nodejs

mirror of https://github.com/nodejs/node.git synced 2024-12-01 16:10:02 +01:00

Author	SHA1	Message	Date
Anna Henningsen	80ac941407	doc: make linter happy This was not caught by the linter because the release commit for 6.13.0 came from a different branch, where we don’t apply it like we do on the main branch. Example failure: https://ci.nodejs.org/job/node-test-linter/16132/console PR-URL: https://github.com/nodejs/node/pull/18769 Reviewed-By: Matheus Marchini <matheus@sthima.com>	2018-02-14 00:46:09 +01:00
Myles Borins	60e612d0b0	2018-01-13, Version 6.13.0 'Boron' (LTS) This LTS release comes with 112 commits, 17 of which are considered Semver-Minor. This includes 32 which are doc related, 30 which are test related, 8 which are build / tool related and 1 commit which updates a dependency. Notable Changes: * console: - added console.count() and console.clear() (James M Snell) https://github.com/nodejs/node/pull/12678 * crypto: - expose ECDH class (Bryan English) https://github.com/nodejs/node/pull/8188 - added cypto.randomFill() and crypto.randomFillSync() (Evan Lucas) https://github.com/nodejs/node/pull/10209 - warn on invalid authentication tag length (Tobias Nießen) https://github.com/nodejs/node/pull/17566 * deps: - upgrade libuv to 1.16.1 (cjihrig) https://github.com/nodejs/node/pull/16835 * dgram: - added socket.setMulticastInterface() (Will Young) https://github.com/nodejs/node/pull/7855 * http: - add agent.keepSocketAlive and agent.reuseSocket as to allow overridable keep-alive behavior of `Agent` (Fedor Indutny) https://github.com/nodejs/node/pull/13005 * lib: - return this from net.Socket.end() (Sam Roberts) https://github.com/nodejs/node/pull/13481 * module: - add builtinModules api that provides list of all builtin modules in Node (Jon Moss) https://github.com/nodejs/node/pull/16386 * net: - return this from getConnections() (Sam Roberts) https://github.com/nodejs/node/pull/13553 * promises: - more robust stringification for unhandled rejections (Timothy Gu) https://github.com/nodejs/node/pull/13784 * repl: - improve require() autocompletion (Alexey Orlenko) https://github.com/nodejs/node/pull/14409 * src: - add openssl-system-ca-path configure option (Daniel Bevenius) https://github.com/nodejs/node/pull/16790 - add --use-bundled-ca --use-openssl-ca check (Daniel Bevenius) https://github.com/nodejs/node/pull/12087 - add process.ppid (cjihrig) https://github.com/nodejs/node/pull/16839 * tls: - accept `lookup` option for `tls.connect()` (Fedor Indutny) https://github.com/nodejs/node/pull/12839 * tools, build: - a new macOS installer! (JP Wesselink) https://github.com/nodejs/node/pull/15179 * url: - WHATWG URL api support (James M Snell) https://github.com/nodejs/node/pull/7448 * util: - add %i and %f formatting specifiers (Roman Reiss) https://github.com/nodejs/node/pull/10308 PR-URL: https://github.com/nodejs/node/pull/18342	2018-02-13 14:01:52 -05:00
Evan Lucas	83d0f4c92b	2018-01-31, Version 9.5.0 (Current) Notable changes: * cluster - add cwd to cluster.settings (cjihrig) [#18399](https://github.com/nodejs/node/pull/18399) * deps - upgrade libuv to 1.19.1 (cjihrig) [#18260](https://github.com/nodejs/node/pull/18260) * meta - add Leko to collaborators (Leko) [#18117](https://github.com/nodejs/node/pull/18117) - add vdeturckheim as collaborator (vdeturckheim) [#18432](https://github.com/nodejs/node/pull/18432) * n-api - expose n-api version in process.versions (Michael Dawson) [#18067](https://github.com/nodejs/node/pull/18067) * perf_hooks - add performance.clear() (James M Snell) [#18046](https://github.com/nodejs/node/pull/18046) * stream - avoid writeAfterEnd() while ending (陈刚) [#18170](https://github.com/nodejs/node/pull/18170) PR-URL: https://github.com/nodejs/node/pull/18464	2018-01-31 18:06:32 -06:00
Anna Henningsen	6e3818f2a2	doc: un-mark Socket#write “removal” as notable change Since the method is inherited from `Writable`, usage of the method does not change at all after its removal as an explicit method. Calling it out as notable might therefore be more confusing than helpful. PR-URL: https://github.com/nodejs/node/pull/18083 Reviewed-By: Colin Ihrig <cjihrig@gmail.com> Reviewed-By: Luigi Pinca <luigipinca@gmail.com>	2018-01-10 17:21:40 +01:00
Myles Borins	e688175c50	2019-01-10 Version 9.4.0 (Current) Notable change: * async_hooks: - deprecate AsyncHooks Sensitive API and runInAsyncIdScope. Neither API were documented. (Andreas Madsen) https://github.com/nodejs/node/pull/16972 * deps: - update nghttp2 to 1.29.0 (James M Snell) https://github.com/nodejs/node/pull/17908 - upgrade npm to 5.6.0 (Kat Marchán) https://github.com/nodejs/node/pull/17535 - cherry-pick 50f7455 from upstream V8 (Michaël Zasso) https://github.com/nodejs/node/pull/16591 * events: - remove reaches into _events internals (Anatoli Papirovski) https://github.com/nodejs/node/pull/17440 * http: - add rawPacket in err of `clientError` event (XadillaX) https://github.com/nodejs/node/pull/17672 * http2: - implement maxSessionMemory (James M Snell) https://github.com/nodejs/node/pull/17967 - add initial support for originSet (James M Snell) https://github.com/nodejs/node/pull/17935 - add altsvc support (James M Snell) https://github.com/nodejs/node/pull/17917 - perf_hooks integration (James M Snell) https://github.com/nodejs/node/pull/17906 - Refactoring and cleanup of Http2Session and Http2Stream destroy (James M Snell) https://github.com/nodejs/node/pull/17406 * net: - remove Socket.prototype.write (Anna Henningsen) https://github.com/nodejs/node/pull/17644 - remove Socket.prototype.listen (Ruben Bridgewater) https://github.com/nodejs/node/pull/13735 * repl: - show lexically scoped vars in tab completion (Michaël Zasso) https://github.com/nodejs/node/pull/16591 * stream: - rm {writeable/readable}State.length (Calvin Metcalf) https://github.com/nodejs/node/pull/12857 - add flow and buffer properties to streams (Calvin Metcalf) https://github.com/nodejs/node/pull/12855 * util: - allow wildcards in NODE_DEBUG variable (Tyler) https://github.com/nodejs/node/pull/17609 * zlib: - add ArrayBuffer support (Jem Bezooyen) https://github.com/nodejs/node/pull/16042 * Addedew collaborator** - [starkwang](https://github.com/starkwang) Weijia Wang * Addedew TSC member** - [danbev](https://github.com/danbev) Daniel Bevenius PR-URL: https://github.com/nodejs/node/pull/18069	2018-01-10 10:24:22 -05:00
Gibson Fahnestock	ec9fb6dd53	2018-01-02 Node.js v8.9.4 'Carbon' (LTS) Release PR-URL: https://github.com/nodejs/node/pull/17774 Notable Changes: * deps: * upgrade npm to 5.6.0 (Kat Marchán) [#17535](https://github.com/nodejs/node/pull/17535) * build: * configure can now be run from any directory (Gibson Fahnestock) [#17321](https://github.com/nodejs/node/pull/17321)	2018-01-03 04:19:17 +00:00
Myles Borins	02e4c8d981	2018-01-02, Version 6.12.3 'Boron' (LTS) Notable Changes: * build: - configure can now be run from any directory (Gibson Fahnestock) https://github.com/nodejs/node/pull/17321 PR-URL: https://github.com/nodejs/node/pull/17776	2018-01-02 14:09:57 -05:00
Myles Borins	a893e79a69	2017-12-12 Version 9.3.0 (Current) Notable changes: * async\_hooks: - add trace events to async_hooks (Andreas Madsen) https://github.com/nodejs/node/pull/15538 - add provider types for net server (Andreas Madsen) https://github.com/nodejs/node/pull/17157 * console: - console.debug can now be used outside of the inspector (Benjamin Zaslavsky) https://github.com/nodejs/node/pull/17033 * deps: - upgrade libuv to 1.18.0 (cjihrig) https://github.com/nodejs/node/pull/17282 - patch V8 to 6.2.414.46 (Myles Borins) https://github.com/nodejs/node/pull/17206 * module: - module.builtinModules will return a list of built in modules (Jon Moss) https://github.com/nodejs/node/pull/16386 * n-api: - add helper for addons to get the event loop (Anna Henningsen) https://github.com/nodejs/node/pull/17109 * process: - process.setUncaughtExceptionCaptureCallback can now be used to customize behavior for `--abort-on-uncaught-exception` (Anna Henningsen) https://github.com/nodejs/node/pull/17159 - A signal handler is now able to receive the signal code that triggered the handler. (Robert Rossmann) https://github.com/nodejs/node/pull/15606 * src: - embedders can now use Node::CreatePlatform to create an instance of NodePlatform (Cheng Zhao) https://github.com/nodejs/node/pull/16981 * stream: - writable.writableHighWaterMark and readable.readableHighWaterMark will return the values the stream object was instantiated with (Calvin Metcalf) https://github.com/nodejs/node/pull/12860 * Added new collaborators * [maclover7](https://github.com/maclover7) Jon Moss * [guybedford](https://github.com/guybedford) Guy Bedford * [hashseed](https://github.com/hashseed) Yang Guo PR-URL: https://github.com/nodejs/node/pull/17631	2017-12-12 15:59:29 -05:00
Evan Lucas	7f086dd601	2017-12-08 Version 9.2.1 (Current) Notable changes: * buffer: * buffer allocated with an invalid content will now be zero filled (Anna Henningsen) https://github.com/nodejs/node/pull/17428 * deps: * openssl updated to 1.0.2n (Shigeki Ohtsu) https://github.com/nodejs/node/pull/17526 PR-URL: https://github.com/nodejs/node/pull/17531	2017-12-08 11:36:55 -05:00
Myles Borins	2ac4718ac4	2017-12-08, Version 8.9.3 'Carbon' (LTS) This is a security release. All Node.js users should consult the security release summary at https://nodejs.org/en/blog/vulnerability/december-2017-security-releases/ for details on patched vulnerabilities. Fixes for the following CVEs are included in this release: * CVE-2017-15896 * CVE-2017-15897 * CVE-2017-3738 (from the openssl project) Notable Changes: * buffer: * buffer allocated with an invalid content will now be zero filled (Anna Henningsen) https://github.com/nodejs/node/pull/17428 * deps: * openssl updated to 1.0.2n (Shigeki Ohtsu) https://github.com/nodejs/node/pull/17526 PR-URL: https://github.com/nodejs/node/pull/17532	2017-12-08 11:00:55 -05:00
Myles Borins	6fa9cae83f	2017-12-08, Version 6.12.2 'Boron' (LTS) This is a security release. All Node.js users should consult the security release summary at https://nodejs.org/en/blog/vulnerability/december-2017-security-releases/ for details on patched vulnerabilities. Fixes for the following CVEs are included in this release: * CVE-2017-15896 * CVE-2017-3738 (from the openssl project) Notable Changes: * deps: * openssl updated to 1.0.2n (Shigeki Ohtsu) https://github.com/nodejs/node/pull/17526 PR-URL: https://github.com/nodejs/node/pull/17533	2017-12-08 10:55:19 -05:00
Myles Borins	e832743f72	2017-12-08, Version 4.8.7 'Argon' (LTS) This is a security release. All Node.js users should consult the security release summary at https://nodejs.org/en/blog/vulnerability/december-2017-security-releases/ for details on patched vulnerabilities. Fixes for the following CVEs are included in this release: * CVE-2017-15896 * CVE-2017-3738 (from the openssl project) Notable Changes: * deps: * openssl updated to 1.0.2n (Shigeki Ohtsu) https://github.com/nodejs/node/pull/17526 PR-URL: https://github.com/nodejs/node/pull/17534	2017-12-08 10:52:15 -05:00
Gibson Fahnestock	92011e417c	2017-12-05, Version 8.9.2 'Carbon' (LTS) Notable Changes: - console: - avoid adding infinite error listeners (Matteo Collina) [#16770](https://github.com/nodejs/n de/pull/16770) - http2: - improve errors thrown in header validation (Joyee Cheung) [#16718](https://github.com/nodej s/node/pull/16718) PR-URL: https://github.com/nodejs/node/pull/17204	2017-12-05 22:17:19 +00:00
Myles Borins	3549d9c2bc	2017-12-05, Version 6.12.1 'Boron' (LTS) Notable Changes: * build: - fix npm install with --shared (Ben Noordhuis) https://github.com/nodejs/node/pull/16438 * build: - building with python 3 is now supported (Emily Marigold Klassen) https://github.com/nodejs/node/pull/16058 * src: - v8 options can be specified with either '\_' or '-' in NODE_OPTIONS (Sam Roberts) https://github.com/nodejs/node/pull/14093 PR-URL: https://github.com/nodejs/node/pull/17180	2017-12-05 09:09:24 -05:00
Anna Henningsen	8f50407714	doc: use better terminology for build machines PR-URL: https://github.com/nodejs/node/pull/17142 Reviewed-By: Vse Mozhet Byt <vsemozhetbyt@gmail.com> Reviewed-By: Gibson Fahnestock <gibfahn@gmail.com> Reviewed-By: Refael Ackermann <refack@gmail.com> Reviewed-By: Gireesh Punathil <gpunathi@in.ibm.com> Reviewed-By: Anatoli Papirovski <apapirovski@mac.com> Reviewed-By: James M Snell <jasnell@gmail.com> Reviewed-By: Rich Trott <rtrott@gmail.com> Reviewed-By: Michael Dawson <michael_dawson@ca.ibm.com>	2017-11-22 08:32:54 -08:00
Rich Trott	911f16329e	doc: prepare for v8/V8 linting in doc text PR-URL: https://github.com/nodejs/node/pull/17163 Reviewed-By: Michaël Zasso <targos@protonmail.com> Reviewed-By: Vse Mozhet Byt <vsemozhetbyt@gmail.com> Reviewed-By: Benjamin Gruenbaum <benjamingr@gmail.com> Reviewed-By: Alexey Orlenko <eaglexrlnk@gmail.com> Reviewed-By: Colin Ihrig <cjihrig@gmail.com> Reviewed-By: James M Snell <jasnell@gmail.com> Reviewed-By: Gireesh Punathil <gpunathi@in.ibm.com>	2017-11-22 08:24:46 -08:00
Evan Lucas	1132ea7434	2017-11-14, Version 9.2.0 (Current) Notable changes: * crypto: - Support building with both 1.1.0 and 1.0.2 (David Benjamin) https://github.com/nodejs/node/pull/16130 * fs: - fs.realpathSync.native and fs.realpath.native are now exposed (Ben Noordhuis) https://github.com/nodejs/node/pull/15776 * process: - expose process.ppid (cjihrig) https://github.com/nodejs/node/pull/16839 PR-URL: https://github.com/nodejs/node/pull/16992	2017-11-14 17:08:15 -06:00
Gibson Fahnestock	f5a7a9e77d	2017-11-07, Version 8.9.1 'Carbon' (LTS) Notable Changes: - openssl: - upgrade openssl sources to 1.0.2m (Shigeki Ohtsu) [#16691](https://github.com/nodejs/node/pull/16691) - *Revert* "https: - refactor to use http internals" (Myles Borins) [#16660](https://github.com/nodejs/node/pull/16660) PR-URL: https://github.com/nodejs/node/pull/16783	2017-11-07 22:36:43 +00:00
cjihrig	a77bfcaac7	2017-11-07, Version 9.1.0 (Current) Notable changes: * CLI: - NODE_OPTIONS now supports the --stack-trace-limit option. https://github.com/nodejs/node/pull/16495 * deps: - OpenSSL is upgraded to 1.0.2m https://github.com/nodejs/node/pull/16691 * http: - A 'connect' event handler leak has been fixed. https://github.com/nodejs/node/pull/16725 - The 103 Early Hints status code is now supported. https://github.com/nodejs/node/pull/16644 PR-URL: https://github.com/nodejs/node/pull/16851	2017-11-07 12:58:56 -05:00
Myles Borins	70dc6d5072	2017-11-07, Version 6.12.0 'Boron' (LTS) Notable Changes: * assert: - assert.fail() can now take one or two arguments (Rich Trott) https://github.com/nodejs/node/pull/12293 * crypto: - add sign/verify support for RSASSA-PSS (Tobias Nießen) https://github.com/nodejs/node/pull/11705 * deps: - upgrade openssl sources to 1.0.2m (Shigeki Ohtsu) https://github.com/nodejs/node/pull/16691 - upgrade libuv to 1.15.0 (cjihrig) https://github.com/nodejs/node/pull/15745 - upgrade libuv to 1.14.1 (cjihrig) https://github.com/nodejs/node/pull/14866 - upgrade libuv to 1.13.1 (cjihrig) https://github.com/nodejs/node/pull/14117 - upgrade libuv to 1.12.0 (cjihrig) https://github.com/nodejs/node/pull/13306 * fs: - Add support for fs.write/fs.writeSync(fd, buffer, cb) and fs.write/fs.writeSync(fd, buffer, offset, cb) as documented (Andreas Lind) https://github.com/nodejs/node/pull/7856 * inspector: - enable --inspect-brk (Refael Ackermann) https://github.com/nodejs/node/pull/12615 * process: - add --redirect-warnings command line argument (James M Snell) https://github.com/nodejs/node/pull/10116 * src: - allow CLI args in env with NODE_OPTIONS (Sam Roberts) https://github.com/nodejs/node/pull/12028) - --abort-on-uncaught-exception in NODE_OPTIONS (Sam Roberts) https://github.com/nodejs/node/pull/13932 - allow --tls-cipher-list in NODE_OPTIONS (Sam Roberts) https://github.com/nodejs/node/pull/13172 - use SafeGetenv() for NODE_REDIRECT_WARNINGS (Sam Roberts) https://github.com/nodejs/node/pull/12677 * test: - remove common.fail() (Rich Trott) https://github.com/nodejs/node/pull/12293 PR-URL: https://github.com/nodejs/node/pull/16263	2017-11-07 12:23:37 -05:00
Myles Borins	16b1faa05b	2017-11-07, Version 4.8.6 'Argon' (Maintenance) Notable Changes: * crypto: - update root certificates (Ben Noordhuis) https://github.com/nodejs/node/pull/13279 - update root certificates (Ben Noordhuis) https://github.com/nodejs/node/pull/12402 * deps: - add support for more modern versions of INTL (Bruno Pagani) https://github.com/nodejs/node/pull/13040 - upgrade openssl sources to 1.0.2m (Shigeki Ohtsu) https://github.com/nodejs/node/pull/16691 - upgrade openssl sources to 1.0.2l (Daniel Bevenius) https://github.com/nodejs/node/pull/13233 PR-URL: https://github.com/nodejs/node/pull/16500	2017-11-07 12:22:33 -05:00
James M Snell	8cd940af13	2017-10-31, Version 9.0.0 (Current) * Older experimental APIs have been removed. [[`d731369b1d`](https://github.com/nodejs/node/commit/d731369b1d)] [#14414](https://github.com/nodejs/node/pull/14414) * Errors * Improvements have been made to `buffer` module error messages. * The assignment of static error codes to Node.js error continues: * `buffer` * `child_process` * `console` * `crypto` * `dns` * `events` * `fs` * `http` * `inspector` * `net` * `path` * `process` * `querystring` * `readline` * `repl` * `streams` * `string_decoder` * `timers` * `tls` * `url` * `util` * `v8` * `zlib` * Child Processes * Errors are emitted on process nextTick. * Domains * The long-deprecated `.dispose()` method has been removed. * fs * The `fs.ReadStream` and `fs.WriteStream` classes now use `destroy()`. * `fs` module callbacks are now invoked with an undefined context. * HTTP/1 * A 400 Bad Request response will now be sent when parsing fails. * Socket timeout will be set when the socket connects. * A bug causing the request `'error'` event to fire twice was fixed. * HTTP clients may now use generic `Duplex` streams in addition to `net.Socket`. * Intl * The deprecated `Intl.v8BreakIterator` has been removed. * Modules * The `require.resolve()` method now supports using custom lookup paths. * OS * The `os.EOL` property is now read-only. * Timers * `setTimeout()` will emit a warning if the timeout is larger that the maximum 32-bit unsigned integer.	2017-10-31 12:59:12 -07:00
Gibson Fahnestock	8025bba1a3	2017-10-31, Version 8.9.0 'Carbon' (LTS) Release This LTS release comes with 87 commits. This includes 30 that are updates to lib/ or src/, 20 that are test related, 13 that are doc related, 19 which are build / tools related, and 4 commits which are updates to dependencies. Notable Changes: * doc: - add Gibson Fahnestock to Release team (Gibson Fahnestock) https://github.com/nodejs/node/pull/16620 * deps: - update npm to 5.5.1 (Myles Borins) https://github.com/nodejs/node/pull/16509 * http2: - The exposed http2 socket is no longer manipulatable (Anatoli Papirovski) https://github.com/nodejs/node/pull/16330 * module: - support custom paths to require.resolve() (cjihrig) https://github.com/nodejs/node/pull/16397 * util: - util.TextEncoder and util.TextDecoder are no longer experimental. There will no longer be a warning when they are used (James M Snell) https://github.com/nodejs/node/pull/15743 PR-URL: https://github.com/nodejs/node/pull/16630	2017-10-31 18:29:48 +00:00
Jon Moss	737239a053	doc: fix CHANGELOG_V8 indentation Should not be nested under the bullet point. Headings need to be at the root level. PR-URL: https://github.com/nodejs/node/pull/16507 Refs: https://github.com/nodejs/nodejs.org/pull/1425 Reviewed-By: Anatoli Papirovski <apapirovski@mac.com> Reviewed-By: James M Snell <jasnell@gmail.com> Reviewed-By: Luigi Pinca <luigipinca@gmail.com> Reviewed-By: Colin Ihrig <cjihrig@gmail.com> Reviewed-By: Yuta Hiroto <hello@about-hiroppy.com> Reviewed-By: Gireesh Punathil <gpunathi@in.ibm.com>	2017-10-28 21:15:11 +02:00
cjihrig	e8de2bfd13	2017-10-25, Version 8.8.1 (Current) Notable changes: * net: - Fix timeout with null handle issue. This is a regression in Node 8.8.0. https://github.com/nodejs/node/pull/16489	2017-10-25 17:35:36 -04:00
Jon Moss	4997894390	doc: fix wrong URL PR-URL: https://github.com/nodejs/node/pull/16470 Reviewed-By: Anatoli Papirovski <apapirovski@mac.com> Reviewed-By: Colin Ihrig <cjihrig@gmail.com> Reviewed-By: Myles Borins <myles.borins@gmail.com> Reviewed-By: James M Snell <jasnell@gmail.com> Reviewed-By: Gireesh Punathil <gpunathi@in.ibm.com> Reviewed-By: Yuta Hiroto <hello@about-hiroppy.com> Reviewed-By: Franziska Hinkelmann <franziska.hinkelmann@gmail.com> Reviewed-By: Khaidi Chu <i@2333.moe> Reviewed-By: Tobias Nießen <tniessen@tnie.de>	2017-10-25 14:33:14 +02:00
Myles Borins	e700385288	doc: fix spelling in v8.8.0 changelog I hear that varible has an a in it. PR-URL: https://github.com/nodejs/node/pull/16477 Reviewed-By: Luigi Pinca <luigipinca@gmail.com> Reviewed-By: Gireesh Punathil <gpunathi@in.ibm.com>	2017-10-25 10:53:46 +02:00
Alec Perkins	57a716febd	doc: fix typo in changelog for 8.8.0 PR-URL: https://github.com/nodejs/node/pull/16462 Reviewed-By: Vse Mozhet Byt <vsemozhetbyt@gmail.com> Reviewed-By: Anatoli Papirovski <apapirovski@mac.com> Reviewed-By: Colin Ihrig <cjihrig@gmail.com> Reviewed-By: James M Snell <jasnell@gmail.com> Reviewed-By: Myles Borins <myles.borins@gmail.com> Reviewed-By: Yuta Hiroto <hello@about-hiroppy.com>	2017-10-24 21:28:40 -07:00
Myles Borins	068cede663	2017-10-24, Version 4.8.5 'Argon' (Maintenance) This is a security release. All Node.js users should consult the security release summary at: https://nodejs.org/en/blog/vulnerability/oct-2017-dos/ for details on patched vulnerabilities. Notable Changes: * zlib: - CVE-2017-14919 - In zlib v1.2.9, a change was made that causes an error to be raised when a raw deflate stream is initialized with windowBits set to 8. On some versions this crashes Node and you cannot recover from it, while on some versions it throws an exception. Node.js will now gracefully set windowBits to 9 replicating the legacy behavior to avoid a DOS vector. https://github.com/nodejs-private/node-private/pull/95 PR-URL: https://github.com/nodejs-private/node-private/pull/96	2017-10-24 18:05:12 -04:00
Myles Borins	274fa6eaaf	2017-10-24, Version 6.11.5 'Boron' (LTS) This is a security release. All Node.js users should consult the security release summary at: https://nodejs.org/en/blog/vulnerability/oct-2017-dos/ for details on patched vulnerabilities. Notable Changes: * zlib: - CVE-2017-14919 - In zlib v1.2.9, a change was made that causes an error to be raised when a raw deflate stream is initialized with windowBits set to 8. On some versions this crashes Node and you cannot recover from it, while on some versions it throws an exception. Node.js will now gracefully set windowBits to 9 replicating the legacy behavior to avoid a DOS vector. https://github.com/nodejs-private/node-private/pull/95 PR-URL: https://github.com/nodejs-private/node-private/pull/97	2017-10-24 17:54:24 -04:00
Myles Borins	9aa31bccb4	2017-10-24, Node.js Version 8.8.0 (Current) Notable Changes: * crypto: - expose ECDH class https://github.com/nodejs/node/pull/8188 * http2: - http2 is now exposed by defualt without the need for a flag https://github.com/nodejs/node/pull/15685 - a new environment varible NODE\_NO\_HTTP2 has been added to allow userland http2 to be required https://github.com/nodejs/node/pull/15685 - support has been added for generic `Duplex` streams https://github.com/nodejs/node/pull/16269 * module: - resolve and instantiate loader pipeline hooks have been added to the ESM lifecycle https://github.com/nodejs/node/pull/15445 * zlib: - CVE-2017-14919 - In zlib v1.2.9, a change was made that causes an error to be raised when a raw deflate stream is initialized with windowBits set to 8. On some versions this crashes Node and you cannot recover from it, while on some versions it throws an exception. Node.js will now gracefully set windowBits to 9 replicating the legacy behavior to avoid a DOS vector. https://github.com/nodejs-private/node-private/pull/95 PR-URL: https://github.com/nodejs-private/node-private/pull/98	2017-10-24 17:50:44 -04:00
Lewis Zhang	d9f8736ffd	doc: fix changelog anchor to v8.7.0 PR-URL: https://github.com/nodejs/node/pull/16165 Reviewed-By: Vse Mozhet Byt <vsemozhetbyt@gmail.com> Reviewed-By: Richard Lau <riclau@uk.ibm.com> Reviewed-By: Luigi Pinca <luigipinca@gmail.com>	2017-10-12 21:56:21 +03:00
Myles Borins	b7fec86bf2	2017-10-11, Node.js Version 8.7.0 (Current) Notable Changes: * deps: * update npm to 5.4.2 https://github.com/nodejs/node/pull/15600 * upgrade libuv to 1.15.0 https://github.com/nodejs/node/pull/15745 * update V8 to 6.1.534.42 https://github.com/nodejs/node/pull/15393 * dgram: * support for setting dgram socket buffer size https://github.com/nodejs/node/pull/13623 * fs: * add support O_DSYNC file open constant https://github.com/nodejs/node/pull/15451 * util: * deprecate obj.inspect for custom inspection https://github.com/nodejs/node/pull/15631 * tools, build: * there is a fancy new macOS installer https://github.com/nodejs/node/pull/15179 * Added new collaborator * bmeurer - Benedikt Meurer - https://github.com/bmeurer * kfarnung - Kyle Farnung - https://github.com/kfarnung PR-URL: https://github.com/nodejs/node/pull/15762	2017-10-11 16:51:50 -04:00
Myles Borins	9e8f4b3834	2017-10-03, Version 6.11.4 'Boron' (LTS) Notable Changes: * net: - support passing undefined to listen() to match behavior in v4.x and v8.x (Sam Roberts) https://github.com/nodejs/node/pull/14234 PR-URL: https://github.com/nodejs/node/pull/15506	2017-10-03 13:44:40 -07:00
Ruben Bridgewater	f55005514c	doc: fix v8.6 changelog entry PR-URL: https://github.com/nodejs/node/pull/15716 Reviewed-By: Yuta Hiroto <hello@about-hiroppy.com> Reviewed-By: Colin Ihrig <cjihrig@gmail.com> Reviewed-By: Luigi Pinca <luigipinca@gmail.com> Reviewed-By: Anna Henningsen <anna@addaleax.net> Reviewed-By: Evan Lucas <evanlucas@me.com> Reviewed-By: James M Snell <jasnell@gmail.com>	2017-10-02 08:29:16 -07:00
James M Snell	05e4c1d6bc	2017-09-26, Node.js Version 8.6.0 (Current) * crypto * Support for multiple ECDH curves. [#15206](https://github.com/nodejs/node/pull/15206) * dgram * Added `setMulticastInterface()` API. [#7855](https://github.com/nodejs/node/pull/7855) * Custom lookup functions are now supported. [#14560](https://github.com/nodejs/node/pull/14560) * n-api * The command-line flag is no longer required to use N-API. [#14902](https://github.com/nodejs/node/pull/14902) * tls * Docs-only deprecation of `parseCertString()`. [#14245](https://github.com/nodejs/node/pull/14245) * New Contributors * Welcome Sebastiaan Deckers (@sebdeckers) as a new Collaborator! [#15354](https://github.com/nodejs/node/pull/15354)	2017-09-26 14:55:39 -07:00
Myles Borins	cba206fa24	docs: update 8.5.0 changelog The original changelog included incorrect information regarding the new perf_hooks api. refs: https://github.com/nodejs/node/pull/15308#issuecomment-328874385 PR-URL: https://github.com/nodejs/node/pull/15384 Reviewed-By: Anna Henningsen <anna@addaleax.net> Reviewed-By: Michaël Zasso <mic.besace@gmail.com> Reviewed-By: Evan Lucas <evanlucas@me.com> Reviewed-By: James M Snell <jasnell@gmail.com>	2017-09-14 13:45:08 +02:00
Myles Borins	a10856a7d3	2017-09-12, Version 8.5.0 (Current) Notable Changes * build: * Snapshots are now re-enabled in V8 https://github.com/nodejs/node/pull/14875 * console: * Implement minimal `console.group()`. https://github.com/nodejs/node/pull/14910 * deps: * upgrade libuv to 1.14.1 https://github.com/nodejs/node/pull/14866 * update nghttp2 to v1.25.0 https://github.com/nodejs/node/pull/14955 * dns: * Add `verbatim` option to dns.lookup(). When true, results from the DNS resolver are passed on as-is, without the reshuffling that Node.js otherwise does that puts IPv4 addresses before IPv6 addresses. https://github.com/nodejs/node/pull/14731 * fs: * add fs.copyFile and fs.copyFileSync which allows for more efficient copying of files. https://github.com/nodejs/node/pull/15034 * inspector: * Enable async stack traces https://github.com/nodejs/node/pull/13870 * module: * Add support for ESM. This is currently behind the `--experimental-modules` flag and requires the .mjs extension. `node --experimental-modules index.mjs` https://github.com/nodejs/node/pull/14369 * napi: * implement promise https://github.com/nodejs/node/pull/14365 * os: * Add support for CIDR notation to the output of the networkInterfaces() method. https://github.com/nodejs/node/pull/14307 * perf_hooks: * An initial implementation of the Performance Timing API for Node.js. This is the same Performance Timing API implemented by modern browsers with a number of Node.js specific properties. The User Timing mark() and measure() APIs are implemented, as is a Node.js specific flavor of the Frame Timing for measuring event loop duration. https://github.com/nodejs/node/pull/14680 * tls: * multiple PFX in createSecureContext [#14793](https://github.com/nodejs/node/pull/14793) * Added new collaborators: * BridgeAR – Ruben Bridgewater PR-URL: https://github.com/nodejs/node/pull/15308	2017-09-12 17:34:51 +02:00
Myles Borins	dc7f03c897	2017-09-05, Version 6.11.3 'Boron' (LTS) This LTS release comes with 152 commits. This includes 75 which are test related, 25 which are doc related, 21 which are build / tool related and 3 commits which are updates to dependencies. Notable Changes: * build: - Codesigning is fixed on macOS (Evan Lucas) https://github.com/nodejs/node/pull/14179 * deps: - Snapshots are turned back on!!! (Yang Guo) https://github.com/nodejs/node/pull/14385 * path: - win32 volume-relative paths are working again! (Timothy Gu) https://github.com/nodejs/node/pull/14440 * tools: - v6.x can now build with ICU 59 (Steven R. Loomis) https://github.com/nodejs/node/pull/12078 PR-URL: https://github.com/nodejs/node/pull/14852	2017-09-05 15:47:35 -04:00
Anna Henningsen	1fe0741e50	2017-08-15, Version 8.4.0 (Current) Notable changes * HTTP2 * Experimental support for the built-in `http2` has been added via the `--expose-http2` flag. [#14239](https://github.com/nodejs/node/pull/14239) * Inspector * `require()` is available in the inspector console now. [#8837](https://github.com/nodejs/node/pull/8837) * Multiple contexts, as created by the `vm` module, are supported now. [#14465](https://github.com/nodejs/node/pull/14465) * N-API * New APIs for creating number values have been introduced. [#14573](https://github.com/nodejs/node/pull/14573) * Stream * For `Duplex` streams, the high water mark option can now be set independently for the readable and the writable side. [#14636](https://github.com/nodejs/node/pull/14636) * Util * `util.format` now supports the `%o` and `%O` specifiers for printing objects. [#14558](https://github.com/nodejs/node/pull/14558) PR-URL: https://github.com/nodejs/node/pull/14811	2017-08-15 15:05:22 -05:00
Anna Henningsen	b72e702247	2017-08-09, Version 8.3.0 (Current) V8 6.0: The V8 engine has been upgraded to version 6.0, which has a significantly changed performance profile. [#14574](https://github.com/nodejs/node/pull/14574) More detailed information on performance differences can be found at https://medium.com/the-node-js-collection/get-ready-a-new-v8-is-coming-node-js-performance-is-changing-46a63d6da4de Other notable changes: * DNS * Independent DNS resolver instances are supported now, with support for cancelling the corresponding requests. [#14518](https://github.com/nodejs/node/pull/14518) * N-API * Multiple N-API functions for error handling have been changed to support assigning error codes. [#13988](https://github.com/nodejs/node/pull/13988) * REPL * Autocompletion support for `require()` has been improved. [#14409](https://github.com/nodejs/node/pull/14409) * Utilities * The WHATWG Encoding Standard (`TextDecoder` and `TextEncoder`) has been implemented as an experimental feature. [#13644](https://github.com/nodejs/node/pull/13644) * Added new collaborators * [XadillaX](https://github.com/XadillaX) – Khaidi Chu * [gabrielschulhof](https://github.com/gabrielschulhof) – Gabriel Schulhof Conflicts: src/node_version.h	2017-08-09 21:56:19 -04:00
Myles Borins	8a53897325	2017-08-01, Version 6.11.2 'Boron' (LTS) This LTS release comes with 221 commits. This includes 80 which are test related, 52 which are doc related, 32 which are build / tool related and 10 commits which are updates to dependencies. Notable Changes: * configure: - add mips64el to valid_arch (Aditya Anand) - https://github.com/nodejs/node/pull/13620 * crypto: - Updated root certificates based on [NSS 3.30] (Ben Noordhuis) - https://github.com/nodejs/node/pull/13279 - https://github.com/nodejs/node/pull/12402 - https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.30_release_notes * deps: - upgrade OpenSSL to version 1.0.2.l (Shigeki Ohtsu) - https://github.com/nodejs/node/pull/12913 * http: - parse errors are now reported when NODE_DEBUG=http (Sam Roberts) - https://github.com/nodejs/node/pull/13206 - Agent construction can now be envoked without `new` (cjihrig) - https://github.com/nodejs/node/pull/12927 * zlib: - node will now throw an Error when zlib rejects the value of windowBits, instead of crashing (Alexey Orlenko) - https://github.com/nodejs/node/pull/13098 PR-URL: https://github.com/nodejs/node/pull/14356	2017-08-01 02:10:20 -05:00
Jeremiah Senkpiel	6a5bdfb97e	2017-07-20, Version 8.2.1 (Current) Notable changes * http: Writes no longer abort if the Socket is missing. * process, async_hooks: Avoid problems when triggerAsyncId is undefined. * zlib: Streams no longer attempt to process data when destroyed. PR-URL: https://github.com/nodejs/node/pull/14399	2017-07-20 18:16:37 -04:00
Jeremiah Senkpiel	65eefa0105	2017-07-19, Version 8.2.0 (Current) Big thanks to @addaleax who prepared the vast majority of this release. Notable changes: * Async Hooks * Multiple improvements to Promise support in `async_hooks` have been made. * Build * The compiler version requirement to build Node with GCC has been raised to GCC 4.9.4. [[`820b011ed6`](https://github.com/nodejs/node/commit/820b011ed6)] [#13466](https://github.com/nodejs/node/pull/13466) * Cluster * Users now have more fine-grained control over the inspector port used by individual cluster workers. Previously, cluster workers would simply increment from the master's debug port. [[`dfc46e262a`](https://github.com/nodejs/node/commit/dfc46e262a)] [#14140](https://github.com/nodejs/node/pull/14140) * DNS * The server used for DNS queries can now use a custom port. [[`ebe7bb29aa`](https://github.com/nodejs/node/commit/ebe7bb29aa)] [#13723](https://github.com/nodejs/node/pull/13723) * Support for `dns.resolveAny()` has been added. [[`6e30e2558e`](https://github.com/nodejs/node/commit/6e30e2558e)] [#13137](https://github.com/nodejs/node/pull/13137) * npm * The `npm` CLI has been updated to version 5.3.0. In particular, it now comes with the `npx` binary, which is also shipped with Node. [[`dc3f6b9ac1`](https://github.com/nodejs/node/commit/dc3f6b9ac1)] [#14235](https://github.com/nodejs/node/pull/14235) * `npm` Changelogs: - [v5.0.4](https://github.com/npm/npm/releases/tag/v5.0.4) - [v5.1.0](https://github.com/npm/npm/releases/tag/v5.1.0) - [v5.2.0](https://github.com/npm/npm/releases/tag/v5.2.0) - [v5.3.0](https://github.com/npm/npm/releases/tag/v5.3.0) PR-URL: https://github.com/nodejs/node/pull/13744	2017-07-19 18:40:42 -04:00
Evan Lucas	22889347df	2017-07-11, Version 8.1.4 (Current) This is a security release. All Node.js users should consult the security release summary at https://nodejs.org/en/blog/vulnerability/july-2017-security-releases/ for details on patched vulnerabilities. Notable changes * build: - Disable V8 snapshots - The hashseed embedded in the snapshot is currently the same for all runs of the binary. This opens node up to collision attacks which could result in a Denial of Service. We have temporarily disabled snapshots until a more robust solution is found (Ali Ijaz Sheikh) * deps: - CVE-2017-1000381 - The c-ares function ares_parse_naptr_reply(), which is used for parsing NAPTR responses, could be triggered to read memory outside of the given input buffer if the passed in DNS response packet was crafted in a particular way. This patch checks that there is enough data for the required elements of an NAPTR record (2 int16, 3 bytes for string lengths) before processing a record. (David Drysdale) PR-URL: https://github.com/nodejs/node-private/pull/91	2017-07-11 11:57:37 -05:00
Evan Lucas	89e121d4a7	2017-07-11, Version 7.10.1 (Current) This is a security release. All Node.js users should consult the security release summary at https://nodejs.org/en/blog/vulnerability/july-2017-security-releases/ for details on patched vulnerabilities. * build: - Disable V8 snapshots - The hashseed embedded in the snapshot is currently the same for all runs of the binary. This opens node up to collision attacks which could result in a Denial of Service. We have temporarily disabled snapshots until a more robust solution is found (Ali Ijaz Sheikh) * deps: - CVE-2017-1000381 - The c-ares function ares_parse_naptr_reply(), which is used for parsing NAPTR responses, could be triggered to read memory outside of the given input buffer if the passed in DNS response packet was crafted in a particular way. This patch checks that there is enough data for the required elements of an NAPTR record (2 int16, 3 bytes for string lengths) before processing a record. (David Drysdale) PR-URL: https://github.com/nodejs/node-private/pull/92	2017-07-11 11:56:23 -05:00
Myles Borins	6218939cdd	2017-07-11, Version 6.11.1 'Boron' (LTS) This is a security release. All Node.js users should consult the security release summary at: https://nodejs.org/en/blog/vulnerability/july-2017-security-releases/ for details on patched vulnerabilities. Notable Changes: * build: - Disable V8 snapshots - The hashseed embedded in the snapshot is currently the same for all runs of the binary. This opens node up to collision attacks which could result in a Denial of Service. We have temporarily disabled snapshots until a more robust solution is found (Ali Ijaz Sheikh) * deps: - CVE-2017-1000381 - The c-ares function ares_parse_naptr_reply(), which is used for parsing NAPTR responses, could be triggered to read memory outside of the given input buffer if the passed in DNS response packet was crafted in a particular way. This patch checks that there is enough data for the required elements of an NAPTR record (2 int16, 3 bytes for string lengths) before processing a record. (David Drysdale) PR-URL: https://github.com/nodejs/node-private/pull/89	2017-07-11 17:50:09 +01:00
Myles Borins	0130cf55bb	2017-07-11, Version 4.8.4 'Argon' (Maintenance) This is a security release. All Node.js users should consult the security release summary at: https://nodejs.org/en/blog/vulnerability/july-2017-security-releases/ for details on patched vulnerabilities. Notable Changes: * build: - Disable V8 snapshots - The hashseed embedded in the snapshot is currently the same for all runs of the binary. This opens node up to collision attacks which could result in a Denial of Service. We have temporarily disabled snapshots until a more robust solution is found (Ali Ijaz Sheikh) * deps: - CVE-2017-1000381 - The c-ares function ares_parse_naptr_reply(), which is used for parsing NAPTR responses, could be triggered to read memory outside of the given input buffer if the passed in DNS response packet was crafted in a particular way. This patch checks that there is enough data for the required elements of an NAPTR record (2 int16, 3 bytes for string lengths) before processing a record. (David Drysdale) PR-URL: https://github.com/nodejs/node-private/pull/90	2017-07-11 17:49:34 +01:00
Rod Vagg	53b8c51e7c	2017-06-29, Version 8.1.3 (Current) Notable changes * Stream Two regressions with the `stream` module have been fixed: * The `finish` event will now always be emitted after the `error` event if one is emitted: [[`0a9e96e86c`](https://github.com/nodejs/node/commit/0a9e96e86c)] [#13850](https://github.com/nodejs/node/pull/13850) * In object mode, readable streams can now use `undefined` again. [[`5840138e70`](https://github.com/nodejs/node/commit/5840138e70)] [#13760](https://github.com/nodejs/node/pull/13760)	2017-06-29 17:02:43 +10:00
Rod Vagg	c7323af131	2017-06-15, Version 8.1.2 (Current) Release to fix broken `process.release` properties Ref: https://github.com/nodejs/node/issues/13667	2017-06-15 22:43:54 +10:00

1 2 3

142 Commits