Skip to main content

3 posts tagged with "feature"

View All Tags

24.07

๐Ÿš€ Highlightsโ€‹

  • Memory Footprint: Revision of all memory-intensive components to resolve issues related to performance and memory usage.
  • In-Memory Indexing: Introduced IndexService for efficient in-memory asset registration. It addresses a design choice made to prioritize high performance when fallback images are used extensively.
  • Faster Encoding: up to 30% for WebP, 50% for JPEG and for 100% PNG (for specific access patterns and resolutions)
  • Faster Scanner: Improved performance of path traversal checks by min. 20% for large datasets

Securityโ€‹

  • Updated Log4j to 2.26.1
  • The Tomcat APR/Native Connector has been removed in favor of a pure Java connector
  • CVE-2025-31650 Denial of Service Due to a Memory Leak Caused by Invalid HTTP Priority Headers)
  • CVE-2024-23672 (Denial of Service due to incomplete clean-up of WebSocket connections)
  • CVE-2023-46589, CVE-2023-45648 (Request smuggling caused by incorrect parsing of HTTP trailer headers)

Fixedโ€‹

  • Consistency issues encountered when importing and updating directory entries have been resolved
  • Significantly improved internal handling of service errors
  • fsi/service/health is more precise and the HEALTHCHECK in the container works more accurately
  • Hanging threads during shutdown have been fixed
  • Negative counter in System Monitor fixed
  • Possible User Session Overflow fixed

โœจ Addedโ€‹

  • Added storage.jsonl log file to monitoring changes in sources
  • Update search engine support to Apache Solr 10

๐Ÿ›  Changedโ€‹

  • JVM: Reduced default RAM allocation
  • Many memory-intensive operations have been optimised
    • In response, an in-memory indexing system was introduced, which statically registers each asset. This improves performance when dealing with large numbers of assets and enables fast queries. This index requires approximately 300MB of RAM per million assets.
    • On Linux, you need to adjust the user_watcher_max system settings
  • Scanner: Intervals can be set
  • Improved support for video byte ranges
  • Access to static directories has been changed to status 403 instead of returning an empty response
  • Renderer: Optimized header handling and much faster response of 404 for non-existing assets

๐Ÿงน Removedโ€‹

  • SSL certificate support in Tomcat has been removed
  • Blake3 storage hashing
  • Compression for static files removed

22.12

Important Security Bug-fix Release

Severity: Moderate

Several JDK CVE CVE-2023-0482 (Fixed in Resteasy 4.7.8) CVE-2023-0482 (Fixed in Resteasy 4.7.8)

Server health serviceโ€‹

  • The internal health service, accessible at /fsi/service/healthcheck, now uses much more internal checks to determine the overall health of the server.
  • The container healthcheck was adapted according to the changes and now triggers a restart of the container more quickly.

Rename and metadataโ€‹

Fixed an issue with extra metadata added via the API not being moved in case of renaming or moving the source data.

Exit on start-upโ€‹

Fixed a server exit at startup when the server was started with an incomplete storage.

Archive supportโ€‹

The unpacking of archives (TAR, BZ2) has been accelerated.

Static file responses for video filesโ€‹

When delivering video files in particular, the byte-range support has been changed. . For the video container formats mov, m4v und mp4, only the first chunk is delivered for requests with range headers. This massively reduces the traffic for video playback.

Bug if Apache Solr was disabledโ€‹

If Apache Solr was disabled as the search database, an exception could occur when deleting directories. This problem has been fixed.

Storage import orderโ€‹

The internal job queue that determines when images are converted for the storage has been completely re-implemented. As a result, queue processing is significantly accelerated when API uploads and file system changes occur simultaneously. The RAM memory requirements have also been significantly reduced.

WebP encoderโ€‹

A new WebP encoder based on libwebp 1.3.0 was implemented. The following encoder parameters are deprecated:

info Parameter deprectation
  • snsStrength
  • filterSharpness
  • filterStrength
  • preProcessing
  • multiThreads

Log output when the server is stoppedโ€‹

Log output for the ListBuffer indicating an error when the server was terminated has been removed. This was not an error.

Uniform time specifications for loggingโ€‹

The output of dates and time ranges has been unified in all log outputs and are now human-readable.

Storage Performanceโ€‹

If many files in many directories are changed, then the speed to mirroring the directory structure in storage is now much better.

Directory Cacheโ€‹

The internal cache for the directory structure is now more limited based on the available RAM memory.

Fallback Imagesโ€‹

Rendered fallback images did not have a cache-control header under certain circumstances. This problem has now been fixed.

FSI Layersโ€‹

It's now possible to also use regular HTML content (e.g. text or videos) in FSI Layers

added parameters:

  • contentInBackground - defines if content is set in background

changed API functions:

  • addGroup(strParentGroupName, oParameters, (index or layer name))
  • addLayer(strParentGroupName, oParameters, (index or layer name), (HTML content))
  • move(layerName, targetGroup, (target index or layer name))

22.09

Critical Security Bug-fix Release

Severity: High

CVE-2021-43980 (fixed in Tomcat 9.0.62) CVE-2021-44832 (fixed in log4j2 2.17.1) Several JDK CVE Increased Salt Bits for login digest method

Bump to Java 17 LTSโ€‹

This version uses Java 17. Parts of the source code have been updated according to the possibilities of Java 17. Slight performance advantages could be measured in internal benchmarks.

Error if histogram generation is disabledโ€‹

Conversion errors could occur if histogram creation was disabled or could not be performed.

Fix disk usage performance and sizing bugโ€‹

The display of the capacity of the disk for storage was incorrect and has been fixed. The speed at which this was determined has been significantly improved.

Added some additional image formatsโ€‹

We have expanded the number of supported source image formats and from this version we support the following formats:

info
  • JPEG - Joint Photographic Experts Group
  • TIFF - Tag Image File Format
  • GIF - Graphics Interchange Format
  • PNG - Portable Network Graphics
  • PSD - Photoshop document
  • WEBP - Google WebP Format
  • BMP - Bitmap File Format
  • FPX - FlashPix
  • PBM - Portable Anymap
  • PICT - macOS image format
  • PCX - Picture exchange
  • IFF - Interchange File Format
  • HDR - Radiance High Dynamic Range RGBE Format
  • TGA - Truevision TARGA
  • SGI - Silicon Graphics Image Format

Image type recognitionโ€‹

Recognition for certain image formats has been revised and accelerated. Especially the initial scan after a reboot benefits from this improvement.

Directory imagesโ€‹

Fixed a problem with very small images in the Web Interface view of directories.

Fix Alpha-Channel bugโ€‹

For images without ICC color profile, the transparency channel could be rendered incorrectly. This occurred especially with PNG images with linear RGB ICC.