Subject: CVS commit: pkgsrc/www/ruby-puma
From: Takahiro Kambe
Date: 2019-12-16 18:02:54
Message id: 20191216170254.6627EFA97@cvs.NetBSD.org
Log Message:
www/ruby-puma: update to 4.3.1

## 4.3.1 and 3.12.2 / 2019-12-05

* Security
  * Fix: a poorly-behaved client could use keepalive requests to monopolize \ 
Puma's reactor and create a denial of service attack. CVE-2019-16770.

## 4.3.0 / 2019-11-07

* Features
  * Strip whitespace at end of HTTP headers (#2010)
  * Optimize HTTP parser for JRuby (#2012)
  * Add SSL support for the control app and cli (#2046, #2052)

* Bugfixes
  * Fix Errno::EINVAL when SSL is enabled and browser rejects cert (#1564)
  * Fix pumactl defaulting puma to development if an environment was not \ 
specified (#2035)
  * Fix closing file stream when reading pid from pidfile (#2048)
  * Fix a typo in configuration option `--extra_runtime_dependencies` (#2050)

## 4.2.1 / 2019-10-07

* 3 bugfixes
  * Fix socket activation of systemd (pre-existing) unix binder files (#1842, #1988)
  * Deal with multiple calls to bind correctly (#1986, #1994, #2006)
  * Accepts symbols for `verify_mode` (#1222)

## 4.2.0 / 2019-09-23

* 6 features
  * Pumactl has a new -e environment option and reads \ 
`config/puma/<environment>.rb` config files (#1885)
  * Semicolons are now allowed in URL paths (MRI only), useful for Angular or \ 
Redmine (#1934)
  * Allow extra dependencies to be defined when using prune_bundler (#1105)
  * Puma now reports the correct port when binding to port 0, also reports other \ 
listeners when binding to localhost (#1786)
  * Sending SIGINFO to any Puma worker now prints currently active threads and \ 
their backtraces (#1320)
  * Puma threads all now have their name set on Ruby 2.3+ (#1968)
* 4 bugfixes
  * Fix some misbehavior with phased restart and externally SIGTERMed workers \ 
(#1908, #1952)
  * Fix socket closing on error (#1941)
  * Removed unnecessary SIGINT trap for JRuby that caused some race conditions \ 
(#1961)
  * Fix socket files being left around after process stopped (#1970)
* Absolutely thousands of lines of test improvements and fixes thanks to @MSP-Greg

## 4.1.1 / 2019-09-05

* 3 bugfixes
  * Revert our attempt to not dup STDOUT/STDERR (#1946)
  * Fix socket close on error (#1941)
  * Fix workers not shutting down correctly (#1908)

## 4.1.0 / 2019-08-08

* 4 features
  * Add REQUEST_PATH on parse error message (#1831)
  * You can now easily add custom log formatters with the `log_formatter` config \ 
option (#1816)
  * Puma.stats now provides process start times (#1844)
  * Add support for disabling TLSv1.1 (#1836)

* 7 bugfixes
  * Fix issue where Puma was creating zombie process entries (#1887)
  * Fix bugs with line-endings and chunked encoding (#1812)
  * RACK_URL_SCHEME is now set correctly in all conditions (#1491)
  * We no longer mutate global STDOUT/STDERR, particularly the sync setting (#1837)
  * SSL read_nonblock no longer blocks (#1857)
  * Swallow connection errors when sending early hints (#1822)
  * Backtrace no longer dumped when invalid pumactl commands are run (#1863)

* 5 other
  * Avoid casting worker_timeout twice (#1838)
  * Removed a call to private that wasn't doing anything (#1882)
  * README, Rakefile, docs and test cleanups (#1848, #1847, #1846, #1853, #1859, \ 
#1850, #1866, #1870, #1872, #1833, #1888)
  * Puma.io has proper documentation now (https://puma.io/puma/)
  * Added the Contributor Covenant CoC

* 1 known issue
  * Some users are still experiencing issues surrounding socket activation and \ 
Unix sockets (#1842)

## 4.0.1 / 2019-07-11

* 2 bugfixes
  * Fix socket removed after reload - should fix problems with systemd socket \ 
activation. (#1829)
  * Add extconf tests for DTLS_method & TLS_server_method, use in \ 
minissl.rb. Should fix "undefined symbol: DTLS_method" when compiling \ 
against old OpenSSL versions. (#1832)
  * Removed unnecessary RUBY_VERSION checks. (#1827)

## 4.0.0 / 2019-06-25

9 features
  * Add support for disabling TLSv1.0 (#1562)
  * Request body read time metric (#1569)
  * Add out_of_band hook (#1648)
  * Re-implement (native) IOBuffer for JRuby (#1691)
  * Min worker timeout (#1716)
  * Add option to suppress SignalException on SIGTERM (#1690)
  * Allow mutual TLS CA to be set using `ssl_bind` DSL (#1689)
  * Reactor now uses nio4r instead of `select` (#1728)
9 x bugfixes
  * Do not accept new requests on shutdown (#1685, #1808)
  * Fix 3 corner cases when request body is chunked (#1508)
  * Change pid existence check's condition branches (#1650)
  * Don't call .stop on a server that doesn't exist (#1655)
  * Implemented NID_X9_62_prime256v1 (P-256) curve over P-521 (#1671)
  * Fix @notify.close can't modify frozen IOError (RuntimeError) (#1583)
  * Fix Java 8 support (#1773)
  * Fix error `uninitialized constant Puma::Cluster` (#1731)
  * Fix `not_token` being able to be set to true (#1803)

## 3.12.1 / 2019-01-08

* 1 features
  * Internal strings are frozen (#1649)
* 3 bugfixes
  * Fix chunked ending check (#1607)
  * Rack handler should use provided default host (#1700)
  * Better support for detecting runtimes that support `fork` (#1630)
Files:
RevisionActionfile
1.18modifypkgsrc/www/ruby-puma/Makefile
1.10modifypkgsrc/www/ruby-puma/PLIST
1.15modifypkgsrc/www/ruby-puma/distinfo