13.0.1 (2015-05-22)
~~~~~~~~~~~~~~~~~~~
* Upgrade pip to 7.0.1
13.0.0 (2015-05-21)
~~~~~~~~~~~~~~~~~~~
* Automatically install wheel when creating a new virutalenv. This can be
disabled by using the ``--no-wheel`` option.
* Don't trust the current directory as a location to discover files to install
packages from.
* Upgrade setuptools to 16.0.
* Upgrade pip to 7.0.0.
Twisted Core 15.2.0 (2015-05-18)
================================
Features
--------
- twisted.internet.process has now been ported to Python 3. (#5987)
- twisted.cred.credentials is now ported to Python 3. (#6176)
- twisted.trial.unittest.TestCase's assertEqual, assertTrue, and
assertFalse methods now pass through the standard library's more
informative failure messages. (#6306)
- The new package twisted.logger provides a new, fully tested, and
feature-rich logging framework. The old module twisted.python.log
is now implemented using the new framework. The new logger HOWTO
documents the new framework. (#6750)
- twisted.python.modules is now ported to Python 3. (#7804)
- twisted.python.filepath.FilePath now supports Unicode (text) paths.
Like the os module, instantiating it with a Unicode path will
return a Unicode-mode FilePath, instantiating with a bytes path
will return a bytes-mode FilePath. (#7805)
- twisted.internet.kqreactor is now ported to Python 3 (#7823)
- twisted.internet.endpoints.ProcessEndpoint is now ported to Python
3. (#7824)
- twisted.python.filepath.FilePath now has asBytesMode and asTextMode
methods which return a FilePath in the requested mode. (#7830)
- twisted.python.components.proxyForInterface now creates method
proxies that can be used with functools.wraps. (#7832)
- The tls optional dependency will now also install the idna package
to validate idna2008 names. (#7853)
Bugfixes
--------
- Don't raise an exception if `DefaultLogObserver.emit()` gets an
event with a message that raises when `repr()` is called on it.
Specifically: use `textFromEventDict()` instead of a separate (and
inferior) message rendering implementation. (#6569)
- twisted.cred.credentials.DigestedCredentials incorrectly handled
md5-sess hashing according to the RFC, which has now been fixed.
(#7835)
- Fixed an issue with twisted.internet.task.LoopingCall.withCount
where sometimes the passed callable would be invoked with "0" when
we got close to tricky floating point boundary conditions. (#7836)
- twisted.internet.defer now properly works with the new logging
system. (#7851)
- Change `messages` key to `log_io` for events generated by
`LoggingFile`. (#7852)
- twisted.logger had literal characters in docstrings that are now
quoted. (#7854)
- twisted.logger now correctly formats a log event with a key named
`message` when passed to a legacy log observer. (#7855)
- twisted.internet.endpoints.HostnameEndpoint now uses getaddrinfo
properly on Python 3.4 and above. (#7886)
Improved Documentation
----------------------
- Fix a typo in narrative documentation for logger (#7875)
Deprecations and Removals
-------------------------
- tkunzip and tapconvert in twisted.scripts were deprecated in 11.0
and 12.1 respectively, and are now removed. (#6747)
- twisted.protocols.gps is deprecated in preference to
twisted.positioning. (#6810)
- twisted.scripts.tap2deb and twisted.scripts.tap2rpm are now
deprecated. (#7682)
- twisted.trial.reporter.TestResult and
twisted.trial.reporter.Reporter contained deprecated methods (since
8.0) which have now been removed. (#7815)
Other
-----
- #6027, #7287, #7701, #7727, #7758, #7776, #7786, #7812, #7819,
#7831, #7838, #7865, #7866, #7869, #7872, #7877, #7878, #7885
Twisted Conch 15.2.0 (2015-05-18)
=================================
Features
--------
- twisted.conch.ssh.forwarding now supports local->remote forwarding
of IPv6 (#7751)
Twisted Mail 15.2.0 (2015-05-18)
================================
Features
--------
- twisted.mail.smtp.sendmail now uses ESMTP. It will
opportunistically enable encryption and allow the use of
authentication. (#7257)
Twisted Web 15.2.0 (2015-05-18)
===============================
Features
--------
- twisted.web.static is now ported to Python 3. (#6177)
- twisted.web.server.Site accepts requestFactory as constructor
argument. (#7016)
Deprecations and Removals
-------------------------
- twisted.web.util had some HTML generation functions deprecated
since 12.1 that have now been removed. (#7828)
Other
-----
- #6927, #7797, #7802, #7846
Twisted Words 15.2.0 (2015-05-18)
=================================
Bugfixes
--------
- The resumeOffset argument to
twisted.words.protocol.irc.DccFileReceive now works as it is
documented. (#7775)
2.7.1 (compared to 2.7.0)
-----------------------------
- fix issue731: do not get confused by the braces which may be present
and unbalanced in an object's repr while collapsing False
explanations. Thanks Carl Meyer for the report and test case.
- fix issue553: properly handling inspect.getsourcelines failures in
FixtureLookupError which would lead to to an internal error,
obfuscating the original problem. Thanks talljosh for initial
diagnose/patch and Bruno Oliveira for final patch.
- fix issue660: properly report scope-mismatch-access errors
independently from ordering of fixture arguments. Also
avoid the pytest internal traceback which does not provide
information to the user. Thanks Holger Krekel.
- streamlined and documented release process. Also all versions
(in setup.py and documentation generation) are now read
from _pytest/__init__.py. Thanks Holger Krekel.
- fixed docs to remove the notion that yield-fixtures are experimental.
They are here to stay :) Thanks Bruno Oliveira.
- Support building wheels by using environment markers for the
requirements. Thanks Ionel Maries Cristian.
- fixed regression to 2.6.4 which surfaced e.g. in lost stdout capture printing
when tests raised SystemExit. Thanks Holger Krekel.
- reintroduced _pytest fixture of the pytester plugin which is used
at least by pytest-xdist.
0.9 - 2015-05-13
~~~~~~~~~~~~~~~~
* Removed support for Python 3.2. This version of Python is rarely used
and caused support headaches. Users affected by this should upgrade to 3.3+.
* Deprecated support for Python 2.6. At the time there is no time table for
actually dropping support, however we strongly encourage all users to upgrade
their Python, as Python 2.6 no longer receives support from the Python core
team.
* Add support for the
:class:`~cryptography.hazmat.primitives.asymmetric.ec.SECP256K1` elliptic
curve.
* Fixed compilation when using an OpenSSL which was compiled with the
``no-comp`` (``OPENSSL_NO_COMP``) option.
* Support :attr:`~cryptography.hazmat.primitives.serialization.Encoding.DER`
serialization of public keys using the ``public_bytes`` method of
:class:`~cryptography.hazmat.primitives.asymmetric.rsa.RSAPublicKeyWithSerialization`,
:class:`~cryptography.hazmat.primitives.asymmetric.dsa.DSAPublicKeyWithSerialization`,
and
:class:`~cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePublicKeyWithSerialization`.
* Support :attr:`~cryptography.hazmat.primitives.serialization.Encoding.DER`
serialization of private keys using the ``private_bytes`` method of
:class:`~cryptography.hazmat.primitives.asymmetric.rsa.RSAPrivateKeyWithSerialization`,
:class:`~cryptography.hazmat.primitives.asymmetric.dsa.DSAPrivateKeyWithSerialization`,
and
:class:`~cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePrivateKeyWithSerialization`.
* Add support for parsing X.509 certificate signing requests (CSRs) with
:func:`~cryptography.x509.load_pem_x509_csr` and
:func:`~cryptography.x509.load_der_x509_csr`.
* Moved ``cryptography.exceptions.InvalidToken`` to
:class:`cryptography.hazmat.primitives.twofactor.InvalidToken` and deprecated
the old location. This was moved to minimize confusion between this exception
and :class:`cryptography.fernet.InvalidToken`.
* Added support for X.509 extensions in :class:`~cryptography.x509.Certificate`
objects. The following extensions are supported as of this release:
* :class:`~cryptography.x509.BasicConstraints`
* :class:`~cryptography.x509.AuthorityKeyIdentifier`
* :class:`~cryptography.x509.SubjectKeyIdentifier`
* :class:`~cryptography.x509.KeyUsage`
* :class:`~cryptography.x509.SubjectAlternativeName`
* :class:`~cryptography.x509.ExtendedKeyUsage`
* :class:`~cryptography.x509.CRLDistributionPoints`
* :class:`~cryptography.x509.AuthorityInformationAccess`
* :class:`~cryptography.x509.CertificatePolicies`
Note that unsupported extensions with the critical flag raise
:class:`~cryptography.x509.UnsupportedExtension` while unsupported extensions
set to non-critical are silently ignored. Read the
:doc:`X.509 documentation</x509>` for more information.
+ Version 2.13 (12.05.2015)
- Added support for offsetof() the way gcc implements it (special builtin
that takes a type as an argument).
- Added faked va_* macros (these are expected to come from stdarg.h)
- Added a bunch more fake headers and typedefs to support parsing C projects
like Git and SQLite without modifications to pycparser.
- Added support for empty initializer lists (#79).
Version 0.16
------------
(bugfix release, released on May 16, 2015)
- Fix typo preventing the security confirmation prompt from working (#303)
- Improve handling of systems with improperly configured file system encoding (#289)
- Fix "All archives" output for attic info. (#183)
- More user friendly error message when repository key file is not found (#236)
- Fix parsing of iso 8601 timestamps with zero microseconds (#282)
1.0.3
Same as 1.0.2, apart from doc and test fixes on some platforms.
1.0.2
Variadic C functions (ending in a ... argument) were not
supported in the out-of-line ABI mode. This was a bug-there
was even a (non-working) example doing exactly that!
1.0.1
ffi.set_source() crashed if passed a sources=[..] argument.
Fixed by chrippa on pull request #60.
Issue #193: if we use a struct between the first cdef() where
it is declared and another cdef() where its fields are defined,
then this definition was ignored.
Enums were buggy if you used too many ... in their definition.
1.0.0
The main news item is out-of-line module generation:
for ABI level, with ffi.dlopen()
for API level, which used to be with ffi.verify(), now
deprecated
- version: 2.28.0
date: 2015-05-15
new features:
- title: "Conversion of all ebook formats to Microsoft Word (DOCX) files"
type: major
description: "Supports conversion of text styles, images,
lists, tables, embedded fonts, etc. Produces DOCX files
compatible with Microsoft Word 2007 or newer. Note that this
code is very new, so there will likely still be kinks that
will be worked out in the coming weeks."
- title: "Add keyboard shortcuts (Ctrl+Right, Ctrl+Left) to
switch between virtual library tabs."
- title: "When sending email using GMX pause for five minutes
between books, to prevent GMX from blocking the account. The
delay can be configured via Preferences->Tweaks"
bug fixes:
- title: "Open With: Fix application icons in XDG_DATA_HOME on
linux not being found and fix unhandled error when choosing
non-executable files as applications."
- title: "AZW3 Output: Remove duplicate anchors to workaround
some Kindle renderers using the last occurrence of an anchor
as the target instead of the first."
- title: "Fix language definition on body tag being ignored
during conversion"
- title: "Edit book: When importing multiple files into the
book, import them in the order sorted by their filenames instead
of in random order"
- title: "E-book viewer: Fix print to pdf not working on some
windows systems with non-ascii usernames and non-utf-8 system
locales. Also make the print to pdf dialog a little easier to
use."
- title: "Edit Book: Fix TOC editor window not remembering its
last used size"
improved recipes:
- Field and Stream
- Linux Magazine
- Brand Eins
- Courrier International
- Wired Magazine
- The Onion
2.0
- fix checks for NFD conversion, where convmv could run into a "resulting filename is ... bytes long (max: 255) error message for no obvious reason.
- the --preserve-mtimes option is the default now
- fix a bug where mtimes might not be restored in some cases
- add --map option to support additional character mappings like to mapping Microsoft's illegal NTFS characters
- issue warning if we cannot traverse a directory in recursive mode
Noteworthy changes in version 0.9.2 (2015-05-11)
------------------------------------------------
* Support for saving the passphrase with libsecret.
* Escape key works in the Gtk+ pinentry.
* Improvements for pinentry-tty.
* Minor cleanups for the native Windows pinentry.
-*- coding: utf-8 -*-
Changes for APR 1.5.2
*) SECURITY: CVE-2015-1829 (cve.mitre.org)
APR applications using APR named pipe support on Windows can be
vulnerable to a pipe squatting attack from a local process; the extent
of the vulnerability, when present, depends on the application.
Initial analysis and report was provided by John Hernandez of Casaba
Security via HP SSRT Security Alert. [Yann Ylavic]
*) apr_atomic: Fix errors when building on Visual Studio 2013 while
maintaining the ability to build on Visual Studio 6 with Windows
Server 2003 R2 SDK. PR 57191. [Gregg Smith]
*) Switch to generic atomics for early/unpatched Solaris 10 not exporting
some atomic functions. PR 55418. [Yann Ylavic]
*) apr_file_mktemp() on HP-UX: Remove limitation of 26 temporary files
per process. PR 57677. [Jeff Trawick]
*) apr_escape: Correctly calculate the size of the returned string in
apr_escape_path and set the correct return value in case we actually
escape the string. [<aduryagin gmail.com>] PR 57230.
*) pollcb on Windows: Handle calls with no file/socket descriptors.
Follow up to PR 49882. [Jeff Trawick, Yann Ylavic]
*) apr_poll(cb): fix error paths returned values and leaks. [Yann Ylavic]
*) apr_thread_cond_*wait() on BeOS: Fix broken logic. PR 45800.
[Jochen Voss (no e-mail)]
*) apr_skiplist: Optimize the number of allocations by reusing pooled or
malloc()ed nodes for the lifetime of the skiplist. [Yann Ylavic]
*) apr_skiplist: Fix possible multiple-free() on the same value in
apr_skiplist_remove_all(). [Yann Ylavic]
*) apr_pollset: On z/OS, threadsafe apr_pollset_poll() may return
"EDC8102I Operation would block" under load.
[Pat Odonnell <patod us.ibm.com>]
*) On z/OS, apr_sockaddr_info_get() with family == APR_UNSPEC was not
returning IPv4 addresses if any IPv6 addresses were returned.
[Eric Covener]
*) Windows cmake build: Fix an incompatibility with cmake 2.8.12 and
later. [Jeff Trawick]
*) apr_global_mutex/apr_proc_mutex: Resolve failures with the
POSIX sem implementation in environments which receive signals.
[Jeff Trawick]
*) apr_skiplist: Fix potential corruption of skiplists leading to
results or crashes. [Takashi Sato <takashi tks st>, Eric Covener]
PR 56654.
*) Improve platform detection by updating config.guess and config.sub.
[Rainer Jung]
Changes from 4.1.2 to 4.1.3
---------------------------
1. Regexp parsing with extra brackets should now be working again. There
are several new tests to keep this stuff on track.
2. Updated to latest config.guess and config.sub.
3. A (small) number of bugs have been fixed. See the ChangeLog.
2015/05/13
+ add configure option --with-install-prefix, like ncurses.
+ add --with-screen and related configure options from ncurses-examples
to allow building with ncurses6 test-packages.
+ update configure macros for improved coding style from lynx changes.
+ updated ro.po from
http://translationproject.org/latest/dialog/
+ update config.guess, config.sub
> patches by Florent Rougon:
+ fix two bugs in the "--file" option.
+ When the number of arguments read from the included file is 0, the
code used to just skip over '--file' and its argument instead of
removing them from the argument list, causing "Error: Unknown
option --file" later on.
+ In the alternative case (at least one argument read from the file),
the previous code used to do '--j;' in order to "force rescan" of
the inserted arguments. However, control then flowed to outer
blocks where a '++j;' counteracted this measure, causing "Error:
Unknown option --msgbox" (for instance) later on.
+ modify escaping in argv.c to be more uniform, whether or not the
backslash is found within a parameter.
--------------
Version 1.80b:
--------------
- Made afl-cmin tolerant of whitespaces in filenames. Suggested by
Jonathan Neuschafer and Ketil Froyn.
- Added support for AFL_EXIT_WHEN_DONE, as suggested by Michael Rash.
--------------
Version 1.79b:
--------------
- Added support for dictionary levels, see testcases/README.testcases.
- Reworked the SQL dictionary to use levels.
- Added a note about Preeny.
--------------
Version 1.78b:
--------------
- Added a dictionary for PDF, contributed by Ben Nagy.
- Added several references to afl-cov, a new tool by Michael Rash.
- Fixed a problem with crash reporter detection on MacOS X, as reported by
Louis Dassy.
--------------
Version 1.77b:
--------------
- Extended the -x option to support single-file dictionaries.
- Replaced factory-packaged dictionaries with file-based variants.
- Removed newlines from HTML keywords in testcases/_extras/html/.
--------------
Version 1.76b:
--------------
- Very significantly reduced the number of duplicate execs during
deterministic checks, chiefly in int16 and int32 stages. Confirmed
identical path yields. This should improve early-stage efficiency by
around 5-10%.
- Reduced the likelihood of duplicate non-deterministic execs by
bumping up lowest stacking factor from 1 to 2. Quickly confirmed
that this doesn't seem to have significant impact on coverage with
libpng.
- Added a note about integrating afl-fuzz with third-party tools.
WebKitGTK+ 2.4.9 released!
This is a bug fix release in the stable 2.4 series.
What’s new in the WebKitGTK+ 2.4.9 release?
o Check TLS errors as soon as they are set in the SoupMessage to prevent any
data from being sent to the server in case of invalid certificate.
o Clear the GObject DOM bindings internal cache when frames are destroyed or web
view contents are updated.
o Add HighDPI support for non-accelerated compositing contents.
o Fix some transfer annotations used in GObject DOM bindings.
o Use latin1 instead of UTF-8 for HTTP header values.
o Fix synchronous loads when maximum connection limits are reached.
o Fix a crash ScrollView::contentsToWindow() when GtkPluginWidget doesn’t have a
parent.
o Fix a memory leak in webkit_web_policy_decision_new.
o Fix g_closure_unref runtime warning.
o Fix a crash due to empty drag image during drag and drop.
o Fix rendering of scrollbars with GTK+ >= 3.16.
o Fix the build on mingw32/msys.
o Fix the build with WebKit2 disabled.
o Fix the build with accelerated compositing disabled.
o Fix clang version check in configure.
o Fix the build with recent versions of GLib that have GMutexLocker.
o Fix the build for Linux/MIPS64EL.
Upstream changes:
1.300018 2015-05-27 15:28:44-04:00 America/New_York
- stable release of changes from 1.300017
1.300017 2015-05-14 13:17:39-04:00 America/New_York (TRIAL RELEASE)
- cope with a double-encoding but in Net::SMTP
for details, https://rt.cpan.org/Ticket/Display.html?id=104433
Upstream changes:
0.234 20150527
. Fix the test for PMC loading to work on versions on Perl that don't
have Config::non_bincompat_options (HAARG). Fixes RT#102626 .
0.233 20150525
! The diagnostic about inheriting from ourselves was removed.
It served no own purpose as Perl already warns if we try to
inherit in a circular way.
