bind is not able to listen on new interfaces when interfaces change #233

bahamat · 2019-11-16T21:39:08Z

After the last change to drop permissions on bind, if the interfaces change named won't be able to open a socket.

Using either rndc scan or rndc reconfig will result in the following errors written to syslog:

2019-11-16T20:54:00+00:00 localhost named[23042]: [ID 873579 daemon.error] could not listen on UDP socket: permission denied
2019-11-16T20:54:00+00:00 localhost named[23042]: [ID 873579 daemon.error] creating IPv4 interface lo0 failed; interface ignored
2019-11-16T20:54:00+00:00 localhost named[23042]: [ID 873579 daemon.error] could not listen on UDP socket: permission denied
2019-11-16T20:54:00+00:00 localhost named[23042]: [ID 873579 daemon.error] creating IPv4 interface lo0 failed; interface ignored

I can run ppriv -s A+net_privaddr $(pgrep -c $(svcs -H -o ctid pkgsrc/bind)), which will allow named to recognize new interfaces and work properly with both rndc scan and rndc reconfig.

The text was updated successfully, but these errors were encountered:

@Aketzu

# v0.19.4 ## Bugfix - slack: fix regression with slack library (#264) - slack: fix an unexpected panic (#263) # v0.19.3 ## Enhancement * general: Add UPDATELASTVIEWED command, and make DisableAutoView work consistently (#255) * slack: Handle message edits and deletion (#260) * slack: Add handling of reactions, stars and pins (#229) ## Bugfix * mattermost: Fix a panic #247 * mattermost: Fixes incorrect users because of paging. #244 * mattermost: Fix outdated channel issue * mattermost: Add paging so we can see > 200 users in a channel #248 * mattermost: Fix expired session panic #259 * general: Fix datarace #246 * general: Fix empty JoinInclude * general: Fix panic #257 This release couldn't exist without the following contributors: @Aketzu, @bucko909, @42wim # v0.19.2 ## Enhancement * general: Add a default value matterirc.toml for the '-conf' flag (#240) * slack: library updated * mattermost: library updated * mattermost: Add support for channel created/deleted events ## Bugfix * mattermost: Remove ourselves from the channel when removed in mattermost. Fixes #233 * mattermost: Add/remove ourselves to the channel if we join using the GUI. #239 * mattermost: Update topics in mattermost. Closes #241 * mattermost: Fix pastes and attachments in direct message. Closes #228 * mattermost: Update channels if not known on join yet # v0.19.1 ## New features * mattermost: Added support for disabling of automatic view flag updates (#226). See DisableAutoView in matterircd.toml.example * slack: Add message showing enhancements and add slackbot to all channels (#230) ## Bugfix * general: Fix tight loop (100% CPU). Closes #231 # v0.19.0 ## New features * irc: Add support for spoofing query messages. #195 * You can now see your own messages you've typed on slack/mattermost web in irc * irc: Add PasteBufferTimeout option (send ascii-art!) * See matterircd.toml.example for an example. * PasteBufferTimeout specifies the amount of time in milliseconds that messages get kept in matterircd internal buffer before being sent to mattermost or slack. Messages that will be received in this time will be concatenated together So this can be used to paste stuff like ascii-art or code. Default 0 (is disabled) Depending on how fast you type 2500 is a good number ## Bugfix * slack: Correctly handle different nick and username #203 * slack: Ignore channel join messages #198

Update ruby-coderay to 1.1.3. 1.1.3 (2020-05-29) * Tokens: Ensure Ruby 2.6 compatibility. [#233, thanks to Jun Aruga] * SQL scanner: Add numeric data type. [#223, thanks to m16a1] * Java scanner: Add var as type. [#229, thanks to Davide Angelocola] * Gem: Fix deprecation warning. [#246, thanks to David Rodr�«¿guez]

bahamat · 2020-07-20T12:20:54Z

It looks like a full explicit restart of the pkgsrc/bind smf service fixes this.

Update ruby-jekyll-feed package to 0.15.0. ## 0.15.0 / 2020-07-10 ### Minor Enhancements * Add support for drafts (#316) ## 0.14.0 / 2020-06-24 ### Minor Enhancements * add support for categories (#153) (#233) * add support for tags (#264) * Make posts limit configurable (#314) * XML escape the title field of feed_meta (#306) ### Bug Fixes * Fix feed link when post title contains HTML (#305) ### Development Fixes * Use Dir to list source files (#309) * Require Ruby >=2.4.0 (#307)

0.60: Asciidoc: * Introduce "compat" option to parse like asciidoc or asciidoctor. Text (and Markdown): * Fix the support of nested lists (GitHub's #131). Other: * Remove the experimental C extension that was never built, distributed, tested nor modified since 2007. XML: * Provide a meaningful message when the translators butcher the <placeholder> attributes instead of truncating the file. (GitHub's #254) 0.59.1: po4a tool: * Really fix --srcdir and --destdir handling (Debian's #960892 again). Even with the previous fix, the aptitude package was still broken. Documentation: * Clarify the syntax of -o parameters (GitHub's #233). Sgml: * Sort the attributes. Without this, msgids are randomly fuzzied. (Debian's #725931 and Debian's #810988) 0.59: po4a tool: * Fix --srcdir handling (GitHub's #237 and Debian's #960892). This bug was breaking the build of several packages, including dpkg. Addendum: * New mode 'eof' to easily add at the end of the file (Debian's #960949). Documentation: * Fix many typos and glitches * Start a section about external projects using po4a Tests: * po4a: Add a test for the [po_directory] feature Overall: * Improve the displayed messages, don't translate debug messages. 0.58.1: Documentation: * Document an option of the XML parser (GitHub's #223). * Small glitches found during the translations. Tests: * Also ignore 'Project-Id-Version' when diffing PO files (GitHub's #224) * asciidoc: reactivate tablecells tests AsciiDoc: * Fix management of images in tables (Github's #226) * Tolerate underline length variations in two lines titles (Github's #212) 0.58: AsciiDoc: * Accept numbered list items beginning with any number of dots (GitHub's #210) Markdown: * Avoid translating Markdown fenced code block info string (GitHub's #194) * List Markdown fenced code block info string as text type (GitHub's #195) * Support YAML Front Matter (GitHub's #196). This requires YAML::Tiny. * Introduce options yfm_keys and yfm_skip_array to respectively specify which YAML keys should be translated, and that the array content should not be translated. * Work around a bug in YAML::Tiny that quotes numbers (GitHub's #217) * Add gettext flag "markdown-text" for relevant entries (GitHub's #208) Text: * Honor the (existing) --neverwrap option to handle every content verbatim. Texinfo: * Add the comments starting with 'TRANSLATORS:' to the po file (GitHub's #162) XHTML: * Don't fail nor warn when a closing tag is missing, that's legit in HTML. (GitHub's #179) XML and DocBook: * Allow attributes with no value (GitHub's #178). * Processing Instructions are handled as inline tags by default, but you can change them back to breaking with '-o break-pi' (GitHub's #170) Yaml: * Introduce option to skip array values. (GitHub's #187) po4a tool: * Cleanups and fixups about options' parsing (now tested and documented) _ / \ You may need to upgrage your po4a.conf if you were using /_!_\ "unwanted features" (ie, bugs) of the previous implementation. * Do not touch source dir when --destdir is provided (Debian #602387) * Pass --add-location=file to msgmerge when receiving option porefs. (requires gettext >= 0.19 -- June 2014) * Option --master-charset sets the charset of the generated POT file. * Option --master-language sets the language of the generated POT file. * Add support for addendum path in po4a_paths (Debian #823189) * Stop pretending that --porefs can control the wrapping of reference comments, as the gettext tools used internally always rewrap them. Scripts: * Rename po4aman-display-po to po4a-display-man * Rename po4apod-display-po to po4a-display-pod Core: * Use UTF-8 by default (the 20th century is over -- Debian #862460) po4a used to prefer ascii unless it proved impossible. But the underlying detection would fail, possibly for document containing UTF-8 chars composed on printable ascii chars only. * Add a --wrap-po option to control how the po file is wrapped, and chose between either nicely wrapped files that tend to produce git conflicts, or ugly files that are easy to automatically deal with. Tests: * Completely refactor most tests. They are now more reliable and the error messages are much more useful to understand the issues. * Many bugs to po4a and the core were ironed out in the process. * PO files content are now tested too (GitHub's #67) Documentation: * Various cleanups by Golubev Alexander (GitHub's #190 & #191)

@heavywatal

(pkgsrc) - Add TEST_DEPENDS+, but still fails at pdLaTeX (upstream) # fs 1.5.0 ---------- * The libuv release used by fs was updated to 1.38.1 * `dir_create()` now consults the process umask so the mode during directory creation works like `mkdir` does (#284). * `fs_path`, `fs_bytes` and `fs_perms` objects are now compatible with vctrs 0.3.0 (#266) * `fs_path` objects now sort properly when there is a mix of ASCII and unicode elements (#279) # fs 1.4.2 ---------- * `file_info(..., follow = TRUE)`, `is_dir()`, and `is_file()` follow relative symlinks in non-current directories (@heavywatal, #280) * `dir_map()` now grows its internal list safely, the 1.4.0 release introduced an unsafe regression (#268) * `file_info()` returns a tibble if the tibble package is installed, and subsets work when it is a `data.frame` (#265) * `path_real()` always fails if the file does not exist. Thus it can no longer be used to resolve symlinks further up the path hierarchy for files that do not yet exist. This reverts the feature introduced in 1.2.7 (#144, #221, #231) # fs 1.4.1 ---------- * Fix compilation on Solaris. # fs 1.4.0 ---------- * `[[.fs_path`, `[[.fs_bytes` and `[[.fs_perms` now preserve their classes after subsetting (#254). * `path_has_parent()` now recycles both the `path` and `parent` arguments (#253). * `path_ext_set()` now recycles both the `path` and `ext` arguments (#250). * Internally fs no longer depends on Rcpp # fs 1.3.2 ---------- * fs now passes along `CPPFLAGS` during compilation of libuv, fixing an issue that could prevent compilation from source on macOS Catalina. (@kevinushey, #229) * fs now compiles on alpine linux (#210) * `dir_create()` now works with absolute paths and `recurse = FALSE` (#204). * `dir_tree()` now works with paths that need tilde expansion (@dmurdoch, @jennybc, #203). * `file_info()` now returns file sizes with the proper classes ("fs_bytes" and "numeric"), rather than just "fs_bytes" (#239) * `get_dirent_type()` gains a `fail` argument (@bellma-lilly, #219) * `Is_Dir()`, `is_file()`, `is_file_empty()` and `file_info()` gain a `follow` argument, to follow links and return information about the linked file rather than the link itself (#198) * `path()` now follows "tidy" recycling rules, namely only consistent or length 1 inputs are recycled. (#238) * `path()` now errors if the path given or constructed will exceed `PATH_MAX` (#233). * `path_ext_set()` now works with multiple paths (@maurolepore, #208).

2.0.3 (2020-08-22) ~~~~~~~~~~~~~~~~~~ - Fix issues when building re2c as a CMake subproject (`#302 <https://github.com/skvadrik/re2c/pull/302>`_: - Final corrections in the SIMPA article "RE2C: A lexer generator based on lookahead-TDFA", https://doi.org/10.1016/j.simpa.2020.100027 2.0.2 (2020-08-08) ~~~~~~~~~~~~~~~~~~ - Enable re2go building by default. - Package CMake files into release tarball. 2.0.1 (2020-07-29) ~~~~~~~~~~~~~~~~~~ - Updated version for CMake build system (forgotten in release 2.0). - Added a short article about re2c for the Software Impacts journal. 2.0 (2020-07-20) ~~~~~~~~~~~~~~~~ - Added new code generation backend for Go and a new ``re2go`` program (`#272 <https://github.com/skvadrik/re2c/issues/272>`_: Go support). Added option ``--lang <c | go>``. - Added CMake build system as an alternative to Autotools (`#275 <https://github.com/skvadrik/re2c/pull/275>`_: Add a CMake build system (thanks to ligfx), `#244 <https://github.com/skvadrik/re2c/issues/244>`_: Switching to CMake). - Changes in generic API: + Removed primitives ``YYSTAGPD`` and ``YYMTAGPD``. + Added primitives ``YYSHIFT``, ``YYSHIFTSTAG``, ``YYSHIFTMTAG`` that allow to express fixed tags in terms of generic API. + Added configurations ``re2c:api:style`` and ``re2c:api:sigil``. + Added named placeholders in interpolated configuration strings. - Changes in reuse mode (``-r, --reuse`` option): + Do not reset API-related configurations in each `use:re2c` block (`#291 <https://github.com/skvadrik/re2c/issues/291>`_: Defines in rules block are not propagated to use blocks). + Use block-local options instead of last block options. + Do not accumulate options from rules/reuse blocks in whole-program options. + Generate non-overlapping YYFILL labels for reuse blocks. + Generate start label for each reuse block in storable state mode. - Changes in start-conditions mode (``-c, --start-conditions`` option): + Allow to use normal (non-conditional) blocks in `-c` mode (`#263 <https://github.com/skvadrik/re2c/issues/263>`_: allow mixing conditional and non-conditional blocks with -c, `#296 <https://github.com/skvadrik/re2c/issues/296>`_: Conditions required for all lexers when using '-c' option). + Generate condition switch in every re2c block (`#295 <https://github.com/skvadrik/re2c/issues/295>`_: Condition switch generated for only one lexer per file). - Changes in the generated labels: + Use ``yyeof`` label prefix instead of ``yyeofrule``. + Use ``yyfill`` label prefix instead of ``yyFillLabel``. + Decouple start label and initial label (affects label numbering). - Removed undocumented configuration ``re2c:flags:o``, ``re2c:flags:output``. - Changes in ``re2c:flags:t``, ``re2c:flags:type-header`` configuration: filename is now relative to the output file directory. - Added option ``--case-ranges`` and configuration ``re2c:flags:case-ranges``. - Extended fixed tags optimization for the case of fixed-counter repetition. - Fixed bugs related to EOF rule: + `#276 <https://github.com/skvadrik/re2c/issues/276>`_: Example 01_fill.re in docs is broken + `#280 <https://github.com/skvadrik/re2c/issues/280>`_: EOF rules with multiple blocks + `#284 <https://github.com/skvadrik/re2c/issues/284>`_: mismatched YYBACKUP and YYRESTORE (Add missing fallback states with EOF rule) - Fixed miscellaneous bugs: + `#286 <https://github.com/skvadrik/re2c/issues/286>`_: Incorrect submatch values with fixed-length trailing context. + `#297 <https://github.com/skvadrik/re2c/issues/297>`_: configure error on ubuntu 18.04 / cmake 3.10 - Changed bootstrap process (require explicit configuration flags and a path to re2c executable to regenerate the lexers). - Added internal options ``--posix-prectable <naive | complex>``. - Added debug option ``--dump-dfa-tree``. - Major revision of the paper "Efficient POSIX submatch extraction on NFA". ---- 1.3x ---- 1.3 (2019-12-14) ~~~~~~~~~~~~~~~~ - Added option: ``--stadfa``. - Added warning: ``-Wsentinel-in-midrule``. - Added generic API primitives: + ``YYSTAGPD`` + ``YYMTAGPD`` - Added configurations: + ``re2c:sentinel = 0;`` + ``re2c:define:YYSTAGPD = "YYSTAGPD";`` + ``re2c:define:YYMTAGPD = "YYMTAGPD";`` - Worked on reproducible builds (`#258 <https://github.com/skvadrik/re2c/pull/258>`_: Make the build reproducible). ---- 1.2x ---- 1.2.1 (2019-08-11) ~~~~~~~~~~~~~~~~~~ - Fixed bug `#253 <https://github.com/skvadrik/re2c/issues/253>`_: re2c should install unicode_categories.re somewhere. - Fixed bug `#254 <https://github.com/skvadrik/re2c/issues/254>`_: Turn off re2c:eof = 0. 1.2 (2019-08-02) ~~~~~~~~~~~~~~~~ - Added EOF rule ``$`` and configuration ``re2c:eof``. - Added ``/*!include:re2c ... */`` directive and ``-I`` option. - Added ``/*!header:re2c:on*/`` and ``/*!header:re2c:off*/`` directives. - Added ``--input-encoding <ascii | utf8>`` option. + `#237 <https://github.com/skvadrik/re2c/issues/237>`_: Handle non-ASCII encoded characters in regular expressions + `#250 <https://github.com/skvadrik/re2c/issues/250>`_ UTF8 enoding - Added include file with a list of definitions for Unicode character classes. + `#235 <https://github.com/skvadrik/re2c/issues/235>`_: Unicode character classes - Added ``--location-format <gnu | msvc>`` option. + `#195 <https://github.com/skvadrik/re2c/issues/195>`_: Please consider using Gnu format for error messages - Added ``--verbose`` option that prints "success" message if re2c exits without errors. - Added configurations for options: + ``-o --output`` (specify output file) + ``-t --type-header`` (specify header file) - Removed configurations for internal/debug options. - Extended ``-r`` option: allow to mix multiple ``/*!rules:re2c*/``, ``/*!use:re2c*/`` and ``/*!re2c*/`` blocks. + `#55 <https://github.com/skvadrik/re2c/issues/55>`_: allow standard re2c blocks in reuse mode - Fixed ``-F --flex-support`` option: parsing and operator precedence. + `#229 <https://github.com/skvadrik/re2c/issues/229>`_: re2c option -F (flex syntax) broken + `#242 <https://github.com/skvadrik/re2c/issues/242>`_: Operator precedence with --flex-syntax is broken - Changed difference operator ``/`` to apply before encoding expansion of operands. + `#236 <https://github.com/skvadrik/re2c/issues/236>`_: Support range difference with variable-length encodings - Changed output generation of output file to be atomic. + `#245 <https://github.com/skvadrik/re2c/issues/245>`_: re2c output is not atomic - Authored research paper "Efficient POSIX Submatch Extraction on NFA" together with Dr Angelo Borsotti. - Added experimental libre2c library (``--enable-libs`` configure option) with the following algorithms: + TDFA with leftmost-greedy disambiguation + TDFA with POSIX disambiguation (Okui-Suzuki algorithm) + TNFA with leftmost-greedy disambiguation + TNFA with POSIX disambiguation (Okui-Suzuki algorithm) + TNFA with lazy POSIX disambiguation (Okui-Suzuki algorithm) + TNFA with POSIX disambiguation (Kuklewicz algorithm) + TNFA with POSIX disambiguation (Cox algorithm) - Added debug subsystem (``--enable-debug`` configure option) and new debug options: + ``-dump-cfg`` (dump control flow graph of tag variables) + ``-dump-interf`` (dump interference table of tag variables) + ``-dump-closure-stats`` (dump epsilon-closure statistics) - Added internal options: + ``--posix-closure <gor1 | gtop>`` (switch between shortest-path algorithms used for the construction of POSIX closure) - Fixed a number of crashes found by American Fuzzy Lop fuzzer: + `#226 <https://github.com/skvadrik/re2c/issues/226>`_, `#227 <https://github.com/skvadrik/re2c/issues/227>`_, `#228 <https://github.com/skvadrik/re2c/issues/228>`_, `#231 <https://github.com/skvadrik/re2c/issues/231>`_, `#232 <https://github.com/skvadrik/re2c/issues/232>`_, `#233 <https://github.com/skvadrik/re2c/issues/233>`_, `#234 <https://github.com/skvadrik/re2c/issues/234>`_, `#238 <https://github.com/skvadrik/re2c/issues/238>`_ - Fixed handling of newlines: + correctly parse multi-character newlines CR LF in ``#line`` directives + consistently convert all newlines in the generated file to Unix-style LF - Changed default tarball format from .gz to .xz. + `#221 <https://github.com/skvadrik/re2c/issues/221>`_: big source tarball - Fixed a number of other bugs and resolved issues: + `#2 <https://github.com/skvadrik/re2c/issues/2>`_: abort + `#6 <https://github.com/skvadrik/re2c/issues/6>`_: segfault + `#10 <https://github.com/skvadrik/re2c/issues/10>`_: lessons/002_upn_calculator/calc_002 doesn't produce a useful example program + `#44 <https://github.com/skvadrik/re2c/issues/44>`_: Access violation when translating the attached file + `#49 <https://github.com/skvadrik/re2c/issues/49>`_: wildcard state \000 rules makes lexer behave weard + `#98 <https://github.com/skvadrik/re2c/issues/98>`_: Transparent handling of #line directives in input files + `#104 <https://github.com/skvadrik/re2c/issues/104>`_: Improve const-correctness + `#105 <https://github.com/skvadrik/re2c/issues/105>`_: Conversion of pointer parameters into references + `#114 <https://github.com/skvadrik/re2c/issues/114>`_: Possibility of fixing bug 2535084 + `#120 <https://github.com/skvadrik/re2c/issues/120>`_: condition consisting of default rule only is ignored + `#167 <https://github.com/skvadrik/re2c/issues/167>`_: Add word boundary support + `#168 <https://github.com/skvadrik/re2c/issues/168>`_: Wikipedia's article on re2c + `#180 <https://github.com/skvadrik/re2c/issues/180>`_: Comment syntax? + `#182 <https://github.com/skvadrik/re2c/issues/182>`_: yych being set by YYPEEK () and then not used + `#196 <https://github.com/skvadrik/re2c/issues/196>`_: Implicit type conversion warnings + `#198 <https://github.com/skvadrik/re2c/issues/198>`_: no match for ‘operator!=’ in ‘i != std::vector<_Tp, _Alloc>::rend() [with _Tp = re2c::bitmap_t, _Alloc = std::allocator<re2c::bitmap_t>]()’ + `#210 <https://github.com/skvadrik/re2c/issues/210>`_: How to build re2c in windows? + `#215 <https://github.com/skvadrik/re2c/issues/215>`_: A memory read overrun issue in s_to_n32_unsafe.cc + `#220 <https://github.com/skvadrik/re2c/issues/220>`_: src/dfa/dfa.h: simplify constructor to avoid g++-3.4 bug + `#223 <https://github.com/skvadrik/re2c/issues/223>`_: Fix typo + `#224 <https://github.com/skvadrik/re2c/issues/224>`_: src/dfa/closure_posix.cc: pack() tweaks + `#225 <https://github.com/skvadrik/re2c/issues/225>`_: Documentation link is broken in libre2c/README + `#230 <https://github.com/skvadrik/re2c/issues/230>`_: Changes for upcoming Travis' infra migration + `#239 <https://github.com/skvadrik/re2c/issues/239>`_: Push model example has wrong re2c invocation, breaks guide + `#241 <https://github.com/skvadrik/re2c/issues/241>`_: Guidance on how to use re2c for full-duplex command & response protocol + `#243 <https://github.com/skvadrik/re2c/issues/243>`_: A code generated for period (.) requires 4 bytes + `#246 <https://github.com/skvadrik/re2c/issues/246>`_: Please add a license to this repo + `#247 <https://github.com/skvadrik/re2c/issues/247>`_: Build failure on current Cygwin, probably caused by force-fed c++98 mode + `#248 <https://github.com/skvadrik/re2c/issues/248>`_: distcheck still looks for README + `#251 <https://github.com/skvadrik/re2c/issues/251>`_: Including what you use is find, but not without inclusion guards - Updated documentation and website.

# magrittr 2.0.1 * Fixed issue caused by objects with certain names being present in the calling environment (#233). * Fixed regression in `freduce()` with long lists (kcf-jackson/sketch#5). # magrittr 2.0.0 ## Fast and lean implementation of the pipe The pipe has been rewritten in C with the following goals in mind: - Minimal performance cost. - Minimal impact on backtraces. - No impact on reference counts. As part of this rewrite we have changed the behaviour of the pipe to make it closer to the implementation that will likely be included in a future version of R. The pipe now evaluates piped expressions lazily (#120). The main consequence of this change is that warnings and errors can now be handled by trailing pipe calls: ```r stop("foo") %>% try() warning("bar") %>% suppressWarnings() ``` ## Breaking changes The pipe rewrite should generally not affect your code. We have checked magrittr on 2800 CRAN packages and found only a dozen of failures. The development version of magrittr has been advertised on social media for a 3 months trial period, and no major issues were reported. However, there are some corner cases that might require updating your code. Below is a report of the backward incompatibilities we found in real code to help you transition, should you find an issue in your code. ### Behaviour of `return()` in a pipeline In previous versions of magrittr, the behaviour of `return()` within pipe expressions was undefined. Should it return from the current pipe expression, from the whole pipeline, or from the enclosing function? The behaviour that makes the most sense is to return from the enclosing function. However, we can't make this work easily with the new implementation, and so calling `return()` is now an error. ```r my_function <- function(x) { x %>% { if (.) return("true") "false" } } my_function(TRUE) #> Error: no function to return from, jumping to top level ``` In magrittr 1.5, `return()` used to return from the current pipe expression. You can rewrite this to the equivalent: ```r my_function <- function(x) { x %>% { if (.) { "true" } else { "false" } } } my_function(TRUE) #> [1] "true" ``` For backward-compatibility we have special-cased trailing `return()` calls as this is a common occurrence in packages: ```r 1 %>% identity() %>% return() ``` Note however that this only returns from the pipeline, not the enclosing function (which is the historical behaviour): ```r my_function <- function() { "value" %>% identity() %>% return() "wrong value" } my_function() #> [1] "wrong value" ``` It is generally best to avoid using `return()` in a pipeline, even if trailing. ### Failures caused by laziness With the new lazy model for the evaluation of pipe expressions, earlier parts of a pipeline are not yet evaluated when the last pipe expression is called. They only get evaluated when the last function actually uses the piped arguments: ```r ignore <- function(x) "return value" stop("never called") %>% ignore() #> [1] "return value" ``` This should generally not cause problems. However we found some functions with special behaviour, written under the assumption that earlier parts of the pipeline were already evaluated and had already produced side effects. This is generally incorrect behaviour because that means that these functions do not work properly when called with the nested form, e.g. `f(g(1))` instead of `1 %>% g() %>% f()`. The solution to fix this is to call `force()` on the inputs to force evaluation, and only then check for side effects: ```r my_function <- function(data) { force(data) peek_side_effect() } ``` Another issue caused by laziness is that if any function in a pipeline returns invisibly, than the whole pipeline returns invisibly as well. ```r 1 %>% identity() %>% invisible() 1 %>% invisible() %>% identity() 1 %>% identity() %>% invisible() %>% identity() ``` This is consistent with the equivalent nested code. This behaviour can be worked around in two ways. You can force visibility by wrapping the pipeline in parentheses: ```r my_function <- function(x) { (x %>% invisible() %>% identity()) } ``` Or by assigning the result to a variable and return it: ```r my_function <- function(x) { out <- x %>% invisible() %>% identity() out } ``` ### Incorrect call stack introspection The magrittr expressions are no longer evaluated in frames that can be inspected by `sys.frames()` or `sys.parent()`. Using these functions for implementing actual functionality (as opposed as debugging tools) is likely to produce bugs. Instead, you should generally use `parent.frame()` which works even when R code is called from non-inspectable frames. This happens with e.g. `do.call()` and the new C implementation of magrittr. ### Incorrect assumptions about magrittr internals Some packages were depending on how magrittr was internally structured. Robust code should only use the documented and exported API of other packages. ## Bug fixes * Can now use the placeholder `.` with the splicing operator `!!!` from rlang (#191). * Piped arguments are now persistent. They can be evaluated after the pipeline has returned, which fixes subtle issues with function factories (#159, #195).

@tlhackque

Changes with Apache 2.4.48 *) mod_proxy_wstunnel: Add ProxyWebsocketFallbackToProxyHttp to opt-out the fallback to mod_proxy_http for WebSocket upgrade and tunneling. [Yann Ylavic] *) mod_proxy: Fix flushing of THRESHOLD_MIN_WRITE data while tunneling. BZ 65294. [Yann Ylavic] *) core: Fix a regression that stripped the ETag header from 304 responses. PR 61820 [Ruediger Pluem, Roy T. Fielding] *) core: Adding SSL related inquiry functions to the server API. These function are always available, even when no module providing SSL is loaded. They provide their own "shadowing" implementation for the optional functions of similar name that mod_ssl and impersonators of mod_ssl provide. This enables loading of several SSL providing modules when all but one of them registers itself into the new hooks. Two old-style SSL modules will not work, as they replace the others optional functions with their own. Modules using the old-style optional functions will continue to work as core supplies its own versions of those. The following has been added so far: - ap_ssl_conn_is_ssl() to query if a connection is using SSL. - ap_ssl_var_lookup() to query SSL related variables for a server/connection/request. - Hooks for 'ssl_conn_is_ssl' and 'ssl_var_lookup' where modules providing SSL can install their own value supplying functions. - ap_ssl_add_cert_files() to enable other modules like mod_md to provide certificate and keys for an SSL module like mod_ssl. - ap_ssl_add_fallback_cert_files() to enable other modules like mod_md to provide a fallback certificate in case no 'proper' certificate is available for an SSL module like mod_ssl. - ap_ssl_answer_challenge() to enable other modules like mod_md to provide a certificate as used in the RFC 8555 'tls-alpn-01' challenge for the ACME protocol for an SSL module like mod_ssl. The function and its hook provide PEM encoded data instead of file names. - Hooks for 'ssl_add_cert_files', 'ssl_add_fallback_cert_files' and 'ssl_answer_challenge' where modules like mod_md can provide providers to the above mentioned functions. - These functions reside in the new 'http_ssl.h' header file. [Stefan Eissing] *) core/mod_ssl/mod_md: adding OCSP response provisioning as core feature. This allows modules to access and provide OCSP response data without being tied of each other. The data is exchanged in standard, portable formats (PEM encoded certificates and DER encoded responses), so that the actual SSL/crypto implementations used by the modules are independant of each other. Registration and retrieval happen in the context of a server (server_rec) which modules may use to decide if they are configured for this or not. The area of changes: 1. core: defines 2 functions in include/http_ssl.h, so that modules may register a certificate, together with its issuer certificate for OCSP response provisioning and ask for current response data (DER bytes) later. Also, 2 hooks are defined that allow modules to implement this OCSP provisioning. 2. mod_ssl uses the new functions, in addition to what it did already, to register its certificates this way. If no one is interested in providing OCSP, it falls back to its own (if configured) stapling implementation. 3. mod_md registers itself at the core hooks for OCSP provisioning. Depending on configuration, it will accept registrations of its own certificates only, all certificates or none. [Stefan Eissing] *) mod_md: v2.4.0 with improvements and bugfixes - MDPrivateKeys allows the specification of several types. Beside "RSA" plus optional key lengths elliptic curves can be configured. This means you can have multiple certificates for a Managed Domain with different key types. With ```MDPrivateKeys secp384r1 rsa2048``` you get one ECDSA and one RSA certificate and all modern client will use the shorter ECDSA, while older client will get the RSA certificate. Many thanks to @tlhackque who pushed and helped on this. - Support added for MDomains consisting of a wildcard. Configuring ```MDomain *.host.net``` will match all virtual hosts matching that pattern and obtain one certificate for it (assuming you have 'dns-01' challenge support configured). Addresses #239. - Removed support for ACMEv1 servers. The only known installation used to be Let's Encrypt which has disabled that version more than a year ago for new accounts. - Andreas Ulm (<https://github.com/root360-AndreasUlm>) implemented the ```renewing``` call to ```MDMessageCmd``` that can deny a certificate renewal attempt. This is useful in clustered installations, as discussed in #233). - New event ```challenge-setup:<type>:<domain>```, triggered when the challenge data for a domain has been created. This is invoked before the ACME server is told to check for it. The type is one of the ACME challenge types. This is invoked for every DNS name in a MDomain. - The max delay for retries has been raised to daily (this is like all retries jittered somewhat to avoid repeats at fixed time of day). - Certain error codes reported by the ACME server that indicate a problem with the configured data now immediately switch to daily retries. For example: if the ACME server rejects a contact email or a domain name, frequent retries will most likely not solve the problem. But daily retries still make sense as there might be an error at the server and un-supervised certificate renewal is the goal. Refs #222. - Test case and work around for domain names > 64 octets. Fixes #227. When the first DNS name of an MD is longer than 63 octets, the certificate request will not contain a CN field, but leave it up to the CA to choose one. Currently, Lets Encrypt looks for a shorter name in the SAN list given and fails the request if none is found. But it is really up to the CA (and what browsers/libs accept here) and may change over the years. That is why the decision is best made at the CA. - Retry delays now have a random +/-[0-50]% modification applied to let retries from several servers spread out more, should they have been restarted at the same time of day. - Fixed several places where the 'badNonce' return code from an ACME server was not handled correctly. The test server 'pebble' simulates this behaviour by default and helps nicely in verifying this behaviour. Thanks, pebble! - Set the default `MDActivationDelay` to 0. This was confusing to users that new certificates were deemed not usably before a day of delay. When clocks are correct, using a new certificate right away should not pose a problem. - When handling ACME authorization resources, the module no longer requires the server to return a "Location" header, as was necessary in ACMEv1. Fixes #216. - Fixed a theoretical uninitialized read when testing for JSON error responses from the ACME CA. Reported at <https://bz.apache.org/bugzilla/show_bug.cgi?id=64297>. - ACME problem reports from CAs that include parameters in the Content-Type header are handled correctly. (Previously, the problem text would not be reported and retries could exceed CA limits.) - Account Update transactions to V2 CAs now use the correct POST-AS-GET method. Previously, an empty JSON object was sent - which apparently LE accepted, but others reject. [Stefan Eissing, @tlhackque, Andreas Ulm] Changes with Apache 2.4.47 *) mod_dav_fs: Improve logging output when failing to open files for writing. PR 64413. [Bingyu Shen <ahshenbingyu gmail.com>] *) mod_http2: Fixed a race condition that could lead to streams being aborted (RST to the client), although a response had been produced. [Stefan Eissing] *) mod_lua: Add support to Lua 5.4 [Joe Orton, Giovanni Bechis, Ruediger Pluem] *) MPM event/worker: Fix possible crash in child process on early signal delivery. PR 64533. [Ruediger Pluem] *) mod_http2: sync with github standalone version 1.15.17 - Log requests and sent the configured error response in case of early detected errors like too many or too long headers. [Ruediger Pluem] - new option 'H2OutputBuffering on/off' which controls the buffering of stream output. The default is on, which is the behaviour of older mod-h2 versions. When off, all bytes are made available immediately to the main connection for sending them out to the client. This fixes interop issues with certain flavours of gRPC, see also <icing/mod_h2#207>. [Stefan Eissing] *) mod_unique_id: Fix potential duplicated ID generation under heavy load. PR 65159 [Jonas Müntener <jonas.muentener ergon.ch>, Christophe Jaillet] *) "[mod_dav_fs etag handling] should really honor the FileETag setting". - It now does. - Add "Digest" to FileETag directive, allowing a strong ETag to be generated using a file digest. - Add ap_make_etag_ex() and ap_set_etag_fd() to allow full control over ETag generation. - Add concept of "binary notes" to request_rec, allowing packed bit flags to be added to a request. - First binary note - AP_REQUEST_STRONG_ETAG - allows modules to force the ETag to a strong ETag to comply with RFC requirements, such as those mandated by various WebDAV extensions. [Graham Leggett] *) mod_proxy_http: Fix a possibly crash when the origin connection gets interrupted before completion. PR 64234. [Barnim Dzwillo <dzwillo strato.de>, Ruediger Pluem] *) mod_ssl: Do not keep connections to OCSP responders alive when doing OCSP requests. PR 64135. [Ruediger Pluem] *) mod_ssl: Improve the coalescing filter to buffer into larger TLS records, and avoid revealing the HTTP header size via TLS record boundaries (for common response generators). [Joe Orton, Ruediger Pluem] *) mod_proxy_hcheck: Don't pile up health checks if the previous one did not finish before hcinterval. PR 63010. [Yann Ylavic] *) mod_session: Improve session parsing. [Yann Yalvic] *) mod_authnz_ldap: Prevent authentications with empty passwords for the initial bind to fail with status 500. [Ruediger Pluem] *) mod_auth_digest: Fast validation of the nonce's base64 to fail early if the format can't match anyway. [Yann Ylavic] *) mod_proxy_fcgi: Honor "SetEnv proxy-sendcl" to forward a chunked Transfer-Encoding from the client, spooling the request body when needed to provide a Content-Length to the backend. PR 57087. [Yann Ylavic] *) mod_proxy: Put mod_proxy_{connect,wstunnel} tunneling code in common in proxy_util. [Yann Ylavic] *) mod_proxy: Improve tunneling loop to support half closed connections and pending data draining (for protocols like rsync). PR 61616. [Yann Ylavic] *) mod_proxy_http: handle Upgrade request, 101 (Switching Protocol) response and switched protocol forwarding. [Yann Ylavic] *) mod_proxy_wstunnel: Leave Upgrade requests handling to mod_proxy_http, allowing for (non-)Upgrade negotiation with the origin server. [Yann Ylavic] *) mod_proxy: Allow ProxyErrorOverride to be restricted to specific status codes. PR63628. [Martin Drößler <mail martindroessler.de>] *) core: Add ReadBufferSize, FlushMaxThreshold and FlushMaxPipelined directives. [Yann Ylavic] *) core: Ensure that aborted connections are logged as such. PR 62823 [Arnaud Grandville <contact@grandville.net>] *) http: Allow unknown response status' lines returned in the form of "HTTP/x.x xxx Status xxx". [Yann Ylavic] *) mod_proxy_http: Fix 100-continue deadlock for spooled request bodies, leading to Request Timeout (408). PR 63855. [Yann Ylavic] *) core: Remove headers on 304 Not Modified as specified by RFC7234, as opposed to passing an explicit subset of headers. PR 61820. [Giovanni Bechis] *) mpm_event: Don't reset connections after lingering close, restoring prior to 2.4.28 behaviour. [Yann Ylavic] *) mpm_event: Kill connections in keepalive state only when there is no more workers available, not when the maximum number of connections is reached, restoring prior to 2.4.30 behaviour. [Yann Ylavic] *) mod_unique_id: Use base64url encoding for UNIQUE_ID variable, avoiding the use of '@'. PR 57044. [Michael Kaufmann <apache-bugzilla michael-kaufmann.ch>] *) mod_rewrite: Extend the [CO] (cookie) flag of RewriteRule to accept a SameSite attribute. [Eric Covener] *) mod_proxy: Add proxy check_trans hook. This allows proxy modules to decline request handling at early stage. *) mod_proxy_wstunnel: Decline requests without an Upgrade header so ws/wss can be enabled overlapping with later http/https. *) mod_http2: Log requests and sent the configured error response in case of early detected errors like too many or too long headers. [Ruediger Pluem, Stefan Eissing] *) mod_md: Lowered the required minimal libcurl version from 7.50 to 7.29 as proposed by <alexander.gerasimov codeit.pro>. [Stefan Eissing] *) mod_ssl: Fix request body buffering with PHA in TLSv1.3. [Joe Orton] *) mod_proxy_uwsgi: Fix a crash when sending environment variables with no value. PR 64598 [Ruediger Pluem] *) mod_proxy: Recognize parameters from ProxyPassMatch workers with dollar substitution, such that they apply to the backend connection. Note that connection reuse is disabled by default to avoid compatibility issues. [Takashi Sato, Jan Kaluza, Eric Covener, Yann Ylavic, Jean-Frederic Clere]

httpuv 1.6.1 ============ * The `timegm()` function is a non-standard GNU extension, so it has been replaced with an internal `timegm2()` function. (#300) httpuv 1.6.0 ============ * Remove BH dependency. httpuv now requires a compiler which supports C++11. (#297) httpuv 1.5.5 ============ * Fix SHA1 calculation, and thus WebSocket server handshakes, on big-endian systems. (#284) * Fixed #195: Responses required `headers` to be a named list. Now it can also be `NULL`, an empty unnamed list, or it can be unset. (#289) * Allow responses to omit `body` (or set it as `NULL`) to avoid sending a body or setting the `Content-Length` header. This is intended for use with HTTP 204/304 responses. (#288) httpuv 1.5.4 ============ * Fixed #275: Large HTTP request headers could get truncated if they spanned more than one TCP message. (#277) * Fixed build for Solaris. (#271) * Fixed a test that had incorrect logic. (#272) httpuv 1.5.3.1 ============== * Updated libuv to version 1.37.0. (#266) * Fixed #204: On UBSAN builds of R, there were warnings about unaligned memory access. (#246) * Avoid creating a new Rook error stream object for each request. This should improve performance. (#245) * Resolved #247: httpuv no longer returns a HTTP 400 code for static files when the "Content-Length" header is 0. This Content-Length header is inserted by some proxies even for messages without payloads. (#248) * Resolved #253: Setting the FRAMEWORK environment variable would break compilation. This change removes any dependency on that variable. (#254) httpuv 1.5.2 ============ * In the static file-serving code path, httpuv previously looked for a `Connection: upgrade` header; if it found this header, it would not try to serve a static file, and it would instead forward the HTTP request to the R code path. However, some proxies are configured to always set this header, even when the connection is not actually meant to be upgraded. Now, instead of looking for a `Connection: upgrade` header, httpuv looks for the presence of an `Upgrade` header (with any value), and should be more robust to incorrectly-configured proxies. (#215) * Fixed handling of messages without payloads: (#219) * Fixed #224: Static file serving on Windows did not work correctly if it was from a path that contained non-ASCII characters. (#227) * Resolved #194, #233: Added a `quiet` option to `startServer`, which suppresses startup error messages that are normally printed to console (and can't be intercepted with `capture.output()`). (#234) * Added a new function `randomPort()`, which returns a random available port for listening on. (#234) * Added a new (unexported) function `logLevel()`, for controlling debugging information that will be printed to the console. Previously, httpuv occasionally printed messages like `ERROR: [uv_write] broken pipe` and `ERROR: [uv_write] bad file descriptor` by default. This happened when the server tried to write to a pipe that was already closed, but the situation was not harmful, and was already being handled correctly. Now these messages are printed only if the log level is set to `INFO` or `DEBUG`. (#223) * If an application's `$call()` method is missing, it will now give a 404 response instead of a 500 response. (#237) * Disallowed backslash in static path, to prevent path traversal attacks. (#235) * Static file serving on Windows could fail if multiple requests accessed the same file simultaneously. (#239)

@bart1

# version 0.7-1 * allow longer units grouping; #270 addressing #269 @bart1 * fix regression in `set_units` method for `mixed_units` to ensure that ordering is preserved; #272 addressing #271 # version 0.7-0 * add `load_units_xml` to enable database reloading as well as loading user-provided unit systems; #254 addressing #243, #244 * add `install_unit` and `remove_unit` for adding/removing custom user-defined symbols or names, with optional mapping to existing units; `install_symbolic_unit`, `remove_symbolic_unit`, `install_conversion_constant`, `install_conversion_offset` are deprecated; #261 addressing #89 * add `keep_units`, a helper to apply functions that do not preserve units; #255 addressing #252 * fix `as_units("")`, which is now equivalent to `unitless`; #199 * fix plot axes for `plot.formula` and `plot.data.frame`; #213 * fix arithmetic for powers above 1 and below -1; #264 * improve arithmetic of logarithms; #249 * export `ud_are_convertible`; #263 addressing #258 @cregouby * remove deprecations: `as.units`, `as_cf`, `make_unit`, `parse_unit`; #259 * remove deprecated pre-computed `ud_units` database; #259 # version 0.6-7 * port `isFALSE` to fix regression in old R versions; #230 addressing #229 * fix replacement operation for `units` objects; #233 addressing #232 * fix compatibility with dplyr 1.0; #247 addressing #239 # version 0.6-6 * prettier `str` print for units and mixed units; #228 addressing #227 * add compatibility with upcoming tibble v3.0.0; #225

@tlhackque

Changes with Apache 2.4.48 *) mod_proxy_wstunnel: Add ProxyWebsocketFallbackToProxyHttp to opt-out the fallback to mod_proxy_http for WebSocket upgrade and tunneling. [Yann Ylavic] *) mod_proxy: Fix flushing of THRESHOLD_MIN_WRITE data while tunneling. BZ 65294. [Yann Ylavic] *) core: Fix a regression that stripped the ETag header from 304 responses. PR 61820 [Ruediger Pluem, Roy T. Fielding] *) core: Adding SSL related inquiry functions to the server API. These function are always available, even when no module providing SSL is loaded. They provide their own "shadowing" implementation for the optional functions of similar name that mod_ssl and impersonators of mod_ssl provide. This enables loading of several SSL providing modules when all but one of them registers itself into the new hooks. Two old-style SSL modules will not work, as they replace the others optional functions with their own. Modules using the old-style optional functions will continue to work as core supplies its own versions of those. The following has been added so far: - ap_ssl_conn_is_ssl() to query if a connection is using SSL. - ap_ssl_var_lookup() to query SSL related variables for a server/connection/request. - Hooks for 'ssl_conn_is_ssl' and 'ssl_var_lookup' where modules providing SSL can install their own value supplying functions. - ap_ssl_add_cert_files() to enable other modules like mod_md to provide certificate and keys for an SSL module like mod_ssl. - ap_ssl_add_fallback_cert_files() to enable other modules like mod_md to provide a fallback certificate in case no 'proper' certificate is available for an SSL module like mod_ssl. - ap_ssl_answer_challenge() to enable other modules like mod_md to provide a certificate as used in the RFC 8555 'tls-alpn-01' challenge for the ACME protocol for an SSL module like mod_ssl. The function and its hook provide PEM encoded data instead of file names. - Hooks for 'ssl_add_cert_files', 'ssl_add_fallback_cert_files' and 'ssl_answer_challenge' where modules like mod_md can provide providers to the above mentioned functions. - These functions reside in the new 'http_ssl.h' header file. [Stefan Eissing] *) core/mod_ssl/mod_md: adding OCSP response provisioning as core feature. This allows modules to access and provide OCSP response data without being tied of each other. The data is exchanged in standard, portable formats (PEM encoded certificates and DER encoded responses), so that the actual SSL/crypto implementations used by the modules are independant of each other. Registration and retrieval happen in the context of a server (server_rec) which modules may use to decide if they are configured for this or not. The area of changes: 1. core: defines 2 functions in include/http_ssl.h, so that modules may register a certificate, together with its issuer certificate for OCSP response provisioning and ask for current response data (DER bytes) later. Also, 2 hooks are defined that allow modules to implement this OCSP provisioning. 2. mod_ssl uses the new functions, in addition to what it did already, to register its certificates this way. If no one is interested in providing OCSP, it falls back to its own (if configured) stapling implementation. 3. mod_md registers itself at the core hooks for OCSP provisioning. Depending on configuration, it will accept registrations of its own certificates only, all certificates or none. [Stefan Eissing] *) mod_md: v2.4.0 with improvements and bugfixes - MDPrivateKeys allows the specification of several types. Beside "RSA" plus optional key lengths elliptic curves can be configured. This means you can have multiple certificates for a Managed Domain with different key types. With ```MDPrivateKeys secp384r1 rsa2048``` you get one ECDSA and one RSA certificate and all modern client will use the shorter ECDSA, while older client will get the RSA certificate. Many thanks to @tlhackque who pushed and helped on this. - Support added for MDomains consisting of a wildcard. Configuring ```MDomain *.host.net``` will match all virtual hosts matching that pattern and obtain one certificate for it (assuming you have 'dns-01' challenge support configured). Addresses #239. - Removed support for ACMEv1 servers. The only known installation used to be Let's Encrypt which has disabled that version more than a year ago for new accounts. - Andreas Ulm (<https://github.com/root360-AndreasUlm>) implemented the ```renewing``` call to ```MDMessageCmd``` that can deny a certificate renewal attempt. This is useful in clustered installations, as discussed in #233). - New event ```challenge-setup:<type>:<domain>```, triggered when the challenge data for a domain has been created. This is invoked before the ACME server is told to check for it. The type is one of the ACME challenge types. This is invoked for every DNS name in a MDomain. - The max delay for retries has been raised to daily (this is like all retries jittered somewhat to avoid repeats at fixed time of day). - Certain error codes reported by the ACME server that indicate a problem with the configured data now immediately switch to daily retries. For example: if the ACME server rejects a contact email or a domain name, frequent retries will most likely not solve the problem. But daily retries still make sense as there might be an error at the server and un-supervised certificate renewal is the goal. Refs #222. - Test case and work around for domain names > 64 octets. Fixes #227. When the first DNS name of an MD is longer than 63 octets, the certificate request will not contain a CN field, but leave it up to the CA to choose one. Currently, Lets Encrypt looks for a shorter name in the SAN list given and fails the request if none is found. But it is really up to the CA (and what browsers/libs accept here) and may change over the years. That is why the decision is best made at the CA. - Retry delays now have a random +/-[0-50]% modification applied to let retries from several servers spread out more, should they have been restarted at the same time of day. - Fixed several places where the 'badNonce' return code from an ACME server was not handled correctly. The test server 'pebble' simulates this behaviour by default and helps nicely in verifying this behaviour. Thanks, pebble! - Set the default `MDActivationDelay` to 0. This was confusing to users that new certificates were deemed not usably before a day of delay. When clocks are correct, using a new certificate right away should not pose a problem. - When handling ACME authorization resources, the module no longer requires the server to return a "Location" header, as was necessary in ACMEv1. Fixes #216. - Fixed a theoretical uninitialized read when testing for JSON error responses from the ACME CA. Reported at <https://bz.apache.org/bugzilla/show_bug.cgi?id=64297>. - ACME problem reports from CAs that include parameters in the Content-Type header are handled correctly. (Previously, the problem text would not be reported and retries could exceed CA limits.) - Account Update transactions to V2 CAs now use the correct POST-AS-GET method. Previously, an empty JSON object was sent - which apparently LE accepted, but others reject. [Stefan Eissing, @tlhackque, Andreas Ulm] Changes with Apache 2.4.47 *) mod_dav_fs: Improve logging output when failing to open files for writing. PR 64413. [Bingyu Shen <ahshenbingyu gmail.com>] *) mod_http2: Fixed a race condition that could lead to streams being aborted (RST to the client), although a response had been produced. [Stefan Eissing] *) mod_lua: Add support to Lua 5.4 [Joe Orton, Giovanni Bechis, Ruediger Pluem] *) MPM event/worker: Fix possible crash in child process on early signal delivery. PR 64533. [Ruediger Pluem] *) mod_http2: sync with github standalone version 1.15.17 - Log requests and sent the configured error response in case of early detected errors like too many or too long headers. [Ruediger Pluem] - new option 'H2OutputBuffering on/off' which controls the buffering of stream output. The default is on, which is the behaviour of older mod-h2 versions. When off, all bytes are made available immediately to the main connection for sending them out to the client. This fixes interop issues with certain flavours of gRPC, see also <icing/mod_h2#207>. [Stefan Eissing] *) mod_unique_id: Fix potential duplicated ID generation under heavy load. PR 65159 [Jonas Müntener <jonas.muentener ergon.ch>, Christophe Jaillet] *) "[mod_dav_fs etag handling] should really honor the FileETag setting". - It now does. - Add "Digest" to FileETag directive, allowing a strong ETag to be generated using a file digest. - Add ap_make_etag_ex() and ap_set_etag_fd() to allow full control over ETag generation. - Add concept of "binary notes" to request_rec, allowing packed bit flags to be added to a request. - First binary note - AP_REQUEST_STRONG_ETAG - allows modules to force the ETag to a strong ETag to comply with RFC requirements, such as those mandated by various WebDAV extensions. [Graham Leggett] *) mod_proxy_http: Fix a possibly crash when the origin connection gets interrupted before completion. PR 64234. [Barnim Dzwillo <dzwillo strato.de>, Ruediger Pluem] *) mod_ssl: Do not keep connections to OCSP responders alive when doing OCSP requests. PR 64135. [Ruediger Pluem] *) mod_ssl: Improve the coalescing filter to buffer into larger TLS records, and avoid revealing the HTTP header size via TLS record boundaries (for common response generators). [Joe Orton, Ruediger Pluem] *) mod_proxy_hcheck: Don't pile up health checks if the previous one did not finish before hcinterval. PR 63010. [Yann Ylavic] *) mod_session: Improve session parsing. [Yann Yalvic] *) mod_authnz_ldap: Prevent authentications with empty passwords for the initial bind to fail with status 500. [Ruediger Pluem] *) mod_auth_digest: Fast validation of the nonce's base64 to fail early if the format can't match anyway. [Yann Ylavic] *) mod_proxy_fcgi: Honor "SetEnv proxy-sendcl" to forward a chunked Transfer-Encoding from the client, spooling the request body when needed to provide a Content-Length to the backend. PR 57087. [Yann Ylavic] *) mod_proxy: Put mod_proxy_{connect,wstunnel} tunneling code in common in proxy_util. [Yann Ylavic] *) mod_proxy: Improve tunneling loop to support half closed connections and pending data draining (for protocols like rsync). PR 61616. [Yann Ylavic] *) mod_proxy_http: handle Upgrade request, 101 (Switching Protocol) response and switched protocol forwarding. [Yann Ylavic] *) mod_proxy_wstunnel: Leave Upgrade requests handling to mod_proxy_http, allowing for (non-)Upgrade negotiation with the origin server. [Yann Ylavic] *) mod_proxy: Allow ProxyErrorOverride to be restricted to specific status codes. PR63628. [Martin Drößler <mail martindroessler.de>] *) core: Add ReadBufferSize, FlushMaxThreshold and FlushMaxPipelined directives. [Yann Ylavic] *) core: Ensure that aborted connections are logged as such. PR 62823 [Arnaud Grandville <contact@grandville.net>] *) http: Allow unknown response status' lines returned in the form of "HTTP/x.x xxx Status xxx". [Yann Ylavic] *) mod_proxy_http: Fix 100-continue deadlock for spooled request bodies, leading to Request Timeout (408). PR 63855. [Yann Ylavic] *) core: Remove headers on 304 Not Modified as specified by RFC7234, as opposed to passing an explicit subset of headers. PR 61820. [Giovanni Bechis] *) mpm_event: Don't reset connections after lingering close, restoring prior to 2.4.28 behaviour. [Yann Ylavic] *) mpm_event: Kill connections in keepalive state only when there is no more workers available, not when the maximum number of connections is reached, restoring prior to 2.4.30 behaviour. [Yann Ylavic] *) mod_unique_id: Use base64url encoding for UNIQUE_ID variable, avoiding the use of '@'. PR 57044. [Michael Kaufmann <apache-bugzilla michael-kaufmann.ch>] *) mod_rewrite: Extend the [CO] (cookie) flag of RewriteRule to accept a SameSite attribute. [Eric Covener] *) mod_proxy: Add proxy check_trans hook. This allows proxy modules to decline request handling at early stage. *) mod_proxy_wstunnel: Decline requests without an Upgrade header so ws/wss can be enabled overlapping with later http/https. *) mod_http2: Log requests and sent the configured error response in case of early detected errors like too many or too long headers. [Ruediger Pluem, Stefan Eissing] *) mod_md: Lowered the required minimal libcurl version from 7.50 to 7.29 as proposed by <alexander.gerasimov codeit.pro>. [Stefan Eissing] *) mod_ssl: Fix request body buffering with PHA in TLSv1.3. [Joe Orton] *) mod_proxy_uwsgi: Fix a crash when sending environment variables with no value. PR 64598 [Ruediger Pluem] *) mod_proxy: Recognize parameters from ProxyPassMatch workers with dollar substitution, such that they apply to the backend connection. Note that connection reuse is disabled by default to avoid compatibility issues. [Takashi Sato, Jan Kaluza, Eric Covener, Yann Ylavic, Jean-Frederic Clere]

Now uses release version for pkg-config file (same as cmake would do). Changelog: * Unicode 14 support ([#233]). * Support GNUInstallDirs in CMake build ([#159]). * cmake build now installs pkg-config file ([#224]). * Various build and portability improvements.

@brendon

2.14.0 (2022-02-11) Features * The #to_text method on Loofah::HTML::{Document,DocumentFragment} replaces <br> line break elements with a newline. [#225] 2.15.0 (2022-03-14) Features * Expand set of allowed protocols to include sms:. [#228] (Thanks, @brendon!) 2.16.0 (2022-04-01) Features * Allow MathML elements menclose and ms, and MathML attributes dir, href, lquote, mathsize, notation, and rquote. [#231] (Thanks, @nick-desteffen!) 2.17.0 (2022-04-28) Features * Allow ARIA attributes. [#232, #233] (Thanks, @nick-desteffen!) 2.18.0 (2022-05-11) Features * Allow CSS property aspect-ratio. [#236] (Thanks, @louim!)

37.1 (2022-09-03) ----------------- * Allow HTML5 `nav` tag through cleaner (#259) 37.0 (2022-08-21) ----------------- * Remove command line example from docs (#197) * Multiple pyproject.toml fixes (#251) * Confirm handling multiple inline strong (#252) * Convert RST output to HTML5 (#253) * Add Typing to classifiers (#254) * Development tweaks - coverage reporting, actions updates (#255) * Add test confirming behavior with unknown lexers (#256) 36.0 (2022-08-06) ----------------- * Enable gitpod development (#238) * Allow rst admonitions to render (#242) * Add badges to README (#243) * Update codebase for modern Python (#244) * Fix table cell spans (#245) * Allow ``math`` directive in rst (#246) * Preserve ``lang`` attribute in ``pre`` (#247) 35.0 (2022-04-19) ----------------- * Add py.typed to the built wheel (#228) * Use isolated build for tox (#229) * Fix renderer ignore (#230) * Remove legacy check command and distutils (#233) * Emit a warning when no content is rendered (#231) * Drop support for Python 3.6 (#236) * Update html attribute order in tests (#235) 34.0 (2022-03-11) ----------------- * Add static types (#225) 33.0 (2022-03-05) ----------------- * Support cmarkgfm>=0.8.0 (#224) 33.0 (2022-02-05) ----------------- * Support cmarkgfm>=0.8.0 (#224) * Support Python 3.10 32.0 (2021-12-13) ----------------- * Allow start attribute in ordered lists (#216) * No limit rendering RST one column field names (#219) 31.0 (2021-12-09) ----------------- * Render disabled checkboxes from Markdown (#217) 30.0 (2021-09-30) ----------------- * support cmarkgfm>=0.6.0 (#209)

@nbenn

# pillar 1.8.1 ## Features - New `pillar.advice` option to turn off advice in the footer, see `?pillar_options`. Now off by default in non-interactive mode (#577). # pillar 1.8.0 ## Display - Column names that are abbreviated in the header gain a footnote and are printed in full in the footer (#483), after the extra columns (#548). If a column name in the header is abbreviated, all backticks are removed (#525). The new `"pillar.superdigit_sep"` option that determines the string used to separate footnote from column name in the footer (#553). - The default value of the `pillar.min_title_width` option is changed to 5. This means that effectively the width of a pillar is decided only by the data. Use `options(pillar.min_title_width = 15)` to restore the previous default, see also `?pillar_options` for details (#531). - Offer advice in the footer on how to print all columns or rows (#567). - Avoid aligning `NA` inside quotes for very short character vectors (#562). ## Features - Pick up `"pillar_focus"` attribute on printing to define focus columns (#549). - New `ctl_new_rowid_pillar()` generic and default method for customizing the appearance of row IDs (#260, #550, @nbenn). ## Bug fixes - Fix printing of `Surv` and `Surv2` objects (#561). - Fix wording for corner case `max_extra_cols = 1` (#535). - Remove excess underlines for `bit64::integer64()` data of different magnitude (#517, #529). ## Documentation - `ctl_new_pillar_list()` is documented on a separate help page (#516). - Remove outdated detail in `?tbl_sum` (@IndrajeetPatil, #565). ## Chore - Drop crayon dependency (#559). - Import ellipsis from rlang (#554). - Skip test that requires lubridate if it's not installed (#505, @MichaelChirico). ## API - Soft-deprecate `colonnade()`, `squeeze()` and `extra_cols()` (#496). - Require rlang 1.0.1 (#512). # pillar 1.7.0 ## Breaking changes - `colonnade()` is now soft-deprecated (#485). - `expect_known_display()` and `is_vector_s3()` are now deprecated (#460, #501). - `new_pillar()` deprecates `extra` argument (#497). ## Features - Focus columns specified via the `focus` argument to `tbl_format_setup()` are kept in their original place and shown with the maximum width and with the "type" component underlined (#465). ## Bug fixes - Update `s3_register()` to use new implementation from rlang, this fixes CRAN checks related to `scale_type()` (#462). ## Internal - Single pillars constructed with `pillar()` use only as much width as required when printing (#484). # pillar 1.6.5 ## Breaking changes - New `ctl_new_pillar_list()`, supersedes `ctl_new_compound_pillar()` (#433). ## Features - If some but not all sub-columns of a data frame or matrix column are shown, the names and types of the remaining columns are displayed in the footer (#365, #444). - `num(fixed_exponent = ...)` is now represented with the fixed exponent in the pillar header, and in the title in ggplot2 (#307). - `tbl_format_setup()` gains `focus` argument that expects a character vector of column names. Focus columns are moved to the front and separated from the main columns by a subtle vertical line (#384). - New `scale_x_num()` and `scale_y_num()`. If a column created with `num()` is used in a ggplot, the x and y scale will be formatted automatically according to to the specification (#400, #404). - List columns omit size information if horizontal space is insufficient (#392). - If the column title of a backticked column is abbreviated, the trailing backtick is still printed (#391). - `new_pillar_shaft_simple()` gains `short_formatted` argument that contains the data to be used if horizontal space is insufficient (#389). - Default `obj_sum()` method returns abbreviation in attribute of return value (#390). ## Bug fixes - Extra columns in footer show backticks again if they are non-syntactic (#393). - Fixed some cases for combinations of printed width and `getOption("width")` (#432). - Fix support for `nanotime::nanotime()` classes (#378, #380). ## Documentation - `?num` and `?char` now point to tibble (#382). ## Internal - Use eager registration via `NAMESPACE` for own methods for classes from other packages. - Reworked formatting routine, now using a visitor-based approach with in-order iteration over all pillars. The only visible changes are that usage of free space (in the case of limited space) has slightly improved (#435). - Prepared removal of dependency on the crayon package (#233, #406). - Use snapshot variants, requires testthat >= 3.1.1 (#387). - Replace internal `"pillar_vertical"` class with `glue::as_glue()` (#279). # pillar 1.6.4 ## Bug fixes - Fix printing for some tibbles where a fixed-width column is followed by a column with variable width (#366). - Avoid nested backtick blocks in vignette. ## Breaking changes - `num()` requires an integerish `digits` argument (#362). ## Documentation - Link to tibble vignettes and documentation pages. # pillar 1.6.3 - Avoid blanket import for lifecycle package for compatibility with upcoming rlang (#368, @romainfrancois).

@nyxsorcerer

www/apache24: security update Revisions pulled up: - www/apache24/Makefile 1.115 - www/apache24/PLIST 1.36 - www/apache24/distinfo 1.54 - www/apache24/patches/patch-configure 1.3 ------------------------------------------------------------------- Module Name: pkgsrc Committed By: adam Date: Fri Jan 20 14:03:16 UTC 2023 Modified Files: pkgsrc/www/apache24: Makefile PLIST distinfo pkgsrc/www/apache24/patches: patch-configure Log Message: apache24: updated to 2.4.55 Changes with Apache 2.4.55 *) SECURITY: CVE-2022-37436: Apache HTTP Server: mod_proxy prior to 2.4.55 allows a backend to trigger HTTP response splitting (cve.mitre.org) Prior to Apache HTTP Server 2.4.55, a malicious backend can cause the response headers to be truncated early, resulting in some headers being incorporated into the response body. If the later headers have any security purpose, they will not be interpreted by the client. Credits: Dimas Fariski Setyawan Putra (@nyxsorcerer) *) SECURITY: CVE-2022-36760: Apache HTTP Server: mod_proxy_ajp Possible request smuggling (cve.mitre.org) Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') vulnerability in mod_proxy_ajp of Apache HTTP Server allows an attacker to smuggle requests to the AJP server it forwards requests to. This issue affects Apache HTTP Server Apache HTTP Server 2.4 version 2.4.54 and prior versions. Credits: ZeddYu_Lu from Qi'anxin Research Institute of Legendsec at Qi'anxin Group *) SECURITY: CVE-2006-20001: mod_dav out of bounds read, or write of zero byte (cve.mitre.org) A carefully crafted If: request header can cause a memory read, or write of a single zero byte, in a pool (heap) memory location beyond the header value sent. This could cause the process to crash. This issue affects Apache HTTP Server 2.4.54 and earlier. *) mod_dav: Open the lock database read-only when possible. *) mod_proxy_http2: apply the standard httpd content type handling to responses from the backend, as other proxy modules do. *) mod_dav: mod_dav overrides dav_fs response on PUT failure. *) mod_proxy_hcheck: Honor worker timeout settings. [Yann Ylavic] *) mod_http2: version 2.0.10 of the module, synchronizing changes with the gitgub version. This is a partial rewrite of how connections and streams are handled. - an APR pollset and pipes (where supported) are used to monitor the main connection and react to IO for request/response handling. This replaces the stuttered timed waits of earlier versions. - H2SerializeHeaders directive still exists, but has no longer an effect. - Clients that seemingly misbehave still get less resources allocated, but ongoing requests are no longer disrupted. - Fixed an issue since 1.15.24 that "Server" headers in proxied requests were overwritten instead of preserved. - A regression in v1.15.24 was fixed that could lead to httpd child processes not being terminated on a graceful reload or when reaching MaxConnectionsPerChild. When unprocessed h2 requests were queued at the time, these could stall. - Improved information displayed in 'server-status' for H2 connections when Extended Status is enabled. Now one can see the last request that IO operations happened on and transferred IO stats are updated as well. - When reaching server limits, such as MaxRequestsPerChild, the HTTP/2 connection send a GOAWAY frame much too early on new connections, leading to invalid protocol state and a client failing the request. The module now initializes the HTTP/2 protocol correctly and allows the client to submit one request before the shutdown via a GOAWAY frame is being announced. - :scheme pseudo-header values, not matching the connection scheme, are forwarded via absolute uris to the http protocol processing to preserve semantics of the request. Checks on combinations of pseudo-headers values/absence have been added as described in RFC 7540. Fixes #230. - A bug that prevented trailers (e.g. HEADER frame at the end) to be generated in certain cases was fixed. See #233 where it prevented gRPC responses to be properly generated. - Request and response header values are automatically stripped of leading and trialing space/tab characters. This is equivalent behaviour to what Apache httpd's http/1.1 parser does. The checks for this in nghttp2 v1.50.0+ are disabled. - Extensive testing in production done by Alessandro Bianchi (@alexskynet) on the v2.0.x versions for stability. Many thanks! *) mod_proxy_http2: fixed #235 by no longer forwarding 'Host:' header when request ':authority' is known. Improved test case that did not catch that the previous 'fix' was incorrect. *) mod_proxy_hcheck: hcmethod now allows for HTTP/1.1 requests using GET11, HEAD11 and/or OPTIONS11. [Jim Jagielski] *) mod_proxy: The AH03408 warning for a forcibly closed backend connection is now logged at INFO level. [Yann Ylavic] *) mod_ssl: When dumping the configuration, the existence of certificate/key files is no longer tested. [Joe Orton] *) mod_authn_core: Add expression support to AuthName and AuthType. [Graham Leggett] *) mod_ssl: when a proxy connection had handled a request using SSL, an error was logged when "SSLProxyEngine" was only configured in the location/proxy section and not the overall server. The connection continued to work, the error log was in error. *) mod_proxy_hcheck: Re-enable workers in standard ERROR state. *) mod_proxy_hcheck: Detect AJP/CPING support correctly. *) mod_http2: Export mod_http2.h as public header. [Stefan Eissing] *) mod_md: a new directive `MDStoreLocks` can be used on cluster setups with a shared file system for `MDStoreDir` to order activation of renewed certificates when several cluster nodes are restarted at the same time. Store locks are not enabled by default. Restored curl_easy cleanup behaviour from v2.4.14 and refactored the use of curl_multi for OCSP requests to work with that. Fixes <icing/mod_md#293>. *) core: Avoid an overflow on large inputs in ap_is_matchexp. *) mod_heartmonitor: Allow "HeartbeatMaxServers 0" to use file based storage instead of slotmem. Needed after setting HeartbeatMaxServers default to the documented value 10 in 2.4.54. *) mod_dav: DAVlockDiscovery option to disable WebDAV lock discovery This is a game changer for performances if client use PROPFIND a lot. To generate a diff of this commit: cvs rdiff -u -r1.114 -r1.115 pkgsrc/www/apache24/Makefile cvs rdiff -u -r1.35 -r1.36 pkgsrc/www/apache24/PLIST cvs rdiff -u -r1.53 -r1.54 pkgsrc/www/apache24/distinfo cvs rdiff -u -r1.2 -r1.3 pkgsrc/www/apache24/patches/patch-configure

@rdmark

Upstream's changelist: [2.2] fix CVE-2022-45188 by @rdmark in #254 [2.2] papd: Fix incorrect type in printer status check by @smagoun in #320 [2.2] Improvements to the macusers script by @rdmark in #263 [2.2] man pages: create an a2boot man page by @rdmark in #235 [2.2] Improve systemd service dependencies, improving stability at boot on wifi only hosts by @rdmark in #233 [2.2] Update manual to match current behavior and correct typos by @rdmark in #230 #234 #257 [2.2] Remove release notes code since it's no longer used by @rdmark in #256 Create Github workflow that builds, tests, and runs static analysis by @rdmark in #255 #290 #314

Pkgsrc changes: * Update MAINTAINER mail address. * Minior cleanup. Upstream changes: Changelog for restic 0.15.2 (2023-04-24) * Sec #4275: Update golang.org/x/net to address CVE-2022-41723 * Fix #2260: Sanitize filenames printed by `backup` during processing * Fix #4211: Make `dump` interpret `--host` and `--path` correctly * Fix #4239: Correct number of blocks reported in mount point * Fix #4253: Minimize risk of spurious filesystem loops with `mount` * Enh #4180: Add release binaries for riscv64 architecture on Linux * Enh #4219: Upgrade Minio to version 7.0.49 Changelog for restic 0.15.1 (2023-01-30) * Fix #3750: Remove `b2_download_file_by_name: 404` warning from B2 backend * Fix #4147: Make `prune --quiet` not print progress bar * Fix #4163: Make `self-update --output` work with new filename on Windows * Fix #4167: Add missing ETA in `backup` progress bar * Enh #4143: Ignore empty lock files Changelog for restic 0.15.0 (2023-01-12) * Fix #2015: Make `mount` return exit code 0 after receiving Ctrl-C / SIGINT * Fix #2578: Make `restore` replace existing symlinks * Fix #2591: Don't read password from stdin for `backup --stdin` * Fix #3161: Delete files on Backblaze B2 more reliably * Fix #3336: Make SFTP backend report no space left on device * Fix #3567: Improve handling of interrupted syscalls in `mount` command * Fix #3897: Fix stuck `copy` command when `-o <backend>.connections=1` * Fix #3918: Correct prune statistics for partially compressed repositories * Fix #3951: Make `ls` return exit code 1 if snapshot cannot be loaded * Fix #4003: Make `backup` no longer hang on Solaris when seeing a FIFO file * Fix #4016: Support ExFAT-formatted local backends on macOS Ventura * Fix #4085: Make `init` ignore "Access Denied" errors when creating S3 buckets * Fix #4100: Make `self-update` enabled by default only in release builds * Fix #4103: Don't generate negative UIDs and GIDs in tar files from `dump` * Chg #2724: Include full snapshot ID in JSON output of `backup` * Chg #3929: Make `unlock` display message only when locks were actually removed * Chg #4033: Don't print skipped snapshots by default in `copy` command * Chg #4041: Update dependencies and require Go 1.18 or newer * Enh #14: Implement `rewrite` command * Enh #79: Restore files with long runs of zeros as sparse files * Enh #1078: Support restoring symbolic links on Windows * Enh #1734: Inform about successful retries after errors * Enh #1866: Improve handling of directories with duplicate entries * Enh #2134: Support B2 API keys restricted to hiding but not deleting files * Enh #2152: Make `init` open only one connection for the SFTP backend * Enh #2533: Handle cache corruption on disk and in downloads * Enh #2715: Stricter repository lock handling * Enh #2750: Make backup file read concurrency configurable * Enh #3029: Add support for `credential_process` to S3 backend * Enh #3096: Make `mount` command support macOS using macFUSE 4.x * Enh #3124: Support JSON output for the `init` command * Enh #3899: Optimize prune memory usage * Enh #3905: Improve speed of parent snapshot detection in `backup` command * Enh #3915: Add compression statistics to the `stats` command * Enh #3925: Provide command completion for PowerShell * Enh #3931: Allow `backup` file tree scanner to be disabled * Enh #3932: Improve handling of ErrDot errors in rclone and sftp backends * Enh #3943: Ignore additional/unknown files in repository * Enh #3955: Improve `backup` performance for small files Changelog for restic 0.14.0 (2022-08-25) * Fix #2248: Support `self-update` on Windows * Fix #3428: List snapshots in backend at most once to resolve snapshot IDs * Fix #3432: Fix rare 'not found in repository' error for `copy` command * Fix #3681: Fix rclone (shimmed by Scoop) and sftp not working on Windows * Fix #3685: The `diff` command incorrectly listed some files as added * Fix #3716: Print "wrong password" to stderr instead of stdout * Fix #3720: Directory sync errors for repositories accessed via SMB * Fix #3736: The `stats` command miscalculated restore size for multiple snapshots * Fix #3772: Correctly rebuild index for legacy repositories * Fix #3776: Limit number of key files tested while opening a repository * Fix #3861: Yield error on invalid policy to `forget` * Chg #1842: Support debug log creation in release builds * Chg #3295: Deprecate `check --check-unused` and add further checks * Chg #3680: Update dependencies and require Go 1.15 or newer * Chg #3742: Replace `--repo2` option used by `init`/`copy` with `--from-repo` * Enh #21: Add compression support * Enh #1153: Support pruning even when the disk is full * Enh #2162: Adaptive IO concurrency based on backend connections * Enh #2291: Allow pack size customization * Enh #2295: Allow use of SAS token to authenticate to Azure * Enh #2351: Use config file permissions to control file group access * Enh #2696: Improve backup speed with many small files * Enh #2907: Make snapshot directory structure of `mount` command customizable * Enh #2923: Improve speed of `copy` command * Enh #3114: Optimize handling of duplicate blobs in `prune` * Enh #3465: Improve handling of temporary files on Windows * Enh #3475: Allow limiting IO concurrency for local and SFTP backend * Enh #3484: Stream data in `check` and `prune` commands * Enh #3709: Validate exclude patterns before backing up * Enh #3729: Display full IDs in `check` warnings * Enh #3773: Optimize memory usage for directories with many files * Enh #3819: Validate include/exclude patterns before restoring * Enh #3837: Improve SFTP repository initialization over slow links Changelog for restic 0.13.0 (2022-03-26) * Fix #1106: Never lock repository for `list locks` * Fix #2345: Make cache crash-resistant and usable by multiple concurrent processes * Fix #2452: Improve error handling of repository locking * Fix #2738: Don't print progress for `backup --json --quiet` * Fix #3382: Make `check` command honor `RESTIC_CACHE_DIR` environment variable * Fix #3488: `rebuild-index` failed if an index file was damaged * Fix #3518: Make `copy` command honor `--no-lock` for source repository * Fix #3556: Fix hang with Backblaze B2 on SSL certificate authority error * Fix #3591: Fix handling of `prune --max-repack-size=0` * Fix #3601: Fix rclone backend prematurely exiting when receiving SIGINT on Windows * Fix #3619: Avoid choosing parent snapshots newer than time of new snapshot * Fix #3667: The `mount` command now reports symlinks sizes * Chg #3519: Require Go 1.14 or newer * Chg #3641: Ignore parent snapshot for `backup --stdin` * Enh #233: Support negative include/exclude patterns * Enh #1542: Add `--dry-run`/`-n` option to `backup` command * Enh #2202: Add upload checksum for Azure, GS, S3 and Swift backends * Enh #2388: Add warning for S3 if partial credentials are provided * Enh #2508: Support JSON output and quiet mode for the `diff` command * Enh #2594: Speed up the `restore --verify` command * Enh #2656: Add flag to disable TLS verification for self-signed certificates * Enh #2816: The `backup` command no longer updates file access times on Linux * Enh #2880: Make `recover` collect only unreferenced trees * Enh #3003: Atomic uploads for the SFTP backend * Enh #3127: Add xattr (extended attributes) support for Solaris * Enh #3429: Verify that new or modified keys are stored correctly * Enh #3436: Improve local backend's resilience to (system) crashes * Enh #3464: Skip lock creation on `forget` if `--no-lock` and `--dry-run` * Enh #3490: Support random subset by size in `check --read-data-subset` * Enh #3508: Cache blobs read by the `dump` command * Enh #3511: Support configurable timeout for the rclone backend * Enh #3541: Improve handling of temporary B2 delete errors * Enh #3542: Add file mode in symbolic notation to `ls --json` * Enh #3593: Improve `copy` performance by parallelizing IO

@dermotbradley

Changelog (taken from https://github.com/eudev-project/eudev/releases/tag/v3.2.12): Release 3.2.12 What's Changed rules/50-udev-default.rules: add PTP entry for Hyper-V/Azure by @dermotbradley in #218 Add the BUILD instructions for Gentoo by @lu-zero in #224 Fix warnings by @bbonev in #222 udev: add udev_dir as synonym of udevdir by @oreo639 in #225 build: Remove dead g-i-r configuration by @akiernan in #231 Hwdb.7 by @bbonev in #221 Precompiled hwdb by @bbonev in #223 Merge suitable rules changes from systemd by @bbonev in #220 Merge hwdb from systemd by @bbonev in #219 Fix problems detected by fortified builds by @bbonev in #232 Avoid warning on 32bit by @bbonev in #233 Systemd PR 24353 by @bbonev in #239 Do not free a static string by @bbonev in #238 man: udev.7, mention /usr/lib with split-usr by @omnivagant in #246 Missing tools by @bbonev in #240 Fix compile-time issue on very old kernels by @cockroach in #247

@janbrummer

What's Changed Guard PxManager test with pacrunner-duktape option by @janbrummer in #215 Fix build on NetBSD. by @0-wiz-0 in #220 Install libpxbackend into pkglibdir by @amigadave in #223 Move glib2 inclusion out of c++ protection. by @0-wiz-0 in #227 Replace libsoup with glib socket service functions by @janbrummer in #228 Enforce online state for tests by @janbrummer in #229 Use glib-object header instead of gio by @janbrummer in #230 Fix libproxy rpath by @janbrummer in #231 Draft: Improve ignore checks by @janbrummer in #232 Release 0.5.1 by @janbrummer in #233

Changes in 3.4.0.0 [Andreas Abel, 2023-06-20] * New wrappers to lex strict Text: strict-text, posn-strict-text, monad-strict-text and monadUserState-strict-text (PR #240). These complement the existing wrappers for String and ByteString. * Tested with GHC 7.0 - 9.6.2. Changes in 3.3.0.0 [Andreas Abel, 2023-05-25] * Add an Ord instance to AlexPosn (Issue #233). This breaks developments that define their own (orphan) instance Ord AlexPosn. If this is the derived stock instance, the fix is to delete the orphan instance and require build-tool-depends: alex:alex >= 3.3.0.0. * Switch to Haskell PVP versioning with four digits. * Tested with GHC 7.0 - 9.6.1. Change in 3.2.7.4 [Andreas Abel, 2023-05-02] * The user-supplied "epilogue" Haskell code is now put last in the generated file. This enables use of Template Haskell in the epilogue. (Issue #125.) * Tested with GHC 7.0 - 9.6.1. Change in 3.2.7.3 [Andreas Abel, 2023-04-14] * Amend last change (3.2.7.2) so that Alex-generated code does not need LANGUAGE PatternGuards. * Tested with GHC 7.0 - 9.6.1. Change in 3.2.7.2 [Andreas Abel, 2023-04-03] * Fix bug with out-of-bound access to alex_check array. (Surfaced with GHC's JS backend, fixed by Sylvain Henry in PR #223.) * Tested with GHC 7.0 - 9.6.1.

15.0.0 (2022-01-04) Added * [Ruby,JavaScript,Go] Add bigdecimal, biginteger parameter types (#42) * [.NET] Implementation of Cucumber Expressions by porting the Java parser (#1743) * [Python] Added Python Cucumber Expressions (#65) Changed * [Go] Parameters of type {float} are now parsed as float32 (previously it was float64). Use {double} if you need float64. (#42) 15.0.1 (2022-01-04) Fixed * Fixed release scripts 15.0.2 (2022-03-15) Fixed * Add missing name field in CommonJS package file (#87) 15.1.0 (2022-04-21) Added * [JavaScript] Add CucumberExpression.ast and expose the AST types. 15.1.1 (2022-04-21) Fixed * [JavaScript] Make CucumberExpression.ast public (it was accidentally private in 15.1.0) 15.2.0 (2022-05-24) Added * [JavaScript] Add ParameterInfo (#124) Fixed * [.NET] Fix casing in "word" parameter type constant 16.0.0 (2022-06-12) Changed * [JavaScript] The ParameterType constructor's regexps parameter has a new type: type Regexps = StringOrRegExp | readonly StringOrRegExp[]; type StringOrRegExp = string | RegExp. 16.0.1 (2022-11-06) Fixed * [JavaScript] The ParameterType constructor's transform, useForSnippets and preferForRegexpMatch should be optional. (#178) 16.1.0 - 2022-11-28 Added * [Java] Enabled reproducible builds * [JavaScript] Added ParameterType.builtin. This is to allow JSON serialization of only the non-builtin parameter types. 16.1.1 - 2022-12-08 Fixed * [Java] Improve expression creation performance (#187, #189) 16.1.2 (2023-01-17) Fixed * [Java] Improve cucumber expression creation performance (#202) 17.0.0 (2023-10-06) Changed * [JavaScript] Added TypeScript source to the package (#211) * [Ruby] Minimum supported ruby is now 2.5+ (#232) * [Ruby] Large suite wide refactor for basic rubocop compliance (#233 #235) * [Ruby] Expose ParameterType#transformer as a new public reader (#234) * [Ruby] Remove ParameterType#prefer_for_regexp_match? and ParameterType#use_for_snippets? -> Use their standard reader equivalents instead (Remove the ?) (#234) 17.0.1 (2023-11-24) Fixed * [JavaScript] Fix import paths lacking file suffix (#243) * [Ruby] Fixed up Layout rubocop autofixes

c4befd0 Merge pull request #223 from danielgtaylor/dependabot/go_modules/golang.org/x/net-0.17.0 2db8c10 Merge pull request #225 from exoscale/cached-transport c0f180c Merge pull request #226 from danielgtaylor/dependabot/go_modules/golang.org/x/image-0.10.0 b75a307 Merge pull request #227 from cbliard/patch-1 a92c7db Merge pull request #229 from danielgtaylor/redirect-url 21a9017 Merge pull request #233 from danielgtaylor/hide-secrets-input d16bdd7 Merge pull request #234 from danielgtaylor/clear-auth-cache 0a1f26c Update docs to use go install instead of go get 00b34d8 chore(deps): bump golang.org/x/image from 0.5.0 to 0.10.0 8135dc8 chore(deps): bump golang.org/x/net from 0.7.0 to 0.17.0 ac559b9 chore: add configurable redirect_url, preserve default value 97c3636 feat: add command to clear auth token cache 13fe1aa fix(api): Do not cache server responses when refreshing API defs 1ecdb09 fix: hide secret input during API config, fixes #232 9a25266 fix: use better url parsing

@abinoam

3.0.0 / 2024-01-05 * PR #265 - Change Readline for Reline for Ruby 3.3 compat (@abinoam) * PR #264 - Add abbrev gem as dependency (@mathieujobin) * PR #263 - Release 3.0.0.pre.1 * Raise minimum Ruby version requirement to 3.0 * PR #262 - Do not call stty on non-tty (@kbrock) * PR #260 / I #43 - Ctrl-U (erase line) handling (@abinoam, issue by @gutenye) * PR #259 / I #236 - Handle Ctrl-C when Question#echo = false (@abinoam, @Fahhetah, issue by @aspyct) * PR #258 / I #246 - Add validation class support (@abinoam, issue by @Joshfindit) - Make it dry-types compatible through the use of #valid? - Solve the multiple answers in one line problem with a combination of custom coercion (parser) and custom validation * PR #257 / I #233 - Show Question#default hint for non String values (@abinoam, issue by @branch14) - Add Question#default_hint_show to allow disabling it. * PR #256 / I #249 - Fix Array validation in Question#in (@abinoam, issue by @esotericpig) 3.0.1 (2024-01-20) * PR #268 - Remove unused abbrev dependency (@zvkemp)

@patrickt

v0.20.1 What's Changed Switch to GitHub Actions CI. by @patrickt in #166 Add the same PR template as for tree-sitter-javascript by @mjambon in #169 Fixed CRLF behavior for tests by @ahelwer in #188 Fix CRLF behavior mismatch during error recovery by @ahelwer in #189 Endless methods by @aibaars in #190 Add forwarded parameters/arguments by @aibaars in #191 Disable C++ exceptions when compile for wasm32-wasi by @glebpom in #192 Pattern matching by @aibaars in #193 Improve grammar after the introduction of case-in pattern matching by @aibaars in #197 Add parenthesized_pattern by @aibaars in #198 Ruby 3.1 features by @aibaars in #201 Update to Node 16 by @mattmassicotte in #206 C bindings by @mattmassicotte in #199 Parser improvements by @aibaars in #207 CI: use windows-2019 for now by @aibaars in #209 Add named rules for the various call operators by @aibaars in #211 Update Makefile by @mattmassicotte in #213 Allow newer tree-sitter upstream library. by @patrickt in #215 Bump tree-sitter version to 0.20 by @hendrikvanantwerpen in #214 Fix parse error in 'foo! if condition' by @aibaars in #216 Parser improvements: != operator and key: [line_break] by @aibaars in #220 Some improvements to the parser by @aibaars in #222 Wrap class, module, method, and block bodies in a named node by @npezza93 in #224 Parser improvments: quoted heredocs and short-hand interpolations by @aibaars in #225 Add body field for end-less methods by @aibaars in #226 Swift bindings by @mattmassicotte in #227 fix: rename reserved word “arguments” by @drwpow in #229 Bump versions in #208 Anonymous (hash) splat arguments by @aibaars in #233 One-line pattern matching by @aibaars in #194 Scanner: do not skip LINE_BREAKs before .. and ... by @aibaars in #238 Fix non-termination in parser by @aibaars in #239 Fix scanning of division vs regex before line ending by @aibaars in #246 Fix 'case' with newlines before expression by @aibaars in #247

@Rio6

Changelog: 2.13.c.5 Highlights New features New custom key commands (#256) Support basic control chars (\n, \r, \b, \t) in text options (#238) Added support for the XF86AudioMicMute media key (#273) Added tab completion for Bash and Zsh (#230) Perf improvements Lazy-load slideshow images (#242) Disable debug build by default; faster blurring (#251) Changes by PR fix --max and --fill not scaling image when the image has the same aspect ratio as the screen by @Rio6 in #228 Add link to new active port by @loralighte in #233 chore: rename variables for examples, remove unused variables by @graves501 in #229 fix(typo): fix wrong greeter_y_expr and typo error message in arguments parser. by @cmsxbc in #237 Tab completion (#204) by @JezerM in #230 Slideshow images loaded when needed (#241) by @JezerM in #242 feat(control char): add basic control char support by @cmsxbc in #238 build: disable debug and sanitizers by default by @alanswanson in #251 Shell command options for media keys by @jclds139 in #256 Support for XF86AudioMicMute by @kwesthaus in #273 Fix: Remove breaking space in zsh completion by @kwesthaus in #274

Hello all! This will likely be the final release of Amfora. For more information, please see my blog post, https://www.makeworld.space/2023/08/bye_gemini.html Thanks to all the users and especially the contributors, who made this project the personal success it was for me. The following is copied from the CHANGELOG.md file in this repo. Added Syntax highlighting for preformatted text blocks with alt text (#252, #263, wiki page) Client certificates can be restricted to certain paths of a host (#115) header config option in [subscriptions] to allow disabling the header text on the subscriptions page (#191) Selected link and scroll position stays for non-cached pages (#122) Keybinding to open URL with URL handler instead of configured proxy (#143) include theme key to import themes from an external file (#154, #290) Support SOCKS5 proxying by setting AMFORA_SOCKS5 environment variable (#155) When bookmarking a page, the first level one heading is suggested as the name (#267, #293) Confirmation prompts for URL schemes in new [url-prompts] config section (#301, #302) Changed Center text automatically, removing left_margin from the config (#233) max_width defaults to 80 columns instead of 100 (#233) Tabs have the domain of the current page instead of numbers (#202) Closing Amfora with q was removed in favor of Shift-q (#243) Paging up or down scrolls by 50% instead of 75%, to match less (#303) Update deps, require Go 1.17 (#336) Show local directory index file if available (#319) Updated Project Gemini URLs (#342) Fixed Modal can't be closed when opening non-gemini text URLs from the commandline (#283, #284) External programs started by Amfora remain as zombie processes (#219) Prevent link lines (and other types) from being wider than the max_width setting (#280) new:7 on new tab page fails to open link (#306) Slashes aren't decoded in redirect URLs (#322, #324) Typing localhost in the bottom bar actually loads localhost instead of searching (#326, #327)

Features / Improvements ✨ Links should be "openable" (#43) Add support for previewing images in room scrollback (#108) Enable sending strikethrough text (#141) Support composing messages in an external editor (#155) Add support for logging in with SSO (#160) Add new command for logging out of iamb session (#162) Support custom sorting for room and user lists (#170) feat: desktop file for GUI environment launchers (#178) Add a new :chats window that lists both DMs and Rooms (#184) Add support for desktop notifications (#192) Support coloring entire message with the user color (#193) Indicate and sort on rooms with unread messages (#205) Support following the .well-known entries for a username's domain (#209) Add support for threads (#216) Add support for custom key macros (#217) Support displaying shortcodes instead of Emojis in messages (#222) Support configuring user gutter width (#223) Enable autolinking when rendering Markdown (#226) Support notifications via terminal bell (#227) Support loading a TOML configuration (#229) Add commands for importing and exporting room keys (#233) Documentation / README updates 📚 Fix example config (#140) Add more documentation (#166) Update README.md to add openSUSE Tumbleweed (#191) Add snap install instructions (#210) Add example of mapping "V" to toggle message selection mode (#195) Update manual pages to use mdoc(7) and list commands (#230) Add an icon for iamb (#232) Bug Fixes 🐞 Fix not showing display names in already synced rooms (#171) Fix image preview offset (#179) Update to ratatui-image@0.4.3 to use native sixel lib (#181) Fix truncation/padding for non-ASCII sender names (#182) Fix crash on small image preview (#198) Download rooms keys from backups if they exist (#211) Ignore key releases on platforms that support it (#220) Provide better error message for M_UNKNOWN_TOKEN (#101) Fix entering thread view when there's no messages yet (#224) Fix image previews in replies (#225) Reset message bar when ! is passed with :cancel (#231) Wait to log in before starting background tasks (#234) Performance ⏱️ Reduce CPU usage by instead fetching read receipts after related sync events (#168) Load receipts for room before acquiring lock (#213) Building / Housekeeping 🧹 Update Cargo.lock file (#157) Update modalkit for newer ratatui and crossterm Fix CI workflow (#164) Use mozilla-actions/sccache-action for caching builds (#169) Enable direnv for Nix flakes (#183) Update to matrix-sdk@0.7.1 (#200) Rename Nix flake build input from pkgconfig to pkg-config (#203) Update modalkit dependencies (#204) Move LTO into its own "release-lto" profile (#207) Fix Nix flake hashes (#206) Pull in modalkit repository with a Cargo.lock (#208) Nix flake updates (#214) Update to ratatui-image@0.8.1 (#215) Support linking against system OpenSSL (#218) GitHub workflow should use --locked to avoid broken Cargo.lock (#219) Fix odd Windows-only compile error (#221)

texmath (0.12.8.8) * TeX reader: support unicode-math Greek symbols, e.g. `\Alpha` (#235). This includes symbols like `\Alpha` and `\omicron` that weren't defined in original TeX. * Use typst-symbols 0.1.6 texmath (0.12.8.7) * TeX reader: convert Bin symbols to Ord when appropriate (#234). E.g. in '-3', we should have an Ord rather than a Bin, so the spacing will be appropriate. * Pandoc writer: fix spacing inside EDelimited (#234). Previously spaces around binary operators were omitted when they occurred inside parens or brackets. * test-texmath: allow pandoc output. texmath (0.12.8.6) * Typst writer: avoid redundant `lr`s (#233). texmath (0.12.8.5) * Typst writer: use ASCII symbols when possible instead of symbols (#232). E.g., `+` instead of `plus`. Add `\` to characters needing escape. Enhance list of characters that need escaping. * Typst writer: fixed EBoxed output so it includes a border. * Handle `\ddot` better in conversion to typst (#231). * Use typst-symbols 0.1.5

@bastelfreak

2.4.0 (2024-06-08) Enhancements * @ag4a fix the rails_compat to work with Rails 7 [PR #246] Bug Fixes * @bastelfreak adding license to the gemspec [PR #223] * @olleolleolle dropping unused gemspec directives [PR #233]

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

bind is not able to listen on new interfaces when interfaces change #233

bind is not able to listen on new interfaces when interfaces change #233

bahamat commented Nov 16, 2019

bahamat commented Jul 20, 2020

bind is not able to listen on new interfaces when interfaces change #233

bind is not able to listen on new interfaces when interfaces change #233

Comments

bahamat commented Nov 16, 2019

bahamat commented Jul 20, 2020