pkgsrc changes:
o Switch all mplayer packages to use multimedia/ffmpeg2 instead of the
version bundled with MPlayer. This will make maintainership of mplayer
packages probably a bit easier (and it's particular relevant when dealing
vulnerability issues). Discussed with wiz@.
o Adjust CONFIGURE_ARGS and other part of the Makefile* to reflect the switch
to multimedia/ffmpeg2.
Changes:
1.2.1:
Fixes:
* misc GUI fixes
* fix build regression in FreeBSD
* fix many crashes with fuzzed files
* fix errors for multichannels files and pulseaudio >= 6
Other:
* building with system FFmpeg libs is possible without a local copy of
of private FFmpeg headers
* docs building does not require FFmpeg anymore
* FFmpeg updated to 2.8.5
Changes:
CHANGES IN CUPS V2.1.3
- The default password function did not work on some platforms
(STR #4750)
- The scheduler should not exit under memory pressure
(<rdar://problem/23255001>)
- The EPL2 and ZPL sample drivers did not properly support the CutMedia
option.
- Pending subscriptions would prevent the scheduler from idle exiting
(STR #4754)
- Fixed some issues in ipptool for skipped tests
(<rdar://problem/24137160>)
- The "lp -H resume" command did not reset the "job-state-reasons"
attribute value (STR #4752)
- The scheduler did not allow access to resource files (icons, etc.)
when the web interface was disabled (STR #4755)
- Localization fix (STR #4756)
- Handle the case where the CPU supports AVX, but we are running
on an hypervisor with AVX disabled/not supported.
- Faster (2x) scalarmult_base() when using the ref10 implementation
========================
Fixes since v2.7
----------------
* An earlier change in 2.5.x-era broke users' hooks and aliases by
exporting GIT_WORK_TREE to point at the root of the working tree,
interfering when they tried to use a different working tree without
setting GIT_WORK_TREE environment themselves.
* The "exclude_list" structure has the usual "alloc, nr" pair of
fields to be used by ALLOC_GROW(), but clear_exclude_list() forgot
to reset 'alloc' to 0 when it cleared 'nr' to discard the managed
array.
* "git send-email" was confused by escaped quotes stored in the alias
files saved by "mutt", which has been corrected.
* A few unportable C construct have been spotted by clang compiler
and have been fixed.
* The documentation has been updated to hint the connection between
the '--signoff' option and DCO.
* "git reflog" incorrectly assumed that all objects that used to be
at the tip of a ref must be commits, which caused it to segfault.
* The ignore mechanism saw a few regressions around untracked file
listing and sparse checkout selection areas in 2.7.0; the change
that is responsible for the regression has been reverted.
* Some codepaths used fopen(3) when opening a fixed path in $GIT_DIR
(e.g. COMMIT_EDITMSG) that is meant to be left after the command is
done. This however did not work well if the repository is set to
be shared with core.sharedRepository and the umask of the previous
user is tighter. They have been made to work better by calling
unlink(2) and retrying after fopen(3) fails with EPERM.
* Asking gitweb for a nonexistent commit left a warning in the server
log.
* "git rebase", unlike all other callers of "gc --auto", did not
ignore the exit code from "gc --auto".
* Many codepaths that run "gc --auto" before exiting kept packfiles
mapped and left the file descriptors to them open, which was not
friendly to systems that cannot remove files that are open. They
now close the packs before doing so.
* A recent optimization to filter-branch in v2.7.0 introduced a
regression when --prune-empty filter is used, which has been
corrected.
* The description for SANITY prerequisite the test suite uses has
been clarified both in the comment and in the implementation.
* "git tag" started listing a tag "foo" as "tags/foo" when a branch
named "foo" exists in the same repository; remove this unnecessary
disambiguation, which is a regression introduced in v2.7.0.
* The way "git svn" uses auth parameter was broken by Subversion
1.9.0 and later.
* The "split" subcommand of "git subtree" (in contrib/) incorrectly
skipped merges when it shouldn't, which was corrected.
* A few options of "git diff" did not work well when the command was
run from a subdirectory.
* dirname() emulation has been added, as Msys2 lacks it.
* The underlying machinery used by "ls-files -o" and other commands
have been taught not to create empty submodule ref cache for a
directory that is not a submodule. This removes a ton of wasted
CPU cycles.
* Drop a few old "todo" items by deciding that the change one of them
suggests is not such a good idea, and doing the change the other
one suggested to do.
* Documentation for "git fetch --depth" has been updated for clarity.
* The command line completion learned a handful of additional options
and command specific syntax.
Also includes a handful of documentation and test updates.
features and fixes for AST-2016-001, AST-2016-002, and AST-2016-003.
Also some pkglinting.
----- 13.7.2
The Asterisk Development Team has announced the release of Asterisk 13.7.2.
The release of Asterisk 13.7.2 resolves an issue reported by the
community and would have not been possible without your participation.
Thank you!
The following is the issue resolved in this release:
Bugs fixed in this release:
-----------------------------------
* ASTERISK-25702 - PjSip realtime DB and Cache Errors since
upgrade to asterisk-13.7.0 from asterisk-13.7.0-rc2 (Reported by
Nic Colledge)
For a full list of changes in this release, please see the ChangeLog:
http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-13.7.2
Thank you for your continued support of Asterisk!
----- 13.7.1
The Asterisk Development Team has announced security releases for Certified
Asterisk 11.6 and 13.1 and Asterisk 11 and 13. The available security releases
are released as versions 11.6-cert12, 11.21.1, 13.1-cert3, and 13.7.1.
The release of these versions resolves the following security vulnerabilities:
* AST-2016-001: BEAST vulnerability in HTTP server
The Asterisk HTTP server currently has a default configuration which allows
the BEAST vulnerability to be exploited if the TLS functionality is enabled.
This can allow a man-in-the-middle attack to decrypt data passing through it.
* AST-2016-002: File descriptor exhaustion in chan_sip
Setting the sip.conf timert1 value to a value higher than 1245 can cause an
integer overflow and result in large retransmit timeout times. These large
timeout values hold system file descriptors hostage and can cause the system
to run out of file descriptors.
* AST-2016-003: Remote crash vulnerability receiving UDPTL FAX data.
If no UDPTL packets are lost there is no problem. However, a lost packet
causes Asterisk to use the available error correcting redundancy packets. If
those redundancy packets have zero length then Asterisk uses an uninitialized
buffer pointer and length value which can cause invalid memory accesses later
when the packet is copied.
For a full list of changes in the current releases, please see the ChangeLogs:
http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-13.7.1
The security advisories are available at:
* http://downloads.asterisk.org/pub/security/AST-2016-001.pdf
* http://downloads.asterisk.org/pub/security/AST-2016-002.pdf
* http://downloads.asterisk.org/pub/security/AST-2016-003.pdf
Thank you for your continued support of Asterisk!
----- 13.7.0
The Asterisk Development Team has announced the release of Asterisk 13.7.0.
The release of Asterisk 13.7.0 resolves several issues reported by the
community and would have not been possible without your participation.
Thank you!
The following are the issues resolved in this release:
New Features made in this release:
-----------------------------------
* ASTERISK-25419 - Dialplan Application for Integration of StatsD
(Reported by Ashley Sanders)
* ASTERISK-25549 - Confbridge: Add participant timeout option
(Reported by Mark Michelson)
* ASTERISK-24922 - ARI: Add the ability to intercept hold and
raise an event (Reported by Matt Jordan)
Bugs fixed in this release:
-----------------------------------
* ASTERISK-25689 - pjsip show contacts not working in Asterisk
13.7rc2 (Reported by Marcelo Terres)
* ASTERISK-25640 - pbx: Deadlock on features reload and state
change hint. (Reported by Krzysztof Trempala)
* ASTERISK-25664 - ast_format_cap_append_by_type leaks a reference
(Reported by Corey Farrell)
* ASTERISK-25601 - json: Audit reference usage and thread safety
(Reported by Joshua Colp)
* ASTERISK-25625 - res_sorcery_memory_cache: Add full backend
caching (Reported by Joshua Colp)
* ASTERISK-25615 - res_pjsip: Setting transport async_operations >
1 causes segfault on tls transports (Reported by George Joseph)
* ASTERISK-25364 - [patch]Issue a TCP connection(kernel) and
thread of asterisk is not released (Reported by Hiroaki Komatsu)
* ASTERISK-25619 - res_chan_stats not sending the correct
information to StatsD (Reported by Tyler Cambron)
* ASTERISK-25569 - app_meetme: Audio quality issues (Reported by
Corey Farrell)
* ASTERISK-25609 - [patch]Asterisk may crash when calling
ast_channel_get_t38_state(c) (Reported by Filip Jenicek)
* ASTERISK-24146 - [patch]No audio on WebRtc caller side when
answer waiting time is more than ~7sec (Reported by Aleksei
Kulakov)
* ASTERISK-25599 - [patch] SLIN Resampling Codec only 80 msec
(Reported by Alexander Traud)
* ASTERISK-25616 - Warning with a Codec Module which supports PLC
with FEC (Reported by Alexander Traud)
* ASTERISK-25610 - Asterisk crash during "sip reload" (Reported by
Dudás József)
* ASTERISK-25608 - res_pjsip/contacts/statsd: Lifecycle events
aren't consistent (Reported by George Joseph)
* ASTERISK-25584 - [patch] format-attribute module: VP8 missing
(Reported by Alexander Traud)
* ASTERISK-25583 - [patch] format-attribute module: RFC 7587 (Opus
Codec) (Reported by Alexander Traud)
* ASTERISK-25498 - Asterisk crashes when negotiating g729 without
that module installed (Reported by Ben Langfeld)
* ASTERISK-25595 - Unescaped : in messge sent to statsd (Reported
by Niklas Larsson)
* ASTERISK-25476 - chan_sip loses registrations after a while
(Reported by Michael Keuter)
* ASTERISK-25598 - res_pjsip: Contact status messages are
printing a hash instead of the uri (Reported by George Joseph)
* ASTERISK-25600 - bridging: Inconsistency in BRIDGEPEER (Reported
by Jonathan Rose)
* ASTERISK-25582 - Testsuite: Reactor timeout error in
tests/fax/pjsip/directmedia_reinvite_t38 (Reported by Matt
Jordan)
* ASTERISK-25593 - fastagi: record file closed after sending
result (Reported by Kevin Harwell)
* ASTERISK-25585 - [patch]rasterisk never hits most of main(), but
it's assumed to (Reported by Walter Doekes)
* ASTERISK-25590 - CLI Usage info for 'pjsip send notify'
references incorrect config (Reported by Corey Farrell)
* ASTERISK-25165 - Testsuite - Sorcery memory cache leaks
(Reported by Corey Farrell)
* ASTERISK-25575 - res_pjsip: Dynamic outbound registrations
created via ARI are not loaded into memory on Asterisk
start/restart (Reported by Matt Jordan)
* ASTERISK-25545 - [patch] translation module gets cached not
joint format (Reported by Alexander Traud)
* ASTERISK-25573 - [patch] H.264 format attribute module: resets
whole SDP (Reported by Alexander Traud)
* ASTERISK-24958 - Forwarding loop detection inhibits certain
desirable scenarios (Reported by Mark Michelson)
* ASTERISK-25561 - app_queue.c line 6503 (try_calling): mutex
'qe->chan' freed more times than we've locked! (Reported by Alec
Davis)
* ASTERISK-25552 - hashtab: Improve NULL tolerance (Reported by
Joshua Colp)
* ASTERISK-25160 - [patch] Opus Codec: SIP/SDP line fmtp missing
when called internally (Reported by Alexander Traud)
* ASTERISK-25535 - [patch] format creation on module load instead
of cache (Reported by Alexander Traud)
* ASTERISK-25449 - main/sched: Regression introduced by
5c713fdf18f causes erroneous duplicate RTCP messages; other
potential scheduling issues in chan_sip/chan_skinny (Reported by
Matt Jordan)
* ASTERISK-25546 - threadpool: Race condition between idle timeout
and activation (Reported by Joshua Colp)
* ASTERISK-25537 - [patch] format-attribute module: RFC or
internal defaults? (Reported by Alexander Traud)
* ASTERISK-25533 - [patch] buffer for ast_format_cap_get_names
only 64 bytes (Reported by Alexander Traud)
* ASTERISK-25373 - add documentation for CALLERID(pres) and also
the CONNECTEDLINE and REDIRECTING variants (Reported by Walter
Doekes)
* ASTERISK-25527 - Quirky xmldoc description wrapping (Reported by
Walter Doekes)
* ASTERISK-24779 - Passthrough OPUS codec not working with
chan_pjsip (Reported by PowerPBX)
* ASTERISK-25522 - ARI: Crash when creating channel via ARI
originate with requesting channel (Reported by Matt Jordan)
* ASTERISK-25434 - Compiler flags not reported in 'core show
settings' despite usage during compilation (Reported by Rusty
Newton)
* ASTERISK-24106 - WebSockets Automatically decides what driver it
will use (Reported by Andrew Nagy)
* ASTERISK-25513 - Crash: malloc failed with high load of
subscriptions. (Reported by John Bigelow)
* ASTERISK-25505 - res_pjsip_pubsub: Crash on off-nominal when UAS
dialog can't be created (Reported by Joshua Colp)
* ASTERISK-24543 - Asterisk 13 responds to SIP Invite with all
possible codecs configured for peer as opposed to intersection
of configured codecs and offered codecs (Reported by Taylor
Hawkes)
* ASTERISK-25494 - build: GCC 5.1.x catches some new const, array
bounds and missing paren issues (Reported by George Joseph)
* ASTERISK-25485 - res_pjsip_outbound_registration: registration
stops due to 400 response (Reported by Kevin Harwell)
* ASTERISK-25486 - res_pjsip: Fix deadlock when validating URIs
(Reported by Joshua Colp)
* ASTERISK-7803 - [patch] Update the maximum packetization values
in frame.c (Reported by dea)
* ASTERISK-25484 - [patch] autoframing=yes has no effect (Reported
by Alexander Traud)
* ASTERISK-25461 - Nested dialplan #includes don't work as
expected. (Reported by Richard Mudgett)
* ASTERISK-25455 - Deadlock of PJSIP realtime over
res_config_pgsql (Reported by mdu113)
* ASTERISK-25135 - [patch]RTP Timeout hangup cause code missing
(Reported by Olle Johansson)
* ASTERISK-25435 - Asterisk periodically hangs. UDP Recv-Q greatly
exceeds zero. (Reported by Dmitriy Serov)
* ASTERISK-25451 - Broken video - erased rtp marker bit (Reported
by Stefan Engström)
* ASTERISK-25400 - Hints broken when "CustomPresence" doesn't
exist in AstDB (Reported by Andrew Nagy)
* ASTERISK-25443 - [patch]IPv6 - Potential issue in via header
parsing (Reported by ffs)
* ASTERISK-25404 - segfault/crash in chan_pjsip_hangup ... at
chan_pjsip.c (Reported by Chet Stevens)
* ASTERISK-25391 - AMI GetConfigJSON returns invalid JSON
(Reported by Bojan Nemčić)
* ASTERISK-25441 - Deadlock in res_sorcery_memory_cache. (Reported
by Richard Mudgett)
* ASTERISK-25438 - res_rtp_asterisk: ICE role message even when
ICE is not enabled (Reported by Joshua Colp)
Improvements made in this release:
-----------------------------------
* ASTERISK-25618 - res_pjsip: Check for readability of TLS files
at startup (Reported by George Joseph)
* ASTERISK-25572 - Endpoints: Add StatsD stats for Asterisk
endpoints (Reported by Matt Jordan)
* ASTERISK-25571 - PJSIP: Add StatsD stats for some common PJSIP
objects (Reported by Matt Jordan)
* ASTERISK-25518 - taskprocessor: Add high water mark (Reported by
Jonathan Rose)
* ASTERISK-25477 - pjsip show "command" like [criteria] (Reported
by Bryant Zimmerman)
* ASTERISK-24718 - [patch]Add inital support of "sanitize" to
configure (Reported by Badalian Vyacheslav)
For a full list of changes in this release, please see the ChangeLog:
http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-13.7.0
Thank you for your continued support of Asterisk!
fixes for AST-2016-001, AST-2016-002, and AST-2016-003. Also some
pkglinting.
----- 11.21.1
The Asterisk Development Team has announced security releases for Certified
Asterisk 11.6 and 13.1 and Asterisk 11 and 13. The available security releases
are released as versions 11.6-cert12, 11.21.1, 13.1-cert3, and 13.7.1.
The release of these versions resolves the following security vulnerabilities:
* AST-2016-001: BEAST vulnerability in HTTP server
The Asterisk HTTP server currently has a default configuration which allows
the BEAST vulnerability to be exploited if the TLS functionality is enabled.
This can allow a man-in-the-middle attack to decrypt data passing through it.
* AST-2016-002: File descriptor exhaustion in chan_sip
Setting the sip.conf timert1 value to a value higher than 1245 can cause an
integer overflow and result in large retransmit timeout times. These large
timeout values hold system file descriptors hostage and can cause the system
to run out of file descriptors.
* AST-2016-003: Remote crash vulnerability receiving UDPTL FAX data.
If no UDPTL packets are lost there is no problem. However, a lost packet
causes Asterisk to use the available error correcting redundancy packets. If
those redundancy packets have zero length then Asterisk uses an uninitialized
buffer pointer and length value which can cause invalid memory accesses later
when the packet is copied.
For a full list of changes in the current releases, please see the ChangeLogs:
http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.21.1
The security advisories are available at:
* http://downloads.asterisk.org/pub/security/AST-2016-001.pdf
* http://downloads.asterisk.org/pub/security/AST-2016-002.pdf
* http://downloads.asterisk.org/pub/security/AST-2016-003.pdf
Thank you for your continued support of Asterisk!
----- 11.21.0
The Asterisk Development Team has announced the release of Asterisk 11.21.0.
The release of Asterisk 11.21.0 resolves several issues reported by the
community and would have not been possible without your participation.
Thank you!
The following are the issues resolved in this release:
Bugs fixed in this release:
-----------------------------------
* ASTERISK-25640 - pbx: Deadlock on features reload and state
change hint. (Reported by Krzysztof Trempala)
* ASTERISK-25364 - [patch]Issue a TCP connection(kernel) and
thread of asterisk is not released (Reported by Hiroaki Komatsu)
* ASTERISK-25569 - app_meetme: Audio quality issues (Reported by
Corey Farrell)
* ASTERISK-25609 - [patch]Asterisk may crash when calling
ast_channel_get_t38_state(c) (Reported by Filip Jenicek)
* ASTERISK-24146 - [patch]No audio on WebRtc caller side when
answer waiting time is more than ~7sec (Reported by Aleksei
Kulakov)
* ASTERISK-25599 - [patch] SLIN Resampling Codec only 80 msec
(Reported by Alexander Traud)
* ASTERISK-25616 - Warning with a Codec Module which supports PLC
with FEC (Reported by Alexander Traud)
* ASTERISK-25610 - Asterisk crash during "sip reload" (Reported by
Dudás József)
* ASTERISK-25498 - Asterisk crashes when negotiating g729 without
that module installed (Reported by Ben Langfeld)
* ASTERISK-25476 - chan_sip loses registrations after a while
(Reported by Michael Keuter)
* ASTERISK-25593 - fastagi: record file closed after sending
result (Reported by Kevin Harwell)
* ASTERISK-25585 - [patch]rasterisk never hits most of main(), but
it's assumed to (Reported by Walter Doekes)
* ASTERISK-25552 - hashtab: Improve NULL tolerance (Reported by
Joshua Colp)
* ASTERISK-25449 - main/sched: Regression introduced by
5c713fdf18f causes erroneous duplicate RTCP messages; other
potential scheduling issues in chan_sip/chan_skinny (Reported by
Matt Jordan)
* ASTERISK-25537 - [patch] format-attribute module: RFC or
internal defaults? (Reported by Alexander Traud)
* ASTERISK-25373 - add documentation for CALLERID(pres) and also
the CONNECTEDLINE and REDIRECTING variants (Reported by Walter
Doekes)
* ASTERISK-25527 - Quirky xmldoc description wrapping (Reported by
Walter Doekes)
* ASTERISK-25434 - Compiler flags not reported in 'core show
settings' despite usage during compilation (Reported by Rusty
Newton)
* ASTERISK-25494 - build: GCC 5.1.x catches some new const, array
bounds and missing paren issues (Reported by George Joseph)
* ASTERISK-7803 - [patch] Update the maximum packetization values
in frame.c (Reported by dea)
* ASTERISK-25461 - Nested dialplan #includes don't work as
expected. (Reported by Richard Mudgett)
* ASTERISK-25455 - Deadlock of PJSIP realtime over
res_config_pgsql (Reported by mdu113)
* ASTERISK-25135 - [patch]RTP Timeout hangup cause code missing
(Reported by Olle Johansson)
* ASTERISK-25400 - Hints broken when "CustomPresence" doesn't
exist in AstDB (Reported by Andrew Nagy)
* ASTERISK-25443 - [patch]IPv6 - Potential issue in via header
parsing (Reported by ffs)
* ASTERISK-25391 - AMI GetConfigJSON returns invalid JSON
(Reported by Bojan Nemčić)
* ASTERISK-25438 - res_rtp_asterisk: ICE role message even when
ICE is not enabled (Reported by Joshua Colp)
Improvements made in this release:
-----------------------------------
* ASTERISK-24718 - [patch]Add inital support of "sanitize" to
configure (Reported by Badalian Vyacheslav)
For a full list of changes in this release, please see the ChangeLog:
http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.21.0
Thank you for your continued support of Asterisk!
Changelog:
2015-11-01 v3.6.4 a ref-create bug in wild repos was fixed
some contrib code related to AD integration, and to
redmine user aliases
teach Alias.pm a few new tricks
remove a race condition in 'create' command that affected
the 'default roles' setting
make 'who-pushed' more efficient (local push logs, and
'tip search')
'gitolite query-rc' learns '-d' ('--dump') option
Changelog:
5.7.5.6 Release Notes
Behavioral Improvements
Minor improvements to command line utilities (thanks mlocati)
Default behavior on certain javascript links prevented (thanks ojalehto)
Fixed: User's avatar's url doesn't change when you change the image (thanks ojalehto)
Fixed: https://github.com/concrete5/concrete5/pull/3420 (thanks ojalehto)
Remove New Page link from stacks version history (thanks ojalehto)
Adjust clear log button to indicate dangerousness of the action (thanks ojalehto)
Bug Fixes
Fixed inability to publicly register new accounts (received invalid email address errors on valid email addresses.) (thanks JeRoNZ)
Fixed http://www.concrete5.org/developers/bugs/5-7-5-5/file-manager-broken-after-deleting-a-file-set./ (thanks ojalehto)
Parallax custom template causes layout design to not be accessible
Fixed bug in next/previous block where exclude system pages was always set to true (thanks ojalehto)
Prevent error while adding a new feed without a page type filter (thanks ojalehto)
Fix incorrect action after renaming a stack (thanks ojalehto)
PHP7 bug fixes (thanks JeRoNZ)
Fixed multilingual flag layout(thanks ojalehto)
Strict error bug fixes (thanks mlocati)
5.7.5.5 Release Notes
Behavioral Improvements
You can no longer deactivate or delete your own user account in the Dashboard
Social Links block opens links in new tabs (thanks MrKarlDilkington)
Bug Fixes
Fixed inability to clear site contents when installing themes that swap the site’s contents with their own.
Responsive flag images in multilingual sites (thanks seebaermichi)
Fixed issue where pasted blocks weren’t using proper grid container settings.
Fixed inability to bulk delete files.
Fixed Form block's questions are ordered incorrectly after ordering some of them and creating a new question. (thanks ojalehto)
Fixed: An error was thrown e.g. when trying to change user's password in dashboard while MYSQL is used in STRICT_TRANS_TABLES mode (thanks ojalehto)
Fixed error when adding files to sets and not logged in as admin.
Fixed inability to login with Oauth-based authentication types, including concrete5.org community and others (thanks Fabian Vogler)
Fixed bug: Layout column widths are no longer editable after being saved the first time
Fixed http://www.concrete5.org/developers/bugs/5-7-5-4/member-avatar/
Minor fixes to certain command line commands (thanks mlocati)
Fixed https://github.com/concrete5/concrete5/pull/3363 (thanks ojalehto)
Fixed https://github.com/concrete5/concrete5/issues/2959 (thanks seebaermichi)
Fixed https://github.com/concrete5/concrete5/pull/3368 (jaromirdalecky)
Fixed https://github.com/concrete5/concrete5/issues/3365 (thanks Ruudt)
5.7.5.4 Release Notes
Feature Updates
Lots of improvements to the YouTube block, including responsive and widescreen improvements, support for playlist URLs, support for more YouTube options, and code cleanup (thanks Mesuva!)
Added the ability to start composer page location sitemaps at a certain level in the tree.
Share this Page block now includes a print option (thanks ojalehto)
New uploading settings Dashboard page allows administrators to specify a maximum width, height and JPEG level for images uploaded to the file manager. Images will be constrained using client side JavaScript (if available) and server side as a fallback (thanks Mesuva)
Background size and position added to options in Background Image section of area/block design (thanks MrKarlDilkington)
Added the ability to set storage locations for files in bulk (thanks hissy)
Updates to Image Slider block: draggable and collapsible slides, choose whether to animate automatically, slider speed, time between transitions, and whether to pause on hover (thanks MrKarlDilkington)
Character count added to bulk SEO updater and SEO panel (thanks Mesuva)
Added “Fit Image” button to Image Editor (thanks MrKarlDilkington)
Behavioral Improvements
If a user has the ability to approve the workflow on a page that he or she is updating, the workflow will be skipped when submission occurs.
Better validation of thumbnail types created through the dashboard (thanks mnakalay)
Security improvement: immediate invalidation of password reset emails upon changed passwords (thanks joemeyer)
We now use the number form element in the number attribute (thanks Remo)
Added version comment to workflow email.
Better caching of Page List blocks (thanks TimDix)
CSS scope fixes and cleanup (thanks robkovacs)
Drafts now include the date they were created (thanks MrKarlDilkington)
Command line utilities will now work with a symlinked core (thanks mlocati)
An area name is now visible when dragging a block over it
Better compressed image slider sample images lead to smaller file sizes (thanks MrKarlDilkington)
Improvement to the Page Defaults editing experience (thanks MrKarlDilkington)
Added support for system pages to the AutoNav block (thanks joostrijneveld)
Better support for elements in content blocks (thanks EC-Joe)
Configuration option added to disable download statistics tracking (thanks EC-Joe)
Bug Fixes
Custom theme layout presets now honor attributes on containers and columns other than just “class” (data attributes, etc…)
Fixed error on user password validation on PHP 5.3.3.
User avatar removal now protected against CSRF attacks.
Allows the use of custom label text for file selectors (thanks mnakalay)
Miscellaneous code cleanup and minor bug fixes (thanks joemeyer)
Fixed infinite redirect issues with certain setups.
Fixed https://github.com/concrete5/concrete5/issues/3063 (thanks joemeyer)
Fixed errors when including job sets in packages (thanks joemeyer)
Fixed bug where uploading files with uppercase extensions would fail in certain situations.
Fixed bug where image slider block entries with links to internal page would lose those links on edit (thanks acliss19xx)
Fixed https://github.com/concrete5/concrete5/issues/3300
Fix newsflow url to Dashboard's update page (thanks concrete5 Japan)
Fixed: It is not possible to set the color picker to complete transparency in the theme customization options (thanks mlocati)
Fixed: if you add a picture to a feature paragraph area (or other abstracted string) and go to edit it it doesn't get translated back (thanks joemeyer)
Fixed: https://github.com/concrete5/concrete5/pull/3214 (thanks frosso)
Fixed inability to clear background images in page design.
Fixed https://www.concrete5.org/developers/bugs/5-7-5-3/remove-alias-does-not-work/
Bug fixes with Dashboard sitemap and page search.
Fixed: Package description isn't translated before installing the package (thanks mlocati)
Fixed: Can't vote in a survey if the block caching is turned on (thanks TimDix)
Fixed https://www.concrete5.org/community/forums/chat/date-navigation-timezone-problem/ (thanks mlocati and WillemAnchor)
Fixed https://github.com/concrete5/concrete5/issues/3098 (thanks ahukkanen)
Fixed bug where the Add new page dialog was missing certain translations loaded from Composer (thanks ahukkanen)
Fixed https://www.concrete5.org/developers/bugs/5-7-5-3/zip-file-download/ (thanks mlocati)
Fixed bug where filtering by select attribute option values wasn’t working when the options had special characters in them (thanks dsgraham)
Added X-Frame-Options header option for security purposes (thanks hissy)
Fixed https://hackerone.com/reports/4934 (thanks joemeyer)
Fixed mobile theme switcher issues: Elements are loaded from default theme instead of mobile theme, Responsive image settings of mobile theme does not respected (thanks hissy)
Content import now properly imports area background images (thanks myconcretelab)
https://github.com/concrete5/concrete5/pull/3106 (thanks mlocati)
Fixed typo in Password Sent email template (thanks allybee)
Developer Updates
Code improvements to facilitate concrete5 running on PHP 7 (thanks mlocati)
New command line installation functionality to support installs in a clustered environment (attaches to existing databases rather than requiring an empty database.)
New command line utilities for installing and uninstalling pacs are now available (thanks mlocati)
New command line utilities for generating and updating package translation files (thanks mlocati)
Feature: Add new Conversation Message event (thanks brucewyne)
Page Theme classes can now provide custom valNew attach mode in command line installer: When the --attach flag is supplied with a concrete5 c5:install call, if the supplied database already has rows we will attach to it rather than failing
Session API Improvements
Groups tree Javascript now methods which will run after on_start() from ALL installed packages have run. This can be helpful when a particular package requires something from another package, but the original package is executing on_start() before the dependency.
Tourist tours now have access to showStep method (thanks danielgasser)
5.7.5.3 Release Notes
Behavioral Improvements
Added an “Add Content” guide that goes through the process of adding content to the page, and explains the Add Content panel.
Improved contrast in the Add Content and Dashboard panels.
Fixed https://github.com/concrete5/concrete5/issues/2980
Improvements to image editing experience when using the concrete5 image editor.
Account private messages no longer assumes profiles are enabled (thanks ounziw)
Escaped input in form submissions so prevent Excel macros from being embedded in fields (thanks TimDix)
Links in image slider description will automatically substitute the proper URLs even when changing servers (thanks hissy)
Added logout link to mobile menu (thanks ojalehto)
Device visibility classes (hide on desktop, hide on laptop,, etc…) are now disabled when a page is in edit mode.
Additional page URLs preserve query strings on redirecting to canonical URLs.
Imported area layouts now support custom styles (thanks myconcretelab)
Parallax custom template on area design now works with multiple parallax areas on a page (thanks myconcretelab)
Bug Fixes
Fixed infinite redirect loop with Internationalized Domain Names (thanks EC-Joe)
Fixed bug where multilingual global areas would sometimes duplicate themselves needlessly, leading to empty global areas
Fixed hard-to-reproduce duplicate key error in ConversationFeatureDetailAssignments table when using the conversation block throughout your site
Fixed out of memory errors when uploading large files from the incoming directory (thanks EC-Joe)
Fixed “When using inline blocks, I can edit other inline blocks” (thanks TimDix)
Fixed errors with blocks that have assets not having their assets included if those blocks were within a layout. Fixed error with google maps block specifically.
Fixed error with scrollbar not appearing after file uploaded on the front-end (actually fixed this time.)
Fixed Adding and Moving a Block in One Step Causes JS Error
Resolved: Rich text editor adds in random "=" symbols sometimes
Resolved: Rich text editor wraps selection in when choosing a custom style
Fixed but where Downloading a file that exceeds the available memory today causes an out of memory issue
Fixed occasionally bug that resulted in error “"Argument 1 passed to Concrete\Core\Permission\Access\Access::create() must be an instance of PermissionKey, Concrete\Core\Permission\Key\AdminKey given."
Fixed bug when moving blocks in certain situations (thanks Remo)
Fixed: Topics attributes marked as required on pages weren’t being properly validated.
Fixed some minor XSS potential issues with social links (thanks EC-Chris)
Fixed bug: Internal Links in Feature Blocks Store Absolute URL in Database
Fixed: config value “concrete.updates.auto_update_packages” now works again
Fixed fatal error when enabling package auto updates (thanks EC-Joe)
Fixed error autoloading packages when working with the command line (thanks EC-Joe)
Approve changes now shows up when moving blocks in stacks (thanks WillemAnchor)
Fixed bug where editing permissions in simple permissions mode wouldn’t apply multilingual settings administration to the appropriate groups (Thanks Remo)
Fixed possible CSRF security issue in Conversations settings dashboard page.
Fixed free-form layouts that on occasion would break into two rows as widths wouldn’t match properly (thanks wstoettinger)
Color picker JavaScript now properly escaped so it can be used with PHP array syntax.
Fixed: If you added a BlockTypeSet but didn't add anything to them it would cause the foreach to error on a null value (thanks joe-meyer)
Fixed inability to filter lists by multiple select values (thanks markbennett)
Fixed http://www.concrete5.org/developers/bugs/5-7-5-2/date-attributes-search-method-doesnt-work/ (thanks haeflimi)
IP Blacklist no longer bans on failed registrations (thanks joemeyer)
Fixed https://github.com/concrete5/concrete5/issues/3048 (thanks joemeyer)
Developer Updates
We now default to the “GD” image processing library for image manipulation. Imagick must be opted into by setting the config value “concrete.file_manager.images.manipulation_library” to “imagick”.
Adds ability to specify wildcard page theme classes by creating an array key with “*” as its key (thanks TimDix)
Database Entities dashboard page now refreshes package-specific entities as well as application-specific entities.
Implemented new Validation framework and some useful constraints. Used within password validation.
API improvements to the Processor class to allow it to be used without a queue.
Select attribute option API improvements
Edge case page list sorting fix when adding to the query with addSelect and attempting to sort by the new field, and use pagination as well.
Backward Compatibility Notes
If you were relying on Imagick image manipulation, you will now be using GD image manipulation unless you manually set “concrete.file_manager.images.manipulation_library” to “imagick” within a custom config file.
5.7.5.2 Release Notes
Feature Updates
You can now filter the Page List block by date, including pages with a public date of today, X days in the past, X days in the future, and a custom date range (thanks TimDix)
The File block is now available in the Composer view for a Page type (thanks TimDix)
You can now export the Database Query Log to CSV (thanks TimDix)
The Cache settings page now gives developers the ability to optionally create CSS source maps from compiled LESS files.
Version list now shows who approved the version (thanks Katz)
Added page template to advanced page search.
New modes for page composer where you can choose target pages from an in-panel sitemap, rather than the popup selector.
Select custom attribute now uses the Select2 JavaScript library for tagging modes, leading to an improved appearance and nicer code behind the scenes.
Behavioral Improvements
Improved appearance and information display of controls on the composer form page type dashboard page (thanks TimDix)
Blocks added to the scrapbook will now honor the original block’s cache settings (thanks TimDix)
Area layouts will now be cached if all the blocks they contain are cached (thanks TimDix) Adds ability to cache Search Block if the block doesn't display results - useful for when placed in header/footer (thanks TimDix)
Performance improvements in the Assets Subsystem (thanks joe-meyer)
We now include the “position” property in the search index when using the testimonial block (thanks hissy)
Better performance when working with bulk files and file sets with a large number of file sets (thanks TimDix and jefharris23)
Stack blocks now check to see if the blocks within the stack can be cached – if so, they will be cached as well (thanks TimDix)
Resolved https://github.com/concrete5/concrete5/pull/2911 (thanks Shotster)
Added error messaging when adding or editing page types and not configuring the publishing settings properly.
Better error reporting when http:// or https:// omitted from canonical URLs (thanks mnakalay)
Removed “Meta Keywords” from SEO panel on new installs because it’s not actually something that most search engines like anymore (thanks Mesuva). The attribute is still available and installed.
Bug Fixes
Fixed bug where layouts with custom widths didn’t honor those widths (thanks kaktuspalme)
Fixed bug where area layouts disappear upon changing layout design changes (thanks TimDix)
Fixed issue installing on PHP 5.3.9 and earlier (5.7.5.1 was supposed to fix this but did not.)
When deleting files, some rows were left in child database tables. This has been fixed (thanks EC-Joe)
Block actions in edit mode (introduced in 5.7.5) now work with blocks in Composer.
Permission access entity types can now be provided in packages like they could in 5.6.
Permission keys can now be provided in packages like they could in 5.6.
Rich text editor toolbar was abnormally large when present in the attributes dialog window. This has been fixed.
Fixed bug where Image block fails on Elemental when using certain third party file storage location types with no thumbnail types installed (thanks Mnkras)
We now show a confirmation dialog when discarding page drafts (thanks hissy)
Fixed bulk SEO Updater not updating the home page.
Fixed editor tooltips and link edit callouts not displaying when using redactor in a dialog.
When setting sitewide permissions in simple permissions mode, “Edit Page Type” hadn’t been set. It also wasn’t set by default when installing concrete5. This is fixed.
Fixes Bug with Search Block when resultsURL specified instead of page (thanks TimDix)
Fixed https://github.com/concrete5/concrete5/pull/2894 (thanks skybluesofa)
Fixed https://github.com/concrete5/concrete5/issues/2362 (thanks TimDix)
Fixed Fix Cancel button action on block aliasing dialog (thanks hissy)
Fixed scrollbar not appearing after file upload (thanks EC-Chris)
Fixed exception when passing an non-number to ccm_paging_p (thanks SkyBlueSofa)
Developer Updates
Added custom file import processes for forcing JPEGs, forcing JPEG compression and forcing width/height. Added system for creating custom file import processes and calling them programmatically
Added the ability to try and use exif rotation data (experimental, toggle on by enabling with the config value concrete.file_manager.images.use_exif_rotation_data)
Translation improvements (thanks mlocati)
Added flash message support to page controller. Just call $this->flash(‘key’, ‘value’) and then a page redirect and the $key will be available from within the target page the same as if it had been set from that target page. (e.g. $this->flash(‘success’, ‘Thanks for your submission!’); $this->redirect(‘/to/new/page’); )
PageSelector::quickSelect now works again.
Page Type Validator framework improvements
Slight fixes to form labels in form block (thanks haeflimi)
Improvements to permissions content import XML functionality.
Fix potential data loss when working with packages that had both db.xml files and Doctrine entities (thanks Mainio)
Content block image placeholders now save all attributes placed on the images in the rich text editor (Thanks TimDix)
Fixed permissions error rendering “subscribe to conversation” functionality inoperable.
Improvements for working with PHP7 (thanks mlocati and Mnkras)
Added additional MIME extensions for new Office file types (thanks RGeeanks joe-meyer and mlocati)
Fixed https://github.com/concrete5/concrete5/issues/2952 (thanks ahukkanen)
New console command available: Clear Cache (thanks mlocati)
Developer Backward Compatibility Notes
The signature of the \Concrete\Core\Page\Type\Validator\ValidatorInterface has changed. If you rely on this interface check your implementations. (Note: if you extend the \Concrete\Core\Page\Type\Validator\StandardValidator you should be fine.)
5.7.5.1 Release Notes
Behavioral Improvements
Better checking for InnoDB database tables than querying INFORMATION_SCHEMA directly.
Improved accuracy and performance of the parallax scroll area layout custom template.
Fixed Fatal error when getPageThemeGridFrameworkRowStartHTML() and getPageThemeGridFrameworkRowEndHTML() return nothing
Bug Fixes
IP Blacklist functionality now works correctly
Fixed non-functioning image editor when editing image thumbnails.
Fixed error “PHP Fatal error: Can't inherit abstract function” on PHP 5.3.9 and earlier
Fixed errors installing and working with concrete5 on MySQL setups with strict tables enabled.
Fixing tree topic error in flat filter custom template when you have removed the topic tree its linked to
Fixed misnamed header grid classes in Elemental theme (thanks hdk0016)
Fixed http://www.concrete5.org/developers/bugs/5-7-4-2/date-type-custom-attributes-was-not-add-default-block/
Added legacy Image helper class (\Concrete\Core\Legacy\ImageHelper) back. This class had been moved to BasicThumbnailer and was working for all proper usage of the class, but for those instances where the class was hard-coded a the legacy image helper, the class is back for the time being. It will be removed in a subsequent update.
5.7.5 Release Notes
Grid and Layout Improvements
Page Theme classes can specify layout presets, which can use classes contained in grid frameworks or use their own custom classes.
Layouts now have design controls available to them, including custom templates and custom CSS classes.
Added a new custom template “Parallax Image” available to layouts that employ a background image.
Grid frameworks can now specify hiding classes for responsive breakpoints, which can be controlled through block and area design settings.
Grid containers that wrap around blocks based on their type can now be disabled or enabled on a per-block basis through the block design palette.
Added nested support to grid frameworks.
Mobile Improvements
Completely new Mobile Device Preview panel in the page panel. Preview the current page in a variety of mobile form factors, simulating user agent, and even rotating the device.
Multilingual Improvements
Global areas and stacks are now multilingual: if you have multiple language areas in your site, stacks and global areas you add will have separate instances for each language, and the appropriate stack contents will be displayed on the appropriate pages with no hacks.
You can scan a multilingual section for all links and references to multilingual pages, and if those pages exist outside the current tree, they will be remapped into the current tree. (i.e after you copy a multilingual tree, you can rescan its links so they don’t point to the original tree.)
Other Feature Updates
Elemental now provides two layout presets – Left Sidebar and Right Sidebar.
You can now set an RSS feed to be filtered by a particular topic
You can now add an image to an RSS feed
If you register a site that requires approval before logging in, you will receive an email letting you know this is the case (thanks ounziw)
You can now turn off help via a checkbox in the Dashboard on the Accessibility page.
The file block now contains an option to force download (thanks Mesuva)
Next/Previous Block now supports reverse ordering options (thanks UziTech)
You can now run concrete5 jobs from the command line using concrete/bin/concrete5 c5:job (thanks ChrisHougard!)
You can now choose the background image for full-image background pages with the 'concrete.white_label.background_url' config option (thanks myconcretelab)
Redactor rich text editor has been updated to version 10.2.2,. fixing many bugs and adding some small features.
Adds support to adjust trusted proxy ips and settings through Config values (thanks timdix)
Behavioral Improvements
Login page now much easier to theme. Should look nice in stock Elemental theme. More generic language and hides the authentication type list of only one authentication type is enabled. No more background image when attempting to re-skin login page in another theme.
File manager import incoming now has a checkbox to select all files (thanks MeyerJL)
Table cells in rich text editor have a minimum width of 55 pixels (thanks KarlDilkington)
Group set names can now contain multibyte characters (thanks hissy)
More rich text editor plugin interfaces are translatable (thanks mlocati)
Fixed Typography selector fails on save if it is used without font selection (thanks ojalehto)
Permissions are properly checked when displaying the publish button and the delete button in composer (thanks hissy)
Editing page defaults no longer prompts you to save or approve your changes, since changes to page defaults are immediately live (they are not versioned.)
Improved performance of full page caching (thanks EC-Chris)
Improvements to session handling when the session directory exists outside of an open_basedir restriction (thanks acohin and mlocati)
Page attributes are now grouped in sets on the page type defaults attributes screen (thanks EC-Joe)
Form block now highlights errors on specific fields when they aren’t filled in properly (thanks timdix)
Fixed bug that caused areas to have problems if they were converted in code from GlobalArea to Area and vice versa (thanks joe-meyer)
Fix: can't override install options by config file (thanks mlocati and hissy)
Better dialog message when the user can not select files (thanks hissy)
Display last used authentication type if authentication fails (thanks ChrisHougard)
Authentication types that rely on mcrypt use a more reliable random number generator (thanks thomwiggers)
You can now export logs to CSV files from the Dashboard page (thanks timdix)
If the package contains a theme that's currently active on the site, the package uninstallation can't occur
Gravatar user avatars now honor the passed aspect ratio parameter when using a custom aspect ratio (thanks joostrijneveld)
Fixed https://github.com/concrete5/concrete5/issues/2522
Bug Fixes
Fixed broken list element HTML on dashboard pages when no child pages existing in a certain section. (thanks jaromirdalecky)
Lots of configuration cleanup, removal of unused configuration values (thanks mlocati)
Fixed bug where a deleted block type could cause problems for scrapbook blocks that referenced blocks of that type (thanks MeyerJL)
Fix Base table or view not found: MultilingualSections error when installing in a language other than English
Fixed bug where there could be only one basic workflow assignment (thanks hissy)
Miscellaneous UI improvements (thanks mitchray)
Lots of miscellaneous bug fixes to community points and badges
Removt full page caching with the setting "On - If blocks on the particular page allow it (thanks TimDix)
The global configuration value for JPEG compression wasn’t being accessed properly, was ignored. This is fixed (thanks mlocati)
Email service haixing bug in topics where topics of multiple words would all be capitalized
Configuration options are more reliably displayed when using caches like PHP opcache, APC, etc.. (thanks mlocati)
External links are properly outputted in page list blocks
Fixed Fixing ipv4 to ipv6 address bugs (thanks MeyerJL)
Fixed error editing testimonial blocks when the image of the testimonial had been removed from the file manager (thanks edbeeny)
Fixed error where certain checkbox attributes were being imported as defaulting to checked, when they shouldn’t have been.
Fixed bug where running \Page::getByID on startup with a page you're currently editing breaks edit mode (thanks EC-Joe)
Fixed https://www.concrete5.org/community/forums/5-7-discussion/image-slider-links/#752359
Responsive images served by the picture tag now work in IE9 (thanks mitchray)
Surveys in global areas are now properly displayed on the survey results dashboard page (thanks EvgeniySpinov)
Fixed inability to select topics to create under a new topic tree.
Fixed validation incorrectly claiming a file attribute didn’t exist when checking a page in from edit mode (thanks mitchray)
Fixed bug with broken URL in testimonial block (thanks KarlDilkington)
Fixed https://github.com/concrete5/concrete5/issues/2623
Fixed pagination in form results (thanks mitchray)
Fixed overrride permissions for user groups not working
Fixed https://github.com/concrete5/concrete5/issues/2451 (thanks mlocati)
Style customizer for theme should be easier to use on options that have colors but no fonts available
Fixed If you create a Checkbox page attribute and select The checkbox will be checked by default. When adding the attribute to pages the box is not checked
Fixed https://www.concrete5.org/developers/bugs/5-7-4-2/cannot-reset-theme-customization-for-this-page/
Fixed If you does not have access to group search, you'll get a JSON error message (thanks hissy)
Fixed filtering by log status levels on Dashboard page
Fixed http://www.concrete5.org/developers/bugs/5-7-4-2/bug-with-tags-attribute-type1/
Fixed bug where duplicated pages couldn’t have their block content edited in composer (thanks katzueno)
Username validation error string fixes (thanks ounziw)
Fix class not included in legacy page list (thanks hissy)
Fixed bug: Add layout to area. Without refreshing page, edit container layout of new area, then cancel. Layout looks weird
Developer Updates
Big thanks to mlocati for delivering a completely new way to specify database XML, built off of the Doctrine DBAL library, including its types and functionality instead of ADODB’s AXMLS. Database XML now has support for foreign keys, comments and more. Doctrine XML is a composer package and can be used by third party projects as well. More information can be found at https://github.com/concrete5/doctrine-xml.
$view->action() now works for blocks in add and edit templates. This makes block AJAX routing much easier (simply reference $view->action(‘my_method’) in your block add/edit template, and implement action_my_method) in your block controller.
Code cleanup and API improvements and better code documentation (thanks mlocati)
Configuration and old PHP constants removed and replaced (thanks mlocati)
Completely new approach to command line utilities built off of the Symfony command line class; existing utilities ported (thanks mlocati!)
Adds ability to add Social Icons via config. (thanks TimDix)
Packages can also add command line utilities through their on_start() method (thanks hissy)
Flag images for multilingual sites can now be specified in application/images/countries/ as well as theme/current_theme/images/countries (as opposed to coming solely from concrete/images/) (thanks akodde)
Custom file type inspectors now work again.
Block types are checked to see if they exist prior to import (thanks Remo)
Attribute keys are checked to see if they exist prior to import (thanks Remo)
Permission keys are checked to see if they exist prior to import (thanks Remo)
Upgraded to Zend Framework 2.2.10 to fix certain internationalization issues (thanks mlocati)
Fixed duplicate success message on cloned form blocks on the same page (thanks bluefractals)
Fixed bugs installing concrete5 with strict mysql tables enabled (thanks mlocati)
Updated Magnific Popup to 1.0 (thanks mitchray)
If you’re running an OpCache like PHP’s Opcache, APC, XCache or something else, when you clear the cache this cache will also be cleared (thanks mlocati)
Can compute hash key based on full asset contents if so desired, using the concrete.full_contents_asset_hash config value (thanks mlocati)
Page cache adapters can now be loaded from places other than the core namespace (thanks hissy)
updateUserAvatar now fires on_user_update event (thanks timdix)
Attribute sets no longer need to have unique handles across different categories (thanks ijessup)
Delete page event now can be cancelled by hooking into the event and settings $this->proceed to false (thanks mlocati)
You can now customize the session save path through configuration (thanks mlocati).
Updated picturefill.js library to 2.3.1.
You can now specify your environment for configuration through an environment variable (CONCRETE5_ENV) as well as through host name (thanks ahukkanen)
File manager JavaScript API improvements
----------------------
3.04 - Ditto, this is fun
3.03 - still trying to get the license right, edited META.yml
3.02 - Update for license
3.01 - Removed dist.ini, bumped version
3.00 - New release for maintainer
-------------------
VERSION 3.37 (2015-12-01; sbeck)
NEW CODE(s)
VERSION 3.36 (2015-09-01; sbeck)
NEW CODE(s)
(!) Removed alias_code function
The alias_code function was preserved for backward
compatibility, but has been deprecated since 3.20. It
has been removed.
VERSION 3.35 (2015-06-01; sbeck)
NEW CODE(s)
Documentation improvements
Many changes to the formatting in the documentation to
improve it. Suggested by Pete Houston.
VERSION 3.34 (2015-03-01; sbeck)
NEW CODE(s)
--------------
0.34 Fri Feb 5 07:24:00 PST 2016
- 19 digit Visa and Discover cards
- MasterCard 222100-272099 range
- Canada does not process JCB 3529-3589 as Discover, but Puerto Rico,
US Virgin Islans, Northern Mariana Islands, Palau and Guam do
- China Union Pay only processed as Discover in the US, Mexico and
the Caribbean, not elsewhere outside China
- 14 digit Discover remain only in 36*
- receipt_cardtype subroutine supporting Discover's new receipt
requirements
--------------
4.26 2016-02-04
[ RELEASE NOTES ]
- please see v4.21 Changes for any potentially impacting changes
[ SPEC / BUG FIXES ]
- sort HTML attributes by default (GH #106, GH #196)
[ DOCUMENTATION ]
- clarifications about HTML function non removal
Changelog:
The NSS team has released Network Security Services (NSS) 3.22,
which is a minor release.
New functionality:
* RSA-PSS signatures are now supported (bug 1215295)
* Pseudorandom functions based on hashes other than SHA-1 are now supported
* Enforce an External Policy on NSS from a config file (bug 1009429)
New Functions:
* PK11_SignWithMechanism - an extended version PK11_Sign()
* PK11_VerifyWithMechanism - an extended version of PK11_Verify()
* SSL_PeerSignedCertTimestamps - Get signed_certificate_timestamp
TLS extension data
* SSL_SetSignedCertTimestamps - Set signed_certificate_timestamp
TLS extension data
New Types:
* ssl_signed_cert_timestamp_xtn is added to SSLExtensionType
* Constants for several object IDs are added to SECOidTag
New Macros:
* SSL_ENABLE_SIGNED_CERT_TIMESTAMPS
* NSS_USE_ALG_IN_SSL
* NSS_USE_POLICY_IN_SSL
* NSS_RSA_MIN_KEY_SIZE
* NSS_DH_MIN_KEY_SIZE
* NSS_DSA_MIN_KEY_SIZE
* NSS_TLS_VERSION_MIN_POLICY
* NSS_TLS_VERSION_MAX_POLICY
* NSS_DTLS_VERSION_MIN_POLICY
* NSS_DTLS_VERSION_MAX_POLICY
* CKP_PKCS5_PBKD2_HMAC_SHA224
* CKP_PKCS5_PBKD2_HMAC_SHA256
* CKP_PKCS5_PBKD2_HMAC_SHA384
* CKP_PKCS5_PBKD2_HMAC_SHA512
* CKP_PKCS5_PBKD2_HMAC_GOSTR3411 - (not supported)
* CKP_PKCS5_PBKD2_HMAC_SHA512_224 - (not supported)
* CKP_PKCS5_PBKD2_HMAC_SHA512_256 - (not supported)
table Changes:
* NSS C++ tests are built by default, requiring a C++11 compiler.
Set the NSS_DISABLE_GTESTS variable to 1 to disable building these tests.
The HG tag is NSS_3_22_RTM. NSS 3.22 requires NSPR 4.11 or newer.
Changelog:
NSPR 4.11 has the following bug fixes:
1129878 Enable atomic instructions on mips
1129968 Fix mips assertion failure when creating thread
with custom stack size
Gaupol 0.28.2
=============
* Fix text view size in spell check dialog
Gaupol 0.28.1
=============
* Have the spell-check dialog remember its size
* Work around a destructive override in gst-python that broke
Gaupol's built-in video player ([#748813][])
* Update Hungarian translation (Andrássy László)
* Update French translation (RyDroid)
* Update Brazilian Portuguese translation (Rafael Ferreira, Felipe Braga)
* Update Czech translation (Pavel Fric)
[#748813]: http://bugzilla.gnome.org/show_bug.cgi?id=748813
Gaupol 0.28
===========
* Add target in the position shift dialog to shift subtitles
from selection to end ([#734198][])
* Center tab labels
* Fix mouse use in the cell text editor to not cause losing focus
and thus cancelling editing
* Fix bookmarks not being cleared when a file with bookmarks
is closed ([#740481][])
* Remove buggy `text-shadow` use from CSS ([#740527][])
* Use markdown for documentation files (`README` etc.)
* Update Spanish translation (Carlos Mella)
[#734198]: http://bugzilla.gnome.org/show_bug.cgi?id=734198
[#740481]: http://bugzilla.gnome.org/show_bug.cgi?id=740481
[#740527]: http://bugzilla.gnome.org/show_bug.cgi?id=740527
Gaupol 0.27
===========
* Hide tabs when only one tab is open
* Expand tabs to fill window width, use 24 characters at minimum
* Fix dialog paddings with GTK+ 3.14
* Fix text view line length display with GTK+ 3.14
* Pack video player toolbar and seekbar horizontally
* Avoid column resizing upon opening file
* Fix `IndexError: list index out of range` when undoing or redoing
by holding Ctrl+(Shift)+Z pressed
* Remove use of deprecated stock items, `Gtk.Alignment`,
`gi.types.Boxed.__init__` and non-transient dialogs
* Update Spanish translation (Carlos Mella)
Gaupol 0.26
===========
* Update file selection dialogs to work better with GTK+ 3.12
* Default toolbar style to icons only (due to `gtk-toolbar-style`
being deprecated since GTK+ 3.10)
* Allow using the dark GTK+ theme variant (you need to edit
`~/.config/gaupol/gaupol.conf` to enable this)
* Fix errors and lack of updates in multiline text cells and their
line length calculation and display (#728575)
* Fix initially incorrect row heights after opening a file
* Fix updating subtitle numbers when inserting or removing subtitles
* Fix overlapping column header right-click menus
* Fix saving enumeration values to configuration file
* Use `Gtk.render_layout` instead of deprecated `Gtk.paint_layout` to
render line length margin in text views
* Remove header editing dialog
* Remove non-functional speech recognition menu item
(see <http://www.mail-archive.com/gaupol-list@gna.org/msg00069.html>)
* Drop support for the MPsub format
* Add GTK+ (3.2 or greater) to list of dependencies in the `README`
file (GTK+ has always been a dependency, its explicit mention was
just forgotten when migrating from PyGTK to PyGObject)
* Update Brazilian Portuguese translation (Rafael Ferreira)
* Update Czech translation (Pavel Fric)
Gaupol 0.25
===========
* Depend on GtkSpell 3.0.0 or later instead of pygtkspellcheck
for inline spell-check
- http://gtkspell.sourceforge.net/
* Clarify GStreamer dependency as "at least the core,
gst-plugins-base and gst-plugins-good; and for good container and
codec support preferrably each of gst-plugins-bad, gst-plugins-ugly
and gst-libav" (#710138)
* Check that required GStreamer elements can be found and
print error messages if not (#710138)
* Filter open recent menu items by mimetype
* Fix search dialog "Ignore case" option
* Fix text correction assistant layout with GTK+ 3.10
* Fix newline handling on Windows (Python 3 does implicit conversions
that were not accounted for)
* Fix preview error dialog on Windows (#651675)
* Fix video selection dialog on Windows (#654523)
* Fix miscellaneous small Windows-specific issues
* Rewrite Windows installer build scripts (thanks to TumaGonx Zakkum
for pygi-aio binaries and Gian Mario Tagliaretti for a template
cx\_Freeze setup script)
* Update Spanish translation (Carlos Mella)
Gaupol 0.24.3
=============
* Fix preferences dialog subtitle and time overlay connections
Gaupol 0.24.2
=============
* Make AppData file translatable
* Fix broken string formatting in the French translation that caused
`KeyError`s handling encoding names (#709335)
Gaupol 0.24.1
=============
* Possibly fix floating status label colors on non-Adwaita themes
* Add an AppData XML file
- http://people.freedesktop.org/~hughsient/appdata/
* Add French translation (RyDroid)
* Update Czech translation (Pavel Fric)
Gaupol 0.24
===========
* Add action to set the end time from video position
(see also <https://wiki.gnome.org/Apps/Gaupol/CreatingSubtitles>)
* Use a floating label for the statusbar
* Show search dialog messages in a floating label
in the search dialog
* Use inline toolbars in the preferences dialog
- https://wiki.gnome.org/Design/HIG/InlineToolbars
* Apply GNOME Goal: Add keywords to application desktop files
- https://wiki.gnome.org/GnomeGoals/DesktopFileKeywords
* Hide translation text column by default and show only when a
translation file is opened or the column is explicitly selected
to be shown
* Remove video toolbar (video file and framerate selectors)
* Add a framerate selector to save dialogs (shown only when
converting from a time-based file format to a frame-based
or vice versa)
* Change a couple keybindings
* Move "Select Video" from the file menu to the tools menu (below
"Preview") to clarify that it relates to the external preview
* Add Galician translation (Leandro Regueiro)
* Update Spanish translation (Carlos Mella)
Gaupol 0.23
===========
* Add a built-in GStreamer-based video player
* Add a not-required, but recommended dependency on PT fonts
(PT Sans Caption and PT Mono) used by default for video player's
subtitle and timecode overlays
- http://www.paratype.com/public/
* Bump PyGObject dependency to version 3.6.0 or later
* Fix `KeyError` tearing down extension on quit (#702518)
* Update Spanish translation (Carlos Mella)
Gaupol 0.22
===========
* Restore drop-down arrows on undo and redo toolbar buttons for those
using PyGObject 3.7.90 or greater (#686608)
* Restore almost proper keeping track of recent files for those using
PyGObject 3.7.4 or greater (#678401, #695970)
* Restore zebra-stripes, which were previously discarded by some
GTK+ themes
* Mostly fix cell rendering speed issues with GTK+ 3.6 and later
* Add Czech translation (Pavel Fric)
Gaupol 0.21.1
=============
* Fix error disconnecting text view's line length margin handler
(`AttributeError: 'TextView' object has no attribute
'gaupol_ruler_handler_id'`)
* Fix atomic file writing in weird cases where the subtitle file to
be written and its backup in the same directory would be on
different filesystems (Florian Léger, Osmo Salomaa)
* Fix speed issues updating subtitle list selection (e.g. when doing
a search-and-replace-all with a alot of matches)
* Speed up action sensitivity updates
Gaupol 0.21
===========
* Restore inline spell-check, replace the previous GtkSpell
dependency with a dependency on pygtkspellcheck
- http://koehlma.github.com/projects/pygtkspellcheck.html
* Add partial support for fancy Unicode dashes, ellipses and
quotation marks in text correction patterns and "Toggle dialogue
dashes" action
* Fix search dialog mnemonics
* Apply GNOME Goal: Remove markup in translatable messages
Gaupol 0.20.1
=============
* Fix crash on startup on newer versions of PyGObject and/or GTK+
resulting from setting tool item types (#686608)
* Fix side pane header menu (#686312)
* Disable "Join or Split Words" task in the text correction assistant
if no spell-check dictionaries are available (#686340)
* Use a stock GTK+ close icon for tab close buttons if
"window-close-symbolic" is not found
* Fix behaviour of spell-check dialog's "Replace with" entry
Gaupol 0.20
===========
* Migrate to Python 3, GTK+ 3, GStreamer 1.0, PyGI and GNOME 3
* Bump Python dependency to 3.2 or greater
* Replace PyGTK dependency with PyGObject 3.0.0 or greater
* Bump optional GStreamer dependency to 1.0 or greater
* Disable inline spell-checking while waiting for introspection
support to be added to GtkSpell
- https://bugzilla.redhat.com/show_bug.cgi?id=675504
* Disable speech recognition while waiting for pocketsphinx to be
ported to GStreamer 1.0
- https://sourceforge.net/projects/cmusphinx/forums/forum/5471/topic/5497616
* Rewrite line-breaking algorithm to use a Knuth-Plass-style flexible
system of penalties and a versatile measure of goodness
* Write subtitle files in a proper atomic manner (on Windows this
is fully atomic only with Python 3.3 or later)
* Ellipsize tab labels in the middle (#686099)
* Remove `-c`/`--config-file` option (you're better off setting `XDG_*`
environment variables if you're doing something weird)
* Add 48x48 and 256x256 pixel PNG icons and remove SVG icon
* Fix bug in saving a temporary file for preview (#685706)
* Fix signatures of decorated functions in API documentation
* Use filename extension `.extension` for extension metadata files
(instead of previous `.gaupol-extension`)
* Use filename extension `.bookmarks` for bookmark files written by
the bookmarks extension (instead of previous `.gaupol-bookmarks`)
* Release source tarballs only compressed as `tar.xz` (instead
of the previous `tar.gz` and `tar.bz2`)
* Update Brazilian Portuguese translation
(Átila Camurça, Darlildo Lima)
* Update Hungarian translation (Andrássy László)
* Update Spanish translation (Carlos Mella)
===== 5.0 (2016-01-28) =====
* Add Eliom_shared and server-side Eliom_content.{Html5,Svg}.R modules
* Add PPX syntax extension
* Clean-up form APIs, now available under Eliom_content.Html5.{D,F}.Form
* Patches to significantly reduce the size of request data
* Compatibility with TyXML 3.6, Js_of_ocaml 2.7, and reactiveData 0.2
* Various bugfixes and enhancements
===== 4.2 (2015-07-21) =====
* Add Manip.children, to get the html children of an element.
* Simplify Html5 and Svg signatures using tyxml's signature functors.
* Various logging improvements, in particular in Eliom_client.
* Fix eliomdep's exit code when calling option "-sort".
* Fix#168: call_ocaml_service always sends boolean true.
* Makes server function return types covariant.
* Restore compatibility with ocsigenserver 2.6 and lwt 2.4.7.
* Various bugfixes and wiki updates.