Twisted Core 15.5.0 (2015-11-28)
================================
This is the last Twisted release where Python 2.6 is supported, on any
platform. Python 3.5 (on POSIX) support has been added.
This release introduces changes that are required for Conch's SSH
implementation to work with OpenSSH 6.9+ servers.
Features
--------
- twisted.python.url is a new abstraction for URLs, supporting RFC
3987 IRIs. (#5388)
- twisted.python.logfile is now ported to Python 3. (#6749)
- twisted.python.zippath has been ported to Python 3. (#6917)
- twisted.internet.ssl.CertificateOptions and
twisted.internet.ssl.optionsForClientTLS now take a
acceptableProtocols parameter that enables negotiation of the next
protocol to speak after the TLS handshake has completed. This field
advertises protocols over both NPN and ALPN. Also added new
INegotiated interface for TLS interfaces that support protocol
negotiation. This interface adds a negotiatedProtocol property that
reports what protocol, if any, was negotiated in the TLS handshake.
(#7860)
- twisted.python.urlpath.URLPath now operates correctly on Python 3,
using bytes instead of strings, and introduces the fromBytes
constructor to assist with creating them cross-version. (#7994)
- twisted.application.strports is now ported to Python 3. (#8011)
- twistd (the Twisted Daemon) is now ported to Python 3. (#8012)
- Python 3.5 is now supported on POSIX platforms. (#8042)
- twisted.internet.serialport is now ported on Python 3. (#8099)
Bugfixes
--------
- twisted.logger.formatEvent now can format an event if it was
flattened (twisted.logger.eventAsJSON does this) and has text after
the last replacement field. (#8003)
- twisted.cred.checkers.FilePasswordDB now logs an error if the
credentials db file does not exist, no longer raises an unhandled
error. (#8028)
- twisted.python.threadpool.ThreadPool now properly starts enough
threads to do any work scheduled before ThreadPool.start() is
called, such as when work is scheduled in the reactor via
reactor.callInThread() before reactor.run(). (#8090)
Improved Documentation
----------------------
- Twisted Development test standard documentation now contain
information about avoiding test data files. (#6535)
- The documentation for twisted.internet.defer.DeferredSemaphore now
describes the actual usage for limit and tokens instance
attributes. (#8024)
Deprecations and Removals
-------------------------
- twisted.python._initgroups, a C extension, has been removed and
stdlib support is now always used instead. (#5861)
- Python 2.6 is no longer supported. (#8017)
- twisted.python.util.OrderedDict is now deprecated, and uses of it
in Twisted are replaced with collections.OrderedDict. (#8051)
- twisted.persisted.sob.load, twisted.persisted.sob.loadValueFromFile
and twisted.persisted.sob.Persistent.save() are now deprecated when
used with a passphrase. The encyption used by these methods are
weak. (#8081)
- twisted.internet.interfaces.IStreamClientEndpointStringParser has
been removed and Twisted will no longer use parsers implementing
this interface. (#8094)
Other
-----
- #5976, #6628, #6894, #6980, #7228, #7693, #7731, #7997, #8046,
#8054, #8056, #8060, #8063, #8064, #8068, #8072, #8091, #8095,
#8096, #8098, #8106
Twisted Conch 15.5.0 (2015-11-18)
=================================
Features
--------
- twisted.conch.ssh now supports the diffie-hellman-group-exchange-
sha256 key exchange algorithm. (#7672)
- twisted.conch.ssh now supports the diffie-hellman-group14-sha1 key
exchange algorithm. (#7717)
- twisted.conch.ssh.transport.SSHClientTransport now supports Diffie-
Hellman key exchange using MSG_KEX_DH_GEX_REQUEST as described in
RFC 4419. (#8100)
- twisted.conch.ssh now supports the hmac-sha2-256 and hmac-sha2-512
MAC algorithms. (#8108)
Deprecations and Removals
-------------------------
- twisted.conch.ssh.keys.objectType is now deprecated. Use
twisted.conch.ssh.keys.Key.sshType. (#8080)
- twisted.conch.ssh.transport.SSHClientTransport no longer supports
Diffie-Hellman key exchange using MSG_KEX_DH_GEX_REQUEST_OLD for
pre RFC 4419 servers. (#8100)
Twisted Web 15.5.0 (2015-11-18)
================================
Features
--------
- twisted.web.http.Request.addCookie now supports the httpOnly
attribute which when set on cookies prevents the browser exposing
it through channels other than HTTP and HTTPS requests (i.e. they
will not be accessible through JavaScript). (#5911)
- twisted.web.client.downloadPage is now ported to Python 3. (#6197)
- twisted.web.client.Agent is now ported to Python 3. (#7407)
- twisted.web.tap (ran when calling `twistd web`) has now been ported
to Python 3. Not all features are enabled -- CGI, WSGI, and
distributed web serving will be enabled in their respective tickets
as they are ported. (#8008)
Bugfixes
--------
- twisted.web.client.URI now supports IPv6 addresses. Previously this
would mistake the colons used as IPv6 address group separators as
the start of a port specification. (#7650)
- twisted.web.util's failure template has been moved inline to work
around Python 3 distribution issues. (#8047)
- twisted.web.http.Request on Python 3 now handles multipart/form-
data requests correctly. (#8052)
Other
-----
- #8016, #8070
Twisted Words 15.5.0 (2015-11-18)
=================================
Features
--------
- twisted.words.protocol.irc.IRC now has a sendCommand() method which
can send messages with tags. (#6667)
Other
-----
- #8015, #8097
----
18.7
----
* Update dependency on certify.
* Pull Request #160: Improve detection of gui script in
``easy_install._adjust_header``.
* Made ``test.test_args`` a non-data property; alternate fix
for the issue reported in Pull Request #155.
* Issue #453: In ``ez_setup`` bootstrap module, unload all
``pkg_resources`` modules following download.
* Pull Request #158: Honor `PEP-488
<https://www.python.org/dev/peps/pep-0488/>`_ when excluding
files for namespace packages.
* Issue #419 and Pull Request #144: Add experimental support for
reading the version info from distutils-installed metadata rather
than using the version in the filename.
------
18.6.1
------
* Issue #464: Correct regression in invocation of superclass on old-style
class on Python 2.
----
18.6
----
* Issue #439: When installing entry_point scripts under development,
omit the version number of the package, allowing any version of the
package to be used.
Add test dependencies. All tests pass.
0.5.0 -- 2015-11-24
-------------------
More information about this release can be found on the `milestone
<https://github.com/sigmavirus24/requests-toolbelt/issues?utf8=%E2%9C%93&q=is%3Aall+milestone%3A0.5+>`_
for 0.5.0.
New Features
~~~~~~~~~~~~
- The ``tee`` submodule was added to ``requests_toolbelt.downloadutils``. It
allows you to iterate over the bytes of a response while also writing them
to a file. The ``tee.tee`` function, expects you to pass an open file
object, while ``tee.tee_to_file`` will use the provided file name to open
the file for you.
- Added a new parameter to ``requests_toolbelt.utils.user_agent`` that allows
the user to specify additional items.
- Added nested form-data helper,
``requests_toolbelt.utils.formdata.urlencode``.
- Added the ``ForgetfulCookieJar`` to ``requests_toolbelt.cookies``.
- Added utilities for dumping the information about a request-response cycle
in ``requests_toolbelt.utils.dump``.
- Implemented the API described in the ``requests_toolbelt.threaded`` module
docstring, i.e., added ``requests_toolbelt.threaded.map`` as an available
function.
Fixed Bugs
~~~~~~~~~~
- Now papers over the API differences in versions of requests installed from
system packages versus versions of requests installed from PyPI.
- Allow string types for ``SourceAddressAdapter``.
Betamax is a VCR_ imitation for requests. This will make mocking out requests
much easier. It is tested on 'Travis CI'.
Put in a more humorous way: "Betamax records your HTTP interactions so the NSA
does not have to."
4.0.2 Fix: docs/README.rst was not included in MANIFEST.in by accident,
thus breaking the source installation (2015/07/28)
4.0.1 Added docs directory and upload_docs command. Fixed bug with
`__qualname__`, reported by Lucian Petrut (2015/07/28)
4.0.0 Removed the need for 2to3 by dropping the support for Python 2.5.
Added a MANIFEST.in file and produced a proper wheel. Improved
the integration with setuptools so that `python setup.py test` works.
Reworked the documentation and introduced `decorator.decorated`.
Removed any dependence from `inspect.getargspec`, which is deprecated
in Python 3.5, as signaled by Ralf Gommers.
Fixed `contextmanager` to work with Python 3.5.
Copied the `__qualname__` attribute, as requested by Frazer McLean.
Added a `dispatch_on` facility to implement generic functions.
(2015/07/24)
3.4.2 Same as 3.4.1, re-uploaded to PyPI (2015-03-22)
3.4.1 Ported the repository from GoogleCode to GitHub and added Travis CI
support. Tests are executed with the new command `python test.py -v`.
setuptools is now mandatory in Python 3. The suggested
installation tool is now `pip`, not `easy_install`. Supported IronPython
and other Python implementations without sys._getframe, as requested by
Doug Blank (2015/03/16)
Add test target.
Version 6.2
-----------
(bugfix release, released on November 27th 2015)
- Correct fix for hidden progress bars.
Version 6.1
-----------
(bugfix release, released on November 27th 2015)
- Resolved an issue with invisible progress bars no longer rendering.
- Disable chain commands with subcommands as they were inherently broken.
- Fix `MissingParameter` not working without parameters passed.
Version 6.0
-----------
(codename "pow pow", released on November 24th 2015)
- Optimized the progressbar rendering to not render when it did not
actually change.
- Explicitly disallow nargs=-1 with a set default.
- The context is now closed before it's popped from the stack.
- Added support for short aliases for the false flag on toggles.
- Click will now attempt to aid you with debugging locale errors
better by listing with the help of the OS what locales are
available.
- Click used to return byte strings on Python 2 in some unit-testing
situations. This has been fixed to correctly return unicode strings
now.
- For Windows users on Python 2, Click will now handle Unicode more
correctly handle Unicode coming in from the system. This also has
the disappointing side effect that filenames will now be always
unicode by default in the `Path` type which means that this can
introduce small bugs for code not aware of this.
- Added a `type` parameter to `Path` to force a specific string type
on the value.
- For users running Python on Windows the `echo`) and `prompt` functions
now work with full unicode functionality in the Python windows console
by emulating an output stream. This also applies to getting the
virtual output and input streams via `click.get_text_stream(...)`.
- Unittests now always force a certain virtual terminal width.
- Added support for allowing dashes to indicate standard streams to the
`Path` type.
- Multi commands in chain mode no longer propagate arguments left over
from parsing to the callbacks. It's also now disallowed through an
exception when optional arguments are attached to multi commands if chain
mode is enabled.
- Relaxed restriction that disallowed chained commands to have other
chained commands as child commands.
- Arguments with positive nargs can now have defaults implemented.
Previously this configuration would often result in slightly unexpected
values be returned.
Version 1.0.26 (2015-11-22)
* Fix for CVE-2014-9496, SD2 buffer read overflow.
* Fix for CVE-2014-9756, file_io.c divide by zero.
* Fix for CVE-2015-7805, AIIF heap write overflow.
* Add support for ALAC encoder in a CAF container.
* Add support for Cart chunks in WAV files.
* Minor bug fixes and improvements.
Fri Dec 4 13:53:05 CET 2015
Releasing libmicrohttpd 0.9.47. -CG
Thu Dec 3 18:21:44 CET 2015
Reworked VS project files. Used x64 build tools by
default, many optimizations, fixes.
Added project files for VS 2015. -EG
Tue Dec 1 14:05:13 CET 2015
SPDY is dead, killing experimental libmicrospdy. -CG
Tue Dec 1 10:01:12 CET 2015
New logic for controlling socket buffer modes.
Eliminated delay before last packet in response and before
"100 Continue" response on all platforms. Also response
header are pushed to client without waiting for response
body. -EG
Wed Nov 25 17:02:53 CET 2015
Remove 200ms delay observable with keep-alive on Darwin
and *BSD platfroms. -EG
Tue Nov 10 15:25:48 CET 2015
Fix issue with shutdown if connection was resumed just
before shutdown. -FC
v0.12.6
@calmh calmh released this 3 days ago · 6 commits to master since this release
Allow #urPreview to scroll in the browser (#2537, @canton7)
Fix deleting folders on WinXP (#2522, @buinsky)
New key for discovery-*-3
Handle backoff on discovery
v0.12.5
@calmh calmh released this 6 days ago · 17 commits to master since this release
Update osext dependency (#1272, @calmh)
Compact database on startup (#2400, @calmh)
Don't chmod in Atomic on android (#2472, @kluppy)
Fix symlinks (#2524, @AudriusButkevicius)
Generate ECDSA keys instead of RSA (#2523, @calmh)
Take timeout into account when dialing (#2521, @AudriusButkevicius)
Improve upgrade error messages (#2510, @plouj)
pkgconf is a program which helps to configure compiler and linker flags for
development frameworks. It is similar to pkg-config, but was written from
scratch in the summer of 2011 to replace pkg-config, which now needs itself
to build itself (or you can set a bunch of environment variables, both are
pretty ugly).
Notable changes
- http: Fix a bug where an HTTP socket may no longer have a socket
but a pipelined request triggers a pause or resume, a potential
denial-of-service vector. (Fedor Indutny)
- openssl: Upgrade to 1.0.2e, containing fixes for:
- CVE-2015-3193 "BN_mod_exp may produce incorrect results on x86_64",
an attack is considered feasible against a Node.js TLS server
using DHE key exchange. Details are available at
http://openssl.org/news/secadv/20151203.txt.
- CVE-2015-3194 "Certificate verify crash with missing PSS parameter",
a potential denial-of-service vector for Node.js TLS servers; TLS
clients are also impacted. Details are available at
http://openssl.org/news/secadv/20151203.txt. (Shigeki Ohtsu) #4134
- v8: Backport fixes for a bug in JSON.stringify() that can result in
out-of-bounds reads for arrays. (Ben Noordhuis)
