Note update of devel/php-xdebug package to 2.5.5.

(taca)

Update php-debug to 2.5.5.

Wed, Jun 21, 2017 - xdebug 2.5.5

= Fixed bugs:

- Fixed issue #1439: TYPE_CHECK needs overloading due to smart branches
- Fixed issue #1444: Code Coverage misses a variable in a multi-line function
call
- Fixed issue #1446: Code Coverage misses elseif if it uses an isset with a
property

(taca)

Note update of lang/php70 package to 7.0.21.

(taca)

Update php70 to 7.0.21.

06 Jul 2017 PHP 7.0.21

- Core:
  . Fixed bug #74738 (Multiple [PATH=] and [HOST=] sections not properly
    parsed). (Manuel Mausz)
  . Fixed bug #74658 (Undefined constants in array properties result in broken
    properties). (Laruence)
  . Fixed misparsing of abstract unix domain socket names. (Sara)
  . Fixed bug #74101, bug #74614 (Unserialize Heap Use-After-Free (READ: 1) in
    zval_get_type). (Nikita)
  . Fixed bug #74111 (Heap buffer overread (READ: 1) finish_nested_data from
    unserialize). (Nikita)
  . Fixed bug #74603 (PHP INI Parsing Stack Buffer Overflow Vulnerability).
    (Stas)
  . Fixed bug #74819 (wddx_deserialize() heap out-of-bound read via
    php_parse_date()). (Derick)

- DOM:
  . Fixed bug #69373 (References to deleted XPath query results). (ttoohey)

- GD:
  . Fixed bug #74435 (Buffer over-read into uninitialized memory). (cmb)

- Intl:
  . Fixed bug #73473 (Stack Buffer Overflow in msgfmt_parse_message). (libnex)
  . Fixed bug #74705 (Wrong reflection on Collator::getSortKey and
    collator_get_sort_key). (Tyson Andre, Remi)
  . Fixed bug #73634 (grapheme_strpos illegal memory access). (Stas)

- Mbstring:
  . Add oniguruma upstream fix (CVE-2017-9224, CVE-2017-9226, CVE-2017-9227,
    CVE-2017-9228, CVE-2017-9229) (Remi, Mamoru TASAKA)

- OCI8:
. Add TAF callback (PR #2459). (KoenigsKind)

- Opcache:
  . Fixed bug #74663 (Segfault with opcache.memory_protect and
    validate_timestamp). (Laruence)

- OpenSSL:
  . Fixed bug #74651 (negative-size-param (-1) in memcpy in zif_openssl_seal()).
    (Stas)

- PCRE:
  . Fixed bug #74087 (Segmentation fault in PHP7.1.1(compiled using the bundled PCRE library)).
    (Stas)

- PDO_OCI:
  . Support Instant Client 12.2 in --with-pdo-oci configure option.
    (Tianfang Yang)

- Reflection:
  . Fixed bug #74673 (Segfault when cast Reflection object to string with
    undefined constant). (Laruence)

- SPL:
  . Fixed bug #74478 (null coalescing operator failing with SplFixedArray).
    (jhdxr)

- Standard:
  . Fixed bug #74708 (Invalid Reflection signatures for random_bytes and
    random_int). (Tyson Andre, Remi)
  . Fixed bug #73648 (Heap buffer overflow in substr). (Stas)

- FTP:
  . Fixed bug #74598 (ftp:// wrapper ignores context arg). (Sara)

- PHAR:
  . Fixed bug #74386 (Phar::__construct reflection incorrect). (villfa)

- SOAP
  . Fixed bug #74679 (Incorrect conversion array with WSDL_CACHE_MEMORY).
    (Dmitry)

- Streams:
  . Fixed bug #74556 (stream_socket_get_name() returns '\0'). (Sara)

(taca)

Honor LDFLAGS. Fixes RELRO build.

(wiz)

Honor pkgsrc CFLAGS and LDFLAGS. Fixes RELRO build.

(wiz)

termios.h is not just for SunOS
thanks wiz@

(wiedi)

Updated print/poppler-utils to 0.55.0nb1

(wiz)

Build and install pdftocairo, for tex-lwrap.

Bump PKGREVISION.

(wiz)

Added devel/py-pathspec version 0.5.3

(adam)

pathspec is a utility library for pattern matching of file paths. So far this
only includes Git's wildmatch pattern matching which itself is derived from
Rsync's wildmatch. Git uses wildmatch for its gitignore files.

(adam)

Requires unzip.

(jperkin)

Add SunOS flock compat.

(jperkin)

Needs include for TIOCGWINSZ on SunOS

(wiedi)

Restore PLIST.tiff support.

(jperkin)

Updated textproc/py-markdown2 to 2.3.4

(adam)

python-markdown2 2.3.4
- task list extra visual changes
- Don't let "target-blank-lines" break footnotes
- Translatable footnote titles
- Add pipe escaping in table extension

(adam)

Updated devel/pcre to 8.41, devel/libuv to 1.13.0, net/py-botocore to 1.5.79, net/py-awscli to 1.11.116

(adam)

1.11.116:
api-change:route53: Update route53 command to latest version
api-change:cloudwatch: Update cloudwatch command to latest version

(adam)

1.5.79
api-change:cloudwatch: Update cloudwatch client to latest version
api-change:route53: Update route53 client to latest version

(adam)

Version 1.13.0
* Now working on version 1.12.1
* unix: avoid segfault in uv_get_process_title
* build: add a comma to uv.gyp
* win: restore file pos after positional read/write
* unix,stream: return error on closed handle passing
* unix,benchmark: use fd instead of FILE* after fork
* zos: avoid compiler warnings
* win,pipe: race condition canceling readfile thread
* sunos: filter out non-IPv4/IPv6 interfaces
* sunos: fix cmpxchgi and cmpxchgl type error
* unix: reset signal disposition before execve()
* unix: reset signal mask before execve()
* unix: fix POLLIN assertion on server read
* zos: use stckf builtin for high-res timer
* win,udp: implements uv_udp_try_send
* win,udp: return UV_EINVAL instead of aborting
* freebsd: replace kvm with sysctl
* aix: fix un-initialized pointer field in fs handle
* win,build: support building with VS2017
* doc: add instructions for building on Windows
* doc: format README

(adam)

Release 8.41:
This is a bug-fix release.

(adam)

Remove unnecessary CONFLICTS.

Packages always conflict with packages that have the same PKGBASE.

(wiz)

Updated sysutils/pciutils to 3.5.5.

2017-07-05  Martin Mares <mj@ucw.cz>

* Released as 3.5.5.

* Better decoding of AER capability.

* "Slot Implemented" flag is decoded for PCI/PCI-X to PCIe bridges.

* Minor fixes of decoding other capabilities.

* As usually, updated pci.ids to the current snapshot of the database.

(msaitoh)

Add DEPENDS on py-vdirsyncer.
Load vobject from vdirsyncer module.
Take maintainership.

(darcy)

Add some dependencies

(markd)

Add tex-xindy

(markd)

Add tex-xindy

(markd)

Add tex-xindy{,-doc}

(markd)

Add tex-xindy{,-doc} 2.5.1

Xindy was developed after an impasse had been encountered in
the attempt to complete internationalisation of makeindex.
Xindy can be used to process indexes for documents marked up
using (La)TeX, Nroff family and SGML-based languages. Xindy is
highly configurable, both in markup terms and in terms of the
collating order of the text being processed.

(markd)

Regularize path subsitution and use PREFIX

Use PREFIX rather than LOCALBASE.  What matters is where this packages
prefix is, not anything else.

Substitute all paths the same way, assigning to sh variables in one
place, alphabetically, and then using them.  Sort list of substituted
variables alphabetically also, so it's easier to review the code.

No functional change for any reasonable configuration.

Based on a suggestion by J. Lewis Muir on pkgsrc-users.

(gdt)

Updated security/py-yara to 3.6.3

(khorben)

Updated security/yara to 3.6.3

(khorben)

Update yara to version 3.6.3

From the release notes for version 3.6.3:
* BUGFIX: Heap overflow (4a342f0)
* BUGFIX: Off-by-one NULL write in stack buffer (964d6c0)
* BUGFIX: Multiple issues in "dotnet" module (f40c14c, fc35e5f)

From the release notes for version 3.6.2:

* Increase RE_MAX_AST_LEVELS from 2000 to 6000.
* BUGFIX: Buffer overrun in regexp engine (issue #678)
* BUGFIX: Null pointer dereference in regexp engine (issue #682).

XXX pullup (security fixes)

(khorben)

Add py-scikit-learn

(minskim)

Added math/py-scikit-learn version 0.18.1

(minskim)

Import py-scikit-learn-0.18.1 from pkgsrc as math/py-scikit-learn

Packaged by Filip Hajny and updated by Kamel Derouiche and me.

scikit-learn is a Python module integrating classic machine learning
algorithms in the tightly-knit scientific Python world (numpy, scipy,
matplotlib). It aims to provide simple and efficient solutions to
learning problems, accessible to everybody and reusable in various
contexts: machine-learning as a versatile tool for science and
engineering.

(minskim)

Fix include for FIONREAD on SunOS

(wiedi)

support PKGMANDIR

(wiedi)

Add include for LOCK_SH on SunOS

(wiedi)

Fix at least SunOS by not overwriting "install"

(wiedi)

Added math/py-pandas-datareader version 0.4.0

(minskim)

Add py-pandas-datareader

(minskim)

Import py-pandas-datareader-0.4.0 as math/py-pandas-datareaders

Datareaders is up-to-date remote data access for pandas, works for
multiple versions of pandas.

(minskim)

Enable both SSP and FORTIFY by default

This is only actually in use where known supported.

Prepared for a while, also the default in the base system (for NetBSD and
numerous others), introduced on mailing-lists and in my talk "Hardening
pkgsrc", and finally accepted unanimously during pkgsrcCon 2017.

Used by Joyent already (according to jperkin@) and tested in EdgeBSD for a
couple years now (amd64 and i386).

(khorben)

Also check for RELRO in shared libraries

(khorben)

Updated devel/py-cparser to 2.18, devel/py-test to 3.1.3

(adam)

Pytest 3.1.3:
Bug Fixes
* Fix decode error in Python 2 for doctests in docstrings.
* Exceptions raised during teardown by finalizers are now suppressed until all finalizers are called, with the initial exception reraised.
* Fix incorrect ���collected items��� report when specifying tests on the command- line.
deprecated_call in context-manager form now captures deprecation warnings even if the same warning has already been raised. Also, deprecated_call will always produce the same error message (previously it would produce different messages in context-manager vs. function-call mode).
* Fix issue where paths collected by pytest could have triple leading / characters.
* Fix internal error when trying to detect the start of a recursive traceback.

Improved Documentation
* Explicitly state for which hooks the calls stop after the first non-None result.

Trivial/Internal Changes
* Create invoke tasks for updating the vendored packages.
* Update copyright dates in LICENSE, README.rst and in the documentation.

(adam)

Only check ELF binaries for RELRO

(khorben)

Update print/hplip to 3.17.6.

(schnoebe)

Update to 3.17.6:

Release Notes

HPLIP 3.17.6 - This release has the following changes:

Added Support for the Following New Printers:
- HP LaserJet Enterprise M607n
- HP LaserJet Enterprise M607dn
- HP LaserJet Enterprise M608n
- HP LaserJet Enterprise M608dn
- HP LaserJet Enterprise M608x
- HP LaserJet Enterprise M608dh
- HP LaserJet Enterprise M609dn
- HP LaserJet Enterprise M609x
- HP LaserJet Managed E60055dn
- HP LaserJet Managed E60065dn
- HP LaserJet Managed E60065x
- HP LaserJet Managed E60075dn
- HP LaserJet Managed E60075x
- HP LaserJet Enterprise MFP M631dn
- HP LaserJet Enterprise Flow MFP M631h
- HP LaserJet Enterprise MFP M631z
- HP LaserJet Enterprise Flow MFP M632z
- HP LaserJet Enterprise MFP M632fht
- HP LaserJet Enterprise MFP M632h
- HP LaserJet Enterprise Flow MFP M633z
- HP LaserJet Enterprise MFP M633fh
- HP LaserJet Managed MFP E62555dn
- HP LaserJet Managed Flow MFP E62565h
- HP LaserJet Managed MFP E62565hs
- HP LaserJet Managed Flow MFP E62565z
- HP LaserJet Managed Flow MFP E62575z
- HP Color LaserJet Enterprise M652dn
- HP Color LaserJet Enterprise M652n
- HP Color LaserJet Enterprise M653dn
- HP Color LaserJet Enterprise M653dh
- HP Color LaserJet Enterprise M653x
- HP Color LaserJet Managed E65050dn
- HP Color LaserJet Managed E65060dn
- HP Color LaserJet Managed MFP E67550dh
- HP Color LaserJet Managed Flow MFP E67560z
- HP Color LaserJet Enterprise MFP M681dh
- HP Color LaserJet Enterprise MFP M681f
- HP Color LaserJet Enterprise Flow MFP M681z
- HP Color LaserJet Enterprise Flow MFP M681f
- HP Color LaserJet Enterprise Flow MFP M682z
- HP PageWide Managed P77750z Multifunction Printer
- HP Pagewide Pro 750dn
- HP Pagewide Pro 750dw
- HP PageWide Pro 772dw Multifunction Printer
- HP PageWide Managed P77740zs Multifunction Printer
- HP PageWide Managed P77750zs Multifunction Printer
- HP PageWide Managed P75050dn Printer
- HP LaserJet Pro MFP M25a
- HP LaserJet Pro MFP M25nw
- HP LaserJet Pro MFP M26a
- HP LaserJet Pro MFP M26nw
- HP LaserJet Pro MFP M27c
- HP LaserJet Pro MFP M27cnw

Added support for the following new Distro's:
- Ubuntu 17.04
- Debian 8.8

Launchpad fixes:
1690515 - DeskJet 3775 - scanner not found
1690408 - hplip-3.17.4.run doesn't work on linux mint 18.1
1690516 - Head alignment dont work (HPLIP 3.17.4)

Known Issues:
1. Edge to Edge Not supported
2. Greayscale option is present even though HP LaserJet Pro MFP
  M25a,M25nw,M26a,M26nw,M27c,M27cnw are mono devices

(schnoebe)

Version 2.18:
- Update bundled PLY version to 3.10
- Add support for the __int128 type.
- Handle more tricky TYPEID in declarators.
- Add columns to the coord of each node

(adam)

Updated devel/gperftools to 2.6

(adam)

gperftools 2.6 is out!

* Kim Gr辰sman contributed documentation update for HEAPPROFILESIGNAL
  environment variable

* KernelMaker contributed fix for population of min_object_size field
  returned by MallocExtension::GetFreeListSizes

* commit 8c3dc52fcfe0 "issue-654: [pprof] handle split text segments"
  was reverted. Some OSX users reported issues with this commit. Given
  our pprof implementation is strongly deprecated it is best to drop
  recently introduced features rather than breaking it badly.

(adam)

Updated sysutils/salt to 2016.11.6

(sborrill)

Update to 2016.11.6

Changelog here:
https://docs.saltstack.com/en/latest/topics/releases/2016.11.6.html

(sborrill)

On Darwin, do not add special compiler flags; fixes building on High Sierra

(adam)

On Darwin you must not have duplicate symbols

(adam)

Add PLIST.SunOS missing from previous update.

(jperkin)

set license for freeimageplus and add a buildlink3.mk since it is a library.

(nros)

png: don't typedef things when included by assembler code.
the current change is somewhat overkill and excludes some extra function
declarations, but there's only one assembler file for which it applies and
it was tested to build.

Fixes compilation on ARM reported by John Klos in PR pkg/52367

(maya)

maya
Updated net/lua-copas to version 2.0.2.

(alnsn)

Update net/lua-copas to version 2.0.2.
  + Added: copas.running flag
  + Fixed: fix for http request #53 (Peter Melnichenko)
  + Added: extra parameter keep_open for the removeserver()
    method (Hisham Muhammad)
  + Change: tweaked makefile with a DESTDIR variable (Richard
    Leitner)

(alnsn)

gcc 6.4.0

(maya)

gcc6: update to 6.4.0

Changes:
RTEM: The ABI changes on ARM so that no short enums are used by default.

Bugfixes. an incomplete list of bug fixes made in 6.4 is available in:
https://gcc.gnu.org/bugzilla/buglist.cgi?bug_status=RESOLVED&list_id=183226&resolution=FIXED&target_milestone=6.4

(maya)

Reset PKGREVISION

(maya)

Updated devel/googletest to 1.8.0nb1

(kamil)

googletest: Add NetBSD support

Backport upstream patch:

"Add NetBSD support"
https://github.com/google/googletest/commit/4bab34d2084259cba67f3bfb51217c10d606e175

Bump PKGREVISION to 1.

(kamil)

set correct licences for freeimage

(nros)

Updated math/ffts to 20170617

(gson)

Update math/ffts to 20170617.

The package does not include a change log, but one major feature
added since 20140106 is support for transforms of sizes other
than powers of two by means of the chirp Z transform.

(gson)

Updated net/nagios-plugin-snmp to 2.2.1

(jperkin)

Use common patches and reset PKGREVISION.

(jperkin)

Updated net/nagios-plugin-ldap to 2.2.1

(jperkin)

Use common patches and reset PKGREVISION.

(jperkin)

Updated net/nagios-plugin-radius to 2.2.1

(jperkin)

Use common patches and reset PKGREVISION.

(jperkin)

Updated net/nagios-plugin-pgsql to 2.2.1

(jperkin)

Use common patches and reset PKGREVISION.

(jperkin)

Updated net/nagios-plugin-mysql to 2.2.1

(jperkin)

Use common patches and reset PKGREVISION.

(jperkin)

Updated net/nagios-plugins to 2.2.1

(jperkin)

Upgrade net/nagios-plugins to 2.2.1.

Clean up the package a little, and merge in patches from the shared
nagios-plugin-* packages to avoid duplication.  Changes since 2.0.3:

2.2.1 2017-04-19
FIXES
check_users: not accepting zero as the threshold
check_http: reports warning where it should report ok with -e
check_snmp: does not work with -6 --ipv6 flags
check_swap: threshold calculation in bytes requires subtracting 65
check_uptime: fixed backward help text for thresholds
check_http: Don窶冲 prematurely report success when checking HTTP TLS cert validity
check_http: fix parsing the last header
check_mailq: Fix for Postfix and better Sudo Checking
configure.ac: Fix spelling error
check_ntp_peer: requires newline when there is a socket timeout (fix in netutils.c)
check_users: segmentation fault if both thresholds are not provided
check_dns: DNS CRITICAL - expected 窶�{hostname}.窶� but got 'name = {hostname}.'
check_mailq: Nullmailer Regex is not working for Ubuntu 16.04
check_swap: Downstream Fedora patch: Prevent check_swap from returning OK, if no swap activated
Building RPMs on Amazon Linux - Add 'install-root' on line 165 of spec file

2.2.0 2017-01-19
ENHANCEMENTS
check_flexlm: if `-F <license file>` is not specified, will use `LM_LICENSE_FILE` environment var
check_load: Added per cpu load average message
check_smtp: add -L flag to support LMTP (LHLO instead of HELO/EHLO)

FIXES
check_http: -e breaks -f
check_mrtg: Add state to status output
check_ping: ping runs 30 times when host is down
check_icmp: does not have the -p argument in the help
check_dns: Segfaulting with timeout > 26 sec
check_disk: missing -lrt on Solaris
check_http: segmentation fault
check_http: help text update for virtual hosts
check_snmp: Thresholds were being shown twice
check_hpjd: some jd 610 cards have a false flag that printer is offline
check_http: Handle reference redirect like //www.site.org/test
check_disk: alerts issued too soon
fix: Allocator sizeof operand mismatch
fix: Dead assignment
Shellcheck: fix most of the shellcheck warnings.
check_ntp: touch ntp servers at most once every seconds
check_dns: authoritative test (-A) is broken
check_dns: reports TXT records incorrectly
check_file_age: does not handle filenames WITHOUT space!
de,fr.po: fix syntax errors end-of-line within string
lib/parse_ini.c: fix gcc warning: implicit declaration of function 窶亙dpriv_temp_drop窶� and 窶亙dpriv_temp_restore窶�
add openssl 1.1 support

2.1.4 2016-11-17
FIXES
check_http: Don't include default Accept header if one is provided
check_disk: added "fuse.gvfsd-fuse" to list of fs types to ignore
check_http: Fixed non-text chunked-encoded decoding
check_http: segmentation fault (FreeBSD)
check_dns: Update IF_RECORD to not erase query_found
check_http: SSL Certificate check returns 12:00:00AM <local timezone>
check_http: -u is misleading. Changed help text
check_file_age: does not handle filenames with space
check_snmp: units label option outputs the label in the incorrect location
plugins-root/check_dhcp.c: fix a potential segfault
    check_users: not correctly detecting thresholds

2.1.3 2016-09-12
ENHANCEMENTS
SNI support in check_tcp (ddbilik)
check_disk_smb.pl: add support for -k for kerberos authentication
check_file_age.c: allow wildcard matching

FIXES
check_tcp.c: tools/build_perl_modules hardcodes the perl used
check_game.c: reports ping as number of players (Jason Rivers)
fix some gcc5 warnings (Mario Trangoni)
check_cluster.c: Update wording in comments (Troy Lea)
check_nagios.c: could not locate a running nagios process
check_swap.c: does not accept threshold of zero
check_swap.c: uses inconsistent checks on negative thresholds
check_snmp.c: --offset does not appear to do anything (Troy Lea)
sslutils.c: output has first line of "SSL Version: xxxxxx"
  effects anything using sslutils including check_http, check_dhcp
  and others
utils_cmd.c: when using ssh (or check-by-ssh) with ControlMaster/ControlPersist,
  nagios times out the first time and one gets zombie processes (Gordon Messmer)

2.1.2 2016-08-01
SECURITY FIXES

ENHANCEMENTS
check_snmp's performance data now also includes warning/critical
  thresholds
New check_snmp "-N" option to specify SNMPv3 context name
New check_nt "-l" parameters: seconds|minutes|hours|days
New check_mailq -s option which tells the plugin to use sudo(8)
New -W/-C option for check_ldap to check number of entries (Gerhard Lausser)
The check_http -S/--ssl option now accepts the arguments "1.1" and "1.2"
  to force TLSv1.1 and TLSv1.2 connections, respectively
The check_http -S/--ssl option now allows for specifying the desired
  protocol with a "+" suffix to also accept newer versions
New check_disk "-v" option to show troubled partition in verbose mode
check_log.sh: Added a parameter -w (--max_warning) defining upper value to return a warning code
check_ldap: Add support for LDAP URIs.
check_file_age: Provide performance data
check_by_ssh: added --hostname support
check_ifstatus.pl: Add check_ifstatus option to ignore interfaces by name
check_snmp: Introduce support for SNMPv3 context using "-N" option
check_snmp.c: Added IPv6 support
check_http: Added support for checking SSL-Websites through Proxies

FIXES
check_dig can now also use "drill" instead of "dig"
check_dig honor the -4 and -6 switches
check_ntp_peer: do not use uninitialized results for max state
check_log.sh, check_oracle.sh, check_sensors.sh: Setting PATH at first
check_log.sh: droping path from basename while evaluating PROGNAME
check_tcp: Fix check_jabber to work with Openfire servers
check_ifstatus.pl: Fix "-n" and "-u" options to ignore if either is set, not just both
check_mrtgtraf: Fix perfdata to comply with perfdata UOM definition
check_real, check_ntp: fix null termination
check_apt: fix memset
check_ssh: change warning to critical for protocal/version errors
utils_cmd.c: avoid a segfault, if ulimit is set to unlimited
utils_cmd.c: make constants from maxfd values
configure.ac: Added particular ps command for HP-UX
check_disk: Fix pthread start routine type
check_http: Make header_value() and chunked-encoding decoding more robust
check_http: fix Host header if explicitly set with -k
sslutils.c: Forcing furter restriction of ciphers for current security concerns
check_nagios, check_procs: Enable check_proc to monitor processes in PID name-spaced environments.
check_dhcp.c: use /dev/urandom if available
check_http.c: Don't decode page if it's not there
check_disk.c: Prevent large tide values from truncation
pst3.c: Fix for unclosed filehandle in pst3 on Solaris
check_snmp: Timeticks are not being parsed correctly before performance data
        multiple *.h files: standardized header include fences
        multiple plugins/*.c files: fix unsafe signal handling
sslutils.c: Fix compilation with GnuTLS which doesn't provide SSL_CTX_check_private_key()
check_mailq.pl: fixed mailer names
check_swap.c: Improving output when swap space has zero size
check_icmp.c: Use kernel reception time on ICMP packets to compute rtt.
check_icmp.c: make use of MSG_CONFIRM optional
check_ldap.c: add counting of entries to check_ldap
utils.c: add sperfdata() function which can handle threshold ranges
sslutils.c: Check if OpenSSL supports SSLv3.
check_dhcp.c: Fixes segfaults when running via monitoring worker (off-by-one)
check_fping.c: autodetect ipv6 addresses
sslutils.c: optimize output if certificate expires in less then 24h
check_smtp.c: Let "-D" option imply "-S". Also QUIT SMTP connection when "-D" is used
check_smtp.c: modified SSL check for use with -e
check_tcp.c: Validate sent data size
check_dns.c: conditional assignment
check_dns.c: macro querytypes and auto cnames
utils_cmd.c, utils_base.c: Multiple resource leaks
check_http.c: Increase MAX_RE_SIZE from 256 to 2048
check_procs.c: Changed the ps command args from axwo to axwwo allowing for longer output
check_http.c: Allow a server to reply using only 'HTTP/1.x 200 OK' and a
body, with no headers
check_nt.c: check_nt does not correctly report a DNS entry it cannot resolve
check_dhcp.c: check_dhcp broken on BSD

TESTS
check_procs.t: Add delay after forking in test to avoid race condition
test.pl.in: Use "C" locale when running test suite
check_http.t: Adjust date strings to the now-localized output
check_dns.t - Fix Perl Warning. perl doesn't understand /d within "".
check_snmp.t: skip extented snmp tests if snmpd has no perl support
check_snmp.t: fix snmp test for included threshold
check_http.t: fix tests for certificates expire date with seconds
check_http.t: add faketime based tests for check_http

LOCALIZATION

2.1.0 30th July 2015
SECURITY FIXES
ssl_utils.c - Disable SSLv3 & SSLv2 autonegotiation by default to limit poodle and other weak cipher attacks (sreinhardt)

ENHANCEMENTS
Timeout States Implemented - Plugins that support a timeout state will now also support specifying the exit state in case of timeout with the syntax -t <timeout>:<state> (abrist)
Perl plugins now use FindBin for path discovery, obsoleting the nasty AWK script (evgeni, abrist)
check_http.c - Added support for chunked transfer-encoding (koenwtje, dermoth, sreinhardt)
check_radius.c - Added support for the FreeRADIUS Client library (weiss)
check_snmp.c - Added thresholds to performance data (seemuellera)
check_snmp.c - Added new option (-N) for SNMPv3 context (Johannes Engel)
check_snmp.c - Added IPv6 support (abrist)
check_ldap.c - Added a new option (-U) for LDAP URI support (qris)
check_ifstatus.pl - Added new option (-n) to exclude interfaces (peelman, weiss)
check_file_age.pl - Performance data output added (hggh)
check_mailq.pl - Now supports sudo (Christopher Schultz, weiss)
check_log.sh - Added a new option (-w) defining upper value to return a warning code (arvanus)

FIXES
check_by_ssh.c - Added --hostname support (sni)
check_dbi.c - Spelling corrections (sreinhardt)
check_dig.c - Fixed to work with dig/drill tools and ip version switch is now respected (abgandar)
check_disk.c - Fix for hanging filesystems (Gerhard Lausser)
check_disk.c - Partitions in problem state now reported in verbose mode (waja)
check_disk.c - Prevent large tide values from truncation (JesperForsberg)
check_dns.c - Server specific fixes and other cleanup (sreinhardt)
check_http.c - Some small changes for readability (koenwtje)
check_mrtgtraf.c - Added verbose output (sreinhardt)
check_mrtgtraf.c - Perfdata now complies with UOM definition (Bobzikwick)
check_ntp_peer.c - No longer uses uninitialized results for max state (sni)
check_procs.c - Rare race condition fixed (Mikael Falkvidd)
check_ssh.c - Now exits with CRITICAL when version/protocol string check fails to match (sni)
check_tcp.c - Help description of escape characters now correct (Sebastian Herbszt)
check_tcp.c - Fix to support Openfire servers with check_jabber (weiss)
check_ups.c - Spelling corrections (sreinhardt)
pst3.c - Fix for unclosed file handle in pst3 on Solaris (jwinkle01)
plugins-scripts/*.sh - Trusted path fixes (waja)
netutils.h - Decreased max path to 104 bytes to compensate for BSD paths (sreinhardt)
configure.ac - Fix for HP-UX ps command (Tontonitch)
lib/utils_cmd.c - Fix for potential segfault when ulimits are set to unlimited (nafets)
lib/parse_ini.c - Many small fixes from coverity scans and the community (sreinhardt, weiss)
lib/util_base.c - Code cleanup (sreinhardt)
lib/utils_base.c - Add EIUD to state retention path for multi-user permissions support (sreinhardt)
po/* - Spelling corrections (sreinhardt)
Multiple resource leaks fixed (sreinhardt)
Many other small fixes and cleanup caught by coverity (multiple contributors)

TESTS
Many small fixes to tests (multiple contributors)

LOCALIZATION
Many small fixes for locales and localizations (multiple contributors)

(jperkin)

Implement a check for RELRO

This is only performed if PKG_DEVELOPER and RELRO are in use.

After a suggestion during my talk at BSDCan 2017; thanks!
Also, submitted on tech-pkg@ for review mid-June.

As a next step, it seems this can be extended to libraries, just like the
check for SHLIBS does (from which this is inspired).

(khorben)

Updated mail/sylpheed to 3.6.0

(szptvlfn)

Improve USE_LANGUAGES explanation

Reference the notion of making compilers visible to the build
environment.  Mention setting --std flags.  Note that the text is
currently aspirtational relative to gcc and C++.

(Comment change only.)

(gdt)

Update sylpheed to 3.6.0

NEWS:
Changes of Sylpheed

* 3.6.0 (stable)

    * The Japanese manual was updated.

* 3.6.0beta1 (development)

    * The feature to use multiple signatures in one account was added.
    * The edit group dialog of the address book was improved to allow
      multilple selection and display its available list with folder tree.
    * The menu 'Tools - Open configuration/attachments folder' was added.
    * Printing settings and page setup are now saved.
    * The Japanese manual was updated.
    * IMAP: SUBSCRIBE command is explicitly issued for a newly created folder
      by CREATE.
    * Unix: the search location of SSL certificates for OpenBSD was added
      (#222).
    * Win32: a notice about not removing user data in the installer was
      modified.

(szptvlfn)

Updated sysutils/beats to 5.4.3

(fhajny)

Update sysutils/beats to 5.4.3.

Doc changes only.

(fhajny)

Updated databases/elasticsearch to 5.4.3

(fhajny)

Update databases/elasticsearch to 5.4.3.

Snapshot/Restore::
* Improves snapshot logging and snapshot deletion error handling

Snapshot/Restore::
* Remove redundant and broken MD5 checksum from repository-s3

(fhajny)

Updated devel/kafka to 0.11.0.0

(fhajny)

Update devel/kafka to 0.11.0.0.

New Feature
- KIP-146: Support per-connector/per-task classloaders in Connect
- Add Record Headers
- Add purgeDataBefore() API in AdminClient
- Add KStream.peek(ForeachAction)
- Add a tool to Reset Consumer Group Offsets
- Add internal leave.group.on.close config to consumer
- Add Exactly-Once Semantics to Streams
- Implement Transactional Coordinator
- Range Scan for Windowed State Stores

Improvement
- Extend wire protocol to allow CRC32C
- Cluster collection returning methods should never return null
- Add Prompt to kafka-console-producer
- Allow users greater access to register custom streams metrics
- Exponential backoff for broker reconnect attempts (KIP-144)
- Add JMH module for Benchmarks
- Split the ProducerBatch and resend when received
  RecordTooLargeException
- Allow per stream/table timestamp extractor
- support throttling on request rate
- Replication Quota Tests: Ensure ZK updated before tests start
- REST configuration not visible in connector properties config files
- TopicCommand --describe shows topics marked for deletion as
  under-replicated and unavailable (KIP-137)
- RocksDB checkpoint files lost on kill -9
- Treat null-key records the same way for joins and aggreations
- Per listener security setting overrides (KIP-103)
- Kafka does not offer kafka-configs.bat on Windows box
- Parametrize streams benchmarks to run at scale
- Error message from Struct.validate() should include the name of the
  offending field.
- Add application.id to StreamThread name
- Improve Streams Reset Tool console output
- Add Float serializer, deserializer, serde
- Exploit #peek to implement #print() and other methods
- The Kafka build should run findbugs
- Inner classes which don't need a reference to the outer class should
  be static
- Fix findbugs warnings in kafka-tools
- throw NoOffsetForPartitionException once for all assigned partitions
  from poll
- Stream round-robin scheduler is inneficient
- Fix several FindBugs warnings in Clients and Connect
- SCRAM secret's should be better protected with Zookeeper ACLs
- set internal.leave.group.on.close to false in KafkaStreams
- Add listener tag to socket-server-metrics.connection-... metrics
- Followups from KIP-101
- We shouldn't pass the underlying exception to
  RetriableCommitFailedException when an async offset commit fails.
- Optionally print out metrics after running the perf tests
- ReassignPartitionsCommand should protect against empty replica list
  assignment
- Censor SCRAM config change logging
- DumpLogSegments should not open index files with `rw`
- Add support for reading PID snapshot files to DumpLogSegments
- Improve internal Task APIs
- Trunk compatibility tests should test against 0.10.2
- Improve message for Kafka failed startup with non-Kafka data in
  data.dirs
- Controlled shutdown timeout message improvement
- reassign-partitions to check if broker of ID exists in cluster
- Add option "dry run" to Streams application reset tool
- AdminClient: add controller and clusterId methods to
  DescribeClusterResults
- KIP-153: Include only client traffic in BytesOutPerSec metric
- Application Reset Tool does not need to seek for internal topics
- New Short serializer, deserializer, serde
- Change Default unclean.leader.election.enabled from True to False
- Sticky Assignor should not cache the calculated assignment (KIP-54
  follow-up)
- Support ExtendedDeserializer in Kafka Streams
- Remove Broker ACL resource type
- Request log should log throttle time
- Generate javadoc for AdminClient and show configs in documentation
- Annoying braces showed on log.error using streams

Bug
- Implement generation/term per leader to reconcile messages correctly
- Hold the produce request with ack > 1 in purgatory until replicas'
  HW has larger than the produce offset (KIP-101)
- Delete consumer offsets from kafka once the topic is deleted
- Clean up Controller Object on forced Resignation
- ConsumerGroupCommand throws GroupCoordinatorNotAvailableException
  when describing a non-existent group before the offset topic is
  created
- SASL unit tests dont work with IBM JDK
- Follower Broker cannot start if offsets are already out of range
- Remove deprecated producer configs.
- Kafka default -Xloggc settings should include GC log rotation flags
- Streams is creating two ProducerRecords for each send via
  RecordCollector
- Broker faills to start after ungraceful shutdown due to
  non-monotonically incrementing offsets in logs
- Log should check the return value of dir.mkdirs()
- KIP-115: __consumer_offsets wrong number of replicas at startup
- Issue with processing order of consumer properties in console
  consumer
- Exit Strategy: using exceptions instead of inline invocation of
  exit/halt
- Documentation still refers to AsyncProducer and SyncProducer
- KIP-151: Connect REST API should expose whether each connector is a
  source or sink
- KTable doesn't work with ProcessorTopologyTestDriver in Kafka
  0.10.1.0
- rat license check not running in Jenkins
- When using ProcessorTopologyTestDriver, the combination of map and
  .groupByKey does not produce any result
- Set more conservative default values on RocksDB for memory usage
- Significant startup delays in KStreams app
- Kafka should not require SSL trust store password
- When the destination brokers are down or misconfigured in config,
  Streams should fail fast
- Connect Producer and Consumer ignore ssl parameters configured for
  worker
- Annotate integration tests and provide gradle build targets to run
  subsets of tests
- Controller send thread can't stop when broker change listener event
  trigger for dead brokers
- the argument of shell in doc wrong and command parsed error
- Kafka Streams allows you to provide strings with illegal characters
  for internal topic names
- gradle-generated core eclipse project has incorrect source folder
  structure
- Refresh consumer metadata more frequently for unknown subscribed
  topics
- KIP-154: Connect should create internal topics
- Fix Streams window retention policy
- KIP-100 api changes break Java 8 lambda expressions in some cases
- Python VerifiableConsumer service has thread-safety bug for
  event_handlers
- Avoid unnecessary task movement across threads during rebalance
- OffsetValidationTest fails validation with "Current position greater
  than the total number of consumed records"
- StreamsKafkaClient drops security configs
- Fix Transient failure in
  BrokerApiVersionsCommandTest.checkBrokerApiVersionCommandOutput
- Implement remaining KIP-66 SMTs
- Fix logic for re-checking if internal topic is ready
- connect jars are missing LICENSE/NOTICE files
- Timed out waiting for consumption in
  OffsetValidationTest.test_broker_failure
- Clean up of state directories can possibly remove stores that are
  about to be used by another thread
- KafkaConsumer#commitSync should clone its input
- Fix deadlock issue during MM shutdown
- Remove generic type of class ClientState
- Memory leak in RecordAccumulator.append
- Streams_bounce test failing occassionally
- fix join-time-max and sync-time-max MeasurableStat type
- Streams Simple Benchmark MB/sec calculation is not correct for Join
  operations
- SimpleBenchmark test fails for streams
- Improve NetworkClient trace logging of request details
- Connect WorkerSinkTask is missing checks for NO_TIMESTAMP
- org.apache.kafka.clients.producer.KafkaProducerTest#testConstructorFailureCloseResource
  and Similar Tests are Failing on some Systems (127.0.53.53 Collision
  Warning)
- Implement graceful handling for improperly formed compressed message
  sets
- Kafka client Heartbeat thread use all the cpu.
- Failure in
  kafka/tests/kafkatest/tests/core/security_rolling_upgrade_test.py
- KIP-128: Blackbox or pass through converter or ByteArrayConverter
  for connect
- Broker level configuration 'log.segment.bytes' not used when
  'segment.bytes' not configured per topic.
- ProcessorTopologyTestDriver does not forward extracted timestamps to
  internal topics
- Kafka cannot recover after a disk full
- Kafka Streams - unable to add state stores when using wildcard
  topics on the source
- Fix some findbugs warnings in Kafka Java client
- Streams State transition ASCII diagrams need fixing and polishing
- KafkaConsumer: ConsumerConfig gets logged twice.
- docker/run_tests.sh should set up /opt/kafka-dev to be the source
  directory
- SchemaBuilder should be more lax about checking that fields are
  unset if they are being set to the same value
- ReplicaFetchThread may fail to create due to existing metric
- ZookeeperLeaderElector not respecting zookeeper.set.acl
- Fix some findbugs warnings in Kafka Streams
- ProcessorTopologyTestDriver does not work when using .through()
- Config validation in Connector plugins need to compare against both
  canonical and simple class names
- NetworkClient should only consider a connection to be fail after
  attempt to connect
- Stream thread getting into deadlock state while trying to get
  rocksdb lock in retryWithBackoff
- SessionStore.fetch(key) is a performance bottleneck
- Struct SchemaBuilder should not allow duplicate fields.
- Querying window store may return unwanted keys
- Kafka Secure Migrator tool doesn't secure all the nodes
- Kafka console consumer property is ignored
- Kafka Connect does not log connector configuration errors
- processstreamwithcachedstatestore and other streams benchmarks fail
  occasionally
- kafka.request.logger TRACE regression
- Fix findbugs "default character set in use" warnings
- Fix findbugs "format string should use %n rather than \n" in tools
- Fix findbugs warnings in kafka-core
- Make ProduceRequest thread-safe
- Utils#delete should correctly handle I/O errors and symlinks
- Remove unused code for reading Shell command stdout and add unit
  test
- Add streams tests with brokers failing
- Document that stores must not be closed when Processors are closed
- Fix findbugs warnings in Kafka-Connect-API
- Add a configurable delay to the initial consumer group rebalance
- KStreamsTestDriver fails with NPE when KStream.to() sinks are used
- Transformation Key/Value type references should be to class name(),
  not canonicalName()
- Batch resetting offsets in Streams' StoreChangelogReader
- Kafka Connect: Offset committing times out before expected
- Fix an "unread field" findbugs warning in streams examples
- Suppress findbugs warnings about machine-generated code in
  jmh-benchmarks
- remove controller concurrent access to non-threadsafe NetworkClient,
  Selector, and SSLEngine
- Delete the kafka to prefix the name of the keystore and truststore
  file will be more suitable
- kafka-connect: fix findbugs issues in connect/runtime
- testReprocessingFromScratch unit test failure
- Fix findbugs warnings in kafka-clients
- Fix remaining findbugs warnings in Kafka Streams
- StreamThread should catch InvalidTopicException
- JoinIntegrationTest fails occasionally
- Fail the build when findbugs fails
- SSL Channel not ready but tcp is established and the server is hung
  will not sending metadata
- running multiple kafka streams instances causes one or more instance
  to get into file contention
- Increase number of Streams producer retries from the default of 0
- InFlightRequests#isEmpty() always returns false
- Add FindCoordinatorRequest RPC stub and update InitPidRequest for
  KIP-98
- NullPointerException while using GlobalKTable in KafkaStreams
- Chroot check should be done for each ZkUtils instance
- Avoid DNS reverse lookup in security-critical TLS code path
- Kafka Streams skipped-records-rate sensor producing nonzero values
  even when FailOnInvalidTimestamp is used as extractor
- Kafka Streams stuck rebalancing after exception thrown in rebalance
  listener
- Defer exception to the next pollOnce() if consumer's fetch position
  has already increased
- PartitionRecords.fetchRecords(...) should defer exception to the
  next call if iterator has already moved across any valid record
- two versions of jackson-annotations-xxx.jar in distribution tgz
- Update topic expiry time in Metadata every time the topic metadata
  is requested
- some spelling error in code comment
- Kafka Streams SessionStore.findSessions javadoc broken
- ThreadCacheTest.cacheOverheadsSmallValues fails intermittently
- Replica Deletion Regression from KIP-101
- ProducerPerformanceService failing due to parsing error
- Remove KafkaController's incrementControllerEpoch method parameter
- Transient test failure
  SocketServerTest.testMetricCollectionAfterShutdown
- Controller Health Metrics (KIP-143)
- Flaky ResetIntegrationTest
- Windows platform does not offer kafka-broker-api-versions.bat
- MinTimestampTracker uses confusing variable names
- LZ4 decompression is 4-5x slower than Snappy on small batches /
  messages
- SetSchemaMetadata does not replace the schemas in structs correctly
- streams task gets stuck after re-balance due to LockException
- KafkaConsumer.close should be idempotent
- KafkaAdminClientIntegration test should wait until metadata is
  propagated to all brokers
- CachingSessionStore doesn't fetchPrevious correctly.
- SASL tests failing with Could not find a 'KafkaServer' or
  'sasl_plaintext.KafkaServer' entry in the JAAS configuration
- RocksDb might stall in environments with 1 core only
- RocksDbStore#openIterators should be synchronized, since it is
  accessed from multiple threads
- Percentilles are calculated incorrectly
- CachingSessionStore doesn't use the default keySerde.
- RocksDBSessionStore doesn't use default aggSerde.
- KafkaConsumer should not skip a corrupted record after throwing an
  exception.
- IllegalStateException in ensureOpenForRecordAppend
- Small JavaDoc fix for AdminClient#describeTopics
- Cached Session/Window store may return error on
  iterator.peekNextKey()
- NullPointerException (NPE) in
  SourceNodeRecordDeserializer.deserialize
- Reflections logs excessive warnings when scanning classpaths
- Recommended values for Connect transformations contain the wrong
  class name
- Kafka broker fails to start if a topic containing dot in its name is
  marked for delete but hasn't been deleted during previous uptime
- Regression in on-disk log size when using Snappy compression with
  0.8.2 log message format
- GlobalKTable does not checkpoint offsets after restoring state
- Tests which delete singleton metrics break subsequent metrics tests
- handleFetchRequest should do down conversion after throttling
- kakfa-clients consume 100% CPU with manual partition assignment when
  network connection is lost
- Move ACLs, Config, NodeVersions classes into org.apache.kafka.common
- Follow-up improvements for consumer offset reset tool (KIP-122)
- kafka-console-consumer: `--value-deserializer` is not working but
  `--property value.deserializer` does
- One StopReplicaRequest will caused two Responses
- Do not apply exponential backoff if users have overridden
  reconnect.backoff.ms
- PlainSaslServerFactory should allow a null Map in getMechanismNames
- FetchRequest doesn't implement toString
- Missing logging information in ReplicaFetcher
- Stores not queryable after one thread died
- Log cleaning can increase message size and cause cleaner to crash
  with buffer overflow
- MemoryRecords.filterTo can return corrupt data if output buffer is
  not large enough
- AdminClient: add close with timeout, fix some timeout bugs
- Connection Lose during Kafka Kerberos Renewal process
- Replica list in the metadata cache on the broker may have different
  order from zookeeper
- rocksdb.config.setter must be a class instance, not a class name
- ListGroup requires Describe on Cluster, but the command-line
  AclCommand tool does not allow this to be set
- There is a Misspell in ResetIntegrationTest
- Change message.timestamp.difference.max.ms back to Long.MaxValue
- Some socket connections not closed after restart of Kafka Streams
- KafkaConsumer occasionally hits IllegalStateException
- Modify Unstable annotations in Streams API
- baseTimestamp should always have a create timestamp
- MirrorMaker not preserving headers
- Down-converted uncompressed batches should respect fetch offset
- Add EOS integration tests for Streams API
- Add EOS system tests for Streams API
- Kafka Streams skipped-records-rate sensor produces nonzero values
  when the timestamps are valid
- ConsoleConsumer prints out object addresses rather than what is
  expected
- AdminClient gets "server returned information about unknown
  correlation ID" when communicating with older brokers
- Transactions: Concurrent transactional consumer loses messages when
  there are broker bounces
- Transient test failure:
  KafkaConsumerTest.testChangingRegexSubscription
- Log recovery can fail if topic names contain one of the index
  suffixes
- Transactional Producer allows batches to expire and commits
  transactions regardless
- KafkaAdminClient#timeoutCallsInFlight does not work as expected
- Distributed Herder Deadlocks on Shutdown
- Add more AdminClient checks to ClientCompatibilityTest
- Log cleaner fails due to large offset in segment file
- Console consumer offset commit regression
- TransactionCoordinator doesn't complete transition to PrepareCommit
  state
- TransactionCoordinator doesn't complete transition to CompleteCommit
- ZkUtils.getAllPartitions() may fail if a topic is marked for
  deletion
- Multiple produce request failures causes invalid state transition in
  TransactionManager
- Transient test failure:
  SaslPlainSslEndToEndAuthorizationTest.testNoProduceWithDescribeAcl
- Streams producer `client.id` are not unique for EOS
- TimestampConverter's "type" config conflicts with the basic
  Transformation "type" config
- Flaky test
  TransactionsTest.testReadCommittedConsumerShouldNotSeeUndecidedData
- Scripts to startup Connect in system tests have too short a timeout
- Update java docs for consumer and producer to be up to date for EOS
- Producer fails with NPE if compressed V0 or V1 record is larger than
  batch size
- MemoryRecordsBuilder.hasRoomfor doesn't take into account the
  headers while computing available space
- Controller incorrectly logs rack information when new brokers are
  added
- Connector validate REST endpoint returning duplicate entries in
  "groups"
- Connector config validation REST API endpoint not including fields
  for transformations
- TransactionalProducer sleeps unnecessarily long during back to back
  transactions
- org.apache.kafka logging should go to server.log
- The ProducerPerformance tool should support transactions
- Connect validation API stops returning recommendations for some
  fields after the right sequence of requests

Task
- Remove deprecated APIs for 0.11.0.0
- Drop support for Scala 2.10 (KIP-119)
- Remove unstable markers from Connect APIs
- KTable materialization and improved semantics

Test
- Transient failure in
  ZooKeeperSecurityUpgradeTest.test_zk_security_upgrade with
  security_protocol = SASL_PLAINTEXT, SSL
- Test with two SASL_SSL listeners with different JAAS contexts
- Implement KIP-98 transactional methods in the MockProducer
- Add cases for concurrent transactional reads and writes in system
  tests
- SyncProducerTest.testReachableServer has become flaky

Sub-task
- KIP-54: Add rebalance with a minimal number of reassignments to
  server-defined strategy list
- ProducerSendTest.testCloseWithZeroTimeoutFromCallerThread Transient
  Failure
- Transient Failure in kafka.api.PlaintextProducerSendTest.testFlush
- Mark the old Scala consumer and related classes as deprecated
- Create Java Admin Client
- Implement KIP-140 RPCs and APIs for creating, altering, and listing
  ACLs
- Describe/Alter Configs protocol, server and client (KIP-133)
- Transient test failure:
  kafka.api.SslProducerSendTest.testSendNonCompressedMessageWithCreateTime
- Unstable test
  KStreamRepartitionJoinTest.shouldCorrectlyRepartitionOnJoinOperations
- Transient test failure:
  ConsumerBounceTest.testConsumptionWithBrokerFailures
- Transient failure in QueryableStateIntegrationTest.queryOnRebalance
- Address 2.12 eta-expansion warnings
- Update release process so that Scala 2.12 artifacts are published
- Run tests on travis-ci using docker
- Transient failure in
  org.apache.kafka.clients.consumer.KafkaConsumerTest.testWakeupWithFetchDataAvailable
- QueryableStateIntegrationTest.shouldNotMakeStoreAvailableUntilAllStoresAvailable
  is occasionally failing on jenkins
- Improve test coverage of ProcessorStateManager
- Improve test coverage of StreamsPartitionAssignor
- Improve test coverage of ProcessorTopology
- Improve test coverage AbstractProcessorContext
- Improve test coverage of GlobalStreamThread
- Improve test coverage StreamTask
- Improve test coverage GlobalStateManagerImpl
- Improve test coverage KStreamBuilder
- Improve test coverage MemoryLRUCache
- Improve test coverage of CompositeReadOnlyWindowStore
- Improve test coverage KafkaStreams
- Improve test coverage TopologyBuilder
- Transient test failure:
  ConsumerCoordinatorTest.testHeartbeatThreadClose
- Message format changes for idempotent/transactional producer
- Implement idempotent producer
- Implement transactional clients
- Transient test failure:
  org.apache.kafka.streams.integration.JoinIntegrationTest.shouldCountClicksPerRegion
  (again)
- Consider disabling record level CRC checks for message format V2
- Failure in
  kafka.admin.DescribeConsumerGroupTest.testDescribeExistingGroupWithNoMembersWithNewConsumer
- Implementation and unit tests for request handler thread utilization
  quota
- Add network handler thread utilization to request quota calculation
- Add documentation for request quotas
- Transient failure of AdminClientTest.testDeleteRecordsWithException
- Add producer per task support
- Add request/response classes for transactions (KIP-98)
- KeyValueStore.put may throw exception unrelated to the current put
  attempt
- Exactly-once upgrade notes
- Update Message Delivery Semantics section to take into account
  KIP-98
- convert kafka controller to a single-threaded event queue model
- Additional validation in validateMessagesAndAssignOffsets
- Reconsider default retries for idempotent producer
- add controller integration tests
- Load only batch header when rebuilding producer ID map
- Refactor AdminUtils to use zkUtils methods instad of
  zkUtils.zkClient
- remove preferred replica election state from ControllerContext
- Implement transaction index for KIP-98
- shouldInnerLeftJoin unit test fails
- TransactionCoordinator - Check inter broker protocol and message
  format and raise errors if incompatible
- TransactionCoordinator - Add ACL check for each request
- Change InterBrokerSendThread to use a Queue per broker
- WriteTxnMarkers and complete commit/abort on partition immigration
- Abort long running transactions
- Move coordinatorEpoch from WriteTxnMarkerRequest to TxnMarkerEntry
- KafkaProducer's TransactionManager needs a review on synchronization
- Refactor TransactionCoordinator in-memory structure and error
  handling logic
- KIP-98 : broker side handling for the TxnOffsetCommitRequest
- Add a reference to AdminClient to docs/api.html
- TC should not accept empty string transactional id
- Transient failure:
  ControllerIntegrationTest.testPreferredReplicaLeaderElection
- Log connection termination during authentication
- Transient failure:
  ControllerIntegrationTest.testControllerMoveIncrementsControllerEpoch
- Transient failure: RequestQuotaTest.testResponseThrottleTime
- Avoid expensive initialization of producer state when upgrading
- Add Integration tests for transactional producer
- Autogenerate Consumer Fetcher metrics
- LogCleaner should be transaction-aware
- Handle topic deletion for ongoing transactions
- SaslScramSslEndToEndAuthorizationTest.testNoConsumeWithoutDescribeAclViaSubscribe
- TransactinoCoordinator does not bump epoch when aborting open
  transactions
- Consumer GroupCoordinator should continue to materialize committed
  offsets in offset order even for transactional offset commits
- Remove retention time from TxnOffsetCommit RPC
- Transaction index recovery does not snapshot properly
- Producer should drop queued sends when transaction is aborted
- Fix flaky test LogCleanerTest.testCommitMarkerRemoval
- move all partition and replica state transition rules into their
  states
- TransactionalId authorization should imply ProducerId authorization
- Producer should not send AbortTxn unless transaction has actually
  begun
- TransactionsBounceTest occasionally sees INVALID_TXN_STATE errors
- TransactionBounceTest occasionally fails due to partition errors
- KafkaConsumer.committed() should get latest committed offsets from
  the server
- Review and improve AdminClient Javadoc for the first release
  (KIP-117)
- Review and potentially tweak AdminClient API for the initial release
  (KIP-117)
- TransactionCoordinator must expire transactionalIds
- Protect concurrent access to the cached transaction status
- System tests for KIP-98 / transactions
- Transactions integration test: Use factory methods to keep track of
  open producers and consumers and close them all on tearDown
- Update clients and server code to make sure that epoch and sequence
  numbers wrap around
- AdminClient should not trigger auto creation of topics
- Fix authorization checks in AdminClient
- TC should handle UNSUPPORTED_FOR_MESSAGE_FORMAT in WriteTxnMarker
  response
- reset ControllerContext during resignation
- Update KIP-98 to reflect changes during implementation.
- Update produce/fetch throttle time metrics for any request throttle
- Resolve AddPartitions response error code inconsistency
- Transactions system test with hard broker bounces fails sporadically
- Add additional test cases for batch splitting to ensure
  idempotent/transactional metadata is preserved
- Broker clean bounce test puts the broker into a
  'CONCURRENT_TRANSACTIONS' state permanently
- Broker returns messages beyond "latest stable offset" to
  transactional consumer in read_committed mode
- StackOverFlow error in transaction coordinator
- Producer attempts to send transactional messages before adding
  partitions to transaction
- Fix regression in compressed message iteration affecting magic v0
  and v1
- Transactions: Concurrent transactional consumer reads aborted
  messages
- Last Stable Offset not returned in Fetch request
- Transactional producer cannot find coordinator when trying to abort
  transaction after error
- Transactional producer aborts batches incorrectly in abortable error
  state
- Producer IllegalStateException: Batch has already been completed
- Produce state lost if no snapshot retained
- TransactionalMessageCopier should be force killed on test shutdown
- UnsupportedOperationException in WriteTxnMarkers handler
- Consumer should use last offset from batch to set next fetch offset
- read current brokers from zookeeper upon processing broker change

(fhajny)