Upgrade to release 1.6.12:
Security:
- In some circumstances, Mosquitto could leak memory when handling
PUBLISH messages. This is limited to incoming QoS 2 messages,
and is related to the combination of the broker having
persistence enabled, a clean session=false client, which was
connected prior to the broker restarting, then has reconnected
and has now sent messages at a sufficiently high rate that the
incoming queue at the broker has filled up and hence messages
are being dropped. This is more likely to have an effect where
max_queued_messages is a small value. This has now been fixed.
Broker:
- Build warning fixes when building with WITH_BRIDGE=no and
WITH_TLS=no.
Clients:
- All clients exit with an error exit code on CONNACK failure.
- Don't busy loop with `mosquitto_pub -l` on a slow connection.
Signed-off-by: Leon Anavi <leon.anavi@konsulko.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Upgrade to release 1.8.1:
- Bug fix: authenticated users can trigger an application crash
(with a NULL pointer dereference) if echo-message is not enabled
and there is no network.
Signed-off-by: Leon Anavi <leon.anavi@konsulko.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Upgrade to release 7.2.0:
- Do not convert I;16 images when showing PNGs
- Fixed ICNS file pointer saving
- Fixed loading non-RGBA mode APNGs with dispose background
- Deprecated _showxv
- Deprecate Image.show(command="...")
- Updated JPEG magic number
- Change STRIPBYTECOUNTS to LONG if necessary when saving
- Write JFIF header when saving JPEG
- Replaced tiff_jpeg with jpeg compression when saving TIFF images
- Writing TIFF tags: improved BYTE, added UNDEFINED
- Consider transparency when pasting text on an RGBA image
- Added method argument to single frame WebP saving
- Use ImageFileDirectory_v2 in Image.Exif
- Corrected reading EXIF metadata without prefix
- Fixed drawing a jointed line with a sequence of numeric values
- Added support for 1-D NumPy arrays
- Parse orientation from XMP tags
- Speed up text layout by not rendering glyphs
- Fixed ZeroDivisionError in Image.thumbnail
- Replaced TiffImagePlugin DEBUG with logging
- Fix repeatedly loading .gbr
- JPEG: Truncate icclist instead of setting to None
- Fixes default offset for Exif
- Fixed bug when unpickling TIFF images
- Fix pickling WebP
- Replace IOError and WindowsError aliases with OSError
License-Update: Word wrap and updated copyright year.
Signed-off-by: Leon Anavi <leon.anavi@konsulko.com>
Acked-by: Trevor Gamblin <trevor.gamblin@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Upgrade to release 5.0.0:
Traitlets 5.0 is a new version of traitlets that accumulate
changes over a period of more close to four years; A number of
internal refactoring made the internal code structure cleaner and
simpler, and greatly improved the diagnostic error messages as
well has help and documentation generation. Major changes:
- Removal of Python 2 support,
- Removal of Python 3.0-3.6 support
- Follow NEP 29, and are thus Python 3.7+ only.
- Remove six as a dependency
- Remove funcsig as a dependency.
Signed-off-by: Leon Anavi <leon.anavi@konsulko.com>
Acked-by: Trevor Gamblin <trevor.gamblin@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Upgrade to release 4.0.0:
- Remove support for Python 2.7, 3.4 and 3.5.
- Add support for Python 3.8.
- Performance improvement of static header search. Use dict
search instead of linear search.
- Fix debug output of headers during encoding.
Signed-off-by: Leon Anavi <leon.anavi@konsulko.com>
Acked-by: Trevor Gamblin <trevor.gamblin@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Upgrade to release 7.18.1:
- CRLF is now handled by magics my default; solving some issues
due to copy pasting on windows.
- Requiring pexpect >=4.3 as we are Python 3.7+ only and earlier
version of pexpect will be incompatible.
- Minimum jedi version is now 0.16.
Signed-off-by: Leon Anavi <leon.anavi@konsulko.com>
Acked-by: Trevor Gamblin <trevor.gamblin@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Upgrade to release 8.5.0:
- Add :func:`windowed_complete`
- The :func:`is_sorted` implementation was improved
- The :func:`groupby_transform` now accepts a reducefunc parameter
- The :func:`last` implementation was improved
- Various documentation fixes
- The tests for :func:`distinct_combinations` were improved
- Automated tests now run on GitHub Actions
Signed-off-by: Leon Anavi <leon.anavi@konsulko.com>
Acked-by: Trevor Gamblin <trevor.gamblin@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Upgrade to release 3.0.7:
- New "placeholder" parameter added to `PromptSession`.
- The "respond to CPR" logic has been moved from the `Input` to
`Output` classes (this does clean up some code).
- Bugfix in shift-selection key bindings.
- Fix hight calculation of `FormattedTextControl` when line
wrapping is turned on.
- Fixes for SSH server:
* Missing encoding property
* Fix failure in "set_line_mode" call
* Handle `BrokenPipeError`
Signed-off-by: Leon Anavi <leon.anavi@konsulko.com>
Acked-by: Trevor Gamblin <trevor.gamblin@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Upgrade to release 2.7.2:
- [Bug]: Fix incorrectly swapped order of p and q numbers when
loading OpenSSH-format RSA private keys. At minimum this should
address a slowdown when using such keys, and it also means
Paramiko works with Cryptography 3.1 and above (which complains
strenuously when this problem appears).
- [Bug]: Fix incorrect string formatting causing unhelpful error
message annotation when using Kerberos/GSSAPI.
- [Support]: Remove leading whitespace from OpenSSH RSA test suite
static key fixture, to conform better to spec.
- [Support]: Add missing test suite fixtures directory to
MANIFEST.in, reinstating the ability to run Paramiko’s tests
from an sdist tarball.
- [Support]: Update our CI to catch issues with sdist generation,
installation and testing.
Signed-off-by: Leon Anavi <leon.anavi@konsulko.com>
Acked-by: Trevor Gamblin <trevor.gamblin@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Upgrade to release 1.14.0:
- _env now more lenient in accepting dictionary-like objects
- None and False arguments now do not pass through to underlying
command
- Implemented find_spec on the fancy importer, which fixes some
Python3.4+ issues
Signed-off-by: Leon Anavi <leon.anavi@konsulko.com>
Acked-by: Trevor Gamblin <trevor.gamblin@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Upgrade to release 1.3.8:
- Fixed issue where subcommand added with
@as_subcommand_to decorator did not display help when called
with -h/--help.
- add_help=False no longer has to be passed to parsers used in
@as_subcommand_to decorator. Only pass this if your subcommand
should not have the -h/--help help option (as stated in argparse
documentation).
Signed-off-by: Leon Anavi <leon.anavi@konsulko.com>
Acked-by: Trevor Gamblin <trevor.gamblin@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Upgrade to release 3.1:
- BACKWARDS INCOMPATIBLE: Removed support for idna based
:term:`U-label` parsing in various X.509 classes. This support
was originally deprecated in version 2.1 and moved to an extra
in 2.5.
- Deprecated OpenSSL 1.0.2 support. OpenSSL 1.0.2 is no longer
supported by the OpenSSL project. The next version of
cryptography will drop support for it.
- Deprecated support for Python 3.5. This version sees very little
use and will be removed in the next release.
- backend arguments to functions are no longer required and the
default backend will automatically be selected if no backend is
provided.
- Added initial support for parsing certificates from PKCS7 files
- Calling update or update_into on
:class:`~cryptography.hazmat.primitives.ciphers.CipherContext`
with data longer than 231 bytes no longer raises an
OverflowError. This also resolves the same issue in
:doc:`/fernet`.
Signed-off-by: Leon Anavi <leon.anavi@konsulko.com>
Acked-by: Trevor Gamblin <trevor.gamblin@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Upgrade to release 0.16.0:
- Support for reading and writing private keys in PKCS#8 format.
- to_pem and to_der now accept new parameter, format, to specify
the format of the encoded files, either the dafault, legacy
"ssleay", or the new pkcs8 to use PKCS#8. Note that only
unencrypted PKCS#8 files are supported
- Add allow_truncate to verify in VerifyingKey, it defaults to
True, when specified as False, use of large hashes smaller than
curves will be disallowed (as it was in 0.14.1 and earlier)
- Correctly calculate signatures for private keys equal to n-1
- Make PointJacobi and thus SigningKey and VerifyingKey pickleable
- to_pem functions return bytes not str, document them as such
- from_pem and from_pem in SigningKey returns SigningKey, document
them as such
- Ensure that version checks will work with Python 4.
- Format the source with black.
- Fix uses of assert_ in test suite.
- Use newer Ubuntu in Travis to test against OpenSSL 1.1.1 (and
thus test the interoperability of ECDH code in Travis).
Signed-off-by: Leon Anavi <leon.anavi@konsulko.com>
Acked-by: Trevor Gamblin <trevor.gamblin@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
iconv and getconf are also provided by glibc-utils which is built along
with glibc and update-alternatives don't work with special packages like
glibc since it causes cyclic dependencies e.g
glibc->opkg-utils->glibc
therefore creating u-a for iconv and getconf gets into trouble when
glibc-utils is added to image along with toybox, usually with ptest
enabled images by default.
Therefore we turn these two applets into packageconfigs and delete them
by default from u-a, if one want toybox to provide them then clear
no-iconv and no-getconf from PACKAGECONFIG via a bbappend e.g.
PACKAGECONFIG_remove = "no-getconf no-iconv"
Remove bashism by enquiring for VIRTUAL-RUNTIME_init_manager from
bitbake datastore
Signed-off-by: Khem Raj <raj.khem@gmail.com>
faenza-icon-theme are allarch but recently
gtk-icon-cache, since commit 31e3d34c8a9c3e8481aa837aa0bf52adf095fe62
[gtk-icon-cache.bbclass: add runtime dependency], it start depend on
non-allarch packages gdk-pixbuf and gtk+3, which make it's signature
changes when machine changed.
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Cc: Andreas Müller <schnitzeltony@gmail.com>
openzone and rodent-icon-theme are allarch but recently
gtk-icon-cache, since commit 31e3d34c8a9c3e8481aa837aa0bf52adf095fe62
[gtk-icon-cache.bbclass: add runtime dependency], it start depend on
non-allarch packages gdk-pixbuf and gtk+3, which make it's signature
changes when machine changed.
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Cc: Andreas Müller <schnitzeltony@gmail.com>
Leon Anavi
Hongxu Jia
Khem Raj
Martin Jansa
Slater, Joseph
Wenlin Kang