Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
SUSE:SLE-12-SP2:GA
rubygem-passenger.7794
rubygem-passenger.changes
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File rubygem-passenger.changes of Package rubygem-passenger.7794
------------------------------------------------------------------- Fri Jun 15 06:20:56 UTC 2018 - mschnitzer@suse.com - Add CVE-2018-12029.patch (CVE-2018-12029, bsc#1097663) # CHMOD race vulnerability: * The file system access race condition allows for local privilege escalation and affects the Nginx module for Passenger versions 5.3.1, all the way back to 3.0.0 (the chown command entered the code in 2010). - Add series file to handle patches with quilt ------------------------------------------------------------------- Wed Jan 3 15:30:34 CET 2018 - schubi@suse.de - If Passenger is running as root, it is possible to list the contents of arbitrary files on a system by symlinking a file named REVISION from the application root folder to a file of choice and querying passenger-status --show=xml. (CVE-2017-16355; bnc#1073255) ------------------------------------------------------------------- Thu Nov 23 15:38:50 CET 2017 - schubi@suse.de - Introduces a new check that logs a vulnerability warning if Passenger is run with root permissions while the directory permissions of (parts of) its root dir allow modifications by non-root users. Patch: warning_weak_root_directory_permissions.patch CVE-2017-1000384 )(bnc#1068874) ------------------------------------------------------------------- Wed Dec 14 12:09:04 UTC 2016 - jmassaguerpla@suse.com - add a patch for disabling mod_autoindex. Otherwise, with sle12sp2 apache2 shows the error "Access forbidden" (bsc#1015092) ------------------------------------------------------------------- Mon Nov 30 18:14:31 UTC 2015 - jmassaguerpla@suse.com - fix CVE-2015-7519: rubygem-passenger: Passenger is not filtering environment like apache is doing (bnc#956281) CVE-2015-7519.patch: contains the fix ------------------------------------------------------------------- Thu Oct 29 10:28:13 UTC 2015 - jmassaguerpla@suse.com - Clean up Remove unneeded files: - passenger-4.0.14_missing_includes.patch - series ------------------------------------------------------------------- Thu Sep 10 04:30:00 UTC 2015 - coolo@suse.com - updated to version 5.0.18 see installed CHANGELOG Release 5.0.18 -------------- * Fixes more memory corruption issues in the palloc subsystem. * Fixes memory corruption issues in the Passenger core that may occur if the application sets many response headers. The issue was caused by an off-by-one bug. ------------------------------------------------------------------- Tue Sep 8 04:31:17 UTC 2015 - coolo@suse.com - updated to version 5.0.17 see installed CHANGELOG Release 5.0.17 -------------- * Adds packages for Ubuntu 15.10 "Wily", even though Ubuntu 15.10 hasn't been released yet. * Fixes some memory corruption issues in the palloc subsystem. Closes GH-1587. * Fixes the Node.js `PhusionPassenger.on('exit')` event. This event worked if you restart the app or detach an application process, but not if you stop Passenger. * Fixes support for `passenger_pre_start` URLs that contain very long authentication strings. This was caused by the fact that our Base64 encoder generated unexpected newlines. * [Standalone] Improves application prestarting. Application prestarting is now available in combination with the 'builtin' engine, and now works when SSL is used. ------------------------------------------------------------------- Tue Aug 25 04:34:26 UTC 2015 - coolo@suse.com - updated to version 5.0.16 see installed CHANGELOG Release 5.0.16 -------------- * Allows independent configuration of Union Station gateway address, port and certificate. Closes GH-1543. * Supports seek() such that body.rewind works when using Rack middleware that uses Zlib::GzipReader (e.g. for compressed requests). Closes GH-1553. * [Apache] Improves detection of Apache configuration file problems. Closes GH-1577. * [Enterprise] Fixes installation of the Passenger Enterprise Apache module on Debian Testing. * Fixes logging of HTTP response code for Union Station. This regression was introduced by Passenger 5. Closes GH-1581. * Adds a new subcommand `passenger-config about support-binaries-dir`. * Fixes a regression in the Node.js loader with regard to custom startup files. This bug was introduced in 5.0.14. Closes GH-1557 (again). * Fixes a crash when a Ruby application is accessed through a sub-URI and a root virtual host at the same time. ------------------------------------------------------------------- Wed Aug 12 11:47:55 UTC 2015 - mrueckert@suse.de - make sure we set up /{var/,}run/passenger on install ------------------------------------------------------------------- Wed Aug 12 11:37:01 UTC 2015 - mrueckert@suse.de - update to version 5.0.15 - Support SHA256 digests for the Rails asset pipeline, as used by Sprockets 3.x. - Support for JRuby 9.0.0.0. Closes GH-1562. - Fixes some bugs in Union Station support, which causes some data (such as controller information and exceptions) to not be logged. - The old Users Guides have been deprecated in favor of the [Passenger Library](https://www.phusionpassenger.com/library/). The Users Guides now redirect to appropriate sections in the Passenger Library. - additional changes in 5.0.14 - [Standalone] Relative path handling has been improved. In previous versions, relative paths were not handled in a consistent manner. Relative paths are now handled consistently according to the following rules: - If a relative path is given via a command line option, then it is relative to the current working directory. - If a relative path is given via Passengerfile.json, then it is relative to Passengerfile.json. Closes GH-1557. - [Standalone] The `--disable-turbocaching` now works with the Nginx engine. - additional changes in 5.0.13 - The `passenger-config restart-app` command now supports the option `--ignore-passenger-not-running`. If this option is given, the command will exit normally instead of exiting with an error, if Passenger is not running. This option is useful in deployments involving Passenger Standalone. In an initial deployment, Passenger Standalone may not yet be running. Passing this option allows you to ignore that issue. - SELinux policy issues in the RPMs have been fixed. - [Apache] `passenger-config reopen-logs` didn't work on Apache unless you explicitly set `PassengerLogFile`. This has now been fixed. - [Standalone] Due to some internal refactorings, the Passenger Standalone Nginx configuration template has changed. If you used a custom Nginx configuration template, please merge our latest changes into it. - additional changes in 5.0.12 - [Enterprise] Fixed passenger-irb. It was broken in 5.0.10 because of the change that made using admin commands without sudo possible. - additional changes in 5.0.11 - In 5.0.10, admin tools such as `passenger-status` and `passenger-config restart-app` display an authorization error if they are run without sudo, while at the same time Passenger isn't serving any applications. Since this is confusing, they have now been modified to display a more appropriate error message. - Fixes a bug in the RPMs that prevent admin tools such as `passenger-status` and `passenger-config restart-app` from working when they are invoked without root privileges. - Fixes a bug on OS X that prevent admin tools such as `passenger-status` and `passenger-config restart-app` from detecting Passenger instance directories when they are invoked without root privileges. Closes GH-1535. - Fixes a bug that causes Passenger not to work if the HOME environment variable is not set. - Fixes compatibility with non-Rails Ruby apps that require the actionview gem. Closes GH-1547. - Fixes some non-fatal "permission denied" error that may occasionally occur if user switching is turned off. Closes GH-1541. - Relative values for the `pid_file` and `log_file` options in Passengerfile.json are now supported. - If Passengerfile.json contains a syntax error, Passenger Standalone now correctly prints an error message instead of crashing. - Sending a SIGABRT signal to a Ruby process now properly makes it terminate. - The `passenger-config restart-app` command now accepts `.` as parameter, which it will interpreter as "restart the app in the current working directory". Closes GH-1386. - [Apache] Setting `PassengerLogLevel` no longer redirects Apache's own stderr to that log file. Closes GH-1373. - [Standalone] Passenger Standalone's Nginx engine now includes the RealIP module. Closes GH-1389. - [Standalone] The `--max-preloader-idle-time` option has been added. - additional changes in 5.0.10 - It is now possible to run `passenger-status`, `passenger-config restart-app` and other admin commands without using sudo. When run without sudo, these admin commands will allow you to operate on apps and processes that are owned by the user that invoked the admin command. Closes GH-1392. - Fixes a crash introduces in 5.0.9 due to not properly initializing a variable. Closes GH-1530. - The `passenger-config reopen-logs` command now works by instructing the Watchdog process to reopen the log file, while instructing the other Passenger processes to re-inerhit the log file from the Watchdog instead of trying to reopen the log file on their own. This makes log file reopening more robust. Closes GH-1452. - `passenger-config restart-app` no longer leaves the terminal in a state with black background. Closes GH-1526. - `passenger-config admin-command` has been renamed to `passenger-config api-call` in order to avoid confusion with any potential admin interfaces that we will introduce in the future. - If Union Station support is enabled, process and system metrics weren't being sent correctly to Union Station. This has been fixed. - [Enterprise] Fixes the fact that the Passenger Enterprise RPM didn't correctly set SELinux permissions on its own files. - [Apache] passenger-install-apache2-module no longer aborts with an error if the Apache configuration file contains errors. Closes GH-1525. - [Apache] Fixes a typo that would cause passenger-install-apache2-module to crash on Red Hat and CentOS systems on which the SELinux command line tools are not installed. Closes GH-1527. - additional changes in 5.0.9 - The casing of original headers as generated by the application are now preserved, instead of being downcased. This fixes compatibility issues with broken HTTP clients. Closes GH-1436. - Internal refactoring: we've replaced libeio with libuv. This makes some of our code simpler. Closes GH-1428. - When the passenger-status tool tries to cleanup a stale instance directory, it will no longer abort with an error when it fails to do that. It will now merely print a warning. Fixes [StackOverflow question 30354732](http://stackoverflow.com/questions/30354732/cap-aborted-capistrano-aborts-rails-deploy-while-attempting-to-chown-tmp-p/30357100#30357100). - Fixes compilation problems on Solaris. - The Ruby handler has been made more robust. Previously, it was possible for applications to corrupt connections by returning incorrect Rack responses. This may cause connections to get stuck. The Rack handler has been hardened to ensure that connections will never get corrupted or stuck. Closes GH-1512. - The Ruby handler now closes the Rack response body even when the socket connection is hijacked by the application. The Rack specification is unclear about what to do in this case, and different Ruby app servers do different things. We have found that by closing the body object anyway, we maximize compatibility with existing Rack middlewares and apps, such as Rack::Lock. Background information about this issue can be found at https://github.com/ngauthier/tubesock/issues/10#issuecomment-72539461. - Fixes a crash that could occur if some HTTP request headers are present, but have the empty value. Closes GH-1524. - Fixes a permission problem that prevents the web server from communicating with Passenger when user switching is off. Closes GH-1520. - Fixes a few small one-time memory leaks in the Passenger agent. This wraps up the workitems discovered in valgrind runs on earlier versions. - Fixes use of uninitialized metrics. This could happen for a brief moment after spawning. - [Apache] If you pass the `--apxs2-path` parameter to `passenger-install-apache2-module`, and the apxs2 path that you specified is not in PATH, then the installer would think that Apache installation is broken. This has been fixed. - [Apache] A `Connection: close` header that was used for internal communication between Passenger processes was being leaked to the client, which breaks HTTP keep-alive connections. This has been fixed. Closes GH-1516. - [Nginx] The preferred Nginx version is now 1.8.0. It was previously 1.6.3. - [Nginx] Passenger now passes to the application the raw URI as sent by the client, as long as Nginx didn't modify the URI (e.g. as part of rewrite rules). This means that escaped slashes (%2F) in the URI now work correctly and out-of-the-box as long as there are no applicable rewrite rules. - [Nginx] Fixes that crash that would occur if Nginx is configured to log to syslog. And to prevent log messages from disappearing into a black hole, Passenger will now ask you to set `passenger_log_file` if Nginx is configured to log to syslog. Closes GH-1514. - [Standalone] Prevents an existing instance from being shut down if starting a new instance fails. - additional changes in 5.0.8 - We now supply Debian 8 and Ubuntu 15.04 packages. Closes GH-1494 and GH-1400. - We now supply Red Hat 6, Red Hat 7, CentOS 6 and CentOS 7 packages. - We no longer supply Ubuntu 10.04 packages because Ubuntu 10.04 is no longer supported by Canonical. - Fixes a Passenger crash (SIGSEGV) that occurs occasionally when out-of-band garbage collection is enabled. Closes GH-1469. - Fixes a Passenger crash (SIGSEGV) that occurs occasionally with redirects to relative URLs. Closes GH-1513. - Fixes cases when Passenger shuts down more processes than is allowed by the `min_instances` limit. Closes GH-1500. - Fixes "Bad Gateway" errors that would occur when an application sets the X-Sendfile or X-Accel-Redirect header, together with a non-empty response body. Closes GH-1498. - Fixes the fact that Passenger agent processes don't lower their privilege when user switching is turned off. - Fixes autodetection of Apache on Gentoo. Closes GH-1510. - Fixes compilation problems on Solaris. Closes GH-1508. - [Standalone] Adds the `--pool-idle-time` command line parameter. - [Standalone] Adds the `--auto` command line parameter for running non-interactively. This supresses prompts. Closes GH-1511. ------------------------------------------------------------------- Mon May 18 09:29:57 UTC 2015 - mrueckert@suse.de - update to version 5.0.7 - Supports changed way of specifying settings for (non-bundled) Meteor apps. Closes GH-1403. - Fixes an integer-to-string conversion bug in the code responsible for buffering chunked request bodies. This bug could cause the PassengerAgent to crash due to an exception. Thanks to Marcus Rückert of SUSE for reporting this. - Request-specific environment variables are no longer cached. This fixes a number of issues, such as Shibboleth not working properly and conflicts between HTTPS and non-HTTPS virtual hosts. Closes GH-1472. - Fixes a memory corruption bug that would be triggered when using `passenger_base_uri`. The memory corruption bug resided in the code for resolving symlinks. Closes GH-1388. - Re-introduced signal catchers during shutdown, to allow clean shutdown in Foreman. Closes GH-1454. - `passenger-status --show=xml` no longer outputs the non-XML header by default. This fixes a regression as reported in a comment in GH-1136. - Passenger now prefers to load Rack and Bundler from RubyGems instead of from `vendor_ruby`. This solves some issues with Rack and Bundler on Debian systems. Closes GH-1480 and GH-1478. - The turbocache no longer caches responses that contain the `X-Sendfile` or the `X-Accel-Redirect` header. - The preferred Nginx version has been upgraded to 1.6.3. - The logging agent no longer aborts with an error if one of the Passenger root directory's parent directories is not world-executable. Closes GH-1487. - [Standalone] It is now possible to configure the Ruby, Node.js and Python executable to use in Passenger Standalone through the command line options --ruby, --nodejs and --python. Closes GH-1442. - [Standalone] Running `passenger start --engine=builtin --daemonize` would fail with a timeout error. This has been fixed. - [Standalone] Running `passenger start --nginx-version=XXX` would crash. This has been fixed. Closes GH-1490. - [Apache] Fixed some issues with X-Sendfile. Closes GH-1376. - [Apache] If the installer fails to autodetect Apache while the installer is running as a normal user, it will now ask you to give it root privileges. Closes GH-1289. - [Apache] The installer now validates your Apache configuration file to check for common problems. The validator can also be accessed separately by running `passenger-config validate-install --validate-apache2`. - [Nginx] Introduces the `passenger_read_timeout` option for rare cases when server needs more than the default 10 minute timeout. Contributed by pkmiec. Closes [GH-PR-34](https://github.com/phusion/passenger/pull/34). - [Nginx] The Nginx module now looks for index.html if the path ends in / so that it works intuitively, without needing to use try_files. - Fixes wrong memory address display in crash dumps. Thanks to thoughtpolice for pointing it out. - Fixes an ugly backtrace that would be shown if an invalid request is made to an application process using the private HTTP interface. Contributed by jbergler. Closes GH-1311. - Various documentation improvements. Closes [GH-PR-1332](https://github.com/phusion/passenger/pull/1332), [GH-PR-1354](https://github.com/phusion/passenger/pull/1354), [GH-PR-1216](https://github.com/phusion/passenger/pull/1216), [GH-PR-1385](https://github.com/phusion/passenger/pull/1385), [GH-PR-1302](https://github.com/phusion/passenger/pull/1302). - drop 3cd918c27e7015d5e60106f4574ea439fc4a16da.patch: included in update ------------------------------------------------------------------- Thu Apr 16 14:21:07 UTC 2015 - mrueckert@suse.de - update to passenger-4.0.50_load_system_passenger_libs.patch: we still had 2 places that tried to load the libraries from the relative path instead of the installed library. - pull 3cd918c27e7015d5e60106f4574ea439fc4a16da.patch until 5.0.7 is released ------------------------------------------------------------------- Thu Apr 2 10:03:14 UTC 2015 - mrueckert@suse.de - use intree libebio as well. our system copy seems to be broken. ------------------------------------------------------------------- Thu Apr 2 09:51:40 UTC 2015 - asn@cryptomilk.org - Fix temp directory path in mod_passenger.conf ------------------------------------------------------------------- Tue Mar 31 20:19:14 UTC 2015 - mrueckert@suse.de - use intree libev again. according to passenger upstream it is patched with things they need which are not in upstream libev. ------------------------------------------------------------------- Tue Mar 31 16:22:03 UTC 2015 - mrueckert@suse.de - update to version 5.0.6 - The turbocache no longer caches responses for which the Cache-Control header contains "no-cache". Please note that "no-cache" does not mean "do not cache this response". Instead, it means "any caching servers may only serve the cached response after validating it". Since the turbocache does not support validation, we've chosen to skip caching instead. Coincidentally, this change "fixes" problems with applications that erroneously use "no-cache" as a flag for "do not cache this response". What these applications should actually use is "no-store". We recommend the developers of such applications to change their caching headers in this manner, because even if Passenger doesn't unintentionally cache the response, any intermediate proxies that visitors are behind may still cache the response. - Fixes a number of memory leaks. Memory was leaked upon processing a request with multiple headers, upon processing a response with multiple headers, and upon processing a response with Set-Cookie headers. Every time such a request or response was processed, 512 bytes of memory was leaked due to improperly dereferencing relevant memory buffers. Closes GH-1455. - Fixes various bugs related to Union Station data collection. Union Station is our upcoming application analytics and performance monitoring SaaS platform. It is opt-in: no data is collected unless you turn the feature on. - Fixes a Union Station-related file descriptor leak. Closes GH-1439. - Fixes some bugs w.r.t. use of uninitialized memory. - More informative error message if a support binary is not found, including a resolution hint. Closes GH-1395. - [Apache] `SetEnv` variables are now passed as Rack/CGI/request variables. This was also the case in Passenger 4, but not in Passenger 5.0.0-5.0.5. We've restored the old behavior because the behavior in 5.0.0-5.0.5 breaks certain Apache modules such as Shibboleth. Closes GH-1446. - [Standalone] PID and log files now correctly created if user specifies relative path. ------------------------------------------------------------------- Wed Mar 25 16:11:50 UTC 2015 - mrueckert@suse.de - updated to version 5.0.5 - Fixes various crashes due to use of uninitialized memory. One such crash is documented in GH-1431. - Fixes a connection stall in the Apache module. Closes GH-1425. - Fixes a potential read-past-buffer bug in string-to-integer conversion routines. Thanks to dcb314 for spotting this. Closes GH-1441. - Fixes a compilation problem on Solaris. This problem was caused by the fact that `tm_gmtoff` is not supported on that platform. Closes GH-1435. - There is now an API endpoint for force disconnecting a client: `passenger-config admin-command DELETE /server/<client name>.json`. Closes GH-1246. - Fixes some file descriptor leaks. These leaks were caused by the fact that keep-alive connections with application processes were not being closed properly. Closes GH-1439. - In order to more easily debug future file descriptor leaks, we've introduced the `PassengerFileDescriptorLogFile` (Apache) and `passenger_file_descriptor_log_file` (Nginx) config options. This allows Passenger to log all file descriptor open/close activity to a specific log file. - The `PassengerDebugLogFile` (Apache) and `passenger_debug_log_file` (Nginx) configuration options have been renamed to `PassengerLogFile` and `passenger_log_file`, respectively. The old name is support supported for backward compatibility reasons. - [Enterprise] Fixes a bug in Flying Passenger's `--instance-registry-dir` command line parameter. This command line parameter didn't do anything. - [Enterprise] The Flying Passenger daemon no longer supports the `--max-preloader-idle-time` config option. This is because the config option never worked. The correct way to set the max preloader idle time is through the Nginx config option, but this was wrongly documented, so the documentation has been fixed. - adapted several patches ------------------------------------------------------------------- Tue Mar 17 21:38:00 UTC 2015 - mrueckert@suse.de - use new ruby-find-versioned script and make it build on 1.8 ------------------------------------------------------------------- Tue Mar 17 05:30:21 UTC 2015 - coolo@suse.com - updated to version 5.0.4 * Fixes a compilation problem introduced in 5.0.3. ------------------------------------------------------------------- Tue Feb 10 18:14:09 UTC 2015 - coolo@suse.com - updated to version 4.0.59 ------------------------------------------------------------------- Wed Nov 26 11:30:51 UTC 2014 - adrian@suse.de - fix default tmp dir in code, matching our default configs ------------------------------------------------------------------- Tue Nov 25 17:16:06 UTC 2014 - mrueckert@suse.de - make it easier to run apps not under wwwrun:www by setting /run/passenger to root:root and 1777. ------------------------------------------------------------------- Tue Nov 25 16:12:54 UTC 2014 - mrueckert@suse.de - update to 4.0.53 - Upgraded the preferred Nginx version to 1.6.2. - Improved RVM gemset autodetection. - Fixed some Ruby 2.2 compatibility issues. - changes in 4.0.52 - Fixed a null termination bug when autodetecting application types. - Node.js apps can now also trigger the inverse port binding mechanism by passing `'/passenger'` as argument. This was introduced in order to be able to support the Hapi.js framework. Please read http://stackoverflow.com/questions/20645231/phusion-passenger-error-http-server-listen-was-called-more-than-once/20645549 for more information regarding Hapi.js support. - It is now possible to abort Node.js WebSocket connections upon application restart. Please refer to https://github.com/phusion/passenger/wiki/Phusion-Passenger:-Node.js-tutorial#restarting_apps_that_serve_long_running_connections for more information. Closes GH-1200. - Passenger Standalone no longer automatically resolves symlinks in its paths. - `passenger-config system-metrics` no longer crashes when the system clock is set to a time in the past. Closes GH-1276. - `passenger-status`, `passenger-memory-stats`, `passenger-install-apache2-module` and `passenger-install-nginx-module` no longer output ANSI color codes by default when STDOUT is not a TTY. Closes GH-487. - `passenger-install-nginx-module --auto` is now all that's necessary to make it fully non-interactive. It is no longer necessary to provide all the answers through command line parameters. Closes GH-852. - Minor contribution by Alessandro Lenzen. ------------------------------------------------------------------- Thu Nov 20 12:29:17 UTC 2014 - mrueckert@suse.de - remove .o files ------------------------------------------------------------------- Thu Nov 20 12:15:54 UTC 2014 - mrueckert@suse.de - it seems we need the buildout part for the agents ------------------------------------------------------------------- Thu Nov 20 11:14:23 UTC 2014 - mrueckert@suse.de - fixed paths to some scripts: - added passenger-4.0.50_paths.patch: - patch paths to match our configs - no longer copy the bin dir to the %{_libdir}/passenger/%{version} - copy the agents directory directly without the buildout part in the target directory ------------------------------------------------------------------- Fri Sep 26 12:16:06 UTC 2014 - mrueckert@suse.de - set is not sed ------------------------------------------------------------------- Wed Sep 24 15:12:45 UTC 2014 - mrueckert@suse.de - no more agents sub package, dont require it anymore. ------------------------------------------------------------------- Wed Sep 24 13:49:55 UTC 2014 - mrueckert@suse.de - use rake$rubysuffix instead of calling /usr/bin/rake with each ruby. not all ruby versions might use the same rake version. This fixes the 2.1 build on 13.1. ------------------------------------------------------------------- Tue Sep 23 11:05:21 UTC 2014 - mrueckert@suse.de - buildrequire rake: while it ships with newer ruby releases on 1.8 we still need to require it explicitely ------------------------------------------------------------------- Fri Sep 19 14:18:34 UTC 2014 - mrueckert@suse.de - big big package clean up round - use normal patch application method instead of the old manual stuff. - use libeio from the system and not from the gem file - as we still have the dir from the patching step in %prep we dont need to move things around - build native support for all ruby interpreters found in the build env. - drop mod_passenger.conf.systemd we just set the proper tmpdir in the passenger config now via sed. (for both apache and nginx) - drop patches: config-guess-sub-update.diff rubygem-passenger-2.0.5_boost_exception.patch rubygem-passenger-2.0.5_missing_includes.patch rubygem-passenger-2.0.5_system_boost.patch rubygem-passenger-3.0.12_boost_threads.patch rubygem-passenger-4.0.14_missing_includes.patch rubygem-passenger-aarch64-support.patch - added patches: - passenger-4.0.14_missing_includes.patch renamed from rubygem-passenger-4.0.14_missing_includes.patch - passenger-4.0.50_fix_shebang.patch - remove illegal shebang lines and a few shebang lines that would cause undesired shebang based requires. - passenger-4.0.50_load_system_passenger_libs.patch dont try to load the passenger libs relatively but use the normal searching via the gem directories. ------------------------------------------------------------------- Tue Sep 9 01:10:07 UTC 2014 - mrueckert@suse.de - update to 4.0.50 ------------------------------------------------------------------- Fri Jul 25 19:03:29 UTC 2014 - mrueckert@suse.de - we also need the agents still in the gem dir -.- ------------------------------------------------------------------- Fri Jul 25 14:21:25 UTC 2014 - mrueckert@suse.de - we also need resources and helper-scripts in the new passenger root - patch the helper-scripts after copying to load passenger files via normal require and not using a full path. ------------------------------------------------------------------- Fri Jul 25 13:09:43 UTC 2014 - mrueckert@suse.de - also install the bin stuff into the new passengerroot ------------------------------------------------------------------- Tue Jul 15 14:32:12 UTC 2014 - mrueckert@suse.de - move buildrequires for ruby/ruby-devel to the macro version ------------------------------------------------------------------- Thu Jul 10 23:04:11 UTC 2014 - mrueckert@suse.de - switched to gem2rpm.yml still untested but builds! ------------------------------------------------------------------- Thu Jun 26 12:19:42 UTC 2014 - mrueckert@suse.de - synced with an automatically generated spec file - most notable change from this is that we no longe require other gems during building ------------------------------------------------------------------- Mon Jun 23 16:01:07 UTC 2014 - mrueckert@suse.de - move to new packaging style ------------------------------------------------------------------- Mon Jun 16 13:25:01 UTC 2014 - mrueckert@suse.de - update to version 4.0.45 * Major improvements in Node.js and Meteor compatibility. Older Phusion Passenger versions implemented Node.js support by emulating Node.js' HTTP library. This approach was found to be unsustainable, so we've abandoned that approach and replaced it with a much simpler approach that does not involve emulating the HTTP library. * Introduced support for sticky sessions. Sticky sessions are useful -- or even required -- for apps that store state inside process memory. Prominent examples include SockJS, Socket.io, faye-websocket and Meteor. Sticky sessions are required to make the aforementioned examples work in multi-process scenarios. By introducing sticky sessions support, we've much improved WebSocket support and support for the aforementioned libraries and frameworks. * Due to user demand, GET requests with request bodies are once again supported. Support for these kinds of requests was removed in 4.0.42 in an attempt to increase the strictness and robustness of our request handling code. It has been determined that GET requests with request bodies can be adequately supported without degrading robustness in Phusion Passenger. However, GET requests with both request bodies and WebSocket upgrade headers are unsupported. Fixes issue #1092. * [Enterprise] The [Flying Passenger](http://www.modrails.com/documentation/Users%20guide%20Apache.html#flying_passenger) feature is now also available on Apache. * Fixed some issues with RVM mixed mode support, issue #1121. * Fixed Passenger Standalone complaining about not finding PassengerHelperAgent during startup. * Fixed various minor issues such as #1190 and #1197. * The download timeout for passenger-install-nginx-module has been increased. Patch by 亀田 義裕. - additional changes in 4.0.44 * The issue tracker has now been moved from Google Code to Github. Before version 4.0.44 (May 29 2014, commit 3dd0964c9f4), all issue numbers referred to Google Code. From now on, all issue numbers will refer to Github Issues. * Fixed compilation problems on OS X Lion and OS X Mountain Lion. * On Ruby, fixed `nil` being frozen on accident in some cases. See issue #1192. - additional changes in 4.0.44 * Introduced a new command `passenger-config list-instances`, which prints all running Phusion Passenger instances. * Introduced a new command `passenger-config system-metrics, which displays metrics about the system such as the total CPU and memory usage. * Fixed some compilation problems caused by the compiler capability autodetector. * System metrics such as total CPU usage and memory usage, are now sent to [Union Station](https://www.unionstationapp.com) in preparation for future features. ------------------------------------------------------------------- Sun May 18 09:04:45 UTC 2014 - coolo@suse.com - updated to version 4.0.42 * [Nginx] Upgraded the preferred Nginx version to 1.6.0. * [Nginx] Fixed compatibility with Nginx 1.7.0. * [Standalone] The MIME type for .woff files has been changed to application/font-woff. Fixes issue #1071. * There are now APT packages for Ubuntu 14.04. At the same time, packages for Ubuntu 13.10 have been abandoned. * Introduced a new command, `passenger-config build-native-support`, for ensuring that the native_support library for the current Ruby interpreter is built. This is useful in system provisioning scripts. * For security reasons, friendly error pages (those black/purple pages that shows the error message, backtrace and environment variable dump when an application fails to start) are now disabled by default when the application environment is set to 'staging' or 'production'. Fixes issue #1063. * Fixed some compilation warnings on Ubuntu 14.04. * Fixed some compatibility problems with Rake 10.2.0 and later. See [Rake issue 274](https://github.com/jimweirich/rake/issues/274). * Improved error handling in [Union Station](https://www.unionstationapp.com) support. * Data is now sent to Union Station on a more frequent basis, in order to make new data show up more quickly. * Information about the code revision is now sent to Union Station, which will be used in the upcoming deployment tracking feature in Union Station 2. Release 4.0.41 -------------- * Fixed some issues with printing UTF-8 log files on Heroku. * Added a new flag `--ignore-app-not-running` to `passenger-config restart-app`. When this flag is given, `passenger-config restart-app` will exit successfully when the specified application is not running, instead of exiting with an error. * Our precompiled Passenger Standalone binaries have been upgraded to use OpenSSL 1.0.1g, which fixes [the OpenSSL Heartbleed vulnerability](http://heartbleed.com/). Users who are using Passenger Standalone with SSL enabled are vulnerable, and should upgrade immediately. Users who do not use Passenger Standalone, users who use Passenger Standalone without SSL, or users who use Passenger Standalone with SSL behind another SSL-enabled reverse proxy, are not vulnerable. ------------------------------------------------------------------- Tue Apr 8 11:49:54 UTC 2014 - adrian@suse.de - fix passenger usage together with systemd (bnc#858460) * move passenger files to /run/passenger/passenger* ------------------------------------------------------------------- Fri Mar 21 12:54:12 UTC 2014 - coolo@suse.com - updated to version 4.0.40 * Upgraded preferred Nginx version to 1.4.7. This Nginx version fixes a buffer overflow. Users are strongly urged to upgrade Nginx as soon as possible. Release 4.0.39 -------------- * Fixed a crash that could happen if the client disconnects while a chunked response is being sent. Fixes issue #1062. * In Phusion Passenger Standalone, it is now possible to customize the Nginx configuration file on Heroku. It is now also possible to permanently apply changes to the Nginx configuration file, surviving upgrades. Please refer to the "Advanced configuration" section of the Phusion Passenger Standalone manual for more information. * The programming language selection menu in passenger-install-apache2-module and passenger-install-nginx-module only works on terminals that support UTF-8 and that have a UTF-8 capable font. To cater to users who cannot meet these requirements (e.g. PuTTY users using any of the default Windows fonts), it is now possible to switch the menu to a plain text mode by pressing '!'. Fixes issue #1066. * Fixed printing UTF-8 characters in log files in Phusion Passenger Standalone. * It is now possible to dump live backtraces of Python apps through the 'SIGABRT' signal. * Fixed closing of file descriptors on OS X 10.9. * Fixed compilation problems with Apple Clang 503.0.38 on OS X. * Fixed compilation of native_support on Rubinius. ------------------------------------------------------------------- Fri Feb 28 10:20:27 UTC 2014 - schubi@suse.com - Release 4.0.38 -------------- * Added support for the new Ruby 2.1.0 out-of-band garbage collector. This can much improve garbage collection performance, and drastically reduce request times. * Fixed a symlink-related security vulnerability. Urgency: low Scope: local exploit Summary: writing files to arbitrary directory by hijacking temp directories Affected versions: 4.0.37 Fixed versions: 4.0.38 CVE-2014-1832 Description: This issue is related to CVE-2014-1831 (the security issue as mentioned in the 4.0.37 release notes). The previous fix was incomplete, and still has a (albeit smaller) small attack time window in between two filesystem checks. This attack window is now gone. * Fixed some compilation problems on Solaris. See issue #1047. * passenger-install-apache2-module and passenger-install-nginx-module now automatically run in `--auto` mode if stdin is not a TTY. Fixes issue #1030. * Fixed an issue with non-bundled Meteor apps not correctly running in production mode. ------------------------------------------------------------------- Sat Feb 22 06:25:41 UTC 2014 - coolo@suse.com - updated to version 4.0.37, see http://blog.phusion.nl/category/passenger/phusion-passenger-4/ ------------------------------------------------------------------- Fri Feb 7 13:31:54 UTC 2014 - coolo@suse.com - use new macros ------------------------------------------------------------------- Fri Feb 7 09:26:24 UTC 2014 - coolo@suse.com - avoid rubygem-rake, but buildrequire rubygem(rake) ------------------------------------------------------------------- Sun Jan 5 14:39:50 UTC 2014 - coolo@suse.com - updated to version 4.0.33, a lot of bugfixes, see http://blog.phusion.nl/category/passenger/phusion-passenger-4/ ------------------------------------------------------------------- Mon Dec 9 12:25:18 UTC 2013 - matz@suse.de - Update config.guess and config.sub of the gem automatically. ------------------------------------------------------------------- Mon Dec 9 11:39:36 UTC 2013 - coolo@suse.com - updated to version 4.0.27 * [Apache] Fixed a bug in the Apache module which could lock up the Apache process or thread. This is a regression introduced in version 4.0.24. * Node.js application processes now have friendly process titles. ------------------------------------------------------------------- Fri Nov 29 11:05:07 UTC 2013 - coolo@suse.com - updated to version 4.0.26 * Introduced the `PassengerBufferUpload` option for Apache. This option allows one to disable upload buffering, e.g. in order to be able to track upload progress. * [Nginx] The `HTTPS` variable is now set correctly for HTTPS connections, even without setting `ssl on`. Fixes issue #401. * [Standalone] It is now possible to listen on both a normal HTTP and an HTTPS port. * [Enterprise] The `passenger-status` tool now displays rolling restart status. ------------------------------------------------------------------- Fri Nov 22 08:40:38 UTC 2013 - coolo@suse.com - updated to version 4.0.25 * The `PassengerEnv`/`passenger_env`/`--environment` option now also sets NODE_ENV, so that Node.js frameworks like Connect can properly respond to the environment. * Fixed a bug in our Debian/Ubuntu packages causing `passenger-install-nginx-module` not to be able to compile Nginx. * Arbitrary Node.js application structures are now supported. * [Nginx] Introduced the `passenger_restart_dir` option. * [Nginx] Upgraded preferred Nginx version to 1.4.4 because of CVE-2013-4547. Release 4.0.24 -------------- * Introduced the `PassengerNodejs` (Apache) and `passenger_nodejs` (Nginx) configuration options. * [Apache] Introduced the `PassengerErrorOverride` option, so that HTTP error responses generated by applications can be intercepted by Apache and customized using the `ErrorDocument` directive. * [Standalone] It is now possible to specify some configuration options in a configuration file `passenger-standalone.json`. When Passenger Standalone is used in Mass Deployment mode, this configuration file can be used to customize settings on a per-application basis. * [Enterprise] Fixed a potential crash when a rolling restart is triggered while a process is already shutting down. * [Enterprise] Fixed Mass Deployment support for Node.js and Meteor. ------------------------------------------------------------------- Wed Nov 6 12:22:09 UTC 2013 - coolo@suse.com - updated to version 4.0.23 * Fixed compilation problems on GCC 4.8.2 (e.g. Arch Linux 2013-10-27). * Fixed a compatibility problem with Solaris /usr/ccs/bin/make: issue #999. * Support for the Meteor Javascript framework has been open sourced. ------------------------------------------------------------------- Thu Oct 31 05:54:44 UTC 2013 - coolo@suse.com - updated to version 4.0.21 * Supports JRuby 1.7.6. * Open sourced Node.js support. * [Nginx] Upgraded the preferred Nginx version to 1.4.3. * Work around an Apache packaging bug in CentOS 5. * Various user friendliness improvements in the documentation and the installers. * Fixed a bug in the always_restart.txt support. Phusion Passenger was looking for it in the wrong directory. * [Standalone] The –temp-dir command line option has been introduced. ------------------------------------------------------------------- Thu Oct 10 14:20:49 UTC 2013 - coolo@suse.com - updated to version 4.0.20 * Fixed a bug in Phusion Passenger Standalone's daemon mode. When in daemon mode, the Nginx temporary directory was deleted prematurely, causing some POST requests to fail. This was a regression that was introduced in 4.0.15 as part of an optimization. * Fixed compilation problems on Solaris 10 with Sun Studio 12.3. * Improved detection of RVM problems. * It is now possible to log the request method to Union Station. * Introduced a new option, `PassengerLoadShellEnvvars` (Apache) and `passenger_load_shell_envvars` (Nginx). This allows enabling or disabling the loading of bashrc before spawning the application. * [Enterprise] Fixed a packaging problem which caused the flying-passenger executable not to be properly included in the bin path. * [Enterprise] Fixed a race condition which sometimes causes the Flying Passenger socket to be deleted after a restart. Fixes issue #939. * [Enterprise] The `byebug` gem is now supported for debugging on Ruby 2.0. The byebug gem requires a patch before this works: https://github.com/deivid-rodriguez/byebug/pull/29 ------------------------------------------------------------------- Fri Oct 4 07:18:00 UTC 2013 - coolo@suse.com - updated to version 4.0.19 * Fixed a problem with response buffering. Application processes are now properly marked available for request processing immediately after they're done sending the response, instead of after having sent the entire response to the client. * The "processed" counter in `passenger-status` is now bumped after the process has handled a request, not at the beginning. * [Enterprise] Fixed an off-by-one bug in the `passenger_max_processes` setting. ------------------------------------------------------------------- Tue Oct 1 07:21:16 UTC 2013 - coolo@suse.com - fix permissions to fix nginx build ------------------------------------------------------------------- Wed Sep 25 05:35:33 UTC 2013 - coolo@suse.com - update to version 4.0.18 * The Enterprise variant of Phusion Passenger Standalone now supports customizing the concurrency model and thread count from the command line. * On Nginx, the Enterprise license is now only checked if Phusion Passenger is enabled in Nginx. This allows you to deploy Nginx binaries, that have Phusion Passenger Enterprise compiled in, to servers that are not actually running Phusion Passenger Enterprise. * Fixed a performance bug in the Union Station support code. In certain cases where a lot of data must be sent to Union Station, the code is now over 100 times faster. * `passenger-status --show=union_station` now displays all clients that are connected to the LoggingAgent. * Added a workaround for Heroku so that exited processes are properly detected as such. * When using Phusion Passenger Standalone with Foreman, pressing Ctrl-C in Foreman no longer results in runaway Nginx processes. * Fixed backtraces in the Apache module. ------------------------------------------------------------------- Tue Sep 17 08:28:05 UTC 2013 - adrian@suse.de - restore build of apache2 and ngnix modules ------------------------------------------------------------------- Fri Sep 13 11:06:24 UTC 2013 - coolo@suse.com - updated to version 4.0.17 * Fixed compilation problems on GCC 4.8 systems, such as Arch Linux 2013.04. Fixes issue #941. * Fixed some deprecation warnings when compiling the Ruby native extension on Ruby 2.0.0. * Fixed some Union Station-related stability issues. ------------------------------------------------------------------- Sat Sep 7 05:20:03 UTC 2013 - coolo@suse.com - updated to version 4.0.16, see http://blog.phusion.nl/category/passenger/phusion-passenger-4/ ------------------------------------------------------------------- Tue Aug 27 11:33:24 UTC 2013 - coolo@suse.com - add rubygem-passenger-4.0.14_missing_includes.patch to fix build ------------------------------------------------------------------- Mon Aug 26 05:05:51 UTC 2013 - coolo@suse.com - updated to version 4.0.14, see http://blog.phusion.nl/category/passenger/phusion-passenger-4/ ------------------------------------------------------------------- Sat Jul 20 11:07:59 UTC 2013 - coolo@suse.com - updated to version 4.0.10, see http://blog.phusion.nl/category/passenger/phusion-passenger-4/ - obsoletes rubygem-passenger-aarch64-support.patch and config-guess-sub-update.diff ------------------------------------------------------------------- Sun Jun 16 19:49:46 UTC 2013 - dmueller@suse.com - add config-guess-sub-update.diff - add rubygem-passenger-aarch64-support.patch - add zlib-devel buildrequires ------------------------------------------------------------------- Fri May 31 07:23:25 UTC 2013 - coolo@suse.com - update to version 4.0.5 Fixed security vulnerability CVE-2013-2119 and many other things ------------------------------------------------------------------- Mon May 27 09:23:40 UTC 2013 - coolo@suse.com - avoid leaking %buildroot into binaries ------------------------------------------------------------------- Mon May 27 08:59:07 UTC 2013 - coolo@suse.com - update to version 4.0.3, see http://blog.phusion.nl/category/passenger/phusion-passenger-4/ ------------------------------------------------------------------- Fri May 17 08:20:01 UTC 2013 - coolo@suse.com - update to version 4.0.2 - new branch, see http://blog.phusion.nl/category/passenger/phusion-passenger-4/ ------------------------------------------------------------------- Thu Jan 10 15:24:55 UTC 2013 - coolo@suse.com - update to version 3.0.19 * Nginx security fix: do not display Nginx version when server_tokens are off. * Fixed compilation problems on some systems. * Fixed some Union Station-related bugs. ------------------------------------------------------------------- Wed Oct 31 08:16:11 UTC 2012 - coolo@suse.com - updated to version 3.0.18 * Fixed compilation problems on Fedora 17. * Fixed Union Station compatibility with Rails 3.2. * Phusion Passenger Enterprise Standalone now supports rolling restarts and deployment error resistance. ------------------------------------------------------------------- Thu Aug 30 05:50:18 UTC 2012 - coolo@suse.com - update to 3.0.17 * Fixed a Ruby 1.9 encoding-related bug in the memory measurer. (Phusion Passenger Enterprise) * Fixed OOM adjustment bugs on Linux. * Fixed compilation problems on Fedora 18 and 19. * Fixed compilation problems on SunOS. * Fixed compilation problems on AIX. Contribution by Perry Smith. * Fixed various compilation warnings. * Upgraded preferred Nginx version to 1.2.3. * Updated documentation. * Updated website links. ------------------------------------------------------------------- Tue Aug 28 12:23:11 UTC 2012 - coolo@suse.com - apply boost changes for new glibc to copy ------------------------------------------------------------------- Fri Aug 3 18:28:47 UTC 2012 - coolo@suse.com - updated to version 3.0.15 * updated docu ------------------------------------------------------------------- Sun Jul 22 15:29:35 UTC 2012 - coolo@suse.com - update to 3.0.14 * [Apache] Fixed a long-standing mod_rewrite-related problem. Some mod_rewrite rules would not work, but it depends on the exact mod_rewrite configuration so it would work for some people but not for others. Issue #563. Thanks a lot to cedricmaion for providing information on the nature of the bug and to peter.nash55 for providing a VM that allowed us to reproduce the problem. * [Nginx] Preferred Nginx version to 1.2.2. The previously preferred version was 1.2.1. * Cleared some confusing terminology in the documentation. * Fixed some Ruby 1.9 encoding problems. ------------------------------------------------------------------- Sun Jul 15 06:43:12 UTC 2012 - coolo@suse.com - update to 3.0.13 * [Nginx] Preferred Nginx version upgraded to 1.2.1. * Fixed compilation problems on FreeBSD 6.4. Fixes issue #766. * Fixed compilation problems on GCC >= 4.6. * Fixed compilation problems on OpenIndiana and Solaris 11. Fixes issue #742. * Union Station-related bug fixes. * Sending the soft termination signal twice to application processes no longer makes them crash. Patch contributed by Ian Ehlert. ------------------------------------------------------------------- Fri Jun 29 12:13:51 UTC 2012 - coolo@suse.com - do not require package names but generic provides for easier update of those ------------------------------------------------------------------- Sat May 12 09:40:55 UTC 2012 - coolo@suse.com - fix compilation with gcc 4.7 ------------------------------------------------------------------- Sat May 12 08:14:18 UTC 2012 - coolo@suse.com - update to 3.0.12 * [Apache] Support Apache 2.4. The event MPM is now also supported. * [Nginx] Preferred Nginx version upgraded to 1.0.15. * [Nginx] Preferred PCRE version upgraded to 8.30. * [Nginx] Fixed compatibility with Nginx < 1.0.10. * [Nginx] Nginx is now installed with http_gzip_static_module by default. * [Nginx] Fixed a memory disclosure security problem. The issue is documented at http://www.nginx.org/en/security_advisories.html and affects more modules than just Phusion Passenger. Users are advised to upgrade as soon as possible. Patch submitted by Gregory Potamianos. * [Nginx] passenger_show_version_in_header now hides the Phusion Passenger version number from the 'Server:' header too. Patch submitted by Gregory Potamianos. * Fixed a /proc deprecation warning on Linux kernel >= 3.0. * Fixed a compilation problem on platforms without alloca.h, such as FreeBSD 7. * Improved performance and solved some warnings on Xen systems by compiling with `-mno-tls-direct-seg-refs`. Patch contributed by Michał Pokrywka. * [Nginx] Dropped support for Nginx versions older than 1.0.0 * [Nginx] Fixed support for Nginx 1.1.4+ * [Nginx, Standalone] Upgraded default Nginx version to 1.0.10 The previously default version was 1.0.5. * [Nginx] New option passenger_max_requests This is equivalent to the PassengerMaxRequests option in the Apache version: Phusion Passenger will automatically shutdown a worker process once it has processed the specified number of requests. Contributed by Paul Kmiec. * [Apache] New option PassengerBufferResponse The Apache version did not buffer responses. This could block the Ruby worker process in case of slow clients. We now enable response buffering by default. It can be turned off through this option. Feature contributed by Ryo Onodera. * Fixed remaining Ruby 1.9.3 compatibility problems We already supported Ruby 1.9.3 since 3.0.8, but due to bugs in Ruby 1.9.3's build system Phusion Passenger would fail to detect Ruby 1.9.3 features on some systems. Fixes issue #714. * Fixed a bug in PassengerPreStart A regression was introduced in 3.0.8, causing the prespawn script to connect to the host name instead of to 127.0.0.1. Fix contributed by Andy Allan. * Fixed compatibility with GCC 4.6 Affected systems include Ubuntu 11.10. * Fixed various compilation problems. * Fixed some Ruby 1.9 encoding problems. * Fixed some Ruby 1.9.3 deprecation warnings. ------------------------------------------------------------------- Tue Feb 21 12:24:54 UTC 2012 - jreidinger@suse.com - add ruby-devel build requirements. Ensuring proper build for older distribution. ------------------------------------------------------------------- Thu Jan 12 11:31:11 UTC 2012 - coolo@suse.com - change license to be in spdx.org format ------------------------------------------------------------------- Sat Dec 3 11:34:40 CET 2011 - dmueller@suse.de - fix build on arm ------------------------------------------------------------------- Mon Oct 24 11:50:21 UTC 2011 - schubi@suse.com - Reducing requirement of rubygem-rack to 1_1 cause 1_3 produces problems with rails. ------------------------------------------------------------------- Wed Oct 19 13:45:32 UTC 2011 - fcastelli@suse.com - Update to 3.0.9: * [Nginx] Fixed a NULL pointer crash that occurs on HTTP/1.0 requests when the Host header isn't given. * Fixed deprecation warnings on RubyGems >= 1.6. * Improved Union Station support stability. ------------------------------------------------------------------- Tue Oct 18 14:06:18 UTC 2011 - schubi@suse.com - added rubygem-rack-1_3 in order to avoid choice error while building ------------------------------------------------------------------- Wed Oct 12 20:17:03 UTC 2011 - roman@priesol.net - [Nginx] Fixed line without semicolon ------------------------------------------------------------------- Fri Sep 23 13:43:18 UTC 2011 - roman@priesol.net - [Nginx] Fixed include path ------------------------------------------------------------------- Mon Aug 22 13:03:16 UTC 2011 - mrueckert@suse.de - update to version 3.0.8 * [Nginx] Upgraded preferred Nginx version to 1.0.5. * [Nginx] Fixed various compilation problems on various platforms. * [Nginx] We now ensure that SERVER_NAME is equal to HTTP_HOST without the port part. This is needed for Rack compliance. By default Nginx sets SERVER_NAME to whatever is specified in the server_name directive, but that's not necessarily the correct value. This fixes, for example, the use of the 'map' statement in config.ru. * [Nginx] Added the options passenger_buffer_size, passenger_buffers and passenger_busy_buffers_size. These options are similar to proxy_module's similarly named options. You can use these to e.g. increase the maximum header size limit. * [Nginx] passenger_pre_start now supports virtual hosts that listen on Unix domain sockets. * [Apache] Fixed the pcre.h compilation problem. * [Standalone] Fixed 'passenger stop'. It didn't work properly because it kept waiting for 'tail' to exit. We now properly terminate 'tail' as well. * Fixed compatibility with Rake 0.9. * Fixed various Ruby 1.9 compatibility issues. * Various documentation improvements. * New Union Station filter language features. It now supports status codes and response times. Please refer to https://engage.unionstationapp.com/help#filtering for more information. ------------------------------------------------------------------- Mon Aug 22 12:59:04 UTC 2011 - mrueckert@suse.de - make sure the passenger root variable always points to the passenger version in the package. To achieve that we introduce a (mod_)passenger_root.include file which will be included from the old (mod_)passenger.conf. the new file is not marked as config(noreplace) and will be overwritten by the package. ------------------------------------------------------------------- Tue Aug 16 12:15:01 UTC 2011 - mrueckert@suse.de - buildrequire rubygem-rack-1_3 to fix the have choice problem - use the mod_full_name macro ------------------------------------------------------------------- Wed Jun 8 14:32:23 UTC 2011 - ammler@openttdcoop.org - add config template to -nginx subpackage ------------------------------------------------------------------- Mon May 2 18:47:56 UTC 2011 - mrueckert@suse.de - require nginx in the -nginx subpackage ------------------------------------------------------------------- Sun Apr 24 01:01:36 UTC 2011 - mrueckert@suse.de - fix build on devel_languages_ruby_SLE_10 use curl-devel for anything older than sle11/11.1 ------------------------------------------------------------------- Thu Apr 14 19:01:57 UTC 2011 - mrueckert@suse.de - switch to use system libev ------------------------------------------------------------------- Thu Apr 14 18:31:21 UTC 2011 - mrueckert@suse.de - update to version 3.0.7 * Upgraded preferred Nginx version to 1.0.0. * Phusion Passenger Standalone now pre-starts application processes at startup instead of doing that at the first request. * When sending data to Union Station, the HTTP status code is now also logged. * Various Union Station-related stability improvements. * The Linux OOM killer was previously erroneously disabled for all Phusion Passenger processes, including application processes. The intention was to only disable it for the Watchdog. This has been fixed, and the Watchdog is now the only process for which the OOM killer is disabled. * Due to a typo, the dependency on file-tail was not entirely removed in 3.0.6. This has now been fixed. - fixed cleaning up the ext tree ------------------------------------------------------------------- Tue Apr 12 18:32:04 UTC 2011 - mrueckert@suse.de - split out a devel-static package containing the 2 static libraries that you need to compile nginx with passenger support later. that saves us recompiling them in the nginx build. - clean up file lists ------------------------------------------------------------------- Tue Apr 12 13:56:32 UTC 2011 - mrueckert@suse.de - update to version 3.0.6 * Fixed various Union Station-related stability issues. * Fixed an issue with host name detection on certain platforms. * Improved error logging in various parts. * The dependency on the file-tail library has been removed. * During installation, check whether /tmp is mounted with 'noexec'. Phusion Passenger's installer relies on /tmp *not* being mounted with 'noexec'. If it is then the installer will now show a helpful error message instead of bailing out in a confusing manner. Users can now tell the installer to use a different directory for storing temporary files by customizing the $TMPDIR environment variable. * Phusion Passenger Standalone can now run Rackup files that are not named 'config.ru'. The filename can be passed through the command line using the -R option. - additional changes from 3.0.5 * [Apache] Fixed Union Station process statistics collection Union Station users that are using Apache may notice that no process information show up in Union Station. This is because of a bug in Phusion Passenger's Apache version, which has now been fixed. * [Apache] PassengerAnalytics has been renamed to UnionStationSupport This option has been renamed for consistency reasons. * [Nginx] passenger_analytics has been renamed to union_station_support This option has been renamed for consistency reasons. * Fixed Union Station data sending on older libcurl versions Some Union Station users have reported that their data don't show up. Upon investigation this turned out to be a compatibility with older libcurl versions. Affected systems include all RHEL 5 based systems, such as RHEL 5.5 and CentOS 5.5. We've now fixed compatibility with older libcurl versions. * Added support for the Union Station filter language This language can be used to limit the kind of data that's sent to Union Station. Please read https://engage.unionstationapp.com/help#filtering for details. * Fixed a PassengerMaxPoolSize/passenger_max_pool_size violation bug People who host a lot of different applications on Phusion Passenger may notice that it sometimes spawns more processes than is allowed by PassengerMaxPoolSize/passenger_max_pool_size. This has been fixed. - additional changes from 3.0.4 * [Apache] Changed mod_dir workaround hook priority Phusion Passenger temporarily disables mod_dir on all Phusion Passenger-handled requests in order to avoid conflicts. In order to do this it registers some Apache hooks with the APR_HOOK_MIDDLE priority, but it turned out that this breaks some other modules like mod_python. The hook priority has been changed to APR_HOOK_LAST to match mod_dir's hook priorities. Issue reported by Jay Freeman. * Added support for Union Station: http://www.unionstationapp.com/ * Some error messages have been improved. ------------------------------------------------------------------- Fri Feb 25 11:40:24 UTC 2011 - mrueckert@suse.de - update to version 3.0.3 * [Nginx] Preferred Nginx version upgraded to 0.8.54 The previous preferred version was 0.8.53. * PATH_INFO and REQUEST_URI now contain the original escaped URI Phusion Passenger passes the URI, as reported by Apache/Nginx, to application processes through the PATH_INFO and REQUEST_URI variables. These variables are supposed to contain the original, unescaped URI, e.g. /clubs/%C3%BC. Both Apache and Nginx thought that it would be a good idea to unescape the URI before passing it to modules like Phusion Passenger, thereby causing PATH_INFO and REQUEST_URI to contain the unescaped URI, e.g. /clubs/ü. This causes all sorts of encoding problems. We now manually re-escape the URI when setting PATH_INFO and REQUEST_URI. Issue #404. * The installer no longer detects directories as potential commands Previously the installer would look in $PATH for everything that's executable, including directories. If one has /usr/lib in $PATH and a directory /usr/lib/gcc exists then the installer would recognize /usr/lib/gcc as the compiler. We now explicitly check whether the item is also a file. * PseudoIO now responds to #to_io Phusion Passenger sets STDERR to a PseudoIO object in order to capture anything written to STDERR during application startup. This breaks some libraries which expect STDERR to respond to #to_io. This has now been fixed. Issue #607. * Fixed various other minor bugs See the git commit log for details. - splitted out testsuite and documentation ------------------------------------------------------------------- Thu Jan 20 15:00:39 UTC 2011 - mrueckert@suse.de - moved apache2 requires to the apache2 subpackage ------------------------------------------------------------------- Thu Jan 13 19:17:57 UTC 2011 - chris@computersalat.de - fix spec o Group field must be present in package: rubygem-passenger-nginx ------------------------------------------------------------------- Thu Jan 13 10:36:11 UTC 2011 - schubi@novell.com - Spit packages into -- rubygem-passenger -- rubygem-passenger-nginx -- rubygem-passenger-apache2 ------------------------------------------------------------------- Tue Dec 21 14:14:50 UTC 2010 - chris@computersalat.de - update to version 3.0.2 * [Nginx] Fix crash if passenger_root refers to a nonexistant directory. * Fixed file descriptor closing issues on FreeBSD: issue #597. * Fix the fakeroot task. Issue #592 * Update NEWS. * Fix Nginx configure script: it didn't correctly change back the orginal working directory after compilation. * NetBSD doesn't support llroundl() so work around it by using llround(). Issue #593. * Fix compilation warning on NetBSD: issue #593. * Fix use of fcntl(.., F_CLOSEM) * Merge branch 'master' into debian * Add support to EventedClient for only closing the writer half of the connection. * Add StaticString.find(substring) ... and lot more ------------------------------------------------------------------- Tue Dec 7 21:47:19 UTC 2010 - mrueckert@suse.de - update to version 3.0.1 * Fixed malfunction after web server restart On Linux systems that have a non-standard filesystem on /tmp, Phusion Passenger could malfunction after restarting the web server because of a bug that's only triggered on certain filesystems. Issue #569. * Boost upgraded to version 1.44.0. We were on 1.42.0. * Much improved startup error messages Phusion Passenger performs many extensive checks during startup to ensure integrity. However the error message in some situation could be vague. These startup error messages have now been improved dramatically, so that if something goes wrong during startup you will now more likely know why. * Curl < 7.12.1 is now supported The previous version fails to compile with Curl versions earlier than 7.12.1. Issue #556. * passenger-make-enterprisey fixed This is the command that people can run after donating. It allows people to slightly modify Phusion Passenger's display name as a joke. In 3.0.0 it was broken because of a typo. This has been fixed. * Removed passenger-stress-test This tool was used during the early life of Phusion Passenger for stress testing websites. Its performance has never been very good and there are much better tools for stress testing, so this tool has now been removed. * [Apache] RailsEnv and RackEnv configuration options are now equivalent In previous versions, RailsEnv only had effect on Rails 1 and Rails 2 apps while RackEnv only had effect on Rack apps. Because Rails 3 apps are considered Rack apps, setting RailsEnv had no effect on Rails 3 apps. Because this is confusing to users, we've now made RailsEnv and RackEnv equivalent. Issue #579. * [Nginx] Fixed compilation problems on systems with unpowerful shells Most notably Solaris. Its default shell does not support some basic constructs that we used in the Nginx configure script. * [Nginx] Upgraded default Nginx version to to 0.8.53 The previous default was 0.8.52. * [Nginx] passenger_enabled now only accepts 'on' or 'off' values Previously it would recognize any value not equal to 'on' as meaning 'off'. This caused confusion among users who thought they could also specify 'true', so we now throw a proper error if the value is unrecognized. Fixes issue #583. - cleaned up spec file - move passenger_native_support from ext to lib dir (bnc#657964) ------------------------------------------------------------------- Thu Oct 28 10:31:57 UTC 2010 - mrueckert@suse.de - update to version 3.0.0 This is a major release with many changes. Please read our blog for details. http://blog.phusion.nl/2010/10/18/phusion-passenger-3-0-0-final-released/ - new dependencies: rubygem-daemon_controller rubygem-file-tail libcurl ------------------------------------------------------------------- Fri Jul 9 12:51:42 UTC 2010 - mrueckert@suse.de - mark mod_passenger.conf config(noreplace) ------------------------------------------------------------------- Fri Jun 25 12:59:25 UTC 2010 - mrueckert@suse.de - update to version 2.2.15 - [Apache] Fixed incorrect temp dir cleanup by passenger-status On some systems, running passenger-status could print the following message: "*** Cleaning stale folder /tmp/passenger.1234" ...after which Phusion Passenger breaks because that directory is necessary for it to function properly. The cause of this problem has been found and has been fixed. - [Apache] Fixed some upload handling problems Previous versions of Phusion Passenger check whether the size of the received upload data matches the contents of the Content-Length header as received by the client. It turns out that there could be a mismatch e.g. because of mod_deflate input compression, so we can't trust Content-Length anyway and we're being too strict. The check has now been removed. - [Nginx] Fixed compilation issues with Nginx >= 0.7.66 Thanks to Potamianos Gregory for reporting this issue. Issue #500. - [Nginx] Default Nginx version changed to 0.7.67 The previous default version was 0.7.65. - Fixed more Bundler problems Previous versions of Phusion Passenger would preload some popular libraries such as mysql and sqlite3 in order to utilize copy-on-write optimizations better. However this behavior conflicts with Bundler so we've removed it. ------------------------------------------------------------------- Mon Jun 14 14:36:33 UTC 2010 - mrueckert@suse.de - update to version 2.2.14 * Added support for Rubinius Patch contributed by Evan Phoenix. * Fixed a mistake in the SIGQUIT backtrace message. Patch contributed by Christoffer Sawicki. * [Nginx] Fix a localtime() crash on FreeBSD This was caused by insufficient stack space for threads. Issue #499. - additional changes from version 2.2.13 * Fixed some Rails 3 compatibility issues that were recently introduced. * Fixed a typo that causes config/setup_load_paths.rb not to be loaded correctly. - additional changes from version 2.2.12 * Improved Bundler support. Previous versions might not be able to correctly load gems bundled by Bundler. We've also documented how our Bundler support works and how to override our support if you need special behavior. Please refer to the Phusion Passenger Users Guide, section "Bundler support". * Worked around some user account handling bugs in Ruby. Issue #192. * Fixed some Ruby 1.9 tempfile.rb compatibility problems. * Fixed some compilation problems on some ARM Linux platforms. * [Apache] Suppress bogus mod_xsendfile-related error messages. When mod_xsendfile is being used, Phusion Passenger might print bogus error messages like "EPIPE" or "Apache stopped forwarding the backend's response" to the log file. These messages are normal, are harmless and can be safely ignored, but they pollute the log file. So in this release we've added code to suppress these messages when mod_xsendfile is being used. Issue #474. * [Nginx] Fixed "passenger_user_switching off" permission problems If Nginx is running as root and passenger_user_switching is turned off, then Phusion Passenger would fail to initialize because of a permission problem. This has been fixed. Issue #458. * [Nginx] Nginx >= 0.8.38 is now supported. Thanks to Sergey A. Osokin for reporting the problem. * [Nginx] passenger-install-nginx-module upgraded It now defaults to installing Nginx 0.7.65 instead of 0.7.64. ------------------------------------------------------------------- Fri Jun 11 10:00:01 UTC 2010 - mrueckert@suse.de - use rubygems_requires macro ------------------------------------------------------------------- Tue Mar 16 14:36:55 UTC 2010 - chris@computersalat.de - update to version 2.2.11 * This release fixes a regression that appeared in 2.2.10 which only affects Apache. When under high load, Apache might freeze and stop responding to requests. It is caused by a race conditions which is why it escaped our last release testing. - fix initializer problem o do not install ApplicationPoolServerExecutable to /usr/lib/phusion_passenger leave at origin place and set correct @PassengerRoot@ in mod_passenger.conf ------------------------------------------------------------------- Thu Feb 25 12:14:30 UTC 2010 - mrueckert@suse.de - update to version 2.2.10 * Fixed some Bundler compatibility problems. * Fixed some file descriptor passing problems, which previously could lead to mysterious crashes. * Fixed some compilation problems on newer GCC versions. Issue #430. * Support #size method in rack.input. - for changes from 2.2.8 and 2.2.9 see /usr/lib*/ruby/gems/1.8/gems/passenger-2.2.10/NEWS ------------------------------------------------------------------- Wed Dec 2 15:40:25 UTC 2009 - chris@computersalat.de - update to version 2.2.7 * Removed forgotten debugging code in passenger-install-apache2-module, which caused it not to compile anything. - additional changes from 2.2.6 * Some /tmp cleaner programs such as tmpwatch try to remove subdirectories in /tmp/passenger.xxx after a while because they think those subdirectories are unused. This could cause Phusion Passenger to malfunction, requiring a web server restart. Measures have now been taken to prevent those tmp cleaner programs from removing anything in /tmp/passenger.xxx. Issue #365. * When autodetecting the application type, Rack is now given more priority than Rails. This allows one to drop a config.ru file in a Rails directory and have it detected as a Rack application instead of a Rails application. Patch contributed by Sam Pohlenz: issue #338. * The default socket backlog has been increased from 'SOMAXCONN' (which is 128 on most platforms) to 1024. This should fix most 'helper_server.sock failed: Resource temporarily unavailable' errors. * Fixed compilation problems on Solaris. Issue #369 and issue #379. * Fixed crashes on PowerPC. * Some Ruby 1.9 compatibility fixes. Issue #398. * The installer now displays correct dependency installation instructions for Mandriva Linux. * [Apache] The location of the 'apxs' and 'apr-config' commands can now also be passed to the installer through the --apxs-path and --apr-config-path parameters, in addition to the $APXS2 and $APR_CONFIG environment variables. Issue #3. * [Nginx] Various problems that only occur on 64-bit platforms have been fixed. * [Nginx] The installer now installs Nginx 0.7.64 by default. - fix Passenger could not be initialized o '/usr/lib/phusion_passenger/ApplicationPoolServerExecutable' ------------------------------------------------------------------- Fri Oct 16 15:54:59 CEST 2009 - mrueckert@suse.de - update to version 2.2.5 see /usr/lib*/ruby/gems/1.8/gems/passenger-2.2.5/NEWS ------------------------------------------------------------------- Thu Mar 26 16:36:36 CET 2009 - mrueckert@suse.de - update to version 2.1.2 - Support for Rails 2.3 - Improved compatibility with other Apache modules, such as mod_rewrite - Ruby 1.9 support - Support for NFS setups - Various I/O handling and scaling improvements and fixes - Ability to disable Phusion Passenger for arbitrary URLs (PassengerEnabled option) - Improved application compatibility - Improved command-line admin tools - Ability to display backtraces for all threads - Improved security - More customization options for exotic systems/setups - Various usability improvements - In particular, many error messages have been improved so that end users don’t have to stare at the screen for minutes wondering what the computer is trying to tell them. There are also many small usability improvements here and there. - Various other minor improvements and bug fixes - PassengerPoolIdleTime can now be set to 0, which means that the backend application must never idle timeout. This feature has been contributed by redmar. - The passenger-status tool will now display Phusion Passenger’s own backtraces for C++ code, in order to make it possible to detect potential freezes in C++ code. - Phusion Passenger error pages now return HTTP 500 errors, as they should. - The ApplicationSpawner server and FrameworkSpawner server idle times can now be customized. - In the 2.0.x series, sometimes more backend processes might be spawned than is allowed by the ‘PassengerMaxPoolSize’ option. This has been fixed. ------------------------------------------------------------------- Tue Jan 13 18:33:42 CET 2009 - mrueckert@suse.de - fix path for apache config ------------------------------------------------------------------- Fri Dec 19 23:47:06 CET 2008 - mrueckert@suse.de - add basic apache config - fix path to native_support ------------------------------------------------------------------- Fri Dec 19 20:15:46 CET 2008 - mrueckert@suse.de - fix requires ------------------------------------------------------------------- Wed Dec 17 16:54:12 CET 2008 - mrueckert@suse.de - update to version 2.0.6 Fixed Ruby 1.8.5 compatibility In the previous release, we fixed Ruby 1.8.7 compatibility, but this broke 1.8.5. We’ve fixed this. Removed unintentional dependency on MySQL and SQLite Phusion Passenger 2.0.5 preloads the mysql and sqlite3 libraries when running in Ruby Enterprise Edition, for better copy-on-write efficiency. But it didn’t take into account that these libraries may not be installed. This has been fixed. ------------------------------------------------------------------- Fri Dec 5 23:05:33 CET 2008 - mrueckert@suse.de - use boost copy from gem when building on older distros. split rubygem-passenger-2.0.5_system_boost.patch into: rubygem-passenger-2.0.5_boost_exception.patch rubygem-passenger-2.0.5_system_boost.patch - added rubygem-passenger-2.0.5_missing_includes.patch ------------------------------------------------------------------- Fri Dec 5 15:26:34 CET 2008 - mrueckert@suse.de - initial package of version 2.0.5 -------------------------------------------------------------------
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor
