Log message:
www/ruby-puma: update to 5.1.1

5.1.1 / 2020-12-10

* Bugfixes

  - Fix over eager matching against banned header names (#2510)

5.1.0 / 2020-11-30

* Features

  - Phased restart availability is now always logged, even if it is not
    available.
  - Prints the loaded configuration if the environment variable
    PUMA_LOG_CONFIG is present (#2472)
  - Integrate with systemd's watchdog and notification features (#2438)
  - Adds max_fast_inline as a configuration option for the Server object
    (#2406)
  - You can now fork workers from worker 0 using SIGURG w/o fork_worker
    enabled #2449
  - Add option to bind to systemd activated sockets (#2362)
  - Add compile option to change the QUERY_STRING max length (#2485)

* Bugfixes

  - Fix JRuby handling in Puma::DSL#ssl_bind (#2489)
  - control_cli.rb - all normal output should be to @stdout (#2487)
  - Catch 'Error in reactor loop escaped: mode not supported for this
    object: r' (#2477)
  - Ignore Rails' reaper thread (and any thread marked forksafe) for
    warning (#2475)
  - Ignore illegal (by Rack spec) response header (#2439)
  - Close idle connections immediately on shutdown (#2460)
  - Fix some instances of phased restart errors related to the json gem
    (#2473)
  - Remove use of json gem to fix phased restart errors (#2479)
  - Fix grouping regexp of ILLEGAL_HEADER_KEY_REGEX (#2495)

5.0.4 / 2020-10-27

* Bugfixes

  - Pass preloaded application into new workers if available when using
    preload_app (#2461, #2454)

5.0.3 / 2020-10-26

* Bugfixes

  - Add Client#io_ok?, check before Reactor#register (#2432)
  - Fix hang on shutdown in refork (#2442)
  - Fix Bundler::GemNotFound errors for nio4r gem during phased restarts
    (#2427, #2018)
  - Server run thread safety fix (#2435)
  - Fire on_booted after server starts (#2431, #2212)
  - Cleanup daemonization in rc.d script (#2409)

* Refactor

  - Remove accept_nonblock.rb, add test_integration_ssl.rb (#2448)
  - Refactor status.rb - dry it up a bit (#2450)
  - Extract req/resp methods to new request.rb from server.rb (#2419)
  - Refactor Reactor and Client request buffering (#2279)
  - client.rb - remove JRuby specific 'finish' code (#2412)
  - Consolidate fast_write calls in Server, extract early_hints assembly
    (#2405)
  - Remove upstart from docs (#2408)
  - Extract worker process into separate class (#2374)
  - Consolidate option handling in Server, Server small refactors, doc
    changes (#2389)

5.0.2 / 2020-09-28

* Bugfixes
  - Reverted API changes to Server.

5.0.1 / 2020-09-28

* Bugfixes

  - Fix LoadError in CentOS 8 (#2381)
  - Better error handling during force shutdown (#2271)
  - Prevent connections from entering Reactor after shutdown begins
    (#2377)
  - Fix error backtrace debug logging && Do not log request dump if it is
    not parsed (#2376)
  - Split TCP_CORK and TCP_INFO (#2372)
  - Do not log EOFError when a client connection is closed without write
    (#2384)

* Refactor

  - Change Events#ssl_error signature from (error, peeraddr, peercert) to
    (error, ssl_socket) (#2375)
  - Consolidate option handling in Server, Server small refactors, doc
    chang (#2373)

Log message:
www/ruby-puma: update to 5.0.0

Update ruby-puma package to 5.0.0.

## 5.0.0

* Features
  * Allow compiling without OpenSSL and dynamically load files needed for SSL, \ 
add 'no ssl' CI (#2305)
  * EXPERIMENTAL: Add `fork_worker` option and `refork` command for reduced \ 
memory usage by forking from a worker process instead of the master process. \ 
(#2099)
  * EXPERIMENTAL: Added `wait_for_less_busy_worker` config. This may reduce \ 
latency on MRI through inserting a small delay before re-listening on the socket \ 
if worker is busy (#2079).
  * EXPERIMENTAL: Added `nakayoshi_fork` option. Reduce memory usage in \ 
preloaded cluster-mode apps by GCing before fork and compacting, where \ 
available. (#2093, #2256)
  * Added pumactl `thread-backtraces` command to print thread backtraces (#2054)
  * Added incrementing `requests_count` to `Puma.stats`. (#2106)
  * Increased maximum URI path length from 2048 to 8192 bytes (#2167, #2344)
  * `lowlevel_error_handler` is now called during a forced threadpool shutdown, \ 
and if a callable with 3 arguments is set, we now also pass the status code \ 
(#2203)
  * Faster phased restart and worker timeout (#2220)
  * Added `state_permission` to config DSL to set state file permissions (#2238)
  * Added `Puma.stats_hash`, which returns a stats in Hash instead of a JSON \ 
string (#2086, #2253)
  * `rack.multithread` and `rack.multiprocess` now dynamically resolved by \ 
`max_thread` and `workers` respectively (#2288)

* Deprecations, Removals and Breaking API Changes
  * `--control` has been removed. Use `--control-url` (#1487)
  * `worker_directory` has been removed. Use `directory`.
  * min_threads now set by environment variables PUMA_MIN_THREADS and \ 
MIN_THREADS. (#2143)
  * max_threads now set by environment variables PUMA_MAX_THREADS and \ 
MAX_THREADS. (#2143)
  * max_threads default to 5 in MRI or 16 for all other interpreters. (#2143)
  * preload by default if workers > 1 (#2143)
  * Puma::Plugin.workers_supported? has been removed. Use Puma.forkable? \ 
instead. (#2143)
  * `tcp_mode` has been removed without replacement. (#2169)
  * Daemonization has been removed without replacement. (#2170)
  * Changed #connected_port to #connected_ports (#2076)
  * Configuration: `environment` is read from `RAILS_ENV`, if `RACK_ENV` can't \ 
be found (#2022)
  * Log binding on http:// for TCP bindings to make it clickable

* Bugfixes
  * Fix JSON loading issues on phased-restarts (#2269)
  * Improve shutdown reliability (#2312, #2338)
  * Close client http connections made to an ssl server with TLSv1.3 (#2116)
  * Do not set user_config to quiet by default to allow for file config (#2074)
  * Always close SSL connection in Puma::ControlCLI (#2211)
  * Windows update extconf.rb for use with ssp and varied Ruby/MSYS2 \ 
combinations (#2069)
  * Ensure control server Unix socket is closed on shutdown (#2112)
  * Preserve `BUNDLE_GEMFILE` env var when using `prune_bundler` (#1893)
  * Send 408 request timeout even when queue requests is disabled (#2119)
  * Rescue IO::WaitReadable instead of EAGAIN for blocking read (#2121)
  * Ensure `BUNDLE_GEMFILE` is unspecified in workers if unspecified in master \ 
when using `prune_bundler` (#2154)
  * Rescue and log exceptions in hooks defined by users (on_worker_boot, \ 
after_worker_fork etc) (#1551)
  * Read directly from the socket in #read_and_drop to avoid raising further SSL \ 
errors (#2198)
  * Set `Connection: closed` header when queue requests is disabled (#2216)
  * Pass queued requests to thread pool on server shutdown (#2122)
  * Fixed a few minor concurrency bugs in ThreadPool that may have affected \ 
non-GVL Rubies (#2220)
  * Fix `out_of_band` hook never executed if the number of worker threads is \ 
> 1 (#2177)
  * Fix ThreadPool#shutdown timeout accuracy (#2221)
  * Fix `UserFileDefaultOptions#fetch` to properly use `default` (#2233)
  * Improvements to `out_of_band` hook (#2234)
  * Prefer the rackup file specified by the CLI (#2225)
  * Fix for spawning subprocesses with fork_worker option (#2267)
  * Set `CONTENT_LENGTH` for chunked requests (#2287)
  * JRuby - Add Puma::MiniSSL::Engine#init? and #teardown methods, run all SSL \ 
tests (#2317)
  * Improve shutdown reliability (#2312)
  * Resolve issue with threadpool waiting counter decrement when thread is killed
  * Constrain rake-compiler version to 0.9.4 to fix `ClassNotFound` exception \ 
when using MiniSSL with Java8.
  * Fix recursive `prune_bundler` (#2319).
  * Ensure that TCP_CORK is usable
  * Fix corner case when request body is chunked (#2326)
  * Fix filehandle leak in MiniSSL (#2299)

* Refactor
  * Remove unused loader argument from Plugin initializer (#2095)
  * Simplify `Configuration.random_token` and remove insecure fallback (#2102)
  * Simplify `Runner#start_control` URL parsing (#2111)
  * Removed the IOBuffer extension and replaced with Ruby (#1980)
  * Update `Rack::Handler::Puma.run` to use `**options` (#2189)
  * ThreadPool concurrency refactoring (#2220)
  * JSON parse cluster worker stats instead of regex (#2124)
  * Support parallel tests in verbose progress reporting (#2223)
  * Refactor error handling in server accept loop (#2239)

Log message:
www/ruby-puma: update to 4.3.6

Update ruby-puma to 4.3.6.

## 4.3.6 / 2020-09-05

* Bugfixes

  * Explicitly include ctype.h to fix compilation warning and build error on
    macOS with Xcode 12 (#2304)
  * Don't require json at boot (#2269)

Log message:
www/ruby-puma: update to 4.3.5

Update ruby-puma to 4.3.5.

4.3.4/4.3.5 and 3.12.5/3.12.6 / 2020-05-22

Each patchlevel release contains a separate security fix. We recommend
simply upgrading to 4.3.5/3.12.6.

* Security

  Fix: Fixed two separate HTTP smuggling vulnerabilities that used the
  Transfer-Encoding header. CVE-2020-11076 and CVE-2020-11077.

Log message:
www/ruby-puma: update to 4.3.3

Update ruby-puma to 4.3.3.

## 4.3.3 and 3.12.4 / 2020-02-28
  * Bugfixes
    * Fix: Fixes a problem where we weren't splitting headers correctly on \ 
newlines (#2132)
  * Security
    * Fix: Prevent HTTP Response splitting via CR in early hints.

Log message:
www/ruby-puma: update to 4.3.2

Update ruby-puma to 4.3.2.

## 4.3.2 and 3.12.3 / 2020-02-27

* Security
  * Fix: Prevent HTTP Response splitting via CR/LF in header
    values. CVE-2020-5247.

Log message:
all: migrate homepages from http to https

pkglint -r --network --only "migrate"

As a side-effect of migrating the homepages, pkglint also fixed a few
indentations in unrelated lines. These and the new homepages have been
checked manually.

Log message:
*: Recursive revision bump for openssl 1.1.1.

Log message:
www/ruby-puma: update to 4.3.1

## 4.3.1 and 3.12.2 / 2019-12-05

* Security
  * Fix: a poorly-behaved client could use keepalive requests to monopolize \ 
Puma's reactor and create a denial of service attack. CVE-2019-16770.

## 4.3.0 / 2019-11-07

* Features
  * Strip whitespace at end of HTTP headers (#2010)
  * Optimize HTTP parser for JRuby (#2012)
  * Add SSL support for the control app and cli (#2046, #2052)

* Bugfixes
  * Fix Errno::EINVAL when SSL is enabled and browser rejects cert (#1564)
  * Fix pumactl defaulting puma to development if an environment was not \ 
specified (#2035)
  * Fix closing file stream when reading pid from pidfile (#2048)
  * Fix a typo in configuration option `--extra_runtime_dependencies` (#2050)

## 4.2.1 / 2019-10-07

* 3 bugfixes
  * Fix socket activation of systemd (pre-existing) unix binder files (#1842, #1988)
  * Deal with multiple calls to bind correctly (#1986, #1994, #2006)
  * Accepts symbols for `verify_mode` (#1222)

## 4.2.0 / 2019-09-23

* 6 features
  * Pumactl has a new -e environment option and reads \ 
`config/puma/<environment>.rb` config files (#1885)
  * Semicolons are now allowed in URL paths (MRI only), useful for Angular or \ 
Redmine (#1934)
  * Allow extra dependencies to be defined when using prune_bundler (#1105)
  * Puma now reports the correct port when binding to port 0, also reports other \ 
listeners when binding to localhost (#1786)
  * Sending SIGINFO to any Puma worker now prints currently active threads and \ 
their backtraces (#1320)
  * Puma threads all now have their name set on Ruby 2.3+ (#1968)
* 4 bugfixes
  * Fix some misbehavior with phased restart and externally SIGTERMed workers \ 
(#1908, #1952)
  * Fix socket closing on error (#1941)
  * Removed unnecessary SIGINT trap for JRuby that caused some race conditions \ 
(#1961)
  * Fix socket files being left around after process stopped (#1970)
* Absolutely thousands of lines of test improvements and fixes thanks to @MSP-Greg

## 4.1.1 / 2019-09-05

* 3 bugfixes
  * Revert our attempt to not dup STDOUT/STDERR (#1946)
  * Fix socket close on error (#1941)
  * Fix workers not shutting down correctly (#1908)

## 4.1.0 / 2019-08-08

* 4 features
  * Add REQUEST_PATH on parse error message (#1831)
  * You can now easily add custom log formatters with the `log_formatter` config \ 
option (#1816)
  * Puma.stats now provides process start times (#1844)
  * Add support for disabling TLSv1.1 (#1836)

* 7 bugfixes
  * Fix issue where Puma was creating zombie process entries (#1887)
  * Fix bugs with line-endings and chunked encoding (#1812)
  * RACK_URL_SCHEME is now set correctly in all conditions (#1491)
  * We no longer mutate global STDOUT/STDERR, particularly the sync setting (#1837)
  * SSL read_nonblock no longer blocks (#1857)
  * Swallow connection errors when sending early hints (#1822)
  * Backtrace no longer dumped when invalid pumactl commands are run (#1863)

* 5 other
  * Avoid casting worker_timeout twice (#1838)
  * Removed a call to private that wasn't doing anything (#1882)
  * README, Rakefile, docs and test cleanups (#1848, #1847, #1846, #1853, #1859, \ 
#1850, #1866, #1870, #1872, #1833, #1888)
  * Puma.io has proper documentation now (https://puma.io/puma/)
  * Added the Contributor Covenant CoC

* 1 known issue
  * Some users are still experiencing issues surrounding socket activation and \ 
Unix sockets (#1842)

## 4.0.1 / 2019-07-11

* 2 bugfixes
  * Fix socket removed after reload - should fix problems with systemd socket \ 
activation. (#1829)
  * Add extconf tests for DTLS_method & TLS_server_method, use in \ 
minissl.rb. Should fix "undefined symbol: DTLS_method" when compiling \ 
against old OpenSSL versions. (#1832)
  * Removed unnecessary RUBY_VERSION checks. (#1827)

## 4.0.0 / 2019-06-25

9 features
  * Add support for disabling TLSv1.0 (#1562)
  * Request body read time metric (#1569)
  * Add out_of_band hook (#1648)
  * Re-implement (native) IOBuffer for JRuby (#1691)
  * Min worker timeout (#1716)
  * Add option to suppress SignalException on SIGTERM (#1690)
  * Allow mutual TLS CA to be set using `ssl_bind` DSL (#1689)
  * Reactor now uses nio4r instead of `select` (#1728)
9 x bugfixes
  * Do not accept new requests on shutdown (#1685, #1808)
  * Fix 3 corner cases when request body is chunked (#1508)
  * Change pid existence check's condition branches (#1650)
  * Don't call .stop on a server that doesn't exist (#1655)
  * Implemented NID_X9_62_prime256v1 (P-256) curve over P-521 (#1671)
  * Fix @notify.close can't modify frozen IOError (RuntimeError) (#1583)
  * Fix Java 8 support (#1773)
  * Fix error `uninitialized constant Puma::Cluster` (#1731)
  * Fix `not_token` being able to be set to true (#1803)

## 3.12.1 / 2019-01-08

* 1 features
  * Internal strings are frozen (#1649)
* 3 bugfixes
  * Fix chunked ending check (#1607)
  * Rack handler should use provided default host (#1700)
  * Better support for detecting runtimes that support `fork` (#1630)

Log message:
www/ruby-puma: update to 3.12.0

## 3.12.0 / 2018-07-13

* 5 features:
  * You can now specify which SSL ciphers the server should support, default is \ 
unchanged (#1478)
  * The setting for Puma's `max_threads` is now in `Puma.stats` (#1604)
  * Pool capacity is now in `Puma.stats` (#1579)
  * Installs restricted to Ruby 2.2+ (#1506)
  * `--control` is now deprecated in favor of `--control-url` (#1487)

* 2 bugfixes:
  * Workers will no longer accept more web requests than they have capacity to \ 
process. This prevents an issue where one worker would accept lots of requests \ 
while starving other workers (#1563)
  * In a test env puma now emits the stack on an exception (#1557)