- Security
- Discards any headers using underscores if the non-underscore version also exists. Without this, an attacker could overwrite values set by intermediate proxies (e.g. X-Forwarded-For). (CVE-2024-45614/GHSA-9hf4-67fc-4vf4)
- Security
- Limit the size of chunk extensions. Without this limit, an attacker could cause unbounded resource (CPU, network bandwidth) consumption. (GHSA-c2f4-cvqm-65w2)
-
Bugfixes
- DSL#warn_if_in_single_mode - fixup when workers set via CLI (#3256)
- Fix
idle-timeout
not working in cluster mode (#3235, #3228, #3282, #3283) - Fix worker 0 timing out during phased restart (#3225, #2786)
- context_builder.rb - require openssl if verify_mode != 'none' (#3179)
- Make puma cluster process suitable as PID 1 (#3255)
- Improve Puma::NullIO consistency with real IO (#3276)
- extconf.rb - fixup to detect openssl info in Ruby build (#3271, #3266)
- MiniSSL.java - set serialVersionUID, fix RaiseException deprecation (#3270)
- dsl.rb - fix warn_if_in_single_mode when WEB_CONCURRENCY is set (#3265, #3264)
-
Maintenance
-
Docs
-
Features
-
Refactor
-
Bugfixes
- Security
- Address HTTP request smuggling vulnerabilities with zero-length Content Length header and trailer fields (GHSA-68xg-gqqm-vgj8)
-
Features
-
Bugfixes
-
Refactor
- Bugfixes
-
Features
-
Bugfixes
- Bugfixes
-
Features
-
Bugfixes
-
Performance
- Reduce memory usage for large file uploads (#3062)
- Bugfixes
- Refactor
- Add IOBuffer to Client, remove from ThreadPool thread instances (#3013)
-
Breaking Changes
- Dropping Ruby 2.2 and 2.3 support (now 2.4+) (#2919)
- Remote_addr functionality has changed (#2652, #2653)
- No longer supporting Java 1.7 or below (JRuby 9.1 was the last release to support this) (#2849)
- Remove nakayoshi GC (#2933, #2925)
- wait_for_less_busy_worker is now default on (#2940)
- Prefix all environment variables with
PUMA_
(#2924, #2853) - Removed some constants (#2957, #2958, #2959, #2960)
- The following classes are now part of Puma's private API:
Client
,Cluster::Worker
,Cluster::Worker
,HandleRequest
. (#2988) - Configuration constants like
DefaultRackup
removed (#2928) - Extracted
LogWriter
fromEvents
(#2798) - Only accept the standard 8 HTTP methods, others rejected with 501. (#2932)
-
Features
- Increase throughput on large (100kb+) response bodies by 3-10x (#2896, #2892)
- Increase throughput on file responses (#2923)
- Add support for streaming bodies in Rack. (#2740)
- Allow OpenSSL session reuse via a 'reuse' ssl_bind method or bind string query parameter (#2845)
- Allow
run_hooks
to pass a hash to blocks for use later (#2917, #2915) - Allow using
preload_app!
withfork_worker
(#2907) - Support request_body_wait metric with higher precision (#2953)
- Allow header values to be arrays (Rack 3) (#2936, #2931)
- Export Puma/Ruby versions in /stats (#2875)
- Allow configuring request uri max length & request path max length (#2840)
- Add a couple of public accessors (#2774)
- Log entire backtrace when worker start fails (#2891)
- [jruby] Enable TLSv1.3 support (#2886)
- [jruby] support setting TLS protocols + rename ssl_cipher_list (#2899)
- [jruby] Support a truststore option (#2849, #2904, #2884)
-
Bugfixes
-
Refactor
- log_writer.rb - add internal_write method (#2888)
- Extract prune_bundler code into it's own class. (#2797)
- Refactor Launcher#run to increase readability (no logic change) (#2795)
- Ruby 3.2 will have native IO#wait_* methods, don't require io/wait (#2903)
- Various internal API refactorings (#2942, #2921, #2922, #2955)
- Security
- Discards any headers using underscores if the non-underscore version also exists. Without this, an attacker could overwrite values set by intermediate proxies (e.g. X-Forwarded-For). (CVE-2024-45614/GHSA-9hf4-67fc-4vf4)
- JRuby
- Must use at least Java >= 9 to compile. You can no longer build from source on Java 8.
- Security
- Limit the size of chunk extensions. Without this limit, an attacker could cause unbounded resource (CPU, network bandwidth) consumption. (GHSA-c2f4-cvqm-65w2)
- Security
- Address HTTP request smuggling vulnerabilities with zero-length Content Length header and trailer fields (GHSA-68xg-gqqm-vgj8)
- Bugfix
- Prevent loading with rack 3 (#3166)
-
Feature
-
Bugfixes
- NullIO#closed should return false (#2883)
- [jruby] Fix TLS verification hang (#2890, #2729)
- extconf.rb - don't use pkg_config('openssl') if '--with-openssl-dir' is used (#2885, #2839)
- MiniSSL - detect SSL_CTX_set_dh_auto (#2864, #2863)
- Fix rack.after_reply exceptions breaking connections (#2861, #2856)
- Escape SSL cert and filenames (#2855)
- Fail hard if SSL certs or keys are invalid (#2848)
- Fail hard if SSL certs or keys cannot be read by user (#2847)
- Fix build with Opaque DH in LibreSSL 3.5. (#2838)
- Pre-existing socket file removed when TERM is issued after USR2 (if puma is running in cluster mode) (#2817)
- Fix Puma::StateFile#load incompatibility (#2810)
- Security
- Close several HTTP Request Smuggling exploits (CVE-2022-24790)
- Bugfix/Security
- Response body will always be
close
d. (GHSA-rmj8-8hhh-gv5h, related to #2809)
- Response body will always be
- Bugfixes
- Reverted a commit which appeared to be causing occasional blank header values (#2809)
-
Features
- Support
localhost
integration inssl_bind
(#2764, #2708) - Allow backlog parameter to be set with ssl_bind DSL (#2780)
- Remove yaml (psych) requirement in StateFile (#2784)
- Allow culling of oldest workers, previously was only youngest (#2773, #2794)
- Add worker_check_interval configuration option (#2759)
- Always send lowlevel_error response to client (#2731, #2341)
- Support for cert_pem and key_pem with ssl_bind DSL (#2728)
- Support
-
Bugfixes
- Keep thread names under 15 characters, prevents breakage on some OSes (#2733)
- Fix two 'old-style-definition' compile warning (#2807, #2806)
- Log environment correctly using option value (#2799)
- Fix warning from Ruby master (will be 3.2.0) (#2785)
- extconf.rb - fix openssl with old Windows builds (#2757)
- server.rb - rescue handling (
Errno::EBADF
) for@notify.close
(#2745)
-
Refactor
- Bugfixes
- Allow UTF-8 in HTTP header values
-
Feature (added as mistake - we don't normally do this on bugfix releases, sorry!)
- Allow setting APP_ENV in preference to RACK_ENV or RAILS_ENV (#2702)
-
Security
- Do not allow LF as a line ending in a header (CVE-2021-41136)
-
Features
-
Bugfixes
-
Performance
- Fix performance of server-side SSL connection close. (#2675)
-
Features
-
Bugfixes
-
Refactor
- Replace
IO.select
withIO#wait_*
when checking a single IO (#2666)
- Replace
- Bugfixes
- Security
- Close keepalive connections after the maximum number of fast inlined requests (CVE-2021-29509) (#2625)
-
Features
-
Bugfixes
- systemd - fix event firing (#2591, #2572)
- Immediately unlink temporary files (#2613)
- Improve parsing of HTTP_HOST header (#2605, #2584)
- Handle fatal error that has no backtrace (#2607, #2552)
- Fix timing out requests too early (#2606, #2574)
- Handle segfault in Ruby 2.6.6 on thread-locals (#2567, #2566)
- Server#closed_socket? - parameter may be a MiniSSL::Socket (#2596)
- Define UNPACK_TCP_STATE_FROM_TCP_INFO in the right place (#2588, #2556)
- request.rb - fix chunked assembly for ascii incompatible encodings, add test (#2585, #2583)
-
Performance
-
Refactor
- Bugfixes
- Bugfixes
-
Features
- 10x latency improvement for MRI on ssl connections by reducing overhead (#2519)
- Add option to specify the desired IO selector backend for libev (#2522)
- Add ability to set OpenSSL verification flags (MRI only) (#2490)
- Uses
flush
after writing messages to avoid mutating $stdout and $stderr usingsync=true
(#2486)
-
Bugfixes
- MiniSSL - Update dhparam to 2048 bit for use with SSL_CTX_set_tmp_dh (#2535)
- Change 'Goodbye!' message to be output after listeners are closed (#2529)
- Fix ssl bind logging with 0.0.0.0 and localhost (#2533)
- Fix compiler warnings, but skipped warnings related to ragel state machine generated code (#1953)
- Fix phased restart errors related to nio4r gem when using the Puma control server (#2516)
- Add
#string
method toPuma::NullIO
(#2520) - Fix binding via Rack handler to IPv6 addresses (#2521)
-
Refactor
- Bugfixes
- Fix over eager matching against banned header names (#2510)
-
Features
- Phased restart availability is now always logged, even if it is not available.
- Prints the loaded configuration if the environment variable
PUMA_LOG_CONFIG
is present (#2472) - Integrate with systemd's watchdog and notification features (#2438)
- Adds max_fast_inline as a configuration option for the Server object (#2406)
- You can now fork workers from worker 0 using SIGURG w/o fork_worker enabled #2449
- Add option to bind to systemd activated sockets (#2362)
- Add compile option to change the
QUERY_STRING
max length (#2485)
-
Bugfixes
- Fix JRuby handling in Puma::DSL#ssl_bind (#2489)
- control_cli.rb - all normal output should be to @stdout (#2487)
- Catch 'Error in reactor loop escaped: mode not supported for this object: r' (#2477)
- Ignore Rails' reaper thread (and any thread marked forksafe) for warning (#2475)
- Ignore illegal (by Rack spec) response header (#2439)
- Close idle connections immediately on shutdown (#2460)
- Fix some instances of phased restart errors related to the
json
gem (#2473) - Remove use of
json
gem to fix phased restart errors (#2479) - Fix grouping regexp of ILLEGAL_HEADER_KEY_REGEX (#2495)
- Bugfixes
-
Bugfixes
- Add Client#io_ok?, check before Reactor#register (#2432)
- Fix hang on shutdown in refork (#2442)
- Fix
Bundler::GemNotFound
errors fornio4r
gem during phased restarts (#2427, #2018) - Server run thread safety fix (#2435)
- Fire
on_booted
after server starts (#2431, #2212) - Cleanup daemonization in rc.d script (#2409)
-
Refactor
- Remove accept_nonblock.rb, add test_integration_ssl.rb (#2448)
- Refactor status.rb - dry it up a bit (#2450)
- Extract req/resp methods to new request.rb from server.rb (#2419)
- Refactor Reactor and Client request buffering (#2279)
- client.rb - remove JRuby specific 'finish' code (#2412)
- Consolidate fast_write calls in Server, extract early_hints assembly (#2405)
- Remove upstart from docs (#2408)
- Extract worker process into separate class (#2374)
- Consolidate option handling in Server, Server small refactors, doc changes (#2389)
- Bugfixes
- Reverted API changes to Server.
-
Bugfixes
- Fix LoadError in CentOS 8 (#2381)
- Better error handling during force shutdown (#2271)
- Prevent connections from entering Reactor after shutdown begins (#2377)
- Fix error backtrace debug logging && Do not log request dump if it is not parsed (#2376)
- Split TCP_CORK and TCP_INFO (#2372)
- Do not log EOFError when a client connection is closed without write (#2384)
-
Refactor
-
Features
- Allow compiling without OpenSSL and dynamically load files needed for SSL, add 'no ssl' CI (#2305)
- EXPERIMENTAL: Add
fork_worker
option andrefork
command for reduced memory usage by forking from a worker process instead of the master process. (#2099) - EXPERIMENTAL: Added
wait_for_less_busy_worker
config. This may reduce latency on MRI through inserting a small delay before re-listening on the socket if worker is busy (#2079). - EXPERIMENTAL: Added
nakayoshi_fork
option. Reduce memory usage in preloaded cluster-mode apps by GCing before fork and compacting, where available. (#2093, #2256) - Added pumactl
thread-backtraces
command to print thread backtraces (#2054) - Added incrementing
requests_count
toPuma.stats
. (#2106) - Increased maximum URI path length from 2048 to 8192 bytes (#2167, #2344)
lowlevel_error_handler
is now called during a forced threadpool shutdown, and if a callable with 3 arguments is set, we now also pass the status code (#2203)- Faster phased restart and worker timeout (#2220)
- Added
state_permission
to config DSL to set state file permissions (#2238) - Added
Puma.stats_hash
, which returns a stats in Hash instead of a JSON string (#2086, #2253) rack.multithread
andrack.multiprocess
now dynamically resolved bymax_thread
andworkers
respectively (#2288)
-
Deprecations, Removals and Breaking API Changes
--control
has been removed. Use--control-url
(#1487)worker_directory
has been removed. Usedirectory
.- min_threads now set by environment variables PUMA_MIN_THREADS and MIN_THREADS. (#2143)
- max_threads now set by environment variables PUMA_MAX_THREADS and MAX_THREADS. (#2143)
- max_threads default to 5 in MRI or 16 for all other interpreters. (#2143)
preload_app!
is on by default if number of workers > 1 and set viaWEB_CONCURRENCY
(#2143)- Puma::Plugin.workers_supported? has been removed. Use Puma.forkable? instead. (#2143)
tcp_mode
has been removed without replacement. (#2169)- Daemonization has been removed without replacement. (#2170)
- Changed #connected_port to #connected_ports (#2076)
- Configuration:
environment
is read fromRAILS_ENV
, ifRACK_ENV
can't be found (#2022) - Log binding on http:// for TCP bindings to make it clickable (#2300)
-
Bugfixes
- Fix JSON loading issues on phased-restarts (#2269)
- Improve shutdown reliability (#2312, #2338)
- Close client http connections made to an ssl server with TLSv1.3 (#2116)
- Do not set user_config to quiet by default to allow for file config (#2074)
- Always close SSL connection in Puma::ControlCLI (#2211)
- Windows update extconf.rb for use with ssp and varied Ruby/MSYS2 combinations (#2069)
- Ensure control server Unix socket is closed on shutdown (#2112)
- Preserve
BUNDLE_GEMFILE
env var when usingprune_bundler
(#1893) - Send 408 request timeout even when queue requests is disabled (#2119)
- Rescue IO::WaitReadable instead of EAGAIN for blocking read (#2121)
- Ensure
BUNDLE_GEMFILE
is unspecified in workers if unspecified in master when usingprune_bundler
(#2154) - Rescue and log exceptions in hooks defined by users (on_worker_boot, after_worker_fork etc) (#1551)
- Read directly from the socket in #read_and_drop to avoid raising further SSL errors (#2198)
- Set
Connection: closed
header when queue requests is disabled (#2216) - Pass queued requests to thread pool on server shutdown (#2122)
- Fixed a few minor concurrency bugs in ThreadPool that may have affected non-GVL Rubies (#2220)
- Fix
out_of_band
hook never executed if the number of worker threads is > 1 (#2177) - Fix ThreadPool#shutdown timeout accuracy (#2221)
- Fix
UserFileDefaultOptions#fetch
to properly usedefault
(#2233) - Improvements to
out_of_band
hook (#2234) - Prefer the rackup file specified by the CLI (#2225)
- Fix for spawning subprocesses with fork_worker option (#2267)
- Set
CONTENT_LENGTH
for chunked requests (#2287) - JRuby - Add Puma::MiniSSL::Engine#init? and #teardown methods, run all SSL tests (#2317)
- Improve shutdown reliability (#2312)
- Resolve issue with threadpool waiting counter decrement when thread is killed
- Constrain rake-compiler version to 0.9.4 to fix
ClassNotFound
exception when using MiniSSL with Java8. - Fix recursive
prune_bundler
(#2319). - Ensure that TCP_CORK is usable
- Fix corner case when request body is chunked (#2326)
- Fix filehandle leak in MiniSSL (#2299)
-
Refactor
- Remove unused loader argument from Plugin initializer (#2095)
- Simplify
Configuration.random_token
and remove insecure fallback (#2102) - Simplify
Runner#start_control
URL parsing (#2111) - Removed the IOBuffer extension and replaced with Ruby (#1980)
- Update
Rack::Handler::Puma.run
to use**options
(#2189) - ThreadPool concurrency refactoring (#2220)
- JSON parse cluster worker stats instead of regex (#2124)
- Support parallel tests in verbose progress reporting (#2223)
- Refactor error handling in server accept loop (#2239)
- Security
- Close several HTTP Request Smuggling exploits (CVE-2022-24790)
- Security
- Always close the response body (GHSA-rmj8-8hhh-gv5h)
- Bugfixes
- Allow UTF-8 in HTTP header values
- Security
- Do not allow LF as a line ending in a header (CVE-2021-41136)
- Security
- Close keepalive connections after the maximum number of fast inlined requests (CVE-2021-29509) (#2625)
- Bugfixes
Each patchlevel release contains a separate security fix. We recommend simply upgrading to 4.3.5/3.12.6.
- Security
- Fix: Fixed two separate HTTP smuggling vulnerabilities that used the Transfer-Encoding header. CVE-2020-11076 and CVE-2020-11077.
- Bugfixes
- Fix: Fixes a problem where we weren't splitting headers correctly on newlines (#2132)
- Security
- Fix: Prevent HTTP Response splitting via CR in early hints. CVE-2020-5249.
- Security
- Fix: Prevent HTTP Response splitting via CR/LF in header values. CVE-2020-5247.
- Security
- Fix: a poorly-behaved client could use keepalive requests to monopolize Puma's reactor and create a denial of service attack. CVE-2019-16770.
-
Features
-
Bugfixes
- 3 bugfixes
- 6 features
- Pumactl has a new -e environment option and reads
config/puma/<environment>.rb
config files (#1885) - Semicolons are now allowed in URL paths (MRI only), useful for Angular or Redmine (#1934)
- Allow extra dependencies to be defined when using prune_bundler (#1105)
- Puma now reports the correct port when binding to port 0, also reports other listeners when binding to localhost (#1786)
- Sending SIGINFO to any Puma worker now prints currently active threads and their backtraces (#1320)
- Puma threads all now have their name set on Ruby 2.3+ (#1968)
- Pumactl has a new -e environment option and reads
- 4 bugfixes
- Absolutely thousands of lines of test improvements and fixes thanks to @MSP-Greg
- 3 bugfixes
-
4 features
-
7 bugfixes
- Fix issue where Puma was creating zombie process entries (#1887)
- Fix bugs with line-endings and chunked encoding (#1812)
- RACK_URL_SCHEME is now set correctly in all conditions (#1491)
- We no longer mutate global STDOUT/STDERR, particularly the sync setting (#1837)
- SSL read_nonblock no longer blocks (#1857)
- Swallow connection errors when sending early hints (#1822)
- Backtrace no longer dumped when invalid pumactl commands are run (#1863)
-
5 other
- Avoid casting worker_timeout twice (#1838)
- Removed a call to private that wasn't doing anything (#1882)
- README, Rakefile, docs and test cleanups (#1848, #1847, #1846, #1853, #1859, #1850, #1866, #1870, #1872, #1833, #1888)
- Puma.io has proper documentation now (https://puma.io/puma/)
- Added the Contributor Covenant CoC
-
1 known issue
- Some users are still experiencing issues surrounding socket activation and Unix sockets (#1842)
- 2 bugfixes
- 1 other
- Removed unnecessary RUBY_VERSION checks. (#1827)
-
9 features
- Add support for disabling TLSv1.0 (#1562)
- Request body read time metric (#1569)
- Add out_of_band hook (#1648)
- Re-implement (native) IOBuffer for JRuby (#1691)
- Min worker timeout (#1716)
- Add option to suppress SignalException on SIGTERM (#1690)
- Allow mutual TLS CA to be set using
ssl_bind
DSL (#1689) - Reactor now uses nio4r instead of
select
(#1728) - Add status to pumactl with pidfile (#1824)
-
10 bugfixes
- Do not accept new requests on shutdown (#1685, #1808)
- Fix 3 corner cases when request body is chunked (#1508)
- Change pid existence check's condition branches (#1650)
- Don't call .stop on a server that doesn't exist (#1655)
- Implemented NID_X9_62_prime256v1 (P-256) curve over P-521 (#1671)
- Fix @notify.close can't modify frozen IOError (RuntimeError) (#1583)
- Fix Java 8 support (#1773)
- Fix error
uninitialized constant Puma::Cluster
(#1731) - Fix
not_token
being able to be set to true (#1803) - Fix "Hang on SIGTERM with ruby 2.6 in clustered mode" (PR #1741, #1674, #1720, #1730, #1755)
- 1 features
- Internal strings are frozen (#1649)
- 3 bugfixes
-
5 features:
- You can now specify which SSL ciphers the server should support, default is unchanged (#1478)
- The setting for Puma's
max_threads
is now inPuma.stats
(#1604) - Pool capacity is now in
Puma.stats
(#1579) - Installs restricted to Ruby 2.2+ (#1506)
--control
is now deprecated in favor of--control-url
(#1487)
-
2 bugfixes:
- 2 features:
- 5 bugfixes:
- 3 bugfixes:
- 1 bugfix:
- Deal with read_nonblock returning nil early
- 1 bugfix:
- Handle read_nonblock returning nil when the socket close (#1502)
-
2 features:
-
9 bugfixes:
- Environment config files (/config/puma/.rb) load correctly (#1340)
- Specify windows dependencies correctly (#1434, #1436)
- puma/events required in test helper (#1418)
- Correct control CLI's option help text (#1416)
- Remove a warning for unused variable in mini_ssl (#1409)
- Correct pumactl docs argument ordering (#1427)
- Fix an uninitialized variable warning in server.rb (#1430)
- Fix docs typo/error in Launcher init (#1429)
- Deal with leading spaces in RUBYOPT (#1455)
-
2 other:
-
3 features:
-
12 bugfixes:
- Not really a Puma bug, but @NickolasVashchenko created a gem to workaround a Ruby bug that some users of Puma may be experiencing. See README for more. (#1347)
- Fix hangups with SSL and persistent connections. (#1334)
- Fix Rails double-binding to a port (#1383)
- Fix incorrect thread names (#1368)
- Fix issues with /etc/hosts and JRuby where localhost addresses were not correct. (#1318)
- Fix compatibility with RUBYOPT="--enable-frozen-string-literal" (#1376)
- Fixed some compiler warnings (#1388)
- We actually run the integration tests in CI now (#1390)
- No longer shipping unnecessary directories in the gemfile (#1391)
- If RUBYOPT is nil, we no longer blow up on restart. (#1385)
- Correct response to SIGINT (#1377)
- Proper exit code returned when we receive a TERM signal (#1337)
-
3 refactors:
-
1 known issue:
- Socket activation doesn't work in JRuby. Their fault, not ours. (#1367)
- 2 bugfixes:
-
2 features:
-
9 bugfixes:
- Reduce information leakage by preventing HTTP parse errors from writing environment hashes to STDERR (#1306)
- Fix SSL/WebSocket compatibility (#1274)
- HTTP headers with empty values are no longer omitted from responses. (#1261)
- Fix a Rack env key which was set to nil. (#1259)
- peercert has been implemented for JRuby (#1248)
- Fix port settings when using rails s (#1277, #1290)
- Fix compat w/LibreSSL (#1285)
- Fix restarting Puma w/symlinks and a new Gemfile (#1282)
- Replace Dir.exists? with Dir.exist? (#1294)
-
1 known issue:
- A bug in MRI 2.2+ can result in IOError: stream closed. See #1206. This issue has existed since at least Puma 3.6, and probably further back.
-
1 refactor:
- Lots of test fixups from @grosser.
- 1 bugfix:
- Deal with getsockopt with TCP_INFO failing for sockets that say they're TCP but aren't really. (#1241)
- 1 bugfix:
- Remove method call to method that no longer exists (#1239)
-
2 bugfixes:
-
1 feature:
- Closed clients are aborted to save capacity (#1227)
-
1 refactor:
- Bundler is no longer a dependency from tests (#1213)
- 2 bugfixes:
-
6 minor features:
- Allow rack handler to accept ssl host. (#1129)
- Refactor TTOU processing. TTOU now handles multiple signals at once. (#1165)
- Pickup any remaining chunk data as the next request.
- Prevent short term thread churn - increased auto trim default to 30 seconds.
- Raise error when
stdout
orstderr
is not writable. (#1175) - Add Rack 2.0 support to gemspec. (#1068)
-
5 refactors:
-
14 bugfixes:
- Add eof? method to NullIO? (#1169)
- Fix Puma startup in provided init.d script (#1061)
- Fix default SSL mode back to none. (#1036)
- Fixed the issue of @listeners getting nil io (#1120)
- Make
get_dh1024
compatible with OpenSSL v1.1.0 (#1178) - More gracefully deal with SSL sessions. Fixes #1002
- Move puma.rb to just autoloads. Fixes #1063
- MiniSSL: Provide write as <<. Fixes #1089
- Prune bundler should inherit fds (#1114)
- Replace use of Process.getpgid which does not behave as intended on all platforms (#1110)
- Transfer encoding header should be downcased before comparison (#1135)
- Use same write log logic for hijacked requests. (#1081)
- Fix
uninitialized constant Puma::StateFile
(#1138) - Fix access priorities of each level in LeveledOptions (#1118)
-
3 others:
- Lots of tests added/fixed/improved. Switched to Minitest from Test::Unit. Big thanks to @frodsan.
- Lots of documentation added/improved.
- Add license indicators to the HTTP extension. (#1075)
-
1 bug fix:
- Revert #1118/Fix access priorities of each level in LeveledOptions. This had an unintentional side effect of changing the importance of command line options, such as -p.
-
8 bug fixes:
- Fix Puma start in init.d script.
- Fix default SSL mode back to none. Fixes #1036
- Fixed the issue of @listeners getting nil io, fix rails restart (#1120)
- More gracefully deal with SSL sessions. Fixes #1002
- Prevent short term thread churn.
- Provide write as <<. Fixes #1089
- Fix access priorities of each level in LeveledOptions - fixes TTIN.
- Stub description files updated for init.d.
-
2 new project committers:
- Nate Berkopec (@nateberkopec)
- Richard Schneeman (@schneems)
- 12 bug fixes:
- Add ability to detect a shutting down server. Fixes #932
- Add support for Expect: 100-continue. Fixes #519
- Check SSLContext better. Fixes #828
- Clarify behavior of '-t num'. Fixes #984
- Don't default to VERIFY_PEER. Fixes #1028
- Don't use ENV['PWD'] on windows. Fixes #1023
- Enlarge the scope of catching app exceptions. Fixes #1027
- Execute background hooks after daemonizing. Fixes #925
- Handle HUP as a stop unless there is IO redirection. Fixes #911
- Implement chunked request handling. Fixes #620
- Just rescue exception to return a 500. Fixes #1027
- Redirect IO in the jruby daemon mode. Fixes #778
-
1 bug fix:
- Don't let persistent_timeout be nil
-
1 PR merged:
- Merge pull request #1021 from benzrf/patch-1
- 1 bug fix:
- Be sure to only listen on host:port combos once. Fixes #1022
-
1 minor features:
- Allow persistent_timeout to be configured via the dsl.
-
9 bug fixes:
- Allow a bare % in a query string. Fixes #958
- Explicitly listen on all localhost addresses. Fixes #782
- Fix
TCPLogger
log error in tcp cluster mode. - Fix puma/puma[#968] Cannot bind SSL port due to missing verify_mode option
- Fix puma/puma[#968] Default verify_mode to peer
- Log any exceptions in ThreadPool. Fixes #1010
- Silence connection errors in the reactor. Fixes #959
- Tiny fixes in hook documentation for #840
- It should not log requests if we want it to be quiet
-
5 doc fixes:
- Add How to stop Puma on Heroku using plugins to the example directory
- Provide both hot and phased restart in jungle script
- Update reference to the instances management script
- Update default number of threads
- Fix typo in example config
-
14 PRs merged:
- Merge pull request #1007 from willnet/patch-1
- Merge pull request #1014 from jeznet/patch-1
- Merge pull request #1015 from bf4/patch-1
- Merge pull request #1017 from jorihardman/configurable_persistent_timeout
- Merge pull request #954 from jf/master
- Merge pull request #955 from jf/add-request-info-to-standard-error-rescue
- Merge pull request #956 from maxkwallace/master
- Merge pull request #960 from kmayer/kmayer-plugins-heroku-restart
- Merge pull request #969 from frankwong15/master
- Merge pull request #970 from willnet/delete-blank-document
- Merge pull request #974 from rocketjob/feature/name_threads
- Merge pull request #977 from snow/master
- Merge pull request #981 from zach-chai/patch-1
- Merge pull request #993 from scorix/master
-
2 minor features:
-
3 unknowns:
-
5 doc fixes:
- Add Process Monitors section to top-level README
- Better document the hooks. Fixes #840
- docs/system.md sample config refinements and elaborations
- Fix typos at couple of places.
- Cleanup warnings
-
3 PRs merged:
-
2 minor features:
- Allow overriding options of Configuration object
- Rename to inherit_ssl_listener like inherit_tcp|unix
-
2 doc fixes:
- Add docs/systemd.md (with socket activation sub-section)
- Document UNIX signals with cluster on README.md
-
3 PRs merged:
-
1 deprecation removal:
- Delete capistrano.rb
-
3 bug fixes:
- Detect gems.rb as well as Gemfile
- Simplify and fix logic for directory to use when restarting for all phases
- Speed up phased-restart start
-
2 PRs merged:
-
4 bug fixes:
-
3 PRs merged:
-
1 minor feature:
- Add 'import' directive to config file. Fixes #916
-
5 bug fixes:
-
5 bug fixes:
- Fix 'undefined local variable or method
pid
for #Puma::ControlCLI:0x007f185fcef968' when execute pumactl with--pid
option. - Fix 'undefined method
windows?
for Puma:Module' when execute pumactl. - Harden tmp_restart against errors related to the restart file
- Make
plugin :tmp_restart
behavior correct in Windows. - fix uninitialized constant Puma::ControlCLI::StateFile
- Fix 'undefined local variable or method
-
3 PRs merged:
-
1 bug fix:
- Removed the experimental support for async.callback as it broke websockets entirely. Seems no server has both hijack and async.callback and thus faye is totally confused what to do and doesn't work.
-
2 major changes:
- Ruby pre-2.0 is no longer supported. We'll do our best to not add features that break those rubies but will no longer be testing with them.
- Don't log requests by default. Fixes #852
-
2 major features:
- Plugin support! Plugins can interact with configuration as well as provide augment server functionality!
- Experimental env['async.callback'] support
-
4 minor features:
-
5 bug fixes:
-
5 doc fixes:
- Update README.md with various grammar fixes
- Use newest version of Minitest
- Add directory configuration docs, fix typo [ci skip]
- Remove old COPYING notice. Fixes #849
-
10 merged PRs:
- Merge pull request #871 from deepj/travis
- Merge pull request #874 from wallclockbuilder/master
- Merge pull request #883 from dadah89/igor/trim_only_worker
- Merge pull request #884 from uistudio/async-callback
- Merge pull request #888 from mlarraz/tick_minitest
- Merge pull request #890 from todd/directory_docs
- Merge pull request #891 from ctaintor/improve_clustered_status
- Merge pull request #893 from spastorino/add_missing_require
- Merge pull request #897 from zendesk/master
- Merge pull request #899 from kch/kch-readme-fixes
-
7 minor features:
- Add 'set_remote_address' config option
- Allow to run puma in silent mode
- Expose cli options in DSL
- Support passing JRuby keystore info in ssl_bind DSL
- Allow umask for unix:/// style control urls
- Expose
old_worker_count
in stats url - Support TLS client auth (verify_mode) in jruby
-
7 bug fixes:
- Don't persist before_fork hook in state file
- Reload bundler before pulling in rack. Fixes #859
- Remove NEWRELIC_DISPATCHER env variable
- Cleanup C code
- Use Timeout.timeout instead of Object.timeout
- Make phased restarts faster
- Ignore the case of certain headers, because HTTP
-
1 doc changes:
- Test against the latest Ruby 2.1, 2.2, 2.3, head and JRuby 9.0.4.0 on Travis
-
12 merged PRs
- Merge pull request #822 from kwugirl/remove_NEWRELIC_DISPATCHER
- Merge pull request #833 from joemiller/jruby-client-tls-auth
- Merge pull request #837 from YuriSolovyov/ssl-keystore-jruby
- Merge pull request #839 from mezuka/master
- Merge pull request #845 from deepj/timeout-deprecation
- Merge pull request #846 from sriedel/strip_before_fork
- Merge pull request #850 from deepj/travis
- Merge pull request #853 from Jeffrey6052/patch-1
- Merge pull request #857 from zendesk/faster_phased_restarts
- Merge pull request #858 from mlarraz/fix_some_warnings
- Merge pull request #860 from zendesk/expose_old_worker_count
- Merge pull request #861 from zendesk/allow_control_url_umask
-
1 bug fix:
- Fix JRuby parser
-
2 bug fixes:
- ext/puma_http11: handle duplicate headers as per RFC
- Only set ctx.ca iff there is a params['ca'] to set with.
-
2 PRs merged:
-
1 bug fix:
- Allow older openssl versions
-
6 minor features:
- Allow setting ca without setting a verify mode
- Make jungle for init.d support rbenv
- Use SSL_CTX_use_certificate_chain_file for full chain
- cluster: add worker_boot_timeout option
- configuration: allow empty tags to mean no tag desired
- puma/cli: support specifying STD{OUT,ERR} redirections and append mode
-
5 bug fixes:
- Disable SSL Compression
- Fix bug setting worker_directory when using a symlink directory
- Fix error message in DSL that was slightly inaccurate
- Pumactl: set correct process name. Fixes #563
- thread_pool: fix race condition when shutting down workers
-
10 doc fixes:
- Add before_fork explanation in Readme.md
- Correct spelling in DEPLOYMENT.md
- Correct spelling in docs/nginx.md
- Fix spelling errors.
- Fix typo in deployment description
- Fix typos (it's -> its) in events.rb and server.rb
- fixing for typo mentioned in #803
- Spelling correction for README
- thread_pool: fix typos in comment
- More explicit docs for worker_timeout
-
18 PRs merged:
- Merge pull request #768 from nathansamson/patch-1
- Merge pull request #773 from rossta/spelling_corrections
- Merge pull request #774 from snow/master
- Merge pull request #781 from sunsations/fix-typo
- Merge pull request #791 from unleashed/allow_empty_tags
- Merge pull request #793 from robdimarco/fix-working-directory-symlink-bug
- Merge pull request #794 from peterkeen/patch-1
- Merge pull request #795 from unleashed/redirects-from-cmdline
- Merge pull request #796 from cschneid/fix_dsl_message
- Merge pull request #799 from annafw/master
- Merge pull request #800 from liamseanbrady/fix_typo
- Merge pull request #801 from scottjg/ssl-chain-file
- Merge pull request #802 from scottjg/ssl-crimes
- Merge pull request #804 from burningTyger/patch-2
- Merge pull request #809 from unleashed/threadpool-fix-race-in-shutdown
- Merge pull request #810 from vlmonk/fix-pumactl-restart-bug
- Merge pull request #814 from schneems/schneems/worker_timeout-docs
- Merge pull request #817 from unleashed/worker-boot-timeout
-
1 minor feature:
- Make building with SSL support optional
-
1 bug fix:
- Use Rack::Builder if available. Fixes #735
- 1 bug fix:
- Use the environment possible set by the config early and from the config file later (if set).
Seriously, I need to revamp config with tests.
- 1 bug fix:
- Fix preserving options before cleaning for state. Fixes #769
The "clearly I don't have enough tests for the config" release.
- 1 bug fix:
- Fix another place binds wasn't initialized. Fixes #767
- 2 bug fixes:
-
1 minor feature:
- Add before_fork hooks option.
-
3 bug fixes:
- Check for OPENSSL_NO_ECDH before using ECDH
- Eliminate logging overhead from JRuby SSL
- Prefer cli options over config file ones. Fixes #669
-
1 deprecation:
- Add deprecation warning to capistrano.rb. Fixes #673
-
4 PRs merged:
-
8 minor bugs fixed:
- Fix Capistrano 'uninitialized constant Puma' error.
- Fix some ancient and incorrect error handling code
- Fix uninitialized constant error
- Remove toplevel rack interspection, require rack on load instead
- Skip empty parts when chunking
- Switch from inject to each in config_ru_binds iteration
- Wrap SSLv3 spec in version guard.
- ruby 1.8.7 compatibility patches
-
4 PRs merged:
-
1 test fix:
- Add 1.8.7, rbx-1 (allow failures) to Travis.
- 2 bug fix:
-
2 bug fixes:
-
1 doc change:
- typo fix: occured -> occurred
-
1 PR merged:
- Merge pull request #736 from paulanunda/paulanunda/typo-fix
-
13 bug fixes:
- Add thread reaping to thread pool
- Do not automatically use chunked responses when hijacked
- Do not suppress Content-Length on partial hijack
- Don't allow any exceptions to terminate a thread
- Handle ENOTCONN client disconnects when setting REMOTE_ADDR
- Handle very early exit of cluster mode. Fixes #722
- Install rack when running tests on travis to use rack/lint
- Make puma -v and -h return success exit code
- Make pumactl load config/puma.rb by default
- Pass options from pumactl properly when pruning. Fixes #694
- Remove rack dependency. Fixes #705
- Remove the default Content-Type: text/plain
- Add Client Side Certificate Auth
-
8 doc/test changes:
- Added example sourcing of environment vars
- Added tests for bind configuration on rackup file
- Fix example config text
- Update DEPLOYMENT.md
- Update Readme with example of custom error handler
- ci: Improve Travis settings
- ci: Start running tests against JRuby 9k on Travis
- ci: Convert to container infrastructure for travisci
-
2 ops changes:
- Check for system-wide rbenv
- capistrano: Add additional env when start rails
-
16 PRs merged:
- Merge pull request #686 from jjb/patch-2
- Merge pull request #693 from rob-murray/update-example-config
- Merge pull request #697 from spk/tests-bind-on-rackup-file
- Merge pull request #699 from deees/fix/require_rack_builder
- Merge pull request #701 from deepj/master
- Merge pull request #702 from Jimdo/thread-reaping
- Merge pull request #703 from deepj/travis
- Merge pull request #704 from grega/master
- Merge pull request #709 from lian/master
- Merge pull request #711 from julik/master
- Merge pull request #712 from yakara-ltd/pumactl-default-config
- Merge pull request #715 from RobotJiang/master
- Merge pull request #725 from rwz/master
- Merge pull request #726 from strenuus/handle-client-disconnect
- Merge pull request #729 from allaire/patch-1
- Merge pull request #730 from iamjarvo/container-infrastructure
-
5 bug fixes:
-
1 PR merged:
- Merge pull request #698 from looker/hang-handshake
-
2 minor features:
- Add
on_worker_fork
hook, which allows to mimic Unicorn's behavior - Add shutdown_debug config option
- Add
-
4 bug fixes:
- Fix the Config constants not being available in the DSL. Fixes #683
- Ignore multiple port declarations
- Proper 'Connection' header handling compatible with HTTP 1.[01] protocols
- Use "Puma" instead of "puma" to reporting to New Relic
-
1 doc fixes:
- Add Gitter badge.
-
6 PRs merged:
- Merge pull request #657 from schneems/schneems/puma-once-port
- Merge pull request #658 from Tomohiro/newrelic-dispatcher-default-update
- Merge pull request #662 from basecrm/connection-compatibility
- Merge pull request #664 from fxposter/on-worker-fork
- Merge pull request #667 from JuanitoFatas/doc/gemspec
- Merge pull request #672 from chulkilee/refactor
-
2 bug fixes:
- Avoid crash in strange restart conditions
- Inject the GEM_HOME that bundler into puma-wild's env. Fixes #653
-
2 PRs merged:
-
9 bug fixes:
- Add mode as an additional bind option to unix sockets. Fixes #630
- Advertise HTTPS properly after a hot restart
- Don't write lowlevel_error_handler to state
- Fix phased restart with stuck requests
- Handle spaces in the path properly. Fixes #622
- Set a default REMOTE_ADDR to avoid using peeraddr on unix sockets. Fixes #583
- Skip device number checking on jruby. Fixes #586
- Update extconf.rb to compile correctly on OS X
- redirect io right after daemonizing so startup errors are shown. Fixes #359
-
6 minor features:
- Add a configuration option that prevents puma from queueing requests.
- Add reload_worker_directory
- Add the ability to pass environment variables to the init script (for Jungle).
- Add the proctitle tag to the worker. Fixes #633
- Infer a proctitle tag based on the directory
- Update lowlevel error message to be more meaningful.
-
10 PRs merged:
- Merge pull request #478 from rubencaro/master
- Merge pull request #610 from kwilczynski/master
- Merge pull request #611 from jasonl/better-lowlevel-message
- Merge pull request #616 from jc00ke/master
- Merge pull request #623 from raldred/patch-1
- Merge pull request #628 from rdpoor/master
- Merge pull request #634 from deepj/master
- Merge pull request #637 from raskhadafi/patch-1
- Merge pull request #639 from ebeigarts/fix-phased-restarts
- Merge pull request #640 from codehotter/issue-612-dependent-requests-deadlock
- 1 bug fix:
- Conditionalize thread local cleaning, fixes perf degradation fix The code to clean out all Thread locals adds pretty significant overhead to a each request, so it has to be turned on explicitly if a user needs it.
-
1 bug fix:
- Load the app after daemonizing because the app might start threads.
This change means errors loading the app are now reported only in the redirected stdout/stderr.
If you're app has problems starting up, start it without daemon mode initially to test.
-
3 minor features:
- Added on_worker_shutdown hook mechanism
- Allow binding to ipv6 addresses for ssl URIs
- Warn about any threads started during app preload
-
5 bug fixes:
-
2 doc changes:
- Change umask examples to more permissive values
- fix typo in README.md
-
9 Merged PRs:
- Merge pull request #560 from raskhadafi/prune_bundler-bug
- Merge pull request #566 from sheltond/master
- Merge pull request #593 from andruby/patch-1
- Merge pull request #594 from hassox/thread-cleanliness
- Merge pull request #596 from burningTyger/patch-1
- Merge pull request #601 from sorentwo/friendly-umask
- Merge pull request #602 from 1334/patch-1
- Merge pull request #608 from Gu1/master
- Merge pull request #538 from memiux/?
-
8 bug fixes:
- Fix puma-wild handling a restart properly. Fixes #550
- JRuby SSL POODLE update
- Keep deprecated features warnings
- Log the current time when Puma shuts down.
- Fix cross-platform extension library detection
- Use the correct Windows names for OpenSSL.
- Better error logging during startup
- Fixing sexist error messages
-
6 PRs merged:
- Merge pull request #549 from bsnape/log-shutdown-time
- Merge pull request #553 from lowjoel/master
- Merge pull request #568 from mariuz/patch-1
- Merge pull request #578 from danielbuechele/patch-1
- Merge pull request #581 from alexch/slightly-better-logging
- Merge pull request #590 from looker/jruby_disable_sslv3
-
4 bug fixes:
- Cleanup the SSL related structures properly, fixes memory leak
- Fix thread spawning edge case.
- Force a worker check after a worker boots, don't wait 5sec. Fixes #574
- Implement SIGHUP for logs reopening
-
2 PRs merged:
-
1 minor feature:
- Add SSL support for JRuby
-
3 bug fixes:
- Typo BUNDLER_GEMFILE -> BUNDLE_GEMFILE
- Use fast_write because we can't trust syswrite
- pumactl - do not modify original ARGV
-
4 doc fixes:
- BSD-3-Clause over BSD to avoid confusion
- Deploy doc: clarification of the GIL
- Fix typo in DEPLOYMENT.md
- Update README.md
-
6 PRs merged:
-
4 bug fixes:
- During upgrade, change directory in main process instead of workers.
- Close the client properly on error
- Capistrano: fallback from phased restart to start when not started
- Allow tag option in conf file
-
4 doc fixes:
- Fix Puma daemon service README typo
preload_app!
instead ofpreload_app
- add preload_app and prune_bundler to example config
- allow changing of worker_timeout in config file
-
11 PRs merged:
- Merge pull request #487 from ckuttruff/master
- Merge pull request #492 from ckuttruff/master
- Merge pull request #493 from alepore/config_tag
- Merge pull request #503 from mariuz/patch-1
- Merge pull request #505 from sammcj/patch-1
- Merge pull request #506 from FlavourSys/config_worker_timeout
- Merge pull request #510 from momer/rescue-block-handle-servers-fix
- Merge pull request #511 from macool/patch-1
- Merge pull request #514 from edogawaconan/refactor_env
- Merge pull request #517 from misfo/patch-1
- Merge pull request #518 from LongMan/master
-
1 bug fixes:
- Run puma-wild with proper deps for prune_bundler
-
2 doc changes:
- Described the configuration file finding behavior added in 2.8.0 and how to disable it.
- Start the deployment doc
-
6 PRs merged:
-
8 minor features:
- Add ability to autoload a config file. Fixes #438
- Add ability to detect and terminate hung workers. Fixes #333
- Add booted_workers to stats response
- Add config to customize the default error message
- Add prune_bundler option
- Add worker indexes, expose them via on_worker_boot. Fixes #440
- Add pretty process name
- Show the ruby version in use
-
7 bug fixes:
- Added 408 status on timeout.
- Be more hostile with sockets that write block. Fixes #449
- Expect at_exit to exclusively remove the pidfile. Fixes #444
- Expose latency and listen backlog via bind query. Fixes #370
- JRuby raises IOError if the socket is there. Fixes #377
- Process requests fairly. Fixes #406
- Rescue SystemCallError as well. Fixes #425
-
4 doc changes:
- Add 2.1.0 to the matrix
- Add Code Climate badge to README
- Create signals.md
- Set the license to BSD. Fixes #432
-
14 PRs merged:
- Merge pull request #428 from alexeyfrank/capistrano_default_hooks
- Merge pull request #429 from namusyaka/revert-const_defined
- Merge pull request #431 from mrb/master
- Merge pull request #433 from alepore/process-name
- Merge pull request #437 from ibrahima/master
- Merge pull request #446 from sudara/master
- Merge pull request #451 from pwiebe/status_408
- Merge pull request #453 from joevandyk/patch-1
- Merge pull request #470 from arthurnn/fix_458
- Merge pull request #472 from rubencaro/master
- Merge pull request #480 from jjb/docs-on-running-test-suite
- Merge pull request #481 from schneems/master
- Merge pull request #482 from prathamesh-sonpatki/signals-doc-cleanup
- Merge pull request #483 from YotpoLtd/master
- 1 bug fix:
- Keep STDOUT/STDERR the right mode. Fixes #422
-
1 minor feature:
- Adding TTIN and TTOU to increment/decrement workers
-
N bug fixes:
- Always use our Process.daemon because it's not busted
- Add capistrano restart failback to start.
- Change position of
cd
so that rvm gemset is loaded - Clarify some platform specifics
- Do not close the pipe sockets when retrying
- Fix String#byteslice for Ruby 1.9.1, 1.9.2
- Fix compatibility with 1.8.7.
- Handle IOError closed stream in IO.select
- Increase the max URI path length to 2048 chars from 1024 chars
- Upstart jungle use config/puma.rb instead
-
2 minor features:
- Add support for event hooks ** Add a hook for state transitions
- Add phased restart to capistrano recipe.
-
4 bug fixes:
- Convince workers to stop by SIGKILL after timeout
- Define RSTRING_NOT_MODIFIED for Rubinius performance
- Handle BrokenPipe, StandardError and IOError in fat_wrote and break out
- Return success status to the invoking environment
- 2 bug fixes:
- Keep jruby daemon mode from retrying on a hot restart
- Extract version from const.rb in gemspec
-
2 minor features:
- Allow configuring pumactl with config.rb
- make
pumactl restart
start puma if not running
-
6 bug fixes:
- Autodetect ruby managers and home directory in upstart script
- Convert header values to string before sending.
- Correctly report phased-restart availability
- Fix pidfile creation/deletion race on jruby daemonization
- Use integers when comparing thread counts
- Fix typo in using lopez express (raw tcp) mode
-
6 misc changes:
- Fix typo in phased-restart response
- Uncomment setuid/setgid by default in upstart
- Use Puma::Const::PUMA_VERSION in gemspec
- Update upstart comments to reflect new commandline
- Remove obsolete pumactl instructions; refer to pumactl for details
- Make Bundler used puma.gemspec version agnostic
- 1 experimental feature:
- Support raw tcp servers (aka Lopez Express mode)
-
5 minor features:
- Add PUMA_JRUBY_DAEMON_OPTS to get around agent starting twice
- Add ability to drain accept socket on shutdown
- Add port to DSL
- Adds support for using puma config file in capistrano deploys.
- Make phased_restart fallback to restart if not available
-
10 bug fixes:
- Be sure to only delete the pid in the master. Fixes #334
- Call out -C/--config flags
- Change parser symbol names to avoid clash. Fixes #179
- Convert thread pool sizes to integers
- Detect when the jruby daemon child doesn't start properly
- Fix typo in CLI help
- Improve the logging output when hijack is used. Fixes #332
- Remove unnecessary thread pool size conversions
- Setup :worker_boot as an Array. Fixes #317
- Use 127.0.0.1 as REMOTE_ADDR of unix client. Fixes #309
- 1 bug fix:
- Move starting control server to after daemonization.
-
2 bug fixes:
- Include the right files in the Manifest.
- Disable inheriting connections on restart on windows. Fixes #166
-
1 doc change:
- Better document some platform constraints
-
1 major bug fix:
- Stabilize control server, add support in cluster mode
-
5 minor bug fixes:
-
2 internal changes:
- Refactored modes into seperate classes that CLI uses
- Changed CLI to take an Events object instead of stdout/stderr (API change)
- 1 bug fix:
- Fix restart_command in the config
-
1 minor feature:
- Introduce preload flag
-
1 bug fix:
- Pass custom restart command in JRuby
-
1 major feature:
- Add ability to preload rack app
-
2 minor bugfixes:
- Don't leak info when not in development. Fixes #256
- Load the app, then bind the ports
-
2 minor bug fixes:
- Fix daemonization on jruby
- Load the application before daemonizing. Fixes #285
-
3 minor features:
- Allow listening socket to be configured via Capistrano variable
- Output results from 'stat's command when using pumactl
- Support systemd socket activation
-
15 bug fixes:
- Deal with pipes closing while stopping. Fixes #270
- Error out early if there is no app configured
- Handle ConnectionError rather than the lowlevel exceptions
- tune with
-C
config file andon_worker_boot
- use
-w
- Fixed some typos in upstart scripts
- Make sure to use bytesize instead of size (MiniSSL write)
- Fix an error in puma-manager.conf
- fix: stop leaking sockets on restart (affects ruby 1.9.3 or before)
- Ignore errors on the cross-thread pipe. Fixes #246
- Ignore errors while uncorking the socket (it might already be closed)
- Ignore the body on a HEAD request. Fixes #278
- Handle all engine data when possible. Fixes #251.
- Handle all read exceptions properly. Fixes #252
- Handle errors from the server better
-
3 doc changes:
- Add note about on_worker_boot hook
- Add some documentation for Clustered mode
- Added quotes to /etc/puma.conf
- 1 bug fix:
- Fix not starting on JRuby properly
RailsConf 2013 edition!
-
2 doc changes:
- Start with rackup -s Puma, NOT rackup -s puma.
- Minor doc fixes in the README.md, Capistrano section
-
2 bug fixes:
-
3 minor changes:
- Fix capistrano recipe
- Fix stdout/stderr logs to sync outputs
- allow binding to IPv6 addresses
-
5 minor enhancements:
- Add -q option for :start
- Add -V, --version
- Add default Rack handler helper
- Upstart support
- Set worker directory from configuration file
-
12 bug fixes:
- Close the binder in the right place. Fixes #192
- Handle early term in workers. Fixes #206
- Make sure that the default port is 80 when the request doesn't include HTTP_X_FORWARDED_PROTO.
- Prevent Errno::EBADF errors on restart when running ruby 2.0
- Record the proper @master_pid
- Respect the header HTTP_X_FORWARDED_PROTO when the host doesn't include a port number.
- Retry EAGAIN/EWOULDBLOCK during syswrite
- Run exec properly to restart. Fixes #154
- Set Rack run_once to false
- Syncronize all access to @timeouts. Fixes #208
- Write out the state post-daemonize. Fixes #189
- Prevent crash when all workers are gone
-
2 minor enhancements:
- Add hook for running when a worker boots
- Advertise the Configuration object for apps to use.
-
1 bug fix:
- Change directory in working during upgrade. Fixes #185
-
2 major features:
- Add phased worker upgrade
- Add support for the rack hijack protocol
-
2 minor features:
- Add -R to specify the restart command
- Add config file option to specify the restart command
-
5 bug fixes:
- 4 bug fixes:
- Properly check #syswrite's value for variable sized buffers. Fixes #170
- Shutdown status server properly
- Handle char vs byte and mixing syswrite with write properly
- made MiniSSL validate key/cert file existence
- 1 bug fix:
- Package right files in gem
-
5 minor feature:
- Now Puma is bundled with an capistrano recipe. Just require 'puma/capistrano' in you deploy.rb
- Only inject CommonLogger in development mode
- Add -p option to pumactl
- Add ability to use pumactl to start a server
- Add options to daemonize puma
-
7 bug fixes:
- Reset the IOBuffer properly. Fixes #148
- Shutdown gracefully on JRuby with Ctrl-C
- Various methods to get newrelic to start. Fixes #128
- fixing syntax error at capistrano recipe
- Force ECONNRESET when read returns nil
- Be sure to empty the drain the todo before shutting down. Fixes #155
- allow for alternate locations for status app
-
1 major feature:
- Optional worker process mode (-w) to allow for process scaling in addition to thread scaling
-
1 bug fix:
- Introduce Puma::MiniSSL to be able to properly control doing nonblocking SSL
NOTE: SSL support in JRuby is not supported at present. Support will be added back in a future date when a java Puma::MiniSSL is added.
- 1 bug fix:
- Close sockets waiting in the reactor when a hot restart is performed so that browsers reconnect on the next request
- 1 bug fix:
- Rescue StandardError instead of IOError to handle SystemCallErrors as well as other application exceptions inside the reactor.
- 1 packaging bug fixed:
- Include missing files
- 1 major bug fix:
- Prevent slow clients from starving the server by introducing a dedicated IO reactor thread. Credit for reporting goes to @meh.
-
7 contributors to this release:
- Christian Mayer
- Darío Javier Cravero
- Dirkjan Bussink
- Gianluca Padovani
- Santiago Pastorino
- Thibault Jouan
- tomykaira
-
6 bug fixes:
- Define RSTRING_NOT_MODIFIED for Rubinius
- Convert status to integer. Fixes #123
- Delete pidfile when stopping the server
- Allow compilation with -Werror=format-security option
- Fix wrong HTTP version for a HTTP/1.0 request
- Use String#bytesize instead of String#length
-
3 minor features:
- Added support for setting RACK_ENV via the CLI, config file, and rack app
- Allow Server#run to run sync. Fixes #111
- Puma can now run on windows
-
1 bug fix:
- SCRIPT_NAME should be passed from env to allow mounting apps
-
1 experimental feature:
- Add puma.socket key for direct socket access
- 2 bug fixes:
- use #bytesize instead of #length for Content-Length header
- Use StringIO properly. Fixes #98
-
2 minor features:
- Return valid Rack responses (passes Lint) from status server
- Add -I option to specify $LOAD_PATH directories
-
4 bug fixes:
-
1 new contributor:
- Jesse Cooke
- 4 bug fixes:
- Report a lowlevel error to stderr
- Set a fallback SERVER_NAME and SERVER_PORT
- Keep the encoding of the body correct. Fixes #79
- show error.to_s along with backtrace for low-level error
- 1 bug fix:
- Fix rack.url_scheme for SSL servers. Fixes #65
-
1 major feature:
-
When possible, the internal restart does a "hot restart" meaning the server sockets remains open, so no connections are lost.
-
1 minor feature:
- More helpful fallback error message
-
6 bug fixes:
-
2 new contributors:
- Seamus Abshere
- Steve Richert
- 1 bugfix:
- Include puma/compat.rb in the gem (oops!)
-
1 bugfix:
- Make sure that the unix socket has the perms 0777 by default
-
1 minor feature:
- Add umask param to the unix:// bind to set the umask
- Released!
-
Features
- Your feature goes here <Most recent on the top, like GitHub> (#Github Number)
-
Bugfixes
- Your bugfix goes here <Most recent on the top, like GitHub> (#Github Number)