a parameter with a variable in
the "${name}" form with the name in curly brackets without enclosing
the parameter into single or double quotes.
1.30.0:
lib:
This release fixes the bug so that PING frame can be sent after GOAWAY.
nghttpx:
This release fixes the bug that set_header method in mruby script wrongly overwrites other header fields.
upgrade-scheme parameter has been added to backend option to workaround the issue that a backend server requires that HTTP/2 :scheme pseudo header field value should be https.
This release fixes the bug that ALPN validation does not occur if client does not send TLS ALPN extension.
To more compliant to RFC 8297, nghttpx now remembers which resource is pushed per a single request.
uWSGI 2.0.16
Security
[CVE-2018-6758] Stack-based buffer overflow in core/utils.c:uwsgi_expand_path()
Changes
Backported early_post_jail plugin hook (Bjørnar Ness)
Fixed ipv6 suupport for http-socket (James Brown)
Enable execinfo on DragonFly BSD (Aaron LI)
Fix inet_ntop buffer size (Orivej Desh)
Add worker running time metrics (Serge/yasek)
Backported safe-pidfile, safe-pidfile2 (Nate Coraor)
Stop using libxml2 by default on osx
Fixed uwsgi_kvlist_parse signature
Backport http range fixes from master (Curtis Maloney, Sokolov Yura)
relicensed mod_proxy_uwsgi to Apache 2.0
logging: Add ${millis} support to json encode
plugins/router_xmldir: fixup invalid locale check (Riccardo Magliocchetti)
Add ssl-verify-depth flag to set the max Client CA chain length (Paul Tagliamonte)
Allow to override build date (Bernhard M. Wiedemann)
Python 3 plugin: improved thread names handling (Jyrki Muukkonen, Mark Meyer)
Added uwsgi_resolve_ip for redis host (ahmbas)
plugins/gevent: Fix signal handlers (Maslov Alexander)
Write x509 DER to the uwsgi buffer (Paul Tagliamonte)
plugin/http: Fix compilation (Melvyn Sopacua)
Fixed emperor throttling system (Jeremy Hiatt)
Fix application loading without Plack after excluding “.” from @INC in new Perl versions (Anton Petrusevich)
Fix MULE MSG QUEUE IS FULL message hint (Eugene Tataurov)
Build System: support k_minor has a _xxx suffix (TOGO Li)
Fixed drop-after-* options (Robert DeRose)
Add mule_send_msg success indicator (Josh Tiras)
Properly check item size in uwsgi_queue_push (Josh Tiras)
FastRouter / HTTP Router can now have a ‘fallback’ key configured
HTTP Router now supports post-buffer, just like FastRouter
Fix handling of env in embedded dict in Python plugin (could cause segfaults in single thread mode)
Add support for Brotli (.br) with –static-gzip
Back-ported HTTP/1.1 support (–http11-socket) from 2.1
2.1.4:
* Values are now correctly returned from sync_to_async and async_to_sync
* ASGI_THREADS environment variable now works correctly
2.1.3:
* Add an ApplicationCommunicator.wait() method to allow you to wait for an
application instance to exit before seeing what it did.
2.1.2:
* Allow AsyncToSync to work if called from a non-async-wrapped sync context.
2.1.1:
* Allow AsyncToSync constructor to be called inside SyncToAsync.
Sat Jan 13 18:55:20 GMT 2018 - surfraw 2.3.0
* We are moving! This is the last release on Debian's platform.
For all future development, please check out
https://gitlab.com/surfraw/Surfraw
* All elvi now use HTTPS
+ Elvi for sites that don't work with HTTPS have left the building:
- cablesearch
- dmoz
- openports
- opensearch
- pasearch
- rhyme
- rpmsearch
- scicom
- scirus
- wetandwild
- yacy
- yubnub
* Select Perl version at buildtime (Mark Meyer)
* Remove lynx-cur (closes#882286)
* Fix segfault on netbsd-7
Changelog:
Fix
Avoid a signature validation issue during update on macOS
Blocklisted graphics drivers related to off main thread painting crashes
Tab crash during printing
Fix clicking links and scrolling emails on Microsoft Hotmail and Outlook
(OWA) webmail
Selenium 3.9.0
* Add docstrings to WebElement find methods
* Additional data in unexpected alert error is now handled for w3c drivers
* Allow service_args to be passed into Firefox WebDriver
* Fix bug introduced with response logging in 3.8.1
"google-apitools" is a collection of utilities to make it easier to build
client-side tools, especially those that talk to Google APIs.
Part of PR pkg/52941.
Django is a high-level Python Web framework that encourages rapid development
and clean, pragmatic design. Django was designed to make common Web-development
tasks fast and easy.
Version 1.1:
* Add Deprecations for 2.0
* Improve IsoDateTimeField test clarity
* Fix form attr references in tests
* Simplify tox config, drop python 3.3 & django 1.8
* Make get_filter_name a classmethod, allowing it to be overriden for each FilterClass
* Support active timezone
* Docs Typo: django_filters -> filters in docs
* Add Polish translations for some messages
* Remove support for Django 1.9 (EOL)
* Use required attribute from field when getting schema fields
* Prevent circular ImportError hiding for rest_framework sub-package
* Deprecate 'extra' field attrs on Filter
* Add SuffixedMultiWidget
* Fix null filtering for *Choice filters
* Use isort on imports
* Use urlencode from django.utils.http
* Remove OrderingFilter.help_text
* Update DRF test dependency to 3.6
3.5.0
* Allow for object uploads > 5GB from stdin.
When uploading from standard input, swiftclient will turn the upload
into an SLO in the case of large objects. By default, input larger
than 10MB will be uploaded as an SLO with 10MB segment sizes. Users
can also supply the --segment-size option to alter that
threshold and the SLO segment size. One segment is buffered in
memory (which is why 10MB default was chosen).
* The --meta option can now be set on the upload command.
* Updated PyPy test dependency references to be more accurate
on different distros.
* Various other minor bug fixes and improvements.
