Bump puma from 4.3.6 to 5.2.0

[dependabot-preview[bot]]

Bumps puma from 4.3.6 to 5.2.0.

Release notes

Sourced from puma's releases.

5.2.0

• Features

  • 10x latency improvement for MRI on ssl connections by reducing overhead (#2519)
  • Add option to specify the desired IO selector backend for libev (#2522)
  • Add ability to set OpenSSL verification flags (MRI only) (#2490)
  • Uses flush after writing messages to avoid mutating $stdout and $stderr using sync=true (#2486)

• Bugfixes

  • MiniSSL - Update dhparam to 2048 bit for use with SSL_CTX_set_tmp_dh (#2535)
  • Change 'Goodbye!' message to be output after listeners are closed (#2529)
  • Fix ssl bind logging with 0.0.0.0 and localhost (#2533)
  • Fix compiler warnings, but skipped warnings related to ragel state machine generated code (#1953)
  • Fix phased restart errors related to nio4r gem when using the Puma control server (#2516)
  • Add #string method to Puma::NullIO (#2520)
  • Fix binding via Rack handler to IPv6 addresses (#2521)

• Refactor

  • Refactor MiniSSL::Context on MRI, fix MiniSSL::Socket#write (#2519)
  • Remove Server#read_body (#2531)
  • Fail build if compiling extensions raises warnings on GH Actions, configurable via MAKE_WARNINGS_INTO_ERRORS (#1953)

5.1.1

• Bugfixes
  • Fix over eager matching against banned header names (#2510)

5.1.0 / 2020-11-30

• Features

  • Phased restart availability is now always logged, even if it is not available.
  • Prints the loaded configuration if the environment variable PUMA_LOG_CONFIG is present (#2472)
  • Integrate with systemd's watchdog and notification features (#2438)
  • Adds max_fast_inline as a configuration option for the Server object (#2406)
  • You can now fork workers from worker 0 using SIGURG w/o fork_worker enabled #2449
  • Add option to bind to systemd activated sockets (#2362)
  • Add compile option to change the QUERY_STRING max length (#2485)

• Bugfixes

  • Fix JRuby handling in Puma::DSL#ssl_bind (#2489)
  • control_cli.rb - all normal output should be to @stdout (#2487)
  • Catch 'Error in reactor loop escaped: mode not supported for this object: r' (#2477)
  • Ignore Rails' reaper thread (and any thread marked forksafe) for warning (#2475)
  • Ignore illegal (by Rack spec) response header (#2439)
  • Close idle connections immediately on shutdown (#2460)
  • Fix some instances of phased restart errors related to the json gem (#2473)
  • Remove use of json gem to fix phased restart errors (#2479)
  • Fix grouping regexp of ILLEGAL_HEADER_KEY_REGEX (#2495)

5.0.4

• Bugfixes
  • Pass preloaded application into new workers if available when using preload_app (#2461

... (truncated)

Changelog

Sourced from puma's changelog.

5.2.0 / 2021-01-27

• Features

  • 10x latency improvement for MRI on ssl connections by reducing overhead (#2519)
  • Add option to specify the desired IO selector backend for libev (#2522)
  • Add ability to set OpenSSL verification flags (MRI only) (#2490)
  • Uses flush after writing messages to avoid mutating $stdout and $stderr using sync=true (#2486)

• Bugfixes

  • MiniSSL - Update dhparam to 2048 bit for use with SSL_CTX_set_tmp_dh (#2535)
  • Change 'Goodbye!' message to be output after listeners are closed (#2529)
  • Fix ssl bind logging with 0.0.0.0 and localhost (#2533)
  • Fix compiler warnings, but skipped warnings related to ragel state machine generated code (#1953)
  • Fix phased restart errors related to nio4r gem when using the Puma control server (#2516)
  • Add #string method to Puma::NullIO (#2520)
  • Fix binding via Rack handler to IPv6 addresses (#2521)

• Refactor

  • Refactor MiniSSL::Context on MRI, fix MiniSSL::Socket#write (#2519)
  • Remove Server#read_body (#2531)
  • Fail build if compiling extensions raises warnings on GH Actions, configurable via MAKE_WARNINGS_INTO_ERRORS (#1953)

5.1.1 / 2020-12-10

• Bugfixes
  • Fix over eager matching against banned header names (#2510)

5.1.0 / 2020-11-30

• Features

  • Phased restart availability is now always logged, even if it is not available.
  • Prints the loaded configuration if the environment variable PUMA_LOG_CONFIG is present (#2472)
  • Integrate with systemd's watchdog and notification features (#2438)
  • Adds max_fast_inline as a configuration option for the Server object (#2406)
  • You can now fork workers from worker 0 using SIGURG w/o fork_worker enabled #2449
  • Add option to bind to systemd activated sockets (#2362)
  • Add compile option to change the QUERY_STRING max length (#2485)

• Bugfixes

  • Fix JRuby handling in Puma::DSL#ssl_bind (#2489)
  • control_cli.rb - all normal output should be to @stdout (#2487)
  • Catch 'Error in reactor loop escaped: mode not supported for this object: r' (#2477)
  • Ignore Rails' reaper thread (and any thread marked forksafe) for warning (#2475)
  • Ignore illegal (by Rack spec) response header (#2439)
  • Close idle connections immediately on shutdown (#2460)
  • Fix some instances of phased restart errors related to the json gem (#2473)
  • Remove use of json gem to fix phased restart errors (#2479)
  • Fix grouping regexp of ILLEGAL_HEADER_KEY_REGEX (#2495)

5.0.4 / 2020-10-27

... (truncated)

Commits

• f7f58ae Add date to History [ci skip]
• 4b6fe29 5.2 - update History links (#2538)
• 9a10064 minissl.c - change dh1024 to dh2048 for SSL_CTX_set_tmp_dh (#2535)
• f7c0f3b Document workers and threads environment variables (#2536)
• 30a8cc0 Bump version to 5.2.0 (#2537)
• 37a3bc6 Fix SSL Context - minissl.c, minissl.rb, extconf.rb (#2519)
• a2d38b1 Change 'Goodbye!' message to be output after listeners are closed (#2529)
• ad92fc3 Binder - add ssl localhost logging, use ternary operator (#2533)
• ac5670a Prepare release notes for 5.2
• 3307be6 Remove Server#read_body (#2531)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in the `.dependabot/config.yml` file in this repo: - Update frequency - Automerge options (never/patch/minor, and dev/runtime dependencies) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired)

[codecov[bot]]

Codecov Report

Merging #509 (3bf0c1f) into master (b77b797) will not change coverage. The diff coverage is n/a.

@@           Coverage Diff           @@
##           master     #509   +/-   ##
=======================================
  Coverage   81.69%   81.69%           
=======================================
  Files          48       48           
  Lines         852      852           
=======================================
  Hits          696      696           
  Misses        156      156           

---

Continue to review full report at Codecov.

Legend - Click here to learn more Δ = absolute <relative> (impact), ø = not affected, ? = missing data Powered by Codecov. Last update b77b797...3bf0c1f. Read the comment docs.

[dependabot-preview[bot]]

Superseded by #512.