Update docker.io/matrixdotorg/synapse Docker tag to v1.92.2
This MR contains the following updates:
| Package | Update | Change |
|---|---|---|
| docker.io/matrixdotorg/synapse | minor |
v1.90.0 -> v1.92.2
|
Release Notes
matrix-org/synapse (docker.io/matrixdotorg/synapse)
v1.92.2
Synapse 1.92.2 (2023-09-15)
This is a Docker-only update to mitigate CVE-2023-4863, a critical vulnerability in libwebp. Server admins not using Docker should ensure that their libwebp is up to date (if installed). We encourage admins to upgrade as soon as possible.
Updates to the Docker image
- Update docker image to use Debian bookworm as the base. (#16324)
v1.92.1
Synapse 1.92.1 (2023-09-12)
This minor release was needed only because of CI-related trouble on v1.92.0, which was never released.
Internal Changes
- Stop building Ubuntu Kinetic since it is EOL and repos seem to be dead.
v1.92.0
Synapse 1.92.0 (2023-09-12)
This release includes the same bugfix as Synapse 1.91.2.
This version was never released following a CI build failure, cf v1.92.1 changelog.
Bugfixes
Internal Changes
- Fix incorrect docstring for
Ratelimiter. (#16255) - Update the release script to work on macOS. (#16266)
v1.91.2
Synapse 1.91.2 (2023-09-06)
Bugfixes
v1.91.1
Synapse 1.91.1 (2023-09-04)
Bugfixes
- Fix a performance regression introduced in Synapse 1.91.0 where event persistence would cause an excessive linear growth in CPU usage. (#16220)
v1.91.0
Synapse 1.91.0 (2023-08-30)
No significant changes since 1.91.0rc1.
Synapse 1.91.0rc1 (2023-08-23)
Features
- Implements an admin API to lock an user without deactivating them. Based on MSC3939. (#15870)
- Implements a task scheduler for resumable potentially long running tasks. (#15891)
- Allow specifying
client_secret_pathas alternative toclient_secretfor OIDC providers. This avoids leaking the client secret in the homeserver config. Contributed by @Ma27. (#16030) - Allow customising the IdP display name, icon, and brand for SAML and CAS providers (in addition to OIDC provider). (#16094)
- Add an
adminsquery parameter to the List Accounts admin API, to include only admins or to exclude admins in user queries. (#16114)
Bugfixes
- Fix long-standing bug where concurrent requests to change a user's push rules could cause a deadlock. Contributed by Nick @ Beeper (@fizzadar). (#16052)
- Fix a long-standing bug in
/syncwhere timeout=0 does not skip caching, resulting in slow calls in cases where there are no new changes. Contributed by @PlasmaIntec. (#16080) - Fix performance of state resolutions for large, old rooms that did not have the full auth chain persisted. (#16116)
- Filter out user agent references to the sliding sync proxy and rust-sdk from the user_daily_visits table to ensure that Element X can be represented fully. (#16124)
- User constent and 3-PID changes capability cannot be enabled when using experimental MSC3861 support. (#16127, #16134)
- Fix a rare race that could block new events from being sent for up to two minutes. Introduced in v1.90.0. (#16133, #16169)
- Fix performance degredation when there are a lot of in-flight replication requests. (#16148)
- Fix a bug introduced in 1.87 where synapse would send an excessive amount of federation requests to servers which have been offline for a long time. Contributed by Nico. (#16156, #16164)
Improved Documentation
- Structured logging docs: add a link to explain the ELK stack (#16091)
Internal Changes
- Update dehydrated devices implementation. (#16010)
- Fix database performance of read/write worker locks. (#16061)
- Fix building the nix development environment on MacOS systems. (#16063)
- Override global statement timeout when creating indexes in Postgres. (#16085)
- Fix the type annotation on
run_db_interactionin the Module API. (#16089) - Clean-up the presence code. (#16092)
- Run
pyupgradefor Python 3.8+. (#16110) - Rename pagination and purge locks and add comments to explain why they exist and how they work. (#16112)
- Attempt to fix the twisted trunk job. (#16115)
- Cache token introspection response from OIDC provider. (#16117)
- Add cache to
get_server_keys_json_for_remote. (#16123) - Add an admin endpoint to allow authorizing server to signal token revocations. (#16125)
- Add response time metrics for introspection requests for delegated auth. (#16131)
- MSC3861: allow impersonation by an admin user using
_oidc_admin_impersonate_user_idquery parameter. (#16132) - Increase performance of read/write locks. (#16149)
- Improve presence tests. (#16150, #16151, #16158)
- Raised the poetry-core version cap to 1.7.0. (#16152)
- Fix assertion in user directory unit tests. (#16157)
- Reduce scope of locks when paginating to alleviate DB contention. (#16159)
- Reduce DB contention on worker locks. (#16160)
- Task scheduler: mark task as active if we are scheduling as soon as possible. (#16165)
Updates to locked dependencies
- Bump click from 8.1.6 to 8.1.7. (#16145)
- Bump gitpython from 3.1.31 to 3.1.32. (#16103)
- Bump ijson from 3.2.1 to 3.2.3. (#16143)
- Bump isort from 5.11.5 to 5.12.0. (#16108)
- Bump log from 0.4.19 to 0.4.20. (#16109)
- Bump pygithub from 1.59.0 to 1.59.1. (#16144)
- Bump sentry-sdk from 1.28.1 to 1.29.2. (#16142)
- Bump serde from 1.0.183 to 1.0.184. (#16139)
- Bump txredisapi from 1.4.9 to 1.4.10. (#16107)
- Bump types-bleach from 6.0.0.3 to 6.0.0.4. (#16106)
- Bump types-pillow from 10.0.0.1 to 10.0.0.2. (#16105)
- Bump types-pyopenssl from 23.2.0.1 to 23.2.0.2. (#16146)
Configuration
-
If you want to rebase/retry this MR, check this box
This MR has been generated by Renovate Bot.
Edited by Renovate [bot]
