2021-01-16 14:05:26 by Takahiro Kambe | Files touched by this commit (3) | |
Log message:
www/ruby-puma: update to 5.1.1
5.1.1 / 2020-12-10
* Bugfixes
- Fix over eager matching against banned header names (#2510)
5.1.0 / 2020-11-30
* Features
- Phased restart availability is now always logged, even if it is not
available.
- Prints the loaded configuration if the environment variable
PUMA_LOG_CONFIG is present (#2472)
- Integrate with systemd's watchdog and notification features (#2438)
- Adds max_fast_inline as a configuration option for the Server object
(#2406)
- You can now fork workers from worker 0 using SIGURG w/o fork_worker
enabled #2449
- Add option to bind to systemd activated sockets (#2362)
- Add compile option to change the QUERY_STRING max length (#2485)
* Bugfixes
- Fix JRuby handling in Puma::DSL#ssl_bind (#2489)
- control_cli.rb - all normal output should be to @stdout (#2487)
- Catch 'Error in reactor loop escaped: mode not supported for this
object: r' (#2477)
- Ignore Rails' reaper thread (and any thread marked forksafe) for
warning (#2475)
- Ignore illegal (by Rack spec) response header (#2439)
- Close idle connections immediately on shutdown (#2460)
- Fix some instances of phased restart errors related to the json gem
(#2473)
- Remove use of json gem to fix phased restart errors (#2479)
- Fix grouping regexp of ILLEGAL_HEADER_KEY_REGEX (#2495)
5.0.4 / 2020-10-27
* Bugfixes
- Pass preloaded application into new workers if available when using
preload_app (#2461, #2454)
5.0.3 / 2020-10-26
* Bugfixes
- Add Client#io_ok?, check before Reactor#register (#2432)
- Fix hang on shutdown in refork (#2442)
- Fix Bundler::GemNotFound errors for nio4r gem during phased restarts
(#2427, #2018)
- Server run thread safety fix (#2435)
- Fire on_booted after server starts (#2431, #2212)
- Cleanup daemonization in rc.d script (#2409)
* Refactor
- Remove accept_nonblock.rb, add test_integration_ssl.rb (#2448)
- Refactor status.rb - dry it up a bit (#2450)
- Extract req/resp methods to new request.rb from server.rb (#2419)
- Refactor Reactor and Client request buffering (#2279)
- client.rb - remove JRuby specific 'finish' code (#2412)
- Consolidate fast_write calls in Server, extract early_hints assembly
(#2405)
- Remove upstart from docs (#2408)
- Extract worker process into separate class (#2374)
- Consolidate option handling in Server, Server small refactors, doc
changes (#2389)
5.0.2 / 2020-09-28
* Bugfixes
- Reverted API changes to Server.
5.0.1 / 2020-09-28
* Bugfixes
- Fix LoadError in CentOS 8 (#2381)
- Better error handling during force shutdown (#2271)
- Prevent connections from entering Reactor after shutdown begins
(#2377)
- Fix error backtrace debug logging && Do not log request dump if it is
not parsed (#2376)
- Split TCP_CORK and TCP_INFO (#2372)
- Do not log EOFError when a client connection is closed without write
(#2384)
* Refactor
- Change Events#ssl_error signature from (error, peeraddr, peercert) to
(error, ssl_socket) (#2375)
- Consolidate option handling in Server, Server small refactors, doc
chang (#2373)
|
2020-09-19 15:04:10 by Takahiro Kambe | Files touched by this commit (3) | |
Log message:
www/ruby-puma: update to 5.0.0
Update ruby-puma package to 5.0.0.
## 5.0.0
* Features
* Allow compiling without OpenSSL and dynamically load files needed for SSL, \
add 'no ssl' CI (#2305)
* EXPERIMENTAL: Add `fork_worker` option and `refork` command for reduced \
memory usage by forking from a worker process instead of the master process. \
(#2099)
* EXPERIMENTAL: Added `wait_for_less_busy_worker` config. This may reduce \
latency on MRI through inserting a small delay before re-listening on the socket \
if worker is busy (#2079).
* EXPERIMENTAL: Added `nakayoshi_fork` option. Reduce memory usage in \
preloaded cluster-mode apps by GCing before fork and compacting, where \
available. (#2093, #2256)
* Added pumactl `thread-backtraces` command to print thread backtraces (#2054)
* Added incrementing `requests_count` to `Puma.stats`. (#2106)
* Increased maximum URI path length from 2048 to 8192 bytes (#2167, #2344)
* `lowlevel_error_handler` is now called during a forced threadpool shutdown, \
and if a callable with 3 arguments is set, we now also pass the status code \
(#2203)
* Faster phased restart and worker timeout (#2220)
* Added `state_permission` to config DSL to set state file permissions (#2238)
* Added `Puma.stats_hash`, which returns a stats in Hash instead of a JSON \
string (#2086, #2253)
* `rack.multithread` and `rack.multiprocess` now dynamically resolved by \
`max_thread` and `workers` respectively (#2288)
* Deprecations, Removals and Breaking API Changes
* `--control` has been removed. Use `--control-url` (#1487)
* `worker_directory` has been removed. Use `directory`.
* min_threads now set by environment variables PUMA_MIN_THREADS and \
MIN_THREADS. (#2143)
* max_threads now set by environment variables PUMA_MAX_THREADS and \
MAX_THREADS. (#2143)
* max_threads default to 5 in MRI or 16 for all other interpreters. (#2143)
* preload by default if workers > 1 (#2143)
* Puma::Plugin.workers_supported? has been removed. Use Puma.forkable? \
instead. (#2143)
* `tcp_mode` has been removed without replacement. (#2169)
* Daemonization has been removed without replacement. (#2170)
* Changed #connected_port to #connected_ports (#2076)
* Configuration: `environment` is read from `RAILS_ENV`, if `RACK_ENV` can't \
be found (#2022)
* Log binding on http:// for TCP bindings to make it clickable
* Bugfixes
* Fix JSON loading issues on phased-restarts (#2269)
* Improve shutdown reliability (#2312, #2338)
* Close client http connections made to an ssl server with TLSv1.3 (#2116)
* Do not set user_config to quiet by default to allow for file config (#2074)
* Always close SSL connection in Puma::ControlCLI (#2211)
* Windows update extconf.rb for use with ssp and varied Ruby/MSYS2 \
combinations (#2069)
* Ensure control server Unix socket is closed on shutdown (#2112)
* Preserve `BUNDLE_GEMFILE` env var when using `prune_bundler` (#1893)
* Send 408 request timeout even when queue requests is disabled (#2119)
* Rescue IO::WaitReadable instead of EAGAIN for blocking read (#2121)
* Ensure `BUNDLE_GEMFILE` is unspecified in workers if unspecified in master \
when using `prune_bundler` (#2154)
* Rescue and log exceptions in hooks defined by users (on_worker_boot, \
after_worker_fork etc) (#1551)
* Read directly from the socket in #read_and_drop to avoid raising further SSL \
errors (#2198)
* Set `Connection: closed` header when queue requests is disabled (#2216)
* Pass queued requests to thread pool on server shutdown (#2122)
* Fixed a few minor concurrency bugs in ThreadPool that may have affected \
non-GVL Rubies (#2220)
* Fix `out_of_band` hook never executed if the number of worker threads is \
> 1 (#2177)
* Fix ThreadPool#shutdown timeout accuracy (#2221)
* Fix `UserFileDefaultOptions#fetch` to properly use `default` (#2233)
* Improvements to `out_of_band` hook (#2234)
* Prefer the rackup file specified by the CLI (#2225)
* Fix for spawning subprocesses with fork_worker option (#2267)
* Set `CONTENT_LENGTH` for chunked requests (#2287)
* JRuby - Add Puma::MiniSSL::Engine#init? and #teardown methods, run all SSL \
tests (#2317)
* Improve shutdown reliability (#2312)
* Resolve issue with threadpool waiting counter decrement when thread is killed
* Constrain rake-compiler version to 0.9.4 to fix `ClassNotFound` exception \
when using MiniSSL with Java8.
* Fix recursive `prune_bundler` (#2319).
* Ensure that TCP_CORK is usable
* Fix corner case when request body is chunked (#2326)
* Fix filehandle leak in MiniSSL (#2299)
* Refactor
* Remove unused loader argument from Plugin initializer (#2095)
* Simplify `Configuration.random_token` and remove insecure fallback (#2102)
* Simplify `Runner#start_control` URL parsing (#2111)
* Removed the IOBuffer extension and replaced with Ruby (#1980)
* Update `Rack::Handler::Puma.run` to use `**options` (#2189)
* ThreadPool concurrency refactoring (#2220)
* JSON parse cluster worker stats instead of regex (#2124)
* Support parallel tests in verbose progress reporting (#2223)
* Refactor error handling in server accept loop (#2239)
|
2020-09-14 17:37:58 by Takahiro Kambe | Files touched by this commit (2) | |
Log message:
www/ruby-puma: update to 4.3.6
Update ruby-puma to 4.3.6.
## 4.3.6 / 2020-09-05
* Bugfixes
* Explicitly include ctype.h to fix compilation warning and build error on
macOS with Xcode 12 (#2304)
* Don't require json at boot (#2269)
|
2020-05-24 15:47:49 by Takahiro Kambe | Files touched by this commit (2) | |
Log message:
www/ruby-puma: update to 4.3.5
Update ruby-puma to 4.3.5.
4.3.4/4.3.5 and 3.12.5/3.12.6 / 2020-05-22
Each patchlevel release contains a separate security fix. We recommend
simply upgrading to 4.3.5/3.12.6.
* Security
Fix: Fixed two separate HTTP smuggling vulnerabilities that used the
Transfer-Encoding header. CVE-2020-11076 and CVE-2020-11077.
|
2020-03-01 03:52:25 by Takahiro Kambe | Files touched by this commit (2) | |
Log message:
www/ruby-puma: update to 4.3.3
Update ruby-puma to 4.3.3.
## 4.3.3 and 3.12.4 / 2020-02-28
* Bugfixes
* Fix: Fixes a problem where we weren't splitting headers correctly on \
newlines (#2132)
* Security
* Fix: Prevent HTTP Response splitting via CR in early hints.
|
2020-02-29 03:19:55 by Takahiro Kambe | Files touched by this commit (2) | |
Log message:
www/ruby-puma: update to 4.3.2
Update ruby-puma to 4.3.2.
## 4.3.2 and 3.12.3 / 2020-02-27
* Security
* Fix: Prevent HTTP Response splitting via CR/LF in header
values. CVE-2020-5247.
|
2020-01-26 18:32:28 by Roland Illig | Files touched by this commit (981) |
Log message:
all: migrate homepages from http to https
pkglint -r --network --only "migrate"
As a side-effect of migrating the homepages, pkglint also fixed a few
indentations in unrelated lines. These and the new homepages have been
checked manually.
|
2020-01-18 22:51:16 by Jonathan Perkin | Files touched by this commit (1836) |
Log message:
*: Recursive revision bump for openssl 1.1.1.
|
2019-12-16 18:02:54 by Takahiro Kambe | Files touched by this commit (3) | |
Log message:
www/ruby-puma: update to 4.3.1
## 4.3.1 and 3.12.2 / 2019-12-05
* Security
* Fix: a poorly-behaved client could use keepalive requests to monopolize \
Puma's reactor and create a denial of service attack. CVE-2019-16770.
## 4.3.0 / 2019-11-07
* Features
* Strip whitespace at end of HTTP headers (#2010)
* Optimize HTTP parser for JRuby (#2012)
* Add SSL support for the control app and cli (#2046, #2052)
* Bugfixes
* Fix Errno::EINVAL when SSL is enabled and browser rejects cert (#1564)
* Fix pumactl defaulting puma to development if an environment was not \
specified (#2035)
* Fix closing file stream when reading pid from pidfile (#2048)
* Fix a typo in configuration option `--extra_runtime_dependencies` (#2050)
## 4.2.1 / 2019-10-07
* 3 bugfixes
* Fix socket activation of systemd (pre-existing) unix binder files (#1842, #1988)
* Deal with multiple calls to bind correctly (#1986, #1994, #2006)
* Accepts symbols for `verify_mode` (#1222)
## 4.2.0 / 2019-09-23
* 6 features
* Pumactl has a new -e environment option and reads \
`config/puma/<environment>.rb` config files (#1885)
* Semicolons are now allowed in URL paths (MRI only), useful for Angular or \
Redmine (#1934)
* Allow extra dependencies to be defined when using prune_bundler (#1105)
* Puma now reports the correct port when binding to port 0, also reports other \
listeners when binding to localhost (#1786)
* Sending SIGINFO to any Puma worker now prints currently active threads and \
their backtraces (#1320)
* Puma threads all now have their name set on Ruby 2.3+ (#1968)
* 4 bugfixes
* Fix some misbehavior with phased restart and externally SIGTERMed workers \
(#1908, #1952)
* Fix socket closing on error (#1941)
* Removed unnecessary SIGINT trap for JRuby that caused some race conditions \
(#1961)
* Fix socket files being left around after process stopped (#1970)
* Absolutely thousands of lines of test improvements and fixes thanks to @MSP-Greg
## 4.1.1 / 2019-09-05
* 3 bugfixes
* Revert our attempt to not dup STDOUT/STDERR (#1946)
* Fix socket close on error (#1941)
* Fix workers not shutting down correctly (#1908)
## 4.1.0 / 2019-08-08
* 4 features
* Add REQUEST_PATH on parse error message (#1831)
* You can now easily add custom log formatters with the `log_formatter` config \
option (#1816)
* Puma.stats now provides process start times (#1844)
* Add support for disabling TLSv1.1 (#1836)
* 7 bugfixes
* Fix issue where Puma was creating zombie process entries (#1887)
* Fix bugs with line-endings and chunked encoding (#1812)
* RACK_URL_SCHEME is now set correctly in all conditions (#1491)
* We no longer mutate global STDOUT/STDERR, particularly the sync setting (#1837)
* SSL read_nonblock no longer blocks (#1857)
* Swallow connection errors when sending early hints (#1822)
* Backtrace no longer dumped when invalid pumactl commands are run (#1863)
* 5 other
* Avoid casting worker_timeout twice (#1838)
* Removed a call to private that wasn't doing anything (#1882)
* README, Rakefile, docs and test cleanups (#1848, #1847, #1846, #1853, #1859, \
#1850, #1866, #1870, #1872, #1833, #1888)
* Puma.io has proper documentation now (https://puma.io/puma/)
* Added the Contributor Covenant CoC
* 1 known issue
* Some users are still experiencing issues surrounding socket activation and \
Unix sockets (#1842)
## 4.0.1 / 2019-07-11
* 2 bugfixes
* Fix socket removed after reload - should fix problems with systemd socket \
activation. (#1829)
* Add extconf tests for DTLS_method & TLS_server_method, use in \
minissl.rb. Should fix "undefined symbol: DTLS_method" when compiling \
against old OpenSSL versions. (#1832)
* Removed unnecessary RUBY_VERSION checks. (#1827)
## 4.0.0 / 2019-06-25
9 features
* Add support for disabling TLSv1.0 (#1562)
* Request body read time metric (#1569)
* Add out_of_band hook (#1648)
* Re-implement (native) IOBuffer for JRuby (#1691)
* Min worker timeout (#1716)
* Add option to suppress SignalException on SIGTERM (#1690)
* Allow mutual TLS CA to be set using `ssl_bind` DSL (#1689)
* Reactor now uses nio4r instead of `select` (#1728)
9 x bugfixes
* Do not accept new requests on shutdown (#1685, #1808)
* Fix 3 corner cases when request body is chunked (#1508)
* Change pid existence check's condition branches (#1650)
* Don't call .stop on a server that doesn't exist (#1655)
* Implemented NID_X9_62_prime256v1 (P-256) curve over P-521 (#1671)
* Fix @notify.close can't modify frozen IOError (RuntimeError) (#1583)
* Fix Java 8 support (#1773)
* Fix error `uninitialized constant Puma::Cluster` (#1731)
* Fix `not_token` being able to be set to true (#1803)
## 3.12.1 / 2019-01-08
* 1 features
* Internal strings are frozen (#1649)
* 3 bugfixes
* Fix chunked ending check (#1607)
* Rack handler should use provided default host (#1700)
* Better support for detecting runtimes that support `fork` (#1630)
|
2018-09-23 18:55:59 by Takahiro Kambe | Files touched by this commit (2) | |
Log message:
www/ruby-puma: update to 3.12.0
## 3.12.0 / 2018-07-13
* 5 features:
* You can now specify which SSL ciphers the server should support, default is \
unchanged (#1478)
* The setting for Puma's `max_threads` is now in `Puma.stats` (#1604)
* Pool capacity is now in `Puma.stats` (#1579)
* Installs restricted to Ruby 2.2+ (#1506)
* `--control` is now deprecated in favor of `--control-url` (#1487)
* 2 bugfixes:
* Workers will no longer accept more web requests than they have capacity to \
process. This prevents an issue where one worker would accept lots of requests \
while starving other workers (#1563)
* In a test env puma now emits the stack on an exception (#1557)
|